==============================
Log File of Smadav 2012 Rev. 9.0
==============================

Scanning Results :
=> Time & Date : 17:48:39, on 11-26-2012
=> Finishing Time : 4 seconds
=> Folder Scanned :0
=> File Scanned : 0
=> File Detected : 0
=> File Cleaned : 0
=> Value Scanned : 899
=> Value Detected: 1
=> Value Fixed: 0
=> Path Scanned: 0
=> Path Hidden: 0
=> Path Unhidden: 0

==============================
Before Scanning
==============================
Suspected Paths :
=> Fine(Level 2) as  : 2 Process
   -C:\Program Files\Mozilla Firefox\plugin-container.exe
=> Fine(Level 1) as  : 1 Process, 1 Startup
   -C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
=> Fine(Level 1) as  : 1 Process, 1 Startup
   -C:\Program Files\AVAST Software\Avast\AvastUI.exe
=> Fine(Level 1) as  : 1 Process, 1 Startup
   -C:\Program Files\VAX9\AVTray.exe
=> Fine(Level 2) as  : 1 Process, 1 Startup
   -C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
=> Fine(Level 2) as  : 1 Process, 1 Startup
   -C:\..\..\..\..\program files\microsoft office\Office12\ONENOTEM.EXE
=> Fine(Level 1) as  : 1 Process
   -C:\Program Files\Mozilla Firefox\firefox.exe
=> Fine(Level 1) as  : 1 Startup
   -C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

Running Processes :
=> N/A
=> N/A
=> C:\Windows\System32\smss.exe
=> C:\Windows\System32\csrss.exe
=> C:\Windows\System32\wininit.exe
=> C:\Windows\System32\csrss.exe
=> C:\Windows\System32\services.exe
=> C:\Windows\System32\lsass.exe
=> C:\Windows\System32\lsm.exe
=> C:\Windows\System32\winlogon.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\audiodg.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> C:\Windows\System32\spoolsv.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\taskhost.exe
=> C:\Windows\System32\dwm.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Windows\explorer.exe
=> C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Program Files\AVAST Software\Avast\AvastUI.exe
=> C:\Program Files\VAX9\AVTray.exe
=> C:\Windows\System32\SearchIndexer.exe
=> N/A
=> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
=> N/A
=> C:\Program Files\Mozilla Firefox\firefox.exe
=> C:\Windows\System32\svchost.exe
=> C:\Program Files\Mozilla Firefox\plugin-container.exe
=> C:\Program Files\Mozilla Firefox\plugin-container.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> \\sv-pdc\cms\Smadav 2012 Rev. 9.0\Smadav 2012 Rev. 9.0.exe

==============================
After Scanning
==============================
Suspected Paths :
=> Fine(Level 2) as  : 2 Process
   -C:\Program Files\Mozilla Firefox\plugin-container.exe
=> Fine(Level 1) as  : 1 Process, 1 Startup
   -C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
=> Fine(Level 1) as  : 1 Process, 1 Startup
   -C:\Program Files\AVAST Software\Avast\AvastUI.exe
=> Fine(Level 1) as  : 1 Process, 1 Startup
   -C:\Program Files\VAX9\AVTray.exe
=> Fine(Level 2) as  : 1 Process, 1 Startup
   -C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
=> Fine(Level 2) as  : 1 Process, 1 Startup
   -C:\..\..\..\..\program files\microsoft office\Office12\ONENOTEM.EXE
=> Fine(Level 1) as  : 1 Process
   -C:\Program Files\Mozilla Firefox\firefox.exe
=> Fine(Level 1) as  : 1 Startup
   -C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

Running Processes :
=> N/A
=> N/A
=> C:\Windows\System32\smss.exe
=> C:\Windows\System32\csrss.exe
=> C:\Windows\System32\wininit.exe
=> C:\Windows\System32\csrss.exe
=> C:\Windows\System32\services.exe
=> C:\Windows\System32\lsass.exe
=> C:\Windows\System32\lsm.exe
=> C:\Windows\System32\winlogon.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\audiodg.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> C:\Windows\System32\spoolsv.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\taskhost.exe
=> C:\Windows\System32\dwm.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Windows\explorer.exe
=> C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Program Files\AVAST Software\Avast\AvastUI.exe
=> C:\Program Files\VAX9\AVTray.exe
=> C:\Windows\System32\SearchIndexer.exe
=> N/A
=> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
=> N/A
=> C:\Program Files\Mozilla Firefox\firefox.exe
=> C:\Windows\System32\svchost.exe
=> C:\Program Files\Mozilla Firefox\plugin-container.exe
=> C:\Program Files\Mozilla Firefox\plugin-container.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> \\sv-pdc\cms\Smadav 2012 Rev. 9.0\Smadav 2012 Rev. 9.0.exe

Infected Registry Values :
=> TileInfo
   -HKEY_CLASSES_ROOT\Folder
   -Different String Value