View Full Version : Need help with virus/malware removal
The last few weeks i've been facing a problem with viruses/malware...the problems i've noticed are the following two:
1) 2 IEXPLORER.EXE run on the background from time to time (even if i keep closing them) as i can see on task manager..
2) For some reason i can't see some hidden files on my PC, even though i try to make them visible again through the system option..
Here is a HiJackThis logfile:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:30:52 μμ, on 26/11/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\WINDOWS\system32\gearsec.exe
c:\program files\mcafee.com\agent\mcdetect.exe
C:\Program Files\Messenger\msmsgs.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\hijackthis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://greek.toggle.com/el/index.php?rvs=hompag&d=79919192
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Συνδέσεις
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Ραδιόφωνο - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIA\VIAudioi\SBADeck\ADeck.exe 1
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
O4 - HKLM\..\Run: [Ball that ford software] C:\Documents and Settings\All Users\Application Data\Comp Jugs Ball That\find ooze.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1
O4 - HKCU\..\Run: [Program flaw] C:\DOCUME~1\Stelios1\APPLIC~1\HOPEAM~1\DownloadBoob.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Γρήγορη εκκίνηση HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Ε&ξαγωγή στο Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,90/mcinsctl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {DB7BF79A-FC51-4B5A-92BC-A65731174380} (InstantAction Game Launcher) - http://www.instantaction.com/download/iaplayer.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\system32\gearsec.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
--
End of file - 8495 bytes
Hi TN-Sama
Disable resident protections (Antivirus...); you'll re-enable them after the scan
DownloadLop S&D here (http://eric.71.mespages.googlepages.com/LopSD.exe)
Double-click Lop S&D.exe
Choose the language, then choose Option 1 (Search)
Wait till the end of the scan
Post the log which is created: (C:\lopR.txt)
This the LopR.txt:
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 1
X86-based PC ( Uniprocessor Free : Intel(R) Celeron(R) CPU 2.40GHz )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Stelios1 ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:1 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( Τρι 02/12/2008|11:31 )
--------------------\\ Listing folders in APPLIC~1
[11/11/2007|07:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> {CFAB4006-0AE0-414D-866A-DCB2C46553CF}
[11/07/2007|06:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[11/07/2007|07:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer
[17/12/2007|02:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> ATI
[01/05/2008|06:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Azureus
[22/11/2008|04:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Comp Jugs Ball That
[08/09/2005|08:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CyberLink
[21/10/2008|06:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> EmailNotifier
[27/08/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FreeDownloadManager.ORG
[25/01/2008|01:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google
[08/09/2005|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Hewlett-Packard
[08/07/2008|06:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft
[02/10/2008|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes
[08/09/2005|11:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> McAfee.com
[10/11/2005|02:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[21/10/2008|06:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Megaupload
[12/05/2008|02:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[08/10/2005|04:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MSN6
[23/04/2008|08:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound
[04/09/2008|05:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> OrbNetworks
[24/12/2007|06:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Propellerhead Software
[31/08/2008|07:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype
[11/07/2007|07:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony Ericsson
[30/08/2008|01:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Soulseek
[27/09/2008|01:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy
[11/07/2007|07:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Teleca
[11/11/2007|07:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP
[21/06/2008|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[0|Αρχεία] C:\DOCUME~1\ALLUSE~1\APPLIC~1\byte
[30|Κατάλογοι] C:\DOCUME~1\ALLUSE~1\APPLIC~1\διαθέσιμα byte
[08/09/2005|06:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[0|Αρχεία] C:\DOCUME~1\DEFAUL~1\APPLIC~1\byte
[3|Κατάλογοι] C:\DOCUME~1\DEFAUL~1\APPLIC~1\διαθέσιμα byte
[06/08/2008|08:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Adobe
[11/10/2005|05:58] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Macromedia
[08/09/2005|07:11] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[14/01/2008|02:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[18/12/2005|11:45] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Mozilla
[0|Αρχεία] C:\DOCUME~1\LOCALS~1\APPLIC~1\byte
[7|Κατάλογοι] C:\DOCUME~1\LOCALS~1\APPLIC~1\διαθέσιμα byte
[08/09/2005|06:45] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[0|Αρχεία] C:\DOCUME~1\NETWOR~1\APPLIC~1\byte
[3|Κατάλογοι] C:\DOCUME~1\NETWOR~1\APPLIC~1\διαθέσιμα byte
[31/01/2008|01:24] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Adobe
[11/07/2007|06:55] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> AdobeAUM
[19/09/2008|09:02] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> AdobeUM
[19/09/2007|11:00] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Apple Computer
[17/12/2007|02:42] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> ATI
[25/05/2008|11:34] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Azureus
[21/10/2008|06:14] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> EmailNotifier
[01/12/2008|07:02] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Free Download Manager
[27/09/2008|10:58] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> FrostWire
[19/11/2008|02:44] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> GarageGames
[19/06/2008|01:57] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> gtk-2.0
[15/06/2007|11:25] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Help
[22/11/2008|04:17] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> hopeamoklist
[08/09/2005|06:51] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Identities
[08/10/2008|09:59] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> InstallShield
[15/07/2007|08:24] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Leadertech
[21/06/2008|04:37] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> LG Electronics
[15/07/2008|03:30] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> LGAAS
[27/09/2008|10:58] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> LimeWire
[15/06/2007|11:32] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Macromedia
[02/10/2008|08:34] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Malwarebytes
[08/09/2005|07:21] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[04/09/2008|05:13] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Media Player Classic
[02/10/2008|10:10] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Microsoft
[25/11/2008|07:01] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> mIRC
[26/08/2008|08:36] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Mozilla
[13/09/2008|07:44] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> MSN6
[23/04/2008|08:53] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> NCH Swift Sound
[24/12/2007|06:39] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Propellerhead Software
[23/04/2008|08:53] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Recordpad
[07/01/2008|10:05] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> SmartFTP
[24/04/2008|05:42] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Softplicity
[11/07/2007|07:16] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Sony Ericsson
[04/02/2008|01:56] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Steinberg
[21/12/2007|01:49] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Sun
[14/10/2007|07:27] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Teleca
[27/11/2008|06:05] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> uTorrent
[14/01/2008|09:38] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> vlc
[04/09/2008|05:11] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Winamp
[26/06/2007|08:27] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> WinRAR
[0|Αρχεία] C:\DOCUME~1\Stelios1\APPLIC~1\byte
[42|Κατάλογοι] C:\DOCUME~1\Stelios1\APPLIC~1\διαθέσιμα byte
--------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks
[02/12/2008 11:00 πμ][--ah-----] C:\WINDOWS\tasks\BDF81C27813F8BD7.job
[01/12/2008 06:48 μμ][--ah-----] C:\WINDOWS\tasks\SA.DAT
[27/11/2001 12:00 μμ][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( BDF81C27813F8BD7.job )=( c:\docume~1\stelios1\applic~1\hopeam~1\Findtitleuser.exe )
--------------------\\ Listing Folders in C:\Program Files
[23/10/2008|08:00] C:\Program Files\<DIR> Acoustica MP3 CD Burner
[24/04/2008|02:27] C:\Program Files\<DIR> Admiresoft
[11/07/2007|06:54] C:\Program Files\<DIR> Adobe
[28/05/2008|10:40] C:\Program Files\<DIR> ATI Technologies
[23/10/2008|08:07] C:\Program Files\<DIR> Audio CD Maker
[24/04/2008|02:23] C:\Program Files\<DIR> AVIConverter
[27/08/2008|11:38] C:\Program Files\<DIR> BitComet
[04/09/2008|05:48] C:\Program Files\<DIR> Combined Community Codec Pack
[25/11/2008|08:10] C:\Program Files\<DIR> Common Files
[08/09/2005|06:42] C:\Program Files\<DIR> ComPlus Applications
[08/09/2005|08:18] C:\Program Files\<DIR> CyberLink
[11/07/2007|07:25] C:\Program Files\<DIR> Disc2Phone
[27/08/2008|11:41] C:\Program Files\<DIR> Free Download Manager
[19/06/2008|01:45] C:\Program Files\<DIR> GIMP-2.0
[08/10/2008|09:59] C:\Program Files\<DIR> Guillemot
[08/10/2008|09:59] C:\Program Files\<DIR> Hercules
[08/09/2005|07:48] C:\Program Files\<DIR> Hewlett-Packard
[22/11/2008|04:13] C:\Program Files\<DIR> hopeamoklist
[08/09/2005|07:48] C:\Program Files\<DIR> HP
[17/11/2008|06:33] C:\Program Files\<DIR> InstallShield Installation Information
[08/09/2005|07:43] C:\Program Files\<DIR> Internet Explorer
[24/04/2008|04:30] C:\Program Files\<DIR> KanjiWare
[17/12/2007|03:06] C:\Program Files\<DIR> Lavalys
[23/04/2008|05:06] C:\Program Files\<DIR> Lavasoft
[11/11/2008|05:53] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/09/2005|07:10] C:\Program Files\<DIR> McAfee.com
[21/10/2008|06:13] C:\Program Files\<DIR> Megaupload
[08/09/2005|06:42] C:\Program Files\<DIR> Messenger
[08/09/2005|06:46] C:\Program Files\<DIR> microsoft frontpage
[22/06/2007|07:23] C:\Program Files\<DIR> Microsoft Office
[08/09/2005|07:21] C:\Program Files\<DIR> Microsoft Visual Studio
[08/09/2005|07:21] C:\Program Files\<DIR> Microsoft Works
[08/09/2005|07:22] C:\Program Files\<DIR> Microsoft.NET
[25/11/2008|06:50] C:\Program Files\<DIR> mIRC
[08/09/2005|06:44] C:\Program Files\<DIR> Movie Maker
[02/12/2008|08:38] C:\Program Files\<DIR> Mozilla Firefox
[02/02/2008|11:12] C:\Program Files\<DIR> MSN
[08/09/2005|06:42] C:\Program Files\<DIR> MSN Gaming Zone
[16/09/2007|11:29] C:\Program Files\<DIR> MSN Messenger
[24/04/2008|02:10] C:\Program Files\<DIR> NCH Swift Sound
[08/09/2005|06:43] C:\Program Files\<DIR> NetMeeting
[08/09/2005|06:44] C:\Program Files\<DIR> Online Services
[07/08/2008|09:55] C:\Program Files\<DIR> Outlook Express
[19/10/2008|03:10] C:\Program Files\<DIR> PokerStars
[11/07/2007|07:04] C:\Program Files\<DIR> QuickTime
[08/09/2005|06:54] C:\Program Files\<DIR> S3
[07/01/2008|10:05] C:\Program Files\<DIR> SmartFTP Client
[07/01/2008|10:03] C:\Program Files\<DIR> SmartFTP Client 2.5 Setup Files
[30/07/2008|07:14] C:\Program Files\<DIR> Sony Ericsson
[15/10/2008|11:56] C:\Program Files\<DIR> SoulseekNS
[08/11/2008|06:55] C:\Program Files\<DIR> Spybot - Search & Destroy
[04/02/2008|01:33] C:\Program Files\<DIR> Syncrosoft
[24/04/2008|05:42] C:\Program Files\<DIR> TotalImageConverter
[26/11/2008|06:30] C:\Program Files\<DIR> trend micro
[08/09/2005|06:51] C:\Program Files\<DIR> Uninstall Information
[13/05/2008|08:55] C:\Program Files\<DIR> USB Remote NDIS Network Device
[27/08/2008|11:39] C:\Program Files\<DIR> uTorrent
[25/01/2008|02:03] C:\Program Files\<DIR> VIA
[08/09/2005|06:57] C:\Program Files\<DIR> VIA Technologies, INC
[14/01/2008|09:38] C:\Program Files\<DIR> VideoLAN
[08/10/2008|10:32] C:\Program Files\<DIR> VirtualDJ
[04/09/2008|05:07] C:\Program Files\<DIR> Winamp
[04/09/2008|05:06] C:\Program Files\<DIR> Winamp Remote
[16/10/2007|03:13] C:\Program Files\<DIR> Windows Media Player
[08/09/2005|06:42] C:\Program Files\<DIR> Windows NT
[08/09/2005|07:29] C:\Program Files\<DIR> WindowsUpdate
[10/10/2007|02:54] C:\Program Files\<DIR> WinRAR
[08/09/2005|06:46] C:\Program Files\<DIR> xerox
[0|Αρχεία] C:\Program Files\byte
[70|Κατάλογοι] C:\Program Files\διαθέσιμα byte
--------------------\\ Listing Folders in C:\Program Files\Common Files
[17/09/2007|12:03] C:\Program Files\Common Files\<DIR> Adobe
[11/12/2007|10:50] C:\Program Files\Common Files\<DIR> ATI Technologies
[18/11/2008|06:59] C:\Program Files\Common Files\<DIR> Blizzard Entertainment
[08/09/2005|07:21] C:\Program Files\Common Files\<DIR> DESIGNER
[08/09/2005|07:45] C:\Program Files\Common Files\<DIR> Hewlett-Packard
[08/09/2005|07:50] C:\Program Files\Common Files\<DIR> HP
[17/12/2007|01:59] C:\Program Files\Common Files\<DIR> InstallShield
[17/12/2007|01:59] C:\Program Files\Common Files\<DIR> Microsoft Shared
[08/09/2005|06:43] C:\Program Files\Common Files\<DIR> MSSoap
[08/09/2005|07:36] C:\Program Files\Common Files\<DIR> ODBC
[08/09/2005|06:43] C:\Program Files\Common Files\<DIR> Services
[11/07/2007|07:08] C:\Program Files\Common Files\<DIR> Sony Ericsson Shared
[08/09/2005|07:36] C:\Program Files\Common Files\<DIR> SpeechEngines
[02/06/2007|10:04] C:\Program Files\Common Files\<DIR> SWF Studio
[08/09/2005|07:21] C:\Program Files\Common Files\<DIR> System
[11/07/2007|07:08] C:\Program Files\Common Files\<DIR> Teleca Shared
[23/04/2008|05:05] C:\Program Files\Common Files\<DIR> Wise Installation Wizard
[0|Αρχεία] C:\Program Files\Common Files\byte
[19|Κατάλογοι] C:\Program Files\Common Files\διαθέσιμα byte
--------------------\\ Process
( 49 Processes )
... OK !
--------------------\\ Searching with S_Lop
C:\DOCUME~1\Stelios1\APPLIC~1\HOPEAM~1
C:\DOCUME~1\Stelios1\APPLIC~1\HOPEAM~1\DownloadBoob.exe
C:\DOCUME~1\Stelios1\APPLIC~1\HOPEAM~1\faqoqwlj.exe
C:\DOCUME~1\Stelios1\APPLIC~1\HOPEAM~1\Find title user.exe
C:\DOCUME~1\Stelios1\APPLIC~1\HOPEAM~1\kdrxedfe.exe
C:\DOCUME~1\Stelios1\APPLIC~1\HOPEAM~1\llivylfu.exe
--------------------\\ Searching for Lop Files - Folders
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Comp Jugs Ball That
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Comp Jugs Ball That\find ooze.exe
C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1
C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\DownloadBoob.exe
C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\faqoqwlj.exe
C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\Find title user.exe
C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\kdrxedfe.exe
C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\llivylfu.exe
C:\Program Files\hopeam~1
C:\DOCUME~1\Stelios1\Cookies\stelios1@adultfriendfinder[2].txt
C:\DOCUME~1\Stelios1\Cookies\stelios1@888[2].txt
C:\DOCUME~1\Stelios1\Cookies\stelios1@888[3].txt
C:\WINDOWS\Tasks\BDF81C27813F8BD7.job
--------------------\\ Searching within the Registry
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Hide Ball Proc]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\Stelios1\\APPLIC~1\\HOPEAM~1\\DownloadBoob.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Program flaw"="C:\\DOCUME~1\\Stelios1\\APPLIC~1\\HOPEAM~1\\DownloadBoob.exe"
"Program flaw"="C:\\DOCUME~1\\Stelios1\\APPLIC~1\\HOPEAM~1\\DownloadBoob.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ball that ford software"="C:\\Documents and Settings\\All Users\\Application Data\\Comp Jugs Ball That\\find ooze.exe"
--------------------\\ Checking the Hosts file
Hosts file CLEAN
--------------------\\ Searching for hidden files with Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-02 11:32:38
Windows 5.1.2600 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 568
--------------------\\ Searching for other infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\Stelios1\Application Data\uTorrent\Reason 4 + Keygen + Patch RPS.torrent
C:\DOCUME~1\Stelios1\Recent\AutoCAD-2008-keygen.lnk
C:\DOCUME~1\Stelios1\Επιφάνεια εργασίας\Orfeas\Extratorrent com Reason v4 Working Keygen Patch RPS.torrent
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Reason4 Keygen.zip
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Reason4 RpsPatch.zip
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Thumbs.db
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Torrent downloaded from Demonoid.com.txt
[F:564][D:9]-> C:\DOCUME~1\Stelios1\LOCALS~1\Temp
[F:181][D:0]-> C:\DOCUME~1\Stelios1\Cookies
[F:727][D:4]-> C:\DOCUME~1\Stelios1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Τρι 02/12/2008|11:35 - Option : [1]
--------------------\\ Scan completed at 11:35:03
To access the Uninstall Manager you would do the following:
1. Start HijackThis
2. Click on the Config button
3. Click on the Misc Tools button
4. Click on the Open Uninstall Manager button.
You will now be presented with a screen similar to the one below:
http://img.bleepingcomputer.com/tutorials/hijackthis/uninstall-man.jpg
5. Click on the Save list... button and specify where you would like to save this file. When you press Save button a notepad will open with the contents of that file. Simply copy and paste the contents of that notepad here on your next reply.
Here is the saved list:
Acoustica MP3 CD Burner
Ad-Aware 2007
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Adobe Reader 7.0.5
Adobe Shockwave Player 11
Adobe® Photoshop® Album Starter Edition 3.0
ATI - Βοηθητικό πρόγραμμα απεγκατάστασης λογισμικού
ATI Catalyst Control Center
ATI Display Driver
ATI HYDRAVISION
ATI Parental Control & Encoder
Audio CD Maker
AVIConverter 5.1.0
AVIVO Codecs
Blaze Media Pro
Combined Community Codec Pack 2008-01-24
Disc2Phone
EVEREST Home Edition v2.20
Express Burn
Express Rip
Free Download Manager 2.5
GIMP 2.4.6
Golden Records
Hercules DJ Control MP3 drivers
HijackThis 2.0.2
HP Image Zone 4.2
HP PSC & OfficeJet 4.2
HP Software Update
LEGEA CATALOG 2008 1.0
Malwarebytes' Anti-Malware
McAfee Personal Firewall Plus
McAfee SecurityCenter
McAfee VirusScan
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Greek Language Pack
Microsoft .NET Framework 2.0
Microsoft Office Professional Edition 2003
Microsoft Office Visio Professional 2003
Microsoft Visual C++ 2005 Redistributable
mIRC
Mozilla Firefox (3.0.4)
PokerStars
PowerDVD
Prism
ProSavageDDR and Utilities
QuickTime
Recordpad
Roland Garros 1999
S3Display
S3Gamma2
S3Overlay
Slice Uninstall
SmartFTP Client
SmartFTP Client 2.5 Setup Files (remove only)
Sony Ericsson PC Suite
Sony Ericsson Symbian 9 Drivers
SoulSeek 157 NS 13
SoulSeek Client 156c
SoundTap
Spybot - Search & Destroy
Steinberg Nuendo v3.2.0.1128
Super Mp3 Converter 4.0
Switch
SyncroSoft Emu (Remove only)
Syncrosoft's License Control
TotalImageConverter
USB Remote NDIS Network Device
VIA Audio Driver Setup Program
VIA Διαχειριστής Συσκευών Πλατφόρμας
VideoLAN VLC media player 0.8.6i
Virtual DJ - Atomix Productions
Winamp
Winamp Remote
Windows Installer 3.0 (KB884016)
Windows Installer 3.1 (KB893803)
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Format Runtime
WinRAR 3.70 – Εφαρμογή Διαχείρισης Συμπιεσμένων Αρχείων
Άμεση επιδιόρθωση για Windows XP - KB822603 -->transalation: Instant repair for windows XP
IMPORTANT I notice there are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.
SoulSeek 157 NS 13
SoulSeek Client 156c
I'd like you to read the this thread (http://forums.spybot.info/showthread.php?t=282).
Please go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).
Please run a new uninstall list scan when finished and post the log back here.
Done as you instracted and here is the new uninstal_list.txt:
Acoustica MP3 CD Burner
Ad-Aware 2007
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Adobe Reader 7.0.5
Adobe Shockwave Player 11
Adobe® Photoshop® Album Starter Edition 3.0
ATI - Βοηθητικό πρόγραμμα απεγκατάστασης λογισμικού
ATI Catalyst Control Center
ATI Display Driver
ATI HYDRAVISION
ATI Parental Control & Encoder
Audio CD Maker
AVIConverter 5.1.0
AVIVO Codecs
Blaze Media Pro
Combined Community Codec Pack 2008-01-24
Disc2Phone
EVEREST Home Edition v2.20
Express Burn
Express Rip
Free Download Manager 2.5
GIMP 2.4.6
Golden Records
Hercules DJ Control MP3 drivers
HijackThis 2.0.2
HP Image Zone 4.2
HP PSC & OfficeJet 4.2
HP Software Update
LEGEA CATALOG 2008 1.0
Malwarebytes' Anti-Malware
McAfee Personal Firewall Plus
McAfee SecurityCenter
McAfee VirusScan
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Greek Language Pack
Microsoft .NET Framework 2.0
Microsoft Office Professional Edition 2003
Microsoft Office Visio Professional 2003
Microsoft Visual C++ 2005 Redistributable
mIRC
Mozilla Firefox (3.0.4)
PowerDVD
Prism
ProSavageDDR and Utilities
QuickTime
Recordpad
Roland Garros 1999
S3Display
S3Gamma2
S3Overlay
Slice Uninstall
SmartFTP Client
SmartFTP Client 2.5 Setup Files (remove only)
Sony Ericsson PC Suite
Sony Ericsson Symbian 9 Drivers
SoundTap
Spybot - Search & Destroy
Steinberg Nuendo v3.2.0.1128
Super Mp3 Converter 4.0
Switch
SyncroSoft Emu (Remove only)
Syncrosoft's License Control
TotalImageConverter
USB Remote NDIS Network Device
VIA Audio Driver Setup Program
VIA Διαχειριστής Συσκευών Πλατφόρμας
VideoLAN VLC media player 0.8.6i
Virtual DJ - Atomix Productions
Winamp
Winamp Remote
Windows Installer 3.0 (KB884016)
Windows Installer 3.1 (KB893803)
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Format Runtime
WinRAR 3.70 – Εφαρμογή Διαχείρισης Συμπιεσμένων Αρχείων
Άμεση επιδιόρθωση για Windows XP - KB822603
Restart Lop S&D
This time choose Option 3 (Fix - Hosts)
Don't close the window during suppression!
Post the log which is created: (C:\lopR.txt)
Here is the new LopR.txt:
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 1
X86-based PC ( Uniprocessor Free : Intel(R) Celeron(R) CPU 2.40GHz )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Stelios1 ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:0 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [3] ( Τετ 03/12/2008|21:58 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX
Deleted! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Comp Jugs Ball That\find ooze.exe
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\DownloadBoob.exe
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\faqoqwlj.exe
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\Find title user.exe
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\kdrxedfe.exe
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1\llivylfu.exe
Deleted! - C:\DOCUME~1\Stelios1\Cookies\stelios1@adultfriendfinder[2].txt
Deleted! - C:\DOCUME~1\Stelios1\Cookies\stelios1@888[2].txt
Deleted! - C:\DOCUME~1\Stelios1\Cookies\stelios1@888[3].txt
Deleted! - C:\WINDOWS\Tasks\BDF81C27813F8BD7.job
Deleted! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Comp Jugs Ball That
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\hopeam~1
Deleted! - C:\Program Files\hopeam~1
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing folders in APPLIC~1
[11/11/2007|07:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> {CFAB4006-0AE0-414D-866A-DCB2C46553CF}
[11/07/2007|06:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[11/07/2007|07:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer
[17/12/2007|02:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> ATI
[01/05/2008|06:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Azureus
[08/09/2005|08:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CyberLink
[21/10/2008|06:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> EmailNotifier
[27/08/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FreeDownloadManager.ORG
[25/01/2008|01:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google
[08/09/2005|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Hewlett-Packard
[08/07/2008|06:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft
[02/10/2008|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes
[08/09/2005|11:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> McAfee.com
[10/11/2005|02:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[21/10/2008|06:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Megaupload
[12/05/2008|02:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[08/10/2005|04:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MSN6
[23/04/2008|08:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound
[04/09/2008|05:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> OrbNetworks
[24/12/2007|06:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Propellerhead Software
[31/08/2008|07:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype
[11/07/2007|07:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony Ericsson
[30/08/2008|01:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Soulseek
[27/09/2008|01:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy
[11/07/2007|07:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Teleca
[11/11/2007|07:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP
[21/06/2008|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[0|Αρχεία] C:\DOCUME~1\ALLUSE~1\APPLIC~1\byte
[29|Κατάλογοι] C:\DOCUME~1\ALLUSE~1\APPLIC~1\διαθέσιμα byte
[08/09/2005|06:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[0|Αρχεία] C:\DOCUME~1\DEFAUL~1\APPLIC~1\byte
[3|Κατάλογοι] C:\DOCUME~1\DEFAUL~1\APPLIC~1\διαθέσιμα byte
[06/08/2008|08:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Adobe
[11/10/2005|05:58] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Macromedia
[08/09/2005|07:11] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[14/01/2008|02:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[18/12/2005|11:45] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Mozilla
[0|Αρχεία] C:\DOCUME~1\LOCALS~1\APPLIC~1\byte
[7|Κατάλογοι] C:\DOCUME~1\LOCALS~1\APPLIC~1\διαθέσιμα byte
[08/09/2005|06:45] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[0|Αρχεία] C:\DOCUME~1\NETWOR~1\APPLIC~1\byte
[3|Κατάλογοι] C:\DOCUME~1\NETWOR~1\APPLIC~1\διαθέσιμα byte
[31/01/2008|01:24] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Adobe
[11/07/2007|06:55] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> AdobeAUM
[19/09/2008|09:02] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> AdobeUM
[19/09/2007|11:00] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Apple Computer
[17/12/2007|02:42] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> ATI
[25/05/2008|11:34] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Azureus
[21/10/2008|06:14] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> EmailNotifier
[03/12/2008|06:48] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Free Download Manager
[27/09/2008|10:58] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> FrostWire
[19/11/2008|02:44] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> GarageGames
[19/06/2008|01:57] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> gtk-2.0
[15/06/2007|11:25] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Help
[08/09/2005|06:51] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Identities
[08/10/2008|09:59] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> InstallShield
[15/07/2007|08:24] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Leadertech
[21/06/2008|04:37] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> LG Electronics
[15/07/2008|03:30] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> LGAAS
[27/09/2008|10:58] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> LimeWire
[15/06/2007|11:32] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Macromedia
[02/10/2008|08:34] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Malwarebytes
[08/09/2005|07:21] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[04/09/2008|05:13] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Media Player Classic
[02/10/2008|10:10] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Microsoft
[25/11/2008|07:01] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> mIRC
[26/08/2008|08:36] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Mozilla
[13/09/2008|07:44] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> MSN6
[23/04/2008|08:53] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> NCH Swift Sound
[24/12/2007|06:39] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Propellerhead Software
[23/04/2008|08:53] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Recordpad
[07/01/2008|10:05] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> SmartFTP
[24/04/2008|05:42] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Softplicity
[11/07/2007|07:16] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Sony Ericsson
[04/02/2008|01:56] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Steinberg
[21/12/2007|01:49] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Sun
[14/10/2007|07:27] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Teleca
[03/12/2008|09:52] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> uTorrent
[14/01/2008|09:38] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> vlc
[04/09/2008|05:11] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Winamp
[26/06/2007|08:27] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> WinRAR
[0|Αρχεία] C:\DOCUME~1\Stelios1\APPLIC~1\byte
[41|Κατάλογοι] C:\DOCUME~1\Stelios1\APPLIC~1\διαθέσιμα byte
--------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks
[03/12/2008 10:47 πμ][--ah-----] C:\WINDOWS\tasks\SA.DAT
[27/11/2001 12:00 μμ][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing Folders in C:\Program Files
[23/10/2008|08:00] C:\Program Files\<DIR> Acoustica MP3 CD Burner
[24/04/2008|02:27] C:\Program Files\<DIR> Admiresoft
[11/07/2007|06:54] C:\Program Files\<DIR> Adobe
[28/05/2008|10:40] C:\Program Files\<DIR> ATI Technologies
[23/10/2008|08:07] C:\Program Files\<DIR> Audio CD Maker
[24/04/2008|02:23] C:\Program Files\<DIR> AVIConverter
[27/08/2008|11:38] C:\Program Files\<DIR> BitComet
[04/09/2008|05:48] C:\Program Files\<DIR> Combined Community Codec Pack
[25/11/2008|08:10] C:\Program Files\<DIR> Common Files
[08/09/2005|06:42] C:\Program Files\<DIR> ComPlus Applications
[08/09/2005|08:18] C:\Program Files\<DIR> CyberLink
[11/07/2007|07:25] C:\Program Files\<DIR> Disc2Phone
[27/08/2008|11:41] C:\Program Files\<DIR> Free Download Manager
[19/06/2008|01:45] C:\Program Files\<DIR> GIMP-2.0
[08/10/2008|09:59] C:\Program Files\<DIR> Guillemot
[08/10/2008|09:59] C:\Program Files\<DIR> Hercules
[08/09/2005|07:48] C:\Program Files\<DIR> Hewlett-Packard
[08/09/2005|07:48] C:\Program Files\<DIR> HP
[17/11/2008|06:33] C:\Program Files\<DIR> InstallShield Installation Information
[08/09/2005|07:43] C:\Program Files\<DIR> Internet Explorer
[24/04/2008|04:30] C:\Program Files\<DIR> KanjiWare
[17/12/2007|03:06] C:\Program Files\<DIR> Lavalys
[23/04/2008|05:06] C:\Program Files\<DIR> Lavasoft
[11/11/2008|05:53] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/09/2005|07:10] C:\Program Files\<DIR> McAfee.com
[21/10/2008|06:13] C:\Program Files\<DIR> Megaupload
[08/09/2005|06:42] C:\Program Files\<DIR> Messenger
[08/09/2005|06:46] C:\Program Files\<DIR> microsoft frontpage
[22/06/2007|07:23] C:\Program Files\<DIR> Microsoft Office
[08/09/2005|07:21] C:\Program Files\<DIR> Microsoft Visual Studio
[08/09/2005|07:21] C:\Program Files\<DIR> Microsoft Works
[08/09/2005|07:22] C:\Program Files\<DIR> Microsoft.NET
[25/11/2008|06:50] C:\Program Files\<DIR> mIRC
[08/09/2005|06:44] C:\Program Files\<DIR> Movie Maker
[03/12/2008|09:52] C:\Program Files\<DIR> Mozilla Firefox
[02/02/2008|11:12] C:\Program Files\<DIR> MSN
[08/09/2005|06:42] C:\Program Files\<DIR> MSN Gaming Zone
[16/09/2007|11:29] C:\Program Files\<DIR> MSN Messenger
[24/04/2008|02:10] C:\Program Files\<DIR> NCH Swift Sound
[08/09/2005|06:43] C:\Program Files\<DIR> NetMeeting
[08/09/2005|06:44] C:\Program Files\<DIR> Online Services
[07/08/2008|09:55] C:\Program Files\<DIR> Outlook Express
[03/12/2008|06:48] C:\Program Files\<DIR> PokerStars
[11/07/2007|07:04] C:\Program Files\<DIR> QuickTime
[08/09/2005|06:54] C:\Program Files\<DIR> S3
[07/01/2008|10:05] C:\Program Files\<DIR> SmartFTP Client
[07/01/2008|10:03] C:\Program Files\<DIR> SmartFTP Client 2.5 Setup Files
[30/07/2008|07:14] C:\Program Files\<DIR> Sony Ericsson
[08/11/2008|06:55] C:\Program Files\<DIR> Spybot - Search & Destroy
[04/02/2008|01:33] C:\Program Files\<DIR> Syncrosoft
[24/04/2008|05:42] C:\Program Files\<DIR> TotalImageConverter
[03/12/2008|06:49] C:\Program Files\<DIR> trend micro
[08/09/2005|06:51] C:\Program Files\<DIR> Uninstall Information
[13/05/2008|08:55] C:\Program Files\<DIR> USB Remote NDIS Network Device
[27/08/2008|11:39] C:\Program Files\<DIR> uTorrent
[25/01/2008|02:03] C:\Program Files\<DIR> VIA
[08/09/2005|06:57] C:\Program Files\<DIR> VIA Technologies, INC
[14/01/2008|09:38] C:\Program Files\<DIR> VideoLAN
[08/10/2008|10:32] C:\Program Files\<DIR> VirtualDJ
[04/09/2008|05:07] C:\Program Files\<DIR> Winamp
[04/09/2008|05:06] C:\Program Files\<DIR> Winamp Remote
[16/10/2007|03:13] C:\Program Files\<DIR> Windows Media Player
[08/09/2005|06:42] C:\Program Files\<DIR> Windows NT
[08/09/2005|07:29] C:\Program Files\<DIR> WindowsUpdate
[10/10/2007|02:54] C:\Program Files\<DIR> WinRAR
[08/09/2005|06:46] C:\Program Files\<DIR> xerox
[0|Αρχεία] C:\Program Files\byte
[68|Κατάλογοι] C:\Program Files\διαθέσιμα byte
--------------------\\ Listing Folders in C:\Program Files\Common Files
[17/09/2007|12:03] C:\Program Files\Common Files\<DIR> Adobe
[11/12/2007|10:50] C:\Program Files\Common Files\<DIR> ATI Technologies
[18/11/2008|06:59] C:\Program Files\Common Files\<DIR> Blizzard Entertainment
[08/09/2005|07:21] C:\Program Files\Common Files\<DIR> DESIGNER
[08/09/2005|07:45] C:\Program Files\Common Files\<DIR> Hewlett-Packard
[08/09/2005|07:50] C:\Program Files\Common Files\<DIR> HP
[17/12/2007|01:59] C:\Program Files\Common Files\<DIR> InstallShield
[17/12/2007|01:59] C:\Program Files\Common Files\<DIR> Microsoft Shared
[08/09/2005|06:43] C:\Program Files\Common Files\<DIR> MSSoap
[08/09/2005|07:36] C:\Program Files\Common Files\<DIR> ODBC
[08/09/2005|06:43] C:\Program Files\Common Files\<DIR> Services
[11/07/2007|07:08] C:\Program Files\Common Files\<DIR> Sony Ericsson Shared
[08/09/2005|07:36] C:\Program Files\Common Files\<DIR> SpeechEngines
[02/06/2007|10:04] C:\Program Files\Common Files\<DIR> SWF Studio
[08/09/2005|07:21] C:\Program Files\Common Files\<DIR> System
[11/07/2007|07:08] C:\Program Files\Common Files\<DIR> Teleca Shared
[23/04/2008|05:05] C:\Program Files\Common Files\<DIR> Wise Installation Wizard
[0|Αρχεία] C:\Program Files\Common Files\byte
[19|Κατάλογοι] C:\Program Files\Common Files\διαθέσιμα byte
--------------------\\ Process
( 46 Processes )
... OK !
--------------------\\ Searching with S_Lop
No Lop folder found !
--------------------\\ Searching for Lop Files - Folders
No Lop folder found !
--------------------\\ Searching within the Registry
..... OK !
--------------------\\ Checking the Hosts file
Hosts file CLEAN
--------------------\\ Searching for hidden files with Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-03 21:59:47
Windows 5.1.2600 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 568
--------------------\\ Searching for other infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\Stelios1\Application Data\uTorrent\Reason 4 + Keygen + Patch RPS.torrent
C:\DOCUME~1\Stelios1\Recent\AutoCAD-2008-keygen.lnk
C:\DOCUME~1\Stelios1\Επιφάνεια εργασίας\Orfeas\Extratorrent com Reason v4 Working Keygen Patch RPS.torrent
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Reason4 Keygen.zip
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Reason4 RpsPatch.zip
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Thumbs.db
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Torrent downloaded from Demonoid.com.txt
[F:609][D:10]-> C:\DOCUME~1\Stelios1\LOCALS~1\Temp
[F:178][D:0]-> C:\DOCUME~1\Stelios1\Cookies
[F:766][D:4]-> C:\DOCUME~1\Stelios1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Τρι 02/12/2008|11:35 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Τετ 03/12/2008|22:02 - Option : [3]
--------------------\\ Scan completed at 22:02:08
Select the entire area below, then right-click and choose Copy
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Soulseek
C:\DOCUME~1\Stelios1\APPLIC~1\Azureus
C:\DOCUME~1\Stelios1\APPLIC~1\FrostWire
C:\DOCUME~1\Stelios1\APPLIC~1\LimeWire
C:\DOCUME~1\Stelios1\APPLIC~1\uTorrent
C:\Program Files\BitComet
C:\Program Files\uTorrent
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS
Double click LopSD.exe to start the program.
Choose the language by typing of the corresponding letter and press Enter
Click OK at the informative window
Type 4 to choose Option 4 (LopScript), then press Enter
A blank page will be opened, right-click it and choose Paste
Close the page, you'll be asked to save it, click Save
Don't close the window during suppression!
Wait until the end of the scan
A report will be generated, post the contents of it in your next reply.
(Copy of the report can be found at this location: %systemdrive%\lopR.txt, in most cases C:\lopR.txt)
Here is the new LopR.txt:
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 1
X86-based PC ( Uniprocessor Free : Intel(R) Celeron(R) CPU 2.40GHz )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Stelios1 ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:1 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [4] ( Τετ 03/12/2008|23:51 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Soulseek
C:\DOCUME~1\Stelios1\APPLIC~1\Azureus
C:\DOCUME~1\Stelios1\APPLIC~1\FrostWire
C:\DOCUME~1\Stelios1\APPLIC~1\LimeWire
C:\DOCUME~1\Stelios1\APPLIC~1\uTorrent
C:\Program Files\BitComet
C:\Program Files\uTorrent
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX
Deleted! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
Deleted! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Soulseek
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\Azureus
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\FrostWire
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\LimeWire
Deleted! - C:\DOCUME~1\Stelios1\APPLIC~1\uTorrent
Deleted! - C:\Program Files\BitComet
Deleted! - C:\Program Files\uTorrent
... C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS -> does not exist !
-
[ Hosts file ] .. Restored!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing folders in APPLIC~1
[11/11/2007|07:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> {CFAB4006-0AE0-414D-866A-DCB2C46553CF}
[11/07/2007|06:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[11/07/2007|07:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer
[17/12/2007|02:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> ATI
[08/09/2005|08:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CyberLink
[21/10/2008|06:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> EmailNotifier
[27/08/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FreeDownloadManager.ORG
[25/01/2008|01:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google
[08/09/2005|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Hewlett-Packard
[08/07/2008|06:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft
[02/10/2008|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes
[08/09/2005|11:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> McAfee.com
[10/11/2005|02:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[21/10/2008|06:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Megaupload
[12/05/2008|02:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[08/10/2005|04:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MSN6
[23/04/2008|08:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound
[04/09/2008|05:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> OrbNetworks
[24/12/2007|06:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Propellerhead Software
[31/08/2008|07:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype
[11/07/2007|07:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony Ericsson
[27/09/2008|01:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy
[11/07/2007|07:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Teleca
[11/11/2007|07:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP
[21/06/2008|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[0|Αρχεία] C:\DOCUME~1\ALLUSE~1\APPLIC~1\byte
[27|Κατάλογοι] C:\DOCUME~1\ALLUSE~1\APPLIC~1\διαθέσιμα byte
[08/09/2005|06:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[0|Αρχεία] C:\DOCUME~1\DEFAUL~1\APPLIC~1\byte
[3|Κατάλογοι] C:\DOCUME~1\DEFAUL~1\APPLIC~1\διαθέσιμα byte
[06/08/2008|08:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Adobe
[11/10/2005|05:58] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Macromedia
[08/09/2005|07:11] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[14/01/2008|02:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[18/12/2005|11:45] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Mozilla
[0|Αρχεία] C:\DOCUME~1\LOCALS~1\APPLIC~1\byte
[7|Κατάλογοι] C:\DOCUME~1\LOCALS~1\APPLIC~1\διαθέσιμα byte
[08/09/2005|06:45] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[0|Αρχεία] C:\DOCUME~1\NETWOR~1\APPLIC~1\byte
[3|Κατάλογοι] C:\DOCUME~1\NETWOR~1\APPLIC~1\διαθέσιμα byte
[31/01/2008|01:24] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Adobe
[11/07/2007|06:55] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> AdobeAUM
[19/09/2008|09:02] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> AdobeUM
[19/09/2007|11:00] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Apple Computer
[17/12/2007|02:42] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> ATI
[21/10/2008|06:14] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> EmailNotifier
[03/12/2008|11:49] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Free Download Manager
[19/11/2008|02:44] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> GarageGames
[19/06/2008|01:57] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> gtk-2.0
[15/06/2007|11:25] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Help
[08/09/2005|06:51] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Identities
[08/10/2008|09:59] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> InstallShield
[15/07/2007|08:24] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Leadertech
[21/06/2008|04:37] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> LG Electronics
[15/07/2008|03:30] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> LGAAS
[15/06/2007|11:32] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Macromedia
[02/10/2008|08:34] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Malwarebytes
[08/09/2005|07:21] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> McAfee.com Personal Firewall
[04/09/2008|05:13] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Media Player Classic
[02/10/2008|10:10] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Microsoft
[25/11/2008|07:01] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> mIRC
[26/08/2008|08:36] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Mozilla
[13/09/2008|07:44] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> MSN6
[23/04/2008|08:53] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> NCH Swift Sound
[24/12/2007|06:39] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Propellerhead Software
[23/04/2008|08:53] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Recordpad
[07/01/2008|10:05] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> SmartFTP
[24/04/2008|05:42] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Softplicity
[11/07/2007|07:16] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Sony Ericsson
[04/02/2008|01:56] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Steinberg
[21/12/2007|01:49] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Sun
[14/10/2007|07:27] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Teleca
[14/01/2008|09:38] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> vlc
[04/09/2008|05:11] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> Winamp
[26/06/2007|08:27] C:\DOCUME~1\Stelios1\APPLIC~1\<DIR> WinRAR
[0|Αρχεία] C:\DOCUME~1\Stelios1\APPLIC~1\byte
[37|Κατάλογοι] C:\DOCUME~1\Stelios1\APPLIC~1\διαθέσιμα byte
--------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks
[03/12/2008 10:47 πμ][--ah-----] C:\WINDOWS\tasks\SA.DAT
[27/11/2001 12:00 μμ][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing Folders in C:\Program Files
[23/10/2008|08:00] C:\Program Files\<DIR> Acoustica MP3 CD Burner
[24/04/2008|02:27] C:\Program Files\<DIR> Admiresoft
[11/07/2007|06:54] C:\Program Files\<DIR> Adobe
[28/05/2008|10:40] C:\Program Files\<DIR> ATI Technologies
[23/10/2008|08:07] C:\Program Files\<DIR> Audio CD Maker
[24/04/2008|02:23] C:\Program Files\<DIR> AVIConverter
[04/09/2008|05:48] C:\Program Files\<DIR> Combined Community Codec Pack
[25/11/2008|08:10] C:\Program Files\<DIR> Common Files
[08/09/2005|06:42] C:\Program Files\<DIR> ComPlus Applications
[08/09/2005|08:18] C:\Program Files\<DIR> CyberLink
[11/07/2007|07:25] C:\Program Files\<DIR> Disc2Phone
[27/08/2008|11:41] C:\Program Files\<DIR> Free Download Manager
[19/06/2008|01:45] C:\Program Files\<DIR> GIMP-2.0
[08/10/2008|09:59] C:\Program Files\<DIR> Guillemot
[08/10/2008|09:59] C:\Program Files\<DIR> Hercules
[08/09/2005|07:48] C:\Program Files\<DIR> Hewlett-Packard
[08/09/2005|07:48] C:\Program Files\<DIR> HP
[17/11/2008|06:33] C:\Program Files\<DIR> InstallShield Installation Information
[08/09/2005|07:43] C:\Program Files\<DIR> Internet Explorer
[24/04/2008|04:30] C:\Program Files\<DIR> KanjiWare
[17/12/2007|03:06] C:\Program Files\<DIR> Lavalys
[23/04/2008|05:06] C:\Program Files\<DIR> Lavasoft
[11/11/2008|05:53] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/09/2005|07:10] C:\Program Files\<DIR> McAfee.com
[21/10/2008|06:13] C:\Program Files\<DIR> Megaupload
[08/09/2005|06:42] C:\Program Files\<DIR> Messenger
[08/09/2005|06:46] C:\Program Files\<DIR> microsoft frontpage
[22/06/2007|07:23] C:\Program Files\<DIR> Microsoft Office
[08/09/2005|07:21] C:\Program Files\<DIR> Microsoft Visual Studio
[08/09/2005|07:21] C:\Program Files\<DIR> Microsoft Works
[08/09/2005|07:22] C:\Program Files\<DIR> Microsoft.NET
[25/11/2008|06:50] C:\Program Files\<DIR> mIRC
[08/09/2005|06:44] C:\Program Files\<DIR> Movie Maker
[03/12/2008|10:15] C:\Program Files\<DIR> Mozilla Firefox
[02/02/2008|11:12] C:\Program Files\<DIR> MSN
[08/09/2005|06:42] C:\Program Files\<DIR> MSN Gaming Zone
[16/09/2007|11:29] C:\Program Files\<DIR> MSN Messenger
[24/04/2008|02:10] C:\Program Files\<DIR> NCH Swift Sound
[08/09/2005|06:43] C:\Program Files\<DIR> NetMeeting
[08/09/2005|06:44] C:\Program Files\<DIR> Online Services
[07/08/2008|09:55] C:\Program Files\<DIR> Outlook Express
[03/12/2008|06:48] C:\Program Files\<DIR> PokerStars
[11/07/2007|07:04] C:\Program Files\<DIR> QuickTime
[08/09/2005|06:54] C:\Program Files\<DIR> S3
[07/01/2008|10:05] C:\Program Files\<DIR> SmartFTP Client
[07/01/2008|10:03] C:\Program Files\<DIR> SmartFTP Client 2.5 Setup Files
[30/07/2008|07:14] C:\Program Files\<DIR> Sony Ericsson
[08/11/2008|06:55] C:\Program Files\<DIR> Spybot - Search & Destroy
[04/02/2008|01:33] C:\Program Files\<DIR> Syncrosoft
[24/04/2008|05:42] C:\Program Files\<DIR> TotalImageConverter
[03/12/2008|06:49] C:\Program Files\<DIR> trend micro
[08/09/2005|06:51] C:\Program Files\<DIR> Uninstall Information
[13/05/2008|08:55] C:\Program Files\<DIR> USB Remote NDIS Network Device
[25/01/2008|02:03] C:\Program Files\<DIR> VIA
[08/09/2005|06:57] C:\Program Files\<DIR> VIA Technologies, INC
[14/01/2008|09:38] C:\Program Files\<DIR> VideoLAN
[08/10/2008|10:32] C:\Program Files\<DIR> VirtualDJ
[04/09/2008|05:07] C:\Program Files\<DIR> Winamp
[04/09/2008|05:06] C:\Program Files\<DIR> Winamp Remote
[16/10/2007|03:13] C:\Program Files\<DIR> Windows Media Player
[08/09/2005|06:42] C:\Program Files\<DIR> Windows NT
[08/09/2005|07:29] C:\Program Files\<DIR> WindowsUpdate
[10/10/2007|02:54] C:\Program Files\<DIR> WinRAR
[08/09/2005|06:46] C:\Program Files\<DIR> xerox
[0|Αρχεία] C:\Program Files\byte
[66|Κατάλογοι] C:\Program Files\διαθέσιμα byte
--------------------\\ Listing Folders in C:\Program Files\Common Files
[17/09/2007|12:03] C:\Program Files\Common Files\<DIR> Adobe
[11/12/2007|10:50] C:\Program Files\Common Files\<DIR> ATI Technologies
[18/11/2008|06:59] C:\Program Files\Common Files\<DIR> Blizzard Entertainment
[08/09/2005|07:21] C:\Program Files\Common Files\<DIR> DESIGNER
[08/09/2005|07:45] C:\Program Files\Common Files\<DIR> Hewlett-Packard
[08/09/2005|07:50] C:\Program Files\Common Files\<DIR> HP
[17/12/2007|01:59] C:\Program Files\Common Files\<DIR> InstallShield
[17/12/2007|01:59] C:\Program Files\Common Files\<DIR> Microsoft Shared
[08/09/2005|06:43] C:\Program Files\Common Files\<DIR> MSSoap
[08/09/2005|07:36] C:\Program Files\Common Files\<DIR> ODBC
[08/09/2005|06:43] C:\Program Files\Common Files\<DIR> Services
[11/07/2007|07:08] C:\Program Files\Common Files\<DIR> Sony Ericsson Shared
[08/09/2005|07:36] C:\Program Files\Common Files\<DIR> SpeechEngines
[02/06/2007|10:04] C:\Program Files\Common Files\<DIR> SWF Studio
[08/09/2005|07:21] C:\Program Files\Common Files\<DIR> System
[11/07/2007|07:08] C:\Program Files\Common Files\<DIR> Teleca Shared
[23/04/2008|05:05] C:\Program Files\Common Files\<DIR> Wise Installation Wizard
[0|Αρχεία] C:\Program Files\Common Files\byte
[19|Κατάλογοι] C:\Program Files\Common Files\διαθέσιμα byte
--------------------\\ Process
( 47 Processes )
... OK !
--------------------\\ Searching with S_Lop
No Lop folder found !
--------------------\\ Searching for Lop Files - Folders
No Lop folder found !
--------------------\\ Searching within the Registry
..... OK !
--------------------\\ Checking the Hosts file
Hosts file CLEAN
--------------------\\ Searching for hidden files with Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-03 23:53:16
Windows 5.1.2600 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 568
--------------------\\ Searching for other infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\Stelios1\Recent\AutoCAD-2008-keygen.lnk
C:\DOCUME~1\Stelios1\Επιφάνεια εργασίας\Orfeas\Extratorrent com Reason v4 Working Keygen Patch RPS.torrent
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Reason4 Keygen.zip
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Reason4 RpsPatch.zip
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Thumbs.db
C:\DOCUME~1\Stelios1\Τα έγγραφά μου\Downloads\Reason 4 + Keygen + Patch RPS\Torrent downloaded from Demonoid.com.txt
[F:629][D:10]-> C:\DOCUME~1\Stelios1\LOCALS~1\Temp
[F:178][D:0]-> C:\DOCUME~1\Stelios1\Cookies
[F:830][D:4]-> C:\DOCUME~1\Stelios1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Τρι 02/12/2008|11:35 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Τετ 03/12/2008|22:02 - Option : [3]
3 - "C:\Lop SD\LopR_3.txt" - Τετ 03/12/2008|23:56 - Option : [4]
--------------------\\ Scan completed at 23:56:04
Please post back a fresh HijackThis log next :)
Here is the new HijackThis log.txt:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:19:42 μμ, on 4/12/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\gearsec.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\System32\ctfmon.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\FREEDO~1\fdm.exe
C:\Program Files\trend micro\hijackthis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://greek.toggle.com/el/index.php?rvs=hompag&d=79919192
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Συνδέσεις
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Ραδιόφωνο - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIA\VIAudioi\SBADeck\ADeck.exe 1
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [H2O] C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Γρήγορη εκκίνηση HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Ε&ξαγωγή στο Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,90/mcinsctl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {DB7BF79A-FC51-4B5A-92BC-A65731174380} (InstantAction Game Launcher) - http://www.instantaction.com/download/iaplayer.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\system32\gearsec.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
--
End of file - 8303 bytes
Please download DDS (http://download.bleepingcomputer.com/sUBs/dds.scr) and save it to your desktop.
Disable any script blocking protection Double click dds.scr to run the tool. When done, DDS.txt will open. Click Yes at the next prompt for Optional Scan. Save both reports to your desktop.---------------------------------------------------
Please copy/paste the contents of the following reports in your next reply:
DDS.txt
Attach.txt
DDS.txt:
DDS (Version 1.0) - NTFSx86
Run by Stelios1 at 18:43:10,45 on Πεμ 04/12/2008
Microsoft Windows XP Professional 5.1.2600.1.1253.30.1032.18.2047.1382 [GMT 2:00]
============== Running Processes ===============
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\Ati2evxx.exe
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\gearsec.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\Explorer.EXE
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\System32\ctfmon.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\FREEDO~1\fdm.exe
C:\WINDOWS\System32\taskmgr.exe
C:\Downloads\Software\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://greek.toggle.com/el/index.php?rvs=hompag&d=79919192
BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
BHO: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - c:\program files\free download manager\iefdm2.dll
TB: {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
TB: {8E718888-423F-11D2-876E-00A0C9082467} - c:\windows\system32\msdxm.ocx
uRun: [MsnMsgr] "c:\program files\msn messenger\MsnMsgr.Exe" /background
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Free Download Manager] "c:\program files\free download manager\fdm.exe" -autorun
uRun: c:\program files\adobe\acrobat 7.0\reader\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1
mRun: [MCUpdateExe] c:\progra~1\mcafee.com\agent\mcupdate.exe
mRun: [MCAgentExe] c:\progra~1\mcafee.com\agent\mcagent.exe
mRun: [VSOCheckTask] "c:\progra~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
mRun: [VirusScan Online] c:\program files\mcafee.com\vso\mcvsshld.exe
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe"
mRun: [Sony Ericsson PC Suite] "c:\program files\sony ericsson\mobile2\application launcher\Application Launcher.exe" /startoptions
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [OASClnt] c:\program files\mcafee.com\vso\oasclnt.exe
mRun: [MPFExe] c:\progra~1\mcafee.com\person~1\MpfTray.exe
mRun: [HP Software Update] "c:\program files\hp\hp software update\HPWuSchd2.exe"
mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"
mRun: [AudioDeck] c:\program files\via\viaudioi\sbadeck\ADeck.exe 1
mRun: [Adobe Photo Downloader] "c:\program files\adobe\photoshop album starter edition\3.0\apps\apdproxy.exe"
mRun: [H2O] c:\program files\syncrosoft\pos\h2o\cledx.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\f2da~1\599a~1\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\f2da~1\599a~1\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\f2da~1\599a~1\hpimag~1.lnk - c:\program files\hp\digital imaging\bin\hpqthb08.exe
IE: Download all with Free Download Manager - file://c:\program files\free download manager\dlall.htm
IE: Download selected with Free Download Manager - file://c:\program files\free download manager\dlselected.htm
IE: Download video with Free Download Manager - file://c:\program files\free download manager\dlfvideo.htm
IE: Download with Free Download Manager - file://c:\program files\free download manager\dllink.htm
IE: Ε&ξαγωγή στο Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Handler: vnd.ms.radio - {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - c:\windows\system32\msdxm.ocx
Notify: AtiExtEvent - Ati2evxx.dll
============= SERVICES / DRIVERS ===============
R2 aawservice;Ad-Aware 2007 Service;"c:\program files\lavasoft\ad-aware 2007\aawservice.exe" [2008-3-19 607576]
R2 McDetect.exe;McAfee WSC Integration;c:\program files\mcafee.com\agent\mcdetect.exe [2005-11-24 126976]
R2 McShield;McAfee.com McShield;c:\progra~1\mcafee.com\vso\mcshield.exe [2006-6-21 221184]
R2 McTskshd.exe;McAfee Task Scheduler;c:\progra~1\mcafee.com\agent\mctskshd.exe [2005-11-24 122368]
R3 CLEDX;Team H2O CLEDX service;c:\windows\system32\drivers\cledx.sys [2008-2-4 33792]
R3 NaiAvFilter1;NaiAvFilter1;c:\windows\system32\drivers\naiavf5x.sys [2006-6-21 114464]
R3 zebrceb;Sony Ericsson Cable Emulation Bus (WDM);c:\windows\system32\drivers\zebrceb.sys [2008-7-30 63360]
S3 HDJCtrl;Hercules DJ Control MP3 Service;c:\windows\system32\drivers\HDJCtrl.sys [2008-10-8 11008]
S3 HDJMidi;Hercules DJ Console MIDI;c:\windows\system32\drivers\HDJMidi.sys [2008-10-8 39296]
S3 lgmcbus;LGE Mobile driver (WDM);c:\windows\system32\drivers\lgmcbus.sys []
S3 mcupdmgr.exe;McAfee SecurityCenter Update Manager;c:\progra~1\mcafee.com\agent\mcupdmgr.exe [2005-11-24 245760]
S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM);c:\windows\system32\drivers\sea1bus.sys [2007-7-11 61536]
S3 sea1mdfl;Sony Ericsson Device 0A1 USB WMC Modem Filter;c:\windows\system32\drivers\sea1mdfl.sys [2007-7-11 9360]
S3 sea1mdm;Sony Ericsson Device 0A1 USB WMC Modem Driver;c:\windows\system32\drivers\sea1mdm.sys [2007-7-11 97088]
S3 sea1mgmt;Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\sea1mgmt.sys [2007-10-14 88624]
S3 sea1nd5;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS);c:\windows\system32\drivers\sea1nd5.sys [2007-10-14 18704]
S3 sea1obex;Sony Ericsson Device 0A1 USB WMC OBEX Interface;c:\windows\system32\drivers\sea1obex.sys [2007-10-14 86432]
S3 sea1unic;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM);c:\windows\system32\drivers\sea1unic.sys [2007-10-14 90800]
S3 zebrbus;Sony Ericsson Composite Device driver;c:\windows\system32\drivers\zebrbus.sys [2008-7-25 83200]
S3 zebrmdfl;Sony Ericsson Modem Filter;c:\windows\system32\drivers\zebrmdfl.sys [2008-7-30 14848]
S3 zebrmdm;Sony Ericsson Port (WDM);c:\windows\system32\drivers\zebrmdm.sys [2008-7-30 109568]
S3 zebrmdmc;Sony Ericsson mRouter Port (WDM);c:\windows\system32\drivers\zebrmdmc.sys [2008-7-30 109568]
S3 zebrsce;Sony Ericsson PC-Connect Port;c:\windows\system32\drivers\zebrsce.sys [2008-7-30 91264]
=============== Created Last 30 ================
2008-12-04 10:00 <DIR> --d----- c:\program files\Soulseek
2008-12-04 09:59 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Soulseek
2008-11-29 18:51 <DIR> --d----- C:\Lop SD
2008-11-25 08:06 <DIR> a-dshr-- C:\cmdcons
2008-11-25 07:57 161,792 a------- c:\windows\SWREG.exe
2008-11-25 07:57 98,816 a------- c:\windows\sed.exe
2008-11-19 02:44 <DIR> --d----- c:\docume~1\stelios1\applic~1\GarageGames
2008-11-18 18:59 <DIR> --d----- c:\program files\common files\Blizzard Entertainment
2008-11-17 18:33 50 a------- c:\windows\MegaManager.INI
2008-11-11 19:35 <DIR> --d----- c:\docume~1\stelios1\applic~1\mIRC
2008-11-11 19:35 <DIR> --d----- c:\program files\mIRC
2008-11-11 19:21 99,381 ---shr-- C:\lky.exe
2008-11-11 19:20 85,504 ---shr-- c:\windows\system32\gasretyw1.dll
2008-11-09 21:13 110,031 ---shr-- C:\whi.com
2008-11-08 10:32 110,013 ---shr-- C:\sq.com
2008-11-06 21:36 6,144 a--sh--- c:\windows\system32\access.ctl
==================== Find3M ====================
2008-12-04 18:40 <DIR> --d----- c:\docume~1\stelios1\applic~1\Free Download Manager
2008-12-04 18:19 <DIR> --d----- c:\program files\trend micro
2008-12-03 18:48 <DIR> --d----- c:\program files\PokerStars
2008-11-25 08:23 508,990 a------- c:\windows\system32\perfh008.dat
2008-11-25 08:23 86,886 a------- c:\windows\system32\perfc008.dat
2008-11-11 17:53 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2008-11-08 18:55 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2008-10-23 20:07 <DIR> --d----- c:\program files\Audio CD Maker
2008-10-23 20:00 <DIR> --d----- c:\program files\Acoustica MP3 CD Burner
2008-10-21 18:14 <DIR> --d----- c:\docume~1\stelios1\applic~1\EmailNotifier
2008-10-21 18:13 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Megaupload
2008-10-21 18:13 <DIR> --d----- c:\docume~1\alluse~1\applic~1\EmailNotifier
2008-10-21 18:13 <DIR> --d----- c:\program files\Megaupload
2008-10-08 22:32 <DIR> --d----- c:\program files\VirtualDJ
2008-10-08 21:59 <DIR> --d----- c:\program files\Guillemot
2008-10-08 21:59 <DIR> --d----- c:\program files\Hercules
2008-10-02 20:34 <DIR> --d----- c:\docume~1\stelios1\applic~1\Malwarebytes
2008-10-02 20:34 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2008-09-27 13:50 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2008-09-04 17:10 <DIR> --d----- c:\docume~1\alluse~1\applic~1\OrbNetworks
2008-08-27 11:41 <DIR> --d----- c:\docume~1\alluse~1\applic~1\FreeDownloadManager.ORG
2008-07-15 15:30 <DIR> --d----- c:\docume~1\stelios1\applic~1\LGAAS
2008-06-21 16:37 <DIR> --d----- c:\docume~1\stelios1\applic~1\LG Electronics
2008-04-24 17:42 <DIR> --d----- c:\docume~1\stelios1\applic~1\Softplicity
2008-02-04 13:56 <DIR> --d----- c:\docume~1\stelios1\applic~1\Steinberg
2007-12-24 18:39 <DIR> --d----- c:\docume~1\stelios1\applic~1\Propellerhead Software
2007-12-24 18:26 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Propellerhead Software
2007-11-11 19:10 <DIR> --d----- c:\docume~1\alluse~1\applic~1\{CFAB4006-0AE0-414D-866A-DCB2C46553CF}
2007-10-14 07:27 <DIR> --d----- c:\docume~1\stelios1\applic~1\Teleca
2007-07-11 19:16 <DIR> --d----- c:\docume~1\stelios1\applic~1\Sony Ericsson
2007-07-11 19:08 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Teleca
2007-07-11 19:08 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Sony Ericsson
2007-07-11 18:55 <DIR> --d----- c:\docume~1\stelios1\applic~1\AdobeAUM
2005-11-10 14:27 <DIR> --d----- c:\docume~1\alluse~1\applic~1\McAfee.com Personal Firewall
2005-09-08 23:43 <DIR> --d----- c:\docume~1\alluse~1\applic~1\McAfee.com
2005-09-08 19:21 <DIR> --d----- c:\docume~1\stelios1\applic~1\McAfee.com Personal Firewall
============= FINISH: 18:44:07,15 ===============
[U]Attach.txt:
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Version 1.0)
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 8/9/2005 10:49:02 μμ
System Uptime: 12/4/2008 4:03:44 πμ (5678 hours ago)
Motherboard: | | P4M266-823X
Processor: Intel(R) Celeron(R) CPU 2.40GHz | Socket 478 | 2388/100mhz
BIOS: )Phoenix - Award WorkstationBIOS v6.00PG | VIAP4X - 42302e31 | 6.00 PG |
==== Disk Partitions =========================
A: is Removable
C: is FIXED (NTFS) - 37 GiB total, 1,236 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is Removable
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP18: 19/10/2008 9:38:27 μμ - Σημείο ελέγχου συστήματος
RP19: 21/10/2008 2:52:33 μμ - Σημείο ελέγχου συστήματος
RP20: 21/10/2008 7:13:10 μμ - Installed Mega Manager
RP21: 22/10/2008 7:59:15 μμ - Σημείο ελέγχου συστήματος
RP22: 23/10/2008 10:57:39 μμ - Σημείο ελέγχου συστήματος
RP23: 25/10/2008 3:32:45 πμ - Σημείο ελέγχου συστήματος
RP24: 26/10/2008 4:58:52 πμ - Σημείο ελέγχου συστήματος
RP25: 30/10/2008 3:34:09 πμ - Σημείο ελέγχου συστήματος
RP26: 31/10/2008 3:46:09 πμ - Σημείο ελέγχου συστήματος
RP27: 1/11/2008 9:20:17 μμ - Σημείο ελέγχου συστήματος
RP28: 3/11/2008 11:03:47 πμ - Σημείο ελέγχου συστήματος
RP29: 4/11/2008 5:31:12 μμ - Σημείο ελέγχου συστήματος
RP30: 7/11/2008 4:41:35 μμ - Σημείο ελέγχου συστήματος
RP31: 8/11/2008 7:11:58 μμ - Σημείο ελέγχου συστήματος
RP32: 10/11/2008 12:14:18 πμ - Σημείο ελέγχου συστήματος
RP33: 11/11/2008 12:27:53 πμ - Σημείο ελέγχου συστήματος
RP34: 12/11/2008 9:26:19 μμ - Σημείο ελέγχου συστήματος
RP35: 15/11/2008 8:20:01 πμ - Σημείο ελέγχου συστήματος
RP36: 16/11/2008 10:42:36 πμ - Σημείο ελέγχου συστήματος
RP37: 17/11/2008 11:02:44 πμ - Σημείο ελέγχου συστήματος
RP38: 17/11/2008 6:33:42 μμ - Removed Mega Manager
RP39: 19/11/2008 5:46:34 μμ - Σημείο ελέγχου συστήματος
RP40: 20/11/2008 11:57:53 μμ - Σημείο ελέγχου συστήματος
RP41: 23/11/2008 7:53:03 μμ - Σημείο ελέγχου συστήματος
RP42: 25/11/2008 8:02:30 πμ - ComboFix created restore point
RP43: 26/11/2008 10:11:59 πμ - Σημείο ελέγχου συστήματος
RP44: 27/11/2008 3:18:32 μμ - Σημείο ελέγχου συστήματος
RP45: 28/11/2008 10:27:00 μμ - Σημείο ελέγχου συστήματος
RP46: 1/12/2008 8:45:36 μμ - Σημείο ελέγχου συστήματος
RP47: 2/12/2008 9:21:13 μμ - Σημείο ελέγχου συστήματος
RP48: 4/12/2008 11:27:10 πμ - Σημείο ελέγχου συστήματος
==== Installed Programs ======================
µTorrent
2600
2600_Help
2600Trb
Acoustica MP3 CD Burner
Ad-Aware 2007
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Adobe Reader 7.0.5
Adobe Shockwave Player 11
Adobe® Photoshop® Album Starter Edition 3.0
AiO_Scan
AiOSoftware
ATI - Βοηθητικό πρόγραμμα απεγκατάστασης λογισμικού
ATI Catalyst Control Center
ATI Display Driver
ATI HYDRAVISION
ATI Parental Control & Encoder
Audio CD Maker
AVIConverter 5.1.0
AVIVO Codecs
Blaze Media Pro
BufferChm
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
ccc-core-preinstall
ccc-core-static
ccc-utility
CCC Help English
Combined Community Codec Pack 2008-01-24
Copy
CreativeProjects
CreativeProjectsTemplates
CueTour
Destinations
Director
Disc2Phone
DocProc
DocumentViewer
EVEREST Home Edition v2.20
Express Burn
Express Rip
Fax
Free Download Manager 2.5
GIMP 2.4.6
Golden Records
Hercules DJ Control MP3 drivers
HijackThis 2.0.2
HP Diagnostic Assistant
HP Image Zone 4.2
HP PSC & OfficeJet 4.2
HP Software Update
HPSystemDiagnostics
InstantShare
LEGEA CATALOG 2008 1.0
Malwarebytes' Anti-Malware
McAfee Personal Firewall Plus
McAfee SecurityCenter
McAfee VirusScan
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Greek Language Pack
Microsoft .NET Framework 2.0
Microsoft Office Professional Edition 2003
Microsoft Office Visio Professional 2003
Microsoft Visual C++ 2005 Redistributable
mIRC
Mozilla Firefox (3.0.4)
Overland
PhotoGallery
Platform
PowerDVD
PrintScreen
Prism
ProductContext
ProSavageDDR and Utilities
QFolder
QuickProjects
QuickTime
Readme
Recordpad
Roland Garros 1999
S3Display
S3Gamma2
S3Overlay
Scan
Skins
SkinsHP1
Slice Uninstall
SmartFTP Client
SmartFTP Client 2.5 Setup Files (remove only)
Sony Ericsson PC Suite
Sony Ericsson Symbian 9 Drivers
SoulSeek 157 NS 13c
SoulSeek Client 156c
SoundTap
Spybot - Search & Destroy
Steinberg Nuendo v3.2.0.1128
Super Mp3 Converter 4.0
Switch
Syncrosoft's License Control
SyncroSoft Emu (Remove only)
TotalImageConverter
TrayApp
Unload
USB Remote NDIS Network Device
VIA Διαχειριστής Συσκευών Πλατφόρμας
VIA Audio Driver Setup Program
VideoLAN VLC media player 0.8.6i
Virtual DJ - Atomix Productions
WebFldrs XP
WebReg
Winamp
Winamp Remote
Windows Installer 3.0 (KB884016)
Windows Installer 3.1 (KB893803)
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Format Runtime
WinRAR 3.70 – Εφαρμογή Διαχείρισης Συμπιεσμένων Αρχείων
Άμεση επιδιόρθωση για Windows XP - KB822603
==== Event Viewer Messages ===================
==== End Of File ===========================
P.S. If you need transalation at any point please point out the specific parts you need and i'll help you asap since i understand it may not be really convenient.
No need, thank you :)
IMPORTANT I notice there are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.
µTorrent
I'd like you to read the this thread (http://forums.spybot.info/showthread.php?t=282).
Please go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).
Please run a new DDS scan when finished and post the logs back here.
Due to the lack of feedback this Topic is closed.
If it has been five days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.
If it has been less than five days since your last response and you need the thread re-opened, please send a private message (pm). A valid, working link to the closed topic is required.
Everyone else please begin a New Topic.