Logfile of HijackThis v1.99.0
Scan saved at 15:17:50, on 30.01.05
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\PROGRAMME\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
C:\PROGRAMME\AGNITUM\OUTPOST FIREWALL\OUTPOST.EXE
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\RPCSS.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\DIT.EXE
C:\WINDOWS\LOADQM.EXE
C:\PROGRAMME\T-ONLINE\T-ONLINE_SOFTWARE_5\BASIS-SOFTWARE\BASIS1\TOADIMON.EXE
C:\PROGRAMME\ALWIL SOFTWARE\AVAST4\ASHMAISV.EXE
C:\PROGRAMME\ICQLITE\ICQLITE.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRAMME\T-ONLINE\T-ONLINE_SOFTWARE_5\BASIS-SOFTWARE\BASIS2\KERNEL.EXE
C:\PROGRAMME\T-ONLINE\T-ONLINE_SOFTWARE_5\BASIS-SOFTWARE\BASIS2\SC_WATCH.EXE
C:\WINDOWS\SYSTEM\RNAAPP.EXE
C:\WINDOWS\SYSTEM\TAPISRV.EXE
C:\WINDOWS\SYSTEM\PSTORES.EXE
C:\PROGRAMME\T-ONLINE\T-ONLINE_SOFTWARE_5\BASIS-SOFTWARE\BASIS2\PROFILEMGR.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\PROGRAMME\T-ONLINE\T-ONLINE_SOFTWARE_5\BROWSER\BROWSER.EXE
C:\PROGRAMME\WINZIP\WINZIP32.EXE
C:\WINDOWS\TEMP\HIJACKTHIS.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.popupsearches.com/sidesearch.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.t-online.de/service/redir/ie_t-online.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.t-online.de/service/redir/ie_t-online.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.popupsearches.com/sidesearch.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer bereitgestellt von T-Online International AG
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRAMME\ICQTOOLBAR\TOOLBAR.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAMME\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX
O2 - BHO: C:\WINDOWS\LBBHO.DLL - {E4579F20-448F-11D9-95F6-0050BFA67719} - C:\WINDOWS\LBBHO.DLL (file missing)
O2 - BHO: ohb - {4D568F0F-8AC9-40AB-88B7-415134C78777} - C:\WINDOWS\SYSTEM\WINB2S32.DLL (file missing)
O2 - BHO: ohb - {CB5B2BC6-F957-4D8A-BE67-83F3EC58BA01} - C:\WINDOWS\SYSTEM\DSKTRF.DLL (file missing)
O2 - BHO: RsyncHlpr Class - {16B238D5-80DE-47CE-8F17-B3ECE2C2248D} - C:\WINDOWS\SYSTEM\RSYNCMON.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHELPER.DLL
O2 - BHO: (no name) - {1D7E3B41-23CE-469B-BE1B-A64B877923E1} - C:\PROGRA~1\SEARCH~2\SEARCH~1.DLL
O3 - Toolbar: Begin2Search.com Bar - {52FE5233-367C-4EFB-BDD7-0BE4D212C107} - C:\WINDOWS\SYSTEM\WINB2S32.DLL (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRAMME\ICQTOOLBAR\TOOLBAR.DLL
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [mdac_runonce] C:\WINDOWS\SYSTEM\runonce.exe
O4 - HKLM\..\Run: [Dit] Dit.exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [ToADiMon.exe] C:\PROGRAMME\T-ONLINE\T-ONLINE_SOFTWARE_5\BASIS-SOFTWARE\BASIS1\ToADiMon.exe -TOnlineAutodialStart
O4 - HKLM\..\Run: [j2FTB1fkc] C:\LXEYOJA.EXE
O4 - HKLM\..\Run: [BullsEye Network] C:\Programme\BullsEye Network\bin\bargains.exe
O4 - HKLM\..\Run: [¢‰¸ï04Ã4}¤Áœ5]C:\Programme\ISTsvc\istsvc.exe] C:\LXEYOJA.EXE
O4 - HKLM\..\Run: [Windows ControlAd] C:\PROGRAM FILES\WINDOWS CONTROLAD\WINCTLAD.EXE
O4 - HKLM\..\Run: [eDonkey2000] C:\Programme\eDonkey2000\eDonkey2000.exe -t
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\AVAST4\ashmaisv.exe
O4 - HKLM\..\Run: [ICQ Lite] C:\Programme\ICQLite\ICQLite.exe -minimize
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\SYSTEM\mstask.exe
O4 - HKLM\..\RunServices: [avast!] C:\Programme\Alwil Software\Avast4\ashServ.exe
O4 - HKLM\..\RunServices: [Outpost Firewall] C:\PROGRAMME\AGNITUM\OUTPOST FIREWALL\outpost.exe /service
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programme\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] C:\PROGRAMME\YAHOO!\MESSENGER\ypager.exe -quiet
O4 - HKCU\..\Run: [Cacheman] C:\Programme\Cacheman\Cacheman.exe
O4 - HKCU\..\Run: [SFS6] "C:\PROGRAMME\STEGANOS SECURE FILESHARING 6\SFS.EXE" /booting
O4 - HKCU\..\Run: [Gembird PC Lock] C:\PROGRAMME\GEMBIRD\DATASUITE SOFTWARE\PC LOCK\PCLOCK.EXE
O4 - HKCU\..\Run: [a-squared] "C:\Programme\a2\a2guard.exe"
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\PROGRAMME\ICQLITE\ICQLITE.EXE -trayboot
O4 - Startup: Microsoft Office.lnk = C:\Programme\Microsoft Office\Office\OSA9.EXE
O4 - Startup: PopMenu exe.lnk = C:\Programme\WinBatch\System\POPMENU.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\PROGRAMME\ICQTOOLBAR\TOOLBAR.DLL/SEARCH.HTML
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\SYSTEM\MSJAVA.DLL
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\SYSTEM\MSJAVA.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRAMME\YAHOO!\MESSENGER\YPAGER.EXE
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRAMME\YAHOO!\MESSENGER\YPAGER.EXE
O9 - Extra button: Trashcan - {072F3B8A-2DA2-40e2-B841-88899F240200} - C:\PROGRA~1\AGNITUM\OUTPOS~1\TRASH.EXE (HKCU)
O9 - Extra 'Tools' menuitem: Show Trashcan - {072F3B8A-2DA2-40e2-B841-88899F240200} - C:\PROGRA~1\AGNITUM\OUTPOS~1\TRASH.EXE (HKCU)
O12 - Plugin for .UVR: C:\Programme\Internet Explorer\Plugins\NPUPano.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.t-online.de/service/redir/ie_t-online.htm
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/Downl ... dge-c9.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex ... 0-3-17.cab
O16 - DPF: {FB48C7B0-EB66-4BE6-A1C5-9DDF3C37249A} (MCSendMessageHandler Class) - http://xtraz.icq.com/xtraz/activex/MISBH.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab
O16 - DPF: {59136DB4-6CA3-4B40-8F2F-BBF84B6F1E91} (Attachment Upload Control) - https://img.web.de/v/mail/activex/mail_upload_1123.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/fu ... .0.8-2.cab
O16 - DPF: {F0BC061F-DAF9-4533-8011-53BCB4C10307} (Installations Assistent) - http://install.download-url.de/Installa ... istent.ocx
O16 - DPF: {00000EF1-0786-4633-87C6-1AA7A44296DA} - http://www.addictivetechnologies.net/DM ... rafrrl.cab

hallo@jessinessi

Das war aber nicht die feine englische Art, einfach in einen bestehenden Thread das Log reinzuposten, zumal ohne jedweilige Erklaerung......

#öffne das HijackThis-->> Button "scan" -->> Häkchen setzen -->> Button "Fix checked" -->> PC neustarten

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.popupsearches.com/sidesearch.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.popupsearches.com/sidesearch.html
O2 - BHO: C:\WINDOWS\LBBHO.DLL - {E4579F20-448F-11D9-95F6-0050BFA67719} - C:\WINDOWS\LBBHO.DLL (file missing)
O2 - BHO: ohb - {4D568F0F-8AC9-40AB-88B7-415134C78777} - C:\WINDOWS\SYSTEM\WINB2S32.DLL (file missing)
O2 - BHO: ohb - {CB5B2BC6-F957-4D8A-BE67-83F3EC58BA01} - C:\WINDOWS\SYSTEM\DSKTRF.DLL (file missing)
O2 - BHO: RsyncHlpr Class - {16B238D5-80DE-47CE-8F17-B3ECE2C2248D} - C:\WINDOWS\SYSTEM\RSYNCMON.DLL
O2 - BHO: (no name) - {1D7E3B41-23CE-469B-BE1B-A64B877923E1} - C:\PROGRA~1\SEARCH~2\SEARCH~1.DLL
O3 - Toolbar: Begin2Search.com Bar - {52FE5233-367C-4EFB-BDD7-0BE4D212C107} - C:\WINDOWS\SYSTEM\WINB2S32.DLL (file missing)

O4 - HKLM\..\Run: [j2FTB1fkc] C:\LXEYOJA.EXE
O4 - HKLM\..\Run: [BullsEye Network] C:\Programme\BullsEye Network\bin\bargains.exe
O4 - HKLM\..\Run: [¢‰¸ï04Ã4}¤Áœ5]C:\Programme\ISTsvc\istsvc.exe] C:\LXEYOJA.EXE
O4 - HKLM\..\Run: [Windows ControlAd] C:\PROGRAM FILES\WINDOWS CONTROLAD\WINCTLAD.EXE
O4 - HKCU\..\Run: [Gembird PC Lock] C:\PROGRAMME\GEMBIRD\DATASUITE SOFTWARE\PC LOCK\PCLOCK.EXE
O4 - Startup: PopMenu exe.lnk = C:\Programme\WinBatch\System\POPMENU.EXE
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/Downl ... dge-c9.cab
O16 - DPF: {59136DB4-6CA3-4B40-8F2F-BBF84B6F1E91} (Attachment Upload Control) - https://img.web.de/v/mail/activex/mail_upload_1123.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/fu ... FWBInitial Setup1.0.0.8-2.cab
O16 - DPF: {F0BC061F-DAF9-4533-8011-53BCB4C10307} (Installations Assistent) - http://install.download-url.de/Installa ... istent.ocx
O16 - DPF: {00000EF1-0786-4633-87C6-1AA7A44296DA} - http://www.addictivetechnologies.net/DM ... rafrrl.cab

PC neustarten

Loeschen temporaere Dateien --> loesche die Dateien in den Ordnern, nicht die ordner selbst
C:\WINDOWS\Temp\
C:\Temp\
C:\Dokumente und Einstellungen\username\Lokale Einstellungen\Temp\
C:\Dokumente und Einstellungen\user\Lokale Einstellungen\Temporary Internet Files\Content.IE5 \<--loesche alle Dateien, die du findest, nur nicht eine index.dat)

C:\Windows\Downloaded Programm Files\ -->löschen (Alle)

#Gehe auf diese Seite: http://www.lavasofthelp.com/submit/
kopiere folgendes Submit)
Copy and paste the full filepaths below and hit "submit", one at a time:

reinkopieren:

C:\WINDOWS\LBBHO.DLL
C:\WINDOWS\SYSTEM\WINB2S32.DLL
C:\WINDOWS\SYSTEM\DSKTRF.DLL
C:\PROGRA~1\SEARCH~2\SEARCH~1.DLL
C:\Programme\ISTsvc\istsvc.exe
C:\LXEYOJA.EXE
C:\PROGRAM FILES\WINDOWS CONTROLAD\WINCTLAD.EXE
C:\Programme\BullsEye Network\bin\bargains.exe

KillBox
http://www.bleepingcomputer.com/files/killbox.php
<Delete File on Reboot
und klick auf das rote Kreuz,
wenn gefragt wird, ob "Do you want to reboot? "----> klicke auf "no",und kopiere das naechste rein, erst beim letzten auf "yes"

kopiere rein:

C:\LXEYOJA.EXE
C:\WINDOWS\LBBHO.DLL
C:\WINDOWS\SYSTEM\WINB2S32.DLL
C:\WINDOWS\SYSTEM\DSKTRF.DLL
C:\WINDOWS\SYSTEM\DSKTRF.DLL
C:\PROGRA~1\SEARCH~2\SEARCH~1.DLL
C:\Programme\ISTsvc\istsvc.exe
C:\LXEYOJA.EXE
C:\PROGRAM FILES\WINDOWS CONTROLAD\WINCTLAD.EXE
C:\Programme\BullsEye Network\bin\bargains.exe

PC neustarten

#RegCleaner
(Tip: Lade RegCleaner, stelle das Tool in Deutsch ein und saeubere ueber <Tools<Registry saeubern<alles durchfuehren < den PC (du kannst alles angezeigte Loeschen, denn es verbleibt eine Sicherung)
http://www.chip.de/downloads/c_downloads_8830516.html

#ClaerProg..lade die neuste Version <1.4.0 Final
http://www.clearprog.de/downloads.php
<und saeubere den Browser.
Das Programm löscht die Surfspuren des Internet Explorers ab Version 5.0, des Netscape/Mozilla und des Opera:
- Cookies
- Verlauf
- Temporäre Internetfiles (Cache)
- die eingetragenen URLs

Download AdAware SE and install.
http://www.lavasoft.de/support/download/
Laden-->updaten--Scannen-->PC neustarten--> noch mal scannen --> poste mir das Log vom Scann

#neue Startseite
gehe zur Systemsteuerung --> Internetoptionen --> auf dem Reiter Allgemein bei Temporäre Internetdateien klickst du Dateien löschen --> auch bei Alle Offlineinhalte löschen das Häkchen setzen und mit OK bestätigen --> Auf den Reiter Programme gehen und dort auf Webeinstellungen zurücksetzen klicken, mit Ja bestätigen, fall Nachfrage kommt --> auf Übernehmen und abschließend auf OK klicken und stelle eine neue Startseite ein

+ poste das neue Log vom HijackThis

whoa war mein pc mit win 98 se verseucht
meine güte aba mit xp hab ich anscheind auch
keine guten erfahrungen da ich spyware drauf habe
und diese kommt immer wieder ach ja und mein
viren scan zeigt mir nun schon über 1000 sachen an
aber ich kann sie mit antivir nicht löschen !!!

ich verstehe nicht, was du da geschrieben hast...

Hast du alles abgearbeitet, was ich oben geschrieben habe ?

•eScan-Erkennungstool
eSan ist hier unter dem Namen Free eScan Antivirus Toolkit Utility kostenlos erhältlich:
http://www.mwti.net/antivirus/free_utilities.asp
oeffne den Scanner--> noch nicht scannen--> gehe in Start<Ausfuehren< schreib rein: %temp% und suche
kavupd.exe, die klickst du an--> (Update- in DOS) ausführen

-->mwav.exe oeffnen-->alle Haekchen setzen-->scannen-->View Log anklicken--> Bearbeiten anklicken--> "infected" reinschreiben
und nun alles rauskopieren, was angezeigt wird-->


Dann poste das neue Log vom HijackTHis

hier das log vom escan aba ich habe ein error drauf ...keine viren irgendwie aba mein antivir meldet das und ich habe spyware drauf die nach formatierung auch immer wieder kommt woran kann das bloss liegen
Thu Mar 10 10:58:07 2005 => **********************************************************
Thu Mar 10 10:58:07 2005 => MicroWorld AntiVirus Toolkit Utility.
Thu Mar 10 10:58:07 2005 => Copyright © 2003-2005, MicroWorld Technologies Inc.
Thu Mar 10 10:58:07 2005 => **********************************************************
Thu Mar 10 10:58:07 2005 => Version 5.1.1 (C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\mwavscan.com)
Thu Mar 10 10:58:07 2005 => Log File: C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\MWAV.LOG
Thu Mar 10 10:58:08 2005 => Latest Date of files inside MWAV: 07 Mar 2005 13:07:13.
Thu Mar 10 10:58:41 2005 => AV Library Loaded...
Thu Mar 10 10:58:44 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavss.exe
Thu Mar 10 10:58:46 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\Getvlist.exe
Thu Mar 10 10:58:48 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavss.dll
Thu Mar 10 10:58:52 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavssdi.dll
Thu Mar 10 10:58:53 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavssi.dll
Thu Mar 10 10:58:53 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavvlg.dll
Thu Mar 10 10:58:54 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\msvlclnt.dll
Thu Mar 10 10:58:55 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\ipc.dll
Thu Mar 10 10:58:55 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\main.avi
Thu Mar 10 10:58:57 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\virus.avi
Thu Mar 10 10:59:03 2005 => Virus Database Date: 2005/03/07
Thu Mar 10 10:59:03 2005 => Virus Database Count: 120659

Thu Mar 10 10:59:39 2005 => **********************************************************
Thu Mar 10 10:59:39 2005 => MicroWorld AntiVirus Toolkit Utility.
Thu Mar 10 10:59:39 2005 => Copyright © 2003-2005, MicroWorld Technologies Inc.
Thu Mar 10 10:59:39 2005 =>
Thu Mar 10 10:59:39 2005 => Support: support@mwti.net
Thu Mar 10 10:59:39 2005 => Web: http://www.mwti.net
Thu Mar 10 10:59:39 2005 => **********************************************************
Thu Mar 10 10:59:39 2005 => Version 5.1.1 (C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\mwavscan.com)
Thu Mar 10 10:59:39 2005 => Log File: C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\MWAV.LOG
Thu Mar 10 10:59:40 2005 => User Account: jessica willrich
Thu Mar 10 10:59:40 2005 => Windows Root Folder: C:\WINDOWS
Thu Mar 10 10:59:40 2005 => Windows Sys32 Folder: C:\WINDOWS\System32
Thu Mar 10 10:59:40 2005 => OS: Windows NT
Thu Mar 10 10:59:41 2005 => Latest Date of files inside MWAV: 07 Mar 2005 13:07:13.

Thu Mar 10 10:59:41 2005 => Options Selected by User:
Thu Mar 10 10:59:41 2005 => Memory Check: Enabled
Thu Mar 10 10:59:41 2005 => Registry Check: Enabled
Thu Mar 10 10:59:41 2005 => StartUp Folder Check: Enabled
Thu Mar 10 10:59:41 2005 => System Folder Check: Enabled
Thu Mar 10 10:59:41 2005 => System Area Check: Disabled
Thu Mar 10 10:59:41 2005 => Services Check: Enabled
Thu Mar 10 10:59:41 2005 => Drive Check Option Disabled
Thu Mar 10 10:59:41 2005 => Folder Check: Disabled

Thu Mar 10 10:59:43 2005 => ***** Scanning Memory Files *****
Thu Mar 10 10:59:43 2005 => Scanning File C:\WINDOWS\System32\smss.exe
Thu Mar 10 10:59:48 2005 => Scanning File C:\WINDOWS\System32\ntdll.dll
Thu Mar 10 10:59:48 2005 => Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
Thu Mar 10 10:59:48 2005 => Scanning File C:\WINDOWS\system32\CSRSRV.dll
Thu Mar 10 10:59:48 2005 => Scanning File C:\WINDOWS\system32\basesrv.dll
Thu Mar 10 10:59:49 2005 => Scanning File C:\WINDOWS\system32\winsrv.dll
Thu Mar 10 10:59:49 2005 => Scanning File C:\WINDOWS\system32\USER32.dll
Thu Mar 10 10:59:49 2005 => Scanning File C:\WINDOWS\system32\KERNEL32.dll
Thu Mar 10 10:59:50 2005 => Scanning File C:\WINDOWS\system32\GDI32.dll
Thu Mar 10 10:59:50 2005 => Scanning File C:\WINDOWS\system32\ADVAPI32.dll
Thu Mar 10 10:59:51 2005 => Scanning File C:\WINDOWS\system32\RPCRT4.dll
Thu Mar 10 10:59:51 2005 => Scanning File C:\WINDOWS\System32\sxs.dll
Thu Mar 10 10:59:51 2005 => Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
Thu Mar 10 10:59:51 2005 => Scanning File C:\WINDOWS\system32\AUTHZ.dll
Thu Mar 10 10:59:52 2005 => Scanning File C:\WINDOWS\system32\msvcrt.dll
Thu Mar 10 10:59:52 2005 => Scanning File C:\WINDOWS\system32\CRYPT32.dll
Thu Mar 10 10:59:52 2005 => Scanning File C:\WINDOWS\system32\MSASN1.dll
Thu Mar 10 10:59:53 2005 => Scanning File C:\WINDOWS\system32\NDdeApi.dll
Thu Mar 10 10:59:53 2005 => Scanning File C:\WINDOWS\system32\PROFMAP.dll
Thu Mar 10 10:59:53 2005 => Scanning File C:\WINDOWS\system32\NETAPI32.dll
Thu Mar 10 10:59:53 2005 => Scanning File C:\WINDOWS\system32\USERENV.dll
Thu Mar 10 10:59:53 2005 => Scanning File C:\WINDOWS\system32\PSAPI.DLL
Thu Mar 10 10:59:53 2005 => Scanning File C:\WINDOWS\system32\REGAPI.dll
Thu Mar 10 10:59:53 2005 => Scanning File C:\WINDOWS\system32\Secur32.dll
Thu Mar 10 10:59:53 2005 => Scanning File C:\WINDOWS\system32\SETUPAPI.dll
Thu Mar 10 10:59:54 2005 => Scanning File C:\WINDOWS\system32\VERSION.dll
Thu Mar 10 10:59:54 2005 => Scanning File C:\WINDOWS\system32\WINSTA.dll
Thu Mar 10 10:59:54 2005 => Scanning File C:\WINDOWS\system32\WS2_32.dll
Thu Mar 10 10:59:54 2005 => Scanning File C:\WINDOWS\system32\WS2HELP.dll
Thu Mar 10 10:59:54 2005 => Scanning File C:\WINDOWS\system32\MSGINA.dll
Thu Mar 10 10:59:56 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Thu Mar 10 11:00:00 2005 => Scanning File C:\WINDOWS\system32\SHLWAPI.dll
Thu Mar 10 11:00:01 2005 => Scanning File C:\WINDOWS\system32\COMCTL32.dll
Thu Mar 10 11:00:01 2005 => Scanning File C:\WINDOWS\system32\ODBC32.dll
Thu Mar 10 11:00:01 2005 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Thu Mar 10 11:00:02 2005 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
Thu Mar 10 11:00:04 2005 => Scanning File C:\WINDOWS\system32\odbcint.dll
Thu Mar 10 11:00:04 2005 => Scanning File C:\WINDOWS\system32\SHSVCS.dll
Thu Mar 10 11:00:04 2005 => Scanning File C:\WINDOWS\system32\sfc.dll
Thu Mar 10 11:00:04 2005 => Scanning File C:\WINDOWS\system32\sfc_os.dll
Thu Mar 10 11:00:05 2005 => Scanning File C:\WINDOWS\system32\WINTRUST.dll
Thu Mar 10 11:00:05 2005 => Scanning File C:\WINDOWS\system32\ole32.dll
Thu Mar 10 11:00:05 2005 => Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
Thu Mar 10 11:00:06 2005 => Scanning File C:\WINDOWS\system32\WINSCARD.DLL
Thu Mar 10 11:00:06 2005 => Scanning File C:\WINDOWS\system32\WTSAPI32.dll
Thu Mar 10 11:00:06 2005 => Scanning File C:\WINDOWS\system32\uxtheme.dll
Thu Mar 10 11:00:06 2005 => Scanning File C:\WINDOWS\system32\WINMM.dll
Thu Mar 10 11:00:06 2005 => Scanning File C:\WINDOWS\system32\cscdll.dll
Thu Mar 10 11:00:06 2005 => Scanning File C:\WINDOWS\System32\rsaenh.dll
Thu Mar 10 11:00:07 2005 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Thu Mar 10 11:00:07 2005 => Scanning File C:\WINDOWS\system32\WINSPOOL.DRV
Thu Mar 10 11:00:07 2005 => Scanning File C:\WINDOWS\system32\MPR.dll
Thu Mar 10 11:00:07 2005 => Scanning File C:\WINDOWS\system32\SAMLIB.dll
Thu Mar 10 11:00:07 2005 => Scanning File C:\WINDOWS\system32\wldap32.dll
Thu Mar 10 11:00:07 2005 => Scanning File C:\WINDOWS\system32\cscui.dll
Thu Mar 10 11:00:08 2005 => Scanning File C:\WINDOWS\system32\COMRes.dll
Thu Mar 10 11:00:08 2005 => Scanning File C:\WINDOWS\system32\OLEAUT32.dll
Thu Mar 10 11:00:08 2005 => Scanning File C:\WINDOWS\system32\CLBCATQ.DLL
Thu Mar 10 11:00:09 2005 => Scanning File C:\WINDOWS\system32\NTMARTA.DLL
Thu Mar 10 11:00:09 2005 => Scanning File C:\WINDOWS\System32\wdmaud.drv
Thu Mar 10 11:00:09 2005 => Scanning File C:\WINDOWS\System32\msacm32.drv
Thu Mar 10 11:00:09 2005 => Scanning File C:\WINDOWS\System32\MSACM32.dll
Thu Mar 10 11:00:09 2005 => Scanning File C:\WINDOWS\system32\midimap.dll
Thu Mar 10 11:00:09 2005 => Scanning File C:\WINDOWS\system32\services.exe
Thu Mar 10 11:00:09 2005 => Scanning File C:\WINDOWS\system32\SCESRV.dll
Thu Mar 10 11:00:10 2005 => Scanning File C:\WINDOWS\system32\umpnpmgr.dll
Thu Mar 10 11:00:10 2005 => Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
Thu Mar 10 11:00:10 2005 => Scanning File C:\WINDOWS\system32\eventlog.dll
Thu Mar 10 11:00:10 2005 => Scanning File C:\WINDOWS\system32\lsass.exe
Thu Mar 10 11:00:10 2005 => Scanning File C:\WINDOWS\system32\LSASRV.dll
Thu Mar 10 11:00:10 2005 => Scanning File C:\WINDOWS\system32\SAMSRV.dll
Thu Mar 10 11:00:11 2005 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Thu Mar 10 11:00:11 2005 => Scanning File C:\WINDOWS\system32\DNSAPI.dll
Thu Mar 10 11:00:11 2005 => Scanning File C:\WINDOWS\system32\NTDSAPI.dll
Thu Mar 10 11:00:11 2005 => Scanning File C:\WINDOWS\system32\msprivs.dll
Thu Mar 10 11:00:11 2005 => Scanning File C:\WINDOWS\system32\kerberos.dll
Thu Mar 10 11:00:11 2005 => Scanning File C:\WINDOWS\system32\msv1_0.dll
Thu Mar 10 11:00:12 2005 => Scanning File C:\WINDOWS\system32\netlogon.dll
Thu Mar 10 11:00:12 2005 => Scanning File C:\WINDOWS\system32\w32time.dll
Thu Mar 10 11:00:12 2005 => Scanning File C:\WINDOWS\system32\MSVCP60.dll
Thu Mar 10 11:00:12 2005 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Thu Mar 10 11:00:12 2005 => Scanning File C:\WINDOWS\system32\netman.dll
Thu Mar 10 11:00:13 2005 => Scanning File C:\WINDOWS\system32\MPRAPI.dll
Thu Mar 10 11:00:13 2005 => Scanning File C:\WINDOWS\system32\ACTIVEDS.dll
Thu Mar 10 11:00:13 2005 => Scanning File C:\WINDOWS\system32\adsldpc.dll
Thu Mar 10 11:00:13 2005 => Scanning File C:\WINDOWS\system32\ATL.DLL
Thu Mar 10 11:00:13 2005 => Scanning File C:\WINDOWS\system32\rtutils.dll
Thu Mar 10 11:00:13 2005 => Scanning File C:\WINDOWS\system32\RASAPI32.dll
Thu Mar 10 11:00:13 2005 => Scanning File C:\WINDOWS\system32\rasman.dll
Thu Mar 10 11:00:13 2005 => Scanning File C:\WINDOWS\system32\TAPI32.dll
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\WZCSvc.DLL
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\WMI.dll
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\DHCPCSVC.DLL
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\schannel.dll
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\wdigest.dll
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\pstorsvc.dll
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\psbase.dll
Thu Mar 10 11:00:14 2005 => Scanning File C:\WINDOWS\system32\mswsock.dll
Thu Mar 10 11:00:15 2005 => Scanning File C:\WINDOWS\System32\wshtcpip.dll
Thu Mar 10 11:00:15 2005 => Scanning File C:\WINDOWS\system32\msapsspc.dll
Thu Mar 10 11:00:15 2005 => Scanning File C:\WINDOWS\system32\MSVCRT40.dll
Thu Mar 10 11:00:15 2005 => Scanning File C:\WINDOWS\system32\MSVCIRT.dll
Thu Mar 10 11:00:15 2005 => Scanning File C:\WINDOWS\system32\digest.dll
Thu Mar 10 11:00:15 2005 => Scanning File C:\WINDOWS\system32\msnsspc.dll
Thu Mar 10 11:00:15 2005 => Scanning File C:\WINDOWS\System32\dssenh.dll
Thu Mar 10 11:00:16 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Thu Mar 10 11:00:16 2005 => Scanning File c:\windows\system32\rpcss.dll
Thu Mar 10 11:00:16 2005 => Scanning File C:\WINDOWS\System32\winrnr.dll
Thu Mar 10 11:00:16 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\AdHndCnt.dll
Thu Mar 10 11:00:16 2005 => Scanning File C:\WINDOWS\system32\Apphelp.dll
Thu Mar 10 11:00:16 2005 => Scanning File C:\WINDOWS\System32\rastls.dll
Thu Mar 10 11:00:17 2005 => Scanning File C:\WINDOWS\System32\raschap.dll
Thu Mar 10 11:00:17 2005 => Scanning File c:\windows\system32\schedsvc.dll
Thu Mar 10 11:00:17 2005 => Scanning File C:\WINDOWS\System32\MSIDLE.DLL
Thu Mar 10 11:00:17 2005 => Scanning File c:\windows\system32\audiosrv.dll
Thu Mar 10 11:00:17 2005 => Scanning File c:\windows\system32\cryptsvc.dll
Thu Mar 10 11:00:17 2005 => Scanning File c:\windows\system32\certcli.dll
Thu Mar 10 11:00:18 2005 => Scanning File c:\windows\system32\CRYPTUI.dll
Thu Mar 10 11:00:18 2005 => Scanning File C:\WINDOWS\system32\WININET.dll
Thu Mar 10 11:00:18 2005 => Scanning File c:\windows\system32\ESENT.dll
Thu Mar 10 11:00:18 2005 => Scanning File c:\windows\system32\trkwks.dll
Thu Mar 10 11:00:18 2005 => Scanning File c:\windows\system32\tapisrv.dll
Thu Mar 10 11:00:18 2005 => Scanning File c:\windows\system32\srsvc.dll
Thu Mar 10 11:00:19 2005 => Scanning File c:\windows\system32\seclogon.dll
Thu Mar 10 11:00:19 2005 => Scanning File c:\windows\system32\srvsvc.dll
Thu Mar 10 11:00:19 2005 => Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
Thu Mar 10 11:00:19 2005 => Scanning File c:\windows\system32\es.dll
Thu Mar 10 11:00:19 2005 => Scanning File c:\windows\system32\ersvc.dll
Thu Mar 10 11:00:19 2005 => Scanning File c:\windows\system32\dmserver.dll
Thu Mar 10 11:00:20 2005 => Scanning File c:\windows\system32\wuauserv.dll
Thu Mar 10 11:00:20 2005 => Scanning File C:\WINDOWS\System32\upnp.dll
Thu Mar 10 11:00:20 2005 => Scanning File C:\WINDOWS\System32\SSDPAPI.dll
Thu Mar 10 11:00:20 2005 => Scanning File c:\windows\system32\wbem\wmisvc.dll
Thu Mar 10 11:00:20 2005 => Scanning File c:\windows\system32\wbem\wbemcomn.dll
Thu Mar 10 11:00:20 2005 => Scanning File C:\WINDOWS\system32\VSSAPI.DLL
Thu Mar 10 11:00:21 2005 => Scanning File c:\windows\system32\rasmans.dll
Thu Mar 10 11:00:21 2005 => Scanning File c:\windows\system32\Sens.dll
Thu Mar 10 11:00:21 2005 => Scanning File c:\windows\system32\WINIPSEC.DLL
Thu Mar 10 11:00:21 2005 => Scanning File c:\windows\system32\netcfgx.dll
Thu Mar 10 11:00:21 2005 => Scanning File c:\windows\system32\CLUSAPI.dll
Thu Mar 10 11:00:21 2005 => Scanning File C:\WINDOWS\System32\rastapi.dll
Thu Mar 10 11:00:22 2005 => Scanning File C:\WINDOWS\System32\unimdm.tsp
Thu Mar 10 11:00:22 2005 => Scanning File C:\WINDOWS\System32\uniplat.dll
Thu Mar 10 11:00:22 2005 => Scanning File C:\WINDOWS\system32\comsvcs.dll
Thu Mar 10 11:00:22 2005 => Scanning File C:\WINDOWS\system32\MTXCLU.DLL
Thu Mar 10 11:00:23 2005 => Scanning File C:\WINDOWS\system32\WSOCK32.dll
Thu Mar 10 11:00:23 2005 => Scanning File C:\WINDOWS\system32\colbact.DLL
Thu Mar 10 11:00:23 2005 => Scanning File C:\WINDOWS\System32\RESUTILS.DLL
Thu Mar 10 11:00:23 2005 => Scanning File C:\WINDOWS\System32\kmddsp.tsp
Thu Mar 10 11:00:23 2005 => Scanning File C:\WINDOWS\System32\mtxoci.dll
Thu Mar 10 11:00:23 2005 => Scanning File C:\WINDOWS\System32\ndptsp.tsp
Thu Mar 10 11:00:24 2005 => Scanning File C:\WINDOWS\System32\ipconf.tsp
Thu Mar 10 11:00:24 2005 => Scanning File C:\WINDOWS\System32\h323.tsp
Thu Mar 10 11:00:24 2005 => Scanning File C:\WINDOWS\System32\hidphone.tsp
Thu Mar 10 11:00:24 2005 => Scanning File C:\WINDOWS\System32\HID.DLL
Thu Mar 10 11:00:24 2005 => Scanning File C:\WINDOWS\System32\rasppp.dll
Thu Mar 10 11:00:24 2005 => Scanning File C:\WINDOWS\System32\ntlsapi.dll
Thu Mar 10 11:00:24 2005 => Scanning File c:\windows\system32\ipnathlp.dll
Thu Mar 10 11:00:25 2005 => Scanning File c:\windows\system32\netshell.dll
Thu Mar 10 11:00:25 2005 => Scanning File c:\windows\system32\credui.dll
Thu Mar 10 11:00:25 2005 => Scanning File c:\windows\system32\HNetCfg.dll
Thu Mar 10 11:00:25 2005 => Scanning File C:\WINDOWS\system32\WBEM\wbemcore.dll
Thu Mar 10 11:00:26 2005 => Scanning File C:\WINDOWS\system32\WBEM\esscli.dll
Thu Mar 10 11:00:26 2005 => Scanning File C:\WINDOWS\system32\WBEM\FastProx.dll
Thu Mar 10 11:00:26 2005 => Scanning File C:\WINDOWS\System32\wbem\wmiutils.dll
Thu Mar 10 11:00:27 2005 => Scanning File C:\WINDOWS\System32\wbem\repdrvfs.dll
Thu Mar 10 11:00:27 2005 => Scanning File C:\WINDOWS\System32\wbem\wmiprvsd.dll
Thu Mar 10 11:00:28 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemess.dll
Thu Mar 10 11:00:28 2005 => Scanning File c:\windows\system32\rasauto.dll
Thu Mar 10 11:00:28 2005 => Scanning File C:\WINDOWS\System32\icmp.dll
Thu Mar 10 11:00:28 2005 => Scanning File c:\windows\system32\termsrv.dll
Thu Mar 10 11:00:28 2005 => Scanning File c:\windows\system32\ICAAPI.dll
Thu Mar 10 11:00:29 2005 => Scanning File c:\windows\system32\mstlsapi.dll
Thu Mar 10 11:00:29 2005 => Scanning File C:\WINDOWS\System32\wbem\ncprov.dll
Thu Mar 10 11:00:29 2005 => Scanning File C:\WINDOWS\System32\RASDLG.dll
Thu Mar 10 11:00:29 2005 => Scanning File c:\windows\system32\dnsrslvr.dll
Thu Mar 10 11:00:29 2005 => Scanning File c:\windows\system32\lmhsvc.dll
Thu Mar 10 11:00:29 2005 => Scanning File c:\windows\system32\webclnt.dll
Thu Mar 10 11:00:29 2005 => Scanning File c:\windows\system32\regsvc.dll
Thu Mar 10 11:00:29 2005 => Scanning File c:\windows\system32\ssdpsrv.dll
Thu Mar 10 11:00:30 2005 => Scanning File C:\WINDOWS\system32\LEXBCES.EXE
Thu Mar 10 11:00:30 2005 => Scanning File C:\WINDOWS\system32\lexp2p32.dll
Thu Mar 10 11:00:30 2005 => Scanning File C:\WINDOWS\system32\lex2kusb.dll
Thu Mar 10 11:00:30 2005 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\SPOOLSS.DLL
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\localspl.dll
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\LEXLMPM.DLL
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\LexBce.dll
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\pjlmon.dll
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\tcpmon.dll
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\usbmon.dll
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\System32\spool\PRTPROCS\W32X86\LXBCPP5C.dll
Thu Mar 10 11:00:31 2005 => Scanning File C:\WINDOWS\system32\win32spl.dll
Thu Mar 10 11:00:32 2005 => Scanning File C:\WINDOWS\system32\NETRAP.dll
Thu Mar 10 11:00:32 2005 => Scanning File C:\WINDOWS\system32\inetpp.dll
Thu Mar 10 11:00:32 2005 => Scanning File C:\WINDOWS\system32\LXBCpwr.dll
Thu Mar 10 11:00:32 2005 => Scanning File C:\WINDOWS\system32\LEXPPS.EXE
Thu Mar 10 11:00:32 2005 => Scanning File C:\WINDOWS\System32\alg.exe
Thu Mar 10 11:00:32 2005 => Scanning File C:\Programme\AVPersonal\AVGUARD.EXE
Thu Mar 10 11:00:32 2005 => Scanning File C:\Programme\AVPersonal\GUARDMSG.DLL
Thu Mar 10 11:00:33 2005 => Scanning File C:\Programme\AVPersonal\AVPREF.DLL
Thu Mar 10 11:00:33 2005 => Scanning File C:\Programme\AVPersonal\SMTPLIB.DLL
Thu Mar 10 11:00:33 2005 => Scanning File C:\Programme\AVPersonal\AVEWIN32.DLL
Thu Mar 10 11:00:33 2005 => Scanning File C:\Programme\AVPersonal\AVWUPSRV.EXE
Thu Mar 10 11:00:33 2005 => Scanning File C:\WINDOWS\System32\cisvc.exe
Thu Mar 10 11:00:34 2005 => Scanning File C:\WINDOWS\System32\query.dll
Thu Mar 10 11:00:34 2005 => Scanning File c:\windows\system32\wiaservc.dll
Thu Mar 10 11:00:34 2005 => Scanning File c:\windows\system32\CFGMGR32.dll
Thu Mar 10 11:00:34 2005 => Scanning File c:\windows\system32\mscms.dll
Thu Mar 10 11:00:34 2005 => Scanning File C:\WINDOWS\System32\stv680wi.dll
Thu Mar 10 11:00:34 2005 => Scanning File C:\WINDOWS\System32\tsappcmp.dll
Thu Mar 10 11:00:34 2005 => Scanning File C:\WINDOWS\System32\actxprxy.dll
Thu Mar 10 11:00:35 2005 => Scanning File C:\WINDOWS\System32\sti.dll
Thu Mar 10 11:00:35 2005 => Scanning File C:\WINDOWS\System32\wdfmgr.exe
Thu Mar 10 11:00:35 2005 => Scanning File C:\WINDOWS\Explorer.EXE
Thu Mar 10 11:00:35 2005 => Scanning File C:\WINDOWS\System32\BROWSEUI.dll
Thu Mar 10 11:00:35 2005 => Scanning File C:\WINDOWS\System32\SHDOCVW.dll
Thu Mar 10 11:00:36 2005 => Scanning File C:\WINDOWS\System32\themeui.dll
Thu Mar 10 11:00:36 2005 => Scanning File C:\WINDOWS\System32\MSIMG32.dll
Thu Mar 10 11:00:36 2005 => Scanning File C:\WINDOWS\System32\msutb.dll
Thu Mar 10 11:00:36 2005 => Scanning File C:\WINDOWS\System32\MSCTF.dll
Thu Mar 10 11:00:36 2005 => Scanning File C:\WINDOWS\System32\stobject.dll
Thu Mar 10 11:00:37 2005 => Scanning File C:\WINDOWS\System32\BatMeter.dll
Thu Mar 10 11:00:37 2005 => Scanning File C:\WINDOWS\System32\POWRPROF.dll
Thu Mar 10 11:00:37 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:00:37 2005 => Scanning File C:\WINDOWS\System32\LINKINFO.dll
Thu Mar 10 11:00:37 2005 => Scanning File C:\WINDOWS\System32\ntshrui.dll
Thu Mar 10 11:00:37 2005 => Scanning File C:\WINDOWS\System32\printui.dll
Thu Mar 10 11:00:38 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Thu Mar 10 11:00:39 2005 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.1360_x-ww_24a2ed47\gdiplus.dll
Thu Mar 10 11:00:39 2005 => Scanning File C:\WINDOWS\System32\shdoclc.dll
Thu Mar 10 11:00:43 2005 => Scanning File C:\Programme\AVPersonal\AVShlExt.DLL
Thu Mar 10 11:00:43 2005 => Scanning File C:\PROGRA~1\A2FREE~1\A2CONT~1.DLL
Thu Mar 10 11:00:43 2005 => Scanning File C:\WINDOWS\System32\drprov.dll
Thu Mar 10 11:00:43 2005 => Scanning File C:\WINDOWS\System32\davclnt.dll
Thu Mar 10 11:00:44 2005 => Scanning File C:\WINDOWS\System32\browselc.dll
Thu Mar 10 11:00:44 2005 => Scanning File C:\WINDOWS\system32\urlmon.dll
Thu Mar 10 11:00:44 2005 => Scanning File C:\Programme\ICQToolbar\toolbaru.dll
Thu Mar 10 11:00:44 2005 => Scanning File C:\WINDOWS\System32\MLANG.dll
Thu Mar 10 11:00:44 2005 => Scanning File C:\Programme\ICQLite\ICQLiteShell.dll
Thu Mar 10 11:00:45 2005 => Scanning File C:\WINDOWS\System32\MFC42.DLL
Thu Mar 10 11:00:45 2005 => Scanning File C:\WINDOWS\System32\MFC42LOC.DLL
Thu Mar 10 11:00:45 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Thu Mar 10 11:00:45 2005 => Scanning File C:\Programme\AVPersonal\AVGNT.EXE
Thu Mar 10 11:00:45 2005 => Scanning File C:\WINDOWS\system32\LZ32.dll
Thu Mar 10 11:00:46 2005 => Scanning File C:\Programme\AVPersonal\AVGCMSG.DLL
Thu Mar 10 11:00:46 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADiMon.exe
Thu Mar 10 11:00:46 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ADialHlp.dll
Thu Mar 10 11:00:46 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ADialHRC.dll
Thu Mar 10 11:00:46 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MMSOSINQ.dll
Thu Mar 10 11:00:46 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MSYSTINQ.dll
Thu Mar 10 11:00:47 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MLIB32.dll
Thu Mar 10 11:00:47 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ADParmIF.dll
Thu Mar 10 11:00:47 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADiMRC.dll
Thu Mar 10 11:00:48 2005 => Scanning File C:\WINDOWS\System32\ctfmon.exe
Thu Mar 10 11:00:48 2005 => Scanning File C:\PROGRA~1\T-Online\T-ONLI~1\BASIS-~1\Basis2\kernel.exe
Thu Mar 10 11:00:48 2005 => Scanning File C:\WINDOWS\system32\SHFOLDER.dll
Thu Mar 10 11:00:49 2005 => Scanning File C:\PROGRA~1\T-Online\T-ONLI~1\BASIS-~1\Basis2\kernel_res.dll
Thu Mar 10 11:00:49 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADial.dll
Thu Mar 10 11:00:49 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToCnfAcM.dll
Thu Mar 10 11:00:49 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToCnfAMP.dll
Thu Mar 10 11:00:49 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MToCfPrf.dll
Thu Mar 10 11:00:49 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MACnfAcM.dll
Thu Mar 10 11:00:49 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MTolA132.dll
Thu Mar 10 11:00:49 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToDialer.dll
Thu Mar 10 11:00:50 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\WLaCSeH.dll
Thu Mar 10 11:00:50 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MDun32.dll
Thu Mar 10 11:00:50 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MADialer.dll
Thu Mar 10 11:00:50 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\guistartcenter.dll
Thu Mar 10 11:00:52 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\guisc_res.dll
Thu Mar 10 11:00:52 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MToCfPRC.dll
Thu Mar 10 11:00:52 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADiRC.dll
Thu Mar 10 11:00:52 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis2\update_abocfg.dll
Thu Mar 10 11:00:52 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToDialRC.dll
Thu Mar 10 11:00:52 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\MDun32RC.dll
Thu Mar 10 11:00:52 2005 => Scanning File C:\PROGRA~1\T-Online\T-ONLI~1\BASIS-~1\Basis2\gui_res.dll
Thu Mar 10 11:00:52 2005 => Scanning File C:\WINDOWS\System32\mshtml.dll
Thu Mar 10 11:00:53 2005 => Scanning File C:\WINDOWS\System32\msimtf.dll
Thu Mar 10 11:00:53 2005 => Scanning File C:\WINDOWS\System32\jscript.dll
Thu Mar 10 11:00:53 2005 => Scanning File C:\WINDOWS\System32\vbscript.dll
Thu Mar 10 11:00:53 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\cmdial32.dll
Thu Mar 10 11:00:53 2005 => Scanning File C:\WINDOWS\system32\MSLS31.DLL
Thu Mar 10 11:00:53 2005 => Scanning File C:\WINDOWS\system32\IMM32.DLL
Thu Mar 10 11:00:53 2005 => Scanning File C:\WINDOWS\System32\Flash.ocx
Thu Mar 10 11:00:54 2005 => Scanning File C:\WINDOWS\System32\ddrawex.dll
Thu Mar 10 11:00:54 2005 => Scanning File C:\WINDOWS\System32\DDRAW.dll
Thu Mar 10 11:00:54 2005 => Scanning File C:\WINDOWS\System32\DCIMAN32.dll
Thu Mar 10 11:00:54 2005 => Scanning File C:\WINDOWS\System32\rasctrs.dll
Thu Mar 10 11:00:54 2005 => Scanning File C:\WINDOWS\System32\rsvpperf.dll
Thu Mar 10 11:00:54 2005 => Scanning File C:\WINDOWS\system32\tapiperf.dll
Thu Mar 10 11:00:54 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\AAdHnd.DLL
Thu Mar 10 11:00:54 2005 => Scanning File C:\WINDOWS\System32\RASADHLP.DLL
Thu Mar 10 11:00:54 2005 => Scanning File C:\PROGRA~1\T-Online\T-ONLI~1\BASIS-~1\Basis2\sc_watch.exe
Thu Mar 10 11:00:54 2005 => Scanning File C:\PROGRA~1\T-Online\T-ONLI~1\BASIS-~1\Basis2\PROFIL~1.EXE
Thu Mar 10 11:00:55 2005 => Scanning File C:\PROGRA~1\T-Online\T-ONLI~1\BASIS-~1\Basis2\profmgr_res.dll
Thu Mar 10 11:00:55 2005 => Scanning File C:\Programme\ICQLite\ICQLite.exe
Thu Mar 10 11:00:57 2005 => Scanning File C:\Programme\ICQLite\ICQRT.dll
Thu Mar 10 11:00:57 2005 => Scanning File C:\Programme\ICQLite\LiteSkinUtils.dll
Thu Mar 10 11:00:57 2005 => Scanning File C:\Programme\ICQLite\ICQLSRP.dll
Thu Mar 10 11:00:57 2005 => Scanning File C:\WINDOWS\System32\OLEPRO32.DLL
Thu Mar 10 11:00:57 2005 => Scanning File C:\Programme\ICQLite\LiteRes.dll
Thu Mar 10 11:00:58 2005 => Scanning File C:\Programme\ICQLite\actskin4.ocx
Thu Mar 10 11:00:58 2005 => Scanning File C:\Programme\ICQLite\LiteUtil.dll
Thu Mar 10 11:00:59 2005 => Scanning File C:\WINDOWS\System32\RICHED32.DLL
Thu Mar 10 11:00:59 2005 => Scanning File C:\WINDOWS\System32\RICHED20.dll
Thu Mar 10 11:01:00 2005 => Scanning File C:\Programme\ICQLite\MISB.dll
Thu Mar 10 11:01:00 2005 => Scanning File C:\Programme\ICQLite\EmoExtractAsset.dll
Thu Mar 10 11:01:00 2005 => Scanning File C:\WINDOWS\System32\asycfilt.dll
Thu Mar 10 11:01:00 2005 => Scanning File C:\WINDOWS\System32\msxml3.dll
Thu Mar 10 11:01:01 2005 => Scanning File C:\WINDOWS\System32\iepeers.dll
Thu Mar 10 11:01:01 2005 => Scanning File C:\WINDOWS\System32\msdmo.dll
Thu Mar 10 11:01:01 2005 => Scanning File C:\WINDOWS\System32\imgutil.dll
Thu Mar 10 11:01:01 2005 => Scanning File C:\WINDOWS\System32\plugin.ocx
Thu Mar 10 11:01:01 2005 => Scanning File C:\WINDOWS\System32\cidaemon.exe
Thu Mar 10 11:01:01 2005 => Scanning File C:\WINDOWS\System32\infosoft.dll
Thu Mar 10 11:01:01 2005 => Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe
Thu Mar 10 11:01:03 2005 => Scanning File C:\WINDOWS\System32\mshtmled.dll
Thu Mar 10 11:01:03 2005 => Scanning File C:\WINDOWS\System32\cryptnet.dll
Thu Mar 10 11:01:03 2005 => Scanning File C:\WINDOWS\System32\dxtrans.dll
Thu Mar 10 11:01:04 2005 => Scanning File C:\WINDOWS\System32\dxtmsft.dll
Thu Mar 10 11:01:04 2005 => Scanning File C:\WINDOWS\System32\dispex.dll
Thu Mar 10 11:01:04 2005 => Scanning File C:\WINDOWS\System32\msieftp.dll
Thu Mar 10 11:01:04 2005 => Scanning File C:\WINDOWS\System32\wiashext.dll
Thu Mar 10 11:01:04 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\mwavscan.com
Thu Mar 10 11:01:06 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\msvlclnt.dll
Thu Mar 10 11:01:06 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavssdi.dll
Thu Mar 10 11:01:06 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavssd.dll
Thu Mar 10 11:01:07 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavssi.dll
Thu Mar 10 11:01:07 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\ipc.dll
Thu Mar 10 11:01:07 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\RICHED32.DLL
Thu Mar 10 11:01:07 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\PSAPI.DLL
Thu Mar 10 11:01:07 2005 => Scanning File C:\WINDOWS\System32\VDMDBG.DLL
Thu Mar 10 11:01:07 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavss.exe
Thu Mar 10 11:01:07 2005 => Scanning File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\kavss.dll

Thu Mar 10 11:01:07 2005 => ***** Scanning Registry Files *****

Thu Mar 10 11:01:07 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Thu Mar 10 11:01:08 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:08 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:08 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:08 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:08 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:09 2005 => Scanning File C:\WINDOWS\System32\stobject.dll

Thu Mar 10 11:01:10 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad

Thu Mar 10 11:01:10 2005 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension

Thu Mar 10 11:01:10 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects

Thu Mar 10 11:01:10 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
Thu Mar 10 11:01:10 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:10 2005 => Scanning File C:\WINDOWS\System32\browseui.dll

Thu Mar 10 11:01:10 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Thu Mar 10 11:01:10 2005 => Scanning File C:\WINDOWS\system32\mmsys.cpl
Thu Mar 10 11:01:10 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Thu Mar 10 11:01:11 2005 => Scanning File C:\WINDOWS\system32\rshx32.dll
Thu Mar 10 11:01:11 2005 => Scanning File C:\WINDOWS\system32\docprop.dll
Thu Mar 10 11:01:11 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Thu Mar 10 11:01:11 2005 => Scanning File C:\WINDOWS\System32\themeui.dll
Thu Mar 10 11:01:11 2005 => Scanning File C:\WINDOWS\system32\deskadp.dll
Thu Mar 10 11:01:11 2005 => Scanning File C:\WINDOWS\system32\deskmon.dll
Thu Mar 10 11:01:12 2005 => Scanning File C:\WINDOWS\system32\dssec.dll
Thu Mar 10 11:01:12 2005 => Scanning File C:\WINDOWS\system32\SlayerXP.dll
Thu Mar 10 11:01:12 2005 => Scanning File C:\WINDOWS\system32\shscrap.dll
Thu Mar 10 11:01:12 2005 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Thu Mar 10 11:01:13 2005 => Scanning File C:\WINDOWS\system32\ntlanui2.dll
Thu Mar 10 11:01:13 2005 => Scanning File C:\WINDOWS\System32\icmui.dll
Thu Mar 10 11:01:13 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Thu Mar 10 11:01:13 2005 => Scanning File C:\WINDOWS\system32\printui.dll
Thu Mar 10 11:01:13 2005 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Thu Mar 10 11:01:13 2005 => Scanning File C:\WINDOWS\system32\syncui.dll
Thu Mar 10 11:01:13 2005 => Scanning File C:\WINDOWS\System32\hticons.dll
Thu Mar 10 11:01:14 2005 => Scanning File C:\WINDOWS\system32\fontext.dll
Thu Mar 10 11:01:14 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Thu Mar 10 11:01:14 2005 => Scanning File C:\WINDOWS\system32\rshx32.dll
Thu Mar 10 11:01:14 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Thu Mar 10 11:01:14 2005 => Scanning File C:\WINDOWS\system32\deskperf.dll
Thu Mar 10 11:01:14 2005 => Scanning File C:\WINDOWS\system32\cryptext.dll
Thu Mar 10 11:01:14 2005 => Scanning File C:\WINDOWS\system32\cryptext.dll
Thu Mar 10 11:01:14 2005 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\System32\remotepg.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\System32\wuaucpl.cpl
Thu Mar 10 11:01:15 2005 => Scanning File C:\WINDOWS\System32\wshext.dll
Thu Mar 10 11:01:15 2005 => Scanning File C:\PROGRA~1\GEMEIN~1\System\OLEDB~1\oledb32.dll
Thu Mar 10 11:01:16 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Thu Mar 10 11:01:16 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Thu Mar 10 11:01:16 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Thu Mar 10 11:01:16 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:17 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\sendmail.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\sendmail.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\occache.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Thu Mar 10 11:01:18 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\shimgvw.dll
Thu Mar 10 11:01:19 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Thu Mar 10 11:01:20 2005 => Scanning File C:\WINDOWS\System32\msieftp.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Thu Mar 10 11:01:21 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\msagent\agentpsh.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\System32\dfsshlex.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\System32\photowiz.dll
Thu Mar 10 11:01:22 2005 => Scanning File C:\WINDOWS\System32\mmcshext.dll
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\system32\cabview.dll
Thu Mar 10 11:01:23 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\wabfind.dll
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\System32\wmpshell.dll
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\SYSTEM32\BROWSEUI.DLL
Thu Mar 10 11:01:23 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:23 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:23 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:23 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:23 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:23 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:24 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:24 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:24 2005 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Thu Mar 10 11:01:24 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Thu Mar 10 11:01:24 2005 => Scanning File C:\WINDOWS\SYSTEM32\THUMBVW.DLL
Thu Mar 10 11:01:24 2005 => *** File C:\WINDOWS\SYSTEM32\SHELL32.DLL having Size Restriction ***
Thu Mar 10 11:01:24 2005 => Scanning File C:\WINDOWS\SYSTEM32\SHELL32.DLL [**]
Thu Mar 10 11:01:24 2005 => Scanning File C:\Programme\ICQLite\ICQLiteShell.dll
Thu Mar 10 11:01:24 2005 => Scanning File C:\WINDOWS\System32\Audiodev.dll
Thu Mar 10 11:01:24 2005 => Scanning File C:\WINDOWS\System32\Audiodev.dll
Thu Mar 10 11:01:24 2005 => Scanning File C:\PROGRA~1\A2FREE~1\A2CONT~1.DLL

Thu Mar 10 11:01:24 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Thu Mar 10 11:01:24 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Thu Mar 10 11:01:24 2005 => Scanning File C:\WINDOWS\Explorer.exe
Thu Mar 10 11:01:25 2005 => Scanning File C:\WINDOWS\system32\userinit.exe

Thu Mar 10 11:01:25 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Thu Mar 10 11:01:25 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System

Thu Mar 10 11:01:25 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

Thu Mar 10 11:01:25 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AEDEBUG
Thu Mar 10 11:01:25 2005 => Scanning File C:\WINDOWS\system32\drwtsn32.exe

Thu Mar 10 11:01:25 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Thu Mar 10 11:01:25 2005 => Scanning File C:\WINDOWS\system32\ntsd.exe

Thu Mar 10 11:01:25 2005 => Scanning HKCU\Control Panel\Desktop
Thu Mar 10 11:01:25 2005 => Scanning File C:\WINDOWS\System32\logon.scr

Thu Mar 10 11:01:25 2005 => Scanning HKLM\SYSTEM\CurrentControlSet\Control\WOW
Thu Mar 10 11:01:26 2005 => Scanning File C:\WINDOWS\system32\ntvdm.exe
Thu Mar 10 11:01:26 2005 => Scanning File C:\WINDOWS\system32\ntvdm.exe

Thu Mar 10 11:01:26 2005 => Scanning HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
Thu Mar 10 11:01:26 2005 => Scanning File C:\WINDOWS\inf\unregmp2.exe
Thu Mar 10 11:01:26 2005 => Scanning File C:\WINDOWS\system32\RunDLL32.exe
Thu Mar 10 11:01:26 2005 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Thu Mar 10 11:01:26 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Thu Mar 10 11:01:26 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Thu Mar 10 11:01:26 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Thu Mar 10 11:01:27 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Thu Mar 10 11:01:27 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Thu Mar 10 11:01:27 2005 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Thu Mar 10 11:01:27 2005 => Scanning File C:\WINDOWS\system32\ie4uinit.exe
Thu Mar 10 11:01:27 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Thu Mar 10 11:01:27 2005 => ERROR!!! Invalid Entry StubPath = RunDLL setupx.dll,InstallHinfSection PowerCfg.user 0 powercfg.inf (in key SOFTWARE\Microsoft\Active Setup\Installed Components\{CA0A4247-44BE-11d1-A005-00805F8ABE06}). Removing it.

Thu Mar 10 11:01:27 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

Thu Mar 10 11:01:27 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run

Thu Mar 10 11:01:27 2005 => Scanning HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Run

Thu Mar 10 11:01:27 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Run

Thu Mar 10 11:01:27 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Thu Mar 10 11:01:27 2005 => Scanning File C:\WINDOWS\system32\SysTray.Exe
Thu Mar 10 11:01:27 2005 => Scanning File C:\Programme\AVPersonal\AVGNT.EXE
Thu Mar 10 11:01:27 2005 => Scanning File C:\Programme\T-Online\T-Online_Software_5\Basis-Software\Basis1\ToADiMon.exe

Thu Mar 10 11:01:28 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Thu Mar 10 11:01:28 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Thu Mar 10 11:01:28 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Thu Mar 10 11:01:28 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce

Thu Mar 10 11:01:28 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Thu Mar 10 11:01:28 2005 => Scanning File C:\WINDOWS\System32\ctfmon.exe

Thu Mar 10 11:01:28 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Thu Mar 10 11:01:28 2005 => Scanning File C:\Programme\ICQLite\ICQLite.exe

Thu Mar 10 11:01:29 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx

Thu Mar 10 11:01:29 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices

Thu Mar 10 11:01:29 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\Setup

Thu Mar 10 11:01:29 2005 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Thu Mar 10 11:01:29 2005 => Scanning File C:\WINDOWS\System32\CTFMON.EXE

Thu Mar 10 11:01:29 2005 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Thu Mar 10 11:01:29 2005 => Scanning HKCR\txtfile\shell\open\command

Thu Mar 10 11:01:29 2005 => Scanning HKCR\comfile\shell\open\command

Thu Mar 10 11:01:29 2005 => Scanning HKCR\exefile\shell\open\command

Thu Mar 10 11:01:29 2005 => Scanning HKCR\dllfile\shell\open\command

Thu Mar 10 11:01:29 2005 => Scanning HKCR\batfile\shell\open\command

Thu Mar 10 11:01:29 2005 => Scanning HKCR\piffile\shell\open\command

Thu Mar 10 11:01:29 2005 => Scanning HKCR\scrfile\shell\open\command

Thu Mar 10 11:01:29 2005 => Scanning HKCR\scrfile\shell\config\command

Thu Mar 10 11:01:29 2005 => Scanning HKCR\regfile\shell\open\command

Thu Mar 10 11:01:30 2005 => Scanning HKCR\htmlfile\shell\open\command
Thu Mar 10 11:01:30 2005 => Scanning File C:\PROGRA~1\INTERN~1\iexplore.exe

Thu Mar 10 11:01:30 2005 => Scanning HKCR\htafile\shell\open\command
Thu Mar 10 11:01:30 2005 => Scanning File C:\WINDOWS\System32\mshta.exe

Thu Mar 10 11:01:30 2005 => Scanning HKCR\jsfile\shell\open\command
Thu Mar 10 11:01:30 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Thu Mar 10 11:01:30 2005 => Scanning HKCR\jsefile\shell\open\command
Thu Mar 10 11:01:30 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Thu Mar 10 11:01:30 2005 => Scanning HKCR\vbsfile\shell\open\command
Thu Mar 10 11:01:30 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Thu Mar 10 11:01:30 2005 => Scanning HKCR\vbefile\shell\open\command
Thu Mar 10 11:01:30 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Thu Mar 10 11:01:30 2005 => Scanning HKCR\wshfile\shell\open\command
Thu Mar 10 11:01:30 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Thu Mar 10 11:01:30 2005 => Scanning HKCR\wsffile\shell\open\command
Thu Mar 10 11:01:30 2005 => Scanning File C:\WINDOWS\System32\WScript.exe

Thu Mar 10 11:01:30 2005 => ***** Scanning StartUp Folders *****

Thu Mar 10 11:01:30 2005 => ***** Scanning C:\WINDOWS\Startmenü\Programme\Autostart Folder *****
Thu Mar 10 11:01:30 2005 => Scanning Folder: C:\WINDOWS\Startmenü\Programme\Autostart\*.*
Thu Mar 10 11:01:31 2005 => Scanning File C:\WINDOWS\Startmenü\Programme\Autostart\desktop.ini [**]

Thu Mar 10 11:01:31 2005 => ***** Scanning C:\WINDOWS\All Users\Startmenü\Programme\Autostart Folder *****
Thu Mar 10 11:01:31 2005 => Scanning Folder: C:\WINDOWS\All Users\Startmenü\Programme\Autostart\*.*
Thu Mar 10 11:01:32 2005 => Scanning File C:\WINDOWS\All Users\Startmenü\Programme\Autostart\desktop.ini [**]

Thu Mar 10 11:01:32 2005 => ***** Scanning Service Files *****
Thu Mar 10 11:01:32 2005 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Thu Mar 10 11:01:32 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ACPI.sys
Thu Mar 10 11:01:32 2005 => Scanning File C:\WINDOWS\System32\drivers\aec.sys
Thu Mar 10 11:01:32 2005 => Scanning File C:\WINDOWS\System32\drivers\afd.sys
Thu Mar 10 11:01:32 2005 => Scanning File C:\WINDOWS\System32\alg.exe
Thu Mar 10 11:01:32 2005 => Scanning File C:\WINDOWS\System32\drivers\es198x.sys
Thu Mar 10 11:01:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\AN983.sys
Thu Mar 10 11:01:33 2005 => Scanning File C:\Programme\AVPersonal\AVGUARD.EXE
Thu Mar 10 11:01:33 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Thu Mar 10 11:01:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\asyncmac.sys
Thu Mar 10 11:01:33 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\atapi.sys
Thu Mar 10 11:01:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\atmarpc.sys
Thu Mar 10 11:01:34 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\audstub.sys
Thu Mar 10 11:01:34 2005 => Scanning File C:\PROGRAMME\AVPERSONAL\AVGNTDW.SYS
Thu Mar 10 11:01:34 2005 => Scanning File C:\Programme\AVPersonal\AVWUPSRV.EXE
Thu Mar 10 11:01:34 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\CCDECODE.sys
Thu Mar 10 11:01:34 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\cdrom.sys
Thu Mar 10 11:01:35 2005 => Scanning File C:\WINDOWS\System32\cisvc.exe
Thu Mar 10 11:01:35 2005 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Thu Mar 10 11:01:35 2005 => Scanning File C:\WINDOWS\System32\dllhost.exe
Thu Mar 10 11:01:35 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Thu Mar 10 11:01:35 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:36 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\disk.sys
Thu Mar 10 11:01:36 2005 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Thu Mar 10 11:01:36 2005 => Scanning File C:\WINDOWS\System32\drivers\dmboot.sys
Thu Mar 10 11:01:37 2005 => Scanning File C:\WINDOWS\System32\drivers\dmio.sys
Thu Mar 10 11:01:37 2005 => Scanning File C:\WINDOWS\System32\drivers\dmload.sys
Thu Mar 10 11:01:37 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:37 2005 => Scanning File C:\WINDOWS\System32\drivers\DMusic.sys
Thu Mar 10 11:01:37 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:37 2005 => Scanning File C:\WINDOWS\System32\drivers\drmkaud.sys
Thu Mar 10 11:01:37 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:37 2005 => Scanning File C:\WINDOWS\system32\services.exe
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\fdc.sys
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\flpydisk.sys
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ftdisk.sys
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\msgpc.sys
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:39 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\i8042prt.sys
Thu Mar 10 11:01:40 2005 => Scanning File C:\WINDOWS\System32\imapi.exe
Thu Mar 10 11:01:40 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys
Thu Mar 10 11:01:40 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ipinip.sys
Thu Mar 10 11:01:40 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ipnat.sys
Thu Mar 10 11:01:40 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ipsec.sys
Thu Mar 10 11:01:41 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\irenum.sys
Thu Mar 10 11:01:41 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\isapnp.sys
Thu Mar 10 11:01:41 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\kbdclass.sys
Thu Mar 10 11:01:41 2005 => Scanning File C:\WINDOWS\System32\drivers\kmixer.sys
Thu Mar 10 11:01:41 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:41 2005 => Scanning File C:\WINDOWS\system32\LEXBCES.EXE
Thu Mar 10 11:01:43 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:43 2005 => Scanning File C:\WINDOWS\System32\mnmsrvc.exe
Thu Mar 10 11:01:43 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\mouclass.sys
Thu Mar 10 11:01:44 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\mrxdav.sys
Thu Mar 10 11:01:44 2005 => Scanning File C:\WINDOWS\System32\msdtc.exe
Thu Mar 10 11:01:45 2005 => Scanning File C:\WINDOWS\System32\msiexec.exe
Thu Mar 10 11:01:45 2005 => Scanning File C:\WINDOWS\System32\drivers\MSKSSRV.sys
Thu Mar 10 11:01:46 2005 => Scanning File C:\WINDOWS\System32\drivers\MSPCLOCK.sys
Thu Mar 10 11:01:46 2005 => Scanning File C:\WINDOWS\System32\drivers\MSPQM.sys
Thu Mar 10 11:01:47 2005 => Scanning File C:\WINDOWS\System32\drivers\MSTEE.sys
Thu Mar 10 11:01:47 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys
Thu Mar 10 11:01:49 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\NdisIP.sys
Thu Mar 10 11:01:49 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ndistapi.sys
Thu Mar 10 11:01:49 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ndisuio.sys
Thu Mar 10 11:01:49 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ndiswan.sys
Thu Mar 10 11:01:50 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\netbt.sys
Thu Mar 10 11:01:50 2005 => Scanning File C:\WINDOWS\system32\netdde.exe
Thu Mar 10 11:01:51 2005 => Scanning File C:\WINDOWS\system32\netdde.exe
Thu Mar 10 11:01:51 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:52 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:52 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Thu Mar 10 11:01:52 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys
Thu Mar 10 11:01:53 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys
Thu Mar 10 11:01:53 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\parport.sys
Thu Mar 10 11:01:54 2005 => Scanning File C:\PROGRA~1\T-ONLINE\T-DSLT~1\PCANDIS5.SYS
Thu Mar 10 11:01:54 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\pci.sys
Thu Mar 10 11:01:54 2005 => Scanning File C:\WINDOWS\system32\services.exe
Thu Mar 10 11:01:54 2005 => Scanning File C:\WINDOWS\System32\lsass.exe
Thu Mar 10 11:01:54 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\raspptp.sys
Thu Mar 10 11:01:54 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\processr.sys
Thu Mar 10 11:01:55 2005 => Scanning File C:\WINDOWS\system32\lsass.exe
Thu Mar 10 11:01:55 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\ptilink.sys
Thu Mar 10 11:01:55 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\rasacd.sys
Thu Mar 10 11:01:55 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:55 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\rasl2tp.sys
Thu Mar 10 11:01:55 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:56 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\raspppoe.sys
Thu Mar 10 11:01:56 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\raspti.sys
Thu Mar 10 11:01:56 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
Thu Mar 10 11:01:56 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\rdpdr.sys
Thu Mar 10 11:01:56 2005 => Scanning File C:\WINDOWS\system32\sessmgr.exe
Thu Mar 10 11:01:57 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\redbook.sys
Thu Mar 10 11:01:57 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:57 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Thu Mar 10 11:01:57 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Thu Mar 10 11:01:57 2005 => Scanning File C:\WINDOWS\System32\rsvp.exe
Thu Mar 10 11:01:57 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\s3sav4m.sys
Thu Mar 10 11:01:58 2005 => Scanning File C:\WINDOWS\system32\lsass.exe
Thu Mar 10 11:01:58 2005 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Thu Mar 10 11:01:58 2005 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Thu Mar 10 11:01:58 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:58 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\secdrv.sys
Thu Mar 10 11:01:58 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:59 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Thu Mar 10 11:01:59 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\serenum.sys
Thu Mar 10 11:01:59 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\serial.sys
Thu Mar 10 11:01:59 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:59 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:01:59 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\SLIP.sys
Thu Mar 10 11:02:00 2005 => Scanning File C:\WINDOWS\System32\drivers\splitter.sys
Thu Mar 10 11:02:00 2005 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Thu Mar 10 11:02:00 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\sr.sys
Thu Mar 10 11:02:01 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:02:01 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\srv.sys
Thu Mar 10 11:02:02 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:02:02 2005 => Scanning File C:\WINDOWS\System32\svchost.exe
Thu Mar 10 11:02:02 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\StreamIP.sys
Thu Mar 10 11:02:03 2005 => Scanning File C:\WINDOWS\System32\drivers\STV680.sys
Thu Mar 10 11:02:03 2005 => Scanning File C:\WINDOWS\System32\drivers\STV680m.sys
Thu Mar 10 11:02:03 2005 => Scanning File C:\WINDOWS\System32\DRIVERS\swenum.sys
Thu Mar 10 11:02:03 2005 => Scanning File C:\WINDOWS\System32\drivers\swmidi.sys
Thu Mar 10 11:02:04 2005 => Scanning File C:\WINDOWS\System32\dllhost.exe
Thu Mar 10 11:02:04 2005 => Scannin

ich habe das update gemacht nun hat escan auch etwas erkannt
e C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\Temporäres Verzeichnis 1 für pencam2.25.zip\SETUP.EXE tagged as not-a-virus:Tool.Win32.Reboot. No Action Taken.
File C:\DOKUME~1\JESSIC~1\LOKALE~1\Temp\Temporäres Verzeichnis 1 für pencam_vs325.zip\setup.exe tagged as not-a-virus:Tool.Win32.Reboot. No Action Taken.
File C:\DOKUME~1\JESSIC~1\LOKALE~1\TEMPOR~1\Content.IE5\CDAF8PAJ\pencam_vs325[1].zip tagged as not-a-virus:Tool.Win32.Reboot. No Action Taken.
was muss ich tun

nichts...dein PC ist sauber

wieso zeigt der pc mir das dann an wenn es kein virus ist?hee`???

weil das alte Software-Eintraege sind und es wird ja auch gesagt--> kein Virus

das sah mir so komisch aus wegen den win32 tool ..mhhh

miiiiist was soll ich tun

DoubleClick: Verfolgender Cookie (Internet Explorer: jessica willrich) (Cookie, nothing done)


Advertising.com: Verfolgender Cookie (Internet Explorer: jessica willrich) (Cookie, nothing done)


Advertising.com: Verfolgender Cookie (Internet Explorer: jessica willrich) (Cookie, nothing done)


Alexa Related: What's related link (Datei austauschen, nothing done)
C:\WINDOWS\Web\related.htm

Avenue A, Inc.: Verfolgender Cookie (Internet Explorer: jessica willrich) (Cookie, nothing done)


C2.lop.AproposMedia: Daten (Datei, nothing done)
C:\WINDOWS\MSIMGSIZ.DAT

DSO Exploit: Data source object exploit (Registrierungsdatenbank-Änderung, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1004!=W=3

DSO Exploit: Data source object exploit (Registrierungsdatenbank-Änderung, nothing done)
HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1004!=W=3

DSO Exploit: Data source object exploit (Registrierungsdatenbank-Änderung, nothing done)
HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1004!=W=3

DSO Exploit: Data source object exploit (Registrierungsdatenbank-Änderung, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1004!=W=3

MediaPlex: Verfolgender Cookie (Internet Explorer: jessica willrich) (Cookie, nothing done)


ValueClick: Verfolgender Cookie (Internet Explorer: jessica willrich) (Cookie, nothing done)



--- Spybot - Search && Destroy version: 1.3 ---
2004-05-12 Includes\Cookies.sbi
2004-05-12 Includes\Dialer.sbi
2004-05-12 Includes\Hijackers.sbi
2004-05-12 Includes\Keyloggers.sbi
2004-05-12 Includes\LSP.sbi
2004-05-12 Includes\Malware.sbi
2004-05-12 Includes\Revision.sbi
2004-05-12 Includes\Security.sbi
2004-05-12 Includes\Spybots.sbi
2004-05-12 Includes\Tracks.uti
2004-05-12 Includes\Trojans.sbi

•KillBox
http://www.bleepingcomputer.com/files/killbox.php

•Delete File on Reboot <--anhaken

C:\WINDOWS\MSIMGSIZ.DAT

und klick auf das rote Kreuz,
wenn gefragt wird, ob "Do you want to reboot? "----> klicke auf "yes"

danke nikita aber das ist ja leider nicht das einzige spyware kommt immer wieder .....

danke für alles !


mein pc hat voll nen schaden ich hoffe das ich bald einen laptop bekomme !
Naja unser pc wurde nun vom fachmann aufgerüstet auf 128 mb arbeitsspeicher is zwar nich grad die welt aber wenigstens etwas und nun kann ich auch endlich mit 100 kbs in s netz gehen dank meiner neuen netzwerk karte *freu*

naja bis denne jessinessi