problem a s Avast-om???

mato555 · Příspěvek od **mato555** » stř 21. lis 2007, 23:17

tu je log z strationa remover

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\dipwbgsf

*******************

Script file located at: \??\C:\Program Files\mvpekxsv.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

File C:\WINDOWS\accm.exe not found!
Deletion of file C:\WINDOWS\accm.exe failed!

Could not process line:
C:\WINDOWS\accm.exe
Status: 0xc0000034

File C:\WINDOWS\acq32.exe not found!
Deletion of file C:\WINDOWS\acq32.exe failed!

Could not process line:
C:\WINDOWS\acq32.exe
Status: 0xc0000034

File C:\WINDOWS\ais32.exe not found!
Deletion of file C:\WINDOWS\ais32.exe failed!

Could not process line:
C:\WINDOWS\ais32.exe
Status: 0xc0000034

File C:\WINDOWS\alerter.exe not found!
Deletion of file C:\WINDOWS\alerter.exe failed!

Could not process line:
C:\WINDOWS\alerter.exe
Status: 0xc0000034

File C:\WINDOWS\aorvno91m.txt not found!
Deletion of file C:\WINDOWS\aorvno91m.txt failed!

Could not process line:
C:\WINDOWS\aorvno91m.txt
Status: 0xc0000034

File C:\WINDOWS\aqw.exe not found!
Deletion of file C:\WINDOWS\aqw.exe failed!

Could not process line:
C:\WINDOWS\aqw.exe
Status: 0xc0000034

File C:\WINDOWS\attcfg.tmp not found!
Deletion of file C:\WINDOWS\attcfg.tmp failed!

Could not process line:
C:\WINDOWS\attcfg.tmp
Status: 0xc0000034

File C:\WINDOWS\avistat.tmp not found!
Deletion of file C:\WINDOWS\avistat.tmp failed!

Could not process line:
C:\WINDOWS\avistat.tmp
Status: 0xc0000034

File C:\WINDOWS\b6iqdkku.scf not found!
Deletion of file C:\WINDOWS\b6iqdkku.scf failed!

Could not process line:
C:\WINDOWS\b6iqdkku.scf
Status: 0xc0000034

File C:\WINDOWS\bin32.exe not found!
Deletion of file C:\WINDOWS\bin32.exe failed!

Could not process line:
C:\WINDOWS\bin32.exe
Status: 0xc0000034

File C:\WINDOWS\brwmark.ini not found!
Deletion of file C:\WINDOWS\brwmark.ini failed!

Could not process line:
C:\WINDOWS\brwmark.ini
Status: 0xc0000034

File C:\WINDOWS\c.5.0.exe not found!
Deletion of file C:\WINDOWS\c.5.0.exe failed!

Could not process line:
C:\WINDOWS\c.5.0.exe
Status: 0xc0000034

File C:\WINDOWS\c.6.0.exe not found!
Deletion of file C:\WINDOWS\c.6.0.exe failed!

Could not process line:
C:\WINDOWS\c.6.0.exe
Status: 0xc0000034

File C:\WINDOWS\c.8.0.exe not found!
Deletion of file C:\WINDOWS\c.8.0.exe failed!

Could not process line:
C:\WINDOWS\c.8.0.exe
Status: 0xc0000034

File C:\WINDOWS\c6wsq6.reg not found!
Deletion of file C:\WINDOWS\c6wsq6.reg failed!

Could not process line:
C:\WINDOWS\c6wsq6.reg
Status: 0xc0000034

File C:\WINDOWS\cc2.exe not found!
Deletion of file C:\WINDOWS\cc2.exe failed!

Could not process line:
C:\WINDOWS\cc2.exe
Status: 0xc0000034

File C:\WINDOWS\cc3.exe not found!
Deletion of file C:\WINDOWS\cc3.exe failed!

Could not process line:
C:\WINDOWS\cc3.exe
Status: 0xc0000034

File C:\WINDOWS\cc5.exe not found!
Deletion of file C:\WINDOWS\cc5.exe failed!

Could not process line:
C:\WINDOWS\cc5.exe
Status: 0xc0000034

File C:\WINDOWS\ccsserv.exe not found!
Deletion of file C:\WINDOWS\ccsserv.exe failed!

Could not process line:
C:\WINDOWS\ccsserv.exe
Status: 0xc0000034

File C:\WINDOWS\cct2.exe not found!
Deletion of file C:\WINDOWS\cct2.exe failed!

Could not process line:
C:\WINDOWS\cct2.exe
Status: 0xc0000034

File C:\WINDOWS\cdi1okj.dll not found!
Deletion of file C:\WINDOWS\cdi1okj.dll failed!

Could not process line:
C:\WINDOWS\cdi1okj.dll
Status: 0xc0000034

File C:\WINDOWS\cesm9q.reg not found!
Deletion of file C:\WINDOWS\cesm9q.reg failed!

Could not process line:
C:\WINDOWS\cesm9q.reg
Status: 0xc0000034

File C:\WINDOWS\chater.exe not found!
Deletion of file C:\WINDOWS\chater.exe failed!

Could not process line:
C:\WINDOWS\chater.exe
Status: 0xc0000034

File C:\WINDOWS\concfg.tmp not found!
Deletion of file C:\WINDOWS\concfg.tmp failed!

Could not process line:
C:\WINDOWS\concfg.tmp
Status: 0xc0000034

File C:\WINDOWS\cserv32.exe not found!
Deletion of file C:\WINDOWS\cserv32.exe failed!

Could not process line:
C:\WINDOWS\cserv32.exe
Status: 0xc0000034

File C:\WINDOWS\cservv32.exe not found!
Deletion of file C:\WINDOWS\cservv32.exe failed!

Could not process line:
C:\WINDOWS\cservv32.exe
Status: 0xc0000034

File C:\WINDOWS\csrcss.exe not found!
Deletion of file C:\WINDOWS\csrcss.exe failed!

Could not process line:
C:\WINDOWS\csrcss.exe
Status: 0xc0000034

File C:\WINDOWS\dbmdata.tmp not found!
Deletion of file C:\WINDOWS\dbmdata.tmp failed!

Could not process line:
C:\WINDOWS\dbmdata.tmp
Status: 0xc0000034

File C:\WINDOWS\dgf.exe not found!
Deletion of file C:\WINDOWS\dgf.exe failed!

Could not process line:
C:\WINDOWS\dgf.exe
Status: 0xc0000034

File C:\WINDOWS\dllksr32.exe not found!
Deletion of file C:\WINDOWS\dllksr32.exe failed!

Could not process line:
C:\WINDOWS\dllksr32.exe
Status: 0xc0000034

File C:\WINDOWS\dqpdroc.ini not found!
Deletion of file C:\WINDOWS\dqpdroc.ini failed!

Could not process line:
C:\WINDOWS\dqpdroc.ini
Status: 0xc0000034

File C:\WINDOWS\dskcss.exe not found!
Deletion of file C:\WINDOWS\dskcss.exe failed!

Could not process line:
C:\WINDOWS\dskcss.exe
Status: 0xc0000034

File C:\WINDOWS\eba2h6cc.dat not found!
Deletion of file C:\WINDOWS\eba2h6cc.dat failed!

Could not process line:
C:\WINDOWS\eba2h6cc.dat
Status: 0xc0000034

File C:\WINDOWS\eevmwk.reg not found!
Deletion of file C:\WINDOWS\eevmwk.reg failed!

Could not process line:
C:\WINDOWS\eevmwk.reg
Status: 0xc0000034

File C:\WINDOWS\egadata.tmp not found!
Deletion of file C:\WINDOWS\egadata.tmp failed!

Could not process line:
C:\WINDOWS\egadata.tmp
Status: 0xc0000034

File C:\WINDOWS\f3da8e.reg not found!
Deletion of file C:\WINDOWS\f3da8e.reg failed!

Could not process line:
C:\WINDOWS\f3da8e.reg
Status: 0xc0000034

File C:\WINDOWS\f8or9s.exe not found!
Deletion of file C:\WINDOWS\f8or9s.exe failed!

Could not process line:
C:\WINDOWS\f8or9s.exe
Status: 0xc0000034

File C:\WINDOWS\ferg.exe not found!
Deletion of file C:\WINDOWS\ferg.exe failed!

Could not process line:
C:\WINDOWS\ferg.exe
Status: 0xc0000034

File C:\WINDOWS\ftg71cj1qx.dat not found!
Deletion of file C:\WINDOWS\ftg71cj1qx.dat failed!

Could not process line:
C:\WINDOWS\ftg71cj1qx.dat
Status: 0xc0000034

File C:\WINDOWS\gen.exe not found!
Deletion of file C:\WINDOWS\gen.exe failed!

Could not process line:
C:\WINDOWS\gen.exe
Status: 0xc0000034

File C:\WINDOWS\hpsys32.exe not found!
Deletion of file C:\WINDOWS\hpsys32.exe failed!

Could not process line:
C:\WINDOWS\hpsys32.exe
Status: 0xc0000034

File C:\WINDOWS\hv4e05.dll not found!
Deletion of file C:\WINDOWS\hv4e05.dll failed!

Could not process line:
C:\WINDOWS\hv4e05.dll
Status: 0xc0000034

File C:\WINDOWS\hwin.exe not found!
Deletion of file C:\WINDOWS\hwin.exe failed!

Could not process line:
C:\WINDOWS\hwin.exe
Status: 0xc0000034

File C:\WINDOWS\irk.exe not found!
Deletion of file C:\WINDOWS\irk.exe failed!

Could not process line:
C:\WINDOWS\irk.exe
Status: 0xc0000034

File C:\WINDOWS\jlnvjob.exe not found!
Deletion of file C:\WINDOWS\jlnvjob.exe failed!

Could not process line:
C:\WINDOWS\jlnvjob.exe
Status: 0xc0000034

File C:\WINDOWS\md2icut9a2.dll not found!
Deletion of file C:\WINDOWS\md2icut9a2.dll failed!

Could not process line:
C:\WINDOWS\md2icut9a2.dll
Status: 0xc0000034

File C:\WINDOWS\mdt.exe not found!
Deletion of file C:\WINDOWS\mdt.exe failed!

Could not process line:
C:\WINDOWS\mdt.exe
Status: 0xc0000034

File C:\WINDOWS\msh32.exe not found!
Deletion of file C:\WINDOWS\msh32.exe failed!

Could not process line:
C:\WINDOWS\msh32.exe
Status: 0xc0000034

File C:\WINDOWS\msout.exe not found!
Deletion of file C:\WINDOWS\msout.exe failed!

Could not process line:
C:\WINDOWS\msout.exe
Status: 0xc0000034

File C:\WINDOWS\msserrv32.exe not found!
Deletion of file C:\WINDOWS\msserrv32.exe failed!

Could not process line:
C:\WINDOWS\msserrv32.exe
Status: 0xc0000034

File C:\WINDOWS\msserv.exe not found!
Deletion of file C:\WINDOWS\msserv.exe failed!

Could not process line:
C:\WINDOWS\msserv.exe
Status: 0xc0000034

File C:\WINDOWS\msserv32.exe not found!
Deletion of file C:\WINDOWS\msserv32.exe failed!

Could not process line:
C:\WINDOWS\msserv32.exe
Status: 0xc0000034

File C:\WINDOWS\msupdtwiz.c not found!
Deletion of file C:\WINDOWS\msupdtwiz.c failed!

Could not process line:
C:\WINDOWS\msupdtwiz.c
Status: 0xc0000034

File C:\WINDOWS\msupdtwiz.dat not found!
Deletion of file C:\WINDOWS\msupdtwiz.dat failed!

Could not process line:
C:\WINDOWS\msupdtwiz.dat
Status: 0xc0000034

File C:\WINDOWS\msupdtwiz.exe not found!
Deletion of file C:\WINDOWS\msupdtwiz.exe failed!

Could not process line:
C:\WINDOWS\msupdtwiz.exe
Status: 0xc0000034

File C:\WINDOWS\msupdtwiz.s not found!
Deletion of file C:\WINDOWS\msupdtwiz.s failed!

Could not process line:
C:\WINDOWS\msupdtwiz.s
Status: 0xc0000034

File C:\WINDOWS\msupdtwiz.z not found!
Deletion of file C:\WINDOWS\msupdtwiz.z failed!

Could not process line:
C:\WINDOWS\msupdtwiz.z
Status: 0xc0000034

File C:\WINDOWS\mswiiz32.exe not found!
Deletion of file C:\WINDOWS\mswiiz32.exe failed!

Could not process line:
C:\WINDOWS\mswiiz32.exe
Status: 0xc0000034

File C:\WINDOWS\mswiizz32.exe not found!
Deletion of file C:\WINDOWS\mswiizz32.exe failed!

Could not process line:
C:\WINDOWS\mswiizz32.exe
Status: 0xc0000034

File C:\WINDOWS\mswiz32.exe not found!
Deletion of file C:\WINDOWS\mswiz32.exe failed!

Could not process line:
C:\WINDOWS\mswiz32.exe
Status: 0xc0000034

File C:\WINDOWS\nmac32.exe not found!
Deletion of file C:\WINDOWS\nmac32.exe failed!

Could not process line:
C:\WINDOWS\nmac32.exe
Status: 0xc0000034

File C:\WINDOWS\npp32.exe not found!
Deletion of file C:\WINDOWS\npp32.exe failed!

Could not process line:
C:\WINDOWS\npp32.exe
Status: 0xc0000034

File C:\WINDOWS\osmgr.exe not found!
Deletion of file C:\WINDOWS\osmgr.exe failed!

Could not process line:
C:\WINDOWS\osmgr.exe
Status: 0xc0000034

File C:\WINDOWS\pccntl.dat not found!
Deletion of file C:\WINDOWS\pccntl.dat failed!

Could not process line:
C:\WINDOWS\pccntl.dat
Status: 0xc0000034

File C:\WINDOWS\pccntl.exe not found!
Deletion of file C:\WINDOWS\pccntl.exe failed!

Could not process line:
C:\WINDOWS\pccntl.exe
Status: 0xc0000034

File C:\WINDOWS\plg.exe not found!
Deletion of file C:\WINDOWS\plg.exe failed!

Could not process line:
C:\WINDOWS\plg.exe
Status: 0xc0000034

File C:\WINDOWS\ptr.exe not found!
Deletion of file C:\WINDOWS\ptr.exe failed!

Could not process line:
C:\WINDOWS\ptr.exe
Status: 0xc0000034

File C:\WINDOWS\reg.exe not found!
Deletion of file C:\WINDOWS\reg.exe failed!

Could not process line:
C:\WINDOWS\reg.exe
Status: 0xc0000034

File C:\WINDOWS\reggserv.exe not found!
Deletion of file C:\WINDOWS\reggserv.exe failed!

Could not process line:
C:\WINDOWS\reggserv.exe
Status: 0xc0000034

File C:\WINDOWS\sccsd32.exe not found!
Deletion of file C:\WINDOWS\sccsd32.exe failed!

Could not process line:
C:\WINDOWS\sccsd32.exe
Status: 0xc0000034

File C:\WINDOWS\sdd.exe not found!
Deletion of file C:\WINDOWS\sdd.exe failed!

Could not process line:
C:\WINDOWS\sdd.exe
Status: 0xc0000034

File C:\WINDOWS\serrv.c not found!
Deletion of file C:\WINDOWS\serrv.c failed!

Could not process line:
C:\WINDOWS\serrv.c
Status: 0xc0000034

File C:\WINDOWS\serrv.dat not found!
Deletion of file C:\WINDOWS\serrv.dat failed!

Could not process line:
C:\WINDOWS\serrv.dat
Status: 0xc0000034

File C:\WINDOWS\serrv.exe not found!
Deletion of file C:\WINDOWS\serrv.exe failed!

Could not process line:
C:\WINDOWS\serrv.exe
Status: 0xc0000034

File C:\WINDOWS\serrv.wax not found!
Deletion of file C:\WINDOWS\serrv.wax failed!

Could not process line:
C:\WINDOWS\serrv.wax
Status: 0xc0000034

File C:\WINDOWS\serv.exe not found!
Deletion of file C:\WINDOWS\serv.exe failed!

Could not process line:
C:\WINDOWS\serv.exe
Status: 0xc0000034

File C:\WINDOWS\serv.wax not found!
Deletion of file C:\WINDOWS\serv.wax failed!

Could not process line:
C:\WINDOWS\serv.wax
Status: 0xc0000034

File C:\WINDOWS\shh32.exe not found!
Deletion of file C:\WINDOWS\shh32.exe failed!

Could not process line:
C:\WINDOWS\shh32.exe
Status: 0xc0000034

File C:\WINDOWS\skcc32.exe not found!
Deletion of file C:\WINDOWS\skcc32.exe failed!

Could not process line:
C:\WINDOWS\skcc32.exe
Status: 0xc0000034

File C:\WINDOWS\skcsd32.exe not found!
Deletion of file C:\WINDOWS\skcsd32.exe failed!

Could not process line:
C:\WINDOWS\skcsd32.exe
Status: 0xc0000034

File C:\WINDOWS\skksd32.exe not found!
Deletion of file C:\WINDOWS\skksd32.exe failed!

Could not process line:
C:\WINDOWS\skksd32.exe
Status: 0xc0000034

File C:\WINDOWS\skl32.exe not found!
Deletion of file C:\WINDOWS\skl32.exe failed!

Could not process line:
C:\WINDOWS\skl32.exe
Status: 0xc0000034

File C:\WINDOWS\smm126.exe not found!
Deletion of file C:\WINDOWS\smm126.exe failed!

Could not process line:
C:\WINDOWS\smm126.exe
Status: 0xc0000034

File C:\WINDOWS\spow32.exe not found!
Deletion of file C:\WINDOWS\spow32.exe failed!

Could not process line:
C:\WINDOWS\spow32.exe
Status: 0xc0000034

File C:\WINDOWS\sqhost.c not found!
Deletion of file C:\WINDOWS\sqhost.c failed!

Could not process line:
C:\WINDOWS\sqhost.c
Status: 0xc0000034

File C:\WINDOWS\sqhost.dat not found!
Deletion of file C:\WINDOWS\sqhost.dat failed!

Could not process line:
C:\WINDOWS\sqhost.dat
Status: 0xc0000034

File C:\WINDOWS\sqhost.exe not found!
Deletion of file C:\WINDOWS\sqhost.exe failed!

Could not process line:
C:\WINDOWS\sqhost.exe
Status: 0xc0000034

File C:\WINDOWS\sqhost.s not found!
Deletion of file C:\WINDOWS\sqhost.s failed!

Could not process line:
C:\WINDOWS\sqhost.s
Status: 0xc0000034

File C:\WINDOWS\sqhost.wax not found!
Deletion of file C:\WINDOWS\sqhost.wax failed!

Could not process line:
C:\WINDOWS\sqhost.wax
Status: 0xc0000034

File C:\WINDOWS\sqhost.z not found!
Deletion of file C:\WINDOWS\sqhost.z failed!

Could not process line:
C:\WINDOWS\sqhost.z
Status: 0xc0000034

File C:\WINDOWS\sscrs.exe not found!
Deletion of file C:\WINDOWS\sscrs.exe failed!

Could not process line:
C:\WINDOWS\sscrs.exe
Status: 0xc0000034

File C:\WINDOWS\sserrvv.c not found!
Deletion of file C:\WINDOWS\sserrvv.c failed!

Could not process line:
C:\WINDOWS\sserrvv.c
Status: 0xc0000034

File C:\WINDOWS\sserrvv.exe not found!
Deletion of file C:\WINDOWS\sserrvv.exe failed!

Could not process line:
C:\WINDOWS\sserrvv.exe
Status: 0xc0000034

File C:\WINDOWS\sserrvv.s not found!
Deletion of file C:\WINDOWS\sserrvv.s failed!

Could not process line:
C:\WINDOWS\sserrvv.s
Status: 0xc0000034

File C:\WINDOWS\sserrvv.wax not found!
Deletion of file C:\WINDOWS\sserrvv.wax failed!

Could not process line:
C:\WINDOWS\sserrvv.wax
Status: 0xc0000034

File C:\WINDOWS\sserrvv.z not found!
Deletion of file C:\WINDOWS\sserrvv.z failed!

Could not process line:
C:\WINDOWS\sserrvv.z
Status: 0xc0000034

File C:\WINDOWS\stm.exe not found!
Deletion of file C:\WINDOWS\stm.exe failed!

Could not process line:
C:\WINDOWS\stm.exe
Status: 0xc0000034

File C:\WINDOWS\svccc32.exe not found!
Deletion of file C:\WINDOWS\svccc32.exe failed!

Could not process line:
C:\WINDOWS\svccc32.exe
Status: 0xc0000034

File C:\WINDOWS\svcsr.exe not found!
Deletion of file C:\WINDOWS\svcsr.exe failed!

Could not process line:
C:\WINDOWS\svcsr.exe
Status: 0xc0000034

File C:\WINDOWS\sysc10trg.exe not found!
Deletion of file C:\WINDOWS\sysc10trg.exe failed!

Could not process line:
C:\WINDOWS\sysc10trg.exe
Status: 0xc0000034

File C:\WINDOWS\system32\1.tmp not found!
Deletion of file C:\WINDOWS\system32\1.tmp failed!

Could not process line:
C:\WINDOWS\system32\1.tmp
Status: 0xc0000034

File C:\WINDOWS\system32\11.tmp not found!
Deletion of file C:\WINDOWS\system32\11.tmp failed!

Could not process line:
C:\WINDOWS\system32\11.tmp
Status: 0xc0000034

File C:\WINDOWS\system32\8fmxKUI4P7.dll not found!
Deletion of file C:\WINDOWS\system32\8fmxKUI4P7.dll failed!

Could not process line:
C:\WINDOWS\system32\8fmxKUI4P7.dll
Status: 0xc0000034

File C:\WINDOWS\system32\aclekern.dll not found!
Deletion of file C:\WINDOWS\system32\aclekern.dll failed!

Could not process line:
C:\WINDOWS\system32\aclekern.dll
Status: 0xc0000034

File C:\WINDOWS\system32\actidmoc.exe not found!
Deletion of file C:\WINDOWS\system32\actidmoc.exe failed!

Could not process line:
C:\WINDOWS\system32\actidmoc.exe
Status: 0xc0000034

File C:\WINDOWS\system32\adpticmp.exe not found!
Deletion of file C:\WINDOWS\system32\adpticmp.exe failed!

Could not process line:
C:\WINDOWS\system32\adpticmp.exe
Status: 0xc0000034

File C:\WINDOWS\system32\advacfgb.dll not found!
Deletion of file C:\WINDOWS\system32\advacfgb.dll failed!

Could not process line:
C:\WINDOWS\system32\advacfgb.dll
Status: 0xc0000034

File C:\WINDOWS\system32\advacfgb.exe not found!
Deletion of file C:\WINDOWS\system32\advacfgb.exe failed!

Could not process line:
C:\WINDOWS\system32\advacfgb.exe
Status: 0xc0000034

File C:\WINDOWS\system32\AgWP4s4073.dll not found!
Deletion of file C:\WINDOWS\system32\AgWP4s4073.dll failed!

Could not process line:
C:\WINDOWS\system32\AgWP4s4073.dll
Status: 0xc0000034

File C:\WINDOWS\system32\alerter.exe not found!
Deletion of file C:\WINDOWS\system32\alerter.exe failed!

Could not process line:
C:\WINDOWS\system32\alerter.exe
Status: 0xc0000034

File C:\WINDOWS\system32\alrsbatt.dll not found!
Deletion of file C:\WINDOWS\system32\alrsbatt.dll failed!

Could not process line:
C:\WINDOWS\system32\alrsbatt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\amcconf.exe not found!
Deletion of file C:\WINDOWS\system32\amcconf.exe failed!

Could not process line:
C:\WINDOWS\system32\amcconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\appconf.exe not found!
Deletion of file C:\WINDOWS\system32\appconf.exe failed!

Could not process line:
C:\WINDOWS\system32\appconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\appmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\appmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\appmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\appstat.dll not found!
Deletion of file C:\WINDOWS\system32\appstat.dll failed!

Could not process line:
C:\WINDOWS\system32\appstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\asr.exe not found!
Deletion of file C:\WINDOWS\system32\asr.exe failed!

Could not process line:
C:\WINDOWS\system32\asr.exe
Status: 0xc0000034

File C:\WINDOWS\system32\atkcadpt.dll not found!
Deletion of file C:\WINDOWS\system32\atkcadpt.dll failed!

Could not process line:
C:\WINDOWS\system32\atkcadpt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\atkcadpt.exe not found!
Deletion of file C:\WINDOWS\system32\atkcadpt.exe failed!

Could not process line:
C:\WINDOWS\system32\atkcadpt.exe
Status: 0xc0000034

File C:\WINDOWS\system32\atmconf.exe not found!
Deletion of file C:\WINDOWS\system32\atmconf.exe failed!

Could not process line:
C:\WINDOWS\system32\atmconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\atmfmsra.dll not found!
Deletion of file C:\WINDOWS\system32\atmfmsra.dll failed!

Could not process line:
C:\WINDOWS\system32\atmfmsra.dll
Status: 0xc0000034

File C:\WINDOWS\system32\atmfmsra.exe not found!
Deletion of file C:\WINDOWS\system32\atmfmsra.exe failed!

Could not process line:
C:\WINDOWS\system32\atmfmsra.exe
Status: 0xc0000034

File C:\WINDOWS\system32\atmprf32.dll not found!
Deletion of file C:\WINDOWS\system32\atmprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\atmprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\atmstat.dll not found!
Deletion of file C:\WINDOWS\system32\atmstat.dll failed!

Could not process line:
C:\WINDOWS\system32\atmstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\atrconf.exe not found!
Deletion of file C:\WINDOWS\system32\atrconf.exe failed!

Could not process line:
C:\WINDOWS\system32\atrconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\attmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\attmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\attmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\attperf.exe not found!
Deletion of file C:\WINDOWS\system32\attperf.exe failed!

Could not process line:
C:\WINDOWS\system32\attperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\attprf32.dll not found!
Deletion of file C:\WINDOWS\system32\attprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\attprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\attstat.dll not found!
Deletion of file C:\WINDOWS\system32\attstat.dll failed!

Could not process line:
C:\WINDOWS\system32\attstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\au3su2ck.dll not found!
Deletion of file C:\WINDOWS\system32\au3su2ck.dll failed!

Could not process line:
C:\WINDOWS\system32\au3su2ck.dll
Status: 0xc0000034

File C:\WINDOWS\system32\audconf.exe not found!
Deletion of file C:\WINDOWS\system32\audconf.exe failed!

Could not process line:
C:\WINDOWS\system32\audconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\audmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\audmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\audmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\audperf.exe not found!
Deletion of file C:\WINDOWS\system32\audperf.exe failed!

Could not process line:
C:\WINDOWS\system32\audperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\audprf32.dll not found!
Deletion of file C:\WINDOWS\system32\audprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\audprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\audstat.dll not found!
Deletion of file C:\WINDOWS\system32\audstat.dll failed!

Could not process line:
C:\WINDOWS\system32\audstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\authcomr.dll not found!
Deletion of file C:\WINDOWS\system32\authcomr.dll failed!

Could not process line:
C:\WINDOWS\system32\authcomr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\autoplus.dll not found!
Deletion of file C:\WINDOWS\system32\autoplus.dll failed!

Could not process line:
C:\WINDOWS\system32\autoplus.dll
Status: 0xc0000034

File C:\WINDOWS\system32\autoplus.exe not found!
Deletion of file C:\WINDOWS\system32\autoplus.exe failed!

Could not process line:
C:\WINDOWS\system32\autoplus.exe
Status: 0xc0000034

File C:\WINDOWS\system32\autowinn.dll not found!
Deletion of file C:\WINDOWS\system32\autowinn.dll failed!

Could not process line:
C:\WINDOWS\system32\autowinn.dll
Status: 0xc0000034

File C:\WINDOWS\system32\autowinn.exe not found!
Deletion of file C:\WINDOWS\system32\autowinn.exe failed!

Could not process line:
C:\WINDOWS\system32\autowinn.exe
Status: 0xc0000034

File C:\WINDOWS\system32\bg2ekx3oox.exe not found!
Deletion of file C:\WINDOWS\system32\bg2ekx3oox.exe failed!

Could not process line:
C:\WINDOWS\system32\bg2ekx3oox.exe
Status: 0xc0000034

File C:\WINDOWS\system32\bopmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\bopmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\bopmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\brwconf.exe not found!
Deletion of file C:\WINDOWS\system32\brwconf.exe failed!

Could not process line:
C:\WINDOWS\system32\brwconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\brwmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\brwmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\brwmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\brwperf.exe not found!
Deletion of file C:\WINDOWS\system32\brwperf.exe failed!

Could not process line:
C:\WINDOWS\system32\brwperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\brwprf32.dll not found!
Deletion of file C:\WINDOWS\system32\brwprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\brwprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\brwstat.dll not found!
Deletion of file C:\WINDOWS\system32\brwstat.dll failed!

Could not process line:
C:\WINDOWS\system32\brwstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\btparasd.dll not found!
Deletion of file C:\WINDOWS\system32\btparasd.dll failed!

Could not process line:
C:\WINDOWS\system32\btparasd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\c.7.0.exe not found!
Deletion of file C:\WINDOWS\system32\c.7.0.exe failed!

Could not process line:
C:\WINDOWS\system32\c.7.0.exe
Status: 0xc0000034

File C:\WINDOWS\system32\c.8.0.exe not found!
Deletion of file C:\WINDOWS\system32\c.8.0.exe failed!

Could not process line:
C:\WINDOWS\system32\c.8.0.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ccfgcscd.dll not found!
Deletion of file C:\WINDOWS\system32\ccfgcscd.dll failed!

Could not process line:
C:\WINDOWS\system32\ccfgcscd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ccfgcscd.exe not found!
Deletion of file C:\WINDOWS\system32\ccfgcscd.exe failed!

Could not process line:
C:\WINDOWS\system32\ccfgcscd.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ccfgwshb.dll not found!
Deletion of file C:\WINDOWS\system32\ccfgwshb.dll failed!

Could not process line:
C:\WINDOWS\system32\ccfgwshb.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cdmovirt.dll not found!
Deletion of file C:\WINDOWS\system32\cdmovirt.dll failed!

Could not process line:
C:\WINDOWS\system32\cdmovirt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgbphot.exe not found!
Deletion of file C:\WINDOWS\system32\cfgbphot.exe failed!

Could not process line:
C:\WINDOWS\system32\cfgbphot.exe
Status: 0xc0000034

File C:\WINDOWS\system32\cfgcrs.dll not found!
Deletion of file C:\WINDOWS\system32\cfgcrs.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgcrs.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgd3d.dll not found!
Deletion of file C:\WINDOWS\system32\cfgd3d.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgd3d.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgdei.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdei.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdei.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgdsk.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdsk.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdsk.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgdss.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdss.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdss.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgdxt.dll not found!
Deletion of file C:\WINDOWS\system32\cfgdxt.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgdxt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgfsd.dll not found!
Deletion of file C:\WINDOWS\system32\cfgfsd.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgfsd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgisr.dll not found!
Deletion of file C:\WINDOWS\system32\cfgisr.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgisr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgmmprm.dll not found!
Deletion of file C:\WINDOWS\system32\cfgmmprm.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgmmprm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgmplus.dll not found!
Deletion of file C:\WINDOWS\system32\cfgmplus.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgmplus.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgmquer.dll not found!
Deletion of file C:\WINDOWS\system32\cfgmquer.dll failed!

Could not process line:
C:\WINDOWS\system32\cfgmquer.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cfgmwmid.exe not found!
Deletion of file C:\WINDOWS\system32\cfgmwmid.exe failed!

Could not process line:
C:\WINDOWS\system32\cfgmwmid.exe
Status: 0xc0000034

File C:\WINDOWS\system32\clicsaml.dll not found!
Deletion of file C:\WINDOWS\system32\clicsaml.dll failed!

Could not process line:
C:\WINDOWS\system32\clicsaml.dll
Status: 0xc0000034

File C:\WINDOWS\system32\clicsaml.exe not found!
Deletion of file C:\WINDOWS\system32\clicsaml.exe failed!

Could not process line:
C:\WINDOWS\system32\clicsaml.exe
Status: 0xc0000034

File C:\WINDOWS\system32\cnbjiprt.dll not found!
Deletion of file C:\WINDOWS\system32\cnbjiprt.dll failed!

Could not process line:
C:\WINDOWS\system32\cnbjiprt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cnnperf.exe not found!
Deletion of file C:\WINDOWS\system32\cnnperf.exe failed!

Could not process line:
C:\WINDOWS\system32\cnnperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\cnnprf32.dll not found!
Deletion of file C:\WINDOWS\system32\cnnprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\cnnprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\comrufat.dll not found!
Deletion of file C:\WINDOWS\system32\comrufat.dll failed!

Could not process line:
C:\WINDOWS\system32\comrufat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\con321.dll not found!
Deletion of file C:\WINDOWS\system32\con321.dll failed!

Could not process line:
C:\WINDOWS\system32\con321.dll
Status: 0xc0000034

File C:\WINDOWS\system32\conf32.exe not found!
Deletion of file C:\WINDOWS\system32\conf32.exe failed!

Could not process line:
C:\WINDOWS\system32\conf32.exe
Status: 0xc0000034

File C:\WINDOWS\system32\confapp.dll not found!
Deletion of file C:\WINDOWS\system32\confapp.dll failed!

Could not process line:
C:\WINDOWS\system32\confapp.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confatm.dll not found!
Deletion of file C:\WINDOWS\system32\confatm.dll failed!

Could not process line:
C:\WINDOWS\system32\confatm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confatt.dll not found!
Deletion of file C:\WINDOWS\system32\confatt.dll failed!

Could not process line:
C:\WINDOWS\system32\confatt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confaud.dll not found!
Deletion of file C:\WINDOWS\system32\confaud.dll failed!

Could not process line:
C:\WINDOWS\system32\confaud.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confbrw.dll not found!
Deletion of file C:\WINDOWS\system32\confbrw.dll failed!

Could not process line:
C:\WINDOWS\system32\confbrw.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confcon.dll not found!
Deletion of file C:\WINDOWS\system32\confcon.dll failed!

Could not process line:
C:\WINDOWS\system32\confcon.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confdrv.dll not found!
Deletion of file C:\WINDOWS\system32\confdrv.dll failed!

Could not process line:
C:\WINDOWS\system32\confdrv.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confega.dll not found!
Deletion of file C:\WINDOWS\system32\confega.dll failed!

Could not process line:
C:\WINDOWS\system32\confega.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confifc.dll not found!
Deletion of file C:\WINDOWS\system32\confifc.dll failed!

Could not process line:
C:\WINDOWS\system32\confifc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confjfg.dll not found!
Deletion of file C:\WINDOWS\system32\confjfg.dll failed!

Could not process line:
C:\WINDOWS\system32\confjfg.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confjpg.dll not found!
Deletion of file C:\WINDOWS\system32\confjpg.dll failed!

Could not process line:
C:\WINDOWS\system32\confjpg.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confnss.dll not found!
Deletion of file C:\WINDOWS\system32\confnss.dll failed!

Could not process line:
C:\WINDOWS\system32\confnss.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confnxs.dll not found!
Deletion of file C:\WINDOWS\system32\confnxs.dll failed!

Could not process line:
C:\WINDOWS\system32\confnxs.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confnxx.dll not found!
Deletion of file C:\WINDOWS\system32\confnxx.dll failed!

Could not process line:
C:\WINDOWS\system32\confnxx.dll
Status: 0xc0000034

File C:\WINDOWS\SYSTEM32\confqas.dll not found!
Deletion of file C:\WINDOWS\SYSTEM32\confqas.dll failed!

Could not process line:
C:\WINDOWS\SYSTEM32\confqas.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confvad.dll not found!
Deletion of file C:\WINDOWS\system32\confvad.dll failed!

Could not process line:
C:\WINDOWS\system32\confvad.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confwmv.dll not found!
Deletion of file C:\WINDOWS\system32\confwmv.dll failed!

Could not process line:
C:\WINDOWS\system32\confwmv.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confxfs.dll not found!
Deletion of file C:\WINDOWS\system32\confxfs.dll failed!

Could not process line:
C:\WINDOWS\system32\confxfs.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confxxn.dll not found!
Deletion of file C:\WINDOWS\system32\confxxn.dll failed!

Could not process line:
C:\WINDOWS\system32\confxxn.dll
Status: 0xc0000034

File C:\WINDOWS\system32\confzxc.dll not found!
Deletion of file C:\WINDOWS\system32\confzxc.dll failed!

Could not process line:
C:\WINDOWS\system32\confzxc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\conmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\conmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\conmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\conperf.exe not found!
Deletion of file C:\WINDOWS\system32\conperf.exe failed!

Could not process line:
C:\WINDOWS\system32\conperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\conprf32.dll not found!
Deletion of file C:\WINDOWS\system32\conprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\conprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\constat.dll not found!
Deletion of file C:\WINDOWS\system32\constat.dll failed!

Could not process line:
C:\WINDOWS\system32\constat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\cp8xpqj.dll not found!
Deletion of file C:\WINDOWS\system32\cp8xpqj.dll failed!

Could not process line:
C:\WINDOWS\system32\cp8xpqj.dll
Status: 0xc0000034

File C:\WINDOWS\system32\creconf.exe not found!
Deletion of file C:\WINDOWS\system32\creconf.exe failed!

Could not process line:
C:\WINDOWS\system32\creconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\crsconf.exe not found!
Deletion of file C:\WINDOWS\system32\crsconf.exe failed!

Could not process line:
C:\WINDOWS\system32\crsconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\crslc.exe not found!
Deletion of file C:\WINDOWS\system32\crslc.exe failed!

Could not process line:
C:\WINDOWS\system32\crslc.exe
Status: 0xc0000034

File C:\WINDOWS\system32\crypds16.dll not found!
Deletion of file C:\WINDOWS\system32\crypds16.dll failed!

Could not process line:
C:\WINDOWS\system32\crypds16.dll
Status: 0xc0000034

File C:\WINDOWS\system32\crypmapi.dll not found!
Deletion of file C:\WINDOWS\system32\crypmapi.dll failed!

Could not process line:
C:\WINDOWS\system32\crypmapi.dll
Status: 0xc0000034

File C:\WINDOWS\system32\crypmapi.exe not found!
Deletion of file C:\WINDOWS\system32\crypmapi.exe failed!

Could not process line:
C:\WINDOWS\system32\crypmapi.exe
Status: 0xc0000034

File C:\WINDOWS\system32\cssewmpd.exe not found!
Deletion of file C:\WINDOWS\system32\cssewmpd.exe failed!

Could not process line:
C:\WINDOWS\system32\cssewmpd.exe
Status: 0xc0000034

File C:\WINDOWS\system32\decconf.exe not found!
Deletion of file C:\WINDOWS\system32\decconf.exe failed!

Could not process line:
C:\WINDOWS\system32\decconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\deiconf.exe not found!
Deletion of file C:\WINDOWS\system32\deiconf.exe failed!

Could not process line:
C:\WINDOWS\system32\deiconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\deiprf32.dll not found!
Deletion of file C:\WINDOWS\system32\deiprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\deiprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\deiprov.exe not found!
Deletion of file C:\WINDOWS\system32\deiprov.exe failed!

Could not process line:
C:\WINDOWS\system32\deiprov.exe
Status: 0xc0000034

File C:\WINDOWS\system32\deskmcd3.dll not found!
Deletion of file C:\WINDOWS\system32\deskmcd3.dll failed!

Could not process line:
C:\WINDOWS\system32\deskmcd3.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dfssrasc.dll not found!
Deletion of file C:\WINDOWS\system32\dfssrasc.dll failed!

Could not process line:
C:\WINDOWS\system32\dfssrasc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dfssrasc.exe not found!
Deletion of file C:\WINDOWS\system32\dfssrasc.exe failed!

Could not process line:
C:\WINDOWS\system32\dfssrasc.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dhcpkbds.exe not found!
Deletion of file C:\WINDOWS\system32\dhcpkbds.exe failed!

Could not process line:
C:\WINDOWS\system32\dhcpkbds.exe
Status: 0xc0000034

File C:\WINDOWS\system32\diagamc.dll not found!
Deletion of file C:\WINDOWS\system32\diagamc.dll failed!

Could not process line:
C:\WINDOWS\system32\diagamc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagcre.dll not found!
Deletion of file C:\WINDOWS\system32\diagcre.dll failed!

Could not process line:
C:\WINDOWS\system32\diagcre.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagcrs.dll not found!
Deletion of file C:\WINDOWS\system32\diagcrs.dll failed!

Could not process line:
C:\WINDOWS\system32\diagcrs.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagd3d.dll not found!
Deletion of file C:\WINDOWS\system32\diagd3d.dll failed!

Could not process line:
C:\WINDOWS\system32\diagd3d.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagdei.dll not found!
Deletion of file C:\WINDOWS\system32\diagdei.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdei.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagdsk.dll not found!
Deletion of file C:\WINDOWS\system32\diagdsk.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdsk.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagdss.dll not found!
Deletion of file C:\WINDOWS\system32\diagdss.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdss.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagdxt.dll not found!
Deletion of file C:\WINDOWS\system32\diagdxt.dll failed!

Could not process line:
C:\WINDOWS\system32\diagdxt.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagfsd.dll not found!
Deletion of file C:\WINDOWS\system32\diagfsd.dll failed!

Could not process line:
C:\WINDOWS\system32\diagfsd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\diagisr.dll not found!
Deletion of file C:\WINDOWS\system32\diagisr.dll failed!

Could not process line:
C:\WINDOWS\system32\diagisr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dic.exe not found!
Deletion of file C:\WINDOWS\system32\dic.exe failed!

Could not process line:
C:\WINDOWS\system32\dic.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dmdsrasp.dll not found!
Deletion of file C:\WINDOWS\system32\dmdsrasp.dll failed!

Could not process line:
C:\WINDOWS\system32\dmdsrasp.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dmimmdt2.exe not found!
Deletion of file C:\WINDOWS\system32\dmimmdt2.exe failed!

Could not process line:
C:\WINDOWS\system32\dmimmdt2.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dmimmsss.dll not found!
Deletion of file C:\WINDOWS\system32\dmimmsss.dll failed!

Could not process line:
C:\WINDOWS\system32\dmimmsss.dll
Status: 0xc0000034

File C:\WINDOWS\System32\dmimmsss.exe not found!
Deletion of file C:\WINDOWS\System32\dmimmsss.exe failed!

Could not process line:
C:\WINDOWS\System32\dmimmsss.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dmimtsap.dll not found!
Deletion of file C:\WINDOWS\system32\dmimtsap.dll failed!

Could not process line:
C:\WINDOWS\system32\dmimtsap.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dmimtsap.exe not found!
Deletion of file C:\WINDOWS\system32\dmimtsap.exe failed!

Could not process line:
C:\WINDOWS\system32\dmimtsap.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dminbtpa.exe not found!
Deletion of file C:\WINDOWS\system32\dminbtpa.exe failed!

Could not process line:
C:\WINDOWS\system32\dminbtpa.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dmsemf32.dll not found!
Deletion of file C:\WINDOWS\system32\dmsemf32.dll failed!

Could not process line:
C:\WINDOWS\system32\dmsemf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dmsydpla.dll not found!
Deletion of file C:\WINDOWS\system32\dmsydpla.dll failed!

Could not process line:
C:\WINDOWS\system32\dmsydpla.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dmusmori.dll not found!
Deletion of file C:\WINDOWS\system32\dmusmori.dll failed!

Could not process line:
C:\WINDOWS\system32\dmusmori.dll
Status: 0xc0000034

File C:\WINDOWS\system32\docpfram.dll not found!
Deletion of file C:\WINDOWS\system32\docpfram.dll failed!

Could not process line:
C:\WINDOWS\system32\docpfram.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dpl1npwm.dll not found!
Deletion of file C:\WINDOWS\system32\dpl1npwm.dll failed!

Could not process line:
C:\WINDOWS\system32\dpl1npwm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dpugmswe.dll not found!
Deletion of file C:\WINDOWS\system32\dpugmswe.dll failed!

Could not process line:
C:\WINDOWS\system32\dpugmswe.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dpvacdfv.dll not found!
Deletion of file C:\WINDOWS\system32\dpvacdfv.dll failed!

Could not process line:
C:\WINDOWS\system32\dpvacdfv.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dpwswave.exe not found!
Deletion of file C:\WINDOWS\system32\dpwswave.exe failed!

Could not process line:
C:\WINDOWS\system32\dpwswave.exe
Status: 0xc0000034

File C:\WINDOWS\system32\drmvndde.dll not found!
Deletion of file C:\WINDOWS\system32\drmvndde.dll failed!

Could not process line:
C:\WINDOWS\system32\drmvndde.dll
Status: 0xc0000034

File C:\WINDOWS\system32\drmvndde.exe not found!
Deletion of file C:\WINDOWS\system32\drmvndde.exe failed!

Could not process line:
C:\WINDOWS\system32\drmvndde.exe
Status: 0xc0000034

File C:\WINDOWS\system32\drvconf.exe not found!
Deletion of file C:\WINDOWS\system32\drvconf.exe failed!

Could not process line:
C:\WINDOWS\system32\drvconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\drvmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\drvmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\drvmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\drvstat.dll not found!
Deletion of file C:\WINDOWS\system32\drvstat.dll failed!

Could not process line:
C:\WINDOWS\system32\drvstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dskconf.exe not found!
Deletion of file C:\WINDOWS\system32\dskconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dskconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dsprcdfv.dll not found!
Deletion of file C:\WINDOWS\system32\dsprcdfv.dll failed!

Could not process line:
C:\WINDOWS\system32\dsprcdfv.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dsprcdfv.exe not found!
Deletion of file C:\WINDOWS\system32\dsprcdfv.exe failed!

Could not process line:
C:\WINDOWS\system32\dsprcdfv.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dsqudisp.dll not found!
Deletion of file C:\WINDOWS\system32\dsqudisp.dll failed!

Could not process line:
C:\WINDOWS\system32\dsqudisp.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dssconf.exe not found!
Deletion of file C:\WINDOWS\system32\dssconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dssconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dsseds32.dll not found!
Deletion of file C:\WINDOWS\system32\dsseds32.dll failed!

Could not process line:
C:\WINDOWS\system32\dsseds32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dsseds32.exe not found!
Deletion of file C:\WINDOWS\system32\dsseds32.exe failed!

Could not process line:
C:\WINDOWS\system32\dsseds32.exe
Status: 0xc0000034

File C:\WINDOWS\system32\duseusrc.exe not found!
Deletion of file C:\WINDOWS\system32\duseusrc.exe failed!

Could not process line:
C:\WINDOWS\system32\duseusrc.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dx3jcryp.dll not found!
Deletion of file C:\WINDOWS\system32\dx3jcryp.dll failed!

Could not process line:
C:\WINDOWS\system32\dx3jcryp.dll
Status: 0xc0000034

File C:\WINDOWS\SYSTEM32\dx3jracp.dll not found!
Deletion of file C:\WINDOWS\SYSTEM32\dx3jracp.dll failed!

Could not process line:
C:\WINDOWS\SYSTEM32\dx3jracp.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dxdimqtr.dll not found!
Deletion of file C:\WINDOWS\system32\dxdimqtr.dll failed!

Could not process line:
C:\WINDOWS\system32\dxdimqtr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dxtconf.exe not found!
Deletion of file C:\WINDOWS\system32\dxtconf.exe failed!

Could not process line:
C:\WINDOWS\system32\dxtconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dxtmmnmd.dll not found!
Deletion of file C:\WINDOWS\system32\dxtmmnmd.dll failed!

Could not process line:
C:\WINDOWS\system32\dxtmmnmd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\dxtmmnmd.exe not found!
Deletion of file C:\WINDOWS\system32\dxtmmnmd.exe failed!

Could not process line:
C:\WINDOWS\system32\dxtmmnmd.exe
Status: 0xc0000034

File C:\WINDOWS\system32\dxtmsft3.dll not found!
Deletion of file C:\WINDOWS\system32\dxtmsft3.dll failed!

Could not process line:
C:\WINDOWS\system32\dxtmsft3.dll
Status: 0xc0000034

File C:\WINDOWS\system32\e1.dll not found!
Deletion of file C:\WINDOWS\system32\e1.dll failed!

Could not process line:
C:\WINDOWS\system32\e1.dll
Status: 0xc0000034

File C:\WINDOWS\system32\e1.sys not found!
Deletion of file C:\WINDOWS\system32\e1.sys failed!

Could not process line:
C:\WINDOWS\system32\e1.sys
Status: 0xc0000034

File C:\WINDOWS\system32\e100mqqm.dll not found!
Deletion of file C:\WINDOWS\system32\e100mqqm.dll failed!

Could not process line:
C:\WINDOWS\system32\e100mqqm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\efsavp7v.exe not found!
Deletion of file C:\WINDOWS\system32\efsavp7v.exe failed!

Could not process line:
C:\WINDOWS\system32\efsavp7v.exe
Status: 0xc0000034

File C:\WINDOWS\system32\egaavi.exe not found!
Deletion of file C:\WINDOWS\system32\egaavi.exe failed!

Could not process line:
C:\WINDOWS\system32\egaavi.exe
Status: 0xc0000034

File C:\WINDOWS\system32\egamgr32.dll not found!
Deletion of file C:\WINDOWS\system32\egamgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\egamgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\egastat.dll not found!
Deletion of file C:\WINDOWS\system32\egastat.dll failed!

Could not process line:
C:\WINDOWS\system32\egastat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\egperf32.dll not found!
Deletion of file C:\WINDOWS\system32\egperf32.dll failed!

Could not process line:
C:\WINDOWS\system32\egperf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\encddpva.dll not found!
Deletion of file C:\WINDOWS\system32\encddpva.dll failed!

Could not process line:
C:\WINDOWS\system32\encddpva.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ErUVhr.dll not found!
Deletion of file C:\WINDOWS\system32\ErUVhr.dll failed!

Could not process line:
C:\WINDOWS\system32\ErUVhr.dll
Status: 0xc0000034

File C:\WINDOWS\system32\evenncob.dll not found!
Deletion of file C:\WINDOWS\system32\evenncob.dll failed!

Could not process line:
C:\WINDOWS\system32\evenncob.dll
Status: 0xc0000034

File C:\WINDOWS\system32\extspnrp.dll not found!
Deletion of file C:\WINDOWS\system32\extspnrp.dll failed!

Could not process line:
C:\WINDOWS\system32\extspnrp.dll
Status: 0xc0000034

File C:\WINDOWS\SYSTEM32\fksd.dll not found!
Deletion of file C:\WINDOWS\SYSTEM32\fksd.dll failed!

Could not process line:
C:\WINDOWS\SYSTEM32\fksd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\flw334.dll not found!
Deletion of file C:\WINDOWS\system32\flw334.dll failed!

Could not process line:
C:\WINDOWS\system32\flw334.dll
Status: 0xc0000034

File C:\WINDOWS\system32\fpwppgpm.exe not found!
Deletion of file C:\WINDOWS\system32\fpwppgpm.exe failed!

Could not process line:
C:\WINDOWS\system32\fpwppgpm.exe
Status: 0xc0000034

File C:\WINDOWS\system32\fsdconf.exe not found!
Deletion of file C:\WINDOWS\system32\fsdconf.exe failed!

Could not process line:
C:\WINDOWS\system32\fsdconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\fsxsh4.dll not found!
Deletion of file C:\WINDOWS\system32\fsxsh4.dll failed!

Could not process line:
C:\WINDOWS\system32\fsxsh4.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ftpwntsd.exe not found!
Deletion of file C:\WINDOWS\system32\ftpwntsd.exe failed!

Could not process line:
C:\WINDOWS\system32\ftpwntsd.exe
Status: 0xc0000034

File C:\WINDOWS\system32\glu3panm.dll not found!
Deletion of file C:\WINDOWS\system32\glu3panm.dll failed!

Could not process line:
C:\WINDOWS\system32\glu3panm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\gpkrmssi.dll not found!
Deletion of file C:\WINDOWS\system32\gpkrmssi.dll failed!

Could not process line:
C:\WINDOWS\system32\gpkrmssi.dll
Status: 0xc0000034

File C:\WINDOWS\system32\gtmqf608r7.dll not found!
Deletion of file C:\WINDOWS\system32\gtmqf608r7.dll failed!

Could not process line:
C:\WINDOWS\system32\gtmqf608r7.dll
Status: 0xc0000034

File C:\WINDOWS\system32\hg5wfhvkj.dll not found!
Deletion of file C:\WINDOWS\system32\hg5wfhvkj.dll failed!

Could not process line:
C:\WINDOWS\system32\hg5wfhvkj.dll
Status: 0xc0000034

File C:\WINDOWS\system32\hplunwap.dll not found!
Deletion of file C:\WINDOWS\system32\hplunwap.dll failed!

Could not process line:
C:\WINDOWS\system32\hplunwap.dll
Status: 0xc0000034

File C:\WINDOWS\system32\hypewmv9.exe not found!
Deletion of file C:\WINDOWS\system32\hypewmv9.exe failed!

Could not process line:
C:\WINDOWS\system32\hypewmv9.exe
Status: 0xc0000034

File C:\WINDOWS\system32\i57ff9ieo.dll not found!
Deletion of file C:\WINDOWS\system32\i57ff9ieo.dll failed!

Could not process line:
C:\WINDOWS\system32\i57ff9ieo.dll
Status: 0xc0000034

File C:\WINDOWS\system32\iasamsre.dll not found!
Deletion of file C:\WINDOWS\system32\iasamsre.dll failed!

Could not process line:
C:\WINDOWS\system32\iasamsre.dll
Status: 0xc0000034

File C:\WINDOWS\system32\iassmpg4.dll not found!
Deletion of file C:\WINDOWS\system32\iassmpg4.dll failed!

Could not process line:
C:\WINDOWS\system32\iassmpg4.dll
Status: 0xc0000034

File C:\WINDOWS\system32\iassumdm.dll not found!
Deletion of file C:\WINDOWS\system32\iassumdm.dll failed!

Could not process line:
C:\WINDOWS\system32\iassumdm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\iassumdm.exe not found!
Deletion of file C:\WINDOWS\system32\iassumdm.exe failed!

Could not process line:
C:\WINDOWS\system32\iassumdm.exe
Status: 0xc0000034

File C:\WINDOWS\system32\icmpdx3j.dll not found!
Deletion of file C:\WINDOWS\system32\icmpdx3j.dll failed!

Could not process line:
C:\WINDOWS\system32\icmpdx3j.dll
Status: 0xc0000034

File C:\WINDOWS\system32\icmuwmad.exe not found!
Deletion of file C:\WINDOWS\system32\icmuwmad.exe failed!

Could not process line:
C:\WINDOWS\system32\icmuwmad.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ifcconf.exe not found!
Deletion of file C:\WINDOWS\system32\ifcconf.exe failed!

Could not process line:
C:\WINDOWS\system32\ifcconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ifcmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\ifcmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\ifcmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ifcstat.dll not found!
Deletion of file C:\WINDOWS\system32\ifcstat.dll failed!

Could not process line:
C:\WINDOWS\system32\ifcstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\imagalrs.exe not found!
Deletion of file C:\WINDOWS\system32\imagalrs.exe failed!

Could not process line:
C:\WINDOWS\system32\imagalrs.exe
Status: 0xc0000034

File C:\WINDOWS\system32\inetzlco.dll not found!
Deletion of file C:\WINDOWS\system32\inetzlco.dll failed!

Could not process line:
C:\WINDOWS\system32\inetzlco.dll
Status: 0xc0000034

File C:\WINDOWS\system32\inetzlco.exe not found!
Deletion of file C:\WINDOWS\system32\inetzlco.exe failed!

Could not process line:
C:\WINDOWS\system32\inetzlco.exe
Status: 0xc0000034

File C:\WINDOWS\system32\infomsas.dll not found!
Deletion of file C:\WINDOWS\system32\infomsas.dll failed!

Could not process line:
C:\WINDOWS\system32\infomsas.dll
Status: 0xc0000034

File C:\WINDOWS\system32\inketype.dll not found!
Deletion of file C:\WINDOWS\system32\inketype.dll failed!

Could not process line:
C:\WINDOWS\system32\inketype.dll
Status: 0xc0000034

File C:\WINDOWS\system32\inketype.exe not found!
Deletion of file C:\WINDOWS\system32\inketype.exe failed!

Could not process line:
C:\WINDOWS\system32\inketype.exe
Status: 0xc0000034

File C:\WINDOWS\system32\inpufm20.exe not found!
Deletion of file C:\WINDOWS\system32\inpufm20.exe failed!

Could not process line:
C:\WINDOWS\system32\inpufm20.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipnardch.dll not found!
Deletion of file C:\WINDOWS\system32\ipnardch.dll failed!

Could not process line:
C:\WINDOWS\system32\ipnardch.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ipsecmon.exe not found!
Deletion of file C:\WINDOWS\system32\ipsecmon.exe failed!

Could not process line:
C:\WINDOWS\system32\ipsecmon.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipsefsus.dll not found!
Deletion of file C:\WINDOWS\system32\ipsefsus.dll failed!

Could not process line:
C:\WINDOWS\system32\ipsefsus.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ipsemsw3.dll not found!
Deletion of file C:\WINDOWS\system32\ipsemsw3.dll failed!

Could not process line:
C:\WINDOWS\system32\ipsemsw3.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ipsewmsp.dll not found!
Deletion of file C:\WINDOWS\system32\ipsewmsp.dll failed!

Could not process line:
C:\WINDOWS\system32\ipsewmsp.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ipsmwebh.exe not found!
Deletion of file C:\WINDOWS\system32\ipsmwebh.exe failed!

Could not process line:
C:\WINDOWS\system32\ipsmwebh.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipv6rasm.dll not found!
Deletion of file C:\WINDOWS\system32\ipv6rasm.dll failed!

Could not process line:
C:\WINDOWS\system32\ipv6rasm.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ipv6rasm.exe not found!
Deletion of file C:\WINDOWS\system32\ipv6rasm.exe failed!

Could not process line:
C:\WINDOWS\system32\ipv6rasm.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipxpextm.exe not found!
Deletion of file C:\WINDOWS\system32\ipxpextm.exe failed!

Could not process line:
C:\WINDOWS\system32\ipxpextm.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipxsshdo.dll not found!
Deletion of file C:\WINDOWS\system32\ipxsshdo.dll failed!

Could not process line:
C:\WINDOWS\system32\ipxsshdo.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ipxsshdo.exe not found!
Deletion of file C:\WINDOWS\system32\ipxsshdo.exe failed!

Could not process line:
C:\WINDOWS\system32\ipxsshdo.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ipxwersv.dll not found!
Deletion of file C:\WINDOWS\system32\ipxwersv.dll failed!

Could not process line:
C:\WINDOWS\system32\ipxwersv.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ipxwscri.dll not found!
Deletion of file C:\WINDOWS\system32\ipxwscri.dll failed!

Could not process line:
C:\WINDOWS\system32\ipxwscri.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ipxwshel.exe not found!
Deletion of file C:\WINDOWS\system32\ipxwshel.exe failed!

Could not process line:
C:\WINDOWS\system32\ipxwshel.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ir32wias.dll not found!
Deletion of file C:\WINDOWS\system32\ir32wias.dll failed!

Could not process line:
C:\WINDOWS\system32\ir32wias.dll
Status: 0xc0000034

File C:\WINDOWS\system32\isrconf.exe not found!
Deletion of file C:\WINDOWS\system32\isrconf.exe failed!

Could not process line:
C:\WINDOWS\system32\isrconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\isrprf32.dll not found!
Deletion of file C:\WINDOWS\system32\isrprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\isrprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\isrprov.exe not found!
Deletion of file C:\WINDOWS\system32\isrprov.exe failed!

Could not process line:
C:\WINDOWS\system32\isrprov.exe
Status: 0xc0000034

File C:\WINDOWS\system32\iuennwcf.dll not found!
Deletion of file C:\WINDOWS\system32\iuennwcf.dll failed!

Could not process line:
C:\WINDOWS\system32\iuennwcf.dll
Status: 0xc0000034

File C:\WINDOWS\system32\ixssregw.exe not found!
Deletion of file C:\WINDOWS\system32\ixssregw.exe failed!

Could not process line:
C:\WINDOWS\system32\ixssregw.exe
Status: 0xc0000034

File C:\WINDOWS\system32\ixsswmas.exe not found!
Deletion of file C:\WINDOWS\system32\ixsswmas.exe failed!

Could not process line:
C:\WINDOWS\system32\ixsswmas.exe
Status: 0xc0000034

File C:\WINDOWS\system32\j2t3crh.dll not found!
Deletion of file C:\WINDOWS\system32\j2t3crh.dll failed!

Could not process line:
C:\WINDOWS\system32\j2t3crh.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jde32.exe not found!
Deletion of file C:\WINDOWS\system32\jde32.exe failed!

Could not process line:
C:\WINDOWS\system32\jde32.exe
Status: 0xc0000034

File C:\WINDOWS\system32\jfgconf.exe not found!
Deletion of file C:\WINDOWS\system32\jfgconf.exe failed!

Could not process line:
C:\WINDOWS\system32\jfgconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\jfgmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\jfgmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\jfgmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jfgperf.exe not found!
Deletion of file C:\WINDOWS\system32\jfgperf.exe failed!

Could not process line:
C:\WINDOWS\system32\jfgperf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\jfgprf32.dll not found!
Deletion of file C:\WINDOWS\system32\jfgprf32.dll failed!

Could not process line:
C:\WINDOWS\system32\jfgprf32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jfgstat.dll not found!
Deletion of file C:\WINDOWS\system32\jfgstat.dll failed!

Could not process line:
C:\WINDOWS\system32\jfgstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jgawmsne.dll not found!
Deletion of file C:\WINDOWS\system32\jgawmsne.dll failed!

Could not process line:
C:\WINDOWS\system32\jgawmsne.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jgdwadsn.dll not found!
Deletion of file C:\WINDOWS\system32\jgdwadsn.dll failed!

Could not process line:
C:\WINDOWS\system32\jgdwadsn.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jgdwadsn.exe not found!
Deletion of file C:\WINDOWS\system32\jgdwadsn.exe failed!

Could not process line:
C:\WINDOWS\system32\jgdwadsn.exe
Status: 0xc0000034

File C:\WINDOWS\system32\jgmdwstd.dll not found!
Deletion of file C:\WINDOWS\system32\jgmdwstd.dll failed!

Could not process line:
C:\WINDOWS\system32\jgmdwstd.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jgsdrpcn.dll not found!
Deletion of file C:\WINDOWS\system32\jgsdrpcn.dll failed!

Could not process line:
C:\WINDOWS\system32\jgsdrpcn.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jgsdrpcn.exe not found!
Deletion of file C:\WINDOWS\system32\jgsdrpcn.exe failed!

Could not process line:
C:\WINDOWS\system32\jgsdrpcn.exe
Status: 0xc0000034

File C:\WINDOWS\system32\jpgconf.exe not found!
Deletion of file C:\WINDOWS\system32\jpgconf.exe failed!

Could not process line:
C:\WINDOWS\system32\jpgconf.exe
Status: 0xc0000034

File C:\WINDOWS\system32\jpgmgr32.dll not found!
Deletion of file C:\WINDOWS\system32\jpgmgr32.dll failed!

Could not process line:
C:\WINDOWS\system32\jpgmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\jpgstat.dll not found!
Deletion of file C:\WINDOWS\system32\jpgstat.dll failed!

Could not process line:
C:\WINDOWS\system32\jpgstat.dll
Status: 0xc0000034

File C:\WINDOWS\system32\kbdbmchg.dll not found!
Deletion of file C:\WINDOWS\system32\kbdbmchg.dll failed!

Could not process line:
C:\WINDOWS\system32\kbdbmchg.dll
Status: 0xc0000034

File C:\WINDOWS\system32\kbdbmcio.dll not found!
Deletion of file C:\WINDOWS\system32\kbdbmcio.dll failed!

Could not process line:
C:\WINDOWS\system32\kbdbmcio.dll
Status: 0xc0000034

File C:\WINDOWS\system32\kbdcrtut.dll not found!
Deletion of file C:\WINDOWS\system32\kbdcrtut.dll failed!

Could not process line:
C:\WINDOWS\system32\kbdcrtut.dll
Status: 0xc0000034

File C:\WINDOWS\system32\kbdfnmmk.exe not found!
Deletion of file C:\WINDOWS\system32\kbdfnmmk.exe failed!

Could not process line:
C:\WINDOWS\system32\kbdfnmmk.exe
Status: 0xc0000034

File C:\WINDOWS\system32\kbdfwshe.exe not found!
Deletion of file C:\WINDOWS\system32\kbdfwshe.exe failed!

Could not process line:
C:\WINDOWS\system32\kbdfwshe.exe
Status: 0xc0000034

File C:\WINDOWS\system32\kbdhmobs.dll not found!
Deletion of file C:\WINDOWS\system32\kbdhmobs.dll failed!

Could not process line:
C:\WINDOWS\system32\kbdhmobs.dll
Status: 0xc0000034

File C:\WINDOWS\System32\kbdhmobs.exe not found!
Deletion of file C:\WINDOWS\System32\kbdhmobs.exe failed!

Could not process line:
C:\WINDOWS\System32\kbdhmobs.exe
Status: 0xc0000034

File C:\WINDOWS\system32\kbdidpla.dll not found!
Deletion of file C:\WINDOWS\system32\kbdidpla.dll failed!

Could not process line:
C:\WINDOWS\system32\kbdidpla.dll
Status: 0xc0000034

File C:\WINDOWS\system32\kbdnipsm.dll not found!
Deletion of file C:\WINDOWS\system32\kbdnipsm.dll failed!

Could not process line:
C:\WINDOWS\system32\kbdnipsm.dll
Status: 0xc0000034

File C:\WINDOWS\SYSTEM32\ksdmgr32.dll not found!
Deletion of file C:\WINDOWS\SYSTEM32\ksdmgr32.dll failed!

Could not process line:
C:\WINDOWS\SYSTEM32\ksdmgr32.dll
Status: 0xc0000034

File C:\WINDOWS\system32\langopen.exe not found!
Deletion of file C:\WINDOWS\system32\langopen.exe failed!

Could not process line:
C:\WINDOWS\system32\langopen.exe
Status: 0xc0000034

File C:\WINDOWS\system32\libdprin.dll not found!
Deletion of file C:\WINDOWS\system32\libdprin.dll failed!

Could not process line:
C:\WINDOWS\system32\libdprin.dll
Status: 0xc0000034

File C:\WINDOWS\system32\loghatkc.dll not found!
Deletion of file C:\WINDOWS\system32\loghatkc.dll failed!

Could not process line:
C:\WINDOWS\system32\loghatkc.dll
Status: 0xc0000034

File C:\WINDOWS\system32\lprmneth.dll not found!
Deletion of file C:\WIN

mato555 · Příspěvek od **mato555** » čtv 22. lis 2007, 00:48

hijack this:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:20:28, on 21. 11. 2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\DU Meter\DUMeter.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\ICQLite\ICQLite.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\Program Files\ICQToolbar\toolbaru.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [DU Meter] C:\Program Files\DU Meter\DUMeter.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [ICQ Lite] "C:\Program Files\ICQLite\ICQLite.exe" -minimize
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -trayboot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{53862066-2B69-46CF-8E31-12A08BDCB8D5}: NameServer = 213.151.200.30 213.151.208.161
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe (file missing)
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (file missing)
O23 - Service: Eset HTTP Server (EhttpSrv) - Unknown owner - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Zařazování tisku (Spooler) - Unknown owner - C:\WINDOWS\system32\spoolsv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

--
End of file - 5326 bytes

BUBINO · Příspěvek od **BUBINO** » čtv 22. lis 2007, 13:48

Mohol by ste sem dat log z combofixu?

mato555 · Příspěvek od **mato555** » čtv 22. lis 2007, 16:56

ComboFix 07-11-19.3 - martin 2007-11-22 16:22:51.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1029.18.357 [GMT 1:00]
Running from: C:\Documents and Settings\martin\Plocha\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\regedit.com
C:\WINDOWS\system32\taskmgr.com

.
((((((((((((((((((((((((( Files Created from 2007-10-22 to 2007-11-22 )))))))))))))))))))))))))))))))
.

2007-11-18 19:23 <DIR> d-a------ C:\WINDOWS\zts2.exe
2007-11-18 19:23 <DIR> d-a------ C:\WINDOWS\rundll16.exe
2007-11-18 19:23 <DIR> d-a------ C:\WINDOWS\rundl132.dll
2007-11-18 19:23 <DIR> d-a------ C:\WINDOWS\logo1_.exe
2007-11-18 19:00 147,968 --a------ C:\WINDOWS\R.COM
2007-11-16 03:16 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\ESET
2007-11-16 02:24 <DIR> d-------- C:\Program Files\Ahead
2007-11-15 15:50 <DIR> d-------- C:\Program Files\FreeRIP2
2007-11-14 22:08 <DIR> d-------- C:\Program Files\OpenOffice.org1.0.2
2007-11-14 22:06 36,864 --a------ C:\WINDOWS\uinst001.exe
2007-11-14 17:35 17,664 --a------ C:\WINDOWS\system32\drivers\sermouse.sys
2007-11-13 23:03 <DIR> d-------- C:\Documents and Settings\All Users\Documents
2007-11-13 23:02 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Sony Ericsson
2007-11-13 23:01 <DIR> d-------- C:\Program Files\Common Files\Teleca Shared
2007-11-13 23:01 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Teleca
2007-11-13 22:35 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\Teleca
2007-11-13 22:30 <DIR> d-------- C:\Program Files\Sony Ericsson
2007-11-13 22:29 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2007-11-12 22:56 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\ICQ Toolbar
2007-11-12 22:54 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\BearShare
2007-11-12 22:52 <DIR> d-------- C:\Program Files\BearShare Applications
2007-11-12 22:52 483,328 --a------ C:\WINDOWS\system32\actskn45.ocx
2007-11-12 01:38 <DIR> d-------- C:\Program Files\QuickTime
2007-11-12 01:38 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2007-11-12 01:26 <DIR> d-------- C:\WINDOWS\Internet Logs
2007-11-10 13:52 611,064 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2007-11-10 11:00 138,624 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2007-11-09 12:17 516,096 --a------ C:\WINDOWS\system32\ati2sgag.exe
2007-11-09 12:13 <DIR> d-------- C:\Program Files\Trend Micro
2007-11-09 11:57 307,200 -ra------ C:\WINDOWS\system32\atiiiexx.dll
2007-11-09 11:57 95,617 -ra------ C:\WINDOWS\system32\atiicdxx.dat
2007-11-09 11:57 5,496 -ra------ C:\WINDOWS\system32\atifglpf.xml
2007-11-08 20:48 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\CyberLink
2007-11-08 20:48 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\CyberLink
2007-11-08 20:47 <DIR> d-------- C:\Program Files\CyberLink
2007-11-08 20:34 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\COWON
2007-11-08 20:32 <DIR> d-------- C:\Program Files\directx
2007-11-08 20:22 <DIR> d-------- C:\Program Files\Activision
2007-11-08 19:07 <DIR> d-------- C:\Program Files\ICQToolbar
2007-11-08 16:19 <DIR> d-------- C:\Temp
2007-11-08 15:22 <DIR> d-------- C:\Documents and Settings\Administrator\Data aplikací\Talkback
2007-11-08 15:12 <DIR> d-------- C:\Documents and Settings\Administrator\Plocha
2007-11-08 15:12 <DIR> d--h----- C:\Documents and Settings\Administrator\Okolní tiskárny
2007-11-08 15:12 <DIR> d--h----- C:\Documents and Settings\Administrator\Okolní síť
2007-11-08 15:12 <DIR> d-------- C:\Documents and Settings\Administrator\Oblíbené položky
2007-11-08 15:12 <DIR> d--h----- C:\Documents and Settings\Administrator\Šablony
2007-11-08 15:12 <DIR> dr------- C:\Documents and Settings\Administrator\Nabídka Start
2007-11-08 15:12 <DIR> d-------- C:\Documents and Settings\Administrator\Dokumenty
2007-11-08 15:12 <DIR> dr-h----- C:\Documents and Settings\Administrator\Data aplikací
2007-11-08 14:43 <DIR> d-------- C:\Documents and Settings\NetworkService\Nabídka Start
2007-11-08 14:13 <DIR> d-------- C:\Program Files\Spyware Terminator
2007-11-08 14:13 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2007-11-08 12:55 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\Talkback
2007-11-08 12:55 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Hagel Technologies
2007-11-08 12:54 107,008 --a------ C:\WINDOWS\UninstallFirefox.exe
2007-11-08 12:54 3,441 --a------ C:\WINDOWS\mozver.dat
2007-11-08 12:54 0 --a------ C:\WINDOWS\nsreg.dat
2007-11-08 12:41 57,404 -ra------ C:\WINDOWS\system32\drivers\ftser2k.sys
2007-11-08 12:41 51,821 -ra------ C:\WINDOWS\system32\ftserui2.dll
2007-11-08 12:41 36,864 -ra------ C:\WINDOWS\system32\FTLang.dll
2007-11-08 12:40 415,744 -ra------ C:\WINDOWS\system32\ftdiunin.exe
2007-11-08 12:40 24,209 -ra------ C:\WINDOWS\system32\drivers\ftdibus.sys
2007-11-08 12:40 92 -ra------ C:\WINDOWS\system32\ftdiun2k.ini
2007-10-30 10:29 30,728 --a------ C:\WINDOWS\system32\drivers\epfwtdir.sys
2007-10-30 10:27 33,800 --a------ C:\WINDOWS\system32\drivers\eamon.sys
2007-10-30 10:27 27,144 --a------ C:\WINDOWS\system32\drivers\easdrv.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-21 22:20 44,544 ----a-w C:\WINDOWS\system32\alg.exe
2007-11-17 21:56 1,032,704 ----a-w C:\WINDOWS\explorer.exe
2007-11-17 00:29 15,360 ----a-w C:\WINDOWS\system32\ctfmon.exe
2007-11-16 02:50 9,728 ----a-w C:\WINDOWS\system32\reset.exe
2007-11-16 02:50 9,216 ----a-w C:\WINDOWS\system32\subst.exe
2007-11-16 02:50 9,216 ----a-w C:\WINDOWS\system32\scrnsave.scr
2007-11-16 02:50 8,192 ----a-w C:\WINDOWS\system32\winhlp32.exe
2007-11-16 02:50 8,192 ----a-w C:\WINDOWS\system32\smbinst.exe
2007-11-16 02:50 77,824 ----a-w C:\WINDOWS\system32\usrmlnka.exe
2007-11-16 02:50 77,824 ----a-w C:\WINDOWS\system32\shrpubw.exe
2007-11-16 02:50 77,824 ----a-w C:\WINDOWS\system32\sdbinst.exe
2007-11-16 02:50 77,312 ----a-w C:\WINDOWS\system32\telnet.exe
2007-11-16 02:50 77,312 ----a-w C:\WINDOWS\system32\rtcshare.exe
2007-11-16 02:50 708,608 ----a-w C:\WINDOWS\system32\ss3dfo.scr
2007-11-16 02:50 70,656 ----a-w C:\WINDOWS\system32\sigverif.exe
2007-11-16 02:50 7,168 ----a-w C:\WINDOWS\system32\recover.exe
2007-11-16 02:50 69,632 ----a-w C:\WINDOWS\system32\usrshuta.exe
2007-11-16 02:50 679,936 ----a-w C:\WINDOWS\system32\sstext3d.scr
2007-11-16 02:50 67,072 ----a-w C:\WINDOWS\system32\rdshost.exe
2007-11-16 02:50 65,024 ----a-w C:\WINDOWS\system32\wextract.exe
2007-11-16 02:50 62,464 ----a-w C:\WINDOWS\system32\rdpclip.exe
2007-11-16 02:50 610,304 ----a-w C:\WINDOWS\system32\sspipes.scr
2007-11-16 02:50 61,440 ----a-w C:\WINDOWS\system32\usrprbda.exe
2007-11-16 02:50 56,832 ----a-w C:\WINDOWS\system32\sol.exe
2007-11-16 02:50 56,832 ----a-w C:\WINDOWS\system32\rasphone.exe
2007-11-16 02:50 55,296 ----a-w C:\WINDOWS\system32\reg.exe
2007-11-16 02:50 538,624 ----a-w C:\WINDOWS\system32\spider.exe
2007-11-16 02:50 51,200 ----a-w C:\WINDOWS\system32\syncapp.exe
2007-11-16 02:50 51,200 ----a-w C:\WINDOWS\system32\rsm.exe
2007-11-16 02:50 50,176 ----a-w C:\WINDOWS\system32\w32tm.exe
2007-11-16 02:50 50,176 ----a-w C:\WINDOWS\system32\utilman.exe
2007-11-16 02:50 5,632 ----a-w C:\WINDOWS\system32\write.exe
2007-11-16 02:50 5,632 ----a-w C:\WINDOWS\system32\winver.exe
2007-11-16 02:50 49,152 ----a-w C:\WINDOWS\system32\rsmui.exe
2007-11-16 02:50 47,104 ----a-w C:\WINDOWS\system32\ssmypics.scr
2007-11-16 02:50 44,544 ----a-w C:\WINDOWS\system32\tscupgrd.exe
2007-11-16 02:50 433,664 ----a-w C:\WINDOWS\system32\wiaacmgr.exe
2007-11-16 02:50 4,608 ----a-w C:\WINDOWS\system32\regwiz.exe
2007-11-16 02:50 4,096 ----a-w C:\WINDOWS\system32\unlodctr.exe
2007-11-16 02:50 393,216 ----a-w C:\WINDOWS\system32\ssflwbox.scr
2007-11-16 02:50 36,864 ----a-w C:\WINDOWS\system32\syskey.exe
2007-11-16 02:50 35,840 ----a-w C:\WINDOWS\system32\rcimlby.exe
2007-11-16 02:50 33,792 ----a-w C:\WINDOWS\system32\vssadmin.exe
2007-11-16 02:50 33,792 ----a-w C:\WINDOWS\system32\regini.exe
2007-11-16 02:50 32,768 ----a-w C:\WINDOWS\system32\wpnpinst.exe
2007-11-16 02:50 32,768 ----a-w C:\WINDOWS\system32\sethc.exe
2007-11-16 02:50 32,256 ----a-w C:\WINDOWS\system32\wupdmgr.exe
2007-11-16 02:50 32,256 ----a-w C:\WINDOWS\system32\wpabaln.exe
2007-11-16 02:50 32,256 ----a-w C:\WINDOWS\system32\tracert6.exe
2007-11-16 02:50 31,232 ----a-w C:\WINDOWS\system32\sc.exe
2007-11-16 02:50 30,720 ----a-w C:\WINDOWS\system32\xcopy.exe
2007-11-16 02:50 3,584 ----a-w C:\WINDOWS\system32\regedt32.exe
2007-11-16 02:50 3,072 ----a-w C:\WINDOWS\system32\systray.exe
2007-11-16 02:50 26,112 ----a-w C:\WINDOWS\system32\skeys.exe
2007-11-16 02:50 25,600 ----a-w C:\WINDOWS\system32\routemon.exe
2007-11-16 02:50 24,576 ----a-w C:\WINDOWS\system32\sort.exe
2007-11-16 02:50 24,576 ----a-w C:\WINDOWS\system32\rsmsink.exe
2007-11-16 02:50 23,040 ----a-w C:\WINDOWS\system32\setup.exe
2007-11-16 02:50 22,528 ----a-w C:\WINDOWS\system32\rcp.exe
2007-11-16 02:50 22,528 ----a-w C:\WINDOWS\system32\qwinsta.exe
2007-11-16 02:50 20,992 ----a-w C:\WINDOWS\system32\ssmarque.scr
2007-11-16 02:50 20,480 ----a-w C:\WINDOWS\system32\qprocess.exe
2007-11-16 02:50 19,968 ----a-w C:\WINDOWS\system32\ssbezier.scr
2007-11-16 02:50 19,968 ----a-w C:\WINDOWS\system32\shutdown.exe
2007-11-16 02:50 19,968 ----a-w C:\WINDOWS\system32\route.exe
2007-11-16 02:50 19,456 ----a-w C:\WINDOWS\system32\tcpsvcs.exe
2007-11-16 02:50 18,944 ----a-w C:\WINDOWS\system32\ssmyst.scr
2007-11-16 02:50 17,408 ----a-w C:\WINDOWS\system32\qappsrv.exe
2007-11-16 02:50 166,912 ----a-w C:\WINDOWS\system32\wuauclt1.exe
2007-11-16 02:50 16,896 ----a-w C:\WINDOWS\system32\upnpcont.exe
2007-11-16 02:50 16,896 ----a-w C:\WINDOWS\system32\tsshutdn.exe
2007-11-16 02:50 16,896 ----a-w C:\WINDOWS\system32\tftp.exe
2007-11-16 02:50 16,896 ----a-w C:\WINDOWS\system32\runas.exe
2007-11-16 02:50 16,384 ----a-w C:\WINDOWS\system32\tskill.exe
2007-11-16 02:50 15,872 ----a-w C:\WINDOWS\system32\rwinsta.exe
2007-11-16 02:50 15,360 ----a-w C:\WINDOWS\system32\tscon.exe
2007-11-16 02:50 15,360 ----a-w C:\WINDOWS\system32\taskman.exe
2007-11-16 02:50 15,360 ----a-w C:\WINDOWS\system32\shadow.exe
2007-11-16 02:50 15,360 ----a-w C:\WINDOWS\system32\rsh.exe
2007-11-16 02:50 14,848 ----a-w C:\WINDOWS\system32\tsdiscon.exe
2007-11-16 02:50 14,848 ----a-w C:\WINDOWS\system32\stimon.exe
2007-11-16 02:50 14,336 ----a-w C:\WINDOWS\system32\ssstars.scr
2007-11-16 02:50 14,336 ----a-w C:\WINDOWS\system32\runonce.exe
2007-11-16 02:50 14,336 ----a-w C:\WINDOWS\system32\rexec.exe
2007-11-16 02:50 138,752 ----a-w C:\WINDOWS\system32\sndvol32.exe
2007-11-16 02:50 137,216 ----a-w C:\WINDOWS\system32\taskmgr.exe
2007-11-16 02:50 137,216 ----a-w C:\WINDOWS\system32\T.COM
2007-11-16 02:50 131,584 ----a-w C:\WINDOWS\system32\sndrec32.exe
2007-11-16 02:50 13,824 ----a-w C:\WINDOWS\system32\wscntfy.exe
2007-11-16 02:50 13,824 ----a-w C:\WINDOWS\system32\rdsaddin.exe
2007-11-16 02:50 13,312 ----a-w C:\WINDOWS\system32\savedump.exe
2007-11-16 02:50 12,800 ----a-w C:\WINDOWS\system32\tracert.exe
2007-11-16 02:50 12,800 ----a-w C:\WINDOWS\system32\tcmsetup.exe
2007-11-16 02:50 12,800 ----a-w C:\WINDOWS\system32\replace.exe
2007-11-16 02:50 119,808 ----a-w C:\WINDOWS\system32\winmine.exe
2007-11-16 02:50 114,688 ----a-w C:\WINDOWS\system32\wscript.exe
2007-11-16 02:50 11,776 ----a-w C:\WINDOWS\system32\winmsd.exe
2007-11-16 02:50 11,776 ----a-w C:\WINDOWS\system32\spnpinst.exe
2007-11-16 02:50 11,776 ----a-w C:\WINDOWS\system32\rasdial.exe
2007-11-16 02:50 11,776 ----a-w C:\WINDOWS\system32\rasautou.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2007-11-17 01:29]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2007-11-16 03:18]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"ICQ Lite"="C:\Program Files\ICQLite\ICQLite.exe" [2006-07-11 11:06]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Cmaudio"="RunDll32 cmicnfg.cpl" []
"IntelliPoint"="C:\Program Files\Microsoft IntelliPoint\point32.exe" [2007-11-18 15:30]
"DU Meter"="C:\Program Files\DU Meter\DUMeter.exe" [2007-11-18 15:30]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2007-11-18 15:30]
"ICQ Lite"="C:\Program Files\ICQLite\ICQLite.exe" [2006-07-11 11:06]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2007-11-17 01:29]
"HydraVisionDesktopManager"="C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe" [2007-11-17 01:29]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-11-19 17:37]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" [2007-10-30 10:28]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2007-11-17 01:29]

R1 easdrv;easdrv;C:\WINDOWS\system32\DRIVERS\easdrv.sys
R1 epfwtdir;epfwtdir;C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
R1 sp_rsdrv2;Spyware Terminator Driver 2;\??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
R2 eamon;EAMON;C:\WINDOWS\system32\DRIVERS\eamon.sys
R2 ekrn;Eset Service;"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
R3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys
S3 EhttpSrv;Eset HTTP Server;"C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe"
S3 SE2Ebus;Sony Ericsson Device 046 Driver driver (WDM);C:\WINDOWS\system32\DRIVERS\SE2Ebus.sys
S3 SE2Emdfl;Sony Ericsson Device 046 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\SE2Emdfl.sys
S3 SE2Emdm;Sony Ericsson Device 046 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\SE2Emdm.sys
S3 SE2Emgmt;Sony Ericsson Device 046 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\SE2Emgmt.sys
S3 se2End5;Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (NDIS);C:\WINDOWS\system32\DRIVERS\se2End5.sys
S3 SE2Eobex;Sony Ericsson Device 046 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\SE2Eobex.sys
S3 se2Eunic;Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (WDM);C:\WINDOWS\system32\DRIVERS\se2Eunic.sys

.
**************************************************************************

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-22 16:27:35
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

**************************************************************************
.
Completion time: 2007-11-22 16:29:38
C:\ComboFix2.txt ... 2007-11-17 22:57
.
--- E O F ---

BUBINO · Příspěvek od **BUBINO** » čtv 22. lis 2007, 20:04

Stiahnite si avenger na plochu : http://www.viry.cz/forum/viewtopic.php?t=19832
Podla navodu sa dopracujte ku tomu bielemu okne a do neho napiste cely tento text v zelenom :

Files to delete:
C:\WINDOWS\nsreg.dat
C:\WINDOWS\zts2.exe
C:\WINDOWS\rundll16.exe
C:\WINDOWS\rundl132.dll
C:\WINDOWS\logo1_.exe
C:\WINDOWS\R.COM
C:\WINDOWS\system32\T.COM
C:\WINDOWS\system32\actskn45.ocx

Folders to delete:
C:\Documents and Settings\martin\Data aplikací\BearShare

Toto otestuje na virustotal.com a vysledky hodte sem :
C:\WINDOWS\system32\DRIVERS\easdrv.sys
C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
C:\WINDOWS\system32\atifglpf.xml
C:\WINDOWS\UninstallFirefox.exe

Toto oznacilo ako virus C:\WINDOWS\system32\msiexec.exe Otestujte aj toto na virustotal.com . Som zvedavy co vyhodi.

mato555 · Příspěvek od **mato555** » pát 23. lis 2007, 16:17

no myslim ze to bude problem pretoze ihned po stiahnuti avengera nod vihodi tabulku i inicializaciou virusu do tohto suboru a hned po dvojkliku nan vyhodi tabulku s textom "integrrity check failed. this file has ben modifiet. reason might be a possible virus infection!"

mato555 · Příspěvek od **mato555** » pát 23. lis 2007, 17:02

C:\WINDOWS\system32\DRIVERS\easdrv.sys nic
C:\WINDOWS\system32\DRIVERS\epfwtdir.sys nic
C:\WINDOWS\system32\atifglpf.xml nic
C:\WINDOWS\UninstallFirefox.exe - Sunbelt 2.2.907.0 2007.11.22 VIPRE.Suspicious , Webwasher-Gateway 6.0.1 2007.11.23 Win32.Malware.gen (suspicious)

C:\WINDOWS\system32\msiexec.exe - zrejme nejaka chyba "0 bytes size received / Se ha recibido un archivo vacio"

a na tie subory som pouzil killbox
idem restart uvidime

BUBINO · Příspěvek od **BUBINO** » pát 23. lis 2007, 20:07

Toto pre istotu odstrante C:\WINDOWS\UninstallFirefox.exe ..ten posledny , to bol pravdepodobne plany poplach.

mato555 · Příspěvek od **mato555** » sob 24. lis 2007, 18:11

vsetko som urobil virus sa objavuje aj nadalej

BUBINO · Příspěvek od **BUBINO** » sob 24. lis 2007, 18:29

- Stiahnite si najnovsie aktualizacie NODA. Preskenujte pocitac (hlbkova analyza.

- Ak vam bude virus nadalej sarapatit , tak urobte log z Combofixu (v nudzovom rezime) , a pc preskenujte este raz s mwavom.

Pokial bude nadalej virus , mohol by ste napisat ake subory hlasi ako infikovane?

mato555 · Příspěvek od **mato555** » ned 25. lis 2007, 12:16

vymazal som par priecinkov v ktorych to asi 30min dozadu hadzalo viry
urobil som kontrolu nodom bez virov
dnes este preinstalujem niektore programy ktore neboli spustitelne koli zmene .exe suboru po napadnuti virim a dam info ako som dopadol

mato555 · Příspěvek od **mato555** » ned 25. lis 2007, 13:17

prave som stiahol avenger-a a bez problemov som ho otvoril cize vysledok uz urcite nejaky je idem preinstalovat nero a powerdvd tie sa mi nechceli koli viru spustit a uvidime

BUBINO · Příspěvek od **BUBINO** » ned 25. lis 2007, 13:24

Dobre , potom preferujte ci je to uz ok.

mato555 · Příspěvek od **mato555** » ned 25. lis 2007, 16:40

nero sa mi neda naistalovat exeistuje nejaky program ktorym by som uplne vymazal cely program vrtane precistenia registrov niektore programy mi aj tak stale nejdu nainstaloval som deamona a hned mi nod vyhodil nejaky adware whenUsave installer taze neviem

BUBINO · Příspěvek od **BUBINO** » ned 25. lis 2007, 19:43

Pouzite Nero Cleaner : http://www.download3k.com/System-Utilit ... undle.html

Co sa tyka virusov , urobte este jeden ComboFix log v nudzovom rezime a dajte ho sem .

mato555 · Příspěvek od **mato555** » úte 27. lis 2007, 17:18

ComboFix 07-11-19.4 - Administrator 2007-11-27 17:08:33.4 - NTFSx86 MINIMAL
Microsoft Windows XP Home Edition 5.1.2600.2.1250.1.1029.18.652 [GMT 1:00]
Running from: C:\Documents and Settings\martin\Plocha\ComboFix.exe
.

((((((((((((((((((((((((( Files Created from 2007-10-27 to 2007-11-27 )))))))))))))))))))))))))))))))
.

2007-11-25 22:37 <DIR> d-------- C:\Program Files\Ahead
2007-11-25 18:29 <DIR> d-------- C:\Documents and Settings\Administrator\Data aplikací\Teleca
2007-11-25 14:47 <DIR> d-------- C:\Program Files\DAEMON Tools
2007-11-25 14:05 <DIR> d-------- C:\Program Files\CyberLink
2007-11-25 13:59 516,096 --------- C:\WINDOWS\system32\ati2sgag.exe
2007-11-25 01:24 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\ZipGenius
2007-11-25 01:20 <DIR> d-------- C:\Program Files\ZipGenius 5
2007-11-23 16:39 <DIR> d--h----- C:\WINDOWS\PIF
2007-11-16 03:16 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\ESET
2007-11-15 15:50 <DIR> d-------- C:\Program Files\FreeRIP2
2007-11-14 22:08 <DIR> d-------- C:\Program Files\OpenOffice.org1.0.2
2007-11-14 22:06 36,864 --a------ C:\WINDOWS\uinst001.exe
2007-11-14 17:35 17,664 --a------ C:\WINDOWS\system32\drivers\sermouse.sys
2007-11-13 23:03 <DIR> d-------- C:\Documents and Settings\All Users\Documents
2007-11-13 23:02 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Sony Ericsson
2007-11-13 23:01 <DIR> d-------- C:\Program Files\Common Files\Teleca Shared
2007-11-13 23:01 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Teleca
2007-11-13 22:35 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\Teleca
2007-11-13 22:30 <DIR> d-------- C:\Program Files\Sony Ericsson
2007-11-13 22:29 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2007-11-12 22:56 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\ICQ Toolbar
2007-11-12 22:54 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\BearShare
2007-11-12 22:52 <DIR> d-------- C:\Program Files\BearShare Applications
2007-11-12 01:38 <DIR> d-------- C:\Program Files\QuickTime
2007-11-12 01:38 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2007-11-12 01:26 <DIR> d-------- C:\WINDOWS\Internet Logs
2007-11-10 13:52 611,064 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2007-11-10 11:00 138,624 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2007-11-09 11:57 307,200 -ra------ C:\WINDOWS\system32\atiiiexx.dll
2007-11-09 11:57 95,617 -ra------ C:\WINDOWS\system32\atiicdxx.dat
2007-11-09 11:57 5,496 -ra------ C:\WINDOWS\system32\atifglpf.xml
2007-11-08 20:48 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\CyberLink
2007-11-08 20:48 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\CyberLink
2007-11-08 20:34 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\COWON
2007-11-08 20:32 <DIR> d-------- C:\Program Files\directx
2007-11-08 19:07 <DIR> d-------- C:\Program Files\ICQToolbar
2007-11-08 15:22 <DIR> d-------- C:\Documents and Settings\Administrator\Data aplikací\Talkback
2007-11-08 15:12 <DIR> d-------- C:\Documents and Settings\Administrator\Plocha
2007-11-08 15:12 <DIR> d--h----- C:\Documents and Settings\Administrator\Okolní tiskárny
2007-11-08 15:12 <DIR> d--h----- C:\Documents and Settings\Administrator\Okolní síť
2007-11-08 15:12 <DIR> d-------- C:\Documents and Settings\Administrator\Oblíbené položky
2007-11-08 15:12 <DIR> d--h----- C:\Documents and Settings\Administrator\Šablony
2007-11-08 15:12 <DIR> dr------- C:\Documents and Settings\Administrator\Nabídka Start
2007-11-08 15:12 <DIR> d-------- C:\Documents and Settings\Administrator\Dokumenty
2007-11-08 15:12 <DIR> dr-h----- C:\Documents and Settings\Administrator\Data aplikací
2007-11-08 14:43 <DIR> d-------- C:\Documents and Settings\NetworkService\Nabídka Start
2007-11-08 14:13 <DIR> d-------- C:\Program Files\Spyware Terminator
2007-11-08 14:13 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2007-11-08 12:55 <DIR> d-------- C:\Documents and Settings\martin\Data aplikací\Talkback
2007-11-08 12:55 <DIR> d-------- C:\Documents and Settings\All Users\Data aplikací\Hagel Technologies
2007-11-08 12:54 3,441 --a------ C:\WINDOWS\mozver.dat
2007-11-08 12:41 57,404 -ra------ C:\WINDOWS\system32\drivers\ftser2k.sys
2007-11-08 12:41 51,821 -ra------ C:\WINDOWS\system32\ftserui2.dll
2007-11-08 12:41 36,864 -ra------ C:\WINDOWS\system32\FTLang.dll
2007-11-08 12:40 415,744 -ra------ C:\WINDOWS\system32\ftdiunin.exe
2007-11-08 12:40 24,209 -ra------ C:\WINDOWS\system32\drivers\ftdibus.sys
2007-11-08 12:40 92 -ra------ C:\WINDOWS\system32\ftdiun2k.ini
2007-10-30 10:29 30,728 --a------ C:\WINDOWS\system32\drivers\epfwtdir.sys
2007-10-30 10:27 33,800 --a------ C:\WINDOWS\system32\drivers\eamon.sys
2007-10-30 10:27 27,144 --a------ C:\WINDOWS\system32\drivers\easdrv.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-25 12:58 --------- d-----w C:\Program Files\ATI Technologies
2007-11-21 22:20 44,544 ----a-w C:\WINDOWS\system32\alg.exe
2007-11-17 21:56 1,032,704 ----a-w C:\WINDOWS\explorer.exe
2007-11-17 00:29 15,360 ----a-w C:\WINDOWS\system32\ctfmon.exe
2007-11-16 02:50 9,728 ----a-w C:\WINDOWS\system32\reset.exe
2007-11-16 02:50 9,216 ----a-w C:\WINDOWS\system32\subst.exe
2007-11-16 02:50 9,216 ----a-w C:\WINDOWS\system32\scrnsave.scr
2007-11-16 02:50 8,192 ----a-w C:\WINDOWS\system32\winhlp32.exe
2007-11-16 02:50 8,192 ----a-w C:\WINDOWS\system32\smbinst.exe
2007-11-16 02:50 77,824 ----a-w C:\WINDOWS\system32\usrmlnka.exe
2007-11-16 02:50 77,824 ----a-w C:\WINDOWS\system32\shrpubw.exe
2007-11-16 02:50 77,824 ----a-w C:\WINDOWS\system32\sdbinst.exe
2007-11-16 02:50 77,312 ----a-w C:\WINDOWS\system32\telnet.exe
2007-11-16 02:50 77,312 ----a-w C:\WINDOWS\system32\rtcshare.exe
2007-11-16 02:50 708,608 ----a-w C:\WINDOWS\system32\ss3dfo.scr
2007-11-16 02:50 70,656 ----a-w C:\WINDOWS\system32\sigverif.exe
2007-11-16 02:50 7,168 ----a-w C:\WINDOWS\system32\recover.exe
2007-11-16 02:50 69,632 ----a-w C:\WINDOWS\system32\usrshuta.exe
2007-11-16 02:50 679,936 ----a-w C:\WINDOWS\system32\sstext3d.scr
2007-11-16 02:50 67,072 ----a-w C:\WINDOWS\system32\rdshost.exe
2007-11-16 02:50 65,024 ----a-w C:\WINDOWS\system32\wextract.exe
2007-11-16 02:50 62,464 ----a-w C:\WINDOWS\system32\rdpclip.exe
2007-11-16 02:50 610,304 ----a-w C:\WINDOWS\system32\sspipes.scr
2007-11-16 02:50 61,440 ----a-w C:\WINDOWS\system32\usrprbda.exe
2007-11-16 02:50 56,832 ----a-w C:\WINDOWS\system32\sol.exe
2007-11-16 02:50 56,832 ----a-w C:\WINDOWS\system32\rasphone.exe
2007-11-16 02:50 55,296 ----a-w C:\WINDOWS\system32\reg.exe
2007-11-16 02:50 538,624 ----a-w C:\WINDOWS\system32\spider.exe
2007-11-16 02:50 51,200 ----a-w C:\WINDOWS\system32\syncapp.exe
2007-11-16 02:50 51,200 ----a-w C:\WINDOWS\system32\rsm.exe
2007-11-16 02:50 50,176 ----a-w C:\WINDOWS\system32\w32tm.exe
2007-11-16 02:50 50,176 ----a-w C:\WINDOWS\system32\utilman.exe
2007-11-16 02:50 5,632 ----a-w C:\WINDOWS\system32\write.exe
2007-11-16 02:50 5,632 ----a-w C:\WINDOWS\system32\winver.exe
2007-11-16 02:50 49,152 ----a-w C:\WINDOWS\system32\rsmui.exe
2007-11-16 02:50 47,104 ----a-w C:\WINDOWS\system32\ssmypics.scr
2007-11-16 02:50 44,544 ----a-w C:\WINDOWS\system32\tscupgrd.exe
2007-11-16 02:50 433,664 ----a-w C:\WINDOWS\system32\wiaacmgr.exe
2007-11-16 02:50 4,608 ----a-w C:\WINDOWS\system32\regwiz.exe
2007-11-16 02:50 4,096 ----a-w C:\WINDOWS\system32\unlodctr.exe
2007-11-16 02:50 393,216 ----a-w C:\WINDOWS\system32\ssflwbox.scr
2007-11-16 02:50 36,864 ----a-w C:\WINDOWS\system32\syskey.exe
2007-11-16 02:50 35,840 ----a-w C:\WINDOWS\system32\rcimlby.exe
2007-11-16 02:50 33,792 ----a-w C:\WINDOWS\system32\vssadmin.exe
2007-11-16 02:50 33,792 ----a-w C:\WINDOWS\system32\regini.exe
2007-11-16 02:50 32,768 ----a-w C:\WINDOWS\system32\wpnpinst.exe
2007-11-16 02:50 32,768 ----a-w C:\WINDOWS\system32\sethc.exe
2007-11-16 02:50 32,256 ----a-w C:\WINDOWS\system32\wupdmgr.exe
2007-11-16 02:50 32,256 ----a-w C:\WINDOWS\system32\wpabaln.exe
2007-11-16 02:50 32,256 ----a-w C:\WINDOWS\system32\tracert6.exe
2007-11-16 02:50 31,232 ----a-w C:\WINDOWS\system32\sc.exe
2007-11-16 02:50 30,720 ----a-w C:\WINDOWS\system32\xcopy.exe
2007-11-16 02:50 3,584 ----a-w C:\WINDOWS\system32\regedt32.exe
2007-11-16 02:50 3,072 ----a-w C:\WINDOWS\system32\systray.exe
2007-11-16 02:50 26,112 ----a-w C:\WINDOWS\system32\skeys.exe
2007-11-16 02:50 25,600 ----a-w C:\WINDOWS\system32\routemon.exe
2007-11-16 02:50 24,576 ----a-w C:\WINDOWS\system32\sort.exe
2007-11-16 02:50 24,576 ----a-w C:\WINDOWS\system32\rsmsink.exe
2007-11-16 02:50 23,040 ----a-w C:\WINDOWS\system32\setup.exe
2007-11-16 02:50 22,528 ----a-w C:\WINDOWS\system32\rcp.exe
2007-11-16 02:50 22,528 ----a-w C:\WINDOWS\system32\qwinsta.exe
2007-11-16 02:50 20,992 ----a-w C:\WINDOWS\system32\ssmarque.scr
2007-11-16 02:50 20,480 ----a-w C:\WINDOWS\system32\qprocess.exe
2007-11-16 02:50 19,968 ----a-w C:\WINDOWS\system32\ssbezier.scr
2007-11-16 02:50 19,968 ----a-w C:\WINDOWS\system32\shutdown.exe
2007-11-16 02:50 19,968 ----a-w C:\WINDOWS\system32\route.exe
2007-11-16 02:50 19,456 ----a-w C:\WINDOWS\system32\tcpsvcs.exe
2007-11-16 02:50 18,944 ----a-w C:\WINDOWS\system32\ssmyst.scr
2007-11-16 02:50 17,408 ----a-w C:\WINDOWS\system32\qappsrv.exe
2007-11-16 02:50 166,912 ----a-w C:\WINDOWS\system32\wuauclt1.exe
2007-11-16 02:50 16,896 ----a-w C:\WINDOWS\system32\upnpcont.exe
2007-11-16 02:50 16,896 ----a-w C:\WINDOWS\system32\tsshutdn.exe
2007-11-16 02:50 16,896 ----a-w C:\WINDOWS\system32\tftp.exe
2007-11-16 02:50 16,896 ----a-w C:\WINDOWS\system32\runas.exe
2007-11-16 02:50 16,384 ----a-w C:\WINDOWS\system32\tskill.exe
2007-11-16 02:50 15,872 ----a-w C:\WINDOWS\system32\rwinsta.exe
2007-11-16 02:50 15,360 ----a-w C:\WINDOWS\system32\tscon.exe
2007-11-16 02:50 15,360 ----a-w C:\WINDOWS\system32\taskman.exe
2007-11-16 02:50 15,360 ----a-w C:\WINDOWS\system32\shadow.exe
2007-11-16 02:50 15,360 ----a-w C:\WINDOWS\system32\rsh.exe
2007-11-16 02:50 14,848 ----a-w C:\WINDOWS\system32\tsdiscon.exe
2007-11-16 02:50 14,848 ----a-w C:\WINDOWS\system32\stimon.exe
2007-11-16 02:50 14,336 ----a-w C:\WINDOWS\system32\ssstars.scr
2007-11-16 02:50 14,336 ----a-w C:\WINDOWS\system32\runonce.exe
2007-11-16 02:50 14,336 ----a-w C:\WINDOWS\system32\rexec.exe
2007-11-16 02:50 138,752 ----a-w C:\WINDOWS\system32\sndvol32.exe
2007-11-16 02:50 137,216 ----a-w C:\WINDOWS\system32\taskmgr.exe
2007-11-16 02:50 131,584 ----a-w C:\WINDOWS\system32\sndrec32.exe
2007-11-16 02:50 13,824 ----a-w C:\WINDOWS\system32\wscntfy.exe
2007-11-16 02:50 13,824 ----a-w C:\WINDOWS\system32\rdsaddin.exe
2007-11-16 02:50 13,312 ----a-w C:\WINDOWS\system32\savedump.exe
2007-11-16 02:50 12,800 ----a-w C:\WINDOWS\system32\tracert.exe
2007-11-16 02:50 12,800 ----a-w C:\WINDOWS\system32\tcmsetup.exe
2007-11-16 02:50 12,800 ----a-w C:\WINDOWS\system32\replace.exe
2007-11-16 02:50 119,808 ----a-w C:\WINDOWS\system32\winmine.exe
2007-11-16 02:50 114,688 ----a-w C:\WINDOWS\system32\wscript.exe
2007-11-16 02:50 11,776 ----a-w C:\WINDOWS\system32\winmsd.exe
2007-11-16 02:50 11,776 ----a-w C:\WINDOWS\system32\spnpinst.exe
2007-11-16 02:50 11,776 ----a-w C:\WINDOWS\system32\rasdial.exe
2007-11-16 02:50 11,776 ----a-w C:\WINDOWS\system32\rasautou.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2007-11-17 01:29]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Cmaudio"="RunDll32 cmicnfg.cpl" []
"IntelliPoint"="C:\Program Files\Microsoft IntelliPoint\point32.exe" [2007-11-18 15:30]
"DU Meter"="C:\Program Files\DU Meter\DUMeter.exe" [2007-11-18 15:30]
"SpywareTerminator"="C:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe" [2007-11-18 15:30]
"ICQ Lite"="C:\Program Files\ICQLite\ICQLite.exe" [2006-07-11 11:06]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-11-19 17:37]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" [2007-10-30 10:28]
"HydraVisionDesktopManager"="C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe" [2003-09-15 21:00]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 20:24]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2006-09-14 21:09]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2007-11-17 01:29]

S1 easdrv;easdrv;C:\WINDOWS\system32\DRIVERS\easdrv.sys
S1 epfwtdir;epfwtdir;C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
S1 sp_rsdrv2;Spyware Terminator Driver 2;\??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
S2 eamon;EAMON;C:\WINDOWS\system32\DRIVERS\eamon.sys
S2 ekrn;Eset Service;"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
S3 EhttpSrv;Eset HTTP Server;"C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe"
S3 PSched;Plánovač paketů technologie QoS;C:\WINDOWS\system32\DRIVERS\psched.sys
S3 SE2Ebus;Sony Ericsson Device 046 Driver driver (WDM);C:\WINDOWS\system32\DRIVERS\SE2Ebus.sys
S3 SE2Emdfl;Sony Ericsson Device 046 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\SE2Emdfl.sys
S3 SE2Emdm;Sony Ericsson Device 046 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\SE2Emdm.sys
S3 SE2Emgmt;Sony Ericsson Device 046 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\SE2Emgmt.sys
S3 se2End5;Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (NDIS);C:\WINDOWS\system32\DRIVERS\se2End5.sys
S3 SE2Eobex;Sony Ericsson Device 046 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\SE2Eobex.sys
S3 se2Eunic;Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (WDM);C:\WINDOWS\system32\DRIVERS\se2Eunic.sys

.
**************************************************************************

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-27 17:09:58
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-11-27 17:10:44
.
--- E O F ---

nero mi stale nejte naistalovat
"1607:Unable to install installshield scripting runtime"

BUBINO · Příspěvek od **BUBINO** » úte 27. lis 2007, 20:12

Log je ok , takze neviem .Este aplikujte mwav. :
http://www.viry.cz/forum/viewtopic.php?t=4097

mato555 · Příspěvek od **mato555** » stř 28. lis 2007, 17:41

no prave som prisiel na to ze to nieje chyba nera ale instalatora. chcel som si nainstalovat chrome a instalator mi vyhodil tu istu chybu ako pri nerovi

BUBINO · Příspěvek od **BUBINO** » stř 28. lis 2007, 17:50

A ako sa ma vas pocitac?

mato555 · Příspěvek od **mato555** » stř 28. lis 2007, 18:07

ma sa dobre od vymazania tych suborov je vsetko v poriadku nod nehlasi ziadne infiltracie ani virusy takze zatial vsetko v poriadku.
dakujem za pomoc pri odstranovani virov.
len este prist na to co moze byt s tym instalatorom a bude to OK