2 new pC problems :@

[K4rMa]

1. I am infected with 1 virus.... and my folders are double ! :@

 

For example:

 

I have one folder name music... when i get in there i see another one folder with the same name...

And when i double click i see my documents ;/ I delete these folders but they apear again & again  :-\

 

 

2. Some games installations are too slow.... (Before some months it was perfect)

 

 

==============

 

1. Exw kolisei enan io k diplasiazontai oi fakeloi px otan mpenw s enan fakelo me onoma music mesa vlepw ksana enan fakelo me name music.. k otan pataw diplo click ekei me paei sta eggrafa.. t kanw diagrafi tn fakelo k ksanavgenei...

 

 

 

2. Ta install egka8istontai tragika arga... dn itan etC prin kapoious mines.. pigene sfera s kapia sigkekrimena

 

 

[Blane]

1. Make sure to check the results of HiJackThis(Google it).This may be not a virus.Just make sure what HiJackThis says and post back to tell you.I hope the problem is not in the registry cause if it is then you'd have to make a clean(tons of programs do this for you) or you'll have to edit it manually.

 

2. Did you made a Defragment in the last few months?

 

-Blane

[Frank]

1. Δοκίμασε να κάνεις scan με το Anti Virus σου (συνηστώ AVG Professional Edition)

2. Αν δεν αλλάξει κάτι, μπες με Safe Mode (F8) στα Windows και κάνε scan με το Antivirus σου.

3. Αν σου βρει τους υιούς και δεν μπορεί να τους κάνει heal τότε πήγαινε χειροκίνητα στην τοποθεσία που είναι ο υιός και κάνε το delete μόνος σου.

[K4rMa]

1. Make sure to check the results of HiJackThis(Google it).This may be not a virus.Just make sure what HiJackThis says and post back to tell you.

 

 

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1032
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Συνδέσεις
F2 - REG:system.ini: Shell=Explorer.exe "C:\WINDOWS\KesenjanganSosial.exe"
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Βοηθός εισόδου του Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [bron-Spizaetus] "C:\WINDOWS\ShellNew\RakyatKelaparan.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Tok-Cirrhatus-4401] "C:\Documents and Settings\K4rMa.HOME\Local Settings\Application Data\br9825on.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [amva] C:\WINDOWS\system32\amvo.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Empty.pif = ?
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{61A02147-5EEF-479C-8E7E-D0546A5A8CDD}: NameServer = 85.255.115.91,85.255.112.6
O17 - HKLM\System\CCS\Services\Tcpip\..\{82F4E189-E26F-4A12-8E4D-505A35F86528}: NameServer = 85.255.115.91,85.255.112.6
O17 - HKLM\System\CCS\Services\Tcpip\..\{E42D5FE1-7AC2-4365-BBE4-C495806FB9D8}: NameServer = 85.255.115.91,85.255.112.6
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.20,85.255.112.215
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.116.20,85.255.112.215
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 85.255.116.20,85.255.112.215
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.20,85.255.112.215
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

 

[Blane]

Check the red lines and clean them.If you recognize any of them then post back here giving us some more info.

 

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1032

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Συνδέσεις

F2 - REG:system.ini: Shell=Explorer.exe "C:\WINDOWS\KesenjanganSosial.exe"

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Βοηθός εισόδου του Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O4 - HKLM\..\Run: [bron-Spizaetus] "C:\WINDOWS\ShellNew\RakyatKelaparan.exe"

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Tok-Cirrhatus-4401] "C:\Documents and Settings\K4rMa.HOME\Local Settings\Application Data\br9825on.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKCU\..\Run: [amva] C:\WINDOWS\system32\amvo.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O4 - Startup: Empty.pif = ?

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{61A02147-5EEF-479C-8E7E-D0546A5A8CDD}: NameServer = 85.255.115.91,85.255.112.6

O17 - HKLM\System\CCS\Services\Tcpip\..\{82F4E189-E26F-4A12-8E4D-505A35F86528}: NameServer = 85.255.115.91,85.255.112.6

O17 - HKLM\System\CCS\Services\Tcpip\..\{E42D5FE1-7AC2-4365-BBE4-C495806FB9D8}: NameServer = 85.255.115.91,85.255.112.6

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.20,85.255.112.215

O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.116.20,85.255.112.215

O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 85.255.116.20,85.255.112.215

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.20,85.255.112.215

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

 

GL

-Blane

[Noble®]

1. I am infected with 1 virus.... and my folders are double ! :@

 

For example:

 

I have one folder name music... when i get in there i see another one folder with the same name...

And when i double click i see my documents ;/ I delete these folders but they apear again & again  :-\

 

 

2. Some games installations are too slow.... (Before some months it was perfect)

 

 

==============

 

1. Exw kolisei enan io k diplasiazontai oi fakeloi px otan mpenw s enan fakelo me onoma music mesa vlepw ksana enan fakelo me name music.. k otan pataw diplo click ekei me paei sta eggrafa.. t kanw diagrafi tn fakelo k ksanavgenei...

 

 

 

2. Ta install egka8istontai tragika arga... dn itan etC prin kapoious mines.. pigene sfera s kapia sigkekrimena

 

 

 

otan s lega tzi +tzo na kaneis format prin 3-4 meres eleges oti to eluses to problhma s k xwris format mplaaa mplaaa mplaa... twra sernetai to pc :D :P ama mila o 8eios .... alla pou mualo

[WANTED13]

ena format den blapti den einai kai diskolo misi ora doulia!

 

p.s: den xero an isxih alla ego eixa kolisi enan io kai to eixe bri to AVG Anti virus kai brika to name tou iou kai ekana search se olo to pc kai molis to brika to esbisa kai meta ksanaekana scan kai den to ebriske opote sbistike gia dokimaseto an 8es!

 

Gia tous fakelous 8a fteei o ios malon!!!

Poli ts@nt.. blepis :P :P

[K4rMa]

otan s lega tzi +tzo na kaneis format prin 3-4 meres eleges oti to eluses to problhma s k xwris format mplaaa mplaaa mplaa... twra sernetai to pc :D :P ama mila o 8eios .... alla pou mualo

 

Ela vree :P Egw ekana k alli mlkia to proigoumeno to fixarisa...

 

ena format den blapti den einai kai diskolo misi ora doulia!

 

p.s: den xero an isxih alla ego eixa kolisi enan io kai to eixe bri to AVG Anti virus kai brika to name tou iou kai ekana search se olo to pc kai molis to brika to esbisa kai meta ksanaekana scan kai den to ebriske opote sbistike gia dokimaseto an 8es!

 

Gia tous fakelous 8a fteei o ios malon!!!

Poli ts@nt.. blepis :P :P

 

1. Kserw na kanw format lol alla dn to exw egw mono to pC dustixws einai k o aderfos m k prepei na kanei backup prwtou to kanw k mexri na kanei 8a m vgalei tn panagia olo meta k meta...

 

2.TsonteS ? Mpa..... dn xreiazete to internet me tetio uliko p exw s dvd ;)

 

3. Dn exw antivirus st pC variomoun na valw k tn patisa ^,^

 

tCp 8a kanw format otan eukairisw ty all...

 

pff :@ :(

 

locked.