Win32:Warezov-BUI [Wrm]

Problematika virů a antivirů, zabezpečení PC - firewall, spyware, atd.
Odpovědět
Shit
Odborník PCT
Odborník PCT
Uživatelský avatar
Registrován: 20. pro 2003
Bydliště: Hradec Králové

Příspěvek od Shit »

ninjin_cz píše:
Baron Prášil píše:AVAST-je ve free AV absolutní špička :)
A ted cekejme na kontra od Shita :wink:
ninjin_cz píše:Ja mel na mysli AVS (ActiveVirusShield) :roll:
Nemá cenu zde zadělávat na flame -> Někdo má svoje pádné důvody, proč tvrdit, že Avast Home je nejlepší free antivirák = je to defakto jen trochu okleštěná full verze Avast Profi, nicméně Avast Home rozhodně patří mezi špičku u free antiviráků.
AVS je sice podstatně více okleštěná verze KAV6, ale využívá jádro Kaspesky, které používá mj. i MWAV -> výborné detekční schopnosti, rychlé updaty, ale podstatně méně funkcí (sice některé funkce jdou zapnout@upřesnit v nouzáku editací registrů, ale to není řešením pro běžné uživatele). Nemá cenu to více rozvádět - moje stanovisko (názor) na tuto problematiku většina userů na PCT fóru asi zná (je to AVS), ale můj názor nemá nic společného s tímto thredem.... :oops:
Mayhem(cz) píše:.... AWAST je dobrý,ale zbytečně zatěžuje pc,doporučuji např. noda....
Další věc: Nepleťte dohromady placené produkty s free alternativami. Free verzi NODu32 neznám...
Nahoru
mihro
Nováček
Nováček
Registrován: 05. dub 2007
Bydliště: Havířov

pořád nejde

Příspěvek od mihro »

Bohužel nějak to pořád nešlo, když jsem to fixnul, tak mi vyskočilo okno:

An unexpected error has occured at procedure: modBackup_MakeBackup(sItem=O20 - AppIni_DLLs: strmatkc.dll)
Error #5 Invalid procedure call or argument

Please email me at merinj@spywareinfo.com, reporting following:
* What were you trying to fix when error occured, if applicable
* How you can reduce the error
* A complete HijackThis scan log, if possible

Windows version: Windows NT 5.01.2600
MSIE version: 6.0.2900.2180
HijackThis version: 1.99.1

This message has been copied to your clipboard.
Nahoru
Baron Prášil
Začátečník
Začátečník
Uživatelský avatar
Registrován: 08. čer 2006

Příspěvek od Baron Prášil »

to nevadí-udělej co jde a pošli log ať vidim co a jak :wink:
Nahoru
mihro
Nováček
Nováček
Registrován: 05. dub 2007
Bydliště: Havířov

Příspěvek od mihro »

Bohužel pořád ho mám. :sad:

Logfile of HijackThis v1.99.1
Scan saved at 23:05:57, on 9.4.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer .00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Acer\Empowering Technology\admServ.exe
c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\admtray.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Ondra\Dokumenty\HijackThis\HijackThis.exe
C:\WINDOWS\System32\odtemdt2.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: odtemdt2 - C:\WINDOWS\system32\odtemdt2.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
Nahoru
Baron Prášil
Začátečník
Začátečník
Uživatelský avatar
Registrován: 08. čer 2006

Příspěvek od Baron Prášil »

takže

ukonči v taskmanageru
odtemdt2.exe

fixni ho
O20 - Winlogon Notify: odtemdt2 - C:\WINDOWS\system32\odtemdt2.dll

a pak znova Avenger
http://www.viry.cz/forum/viewtopic.php?t=21484

po restartu si udělej HJT a koukni na tu fixovanou O20
a když tam pořád bude

tak to zopakuj až k tomu Avengerovi,ale použij killbox

stahni si killbox
http://www.bleepingcomputer.com/files/s ... illBox.zip
rozbal,spust a do okýnka zkopíruj tučné
C:\WINDOWS\system32\odtemdt2.dll
zaškrtni Delete on Reboot a Unregister .dll Before Deleting
a klikni na křížek.stroj pude do restartu

a pošli novej log,tak jako tak
Nahoru
jacop
Nováček
Nováček
Registrován: 10. dub 2007
Kontaktovat uživatele:
Kontaktovat uživatele jacop

mam stejny problem......win32:warezow-BTW...jak na nej?

Příspěvek od jacop »

ahojte..amm stejney problem jako mara, bohuzel diky memu blaznivemu bratrovi ktery zpravu pi ICQ bohuzel prijal

zasilam hijack
Logfile of HijackThis v1.99.1
Scan saved at 13:38:59, on 10.4.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ICQLite\ICQLite.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Bezdrátová pracovní plocha Labtec\MulMouse.exe
C:\Program Files\Bezdrátová pracovní plocha Labtec\MagicKey.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\WINDOWS\System32\msssmsda.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Thomas\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_0.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [dot] dot.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [stzmcdbju] c:\windows\system32\stzmcdbju.exe stzmcdbju
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [ICQ Lite] "C:\Program Files\ICQLite\ICQLite.exe" -minimize
O4 - HKLM\..\RunServices: [dot] dot.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [dot] dot.exe
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Povolit bezdrátovou pracovní plochu Labtec.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {39EA2F6F-3F50-4F58-9C63-4B3D53B0926E} - http://scripts.downloadv3.com/binaries/ ... _EN_XP.cab
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - http://scripts.downloadv3.com/binaries/ ... 070_XP.cab
O16 - DPF: {6AA85413-165C-4200-8154-71166077B22E} - http://scripts.downloadv3.com/binaries/ ... _EN_XP.cab
O16 - DPF: {8B3B8135-9DAA-40E7-8941-962795F9C1CB} - http://scripts.downloadv3.com/binaries/ ... _EN_XP.cab
O16 - DPF: {95460ABD-946A-46FF-9F56-268718323EEE} - http://scripts.downloadv3.com/binaries/ ... 068_XP.cab
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} - http://scripts.downloadv3.com/binaries/ ... _EN_XP.cab
O16 - DPF: {BA749BC1-143E-430D-B1DA-1D2AF67A3658} - http://scripts.downloadv3.com/binaries/ ... 069_XP.cab
O16 - DPF: {D8B94E9A-A34B-4253-BF48-C7CB7F2CFDB0} - http://scripts.downloadv3.com/binaries/ ... _EN_XP.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{15E9A6C6-586B-4CA3-AA6F-CCB2B40B9F4E}: NameServer = 194.228.41.65 194.228.41.113
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
O20 - AppInit_DLLs: msjidpmo.dll
O20 - Winlogon Notify: msssmsda - C:\WINDOWS\system32\msssmsda.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: wmspmsv1 - C:\WINDOWS\system32\wmspmsv1.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: MATLAB Server (matlabserver) - Unknown owner - C:\Thomas\Matlab\webserver\bin\win32\matlabserver.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
Nahoru
likc
Začátečník
Začátečník
Registrován: 30. čer 2006

Příspěvek od likc »

Tohodle parchanta tu resi kolega. Ja ho zatim moc nestudoval.
Ukonci proces C:\WINDOWS\System32\msssmsda.exe
O4 - HKLM\..\Run: [stzmcdbju] c:\windows\system32\stzmcdbju.exe stzmcdbju
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe

pak fixni tech 8 radku, co zacinaji O16

dal fixni
O20 - AppInit_DLLs: msjidpmo.dll
O20 - Winlogon Notify: msssmsda - C:\WINDOWS\system32\msssmsda.dll
O20 - Winlogon Notify: wmspmsv1 - C:\WINDOWS\system32\wmspmsv1.dll (file missing)

nevim, jak moc je funkcni ten Microsoft Windows Defender Antispyware snad jsem ho jeste nevidel nikde bezet. Zkus nainstalovat treba spyware terminator. Myslim, ze poslouzi lip. A udelej scan.
A hlavne nainstaluj firewall. Treba Comodo.
Nejspis Ti tam jeste neco zbyde. Az to vsechno fixnes, posli dalsi log. Bohuzel ted nemam moc casu, ale snad to nejak dame dokupy.
Nahoru
shibbi
Nováček
Nováček
Registrován: 10. dub 2007
Kontaktovat uživatele:
Kontaktovat uživatele shibbi

opět Warezov

Příspěvek od shibbi »

Zdravim, tak mam taky podobnej problem s Warezovem. Prosim o radu, jak se ho zbavit, predem diky moc

P.S.: tady je vypis z Hijacku:


Logfile of HijackThis v1.99.1
Scan saved at 19:31:41, on 10.4.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Software602\Print2PDF\PrnPack.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATnotes\ATnotes.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\JetAudio\JetAudio.exe
C:\Program Files\ICQLite\ICQLite.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\uTorrent\utorrent.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\totalcmd\TOTALCMD.EXE
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\shibbi\Dokumenty\- download\antiviry\HiJack This\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mps-moto.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Jet Detection] "C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [PrintPack dispatcher] "C:\Program Files\Software602\Print2PDF\PrnPack.exe" /server
O4 - HKLM\..\Run: [himem.exe] C:\WINDOWS\skcc32.exe -s
O4 - HKLM\..\Run: [SoundMnEx32] C:\WINDOWS\skcc32.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ATnotes.exe] C:\Program Files\ATnotes\ATnotes.exe
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -trayboot
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Print2PDF - {5B7027AD-AA6D-40df-8F56-9560F277D2A5} - C:\WINDOWS\system32\Print602.dll
O9 - Extra 'Tools' menuitem: Print2PDF - {5B7027AD-AA6D-40df-8F56-9560F277D2A5} - C:\WINDOWS\system32\Print602.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{4BAABE84-A56E-4EE0-A942-304ACC3AEDD0}: NameServer = 212.96.161.6,212.96.160.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{4BAABE84-A56E-4EE0-A942-304ACC3AEDD0}: NameServer = 212.96.161.6,212.96.160.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{4BAABE84-A56E-4EE0-A942-304ACC3AEDD0}: NameServer = 212.96.161.6,212.96.160.1
O20 - Winlogon Notify: msssmsda - C:\WINDOWS\system32\msssmsda.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: BCL easyPDF SDK 5 Loader (bepldr) - Unknown owner - C:\Program Files\Common Files\BCL Technologies\easyPDF 5\bepldr.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Nahoru
Baron Prášil
Začátečník
Začátečník
Uživatelský avatar
Registrován: 08. čer 2006

Příspěvek od Baron Prášil »

po těch fixech použij Avenger
http://www.viry.cz/forum/viewtopic.php?t=21484

jinak, Defender je docela v pohodě-co neni v pohodě
je zároveň běžící Spybot
(osobně bych volil Spybot na hlídání,ale je třeba zapnout
i ochranu registrů-TeaTimer-Režim>Pro pokročilé>Nástroje>Rezidentní)

FIREWALL-no o tom diskutovat nebudeme,že? :)
Nahoru
likc
Začátečník
Začátečník
Registrován: 30. čer 2006

Příspěvek od likc »

fixni
O4 - HKLM\..\Run: [himem.exe] C:\WINDOWS\skcc32.exe -s
O4 - HKLM\..\Run: [SoundMnEx32] C:\WINDOWS\skcc32.exe

a smaz ho z disku (nejspis bude skryty)
dal fixni
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O20 - Winlogon Notify: msssmsda - C:\WINDOWS\system32\msssmsda.dll (file missing)

predpokladam, ze tohle je nejaky tvoritko na PDFka, ktery znas. C:\Program Files\Common Files\BCL Technologies\easyPDF 5\bepldr.exe

Jinak nainstaluj firewall (comodo) a antispyware (spyware terminator).
Posli novy log po fixnuti a restartu.
Naposledy upravil(a) likc dne úte 10. dub 2007, 23:28, celkem upraveno 1 x.
Nahoru
Baron Prášil
Začátečník
Začátečník
Uživatelský avatar
Registrován: 08. čer 2006

Příspěvek od Baron Prášil »

nainstaluj firewall
vyber si tady-doporučím Comodo
http://viry.cz/forum/viewtopic.php?t=65 ... b226c523ee

a u Spybotu zapni TeaTimer
Režim>Pro pokročilé>Nástroje>Rezidentní

v HijackThis fixni
(v okně programu HJT zaškrtni nalevo u položek co napíšu a potom klik na Fix checked)

O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [himem.exe] C:\WINDOWS\skcc32.exe -s
O4 - HKLM\..\Run: [SoundMnEx32] C:\WINDOWS\skcc32.exe
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O20 - Winlogon Notify: msssmsda - C:\WINDOWS\system32\msssmsda.dll (file missing)

potom Avenger podle návodu
http://www.viry.cz/forum/viewtopic.php?t=21484

a novej log
Nahoru
mihro
Nováček
Nováček
Registrován: 05. dub 2007
Bydliště: Havířov

Avanger

Příspěvek od mihro »

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\lsovbovq

*******************

Script file located at: \??\C:\Documents and Settings\xpsvnlfx.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:



File C:\WINDOWS\accm.exe not found!
Deletion of file C:\WINDOWS\accm.exe failed!

Could not process line:
C:\WINDOWS\accm.exe
Status: 0xc0000034



File C:\WINDOWS\ais32.exe not found!
Deletion of file C:\WINDOWS\ais32.exe failed!

Could not process line:
C:\WINDOWS\ais32.exe
Status: 0xc0000034



File C:\WINDOWS\alerter.exe not found!
Deletion of file C:\WINDOWS\alerter.exe failed!

Could not process line:
C:\WINDOWS\alerter.exe
Status: 0xc0000034



File C:\WINDOWS\aorvno91m.txt not found!
Deletion of file C:\WINDOWS\aorvno91m.txt failed!

Could not process line:
C:\WINDOWS\aorvno91m.txt
Status: 0xc0000034



File C:\WINDOWS\attcfg.tmp not found!
Deletion of file C:\WINDOWS\attcfg.tmp failed!

Could not process line:
C:\WINDOWS\attcfg.tmp
Status: 0xc0000034



File C:\WINDOWS\avistat.tmp not found!
Deletion of file C:\WINDOWS\avistat.tmp failed!

Could not process line:
C:\WINDOWS\avistat.tmp
Status: 0xc0000034



File C:\WINDOWS\b6iqdkku.scf not found!
Deletion of file C:\WINDOWS\b6iqdkku.scf failed!

Could not process line:
C:\WINDOWS\b6iqdkku.scf
Status: 0xc0000034



File C:\WINDOWS\brwmark.ini not found!
Deletion of file C:\WINDOWS\brwmark.ini failed!

Could not process line:
C:\WINDOWS\brwmark.ini
Status: 0xc0000034



File C:\WINDOWS\cc2.exe not found!
Deletion of file C:\WINDOWS\cc2.exe failed!

Could not process line:
C:\WINDOWS\cc2.exe
Status: 0xc0000034



File C:\WINDOWS\cc3.exe not found!
Deletion of file C:\WINDOWS\cc3.exe failed!

Could not process line:
C:\WINDOWS\cc3.exe
Status: 0xc0000034



File C:\WINDOWS\cc5.exe not found!
Deletion of file C:\WINDOWS\cc5.exe failed!

Could not process line:
C:\WINDOWS\cc5.exe
Status: 0xc0000034



File C:\WINDOWS\ccsserv.exe not found!
Deletion of file C:\WINDOWS\ccsserv.exe failed!

Could not process line:
C:\WINDOWS\ccsserv.exe
Status: 0xc0000034



File C:\WINDOWS\cct2.exe not found!
Deletion of file C:\WINDOWS\cct2.exe failed!

Could not process line:
C:\WINDOWS\cct2.exe
Status: 0xc0000034



File C:\WINDOWS\concfg.tmp not found!
Deletion of file C:\WINDOWS\concfg.tmp failed!

Could not process line:
C:\WINDOWS\concfg.tmp
Status: 0xc0000034



File C:\WINDOWS\cserv32.exe not found!
Deletion of file C:\WINDOWS\cserv32.exe failed!

Could not process line:
C:\WINDOWS\cserv32.exe
Status: 0xc0000034



File C:\WINDOWS\cservv32.exe not found!
Deletion of file C:\WINDOWS\cservv32.exe failed!

Could not process line:
C:\WINDOWS\cservv32.exe
Status: 0xc0000034



File C:\WINDOWS\egadata.tmp not found!
Deletion of file C:\WINDOWS\egadata.tmp failed!

Could not process line:
C:\WINDOWS\egadata.tmp
Status: 0xc0000034



File C:\WINDOWS\c6wsq6.reg not found!
Deletion of file C:\WINDOWS\c6wsq6.reg failed!

Could not process line:
C:\WINDOWS\c6wsq6.reg
Status: 0xc0000034



File C:\WINDOWS\cesm9q.reg not found!
Deletion of file C:\WINDOWS\cesm9q.reg failed!

Could not process line:
C:\WINDOWS\cesm9q.reg
Status: 0xc0000034



File C:\WINDOWS\dbmdata.tmp not found!
Deletion of file C:\WINDOWS\dbmdata.tmp failed!

Could not process line:
C:\WINDOWS\dbmdata.tmp
Status: 0xc0000034



File C:\WINDOWS\dqpdroc.ini not found!
Deletion of file C:\WINDOWS\dqpdroc.ini failed!

Could not process line:
C:\WINDOWS\dqpdroc.ini
Status: 0xc0000034



File C:\WINDOWS\eba2h6cc.dat not found!
Deletion of file C:\WINDOWS\eba2h6cc.dat failed!

Could not process line:
C:\WINDOWS\eba2h6cc.dat
Status: 0xc0000034



File C:\WINDOWS\eevmwk.reg not found!
Deletion of file C:\WINDOWS\eevmwk.reg failed!

Could not process line:
C:\WINDOWS\eevmwk.reg
Status: 0xc0000034



File C:\WINDOWS\f3da8e.reg not found!
Deletion of file C:\WINDOWS\f3da8e.reg failed!

Could not process line:
C:\WINDOWS\f3da8e.reg
Status: 0xc0000034



File C:\WINDOWS\f8or9s.exe not found!
Deletion of file C:\WINDOWS\f8or9s.exe failed!

Could not process line:
C:\WINDOWS\f8or9s.exe
Status: 0xc0000034



File C:\WINDOWS\ftg71cj1qx.dat not found!
Deletion of file C:\WINDOWS\ftg71cj1qx.dat failed!

Could not process line:
C:\WINDOWS\ftg71cj1qx.dat
Status: 0xc0000034



File C:\WINDOWS\gen.exe not found!
Deletion of file C:\WINDOWS\gen.exe failed!

Could not process line:
C:\WINDOWS\gen.exe
Status: 0xc0000034



File C:\WINDOWS\hv4e05.dll not found!
Deletion of file C:\WINDOWS\hv4e05.dll failed!

Could not process line:
C:\WINDOWS\hv4e05.dll
Status: 0xc0000034



File C:\WINDOWS\irk.exe not found!
Deletion of file C:\WINDOWS\irk.exe failed!

Could not process line:
C:\WINDOWS\irk.exe
Status: 0xc0000034



File C:\WINDOWS\chater.exe not found!
Deletion of file C:\WINDOWS\chater.exe failed!

Could not process line:
C:\WINDOWS\chater.exe
Status: 0xc0000034



File C:\WINDOWS\md2icut9a2.dll not found!
Deletion of file C:\WINDOWS\md2icut9a2.dll failed!

Could not process line:
C:\WINDOWS\md2icut9a2.dll
Status: 0xc0000034



File C:\WINDOWS\msout.exe not found!
Deletion of file C:\WINDOWS\msout.exe failed!

Could not process line:
C:\WINDOWS\msout.exe
Status: 0xc0000034



File C:\WINDOWS\msserrv32.exe not found!
Deletion of file C:\WINDOWS\msserrv32.exe failed!

Could not process line:
C:\WINDOWS\msserrv32.exe
Status: 0xc0000034



File C:\WINDOWS\msserv.exe not found!
Deletion of file C:\WINDOWS\msserv.exe failed!

Could not process line:
C:\WINDOWS\msserv.exe
Status: 0xc0000034



File C:\WINDOWS\msserv32.exe not found!
Deletion of file C:\WINDOWS\msserv32.exe failed!

Could not process line:
C:\WINDOWS\msserv32.exe
Status: 0xc0000034



File C:\WINDOWS\msupdtwiz.exe not found!
Deletion of file C:\WINDOWS\msupdtwiz.exe failed!

Could not process line:
C:\WINDOWS\msupdtwiz.exe
Status: 0xc0000034



File C:\WINDOWS\msupdtwiz.c not found!
Deletion of file C:\WINDOWS\msupdtwiz.c failed!

Could not process line:
C:\WINDOWS\msupdtwiz.c
Status: 0xc0000034



File C:\WINDOWS\msupdtwiz.s not found!
Deletion of file C:\WINDOWS\msupdtwiz.s failed!

Could not process line:
C:\WINDOWS\msupdtwiz.s
Status: 0xc0000034



File C:\WINDOWS\msupdtwiz.z not found!
Deletion of file C:\WINDOWS\msupdtwiz.z failed!

Could not process line:
C:\WINDOWS\msupdtwiz.z
Status: 0xc0000034



File C:\WINDOWS\msupdtwiz.dat not found!
Deletion of file C:\WINDOWS\msupdtwiz.dat failed!

Could not process line:
C:\WINDOWS\msupdtwiz.dat
Status: 0xc0000034



File C:\WINDOWS\mswiiz32.exe not found!
Deletion of file C:\WINDOWS\mswiiz32.exe failed!

Could not process line:
C:\WINDOWS\mswiiz32.exe
Status: 0xc0000034



File C:\WINDOWS\mswiizz32.exe not found!
Deletion of file C:\WINDOWS\mswiizz32.exe failed!

Could not process line:
C:\WINDOWS\mswiizz32.exe
Status: 0xc0000034



File C:\WINDOWS\mswiz32.exe not found!
Deletion of file C:\WINDOWS\mswiz32.exe failed!

Could not process line:
C:\WINDOWS\mswiz32.exe
Status: 0xc0000034



File C:\WINDOWS\nmac32.exe not found!
Deletion of file C:\WINDOWS\nmac32.exe failed!

Could not process line:
C:\WINDOWS\nmac32.exe
Status: 0xc0000034



File C:\WINDOWS\npp32.exe not found!
Deletion of file C:\WINDOWS\npp32.exe failed!

Could not process line:
C:\WINDOWS\npp32.exe
Status: 0xc0000034



File C:\WINDOWS\ptr.exe not found!
Deletion of file C:\WINDOWS\ptr.exe failed!

Could not process line:
C:\WINDOWS\ptr.exe
Status: 0xc0000034



File C:\WINDOWS\reg.exe not found!
Deletion of file C:\WINDOWS\reg.exe failed!

Could not process line:
C:\WINDOWS\reg.exe
Status: 0xc0000034



File C:\WINDOWS\reggserv.exe not found!
Deletion of file C:\WINDOWS\reggserv.exe failed!

Could not process line:
C:\WINDOWS\reggserv.exe
Status: 0xc0000034



File C:\WINDOWS\serrv.c not found!
Deletion of file C:\WINDOWS\serrv.c failed!

Could not process line:
C:\WINDOWS\serrv.c
Status: 0xc0000034



File C:\WINDOWS\serrv.exe not found!
Deletion of file C:\WINDOWS\serrv.exe failed!

Could not process line:
C:\WINDOWS\serrv.exe
Status: 0xc0000034



File C:\WINDOWS\serrv.wax not found!
Deletion of file C:\WINDOWS\serrv.wax failed!

Could not process line:
C:\WINDOWS\serrv.wax
Status: 0xc0000034



File C:\WINDOWS\serrv.dat not found!
Deletion of file C:\WINDOWS\serrv.dat failed!

Could not process line:
C:\WINDOWS\serrv.dat
Status: 0xc0000034



File C:\WINDOWS\serv.exe not found!
Deletion of file C:\WINDOWS\serv.exe failed!

Could not process line:
C:\WINDOWS\serv.exe
Status: 0xc0000034



File C:\WINDOWS\serv.wax not found!
Deletion of file C:\WINDOWS\serv.wax failed!

Could not process line:
C:\WINDOWS\serv.wax
Status: 0xc0000034



File C:\WINDOWS\skcc32.exe not found!
Deletion of file C:\WINDOWS\skcc32.exe failed!

Could not process line:
C:\WINDOWS\skcc32.exe
Status: 0xc0000034



File C:\WINDOWS\smm126.exe not found!
Deletion of file C:\WINDOWS\smm126.exe failed!

Could not process line:
C:\WINDOWS\smm126.exe
Status: 0xc0000034



File C:\WINDOWS\spow32.exe not found!
Deletion of file C:\WINDOWS\spow32.exe failed!

Could not process line:
C:\WINDOWS\spow32.exe
Status: 0xc0000034



File C:\WINDOWS\sqhost.exe not found!
Deletion of file C:\WINDOWS\sqhost.exe failed!

Could not process line:
C:\WINDOWS\sqhost.exe
Status: 0xc0000034



File C:\WINDOWS\sqhost.wax not found!
Deletion of file C:\WINDOWS\sqhost.wax failed!

Could not process line:
C:\WINDOWS\sqhost.wax
Status: 0xc0000034



File C:\WINDOWS\sqhost.c not found!
Deletion of file C:\WINDOWS\sqhost.c failed!

Could not process line:
C:\WINDOWS\sqhost.c
Status: 0xc0000034



File C:\WINDOWS\sqhost.s not found!
Deletion of file C:\WINDOWS\sqhost.s failed!

Could not process line:
C:\WINDOWS\sqhost.s
Status: 0xc0000034



File C:\WINDOWS\sqhost.z not found!
Deletion of file C:\WINDOWS\sqhost.z failed!

Could not process line:
C:\WINDOWS\sqhost.z
Status: 0xc0000034



File C:\WINDOWS\sqhost.dat not found!
Deletion of file C:\WINDOWS\sqhost.dat failed!

Could not process line:
C:\WINDOWS\sqhost.dat
Status: 0xc0000034



File C:\WINDOWS\sscrs.exe not found!
Deletion of file C:\WINDOWS\sscrs.exe failed!

Could not process line:
C:\WINDOWS\sscrs.exe
Status: 0xc0000034



File C:\WINDOWS\sserrvv.exe not found!
Deletion of file C:\WINDOWS\sserrvv.exe failed!

Could not process line:
C:\WINDOWS\sserrvv.exe
Status: 0xc0000034



File C:\WINDOWS\sserrvv.wax not found!
Deletion of file C:\WINDOWS\sserrvv.wax failed!

Could not process line:
C:\WINDOWS\sserrvv.wax
Status: 0xc0000034



File C:\WINDOWS\sserrvv.c not found!
Deletion of file C:\WINDOWS\sserrvv.c failed!

Could not process line:
C:\WINDOWS\sserrvv.c
Status: 0xc0000034



File C:\WINDOWS\sserrvv.s not found!
Deletion of file C:\WINDOWS\sserrvv.s failed!

Could not process line:
C:\WINDOWS\sserrvv.s
Status: 0xc0000034



File C:\WINDOWS\sserrvv.z not found!
Deletion of file C:\WINDOWS\sserrvv.z failed!

Could not process line:
C:\WINDOWS\sserrvv.z
Status: 0xc0000034



File C:\WINDOWS\stm.exe not found!
Deletion of file C:\WINDOWS\stm.exe failed!

Could not process line:
C:\WINDOWS\stm.exe
Status: 0xc0000034



File C:\WINDOWS\t2serv.dll not found!
Deletion of file C:\WINDOWS\t2serv.dll failed!

Could not process line:
C:\WINDOWS\t2serv.dll
Status: 0xc0000034



File C:\WINDOWS\t2serv.s not found!
Deletion of file C:\WINDOWS\t2serv.s failed!

Could not process line:
C:\WINDOWS\t2serv.s
Status: 0xc0000034



File C:\WINDOWS\t2serv.wax not found!
Deletion of file C:\WINDOWS\t2serv.wax failed!

Could not process line:
C:\WINDOWS\t2serv.wax
Status: 0xc0000034



File C:\WINDOWS\tpup.wax not found!
Deletion of file C:\WINDOWS\tpup.wax failed!

Could not process line:
C:\WINDOWS\tpup.wax
Status: 0xc0000034



File C:\WINDOWS\tpup.exe not found!
Deletion of file C:\WINDOWS\tpup.exe failed!

Could not process line:
C:\WINDOWS\tpup.exe
Status: 0xc0000034



File C:\WINDOWS\tpup.z not found!
Deletion of file C:\WINDOWS\tpup.z failed!

Could not process line:
C:\WINDOWS\tpup.z
Status: 0xc0000034



File C:\WINDOWS\tpup.dat not found!
Deletion of file C:\WINDOWS\tpup.dat failed!

Could not process line:
C:\WINDOWS\tpup.dat
Status: 0xc0000034



File C:\WINDOWS\update86.exe not found!
Deletion of file C:\WINDOWS\update86.exe failed!

Could not process line:
C:\WINDOWS\update86.exe
Status: 0xc0000034



File C:\WINDOWS\wnet32.exe not found!
Deletion of file C:\WINDOWS\wnet32.exe failed!

Could not process line:
C:\WINDOWS\wnet32.exe
Status: 0xc0000034



File C:\WINDOWS\wqpd32.exe not found!
Deletion of file C:\WINDOWS\wqpd32.exe failed!

Could not process line:
C:\WINDOWS\wqpd32.exe
Status: 0xc0000034



File C:\WINDOWS\system32\1.tmp not found!
Deletion of file C:\WINDOWS\system32\1.tmp failed!

Could not process line:
C:\WINDOWS\system32\1.tmp
Status: 0xc0000034



File C:\WINDOWS\system32\11.tmp not found!
Deletion of file C:\WINDOWS\system32\11.tmp failed!

Could not process line:
C:\WINDOWS\system32\11.tmp
Status: 0xc0000034



File C:\WINDOWS\system32\aclekern.dll not found!
Deletion of file C:\WINDOWS\system32\aclekern.dll failed!

Could not process line:
C:\WINDOWS\system32\aclekern.dll
Status: 0xc0000034



File C:\WINDOWS\system32\actidmoc.exe not found!
Deletion of file C:\WINDOWS\system32\actidmoc.exe failed!

Could not process line:
C:\WINDOWS\system32\actidmoc.exe
Status: 0xc0000034



File C:\WINDOWS\system32\adpticmp.exe not found!
Deletion of file C:\WINDOWS\system32\adpticmp.exe failed!

Could not process line:
C:\WINDOWS\system32\adpticmp.exe
Status: 0xc0000034



File C:\WINDOWS\system32\advacfgb.dll not found!
Deletion of file C:\WINDOWS\system32\advacfgb.dll failed!

Could not process line:
C:\WINDOWS\system32\advacfgb.dll
Status: 0xc0000034



File C:\WINDOWS\system32\advacfgb.exe not found!
Deletion of file C:\WINDOWS\system32\advacfgb.exe failed!

Could not process line:
C:\WINDOWS\system32\advacfgb.exe
Status: 0xc0000034



File C:\WINDOWS\system32\alrsbatt.dll not found!
Deletion of file C:\WINDOWS\system32\alrsbatt.dll failed!

Could not process line:
C:\WINDOWS\system32\alrsbatt.dll
Status: 0xc0000034



File C:\WINDOWS\system32\alerter.exe not found!
Deletion of file C:\WINDOWS\system32\alerter.exe failed!

Could not process line:
C:\WINDOWS\system32\alerter.exe
Status: 0xc0000034



File C:\WINDOWS\system32\amcconf.exe not found!
Deletion of file C:\WINDOWS\system32\amcconf.exe failed!

Could not process line:
C:\WINDOWS\system32\amcconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\appconf.exe not found!
Deletion of file C:\WINDOWS\system32\appconf.exe failed!

Could not process line:
C:\WINDOWS\system32\appconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\appmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\appmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\appmgr32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\appstat.dll not found!
Deletion of file C:\WINDOWS\system32\appstat.dll failed!

Could not process line:
C:\WINDOWS\system32\appstat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\atkcadpt.dll not found!
Deletion of file C:\WINDOWS\system32\atkcadpt.dll failed!

Could not process line:
C:\WINDOWS\system32\atkcadpt.dll
Status: 0xc0000034



File C:\WINDOWS\system32\atkcadpt.exe not found!
Deletion of file C:\WINDOWS\system32\atkcadpt.exe failed!

Could not process line:
C:\WINDOWS\system32\atkcadpt.exe
Status: 0xc0000034



File C:\WINDOWS\system32\atmconf.exe not found!
Deletion of file C:\WINDOWS\system32\atmconf.exe failed!

Could not process line:
C:\WINDOWS\system32\atmconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\atrconf.exe not found!
Deletion of file C:\WINDOWS\system32\atrconf.exe failed!

Could not process line:
C:\WINDOWS\system32\atrconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\attmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\attmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\attmgr32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\atmprf32.dll not found!
Deletion of file C:\WINDOWS\system32\atmprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\atmprf32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\atmstat.dll not found!
Deletion of file C:\WINDOWS\system32\atmstat.dll failed!

Could not process line:
C:\WINDOWS\system32\atmstat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\attperf.exe not found!
Deletion of file C:\WINDOWS\system32\attperf.exe failed!

Could not process line:
C:\WINDOWS\system32\attperf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\attprf32.dll not found!
Deletion of file C:\WINDOWS\system32\attprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\attprf32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\attstat.dll not found!
Deletion of file C:\WINDOWS\system32\attstat.dll failed!

Could not process line:
C:\WINDOWS\system32\attstat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\audconf.exe not found!
Deletion of file C:\WINDOWS\system32\audconf.exe failed!

Could not process line:
C:\WINDOWS\system32\audconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\audmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\audmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\audmgr32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\audperf.exe not found!
Deletion of file C:\WINDOWS\system32\audperf.exe failed!

Could not process line:
C:\WINDOWS\system32\audperf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\audprf32.dll not found!
Deletion of file C:\WINDOWS\system32\audprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\audprf32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\audstat.dll not found!
Deletion of file C:\WINDOWS\system32\audstat.dll failed!

Could not process line:
C:\WINDOWS\system32\audstat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\brwconf.exe not found!
Deletion of file C:\WINDOWS\system32\brwconf.exe failed!

Could not process line:
C:\WINDOWS\system32\brwconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\brwmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\brwmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\brwmgr32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\brwperf.exe not found!
Deletion of file C:\WINDOWS\system32\brwperf.exe failed!

Could not process line:
C:\WINDOWS\system32\brwperf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\brwprf32.dll not found!
Deletion of file C:\WINDOWS\system32\brwprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\brwprf32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\brwstat.dll not found!
Deletion of file C:\WINDOWS\system32\brwstat.dll failed!

Could not process line:
C:\WINDOWS\system32\brwstat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgbphot.exe not found!
Deletion of file C:\WINDOWS\system32\cfgbphot.exe failed!

Could not process line:
C:\WINDOWS\system32\cfgbphot.exe
Status: 0xc0000034



File C:\WINDOWS\system32\cfgcrs.dll not found!
Deletion of file C:\WINDOWS\system32\cfgcrs.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgcrs.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgd3d.dll not found!
Deletion of file C:\WINDOWS\system32\cfgd3d.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgd3d.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgdei.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdei.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdei.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgdsk.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdsk.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdsk.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgdss.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdss.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdss.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgdxt.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdxt.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdxt.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgfsd.dll not found!
Deletion of file C:\WINDOWS\system32\cfgfsd.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgfsd.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgisr.dll not found!
Deletion of file C:\WINDOWS\system32\cfgisr.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgisr.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgmmprm.dll not found!
Deletion of file C:\WINDOWS\system32\cfgmmprm.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgmmprm.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgmplus.dll not found!
Deletion of file C:\WINDOWS\system32\cfgmplus.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgmplus.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cfgmwmid.exe not found!
Deletion of file C:\WINDOWS\system32\cfgmwmid.exe failed!

Could not process line:
C:\WINDOWS\system32\cfgmwmid.exe
Status: 0xc0000034



File C:\WINDOWS\system32\clicsaml.dll not found!
Deletion of file C:\WINDOWS\system32\clicsaml.dll failed!

Could not process line:
C:\WINDOWS\system32\clicsaml.dll
Status: 0xc0000034



File C:\WINDOWS\system32\clicsaml.exe not found!
Deletion of file C:\WINDOWS\system32\clicsaml.exe failed!

Could not process line:
C:\WINDOWS\system32\clicsaml.exe
Status: 0xc0000034



File C:\WINDOWS\system32\confapp.dll not found!
Deletion of file C:\WINDOWS\system32\confapp.dll failed!

Could not process line:
C:\WINDOWS\system32\confapp.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confatm.dll not found!
Deletion of file C:\WINDOWS\system32\confatm.dll failed!

Could not process line:
C:\WINDOWS\system32\confatm.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confatt.dll not found!
Deletion of file C:\WINDOWS\system32\confatt.dll failed!

Could not process line:
C:\WINDOWS\system32\confatt.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confaud.dll not found!
Deletion of file C:\WINDOWS\system32\confaud.dll failed!

Could not process line:
C:\WINDOWS\system32\confaud.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confbrw.dll not found!
Deletion of file C:\WINDOWS\system32\confbrw.dll failed!

Could not process line:
C:\WINDOWS\system32\confbrw.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confcon.dll not found!
Deletion of file C:\WINDOWS\system32\confcon.dll failed!

Could not process line:
C:\WINDOWS\system32\confcon.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confega.dll not found!
Deletion of file C:\WINDOWS\system32\confega.dll failed!

Could not process line:
C:\WINDOWS\system32\confega.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confifc.dll not found!
Deletion of file C:\WINDOWS\system32\confifc.dll failed!

Could not process line:
C:\WINDOWS\system32\confifc.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confjpg.dll not found!
Deletion of file C:\WINDOWS\system32\confjpg.dll failed!

Could not process line:
C:\WINDOWS\system32\confjpg.dll
Status: 0xc0000034



File C:\WINDOWS\system32\confwmv.dll not found!
Deletion of file C:\WINDOWS\system32\confwmv.dll failed!

Could not process line:
C:\WINDOWS\system32\confwmv.dll
Status: 0xc0000034



File C:\WINDOWS\system32\conmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\conmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\conmgr32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\conperf.exe not found!
Deletion of file C:\WINDOWS\system32\conperf.exe failed!

Could not process line:
C:\WINDOWS\system32\conperf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\conprf32.dll not found!
Deletion of file C:\WINDOWS\system32\conprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\conprf32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\constat.dll not found!
Deletion of file C:\WINDOWS\system32\constat.dll failed!

Could not process line:
C:\WINDOWS\system32\constat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cp8xpqj.dll not found!
Deletion of file C:\WINDOWS\system32\cp8xpqj.dll failed!

Could not process line:
C:\WINDOWS\system32\cp8xpqj.dll
Status: 0xc0000034



File C:\WINDOWS\system32\creconf.exe not found!
Deletion of file C:\WINDOWS\system32\creconf.exe failed!

Could not process line:
C:\WINDOWS\system32\creconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\crsconf.exe not found!
Deletion of file C:\WINDOWS\system32\crsconf.exe failed!

Could not process line:
C:\WINDOWS\system32\crsconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\crypds16.dll not found!
Deletion of file C:\WINDOWS\system32\crypds16.dll failed!

Could not process line:
C:\WINDOWS\system32\crypds16.dll
Status: 0xc0000034



File C:\WINDOWS\system32\crypmapi.exe not found!
Deletion of file C:\WINDOWS\system32\crypmapi.exe failed!

Could not process line:
C:\WINDOWS\system32\crypmapi.exe
Status: 0xc0000034



File C:\WINDOWS\system32\crypmapi.dll not found!
Deletion of file C:\WINDOWS\system32\crypmapi.dll failed!

Could not process line:
C:\WINDOWS\system32\crypmapi.dll
Status: 0xc0000034



File C:\WINDOWS\system32\cssewmpd.exe not found!
Deletion of file C:\WINDOWS\system32\cssewmpd.exe failed!

Could not process line:
C:\WINDOWS\system32\cssewmpd.exe
Status: 0xc0000034



File C:\WINDOWS\system32\decconf.exe not found!
Deletion of file C:\WINDOWS\system32\decconf.exe failed!

Could not process line:
C:\WINDOWS\system32\decconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\deiconf.exe not found!
Deletion of file C:\WINDOWS\system32\deiconf.exe failed!

Could not process line:
C:\WINDOWS\system32\deiconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\deiprf32.dll not found!
Deletion of file C:\WINDOWS\system32\deiprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\deiprf32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\deiprov.exe not found!
Deletion of file C:\WINDOWS\system32\deiprov.exe failed!

Could not process line:
C:\WINDOWS\system32\deiprov.exe
Status: 0xc0000034



File C:\WINDOWS\system32\deskmcd3.dll not found!
Deletion of file C:\WINDOWS\system32\deskmcd3.dll failed!

Could not process line:
C:\WINDOWS\system32\deskmcd3.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dfssrasc.dll not found!
Deletion of file C:\WINDOWS\system32\dfssrasc.dll failed!

Could not process line:
C:\WINDOWS\system32\dfssrasc.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dfssrasc.exe not found!
Deletion of file C:\WINDOWS\system32\dfssrasc.exe failed!

Could not process line:
C:\WINDOWS\system32\dfssrasc.exe
Status: 0xc0000034



File C:\WINDOWS\system32\diagamc.dll not found!
Deletion of file C:\WINDOWS\system32\diagamc.dll failed!

Could not process line:
C:\WINDOWS\system32\diagamc.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagcre.dll not found!
Deletion of file C:\WINDOWS\system32\diagcre.dll failed!

Could not process line:
C:\WINDOWS\system32\diagcre.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagcrs.dll not found!
Deletion of file C:\WINDOWS\system32\diagcrs.dll failed!

Could not process line:
C:\WINDOWS\system32\diagcrs.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagd3d.dll not found!
Deletion of file C:\WINDOWS\system32\diagd3d.dll failed!

Could not process line:
C:\WINDOWS\system32\diagd3d.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagdei.dll not found!
Deletion of file C:\WINDOWS\system32\diagdei.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdei.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagdsk.dll not found!
Deletion of file C:\WINDOWS\system32\diagdsk.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdsk.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagdss.dll not found!
Deletion of file C:\WINDOWS\system32\diagdss.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdss.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagdxt.dll not found!
Deletion of file C:\WINDOWS\system32\diagdxt.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdxt.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagfsd.dll not found!
Deletion of file C:\WINDOWS\system32\diagfsd.dll failed!

Could not process line:
C:\WINDOWS\system32\diagfsd.dll
Status: 0xc0000034



File C:\WINDOWS\system32\diagisr.dll not found!
Deletion of file C:\WINDOWS\system32\diagisr.dll failed!

Could not process line:
C:\WINDOWS\system32\diagisr.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dic.exe not found!
Deletion of file C:\WINDOWS\system32\dic.exe failed!

Could not process line:
C:\WINDOWS\system32\dic.exe
Status: 0xc0000034



File C:\WINDOWS\system32\dmimmdt2.exe not found!
Deletion of file C:\WINDOWS\system32\dmimmdt2.exe failed!

Could not process line:
C:\WINDOWS\system32\dmimmdt2.exe
Status: 0xc0000034



File C:\WINDOWS\system32\docpfram.dll not found!
Deletion of file C:\WINDOWS\system32\docpfram.dll failed!

Could not process line:
C:\WINDOWS\system32\docpfram.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dpugmswe.dll not found!
Deletion of file C:\WINDOWS\system32\dpugmswe.dll failed!

Could not process line:
C:\WINDOWS\system32\dpugmswe.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dpvacdfv.dll not found!
Deletion of file C:\WINDOWS\system32\dpvacdfv.dll failed!

Could not process line:
C:\WINDOWS\system32\dpvacdfv.dll
Status: 0xc0000034



File C:\WINDOWS\system32\drmvndde.exe not found!
Deletion of file C:\WINDOWS\system32\drmvndde.exe failed!

Could not process line:
C:\WINDOWS\system32\drmvndde.exe
Status: 0xc0000034



File C:\WINDOWS\system32\drmvndde.dll not found!
Deletion of file C:\WINDOWS\system32\drmvndde.dll failed!

Could not process line:
C:\WINDOWS\system32\drmvndde.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dskconf.exe not found!
Deletion of file C:\WINDOWS\system32\dskconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dskconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\dsprcdfv.dll not found!
Deletion of file C:\WINDOWS\system32\dsprcdfv.dll failed!

Could not process line:
C:\WINDOWS\system32\dsprcdfv.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dsprcdfv.exe not found!
Deletion of file C:\WINDOWS\system32\dsprcdfv.exe failed!

Could not process line:
C:\WINDOWS\system32\dsprcdfv.exe
Status: 0xc0000034



File C:\WINDOWS\system32\dsqudisp.dll not found!
Deletion of file C:\WINDOWS\system32\dsqudisp.dll failed!

Could not process line:
C:\WINDOWS\system32\dsqudisp.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dssconf.exe not found!
Deletion of file C:\WINDOWS\system32\dssconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dssconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\dsseds32.dll not found!
Deletion of file C:\WINDOWS\system32\dsseds32.dll failed!

Could not process line:
C:\WINDOWS\system32\dsseds32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dsseds32.exe not found!
Deletion of file C:\WINDOWS\system32\dsseds32.exe failed!

Could not process line:
C:\WINDOWS\system32\dsseds32.exe
Status: 0xc0000034



File C:\WINDOWS\system32\dxdimqtr.dll not found!
Deletion of file C:\WINDOWS\system32\dxdimqtr.dll failed!

Could not process line:
C:\WINDOWS\system32\dxdimqtr.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dxtconf.exe not found!
Deletion of file C:\WINDOWS\system32\dxtconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dxtconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\dxtmmnmd.dll not found!
Deletion of file C:\WINDOWS\system32\dxtmmnmd.dll failed!

Could not process line:
C:\WINDOWS\system32\dxtmmnmd.dll
Status: 0xc0000034



File C:\WINDOWS\system32\dxtmmnmd.exe not found!
Deletion of file C:\WINDOWS\system32\dxtmmnmd.exe failed!

Could not process line:
C:\WINDOWS\system32\dxtmmnmd.exe
Status: 0xc0000034



File C:\WINDOWS\system32\dxtmsft3.dll not found!
Deletion of file C:\WINDOWS\system32\dxtmsft3.dll failed!

Could not process line:
C:\WINDOWS\system32\dxtmsft3.dll
Status: 0xc0000034



File C:\WINDOWS\system32\e1.dll not found!
Deletion of file C:\WINDOWS\system32\e1.dll failed!

Could not process line:
C:\WINDOWS\system32\e1.dll
Status: 0xc0000034



File C:\WINDOWS\system32\e1.sys not found!
Deletion of file C:\WINDOWS\system32\e1.sys failed!

Could not process line:
C:\WINDOWS\system32\e1.sys
Status: 0xc0000034



File C:\WINDOWS\system32\egaavi.exe not found!
Deletion of file C:\WINDOWS\system32\egaavi.exe failed!

Could not process line:
C:\WINDOWS\system32\egaavi.exe
Status: 0xc0000034



File C:\WINDOWS\system32\egamgr32.dll not found!
Deletion of file C:\WINDOWS\system32\egamgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\egamgr32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\egastat.dll not found!
Deletion of file C:\WINDOWS\system32\egastat.dll failed!

Could not process line:
C:\WINDOWS\system32\egastat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\egperf32.dll not found!
Deletion of file C:\WINDOWS\system32\egperf32.dll failed!

Could not process line:
C:\WINDOWS\system32\egperf32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\encddpva.dll not found!
Deletion of file C:\WINDOWS\system32\encddpva.dll failed!

Could not process line:
C:\WINDOWS\system32\encddpva.dll
Status: 0xc0000034



File C:\WINDOWS\system32\evenncob.dll not found!
Deletion of file C:\WINDOWS\system32\evenncob.dll failed!

Could not process line:
C:\WINDOWS\system32\evenncob.dll
Status: 0xc0000034



File C:\WINDOWS\system32\fpwppgpm.exe not found!
Deletion of file C:\WINDOWS\system32\fpwppgpm.exe failed!

Could not process line:
C:\WINDOWS\system32\fpwppgpm.exe
Status: 0xc0000034



File C:\WINDOWS\system32\fsdconf.exe not found!
Deletion of file C:\WINDOWS\system32\fsdconf.exe failed!

Could not process line:
C:\WINDOWS\system32\fsdconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\fsxsh4.dll not found!
Deletion of file C:\WINDOWS\system32\fsxsh4.dll failed!

Could not process line:
C:\WINDOWS\system32\fsxsh4.dll
Status: 0xc0000034



File C:\WINDOWS\system32\glu3panm.dll not found!
Deletion of file C:\WINDOWS\system32\glu3panm.dll failed!

Could not process line:
C:\WINDOWS\system32\glu3panm.dll
Status: 0xc0000034



File C:\WINDOWS\system32\gpkrmssi.dll not found!
Deletion of file C:\WINDOWS\system32\gpkrmssi.dll failed!

Could not process line:
C:\WINDOWS\system32\gpkrmssi.dll
Status: 0xc0000034



File C:\WINDOWS\system32\gtmqf608r7.dll not found!
Deletion of file C:\WINDOWS\system32\gtmqf608r7.dll failed!

Could not process line:
C:\WINDOWS\system32\gtmqf608r7.dll
Status: 0xc0000034



File C:\WINDOWS\system32\hypewmv9.exe not found!
Deletion of file C:\WINDOWS\system32\hypewmv9.exe failed!

Could not process line:
C:\WINDOWS\system32\hypewmv9.exe
Status: 0xc0000034



File C:\WINDOWS\system32\i57ff9ieo.dll not found!
Deletion of file C:\WINDOWS\system32\i57ff9ieo.dll failed!

Could not process line:
C:\WINDOWS\system32\i57ff9ieo.dll
Status: 0xc0000034



File C:\WINDOWS\system32\iasamsre.dll not found!
Deletion of file C:\WINDOWS\system32\iasamsre.dll failed!

Could not process line:
C:\WINDOWS\system32\iasamsre.dll
Status: 0xc0000034



File C:\WINDOWS\system32\icmpdx3j.dll not found!
Deletion of file C:\WINDOWS\system32\icmpdx3j.dll failed!

Could not process line:
C:\WINDOWS\system32\icmpdx3j.dll
Status: 0xc0000034



File C:\WINDOWS\system32\icmuwmad.exe not found!
Deletion of file C:\WINDOWS\system32\icmuwmad.exe failed!

Could not process line:
C:\WINDOWS\system32\icmuwmad.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ifcconf.exe not found!
Deletion of file C:\WINDOWS\system32\ifcconf.exe failed!

Could not process line:
C:\WINDOWS\system32\ifcconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ifcmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\ifcmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\ifcmgr32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ifcstat.dll not found!
Deletion of file C:\WINDOWS\system32\ifcstat.dll failed!

Could not process line:
C:\WINDOWS\system32\ifcstat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\imagalrs.exe not found!
Deletion of file C:\WINDOWS\system32\imagalrs.exe failed!

Could not process line:
C:\WINDOWS\system32\imagalrs.exe
Status: 0xc0000034



File C:\WINDOWS\system32\inketype.dll not found!
Deletion of file C:\WINDOWS\system32\inketype.dll failed!

Could not process line:
C:\WINDOWS\system32\inketype.dll
Status: 0xc0000034



File C:\WINDOWS\system32\inetzlco.dll not found!
Deletion of file C:\WINDOWS\system32\inetzlco.dll failed!

Could not process line:
C:\WINDOWS\system32\inetzlco.dll
Status: 0xc0000034



File C:\WINDOWS\system32\inetzlco.exe not found!
Deletion of file C:\WINDOWS\system32\inetzlco.exe failed!

Could not process line:
C:\WINDOWS\system32\inetzlco.exe
Status: 0xc0000034



File C:\WINDOWS\system32\inpufm20.exe not found!
Deletion of file C:\WINDOWS\system32\inpufm20.exe failed!

Could not process line:
C:\WINDOWS\system32\inpufm20.exe
Status: 0xc0000034



File C:\WINDOWS\system32\jpgmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\jpgmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\jpgmgr32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ipnardch.dll not found!
Deletion of file C:\WINDOWS\system32\ipnardch.dll failed!

Could not process line:
C:\WINDOWS\system32\ipnardch.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ipsecmon.exe not found!
Deletion of file C:\WINDOWS\system32\ipsecmon.exe failed!

Could not process line:
C:\WINDOWS\system32\ipsecmon.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ipsmwebh.exe not found!
Deletion of file C:\WINDOWS\system32\ipsmwebh.exe failed!

Could not process line:
C:\WINDOWS\system32\ipsmwebh.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ipv6rasm.dll not found!
Deletion of file C:\WINDOWS\system32\ipv6rasm.dll failed!

Could not process line:
C:\WINDOWS\system32\ipv6rasm.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ipv6rasm.exe not found!
Deletion of file C:\WINDOWS\system32\ipv6rasm.exe failed!

Could not process line:
C:\WINDOWS\system32\ipv6rasm.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ipxpextm.exe not found!
Deletion of file C:\WINDOWS\system32\ipxpextm.exe failed!

Could not process line:
C:\WINDOWS\system32\ipxpextm.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ipxsshdo.exe not found!
Deletion of file C:\WINDOWS\system32\ipxsshdo.exe failed!

Could not process line:
C:\WINDOWS\system32\ipxsshdo.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ipxsshdo.dll not found!
Deletion of file C:\WINDOWS\system32\ipxsshdo.dll failed!

Could not process line:
C:\WINDOWS\system32\ipxsshdo.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ipxwshel.exe not found!
Deletion of file C:\WINDOWS\system32\ipxwshel.exe failed!

Could not process line:
C:\WINDOWS\system32\ipxwshel.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ipxwersv.dll not found!
Deletion of file C:\WINDOWS\system32\ipxwersv.dll failed!

Could not process line:
C:\WINDOWS\system32\ipxwersv.dll
Status: 0xc0000034



File C:\WINDOWS\system32\isrconf.exe not found!
Deletion of file C:\WINDOWS\system32\isrconf.exe failed!

Could not process line:
C:\WINDOWS\system32\isrconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\isrprf32.dll not found!
Deletion of file C:\WINDOWS\system32\isrprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\isrprf32.dll
Status: 0xc0000034



File C:\WINDOWS\system32\isrprov.exe not found!
Deletion of file C:\WINDOWS\system32\isrprov.exe failed!

Could not process line:
C:\WINDOWS\system32\isrprov.exe
Status: 0xc0000034



File C:\WINDOWS\system32\iuennwcf.dll not found!
Deletion of file C:\WINDOWS\system32\iuennwcf.dll failed!

Could not process line:
C:\WINDOWS\system32\iuennwcf.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ixssregw.exe not found!
Deletion of file C:\WINDOWS\system32\ixssregw.exe failed!

Could not process line:
C:\WINDOWS\system32\ixssregw.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ixsswmas.exe not found!
Deletion of file C:\WINDOWS\system32\ixsswmas.exe failed!

Could not process line:
C:\WINDOWS\system32\ixsswmas.exe
Status: 0xc0000034



File C:\WINDOWS\system32\j2t3crh.dll not found!
Deletion of file C:\WINDOWS\system32\j2t3crh.dll failed!

Could not process line:
C:\WINDOWS\system32\j2t3crh.dll
Status: 0xc0000034



File C:\WINDOWS\system32\jgdwadsn.dll not found!
Deletion of file C:\WINDOWS\system32\jgdwadsn.dll failed!

Could not process line:
C:\WINDOWS\system32\jgdwadsn.dll
Status: 0xc0000034



File C:\WINDOWS\system32\jgdwadsn.exe not found!
Deletion of file C:\WINDOWS\system32\jgdwadsn.exe failed!

Could not process line:
C:\WINDOWS\system32\jgdwadsn.exe
Status: 0xc0000034



File C:\WINDOWS\system32\jgmdwstd.dll not found!
Deletion of file C:\WINDOWS\system32\jgmdwstd.dll failed!

Could not process line:
C:\WINDOWS\system32\jgmdwstd.dll
Status: 0xc0000034



File C:\WINDOWS\system32\jgsdrpcn.dll not found!
Deletion of file C:\WINDOWS\system32\jgsdrpcn.dll failed!

Could not process line:
C:\WINDOWS\system32\jgsdrpcn.dll
Status: 0xc0000034



File C:\WINDOWS\system32\jgsdrpcn.exe not found!
Deletion of file C:\WINDOWS\system32\jgsdrpcn.exe failed!

Could not process line:
C:\WINDOWS\system32\jgsdrpcn.exe
Status: 0xc0000034



File C:\WINDOWS\system32\jgawmsne.dll not found!
Deletion of file C:\WINDOWS\system32\jgawmsne.dll failed!

Could not process line:
C:\WINDOWS\system32\jgawmsne.dll
Status: 0xc0000034



File C:\WINDOWS\system32\jpgconf.exe not found!
Deletion of file C:\WINDOWS\system32\jpgconf.exe failed!

Could not process line:
C:\WINDOWS\system32\jpgconf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\jpgstat.dll not found!
Deletion of file C:\WINDOWS\system32\jpgstat.dll failed!

Could not process line:
C:\WINDOWS\system32\jpgstat.dll
Status: 0xc0000034



File C:\WINDOWS\system32\kbdfnmmk.exe not found!
Deletion of file C:\WINDOWS\system32\kbdfnmmk.exe failed!

Could not process line:
C:\WINDOWS\system32\kbdfnmmk.exe
Status: 0xc0000034



File C:\WINDOWS\system32\kbdfwshe.exe not found!
Deletion of file C:\WINDOWS\system32\kbdfwshe.exe failed!

Could not process line:
C:\WINDOWS\system32\kbdfwshe.exe
Status: 0xc0000034



File C:\WINDOWS\system32\kbdcrtut.dll not found!
Deletion of file C:\WINDOWS\system32\kbdcrtut.dll failed!

Could not process line:
C:\WINDOWS\system32\kbdcrtut.dll
Status: 0xc0000034



File C:\WINDOWS\system32\libdprin.dll not found!
Deletion of file C:\WINDOWS\system32\libdprin.dll failed!

Could not process line:
C:\WINDOWS\system32\libdprin.dll
Status: 0xc0000034



File C:\WINDOWS\system32\loghatkc.dll not found!
Deletion of file C:\WINDOWS\system32\loghatkc.dll failed!

Could not process line:
C:\WINDOWS\system32\loghatkc.dll
Status: 0xc0000034



File C:\WINDOWS\system32\lprmneth.dll not found!
Deletion of file C:\WINDOWS\system32\lprmneth.dll failed!

Could not process line:
C:\WINDOWS\system32\lprmneth.dll
Status: 0xc0000034



File C:\WINDOWS\system32\lprmneth.exe not found!
Deletion of file C:\WINDOWS\system32\lprmneth.exe failed!

Could not process line:
C:\WINDOWS\system32\lprmneth.exe
Status: 0xc0000034



File C:\WINDOWS\system32\mcd3mscm.dll not found!
Deletion of file C:\WINDOWS\system32\mcd3mscm.dll failed!

Could not process line:
C:\WINDOWS\system32\mcd3mscm.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mcd3stor.dll not found!
Deletion of file C:\WINDOWS\system32\mcd3stor.dll failed!

Could not process line:
C:\WINDOWS\system32\mcd3stor.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mfcscoma.dll not found!
Deletion of file C:\WINDOWS\system32\mfcscoma.dll failed!

Could not process line:
C:\WINDOWS\system32\mfcscoma.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mididpnh.dll not found!
Deletion of file C:\WINDOWS\system32\mididpnh.dll failed!

Could not process line:
C:\WINDOWS\system32\mididpnh.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ml7swr.exe not found!
Deletion of file C:\WINDOWS\system32\ml7swr.exe failed!

Could not process line:
C:\WINDOWS\system32\ml7swr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\mmfubits.dll not found!
Deletion of file C:\WINDOWS\system32\mmfubits.dll failed!

Could not process line:
C:\WINDOWS\system32\mmfubits.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mmfubits.exe not found!
Deletion of file C:\WINDOWS\system32\mmfubits.exe failed!

Could not process line:
C:\WINDOWS\system32\mmfubits.exe
Status: 0xc0000034



File C:\WINDOWS\system32\mp4sglmf.dll not found!
Deletion of file C:\WINDOWS\system32\mp4sglmf.dll failed!

Could not process line:
C:\WINDOWS\system32\mp4sglmf.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mprmsfma.dll not found!
Deletion of file C:\WINDOWS\system32\mprmsfma.dll failed!

Could not process line:
C:\WINDOWS\system32\mprmsfma.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mprwanp.dll not found!
Deletion of file C:\WINDOWS\system32\mprwanp.dll failed!

Could not process line:
C:\WINDOWS\system32\mprwanp.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mqadscp3.exe not found!
Deletion of file C:\WINDOWS\system32\mqadscp3.exe failed!

Could not process line:
C:\WINDOWS\system32\mqadscp3.exe
Status: 0xc0000034



File C:\WINDOWS\system32\mqqmkbdu.dll not found!
Deletion of file C:\WINDOWS\system32\mqqmkbdu.dll failed!

Could not process line:
C:\WINDOWS\system32\mqqmkbdu.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mqqmdisp.dll not found!
Deletion of file C:\WINDOWS\system32\mqqmdisp.dll failed!

Could not process line:
C:\WINDOWS\system32\mqqmdisp.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mqqmdisp.exe not found!
Deletion of file C:\WINDOWS\system32\mqqmdisp.exe failed!

Could not process line:
C:\WINDOWS\system32\mqqmdisp.exe
Status: 0xc0000034



File C:\WINDOWS\system32\msihftpw.dll not found!
Deletion of file C:\WINDOWS\system32\msihftpw.dll failed!

Could not process line:
C:\WINDOWS\system32\msihftpw.dll
Status: 0xc0000034



File C:\WINDOWS\system32\msisnwcf.dll not found!
Deletion of file C:\WINDOWS\system32\msisnwcf.dll failed!

Could not process line:
C:\WINDOWS\system32\msisnwcf.dll
Status: 0xc0000034



File C:\WINDOWS\system32\msjidpmo.dll not found!
Deletion of file C:\WINDOWS\system32\msjidpmo.dll failed!

Could not process line:
C:\WINDOWS\system32\msjidpmo.dll
Status: 0xc0000034



File C:\WINDOWS\system32\mslskern.dll not found!
Deletion of file C:\WINDOWS\system32\mslskern.dll failed!

Could not process line:
C:\WINDOWS\system32\mslskern.dll
Status: 0xc0000034



File C:\WINDOWS\system32\msnepngf.exe not found!
Deletion of file C:\WINDOWS\system32\msnepngf.exe failed!

Could not process line:
C:\WINDOWS\system32\msnepngf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\mspradme.exe not found!
Deletion of file C:\WINDOWS\system32\mspradme.exe failed!

Could not process line:
C:\WINDOWS\system32\mspradme.exe
Status: 0xc0000034



File C:\WINDOWS\system32\msrdtscf.exe not found!
Deletion of file C:\WINDOWS\system32\msrdtscf.exe failed!

Could not process line:
C:\WINDOWS\system32\msrdtscf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\msrdwint.dll not found!
Deletion of file C:\WINDOWS\system32\msrdwint.dll failed!

Could not process line:
C:\WINDOWS\system32\msrdwint.dll
Status: 0xc0000034



File C:\WINDOWS\system32\msrdwint.dat not found!
Deletion of file C:\WINDOWS\system32\msrdwint.dat failed!

Could not process line:
C:\WINDOWS\system32\msrdwint.dat
Status: 0xc0000034



File C:\WINDOWS\system32\msrdwint.exe not found!
Deletion of file C:\WINDOWS\system32\msrdwint.exe failed!

Could not process line:
C:\WINDOWS\system32\msrdwint.exe
Status: 0xc0000034



File C:\WINDOWS\system32\msssfpwp.dll not found!
Deletion of file C:\WINDOWS\system32\msssfpwp.dll failed!

Could not process line:
C:\WINDOWS\system32\msssfpwp.dll
Status: 0xc0000034



File C:\WINDOWS\System32\msssmsda.exe not found!
Deletion of file C:\WINDOWS\System32\msssmsda.exe failed!

Could not process line:
C:\WINDOWS\System32\msssmsda.exe
Status: 0xc0000034



File C:\WINDOWS\system32\msssmsda.dll not found!
Deletion of file C:\WINDOWS\system32\msssmsda.dll failed!

Could not process line:
C:\WINDOWS\system32\msssmsda.dll
Status: 0xc0000034



File C:\WINDOWS\system32\msssfpwp.exe not found!
Deletion of file C:\WINDOWS\system32\msssfpwp.exe failed!

Could not process line:
C:\WINDOWS\system32\msssfpwp.exe
Status: 0xc0000034



File C:\WINDOWS\system32\mstsodbc.exe not found!
Deletion of file C:\WINDOWS\system32\mstsodbc.exe failed!

Could not process line:
C:\WINDOWS\system32\mstsodbc.exe
Status: 0xc0000034



File C:\WINDOWS\system32\narrwshr.dll not found!
Deletion of file C:\WINDOWS\system32\narrwshr.dll failed!

Could not process line:
C:\WINDOWS\system32\narrwshr.dll
Status: 0xc0000034



File C:\WINDOWS\system32\netfrtm.dll not found!
Deletion of file C:\WINDOWS\system32\netfrtm.dll failed!

Could not process line:
C:\WINDOWS\system32\netfrtm.dll
Status: 0xc0000034



File C:\WINDOWS\system32\netstraf.dll not found!
Deletion of file C:\WINDOWS\system32\netstraf.dll failed!

Could not process line:
C:\WINDOWS\system32\netstraf.dll
Status: 0xc0000034



File C:\WINDOWS\system32\netstraf.exe not found!
Deletion of file C:\WINDOWS\system32\netstraf.exe failed!

Could not process line:
C:\WINDOWS\system32\netstraf.exe
Status: 0xc0000034



File C:\WINDOWS\system32\nlhtjgdw.exe not found!
Deletion of file C:\WINDOWS\system32\nlhtjgdw.exe failed!

Could not process line:
C:\WINDOWS\system32\nlhtjgdw.exe
Status: 0xc0000034



File C:\WINDOWS\system32\npptdpnm.dll not found!
Deletion of file C:\WINDOWS\system32\npptdpnm.dll failed!

Could not process line:
C:\WINDOWS\system32\npptdpnm.dll
Status: 0xc0000034



File C:\WINDOWS\system32\npptdpnm.exe not found!
Deletion of file C:\WINDOWS\system32\npptdpnm.exe failed!

Could not process line:
C:\WINDOWS\system32\npptdpnm.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ntlamsht.dll not found!
Deletion of file C:\WINDOWS\system32\ntlamsht.dll failed!

Could not process line:
C:\WINDOWS\system32\ntlamsht.dll
Status: 0xc0000034



File C:\WINDOWS\system32\oaklrass.exe not found!
Deletion of file C:\WINDOWS\system32\oaklrass.exe failed!

Could not process line:
C:\WINDOWS\system32\oaklrass.exe
Status: 0xc0000034

File C:\WINDOWS\system32\odtemdt2.dll deleted successfully.


File C:\WINDOWS\system32\offfmsre.dll not found!
Deletion of file C:\WINDOWS\system32\offfmsre.dll failed!

Could not process line:
C:\WINDOWS\system32\offfmsre.dll
Status: 0xc0000034



File C:\WINDOWS\system32\olecmsre.dll not found!
Deletion of file C:\WINDOWS\system32\olecmsre.dll failed!

Could not process line:
C:\WINDOWS\system32\olecmsre.dll
Status: 0xc0000034



File C:\WINDOWS\system32\osunuxth.dll not found!
Deletion of file C:\WINDOWS\system32\osunuxth.dll failed!

Could not process line:
C:\WINDOWS\system32\osunuxth.dll
Status: 0xc0000034



File C:\WINDOWS\system32\osunuxth.exe not found!
Deletion of file C:\WINDOWS\system32\osunuxth.exe failed!

Could not process line:
C:\WINDOWS\system32\osunuxth.exe
Status: 0xc0000034



File C:\WINDOWS\system32\p2psifmo.exe not found!
Deletion of file C:\WINDOWS\system32\p2psifmo.exe failed!

Could not process line:
C:\WINDOWS\system32\p2psifmo.exe
Status: 0xc0000034



File C:\WINDOWS\system32\panmavic.dll not found!
Deletion of file C:\WINDOWS\system32\panmavic.dll failed!

Could not process line:
C:\WINDOWS\system32\panmavic.dll
Status: 0xc0000034



File C:\WINDOWS\system32\panmavic.exe not found!
Deletion of file C:\WINDOWS\system32\panmavic.exe failed!

Could not process line:
C:\WINDOWS\system32\panmavic.exe
Status: 0xc0000034



File C:\WINDOWS\system32\panmnets.dll not found!
Deletion of file C:\WINDOWS\system32\panmnets.dll failed!

Could not process line:
C:\WINDOWS\system32\panmnets.dll
Status: 0xc0000034



File C:\WINDOWS\system32\panmnets.exe not found!
Deletion of file C:\WINDOWS\system32\panmnets.exe failed!

Could not process line:
C:\WINDOWS\system32\panmnets.exe
Status: 0xc0000034



File C:\WINDOWS\system32\pngfmsne.dll not found!
Deletion of file C:\WINDOWS\system32\pngfmsne.dll failed!

Could not process line:
C:\WINDOWS\system32\pngfmsne.dll
Status: 0xc0000034



File C:\WINDOWS\system32\psapdani.dll not found!
Deletion of file C:\WINDOWS\system32\psapdani.dll failed!

Could not process line:
C:\WINDOWS\system32\psapdani.dll
Status: 0xc0000034



File C:\WINDOWS\system32\psbaavic.dll not found!
Deletion of file C:\WINDOWS\system32\psbaavic.dll failed!

Could not process line:
C:\WINDOWS\system32\psbaavic.dll
Status: 0xc0000034



File C:\WINDOWS\system32\psbamtxe.dll not found!
Deletion of file C:\WINDOWS\system32\psbamtxe.dll failed!

Could not process line:
C:\WINDOWS\system32\psbamtxe.dll
Status: 0xc0000034



File C:\WINDOWS\system32\psbamtxe.exe not found!
Deletion of file C:\WINDOWS\system32\psbamtxe.exe failed!

Could not process line:
C:\WINDOWS\system32\psbamtxe.exe
Status: 0xc0000034



File C:\WINDOWS\system32\qasfole2.dll not found!
Deletion of file C:\WINDOWS\system32\qasfole2.dll failed!

Could not process line:
C:\WINDOWS\system32\qasfole2.dll
Status: 0xc0000034



File C:\WINDOWS\system32\rdpwmsjt.exe not found!
Deletion of file C:\WINDOWS\system32\rdpwmsjt.exe failed!

Could not process line:
C:\WINDOWS\system32\rdpwmsjt.exe
Status: 0xc0000034



File C:\WINDOWS\system32\rtutdmin.dll not found!
Deletion of file C:\WINDOWS\system32\rtutdmin.dll failed!

Could not process line:
C:\WINDOWS\system32\rtutdmin.dll
Status: 0xc0000034



File C:\WINDOWS\system32\samsusrr.dll not found!
Deletion of file C:\WINDOWS\system32\samsusrr.dll failed!

Could not process line:
C:\WINDOWS\system32\samsusrr.dll
Status: 0xc0000034



File C:\WINDOWS\system32\samsusrr.exe not found!
Deletion of file C:\WINDOWS\system32\samsusrr.exe failed!

Could not process line:
C:\WINDOWS\system32\samsusrr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\sbeddem.dll not found!
Deletion of file C:\WINDOWS\system32\sbeddem.dll failed!

Could not process line:
C:\WINDOWS\system32\sbeddem.dll
Status: 0xc0000034



File C:\WINDOWS\system32\sbeddem.exe not found!
Deletion of file C:\WINDOWS\system32\sbeddem.exe failed!

Could not process line:
C:\WINDOWS\system32\sbeddem.exe
Status: 0xc0000034



File C:\WINDOWS\system32\sbeddem.z1 not found!
Deletion of file C:\WINDOWS\system32\sbeddem.z1 failed!

Could not process line:
C:\WINDOWS\system32\sbeddem.z1
Status: 0xc0000034



File C:\WINDOWS\system32\sccsumdm.dll not found!
Deletion of file C:\WINDOWS\system32\sccsumdm.dll failed!

Could not process line:
C:\WINDOWS\system32\sccsumdm.dll
Status: 0xc0000034



File C:\WINDOWS\system32\sccsumdm.exe not found!
Deletion of file C:\WINDOWS\system32\sccsumdm.exe failed!

Could not process line:
C:\WINDOWS\system32\sccsumdm.exe
Status: 0xc0000034



File C:\WINDOWS\system32\scp3sdhc.dll not found!
Deletion of file C:\WINDOWS\system32\scp3sdhc.dll failed!

Could not process line:
C:\WINDOWS\system32\scp3sdhc.dll
Status: 0xc0000034



File C:\WINDOWS\system32\scsm.exe not found!
Deletion of file C:\WINDOWS\system32\scsm.exe failed!

Could not process line:
C:\WINDOWS\system32\scsm.exe
Status: 0xc0000034



File C:\WINDOWS\system32\ssdprasa.dll not found!
Deletion of file C:\WINDOWS\system32\ssdprasa.dll failed!

Could not process line:
C:\WINDOWS\system32\ssdprasa.dll
Status: 0xc0000034



File C:\WINDOWS\system32\shsvmdim.dll not found!
Deletion of file C:\WINDOWS\system32\shsvmdim.dll failed!

Could not process line:
C:\WINDOWS\system32\shsvmdim.dll
Status: 0xc0000034



File C:\WINDOWS\system32\slbipsch.dll not found!
Deletion of file C:\WINDOWS\system32\slbipsch.dll failed!

Could not process line:
C:\WINDOWS\system32\slbipsch.dll
Status: 0xc0000034



File C:\WINDOWS\system32\slbipsch.exe not found!
Deletion of file C:\WINDOWS\system32\slbipsch.exe failed!

Could not process line:
C:\WINDOWS\system32\slbipsch.exe
Status: 0xc0000034



File C:\WINDOWS\system32\smlomswc.dll not found!
Deletion of file C:\WINDOWS\system32\smlomswc.dll failed!

Could not process line:
C:\WINDOWS\system32\smlomswc.dll
Status: 0xc0000034



File C:\WINDOWS\system32\snmpmmcn.dll not found!
Deletion of file C:\WINDOWS\system32\snmpmmcn.dll failed!

Could not process line:
C:\WINDOWS\system32\snmpmmcn.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statamc.dll not found!
Deletion of file C:\WINDOWS\system32\statamc.dll failed!

Could not process line:
C:\WINDOWS\system32\statamc.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statcre.dll not found!
Deletion of file C:\WINDOWS\system32\statcre.dll failed!

Could not process line:
C:\WINDOWS\system32\statcre.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statcrs.dll not found!
Deletion of file C:\WINDOWS\system32\statcrs.dll failed!

Could not process line:
C:\WINDOWS\system32\statcrs.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statd3d.dll not found!
Deletion of file C:\WINDOWS\system32\statd3d.dll failed!

Could not process line:
C:\WINDOWS\system32\statd3d.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statdei.dll not found!
Deletion of file C:\WINDOWS\system32\statdei.dll failed!

Could not process line:
C:\WINDOWS\system32\statdei.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statdsk.dll not found!
Deletion of file C:\WINDOWS\system32\statdsk.dll failed!

Could not process line:
C:\WINDOWS\system32\statdsk.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statdss.dll not found!
Deletion of file C:\WINDOWS\system32\statdss.dll failed!

Could not process line:
C:\WINDOWS\system32\statdss.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statdxt.dll not found!
Deletion of file C:\WINDOWS\system32\statdxt.dll failed!

Could not process line:
C:\WINDOWS\system32\statdxt.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statfsd.dll not found!
Deletion of file C:\WINDOWS\system32\statfsd.dll failed!

Could not process line:
C:\WINDOWS\system32\statfsd.dll
Status: 0xc0000034



File C:\WINDOWS\system32\statisr.dll not found!
Deletion of file C:\WINDOWS\system32\statisr.dll failed!

Could not process line:
C:\WINDOWS\system32\statisr.dll
Status: 0xc0000034



File C:\WINDOWS\system32\stcisxum.dll not found!
Deletion of file C:\WINDOWS\system32\stcisxum.dll failed!

Could not process line:
C:\WINDOWS\system32\stcisxum.dll
Status: 0xc0000034

File C:\WINDOWS\system32\strmatkc.dll deleted successfully.


File C:\WINDOWS\system32\strmwin8.dll not found!
Deletion of file C:\WINDOWS\system32\strmwin8.dll failed!

Could not process line:
C:\WINDOWS\system32\strmwin8.dll
Status: 0xc0000034



File C:\WINDOWS\system32\sysshtic.dll not found!
Deletion of file C:\WINDOWS\system32\sysshtic.dll failed!

Could not process line:
C:\WINDOWS\system32\sysshtic.dll
Status: 0xc0000034



File C:\WINDOWS\system32\sysshtic.exe not found!
Deletion of file C:\WINDOWS\system32\sysshtic.exe failed!

Could not process line:
C:\WINDOWS\system32\sysshtic.exe
Status: 0xc0000034



File C:\WINDOWS\system32\tlntrass.exe not found!
Deletion of file C:\WINDOWS\system32\tlntrass.exe failed!

Could not process line:
C:\WINDOWS\system32\tlntrass.exe
Status: 0xc0000034



File C:\WINDOWS\system32\trkwpipa.exe not found!
Deletion of file C:\WINDOWS\system32\trkwpipa.exe failed!

Could not process line:
C:\WINDOWS\system32\trkwpipa.exe
Status: 0xc0000034



File C:\WINDOWS\system32\tscfvjoy.dll not found!
Deletion of file C:\WINDOWS\system32\tscfvjoy.dll failed!

Could not process line:
C:\WINDOWS\system32\tscfvjoy.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ujn6oqt.dll not found!
Deletion of file C:\WINDOWS\system32\ujn6oqt.dll failed!

Could not process line:
C:\WINDOWS\system32\ujn6oqt.dll
Status: 0xc0000034



File C:\WINDOWS\system32\ulibofff.exe not found!
Deletion of file C:\WINDOWS\system32\ulibofff.exe failed!

Could not process line:
C:\WINDOWS\system32\ulibofff.exe
Status: 0xc0000034



File C:\WINDOWS\system32\uregdeve.dll not found!
Deletion of file C:\WINDOWS\system32\uregdeve.dll failed!

Could not process line:
C:\WINDOWS\system32\uregdeve.dll
Status: 0xc0000034



File C:\WINDOWS\system32\uregdeve.exe not found!
Deletion of file C:\WINDOWS\system32\uregdeve.exe failed!

Could not process line:
C:\WINDOWS\system32\uregdeve.exe
Status: 0xc0000034



File C:\WINDOWS\system32\vb5dmspo.dll not found!
Deletion of file C:\WINDOWS\system32\vb5dmspo.dll failed!

Could not process line:
C:\WINDOWS\system32\vb5dmspo.dll
Status: 0xc0000034



File C:\WINDOWS\system32\vbscqdv.exe not found!
Deletion of file C:\WINDOWS\system32\vbscqdv.exe failed!

Could not process line:
C:\WINDOWS\system32\vbscqdv.exe
Status: 0xc0000034



File C:\WINDOWS\system32\vdshlicw.exe not found!
Deletion of file C:\WINDOWS\system32\vdshlicw.exe failed!

Could not process line:
C:\WINDOWS\system32\vdshlicw.exe
Status: 0xc0000034



File C:\WINDOWS\system32\vgnb4c.dll not found!
Deletion of file C:\WINDOWS\system32\vgnb4c.dll failed!

Could not process line:
C:\WINDOWS\system32\vgnb4c.dll
Status: 0xc0000034



File C:\WINDOWS\system32\vmhevnet.dll not found!
Deletion of file C:\WINDOWS\system32\vmhevnet.dll failed!

Could not process line:
C:\WINDOWS\system32\vmhevnet.dll
Status: 0xc0000034



File C:\WINDOWS\system32\vmhevnet.exe not found!
Deletion of file C:\WINDOWS\system32\vmhevnet.exe failed!

Could not process line:
C:\WINDOWS\system32\vmhevnet.exe
Status: 0xc0000034



File C:\WINDOWS\system32\vp31srsv.exe not found!
Deletion of file C:\WINDOWS\system32\vp31srsv.exe failed!

Could not process line:
C:\WINDOWS\system32\vp31srsv.exe
Status: 0xc0000034



File C:\WINDOWS\system32\vsutxpob.dll not found!
Deletion of file C:\WINDOWS\system32\vsutxpob.dll failed!

Could not process line:
C:\WINDOWS\system32\vsutxpob.dll
Status: 0xc0000034



File C:\WINDOWS\system32\vwipsti_.dll not found!
Deletion of file C:\WINDOWS\system32\vwipsti_.dll failed!

Could not process line:
C:\WINDOWS\system32\vwipsti_.dll
Status: 0xc0000034



File C:\WINDOWS\system32\w3sskbda.dll not found!
Deletion of file C:\WINDOWS\system32\w3sskbda.dll failed!

Could not process line:
C:\WINDOWS\system32\w3sskbda.dll
Status: 0xc0000034



File C:\WINDOWS\system32\wdmicpui.dll not found!
Deletion of file C:\WINDOWS\system32\wdmicpui.dll failed!

Could not process line:
C:\WINDOWS\system32\wdmicpui.dll
Status: 0xc0000034



File C:\WINDOWS\system32\wiadwmis.exe not found!
Deletion of file C:\WINDOWS\system32\wiadwmis.exe failed!

Could not process line:
C:\WINDOWS\system32\wiadwmis.exe
Status: 0xc0000034



File C:\WINDOWS\system32\winbpowr.exe not
Nahoru
mihro
Nováček
Nováček
Registrován: 05. dub 2007
Bydliště: Havířov

HijackThis

Příspěvek od mihro »

Logfile of HijackThis v1.99.1
Scan saved at 0:17:15, on 11.4.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Acer\Empowering Technology\admServ.exe
c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\admtray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\QuickTime\qttask.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Ondra\Dokumenty\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: odtemdt2 - C:\WINDOWS\system32\odtemdt2.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE



P.S. Omlouvám se za toho avangera, asi jsem to neměl posílat, když to je tak dlouhé, ale asi už ten vir nemám, takže moc děkuju za pomoc!!!! :D
Nahoru
Baron Prášil
Začátečník
Začátečník
Uživatelský avatar
Registrován: 08. čer 2006

Příspěvek od Baron Prášil »

dlouhé? jo,jak můj nos Obrázek

ale je to redyObrázek

tak ještě pohřebíčekObrázek
O20 - Winlogon Notify: odtemdt2 - C:\WINDOWS\system32\odtemdt2.dll (file missing)

a je toObrázek
Nahoru
mihro
Nováček
Nováček
Registrován: 05. dub 2007
Bydliště: Havířov

Příspěvek od mihro »

Logfile of HijackThis v1.99.1
Scan saved at 16:50:48, on 11.4.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Acer\Empowering Technology\admServ.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\admtray.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\DOCUME~1\Ondra\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\BitLord\BitLord.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Ondra\Dokumenty\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

Tak to je konec. Ještě jednou moc děkuju za pomoc. 8-)
Nahoru
mihro
Nováček
Nováček
Registrován: 05. dub 2007
Bydliště: Havířov

Příspěvek od mihro »

Logfile of HijackThis v1.99.1
Scan saved at 16:50:48, on 11.4.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Acer\Empowering Technology\admServ.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\admtray.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\DOCUME~1\Ondra\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\BitLord\BitLord.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Ondra\Dokumenty\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

Tak to je konec. Ještě jednou moc děkuju za pomoc. 8-)
Nahoru
likc
Začátečník
Začátečník
Registrován: 30. čer 2006

Příspěvek od likc »

log je OK :up:

Nazory se na to ruzni. Ja jeste doporucuju kilnout O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE v pripade chyby zvukarny to posila zpravu vyrobci. No nejsem priznivec takovych veci, ale svinstvo jako takove to neni.
Nahoru
Baron Prášil
Začátečník
Začátečník
Uživatelský avatar
Registrován: 08. čer 2006

Příspěvek od Baron Prášil »

likc má naprostou pravdu :)

takže,neni zač Obrázek
Nahoru
likc
Začátečník
Začátečník
Registrován: 30. čer 2006

Příspěvek od likc »

Baron Prášil píše:likc má naprostou pravdu :)

takže,neni zač Obrázek
Sakra, kde Ty beres ty fajnovy smajliky. :)))
Nahoru
shibbi
Nováček
Nováček
Registrován: 10. dub 2007
Kontaktovat uživatele:
Kontaktovat uživatele shibbi

novy log

Příspěvek od shibbi »

Logfile of HijackThis v1.99.1
Scan saved at 9:32:49, on 12.4.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Software602\Print2PDF\PrnPack.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe
C:\Program Files\Comodo\Firewall\CPF.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\Program Files\ATnotes\ATnotes.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\ICQLite\ICQLite.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Documents and Settings\shibbi\Dokumenty\- download\antiviry\HiJack This\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mps-moto.cz/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\WINDOWS\WebIE.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\WINDOWS\WebIE.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Jet Detection] "C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [PrintPack dispatcher] "C:\Program Files\Software602\Print2PDF\PrnPack.exe" /server
O4 - HKLM\..\Run: [pdfFactory Dispatcher v3] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis3a.exe" /source=HKLM
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\CPF.exe" /background
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ATnotes.exe] C:\Program Files\ATnotes\ATnotes.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -trayboot
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Print2PDF - {5B7027AD-AA6D-40df-8F56-9560F277D2A5} - C:\WINDOWS\system32\Print602.dll
O9 - Extra 'Tools' menuitem: Print2PDF - {5B7027AD-AA6D-40df-8F56-9560F277D2A5} - C:\WINDOWS\system32\Print602.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\WINDOWS\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\WINDOWS\WebIE.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{4BAABE84-A56E-4EE0-A942-304ACC3AEDD0}: NameServer = 212.96.161.6,212.96.160.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{4BAABE84-A56E-4EE0-A942-304ACC3AEDD0}: NameServer = 212.96.161.6,212.96.160.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{4BAABE84-A56E-4EE0-A942-304ACC3AEDD0}: NameServer = 212.96.161.6,212.96.160.1
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: BCL easyPDF SDK 5 Loader (bepldr) - Unknown owner - C:\Program Files\Common Files\BCL Technologies\easyPDF 5\bepldr.exe
O23 - Service: Comodo Application Agent (CmdAgent) - COMODO - C:\Program Files\Comodo\Firewall\cmdagent.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
Nahoru
Odpovědět

Zpět na „Viry, antiviry a bezpečnost“