A Sample Windows Defender log file

Note: The files in
[ %root% :\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Quick\ ]
and
[ %root% :\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\ ]
are encrypted or otherwise obscured.



---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Thu Nov 02 2006 05:01:08
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{4B86E202-923B-4C6A-BA4F-C455A366B2FA}
Scan Source:4
Start Time:Thu Nov 02 2006 05:04:09
End Time:Thu Nov 02 2006 05:04:09
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-51003140-4199384537-3980697693-500\D:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:D:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:d:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:D:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{C44E2B7A-CE9A-46F2-81EC-CB130F6B0C0C}
Scan Source:4
Start Time:Thu Nov 02 2006 05:07:57
End Time:Thu Nov 02 2006 05:07:57
Explicit resource to scan
Resource Schema:runonce
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\iessetup
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:4
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\iessetup
Resource Schema:runonce
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\iessetup
Resource Schema:file
Resource Path:D:\Windows\system32\rundll32.exe
Resource Schema:file
Resource Path:D:\Program Files\Internet Explorer\iessetup.dll
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{BE3E8E7F-36F5-4ABE-B209-E8850502B3F3}
Scan Source:4
Start Time:Thu Nov 02 2006 05:08:07
End Time:Thu Nov 02 2006 05:08:07
Explicit resource to scan
Resource Schema:runonce
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\wmssetup
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:4
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\wmssetup
Resource Schema:runonce
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\wmssetup
Resource Schema:file
Resource Path:D:\Windows\system32\rundll32.exe
Resource Schema:file
Resource Path:D:\Program Files\Windows Media Player\wmssetup.dll
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{3947ABF3-F204-4AE6-B367-7AD43774477C}
Scan Source:4
Start Time:Thu Nov 02 2006 05:08:07
End Time:Thu Nov 02 2006 05:08:07
Explicit resource to scan
Resource Schema:runonce
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ehssetup
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:4
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ehssetup
Resource Schema:runonce
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ehssetup
Resource Schema:file
Resource Path:D:\Windows\system32\rundll32.exe
Resource Schema:file
Resource Path:D:\Windows\ehome\ehssetup.dll
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Thu Nov 01 2007 10:49:38
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Thu Nov 01 2007 10:55:27
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{5AB84984-5F8B-482C-A72A-88257D3AE873}
Scan Source:4
Start Time:Thu Nov 01 2007 10:58:29
End Time:Thu Nov 01 2007 10:58:29
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{18B85E81-A6B9-4535-89F2-93A9F8914FE4}
Scan Source:4
Start Time:Thu Nov 01 2007 11:01:40
End Time:Thu Nov 01 2007 11:01:41
Explicit resource to scan
Resource Schema:driver
Resource Path:rt61x86
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\netr61.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{0D06A6D7-64CF-44E7-BAD7-6C92AFF63898}
Scan Source:4
Start Time:Thu Nov 01 2007 11:01:40
End Time:Thu Nov 01 2007 11:01:41
Explicit resource to scan
Resource Schema:lsp
Resource Path:
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:10
Resource Schema:lsp
Resource Path:C:\Windows\System32\winrnr.dll
Resource Schema:lsp
Resource Path:C:\Windows\system32\pnrpnsp.dll
Resource Schema:lsp
Resource Path:C:\Windows\system32\NLAapi.dll
Resource Schema:lsp
Resource Path:C:\Windows\system32\napinsp.dll
Resource Schema:lsp
Resource Path:C:\Windows\system32\mswsock.dll
Resource Schema:file
Resource Path:C:\Windows\System32\winrnr.dll
Resource Schema:file
Resource Path:C:\Windows\system32\NLAapi.dll
Resource Schema:file
Resource Path:C:\Windows\system32\pnrpnsp.dll
Resource Schema:file
Resource Path:C:\Windows\system32\napinsp.dll
Resource Schema:file
Resource Path:C:\Windows\system32\mswsock.dll
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{BBB25E7A-69F1-46B3-A4C3-05D4644B279A}
Scan Source:4
Start Time:Thu Nov 01 2007 11:01:41
End Time:Thu Nov 01 2007 11:01:41
Explicit resource to scan
Resource Schema:service
Resource Path:{00BC1536-22F3-4F47-A756-23DB78FC2562}
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:1
Resource Schema:service
Resource Path:{00BC1536-22F3-4F47-A756-23DB78FC2562}
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{2D47A40F-5CA6-482D-9B3E-4B38D699CD58}
Scan Source:4
Start Time:Thu Nov 01 2007 11:01:41
End Time:Thu Nov 01 2007 11:01:41
Explicit resource to scan
Resource Schema:driver
Resource Path:{00BC1536-22F3-4F47-A756-23DB78FC2562}
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:1
Resource Schema:driver
Resource Path:{00BC1536-22F3-4F47-A756-23DB78FC2562}
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{5CE8DADE-E5FB-4B55-B1B8-23A594C06330}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:43
End Time:Thu Nov 01 2007 11:02:43
Explicit resource to scan
Resource Schema:driver
Resource Path:P17
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Windows\system32\drivers\P17.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{3D8D787E-E836-4E07-A0B1-8FDD3511A552}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:45
End Time:Thu Nov 01 2007 11:02:45
Explicit resource to scan
Resource Schema:driver
Resource Path:ossrv
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\ctoss2k.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{937D7023-47C4-4337-93F7-F88929AB79BA}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:45
End Time:Thu Nov 01 2007 11:02:45
Explicit resource to scan
Resource Schema:driver
Resource Path:ctsfm2k
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\ctsfm2k.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{D76351D0-ED95-4CC8-A49C-1605DE1C4924}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:45
End Time:Thu Nov 01 2007 11:02:46
Explicit resource to scan
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\P17Helper
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\P17Helper
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\P17Helper
Resource Schema:file
Resource Path:C:\Windows\system32\Rundll32.exe
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{7CA5A5F2-5161-4981-AC4B-5ED504D428D7}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:47
End Time:Thu Nov 01 2007 11:02:47
Explicit resource to scan
Resource Schema:driver
Resource Path:MSPCLOCK
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:MSPCLOCK
Resource Schema:file
Resource Path:C:\Windows\system32\drivers\MSPCLOCK.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{F29DAF70-6656-44F1-98D5-83EAFADB022D}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:47
End Time:Thu Nov 01 2007 11:02:47
Explicit resource to scan
Resource Schema:driver
Resource Path:MSPQM
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:MSPQM
Resource Schema:file
Resource Path:C:\Windows\system32\drivers\MSPQM.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{EC6A8041-DBA8-4B5C-B2A1-7D236D20FBAD}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:47
End Time:Thu Nov 01 2007 11:02:48
Explicit resource to scan
Resource Schema:driver
Resource Path:MSKSSRV
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:MSKSSRV
Resource Schema:file
Resource Path:C:\Windows\system32\drivers\MSKSSRV.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{05297992-CFF1-478A-9B54-80C70B01DD76}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:49
End Time:Thu Nov 01 2007 11:02:49
Explicit resource to scan
Resource Schema:driver
Resource Path:MSTEE
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:MSTEE
Resource Schema:file
Resource Path:C:\Windows\system32\drivers\MSTEE.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{AA62A637-EAA8-4D6A-9DA4-A510A29593C7}
Scan Source:4
Start Time:Thu Nov 01 2007 11:02:49
End Time:Thu Nov 01 2007 11:02:50
Explicit resource to scan
Resource Schema:driver
Resource Path:drmkaud
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:drmkaud
Resource Schema:file
Resource Path:C:\Windows\system32\drivers\drmkaud.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{3547D0E3-2798-444A-BBCB-C8A9C9CE6FF3}
Scan Source:4
Start Time:Thu Nov 01 2007 11:04:34
End Time:Thu Nov 01 2007 11:04:34
Explicit resource to scan
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter
Resource Schema:file
Resource Path:C:\Windows\system32\RUNDLL32.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{F591BCE0-7B17-4687-B199-949C849C75E1}
Scan Source:4
Start Time:Thu Nov 01 2007 11:04:34
End Time:Thu Nov 01 2007 11:04:34
Explicit resource to scan
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvCplDaemon
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvCplDaemon
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvCplDaemon
Resource Schema:file
Resource Path:C:\Windows\system32\RUNDLL32.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{4E1BCEEF-E34A-4060-BE1A-7602C39EF65F}
Scan Source:4
Start Time:Thu Nov 01 2007 11:04:33
End Time:Thu Nov 01 2007 11:04:34
Explicit resource to scan
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvSvc
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvSvc
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvSvc
Resource Schema:file
Resource Path:C:\Windows\system32\RUNDLL32.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{56E844CA-4E43-45EC-8D11-CC104503EAE7}
Scan Source:4
Start Time:Thu Nov 01 2007 11:04:33
End Time:Thu Nov 01 2007 11:04:43
Explicit resource to scan
Resource Schema:driver
Resource Path:nvlddmkm
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\nvlddmkm.sys
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Thu Nov 01 2007 11:05:44
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{283D000C-471C-40E7-94B7-7757C02EBA4B}
Scan Source:4
Start Time:Thu Nov 01 2007 11:08:32
End Time:Thu Nov 01 2007 11:08:32
Explicit resource to scan
Resource Schema:service
Resource Path:ose
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{0F9AAC4D-C9CF-4D6A-A8D4-3B2CA2C00C09}
Scan Source:4
Start Time:Thu Nov 01 2007 11:08:46
End Time:Thu Nov 01 2007 11:08:49
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{2535F1F1-3197-4140-A9BA-C78239BCB64D}
Scan Source:4
Start Time:Thu Nov 01 2007 11:13:14
End Time:Thu Nov 01 2007 11:13:14
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\mailto\shell\open\command\\
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{F759324C-9BD1-4EE7-930F-8B6C54482B8D}
Scan Source:4
Start Time:Thu Nov 01 2007 11:14:22
End Time:Thu Nov 01 2007 11:14:22
Explicit resource to scan
Resource Schema:driver
Resource Path:Outlook
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:1
Resource Schema:driver
Resource Path:Outlook
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{7B6996F6-0A0D-41AF-864B-AD8BE659F1CB}
Scan Source:4
Start Time:Thu Nov 01 2007 11:14:22
End Time:Thu Nov 01 2007 11:14:22
Explicit resource to scan
Resource Schema:service
Resource Path:Outlook
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:1
Resource Schema:service
Resource Path:Outlook
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{CD05022A-4686-4CDC-B369-F29FD5132674}
Scan Source:4
Start Time:Thu Nov 01 2007 11:14:30
End Time:Thu Nov 01 2007 11:14:31
Explicit resource to scan
Resource Schema:service
Resource Path:odserv
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{D09DA5BD-0C8F-4873-8495-D48CAF739F24}
Scan Source:4
Start Time:Thu Nov 01 2007 11:14:32
End Time:Thu Nov 01 2007 11:14:32
Explicit resource to scan
Resource Schema:driver
Resource Path:dot4usb
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:dot4usb
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\dot4usb.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{E78AAC43-C0A2-4C29-87D8-0ADA703E4069}
Scan Source:4
Start Time:Thu Nov 01 2007 11:14:32
End Time:Thu Nov 01 2007 11:14:38
Explicit resource to scan
Resource Schema:driver
Resource Path:Dot4Print
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:Dot4Print
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\Dot4Prt.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{DECD4D7D-6087-41C7-91DE-764E7E267A90}
Scan Source:4
Start Time:Thu Nov 01 2007 11:14:32
End Time:Thu Nov 01 2007 11:14:38
Explicit resource to scan
Resource Schema:driver
Resource Path:Dot4
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:Dot4
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\Dot4.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{3EE6E93D-DDFD-4294-8B8C-43EBA79B92FA}
Scan Source:4
Start Time:Thu Nov 01 2007 11:15:53
Explicit resource to scan
Resource Schema:ieshellbrowser
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\ITBar7Layout
!ERROR
Unsuccessfull Scan
Return Code:87
***********

----------------
Begin Resource Scan
Scan ID:{F23EB166-D71A-4E6C-81CB-A504FB69D6D4}
Scan Source:4
Start Time:Thu Nov 01 2007 11:15:53
End Time:Thu Nov 01 2007 11:15:53
Explicit resource to scan
Resource Schema:ieext
Resource Path:HKLM\Software\Microsoft\Internet Explorer\Extensions\{92780B25-18CC-41C8-B9BE-3C9C571A8263}
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Thu Nov 01 2007 11:54:56
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{51779800-4DDC-4DB3-8052-A8C2022483CE}
Scan Source:4
Start Time:Thu Nov 01 2007 11:55:59
End Time:Thu Nov 01 2007 11:55:59
Explicit resource to scan
Resource Schema:driver
Resource Path:ENTECH
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:driver
Resource Path:ENTECH
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\ENTECH.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{65320642-ECB0-4809-90E1-2146BDB0F585}
Scan Source:4
Start Time:Thu Nov 01 2007 11:57:58
End Time:Thu Nov 01 2007 11:57:58
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{23784EF2-897F-4B1E-B19A-32F2A5CE4FD7}
Scan Source:4
Start Time:Thu Nov 01 2007 11:58:14
End Time:Thu Nov 01 2007 11:58:14
Explicit resource to scan
Resource Schema:service
Resource Path:PciBus
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:1
Resource Schema:service
Resource Path:PciBus
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{7055C267-4AAA-41EC-83BB-158BEEABE06B}
Scan Source:4
Start Time:Thu Nov 01 2007 11:58:14
End Time:Thu Nov 01 2007 11:58:14
Explicit resource to scan
Resource Schema:driver
Resource Path:PciBus
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:1
Resource Schema:driver
Resource Path:PciBus
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sat Nov 03 2007 13:49:45
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{DFC66C20-9C07-476F-B99A-55ED1D499D13}
Scan Source:4
Start Time:Sat Nov 03 2007 13:52:47
End Time:Sat Nov 03 2007 13:52:47
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{E7127786-7DAB-4D8B-852F-A729D011C25A}
Scan Source:4
Start Time:Sat Nov 03 2007 14:06:47
End Time:Sat Nov 03 2007 14:06:48
Explicit resource to scan
Resource Schema:runkey
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Windows\CurrentVersion\Run\\ehTray.exe
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Windows\CurrentVersion\Run\\ehTray.exe
Resource Schema:runkey
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Windows\CurrentVersion\Run\\ehTray.exe
Resource Schema:file
Resource Path:C:\Windows\ehome\ehTray.exe
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sat Nov 03 2007 22:24:17
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{D89540A5-08AC-4219-A540-9FDA9D75ED66}
Scan Source:4
Start Time:Sat Nov 03 2007 22:27:19
End Time:Sat Nov 03 2007 22:27:19
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sun Nov 04 2007 02:10:54
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{38C68049-37FF-43C3-8639-A6BFB8E421ED}
Scan Source:4
Start Time:Sun Nov 04 2007 02:13:56
End Time:Sun Nov 04 2007 02:13:56
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{7E6585C9-F6BA-4EB8-8D54-0208FF0CFA13}
Scan Source:4
Start Time:Sun Nov 04 2007 02:14:36
End Time:Sun Nov 04 2007 02:14:36
Explicit resource to scan
Resource Schema:screensaver
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Control Panel\Desktop\\SCRNSAVE.EXE
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Control Panel\Desktop\\SCRNSAVE.EXE
Resource Schema:screensaver
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Control Panel\Desktop\\SCRNSAVE.EXE
Resource Schema:file
Resource Path:C:\Windows\system32\Aurora.scr
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sun Nov 04 2007 02:19:46
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sun Nov 04 2007 02:23:50
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{9EF56B09-6970-4DC2-BB15-EB1CCA7CB15D}
Scan Source:4
Start Time:Sun Nov 04 2007 02:26:52
End Time:Sun Nov 04 2007 02:26:52
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{CD5C3493-2CCC-458A-B1BF-81C16B4BCA17}
Scan Source:4
Start Time:Sun Nov 04 2007 02:38:25
End Time:Sun Nov 04 2007 02:38:26
Explicit resource to scan
Resource Schema:driver
Resource Path:nvstor32
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\nvstor32.sys
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{16B9818E-CB69-40B9-9DA5-A06B7BAF55D6}
Scan Source:4
Start Time:Sun Nov 04 2007 02:38:28
End Time:Sun Nov 04 2007 02:38:31
Explicit resource to scan
Resource Schema:driver
Resource Path:nvrd32
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Windows\system32\DRIVERS\nvrd32.sys
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sun Nov 04 2007 02:42:46
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{C19C4139-0728-4BD9-A321-29020F521E68}
Scan Source:4
Start Time:Sun Nov 04 2007 02:45:48
End Time:Sun Nov 04 2007 02:45:48
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sun Nov 04 2007 02:53:39
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Mon Nov 05 2007 18:55:57
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{0912189A-649B-4CEF-96ED-59EAE7AF49E7}
Scan Source:4
Start Time:Mon Nov 05 2007 18:58:59
End Time:Mon Nov 05 2007 18:58:59
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{185761EA-8840-40FA-834D-792798668A70}
Scan Source:4
Start Time:Mon Nov 05 2007 19:06:03
Explicit resource to scan
Resource Schema:iewebbrowser
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\ITBar7Layout
!ERROR
Unsuccessfull Scan
Return Code:87
***********

----------------
Begin Resource Scan
Scan ID:{9C6EDA19-4908-4297-840E-0805C26EC666}
Scan Source:4
Start Time:Mon Nov 05 2007 19:06:06
End Time:Mon Nov 05 2007 19:06:06
Explicit resource to scan
Resource Schema:iewebbrowser
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{F2CF5485-4E02-4F68-819C-B92DE9277049}
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:5
Resource Schema:clsid
Resource Path:HKLM\SOFTWARE\CLASSES\CLSID\{F2CF5485-4E02-4F68-819C-B92DE9277049}
Resource Schema:regkey
Resource Path:HKLM\SOFTWARE\CLASSES\CLSID\{F2CF5485-4E02-4F68-819C-B92DE9277049}
Resource Schema:regkey
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{F2CF5485-4E02-4F68-819C-B92DE9277049}
Resource Schema:iewebbrowser
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{F2CF5485-4E02-4F68-819C-B92DE9277049}
Resource Schema:file
Resource Path:C:\Windows\system32\ieframe.dll
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{23532CD7-DB39-4926-9D0F-4FCC05F96C16}
Scan Source:4
Start Time:Mon Nov 05 2007 19:10:56
End Time:Mon Nov 05 2007 19:10:56
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder
Resource Schema:file
Resource Path:C:\Windows\System32\mcbuilder.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{F39ED37A-3C69-4594-9829-F47837C91644}
Scan Source:4
Start Time:Mon Nov 05 2007 20:14:09
End Time:Mon Nov 05 2007 20:14:09
Explicit resource to scan
Resource Schema:ieext
Resource Path:HKLM\Software\Microsoft\Internet Explorer\Extensions\{48FFE35F-36D9-44bd-A6CC-1D34414EAC0D}
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IE Developer Toolbar\IEDevToolbar.dll
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{E10F561F-8853-45BC-80A0-D10A2C74B0BC}
Scan Source:4
Start Time:Mon Nov 05 2007 20:16:00
End Time:Mon Nov 05 2007 20:16:00
Explicit resource to scan
Resource Schema:bho
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC7E636D-39AA-49b6-B511-65413DA137A1}
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IE Developer Toolbar\IEDevToolbar.dll
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{CAEF64C0-B491-48B6-A822-3E55C22A538D}
Scan Source:4
Start Time:Mon Nov 05 2007 20:16:00
End Time:Mon Nov 05 2007 20:16:00
Explicit resource to scan
Resource Schema:ieexplorerbar
Resource Path:HKLM\Software\Microsoft\Internet Explorer\Explorer Bars\{A202B231-EF71-4a08-BDB9-4CE5AE8BDE0A}
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IE Developer Toolbar\IEDevToolbar.dll
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{BEE96E18-E47D-48D4-A906-3033F1E60FEE}
Scan Source:4
Start Time:Tue Nov 06 2007 15:19:23
End Time:Tue Nov 06 2007 15:19:23
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\ftp\shell\open\command\\
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\ftp\shell\open\command\\
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IEXPLORE.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{285FDDA9-E46F-48E8-B295-3E80F0F1A9A0}
Scan Source:4
Start Time:Tue Nov 06 2007 15:19:23
End Time:Tue Nov 06 2007 15:19:23
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\https\shell\open\command\\
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\https\shell\open\command\\
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IEXPLORE.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{06468506-13BA-4BDB-9E2B-15EDEEADB224}
Scan Source:4
Start Time:Tue Nov 06 2007 15:19:23
End Time:Tue Nov 06 2007 15:19:23
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\http\shell\open\command\\
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\http\shell\open\command\\
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IEXPLORE.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{8E840F84-300A-49A7-BB14-A62379C10CD3}
Scan Source:4
Start Time:Tue Nov 06 2007 15:19:23
End Time:Tue Nov 06 2007 15:19:23
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\htmlfile\shell\open\command\\
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\htmlfile\shell\open\command\\
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IEXPLORE.EXE
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Tue Nov 06 2007 22:54:58
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{5C2ED2D2-AA79-485B-A262-9D1A7509C310}
Scan Source:4
Start Time:Tue Nov 06 2007 22:58:00
End Time:Tue Nov 06 2007 22:58:00
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Thu Nov 15 2007 01:35:49
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{636992A4-5828-4913-8C4A-995FBA71F780}
Scan Source:4
Start Time:Thu Nov 15 2007 00:37:32
End Time:Thu Nov 15 2007 00:37:32
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Thu Nov 15 2007 12:19:02
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{FF4DBCE9-E458-446F-A01F-5E61E2858211}
Scan Source:4
Start Time:Thu Nov 15 2007 12:22:03
End Time:Thu Nov 15 2007 12:22:03
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{A5DEA695-2ED9-42DC-8B66-775C2F430AD2}
Scan Source:4
Start Time:Thu Nov 15 2007 12:47:19
Explicit resource to scan
Resource Schema:ietoolbar
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Internet Explorer\Toolbar\\ShowDiscussionButton
!ERROR
Unsuccessfull Scan
Return Code:87
***********

----------------
Begin Resource Scan
Scan ID:{F4617443-E98C-4233-BD47-03B0433F483C}
Scan Source:4
Start Time:Thu Nov 15 2007 12:49:09
End Time:Thu Nov 15 2007 12:49:10
Explicit resource to scan
Resource Schema:iemenuext
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Internet Explorer\MenuExt\E&xport to Microsoft Excel
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{89D9DBFA-A093-4B0E-8819-303430576F87}
Scan Source:4
Start Time:Thu Nov 15 2007 23:40:10
End Time:Thu Nov 15 2007 23:40:11
Explicit resource to scan
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvMediaCenter
Resource Schema:file
Resource Path:C:\Windows\system32\RUNDLL32.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{7E50FC84-E091-4278-B12A-5749711DC091}
Scan Source:4
Start Time:Thu Nov 15 2007 23:40:10
End Time:Thu Nov 15 2007 23:40:11
Explicit resource to scan
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvSvc
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvSvc
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvSvc
Resource Schema:file
Resource Path:C:\Windows\system32\RUNDLL32.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{F8DED4B5-972A-4304-9E35-FC736B9C6043}
Scan Source:4
Start Time:Thu Nov 15 2007 23:40:10
End Time:Thu Nov 15 2007 23:40:11
Explicit resource to scan
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvCplDaemon
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvCplDaemon
Resource Schema:runkey
Resource Path:HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvCplDaemon
Resource Schema:file
Resource Path:C:\Windows\system32\RUNDLL32.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{EC7449FF-CB5C-47DD-A9C0-E11D319BEF93}
Scan Source:4
Start Time:Thu Nov 15 2007 23:49:08
End Time:Thu Nov 15 2007 23:49:08
Explicit resource to scan
Resource Schema:activex
Resource Path:HKLM\Software\Microsoft\Code Store Database\Distribution Units\{74DBCB52-F298-4110-951D-AD2FF67BC8AB}
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:8
Resource Schema:clsid
Resource Path:HKLM\SOFTWARE\CLASSES\CLSID\{74DBCB52-F298-4110-951D-AD2FF67BC8AB}
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Code Store Database\Distribution Units\{74DBCB52-F298-4110-951D-AD2FF67BC8AB}\CONTAINS\FILES\\C:\Windows\Downloaded Program Files\NvidiaSmartScan.ocx
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Code Store Database\Distribution Units\{74DBCB52-F298-4110-951D-AD2FF67BC8AB}
Resource Schema:regkey
Resource Path:HKLM\SOFTWARE\CLASSES\TYPELIB\{8BF3BD23-3E30-4235-B52B-19CAA74AFBB3}\1.0
Resource Schema:regkey
Resource Path:HKLM\SOFTWARE\CLASSES\CLSID\{74DBCB52-F298-4110-951D-AD2FF67BC8AB}
Resource Schema:activex
Resource Path:HKLM\Software\Microsoft\Code Store Database\Distribution Units\{74DBCB52-F298-4110-951D-AD2FF67BC8AB}
Resource Schema:typelibversion
Resource Path:HKLM\SOFTWARE\CLASSES\TYPELIB\{8BF3BD23-3E30-4235-B52B-19CAA74AFBB3}\1.0
Resource Schema:file
Resource Path:C:\Windows\Downloaded Program Files\NvidiaSmartScan.ocx
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{18B3D03C-3A34-441B-B042-8CDD6BAB2379}
Scan Source:4
Start Time:Thu Nov 15 2007 23:49:08
End Time:Thu Nov 15 2007 23:49:08
Explicit resource to scan
Resource Schema:activex
Resource Path:HKLM\Software\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:7
Resource Schema:clsid
Resource Path:HKLM\SOFTWARE\CLASSES\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}
Resource Schema:regkey
Resource Path:HKLM\Software\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}
Resource Schema:regkey
Resource Path:HKLM\SOFTWARE\CLASSES\TYPELIB\{D27CDB6B-AE6D-11cf-96B8-444553540000}\1.0
Resource Schema:regkey
Resource Path:HKLM\SOFTWARE\CLASSES\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}
Resource Schema:activex
Resource Path:HKLM\Software\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}
Resource Schema:typelibversion
Resource Path:HKLM\SOFTWARE\CLASSES\TYPELIB\{D27CDB6B-AE6D-11cf-96B8-444553540000}\1.0
Resource Schema:file
Resource Path:C:\Windows\system32\Macromed\Flash\Flash9d.ocx
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Fri Nov 16 2007 00:47:57
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Fri Nov 16 2007 00:50:13
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{C8FF6088-CCF5-4FA7-A26D-C66EBE6F3D4B}
Scan Source:4
Start Time:Fri Nov 16 2007 00:53:13
End Time:Fri Nov 16 2007 00:53:13
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Fri Nov 16 2007 11:10:12
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{A63D08F5-5D6A-43BC-BC5C-8481E82583FB}
Scan Source:4
Start Time:Fri Nov 16 2007 11:13:14
End Time:Fri Nov 16 2007 11:13:14
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{B12979E1-1110-4377-AD91-9055F41BBCC1}
Scan Source:4
Start Time:Fri Nov 16 2007 12:40:19
End Time:Fri Nov 16 2007 12:40:19
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\htmlfile\shell\open\command\\
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\htmlfile\shell\open\command\\
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IEXPLORE.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{B43410B3-546B-4A51-8CBC-7959D6E764E0}
Scan Source:4
Start Time:Fri Nov 16 2007 12:40:19
End Time:Fri Nov 16 2007 12:40:19
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\http\shell\open\command\\
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\http\shell\open\command\\
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IEXPLORE.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{65B0D022-6010-4CA4-B504-0ECB0A5A8F4A}
Scan Source:4
Start Time:Fri Nov 16 2007 12:40:19
End Time:Fri Nov 16 2007 12:40:19
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\ftp\shell\open\command\\
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\ftp\shell\open\command\\
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IEXPLORE.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{34EE5FBD-FD9B-4057-850B-BFC770017C1D}
Scan Source:4
Start Time:Fri Nov 16 2007 12:40:19
End Time:Fri Nov 16 2007 12:40:19
Explicit resource to scan
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\https\shell\open\command\\
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:2
Resource Schema:shellopencmd
Resource Path:HKLM\Software\Classes\https\shell\open\command\\
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IEXPLORE.EXE
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{4EBE19D3-965E-410F-9E23-FDF303780A0C}
Scan Source:4
Start Time:Fri Nov 16 2007 13:30:19
End Time:Fri Nov 16 2007 13:30:19
Explicit resource to scan
Resource Schema:ieexplorerbar
Resource Path:HKCU@S-1-5-21-2857530333-2291071246-1538766517-500\Software\Microsoft\Internet Explorer\Explorer Bars\{A202B231-EF71-4A08-BDB9-4CE5AE8BDE0A}
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\Internet Explorer\IE Developer Toolbar\IEDevToolbar.dll
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Wed Nov 21 2007 12:19:00
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{6DA24846-CE5C-426A-9AC3-B31EA0963931}
Scan Source:4
Start Time:Wed Nov 21 2007 12:22:02
End Time:Wed Nov 21 2007 12:22:02
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sat Nov 24 2007 10:55:16
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sat Nov 24 2007 11:02:08
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sat Nov 24 2007 12:36:41
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
---------------------------------------------------------------------------------------
Microsoft Windows Defender Log, (c) 2006
Started On Sun Dec 09 2007 19:36:31
Windows Defender Version: 1.1.1505.0
Engine Version: 1.1.1603.0
AS Signature Version: 1.0.0.0
**********************************************************
----------------
Begin Resource Scan
Scan ID:{23A5D56C-89BC-419A-BF9F-DFB4D0E5DD0B}
Scan Source:4
Start Time:Sun Dec 09 2007 19:39:34
End Time:Sun Dec 09 2007 19:39:34
Explicit resource to scan
Resource Schema:taskscheduler
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:3
Resource Schema:file
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
Resource Schema:file
Resource Path:c:\program files\windows defender\MpCmdRun.exe
Resource Schema:taskscheduler
Resource Path:C:\Windows\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{B5B08395-3708-411B-9156-006870FEC114}
Scan Source:4
Start Time:Sun Dec 09 2007 19:55:45
End Time:Sun Dec 09 2007 19:55:45
Explicit resource to scan
Resource Schema:driver
Resource Path:PROCEXP111
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:1
Resource Schema:driver
Resource Path:PROCEXP111
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{4CE263E9-CBAD-45E3-B1EC-82B32718B144}
Scan Source:4
Start Time:Sun Dec 09 2007 19:55:45
End Time:Sun Dec 09 2007 19:55:45
Explicit resource to scan
Resource Schema:service
Resource Path:PROCEXP111
Threat Count:1
Threat Name:Unknown
ID:2147483646
Severity:0
Number of Resources:1
Resource Schema:service
Resource Path:PROCEXP111
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{B9C9E2B9-B14F-4465-A8AC-9B64D682FB4D}
Scan Source:4
Start Time:Sun Dec 09 2007 20:01:27
End Time:Sun Dec 09 2007 20:01:27
Explicit resource to scan
Resource Schema:startup
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\procexp.exe - Shortcut.lnk
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\my\procexp.exe
End Scan
***********

----------------
Begin Resource Scan
Scan ID:{06A4D3BF-49F5-4D54-BC7A-089A3240F800}
Scan Source:4
Start Time:Sun Dec 09 2007 20:01:36
End Time:Sun Dec 09 2007 20:01:36
Explicit resource to scan
Resource Schema:startup
Resource Path:@S-1-5-21-2857530333-2291071246-1538766517-500\C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\procexp.exe.lnk
Threat Count:1
Threat Name:FriendlyFiles
ID:2147483647
Severity:1
Number of Resources:1
Resource Schema:file
Resource Path:C:\Program Files\my\procexp.exe
End Scan
***********

Notes:

----
"For enterprise use [centralized management under MS Vista], the Microsoft product incorporating antispyware functionality and designed for automated deployment and management is Microsoft Forefront Client Security. I would recommend that you have a look here http://www.microsoft.com/forefront/clientsecurity/default.mspx "

---
Newsgroups for Windows Defender: Learn and share information

Submitted and posted by Liberty Miller, December 2007