AV Security Suite AGAIN!!!!

Avira AntiVir Personal - Free Antivirus Updater
Engine/VDF update

Creation time: Fri Jun 11 07:05:45 2010


Operating system:
Windows XP (Service Pack 3) [5.1.2600] 32 bit

Product information:
Product version: 10.0.0.567
Updater: C:\Program Files\Avira\AntiVir Desktop\update.exe 10.0.0.29
Update resource: C:\Program Files\Avira\AntiVir Desktop\updaterc.dll 10.0.9.0
Library: C:\Program Files\Avira\AntiVir Desktop\update.dll 0.1.0.44
Plugin: C:\Program Files\Avira\AntiVir Desktop\updext.dll 10.0.0.8
GUI: C:\Program Files\Avira\AntiVir Desktop\updgui.dll 10.0.2.0

Temp Directory: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\
Backup folder: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\BACKUP\
Installation Directory: C:\Program Files\Avira\AntiVir Desktop\
Updater folder: C:\Program Files\Avira\AntiVir Desktop\
AppData folder: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\

Proxy settings:
System settings used

7:05:45 [UPD] [INFO] Checking whether newer files are available.
7:06:00 [UPD] [INFO] Select update server 'http://personal.avira-update.com/update'.
7:06:00 [UPD] [INFO] Downloading of 'http://personal.avira-update.com/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
7:06:15 [UPDLIB] [ERROR] Download manager: The function WinINet::HttpSendRequest() 'http://personal.avira-update.com/update/idx/master.idx' failed. Error: The server name or address could not be resolved
7:06:15 [UPDLIB] [ERROR] Retry...
7:06:15 [UPD] [INFO] Downloading of 'http://personal.avira-update.com/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
7:06:30 [UPDLIB] [ERROR] Download manager: The function WinINet::HttpSendRequest() 'http://personal.avira-update.com/update/idx/master.idx' failed. Error: The server name or address could not be resolved
7:06:30 [UPDLIB] [ERROR] Retry...
7:06:30 [UPD] [INFO] Downloading of 'http://personal.avira-update.com/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
7:06:45 [UPDLIB] [ERROR] Download manager: The function WinINet::HttpSendRequest() 'http://personal.avira-update.com/update/idx/master.idx' failed. Error: The server name or address could not be resolved
7:07:00 [UPD] [INFO] Select update server 'http://personal.avira-update.net/update'.
7:07:00 [UPD] [INFO] Downloading of 'http://personal.avira-update.net/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
7:07:15 [UPDLIB] [ERROR] Download manager: The function WinINet::HttpSendRequest() 'http://personal.avira-update.net/update/idx/master.idx' failed. Error: The server name or address could not be resolved
7:07:15 [UPDLIB] [ERROR] Retry...
7:07:15 [UPD] [INFO] Downloading of 'http://personal.avira-update.net/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
7:07:30 [UPDLIB] [ERROR] Download manager: The function WinINet::HttpSendRequest() 'http://personal.avira-update.net/update/idx/master.idx' failed. Error: The server name or address could not be resolved
7:07:30 [UPDLIB] [ERROR] Retry...
7:07:30 [UPD] [INFO] Downloading of 'http://personal.avira-update.net/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
7:07:45 [UPDLIB] [ERROR] Download manager: The function WinINet::HttpSendRequest() 'http://personal.avira-update.net/update/idx/master.idx' failed. Error: The server name or address could not be resolved
7:07:45 [UPD] [INFO] Select update server 'http://62.146.66.184/update'.
7:07:45 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
7:07:46 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/wks_avira10-win32-en-pecl.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\wks_avira10-win32-en-pecl.idx'.
7:07:46 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/wks_avira10-win32-en-pecl.info.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\wks_avira10-win32-en-pecl.info.gz'.
7:07:46 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/vdf.info.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\vdf.info.gz'.
7:07:46 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/rdf-common-int.info.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\rdf-common-int.info.gz'.
7:07:46 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/ave2-win32-int.info.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\ave2-win32-int.info.gz'.
7:07:47 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/wks_avira10-win32-en-pecl-info.info.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\wks_avira10-win32-en-pecl-info.info.gz'.
7:07:47 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/hips-win32-int.info.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\hips-win32-int.info.gz'.
7:07:47 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/scanner-win32-int.info.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\scanner-win32-int.info.gz'.
7:07:47 [UPD] [INFO] Compare local files with status of update server
7:07:47 [UPD] [INFO] Product-info file: Executing mandatory product update initiated by Avira.
7:07:47 [UPD] [INFO] Checking module SELFUPDATE:
7:07:47 [UPD] [INFO] Checking module VDF:
7:07:47 [UPD] [INFO] File 'n_vdf/vbase005.vdf' (local, server): 7.10.4.204 < 7.10.6.82
7:07:47 [UPD] [INFO] File 'n_vdf/vbase006.vdf' (local, server): 7.10.4.205 < 7.10.7.218
7:07:47 [UPD] [INFO] File 'n_vdf/vbase007.vdf' (local, server): 7.10.4.206 < 7.10.7.219
7:07:47 [UPD] [INFO] File 'n_vdf/vbase008.vdf' (local, server): 7.10.4.207 < 7.10.7.220
7:07:47 [UPD] [INFO] File 'n_vdf/vbase009.vdf' (local, server): 7.10.4.208 < 7.10.7.221
7:07:47 [UPD] [INFO] File 'n_vdf/vbase010.vdf' (local, server): 7.10.4.209 < 7.10.7.222
7:07:47 [UPD] [INFO] File 'n_vdf/vbase011.vdf' (local, server): 7.10.4.210 < 7.10.7.223
7:07:47 [UPD] [INFO] File 'n_vdf/vbase012.vdf' (local, server): 7.10.4.211 < 7.10.7.224
7:07:47 [UPD] [INFO] File 'n_vdf/vbase013.vdf' (local, server): 7.10.4.242 < 7.10.8.37
7:07:47 [UPD] [INFO] File 'n_vdf/vbase014.vdf' (local, server): 7.10.5.17 < 7.10.8.38
7:07:47 [UPD] [INFO] File 'n_vdf/vbase015.vdf' (local, server): 7.10.5.44 < 7.10.8.39
7:07:47 [UPD] [INFO] File 'n_vdf/vbase016.vdf' (local, server): 7.10.5.69 < 7.10.8.40
7:07:47 [UPD] [INFO] File 'n_vdf/vbase017.vdf' (local, server): 7.10.5.91 < 7.10.8.41
7:07:47 [UPD] [INFO] File 'n_vdf/vbase018.vdf' (local, server): 7.10.5.121 < 7.10.8.42
7:07:47 [UPD] [INFO] File 'n_vdf/vbase019.vdf' (local, server): 7.10.5.138 < 7.10.8.43
7:07:47 [UPD] [INFO] File 'n_vdf/vbase020.vdf' (local, server): 7.10.5.164 < 7.10.8.44
7:07:47 [UPD] [INFO] File 'n_vdf/vbase021.vdf' (local, server): 7.10.5.182 < 7.10.8.45
7:07:47 [UPD] [INFO] File 'n_vdf/vbase022.vdf' (local, server): 7.10.5.199 < 7.10.8.46
7:07:47 [UPD] [INFO] File 'n_vdf/vbase023.vdf' (local, server): 7.10.5.217 < 7.10.8.47
7:07:47 [UPD] [INFO] File 'n_vdf/vbase024.vdf' (local, server): 7.10.5.234 < 7.10.8.48
7:07:47 [UPD] [INFO] File 'n_vdf/vbase025.vdf' (local, server): 7.10.5.254 < 7.10.8.49
7:07:47 [UPD] [INFO] File 'n_vdf/vbase026.vdf' (local, server): 7.10.6.18 < 7.10.8.50
7:07:47 [UPD] [INFO] File 'n_vdf/vbase027.vdf' (local, server): 7.10.6.34 < 7.10.8.51
7:07:47 [UPD] [INFO] File 'n_vdf/vbase028.vdf' (local, server): 7.10.6.44 < 7.10.8.52
7:07:47 [UPD] [INFO] File 'n_vdf/vbase029.vdf' (local, server): 7.10.6.60 < 7.10.8.53
7:07:47 [UPD] [INFO] File 'n_vdf/vbase030.vdf' (local, server): 7.10.6.61 < 7.10.8.54
7:07:47 [UPD] [INFO] File 'n_vdf/vbase031.vdf' (local, server): 7.10.6.62 < 7.10.8.59
7:07:47 [UPD] [INFO] File 'n_vdf/aevdf.dat' (local, server): 7.10.6.62 < 7.10.8.59
7:07:47 [UPD] [INFO] Checking module RDF:
7:07:47 [UPD] [INFO] File 'rdf/common/int/antivir0.rdf' (local, server): 1.0.0.33 < 10.0.0.39
7:07:47 [UPD] [INFO] Checking module AVE2:
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aebb.dll' (local, server): 8.1.0.3 < 8.1.1.0
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aecore.dll' (local, server): 8.1.13.1 < 8.1.15.3
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aeemu.dll' (local, server): 8.1.1.0 < 8.1.2.0
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aegen.dll' (local, server): 8.1.3.6 < 8.1.3.10
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aehelp.dll' (local, server): 8.1.11.3 < 8.1.11.5
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aeheur.dll' (local, server): 8.1.1.16 < 8.1.1.33
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aeoffice.dll' (local, server): 8.1.0.41 < 8.1.1.0
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aerdl.dll' (local, server): 8.1.4.3 < 8.1.4.6
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aescn.dll' (local, server): 8.1.5.0 < 8.1.6.1
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aescript.dll' (local, server): 8.1.3.24 < 8.1.3.31
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aevdf.dll' (local, server): 8.1.1.3 < 8.1.2.0
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aesbx.dll' (local, server): 8.1.2.1 < 8.1.3.1
7:07:47 [UPD] [INFO] File 'ave2/win32/int/aeset.dat' (local, server): 8.2.1.210 < 8.2.2.6
7:07:47 [UPD] [INFO] Checking module MAIN:
7:07:47 [UPD] [INFO] The IGNORE flag is set for the file 'wks_avira10/win32/en/pecl/filelist.ini'. The file will therefore not be taken into account.
7:07:47 [UPD] [INFO] The IGNORE flag is set for the file 'wks_avira10/win32/en/pecl/insthlp.exe'. The file will therefore not be taken into account.
7:07:47 [UPD] [INFO] The IGNORE flag is set for the file 'wks_avira10/win32/en/pecl/presetup.exe'. The file will therefore not be taken into account.
7:07:47 [UPD] [INFO] File'wks_avira10/win32/en/pecl/en-us/quicksysscan.avp' is already installed and is not being updated.
7:07:47 [UPD] [INFO] The IGNORE flag is set for the file 'wks_avira10/win32/en/pecl/vcredist_x86.exe'. The file will therefore not be taken into account.
7:07:47 [UPD] [INFO] Checking module COMMAPPDATA_AV:
7:07:47 [UPD] [INFO] File'wks_avira10/win32/en/pecl/addr_file.html' is already installed and is not being updated.
7:07:47 [UPD] [INFO] Checking module COMMAPP:
7:07:47 [UPD] [INFO] File'wks_avira10/win32/en/pecl/en-us/produpd.avj' is already installed and is not being updated.
7:07:47 [UPD] [INFO] File'wks_avira10/win32/en/pecl/en-us/scanjob.avj' is already installed and is not being updated.
7:07:47 [UPD] [INFO] File'wks_avira10/win32/en/pecl/en-us/startupd.avj' is already installed and is not being updated.
7:07:47 [UPD] [INFO] File'wks_avira10/win32/en/pecl/en-us/updjob.avj' is already installed and is not being updated.
7:07:47 [UPD] [INFO] Checking module COMMAPDATA_AV_PROFILES:
7:07:47 [UPD] [INFO] File'wks_avira10/win32/en/pecl/en-us/folder.avp' is already installed and is not being updated.
7:07:47 [UPD] [INFO] Checking module TEXT:
7:07:47 [UPD] [INFO] The IGNORE flag is set for the file 'wks_avira10/win32/en/pecl/en-us/eula.txt'. The file will therefore not be taken into account.
7:07:47 [UPD] [INFO] Checking module DRV:
7:07:47 [UPD] [INFO] Checking module PRODINFO:
7:07:47 [UPD] [INFO] Checking module HIPS:
7:07:47 [UPD] [INFO] Checking module SCANNER:
7:07:47 [UPD] [INFO] Checking dependencies for product update mode.
7:07:47 [UPD] [INFO] Dependencies have been executed.
7:07:47 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\BACKUP' requires 9063111 bytes of free disk space.
7:07:47 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE' requires 23719061 bytes of free disk space.
7:07:47 [UPD] [INFO] 'C:\Program Files\Avira\AntiVir Desktop' requires 12008330 bytes of free disk space.
7:07:47 [UPD] [INFO] Disk space OK.
7:07:47 [UPD] [INFO] Drive: C:\, free capacity: 1205874688 bytes.
7:07:47 [UPD] [INFO] New files are being downloaded...
7:07:47 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase005.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase005.vdf.gz'.
7:07:54 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase006.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase006.vdf.gz'.
7:08:00 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase007.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase007.vdf.gz'.
7:08:00 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase008.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase008.vdf.gz'.
7:08:00 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase009.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase009.vdf.gz'.
7:08:00 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase010.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase010.vdf.gz'.
7:08:00 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase011.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase011.vdf.gz'.
7:08:01 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase012.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase012.vdf.gz'.
7:08:01 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase013.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase013.vdf.gz'.
7:08:01 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase014.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase014.vdf.gz'.
7:08:02 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase015.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase015.vdf.gz'.
7:08:02 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase016.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase016.vdf.gz'.
7:08:02 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase017.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase017.vdf.gz'.
7:08:02 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase018.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase018.vdf.gz'.
7:08:02 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase019.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase019.vdf.gz'.
7:08:02 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase020.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase020.vdf.gz'.
7:08:02 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase021.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase021.vdf.gz'.
7:08:03 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase022.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase022.vdf.gz'.
7:08:03 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase023.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase023.vdf.gz'.
7:08:03 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase024.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase024.vdf.gz'.
7:08:03 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase025.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase025.vdf.gz'.
7:08:03 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase026.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase026.vdf.gz'.
7:08:03 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase027.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase027.vdf.gz'.
7:08:03 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase028.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase028.vdf.gz'.
7:08:04 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase029.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase029.vdf.gz'.
7:08:04 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase030.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase030.vdf.gz'.
7:08:04 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/vbase031.vdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\vbase031.vdf.gz'.
7:08:04 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/n_vdf/aevdf.dat.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\n_vdf\aevdf.dat.gz'.
7:08:04 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/rdf/common/int/antivir0.rdf.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\rdf\common\int\antivir0.rdf.gz'.
7:08:05 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aebb.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aebb.dll.gz'.
7:08:05 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aecore.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aecore.dll.gz'.
7:08:05 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aeemu.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aeemu.dll.gz'.
7:08:06 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aegen.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aegen.dll.gz'.
7:08:07 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aehelp.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aehelp.dll.gz'.
7:08:07 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aeheur.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aeheur.dll.gz'.
7:08:10 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aeoffice.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aeoffice.dll.gz'.
7:08:10 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aerdl.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aerdl.dll.gz'.
7:08:11 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aescn.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aescn.dll.gz'.
7:08:11 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aescript.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aescript.dll.gz'.
7:08:13 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aevdf.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aevdf.dll.gz'.
7:08:13 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aesbx.dll.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aesbx.dll.gz'.
7:08:13 [UPD] [INFO] Downloading of 'http://62.146.66.184/update/ave2/win32/int/aeset.dat.gz' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\ave2\win32\int\aeset.dat.gz'.
7:08:13 [UPD] [INFO] The program is running as an unrestricted full version.
7:08:19 [UPD] [INFO] The engine was successfully validated.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase005.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase005.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase006.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase006.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase007.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase007.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase008.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase008.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase009.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase009.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase010.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase010.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase011.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase011.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase012.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase012.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase013.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase013.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase014.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase014.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase015.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase015.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase016.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase016.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase017.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase017.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase018.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase018.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase019.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase019.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase020.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase020.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase021.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase021.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase022.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase022.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase023.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase023.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase024.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase024.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase025.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase025.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase026.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase026.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase027.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase027.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase028.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase028.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase029.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase029.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase030.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase030.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\vbase031.vdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\vbase031.vdf'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\n_vdf\aevdf.dat' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aevdf.dat'.
7:08:19 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\rdf\common\int\antivir0.rdf' was copied to 'C:\Program Files\Avira\AntiVir Desktop\antivir0.rdf'.
7:08:20 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aebb.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aebb.dll'.
7:08:21 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aecore.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aecore.dll'.
7:08:22 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aeemu.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aeemu.dll'.
7:08:23 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aegen.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aegen.dll'.
7:08:24 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aehelp.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aehelp.dll'.
7:08:25 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aeheur.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aeheur.dll'.
7:08:26 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aeoffice.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll'.
7:08:27 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aerdl.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aerdl.dll'.
7:08:28 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aescn.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aescn.dll'.
7:08:29 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aescript.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aescript.dll'.
7:08:30 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aevdf.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aevdf.dll'.
7:08:31 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aesbx.dll' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aesbx.dll'.
7:08:31 [UPD] [INFO] 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\.\ave2\win32\int\aeset.dat' was copied to 'C:\Program Files\Avira\AntiVir Desktop\aeset.dat'.
7:08:34 [UPD] [INFO] Re-initialization of Avira AntiVir Guard was successful.


Summary:
********
42 Files downloaded
42 Files installed
Downloaded file(s): vbase005.vdf 7.10.6.82; vbase006.vdf 7.10.7.218; vbase007.vdf 7.10.7.219; vbase008.vdf 7.10.7.220; vbase009.vdf 7.10.7.221; vbase010.vdf 7.10.7.222; vbase011.vdf 7.10.7.223;
vbase012.vdf 7.10.7.224; vbase013.vdf 7.10.8.37; vbase014.vdf 7.10.8.38; vbase015.vdf 7.10.8.39; vbase016.vdf 7.10.8.40; vbase017.vdf 7.10.8.41; vbase018.vdf 7.10.8.42;
vbase019.vdf 7.10.8.43; vbase020.vdf 7.10.8.44; vbase021.vdf 7.10.8.45; vbase022.vdf 7.10.8.46; vbase023.vdf 7.10.8.47; vbase024.vdf 7.10.8.48; vbase025.vdf 7.10.8.49;
vbase026.vdf 7.10.8.50; vbase027.vdf 7.10.8.51; vbase028.vdf 7.10.8.52; vbase029.vdf 7.10.8.53; vbase030.vdf 7.10.8.54; vbase031.vdf 7.10.8.59; aevdf.dat 7.10.8.59;
antivir0.rdf 10.0.0.39; aebb.dll 8.1.1.0; aecore.dll 8.1.15.3; aeemu.dll 8.1.2.0; aegen.dll 8.1.3.10; aehelp.dll 8.1.11.5; aeheur.dll 8.1.1.33;
aeoffice.dll 8.1.1.0; aerdl.dll 8.1.4.6; aescn.dll 8.1.6.1; aescript.dll 8.1.3.31; aevdf.dll 8.1.2.0; aesbx.dll 8.1.3.1; aeset.dat 8.2.2.6;


Fri Jun 11 07:08:35 2010
The update was carried out successfully!

***********************************************************************************


Avira AntiVir Personal
Report file date: Friday, June 11, 2010 07:09

Scanning for 2205030 virus strains and unwanted programs.

The program is running as an unrestricted full version.
Online services are available:

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows XP
Windows version : (Service Pack 3) [5.1.2600]
Boot mode : Normally booted
Username : Rick Wintermute
Computer name : NUKESGIZMO

Version information:
BUILD.DAT : 10.0.0.567 32097 Bytes 4/19/2010 15:07:00
AVSCAN.EXE : 10.0.3.0 433832 Bytes 4/1/2010 18:37:38
AVSCAN.DLL : 10.0.3.0 46440 Bytes 4/1/2010 18:57:04
LUKE.DLL : 10.0.2.3 104296 Bytes 3/8/2010 00:33:04
LUKERES.DLL : 10.0.0.1 12648 Bytes 2/11/2010 05:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 11/6/2009 15:05:36
VBASE001.VDF : 7.10.1.0 1372672 Bytes 11/19/2009 01:27:49
VBASE002.VDF : 7.10.3.1 3143680 Bytes 1/20/2010 23:37:42
VBASE003.VDF : 7.10.3.75 996864 Bytes 1/26/2010 22:37:42
VBASE004.VDF : 7.10.4.203 1579008 Bytes 3/5/2010 17:29:03
VBASE005.VDF : 7.10.6.82 2494464 Bytes 4/15/2010 12:07:54
VBASE006.VDF : 7.10.7.218 2294784 Bytes 6/2/2010 12:08:00
VBASE007.VDF : 7.10.7.219 2048 Bytes 6/2/2010 12:08:00
VBASE008.VDF : 7.10.7.220 2048 Bytes 6/2/2010 12:08:00
VBASE009.VDF : 7.10.7.221 2048 Bytes 6/2/2010 12:08:00
VBASE010.VDF : 7.10.7.222 2048 Bytes 6/2/2010 12:08:00
VBASE011.VDF : 7.10.7.223 2048 Bytes 6/2/2010 12:08:01
VBASE012.VDF : 7.10.7.224 2048 Bytes 6/2/2010 12:08:01
VBASE013.VDF : 7.10.8.37 270336 Bytes 6/10/2010 12:08:01
VBASE014.VDF : 7.10.8.38 2048 Bytes 6/10/2010 12:08:02
VBASE015.VDF : 7.10.8.39 2048 Bytes 6/10/2010 12:08:02
VBASE016.VDF : 7.10.8.40 2048 Bytes 6/10/2010 12:08:02
VBASE017.VDF : 7.10.8.41 2048 Bytes 6/10/2010 12:08:02
VBASE018.VDF : 7.10.8.42 2048 Bytes 6/10/2010 12:08:02
VBASE019.VDF : 7.10.8.43 2048 Bytes 6/10/2010 12:08:02
VBASE020.VDF : 7.10.8.44 2048 Bytes 6/10/2010 12:08:02
VBASE021.VDF : 7.10.8.45 2048 Bytes 6/10/2010 12:08:03
VBASE022.VDF : 7.10.8.46 2048 Bytes 6/10/2010 12:08:03
VBASE023.VDF : 7.10.8.47 2048 Bytes 6/10/2010 12:08:03
VBASE024.VDF : 7.10.8.48 2048 Bytes 6/10/2010 12:08:03
VBASE025.VDF : 7.10.8.49 2048 Bytes 6/10/2010 12:08:03
VBASE026.VDF : 7.10.8.50 2048 Bytes 6/10/2010 12:08:03
VBASE027.VDF : 7.10.8.51 2048 Bytes 6/10/2010 12:08:03
VBASE028.VDF : 7.10.8.52 2048 Bytes 6/10/2010 12:08:04
VBASE029.VDF : 7.10.8.53 2048 Bytes 6/10/2010 12:08:04
VBASE030.VDF : 7.10.8.54 2048 Bytes 6/10/2010 12:08:04
VBASE031.VDF : 7.10.8.59 34304 Bytes 6/11/2010 12:08:04
Engineversion : 8.2.2.6
AEVDF.DLL : 8.1.2.0 106868 Bytes 6/11/2010 12:08:13
AESCRIPT.DLL : 8.1.3.31 1352058 Bytes 6/11/2010 12:08:13
AESCN.DLL : 8.1.6.1 127347 Bytes 6/11/2010 12:08:11
AESBX.DLL : 8.1.3.1 254324 Bytes 6/11/2010 12:08:13
AERDL.DLL : 8.1.4.6 541043 Bytes 6/11/2010 12:08:11
AEPACK.DLL : 8.2.1.1 426358 Bytes 3/19/2010 18:34:51
AEOFFICE.DLL : 8.1.1.0 201081 Bytes 6/11/2010 12:08:10
AEHEUR.DLL : 8.1.1.33 2724214 Bytes 6/11/2010 12:08:10
AEHELP.DLL : 8.1.11.5 242038 Bytes 6/11/2010 12:08:07
AEGEN.DLL : 8.1.3.10 377205 Bytes 6/11/2010 12:08:07
AEEMU.DLL : 8.1.2.0 393588 Bytes 6/11/2010 12:08:06
AECORE.DLL : 8.1.15.3 192886 Bytes 6/11/2010 12:08:05
AEBB.DLL : 8.1.1.0 53618 Bytes 6/11/2010 12:08:05
AVWINLL.DLL : 10.0.0.0 19304 Bytes 1/14/2010 18:03:38
AVPREF.DLL : 10.0.0.0 44904 Bytes 1/14/2010 18:03:35
AVREP.DLL : 10.0.0.8 62209 Bytes 2/18/2010 22:47:40
AVREG.DLL : 10.0.3.0 53096 Bytes 4/1/2010 18:35:46
AVSCPLR.DLL : 10.0.3.0 83816 Bytes 4/1/2010 18:39:51
AVARKT.DLL : 10.0.0.14 227176 Bytes 4/1/2010 18:22:13
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 1/26/2010 15:53:30
SQLITE3.DLL : 3.6.19.0 355688 Bytes 1/28/2010 18:57:58
AVSMTP.DLL : 10.0.0.17 63848 Bytes 3/16/2010 21:38:56
NETNT.DLL : 10.0.0.0 11624 Bytes 2/19/2010 20:41:00
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 1/28/2010 19:10:20
RCTEXT.DLL : 10.0.53.0 97128 Bytes 4/9/2010 20:14:29

Configuration settings for the scan:
Jobname.............................: Short system scan after installation
Configuration file..................: c:\program files\avira\antivir desktop\setupprf.dat
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: off
Integrity checking of system files..: off
Scan all files......................: Intelligent file selection
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium

Start of the scan: Friday, June 11, 2010 07:09

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'avconfig.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avshadow.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'setup.exe' - '1' Module(s) have been scanned
Scan process 'msiexec.exe' - '1' Module(s) have been scanned
Scan process 'presetup.exe' - '1' Module(s) have been scanned
Scan process 'avira_antivir_personal_en.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'DkService.exe' - '1' Module(s) have been scanned
Scan process 'astsrv.exe' - '1' Module(s) have been scanned
Scan process 'PhotoshopElementsFileAgent.exe' - '1' Module(s) have been scanned
Scan process 'schedul2.exe' - '1' Module(s) have been scanned
Scan process 'KHALMNPR.EXE' - '1' Module(s) have been scanned
Scan process 'SetPoint.exe' - '1' Module(s) have been scanned
Scan process 'LCDClock.exe' - '1' Module(s) have been scanned
Scan process 'RUNDLL32.EXE' - '1' Module(s) have been scanned
Scan process 'CTXFIHLP.EXE' - '1' Module(s) have been scanned
Scan process 'UMonit.exe' - '1' Module(s) have been scanned
Scan process 'schedhlp.exe' - '1' Module(s) have been scanned
Scan process 'TrueImageMonitor.exe' - '1' Module(s) have been scanned
Scan process 'LGDCore.exe' - '1' Module(s) have been scanned
Scan process 'LCDMon.exe' - '1' Module(s) have been scanned
Scan process 'Explorer.EXE' - '1' Module(s) have been scanned
Scan process 'CTAudSvc.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Master boot sector HD2
[INFO] No virus was found!
Master boot sector HD3
[INFO] No virus was found!
Master boot sector HD4
[INFO] No virus was found!
Master boot sector HD5
[INFO] No virus was found!
Master boot sector HD6
[INFO] No virus was found!
Master boot sector HD7
[INFO] No virus was found!
Master boot sector HD8
[INFO] No virus was found!

Start scanning boot sectors:

Starting to scan executable files (registry).
The registry was scanned ( '489' files ).



End of the scan: Friday, June 11, 2010 07:09
Used time: 00:17 Minute(s)

The scan has been done completely.

0 Scanned directories
967 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
967 Files not concerned
5 Archives were scanned
0 Warnings
0 Notes

Nice Job nuclearjock!

TFC(Temp File Cleaner):

• Please download TFC to your desktop,
  
• Save any unsaved work. TFC will close all open application windows.
  
• Double-click TFC.exe to run the program.
  
• If prompted, click "Yes" to reboot.

Note: Save your work. TFC will automatically close any open programs, let it run uninterrupted. It shouldn't take longer take a couple of minutes, and may only take a few seconds. Only if needed will you be prompted to reboot.

Next

I want to look at this file.

Check a file/files
Use your browser to go here at Virustotal website
Click the Browse button and then navigate to
c:\windows\system32\encapi5.dll


then click the Submit button.

The various virus scanners will identify the file and if it is not identified, the AV vendors will then have a copy of it for analysis. Save the results, and post back here in a reply.

I ran TFC and rebooted. I then checked and I have a encapi.dll file but no encapi5.dll file. What next?

You will need to enable hidden files and folders by doing the following:
Windows XP

* Click Start.
* Open My Computer.
* Select the Tools menu and click Folder Options.
* Select the View Tab.
* Under the Hidden files and folders heading select Show hidden files and folders.
* Uncheck the Hide protected operating system files (recommended) option.
* Click Yes to confirm.
* Click OK.

Then try to upload the file: c:\windows\system32\encapi5.dll

I still don't see encapi5.dll in the system32 directory, just encapi.dll

That file is clean. Go ahead and able hidden files and folders back the way they were.

Update Run Malwarebytes

• Launch Malwarebytes' Anti-Malware
  
• If an update is found, it will download and install the latest version.
  
• Once the program has loaded, select "Perform Quick Scan", then click Scan.
  
• The scan may take some time to finish,so please be patient.
  
• When the scan is complete, click OK, then Show Results to view the results.
  
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  
• Copy&Paste the entire report in your next reply.
  

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

Kenny,

When I go to start->control panel->add/remove programs a majority of the programs no longer show a "remove" button. I read somewhere that AV security suite buries itsels in Java so I wanted to nuke my current java and reinstall a fresh copy. there was no remove option for java so I had to download/install/run/remove java with windows install clean up. what's this about???

Here's mbam log: I always turn off the automatic updates warning. I dont use automatic updates.

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4189

Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

6/11/2010 2:32:34 PM
mbam-log-2010-06-11 (14-32-34).txt

Scan type: Quick scan
Objects scanned: 137294
Time elapsed: 2 minute(s), 50 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 3
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Older versions of Java on your computer. These can be a source of infection. So yes. We still have work to do.

Please download JavaRa from here

• First, unzip it.
  
• Then run JavaRa.
  
• Select English from the drop down menu and press Select.
  
• This will open JavaRa.
  
• Press Remove older versions
  
• Press yes to the prompt.
  
• It will make a log file of what it's removed.
  
• Copy and paste the log back here.
  

Then look for the following Java folders and if found delete them.

C:\Program Files\Java
C:\Program Files\Common Files\Java
C:\Documents and Settings\All Users\Application Data\Java
C:\Documents and Settings\All Users\Application Data\Sun\Java
C:\Documents and Settings\username\Application Data\Java
C:\Documents and Settings\username\Application Data\Sun\Java

Next

Download and Update Java Runtime
The most current version of Sun Java is: Java Runtime Environment (JRE) 6 Update 20.

• Go to
  https://cds.sun.com/is-bin/INTERSHOP.enfinity/WFS/CDS-CDS_Developer-Site/en_US/-/USD/ViewProductDetail-Start?ProductRef=jre-6u20-oth-JPR@CDS-CDS_Developer
  
• In Platform box choose Windows .
  
• Check the box to Accept License Agreement and click Continue.
  
• Click on Windows Offline Installation, click on the link under it which says jre-6u14-windows-i586-p.exe (Top One) and save the downloaded file to your desktop.
  
• Install the new version by running the newly-downloaded file with the java icon which will be on your desktop, and follow the on-screen instructions.
  
• Uncheck the Toolbar button (unless you want the toolbar)
  
• Reboot your computer

To test your Java Run-time, you may go to this page http://www.java.com/en/download/help/testvm.xml
When all is well, you should see Java Version: 1.6.0_20 from Sun Microsystems Inc.

Next

Please run this online scan to help look for remnants.

Establish an internet connection & perform an online scan with Internet Explorer at Kaspersky Online Scanner

Click Accept, when prompted to download and install the program files and database of malware definitions.

• Click Run at the Security prompt.
  
• The program will then begin downloading and installing and will also update the database.
  
• Please be patient as this can take several minutes.
  
• Once the update is complete, click on My Computer under the green Scan bar to the left to start the scan.
  
• Once the scan is complete, it will display if your system has been infected. It does not provide an option to clean/disinfect. We only require a report from it.
  
• Do NOT be alarmed by what you see in the report. Many of the finds have likely been quarantined.
  
• Click View scan report at the bottom.
  
• Click the Save Report As... button.
  
• Click the Save as Text button to save the file to your desktop so that you may post it in your next reply.
  

**Note**

To optimize scanning time and produce a more sensible report for review:

• Close any open programs.
  
• Turn off the real-time scanner of all antivirus or antispyware programs while performing the online scan.
  

Note for Internet Explorer 7 users: If at any time you have trouble viewing the accept button of the license, click on the Zoom tool located at the bottom right of the IE window and set the zoom to 75%. Once the license is accepted, reset to 100%.

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Fri Jun 11 16:10:43 2010

Found and removed: C:\Program Files\Java\jre1.6.0_03

Found and removed: Software\JavaSoft\Java2D\1.5.0_12

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\JavaPlugin.160_03

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_03

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_03

Found and removed: Software\Classes\JavaPlugin.160_03

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_03

Found and removed: Software\JavaSoft\Java2D\1.6.0_03

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_03

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_03\bin\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\C:\Program Files\Common Files\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_03.b05\

------------------------------------

Finished reporting.

Please run Kaspersky Online Scanner and then we''ll deal with a driver.

--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0: scan report
Saturday, June 12, 2010
Operating system: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)
Kaspersky Online Scanner version: 7.0.26.13
Last database update: Friday, June 11, 2010 23:16:03
Records in database: 4260874
--------------------------------------------------------------------------------

Scan settings:
scan using the following database: extended
Scan archives: yes
Scan e-mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\
F:\
G:\
H:\
I:\
K:\
L:\
M:\
N:\
O:\
W:\

Scan statistics:
Objects scanned: 463641
Threats found: 8
Infected objects found: 9
Suspicious objects found: 0
Scan duration: 04:48:27


File name / Threat / Threats count
C:\Qoobox\Quarantine\C\Documents and Settings\Rick Wintermute\Local Settings\Application Data\syssvc.exe.vir Infected: Trojan.Win32.KillAV.gnc 1
D:\Microsoft Games\downloaded aircraft\Captain Sim\757 200\Captain Sim 757\CS_B757_KeyGen.exe Infected: Trojan.Win32.Genome.aycs 1
D:\music\Lindsey Buckingham\wrong lindsey buckingham.mp3 Infected: Trojan-Downloader.WMA.GetCodec.c 1
D:\SYSTEM\crysis\Crysis.exe Infected: Trojan.Win32.Genome.wze 1
D:\SYSTEM\downloaded programs\FU-Setup_LE.exe Infected: not-a-virus:AdWare.Win32.Rabio.dk 1
D:\SYSTEM\downloaded programs\scicoe1201.exe Infected: not-a-virus:WebToolbar.Win32.WhenU.a 1
D:\SYSTEM\downloaded programs\sdie.exe Infected: not-a-virus:WebToolbar.Win32.WhenU.a 1
G:\Incomplete\T-5745425-star spangled banner prince [unreleased rare track].mp3 Infected: Trojan-Downloader.WMA.GetCodec.r 1
G:\test\america prince new single.mp3 Infected: Trojan-Downloader.WMA.GetCodec.af 1

Selected area has been scanned.

Please download the OTM by OldTimer.

• Save it to your desktop.
  
• Please double-click OTM.exe to run it. (Vista users, please right click on OTM.exe and select "Run as an Administrator")
  
• Copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
  
  

  Code:

  :Processes

:Services

:Reg

:Files
D:\Microsoft Games\downloaded aircraft\Captain Sim\757 200\Captain Sim 757\CS_B757
D:\music\Lindsey Buckingham\wrong lindsey buckingham.mp3
D:\SYSTEM\crysis\Crysis.exe
D:\SYSTEM\downloaded programs\FU-Setup_LE.exe
D:\SYSTEM\downloaded programs\scicoe1201.exe
D:\SYSTEM\downloaded programs\sdie.exe
G:\Incomplete\T-5745425-star spangled banner prince [unreleased rare track].mp3
G:\test\america prince new single.mp3



:Commands
[purity]
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[EMPTYFLASH]
[Reboot]
  
  
• Return to OTM, right click in the "Paste instructions for items to be Move" window (under the light Yellow bar) and choose Paste.
  
• Click the red Moveit! button.
  
• A log of files and folders moved will be created in the c:\_OTM\MovedFiles folder in the form of Date and Time (mmddyyyy_hhmmss.log). Please open this log in Notepad and post its contents in your next reply.
  
• Close OTM
  

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

Kenny,
I screwed up, ran otm, and hit the clean up button first!!!

Went back and did what you told me to do and these are the results.

Hope I didn't screw anything up too bad.. :sad:

Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!

OTM by OldTimer - Version 3.1.12.2 log created on 06122010_074943

Last edited by nuclearjock on 12th June 2010, 12:53 pm; edited 1 time in total (Reason for editing : mistake)

I have a restore point created after reinstalling Java. That one should get me back to where I was B4 otm if that should be necessary. Sorry I dorked up.


Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!
Error: Unable to interpret in the current context!

OTM by OldTimer - Version 3.1.12.2 log created on 06122010_074943

No don't do this....

Using Windows Explorer (to get there right-click your Start button and go to "Explore"), please delete these Folders (if present):

D:\Microsoft Games\downloaded aircraft\Captain Sim

D:\SYSTEM\crysis

G:\Incomplete


Using Windows Explorer (to get there right-click your Start button and go to "Explore"), please delete these Files (if present):

D:\music\Lindsey Buckingham\wrong lindsey buckingham.mp3

D:\SYSTEM\downloaded programs\FU-Setup_LE.exe

D:\SYSTEM\downloaded programs\scicoe1201.exe

D:\SYSTEM\downloaded programs\sdie.exe

G:\test\america prince new single.mp3

Done!

How is your PC now?

ok except no sound. Driver is freshley installed and working, media player says no hardware. when I boot into vista, sound is fine so it's not a hardware issue. do I have to restart anything that I disabled??

Lets remove the tools first. And go from there....

To re-enable your Emulation drivers, double click DeFogger to run the tool.

• The application window will appear
  
• Click the Re-enable button to re-enable your CD Emulation drivers
  
• Click Yes to continue
• A 'Finished!' message will appear
  
• Click OK
  
• DeFogger will now ask to reboot the machine - click OK
  

IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_enable which will appear on your desktop.

Your Emulation drivers are now re-enabled.

To remove all of the tools we used and the files and folders they created, please do the following:
Please download OTC.exe by OldTimer:

• Save it to your Desktop.
  
• Double click OTC.exe.
  
• Click the CleanUp! button.
  
• If you are prompted to Reboot during the cleanup, select Yes.
  
• The tool will delete itself once it finishes.
  

Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

Your Computer is Clean






Some final items:


Follow these steps to uninstall Combofix and tools used in the removal of malware

• Please press the Windows Key and R on your keyboard. This will bring up the Run... command.
  
• Now type in Combofix /Uninstall in the runbox and click OK. (Notice the space between the x and /)
  
  
• Please follow the prompts to uninstall Combofix.
  
• You will then recieve a message saying Combofix was uninstalled successfully once it's done uninstalling itself.
  

This will uninstall Combofix and anything assoicated with it.

Here are some additional links for you to check out to help you with your computer security.

Browsers

Just because your computer came loaded with Internet Explorer doesn't mean that you have to use it, there are other free alternatives, FIREFOX and OPERA, both are free to use and are more secure than IE.

If you are using firefox you can stay more secure by adding NoScript and WOT (Web Of Trust)

NoScript stops Java scripts from starting on a web page unless you give permission for them, and WOT (Web Of Trust) has a comprehensive list of ratings for different websites allowing you to easily see if a website that you are about to go to has a bad reputation; in fact it will warn you to check if you are sure that you want to continue to a bad website.

• Make your Internet Explorer more secure - This can be done by following these simple instructions:
  
• From within Internet Explorer click on the Tools menu and then click on Options.
  
• Click once on the Security tab
  
• Click once on the Internet icon so it becomes highlighted.
  
• Click once on the Custom Level button.
  
• Change the Download signed ActiveX controls to Prompt
  
• Change the Download unsigned ActiveX controls to Disable
  
• Change the Initialize and script ActiveX controls not marked as safe to Disable
  
• Change the Installation of desktop items to Prompt
  
• Change the Launching programs and files in an IFRAME to Prompt
  
• Change the Navigate sub-frames across different domains to Prompt
  
• When all these settings have been made, click on the OK button
  
• If it prompts you as to whether or not you want to save the settings, press the Yes button.
  
• Next press the Apply button and then the OK to exit the Internet Properties page.
  

Additional Security Measures


Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

SpywareBlaster- SpywareBlaster will add a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.

Cookienator- Scans your PC for tracking cookies in multiple browsers as well as in Adobe Flash.

Winpatrol Download and install the free version of Winpatrol. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.

Secunia software inspector & update checker

My Blog Malware And Spyware Tips

Also, see here for system improvement: Help! My computer is slow!


It was a pleasure working with you.

After the above steps. Let me know on your sound.

kenny, still no sound. do I have to re-enable anything???

Nope. Have you restated your PC? None of the tools we used will effect your PC sound. Have you looked in the Windows Device Manager?

Please visit the links HERE and HERE first to read about this new Microsoft tool!

Then you can download and use: Microsoft Fix it Center Online
Microsoft Fix it Center Client contains troubleshooters that help detect issues on target PCs and solve them on demand or proactively before you even know they exist!
It finds and fixes many common PC and device problems automatically. It also helps prevent new problems by proactively checking for known issues and installing updates. Fix it Center helps to consolidate the many steps of diagnosing and repairing a problem into an automated tool that does the work for you.

Microsoft Fix it Center makes getting support easier than ever, with tools that help solve the issues you have now and prevent new ones.

• Easy to Install and Run: Easy-to-use wizards will guide you through the set-up process and help you anytime you need support.
  
  
• Automated: With automated troubleshooters, Fix it Center helps solve issues with your PC, even if you're not sure what the exact problem is. Fix It Center scans your device to diagnose and repair problems, then gives you the option to "Find and fix" or to "Find and report.
  
  
• Preventive Care: By helping you find and fix issues before they become real problems, Fix it Center helps keep your PC running smoothly and automatically downloading the latest solutions.
  

Let me know after you had run all the troubleshooters on your pc if it corrected your problem.

Received your PM. Did you try Microsoft Fix it Center Online.

no sound in XP. says "no sound device". when I boot into Vista, all's good. what gives??

You have two OS on this PC?

no, I didn't try the fix it center. yes, dual boot xp, vista 64. sound is ok in vista.

What about cleaning up restore points etc???

Uninstall Combofix does remove all but the most recent Restore Points....