Vir na flash disku - duit

Zpráva

#16 Příspěvek od **vyosek** » 15 led 2014 16:54

Chtelo by to nejaky antivir

Jak se chova PC?

duit · #17 Příspěvek od **duit** » 15 led 2014 18:14

Plynulost PC nebyla nijak ovlivnena a chova se normalne.

#18 Příspěvek od **vyosek** » 16 led 2014 05:59

Tak jeste uklidime

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel èistiè

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

duit · #19 Příspěvek od **duit** » 16 led 2014 15:21

Dobrý den,

postupoval jsem přesně dle instrukcí, nicméně problém stále přetrvává. Složka RECYCLER se stále objevuje ve flash kartě i po jejím smazání.

#20 Příspěvek od **vyosek** » 17 led 2014 06:17

Recyclery jsou defakto "kose" disku, kdyz do ni jdete, indikuje neco antivir?

duit · #21 Příspěvek od **duit** » 17 led 2014 06:37

Indikuje tyto zástupce:

Copy of Shortcut to (1)
Copy of Shortcut to (2)
Copy of Shortcut to (3)
Copy of Shortcut to (4)

a ESET vyhodí toto:

H:\Copy of Shortcut to (1).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (1).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (1).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (2).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (2).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (2).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (3).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (3).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (3).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (4).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (4).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\Copy of Shortcut to (4).lnk - LNK/Autostart.A trojan - cleaned by deleting - quarantined
H:\HuaweiBackup\backupFiles\AllBackupV6.2.59.apk » ZIP » res/drawable-sw360dp-hdpi/pic_bg.jpg - error reading archive
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZcSgnWan.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZcSgnWan.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\oDlxlkrn.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\oDlxlkrn.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\BPrVXBiq.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\BPrVXBiq.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yWaaWurU.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yWaaWurU.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\AeTElMmu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\AeTElMmu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\uFaIgpRZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\uFaIgpRZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SQPAGSEV.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SQPAGSEV.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\eoWkryTT.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\eoWkryTT.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VPQxaEJy.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VPQxaEJy.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\XlyFtVqx.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\XlyFtVqx.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\okQyfPla.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\okQyfPla.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xrWOReNo.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xrWOReNo.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yullylDX.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yullylDX.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GEYaoqNT.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GEYaoqNT.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\IZwTIQfL.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\IZwTIQfL.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hhtvAtdo.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hhtvAtdo.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\LBkKMqTW.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\LBkKMqTW.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GGUudVQJ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GGUudVQJ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\pIoBusSs.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\pIoBusSs.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PITkuMio.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PITkuMio.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cXVXxoPy.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cXVXxoPy.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DhYaJmHb.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DhYaJmHb.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DsSFOvqQ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DsSFOvqQ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\skJFkCDv.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\skJFkCDv.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PZKvrRAN.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PZKvrRAN.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZgsIOtFJ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZgsIOtFJ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UlfgQvWf.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UlfgQvWf.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\aHdBJShk.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\aHdBJShk.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mjNbebrZ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mjNbebrZ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tApROKie.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tApROKie.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xdWDaMVL.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xdWDaMVL.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\KfQBgkcw.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\KfQBgkcw.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\RGtflmbA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\RGtflmbA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CZPVniuY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CZPVniuY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OslvrrNF.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OslvrrNF.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\rLfrpbQb.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\rLfrpbQb.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OMTbXyVu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OMTbXyVu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\joZgpGKs.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\joZgpGKs.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nXrJvRyE.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nXrJvRyE.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\eVAgcQsV.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\eVAgcQsV.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cuTamafU.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cuTamafU.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tWoDstME.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tWoDstME.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\MlguAZKR.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\MlguAZKR.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hgXVkyEK.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hgXVkyEK.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ecISSRmu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ecISSRmu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\IXghfZEU.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\IXghfZEU.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CXuEMbub.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CXuEMbub.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\gLNqNkOh.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\gLNqNkOh.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JqXFKPQO.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JqXFKPQO.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ijsxlKwp.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ijsxlKwp.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WrEQwKHj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WrEQwKHj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CMUWnEBY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CMUWnEBY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xdBvPLQD.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xdBvPLQD.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\BImEwpFI.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\BImEwpFI.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PVtUnJuq.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PVtUnJuq.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\AvLUqelZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\AvLUqelZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\juyVxCLx.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\juyVxCLx.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\NUIRmPur.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\NUIRmPur.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\aPukdoEq.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\aPukdoEq.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FwuFEJmh.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FwuFEJmh.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\arvaWPUG.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\arvaWPUG.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\LgQaWsMB.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\LgQaWsMB.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WvVDAQCr.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WvVDAQCr.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xBnxVgSP.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xBnxVgSP.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FvmuJbTi.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FvmuJbTi.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SrASrEdh.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SrASrEdh.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DsAnfyUf.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DsAnfyUf.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nfmEhiEw.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nfmEhiEw.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fijGshMp.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fijGshMp.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\rxdeujsL.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\rxdeujsL.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tfgIgHcM.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tfgIgHcM.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yqhjvTqe.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yqhjvTqe.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\QWqBcbOj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\QWqBcbOj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nXJktRhf.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nXJktRhf.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\COcReMWk.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\COcReMWk.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\aUGDIwue.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\aUGDIwue.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\iXybQQsp.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\iXybQQsp.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SkALrNAS.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SkALrNAS.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SSSDeISc.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SSSDeISc.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SmkPRynr.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SmkPRynr.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\srKrGCdX.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\srKrGCdX.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\sSeBvKBQ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\sSeBvKBQ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\swxmmGfS.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\swxmmGfS.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZvOdRWQB.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZvOdRWQB.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\XXXqUAbI.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\XXXqUAbI.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\QwVlBhjF.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\QwVlBhjF.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VVGafylu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VVGafylu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\EqtsUMcC.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\EqtsUMcC.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kpkRCJuk.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kpkRCJuk.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SevTnbKm.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SevTnbKm.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ikxkYuWQ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ikxkYuWQ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SnKSbGBH.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SnKSbGBH.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZqjvqRDe.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZqjvqRDe.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\krCIsSCI.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\krCIsSCI.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OLWYvjlh.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OLWYvjlh.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PkZKCrwU.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PkZKCrwU.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\wXcseoZa.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\wXcseoZa.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\BgvrtVGq.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\BgvrtVGq.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yFjeennw.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yFjeennw.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mOvAlOic.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mOvAlOic.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\HmmQODwf.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\HmmQODwf.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GcsBjKQQ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GcsBjKQQ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ooWwcVhv.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ooWwcVhv.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\pRRKoRct.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\pRRKoRct.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fBdDiNCD.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fBdDiNCD.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\YhiBlMdB.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\YhiBlMdB.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tXVZNoLi.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tXVZNoLi.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xmTQFTYR.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xmTQFTYR.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\stKBDRhj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\stKBDRhj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ClKxVlCp.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ClKxVlCp.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fKNPQkJw.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fKNPQkJw.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\TRxPjZsu.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\TRxPjZsu.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tMoXxKTY.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tMoXxKTY.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\wUHcwvUl.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\wUHcwvUl.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xRSwoFel.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xRSwoFel.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\EvMSoxXZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\EvMSoxXZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UgaqVfbC.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UgaqVfbC.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CtBaCKNe.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CtBaCKNe.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JlMPBXcg.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JlMPBXcg.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\NwHkOcuJ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\NwHkOcuJ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DbJZOjTY.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DbJZOjTY.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\qfaaqNZZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\qfaaqNZZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\aTVIZpob.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\aTVIZpob.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mZrBrdlf.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mZrBrdlf.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\vxKxTqpX.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\vxKxTqpX.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bDmLsKtL.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bDmLsKtL.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ImpXgsOc.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ImpXgsOc.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\KSdcFTyx.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\KSdcFTyx.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\EoUeAUbT.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\EoUeAUbT.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\XdKPqXSD.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\XdKPqXSD.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FAVNrbPa.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FAVNrbPa.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\LbBhRGTR.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\LbBhRGTR.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\pwAffbpn.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\pwAffbpn.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JynhCXtw.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JynhCXtw.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fGJoVOtr.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fGJoVOtr.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\sbiHeDCD.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\sbiHeDCD.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cJPtBukT.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cJPtBukT.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FmIJOxyW.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FmIJOxyW.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\scQucKHd.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\scQucKHd.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OjIUCIgj.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OjIUCIgj.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GohueBAZ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GohueBAZ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FnSCeWiO.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FnSCeWiO.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\utSNhxMh.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\utSNhxMh.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mrhKFsbW.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mrhKFsbW.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\IoVKxCvB.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\IoVKxCvB.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\vbsLuZwj.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\vbsLuZwj.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OIVYBBGd.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OIVYBBGd.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\naWPdCWs.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\naWPdCWs.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\wTAgAqpm.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\wTAgAqpm.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JhOyKvwJ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JhOyKvwJ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\myHYBJhx.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\myHYBJhx.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cNCouccB.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cNCouccB.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VwQfJmHJ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VwQfJmHJ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FRtwAqoN.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FRtwAqoN.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GlWYHdUi.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GlWYHdUi.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kPSuLaDX.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kPSuLaDX.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\HXcUAOVI.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\HXcUAOVI.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kimFnYwK.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kimFnYwK.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ltGfjTbH.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ltGfjTbH.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\vexGNDTY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\vexGNDTY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\eCQyTjCG.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\eCQyTjCG.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nBvTkhqI.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nBvTkhqI.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bCdpFYDA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bCdpFYDA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UiYjsqmT.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UiYjsqmT.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\STvpEuPk.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\STvpEuPk.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kUsRUEaY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kUsRUEaY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\qdBLImlB.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\qdBLImlB.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WRQaTvsf.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WRQaTvsf.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ctspapBA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ctspapBA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FCRTcZQr.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FCRTcZQr.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\iGJZyCAu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\iGJZyCAu.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ckseCQrl.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ckseCQrl.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\IBnLOgBd.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\IBnLOgBd.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cjFaWwrY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cjFaWwrY.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fvIDdiCg.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\fvIDdiCg.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DkYOgJfL.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DkYOgJfL.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\BOfUhmbt.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\BOfUhmbt.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ffbpnDxf.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ffbpnDxf.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\sfKPtuFt.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\sfKPtuFt.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\gwKZSaWA.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\gwKZSaWA.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bvUdGrKM.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bvUdGrKM.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CwVcTxMv.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CwVcTxMv.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JAnLDvsH.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JAnLDvsH.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\AKiRkydw.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\AKiRkydw.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WflOfYRU.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WflOfYRU.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hqXAMlgp.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hqXAMlgp.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\sIeRwMtN.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\sIeRwMtN.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\AQodiZjD.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\AQodiZjD.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CVDJhdbx.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CVDJhdbx.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mVUfEPJo.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mVUfEPJo.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yoCUytMD.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yoCUytMD.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\wNsJqVyg.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\wNsJqVyg.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nqluYuLC.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nqluYuLC.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZCMXWmIT.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZCMXWmIT.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CLxOeTYA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CLxOeTYA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\MUubldPX.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\MUubldPX.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\vLLlwVjI.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\vLLlwVjI.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\MZnNTcIt.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\MZnNTcIt.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PUEJQJLk.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\PUEJQJLk.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\lMMBLPLV.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\lMMBLPLV.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cwvUltMo.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cwvUltMo.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cueLuwUH.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\cueLuwUH.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FQvhOyEj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\FQvhOyEj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ClTAGGsK.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ClTAGGsK.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WRyeOYhx.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\WRyeOYhx.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\TXGUvAvX.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\TXGUvAvX.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bWYIoOQQ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bWYIoOQQ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JPKQyfrq.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JPKQyfrq.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nBbpdOTB.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nBbpdOTB.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kOVZuQYN.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kOVZuQYN.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DYBlqNaD.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\DYBlqNaD.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\svFxjdAZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\svFxjdAZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\jfgPJFdj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\jfgPJFdj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\dvFHfmSi.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\dvFHfmSi.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OkdDrMZj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OkdDrMZj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UvLRKULe.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UvLRKULe.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VZrXqFPe.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VZrXqFPe.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\alwEwwpG.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\alwEwwpG.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tdLFYihT.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\tdLFYihT.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hZcODdcm.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hZcODdcm.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xuNunxrC.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\xuNunxrC.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JhGFpNRO.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JhGFpNRO.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\pFMwjFAy.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\pFMwjFAy.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\YEpcbGhj.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\YEpcbGhj.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\POyWckEa.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\POyWckEa.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\dvfRdnCK.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\dvfRdnCK.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\TlLXYVmA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\TlLXYVmA.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ARxjYBEj.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ARxjYBEj.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bnIFZOCY.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\bnIFZOCY.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GxmVchuD.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GxmVchuD.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SnSVSLoO.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\SnSVSLoO.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VduMEtCp.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VduMEtCp.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\lfZOOFfj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\lfZOOFfj.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nMecHgie.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\nMecHgie.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZoZkKuFE.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ZoZkKuFE.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JqNVLwif.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JqNVLwif.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\uGffacCZ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\uGffacCZ.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JdPNfKNP.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JdPNfKNP.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CVEPsRFr.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\CVEPsRFr.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hmPtJdhP.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\hmPtJdhP.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ektkpnDm.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\ektkpnDm.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\RQocsClk.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\RQocsClk.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\gbKYRCRP.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\gbKYRCRP.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\LHgcbAJZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\LHgcbAJZ.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VXuAxNAF.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\VXuAxNAF.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\HkSHDfWl.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\HkSHDfWl.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yrvVIkll.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\yrvVIkll.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JkfGggna.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\JkfGggna.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UppVyMAB.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UppVyMAB.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mYZnRtXC.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\mYZnRtXC.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GmEWPrys.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\GmEWPrys.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\TZKYZgfP.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\TZKYZgfP.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OISfxBfL.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\OISfxBfL.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kavqJqQc.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\kavqJqQc.cpl - Win32/Ramnit.F virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UUTSYaao.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion
H:\RECYCLER\S-4-0-13-8455555045-7885235831-442857584-1013\UUTSYaao.exe - Win32/Ramnit.AY virus - action selection postponed until scan completion

#22 Příspěvek od **vyosek** » 17 led 2014 06:41

Zapojte flash disk

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

Pokud ho havet blokuje, pouzijte jeden z nasledujicich - i ty prejmenovane
Rkill EXE:
http://download.bleepingcomputer.com/grinler/rkill.exe

Rkill iExplore.exe:
http://download.bleepingcomputer.com/gr ... xplore.exe

Rkill uSeRiNiT.exe:
http://download.bleepingcomputer.com/gr ... eRiNiT.exe

Rkill WiNlOgOn.exe:
http://download.bleepingcomputer.com/gr ... NlOgOn.exe
Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
Spustte tradicne dvojklikem - program probehne do par sekund a ukonci i svou cinnost
RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
Na plose vznikne log Rkill.txt ten mi sem vlozte
Ted nerestartujte PC - prisli byste o ucinek RKillu

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

duit · #23 Příspěvek od **duit** » 17 led 2014 14:03

Rkill:

Rkill 2.6.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 01/17/2014 01:53:06 PM in x86 mode.
Windows Version: Windows 7 Ultimate

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 01/17/2014 01:53:32 PM
Execution time: 0 hours(s), 0 minute(s), and 26 seconds(s)

CF:

ComboFix 14-01-16.03 - Do iT 17.01.2014 13:55:26.5.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3037.1921 [GMT 1:00]
Spuštěný z: e:\users\Do iT\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
e:\program files\Internet Explorer\dmlconf.dat
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-17 do 2014-01-17 )))))))))))))))))))))))))))))))
.
.
2014-01-17 12:59 . 2014-01-17 12:59 -------- d-----w- e:\users\Default\AppData\Local\temp
2014-01-15 17:14 . 2014-01-16 14:08 108544 ------w- e:\users\Do iT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ftvbpxtt.exe
2014-01-14 19:45 . 2014-01-16 14:03 -------- d-----w- e:\program files\trend micro
2014-01-14 15:48 . 2014-01-14 15:48 -------- d-----w- e:\users\Do iT\AppData\Roaming\Malwarebytes
2014-01-14 15:48 . 2014-01-14 15:48 -------- d-----w- e:\programdata\Malwarebytes
2014-01-13 16:56 . 2014-01-13 17:07 -------- d-----w- e:\users\Do iT\AppData\Roaming\Audacity
2014-01-13 16:56 . 2014-01-13 16:56 -------- d-----w- e:\program files\Audacity
2014-01-13 16:56 . 2014-01-13 16:56 -------- d-----w- e:\users\Do iT\AppData\Local\Programs
2014-01-13 16:55 . 2014-01-13 16:55 -------- d-----w- e:\users\Do iT\AppData\Roaming\rmi
2013-12-22 08:22 . 2014-01-15 15:45 -------- d-----w- e:\users\Do iT\AppData\Roaming\Skype
2013-12-22 08:21 . 2013-12-22 08:21 -------- d-----w- e:\program files\Common Files\Skype
2013-12-22 08:21 . 2013-12-22 08:21 -------- d-----r- e:\program files\Skype
2013-12-22 08:21 . 2013-12-22 08:22 -------- d-----w- e:\programdata\Skype
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-25 17:27 . 2013-11-25 17:27 119808 ----a-r- e:\users\Do iT\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2013-11-18 00:28 . 2013-11-25 17:15 7772552 ----a-w- e:\programdata\Microsoft\Windows Defender\Definition Updates\{92829D96-68DD-41B5-92B5-7A5F2A843F1B}\mpengine.dll
2013-11-11 04:50 . 2013-11-25 17:14 230048 ------w- e:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RESTART_STICKY_NOTES"="e:\windows\System32\StikyNot.exe" [2009-07-14 354304]
"Infium"="e:\program files\QIP 2012\qip.exe" [2013-01-10 8378408]
.
e:\users\Do iT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
ftvbpxtt.exe [2014-1-16 108544]
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - e:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2006-10-26 98632]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe
.
R2 SkypeUpdate;Skype Updater;e:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 CFcatchme;CFcatchme;e:\users\DOIT~1\AppData\Local\Temp\CFcatchme.sys [x]
R3 mvusbews;USB EWS Device;e:\windows\system32\Drivers\mvusbews.sys [2012-08-21 17408]
S2 HPSIService;HP SI Service;e:\windows\system32\HPSIsvc.exe [2012-08-31 100256]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-01-16 08:59 1211672 ----a-w- e:\program files\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - e:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
.
.
Celkový čas: 2014-01-17 14:00:32
ComboFix-quarantined-files.txt 2014-01-17 13:00
.
Před spuštěním: Volných bajtů: 234 061 512 704
Po spuštění: Volných bajtů: 233 973 329 920
.
- - End Of File - - 96162D4EFEB06EB5CF0413476B2DC4E5
A36C5E4F47E84449FF07ED3517B43A31

#24 Příspěvek od **vyosek** » 18 led 2014 02:18

Nechte flash disk pripojeny

Pokud nemate, tak presunte Combofix na plochu

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

Collect::
e:\users\Do iT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ftvbpxtt.exe

Folder::
H:\RECYCLER

ClearJavaCache::

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

duit · #25 Příspěvek od **duit** » 18 led 2014 12:04

Nechci se radovat předčasně, ale asi to zabralo. Složku jsem ve flashce nenašel + když jsem smazal odkazy:

Copy of Shortcut to (1)
Copy of Shortcut to (2)
Copy of Shortcut to (3)
Copy of Shortcut to (4)

Tak se znovu neobjevily.

ComboFix 14-01-16.03 - Do iT 18.01.2014 11:32:54.6.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3037.2020 [GMT 1:00]
Spuštěný z: e:\users\Do iT\Desktop\ComboFix.exe
Použité ovládací přepínače :: e:\users\Do iT\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
file zipped: e:\users\Do iT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ftvbpxtt.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
H:\RECYCLER
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\AeSSjPhI.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\AndftIAq.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\bBQYhpDo.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\BcpvQVZS.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\bPYblSbW.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\BRYaTNhd.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\cpNdhPBu.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\EuwUYNBH.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\FVILApuW.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\GhxCguaW.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\gjFDbaYx.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\GXjoQlna.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\gyebUNUQ.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\hckibGek.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\HGhHkHLO.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\hwDZscmB.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\ICPfKbEL.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\IYcYiQfA.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\jbkIjaYk.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\jmoUcbcY.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\JNvQhZTM.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\KsMoxcbH.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\KYTSAlpH.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\LDxgkAMS.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\llyPtGxP.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\LnAPdEZF.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\LusCQBBG.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\mfKJLKKt.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\mhStkMjx.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\mkohwGBA.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\MVKJwrTV.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\nduMENfQ.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\oAQsTlSs.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\oOPkreXg.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\opNKCEVv.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\OxmebDNb.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\pArPWscE.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\QKmZHsbR.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\tJWuCBfJ.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\UNNSCJBG.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\UPbSSnIO.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\URuLNTvI.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\vEJMVrwE.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\VEOpVuqu.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\VHlEWljp.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\VRMYNWEL.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\VXtSUWAm.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\XEfWfPZr.exe
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\yQALRGFx.cpl
h:\recycler\S-0-6-38-8824735173-1186873225-121071221-6348\yVeZYefC.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AafYrJZA.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AcBjOFqf.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\aCCWsdWa.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\agbBglXg.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AiZmChcC.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\akoJhcQf.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\aNJivdNY.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AOfhnBaV.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AolJoAGm.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ApDiTOLB.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ApReUdbq.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\aQoaUeJK.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ASnbrqUC.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ATuGgyLd.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\aTvkmxox.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AvarkuQh.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\aVeWutqW.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AvmFeBQG.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\avpLhQFs.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AwahWNvQ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\aWdVsRlQ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\axqlVWxh.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AxxVZMqZ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AYKEEafO.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\AZIMvuTm.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\baicTlwI.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\BCaGYKwm.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\bcVSOrcJ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\beeZQYaW.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\BfdJtieR.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\BIVUMxvr.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\BmhXkeEt.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\bQeZVgaH.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\BRSRXeuR.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\bUESBCnh.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\BXLjWJYt.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\BySOtQrI.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\CdkprPkF.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\CdPrnlRr.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ClToQBBr.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cmPcYjIq.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cMXZfpli.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cPSBJDVx.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\CPwmqGGh.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\CqcZwYlu.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cSGtHtMi.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cUsPfyuE.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cuWJctNS.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cUYvYwfZ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cWaoPQHF.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\cYipjoFQ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DdbutRaJ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DFbFjxmx.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\dHCmLnFZ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\dHexrFGc.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DiAvgMYf.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\diLJDZdb.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\djbTeTYu.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DjfOMnbe.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DKRBFBLu.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\dOHVZHiO.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DOswZTJx.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DPoCyJyd.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DqqqbqPq.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DrgYtBBF.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DSGROxbX.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\dSqYXqec.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DTPMquQd.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\dUHKHrKU.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DWimmlDA.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\DWPLpePu.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\dZhpqSbb.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ebfJRgwo.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EDEtKJvj.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\eEZSBTGt.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\efugYbOV.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\efwNYWyp.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EgruHWwk.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ekYajFlk.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\elPIefbe.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\enbOhpUx.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\eNrIhQZG.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EnWQhCOk.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EoJdsSsE.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EpBqbrMX.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EsmgqCQM.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\etReROPT.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EUUOBaHw.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EWTHbJhA.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EwWTWClv.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\EyByOCYf.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\fAsHhDrH.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\FjdoRPgE.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\FPccORBc.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\fsWepdmT.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\fTNHJZMl.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\FttUBBsQ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\FuVAdvao.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\FXEIvguc.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\FZAWsWBs.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\fZJsVstx.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GAqVedcp.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GbpAyubL.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GdgBqqRS.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GenybNMG.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\gGoiNLgx.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\gmBWkWKE.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GMOHPAOx.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\gMURRPyc.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GNoNAFSy.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\gQguetUS.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GQHvXsBD.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GWXebjyc.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\GXaVBLIp.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\gYnDdIqB.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\hcfIIamQ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\HECERRkS.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\hgAsMFCP.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\hiaeXicB.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\hkBeiWQq.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\HKHwYpmk.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\hMlTGcqn.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\HMpimUqm.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\hqcLSZRN.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\HVuMdTdu.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\HXLlYpIP.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\IBlOZfxW.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\iBNZemtS.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\IFRMGRoL.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\IGSKThdp.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ihOxNJPs.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\IHqQleem.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ijGkZBXO.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ijSiUwEw.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\INYcwXEg.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\IRywkoZJ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\IseCrlKv.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\iSlALxkO.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\IVPBcOKl.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\IxOJQYdJ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\iYOZayLT.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\jadjEgqT.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\JBJhsnDs.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\jHSIuiAZ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\JICdqcgo.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\JJCSvgoA.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\JLWbuJml.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\JoXcXLRZ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\JRrIjkAT.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\jrVwyNLa.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\JStiaIVe.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\jtObrYTM.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\JVMUtjlm.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\KDKskMkX.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\kikJxAsg.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\kIPOvRFS.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\KjjqecoS.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\KMkeMiQW.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\kQbsJxdk.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\kYfNqAid.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\KYuKBgWo.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\kZTiibWJ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\lbCxfvfY.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\LBLtNLmM.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\LcZWwPSl.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\lHuIwSOx.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\LKquGgnX.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\llYqWLqL.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\lmqVbwGw.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\LnqjCmgI.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\lpcaTAjB.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\lrksgBmB.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\LTwgDKOe.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\lZLwHFyr.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MAhtDgua.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MdqqTIEL.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MdyMVVfM.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\mgmMTVYj.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\mhGdfTfd.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\mhqrWcEm.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\mILLHkjZ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MMaSBDoq.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MmlRqZYQ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MNioSJDU.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MpDulWBW.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MPyEqycB.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\msQVcsfH.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\msuUsBYB.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MyHmwGke.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\MYnIUkAn.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NCksNqLS.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NDjbvFKE.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NfpOwiYI.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\nGKEdTPJ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\nGyRmnRv.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NHofCfah.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NNjqARTu.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\nnKlKGac.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NoCfSvDv.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\noePSDbb.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NQZrkoei.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NriQgYTJ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\nrYVkyNa.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\NTsPJhkw.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\nXWqpHNj.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\nXXkvLqU.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ObvjLtAh.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ODOlNnld.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\oEDWbxNA.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\OEEYdZui.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\oGMMajTl.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\OiFLhTtd.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\okNmFwBB.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\OlcdTFpN.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\olgvIupu.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\omullyoe.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\OPLfsPoc.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\oPMETRbr.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\oPpqFUEH.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\osiLcFUp.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\OTQNMMIc.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\oULpfXTw.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\OuQEICoP.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ovudVxIb.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\OxJcscUM.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\OxpGrUTa.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\pAVoyAGx.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\PBdjgjgD.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\PBFNgGGd.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\pEEVOBDi.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\pelIlQXh.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\PhEhKiYB.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\pIRxoINy.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\pKcBFLhT.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\PMWBTclc.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\poDqhYkP.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\PqJkRWiC.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\pqWYAnOK.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\psksAtFg.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\PsmRkSju.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ptAbrbot.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\PUXwlxBe.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\pySqDZjv.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\PZZniOCj.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QdLZtndI.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QEXnqHUg.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\qgcnEwtX.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\qjdBYtZA.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QmQcRNDa.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QPdDkGTp.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\qqipAEOC.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QRurwVNJ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\qtaXUqNf.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QToeeVkh.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QvidBehN.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QwUKWSUt.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\qXHEwtDv.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\QyeZdYih.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\rhgcuDaP.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\RhUrenWF.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\RCHQCcVZ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\rIugxhWN.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\RjqjTgQN.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\rKCWPwbw.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\rKHrgbFH.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\rnaMckxs.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\RSdWuTyo.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\rSYbhRVG.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\RYHToUfJ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\SFNSNyyL.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\SHKXAnAL.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\SKlGUEGF.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\sKpEoUXd.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\smfvLNTs.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\soXyPVti.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\sPjvtQJU.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\sqiAWJeq.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\SrjAvvQg.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\sRsEuZTU.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\sTNKJIiu.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\sxNjREqS.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tCMGWrZx.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\TDITaage.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\TEXKfIEv.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tEYhKNLr.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tFGXOqsV.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\TgInueFT.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\TJXFeesh.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\TkpCrxdD.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tnhHKivf.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tnySeedO.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tQcdQRvj.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tUVkxdVo.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tUVkxdVo.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tWBpTegv.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tWIAsmaV.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\tXBCRYBe.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\TZvPLQLX.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\UbPAPovA.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\uDOwGXUD.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ueHQBhGP.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\UfNjvfwC.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\UfyTVabu.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ugjyLZXa.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\UlGfmxNd.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\Uoiakvds.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\UORKaWco.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\uQRuaUaL.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\UrcNNCRh.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\UukyaMOD.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\uwpbdaNj.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\vbvUdGrK.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\VDKwXLRq.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\VFbjAexl.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\vGgbkPaT.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\vghYnVIc.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\vhFloLKK.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\vhKmPPus.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\vIPsZWqu.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\VlcrUtcL.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\VlqfNAeD.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\VmcdCCGH.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\VOtmZWNr.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\vRbvCfXM.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\VUbpbRti.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\VYTNfMyU.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\WdUelmHg.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\WhRTHhYV.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\WIqvSBqg.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\WMwnlLWP.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\WOAqyqpE.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\WQjVrjaF.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\wxuiMWUK.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\xAhiRvwm.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\xArpghVV.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\XjjpwxHT.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\xnfdvKyZ.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\xQNjyuLB.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\XSqiVBef.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\XTrExZkm.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\xxyWRXWC.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\XYsuEnXW.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\XywFThRp.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\YbSGnCih.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ydjiPrKK.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\yFmyryBJ.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\yfpJKvtA.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\yHxQCuKx.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\YjhrlJIB.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\YJQMAmZb.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\yQAJiRUb.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\YRixbAEg.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\yUpIcQpf.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ywwTnkcu.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\YxRIVupj.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\yZKSJfue.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZACSqcrh.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZbTvIBYs.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZCwVcTxM.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZGeGOAZk.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZhITERss.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZJKOnndF.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZkaDufDt.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZKAInudX.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZrLfYHyL.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZuIHJfCY.exe
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZVVEqWSb.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZYQrkeNE.cpl
h:\recycler\S-1-6-02-2086058147-6557764547-561547275-5088\ZyvehKxX.cpl
ZDV.cpl

.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-18 do 2014-01-18 )))))))))))))))))))))))))))))))
.
.
2014-01-14 19:45 . 2014-01-16 14:03 -------- d-----w- e:\program files\trend micro
2014-01-14 15:48 . 2014-01-14 15:48 -------- d-----w- e:\users\Do iT\AppData\Roaming\Malwarebytes
2014-01-14 15:48 . 2014-01-14 15:48 -------- d-----w- e:\programdata\Malwarebytes
2014-01-13 16:56 . 2014-01-13 17:07 -------- d-----w- e:\users\Do iT\AppData\Roaming\Audacity
2014-01-13 16:56 . 2014-01-13 16:56 -------- d-----w- e:\program files\Audacity
2014-01-13 16:56 . 2014-01-13 16:56 -------- d-----w- e:\users\Do iT\AppData\Local\Programs
2014-01-13 16:55 . 2014-01-13 16:55 -------- d-----w- e:\users\Do iT\AppData\Roaming\rmi
2013-12-22 08:22 . 2014-01-15 15:45 -------- d-----w- e:\users\Do iT\AppData\Roaming\Skype
2013-12-22 08:21 . 2013-12-22 08:21 -------- d-----w- e:\program files\Common Files\Skype
2013-12-22 08:21 . 2013-12-22 08:21 -------- d-----r- e:\program files\Skype
2013-12-22 08:21 . 2013-12-22 08:22 -------- d-----w- e:\programdata\Skype
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-25 17:27 . 2013-11-25 17:27 119808 ----a-r- e:\users\Do iT\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2013-11-18 00:28 . 2013-11-25 17:15 7772552 ------w- e:\programdata\Microsoft\Windows Defender\Definition Updates\{92829D96-68DD-41B5-92B5-7A5F2A843F1B}\mpengine.dll
2013-11-11 04:50 . 2013-11-25 17:14 230048 ------w- e:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RESTART_STICKY_NOTES"="e:\windows\System32\StikyNot.exe" [2009-07-14 354304]
"Infium"="e:\program files\QIP 2012\qip.exe" [2013-01-10 8378408]
.
e:\users\Do iT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
ftvbpxtt.exe [2014-1-18 108544]
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - e:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2006-10-26 98632]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe
.
R3 CFcatchme;CFcatchme;e:\users\DOIT~1\AppData\Local\Temp\CFcatchme.sys [x]
R3 mvusbews;USB EWS Device;e:\windows\system32\Drivers\mvusbews.sys [2012-08-21 17408]
S2 HPSIService;HP SI Service;e:\windows\system32\HPSIsvc.exe [2012-08-31 100256]
S2 SkypeUpdate;Skype Updater;e:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-01-16 08:59 1211672 ----a-w- e:\program files\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - e:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
.
.
------------------------ Jiné spuštené procesy ------------------------
.
e:\windows\system32\taskhost.exe
e:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
e:\program files\Google\Update\GoogleUpdate.exe
e:\windows\system32\WUDFHost.exe
e:\windows\system32\conhost.exe
e:\program files\Windows Media Player\wmpnetwk.exe
e:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Celkový čas: 2014-01-18 11:53:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-01-18 10:53
ComboFix2.txt 2014-01-17 13:00
.
Před spuštěním: Volných bajtů: 233 732 198 400
Po spuštění: Volných bajtů: 233 673 900 032
.
- - End Of File - - AD2B44EA99B1C613EEDD87A787C820D0
A36C5E4F47E84449FF07ED3517B43A31

#26 Příspěvek od **vyosek** » 19 led 2014 06:09

Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe

Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

Kód: Vybrat vše

:reg
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Infium"=-

:files
e:\users\Do iT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ftvbpxtt.exe
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]

Kliknete na cervene tlacitko MoveIt!
Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte

duit · #27 Příspěvek od **duit** » 19 led 2014 12:56

Log:

All processes killed
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\Infium deleted successfully.
========== FILES ==========
e:\users\Do iT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ftvbpxtt.exe moved successfully.
File/Folder E:\Windows\system32\*.tmp.dll not found.
File/Folder E:\Windows\system32\SET*.tmp not found.
File/Folder E:\Windows\*.tmp not found.
========== COMMANDS ==========
E:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Do iT
->Temp folder emptied: 25096 bytes
->Temporary Internet Files folder emptied: 1827796 bytes
->Google Chrome cache emptied: 43099628 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 870 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 43,00 mb

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Do iT

User: Public

Total Flash Files Cleaned = 0,00 mb

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Do iT

User: Public

Total Java Files Cleaned = 0,00 mb

OTM by OldTimer - Version 3.1.21.0 log created on 01192014_125330

#28 Příspěvek od **vyosek** » 19 led 2014 17:02

Tak jeste uklidime

T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

duit · #29 Příspěvek od **duit** » 19 led 2014 21:47

Vše vypadá v pořádku.

Děkuji Vám mnohokrát za pomoc.

#30 Příspěvek od **vyosek** » 20 led 2014 01:15

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit

Re: Vir na flash disku - duit