Terminál Fórum - Téma megtekintése

Megválaszolatlan hozzászólások | Aktív témák

Pontos idő: vas. jan. 12, 2025 0:52

Zone Alarm problémák

Moderátorok: Wiki, Moderátorok

Oldal: 3 / 6

[ 283 hozzászólás ]

Oldal Előző 1, 2, 3, 4, 5, 6 Következő

Nyomtatóbarát verzió

Előző téma | Következő téma

Zone Alarm problémák

Szerző	Üzenet
xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:11:00, on 2007.12.31. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\WINDOWS\system32\ZoneLabs\avsys\Monitor.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\D4\D4.exe C:\Program Files\far\plugins\bcopy\bcsvc.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Program Files\Spyware Doctor\svcntaux.exe C:\Program Files\Spyware Doctor\swdsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Spyware Doctor\SDTrayApp.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\allsnap.exe C:\WINDOWS\CTHELPER.EXE C:\Program Files\ClocX\ClocX.exe C:\Program Files\D4\D4.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\utorrent.exe C:\Program Files\PeerGuardian2\pg2.exe C:\Program Files\Chameleon Clock\ChamClock.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\Program Files\Orbitdownloader\orbitnet.exe C:\Program Files\TC PowerPack\totalcmd.exe C:\WINDOWS\explorer.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\HiJackThis.exe C:\WINDOWS\system32\NOTEPAD.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu./ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?.home=ytie R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customi ... .yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [AllSnap] "C:\WINDOWS\allsnap.exe" O4 - HKLM\..\Run: [AsioReg] REGSVR32 /S CTASIO.DLL O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE O4 - HKLM\..\Run: [ClocX] "C:\Program Files\ClocX\ClocX.exe" O4 - HKLM\..\Run: [Dimension4] C:\Program Files\D4\D4.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] "C:\Program Files\PowerISO\PWRISOVM.EXE" O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [µTorrent] "C:\WINDOWS\utorrent.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - HKCU\..\Run: [HomeAlarm] C:\Program Files\Chameleon Clock\ChamClock.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{B78E7F7F-E74E-4834-8105-23EB471D1E82}: NameServer = 80.95.64.6 80.95.64.7 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Dimension4 - Thinking Man Software - C:\Program Files\D4\D4.exe O23 - Service: FAR Background Copy Service (FARBCopy) - Unknown owner - C:\Program Files\far\plugins\bcopy\bcsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Outpost Firewall Service (OutpostFirewall) - Unknown owner - C:\Program Files\Agnitum\Outpost Firewall\outpost.exe (file missing) O23 - Service: PctrlsInjectService - Unknown owner - C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe (file missing) O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe O23 - Service: System Guard(SpySoap) (SpySoapSysGuardService) - Unknown owner - C:\Program Files\SpySoap\SysGuard.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 8520 bytes
hétf. dec. 31, 2007 11:13

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	ok-fixeld le a HJ-val.Restart-es uj log.Vedekezik .De majd ellatjuk a bajatt.
hétf. dec. 31, 2007 11:00

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	xerox írta: Szia. A + RunOnce ( ?????? nem találtam) ---amikor a 3.lépést meg csináltam akkor jobb oldalra ezt rakta ki : ab(Alapértelmezett) REG_SZ (nem beállított érték) A ZA ikon a tegnapi 10-15 restart után se került vissza az asztalra.
hétf. dec. 31, 2007 10:55

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Szia. A + RunOnce ( ?????? nem találtam) ---amikor a 3.lépést meg csináltam akkor jobb oldalra ezt rakta ki : ab(Alapértelmezett) REG_SZ (nem beállított érték)
hétf. dec. 31, 2007 10:45

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Na xerox cimbi-kozeledik a finale. Meg marad egy darab szemett-eztett eltavolitsuk kezel. Beirod a start>futatasba<regedit>utana mindig klikelsz a + jelre,meg megnem talalod ezt a kulcsot.RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd 1:regedit 2:klik + HKEY_USERS 3:klik + S-1-5-19 4Klik + RunOnce: 5:C:\WINDOWS\afterpost.cmd-ENNEK A JOBBOLDALI ABLAKBAN KELL ITT VALAHOLL LENNIE-MEGTALALNI JOBKLIK_ELTAVOLITANI_NE TEVEDJ. Utana Fixeld le a Hijackban-O4 - HKUS\S-1-5-19\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HELYI SZOLGÁLTATÁS') Restart>ouj LOGOTT a HJ.
hétf. dec. 31, 2007 10:21

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:01:30, on 2007.12.30. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\WINDOWS\system32\ZoneLabs\avsys\Monitor.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\D4\D4.exe C:\Program Files\far\plugins\bcopy\bcsvc.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Program Files\Spyware Doctor\svcntaux.exe C:\Program Files\Spyware Doctor\swdsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Spyware Doctor\SDTrayApp.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\allsnap.exe C:\WINDOWS\CTHELPER.EXE C:\Program Files\ClocX\ClocX.exe C:\Program Files\D4\D4.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\utorrent.exe C:\Program Files\PeerGuardian2\pg2.exe C:\Program Files\Chameleon Clock\ChamClock.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\Program Files\Orbitdownloader\orbitnet.exe C:\Program Files\TC PowerPack\totalcmd.exe C:\WINDOWS\explorer.exe N:\féregkeresők\2007.12.29-én ajánlották\HiJackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu./ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?.home=ytie R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customi ... .yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [AllSnap] "C:\WINDOWS\allsnap.exe" O4 - HKLM\..\Run: [AsioReg] REGSVR32 /S CTASIO.DLL O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE O4 - HKLM\..\Run: [ClocX] "C:\Program Files\ClocX\ClocX.exe" O4 - HKLM\..\Run: [Dimension4] C:\Program Files\D4\D4.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] "C:\Program Files\PowerISO\PWRISOVM.EXE" O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [µTorrent] "C:\WINDOWS\utorrent.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - HKCU\..\Run: [HomeAlarm] C:\Program Files\Chameleon Clock\ChamClock.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-19\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{B78E7F7F-E74E-4834-8105-23EB471D1E82}: NameServer = 80.95.64.6 80.95.64.7 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Dimension4 - Thinking Man Software - C:\Program Files\D4\D4.exe O23 - Service: FAR Background Copy Service (FARBCopy) - Unknown owner - C:\Program Files\far\plugins\bcopy\bcsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Outpost Firewall Service (OutpostFirewall) - Unknown owner - C:\Program Files\Agnitum\Outpost Firewall\outpost.exe (file missing) O23 - Service: PctrlsInjectService - Unknown owner - C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe (file missing) O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe O23 - Service: System Guard(SpySoap) (SpySoapSysGuardService) - Unknown owner - C:\Program Files\SpySoap\SysGuard.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 8617 bytes
vas. dec. 30, 2007 23:29

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	ComboFix 07-12-21.4 - Rendszergazda 2007-12-30 22:41:14.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1250.1.1038.18.115 [GMT 1:00] Running from: N:\féregkeresők\2007.12.29-én ajánlották\ComboFix.exe . ((((((((((((((((((((((((( Files Created from 2007-11-28 to 2007-12-30 ))))))))))))))))))))))))))))))) . 2007-12-30 22:22 . 2007-12-30 22:22 60,416 --a------ C:\WINDOWS\system32\drivers\ge^fyuic.sys 2007-12-30 18:33 . 2007-12-29 21:53 130,048 --a------ C:\avenger.exe 2007-12-30 16:58 . 2007-12-29 17:56 401,720 --a------ C:\HiJackThis.exe 2007-12-27 12:55 . 2007-12-29 10:59 <DIR> d-------- C:\Program Files\Spyware Doctor 2007-12-27 12:55 . 2007-12-27 12:55 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\PC Tools 2007-12-27 12:55 . 2005-09-23 08:29 626,688 --a------ C:\WINDOWS\system32\msvcr80.dll 2007-12-27 12:55 . 2007-12-27 12:56 74,240 --a------ C:\WINDOWS\system32\drivers\iksyssec.sys 2007-12-27 12:55 . 2007-12-27 12:56 56,832 --a------ C:\WINDOWS\system32\drivers\iksysflt.sys 2007-12-27 12:55 . 2007-10-18 00:14 41,288 --a------ C:\WINDOWS\system32\drivers\ikfilesec.sys 2007-12-27 12:55 . 2007-10-18 00:16 29,000 --a------ C:\WINDOWS\system32\drivers\kcom.sys 2007-12-21 15:27 . 2007-12-21 15:27 239 --a------ C:\WINDOWS\system32\NVU001.nvu 2007-12-21 15:26 . 2003-06-05 08:00 1,431 -ra------ C:\WINDOWS\system32\nvgart.nvu 2007-12-21 15:26 . 2003-07-07 10:33 897 --------- C:\WINDOWS\system32\nvmctl.nvu 2007-12-19 21:33 . 2007-12-19 21:33 <DIR> d---s---- C:\Documents and Settings\Rendszergazda\UserData 2007-12-17 13:39 . 2004-06-25 10:47 3,377,466 --a------ C:\WINDOWS\{00000001-00000000-0000000A-00001102-00000002-100A1102}.CDF 2007-12-17 01:50 . 2007-12-28 19:41 <DIR> d-------- C:\Program Files\Replay Converter 2007-12-17 01:50 . 2007-03-04 13:55 1,936,528 --a------ C:\WINDOWS\system32\ltmm15.dll 2007-12-17 01:50 . 2007-03-04 13:55 135,168 --a------ C:\WINDOWS\system32\DSKernel2.dll 2007-12-17 01:48 . 2007-12-17 01:50 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\GetRightToGo 2007-12-17 01:44 . 2007-12-17 01:44 <DIR> d-------- C:\WINDOWS\Replay Media Catcher 2007-12-17 01:44 . 2007-12-17 13:36 <DIR> d-------- C:\Program Files\Replay Media Catcher 2007-12-14 19:41 . 2007-12-21 00:50 <DIR> d-------- C:\Program Files\KMPlayer-2.9.3.1427 2007-12-14 18:57 . 2007-12-14 18:57 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\CEZEO software 2007-12-13 17:09 . 2007-12-30 22:28 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP 2007-12-13 17:08 . 2007-12-13 17:17 <DIR> d-------- C:\Program Files\AoA MP4 Converter 2007-12-13 15:13 . 2007-12-13 15:13 <DIR> d-------- C:\Program Files\Orbitdownloader 2007-12-13 15:13 . 2007-12-13 15:13 <DIR> d-------- C:\Downloads 2007-12-13 15:13 . 2007-12-30 22:31 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\Orbit 2007-12-13 13:06 . 2007-12-13 13:08 2,634 --a------ C:\kabaré.PLC 2007-12-13 02:18 . 2007-12-13 02:18 <DIR> d-------- C:\Program Files\Makayama 2007-12-13 02:18 . 2004-11-01 12:38 57,344 --------- C:\WINDOWS\system32\XButton.ocx 2007-12-10 16:23 . 2007-12-08 23:19 <DIR> d-------- C:\Program Files\AIMP Classic 2007-12-10 03:37 . 2007-12-24 12:32 512 --a------ C:\ScanSectorLog.dat 2007-12-10 03:12 . 2007-12-27 17:01 2,082 --a------ C:\rollback.ini 2007-12-10 03:08 . 2007-12-10 03:08 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\MailFrontier 2007-12-10 02:47 . 2007-12-30 22:25 15,334,176 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat 2007-12-10 02:47 . 2007-12-30 22:25 563,744 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat 2007-12-10 02:47 . 2007-12-30 22:25 207,428 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx 2007-12-10 02:47 . 2007-12-30 22:25 52,064 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx 2007-12-10 02:40 . 2007-03-09 00:02 75,512 --a------ C:\WINDOWS\zllsputility.exe 2007-12-10 02:40 . 2004-04-27 04:40 11,264 --a------ C:\WINDOWS\system32\SpOrder.dll 2007-12-10 02:40 . 2007-12-30 22:33 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat 2007-12-10 02:39 . 2007-12-27 19:55 <DIR> d-------- C:\WINDOWS\system32\ZoneLabs 2007-12-10 02:39 . 2007-03-09 00:01 1,087,216 --a------ C:\WINDOWS\system32\zpeng24.dll 2007-12-10 02:39 . 2007-12-30 22:28 49,617 --a------ C:\WINDOWS\system32\vsconfig.xml 2007-12-10 02:37 . 2007-12-30 22:36 <DIR> d-------- C:\WINDOWS\Internet Logs 2007-12-10 02:26 . 2007-12-10 02:26 0 --a------ C:\WINDOWS\system32\Ultra.dll 2007-12-10 02:07 . 2007-12-28 20:53 <DIR> d-------- C:\Program Files\Bug Doctor 2007-12-09 00:47 . 2007-12-09 00:47 <DIR> d-------- C:\Documents and Settings\Rendszergazda\WINDOWS 2007-12-07 20:43 . 2007-12-07 20:43 <DIR> d-------- C:\Quake III Arena 2007-12-04 20:38 . 2007-12-08 09:54 <DIR> d-------- C:\Program Files\JetAudio 2007-12-04 12:05 . 2007-12-04 12:05 101 --a------ C:\WINDOWS\wininit.ini 2007-12-01 05:22 . 2007-12-01 05:22 552 --a------ C:\WINDOWS\system32\d3d8caps.dat 2007-12-01 02:43 . 2007-12-09 00:27 <DIR> d-------- C:\Program Files\Lavasoft 2007-12-01 02:43 . 2007-12-01 02:43 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard 2007-12-01 02:43 . 2007-12-01 02:43 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2007-12-01 02:31 . 2007-12-01 02:35 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2007-12-01 02:26 . 2007-12-01 02:26 <DIR> d-------- C:\Program Files\Windows Defender 2007-11-30 14:31 . 2007-11-30 14:31 <DIR> d-------- C:\Program Files\Sprintbit Software 2007-11-29 18:11 . 2007-11-29 18:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ParetoLogic 2007-11-29 18:11 . 2007-11-29 18:11 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Downloaded Installations 2007-11-29 17:36 . 2007-11-29 17:36 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ParetoLogic Anti-Spyware 2007-11-29 11:43 . 2007-11-29 11:43 <DIR> d-------- C:\WINDOWS\system32\3Planesoft 2007-11-29 11:43 . 2007-11-29 11:43 <DIR> d-------- C:\Program Files\The One Ring 3D Screensaver 2007-11-29 11:43 . 2007-11-29 11:43 <DIR> d-------- C:\Program Files\3Planesoft Screensaver Manager 2007-11-28 01:27 . 2007-12-10 03:24 18,432 --a------ C:\Documents and Settings\Rendszergazda\spydb.dat 2007-11-28 01:25 . 2007-11-28 01:25 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Sunbelt Software 2007-11-28 00:24 . 2007-11-28 00:24 <DIR> d-------- C:\JHPMultimedia 2007-11-28 00:24 . 2002-09-17 10:18 63,488 --a------ C:\WINDOWS\system32\mci32.oca 2007-11-28 00:24 . 1998-06-17 23:00 2,396 --a------ C:\WINDOWS\system32\mci32.dep 2007-11-28 00:23 . 1998-06-17 23:00 2,496 --a------ C:\WINDOWS\system32\MSSTDFMT.DEP 2007-11-27 15:14 . 2007-11-27 15:14 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\Sunbelt Software 2007-11-27 00:10 . 2007-11-27 00:10 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\Media Player Classic 2007-11-25 22:35 . 2007-12-10 08:15 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\RaimaRadio 2007-11-25 22:11 . 2007-12-10 08:18 <DIR> d-------- C:\Program Files\Counter-Strike 1.6 2007-11-24 21:19 . 2007-11-24 21:19 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\GRETECH 2007-11-24 21:18 . 2007-11-24 21:18 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\GRETECH 2007-11-24 21:17 . 2007-11-24 21:17 <DIR> d-------- C:\Program Files\GRETECH 2007-11-24 20:46 . 2007-11-24 20:50 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\Zoom Player 2007-11-23 13:26 . 2007-11-23 13:26 244 --ah----- C:\sqmnoopt06.sqm 2007-11-23 13:26 . 2007-11-23 13:26 232 --ah----- C:\sqmdata06.sqm 2007-11-23 10:45 . 2007-11-23 10:45 <DIR> d-------- C:\Program Files\Codec Pack - All In 1 2007-11-23 10:45 . 2007-12-17 01:50 737,280 --a------ C:\WINDOWS\iun6002.exe 2007-11-23 09:33 . 2007-11-23 09:33 <DIR> d-------- C:\Program Files\OpenSource Flash Video Splitter 2007-11-23 09:33 . 2007-11-23 09:33 <DIR> d-------- C:\Program Files\DScaler5 2007-11-23 09:33 . 2007-11-23 09:33 <DIR> d-------- C:\Program Files\CD Audio Reader Filter 2007-11-23 09:32 . 2007-11-23 09:32 <DIR> d-------- C:\Program Files\RealMedia 2007-11-23 09:29 . 2007-11-23 09:29 <DIR> d-------- C:\Program Files\SHOUTcast Source 2007-11-23 09:29 . 2007-11-23 09:29 <DIR> d-------- C:\Program Files\Haali 2007-11-23 09:28 . 2007-11-23 09:28 <DIR> d-------- C:\Program Files\DS-MP3 Source 2007-11-23 09:26 . 2007-11-23 09:26 <DIR> d-------- C:\Program Files\DirectVobSub 2007-11-22 14:58 . 2007-12-01 04:14 277 --a------ C:\WINDOWS\system32\drivers\fwdrv.err 2007-11-21 13:36 . 2006-08-25 06:26 95,760 -ra------ C:\WINDOWS\system32\isafeif.2 2007-11-21 13:36 . 2006-08-05 07:21 75,280 -ra------ C:\WINDOWS\system32\vetredir.2 2007-11-21 13:36 . 2006-08-25 06:26 75,280 -ra------ C:\WINDOWS\system32\isafprod.1 2007-11-21 13:09 . 2007-11-21 13:09 120,286 --a------ C:\Documents and Settings\All Users\Application Data\firstlsp.reg.dat 2007-11-20 23:52 . 2007-11-20 23:52 <DIR> d-------- C:\Program Files\sina SoftWare 2007-11-20 15:29 . 2007-11-20 15:29 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\ESET 2007-11-20 15:28 . 2007-11-20 15:28 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ESET 2007-11-20 12:56 . 2007-11-20 12:56 <DIR> d-------- C:\Program Files\Common Files\Agnitum Shared . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-12-30 21:52 --------- d-----w C:\Program Files\PeerGuardian2 2007-12-30 21:51 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\utorrent 2007-12-30 21:34 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\Skype 2007-12-28 20:09 --------- d-----w C:\Program Files\MSN Messenger 2007-12-28 18:45 --------- d-----w C:\Program Files\Winamp 2007-12-27 18:55 1,922,178 ----a-w C:\WINDOWS\Internet Logs\tvDebug.zip 2007-12-21 18:42 --------- d-----w C:\Program Files\Jewel Quest 2007-12-17 21:03 --------- d-----w C:\Program Files\FSMaxView 2007-12-12 23:40 17,045,788 ----a-w C:\WINDOWS\Internet Logs\vsmon_on_demand_2007_12_12_22_25_26_full.dmp.zip 2007-12-12 23:38 17,028,523 ----a-w C:\WINDOWS\Internet Logs\vsmon_on_demand_2007_12_12_17_42_42_full.dmp.zip 2007-12-10 12:34 16,840,914 ----a-w C:\WINDOWS\Internet Logs\vsmon_on_demand_2007_12_10_09_43_44_full.dmp.zip 2007-12-10 07:20 --------- d-----w C:\Program Files\EvilLyrics 2007-12-05 20:50 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\COWON 2007-11-30 13:04 --------- d-----w C:\Program Files\TC PowerPack 2007-11-20 11:55 --------- d--h--w C:\Program Files\InstallShield Installation Information 2007-11-19 17:38 --------- d-----w C:\Program Files\ABIT 2007-11-19 17:27 --------- d-----w C:\Program Files\uTorrent 2007-11-16 18:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype 2007-11-01 19:06 --------- d-----w C:\Program Files\Bejeweled 2 Deluxe 2007-11-01 18:34 --------- d-----w C:\Program Files\Eggsucker 2007-10-31 18:05 --------- d-----w C:\Program Files\FDRLab 2007-10-29 07:05 14 ----a-w C:\Documents and Settings\Rendszergazda\getfile.dat 2007-10-28 17:21 --------- d-----w C:\Program Files\D4 2007-09-28 17:07 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll 2007-09-28 17:05 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll 2007-09-28 17:05 739,840 ----a-w C:\WINDOWS\system32\divx.dll 2007-09-26 03:04 155,995 ----a-w C:\WINDOWS\java\Packages\U3RBR9JZ.ZIP 2007-09-04 17:56 164,352 ----a-w C:\WINDOWS\system32\unrar.dll . ((((((((((((((((((((((((((((( snapshot@2007-12-29_19.03.49,54 ))))))))))))))))))))))))))))))))))))))))) . - 2007-12-29 17:05:29 880,612 ----a-w C:\WINDOWS\system32\ZoneLabs\avsys\bases\sfdb.dat + 2007-12-30 21:26:33 880,612 ----a-w C:\WINDOWS\system32\ZoneLabs\avsys\bases\sfdb.dat - 2007-12-29 18:02:49 1,587,712 ----a-w C:\WINDOWS\system32\ZoneLabs\zlqrtdb.dat + 2007-12-30 21:42:24 1,587,712 ----a-w C:\WINDOWS\system32\ZoneLabs\zlqrtdb.dat + 2007-12-30 21:27:05 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_444.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 15:47] "DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2006-11-12 11:48] "Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2007-09-13 13:31] "µTorrent"="C:\WINDOWS\utorrent.exe" [2007-02-16 07:09] "uTorrent"="C:\Program Files\uTorrent\uTorrent.exe" [2007-10-16 12:54] "PeerGuardian"="C:\Program Files\PeerGuardian2\pg2.exe" [2005-09-18 17:40] "HomeAlarm"="C:\Program Files\Chameleon Clock\ChamClock.exe" [2003-01-10 12:22] "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 11:54] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AllSnap"="C:\WINDOWS\allsnap.exe" [2006-11-14 13:00] "AsioReg"="REGSVR32 /S CTASIO.DLL" [] "CTHelper"="CTHELPER.EXE" [2006-08-11 14:56 C:\WINDOWS\CTHELPER.EXE] "CTxfiHlp"="CTXFIHLP.EXE" [2006-08-11 14:56 C:\WINDOWS\system32\CTXFIHLP.EXE] "ClocX"="C:\Program Files\ClocX\ClocX.exe" [2007-07-26 16:43] "Dimension4"="C:\Program Files\D4\D4.exe" [2004-02-04 01:26] "PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [2007-08-07 01:05] "SoundMan"="SOUNDMAN.EXE" [2004-11-15 11:20 C:\WINDOWS\SOUNDMAN.EXE] "UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [2006-09-07 18:19] "Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2006-11-03 19:20] "ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [] "SDTray"="C:\Program Files\Spyware Doctor\SDTrayApp.exe" [2007-11-02 17:24] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-17 15:47] "DWQueuedReporting"="C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2006-10-26 18:48] C:\Documents and Settings\All Users\Start Menu\Programs\Indˇt˘pult\ Orbit.lnk - C:\Program Files\Orbitdownloader\orbitdm.exe [2007-12-13 15:13:13] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "ForceClassicControlPanel"= 1 (0x1) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoSharedDocuments"= 1 (0x1) "NoStrCmpLogical"= 1 (0x1) "ForceCopyAclwithFile"= 0 (0x0) [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoSharedDocuments"= 1 (0x1) "NoStrCmpLogical"= 1 (0x1) "ForceCopyAclwithFile"= 0 (0x0) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice] @="" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice] @="" R2 FARBCopy;FAR Background Copy Service;C:\Program Files\far\plugins\bcopy\bcsvc.exe [2004-04-01 18:05] R3 pgfilter;pgfilter;C:\Program Files\PeerGuardian2\pgfilter.sys [2005-09-18 17:02] S0 hmjbgcbk;hmjbgcbk;C:\WINDOWS\system32\drivers\dftluqet.sys [] S1 SandBox;Outpost Firewall Sandbox Driver;C:\Program Files\Agnitum\Outpost Firewall\kernel\Sandbox.SYS [] S1 VFILT;Outpost Firewall Kernel Driver;C:\Program Files\Agnitum\Outpost Firewall\kernel\FILTNT.SYS [] S2 PctrlsInjectService;PctrlsInjectService;C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe [] S2 SpySoapSysGuardService;System Guard(SpySoap);C:\Program Files\SpySoap\SysGuard.exe [] S3 ADBLOCK.DLL;Outpost Firewall PlugIn (ADBLOCK.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\ADBLOCK.DLL [] S3 ARP.DLL;Outpost Firewall PlugIn (ARP.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\ARP.DLL [] S3 CONTENT.DLL;Outpost Firewall PlugIn (CONTENT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\CONTENT.DLL [] S3 DNSCACHE.DLL;Outpost Firewall PlugIn (DNSCACHE.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\DNSCACHE.DLL [] S3 FTPFILT.DLL;Outpost Firewall PlugIn (FTPFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\FTPFILT.DLL [] S3 HTMLFILT.DLL;Outpost Firewall PlugIn (HTMLFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\HTMLFILT.DLL [] S3 HTTPFILT.DLL;Outpost Firewall PlugIn (HTTPFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\HTTPFILT.DLL [] S3 IMAPFILT.DLL;Outpost Firewall PlugIn (IMAPFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\IMAPFILT.DLL [] S3 MAILFILT.DLL;Outpost Firewall PlugIn (MAILFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\MAILFILT.DLL [] S3 NNTPFILT.DLL;Outpost Firewall PlugIn (NNTPFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\NNTPFILT.DLL [] S3 POP3FILT.DLL;Outpost Firewall PlugIn (POP3FILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\POP3FILT.DLL [] S3 PROTECT.DLL;Outpost Firewall PlugIn (PROTECT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\PROTECT.DLL [] S3 PsSdk30;PsSdk30;C:\WINDOWS\system32\Drivers\PsSdk30.drv [] S3 SBAPIFS;SBAPIFS;C:\WINDOWS\system32\drivers\sbapifs.sys [] S3 SECRET.DLL;Outpost Firewall PlugIn (SECRET.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\SECRET.DLL [] S3 SpySoapSysGuardDriver;SpySoapSysGuardDriver;C:\Program Files\SpySoap\sysGuard.sys [] Newly Created Service - PGFILTER . Contents of the 'Scheduled Tasks' folder "2007-12-30 17:31:00 C:\WINDOWS\Tasks\BugDoctorRendszergazda.job" - C:\Program Files\Bug Doctor\BugDoctor.exe "2007-12-30 21:29:25 C:\WINDOWS\Tasks\MP Scheduled Scan.job" - C:\Program Files\Windows Defender\MpCmdRun.exe "2007-12-25 17:00:01 C:\WINDOWS\Tasks\Pareto UNS.job" - C:\Program Files\Common Files\ParetoLogic\UUS\UUS.dll\Pareto_Update.exe . ************************************************************************ catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-12-30 22:52:17 Windows 5.1.2600 Szervizcsomag 2 NTFS detected NTDLL code modification: ZwClose scanning hidden processes ... scanning hidden autostart entries ... HKLM\Software\Microsoft\Windows\CurrentVersion\Run CTHelper = CTHELPER.EXE? CTxfiHlp = CTXFIHLP.EXE? scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . --------------------- DLLs Loaded Under Running Processes --------------------- PROCESS: C:\WINDOWS\explorer.exe [6.00.2900.2180] -> C:\Program Files\Unlocker\UnlockerHook.dll . Completion time: 2007-12-30 22:53:48 C:\ComboFix2.txt ... 2007-12-29 19:04 . 2007-12-01 01:42:04 --- E O F ---
vas. dec. 30, 2007 23:27

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Mint írtam sajnos nem vagyok pc guru és ezeket a progikat javarészt nem is ismertem , szóval a használatuk sem a legkönnyebb, magyarán bénáztam rendesen. Köszönöm a türelmedet. Mikor újra indított ezt dobta fel először : Logfile of The Avenger version 1, by Swandog46 Running from registry key: \Registry\Machine\System\CurrentControlSet\Services\hvagedls ***************** Script file located at: \??\C:\WINDOWS\esdtkaug.txt Script file opened successfully. Script file read successfully Backups directory opened successfully at C:\Avenger ***************** Beginning to process script file: File C:\WINDOWS\accm.exe not found! Deletion of file C:\WINDOWS\accm.exe failed! Could not process line: C:\WINDOWS\accm.exe Status: 0xc0000034 File C:\WINDOWS\acq32.exe not found! Deletion of file C:\WINDOWS\acq32.exe failed! Could not process line: C:\WINDOWS\acq32.exe Status: 0xc0000034 File C:\WINDOWS\ais32.exe not found! Deletion of file C:\WINDOWS\ais32.exe failed! Could not process line: C:\WINDOWS\ais32.exe Status: 0xc0000034 File C:\WINDOWS\alerter.exe not found! Deletion of file C:\WINDOWS\alerter.exe failed! Could not process line: C:\WINDOWS\alerter.exe Status: 0xc0000034 File C:\WINDOWS\aorvno91m.txt not found! Deletion of file C:\WINDOWS\aorvno91m.txt failed! Could not process line: C:\WINDOWS\aorvno91m.txt Status: 0xc0000034 File C:\WINDOWS\aqw.exe not found! Deletion of file C:\WINDOWS\aqw.exe failed! Could not process line: C:\WINDOWS\aqw.exe Status: 0xc0000034 File C:\WINDOWS\attcfg.tmp not found! Deletion of file C:\WINDOWS\attcfg.tmp failed! Could not process line: C:\WINDOWS\attcfg.tmp Status: 0xc0000034 File C:\WINDOWS\avistat.tmp not found! Deletion of file C:\WINDOWS\avistat.tmp failed! Could not process line: C:\WINDOWS\avistat.tmp Status: 0xc0000034 File C:\WINDOWS\b6iqdkku.scf not found! Deletion of file C:\WINDOWS\b6iqdkku.scf failed! Could not process line: C:\WINDOWS\b6iqdkku.scf Status: 0xc0000034 File C:\WINDOWS\bin32.exe not found! Deletion of file C:\WINDOWS\bin32.exe failed! Could not process line: C:\WINDOWS\bin32.exe Status: 0xc0000034 File C:\WINDOWS\brwmark.ini not found! Deletion of file C:\WINDOWS\brwmark.ini failed! Could not process line: C:\WINDOWS\brwmark.ini Status: 0xc0000034 File C:\WINDOWS\c.5.0.exe not found! Deletion of file C:\WINDOWS\c.5.0.exe failed! Could not process line: C:\WINDOWS\c.5.0.exe Status: 0xc0000034 File C:\WINDOWS\c.6.0.exe not found! Deletion of file C:\WINDOWS\c.6.0.exe failed! Could not process line: C:\WINDOWS\c.6.0.exe Status: 0xc0000034 File C:\WINDOWS\c.8.0.exe not found! Deletion of file C:\WINDOWS\c.8.0.exe failed! Could not process line: C:\WINDOWS\c.8.0.exe Status: 0xc0000034 File C:\WINDOWS\c6wsq6.reg not found! Deletion of file C:\WINDOWS\c6wsq6.reg failed! Could not process line: C:\WINDOWS\c6wsq6.reg Status: 0xc0000034 File C:\WINDOWS\cc2.exe not found! Deletion of file C:\WINDOWS\cc2.exe failed! Could not process line: C:\WINDOWS\cc2.exe Status: 0xc0000034 File C:\WINDOWS\cc3.exe not found! Deletion of file C:\WINDOWS\cc3.exe failed! Could not process line: C:\WINDOWS\cc3.exe Status: 0xc0000034 File C:\WINDOWS\cc5.exe not found! Deletion of file C:\WINDOWS\cc5.exe failed! Could not process line: C:\WINDOWS\cc5.exe Status: 0xc0000034 File C:\WINDOWS\ccsserv.exe not found! Deletion of file C:\WINDOWS\ccsserv.exe failed! Could not process line: C:\WINDOWS\ccsserv.exe Status: 0xc0000034 File C:\WINDOWS\cct2.exe not found! Deletion of file C:\WINDOWS\cct2.exe failed! Could not process line: C:\WINDOWS\cct2.exe Status: 0xc0000034 File C:\WINDOWS\cdi1okj.dll not found! Deletion of file C:\WINDOWS\cdi1okj.dll failed! Could not process line: C:\WINDOWS\cdi1okj.dll Status: 0xc0000034 File C:\WINDOWS\cesm9q.reg not found! Deletion of file C:\WINDOWS\cesm9q.reg failed! Could not process line: C:\WINDOWS\cesm9q.reg Status: 0xc0000034 File C:\WINDOWS\chat1303.exe not found! Deletion of file C:\WINDOWS\chat1303.exe failed! Could not process line: C:\WINDOWS\chat1303.exe Status: 0xc0000034 File C:\WINDOWS\chater.exe not found! Deletion of file C:\WINDOWS\chater.exe failed! Could not process line: C:\WINDOWS\chater.exe Status: 0xc0000034 File C:\WINDOWS\concfg.tmp not found! Deletion of file C:\WINDOWS\concfg.tmp failed! Could not process line: C:\WINDOWS\concfg.tmp Status: 0xc0000034 File C:\WINDOWS\cserv32.exe not found! Deletion of file C:\WINDOWS\cserv32.exe failed! Could not process line: C:\WINDOWS\cserv32.exe Status: 0xc0000034 File C:\WINDOWS\cservv32.exe not found! Deletion of file C:\WINDOWS\cservv32.exe failed! Could not process line: C:\WINDOWS\cservv32.exe Status: 0xc0000034 File C:\WINDOWS\csrcss.exe not found! Deletion of file C:\WINDOWS\csrcss.exe failed! Could not process line: C:\WINDOWS\csrcss.exe Status: 0xc0000034 File C:\WINDOWS\dbmdata.tmp not found! Deletion of file C:\WINDOWS\dbmdata.tmp failed! Could not process line: C:\WINDOWS\dbmdata.tmp Status: 0xc0000034 File C:\WINDOWS\dgf.exe not found! Deletion of file C:\WINDOWS\dgf.exe failed! Could not process line: C:\WINDOWS\dgf.exe Status: 0xc0000034 File C:\WINDOWS\dllksr32.exe not found! Deletion of file C:\WINDOWS\dllksr32.exe failed! Could not process line: C:\WINDOWS\dllksr32.exe Status: 0xc0000034 File C:\WINDOWS\dqpdroc.ini not found! Deletion of file C:\WINDOWS\dqpdroc.ini failed! Could not process line: C:\WINDOWS\dqpdroc.ini Status: 0xc0000034 File C:\WINDOWS\dskcss.exe not found! Deletion of file C:\WINDOWS\dskcss.exe failed! Could not process line: C:\WINDOWS\dskcss.exe Status: 0xc0000034 File C:\WINDOWS\eba2h6cc.dat not found! Deletion of file C:\WINDOWS\eba2h6cc.dat failed! Could not process line: C:\WINDOWS\eba2h6cc.dat Status: 0xc0000034 File C:\WINDOWS\eevmwk.reg not found! Deletion of file C:\WINDOWS\eevmwk.reg failed! Could not process line: C:\WINDOWS\eevmwk.reg Status: 0xc0000034 File C:\WINDOWS\egadata.tmp not found! Deletion of file C:\WINDOWS\egadata.tmp failed! Could not process line: C:\WINDOWS\egadata.tmp Status: 0xc0000034 File C:\WINDOWS\f3da8e.reg not found! Deletion of file C:\WINDOWS\f3da8e.reg failed! Could not process line: C:\WINDOWS\f3da8e.reg Status: 0xc0000034 File C:\WINDOWS\f8or9s.exe not found! Deletion of file C:\WINDOWS\f8or9s.exe failed! Could not process line: C:\WINDOWS\f8or9s.exe Status: 0xc0000034 File C:\WINDOWS\ferg.exe not found! Deletion of file C:\WINDOWS\ferg.exe failed! Could not process line: C:\WINDOWS\ferg.exe Status: 0xc0000034 File C:\WINDOWS\ftg71cj1qx.dat not found! Deletion of file C:\WINDOWS\ftg71cj1qx.dat failed! Could not process line: C:\WINDOWS\ftg71cj1qx.dat Status: 0xc0000034 File C:\WINDOWS\gen.exe not found! Deletion of file C:\WINDOWS\gen.exe failed! Could not process line: C:\WINDOWS\gen.exe Status: 0xc0000034 File C:\WINDOWS\hpsys32.exe not found! Deletion of file C:\WINDOWS\hpsys32.exe failed! Could not process line: C:\WINDOWS\hpsys32.exe Status: 0xc0000034 File C:\WINDOWS\hv4e05.dll not found! Deletion of file C:\WINDOWS\hv4e05.dll failed! Could not process line: C:\WINDOWS\hv4e05.dll Status: 0xc0000034 File C:\WINDOWS\hwin.exe not found! Deletion of file C:\WINDOWS\hwin.exe failed! Could not process line: C:\WINDOWS\hwin.exe Status: 0xc0000034 File C:\WINDOWS\irk.exe not found! Deletion of file C:\WINDOWS\irk.exe failed! Could not process line: C:\WINDOWS\irk.exe Status: 0xc0000034 File C:\WINDOWS\jlnvjob.exe not found! Deletion of file C:\WINDOWS\jlnvjob.exe failed! Could not process line: C:\WINDOWS\jlnvjob.exe Status: 0xc0000034 File C:\WINDOWS\md2icut9a2.dll not found! Deletion of file C:\WINDOWS\md2icut9a2.dll failed! Could not process line: C:\WINDOWS\md2icut9a2.dll Status: 0xc0000034 File C:\WINDOWS\mdt.exe not found! Deletion of file C:\WINDOWS\mdt.exe failed! Could not process line: C:\WINDOWS\mdt.exe Status: 0xc0000034 File C:\WINDOWS\metrek.exe not found! Deletion of file C:\WINDOWS\metrek.exe failed! Could not process line: C:\WINDOWS\metrek.exe Status: 0xc0000034 File C:\WINDOWS\msh32.exe not found! Deletion of file C:\WINDOWS\msh32.exe failed! Could not process line: C:\WINDOWS\msh32.exe Status: 0xc0000034 File C:\WINDOWS\msout.exe not found! Deletion of file C:\WINDOWS\msout.exe failed! Could not process line: C:\WINDOWS\msout.exe Status: 0xc0000034 File C:\WINDOWS\msserrv32.exe not found! Deletion of file C:\WINDOWS\msserrv32.exe failed! Could not process line: C:\WINDOWS\msserrv32.exe Status: 0xc0000034 File C:\WINDOWS\msserv.exe not found! Deletion of file C:\WINDOWS\msserv.exe failed! Could not process line: C:\WINDOWS\msserv.exe Status: 0xc0000034 File C:\WINDOWS\msserv32.exe not found! Deletion of file C:\WINDOWS\msserv32.exe failed! Could not process line: C:\WINDOWS\msserv32.exe Status: 0xc0000034 File C:\WINDOWS\msupdtwiz.c not found! Deletion of file C:\WINDOWS\msupdtwiz.c failed! Could not process line: C:\WINDOWS\msupdtwiz.c Status: 0xc0000034 File C:\WINDOWS\msupdtwiz.dat not found! Deletion of file C:\WINDOWS\msupdtwiz.dat failed! Could not process line: C:\WINDOWS\msupdtwiz.dat Status: 0xc0000034 File C:\WINDOWS\msupdtwiz.exe not found! Deletion of file C:\WINDOWS\msupdtwiz.exe failed! Could not process line: C:\WINDOWS\msupdtwiz.exe Status: 0xc0000034 File C:\WINDOWS\msupdtwiz.s not found! Deletion of file C:\WINDOWS\msupdtwiz.s failed! Could not process line: C:\WINDOWS\msupdtwiz.s Status: 0xc0000034 File C:\WINDOWS\msupdtwiz.z not found! Deletion of file C:\WINDOWS\msupdtwiz.z failed! Could not process line: C:\WINDOWS\msupdtwiz.z Status: 0xc0000034 File C:\WINDOWS\mswiiz32.exe not found! Deletion of file C:\WINDOWS\mswiiz32.exe failed! Could not process line: C:\WINDOWS\mswiiz32.exe Status: 0xc0000034 File C:\WINDOWS\mswiizz32.exe not found! Deletion of file C:\WINDOWS\mswiizz32.exe failed! Could not process line: C:\WINDOWS\mswiizz32.exe Status: 0xc0000034 File C:\WINDOWS\mswiz32.exe not found! Deletion of file C:\WINDOWS\mswiz32.exe failed! Could not process line: C:\WINDOWS\mswiz32.exe Status: 0xc0000034 File C:\WINDOWS\nmac32.exe not found! Deletion of file C:\WINDOWS\nmac32.exe failed! Could not process line: C:\WINDOWS\nmac32.exe Status: 0xc0000034 File C:\WINDOWS\npp32.exe not found! Deletion of file C:\WINDOWS\npp32.exe failed! Could not process line: C:\WINDOWS\npp32.exe Status: 0xc0000034 File C:\WINDOWS\osmgr.exe not found! Deletion of file C:\WINDOWS\osmgr.exe failed! Could not process line: C:\WINDOWS\osmgr.exe Status: 0xc0000034 File C:\WINDOWS\pccntl.dat not found! Deletion of file C:\WINDOWS\pccntl.dat failed! Could not process line: C:\WINDOWS\pccntl.dat Status: 0xc0000034 File C:\WINDOWS\pccntl.exe not found! Deletion of file C:\WINDOWS\pccntl.exe failed! Could not process line: C:\WINDOWS\pccntl.exe Status: 0xc0000034 File C:\WINDOWS\plg.exe not found! Deletion of file C:\WINDOWS\plg.exe failed! Could not process line: C:\WINDOWS\plg.exe Status: 0xc0000034 File C:\WINDOWS\ptr.exe not found! Deletion of file C:\WINDOWS\ptr.exe failed! Could not process line: C:\WINDOWS\ptr.exe Status: 0xc0000034 File C:\WINDOWS\reg.exe not found! Deletion of file C:\WINDOWS\reg.exe failed! Could not process line: C:\WINDOWS\reg.exe Status: 0xc0000034 File C:\WINDOWS\reggserv.exe not found! Deletion of file C:\WINDOWS\reggserv.exe failed! Could not process line: C:\WINDOWS\reggserv.exe Status: 0xc0000034 File C:\WINDOWS\sccsd32.exe not found! Deletion of file C:\WINDOWS\sccsd32.exe failed! Could not process line: C:\WINDOWS\sccsd32.exe Status: 0xc0000034 File C:\WINDOWS\sdd.exe not found! Deletion of file C:\WINDOWS\sdd.exe failed! Could not process line: C:\WINDOWS\sdd.exe Status: 0xc0000034 File C:\WINDOWS\serrv.c not found! Deletion of file C:\WINDOWS\serrv.c failed! Could not process line: C:\WINDOWS\serrv.c Status: 0xc0000034 File C:\WINDOWS\serrv.dat not found! Deletion of file C:\WINDOWS\serrv.dat failed! Could not process line: C:\WINDOWS\serrv.dat Status: 0xc0000034 File C:\WINDOWS\serrv.exe not found! Deletion of file C:\WINDOWS\serrv.exe failed! Could not process line: C:\WINDOWS\serrv.exe Status: 0xc0000034 File C:\WINDOWS\serrv.wax not found! Deletion of file C:\WINDOWS\serrv.wax failed! Could not process line: C:\WINDOWS\serrv.wax Status: 0xc0000034 File C:\WINDOWS\serv.exe not found! Deletion of file C:\WINDOWS\serv.exe failed! Could not process line: C:\WINDOWS\serv.exe Status: 0xc0000034 File C:\WINDOWS\serv.wax not found! Deletion of file C:\WINDOWS\serv.wax failed! Could not process line: C:\WINDOWS\serv.wax Status: 0xc0000034 File C:\WINDOWS\shh32.exe not found! Deletion of file C:\WINDOWS\shh32.exe failed! Could not process line: C:\WINDOWS\shh32.exe Status: 0xc0000034 File C:\WINDOWS\skcc32.exe not found! Deletion of file C:\WINDOWS\skcc32.exe failed! Could not process line: C:\WINDOWS\skcc32.exe Status: 0xc0000034 File C:\WINDOWS\skcsd32.exe not found! Deletion of file C:\WINDOWS\skcsd32.exe failed! Could not process line: C:\WINDOWS\skcsd32.exe Status: 0xc0000034 File C:\WINDOWS\skksd32.exe not found! Deletion of file C:\WINDOWS\skksd32.exe failed! Could not process line: C:\WINDOWS\skksd32.exe Status: 0xc0000034 File C:\WINDOWS\skl32.exe not found! Deletion of file C:\WINDOWS\skl32.exe failed! Could not process line: C:\WINDOWS\skl32.exe Status: 0xc0000034 File C:\WINDOWS\smm126.exe not found! Deletion of file C:\WINDOWS\smm126.exe failed! Could not process line: C:\WINDOWS\smm126.exe Status: 0xc0000034 File C:\WINDOWS\spow32.exe not found! Deletion of file C:\WINDOWS\spow32.exe failed! Could not process line: C:\WINDOWS\spow32.exe Status: 0xc0000034 File C:\WINDOWS\sqhost.c not found! Deletion of file C:\WINDOWS\sqhost.c failed! Could not process line: C:\WINDOWS\sqhost.c Status: 0xc0000034 File C:\WINDOWS\sqhost.dat not found! Deletion of file C:\WINDOWS\sqhost.dat failed! Could not process line: C:\WINDOWS\sqhost.dat Status: 0xc0000034 File C:\WINDOWS\sqhost.exe not found! Deletion of file C:\WINDOWS\sqhost.exe failed! Could not process line: C:\WINDOWS\sqhost.exe Status: 0xc0000034 File C:\WINDOWS\sqhost.s not found! Deletion of file C:\WINDOWS\sqhost.s failed! Could not process line: C:\WINDOWS\sqhost.s Status: 0xc0000034 File C:\WINDOWS\sqhost.wax not found! Deletion of file C:\WINDOWS\sqhost.wax failed! Could not process line: C:\WINDOWS\sqhost.wax Status: 0xc0000034 File C:\WINDOWS\sqhost.z not found! Deletion of file C:\WINDOWS\sqhost.z failed! Could not process line: C:\WINDOWS\sqhost.z Status: 0xc0000034 File C:\WINDOWS\sscrs.exe not found! Deletion of file C:\WINDOWS\sscrs.exe failed! Could not process line: C:\WINDOWS\sscrs.exe Status: 0xc0000034 File C:\WINDOWS\sserrvv.c not found! Deletion of file C:\WINDOWS\sserrvv.c failed! Could not process line: C:\WINDOWS\sserrvv.c Status: 0xc0000034 File C:\WINDOWS\sserrvv.exe not found! Deletion of file C:\WINDOWS\sserrvv.exe failed! Could not process line: C:\WINDOWS\sserrvv.exe Status: 0xc0000034 File C:\WINDOWS\sserrvv.s not found! Deletion of file C:\WINDOWS\sserrvv.s failed! Could not process line: C:\WINDOWS\sserrvv.s Status: 0xc0000034 File C:\WINDOWS\sserrvv.wax not found! Deletion of file C:\WINDOWS\sserrvv.wax failed! Could not process line: C:\WINDOWS\sserrvv.wax Status: 0xc0000034 File C:\WINDOWS\sserrvv.z not found! Deletion of file C:\WINDOWS\sserrvv.z failed! Could not process line: C:\WINDOWS\sserrvv.z Status: 0xc0000034 File C:\WINDOWS\stk71.exe not found! Deletion of file C:\WINDOWS\stk71.exe failed! Could not process line: C:\WINDOWS\stk71.exe Status: 0xc0000034 File C:\WINDOWS\stm.exe not found! Deletion of file C:\WINDOWS\stm.exe failed! Could not process line: C:\WINDOWS\stm.exe Status: 0xc0000034 File C:\WINDOWS\svccc32.exe not found! Deletion of file C:\WINDOWS\svccc32.exe failed! Could not process line: C:\WINDOWS\svccc32.exe Status: 0xc0000034 File C:\WINDOWS\svcsr.exe not found! Deletion of file C:\WINDOWS\svcsr.exe failed! Could not process line: C:\WINDOWS\svcsr.exe Status: 0xc0000034 File C:\WINDOWS\sygw1403.exe not found! Deletion of file C:\WINDOWS\sygw1403.exe failed! Could not process line: C:\WINDOWS\sygw1403.exe Status: 0xc0000034 File C:\WINDOWS\sysc10trg.exe not found! Deletion of file C:\WINDOWS\sysc10trg.exe failed! Could not process line: C:\WINDOWS\sysc10trg.exe Status: 0xc0000034 File C:\WINDOWS\system32\0L2Duyu.dll not found! Deletion of file C:\WINDOWS\system32\0L2Duyu.dll failed! Could not process line: C:\WINDOWS\system32\0L2Duyu.dll Status: 0xc0000034 File C:\WINDOWS\system32\1.tmp not found! Deletion of file C:\WINDOWS\system32\1.tmp failed! Could not process line: C:\WINDOWS\system32\1.tmp Status: 0xc0000034 File C:\WINDOWS\system32\11.tmp not found! Deletion of file C:\WINDOWS\system32\11.tmp failed! Could not process line: C:\WINDOWS\system32\11.tmp Status: 0xc0000034 File C:\WINDOWS\system32\8fmxKUI4P7.dll not found! Deletion of file C:\WINDOWS\system32\8fmxKUI4P7.dll failed! Could not process line: C:\WINDOWS\system32\8fmxKUI4P7.dll Status: 0xc0000034 File C:\WINDOWS\system32\aclekern.dll not found! Deletion of file C:\WINDOWS\system32\aclekern.dll failed! Could not process line: C:\WINDOWS\system32\aclekern.dll Status: 0xc0000034 File C:\WINDOWS\system32\actidmoc.exe not found! Deletion of file C:\WINDOWS\system32\actidmoc.exe failed! Could not process line: C:\WINDOWS\system32\actidmoc.exe Status: 0xc0000034 File C:\WINDOWS\system32\admewinr.dll not found! Deletion of file C:\WINDOWS\system32\admewinr.dll failed! Could not process line: C:\WINDOWS\system32\admewinr.dll Status: 0xc0000034 File C:\WINDOWS\system32\admewinr.exe not found! Deletion of file C:\WINDOWS\system32\admewinr.exe failed! Could not process line: C:\WINDOWS\system32\admewinr.exe Status: 0xc0000034 File C:\WINDOWS\system32\adpticmp.exe not found! Deletion of file C:\WINDOWS\system32\adpticmp.exe failed! Could not process line: C:\WINDOWS\system32\adpticmp.exe Status: 0xc0000034 File C:\WINDOWS\system32\advacfgb.dll not found! Deletion of file C:\WINDOWS\system32\advacfgb.dll failed! Could not process line: C:\WINDOWS\system32\advacfgb.dll Status: 0xc0000034 File C:\WINDOWS\system32\advacfgb.exe not found! Deletion of file C:\WINDOWS\system32\advacfgb.exe failed! Could not process line: C:\WINDOWS\system32\advacfgb.exe Status: 0xc0000034 File C:\WINDOWS\system32\AgWP4s4073.dll not found! Deletion of file C:\WINDOWS\system32\AgWP4s4073.dll failed! Could not process line: C:\WINDOWS\system32\AgWP4s4073.dll Status: 0xc0000034 File C:\WINDOWS\system32\alerter.exe not found! Deletion of file C:\WINDOWS\system32\alerter.exe failed! Could not process line: C:\WINDOWS\system32\alerter.exe Status: 0xc0000034 File C:\WINDOWS\system32\alrsbatt.dll not found! Deletion of file C:\WINDOWS\system32\alrsbatt.dll failed! Could not process line: C:\WINDOWS\system32\alrsbatt.dll Status: 0xc0000034 File C:\WINDOWS\system32\amcconf.exe not found! Deletion of file C:\WINDOWS\system32\amcconf.exe failed! Could not process line: C:\WINDOWS\system32\amcconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\appconf.exe not found! Deletion of file C:\WINDOWS\system32\appconf.exe failed! Could not process line: C:\WINDOWS\system32\appconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\appmgr32.dll not found! Deletion of file C:\WINDOWS\system32\appmgr32.dll failed! Could not process line: C:\WINDOWS\system32\appmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\appstat.dll not found! Deletion of file C:\WINDOWS\system32\appstat.dll failed! Could not process line: C:\WINDOWS\system32\appstat.dll Status: 0xc0000034 File C:\WINDOWS\system32\asr.exe not found! Deletion of file C:\WINDOWS\system32\asr.exe failed! Could not process line: C:\WINDOWS\system32\asr.exe Status: 0xc0000034 File C:\WINDOWS\system32\atkcadpt.dll not found! Deletion of file C:\WINDOWS\system32\atkcadpt.dll failed! Could not process line: C:\WINDOWS\system32\atkcadpt.dll Status: 0xc0000034 File C:\WINDOWS\system32\atkcadpt.exe not found! Deletion of file C:\WINDOWS\system32\atkcadpt.exe failed! Could not process line: C:\WINDOWS\system32\atkcadpt.exe Status: 0xc0000034 File C:\WINDOWS\system32\atmconf.exe not found! Deletion of file C:\WINDOWS\system32\atmconf.exe failed! Could not process line: C:\WINDOWS\system32\atmconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\atmfmsra.dll not found! Deletion of file C:\WINDOWS\system32\atmfmsra.dll failed! Could not process line: C:\WINDOWS\system32\atmfmsra.dll Status: 0xc0000034 File C:\WINDOWS\system32\atmfmsra.exe not found! Deletion of file C:\WINDOWS\system32\atmfmsra.exe failed! Could not process line: C:\WINDOWS\system32\atmfmsra.exe Status: 0xc0000034 File C:\WINDOWS\system32\atmprf32.dll not found! Deletion of file C:\WINDOWS\system32\atmprf32.dll failed! Could not process line: C:\WINDOWS\system32\atmprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\atmstat.dll not found! Deletion of file C:\WINDOWS\system32\atmstat.dll failed! Could not process line: C:\WINDOWS\system32\atmstat.dll Status: 0xc0000034 File C:\WINDOWS\system32\atrconf.exe not found! Deletion of file C:\WINDOWS\system32\atrconf.exe failed! Could not process line: C:\WINDOWS\system32\atrconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\attmgr32.dll not found! Deletion of file C:\WINDOWS\system32\attmgr32.dll failed! Could not process line: C:\WINDOWS\system32\attmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\attperf.exe not found! Deletion of file C:\WINDOWS\system32\attperf.exe failed! Could not process line: C:\WINDOWS\system32\attperf.exe Status: 0xc0000034 File C:\WINDOWS\system32\attprf32.dll not found! Deletion of file C:\WINDOWS\system32\attprf32.dll failed! Could not process line: C:\WINDOWS\system32\attprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\attstat.dll not found! Deletion of file C:\WINDOWS\system32\attstat.dll failed! Could not process line: C:\WINDOWS\system32\attstat.dll Status: 0xc0000034 File C:\WINDOWS\system32\au3su2ck.dll not found! Deletion of file C:\WINDOWS\system32\au3su2ck.dll failed! Could not process line: C:\WINDOWS\system32\au3su2ck.dll Status: 0xc0000034 File C:\WINDOWS\system32\audconf.exe not found! Deletion of file C:\WINDOWS\system32\audconf.exe failed! Could not process line: C:\WINDOWS\system32\audconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\audmgr32.dll not found! Deletion of file C:\WINDOWS\system32\audmgr32.dll failed! Could not process line: C:\WINDOWS\system32\audmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\audperf.exe not found! Deletion of file C:\WINDOWS\system32\audperf.exe failed! Could not process line: C:\WINDOWS\system32\audperf.exe Status: 0xc0000034 File C:\WINDOWS\system32\audprf32.dll not found! Deletion of file C:\WINDOWS\system32\audprf32.dll failed! Could not process line: C:\WINDOWS\system32\audprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\audstat.dll not found! Deletion of file C:\WINDOWS\system32\audstat.dll failed! Could not process line: C:\WINDOWS\system32\audstat.dll Status: 0xc0000034 File C:\WINDOWS\system32\authcomr.dll not found! Deletion of file C:\WINDOWS\system32\authcomr.dll failed! Could not process line: C:\WINDOWS\system32\authcomr.dll Status: 0xc0000034 File C:\WINDOWS\system32\autoplus.dll not found! Deletion of file C:\WINDOWS\system32\autoplus.dll failed! Could not process line: C:\WINDOWS\system32\autoplus.dll Status: 0xc0000034 File C:\WINDOWS\system32\autoplus.exe not found! Deletion of file C:\WINDOWS\system32\autoplus.exe failed! Could not process line: C:\WINDOWS\system32\autoplus.exe Status: 0xc0000034 File C:\WINDOWS\system32\autowinn.dll not found! Deletion of file C:\WINDOWS\system32\autowinn.dll failed! Could not process line: C:\WINDOWS\system32\autowinn.dll Status: 0xc0000034 File C:\WINDOWS\system32\autowinn.exe not found! Deletion of file C:\WINDOWS\system32\autowinn.exe failed! Could not process line: C:\WINDOWS\system32\autowinn.exe Status: 0xc0000034 File C:\WINDOWS\system32\bg2ekx3oox.exe not found! Deletion of file C:\WINDOWS\system32\bg2ekx3oox.exe failed! Could not process line: C:\WINDOWS\system32\bg2ekx3oox.exe Status: 0xc0000034 File C:\WINDOWS\system32\bopmgr32.dll not found! Deletion of file C:\WINDOWS\system32\bopmgr32.dll failed! Could not process line: C:\WINDOWS\system32\bopmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\brwconf.exe not found! Deletion of file C:\WINDOWS\system32\brwconf.exe failed! Could not process line: C:\WINDOWS\system32\brwconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\brwmgr32.dll not found! Deletion of file C:\WINDOWS\system32\brwmgr32.dll failed! Could not process line: C:\WINDOWS\system32\brwmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\brwperf.exe not found! Deletion of file C:\WINDOWS\system32\brwperf.exe failed! Could not process line: C:\WINDOWS\system32\brwperf.exe Status: 0xc0000034 File C:\WINDOWS\system32\brwprf32.dll not found! Deletion of file C:\WINDOWS\system32\brwprf32.dll failed! Could not process line: C:\WINDOWS\system32\brwprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\brwstat.dll not found! Deletion of file C:\WINDOWS\system32\brwstat.dll failed! Could not process line: C:\WINDOWS\system32\brwstat.dll Status: 0xc0000034 File C:\WINDOWS\system32\bthcrdpw.dll not found! Deletion of file C:\WINDOWS\system32\bthcrdpw.dll failed! Could not process line: C:\WINDOWS\system32\bthcrdpw.dll Status: 0xc0000034 File C:\WINDOWS\system32\btparasd.dll not found! Deletion of file C:\WINDOWS\system32\btparasd.dll failed! Could not process line: C:\WINDOWS\system32\btparasd.dll Status: 0xc0000034 File C:\WINDOWS\system32\c.7.0.exe not found! Deletion of file C:\WINDOWS\system32\c.7.0.exe failed! Could not process line: C:\WINDOWS\system32\c.7.0.exe Status: 0xc0000034 File C:\WINDOWS\system32\c.8.0.exe not found! Deletion of file C:\WINDOWS\system32\c.8.0.exe failed! Could not process line: C:\WINDOWS\system32\c.8.0.exe Status: 0xc0000034 File C:\WINDOWS\system32\ccfgcscd.dll not found! Deletion of file C:\WINDOWS\system32\ccfgcscd.dll failed! Could not process line: C:\WINDOWS\system32\ccfgcscd.dll Status: 0xc0000034 File C:\WINDOWS\system32\ccfgcscd.exe not found! Deletion of file C:\WINDOWS\system32\ccfgcscd.exe failed! Could not process line: C:\WINDOWS\system32\ccfgcscd.exe Status: 0xc0000034 File C:\WINDOWS\system32\ccfgwshb.dll not found! Deletion of file C:\WINDOWS\system32\ccfgwshb.dll failed! Could not process line: C:\WINDOWS\system32\ccfgwshb.dll Status: 0xc0000034 File C:\WINDOWS\system32\cdmovirt.dll not found! Deletion of file C:\WINDOWS\system32\cdmovirt.dll failed! Could not process line: C:\WINDOWS\system32\cdmovirt.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgbphot.exe not found! Deletion of file C:\WINDOWS\system32\cfgbphot.exe failed! Could not process line: C:\WINDOWS\system32\cfgbphot.exe Status: 0xc0000034 File C:\WINDOWS\system32\cfgcrs.dll not found! Deletion of file C:\WINDOWS\system32\cfgcrs.dll failed! Could not process line: C:\WINDOWS\system32\cfgcrs.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgd3d.dll not found! Deletion of file C:\WINDOWS\system32\cfgd3d.dll failed! Could not process line: C:\WINDOWS\system32\cfgd3d.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgdei.dll not found! Deletion of file C:\WINDOWS\system32\cfgdei.dll failed! Could not process line: C:\WINDOWS\system32\cfgdei.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgdsk.dll not found! Deletion of file C:\WINDOWS\system32\cfgdsk.dll failed! Could not process line: C:\WINDOWS\system32\cfgdsk.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgdss.dll not found! Deletion of file C:\WINDOWS\system32\cfgdss.dll failed! Could not process line: C:\WINDOWS\system32\cfgdss.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgdxt.dll not found! Deletion of file C:\WINDOWS\system32\cfgdxt.dll failed! Could not process line: C:\WINDOWS\system32\cfgdxt.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgfsd.dll not found! Deletion of file C:\WINDOWS\system32\cfgfsd.dll failed! Could not process line: C:\WINDOWS\system32\cfgfsd.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgisr.dll not found! Deletion of file C:\WINDOWS\system32\cfgisr.dll failed! Could not process line: C:\WINDOWS\system32\cfgisr.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgmmprm.dll not found! Deletion of file C:\WINDOWS\system32\cfgmmprm.dll failed! Could not process line: C:\WINDOWS\system32\cfgmmprm.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgmplus.dll not found! Deletion of file C:\WINDOWS\system32\cfgmplus.dll failed! Could not process line: C:\WINDOWS\system32\cfgmplus.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgmquer.dll not found! Deletion of file C:\WINDOWS\system32\cfgmquer.dll failed! Could not process line: C:\WINDOWS\system32\cfgmquer.dll Status: 0xc0000034 File C:\WINDOWS\system32\cfgmwmid.exe not found! Deletion of file C:\WINDOWS\system32\cfgmwmid.exe failed! Could not process line: C:\WINDOWS\system32\cfgmwmid.exe Status: 0xc0000034 File C:\WINDOWS\system32\clicsaml.dll not found! Deletion of file C:\WINDOWS\system32\clicsaml.dll failed! Could not process line: C:\WINDOWS\system32\clicsaml.dll Status: 0xc0000034 File C:\WINDOWS\system32\clicsaml.exe not found! Deletion of file C:\WINDOWS\system32\clicsaml.exe failed! Could not process line: C:\WINDOWS\system32\clicsaml.exe Status: 0xc0000034 File C:\WINDOWS\system32\cnbjiprt.dll not found! Deletion of file C:\WINDOWS\system32\cnbjiprt.dll failed! Could not process line: C:\WINDOWS\system32\cnbjiprt.dll Status: 0xc0000034 File C:\WINDOWS\system32\cnnperf.exe not found! Deletion of file C:\WINDOWS\system32\cnnperf.exe failed! Could not process line: C:\WINDOWS\system32\cnnperf.exe Status: 0xc0000034 File C:\WINDOWS\system32\cnnprf32.dll not found! Deletion of file C:\WINDOWS\system32\cnnprf32.dll failed! Could not process line: C:\WINDOWS\system32\cnnprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\comdavwa.dll not found! Deletion of file C:\WINDOWS\system32\comdavwa.dll failed! Could not process line: C:\WINDOWS\system32\comdavwa.dll Status: 0xc0000034 File C:\WINDOWS\system32\comrufat.dll not found! Deletion of file C:\WINDOWS\system32\comrufat.dll failed! Could not process line: C:\WINDOWS\system32\comrufat.dll Status: 0xc0000034 File C:\WINDOWS\system32\con321.dll not found! Deletion of file C:\WINDOWS\system32\con321.dll failed! Could not process line: C:\WINDOWS\system32\con321.dll Status: 0xc0000034 File C:\WINDOWS\system32\con321.exe not found! Deletion of file C:\WINDOWS\system32\con321.exe failed! Could not process line: C:\WINDOWS\system32\con321.exe Status: 0xc0000034 File C:\WINDOWS\system32\conf32.exe not found! Deletion of file C:\WINDOWS\system32\conf32.exe failed! Could not process line: C:\WINDOWS\system32\conf32.exe Status: 0xc0000034 File C:\WINDOWS\system32\confapp.dll not found! Deletion of file C:\WINDOWS\system32\confapp.dll failed! Could not process line: C:\WINDOWS\system32\confapp.dll Status: 0xc0000034 File C:\WINDOWS\system32\confatm.dll not found! Deletion of file C:\WINDOWS\system32\confatm.dll failed! Could not process line: C:\WINDOWS\system32\confatm.dll Status: 0xc0000034 File C:\WINDOWS\system32\confatt.dll not found! Deletion of file C:\WINDOWS\system32\confatt.dll failed! Could not process line: C:\WINDOWS\system32\confatt.dll Status: 0xc0000034 File C:\WINDOWS\system32\confaud.dll not found! Deletion of file C:\WINDOWS\system32\confaud.dll failed! Could not process line: C:\WINDOWS\system32\confaud.dll Status: 0xc0000034 File C:\WINDOWS\system32\confbrw.dll not found! Deletion of file C:\WINDOWS\system32\confbrw.dll failed! Could not process line: C:\WINDOWS\system32\confbrw.dll Status: 0xc0000034 File C:\WINDOWS\system32\confcon.dll not found! Deletion of file C:\WINDOWS\system32\confcon.dll failed! Could not process line: C:\WINDOWS\system32\confcon.dll Status: 0xc0000034 File C:\WINDOWS\system32\confdrv.dll not found! Deletion of file C:\WINDOWS\system32\confdrv.dll failed! Could not process line: C:\WINDOWS\system32\confdrv.dll Status: 0xc0000034 File C:\WINDOWS\system32\confega.dll not found! Deletion of file C:\WINDOWS\system32\confega.dll failed! Could not process line: C:\WINDOWS\system32\confega.dll Status: 0xc0000034 File C:\WINDOWS\system32\confifc.dll not found! Deletion of file C:\WINDOWS\system32\confifc.dll failed! Could not process line: C:\WINDOWS\system32\confifc.dll Status: 0xc0000034 File C:\WINDOWS\system32\confjfg.dll not found! Deletion of file C:\WINDOWS\system32\confjfg.dll failed! Could not process line: C:\WINDOWS\system32\confjfg.dll Status: 0xc0000034 File C:\WINDOWS\system32\confjpg.dll not found! Deletion of file C:\WINDOWS\system32\confjpg.dll failed! Could not process line: C:\WINDOWS\system32\confjpg.dll Status: 0xc0000034 File C:\WINDOWS\system32\confnss.dll not found! Deletion of file C:\WINDOWS\system32\confnss.dll failed! Could not process line: C:\WINDOWS\system32\confnss.dll Status: 0xc0000034 File C:\WINDOWS\system32\confnxs.dll not found! Deletion of file C:\WINDOWS\system32\confnxs.dll failed! Could not process line: C:\WINDOWS\system32\confnxs.dll Status: 0xc0000034 File C:\WINDOWS\system32\confnxx.dll not found! Deletion of file C:\WINDOWS\system32\confnxx.dll failed! Could not process line: C:\WINDOWS\system32\confnxx.dll Status: 0xc0000034 File C:\WINDOWS\SYSTEM32\confqas.dll not found! Deletion of file C:\WINDOWS\SYSTEM32\confqas.dll failed! Could not process line: C:\WINDOWS\SYSTEM32\confqas.dll Status: 0xc0000034 File C:\WINDOWS\system32\confvad.dll not found! Deletion of file C:\WINDOWS\system32\confvad.dll failed! Could not process line: C:\WINDOWS\system32\confvad.dll Status: 0xc0000034 File C:\WINDOWS\system32\confwmv.dll not found! Deletion of file C:\WINDOWS\system32\confwmv.dll failed! Could not process line: C:\WINDOWS\system32\confwmv.dll Status: 0xc0000034 File C:\WINDOWS\system32\confxfs.dll not found! Deletion of file C:\WINDOWS\system32\confxfs.dll failed! Could not process line: C:\WINDOWS\system32\confxfs.dll Status: 0xc0000034 File C:\WINDOWS\system32\confxxn.dll not found! Deletion of file C:\WINDOWS\system32\confxxn.dll failed! Could not process line: C:\WINDOWS\system32\confxxn.dll Status: 0xc0000034 File C:\WINDOWS\system32\confzxc.dll not found! Deletion of file C:\WINDOWS\system32\confzxc.dll failed! Could not process line: C:\WINDOWS\system32\confzxc.dll Status: 0xc0000034 File C:\WINDOWS\system32\conmgr32.dll not found! Deletion of file C:\WINDOWS\system32\conmgr32.dll failed! Could not process line: C:\WINDOWS\system32\conmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\conperf.exe not found! Deletion of file C:\WINDOWS\system32\conperf.exe failed! Could not process line: C:\WINDOWS\system32\conperf.exe Status: 0xc0000034 File C:\WINDOWS\system32\conprf32.dll not found! Deletion of file C:\WINDOWS\system32\conprf32.dll failed! Could not process line: C:\WINDOWS\system32\conprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\constat.dll not found! Deletion of file C:\WINDOWS\system32\constat.dll failed! Could not process line: C:\WINDOWS\system32\constat.dll Status: 0xc0000034 File C:\WINDOWS\system32\cp8xpqj.dll not found! Deletion of file C:\WINDOWS\system32\cp8xpqj.dll failed! Could not process line: C:\WINDOWS\system32\cp8xpqj.dll Status: 0xc0000034 File C:\WINDOWS\system32\creconf.exe not found! Deletion of file C:\WINDOWS\system32\creconf.exe failed! Could not process line: C:\WINDOWS\system32\creconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\crsconf.exe not found! Deletion of file C:\WINDOWS\system32\crsconf.exe failed! Could not process line: C:\WINDOWS\system32\crsconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\crslc.exe not found! Deletion of file C:\WINDOWS\system32\crslc.exe failed! Could not process line: C:\WINDOWS\system32\crslc.exe Status: 0xc0000034 File C:\WINDOWS\system32\crypds16.dll not found! Deletion of file C:\WINDOWS\system32\crypds16.dll failed! Could not process line: C:\WINDOWS\system32\crypds16.dll Status: 0xc0000034 File C:\WINDOWS\system32\crypmapi.dll not found! Deletion of file C:\WINDOWS\system32\crypmapi.dll failed! Could not process line: C:\WINDOWS\system32\crypmapi.dll Status: 0xc0000034 File C:\WINDOWS\system32\crypmapi.exe not found! Deletion of file C:\WINDOWS\system32\crypmapi.exe failed! Could not process line: C:\WINDOWS\system32\crypmapi.exe Status: 0xc0000034 File C:\WINDOWS\system32\cssewmpd.exe not found! Deletion of file C:\WINDOWS\system32\cssewmpd.exe failed! Could not process line: C:\WINDOWS\system32\cssewmpd.exe Status: 0xc0000034 File C:\WINDOWS\system32\ctl3pack.dll not found! Deletion of file C:\WINDOWS\system32\ctl3pack.dll failed! Could not process line: C:\WINDOWS\system32\ctl3pack.dll Status: 0xc0000034 File C:\WINDOWS\System32\ctl3pack.exe not found! Deletion of file C:\WINDOWS\System32\ctl3pack.exe failed! Could not process line: C:\WINDOWS\System32\ctl3pack.exe Status: 0xc0000034 File C:\WINDOWS\system32\dcon321.dll not found! Deletion of file C:\WINDOWS\system32\dcon321.dll failed! Could not process line: C:\WINDOWS\system32\dcon321.dll Status: 0xc0000034 File C:\WINDOWS\system32\decconf.exe not found! Deletion of file C:\WINDOWS\system32\decconf.exe failed! Could not process line: C:\WINDOWS\system32\decconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\deiconf.exe not found! Deletion of file C:\WINDOWS\system32\deiconf.exe failed! Could not process line: C:\WINDOWS\system32\deiconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\deiprf32.dll not found! Deletion of file C:\WINDOWS\system32\deiprf32.dll failed! Could not process line: C:\WINDOWS\system32\deiprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\deiprov.exe not found! Deletion of file C:\WINDOWS\system32\deiprov.exe failed! Could not process line: C:\WINDOWS\system32\deiprov.exe Status: 0xc0000034 File C:\WINDOWS\system32\deskmcd3.dll not found! Deletion of file C:\WINDOWS\system32\deskmcd3.dll failed! Could not process line: C:\WINDOWS\system32\deskmcd3.dll Status: 0xc0000034 File C:\WINDOWS\system32\dfssrasc.dll not found! Deletion of file C:\WINDOWS\system32\dfssrasc.dll failed! Could not process line: C:\WINDOWS\system32\dfssrasc.dll Status: 0xc0000034 File C:\WINDOWS\system32\dfssrasc.exe not found! Deletion of file C:\WINDOWS\system32\dfssrasc.exe failed! Could not process line: C:\WINDOWS\system32\dfssrasc.exe Status: 0xc0000034 File C:\WINDOWS\system32\dhcpkbds.exe not found! Deletion of file C:\WINDOWS\system32\dhcpkbds.exe failed! Could not process line: C:\WINDOWS\system32\dhcpkbds.exe Status: 0xc0000034 File C:\WINDOWS\system32\diagamc.dll not found! Deletion of file C:\WINDOWS\system32\diagamc.dll failed! Could not process line: C:\WINDOWS\system32\diagamc.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagcre.dll not found! Deletion of file C:\WINDOWS\system32\diagcre.dll failed! Could not process line: C:\WINDOWS\system32\diagcre.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagcrs.dll not found! Deletion of file C:\WINDOWS\system32\diagcrs.dll failed! Could not process line: C:\WINDOWS\system32\diagcrs.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagd3d.dll not found! Deletion of file C:\WINDOWS\system32\diagd3d.dll failed! Could not process line: C:\WINDOWS\system32\diagd3d.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagdei.dll not found! Deletion of file C:\WINDOWS\system32\diagdei.dll failed! Could not process line: C:\WINDOWS\system32\diagdei.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagdsk.dll not found! Deletion of file C:\WINDOWS\system32\diagdsk.dll failed! Could not process line: C:\WINDOWS\system32\diagdsk.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagdss.dll not found! Deletion of file C:\WINDOWS\system32\diagdss.dll failed! Could not process line: C:\WINDOWS\system32\diagdss.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagdxt.dll not found! Deletion of file C:\WINDOWS\system32\diagdxt.dll failed! Could not process line: C:\WINDOWS\system32\diagdxt.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagfsd.dll not found! Deletion of file C:\WINDOWS\system32\diagfsd.dll failed! Could not process line: C:\WINDOWS\system32\diagfsd.dll Status: 0xc0000034 File C:\WINDOWS\system32\diagisr.dll not found! Deletion of file C:\WINDOWS\system32\diagisr.dll failed! Could not process line: C:\WINDOWS\system32\diagisr.dll Status: 0xc0000034 File C:\WINDOWS\system32\dic.exe not found! Deletion of file C:\WINDOWS\system32\dic.exe failed! Could not process line: C:\WINDOWS\system32\dic.exe Status: 0xc0000034 File C:\WINDOWS\system32\dmdsrasp.dll not found! Deletion of file C:\WINDOWS\system32\dmdsrasp.dll failed! Could not process line: C:\WINDOWS\system32\dmdsrasp.dll Status: 0xc0000034 File C:\WINDOWS\system32\dmimmdt2.exe not found! Deletion of file C:\WINDOWS\system32\dmimmdt2.exe failed! Could not process line: C:\WINDOWS\system32\dmimmdt2.exe Status: 0xc0000034 File C:\WINDOWS\system32\dmimmsss.dll not found! Deletion of file C:\WINDOWS\system32\dmimmsss.dll failed! Could not process line: C:\WINDOWS\system32\dmimmsss.dll Status: 0xc0000034 File C:\WINDOWS\System32\dmimmsss.exe not found! Deletion of file C:\WINDOWS\System32\dmimmsss.exe failed! Could not process line: C:\WINDOWS\System32\dmimmsss.exe Status: 0xc0000034 File C:\WINDOWS\system32\dmimtsap.dll not found! Deletion of file C:\WINDOWS\system32\dmimtsap.dll failed! Could not process line: C:\WINDOWS\system32\dmimtsap.dll Status: 0xc0000034 File C:\WINDOWS\system32\dmimtsap.exe not found! Deletion of file C:\WINDOWS\system32\dmimtsap.exe failed! Could not process line: C:\WINDOWS\system32\dmimtsap.exe Status: 0xc0000034 File C:\WINDOWS\system32\dminbtpa.exe not found! Deletion of file C:\WINDOWS\system32\dminbtpa.exe failed! Could not process line: C:\WINDOWS\system32\dminbtpa.exe Status: 0xc0000034 File C:\WINDOWS\system32\dmsemf32.dll not found! Deletion of file C:\WINDOWS\system32\dmsemf32.dll failed! Could not process line: C:\WINDOWS\system32\dmsemf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\dmsydpla.dll not found! Deletion of file C:\WINDOWS\system32\dmsydpla.dll failed! Could not process line: C:\WINDOWS\system32\dmsydpla.dll Status: 0xc0000034 File C:\WINDOWS\system32\dmusmori.dll not found! Deletion of file C:\WINDOWS\system32\dmusmori.dll failed! Could not process line: C:\WINDOWS\system32\dmusmori.dll Status: 0xc0000034 File C:\WINDOWS\system32\docpfram.dll not found! Deletion of file C:\WINDOWS\system32\docpfram.dll failed! Could not process line: C:\WINDOWS\system32\docpfram.dll Status: 0xc0000034 File C:\WINDOWS\system32\dpl1npwm.dll not found! Deletion of file C:\WINDOWS\system32\dpl1npwm.dll failed! Could not process line: C:\WINDOWS\system32\dpl1npwm.dll Status: 0xc0000034 File C:\WINDOWS\system32\dpugmswe.dll not found! Deletion of file C:\WINDOWS\system32\dpugmswe.dll failed! Could not process line: C:\WINDOWS\system32\dpugmswe.dll Status: 0xc0000034 File C:\WINDOWS\system32\dpvacdfv.dll not found! Deletion of file C:\WINDOWS\system32\dpvacdfv.dll failed! Could not process line: C:\WINDOWS\system32\dpvacdfv.dll Status: 0xc0000034 File C:\WINDOWS\system32\dpwswave.exe not found! Deletion of file C:\WINDOWS\system32\dpwswave.exe failed! Could not process line: C:\WINDOWS\system32\dpwswave.exe Status: 0xc0000034 File C:\WINDOWS\system32\drmvndde.dll not found! Deletion of file C:\WINDOWS\system32\drmvndde.dll failed! Could not process line: C:\WINDOWS\system32\drmvndde.dll Status: 0xc0000034 File C:\WINDOWS\system32\drmvndde.exe not found! Deletion of file C:\WINDOWS\system32\drmvndde.exe failed! Could not process line: C:\WINDOWS\system32\drmvndde.exe Status: 0xc0000034 File C:\WINDOWS\system32\drvconf.exe not found! Deletion of file C:\WINDOWS\system32\drvconf.exe failed! Could not process line: C:\WINDOWS\system32\drvconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\drvmgr32.dll not found! Deletion of file C:\WINDOWS\system32\drvmgr32.dll failed! Could not process line: C:\WINDOWS\system32\drvmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\drvstat.dll not found! Deletion of file C:\WINDOWS\system32\drvstat.dll failed! Could not process line: C:\WINDOWS\system32\drvstat.dll Status: 0xc0000034 File C:\WINDOWS\system32\dsaurasr.dll not found! Deletion of file C:\WINDOWS\system32\dsaurasr.dll failed! Could not process line: C:\WINDOWS\system32\dsaurasr.dll Status: 0xc0000034 File C:\WINDOWS\system32\dskconf.exe not found! Deletion of file C:\WINDOWS\system32\dskconf.exe failed! Could not process line: C:\WINDOWS\system32\dskconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\dsprcdfv.dll not found! Deletion of file C:\WINDOWS\system32\dsprcdfv.dll failed! Could not process line: C:\WINDOWS\system32\dsprcdfv.dll Status: 0xc0000034 File C:\WINDOWS\system32\dsprcdfv.exe not found! Deletion of file C:\WINDOWS\system32\dsprcdfv.exe failed! Could not process line: C:\WINDOWS\system32\dsprcdfv.exe Status: 0xc0000034 File C:\WINDOWS\system32\dsqudisp.dll not found! Deletion of file C:\WINDOWS\system32\dsqudisp.dll failed! Could not process line: C:\WINDOWS\system32\dsqudisp.dll Status: 0xc0000034 File C:\WINDOWS\system32\dssconf.exe not found! Deletion of file C:\WINDOWS\system32\dssconf.exe failed! Could not process line: C:\WINDOWS\system32\dssconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\dsseds32.dll not found! Deletion of file C:\WINDOWS\system32\dsseds32.dll failed! Could not process line: C:\WINDOWS\system32\dsseds32.dll Status: 0xc0000034 File C:\WINDOWS\system32\dsseds32.exe not found! Deletion of file C:\WINDOWS\system32\dsseds32.exe failed! Could not process line: C:\WINDOWS\system32\dsseds32.exe Status: 0xc0000034 File C:\WINDOWS\system32\duseusrc.exe not found! Deletion of file C:\WINDOWS\system32\duseusrc.exe failed! Could not process line: C:\WINDOWS\system32\duseusrc.exe Status: 0xc0000034 File C:\WINDOWS\system32\dx3jcryp.dll not found! Deletion of file C:\WINDOWS\system32\dx3jcryp.dll failed! Could not process line: C:\WINDOWS\system32\dx3jcryp.dll Status: 0xc0000034 File C:\WINDOWS\SYSTEM32\dx3jracp.dll not found! Deletion of file C:\WINDOWS\SYSTEM32\dx3jracp.dll failed! Could not process line: C:\WINDOWS\SYSTEM32\dx3jracp.dll Status: 0xc0000034 File C:\WINDOWS\system32\dxdimqtr.dll not found! Deletion of file C:\WINDOWS\system32\dxdimqtr.dll failed! Could not process line: C:\WINDOWS\system32\dxdimqtr.dll Status: 0xc0000034 File C:\WINDOWS\system32\dxtconf.exe not found! Deletion of file C:\WINDOWS\system32\dxtconf.exe failed! Could not process line: C:\WINDOWS\system32\dxtconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\dxtmmnmd.dll not found! Deletion of file C:\WINDOWS\system32\dxtmmnmd.dll failed! Could not process line: C:\WINDOWS\system32\dxtmmnmd.dll Status: 0xc0000034 File C:\WINDOWS\system32\dxtmmnmd.exe not found! Deletion of file C:\WINDOWS\system32\dxtmmnmd.exe failed! Could not process line: C:\WINDOWS\system32\dxtmmnmd.exe Status: 0xc0000034 File C:\WINDOWS\system32\dxtmsft3.dll not found! Deletion of file C:\WINDOWS\system32\dxtmsft3.dll failed! Could not process line: C:\WINDOWS\system32\dxtmsft3.dll Status: 0xc0000034 File C:\WINDOWS\system32\e1.dll not found! Deletion of file C:\WINDOWS\system32\e1.dll failed! Could not process line: C:\WINDOWS\system32\e1.dll Status: 0xc0000034 File C:\WINDOWS\system32\e1.sys not found! Deletion of file C:\WINDOWS\system32\e1.sys failed! Could not process line: C:\WINDOWS\system32\e1.sys Status: 0xc0000034 File C:\WINDOWS\system32\e100mqqm.dll not found! Deletion of file C:\WINDOWS\system32\e100mqqm.dll failed! Could not process line: C:\WINDOWS\system32\e100mqqm.dll Status: 0xc0000034 File C:\WINDOWS\system32\efjtx0jc.dll not found! Deletion of file C:\WINDOWS\system32\efjtx0jc.dll failed! Could not process line: C:\WINDOWS\system32\efjtx0jc.dll Status: 0xc0000034 File C:\WINDOWS\system32\efsavp7v.exe not found! Deletion of file C:\WINDOWS\system32\efsavp7v.exe failed! Could not process line: C:\WINDOWS\system32\efsavp7v.exe Status: 0xc0000034 File C:\WINDOWS\system32\egaavi.exe not found! Deletion of file C:\WINDOWS\system32\egaavi.exe failed! Could not process line: C:\WINDOWS\system32\egaavi.exe Status: 0xc0000034 File C:\WINDOWS\system32\egamgr32.dll not found! Deletion of file C:\WINDOWS\system32\egamgr32.dll failed! Could not process line: C:\WINDOWS\system32\egamgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\egastat.dll not found! Deletion of file C:\WINDOWS\system32\egastat.dll failed! Could not process line: C:\WINDOWS\system32\egastat.dll Status: 0xc0000034 File C:\WINDOWS\system32\egperf32.dll not found! Deletion of file C:\WINDOWS\system32\egperf32.dll failed! Could not process line: C:\WINDOWS\system32\egperf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\encddpva.dll not found! Deletion of file C:\WINDOWS\system32\encddpva.dll failed! Could not process line: C:\WINDOWS\system32\encddpva.dll Status: 0xc0000034 File C:\WINDOWS\system32\ErUVhr.dll not found! Deletion of file C:\WINDOWS\system32\ErUVhr.dll failed! Could not process line: C:\WINDOWS\system32\ErUVhr.dll Status: 0xc0000034 File C:\WINDOWS\system32\evenncob.dll not found! Deletion of file C:\WINDOWS\system32\evenncob.dll failed! Could not process line: C:\WINDOWS\system32\evenncob.dll Status: 0xc0000034 File C:\WINDOWS\system32\extspnrp.dll not found! Deletion of file C:\WINDOWS\system32\extspnrp.dll failed! Could not process line: C:\WINDOWS\system32\extspnrp.dll Status: 0xc0000034 File C:\WINDOWS\SYSTEM32\fksd.dll not found! Deletion of file C:\WINDOWS\SYSTEM32\fksd.dll failed! Could not process line: C:\WINDOWS\SYSTEM32\fksd.dll Status: 0xc0000034 File C:\WINDOWS\system32\flw334.dll not found! Deletion of file C:\WINDOWS\system32\flw334.dll failed! Could not process line: C:\WINDOWS\system32\flw334.dll Status: 0xc0000034 File C:\WINDOWS\system32\fpwppgpm.exe not found! Deletion of file C:\WINDOWS\system32\fpwppgpm.exe failed! Could not process line: C:\WINDOWS\system32\fpwppgpm.exe Status: 0xc0000034 File C:\WINDOWS\system32\fsdconf.exe not found! Deletion of file C:\WINDOWS\system32\fsdconf.exe failed! Could not process line: C:\WINDOWS\system32\fsdconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\fsxsh4.dll not found! Deletion of file C:\WINDOWS\system32\fsxsh4.dll failed! Could not process line: C:\WINDOWS\system32\fsxsh4.dll Status: 0xc0000034 File C:\WINDOWS\system32\ftpwntsd.exe not found! Deletion of file C:\WINDOWS\system32\ftpwntsd.exe failed! Could not process line: C:\WINDOWS\system32\ftpwntsd.exe Status: 0xc0000034 File C:\WINDOWS\system32\gdipmsdx.exe not found! Deletion of file C:\WINDOWS\system32\gdipmsdx.exe failed! Could not process line: C:\WINDOWS\system32\gdipmsdx.exe Status: 0xc0000034 File C:\WINDOWS\system32\glu3panm.dll not found! Deletion of file C:\WINDOWS\system32\glu3panm.dll failed! Could not process line: C:\WINDOWS\system32\glu3panm.dll Status: 0xc0000034 File C:\WINDOWS\system32\gpkrmssi.dll not found! Deletion of file C:\WINDOWS\system32\gpkrmssi.dll failed! Could not process line: C:\WINDOWS\system32\gpkrmssi.dll Status: 0xc0000034 File C:\WINDOWS\system32\gtmqf608r7.dll not found! Deletion of file C:\WINDOWS\system32\gtmqf608r7.dll failed! Could not process line: C:\WINDOWS\system32\gtmqf608r7.dll Status: 0xc0000034 File C:\WINDOWS\system32\hg5wfhvkj.dll not found! Deletion of file C:\WINDOWS\system32\hg5wfhvkj.dll failed! Could not process line: C:\WINDOWS\system32\hg5wfhvkj.dll Status: 0xc0000034 File C:\WINDOWS\system32\hplunwap.dll not found! Deletion of file C:\WINDOWS\system32\hplunwap.dll failed! Could not process line: C:\WINDOWS\system32\hplunwap.dll Status: 0xc0000034 File C:\WINDOWS\system32\hypewmv9.exe not found! Deletion of file C:\WINDOWS\system32\hypewmv9.exe failed! Could not process line: C:\WINDOWS\system32\hypewmv9.exe Status: 0xc0000034 File C:\WINDOWS\system32\i2ie4m4w1m.exe not found! Deletion of file C:\WINDOWS\system32\i2ie4m4w1m.exe failed! Could not process line: C:\WINDOWS\system32\i2ie4m4w1m.exe Status: 0xc0000034 File C:\WINDOWS\system32\i57ff9ieo.dll not found! Deletion of file C:\WINDOWS\system32\i57ff9ieo.dll failed! Could not process line: C:\WINDOWS\system32\i57ff9ieo.dll Status: 0xc0000034 File C:\WINDOWS\system32\iasamsre.dll not found! Deletion of file C:\WINDOWS\system32\iasamsre.dll failed! Could not process line: C:\WINDOWS\system32\iasamsre.dll Status: 0xc0000034 File C:\WINDOWS\system32\iassmpg4.dll not found! Deletion of file C:\WINDOWS\system32\iassmpg4.dll failed! Could not process line: C:\WINDOWS\system32\iassmpg4.dll Status: 0xc0000034 File C:\WINDOWS\system32\iassumdm.dll not found! Deletion of file C:\WINDOWS\system32\iassumdm.dll failed! Could not process line: C:\WINDOWS\system32\iassumdm.dll Status: 0xc0000034 File C:\WINDOWS\system32\iassumdm.exe not found! Deletion of file C:\WINDOWS\system32\iassumdm.exe failed! Could not process line: C:\WINDOWS\system32\iassumdm.exe Status: 0xc0000034 File C:\WINDOWS\system32\icmpdx3j.dll not found! Deletion of file C:\WINDOWS\system32\icmpdx3j.dll failed! Could not process line: C:\WINDOWS\system32\icmpdx3j.dll Status: 0xc0000034 File C:\WINDOWS\system32\icmuwmad.exe not found! Deletion of file C:\WINDOWS\system32\icmuwmad.exe failed! Could not process line: C:\WINDOWS\system32\icmuwmad.exe Status: 0xc0000034 File C:\WINDOWS\system32\ifcconf.exe not found! Deletion of file C:\WINDOWS\system32\ifcconf.exe failed! Could not process line: C:\WINDOWS\system32\ifcconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\ifcmgr32.dll not found! Deletion of file C:\WINDOWS\system32\ifcmgr32.dll failed! Could not process line: C:\WINDOWS\system32\ifcmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\ifcstat.dll not found! Deletion of file C:\WINDOWS\system32\ifcstat.dll failed! Could not process line: C:\WINDOWS\system32\ifcstat.dll Status: 0xc0000034 File C:\WINDOWS\system32\imagalrs.exe not found! Deletion of file C:\WINDOWS\system32\imagalrs.exe failed! Could not process line: C:\WINDOWS\system32\imagalrs.exe Status: 0xc0000034 File C:\WINDOWS\system32\inetzlco.dll not found! Deletion of file C:\WINDOWS\system32\inetzlco.dll failed! Could not process line: C:\WINDOWS\system32\inetzlco.dll Status: 0xc0000034 File C:\WINDOWS\system32\inetzlco.exe not found! Deletion of file C:\WINDOWS\system32\inetzlco.exe failed! Could not process line: C:\WINDOWS\system32\inetzlco.exe Status: 0xc0000034 File C:\WINDOWS\system32\infomsas.dll not found! Deletion of file C:\WINDOWS\system32\infomsas.dll failed! Could not process line: C:\WINDOWS\system32\infomsas.dll Status: 0xc0000034 File C:\WINDOWS\system32\inketype.dll not found! Deletion of file C:\WINDOWS\system32\inketype.dll failed! Could not process line: C:\WINDOWS\system32\inketype.dll Status: 0xc0000034 File C:\WINDOWS\system32\inketype.exe not found! Deletion of file C:\WINDOWS\system32\inketype.exe failed! Could not process line: C:\WINDOWS\system32\inketype.exe Status: 0xc0000034 File C:\WINDOWS\system32\inpufm20.exe not found! Deletion of file C:\WINDOWS\system32\inpufm20.exe failed! Could not process line: C:\WINDOWS\system32\inpufm20.exe Status: 0xc0000034 File C:\WINDOWS\system32\ipnardch.dll not found! Deletion of file C:\WINDOWS\system32\ipnardch.dll failed! Could not process line: C:\WINDOWS\system32\ipnardch.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipsecmon.exe not found! Deletion of file C:\WINDOWS\system32\ipsecmon.exe failed! Could not process line: C:\WINDOWS\system32\ipsecmon.exe Status: 0xc0000034 File C:\WINDOWS\system32\ipsefsus.dll not found! Deletion of file C:\WINDOWS\system32\ipsefsus.dll failed! Could not process line: C:\WINDOWS\system32\ipsefsus.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipsemsw3.dll not found! Deletion of file C:\WINDOWS\system32\ipsemsw3.dll failed! Could not process line: C:\WINDOWS\system32\ipsemsw3.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipsewmsp.dll not found! Deletion of file C:\WINDOWS\system32\ipsewmsp.dll failed! Could not process line: C:\WINDOWS\system32\ipsewmsp.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipsmwebh.exe not found! Deletion of file C:\WINDOWS\system32\ipsmwebh.exe failed! Could not process line: C:\WINDOWS\system32\ipsmwebh.exe Status: 0xc0000034 File C:\WINDOWS\system32\ipv6rasm.dll not found! Deletion of file C:\WINDOWS\system32\ipv6rasm.dll failed! Could not process line: C:\WINDOWS\system32\ipv6rasm.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipv6rasm.exe not found! Deletion of file C:\WINDOWS\system32\ipv6rasm.exe failed! Could not process line: C:\WINDOWS\system32\ipv6rasm.exe Status: 0xc0000034 File C:\WINDOWS\system32\ipxpextm.exe not found! Deletion of file C:\WINDOWS\system32\ipxpextm.exe failed! Could not process line: C:\WINDOWS\system32\ipxpextm.exe Status: 0xc0000034 File C:\WINDOWS\system32\ipxrir32.dll not found! Deletion of file C:\WINDOWS\system32\ipxrir32.dll failed! Could not process line: C:\WINDOWS\system32\ipxrir32.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipxsshdo.dll not found! Deletion of file C:\WINDOWS\system32\ipxsshdo.dll failed! Could not process line: C:\WINDOWS\system32\ipxsshdo.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipxsshdo.exe not found! Deletion of file C:\WINDOWS\system32\ipxsshdo.exe failed! Could not process line: C:\WINDOWS\system32\ipxsshdo.exe Status: 0xc0000034 File C:\WINDOWS\system32\ipxwersv.dll not found! Deletion of file C:\WINDOWS\system32\ipxwersv.dll failed! Could not process line: C:\WINDOWS\system32\ipxwersv.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipxwscri.dll not found! Deletion of file C:\WINDOWS\system32\ipxwscri.dll failed! Could not process line: C:\WINDOWS\system32\ipxwscri.dll Status: 0xc0000034 File C:\WINDOWS\system32\ipxwshel.exe not found! Deletion of file C:\WINDOWS\system32\ipxwshel.exe failed! Could not process line: C:\WINDOWS\system32\ipxwshel.exe Status: 0xc0000034 File C:\WINDOWS\system32\ir32wias.dll not found! Deletion of file C:\WINDOWS\system32\ir32wias.dll failed! Could not process line: C:\WINDOWS\system32\ir32wias.dll Status: 0xc0000034 File C:\WINDOWS\system32\isrconf.exe not found! Deletion of file C:\WINDOWS\system32\isrconf.exe failed! Could not process line: C:\WINDOWS\system32\isrconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\isrprf32.dll not found! Deletion of file C:\WINDOWS\system32\isrprf32.dll failed! Could not process line: C:\WINDOWS\system32\isrprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\isrprov.exe not found! Deletion of file C:\WINDOWS\system32\isrprov.exe failed! Could not process line: C:\WINDOWS\system32\isrprov.exe Status: 0xc0000034 File C:\WINDOWS\system32\iuennwcf.dll not found! Deletion of file C:\WINDOWS\system32\iuennwcf.dll failed! Could not process line: C:\WINDOWS\system32\iuennwcf.dll Status: 0xc0000034 File C:\WINDOWS\system32\ixssregw.exe not found! Deletion of file C:\WINDOWS\system32\ixssregw.exe failed! Could not process line: C:\WINDOWS\system32\ixssregw.exe Status: 0xc0000034 File C:\WINDOWS\system32\ixsswmas.exe not found! Deletion of file C:\WINDOWS\system32\ixsswmas.exe failed! Could not process line: C:\WINDOWS\system32\ixsswmas.exe Status: 0xc0000034 File C:\WINDOWS\system32\j2t3crh.dll not found! Deletion of file C:\WINDOWS\system32\j2t3crh.dll failed! Could not process line: C:\WINDOWS\system32\j2t3crh.dll Status: 0xc0000034 File C:\WINDOWS\system32\jde32.exe not found! Deletion of file C:\WINDOWS\system32\jde32.exe failed! Could not process line: C:\WINDOWS\system32\jde32.exe Status: 0xc0000034 File C:\WINDOWS\system32\jfgconf.exe not found! Deletion of file C:\WINDOWS\system32\jfgconf.exe failed! Could not process line: C:\WINDOWS\system32\jfgconf.exe Status: 0xc0000034 File C:\WINDOWS\system32\jfgmgr32.dll not found! Deletion of file C:\WINDOWS\system32\jfgmgr32.dll failed! Could not process line: C:\WINDOWS\system32\jfgmgr32.dll Status: 0xc0000034 File C:\WINDOWS\system32\jfgperf.exe not found! Deletion of file C:\WINDOWS\system32\jfgperf.exe failed! Could not process line: C:\WINDOWS\system32\jfgperf.exe Status: 0xc0000034 File C:\WINDOWS\system32\jfgprf32.dll not found! Deletion of file C:\WINDOWS\system32\jfgprf32.dll failed! Could not process line: C:\WINDOWS\system32\jfgprf32.dll Status: 0xc0000034 File C:\WINDOWS\system32\jfgstat.dll not found! Deletion of file C:\WINDOWS\system32\jfgstat.dll failed! Could not process line: C:\WINDOWS\system32\jfgstat.dll Status: 0xc0000034 File C:\WINDOWS\system32\jgawmsne.dll not found! Deletion of file C:\WINDOWS\system32\jgawmsne.dll failed! Could not process line: C:\WINDOWS\system32\jgawmsne.dll Status: 0xc0000034 File C:\WINDOWS\system32\jgdwadsn.dll not found! Deletion of file C:\WINDOWS\system32\jgdwadsn.dll failed! Could not process line: C:\WINDOWS\system32\jgdwadsn.dll Status: 0xc0000034 File C:\WINDOWS\system32\jgdwadsn.exe not found! Deletion of file C:\WINDOWS\system32\jgdwadsn.exe failed! Could not process line: C:\WINDOWS\system32\jgdwadsn.exe Status: 0xc0000034 File C:\WINDOWS\system32\jgmdwstd.dll not found! Deletion of file C:\WINDOWS\system32\jgmdwstd.dll failed! Could not process line: C:\WINDOWS\system32\jgmdwstd.dll Status: 0xc0000034 File C:\ A hozzászólást 1 alkalommal szerkesztették, utoljára xerox vas. dec. 30, 2007 23:35-kor.
vas. dec. 30, 2007 23:24

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Megmondanad hogy holl voltall enyi sokaig?/ Mar jobban nezki a dolog. Most lettoltod ezt a progitt.Futtatod,utana megerdi hogy restart-bele egyezel. A restart utan ujra futatodd a -COMBOFIX-progitt.Itt iss majd restartol es utana ide teszed a Combofix.txt 2-szamu logott az uj HJ-val. http://down.ne-e.eu/stration_remover.exe
vas. dec. 30, 2007 21:53

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:40:05, on 2007.12.30. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\WINDOWS\system32\ZoneLabs\avsys\Monitor.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe C:\Program Files\D4\D4.exe C:\Program Files\far\plugins\bcopy\bcsvc.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Program Files\Spyware Doctor\svcntaux.exe C:\Program Files\Spyware Doctor\swdsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Spyware Doctor\SDTrayApp.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\allsnap.exe C:\WINDOWS\CTHELPER.EXE C:\Program Files\ClocX\ClocX.exe C:\Program Files\D4\D4.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\utorrent.exe C:\Program Files\PeerGuardian2\pg2.exe C:\Program Files\Chameleon Clock\ChamClock.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\Program Files\Orbitdownloader\orbitnet.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\TC PowerPack\totalcmd.exe c:\HiJackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu./ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?.home=ytie R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customi ... .yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [AllSnap] "C:\WINDOWS\allsnap.exe" O4 - HKLM\..\Run: [AsioReg] REGSVR32 /S CTASIO.DLL O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE O4 - HKLM\..\Run: [ClocX] "C:\Program Files\ClocX\ClocX.exe" O4 - HKLM\..\Run: [Dimension4] C:\Program Files\D4\D4.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] "C:\Program Files\PowerISO\PWRISOVM.EXE" O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [µTorrent] "C:\WINDOWS\utorrent.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - HKCU\..\Run: [HomeAlarm] C:\Program Files\Chameleon Clock\ChamClock.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-19\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{B78E7F7F-E74E-4834-8105-23EB471D1E82}: NameServer = 80.95.64.6 80.95.64.7 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Dimension4 - Thinking Man Software - C:\Program Files\D4\D4.exe O23 - Service: FAR Background Copy Service (FARBCopy) - Unknown owner - C:\Program Files\far\plugins\bcopy\bcsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Outpost Firewall Service (OutpostFirewall) - Unknown owner - C:\Program Files\Agnitum\Outpost Firewall\outpost.exe (file missing) O23 - Service: PctrlsInjectService - Unknown owner - C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe (file missing) O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe O23 - Service: System Guard(SpySoap) (SpySoapSysGuardService) - Unknown owner - C:\Program Files\SpySoap\SysGuard.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 8678 bytes Mint látom sikerült törölni azt a 3 cmd file-t és az activecaptions.exe-t is.
vas. dec. 30, 2007 21:43

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	////////////////////////////////////////// Avenger Pre-Processor log ////////////////////////////////////////// Error: selected file does not appear to be a valid script. Error code: 0 Az ikon akkor tünt el amikor a winamp miatt újra indult a gép.Az activecaptiont.exe-t le állítottam de a többit nem találtam/afterpost.cmd/. Ennyire vészes a helyzet ? A HJ-t csinálom, és küldöm.
vas. dec. 30, 2007 20:37

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Es raduplazol az Avangeral-mert most vetem eszre hogy volt belolok 4-es maradt 3-om Kód: Files to delete: C:\WINDOWS\activecaptions.exe C:\WINDOWS\afterpost.cmd C:\WINDOWS\afterpost.cmd C:\WINDOWS\afterpost.cmd Folders to delete: C:\Program Files\SpySoap\schedules.exe C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe
vas. dec. 30, 2007 20:26

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Na es mikor tunt ell?? Itt komoj dolgokk vannak a gepell,mertt valaki dirigalja a gepedett. Nemtudom kilonni ezt a szemettett.O4 - HKUS\S-1-5-20\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd es ez tobszor van,Azztatt megoldjuk a ZA-aztan. Kinyitod a Task managertt.CTRL+ALT+DEL>kivalasztod a procesokat-amikk futnak>ide sorba beirom es ezekett-betiltod.Klik a Procesra-az aljan klika gombra -tiltani-befejezni....Utana kinyitod a Hijckot es lefixeled okett.Utana restart>es uj log. activecaptions.exe afterpost.cmd-eboll van 3=om-mind a harmatt lelovod. Klik fulre -Aplikaciok:es lelovod ezekett a programokat-utana lefixeled a HJ-vall C:\Program Files\SpySoap\schedules.exe Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe
vas. dec. 30, 2007 20:13

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	////////////////////////////////////////// Avenger Pre-Processor log ////////////////////////////////////////// Error: selected file does not appear to be a valid script. Error code: 1813 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:46:40, on 2007.12.30. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Safe mode Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Spyware Doctor\svcntaux.exe C:\Program Files\Spyware Doctor\swdsvc.exe C:\Program Files\Spyware Doctor\SDTrayApp.exe C:\Program Files\TC PowerPack\totalcmd.exe C:\WINDOWS\system32\NOTEPAD.EXE c:\HiJackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu./ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?.home=ytie R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customi ... .yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [Activecaptions] "C:\WINDOWS\activecaptions.exe" O4 - HKLM\..\Run: [AllSnap] "C:\WINDOWS\allsnap.exe" O4 - HKLM\..\Run: [AsioReg] REGSVR32 /S CTASIO.DLL O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE O4 - HKLM\..\Run: [ClocX] "C:\Program Files\ClocX\ClocX.exe" O4 - HKLM\..\Run: [Dimension4] C:\Program Files\D4\D4.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] "C:\Program Files\PowerISO\PWRISOVM.EXE" O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [SpySoap_schedules] "C:\Program Files\SpySoap\schedules.exe" O4 - HKLM\..\Run: [SpySoap_tray] "C:\Program Files\SpySoap\tray.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [µTorrent] "C:\WINDOWS\utorrent.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - HKCU\..\Run: [INetBooster] C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe O4 - HKCU\..\Run: [HomeAlarm] C:\Program Files\Chameleon Clock\ChamClock.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'Default user') O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Dimension4 - Thinking Man Software - C:\Program Files\D4\D4.exe O23 - Service: FAR Background Copy Service (FARBCopy) - Unknown owner - C:\Program Files\far\plugins\bcopy\bcsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 7216 bytes Bocsi a késésért ! Az asztalra vissza lehet hozni a ZA ikont az óra mellé valahogy ?
vas. dec. 30, 2007 19:04

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	De a gep vedve van.Na mostan ezt a OUTpust Firewalt mar nemhasznalod??Ugy latom.Tehat Fixeld le a HJ-vall ezeket. O23 - Service: Outpost Firewall Service (OutpostFirewall) - Unknown owner - C:\Program Files\Agnitum\Outpost Firewall\outpost.exe (file missing) O23 - Service: PctrlsInjectService - Unknown owner - C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe (file missing) O23 - Service: System Guard(SpySoap) (SpySoapSysGuardService) - Unknown owner - C:\Program Files\SpySoap\SysGuard.exe (file missing) Mostt beirod a Start>futatas>services.msc<a job oldalon megtalalod ezekett a szolgaltatasokat-ketszer ra klikelsz es betiltod>ok>hasznalni. Utana lemegy csokentett modba,az Avangeral mar tudodd de leirom megegyszer. Futatod –bepontozod „Input script manually“ – klik-nagyito uveg – BEKOPIROZOD A KODOT DE CSAK AZT AMI AZ ABLAKBAN VAN– klik-„Done“ –klik- Semafor –beleegyezes-igen– reštart PC – Kód: Files to delete: C:\Program Files\SpySoap\schedules.exe C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe C:\WINDOWS\afterpost.cmd C:\WINDOWS\activecaptions.exe Eztett csokentett modban csinald meg. Visza windowsba-es ide teszed amitt az avanger adott es uj HJ-logott.
vas. dec. 30, 2007 16:37

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:05:33, on 2007.12.30. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\WINDOWS\system32\ZoneLabs\avsys\Monitor.exe C:\Program Files\D4\D4.exe C:\Program Files\far\plugins\bcopy\bcsvc.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Program Files\Spyware Doctor\svcntaux.exe C:\Program Files\Spyware Doctor\swdsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Spyware Doctor\SDTrayApp.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\activecaptions.exe C:\WINDOWS\allsnap.exe C:\WINDOWS\CTHELPER.EXE C:\Program Files\ClocX\ClocX.exe C:\Program Files\D4\D4.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\utorrent.exe C:\Program Files\PeerGuardian2\pg2.exe C:\Program Files\Chameleon Clock\ChamClock.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\Program Files\Orbitdownloader\orbitnet.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\TC PowerPack\totalcmd.exe C:\WINDOWS\system32\wbem\wmiprvse.exe N:\féregkeresők\2007.12.29-én ajánlották\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu./ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?.home=ytie R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customi ... .yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [Activecaptions] "C:\WINDOWS\activecaptions.exe" O4 - HKLM\..\Run: [AllSnap] "C:\WINDOWS\allsnap.exe" O4 - HKLM\..\Run: [AsioReg] REGSVR32 /S CTASIO.DLL O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE O4 - HKLM\..\Run: [ClocX] "C:\Program Files\ClocX\ClocX.exe" O4 - HKLM\..\Run: [Dimension4] C:\Program Files\D4\D4.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] "C:\Program Files\PowerISO\PWRISOVM.EXE" O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [SpySoap_schedules] "C:\Program Files\SpySoap\schedules.exe" O4 - HKLM\..\Run: [SpySoap_tray] "C:\Program Files\SpySoap\tray.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [µTorrent] "C:\WINDOWS\utorrent.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - HKCU\..\Run: [INetBooster] C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe O4 - HKCU\..\Run: [HomeAlarm] C:\Program Files\Chameleon Clock\ChamClock.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-19\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'Default user') O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{B78E7F7F-E74E-4834-8105-23EB471D1E82}: NameServer = 80.95.64.6 80.95.64.7 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Dimension4 - Thinking Man Software - C:\Program Files\D4\D4.exe O23 - Service: FAR Background Copy Service (FARBCopy) - Unknown owner - C:\Program Files\far\plugins\bcopy\bcsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Outpost Firewall Service (OutpostFirewall) - Unknown owner - C:\Program Files\Agnitum\Outpost Firewall\outpost.exe (file missing) O23 - Service: PctrlsInjectService - Unknown owner - C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe (file missing) O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe O23 - Service: System Guard(SpySoap) (SpySoapSysGuardService) - Unknown owner - C:\Program Files\SpySoap\SysGuard.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 9292 bytes A gépnek nincs így védelme igaz ? A ZA suite-val mit csináljak ?
vas. dec. 30, 2007 16:08

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Tedyel ide meg egy uj HJ-logott.Es varjal mehetsz kavera.
vas. dec. 30, 2007 15:59

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-12-30 15:36:25 Windows 5.1.2600 Szervizcsomag 2 NTFS scanning hidden processes ... scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:2df9c43f "s2"=dword:110480d0 "h0"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="C:\Program Files\DAEMON Tools\" "h0"=dword:00000000 "khjeh"=hex:a6,c5,5c,7b,c7,a7,16,d6,63,ba,6d,39,f2,54,dd,44,ce,a7,48,21,e6,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,6f,9e,7e,37,94,17,8d,2e,83,72,f8,8c,11,b4,a1,0b,f1,.. "khjeh"=hex:af,39,56,01,e4,9a,21,1f,85,7f,57,46,17,ac,d1,da,8d,10,92,5d,8c,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:5c,13,b7,55,02,f8,8b,ec,dd,1c,0b,8a,1a,d2,5a,eb,9c,6b,22,d5,6c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="C:\Program Files\DAEMON Tools\" "h0"=dword:00000000 "khjeh"=hex:a6,c5,5c,7b,c7,a7,16,d6,63,ba,6d,39,f2,54,dd,44,ce,a7,48,21,e6,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,6f,9e,7e,37,94,17,8d,2e,83,72,f8,8c,11,b4,a1,0b,f1,.. "khjeh"=hex:af,39,56,01,e4,9a,21,1f,85,7f,57,46,17,ac,d1,da,8d,10,92,5d,8c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:5c,13,b7,55,02,f8,8b,ec,dd,1c,0b,8a,1a,d2,5a,eb,9c,6b,22,d5,6c,.. scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 2 file zipped: C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Microsoft\Messenger\vivien0819@hotmail.com\SharingMetadata\ancsi00@hotmail.com\DFSR\Staging\CS{9284B002-FBA6-4E42-CA32-97FC8A818671}\01\10-{9284B002-FBA6-4E42-CA32-97FC8A818671}-v1-{BD50FDAA-30D5-4278-8EB6-2626112336D0}-v10-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS -> catchme.zip -> {59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS ( 8 bytes ) file zipped: C:\Documents and Settings\Rendszergazda\Local Settings\Application Data\Microsoft\Messenger\vivien0819@hotmail.com\SharingMetadata\vancika@freemail.hu\DFSR\Staging\CS{2D206C6D-05AE-5E07-0BEA-C72408A605F9}\01\11-{2D206C6D-05AE-5E07-0BEA-C72408A605F9}-v1-{BD50FDAA-30D5-4278-8EB6-2626112336D0}-v11-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS -> catchme.zip -> {59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS.1 ( 8 bytes )
vas. dec. 30, 2007 15:55

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	ok igen kemeny-fergekk. Most Letoltod ezt a programott.Lemegy csokentett modba .Es futatod. http://downloads.andymanchesta.com/RemovalTools/SDFix.exe Ha kerdez valamitt akkor...Y...Ojan 5-percig tart a scen utana rESTART SDFIX-cimeben megtalalod eztett tedd ide.-Report.txt-Megtortenhett hogy szet dobi a halozatti kartya bealitasat,akorr ha Veletlenull elveszlik a NEt-alitsd be visza. dE EZ IGEN KEVES ESETBEN VAN.
vas. dec. 30, 2007 14:36

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	OK tedyel uj Hijack- LOGOTT.
vas. dec. 30, 2007 14:15

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	File/Folder C:\WINDOWS\system32\S-1-5-21-0070A401 not found. File move failed. C:\WINDOWS\system32\drivers\fidbox2.dat scheduled to be moved on reboot. File move failed. C:\WINDOWS\system32\drivers\fidbox2.idx scheduled to be moved on reboot. File/Folder C:\Program Files\SpySoap\schedules.exe not found. File/Folder C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe not found. C:\WINDOWS\afterpost.cmd moved successfully. Created on 12.30.2007 14:00:56 Ezt nem csináltam jól mert nem találtam a Hijack-ban azt a részt amit ki kellett pipálni !!! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:18:07, on 2007.12.30. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\WINDOWS\system32\ZoneLabs\avsys\Monitor.exe C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe C:\Program Files\D4\D4.exe C:\Program Files\far\plugins\bcopy\bcsvc.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Program Files\Spyware Doctor\svcntaux.exe C:\Program Files\Spyware Doctor\swdsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Spyware Doctor\SDTrayApp.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\activecaptions.exe C:\WINDOWS\allsnap.exe C:\WINDOWS\CTHELPER.EXE C:\Program Files\ClocX\ClocX.exe C:\Program Files\D4\D4.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\utorrent.exe C:\Program Files\PeerGuardian2\pg2.exe C:\Program Files\Chameleon Clock\ChamClock.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\Program Files\Orbitdownloader\orbitnet.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\TC PowerPack\totalcmd.exe N:\féregkeresők\2007.12.29-én ajánlották\HiJackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu./ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?.home=ytie R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customi ... .yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [Activecaptions] "C:\WINDOWS\activecaptions.exe" O4 - HKLM\..\Run: [AllSnap] "C:\WINDOWS\allsnap.exe" O4 - HKLM\..\Run: [AsioReg] REGSVR32 /S CTASIO.DLL O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE O4 - HKLM\..\Run: [ClocX] "C:\Program Files\ClocX\ClocX.exe" O4 - HKLM\..\Run: [Dimension4] C:\Program Files\D4\D4.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] "C:\Program Files\PowerISO\PWRISOVM.EXE" O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [SpySoap_schedules] "C:\Program Files\SpySoap\schedules.exe" O4 - HKLM\..\Run: [SpySoap_tray] "C:\Program Files\SpySoap\tray.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [µTorrent] "C:\WINDOWS\utorrent.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - HKCU\..\Run: [INetBooster] C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe O4 - HKCU\..\Run: [HomeAlarm] C:\Program Files\Chameleon Clock\ChamClock.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-19\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'Default user') O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{B78E7F7F-E74E-4834-8105-23EB471D1E82}: NameServer = 80.95.64.6 80.95.64.7 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Dimension4 - Thinking Man Software - C:\Program Files\D4\D4.exe O23 - Service: FAR Background Copy Service (FARBCopy) - Unknown owner - C:\Program Files\far\plugins\bcopy\bcsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Outpost Firewall Service (OutpostFirewall) - Unknown owner - C:\Program Files\Agnitum\Outpost Firewall\outpost.exe (file missing) O23 - Service: PctrlsInjectService - Unknown owner - C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe (file missing) O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe O23 - Service: System Guard(SpySoap) (SpySoapSysGuardService) - Unknown owner - C:\Program Files\SpySoap\SysGuard.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 9301 bytes A hozzászólást 1 alkalommal szerkesztették, utoljára xerox vas. dec. 30, 2007 14:22-kor.
vas. dec. 30, 2007 14:03

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	ok Letoltod ezt a progitt; http://download.bleepingcomputer.com/ol ... MoveIt.exe futatodd a ball ablakba bekopirozod kódot-de csak aztatt ami az ablakban van.A torleshez-klik "Move it", a forumra tedd azt amitt a jobb ablakba add-es uj log z HijackThis.Bepipazni UNLOAD DLL and OCX Kód: C:\WINDOWS\system32\S-1-5-21-0070A401 C:\WINDOWS\system32\drivers\fidbox2.dat C:\WINDOWS\system32\drivers\fidbox2.idx C:\Program Files\SpySoap\schedules.exe C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe C:\WINDOWS\afterpost.cmd
vas. dec. 30, 2007 13:56

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	A spysoap az kémprogi írtó de már le szedtem kb 2-3 hete a többit /2 /nem tudom mi.
vas. dec. 30, 2007 13:50

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	OK es ismered ezekett a progikat??Vagy mejikett ismered,vagy hasznalod. C:\Program Files\SpySoap\schedules.exe" C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe C:\WINDOWS\afterpost.cmd
vas. dec. 30, 2007 13:46

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	A(z) afterpost.cmd állomány feltöltve: 2007.12.30 13:23:03 (CET) Antivírus Verzió Utolsó frissítés Eredmény AhnLab-V3 2007.12.29.11 2007.12.29 - AntiVir 7.6.0.46 2007.12.29 - Authentium 4.93.8 2007.12.29 - Avast 4.7.1098.0 2007.12.29 - AVG 7.5.0.516 2007.12.29 - BitDefender 7.2 2007.12.30 - CAT-QuickHeal 9.00 2007.12.29 - ClamAV 0.91.2 2007.12.30 - DrWeb 4.44.0.09170 2007.12.30 - eSafe 7.0.15.0 2007.12.27 - eTrust-Vet 31.3.5412 2007.12.29 - Ewido 4.0 2007.12.30 - FileAdvisor 1 2007.12.30 - Fortinet 3.14.0.0 2007.12.30 - F-Prot 4.4.2.54 2007.12.29 - Ikarus T3.1.1.15 2007.12.30 - Kaspersky 7.0.0.125 2007.12.30 - McAfee 5195 2007.12.28 - Microsoft 1.3109 2007.12.30 - NOD32v2 2755 2007.12.29 - Norman 5.80.02 2007.12.28 - Panda 9.0.0.4 2007.12.30 - Prevx1 V2 2007.12.30 - Rising 20.24.52.00 2007.12.29 - Sophos 4.24.0 2007.12.30 - Sunbelt 2.2.907.0 2007.12.30 - Symantec 10 2007.12.30 - TheHacker 6.2.9.175 2007.12.29 - VBA32 3.12.2.5 2007.12.29 - VirusBuster 4.3.26:9 2007.12.29 - Webwasher-Gateway 6.6.2 2007.12.29 - További információ File size: 1414 bytes MD5: b4ce36606b6c987765ce6891871db749 SHA1: 28eb1f43159418f8a1de2c38462bd70626ab4bcd PEiD: - C:\Program Files\SpySoap\schedules.exe" C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe ezt a kettőt nem találom akár hogy keresem !? Ötlet ???????? a keresőbe ha beírtam akkor amazokat feladta de erre azt írja hogy : "olyan helyre mutat amely ne érhető el "
vas. dec. 30, 2007 13:35

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	No baratom es ezek az eredmenyek hollvannak?/ C:\Program Files\SpySoap\schedules.exe" C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe C:\WINDOWS\afterpost.cmd
vas. dec. 30, 2007 11:40

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Ok csinald meg a tobbit is es fojtatjuk.
vas. dec. 30, 2007 10:44

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Hello ezek kész vannak : Az ULradll.-re ezt írta : 0 bytes size received / Se ha recibido un archivo vacio A(z) zllsputility.exe állomány feltöltve: 2007.12.29 23:15:31 (CET) Antivírus Verzió Utolsó frissítés Eredmény AhnLab-V3 2007.12.29.11 2007.12.29 - AntiVir 7.6.0.46 2007.12.29 - Authentium 4.93.8 2007.12.29 - Avast 4.7.1098.0 2007.12.29 - AVG 7.5.0.516 2007.12.29 - BitDefender 7.2 2007.12.29 - CAT-QuickHeal 9.00 2007.12.29 - ClamAV 0.91.2 2007.12.29 - DrWeb 4.44.0.09170 2007.12.29 - eSafe 7.0.15.0 2007.12.27 - eTrust-Vet 31.3.5412 2007.12.29 - Ewido 4.0 2007.12.29 - FileAdvisor 1 2007.12.29 - Fortinet 3.14.0.0 2007.12.29 - F-Prot 4.4.2.54 2007.12.29 - F-Secure 6.70.13030.0 2007.12.28 - Ikarus T3.1.1.15 2007.12.29 - Kaspersky 7.0.0.125 2007.12.29 - McAfee 5195 2007.12.28 - Microsoft 1.3109 2007.12.29 - NOD32v2 2755 2007.12.29 - Norman 5.80.02 2007.12.28 - Panda 9.0.0.4 2007.12.29 - Prevx1 V2 2007.12.29 - Rising 20.24.52.00 2007.12.29 - Sophos 4.24.0 2007.12.29 - Sunbelt 2.2.907.0 2007.12.28 - Symantec 10 2007.12.29 - TheHacker 6.2.9.175 2007.12.29 - VBA32 3.12.2.5 2007.12.29 - VirusBuster 4.3.26:9 2007.12.29 - Webwasher-Gateway 6.6.2 2007.12.29 - További információ File size: 75512 bytes MD5: 3cea234f03bb0c5a1c236a5157bc87ed SHA1: d6a55396670880c894bcebd704e5422403bc5a3b PEiD: Armadillo v1.71 A(z) zllictbl.dat állomány feltöltve: 2007.12.29 23:38:48 (CET) Antivírus Verzió Utolsó frissítés Eredmény AhnLab-V3 2007.12.29.11 2007.12.29 - AntiVir 7.6.0.46 2007.12.29 - Authentium 4.93.8 2007.12.29 - Avast 4.7.1098.0 2007.12.29 - AVG 7.5.0.516 2007.12.29 - BitDefender 7.2 2007.12.29 - CAT-QuickHeal 9.00 2007.12.29 - ClamAV 0.91.2 2007.12.29 - DrWeb 4.44.0.09170 2007.12.29 - eSafe 7.0.15.0 2007.12.27 - eTrust-Vet 31.3.5412 2007.12.29 - Ewido 4.0 2007.12.29 - FileAdvisor 1 2007.12.29 - Fortinet 3.14.0.0 2007.12.29 - F-Prot 4.4.2.54 2007.12.29 - F-Secure 6.70.13030.0 2007.12.28 - Ikarus T3.1.1.15 2007.12.29 - Kaspersky 7.0.0.125 2007.12.29 - McAfee 5195 2007.12.28 - Microsoft 1.3109 2007.12.29 - NOD32v2 2755 2007.12.29 - Norman 5.80.02 2007.12.28 - Panda 9.0.0.4 2007.12.29 - Prevx1 V2 2007.12.29 - Rising 20.24.52.00 2007.12.29 - Sophos 4.24.0 2007.12.29 - Sunbelt 2.2.907.0 2007.12.28 - Symantec 10 2007.12.29 - TheHacker 6.2.9.175 2007.12.29 - VBA32 3.12.2.5 2007.12.29 - VirusBuster 4.3.26:9 2007.12.29 - Webwasher-Gateway 6.6.2 2007.12.29 - További információ File size: 4212 bytes MD5: f7e1cc7bcae69460fa462f97c74f51ff SHA1: fd2b2a2e36dbf5847cd5db80ebb21919b0dab0e1 PEiD: - A(z) activecaptions.exe állomány feltöltve: 2007.12.30 10:49:36 (CET) Antivírus Verzió Utolsó frissítés Eredmény AhnLab-V3 2007.12.29.11 2007.12.29 - AntiVir 7.6.0.46 2007.12.29 - Authentium 4.93.8 2007.12.29 - Avast 4.7.1098.0 2007.12.29 - AVG 7.5.0.516 2007.12.29 - BitDefender 7.2 2007.12.30 - CAT-QuickHeal 9.00 2007.12.29 - DrWeb 4.44.0.09170 2007.12.29 - eSafe 7.0.15.0 2007.12.27 suspicious Trojan/Worm eTrust-Vet 31.3.5412 2007.12.29 - Ewido 4.0 2007.12.29 - FileAdvisor 1 2007.12.30 - Fortinet 3.14.0.0 2007.12.30 - F-Prot 4.4.2.54 2007.12.29 - F-Secure 6.70.13030.0 2007.12.30 - Ikarus T3.1.1.15 2007.12.30 - Kaspersky 7.0.0.125 2007.12.30 - McAfee 5195 2007.12.28 - Microsoft 1.3109 2007.12.30 - NOD32v2 2755 2007.12.29 - Norman 5.80.02 2007.12.28 - Panda 9.0.0.4 2007.12.30 - Prevx1 V2 2007.12.30 - Rising 20.24.52.00 2007.12.29 - Sophos 4.24.0 2007.12.30 - Sunbelt 2.2.907.0 2007.12.30 - Symantec 10 2007.12.30 - TheHacker 6.2.9.175 2007.12.29 - VBA32 3.12.2.5 2007.12.29 - VirusBuster 4.3.26:9 2007.12.29 - Webwasher-Gateway 6.6.2 2007.12.29 Packer.Repacked További információ File size: 337408 bytes MD5: 3848b3629b19478c25683e1f019eebec SHA1: b4e91362996721da4ae3ad0fff84ccef8ddbdfc5 PEiD: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser packers: UPX packers: UPX packers: UPX A hozzászólást 2 alkalommal szerkesztették, utoljára xerox vas. dec. 30, 2007 11:04-kor.
vas. dec. 30, 2007 10:40

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	UDV: Akorr eztett csinald meg: Ezekett letesztelni a http://www.virustotal.com/cs/sobre.html C:\WINDOWS\zllsputility.exe C:\WINDOWS\system32\zllictbl.dat C:\WINDOWS\system32\Ultra.dll C:\WINDOWS\activecaptions.exe C:\Program Files\SpySoap\schedules.exe" C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe C:\WINDOWS\afterpost.cmd Kivalasztod a nyelvett-kereses-es egyenkett -elkuldod es mindig megvarod az eredmenyt-es aztan az egeszett ide teszed
vas. dec. 30, 2007 10:18

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Nincs fenn csak egy . ezek előtte voltak fenn: nod, avast, outpost firewall, most csak a Za security suite van fenn.Emezek nem lettek rendesen leszedve / a regisztriben gondolom/. Köszönöm a türelmed , akkor holnap ! jó éjszakát!
szomb. dec. 29, 2007 22:59

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Az nem baj,lehett hogy kitorolte,ha nem van mas fegyver is.Mertt nemejik ,vedekezik mint az orult.De ma mar nem.Csak holnap.Azokatt amitt oda tetem csinald meg a -Virustotalon-es ted majd ide. Udv. Ugy vettem eszre hogy talan van 2-darab Antiviruszod felteve-ennek nemszabad igy lennie,csak egynek szabad lennie mertt aztan verekszenek,es fagy a gep.Tehat vagy Avast-vagy esset.Vagy akar mi DE CSAK EGY.Ha jol neztem ma mar nam akarodzik. Udv
szomb. dec. 29, 2007 22:53

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Szia. Nem tudom mi lehet a nettel de az utolsó üzi óta 15 prcenként benéztem de csak most 10 óra előtt jelent meg nálam a válaszod. Ezt írja a gép : Are you sure you want to execute the command in the selected script : Igen vagy nem igen : error : selected file does not appear to be a valid script : ok---- press ok to log error and continue or cancel to abort --ok--mégse : ok : error code :0 ezt írja ki ??????????
szomb. dec. 29, 2007 22:24

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	ok http://swandog46.geekstogo.com/avenger.exe futatod – „Input script manually“ – Lupa – kopírovať kód – „Done“ – Semafor –beleegyezes– kovetkexzik reštart PC – ad logott ide teszed az Uj HJ-logall-egyutt. Kód: Files to delete: C:\WINDOWS\system32\S-1-5-21-0070A401 C:\WINDOWS\system32\drivers\fidbox2.dat C:\WINDOWS\system32\drivers\fidbox2.idx Ezekett letesztelni a http://www.virustotal.com/cs/sobre.html C:\WINDOWS\zllsputility.exe C:\WINDOWS\system32\zllictbl.dat C:\WINDOWS\system32\Ultra.dll Kivalasztod a nyelvett-kereses-es egyenkett -elkuldod es mindig megvarod az eredmenyt-es aztan az egeszett ide teszed.
szomb. dec. 29, 2007 20:30

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	OK. Köszönöm . Várok.
szomb. dec. 29, 2007 19:47

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Na a combo mar kinyirt egypar dolgott,mostt varnod kell mertt kikell nekem analyzerni-es ez egy kicsit tovab tart,mertt vannak ismeretlen virusok.
szomb. dec. 29, 2007 19:40

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Volt egy kis **** , nem indult el egyik kereső sem a gép iszonyú lassú néha.A kért lista : ComboFix 07-12-21.4 - Rendszergazda 2007-12-29 18:59:36.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1250.1.1038.18.565 [GMT 1:00] Running from: E:\filmek zenék\fire kép\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\system32\FTPx.dll C:\WINDOWS\system32\MabryObj.dll . ((((((((((((((((((((((((( Files Created from 2007-11-28 to 2007-12-29 ))))))))))))))))))))))))))))))) . 2007-12-27 12:55 . 2007-12-29 10:59 <DIR> d-------- C:\Program Files\Spyware Doctor 2007-12-27 12:55 . 2007-12-27 12:55 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\PC Tools 2007-12-27 12:55 . 2005-09-23 08:29 626,688 --a------ C:\WINDOWS\system32\msvcr80.dll 2007-12-27 12:55 . 2007-12-27 12:56 74,240 --a------ C:\WINDOWS\system32\drivers\iksyssec.sys 2007-12-27 12:55 . 2007-12-27 12:56 56,832 --a------ C:\WINDOWS\system32\drivers\iksysflt.sys 2007-12-27 12:55 . 2007-10-18 00:14 41,288 --a------ C:\WINDOWS\system32\drivers\ikfilesec.sys 2007-12-27 12:55 . 2007-10-18 00:16 29,000 --a------ C:\WINDOWS\system32\drivers\kcom.sys 2007-12-21 15:27 . 2007-12-21 15:27 239 --a------ C:\WINDOWS\system32\NVU001.nvu 2007-12-21 15:26 . 2003-06-05 08:00 1,431 -ra------ C:\WINDOWS\system32\nvgart.nvu 2007-12-21 15:26 . 2003-07-07 10:33 897 --------- C:\WINDOWS\system32\nvmctl.nvu 2007-12-19 21:33 . 2007-12-19 21:33 <DIR> d---s---- C:\Documents and Settings\Rendszergazda\UserData 2007-12-17 13:39 . 2004-06-25 10:47 3,377,466 --a------ C:\WINDOWS\{00000001-00000000-0000000A-00001102-00000002-100A1102}.CDF 2007-12-17 01:50 . 2007-12-28 19:41 <DIR> d-------- C:\Program Files\Replay Converter 2007-12-17 01:50 . 2007-03-04 13:55 1,936,528 --a------ C:\WINDOWS\system32\ltmm15.dll 2007-12-17 01:50 . 2007-03-04 13:55 135,168 --a------ C:\WINDOWS\system32\DSKernel2.dll 2007-12-17 01:48 . 2007-12-17 01:50 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\GetRightToGo 2007-12-17 01:44 . 2007-12-17 01:44 <DIR> d-------- C:\WINDOWS\Replay Media Catcher 2007-12-17 01:44 . 2007-12-17 13:36 <DIR> d-------- C:\Program Files\Replay Media Catcher 2007-12-14 19:41 . 2007-12-21 00:50 <DIR> d-------- C:\Program Files\KMPlayer-2.9.3.1427 2007-12-14 18:57 . 2007-12-14 18:57 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\CEZEO software 2007-12-14 00:59 . 2007-12-14 00:59 <DIR> d-------- C:\Program Files\AxBx 2007-12-13 17:09 . 2007-12-29 18:08 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP 2007-12-13 17:08 . 2007-12-13 17:17 <DIR> d-------- C:\Program Files\AoA MP4 Converter 2007-12-13 15:13 . 2007-12-13 15:13 <DIR> d-------- C:\Program Files\Orbitdownloader 2007-12-13 15:13 . 2007-12-13 15:13 <DIR> d-------- C:\Downloads 2007-12-13 15:13 . 2007-12-29 18:09 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\Orbit 2007-12-13 13:06 . 2007-12-13 13:08 2,634 --a------ C:\kabaré.PLC 2007-12-13 02:18 . 2007-12-13 02:18 <DIR> d-------- C:\Program Files\Makayama 2007-12-13 02:18 . 2004-11-01 12:38 57,344 --------- C:\WINDOWS\system32\XButton.ocx 2007-12-13 02:18 . 2007-12-16 22:30 56 --a------ C:\WINDOWS\system32\S-1-5-21-0070A401 2007-12-10 16:23 . 2007-12-08 23:19 <DIR> d-------- C:\Program Files\AIMP Classic 2007-12-10 03:37 . 2007-12-24 12:32 512 --a------ C:\ScanSectorLog.dat 2007-12-10 03:12 . 2007-12-27 17:01 2,082 --a------ C:\rollback.ini 2007-12-10 03:08 . 2007-12-10 03:08 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\MailFrontier 2007-12-10 02:47 . 2007-12-29 19:02 14,760,736 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat 2007-12-10 02:47 . 2007-12-28 23:46 492,320 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat 2007-12-10 02:47 . 2007-12-28 23:46 201,356 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx 2007-12-10 02:47 . 2007-12-28 23:46 50,072 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx 2007-12-10 02:40 . 2007-03-09 00:02 75,512 --a------ C:\WINDOWS\zllsputility.exe 2007-12-10 02:40 . 2004-04-27 04:40 11,264 --a------ C:\WINDOWS\system32\SpOrder.dll 2007-12-10 02:40 . 2007-12-29 14:16 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat 2007-12-10 02:39 . 2007-12-27 19:55 <DIR> d-------- C:\WINDOWS\system32\ZoneLabs 2007-12-10 02:39 . 2007-03-09 00:01 1,087,216 --a------ C:\WINDOWS\system32\zpeng24.dll 2007-12-10 02:39 . 2007-12-29 18:07 49,617 --a------ C:\WINDOWS\system32\vsconfig.xml 2007-12-10 02:37 . 2007-12-29 18:05 <DIR> d-------- C:\WINDOWS\Internet Logs 2007-12-10 02:26 . 2007-12-10 02:26 0 --a------ C:\WINDOWS\system32\Ultra.dll 2007-12-10 02:07 . 2007-12-28 20:53 <DIR> d-------- C:\Program Files\Bug Doctor 2007-12-09 00:47 . 2007-12-09 00:47 <DIR> d-------- C:\Documents and Settings\Rendszergazda\WINDOWS 2007-12-07 20:43 . 2007-12-07 20:43 <DIR> d-------- C:\Quake III Arena 2007-12-04 20:38 . 2007-12-08 09:54 <DIR> d-------- C:\Program Files\JetAudio 2007-12-04 12:05 . 2007-12-04 12:05 101 --a------ C:\WINDOWS\wininit.ini 2007-12-01 05:22 . 2007-12-01 05:22 552 --a------ C:\WINDOWS\system32\d3d8caps.dat 2007-12-01 02:43 . 2007-12-09 00:27 <DIR> d-------- C:\Program Files\Lavasoft 2007-12-01 02:43 . 2007-12-01 02:43 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard 2007-12-01 02:43 . 2007-12-01 02:43 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2007-12-01 02:31 . 2007-12-01 02:35 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2007-12-01 02:26 . 2007-12-01 02:26 <DIR> d-------- C:\Program Files\Windows Defender 2007-11-30 14:31 . 2007-11-30 14:31 <DIR> d-------- C:\Program Files\Sprintbit Software 2007-11-29 18:11 . 2007-11-29 18:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ParetoLogic 2007-11-29 18:11 . 2007-11-29 18:11 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Downloaded Installations 2007-11-29 17:36 . 2007-11-29 17:36 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ParetoLogic Anti-Spyware 2007-11-29 11:43 . 2007-11-29 11:43 <DIR> d-------- C:\WINDOWS\system32\3Planesoft 2007-11-29 11:43 . 2007-11-29 11:43 <DIR> d-------- C:\Program Files\The One Ring 3D Screensaver 2007-11-29 11:43 . 2007-11-29 11:43 <DIR> d-------- C:\Program Files\3Planesoft Screensaver Manager . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-12-29 18:03 --------- d-----w C:\Program Files\PeerGuardian2 2007-12-29 18:01 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\utorrent 2007-12-29 17:58 --------- d-----w C:\Program Files\Chameleon Clock 2007-12-29 17:49 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\Skype 2007-12-28 20:09 --------- d-----w C:\Program Files\MSN Messenger 2007-12-28 18:45 --------- d-----w C:\Program Files\Winamp 2007-12-27 18:55 1,922,178 ----a-w C:\WINDOWS\Internet Logs\tvDebug.zip 2007-12-21 18:42 --------- d-----w C:\Program Files\Jewel Quest 2007-12-17 21:03 --------- d-----w C:\Program Files\FSMaxView 2007-12-17 00:50 737,280 ----a-w C:\WINDOWS\iun6002.exe 2007-12-12 23:40 17,045,788 ----a-w C:\WINDOWS\Internet Logs\vsmon_on_demand_2007_12_12_22_25_26_full.dmp.zip 2007-12-12 23:38 17,028,523 ----a-w C:\WINDOWS\Internet Logs\vsmon_on_demand_2007_12_12_17_42_42_full.dmp.zip 2007-12-10 12:34 16,840,914 ----a-w C:\WINDOWS\Internet Logs\vsmon_on_demand_2007_12_10_09_43_44_full.dmp.zip 2007-12-10 07:20 --------- d-----w C:\Program Files\EvilLyrics 2007-12-10 07:18 --------- d-----w C:\Program Files\Counter-Strike 1.6 2007-12-10 07:15 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\RaimaRadio 2007-12-10 02:24 18,432 ----a-w C:\Documents and Settings\Rendszergazda\spydb.dat 2007-12-05 20:50 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\COWON 2007-12-05 12:15 --------- d-----w C:\Program Files\Common Files\COWON 2007-12-01 03:14 277 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err 2007-11-30 13:04 --------- d-----w C:\Program Files\TC PowerPack 2007-11-28 00:25 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sunbelt Software 2007-11-27 14:14 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\Sunbelt Software 2007-11-26 23:10 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\Media Player Classic 2007-11-24 20:19 --------- d-----w C:\Documents and Settings\All Users\Application Data\GRETECH 2007-11-24 20:18 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\GRETECH 2007-11-24 20:17 --------- d-----w C:\Program Files\GRETECH 2007-11-24 19:50 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\Zoom Player 2007-11-23 09:45 --------- d-----w C:\Program Files\Codec Pack - All In 1 2007-11-23 08:33 --------- d-----w C:\Program Files\OpenSource Flash Video Splitter 2007-11-23 08:33 --------- d-----w C:\Program Files\DScaler5 2007-11-23 08:33 --------- d-----w C:\Program Files\CD Audio Reader Filter 2007-11-23 08:32 --------- d-----w C:\Program Files\RealMedia 2007-11-23 08:29 --------- d-----w C:\Program Files\SHOUTcast Source 2007-11-23 08:29 --------- d-----w C:\Program Files\Haali 2007-11-23 08:28 --------- d-----w C:\Program Files\DS-MP3 Source 2007-11-23 08:26 --------- d-----w C:\Program Files\DirectVobSub 2007-11-21 12:29 --------- d-----w C:\Program Files\PowerISO 2007-11-21 12:09 120,286 ----a-w C:\Documents and Settings\All Users\Application Data\firstlsp.reg.dat 2007-11-20 22:52 --------- d-----w C:\Program Files\sina SoftWare 2007-11-20 14:29 --------- d-----w C:\Documents and Settings\Rendszergazda\Application Data\ESET 2007-11-20 14:28 --------- d-----w C:\Documents and Settings\All Users\Application Data\ESET 2007-11-20 11:56 --------- d-----w C:\Program Files\Common Files\Agnitum Shared 2007-11-20 11:55 --------- d--h--w C:\Program Files\InstallShield Installation Information 2007-11-20 11:55 --------- d-----w C:\Program Files\ATI Technologies 2007-11-20 10:21 --------- d-----w C:\Program Files\Common Files\NVIDIA Shared 2007-11-19 17:38 --------- d-----w C:\Program Files\ABIT 2007-11-19 17:27 --------- d-----w C:\Program Files\uTorrent 2007-11-18 10:38 --------- d-----w C:\Program Files\MPlayer 2007-11-16 18:14 --------- d-----w C:\Program Files\Skype 2007-11-16 18:14 --------- d-----w C:\Program Files\Common Files\Skype 2007-11-16 18:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype 2007-11-13 12:52 --------- d-----w C:\Program Files\K-Lite Codec Pack 2007-11-06 11:16 --------- d-----w C:\Program Files\Mario Forever 2007-11-01 19:06 --------- d-----w C:\Program Files\Bejeweled 2 Deluxe 2007-11-01 18:34 --------- d-----w C:\Program Files\Eggsucker 2007-10-31 18:05 --------- d-----w C:\Program Files\FDRLab 2007-10-29 07:05 14 ----a-w C:\Documents and Settings\Rendszergazda\getfile.dat 2007-10-28 17:21 --------- d-----w C:\Program Files\D4 . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-17 15:47] "DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2006-11-12 11:48] "Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2007-09-13 13:31] "µTorrent"="C:\WINDOWS\utorrent.exe" [2007-02-16 07:09] "uTorrent"="C:\Program Files\uTorrent\uTorrent.exe" [2007-10-16 12:54] "PeerGuardian"="C:\Program Files\PeerGuardian2\pg2.exe" [2005-09-18 17:40] "INetBooster"="C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe" [] "HomeAlarm"="C:\Program Files\Chameleon Clock\ChamClock.exe" [2003-01-10 12:22] "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 11:54] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Activecaptions"="C:\WINDOWS\activecaptions.exe" [2005-11-14 13:00] "AllSnap"="C:\WINDOWS\allsnap.exe" [2006-11-14 13:00] "AsioReg"="REGSVR32 /S CTASIO.DLL" [] "CTHelper"="CTHELPER.EXE" [2006-08-11 14:56 C:\WINDOWS\CTHELPER.EXE] "CTxfiHlp"="CTXFIHLP.EXE" [2006-08-11 14:56 C:\WINDOWS\system32\CTXFIHLP.EXE] "ClocX"="C:\Program Files\ClocX\ClocX.exe" [2007-07-26 16:43] "Dimension4"="C:\Program Files\D4\D4.exe" [2004-02-04 01:26] "PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [2007-08-07 01:05] "SoundMan"="SOUNDMAN.EXE" [2004-11-15 11:20 C:\WINDOWS\SOUNDMAN.EXE] "UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [2006-09-07 18:19] "SpySoap_schedules"="C:\Program Files\SpySoap\schedules.exe" [] "SpySoap_tray"="C:\Program Files\SpySoap\tray.exe" [] "Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2006-11-03 19:20] "ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [] "SDTray"="C:\Program Files\Spyware Doctor\SDTrayApp.exe" [2007-11-02 17:24] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-17 15:47] "DWQueuedReporting"="C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2006-10-26 18:48] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "AfterPost"="C:\WINDOWS\afterpost.cmd" [2007-03-07 19:22] C:\Documents and Settings\All Users\Start Menu\Programs\Indˇt˘pult\ Orbit.lnk - C:\Program Files\Orbitdownloader\orbitdm.exe [2007-12-13 15:13:13] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "ForceClassicControlPanel"= 1 (0x1) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoSharedDocuments"= 1 (0x1) "NoStrCmpLogical"= 1 (0x1) "ForceCopyAclwithFile"= 0 (0x0) [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoSharedDocuments"= 1 (0x1) "NoStrCmpLogical"= 1 (0x1) "ForceCopyAclwithFile"= 0 (0x0) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice] @="" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice] @="" R2 FARBCopy;FAR Background Copy Service;C:\Program Files\far\plugins\bcopy\bcsvc.exe [2004-04-01 18:05] R3 pgfilter;pgfilter;C:\Program Files\PeerGuardian2\pgfilter.sys [2005-09-18 17:02] S1 SandBox;Outpost Firewall Sandbox Driver;C:\Program Files\Agnitum\Outpost Firewall\kernel\Sandbox.SYS [] S1 VFILT;Outpost Firewall Kernel Driver;C:\Program Files\Agnitum\Outpost Firewall\kernel\FILTNT.SYS [] S2 PctrlsInjectService;PctrlsInjectService;C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe [] S2 SpySoapSysGuardService;System Guard(SpySoap);C:\Program Files\SpySoap\SysGuard.exe [] S3 ADBLOCK.DLL;Outpost Firewall PlugIn (ADBLOCK.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\ADBLOCK.DLL [] S3 ARP.DLL;Outpost Firewall PlugIn (ARP.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\ARP.DLL [] S3 CONTENT.DLL;Outpost Firewall PlugIn (CONTENT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\CONTENT.DLL [] S3 DNSCACHE.DLL;Outpost Firewall PlugIn (DNSCACHE.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\DNSCACHE.DLL [] S3 FTPFILT.DLL;Outpost Firewall PlugIn (FTPFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\FTPFILT.DLL [] S3 HTMLFILT.DLL;Outpost Firewall PlugIn (HTMLFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\HTMLFILT.DLL [] S3 HTTPFILT.DLL;Outpost Firewall PlugIn (HTTPFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\HTTPFILT.DLL [] S3 IMAPFILT.DLL;Outpost Firewall PlugIn (IMAPFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\IMAPFILT.DLL [] S3 MAILFILT.DLL;Outpost Firewall PlugIn (MAILFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\MAILFILT.DLL [] S3 NNTPFILT.DLL;Outpost Firewall PlugIn (NNTPFILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\NNTPFILT.DLL [] S3 POP3FILT.DLL;Outpost Firewall PlugIn (POP3FILT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\POP3FILT.DLL [] S3 PROTECT.DLL;Outpost Firewall PlugIn (PROTECT.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\PROTECT.DLL [] S3 PsSdk30;PsSdk30;C:\WINDOWS\system32\Drivers\PsSdk30.drv [] S3 SBAPIFS;SBAPIFS;C:\WINDOWS\system32\drivers\sbapifs.sys [] S3 SECRET.DLL;Outpost Firewall PlugIn (SECRET.DLL);C:\Program Files\Agnitum\Outpost Firewall\kernel\SECRET.DLL [] S3 SpySoapSysGuardDriver;SpySoapSysGuardDriver;C:\Program Files\SpySoap\sysGuard.sys [] Newly Created Service - CATCHME Newly Created Service - PGFILTER Newly Created Service - PROCEXP90 . Contents of the 'Scheduled Tasks' folder "2007-12-29 17:31:00 C:\WINDOWS\Tasks\BugDoctorRendszergazda.job" - C:\Program Files\Bug Doctor\BugDoctor.exe "2007-12-29 17:08:16 C:\WINDOWS\Tasks\MP Scheduled Scan.job" - C:\Program Files\Windows Defender\MpCmdRun.exe "2007-12-25 17:00:01 C:\WINDOWS\Tasks\Pareto UNS.job" - C:\Program Files\Common Files\ParetoLogic\UUS\UUS.dll\Pareto_Update.exe . ************************************************************************ catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-12-29 19:03:21 Windows 5.1.2600 Szervizcsomag 2 NTFS detected NTDLL code modification: ZwClose scanning hidden processes ... scanning hidden autostart entries ... HKLM\Software\Microsoft\Windows\CurrentVersion\Run CTHelper = CTHELPER.EXE? CTxfiHlp = CTXFIHLP.EXE? scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************ . Completion time: 2007-12-29 19:04:51 . 2007-12-01 01:42:04 --- E O F ---
szomb. dec. 29, 2007 19:36

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Ok-Toldsd le ezt a progitt Futatod mint Administrator. a normalis tj nem csokentett modban, Csinald a parancs szerint a kepernyon.A scan alatt nemszabad kinyitva lennie seminek.Nemszabad sehova se klikelni A scen alatt restartolhatt a gep-nemkell megijedni a restart utan csinal C:/Combofix.txt, a tartalmatt tedd ide. es uj ´ log z HJT. http://download.bleepingcomputer.com/sUBs/ComboFix.exe
szomb. dec. 29, 2007 18:42

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	stell remélem jót raktam be : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:10:12, on 2007.12.29. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe C:\WINDOWS\system32\ZoneLabs\avsys\Monitor.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe C:\Program Files\D4\D4.exe C:\Program Files\far\plugins\bcopy\bcsvc.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Program Files\Spyware Doctor\svcntaux.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\activecaptions.exe C:\WINDOWS\allsnap.exe C:\WINDOWS\CTHELPER.EXE C:\Program Files\ClocX\ClocX.exe C:\Program Files\TC PowerPack\totalcmd.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Spyware Doctor\swdsvc.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Spyware Doctor\SDTrayApp.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\utorrent.exe C:\Program Files\PeerGuardian2\pg2.exe C:\Program Files\Chameleon Clock\ChamClock.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Orbitdownloader\orbitdm.exe C:\Program Files\Orbitdownloader\orbitnet.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe E:\filmek zenék\fire kép\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customi ... ch/ie.html R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customi ... .yahoo.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?.home=ytie R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customi ... .yahoo.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows XP Extended Editon R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [Activecaptions] "C:\WINDOWS\activecaptions.exe" O4 - HKLM\..\Run: [AllSnap] "C:\WINDOWS\allsnap.exe" O4 - HKLM\..\Run: [AsioReg] REGSVR32 /S CTASIO.DLL O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE O4 - HKLM\..\Run: [ClocX] "C:\Program Files\ClocX\ClocX.exe" O4 - HKLM\..\Run: [Dimension4] C:\Program Files\D4\D4.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] "C:\Program Files\PowerISO\PWRISOVM.EXE" O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [SpySoap_schedules] "C:\Program Files\SpySoap\schedules.exe" O4 - HKLM\..\Run: [SpySoap_tray] "C:\Program Files\SpySoap\tray.exe" O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [µTorrent] "C:\WINDOWS\utorrent.exe" O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [PeerGuardian] C:\Program Files\PeerGuardian2\pg2.exe O4 - HKCU\..\Run: [INetBooster] C:\Program Files\SoftwareClub.ws\SC Net Speed Booster\ISpBos.exe O4 - HKCU\..\Run: [HomeAlarm] C:\Program Files\Chameleon Clock\ChamClock.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-19\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [AfterPost] "C:\WINDOWS\afterpost.cmd" (User 'Default user') O4 - Global Startup: Orbit.lnk = C:\Program Files\Orbitdownloader\orbitdm.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra button: Outpost Firewall Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Dimension4 - Thinking Man Software - C:\Program Files\D4\D4.exe O23 - Service: FAR Background Copy Service (FARBCopy) - Unknown owner - C:\Program Files\far\plugins\bcopy\bcsvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Outpost Firewall Service (OutpostFirewall) - Unknown owner - C:\Program Files\Agnitum\Outpost Firewall\outpost.exe (file missing) O23 - Service: PctrlsInjectService - Unknown owner - C:\Program Files\ParetoLogic\PGsurfer\InjectService.exe (file missing) O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe O23 - Service: System Guard(SpySoap) (SpySoapSysGuardService) - Unknown owner - C:\Program Files\SpySoap\SysGuard.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 9663 bytes Az elmúlt fél órában már nagyon fogta a gépet és le-le fagyott azért is voltam ilyen lassú!
szomb. dec. 29, 2007 18:19

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Ha megvan a gepeden a HJ-ted ide a logott-hogy pontosan lassam hogy mi a diagnoza.
szomb. dec. 29, 2007 17:50

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	stell köszönöm a gyors választ! az általad említett progi fut a gépemen plusz az ad aware 2007. a spyboot sd és a windows defender is.lehet ez is gond? Mi a megoldás ? Újra telepíteni a ZA-t? Van értelme ha már ki tudta lőni ? Help UI:mint a kérdésből is kiderülhetett nem vagyok pc guru!/sajnos/
szomb. dec. 29, 2007 17:42

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Valami virus kilotte a tuzfaladat. 1:Ide tennia Hijack-logott.
szomb. dec. 29, 2007 17:34

xerox ezüst tag Csatlakozott: szomb. dec. 29, 2007 10:57 Hozzászólások: 51	Üdvözletem mindenkinek! Segítséget kérnék, a lányom hallgatta a WINAMP-ot de az egy hibaüzenet után le állt és a gép is újra indított.Az eset óta /2napja/ nincs kint az asztalon a ZA Securiti Suite ikonja. A windows biztonsági központja azt írja , hogy megy a tűzfal és a vírusírtó is.A 7.0.337.000-es verziót használom.Amióta nem látszik az ikon minden nap fog a spyware doctor jó pár trójait /ma 14-et/. Köszönöm a segítséget!
szomb. dec. 29, 2007 17:21

Laci_L a fórum lelke Csatlakozott: szer. márc. 24, 2004 13:43 Hozzászólások: 11974 Tartózkodási hely: Budapest, Solymár	A 7.0.337.000-es verzió már korrekten megy. Nem ez az első eset, hogy a ZA új széria első darabjával baj van.
hétf. márc. 26, 2007 10:28

Esztyke vas-tag Csatlakozott: kedd jan. 23, 2007 12:09 Hozzászólások: 3	Sziasztok! Most telepítettem újra a gépemet és Zone alarm security suite van rajta. Na most mióta ez van, a live messengeren nem jelennek meg sem a partnerek képei, sem egyedi hangulatjelek... Melyiknél lehet a gond? Médiumra van állítva a tűzfal, a messengert illetően minden engedélyezve van és mégsem... Nagyon köszönöm a segítséget! Üdv Eszter
szomb. márc. 24, 2007 12:18

Laci_L a fórum lelke Csatlakozott: szer. márc. 24, 2004 13:43 Hozzászólások: 11974 Tartózkodási hely: Budapest, Solymár	TargeT írta: ...Nem tudom, minek olyan verziókat kiadni, ahol a gyári fórumon sincs más megoldás, mint a cseréld másikra... Mert elszúrták, gyorsan kiadták, aztán már nem tudnak mást mondani. A piac hajtja az egészet. Gyorsan (a másik előtt) lépni valamit. Legfeljebb sz*ar lesz. Majd javítják. Van ilyen más cégnél is (pl Microsoft). Nekem pl a 7.0.302.000-es verzió nem megy rendesen. Le is szedtem (pontosabban vissza Ghostoltam). Ott is az ügyfélszolgálat olyan bonyolult javítást ajánlott, amit 100-ból jó ha egy ért, és meg tudja csinálni.
csüt. márc. 01, 2007 9:25

TargeT a fórum lelke Csatlakozott: szer. márc. 24, 2004 13:43 Hozzászólások: 6719	http://forum.terminal.hu/viewtopic.php?p=682315#682315 http://forum.terminal.hu/viewtopic.php?p=760910#760910 Nem tudom, minek olyan verziókat kiadni, ahol a gyári fórumon sincs más megoldás, mint a cseréld másikra.
csüt. márc. 01, 2007 9:00

MattH vas-tag Csatlakozott: szer. márc. 24, 2004 13:43 Hozzászólások: 2	Megy Oké, írok is!!!! A régit leszedtem ahogy mondtad, és felraktam a legujabbat. Ezt: ZoneLabs ZoneAlarm Pro 7.0.302.000 , persze "vettem" hozzá kulcsot is. Ez már szépen fut! Nálam egy régebbi fut nagyon jól. Nem tudom miért nem ment a másik, néztem a gyári fórumot ott sem volt semmi jó megoldás, csak hogy szedd le-rakj fel másikat... Bye
csüt. márc. 01, 2007 0:33

Laci_L a fórum lelke Csatlakozott: szer. márc. 24, 2004 13:43 Hozzászólások: 11974 Tartózkodási hely: Budapest, Solymár	MattH Azért egy válasz beleférne, hogy sikerült-e? ...
szer. feb. 28, 2007 20:41

belfegor vas-tag Csatlakozott: szomb. márc. 04, 2006 12:58 Hozzászólások: 9	Hello! Lenne 1 kis problémám. zone alarm security suit-om van és az lenne h, van 2 hálókártya a gépembe egyiken jön be a net amásikon megy ki a másik géphez, de ha fut a zone alarm akkor tilt kifelé a net és nem tudok mit csinálni vele, szerintetek mi lehet a probléma? Üdv: Belfegor
szer. feb. 28, 2007 20:37

Laci_L a fórum lelke Csatlakozott: szer. márc. 24, 2004 13:43 Hozzászólások: 11974 Tartózkodási hely: Budapest, Solymár	1. Törölni a C:\WINDOWS\Internet Logs\ tartalmát 2. Törölni a C:\WINDOWS\system32\ZoneLabs\ tartalmát 3. Minden Zonelabs és Zoneaalarm bejegyzést törölni a Registryben 3. Ne használd ezt a a verziót, bajok voltak vele, a licensz kód jó az újabbhoz is (ha nem blacklisted). Helyette egyelőre a ZoneAlarm Pro 6.5.737.000 verziót ajánlom (a 7.0.302.000-vel is vannak gondok). Minden verzió letölthető innen: http://download.zonelabs.com/bin/free/information/zap/releaseHistory.html Ps: ha kell kód, írj pü-t. Szerk: most látom, nincs fent a honlapon, leszedték. Nekem megvan, de itt megtaláltam ftp keresővel: http://download.zonelabs.com/bin/free/1025_update/zapSetup_65_737_000_en.exe
kedd feb. 27, 2007 11:12
Hozzászólások megjelenítése: Rendezés

Oldal: 3 / 6

[ 283 hozzászólás ]

Oldal Előző 1, 2, 3, 4, 5, 6 Következő

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 10 vendég

Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség