You are on page 1of 4

==============================

Log File of Smadav 2010 Rev. 8.2


==============================
Scanning Results :
=> Time & Date : 20:03:18, on 10-03-2010
=> Finishing Time : 8 minutes,41 seconds
=> Folder Scanned :1540
=> File Scanned : 22460
=> File Detected : 0
=> File Cleaned : 0
=> Value Scanned : 1008
=> Value Detected: 1
=> Value Fixed: 0
=> Path Scanned: 0
=> Path Hidden: 0
=> Path Unhidden: 0
==============================
Before Scanning
==============================
Suspected Paths :
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\Smadav\SMΔRTP.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Avira\AntiVir Desktop\sched.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Avira\AntiVir Desktop\avguard.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\WINDOWS\system32\igfxtray.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\WINDOWS\system32\hkcmd.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\WINDOWS\SOUNDMAN.EXE
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\Winamp\winampa.exe
=> Fine(Level 1) as : 1 Process
-C:\Documents and Settings\Administrator\Local Settings\Application Data\Goog
le\Update\1.2.183.29\GoogleCrashHandler.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Billing-29 Server\Billing-29 Server.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\The KMPlayer\KMPlayer.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Mozilla Firefox\firefox.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Mozilla Firefox\plugin-container.exe
=> Unknown(Level 3) as : 3 Startup
-C:\Documents and Settings\Administrator\Local Settings\Application Data\Goog
le\Update\GoogleUpdate.exe
Running Processes :
=> N/A
=> N/A
=> C:\WINDOWS\system32\smss.exe
=> C:\WINDOWS\system32\csrss.exe
=> C:\WINDOWS\system32\winlogon.exe
=> C:\WINDOWS\system32\services.exe
=> C:\WINDOWS\system32\lsass.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\explorer.exe
=> C:\WINDOWS\system32\spoolsv.exe
=> C:\Program Files\Avira\AntiVir Desktop\sched.exe
=> C:\Program Files\Avira\AntiVir Desktop\avguard.exe
=> C:\WINDOWS\system32\igfxtray.exe
=> C:\WINDOWS\system32\hkcmd.exe
=> C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
=> C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
=> C:\WINDOWS\SOUNDMAN.EXE
=> C:\WINDOWS\system32\svchost.exe
=> C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
=> C:\Program Files\Winamp\winampa.exe
=> C:\WINDOWS\system32\ctfmon.exe
=> C:\Documents and Settings\Administrator\Local Settings\Application Data\Googl
e\Update\1.2.183.29\GoogleCrashHandler.exe
=> C:\WINDOWS\system32\wdfmgr.exe
=> C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
=> C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
=> C:\Program Files\Billing-29 Server\Billing-29 Server.exe
=> C:\WINDOWS\system32\alg.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\Program Files\The KMPlayer\KMPlayer.exe
=> C:\Program Files\Mozilla Firefox\firefox.exe
=> C:\Program Files\Mozilla Firefox\plugin-container.exe
=> C:\Documents and Settings\Administrator\My Documents\Downloads\Smadav 2010 Re
v. 8.2\Smadav 2010 Rev. 8.2.exe
=> C:\Documents and Settings\Administrator\My Documents\Downloads\Smadav 2010 Re
v. 8.2\Smadav 2010 Rev. 8.2.exe
=> C:\Program Files\Smadav\SMΔRTP.exe
==============================
After Scanning
==============================
Suspected Paths :
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\Smadav\SMΔRTP.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Avira\AntiVir Desktop\sched.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Avira\AntiVir Desktop\avguard.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\WINDOWS\system32\igfxtray.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\WINDOWS\system32\hkcmd.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\WINDOWS\SOUNDMAN.EXE
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\Winamp\winampa.exe
=> Fine(Level 1) as : 1 Process
-C:\Documents and Settings\Administrator\Local Settings\Application Data\Goog
le\Update\1.2.183.29\GoogleCrashHandler.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Billing-29 Server\Billing-29 Server.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\The KMPlayer\KMPlayer.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Mozilla Firefox\firefox.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files\Mozilla Firefox\plugin-container.exe
=> Unknown(Level 3) as : 3 Startup
-C:\Documents and Settings\Administrator\Local Settings\Application Data\Goog
le\Update\GoogleUpdate.exe
Running Processes :
=> N/A
=> N/A
=> C:\WINDOWS\system32\smss.exe
=> C:\WINDOWS\system32\csrss.exe
=> C:\WINDOWS\system32\winlogon.exe
=> C:\WINDOWS\system32\services.exe
=> C:\WINDOWS\system32\lsass.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\WINDOWS\explorer.exe
=> C:\WINDOWS\system32\spoolsv.exe
=> C:\Program Files\Avira\AntiVir Desktop\sched.exe
=> C:\Program Files\Avira\AntiVir Desktop\avguard.exe
=> C:\WINDOWS\system32\igfxtray.exe
=> C:\WINDOWS\system32\hkcmd.exe
=> C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
=> C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
=> C:\WINDOWS\SOUNDMAN.EXE
=> C:\WINDOWS\system32\svchost.exe
=> C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
=> C:\Program Files\Winamp\winampa.exe
=> C:\WINDOWS\system32\ctfmon.exe
=> C:\Documents and Settings\Administrator\Local Settings\Application Data\Googl
e\Update\1.2.183.29\GoogleCrashHandler.exe
=> C:\WINDOWS\system32\wdfmgr.exe
=> C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
=> C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
=> C:\Program Files\Billing-29 Server\Billing-29 Server.exe
=> C:\WINDOWS\system32\alg.exe
=> C:\WINDOWS\system32\svchost.exe
=> C:\Program Files\The KMPlayer\KMPlayer.exe
=> C:\Program Files\Mozilla Firefox\firefox.exe
=> C:\Program Files\Mozilla Firefox\plugin-container.exe
=> C:\Documents and Settings\Administrator\My Documents\Downloads\Smadav 2010 Re
v. 8.2\Smadav 2010 Rev. 8.2.exe
=> C:\Documents and Settings\Administrator\My Documents\Downloads\Smadav 2010 Re
v. 8.2\Smadav 2010 Rev. 8.2.exe
=> C:\Program Files\Smadav\SMΔRTP.exe
Infected Registry Values :
=> Autorun
-HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor
-Forbidden String Value