Prosím o kontrolu logu, díky. Olmer

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Olmer
nováček
Příspěvky: 6
Registrován: srpen 06
Pohlaví: Nespecifikováno
Stav:
Offline

Prosím o kontrolu logu, díky. Olmer

Příspěvekod Olmer » 25 srp 2006 23:02

Logfile of HijackThis v1.99.1
Scan saved at 22:41:57, on 25.8.2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Opera\Opera.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mexe.com
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavss.exe
c:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [RVP] "C:\Program Files\RVP\bpc.exe"
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 5425403086
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E6E0760A-92A1-4993-8E6C-34DDCF023077}: NameServer = 172.16.138.17,194.108.34.2
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Unknown owner - C:\Program Files\Eset\nod32krn.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Adaptér výkonu služby WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe (file missing)

Reklama
Uživatelský avatar
krtenek
Level 4.5
Level 4.5
Příspěvky: 1955
Registrován: květen 06
Pohlaví: Muž
Stav:
Offline

Příspěvekod krtenek » 25 srp 2006 23:19

Fixni toto:
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - Default URLSearchHook is missing
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

Uživatelský avatar
mikel
Level 5
Level 5
Příspěvky: 2298
Registrován: květen 05
Bydliště: Karviná
Pohlaví: Muž
Stav:
Offline

Příspěvekod mikel » 26 srp 2006 11:25

No máš tam spyware, takže ještě fixni v HJT:
O4 - HKLM\..\Run: [RVP] "C:\Program Files\RVP\bpc.exe"

Pak přes Ovládací panely/Přidat nebo odebrat programy odinstaluj aplikaci RVP. Pak se podívej, jestli na disku nezůstal adresář C:\Program Files\RVP a případně ho smaž.

Vypni obnovu systému, vyčisti disk CCleanerem, rastartuj a dej sem nový log.
Znáte pravidla?
Tipy a triky ve Windows XP
Návody: HijackThis, MWAV, CCleaner (THX to mijaja)
Problémy, které chcete vyřešit pište sem do fóra. Neposílejte je emailem ani po ICQ!

Olmer
nováček
Příspěvky: 6
Registrován: srpen 06
Pohlaví: Nespecifikováno
Stav:
Offline

Příspěvekod Olmer » 27 srp 2006 19:08

Nezbyva mi nez vam duverovat panove :)
Tady je ten log:


Logfile of HijackThis v1.99.1
Scan saved at 19:04:20, on 27.8.2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\NMSSvc.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Opera\Opera.exe
C:\Total Commander\TOTALCMD.EXE
c:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\Smtray.exe
O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 5425403086
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E6E0760A-92A1-4993-8E6C-34DDCF023077}: NameServer = 172.16.138.17,194.108.34.2
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Unknown owner - C:\Program Files\Eset\nod32krn.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Adaptér výkonu služby WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe (file missing)

Uživatelský avatar
mikel
Level 5
Level 5
Příspěvky: 2298
Registrován: květen 05
Bydliště: Karviná
Pohlaví: Muž
Stav:
Offline

Příspěvekod mikel » 27 srp 2006 19:15

Už to vypadá dobře, teď ještě pro jistotu sem dej log z MWAV.
Znáte pravidla?
Tipy a triky ve Windows XP
Návody: HijackThis, MWAV, CCleaner (THX to mijaja)
Problémy, které chcete vyřešit pište sem do fóra. Neposílejte je emailem ani po ICQ!

Olmer
nováček
Příspěvky: 6
Registrován: srpen 06
Pohlaví: Nespecifikováno
Stav:
Offline

Příspěvekod Olmer » 27 srp 2006 21:30

Projel jsem ten test a detekovalo to 9 kritickych hajzliku
Tady to je:

Sun Aug 27 21:21:08 2006 => **********************************************************
Sun Aug 27 21:21:08 2006 => MicroWorld Anti Virus & Spyware Toolkit Utility.
Sun Aug 27 21:21:08 2006 => Copyright © 2003-2006, MicroWorld Technologies Inc.
Sun Aug 27 21:21:08 2006 => **********************************************************
Sun Aug 27 21:21:08 2006 => Source: c:\DOCUME~1\ADMINI~1\DOKUME~1\INSTAL~1\mwav.exe
Sun Aug 27 21:21:08 2006 => Version 8.5.2 (C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mexe.com)
Sun Aug 27 21:21:08 2006 => Log File: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MWAV.LOG
Sun Aug 27 21:21:08 2006 => Last Scan Date and Time: 25.08.2006 22:26:15
Sun Aug 27 21:21:08 2006 => MWAV Registered: FALSE.
Sun Aug 27 21:21:08 2006 => User Account: Administrator
Sun Aug 27 21:21:08 2006 => OS Type: Windows Workstation
Sun Aug 27 21:21:08 2006 => OS: Windows XP
Sun Aug 27 21:21:08 2006 => Ver: (Build 2600)
Sun Aug 27 21:21:08 2006 => Windows Root Folder: C:\WINDOWS
Sun Aug 27 21:21:08 2006 => Windows Sys32 Folder: C:\WINDOWS\System32
Sun Aug 27 21:21:08 2006 => Local Fixed Drives: c:\
Sun Aug 27 21:21:08 2006 => MWAV Mode: Only Scan files.
Sun Aug 27 21:21:09 2006 => Latest Date of files inside MWAV: 25 Aug 2006 07:43:40.
Sun Aug 27 21:21:13 2006 => AV Library Loaded...
Sun Aug 27 21:21:13 2006 => MWAV doing self scanning...
Sun Aug 27 21:21:13 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavss.exe
Sun Aug 27 21:21:13 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Getvlist.exe
Sun Aug 27 21:21:13 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavss.dll
Sun Aug 27 21:21:13 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavssdi.dll
Sun Aug 27 21:21:13 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavssi.dll
Sun Aug 27 21:21:13 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavvlg.dll
Sun Aug 27 21:21:13 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msvlclnt.dll
Sun Aug 27 21:21:14 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ipc.dll
Sun Aug 27 21:21:14 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\main.avi
Sun Aug 27 21:21:14 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\virus.avi
Sun Aug 27 21:21:14 2006 => MWAV files are clean.
Sun Aug 27 21:21:15 2006 => Virus Database Date: 8/25/2006
Sun Aug 27 21:21:15 2006 => Virus Database Count: 218109

Sun Aug 27 21:21:32 2006 => **********************************************************
Sun Aug 27 21:21:32 2006 => MicroWorld Anti Virus & Spyware Toolkit Utility.
Sun Aug 27 21:21:32 2006 => Copyright © 2003-2006, MicroWorld Technologies Inc.
Sun Aug 27 21:21:32 2006 =>
Sun Aug 27 21:21:32 2006 => Support: support@mwti.net
Sun Aug 27 21:21:32 2006 => Web: http://www.mwti.net
Sun Aug 27 21:21:32 2006 => **********************************************************
Sun Aug 27 21:21:32 2006 => Version 8.5.2 (C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mexe.com)
Sun Aug 27 21:21:32 2006 => Log File: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\MWAV.LOG
Sun Aug 27 21:21:32 2006 => User Account: Administrator
Sun Aug 27 21:21:32 2006 => Windows Root Folder: C:\WINDOWS
Sun Aug 27 21:21:32 2006 => Windows Sys32 Folder: C:\WINDOWS\System32
Sun Aug 27 21:21:32 2006 => OS: Windows XP
Sun Aug 27 21:21:32 2006 => Ver: (Build 2600)
Sun Aug 27 21:21:32 2006 => Latest Date of files inside MWAV: 25 Aug 2006 07:43:40.

Sun Aug 27 21:21:32 2006 => Options Selected by User:
Sun Aug 27 21:21:32 2006 => Memory Check: Enabled
Sun Aug 27 21:21:32 2006 => Registry Check: Enabled
Sun Aug 27 21:21:32 2006 => StartUp Folder Check: Enabled
Sun Aug 27 21:21:32 2006 => System Folder Check: Enabled
Sun Aug 27 21:21:32 2006 => System Area Check: Disabled
Sun Aug 27 21:21:32 2006 => Services Check: Enabled
Sun Aug 27 21:21:32 2006 => Drive Check Option Disabled
Sun Aug 27 21:21:32 2006 => Folder Check: Disabled

Sun Aug 27 21:21:34 2006 => ***** Scanning Memory Files *****
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\System32\smss.exe
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\System32\ntdll.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\system32\CSRSRV.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\system32\basesrv.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\system32\winsrv.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\system32\USER32.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\system32\KERNEL32.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\system32\GDI32.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\system32\ADVAPI32.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\system32\RPCRT4.dll
Sun Aug 27 21:21:34 2006 => Scanning File C:\WINDOWS\System32\sxs.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\AUTHZ.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\msvcrt.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\CRYPT32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\MSASN1.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\NDdeApi.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\PROFMAP.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\NETAPI32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\USERENV.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\PSAPI.DLL
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\REGAPI.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\Secur32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\SETUPAPI.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\VERSION.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\WINSTA.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\WS2_32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\WS2HELP.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\MSGINA.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\SHLWAPI.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\COMCTL32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\ODBC32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\odbcint.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\SHSVCS.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\sfc.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\sfc_os.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\WINTRUST.dll
Sun Aug 27 21:21:35 2006 => Scanning File C:\WINDOWS\system32\ole32.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\WINSCARD.DLL
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\WTSAPI32.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\uxtheme.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\WINMM.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\SYNCOR11.DLL
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\cscdll.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\WINSPOOL.DRV
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\MPR.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\System32\rsaenh.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\msv1_0.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\wldap32.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\SAMLIB.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\RASAPI32.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\rasman.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\TAPI32.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\rtutils.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\cscui.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\NTMARTA.DLL
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\COMRes.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\OLEAUT32.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\CLBCATQ.DLL
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\wdmaud.drv
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\msacm32.drv
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\MSACM32.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\midimap.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\services.exe
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\SCESRV.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\umpnpmgr.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\eventlog.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\LSASRV.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\SAMSRV.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\DNSAPI.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\NTDSAPI.dll
Sun Aug 27 21:21:36 2006 => Scanning File C:\WINDOWS\system32\msprivs.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\kerberos.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\netlogon.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\w32time.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\MSVCP60.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\netman.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\MPRAPI.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\ACTIVEDS.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\adsldpc.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\ATL.DLL
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\WZCSvc.DLL
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\WMI.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\DHCPCSVC.DLL
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\schannel.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\wdigest.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\scecli.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\ipsecsvc.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\oakley.DLL
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\WINIPSEC.DLL
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\pstorsvc.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\psbase.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\imon.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\WSOCK32.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\mswsock.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\rsvpsp.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\System32\wshtcpip.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\System32\dssenh.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 27 21:21:37 2006 => Scanning File c:\windows\system32\rpcss.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\System32\winrnr.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\system32\rasadhlp.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\System32\rastls.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\System32\raschap.dll
Sun Aug 27 21:21:37 2006 => Scanning File c:\windows\system32\schedsvc.dll
Sun Aug 27 21:21:37 2006 => Scanning File C:\WINDOWS\System32\MSIDLE.DLL
Sun Aug 27 21:21:37 2006 => Scanning File c:\windows\system32\audiosrv.dll
Sun Aug 27 21:21:37 2006 => Scanning File c:\windows\system32\wkssvc.dll
Sun Aug 27 21:21:37 2006 => Scanning File c:\windows\system32\cryptsvc.dll
Sun Aug 27 21:21:37 2006 => Scanning File c:\windows\system32\certcli.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\CRYPTUI.dll
Sun Aug 27 21:21:38 2006 => Scanning File C:\WINDOWS\system32\WININET.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\ESENT.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\iprip.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\es.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\ersvc.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\dmserver.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\srvsvc.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\msgsvc.dll
Sun Aug 27 21:21:38 2006 => Scanning File C:\WINDOWS\System32\upnp.dll
Sun Aug 27 21:21:38 2006 => Scanning File C:\WINDOWS\System32\SSDPAPI.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\seclogon.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\sens.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\srsvc.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\tapisrv.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\trkwks.dll
Sun Aug 27 21:21:38 2006 => Scanning File C:\WINDOWS\System32\actxprxy.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\rasmans.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\netcfgx.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\CLUSAPI.dll
Sun Aug 27 21:21:38 2006 => Scanning File c:\windows\system32\wuauserv.dll
Sun Aug 27 21:21:38 2006 => Scanning File C:\WINDOWS\System32\wuaueng.dll
Sun Aug 27 21:21:38 2006 => Scanning File C:\WINDOWS\System32\ADVPACK.dll
Sun Aug 27 21:21:38 2006 => Scanning File C:\WINDOWS\System32\SHFOLDER.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\WINHTTP.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\Cabinet.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\mspatcha.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\rastapi.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\unimdm.tsp
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\uniplat.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\kmddsp.tsp
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\ndptsp.tsp
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\ipconf.tsp
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\h323.tsp
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\hidphone.tsp
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\HID.DLL
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\rasppp.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\ntlsapi.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\browser.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\ipnathlp.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\netshell.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\credui.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\HNetCfg.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\rasauto.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\icmp.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\termsrv.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\ICAAPI.dll
Sun Aug 27 21:21:39 2006 => Scanning File c:\windows\system32\mstlsapi.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\msi.dll
Sun Aug 27 21:21:39 2006 => Scanning File C:\WINDOWS\System32\RASDLG.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\System32\msxml3.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\System32\wups.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\Apphelp.dll
Sun Aug 27 21:21:40 2006 => Scanning File c:\windows\system32\dnsrslvr.dll
Sun Aug 27 21:21:40 2006 => Scanning File c:\windows\system32\lmhsvc.dll
Sun Aug 27 21:21:40 2006 => Scanning File c:\windows\system32\webclnt.dll
Sun Aug 27 21:21:40 2006 => Scanning File c:\windows\system32\regsvc.dll
Sun Aug 27 21:21:40 2006 => Scanning File c:\windows\system32\ssdpsrv.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\SPOOLSS.DLL
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\localspl.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\System32\AdobePDF.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Distillr\adistres.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\lprmon.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\LPRHELP.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\mdimon.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\pjlmon.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\tcpmon.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\usbmon.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\win32spl.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\NETRAP.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\inetpp.dll
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\System32\alg.exe
Sun Aug 27 21:21:40 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4ss.exe
Sun Aug 27 21:21:40 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\POCOFO~1.DLL
Sun Aug 27 21:21:40 2006 => Scanning File C:\WINDOWS\system32\MSVCP71.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\WINDOWS\system32\MSVCR71.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\PocoXML.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\PocoExt.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kfe.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\LIBEAY32.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\SSLEAY32.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\curllib.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kwsapi.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\VS7Debug\mdm.exe
Sun Aug 27 21:21:41 2006 => Scanning File C:\WINDOWS\System32\NMSSvc.exe
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\Eset\nod32krn.exe
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\Eset\ps_amon.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\Eset\ps_dmon.dll
Sun Aug 27 21:21:41 2006 => Scanning File C:\PROGRA~1\Eset\ps_nms.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\PROGRA~1\Eset\ps_nod32.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\PROGRA~1\Eset\ps_upd.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\tcpsvcs.exe
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\simptcp.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\snmp.exe
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\snmpapi.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\lmmib2.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\inetmib1.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\hostmib.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\snmpmib.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\evntagnt.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\igmpagnt.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\mcastmib.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\perfos.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\PROGRA~1\ANALOG~1\SoundMAX\SMAgent.exe
Sun Aug 27 21:21:42 2006 => Scanning File c:\windows\system32\wiaservc.dll
Sun Aug 27 21:21:42 2006 => Scanning File c:\windows\system32\CFGMGR32.dll
Sun Aug 27 21:21:42 2006 => Scanning File c:\windows\system32\mscms.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\wiavusd.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.1360_x-ww_24a2ed47\gdiplus.dll
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\wdfmgr.exe
Sun Aug 27 21:21:42 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4gui.exe
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\system32\MFC71.DLL
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\Explorer.EXE
Sun Aug 27 21:21:42 2006 => Scanning File C:\WINDOWS\System32\BROWSEUI.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\SHDOCVW.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\themeui.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\MSIMG32.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\LINKINFO.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\ntshrui.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\MLANG.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\stobject.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\BatMeter.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\POWRPROF.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\upnpui.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\printui.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\drprov.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\ntlanman.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\NETUI0.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\NETUI1.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\davclnt.dll
Sun Aug 27 21:21:43 2006 => Scanning File C:\PROGRA~1\ANALOG~1\SoundMAX\Smtray.exe
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\MFC42.DLL
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\MFC42LOC.DLL
Sun Aug 27 21:21:43 2006 => Scanning File C:\PROGRA~1\ANALOG~1\SoundMAX\DrvLsnr.exe
Sun Aug 27 21:21:43 2006 => Scanning File C:\WINDOWS\System32\hkcmd.exe
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\hccutils.DLL
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\igfxdev.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\igfxsrvc.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\igfxhk.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\igfxres.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\gkh.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\LVCOMSX.EXE
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\lvmaenum.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\lvcomcx.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LogiTray.exe
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\QCUI2.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\AVIFIL32.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\WINDOWS\System32\MSVFW32.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LTWVC12n.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LTFIL12n.DLL
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LTKRN12n.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LQCUI2.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LLogTray.dll
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LTDIS12N.DLL
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LTIMG12N.DLL
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LTEFX12N.DLL
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LFFAX12N.DLL
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LFCMP12N.DLL
Sun Aug 27 21:21:44 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LFTIF12N.DLL
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LFBMP12N.DLL
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LFPCX12N.DLL
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Logitech\Video\fxsvrps.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Eset\nod32kui.exe
Sun Aug 27 21:21:45 2006 => Scanning File C:\WINDOWS\System32\MFC42u.DLL
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Eset\pu_amon.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Eset\pu_dmon.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Eset\pu_imon.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Eset\pu_nms.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Eset\pu_nod32.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Eset\pu_upd.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\MICROS~4\WCESCOMM.EXE
Sun Aug 27 21:21:45 2006 => Scanning File C:\WINDOWS\System32\CEUTIL.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\WINDOWS\System32\RAPI.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\MICROS~4\TCP2UDP.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\WINDOWS\System32\ShimEng.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\WINDOWS\AppPatch\AcGenral.DLL
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Distillr\acrotray.exe
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Logitech\Video\FxSvr2.exe
Sun Aug 27 21:21:45 2006 => Scanning File C:\WINDOWS\twain_32\LogiVid\HVidSp2.dll
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Opera\Opera.exe
Sun Aug 27 21:21:45 2006 => Scanning File C:\PROGRA~1\Opera\Opera.dll
Sun Aug 27 21:21:49 2006 => Scanning File C:\WINDOWS\System32\imm32.dll
Sun Aug 27 21:21:49 2006 => Scanning File C:\PROGRA~1\Opera\VXMPLU~1.DLL
Sun Aug 27 21:21:49 2006 => Scanning File C:\PROGRA~1\Opera\vxm.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Opera\xmlparse.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Opera\VXMSER~1.DLL
Sun Aug 27 21:21:50 2006 => Scanning File C:\WINDOWS\System32\usp10.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Opera\ecictts.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Opera\ecienus.syn
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\client\jvm.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\hpi.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\verify.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\java.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\zip.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\awt.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\WINDOWS\System32\ddraw.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\WINDOWS\System32\DCIMAN32.dll
Sun Aug 27 21:21:50 2006 => Scanning File C:\WINDOWS\System32\D3DIM700.DLL
Sun Aug 27 21:21:51 2006 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\FONTMA~1.DLL
Sun Aug 27 21:21:51 2006 => Scanning File C:\WINDOWS\System32\RICHED20.DLL
Sun Aug 27 21:21:51 2006 => Scanning File C:\PROGRA~1\Opera\Program\Plugins\NPSWF32.dll
Sun Aug 27 21:21:51 2006 => Scanning File c:\PROGRA~1\HIJACK~1\HIJACK~1.EXE
Sun Aug 27 21:21:52 2006 => Scanning File C:\WINDOWS\System32\MSVBVM60.DLL
Sun Aug 27 21:21:52 2006 => Scanning File C:\WINDOWS\System32\asycfilt.dll
Sun Aug 27 21:21:52 2006 => Scanning File C:\TOTALC~1\TOTALCMD.EXE
Sun Aug 27 21:21:53 2006 => Scanning File C:\PROGRA~1\MICROS~2\OFFICE11\msohev.dll
Sun Aug 27 21:21:53 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\mexe.com
Sun Aug 27 21:21:54 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msvlclnt.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavssdi.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavssd.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavssi.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ipc.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\WINDOWS\System32\RICHED32.DLL
Sun Aug 27 21:21:54 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\PSAPI.DLL
Sun Aug 27 21:21:54 2006 => Scanning File C:\WINDOWS\System32\VDMDBG.DLL
Sun Aug 27 21:21:54 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavss.exe
Sun Aug 27 21:21:54 2006 => Scanning File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\kavss.dll

Sun Aug 27 21:21:54 2006 => ***** Scanning Registry Files *****

Sun Aug 27 21:21:54 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Sun Aug 27 21:21:54 2006 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\WINDOWS\System32\stobject.dll
Sun Aug 27 21:21:54 2006 => Scanning File C:\WINDOWS\System32\upnpui.dll

Sun Aug 27 21:21:54 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad

Sun Aug 27 21:21:54 2006 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension

Sun Aug 27 21:21:54 2006 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
Sun Aug 27 21:21:54 2006 => Scanning File C:\WINDOWS\System32\msdxm.ocx
Sun Aug 27 21:21:55 2006 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Acrobat\ACROIE~1.DLL

Sun Aug 27 21:21:55 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Sun Aug 27 21:21:55 2006 => {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} = C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Acrobat\ActiveX\ACROIE~1.DLL
Sun Aug 27 21:21:55 2006 => {53707962-6F74-2D53-2644-206D7942484F} = C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Sun Aug 27 21:21:55 2006 => {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} = C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\ssv.dll
Sun Aug 27 21:21:55 2006 => {AE7CD045-E861-484f-8273-0445EE161910} = C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Acrobat\ACROIE~1.DLL

Sun Aug 27 21:21:55 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\System32\browseui.dll

Sun Aug 27 21:21:55 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\mmsys.cpl
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\icmui.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\rshx32.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\docprop.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\System32\themeui.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\deskadp.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\deskmon.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\dssec.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\SlayerXP.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\shscrap.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\ntlanui2.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\System32\icmui.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\icmui.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\printui.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Sun Aug 27 21:21:55 2006 => Scanning File C:\WINDOWS\system32\syncui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\hticons.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\fontext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\icmui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\rshx32.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\deskperf.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\cryptext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\cryptext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\remotepg.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\wuaucpl.cpl
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\wshext.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\PROGRA~1\COMMON~1\System\OLEDB~1\oledb32.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\mstask.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\mstask.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\mstask.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\browseui.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\sendmail.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\sendmail.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\occache.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sun Aug 27 21:21:56 2006 => Scanning File C:\WINDOWS\System32\msieftp.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\cscui.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\cscui.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\cscui.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\msagent\agentpsh.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\dfsshlex.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\photowiz.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\mmcshext.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\system32\cabview.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\OUTLOO~1\wabfind.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\Audiodev.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\Audiodev.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\upnpui.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\Logitech\Video\Namespc2.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\WinRar\rarext.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\MICROS~2\OFFICE11\MLSHEXT.DLL
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\MICROS~2\OFFICE11\OLKFSTUB.DLL
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\MICROS~2\OFFICE11\msohev.dll
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\ACROBA~1\CONTEX~1.DLL
Sun Aug 27 21:21:57 2006 => Scanning File C:\PROGRA~1\Eset\nodshex.dll

Sun Aug 27 21:21:57 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Sun Aug 27 21:21:57 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\Explorer.exe
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\system32\userinit.exe
Sun Aug 27 21:21:57 2006 => Scanning File C:\WINDOWS\system32\fdeploy.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\dskquota.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\gptext.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\gptext.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\scecli.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\scecli.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\appmgmts.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\gptext.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\crypt32.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\cscdll.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\igfxsrvc.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\sclgntfy.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\wlnotify.dll

Sun Aug 27 21:21:58 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Sun Aug 27 21:21:58 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System

Sun Aug 27 21:21:58 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Sun Aug 27 21:21:58 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AEDEBUG
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\drwtsn32.exe

Sun Aug 27 21:21:58 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\ntsd.exe

Sun Aug 27 21:21:58 2006 => Scanning HKCU\Control Panel\Desktop
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\System32\logon.scr

Sun Aug 27 21:21:58 2006 => Scanning HKLM\SYSTEM\CurrentControlSet\Control\WOW
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\ntvdm.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\ntvdm.exe

Sun Aug 27 21:21:58 2006 => Scanning HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\inf\unregmp2.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\RunDLL32.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\System32\ie4uinit.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\System32\updcrl.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\system32\rundll32.exe

Sun Aug 27 21:21:58 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

Sun Aug 27 21:21:58 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

Sun Aug 27 21:21:58 2006 => Scanning HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Run

Sun Aug 27 21:21:58 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Run

Sun Aug 27 21:21:58 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sun Aug 27 21:21:58 2006 => Scanning File C:\PROGRA~1\ANALOG~1\SoundMAX\Smtray.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\PROGRA~1\ANALOG~1\SoundMAX\DrvLsnr.exe
Sun Aug 27 21:21:58 2006 => Scanning File C:\WINDOWS\System32\igfxtray.exe
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\hkcmd.exe
Sun Aug 27 21:21:59 2006 => Scanning File C:\PROGRA~1\REGSHAVE\REGSHAVE.EXE
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\LVCOMSX.EXE
Sun Aug 27 21:21:59 2006 => Scanning File C:\PROGRA~1\Logitech\Video\ISStart.exe
Sun Aug 27 21:21:59 2006 => Scanning File C:\PROGRA~1\Logitech\Video\LogiTray.exe
Sun Aug 27 21:21:59 2006 => Scanning File C:\PROGRA~1\Eset\nod32kui.exe

Sun Aug 27 21:21:59 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sun Aug 27 21:21:59 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Sun Aug 27 21:21:59 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Sun Aug 27 21:21:59 2006 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce

Sun Aug 27 21:21:59 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sun Aug 27 21:21:59 2006 => Scanning File C:\PROGRA~1\MICROS~4\WCESCOMM.EXE

Sun Aug 27 21:21:59 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sun Aug 27 21:21:59 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Sun Aug 27 21:21:59 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Sun Aug 27 21:21:59 2006 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\Setup

Sun Aug 27 21:21:59 2006 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\CTFMON.EXE

Sun Aug 27 21:21:59 2006 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Sun Aug 27 21:21:59 2006 => Scanning HKCR\txtfile\shell\open\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\comfile\shell\open\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\exefile\shell\open\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\dllfile\shell\open\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\batfile\shell\open\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\piffile\shell\open\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\scrfile\shell\open\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\scrfile\shell\config\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\regfile\shell\open\command

Sun Aug 27 21:21:59 2006 => Scanning HKCR\htmlfile\shell\open\command
Sun Aug 27 21:21:59 2006 => Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe

Sun Aug 27 21:21:59 2006 => Scanning HKCR\htafile\shell\open\command
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\mshta.exe

Sun Aug 27 21:21:59 2006 => Scanning HKCR\jsfile\shell\open\command
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\WScript.exe

Sun Aug 27 21:21:59 2006 => Scanning HKCR\jsefile\shell\open\command
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\WScript.exe

Sun Aug 27 21:21:59 2006 => Scanning HKCR\vbsfile\shell\open\command
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\WScript.exe

Sun Aug 27 21:21:59 2006 => Scanning HKCR\vbefile\shell\open\command
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\WScript.exe

Sun Aug 27 21:21:59 2006 => Scanning HKCR\wshfile\shell\open\command
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\WScript.exe

Sun Aug 27 21:21:59 2006 => Scanning HKCR\wsffile\shell\open\command
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\WScript.exe

Sun Aug 27 21:21:59 2006 => ***** Scanning StartUp Folders *****

Sun Aug 27 21:21:59 2006 => ***** Scanning C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění Folder *****
Sun Aug 27 21:21:59 2006 => Scanning Folder: C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění\*.*
Sun Aug 27 21:21:59 2006 => Scanning File C:\Documents and Settings\Administrator\Nabídka Start\Programy\Po spuštění\desktop.ini

Sun Aug 27 21:21:59 2006 => ***** Scanning C:\Documents and Settings\Administrator\Plocha Folder *****
Sun Aug 27 21:21:59 2006 => Scanning Folder: C:\Documents and Settings\Administrator\Plocha\*.*

Sun Aug 27 21:21:59 2006 => ***** Scanning C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění Folder *****
Sun Aug 27 21:21:59 2006 => Scanning Folder: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\*.*
Sun Aug 27 21:21:59 2006 => Scanning File C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\desktop.ini
Sun Aug 27 21:21:59 2006 => Scanning File C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acrobat Assistant.lnk

Sun Aug 27 21:21:59 2006 => ***** Scanning Service Files *****
Sun Aug 27 21:21:59 2006 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ACPI.sys
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\drivers\aeaudio.sys
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\drivers\aec.sys
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\drivers\afd.sys
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\alg.exe
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\AMON.SYS
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 27 21:21:59 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\asyncmac.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\atapi.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\atmarpc.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\audstub.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\CCDECODE.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\cdrom.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\cisvc.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\dllhost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\disk.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\drivers\dmboot.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\drivers\dmio.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\drivers\dmload.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\drivers\DMusic.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\drivers\drmkaud.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\e100b325.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\eaps2kbd.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\system32\services.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\fdc.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\Drivers\V4CB0131.SYS
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\flpydisk.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ftdisk.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\system32\drivers\fwdrv.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\msgpc.sys
Sun Aug 27 21:22:00 2006 => ERROR!!! Invalid Entry System32\DRIVERS\gtusbmdm_gpc6400.sys in SYSTEM\CurrentControlSet\Services\gtcdcmdm...
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\hidusb.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\i8042prt.sys
Sun Aug 27 21:22:00 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ialmnt5.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\imapi.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\imapi.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ipinip.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ipnat.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ipsec.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\irenum.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\isapnp.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\kbdclass.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\kbdhid.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\system32\drivers\khips.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\drivers\kmixer.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4ss.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\tcpsvcs.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\VS7Debug\mdm.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\mnmsrvc.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\mouclass.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\mrxdav.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\mrxsmb.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\msdtc.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\msiexec.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\drivers\MSKSSRV.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\drivers\MSPCLOCK.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\drivers\MSPQM.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\drivers\MSTEE.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\NdisIP.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ndistapi.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ndisuio.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\ndiswan.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\netbios.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\netbt.sys
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\system32\netdde.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\system32\netdde.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\lsass.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\NMSCFG.SYS
Sun Aug 27 21:22:01 2006 => Scanning File C:\WINDOWS\System32\NMSSvc.exe
Sun Aug 27 21:22:02 2006 => Scanning File C:\PROGRA~1\Eset\nod32krn.exe
Sun Aug 27 21:22:02 2006 => Scanning File C:\WINDOWS\System32\lsass.exe
Sun Aug 27 21:22:02 2006 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Aug 27 21:22:02 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys
Sun Aug 27 21:22:02 2006 => Scanning File C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys
Sun Aug 27 21:22:02 2006 => Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\SOURCE

Uživatelský avatar
mikel
Level 5
Level 5
Příspěvky: 2298
Registrován: květen 05
Bydliště: Karviná
Pohlaví: Muž
Stav:
Offline

Příspěvekod mikel » 27 srp 2006 21:52

Přečti si celý návod na MWAV, na který jsem ti dal odkaz! Nedávej sem celý log (ani není celý), ale jen položky s nějakou identifikovanou nákazou a závěrečnou tabulkou.
Znáte pravidla?
Tipy a triky ve Windows XP
Návody: HijackThis, MWAV, CCleaner (THX to mijaja)
Problémy, které chcete vyřešit pište sem do fóra. Neposílejte je emailem ani po ICQ!

Olmer
nováček
Příspěvky: 6
Registrován: srpen 06
Pohlaví: Nespecifikováno
Stav:
Offline

Příspěvekod Olmer » 27 srp 2006 23:11

Ok, snad je to dobře
Člověk se často nepotkává s ochotou pomoct. DÍK !


Sun Aug 27 21:22:08 2006 => Offending Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\rvp !!!
Sun Aug 27 21:22:23 2006 => Object "broadcastpc Spyware/Adware" found in File System! Action Taken: No Action Taken.

Sun Aug 27 21:22:24 2006 => Offending Key found: HKCU\software\microsoft\windows\currentversion\explorer\menuorder\start menu\programs\grokster !!!
Sun Aug 27 21:22:24 2006 => Object "grokster Spyware/Adware" found in File System! Action Taken: No Action Taken.

Sun Aug 27 21:22:24 2006 => Offending Key found: HKCU\software\microsoft\windows\currentversion\explorer\menuorder\start menu\programs\purityscan !!!
Sun Aug 27 21:22:24 2006 => Object "purityscan Spyware/Adware" found in File System! Action Taken: No Action Taken.

Sun Aug 27 21:22:24 2006 => Offending Key found: HKCU\software\microsoft\windows\currentversion\explorer\menuorder\start menu2\programs\grokster !!!
Sun Aug 27 21:22:24 2006 => Object "grokster Spyware/Adware" found in File System! Action Taken: No Action Taken.

Sun Aug 27 21:22:24 2006 => Offending Key found: HKCU\software\microsoft\windows\currentversion\explorer\menuorder\start menu2\programs\purityscan !!!
Sun Aug 27 21:22:24 2006 => Object "purityscan Spyware/Adware" found in File System! Action Taken: No Action Taken.

Sun Aug 27 21:22:26 2006 => Offending file found: C:\WINDOWS\System32\unace.dll
Sun Aug 27 21:22:26 2006 => System found infected with zipitpro Spyware/Adware (unace.dll)! Action taken: No Action Taken.

Sun Aug 27 21:22:26 2006 => Offending Folder found: C:\Program Files\myway
Sun Aug 27 21:22:26 2006 => Object "my way speedbar Spyware/Adware" found in File System! Action Taken: No Action Taken.

Sun Aug 27 21:22:26 2006 => Offending Folder found: C:\Program Files\flt
Sun Aug 27 21:22:26 2006 => Object "flashtrack Spyware/Adware" found in File System! Action Taken: No Action Taken.

Sun Aug 27 21:22:36 2006 => Entry "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" refers to invalid object "Antispyware Soldier_is1". Action Taken: No Action Taken.

Sun Aug 27 21:23:31 2006 => File C:\WINDOWS\System32\gcfvtflk.exe infected by "Trojan-Downloader.Win32.VB.ajp" Virus! Action Taken: No Action Taken.

Sun Aug 27 22:52:02 2006 => File C:\WINDOWS\System32\gcfvtflk.exe infected by "Trojan-Downloader.Win32.VB.ajp" Virus! Action Taken: No Action Taken.


Sun Aug 27 22:52:23 2006 => ***** Scanning complete. *****

Sun Aug 27 22:52:23 2006 => Total Objects Scanned: 20099
Sun Aug 27 22:52:23 2006 => Total Critical Objects: 9
Sun Aug 27 22:52:23 2006 => Total Disinfected Objects: 0
Sun Aug 27 22:52:23 2006 => Total Objects Renamed: 0
Sun Aug 27 22:52:23 2006 => Total Deleted Objects: 0
Sun Aug 27 22:52:23 2006 => Total Errors: 107
Sun Aug 27 22:52:23 2006 => Time Elapsed: 00:02:06
Sun Aug 27 22:52:23 2006 => Virus Database Date: 8/25/2006
Sun Aug 27 22:52:23 2006 => Virus Database Count: 218109

Sun Aug 27 22:52:23 2006 => Scan Completed.

sakiri
Level 3.5
Level 3.5
Příspěvky: 747
Registrován: červen 06
Pohlaví: Nespecifikováno
Stav:
Offline

Příspěvekod sakiri » 28 srp 2006 10:33

mikel píše:EDIT: unace.dll není systémová knihovna, ale knihovna pro podporu extrakce formátu archivů ACE. Díval jsem se na stránky WinACE a distrubuce tohoto programu je včetně adwaru WhenU Save. Už z principu nic takového nebrat a navíc standardní WinRar si s extrahováním souborů ace poradí.


ok tak to co jsem sem dal mažu :idea:
a sorry
Naposledy upravil(a) sakiri dne 28 srp 2006 11:40, celkem upraveno 4 x.

Uživatelský avatar
mikel
Level 5
Level 5
Příspěvky: 2298
Registrován: květen 05
Bydliště: Karviná
Pohlaví: Muž
Stav:
Offline

Příspěvekod mikel » 28 srp 2006 10:41

Tak začneme tím lehčím. Najdi na disku a smaž tyto soubory:
C:\WINDOWS\System32\gcfvtflk.exe
C:\WINDOWS\System32\unace.dll

Pak musíš některé odinstalovat přes Přidat nebo odebrat programy. Napíšu ti 2 možné názvy, ale i tak se jejich jméno může trošku lišit, ale snad to najdeš:
myway nebo my way speedbar
flt nebo flashtrack

Po odinstalaci se podívej, jestli na disku nezbyly tyto adresáře a když tak je vymaž:
C:\Program Files\myway
C:\Program Files\flt

Zbytek je v registrech, takže si otevři Editor registrů přes Start/Spustit/regedit, najdi si následující klíče a smaž je pomocí klávesy Delete:
HOT_KEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\rvp
HOT_KEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\menuorder\start menu\programs\grokster
HOT_KEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\menuorder\start menu\programs\purityscan
HOT_KEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\menuorder\start menu2\programs\grokster
HOT_KEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\menuorder\start menu2\programs\purityscan


Až to všechno promažeš, udělej nový log MWAV stejným způsobem a dej ho sem pro kontrolu.

EDIT: unace.dll není systémová knihovna, ale knihovna pro podporu extrakce formátu archivů ACE. Díval jsem se na stránky WinACE a distrubuce tohoto programu je včetně adwaru WhenU Save. Už z principu nic takového nebrat a navíc standardní WinRar si s extrahováním souborů ace poradí.
Znáte pravidla?
Tipy a triky ve Windows XP
Návody: HijackThis, MWAV, CCleaner (THX to mijaja)
Problémy, které chcete vyřešit pište sem do fóra. Neposílejte je emailem ani po ICQ!

Olmer
nováček
Příspěvky: 6
Registrován: srpen 06
Pohlaví: Nespecifikováno
Stav:
Offline

Příspěvekod Olmer » 28 srp 2006 18:34

Řekl bych, že to je čistý.

Mon Aug 28 17:50:14 2006 => ***** Scanning complete. *****

Mon Aug 28 17:50:14 2006 => Total Objects Scanned: 20090
Mon Aug 28 17:50:14 2006 => Total Critical Objects: 0
Mon Aug 28 17:50:14 2006 => Total Disinfected Objects: 0
Mon Aug 28 17:50:14 2006 => Total Objects Renamed: 0
Mon Aug 28 17:50:14 2006 => Total Deleted Objects: 0
Mon Aug 28 17:50:14 2006 => Total Errors: 106
Mon Aug 28 17:50:14 2006 => Time Elapsed: 00:29:00
Mon Aug 28 17:50:14 2006 => Virus Database Date: 8/25/2006
Mon Aug 28 17:50:14 2006 => Virus Database Count: 218109

Mon Aug 28 17:50:14 2006 => Scan Completed.

Olmer
nováček
Příspěvky: 6
Registrován: srpen 06
Pohlaví: Nespecifikováno
Stav:
Offline

Příspěvekod Olmer » 28 srp 2006 18:49

Pro vás je to rutina. Než jsem našel vaše stránky, nevěděl jsem nic o existenci HJT, nikdy jsem nic neslyšel o logu. Jakmile jsem si to svinstvo natáhnul do PC, zazmatkoval jsem a začal horečně stahovat pomalu všechny programy, které se mi nabízely. Dost možná, že tím jsem to udělal ještě horší. Postupně jsem přicházel na to, jakou jsem udělal blbost a všechno jsem to zase odinstaloval. nechal jsem si pouze Spybot - S&D a Ad-Aware SE. Ty mi to léčily spolehlivě, avšak do doby než jsem spustil Explorer, ať už jako Inetový prohlížeč, nebo jako Průzkumníka, jakkoliv - pak jsem měl tu verbež zpátky.
Dík za váš PROFI přístup!
Olmer


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 7 hostů