For the begining without do enithing else installing any programe or something else, only connect the internet, I tried to scan online with bitdefender.
I.E told me when I have tried to scan that "I.E. is not running with administrative privileges" and the scan didn't start, is this ok? Then, I run ie on run and administrator and it works..
When I installed win I shouldn't write at username field(only at computer name), and then I didn't have a username on this computer, or without to write anything in username field, the installation didn't continue..
Is there any method to doesn't appear at every windows start the button with username at the log on?
I have another two partitions besides C partition(which was formated and installed win 7 on it), and on those two partitions D and E are executable files, films, music, etc. and I thought one of those files to be infected and infect windows immediately it instaled, although win is on another partition, is this possible ?
Here is the Hijackthis log
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:09:08 PM, on 8/26/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/...can8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{CBAB2A81-F788-49B7-99FB-B894B0F57272}: NameServer = 193.231.252.1 213.154.124.1
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5024 bytes
LOGUL BITDEFENDER:
BitDefender Online Scanner
Scan report generated at: Thu, Aug 26, 2010 - 19:47:40
Scan path: C:\;D:\;E:\;F:\;
Statistics
Time
00:38:59
Files
124183
Folders
14444
Boot Sectors
0
Archives
1263
Packed Files
8142
Results
Identified Viruses
3
Infected Files
5
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
3
Engines Info
Virus Definitions
6270216
Engine build
AVCORE v2.1 Windows/i386 11.0.0.33 (Jun 18 2010)
Scan plugins
18
Archive plugins
44
Unpack plugins
10
E-mail plugins
6
System plugins
4
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
D:\soft\soft septembrie 2009\Your_Uninstaller__Pro_v.7.0.2010.5.Keygen.raed55\Your Uninstaller! Pro v.7.0.2010.5.Keygen.raed55\YU2010!_kg.exe
Infected with: Trojan.Generic.3009029
D:\soft\soft septembrie 2009\Your_Uninstaller__Pro_v.7.0.2010.5.Keygen.raed55\Your Uninstaller! Pro v.7.0.2010.5.Keygen.raed55\YU2010!_kg.exe
Deleted
D:\soft\soft septembrie 2009\Your_Uninstaller__Pro_v.7.0.2010.5.Keygen.raed55.rar=>Your Uninstaller! Pro v.7.0.2010.5.Keygen.raed55\YU2010!_kg.exe
Infected with: Trojan.Generic.3009029
D:\soft\soft septembrie 2009\Your_Uninstaller__Pro_v.7.0.2010.5.Keygen.raed55.rar=>Your Uninstaller! Pro v.7.0.2010.5.Keygen.raed55\YU2010!_kg.exe
Disinfection failed
D:\soft\soft septembrie 2009\Your_Uninstaller__Pro_v.7.0.2010.5.Keygen.raed55.rar=>Your Uninstaller! Pro v.7.0.2010.5.Keygen.raed55\YU2010!_kg.exe
Delete failed
E:\SOFT IAN.10\office 2007 portabl\Micr0s0ft_0ffice_2oo7_P0rtable...paris.part1.rar=>Microsoft Office 2007 Portable\Microsoft Office Excel 2007.exe
Infected with: Trojan.Generic.4173780
E:\SOFT IAN.10\office 2007 portabl\Micr0s0ft_0ffice_2oo7_P0rtable...paris.part1.rar=>Microsoft Office 2007 Portable\Microsoft Office Excel 2007.exe
Disinfection failed
E:\SOFT IAN.10\office 2007 portabl\Micr0s0ft_0ffice_2oo7_P0rtable...paris.part1.rar=>Microsoft Office 2007 Portable\Microsoft Office Excel 2007.exe
Delete failed
E:\SOFT IAN.10\office 2007 portabl\Microsoft Office 2007 Portable\Microsoft Office Excel 2007.exe
Infected with: Trojan.Generic.4173780
E:\SOFT IAN.10\office 2007 portabl\Microsoft Office 2007 Portable\Microsoft Office Excel 2007.exe
Deleted
E:\SOFT IAN.10\W7Loader_v1.7.7r\backup.07\Windows 7 Activator\7Loader By Orbit30 & Hazar v1.2.exe
Infected with: Trojan.Generic.2801762
E:\SOFT IAN.10\W7Loader_v1.7.7r\backup.07\Windows 7 Activator\7Loader By Orbit30 & Hazar v1.2.exe
Deleted
Edited by Blade Zephon, 26 August 2010 - 03:51 PM.
Moved to Logs Forum. ~BZ