beach pictures.pif (unable to load HijackThis...)

Unknown

Today I clicked on a link send to me by msn since I trusted the person, something I wont do again...

Problem now is, I cant open Hijack this because it gets closed immediately, I deleted two files which Antivir discovered. Problem still isnt solved... I downloaded the upgrade for Antivir and now I'm running it again. Still cant open HijackThis.

Looking in some other threads I allready deleted viewpoint manager from my software via my control panel. But since I cant get any HJT logs I cant fix anything...

I also downloaded AIMfix.exe but will this solve my problem? Because I got it via MSN so I guess that should be fixed too..

anyone can help me?

Thanks!

Koren

After rebooting in safe mode I could get a HJT log:

Logfile of HijackThis v1.99.1
Scan saved at 18:22:06, on 2-6-2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\AVPersonal\AVGNT.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Documenten en Settings\Eigenaar.YOUR-6X1349WVLU\Bureaublad\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: MyWay Search Assistant BHO - {04079851-5845-4dea-848C-3ECD647AA554} - C:\Program Files\MyWay\SrchAstt\1.bin\MYSRCHAS.DLL
O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Adobe 5\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: My &Search Bar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AVGCtrl] C:\Program Files\AVPersonal\AVGNT.EXE /min
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [Douwe Egberts Koffiemanager] C:\Program Files\Douwe Egberts Koffiemanager\Koffiemanager.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Office XP\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://D:\OFFICE~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Gelijkwaardige pagina's - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Koppelingspagina's - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Opgeslagen momentopname van de pagina - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: MyCom - {EF290926-96A2-4D33-92F0-F7B3B79E2AF8} - http://www.mycom.nl (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: MySLScan - Unknown owner - C:\WINDOWS\system32\msvc32.exe" -netsvcs (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

Koren

nice detail:

autoexec file in c:/

BIG **** TOO KASPERSKY, MCAFEE, NORTON AND ALL OTHER A/V COMPANIES GREETZ
(C) 2005 sirh0t.

Koren

I would like to ask for help again, it seems I still cant find my system folder in Windows.. My virusscanner cant find anything.

Thanks alot in advance!

Buckeye_Sam

Please post a new hijackthis log.

Koren

Thanks a lot for helping me out!

Logfile of HijackThis v1.99.1
Scan saved at 14:36:39, on 11-6-2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\AVPersonal\AVGNT.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Douwe Egberts Koffiemanager\Koffiemanager.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Office XP\Office10\EXCEL.EXE
C:\Program Files\Opera\Opera.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Documenten en Settings\Eigenaar.YOUR-6X1349WVLU\Bureaublad\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.punch.tudelft.nl/container.htm?gastenboek/index.shtml
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Adobe 5\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [Douwe Egberts Koffiemanager] C:\Program Files\Douwe Egberts Koffiemanager\Koffiemanager.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Office XP\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://D:\OFFICE~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Gelijkwaardige pagina's - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Koppelingspagina's - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Opgeslagen momentopname van de pagina - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: MyCom - {EF290926-96A2-4D33-92F0-F7B3B79E2AF8} - http://www.mycom.nl (file missing) (HKCU)
O16 - DPF: {003FADA5-8FEE-11D6-AFB7-0004768F6183} (CryptoRSA Control) - https://www.p3.postbank.nl/sesam/CAX.cab
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

Buckeye_Sam

Your log looks clean. What problems are you having?

Koren

My system32 folder from Windows is missing, I cant find it but Windows still runs fine. So it must still be there but I cant find it. I am showing all hidden and systemfolders so that cant be it.

it started with the beach pictures virus.

Buckeye_Sam

It's definitely not missing or Windows wouldn't run. If that's the only problem you are having.... well that's not really a problem at all.

Is your computer running ok?

Koren

My computer is running ok, but sometimes I need the folder with installions or something but then he cant find the folder. Same goes for Hijack this, he gives an error and I think it's because he cant find the folder. Antivir cant find the map as well and gives a system warning.

Everything else is ok.

Buckeye_Sam

Well the folder is clearly there. It's not hidden by default so I don't understand why you can't see it. And as verified by your few problems, Windows and your programs are not having a problem finding it.

I've not heard of the aim virus(or any other virus for that matter) causing this to happen. I don't think this is a malware issue.

Are you the only user on the computer? Are you the administrator?

Koren

Yes I am. I really dont understand the problem either. But if both Hijack this and Antivir cant find it, something is wrong...

Buckeye_Sam

Hijackthis doesn't even look for it when it creates a log. It's just reading the registry. What errors are getting from hijackthis?

Also you didn't answer my questions from before.

Are you the only user on the computer? Are you the administrator?

Koren

Yes I am the only user / administrator.

this is the error:
modRegistery_iniGetString(sfile=system.ini,sSection=boot, sValue=Shell)
Error#53 - File not found

Buckeye_Sam

Please run at least two of these online scans.
Make sure they are set to clean automatically:

Panda Virus Scan

Bit Defender

TrendMicro Housecall

There will be files that these scans will not remove. Please include that information in your next post.


Reboot and post a new hijackthis log and the info from your virus scans.

Koren

an entire map created on the time when I got the virus...

Antivir finds all these files one by one to have this worm, Can I delete the entire folder or are there things inside I might need?

C:\WINDOWS\SYSTEM32\SOFTWARE\MICROANGELO CRACK.EXE

Contains signature of the worm WORM/SdBot.109056.12


C:\WINDOWS\SYSTEM32\SOFTWARE\MOST IMPORTANT HACKER TOOL EVER!.EXE

Contains signature of the worm WORM/SdBot.109056.12


C:\WINDOWS\SYSTEM32\SOFTWARE\MP3 RIPPER.EXE

Contains signature of the worm WORM/SdBot.109056.12


C:\WINDOWS\SYSTEM32\SOFTWARE\MSCONFIG.EXE

Contains signature of the worm WORM/SdBot.109056.12




Index of file:///C:/WINDOWS/SYSTEM32/SOFTWARE/
Up to higher level directory
File: 2 Find MP3 8.2.0.exe 107 KB 2-6-2005 16:14:58
File: AC3-MP3 converter.exe 107 KB 2-6-2005 16:14:58
File: ACDSee 5.5b.exe 107 KB 2-6-2005 16:14:58
File: ACDSee Classic 2.79.exe 107 KB 2-6-2005 16:14:58
File: AIM Pass stealer.exe 107 KB 2-6-2005 16:14:58
File: AMI BIOS Cracker.exe 107 KB 2-6-2005 16:14:58
File: AOL Instant Messenger 6.1.exe 107 KB 2-6-2005 16:14:58
File: AOL hacker.exe 107 KB 2-6-2005 16:14:58
File: AOL password stealer.exe 107 KB 2-6-2005 16:14:58
File: Ad-aware 6.5 (new)Download Accelerator Plus 6.3.exe 107 KB 2-6-2005 16:14:58
File: Adobe Acrobat Reader 5.6.exe 107 KB 2-6-2005 16:14:58
File: Adobe PhotoShop 7.1 crack.exe 107 KB 2-6-2005 16:14:58
File: Adobe Photoshop crack.exe 107 KB 2-6-2005 16:14:58
File: AdvZip Recovery.exe 107 KB 2-6-2005 16:14:58
File: Age of Empire crack.exe 107 KB 2-6-2005 16:14:58
File: Age of Mythology crack.exe 107 KB 2-6-2005 16:14:58
File: All Editor 3.0b.exe 107 KB 2-6-2005 16:14:58
File: All Microsoft games crack.exe 107 KB 2-6-2005 16:14:58
File: American concuest crack.exe 107 KB 2-6-2005 16:14:58
File: Anno 1503 Crack - No cd.exe 107 KB 2-6-2005 16:14:58
File: Auction Sentry (new).exe 107 KB 2-6-2005 16:14:58
File: AudioLabel CD Labeler 3.0 (+crack).exe 107 KB 2-6-2005 16:14:58
File: Autocad 2002 Crack.exe 107 KB 2-6-2005 16:14:58
File: Battlefied1942 Pack4 (crack+bloodpatch).exe 107 KB 2-6-2005 16:14:58
File: Beach life crack nocd.exe 107 KB 2-6-2005 16:14:58
File: BearShare 5.1.1.exe 107 KB 2-6-2005 16:14:58
File: Britney spears game.exe 107 KB 2-6-2005 16:14:58
File: Bugbear remover.exe 107 KB 2-6-2005 16:14:58
File: C&C Generals Pack2 (new patch).exe 107 KB 2-6-2005 16:14:58
File: Christina Aguilera game.exe 107 KB 2-6-2005 16:14:58
File: Complete UK Music Database 4.2.exe 107 KB 2-6-2005 16:14:58
File: Counter Strike CD Keygen WORKIN ON ALL CS versions.exe 107 KB 2-6-2005 16:14:58
File: Counter Strike_CD_Keygen.exe 107 KB 2-6-2005 16:14:58
File: Delphi 5 Keygen.exe 107 KB 2-6-2005 16:14:58
File: Delphi 6 Keygen.exe 107 KB 2-6-2005 16:14:58
File: Die another Day DVD full.exe 107 KB 2-6-2005 16:14:58
File: Die another day flash movie(1).exe 107 KB 2-6-2005 16:14:58
File: Die another day flash movie.exe 107 KB 2-6-2005 16:14:58
File: Digimon.exe 107 KB 2-6-2005 16:14:58
File: DirectDVD 4.9.exe 107 KB 2-6-2005 16:14:58
File: DivX Bundle 6.2.exe 107 KB 2-6-2005 16:14:58
File: DivX Video Bundle 5.5.1.exe 107 KB 2-6-2005 16:14:58
File: DivX edit (new).exe 107 KB 2-6-2005 16:14:58
File: Driver 2 crack.exe 107 KB 2-6-2005 16:14:58
File: DvD Rip guide (+tools) st0rm.exe 107 KB 2-6-2005 16:14:58
File: Dvd ripper.exe 107 KB 2-6-2005 16:14:58
File: Dynamite Downloads.exe 107 KB 2-6-2005 16:14:58
File: EA games Keygen.exe 107 KB 2-6-2005 16:14:58
File: Easy CD Creator Software Update.exe 107 KB 2-6-2005 16:14:58
File: Esafe desktop protection crack.exe 107 KB 2-6-2005 16:14:58
File: Fifa 2003 crack.exe 107 KB 2-6-2005 16:14:58
File: Fifa 2004 crack.exe 107 KB 2-6-2005 16:14:58
File: FlashFXP (keygen).exe 107 KB 2-6-2005 16:14:58
File: Free ADSl.exe 107 KB 2-6-2005 16:14:58
File: FreeRip 4.30.exe 107 KB 2-6-2005 16:14:58
File: Frontline attack war over Europe noCD crack.exe 107 KB 2-6-2005 16:14:58
File: Frontpage cracker.exe 107 KB 2-6-2005 16:14:58
File: GTA 3 game crack noCD.exe 107 KB 2-6-2005 16:14:58
File: GTA3 game crack noCD.exe 107 KB 2-6-2005 16:14:58
File: Genie Stream 3.2.4.exe 107 KB 2-6-2005 16:14:58
File: GetRight 5.5 + crack.exe 107 KB 2-6-2005 16:14:58
File: Global DiVX Player 2.0.1.exe 107 KB 2-6-2005 16:14:58
File: Gothic 2 (m-patch).exe 107 KB 2-6-2005 16:14:58
File: Grokster 2.0.exe 107 KB 2-6-2005 16:14:58
File: HL keys (working).exe 107 KB 2-6-2005 16:14:58
File: Hacker Tutorial (by ph3Akz).exe 107 KB 2-6-2005 16:14:58
File: Half-Life keygen (+ogc hack).exe 107 KB 2-6-2005 16:14:58
File: Half_life Cd keygen.exe 107 KB 2-6-2005 16:14:58
File: Highland warriors crack.exe 107 KB 2-6-2005 16:14:58
File: Hotmail Hacker.exe 107 KB 2-6-2005 16:14:58
File: Hotmail account hacker in 30 minutes.exe 107 KB 2-6-2005 16:14:58
File: Hotmailhacker v1.0.exe 107 KB 2-6-2005 16:14:58
File: I.G.I. 2 (new crack).exe 107 KB 2-6-2005 16:14:58
File: ICQ Lite beta (b2253).exe 107 KB 2-6-2005 16:14:58
File: ICQ Pro 2003a beta (b4600).exe 107 KB 2-6-2005 16:14:58
File: ICQ hacker.exe 107 KB 2-6-2005 16:14:58
File: ICQ password stealer.exe 107 KB 2-6-2005 16:14:58
File: ICQ_Hackingtools.exe 107 KB 2-6-2005 16:14:58
File: IIS_shellbind_exploit.exe 107 KB 2-6-2005 16:14:58
File: Icon extractor v1.7 - full.exe 107 KB 2-6-2005 16:14:58
File: Jack the ripper v1.0.exe 107 KB 2-6-2005 16:14:58
File: Jackie chan dvd collection.exe 107 KB 2-6-2005 16:14:58
File: James Bond 007 Nightfire crack.exe 107 KB 2-6-2005 16:14:58
File: James Bond game - Die another day.exe 107 KB 2-6-2005 16:14:58
File: John the ripper v1.0.exe 107 KB 2-6-2005 16:14:58
File: Justin Timberlake Debute movie.exe 107 KB 2-6-2005 16:14:58
File: KaZooM MP3 Kazaa Accelerator 2.5.exe 107 KB 2-6-2005 16:14:58
File: Kazaa Media Desktop 2.5.exe 107 KB 2-6-2005 16:14:58
File: Kazaa Skins 1.8.exe 107 KB 2-6-2005 16:14:58
File: Klez fixtool.exe 107 KB 2-6-2005 16:14:58
File: Linux_rootaccess.exe 107 KB 2-6-2005 16:14:58
File: Lord of the rings VCD.exe 107 KB 2-6-2005 16:14:58
File: Love calculator.exe 107 KB 2-6-2005 16:14:58
File: MP3 cut pro 3.0.exe 107 KB 2-6-2005 16:14:58
File: MSN 5.0 Banner remover.exe 107 KB 2-6-2005 16:14:58
File: MSN Messenger 10.exe 107 KB 2-6-2005 16:14:58
File: MSN Messenger commercial crack.exe 107 KB 2-6-2005 16:14:58
File: MSN PLUS!.exe 107 KB 2-6-2005 16:14:58
File: MSN Password crack.exe 107 KB 2-6-2005 16:14:58
File: MXlinx 0.30 crack.exe 107 KB 2-6-2005 16:14:58
File: Mad Jack crack.exe 107 KB 2-6-2005 16:14:58
File: MadJack crack.exe 107 KB 2-6-2005 16:14:58
File: Mafia game crack noCD.exe 107 KB 2-6-2005 16:14:58
File: Medal Of Honor (Allied Assault) crack.exe 107 KB 2-6-2005 16:14:58
File: Microangelo 6.0b.exe 107 KB 2-6-2005 16:14:58
File: Morpheus 2.6.exe 107 KB 2-6-2005 16:14:58
File: Need for Speed 6 (new cars + crack).exe 107 KB 2-6-2005 16:14:58
File: Need for Speed Cheater Trainer v.1.0 works on all.exe 107 KB 2-6-2005 16:14:58
File: Need for Speed UNDERGROUND 2.exe 107 KB 2-6-2005 16:14:58
File: NeoNapster 3.92.exe 107 KB 2-6-2005 16:14:58
File: Nero Burning ROM 5.8.2.4.exe 107 KB 2-6-2005 16:14:58
File: Network Cable + ADSL Speed 2.0 (beta).exe 107 KB 2-6-2005 16:14:58
File: New Nvidia (geForce) drivers (beta).exe 107 KB 2-6-2005 16:14:58
File: Nikki cox game and movie.exe 107 KB 2-6-2005 16:14:58
File: Nimo Codec Pack 9.0 (stable).exe 107 KB 2-6-2005 16:14:58
File: Norton antivirus crack.exe 107 KB 2-6-2005 16:14:58
File: Office XP Crack.exe 107 KB 2-6-2005 16:14:58
File: Office XP license crack.exe 107 KB 2-6-2005 16:14:58
File: Office key Gen.exe 107 KB 2-6-2005 16:14:58
File: OfficeXP_Keygen.exe 107 KB 2-6-2005 16:14:58
File: Operation Flashpoint (bloopatch).exe 107 KB 2-6-2005 16:14:58
File: PS1 BootCD.exe 107 KB 2-6-2005 16:14:58
File: PS2 BootCD.exe 107 KB 2-6-2005 16:14:58
File: PS2_emulator_bleem.exe 107 KB 2-6-2005 16:14:58
File: Patch Creator 3.5a.exe 107 KB 2-6-2005 16:14:58
File: PhotoShow 3.1.exe 107 KB 2-6-2005 16:14:58
File: Pokemon.exe 107 KB 2-6-2005 16:14:58
File: Pop-Up Stopper 4.0 (beta).exe 107 KB 2-6-2005 16:14:58
File: Powerful MP3 ripper.exe 107 KB 2-6-2005 16:14:58
File: Ps2 to Pc tutorial (+tool).exe 107 KB 2-6-2005 16:14:58
File: QuickTime 7.2 (new).exe 107 KB 2-6-2005 16:14:58
File: Raven Shield 5.32 crack.exe 107 KB 2-6-2005 16:14:58
File: RealJukebox Basic 2.8.exe 107 KB 2-6-2005 16:14:58
File: RealOne Free Player 2.8.exe 107 KB 2-6-2005 16:14:58
File: Red Alert 2 YR [noCD].exe 107 KB 2-6-2005 16:14:58
File: Red Alert 2 [noCD].exe 107 KB 2-6-2005 16:14:58
File: Red Alert cracker crack - All versions (yuri, 1 ,2 etc).exe 107 KB 2-6-2005 16:14:58
File: RemoteSpy 1.5.exe 107 KB 2-6-2005 16:14:58
File: Rollercoaster tycoon 2 crack.exe 107 KB 2-6-2005 16:14:58
File: Rollercoaster tycoon cracker.exe 107 KB 2-6-2005 16:14:58
File: Shriek DVD crack patch.exe 107 KB 2-6-2005 16:14:58
File: Sim City 4 - no cd crack.exe 107 KB 2-6-2005 16:14:58
File: Sim City 4 - no cd patch.exe 107 KB 2-6-2005 16:14:58
File: Sim City 4 [noCD].exe 107 KB 2-6-2005 16:14:58
File: Sim city 4 crack.exe 107 KB 2-6-2005 16:14:58
File: Splinter Cell crack.exe 107 KB 2-6-2005 16:14:58
File: Stop the war (intro).exe 107 KB 2-6-2005 16:14:58
File: Stronghold Crusader crack- All versions [noCD].exe 107 KB 2-6-2005 16:14:58
File: Stuart Little 2 crack game noCD.exe 107 KB 2-6-2005 16:14:58
File: Sub7_masterpwd.exe 107 KB 2-6-2005 16:14:58
File: Super 2000key keygen.exe 107 KB 2-6-2005 16:14:58
File: The Sims crack.exe 107 KB 2-6-2005 16:14:58
File: Theme park world cracker.exe 107 KB 2-6-2005 16:14:58
File: TitJiggle (flash game).exe 107 KB 2-6-2005 16:14:58
File: Trillian 0.8 + plugins.exe 107 KB 2-6-2005 16:14:58
File: Tropico crack.exe 107 KB 2-6-2005 16:14:58
File: UT2003 multi-crack (new).exe 107 KB 2-6-2005 16:14:58
File: UniversalFlood (4.8b).exe 107 KB 2-6-2005 16:14:58
File: Unreal2 (2.8) crack.exe 107 KB 2-6-2005 16:14:58
File: WS_FTP LE 6.0.exe 107 KB 2-6-2005 16:14:58
File: Warcraft 3 crack.exe 107 KB 2-6-2005 16:14:58
File: Warcraft3 battle.net(2.5) crack.exe 107 KB 2-6-2005 16:14:58
File: Webcracker.exe 107 KB 2-6-2005 16:14:58
File: Website hacker v1.0.exe 107 KB 2-6-2005 16:14:58
File: Win2k_reboot_exploit.exe 107 KB 2-6-2005 16:14:58
File: WinMX 3.5.1.exe 107 KB 2-6-2005 16:14:58
File: WinRAR CRACKED.exe 107 KB 2-6-2005 16:14:58
File: WinXP_Keygen.exe 107 KB 2-6-2005 16:14:58
File: WinZip CRACKED FULL.exe 107 KB 2-6-2005 16:14:58
File: Window Washer 4.8.exe 107 KB 2-6-2005 16:14:58
File: Windows Me crack.exe 107 KB 2-6-2005 16:14:58
File: Windows XP license crack.exe 107 KB 2-6-2005 16:14:58
File: Windows_Keygen_allver.exe 107 KB 2-6-2005 16:14:58
File: Winzip_Pass_Cracker.exe 107 KB 2-6-2005 16:14:58
File: Wippit 2.1 (beta).exe 107 KB 2-6-2005 16:14:58
File: Word_Pass_Cracker.exe 107 KB 2-6-2005 16:14:58
File: XP DVD Plugin.exe 107 KB 2-6-2005 16:14:58
File: XP ScreenSaver.exe 107 KB 2-6-2005 16:14:58
File: XP_Box_emulator.exe 107 KB 2-6-2005 16:14:58
File: XP_keygen.exe 107 KB 2-6-2005 16:14:58
File: XViD bundle (codec+tutorial).exe 107 KB 2-6-2005 16:14:58
File: Yaha Fixtool.exe 107 KB 2-6-2005 16:14:58
File: Yahoo_mail_cracker.exe 107 KB 2-6-2005 16:14:58
File: aimcracker.exe 107 KB 2-6-2005 16:14:58
File: aimhacker.exe 107 KB 2-6-2005 16:14:58
File: all messenger hacker (MSN,YAHOO,AIM,ICQ) brute forcer + exploiter.exe 107 KB 2-6-2005 16:14:58
File: anastasia_anal.exe 107 KB 2-6-2005 16:14:58
File: anastasia_naked.exe 107 KB 2-6-2005 16:14:58
File: anastasia_nude.exe 107 KB 2-6-2005 16:14:58
File: blood patch.exe 107 KB 2-6-2005 16:14:58
File: buttman.exe 107 KB 2-6-2005 16:14:58
File: catherine_zeta_jones_anal.exe 107 KB 2-6-2005 16:14:58
File: catherine_zeta_jones_naked.exe 107 KB 2-6-2005 16:14:58
File: catherine_zeta_jones_nude.exe 107 KB 2-6-2005 16:14:58
File: crack serials.exe 107 KB 2-6-2005 16:14:58
File: credit card.exe 107 KB 2-6-2005 16:14:58
File: divx_fix.exe 107 KB 2-6-2005 16:14:58
File: divx_repair.exe 107 KB 2-6-2005 16:14:58
File: dos and ddos ping udp syn flooder.exe 107 KB 2-6-2005 16:14:58
File: edonkey_serverlist.exe 107 KB 2-6-2005 16:14:58
File: exegen.exe 107 KB 2-6-2005 16:14:58
File: ftp website hacker.exe 107 KB 2-6-2005 16:14:58
File: ftp_cracker.exe 107 KB 2-6-2005 16:14:58
File: ftp_hacker.exe 107 KB 2-6-2005 16:14:58
File: hack tool.exe 107 KB 2-6-2005 16:14:58
File: host_faker.exe 107 KB 2-6-2005 16:14:58
File: host_spoofer.exe 107 KB 2-6-2005 16:14:58
File: hotmail_account_sniffer.exe 107 KB 2-6-2005 16:14:58
File: iMesh 4.1 beta.exe 107 KB 2-6-2005 16:14:58
File: iSnipeIt 5.0c.exe 107 KB 2-6-2005 16:14:58
File: icqcracker.exe 107 KB 2-6-2005 16:14:58
File: icqhacker.exe 107 KB 2-6-2005 16:14:58
File: ident_faker.exe 107 KB 2-6-2005 16:14:58
File: ident_spoofer.exe 107 KB 2-6-2005 16:14:58
File: invisible_IP.exe 107 KB 2-6-2005 16:14:58
File: ip_faker.exe 107 KB 2-6-2005 16:14:58
File: ip_spoofer.exe 107 KB 2-6-2005 16:14:58
File: kazaa speed up.exe 107 KB 2-6-2005 16:14:58
File: kazaa.exe 107 KB 2-6-2005 16:14:58
File: keylogger best keylog ever.exe 107 KB 2-6-2005 16:14:58
File: kmd151_en.exe 107 KB 2-6-2005 16:14:58
File: linux_root.exe 107 KB 2-6-2005 16:14:58
File: mIRC 6.x addon patch.exe 107 KB 2-6-2005 16:14:58
File: mIRC s3th war-script.exe 107 KB 2-6-2005 16:14:58
File: msn_IP_finder.exe 107 KB 2-6-2005 16:14:58
File: msncracker.exe 107 KB 2-6-2005 16:14:58
File: msnhacker.exe 107 KB 2-6-2005 16:14:58
File: norton anti virus FULL VERSION.exe 107 KB 2-6-2005 16:14:58
File: pamela_anderson_anal.exe 107 KB 2-6-2005 16:14:58
File: pamela_anderson_naked.exe 107 KB 2-6-2005 16:14:58
File: pamela_anderson_nude.exe 107 KB 2-6-2005 16:14:58
File: password stealer.exe 107 KB 2-6-2005 16:14:58
File: porn.exe 107 KB 2-6-2005 16:14:58
File: porn_account_cracker.exe 107 KB 2-6-2005 16:14:58
File: porn_account_hacker.exe 107 KB 2-6-2005 16:14:58
File: pornmovie (hardcore sex adult asian).exe 107 KB 2-6-2005 16:14:58
File: private hack software DONT SHARE KEEP IT PRIVATE!.exe 107 KB 2-6-2005 16:14:58
File: psx2 emulator FINAL WORKING FOR PLAYSTATION.exe 107 KB 2-6-2005 16:14:58
File: sandra_bullock_naked.exe 107 KB 2-6-2005 16:14:58
File: sandra_bullock_nude.exe 107 KB 2-6-2005 16:14:58
File: sarah_michelle_gellar_naked.exe 107 KB 2-6-2005 16:14:58
File: sarah_michelle_gellar_nude.exe 107 KB 2-6-2005 16:14:58
File: shakira_anal.exe 107 KB 2-6-2005 16:14:58
File: shakira_ass****ed.exe 107 KB 2-6-2005 16:14:58
File: shakira_naked.exe 107 KB 2-6-2005 16:14:58
File: shakira_nude.exe 107 KB 2-6-2005 16:14:58
File: shakira_paparazzi_collection.exe 107 KB 2-6-2005 16:14:58
File: shortcut to northwind.lnk.exe 107 KB 2-6-2005 16:14:58
File: sms bomber WORKING.exe 107 KB 2-6-2005 16:14:58
File: spyware remover.exe 107 KB 2-6-2005 16:14:58
File: tripod_cracker.exe 107 KB 2-6-2005 16:14:58
File: tripod_hacker.exe 107 KB 2-6-2005 16:14:58
File: universal GSM Mobile Unlocker simlock remover works on nokia samsung ericsson sony and all other.exe 107 KB 2-6-2005 16:14:58
File: universal game NO-CD crack WORKS ON ALL GAMES.exe 107 KB 2-6-2005 16:14:58
File: win2k_pass_decryptor.exe 107 KB 2-6-2005 16:14:58
File: win2k_serial.exe 107 KB 2-6-2005 16:14:58
File: windows XP 2000 98 NT keygen (allin1).exe 107 KB 2-6-2005 16:14:58
File: winxp_crack.exe 107 KB 2-6-2005 16:14:58
File: winxp_cracker.exe 107 KB 2-6-2005 16:14:58
File: winxp_hacker.exe 107 KB 2-6-2005 16:14:58
File: winxphack.exe 107 KB 2-6-2005 16:14:58
File: xbox_emulator_beta.exe 107 KB 2-6-2005 16:14:58
File: yahoo_cracker.exe 107 KB 2-6-2005 16:14:58
File: yahoo_hacker.exe 107 KB 2-6-2005 16:14:58

Buckeye_Sam

Download and run Stinger. Let me know what it finds.
http://download.nai.com/products/mcafee-avert/stinger.exe

Koren

That url isnt up to date anymore...

btw, I deleted the entire folder software from my system32 map, I did it using the command prompt since windows cant find the folder. Using the command folder I didnt had problems finding it. I asked friends of mine and they also cant find the systems32 map anymore. They all had the virus so I think it's quite certain the virus is responsible.

Those 3 scanners didnt run, I couldnt install the needed files or it complained I didnt had admin rights which I have.

Thanks again for helping me!

Koren

Stinger version: 2.5.2.0 - feb 21 2005, didnt find anything.

I couldnt download the new one since the url was old.

I think the problem is the virus or malware is blocking the system32 map so virusscanners dont find them, or something like that.

Buckeye_Sam

Ok, let's try this.

Open notepad, copy and paste next content (bold) in it:

cd\
cd %windir%\system32
dir /a:-d /o:-d > %systemdrive%\system32.txt
start %systemdrive%\system32.txt
cls
exit

Save this as look.bat ,choose to save as *all files and save it to your desktop.
Doubleclick on it and notepad will open with a long list of all the files present in your system32-folder.
Copy and paste the first 20-30 lines of that log in your next reply.