Avira Free Antivirus Report file date: 8 października 2013 14:01 The program is running as an unrestricted full version. Online services are available. Licensee : Avira Free Antivirus Serial number : 0000149996-ADJIE-0000001 Platform : Microsoft Windows XP Windows version : (Dodatek Service Pack 3) [5.1.2600] Boot mode : Normally booted Username : SYSTEM Computer name : SYJU-DOM Version information: BUILD.DAT : 14.0.0.383 55392 Bytes 2013-09-30 11:01:00 AVSCAN.EXE : 14.0.0.383 968776 Bytes 2013-10-07 12:46:57 AVSCANRC.DLL : 14.0.0.225 52296 Bytes 2013-10-07 12:46:57 LUKE.DLL : 14.0.0.383 65096 Bytes 2013-10-07 12:47:53 AVSCPLR.DLL : 14.0.0.383 92232 Bytes 2013-10-07 12:46:58 AVREG.DLL : 14.0.0.383 250440 Bytes 2013-10-07 12:46:54 avlode.dll : 14.0.0.383 512584 Bytes 2013-10-07 12:46:51 avlode.rdf : 13.0.1.42 26846 Bytes 2013-10-04 16:00:17 VBASE000.VDF : 7.11.70.0 66736640 Bytes 2013-04-04 15:56:25 VBASE001.VDF : 7.11.74.226 2201600 Bytes 2013-04-30 15:56:33 VBASE002.VDF : 7.11.80.60 2751488 Bytes 2013-05-28 15:56:42 VBASE003.VDF : 7.11.85.214 2162688 Bytes 2013-06-21 15:56:49 VBASE004.VDF : 7.11.91.176 3903488 Bytes 2013-07-23 15:57:11 VBASE005.VDF : 7.11.98.186 6822912 Bytes 2013-08-29 15:57:33 VBASE006.VDF : 7.11.103.230 2293248 Bytes 2013-09-24 15:57:41 VBASE007.VDF : 7.11.103.231 2048 Bytes 2013-09-24 15:57:42 VBASE008.VDF : 7.11.103.232 2048 Bytes 2013-09-24 15:57:42 VBASE009.VDF : 7.11.103.233 2048 Bytes 2013-09-24 15:57:42 VBASE010.VDF : 7.11.103.234 2048 Bytes 2013-09-24 15:57:42 VBASE011.VDF : 7.11.103.235 2048 Bytes 2013-09-24 15:57:42 VBASE012.VDF : 7.11.103.236 2048 Bytes 2013-09-24 15:57:42 VBASE013.VDF : 7.11.103.237 2048 Bytes 2013-09-24 15:57:42 VBASE014.VDF : 7.11.104.123 282112 Bytes 2013-09-26 15:57:43 VBASE015.VDF : 7.11.104.237 359424 Bytes 2013-09-28 15:57:44 VBASE016.VDF : 7.11.105.103 195072 Bytes 2013-10-02 15:57:45 VBASE017.VDF : 7.11.105.243 571904 Bytes 2013-10-07 05:26:52 VBASE018.VDF : 7.11.106.91 185856 Bytes 2013-10-08 11:27:06 VBASE019.VDF : 7.11.106.92 2048 Bytes 2013-10-08 11:27:06 VBASE020.VDF : 7.11.106.93 2048 Bytes 2013-10-08 11:27:06 VBASE021.VDF : 7.11.106.94 2048 Bytes 2013-10-08 11:27:06 VBASE022.VDF : 7.11.106.95 2048 Bytes 2013-10-08 11:27:07 VBASE023.VDF : 7.11.106.96 2048 Bytes 2013-10-08 11:27:07 VBASE024.VDF : 7.11.106.97 2048 Bytes 2013-10-08 11:27:07 VBASE025.VDF : 7.11.106.98 2048 Bytes 2013-10-08 11:27:07 VBASE026.VDF : 7.11.106.99 2048 Bytes 2013-10-08 11:27:07 VBASE027.VDF : 7.11.106.100 2048 Bytes 2013-10-08 11:27:07 VBASE028.VDF : 7.11.106.101 2048 Bytes 2013-10-08 11:27:07 VBASE029.VDF : 7.11.106.102 2048 Bytes 2013-10-08 11:27:08 VBASE030.VDF : 7.11.106.103 2048 Bytes 2013-10-08 11:27:08 VBASE031.VDF : 7.11.106.104 55296 Bytes 2013-10-08 11:27:08 Engine version : 8.2.12.126 AEVDF.DLL : 8.1.3.4 102774 Bytes 2013-10-04 15:58:04 AESCRIPT.DLL : 8.1.4.154 512382 Bytes 2013-10-04 15:58:03 AESCN.DLL : 8.1.10.4 131446 Bytes 2013-10-04 15:58:03 AESBX.DLL : 8.2.16.26 1245560 Bytes 2013-10-04 15:58:05 AERDL.DLL : 8.2.0.128 688504 Bytes 2013-10-04 15:58:02 AEPACK.DLL : 8.3.2.30 749945 Bytes 2013-10-04 15:58:01 AEOFFICE.DLL : 8.1.2.76 205181 Bytes 2013-10-04 15:58:00 AEHEUR.DLL : 8.1.4.676 6201722 Bytes 2013-10-04 15:57:59 AEHELP.DLL : 8.1.27.6 266617 Bytes 2013-10-04 15:57:50 AEGEN.DLL : 8.1.7.14 446839 Bytes 2013-10-04 15:57:50 AEEXP.DLL : 8.4.1.62 328055 Bytes 2013-10-04 15:58:06 AEEMU.DLL : 8.1.3.2 393587 Bytes 2013-10-04 15:57:49 AECORE.DLL : 8.1.32.0 201081 Bytes 2013-10-04 15:57:49 AEBB.DLL : 8.1.1.4 53619 Bytes 2013-10-04 15:57:48 AVWINLL.DLL : 14.0.0.225 23624 Bytes 2013-10-07 12:46:39 AVPREF.DLL : 14.0.0.225 48712 Bytes 2013-10-07 12:46:53 AVREP.DLL : 14.0.0.225 175688 Bytes 2013-10-07 12:46:55 AVARKT.DLL : 14.0.0.225 257096 Bytes 2013-10-07 12:46:42 AVEVTLOG.DLL : 14.0.0.383 165960 Bytes 2013-10-07 12:46:46 SQLITE3.DLL : 3.7.0.1 394824 Bytes 2013-10-04 15:59:48 AVSMTP.DLL : 14.0.0.225 60488 Bytes 2013-10-07 12:46:59 NETNT.DLL : 14.0.0.225 13384 Bytes 2013-10-07 12:47:54 RCIMAGE.DLL : 14.0.0.225 4788808 Bytes 2013-10-07 12:46:40 RCTEXT.DLL : 14.0.0.225 66632 Bytes 2013-10-07 12:46:40 Configuration settings for the scan: Jobname.............................: AVGuardAsyncScan Configuration file..................: C:\Documents and Settings\All Users\Dane aplikacji\Avira\AntiVir Desktop\TEMP\AVGUARD_5253ef05\guard_slideup.avp Reporting...........................: default Primary action......................: Repair Secondary action....................: Quarantine Scan master boot sector.............: on Scan boot sector....................: off Process scan........................: on Scan registry.......................: off Search for rootkits.................: off Integrity checking of system files..: off Scan all files......................: All files Scan archives.......................: on Limit recursion depth...............: 20 Smart extensions....................: on Macrovirus heuristic................: on File heuristic......................: Complete Deviating risk categories...........: +APPL,+GAME,+JOKE,+PCK,+SPR, Start of the scan: 8 października 2013 14:01 The scan of running processes will be started: Scan process 'avscan.exe' - '91' Module(s) have been scanned Scan process 'DTLite4471-0337.exe' - '66' Module(s) have been scanned Scan process 'TOTALCMD.EXE' - '76' Module(s) have been scanned Scan process 'NMBgMonitor.exe' - '43' Module(s) have been scanned Scan process 'NMIndexingService.exe' - '37' Module(s) have been scanned Scan process 'NMIndexStoreSvr.exe' - '57' Module(s) have been scanned Scan process 'DLG.exe' - '22' Module(s) have been scanned Scan process 'ctfmon.exe' - '25' Module(s) have been scanned Scan process 'InCD.exe' - '40' Module(s) have been scanned Scan process 'SynTPLpr.exe' - '19' Module(s) have been scanned Scan process 'ACWLIcon.exe' - '56' Module(s) have been scanned Scan process 'ACTray.exe' - '30' Module(s) have been scanned Scan process 'SynTPEnh.exe' - '40' Module(s) have been scanned Scan process 'SMax4PNP.exe' - '32' Module(s) have been scanned Scan process 'TpShocks.exe' - '22' Module(s) have been scanned Scan process 'scheduler_proxy.exe' - '30' Module(s) have been scanned Scan process 'EzEjMnAp.Exe' - '25' Module(s) have been scanned Scan process 'EZEJTRAY.EXE' - '22' Module(s) have been scanned Scan process 'TBNotifier.exe' - '60' Module(s) have been scanned Scan process 'avgnt.exe' - '69' Module(s) have been scanned Scan process 'TpScrex.exe' - '24' Module(s) have been scanned Scan process 'TPONSCR.exe' - '19' Module(s) have been scanned Scan process 'TPOSDSVC.exe' - '38' Module(s) have been scanned Scan process 'Explorer.EXE' - '110' Module(s) have been scanned Scan process 'Ati2evxx.exe' - '20' Module(s) have been scanned Scan process 'alg.exe' - '33' Module(s) have been scanned Scan process 'AVWEBGRD.EXE' - '47' Module(s) have been scanned Scan process 'avshadow.exe' - '20' Module(s) have been scanned Scan process 'SvcGuiHlpr.exe' - '61' Module(s) have been scanned Scan process 'SUService.exe' - '45' Module(s) have been scanned Scan process 'AcSvc.exe' - '79' Module(s) have been scanned Scan process 'UpdateMonitor.exe' - '49' Module(s) have been scanned Scan process 'tvtsched.exe' - '37' Module(s) have been scanned Scan process 'rrservice.exe' - '47' Module(s) have been scanned Scan process 'rrpservice.exe' - '23' Module(s) have been scanned Scan process 'TpKmpSVC.exe' - '9' Module(s) have been scanned Scan process 'tvt_reg_monitor_svc.exe' - '21' Module(s) have been scanned Scan process 'SMAgent.exe' - '14' Module(s) have been scanned Scan process 'RegSrvc.exe' - '29' Module(s) have been scanned Scan process 'LSSrvc.exe' - '19' Module(s) have been scanned Scan process 'InCDsrv.exe' - '36' Module(s) have been scanned Scan process 'apnmcp.exe' - '24' Module(s) have been scanned Scan process 'avguard.exe' - '84' Module(s) have been scanned Scan process 'AcPrfMgrSvc.exe' - '53' Module(s) have been scanned Scan process 'TPHKSVC.exe' - '37' Module(s) have been scanned Scan process 'svchost.exe' - '34' Module(s) have been scanned Scan process 'sched.exe' - '40' Module(s) have been scanned Scan process 'spoolsv.exe' - '52' Module(s) have been scanned Scan process 'svchost.exe' - '38' Module(s) have been scanned Scan process 'svchost.exe' - '32' Module(s) have been scanned Scan process 'S24EvMon.exe' - '24' Module(s) have been scanned Scan process 'svchost.exe' - '160' Module(s) have been scanned Scan process 'svchost.exe' - '38' Module(s) have been scanned Scan process 'svchost.exe' - '51' Module(s) have been scanned Scan process 'Ati2evxx.exe' - '15' Module(s) have been scanned Scan process 'ibmpmsvc.exe' - '16' Module(s) have been scanned Scan process 'lsass.exe' - '82' Module(s) have been scanned Scan process 'services.exe' - '27' Module(s) have been scanned Scan process 'winlogon.exe' - '79' Module(s) have been scanned Scan process 'csrss.exe' - '12' Module(s) have been scanned Scan process 'smss.exe' - '2' Module(s) have been scanned Starting the file scan: Begin scan in 'C:\Documents and Settings\Sylwek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\CXUFWX2N\bi_downloader[1].exe' C:\Documents and Settings\Sylwek\Ustawienia lokalne\Temporary Internet Files\Content.IE5\CXUFWX2N\bi_downloader[1].exe [0] Archive type: NSIS --> ProgramFilesDir/bi_client.exe [DETECTION] Contains recognition pattern of the APPL/Somoto.Gen2 application [WARNING] Infected files in archives cannot be repaired [NOTE] A backup was created as '56796219.qua' ( QUARANTINE ) [NOTE] The file was moved to the quarantine directory under the name '4eee4d56.qua'! End of the scan: 8 października 2013 14:02 Used time: 00:43 Minute(s) The scan has been done completely. 0 Scanned directories 1230 Files were scanned 1 Viruses and/or unwanted programs were found 0 Files were classified as suspicious 0 Files were deleted 0 Viruses and unwanted programs were repaired 2 Files were moved to quarantine 0 Files were renamed 0 Files cannot be scanned 1229 Files not concerned 10 Archives were scanned 1 Warnings 1 Notes