tiedostojen tuhoaja

Joo eli en tiiä onko tää viirus mut mult on kadonnu tämmöne tiedosto johki: MSVBVM60.DLL ja kun ei oo ny tätä tiedostoo ei toimi malwarebytes
eikä hijackthis ja jos yrittää ladata uudestaa sanoo et tää tiedosto puuttuu eikä voi lataa. Ainoot haittaohjelmien poistajat jotka toimii
on ad-aware ja superanti-spyware eikä ne ole löytäneet mitään..

Eli mikä neuvoks ku ei voi ajaa läpi malwarebytesii tai hijackthissii
Ja saako ton tiedoston ladattua jostai takas? Ku en voi tietää et onko se joku haittaohjelma joka sen on ees poistanu :S

Eli perjaattessa en voi asentaa mitään uutta tai joitain ohjelmia en voi käyttää.

Virustorjuntakaan ei löytänyt mitää.. Apu olis tarpeen.

 

sain combofixin toimiin tässä raportti: onko tässä jotain? :S ja jos ei oo neuvokaa kui saan ton tiedoston takas?

ComboFix 08-09-05.14 - HP_Omistaja 2008-09-10 15:34:49.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1035.18.646 [GMT 3:00]
Sijainti: C:\Documents and Settings\HP_Omistaja\Työpöytä\ComboFix.exe
* Uusi palautuspiste luotu
.

(((((((((((((((((((((((((((((((((((((( Muut poistot ))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.

D:\Autorun.inf

.
((((( Tiedostot, jotka on luotu seuraavalla aikavälillä: 2008-08-10 to 2008-09-10 )))))))))))))))))
.

2008-09-09 18:51 . 2008-09-09 18:51 <KANSIO> d-------- C:\Documents and Settings\HP_Omistaja\Application Data\Template
2008-09-09 18:51 . 2008-09-09 19:36 184 --a------ C:\Documents and Settings\HP_Omistaja\Application Data\wklnhst.dat
2008-09-07 18:36 . 2008-09-07 18:36 <KANSIO> d-------- C:\Program Files\CDBurnerXP
2008-09-07 18:36 . 2008-09-07 18:36 <KANSIO> d-------- C:\Documents and Settings\HP_Omistaja\Application Data\Canneverbe_Limited
2008-09-02 19:43 . 2008-09-05 23:01 <KANSIO> d-------- C:\Documents and Settings\HP_Omistaja\Application Data\Creative
2008-09-02 19:34 . 2006-10-06 01:17 53,248 --------- C:\Windows\Ctregrun.exe
2008-09-02 19:34 . 2001-08-17 22:43 24,576 --------- C:\Windows\system32\msxml3a.dll
2008-09-02 19:33 . 2008-09-02 19:34 <KANSIO> d-------- C:\Program Files\Audible
2008-09-02 19:32 . 2008-09-02 19:40 <KANSIO> d-------- C:\Documents and Settings\All Users\Application Data\Creative
2008-09-02 19:31 . 2008-09-02 19:32 <KANSIO> d--h----- C:\Program Files\Creative Installation Information
2008-09-02 19:31 . 2008-09-02 19:34 <KANSIO> d-------- C:\Program Files\Creative
2008-09-02 19:31 . 2008-09-02 19:31 <KANSIO> d-------- C:\Program Files\Common Files\Creative
2008-09-02 19:31 . 1999-12-12 20:01 44,032 --------- C:\Windows\system32\CTSVCCDA.EXE
2008-09-02 19:31 . 1999-11-17 20:00 25,088 --------- C:\Windows\system32\CTSVCCTL.EXE
2008-09-01 19:34 . 2008-09-01 19:34 <KANSIO> d-------- C:\Program Files\CPU-Z
2008-09-01 19:32 . 2008-09-01 19:32 <KANSIO> d-------- C:\Program Files\Core Temp
2008-08-28 18:25 . 2008-09-06 10:26 <KANSIO> d-------- C:\Program Files\DC++
2008-08-27 19:16 . 2008-08-30 20:00 <KANSIO> d-------- C:\Program Files\World of Warcraft Trial
2008-08-26 17:03 . 2008-08-26 17:04 <KANSIO> d-------- C:\Program Files\Winamp
2008-08-26 17:03 . 2008-08-26 17:38 <KANSIO> d-------- C:\Documents and Settings\HP_Omistaja\Application Data\Winamp
2008-08-26 15:45 . 2008-08-31 17:44 351 --a------ C:\Windows\system\CMICNFG3.INI
2008-08-26 15:39 . 2007-04-12 18:56 6,098,944 -ra------ C:\Windows\system\cmicnfg3.cpl
2008-08-26 15:39 . 2001-11-23 13:08 712,704 -ra------ C:\Windows\system32\Audio3D3.dll
2008-08-26 15:39 . 2003-04-09 20:10 32,768 -ra------ C:\Windows\system32\udaprop3.dll
2008-08-26 15:27 . 2008-08-26 15:27 <KANSIO> d-------- C:\TerraTec
2008-08-25 22:15 . 2008-08-25 22:15 <KANSIO> d-------- C:\Program Files\Bulk Rename Utility
2008-08-25 22:15 . 2008-08-25 22:15 <KANSIO> d-------- C:\Documents and Settings\All Users\Application Data\Tarma Installer
2008-08-25 16:55 . 2007-04-12 17:27 1,399,680 -ra------ C:\Windows\system32\drivers\cmudax3.sys
2008-08-25 16:55 . 2002-04-29 16:04 917,504 -ra------ C:\Windows\system\cmids3d3.dll
2008-08-25 16:55 . 2001-11-23 13:08 712,704 -ra------ C:\Windows\system32\a3d.dll
2008-08-25 16:55 . 2005-10-12 15:58 241,664 -ra------ C:\Windows\system32\cmrmdrv3.exe
2008-08-25 16:55 . 2007-01-16 16:49 65,536 -ra------ C:\Windows\system\VMix.dll
2008-08-25 16:55 . 2007-02-26 21:30 36,864 -ra------ C:\Windows\system32\cmudax3.DLL
2008-08-25 16:55 . 2003-02-18 19:26 28,672 -ra------ C:\Windows\system32\cmrmdrv3.dll
2008-08-24 13:59 . 2008-08-26 18:55 <KANSIO> d-------- C:\Program Files\mIRC
2008-08-23 19:32 . 2008-08-23 19:32 <KANSIO> d-------- C:\Program Files\Windows Media Connect 2
2008-08-23 19:31 . 2008-09-02 19:36 <KANSIO> d-------- C:\Windows\system32\drivers\UMDF
2008-08-22 22:16 . 2008-08-22 22:16 <KANSIO> d-------- C:\Program Files\Common Files\Adobe
2008-08-22 20:04 . 2008-08-23 11:46 <KANSIO> d-------- C:\Documents and Settings\HP_Omistaja\Application Data\AdobeUM
2008-08-22 15:57 . 2008-09-04 07:52 <KANSIO> d-------- C:\Program Files\The FilmMachine
2008-08-22 15:57 . 2008-08-22 16:27 <KANSIO> d-------- C:\Program Files\AviSynth 2.5
2008-08-22 15:57 . 2003-06-19 15:46 491,520 --a------ C:\Windows\system32\lkVCDimager.dll
2008-08-22 15:52 . 2008-08-22 15:54 <KANSIO> d-------- C:\VideoOutput
2008-08-22 15:51 . 2008-08-22 15:51 <KANSIO> d-------- C:\Program Files\Common Files\Download Manager
2008-08-21 23:07 . 2008-08-22 16:28 <KANSIO> d-------- C:\Program Files\URUSoft
2008-08-21 21:19 . 2008-08-21 21:19 <KANSIO> d-------- C:\Program Files\Trend Micro
2008-08-20 21:28 . 2008-09-10 15:05 <KANSIO> d-------- C:\Program Files\Steam
2008-08-18 19:27 . 2007-03-08 02:51 129,784 --------- C:\Windows\system32\pxafs.dll
2008-08-18 19:27 . 2007-03-08 02:51 9,464 --------- C:\Windows\system32\drivers\cdralw2k.sys
2008-08-18 19:27 . 2007-03-08 02:51 9,336 --------- C:\Windows\system32\drivers\cdr4_xp.sys
2008-08-14 14:50 . 2008-04-11 22:05 691,712 --------- C:\Windows\system32\dllcache\inetcomm.dll
2008-08-14 14:50 . 2008-05-01 17:35 331,776 --------- C:\Windows\system32\dllcache\msadce.dll
2008-08-11 15:04 . 2008-08-27 19:16 <KANSIO> d-------- C:\Program Files\Common Files\Blizzard Entertainment

.
(((((((((((((((((((((((((((((((((((( Find3M-raportti ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-07 14:56 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\uTorrent
2008-09-07 08:46 --------- d-----w C:\Program Files\SpeedFan
2008-09-06 12:55 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\FrostWire
2008-09-06 06:00 23 ----a-w C:\Documents and Settings\HP_Omistaja\jagex_runescape_preferences.dat
2008-09-05 20:02 --------- d-----w C:\Program Files\Silkroad
2008-09-03 20:01 --------- d-----w C:\Program Files\Opera
2008-09-03 19:55 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-08-29 16:02 --------- d-----w C:\Program Files\SUPERAntiSpyware
2008-08-26 15:56 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\mIRC
2008-08-25 18:56 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\Apple Computer
2008-08-21 18:13 --------- d-----w C:\Program Files\Counter-Strike 1.6
2008-08-21 16:28 --------- d-----w C:\Program Files\COMODO
2008-08-21 16:28 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\Comodo
2008-08-21 16:25 --------- d-----w C:\Documents and Settings\All Users\Application Data\comodo
2008-08-09 17:58 --------- d-----w C:\Program Files\Apple Software Update
2008-08-09 17:55 --------- d-----w C:\Program Files\iTunes
2008-08-09 17:55 --------- d-----w C:\Program Files\iPod
2008-07-30 15:59 0 ---ha-w C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-07-30 15:09 21,672 ----a-w C:\WINDOWS\system32\drivers\ggsemc.sys
2008-07-30 15:09 13,352 ----a-w C:\WINDOWS\system32\drivers\ggflt.sys
2008-07-30 15:09 1,419,232 ----a-w C:\WINDOWS\system32\wdfcoinstaller01005.dll
2008-07-30 15:08 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2008-07-30 15:07 --------- d-----w C:\Program Files\Sony Ericsson
2008-07-27 15:57 137,840 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-07-27 15:57 111,928 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
2008-07-25 13:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\Avg8
2008-07-24 21:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-07-24 13:59 --------- d-----w C:\Program Files\FrostWire
2008-07-19 14:11 --------- d-----w C:\Program Files\Java
2008-07-18 07:32 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\Malwarebytes
2008-07-18 07:31 --------- d-----w C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-07-17 12:18 --------- d-----w C:\Program Files\QuickTime
2008-07-17 12:13 --------- d-----w C:\Program Files\Safari
2008-07-17 11:38 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\Teleca
2008-07-15 18:21 --------- d--h--w C:\Documents and Settings\All Users\Application Data\ActiveSMART
2008-07-15 15:40 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\Sony Ericsson
2008-07-15 15:35 --------- d-----w C:\Program Files\Common Files\Teleca Shared
2008-07-15 15:35 --------- d-----w C:\Program Files\Common Files\Sony Ericsson Shared
2008-07-15 15:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Teleca
2008-07-14 19:19 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\InstallShield
2008-07-14 18:53 --------- d-----w C:\Documents and Settings\HP_Omistaja\Application Data\LimeWire
2008-07-07 20:28 253,952 ----a-w C:\WINDOWS\system32\es.dll
2008-07-07 20:28 253,952 ------w C:\WINDOWS\system32\dllcache\es.dll
2008-06-26 22:57 66,872 ----a-w C:\WINDOWS\system32\PnkBstrA.exe
2008-06-24 16:44 74,240 ----a-w C:\WINDOWS\system32\mscms.dll
2008-06-24 16:44 74,240 ------w C:\WINDOWS\system32\dllcache\mscms.dll
2008-06-24 07:29 3,592,192 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll
2008-06-23 22:20 268,435,456 --sha-w C:\WinPEpge.sys
2008-06-23 09:21 70,656 ----a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe
2008-06-23 09:21 625,664 ----a-w C:\WINDOWS\system32\dllcache\iexplore.exe
2008-06-23 09:20 13,824 ----a-w C:\WINDOWS\system32\dllcache\ieudinit.exe
2008-06-21 05:23 161,792 ----a-w C:\WINDOWS\system32\dllcache\ieakui.dll
2008-06-20 17:47 246,784 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 17:47 246,784 ------w C:\WINDOWS\system32\dllcache\mswsock.dll
2008-06-20 17:47 147,968 ------w C:\WINDOWS\system32\dllcache\dnsapi.dll
2008-06-20 11:51 361,600 ------w C:\WINDOWS\system32\dllcache\tcpip.sys
2008-06-20 11:40 138,496 ------w C:\WINDOWS\system32\dllcache\afd.sys
2008-06-20 11:08 225,856 ------w C:\WINDOWS\system32\dllcache\tcpip6.sys
2008-06-19 19:33 737,280 ----a-w C:\WINDOWS\iun6002.exe
2008-06-14 17:34 272,128 ----a-w C:\WINDOWS\system32\dllcache\bthport.sys
2008-06-13 15:13 139,264 ----a-w C:\WINDOWS\system32\hpzjrd01.dll
.

(((((((((((((((((((((((((((((( Rekisterin käynnistyskohteet )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Huom* Tyhjiä arvoja ja laillisia oletusarvoja ei näytetä
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184]
"Steam"="c:\progra~1\steam\steam.exe" [2008-08-20 1271032]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 313472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-04-15 344064]
"HPHUPD08"="c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 49152]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2004-04-14 233472]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPwuSchd2.exe" [2005-05-12 49152]
"KBD"="C:\HP\KBD\KBD.EXE" [2005-02-02 61440]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2006-11-24 487424]
"AppleSyncNotifier"="C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-07-10 116040]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-07-30 289064]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2008-08-04 36352]
"CTCheck"="C:\Program Files\Creative\Creative ZEN\ZEN Media Explorer\CTCheck.exe" [2007-11-06 397312]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 C:\Windows\system32\bthprops.cpl]

C:\Documents and Settings\All Users\K„ynnist„-valikko\Ohjelmat\K„ynnistys\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-04-23 29696]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2005-05-12 282624]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"C:\\Program Files\\mIRC\\mirc.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\EA GAMES\\Battlefield Vietnam\\bfvietnam.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"=
"C:\\Program Files\\GameSpy Arcade\\Aphex.exe"=
"C:\\Documents and Settings\\All Users\\Application Data\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 2009\\English\\setup.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\Steam\\SteamApps\\seawalrus\\counter-strike source\\hl2.exe"=
"C:\\Windows\\system32\\dpvsetup.exe"=
"C:\\Program Files\\FrostWire\\FrostWire.exe"=
"C:\\Program Files\\DC++\\DCPlusPlus.exe"=
"C:\\Program Files\\Steam\\Steam.exe"=

R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
S3 ggflt;SEMC USB Flash Driver Filter;C:\WINDOWS\system32\DRIVERS\ggflt.sys [2008-07-30 13352]

*Newly Created Service* - PROCEXP90
.
'Ajoitetut tehtävät'-kansion sisältö
.
- - - - POISTETUT JÄMÄRIVIT - - - -

HKLM-Run-CmPCIaudio - cmicnfg3.cpl


.
------- Täydentävä tarkistus -------
.
FireFox -: Profile - C:\Documents and Settings\HP_Omistaja\Application Data\Mozilla\Firefox\Profiles\a5vdsux2.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://fi.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fifficial
FF -: plugin - C:\Program Files\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dll
FF -: plugin - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-10 15:36:33
Windows 5.1.2600 Service Pack 3 NTFS

tarkistaa piilotettuja prosesseja ...

tarkistaa piilotettuja käynnistysarvoja ...

tarkistaa piilotettuja tiedostoja ...

tarkistus on valmis
piilotetut tiedostot: 0

**************************************************************************
.
Valmistumisajankohta: 2008-09-10 15:37:33
ComboFix-quarantined-files.txt 2008-09-10 12:37:27

Pre-Run: 136,552,861,696 tavua vapaana
Post-Run: 136,564,703,232 tavua vapaana

225 --- E O F --- 2008-09-02 15:00:33