johnny009

When I start my PC explorer crashes few (6-10) times in a row. There's always same message,it is a familiar:"Windows Explorer encountered a problem and needs to close". Also, when it starts,I saw in a right-upper angle two messages but they appear and vanish really fast:small window with the message: Setting up personalized settings for: C:/system/army.exe and for: C:/Data/Deleted.power.exe Is my pc infected or there is a system failure. I tried to delete those files from registry but they appeared again. Also,all started with problems with autorun.inf on usb. But on other computer I cleaned autorun.inf from viruses but I don't know how to clean PC. I am using Trend-Micro, and also tried with Spybot, AdAware and MalwareBytes...Even I deleted those files from registry but nothing helped. Thanks for all your help

Data from DDS.txt


DDS (Ver_09-05-14.01) - NTFSx86
Run by boris.peko at 8:23:42,21 on uto 19.05.2009
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Professional 5.1.2600.3.1250.385.1033.18.1407.797 [GMT 2:00]

AV: Trend Micro Client-Server Security Agent AntiVirus *On-access scanning enabled* (Outdated) {0DB72D28-0D4E-4644-9707-BC749A7FC496}
FW: Trend Micro Client-Server Security Agent Firewall *disabled* {0DB72D28-0D4E-4644-9707-BC749A7FC496}

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\Ati2evxx.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Trend Micro\Client Server Security Agent\ntrtscan.exe
C:\WINDOWS\Installer\MSI160.tmp
C:\Program Files\Trend Micro\Client Server Security Agent\tmlisten.exe
C:\Program Files\Trend Micro\Client Server Security Agent\OfcPfwSvc.exe
C:\Program Files\Trend Micro\Client Server Security Agent\pccntmon.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Trend Micro\Client Server Security Agent\pccntupd.exe
C:\WINDOWS\TEMP\WDB7AD.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclBCBTSrv.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\boris.peko\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = about:blank
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot - search & destroy\SDHelper.dll
BHO: {9F48F99C-13F4-4B83-A51B-6D5150A90AC2} - No File
TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
uRun: [Uniblue RegistryBooster 2009] c:\program files\uniblue\registrybooster\RegistryBooster.exe /S
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [PC Suite Tray] "c:\program files\nokia\nokia pc suite 7\PCSuite.exe" -onlytray
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
mRun: [OfficeScanNT Monitor] "c:\program files\trend micro\client server security agent\pccntmon.exe" -HideWindow
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [StartCCC] c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe
mRun: [SoundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [InCD] c:\program files\ahead\incd\InCD.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\bluetooth.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot - search & destroy\SDHelper.dll
DPF: {00134F72-5284-44F7-95A8-52A619F70751} - hxxps://192.168.1.102:4343/officescan/console/ClientInstall/WinNTChk.cab
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://go.microsoft.com/fwlink/?linkid=58813
DPF: {08D75BC1-D2B5-11D1-88FC-0080C859833B} - hxxps://192.168.1.102:4343/officescan/console/ClientInstall/setup.cab
DPF: {5EFE8CB1-D095-11D1-88FC-0080C859833B} - hxxps://192.168.1.102:4343/officescan/console/ClientInstall/RemoveCtrl.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AtiExtEvent - Ati2evxx.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\boris~1.pek\applic~1\mozilla\firefox\profiles\3yn016u5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.type - 1
FF - component: c:\program files\nokia\nokia pc suite 7\bkmrksync\components\BkMrkExt.dll

============= SERVICES / DRIVERS ===============

R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-2-6 106208]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-2-6 93336]
R2 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-9-10 611664]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2009-5-7 179856]
R2 OfcPfwSvc;Trend Micro Client/Server Security Agent Personal Firewall;c:\program files\trend micro\client server security agent\OfcPfwSvc.exe [2007-3-29 282704]
R2 SCPDFReadSpool;SolidConverterPDFReadSpool;c:\windows\installer\MSI160.tmp [2009-4-23 189696]
R2 TmFilter;Trend Micro Filter;c:\program files\trend micro\client server security agent\tmxpflt.sys [2008-3-30 205328]
R2 TmPreFilter;Trend Micro PreFilter;c:\program files\trend micro\client server security agent\tmpreflt.sys [2008-3-30 36368]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-5-7 15504]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [2008-6-23 16512]
S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [2009-1-30 61776]
S3 HP24X;HP PC Card Smart Card Reader;c:\windows\system32\drivers\HP24X.sys [2008-5-8 33024]

=============== Created Last 30 ================

2009-05-18 15:57 36,396 a------- c:\documents and settings\boris.peko\p5x1t95w5.exe
2009-05-18 14:10 8,755 a------- c:\windows\cfgall.ini
2009-05-18 14:00 116,224 ac------ c:\windows\system32\dllcache\xrxwiadr.dll
2009-05-18 14:00 23,040 ac------ c:\windows\system32\dllcache\xrxwbtmp.dll
2009-05-18 14:00 18,944 ac------ c:\windows\system32\dllcache\xrxscnui.dll
2009-05-18 14:00 27,648 ac------ c:\windows\system32\dllcache\xrxftplt.exe
2009-05-18 14:00 4,608 ac------ c:\windows\system32\dllcache\xrxflnch.exe
2009-05-18 14:00 99,865 ac------ c:\windows\system32\dllcache\xlog.exe
2009-05-18 14:00 16,970 ac------ c:\windows\system32\dllcache\xem336n5.sys
2009-05-18 14:00 19,455 ac------ c:\windows\system32\dllcache\wvchntxx.sys
2009-05-18 14:00 19,200 ac------ c:\windows\system32\dllcache\wstcodec.sys
2009-05-18 14:00 12,063 ac------ c:\windows\system32\dllcache\wsiintxx.sys
2009-05-18 14:00 8,192 ac------ c:\windows\system32\dllcache\wshirda.dll
2009-05-18 13:58 16,925 ac------ c:\windows\system32\dllcache\w940nd.sys
2009-05-18 13:58 19,016 ac------ c:\windows\system32\dllcache\w926nd.sys
2009-05-18 13:58 19,528 ac------ c:\windows\system32\dllcache\w840nd.sys
2009-05-18 13:58 64,605 ac------ c:\windows\system32\dllcache\vvoice.sys
2009-05-18 13:58 397,502 ac------ c:\windows\system32\dllcache\vpctcom.sys
2009-05-18 13:58 604,253 ac------ c:\windows\system32\dllcache\vmodem.sys
2009-05-18 13:58 249,402 ac------ c:\windows\system32\dllcache\vinwm.sys
2009-05-18 13:58 24,576 ac------ c:\windows\system32\dllcache\viairda.sys
2009-05-18 13:58 5,376 ac------ c:\windows\system32\dllcache\viaide.sys
2009-05-18 13:58 53,760 ac------ c:\windows\system32\dllcache\vfwwdm32.dll
2009-05-18 13:58 687,999 ac------ c:\windows\system32\dllcache\usrwdxjs.sys
2009-05-18 13:58 765,884 ac------ c:\windows\system32\dllcache\usrti.sys
2009-05-18 13:56 47,616 ac------ c:\windows\system32\dllcache\umaxcam.dll
2009-05-18 13:56 211,968 ac------ c:\windows\system32\dllcache\um54scan.dll
2009-05-18 13:56 216,064 ac------ c:\windows\system32\dllcache\um34scan.dll
2009-05-18 13:56 36,736 ac------ c:\windows\system32\dllcache\ultra.sys
2009-05-18 13:56 11,520 ac------ c:\windows\system32\dllcache\twotrack.sys
2009-05-18 13:56 166,784 ac------ c:\windows\system32\dllcache\tridxpm.sys
2009-05-18 13:56 525,568 ac------ c:\windows\system32\dllcache\tridxp.dll
2009-05-18 13:56 159,232 ac------ c:\windows\system32\dllcache\tridkbm.sys
2009-05-18 13:56 440,576 ac------ c:\windows\system32\dllcache\tridkb.dll
2009-05-18 13:56 222,336 ac------ c:\windows\system32\dllcache\trid3dm.sys
2009-05-18 13:56 315,520 ac------ c:\windows\system32\dllcache\trid3d.dll
2009-05-18 13:56 34,375 ac------ c:\windows\system32\dllcache\tpro4.sys
2009-05-18 13:54 30,464 ac------ c:\windows\system32\dllcache\tbatm155.sys
2009-05-18 13:53 15,232 ac------ c:\windows\system32\dllcache\streamip.sys
2009-05-18 13:53 155,648 ac------ c:\windows\system32\dllcache\stlnprop.dll
2009-05-18 13:53 53,248 ac------ c:\windows\system32\dllcache\stlncoin.dll
2009-05-18 13:53 285,760 ac------ c:\windows\system32\dllcache\stlnata.sys
2009-05-18 13:53 16,896 ac------ c:\windows\system32\dllcache\stcusb.sys
2009-05-18 13:53 48,736 ac------ c:\windows\system32\dllcache\srwlnd5.sys
2009-05-18 13:53 99,328 ac------ c:\windows\system32\dllcache\srusd.dll
2009-05-18 13:53 24,660 ac------ c:\windows\system32\dllcache\spxupchk.dll
2009-05-18 13:53 61,824 ac------ c:\windows\system32\dllcache\speed.sys
2009-05-18 13:53 106,584 ac------ c:\windows\system32\dllcache\spdports.dll
2009-05-18 13:53 19,072 ac------ c:\windows\system32\dllcache\sparrow.sys
2009-05-18 13:53 7,552 ac------ c:\windows\system32\dllcache\sonypvu1.sys
2009-05-18 13:53 37,040 ac------ c:\windows\system32\dllcache\sonypi.sys
2009-05-18 13:51 28,672 ac------ c:\windows\system32\dllcache\sma0w.dll
2009-05-18 13:50 161,568 ac------ c:\windows\system32\dllcache\sgsmusb.sys
2009-05-18 13:50 18,400 ac------ c:\windows\system32\dllcache\sgsmld.sys
2009-05-18 13:50 98,080 ac------ c:\windows\system32\dllcache\sgiulnt5.sys
2009-05-18 13:50 386,560 ac------ c:\windows\system32\dllcache\sgiul50.dll
2009-05-18 13:50 36,480 ac------ c:\windows\system32\dllcache\sfmanm.sys
2009-05-18 13:50 6,784 ac------ c:\windows\system32\dllcache\serscan.sys
2009-05-18 13:50 17,664 ac------ c:\windows\system32\dllcache\sermouse.sys
2009-05-18 13:50 6,912 ac------ c:\windows\system32\dllcache\seaddsmc.sys
2009-05-18 13:50 11,520 ac------ c:\windows\system32\dllcache\scsiscan.sys
2009-05-18 13:50 11,648 ac------ c:\windows\system32\dllcache\scsiprnt.sys
2009-05-18 13:50 17,280 ac------ c:\windows\system32\dllcache\scr111.sys
2009-05-18 13:50 16,640 ac------ c:\windows\system32\dllcache\scmstcs.sys
2009-05-18 13:48 79,872 ac------ c:\windows\system32\dllcache\rwia430.dll
2009-05-18 13:48 29,696 ac------ c:\windows\system32\dllcache\rw450ext.dll
2009-05-18 13:48 27,648 ac------ c:\windows\system32\dllcache\rw430ext.dll
2009-05-18 13:48 20,992 ac------ c:\windows\system32\dllcache\rtl8139.sys
2009-05-18 13:48 19,017 ac------ c:\windows\system32\dllcache\rtl8029.sys
2009-05-18 13:48 30,720 ac------ c:\windows\system32\dllcache\rthwcls.sys
2009-05-18 13:48 9,216 ac------ c:\windows\system32\dllcache\rsmgrstr.dll
2009-05-18 13:48 3,840 ac------ c:\windows\system32\dllcache\rpfun.sys
2009-05-18 13:48 79,104 ac------ c:\windows\system32\dllcache\rocket.sys
2009-05-18 13:48 37,563 ac------ c:\windows\system32\dllcache\rlnet5.sys
2009-05-18 13:48 86,097 ac------ c:\windows\system32\dllcache\reslog32.dll
2009-05-18 13:48 19,584 ac------ c:\windows\system32\dllcache\rasirda.sys
2009-05-18 13:48 714,762 ac------ c:\windows\system32\dllcache\r2mdmkxx.sys
2009-05-18 13:46 17,664 ac------ c:\windows\system32\dllcache\ppa3.sys
2009-05-18 13:45 86,016 ac------ c:\windows\system32\dllcache\pctspk.exe
2009-05-18 13:44 28,032 ac------ c:\windows\system32\dllcache\ovcd.sys
2009-05-18 13:44 48,000 ac------ c:\windows\system32\dllcache\ovcam2.sys
2009-05-18 13:44 25,088 ac------ c:\windows\system32\dllcache\ovca.sys
2009-05-18 13:44 54,186 ac------ c:\windows\system32\dllcache\otcsercb.sys
2009-05-18 13:44 43,689 ac------ c:\windows\system32\dllcache\otceth5.sys
2009-05-18 13:44 27,209 ac------ c:\windows\system32\dllcache\otc06x5.sys
2009-05-18 13:44 54,528 ac------ c:\windows\system32\dllcache\opl3sax.sys
2009-05-18 13:44 61,696 ac------ c:\windows\system32\dllcache\ohci1394.sys
2009-05-18 13:44 198,144 ac------ c:\windows\system32\dllcache\nv3.sys
2009-05-18 13:44 123,776 ac------ c:\windows\system32\dllcache\nv3.dll
2009-05-18 13:16 83,379 a------- c:\documents and settings\boris.peko\f8n1h3y.exe
2009-05-18 12:05 <DIR> --d----- c:\program files\ACW
2009-05-18 11:30 <DIR> --d----- c:\program files\Uniblue
2009-05-18 11:30 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
2009-05-18 08:52 <DIR> --d-h--- c:\windows\system32\GroupPolicy
2009-05-07 10:32 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-05-07 10:32 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-05-07 10:32 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-05-04 08:26 51,552 ac------ c:\windows\system32\dllcache\ntgrip.sys
2009-05-04 08:26 9,344 ac------ c:\windows\system32\dllcache\ntapm.sys
2009-05-04 08:26 7,552 ac------ c:\windows\system32\dllcache\nsmmc.sys
2009-05-04 08:26 28,672 ac------ c:\windows\system32\dllcache\nscirda.sys
2009-05-04 08:26 87,040 ac------ c:\windows\system32\dllcache\nm6wdm.sys
2009-05-04 08:26 126,080 ac------ c:\windows\system32\dllcache\nm5a2wdm.sys
2009-05-04 08:26 32,840 ac------ c:\windows\system32\dllcache\ngrpci.sys
2009-05-04 08:24 21,888 ac------ c:\windows\system32\dllcache\mxcard.sys
2009-05-04 08:24 103,296 ac------ c:\windows\system32\dllcache\mtxvideo.sys
2009-05-04 08:24 49,024 ac------ c:\windows\system32\dllcache\mstape.sys
2009-05-04 08:24 5,504 ac------ c:\windows\system32\dllcache\mstee.sys
2009-05-04 08:24 12,416 ac------ c:\windows\system32\dllcache\msriffwv.sys
2009-05-04 08:24 2,944 ac------ c:\windows\system32\dllcache\msmpu401.sys
2009-05-04 08:24 22,016 ac------ c:\windows\system32\dllcache\msircomm.sys
2009-05-04 08:24 35,200 ac------ c:\windows\system32\dllcache\msgame.sys
2009-05-04 08:24 6,016 ac------ c:\windows\system32\dllcache\msfsio.sys
2009-05-04 08:24 56,832 ac------ c:\windows\system32\dllcache\msdvbnp.ax
2009-05-04 08:24 51,200 ac------ c:\windows\system32\dllcache\msdv.sys
2009-05-04 08:24 17,280 ac------ c:\windows\system32\dllcache\mraid35x.sys
2009-05-04 08:24 15,232 ac------ c:\windows\system32\dllcache\mpe.sys
2009-05-04 08:22 797,500 ac------ c:\windows\system32\dllcache\ltsmt.sys
2009-05-04 08:21 8,704 ac------ c:\windows\system32\dllcache\kbdjpn.dll
2009-05-04 08:20 372,824 ac------ c:\windows\system32\dllcache\iconf32.dll
2009-05-04 08:20 100,992 ac------ c:\windows\system32\dllcache\icam5usb.sys
2009-05-04 08:20 20,480 ac------ c:\windows\system32\dllcache\icam5ext.dll
2009-05-04 08:20 45,056 ac------ c:\windows\system32\dllcache\icam5com.dll
2009-05-04 08:20 154,496 ac------ c:\windows\system32\dllcache\icam4usb.sys
2009-05-04 08:20 61,952 ac------ c:\windows\system32\dllcache\icam4ext.dll
2009-05-04 08:20 91,136 ac------ c:\windows\system32\dllcache\icam4com.dll
2009-05-04 08:20 26,624 ac------ c:\windows\system32\dllcache\icam3ext.dll
2009-05-04 08:20 141,056 ac------ c:\windows\system32\dllcache\icam3.sys
2009-05-04 08:20 38,528 ac------ c:\windows\system32\dllcache\ibmvcap.sys
2009-05-04 08:20 109,085 ac------ c:\windows\system32\dllcache\ibmtrp.sys
2009-05-04 08:20 100,936 ac------ c:\windows\system32\dllcache\ibmtok.sys
2009-05-04 08:18 115,807 ac------ c:\windows\system32\dllcache\hsf_fsks.sys
2009-05-04 08:17 21,504 ac------ c:\windows\system32\dllcache\hidserv.dll
2009-05-04 08:16 444,416 ac------ c:\windows\system32\dllcache\fpcibase.sys
2009-05-04 08:15 43,008 ac------ c:\windows\system32\dllcache\esucm.dll
2009-05-04 08:14 26,141 ac------ c:\windows\system32\dllcache\el589nd5.sys
2009-05-04 08:13 110,621 ac------ c:\windows\system32\dllcache\digirlpt.dll
2009-05-04 08:12 3,712 ac------ c:\windows\system32\dllcache\ctljystk.sys
2009-05-04 08:11 171,264 ac------ c:\windows\system32\dllcache\camdrv30.sys
2009-05-04 08:10 342,336 ac------ c:\windows\system32\dllcache\banshee.dll
2009-05-04 08:09 26,624 ac------ c:\windows\system32\dllcache\alifir.sys
2009-05-04 08:08 66,048 ac------ c:\windows\system32\dllcache\s3legacy.dll
2009-05-04 08:02 <DIR> --dshr-- C:\SYSTEM
2009-04-30 13:34 <DIR> --d----- c:\docume~1\boris~1.pek\applic~1\Canneverbe_Limited
2009-04-29 15:41 <DIR> --dshr-- C:\DATA
2009-04-28 13:34 45,612 a------- c:\documents and settings\boris.peko\dfghxjxs.exe
2009-04-28 13:28 <DIR> --dshr-- C:\BIN
2009-04-24 10:15 <DIR> --d----- c:\program files\FLAC to MP3 Converter
2009-04-23 10:29 <DIR> --d----- c:\program files\SolidDocuments
2009-04-21 08:05 <DIR> --d----- c:\program files\common files\PCSuite
2009-04-21 08:05 <DIR> --d----- c:\program files\common files\Nokia
2009-04-21 08:04 18,816 a------- c:\windows\system32\drivers\pccsmcfd.sys
2009-04-21 08:04 <DIR> --d----- c:\program files\PC Connectivity Solution

==================== Find3M ====================

2009-05-13 08:12 153,104 a------- c:\windows\system32\drivers\tmcomm.sys
2008-05-09 12:52 5,063,680 a------- c:\program files\common files\setup.exe

============= FINISH: 8:23:58,57 ===============

Attached Files

Attach.zip (4.3 KB, 0 views)

johnny009

Hi! Problem solved run in safe mode, delete infected folders which are made by army.exe i power.exe and delete those files from registry. After that no problem!

Ried

Hello johnny009,

Sorry to tell you, I still see a bad file in your log other than the 2 you mentioned.

I'd like to see if you deleted that one as well. Run a new scan with dds.scr and post a fresh dds.txt