Hezký večer!
Ve svazku G:/ což je jeden z externích HDD který mám připojený na PC se mi vytvořila složka "RECYCLER" s objemem cca 2 GB,kterou nelze smazat a když jsi si otevřu není v ni nic.(mám povolené vidět skryté soubory a složky)
Chtěl bych se zeptat v čem je háček? Jedná se o nějakou systémovou záležitost? Děkuji!
Zde log z RSIT:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Standartuser at 2010-06-27 21:51:58
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 213 GB (90%) free of 238 GB
Total RAM: 3536 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:52:42, on 27.6.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
c:\drivers\audio\r213367\stacsv.exe
C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtTray.exe
C:\Program Files\Intel\ASF Agent\ASFAgent.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe
C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\WINDOWS\system32\AESTFltr.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Wave Systems Corp\Services Manager\Docmgr\bin\WavXDocMgr.exe
C:\Program Files\Wave Systems Corp\SecureUpgrade.exe
C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe
C:\Program Files\Dell\Dell ControlPoint\Security Manager\BcmDeviceAndTaskStatusService.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgr.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Standartuser\Plocha\RSIT.exe
C:\Program Files\trend micro\Standartuser.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eu.ask.com?o=101723&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www1.euro.dell.com/content/defau ... l=cs&s=bsd
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_1.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [ChangeTPMAuth] C:\Program Files\Wave Systems Corp\Common\ChangeTPMAuth.exe /T:NTRU12
O4 - HKLM\..\Run: [WavXMgr] C:\Program Files\Wave Systems Corp\Services Manager\Docmgr\bin\WavXDocMgr.exe
O4 - HKLM\..\Run: [SecureUpgrade] "C:\Program Files\Wave Systems Corp\SecureUpgrade.exe"
O4 - HKLM\..\Run: [EmbassySecurityCheck] "C:\Program Files\Wave Systems Corp\EMBASSY Security Setup\EMBASSYSecurityCheck.exe"
O4 - HKLM\..\Run: [DellControlPoint] "C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe"
O4 - HKLM\..\Run: [USCService] C:\Program Files\Dell\Dell ControlPoint\Security Manager\BcmDeviceAndTaskStatusService.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [DellConnectionManager] "C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe"
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Správce systému Dell ControlPoint System Manager.lnk = C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgr.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{2D479802-69C9-4D48-B46D-60312B3501E9}: NameServer = 10.0.0.138
O23 - Service: ASF Agent (ASFAgent) - Intel Corporation - C:\Program Files\Intel\ASF Agent\ASFAgent.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Dell ControlPoint Button Service (buttonsvc32) - Dell Inc. - C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe
O23 - Service: Credential Vault Host Control Service - Broadcom Corporation - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
O23 - Service: Credential Vault Host Storage - Broadcom Corporation - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
O23 - Service: Správce systému Dell ControlPoint System Manager (dcpsysmgrsvc) - Dell Inc. - C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: SecureStorageService - Wave Systems Corp. - C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe
O23 - Service: Smith Micro Connection Manager Service (SMManager) - Smith Micro Software, Inc. - C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - c:\drivers\audio\r213367\stacsv.exe
O23 - Service: NTRU TSS v1.2.1.29 TCS (tcsd_win32.exe) - Unknown owner - C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: TdmService - Wave Systems Corp. - C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
--
End of file - 11018 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-13 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-13 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
BS Player Toolbar - C:\Program Files\BS_Player\tbBS_1.dll [2010-01-03 2166296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - BS Player Toolbar - C:\Program Files\BS_Player\tbBS_1.dll [2010-01-03 2166296]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2009-02-22 200704]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-03-17 483420]
"AESTFltr"=C:\WINDOWS\system32\AESTFltr.exe [2009-03-17 729088]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-12-04 186904]
"ChangeTPMAuth"=C:\Program Files\Wave Systems Corp\Common\ChangeTPMAuth.exe [2008-12-19 184320]
"WavXMgr"=C:\Program Files\Wave Systems Corp\Services Manager\Docmgr\bin\WavXDocMgr.exe [2008-12-22 145408]
"SecureUpgrade"=C:\Program Files\Wave Systems Corp\SecureUpgrade.exe [2009-01-16 656696]
"EmbassySecurityCheck"=C:\Program Files\Wave Systems Corp\EMBASSY Security Setup\EMBASSYSecurityCheck.exe [2009-01-16 95544]
"DellControlPoint"=C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe [2009-01-19 667648]
"USCService"=C:\Program Files\Dell\Dell ControlPoint\Security Manager\BcmDeviceAndTaskStatusService.exe [2009-01-16 15360]
"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2009-06-09 2220032]
"DellConnectionManager"=C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe [2009-03-01 1810432]
"PDVDDXSrv"=C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2009-02-04 128232]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-10-07 1461080]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-11-22 1037192]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2006-09-11 218032]
"TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-04-08 251240]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Správce systému Dell ControlPoint System Manager.lnk - C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgr.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2009-02-26 205824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
wvauth
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2010-06-26 16:27:00 ----SHD---- C:\RECYCLER
2010-06-26 13:05:43 ----A---- C:\ComboFix.txt
2010-06-26 10:36:54 ----D---- C:\WINDOWS\ERDNT
2010-06-24 13:42:06 ----D---- C:\Program Files\trend micro
2010-06-24 13:42:03 ----D---- C:\rsit
2010-06-23 20:01:20 ----D---- C:\Config.Msi
2010-06-09 16:19:24 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-09 16:19:12 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-09 16:17:31 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-09 16:15:01 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-09 16:14:52 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-09 16:14:41 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-06-09 16:08:28 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
======List of files/folders modified in the last 1 months======
2010-06-27 21:52:20 ----D---- C:\WINDOWS\Temp
2010-06-27 21:52:13 ----D---- C:\WINDOWS\Prefetch
2010-06-27 21:50:44 ----AD---- C:\WINDOWS
2010-06-27 21:50:09 ----D---- C:\WINDOWS\Internet Logs
2010-06-27 14:06:04 ----D---- C:\WINDOWS\system32\CatRoot2
2010-06-27 13:44:43 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-26 13:05:18 ----SD---- C:\WINDOWS\Tasks
2010-06-26 13:04:37 ----A---- C:\WINDOWS\system.ini
2010-06-26 13:04:23 ----RD---- C:\Program Files
2010-06-26 13:03:22 ----D---- C:\WINDOWS\system32\drivers
2010-06-26 13:03:22 ----D---- C:\WINDOWS\AppPatch
2010-06-26 13:03:22 ----AD---- C:\WINDOWS\system32
2010-06-26 13:03:19 ----D---- C:\Program Files\Common Files
2010-06-23 20:07:08 ----D---- C:\WINDOWS\Microsoft.NET
2010-06-23 20:07:02 ----RSD---- C:\WINDOWS\assembly
2010-06-23 20:03:44 ----SHD---- C:\WINDOWS\Installer
2010-06-23 20:02:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-23 20:02:06 ----D---- C:\WINDOWS\WinSxS
2010-06-22 21:19:57 ----D---- C:\Program Files\Opera
2010-06-14 20:28:58 ----HD---- C:\WINDOWS\inf
2010-06-09 16:19:29 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-06-09 16:19:16 ----A---- C:\WINDOWS\imsins.BAK
2010-06-09 16:19:10 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-06 22:46:24 ----D---- C:\Documents and Settings\Standartuser\Data aplikací\Vso
2010-06-01 23:45:47 ----A---- C:\WINDOWS\win.ini
2010-05-28 21:37:34 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 easdrv;easdrv; C:\WINDOWS\system32\DRIVERS\easdrv.sys [2009-10-07 54184]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-10-07 35168]
R1 Ext2fs;Ext2fs; C:\WINDOWS\system32\DRIVERS\ext2fs.sys [2008-09-25 181120]
R1 Ext2Fsd;Linux ext2 file system driver; C:\WINDOWS\system32\drivers\Ext2Fsd.sys [2008-06-03 651264]
R1 IfsMount;IfsMount; C:\WINDOWS\system32\DRIVERS\ifsmount.sys [2008-08-28 51072]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-11-22 486280]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 eamon;EAMON; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-10-07 40824]
R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2009-04-03 48128]
R2 WavxDMgr;WavxDMgr; C:\WINDOWS\system32\DRIVERS\WavxDMgr.sys [2009-01-16 208824]
R3 AESTAud;AE Audio Service; C:\WINDOWS\system32\drivers\AESTAud.sys [2009-03-17 112512]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2009-02-22 170032]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 BCM43XX;Ovladač bezdrátové karty Dell WLAN; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2009-06-09 1287552]
R3 btaudio;Zvukové zařízení Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys [2008-08-29 534440]
R3 BTDriver;Ovladač virtuálních komunikací Bluetooth; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-08-29 37160]
R3 BTKRNL;Enumenátor sběrnice Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-08-29 991016]
R3 BTWDNDIS;Server pro přístup k síti LAN Bluetooth; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2008-08-29 156392]
R3 btwmodem;Modem Bluetooth; C:\WINDOWS\system32\DRIVERS\btwmodem.sys [2008-08-29 37032]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-08-28 47272]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 cvusbdrv;Broadcom USH CV; C:\WINDOWS\System32\Drivers\cvusbdrv.sys [2009-01-22 32808]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\WINDOWS\system32\DRIVERS\e1y5132.sys [2009-02-23 244368]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2009-02-26 6278560]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service; C:\WINDOWS\system32\drivers\IntcHdmi.sys [2009-02-26 109568]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [2009-03-01 27072]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 SRS_PremiumSound_Service;SRS Labs Premium Sound; C:\WINDOWS\system32\drivers\srs_PremiumSound_i386.sys [2009-03-24 232744]
R3 STHDA;IDT High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2009-03-17 1545795]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384]
R3 USBCCID;USB Smart Card reader; C:\WINDOWS\system32\DRIVERS\usbccid.sys [2008-07-22 28672]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S1 cdrbsvsd;cdrbsvsd; C:\WINDOWS\system32\drivers\cdrbsvsd.sys []
S3 AsfAlrt;AsfAlrt Service; \??\C:\WINDOWS\system32\Drivers\AsfAlrt.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\STANDA~1\LOCALS~1\Temp\catchme.sys []
S3 NAL;Nal Service ; \??\C:\WINDOWS\system32\Drivers\iqvw32.sys []
S3 NvtSp50;NvtSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\NvtSp50.sys []
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys []
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
S4 agpCPQ;Filtr Compaq sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
S4 alim1541;Filtr ALI sběrnice AGP; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
S4 amdagp;Ovladač filtru AMD portu AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
S4 atapi;Standardní řadič disku IDE/ESDI; C:\WINDOWS\system32\DRIVERS\atapi.sys [2008-04-14 96512]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-18 13952]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2008-04-14 5504]
S4 sisagp;Filtr SIS sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-01-31 691696]
S4 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASFAgent;ASF Agent; C:\Program Files\Intel\ASF Agent\ASFAgent.exe [2007-04-19 133968]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-08-15 342624]
R2 buttonsvc32;Dell ControlPoint Button Service; C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe [2008-12-29 320800]
R2 Credential Vault Host Control Service;Credential Vault Host Control Service; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [2009-01-22 808296]
R2 Credential Vault Host Storage;Credential Vault Host Storage; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [2009-01-22 20840]
R2 dcpsysmgrsvc;Správce systému Dell ControlPoint System Manager; C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe [2009-02-06 443168]
R2 ekrn;Eset Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-10-07 472280]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-12-04 354840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-13 153376]
R2 SMManager;Smith Micro Connection Manager Service; C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe [2009-03-01 77824]
R2 STacSV;Audio Service; c:\drivers\audio\r213367\stacsv.exe [2009-03-17 254034]
R2 TdmService;TdmService; C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe [2009-01-14 991232]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-04-08 92008]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2009-11-22 2384240]
R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2009-06-09 24064]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268288]
S2 tcsd_win32.exe;NTRU TSS v1.2.1.29 TCS; C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [2008-11-12 1273856]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-10-07 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SecureStorageService;SecureStorageService; C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe [2008-12-12 638976]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
RECYCLER?
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Re: RECYCLER?
Dobrý večer 
recycler je koš, zkoušel jste ho vysypat?
Zapojte do pc všechny usb klíče, flashky...co používáte
Použijte USB fix
http://www.viry.cz/forum/viewtopic.php? ... ead#unread
Před stažením vypněte rezidentní štít antiviru, má na Usbfix falešnou detekci
-spusťte
-klikněte na volbu research , potvrdte enter
- po skenu sem vložte log , pokud na Vás nevyskočí, najdete ho C:\UsbFix.txt
recycler je koš, zkoušel jste ho vysypat?
Zapojte do pc všechny usb klíče, flashky...co používátePoužijte USB fix
http://www.viry.cz/forum/viewtopic.php? ... ead#unread
Před stažením vypněte rezidentní štít antiviru, má na Usbfix falešnou detekci-spusťte
-klikněte na volbu research , potvrdte enter
- po skenu sem vložte log , pokud na Vás nevyskočí, najdete ho C:\UsbFix.txt
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
. Omlouvám se 
Re: RECYCLER?
Ale stejně bych byla ráda, kdyby jste použil ten USBfix, pro jistotu
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: RECYCLER?
Zde log z USBfixu:
############################## | UsbFix V6.059 |
User : Standartuser (Administrators) # NB01
Update on 01/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 13:35:29 | 28.6.2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Core(TM)2 Duo CPU P9300 @ 2.26GHz
Systém Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 6.0.2900.5512
Windows Firewall Status : Disabled
AV : ESET NOD32 Antivirus 3.0 3.0 [ Enabled | Updated ]
FW : ZoneAlarm Firewall[ Enabled ]9.1.007.002
C:\ -> Místní pevný disk # 232,75 Go (216,83 Go free) [OS] # NTFS
D:\ -> Disk CD-ROM
E:\ -> Místní pevný disk # 1397,26 Go (658,23 Go free) [SAMSUNG] # NTFS
F:\ -> Místní pevný disk # 298,09 Go (105,65 Go free) [My Book] # NTFS
G:\ -> Místní pevný disk # 1397,26 Go (510,22 Go free) [SAMSUNG] # NTFS
J:\ -> Vyměnitelný disk # 248,75 Mo (86,42 Mo free) # FAT32
K:\ -> Místní pevný disk # 141,01 Mo (132,08 Mo free) # FAT
L:\ -> Vyměnitelný disk
############################## | Active processes |
C:\WINDOWS\System32\smss.exe 888
C:\WINDOWS\system32\csrss.exe 988
C:\WINDOWS\system32\winlogon.exe 1016
C:\WINDOWS\system32\services.exe 1060
C:\WINDOWS\system32\lsass.exe 1072
C:\WINDOWS\system32\svchost.exe 1292
C:\WINDOWS\system32\svchost.exe 1360
C:\WINDOWS\System32\svchost.exe 1480
C:\WINDOWS\system32\svchost.exe 1516
C:\WINDOWS\system32\svchost.exe 1704
C:\WINDOWS\system32\svchost.exe 1740
C:\WINDOWS\system32\WgaTray.exe 560
C:\WINDOWS\Explorer.EXE 564
C:\WINDOWS\System32\WLTRYSVC.EXE 876
C:\WINDOWS\System32\bcmwltry.exe 900
C:\WINDOWS\system32\spoolsv.exe 952
c:\drivers\audio\r213367\stacsv.exe 152
C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe 1404
C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe 1416
C:\WINDOWS\System32\SCardSvr.exe 1436
C:\WINDOWS\system32\svchost.exe 1696
C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe 1928
C:\WINDOWS\system32\wbem\wmiprvse.exe 2000
C:\Program Files\WIDCOMM\Bluetooth Software\BtTray.exe 292
C:\Program Files\Intel\ASF Agent\ASFAgent.exe 336
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe 1116
C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe 436
C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe 512
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe 428
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 672
C:\Program Files\Java\jre6\bin\jqs.exe 728
C:\WINDOWS\system32\svchost.exe 2108
C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe 2168
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe 2384
C:\WINDOWS\system32\wuauclt.exe 2464
C:\WINDOWS\system32\wbem\wmiprvse.exe 2480
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE 2648
C:\WINDOWS\system32\wbem\wmiapsrv.exe 3140
C:\WINDOWS\System32\alg.exe 3552
################## | Files # Infected Folders |
################## | Spyware.OnlineGames |
################## | Registry # Infected Keys |
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableRegistryTools"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"
################## | Registry # Mountpoints2 |
################## | Listing of the present files |
[15.06.2009 10:02|--a------|211] C:\Boot.bak
[14.02.2010 21:34|-rahs----|281] C:\boot.ini
[14.04.2008 14:00|-rahs----|4952] C:\Bootfont.bin
[04.08.2004 00:00|--a------|261312] C:\cmldr
[26.06.2010 13:05|--a------|11717] C:\ComboFix.txt
[08.05.2008 06:55|--a------|0] C:\CONFIG.SYS
[04.04.2010 11:18|--a------|872] C:\Crash.log
[10.06.2009 01:03|-rah-----|5681] C:\dell.sdr
[?|?|?] C:\hiberfil.sys
[08.05.2008 06:55|--ah-----|0] C:\IO.SYS
[08.05.2008 06:55|--ah-----|0] C:\MSDOS.SYS
[14.04.2008 14:00|-rahs----|47564] C:\NTDETECT.COM
[14.04.2008 14:00|-rahs----|250576] C:\ntldr
[?|?|?] C:\pagefile.sys
[28.06.2010 13:38|--a------|4172] C:\UsbFix.txt
[22.02.2010 20:33|--a------|11776] J:\klimat-paleozoik.doc
[23.02.2010 23:50|--a------|620032] J:\aparat fotograficzny.doc
[23.01.2010 07:52|--a------|3267300] J:\07 - Mozart - Symphony No. 4, K.19 in D major - Allegro.mp3
[29.11.2009 22:03|--a------|47538713] J:\The Wall.pdf
[22.02.2010 20:44|--a------|318464] J:\widlaki-obr.doc
[03.02.2010 09:02|--a------|3844017] J:\ComboFix.exe
[03.02.2010 08:58|--a------|781909] J:\RSIT.exe
[23.01.2010 08:40|--a------|15801731] J:\06 - Mozart - Symphony No. 41, K.551 'Jupiter' in C major - Andante cantabile.mp3
[23.01.2010 03:28|--a------|14871972] J:\05 - Mozart - Symphony No. 29, K.201 (186a) in A major - Allegro moderato.mp3
[03.02.2010 20:03|--a------|5115824] J:\mbam-setup.exe
[16.02.2010 23:19|--a------|13793280] J:\Allegro ma non troppo-beethoven -9-.mp3
[22.02.2010 20:44|--a------|14848] J:\mozeseghodzic-przyroda.doc
[22.02.2010 19:53|--a------|476672] J:\Graptolity.doc
[22.02.2010 20:40|--a------|487936] J:\stawonogi-obrazki.doc
[07.03.2010 14:50|--a------|585] J:\links.txt
[05.02.2010 16:58|--a------|29772848] J:\cureit.exe
[13.06.2005 20:58|--a------|33016678] J:\Jim Chapin - Advanced Techniques For The Modern Drummer.pdf
[07.05.2010 18:40|--a------|73297] J:\barack_obama2 copy.jpg
[12.05.2010 07:48|--a------|223492] J:\watcher.pdf
[13.06.2010 21:21|--a------|1312] J:\BOOTEX.LOG
[13.08.2008 16:19|-ra------|57389] K:\COMMAND.COM
[13.08.2008 16:19|-rahs----|23856] K:\DELLBIO.BIN
[13.08.2008 16:19|-rahs----|30978] K:\DELLRMK.BIN
[05.01.2000 12:32|--a------|49] K:\CONFIG.BTS
[22.02.2009 13:19|--a------|1050] K:\AUTOEXEC.BAT
[12.12.2005 22:05|--a------|50393] K:\SEAL.EXE
[22.02.2009 13:19|--a------|138] K:\CONFIG.SYS
[20.09.1997 15:08|--a------|29] K:\DIR.LST
[15.06.2009 09:20|--a------|10283] K:\SEAL.INI
[22.02.2009 13:19|--a------|1050] K:\AUTOEXEC.UP
[22.02.2009 13:19|--a------|138] K:\CONFIG.UP
[22.02.2009 13:19|--a------|85] K:\COPYUP.BAT
[22.02.2009 13:19|--a------|320] K:\DELLDIAG.INI
[22.02.2009 13:20|--a------|15121] K:\HIMEM.SYS
################## | Vaccination |
# C:\autorun.inf -> Folder created by UsbFix.
# E:\autorun.inf -> Folder created by UsbFix.
# F:\autorun.inf -> Folder created by UsbFix.
# G:\autorun.inf -> Folder created by UsbFix.
# J:\autorun.inf -> Folder created by UsbFix.
# K:\autorun.inf -> Folder created by UsbFix.
################## | Cracks / Keygens / Serials |
"F:\Michal\backup-michal\ALL Plocha\Keygen.exe"
31.01.2008 19:40 |Size 96768 |Crc32 28f3cfc2 |Md5 80201f3d8c1852f5024eb1cd0db8e564
"F:\Michal\backup-michal\Install\Get Data For NTFS\Crack\gdbnt.exe"
24.11.2004 21:54 |Size 890368 |Crc32 4816eb31 |Md5 5f29a5b8a7f47377da628ac81c9e8f59
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop.CS2.KeyGen.exe"
20.08.2006 13:58 |Size 190976 |Crc32 b2bfa27c |Md5 29d2c757af7ba64a25723237fc369bff
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Setup.exe"
20.08.2006 14:12 |Size 625 |Crc32 9b1b9f8c |Md5 822103d4df14add0cd2ce0a1a6358a47
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\instmsia.exe"
21.08.2006 21:33 |Size 1708856 |Crc32 fdc1b378 |Md5 a08e90df932ce4724ad63dbfa2081f85
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\instmsiw.exe"
20.08.2006 12:33 |Size 1822520 |Crc32 9219cc02 |Md5 a3d539872d21ecc07d4bf1ce45c73f83
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\setup.exe"
20.08.2006 13:48 |Size 225280 |Crc32 569f2f2c |Md5 3354ab56ddee8b7dc8636615888b48dc
"F:\Michal\Mich@l-data z compa\HTML editory\Macromedia Dreamwawer 8 Flash 8\Macromedia DreamWeaver8+CZ+serial\Dreamweaver8.exe"
28.10.2006 14:09 |Size 62651176 |Crc32 1998e803 |Md5 8aab7676ce692ccb3d21d985eca44674
"F:\Michal\Mich@l-data z compa\HTML editory\Macromedia Dreamwawer 8 Flash 8\Macromedia Flash8\keygen.exe"
13.09.2005 13:26 |Size 55296 |Crc32 567e703a |Md5 3bd08acd4079d75290eb1fb0c34ff700
"F:\Michal\Mich@l-data z compa\Power ISO\All Tools\PowerISO 3.4 + keygen\PowerISO34.exe"
05.07.2007 16:59 |Size 816741 |Crc32 a8afbfed |Md5 5bf1ae413fe2d6eb857dd3475571c902
"F:\Michal\Mich@l-data z compa\Power ISO\All Tools\PowerISO 3.4 + keygen\powerisokeygen.exe"
05.07.2007 16:59 |Size 282365 |Crc32 DENIED |Md5 DENIED
"F:\Michal\Vçe mo§ne\AdobeGOlive\Adobe Golive CS2\keygen\keygen.exe"
04.05.2005 02:47 |Size 59904 |Crc32 5a18eced |Md5 b824c5d7bea0d803440c19744c6543ef
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\War3TFT_121a_Cesky(2).exe"
05.09.2007 22:29 |Size 63163599 |Crc32 e88c4baf |Md5 6a23c45e38c2fcbdbb3f37cfaa4b34be
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\War3TFT_121a_Cesky.exe"
23.01.2007 03:28 |Size 63163599 |Crc32 e88c4baf |Md5 6a23c45e38c2fcbdbb3f37cfaa4b34be
"F:\Michal\backup-michal\Install\CD\Clone DVD\CloneDVD_Keygen_by_Dirty_Denim.zip"
-> Contain : Clone Dvd.exe
"F:\Michal\backup-michal\Install\Get Data For NTFS\Crack\getdatabackv2.31forntfsworkingcrackrevenge.zip"
-> Contain : gdbnt.exe 890368 DFLT-X 2% 873612 24-11-2004 19:54:32 4816eb31
"F:\Michal\backup-michal\Install\Total Commander 6.51\Total_Commander_All_Version_Crack_by_EFC87.zip"
-> Contain : Total.Commander All Version Crack by EFC87\Total.Commander.All Version Crack by EFC87.exe
"F:\Michal\Mich@l-data z compa\Power ISO\All Tools\PowerISO 3.4 + keygen\PowerISO_3_4_CZ.zip"
-> Contain : PowerISO_3.4-CZ.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\war3tft_121a_cesky.zip"
-> Contain : War3TFT_121a_Cesky.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\Warcraft_3_-_The_Frozen_Throne.zip"
-> Contain : Warcraft.3.The.Frozen.Throne_KEYGEN-FFF\War3x-TFT-Kg.exe
"F:\Michal\DVDFab.Platinum.v4.0.3.2.Cracked-F4CG.rar"
-> contain : setup.exe
"F:\Michal\kigeny\Corel Draw 12 - keygen.rar"
-> contain : cdrsuitkg.exe
"F:\Michal\Vçe mo§ne\Corel Draw 12-Graphics Suite\Corel Draw 12 - keygen.rar"
-> contain : cdrsuitkg.exe
"F:\Michal\Vçe mo§ne\Vçe k DivX film…m\powerdvd6+crack.rar"
-> contain : PowerDVD_v6.0_by_Paradox\PDVD_6_trial.exe
"F:\Michal\Vçe mo§ne\Vçe k DivX film…m\powerdvd6+crack.rar"
-> contain : PowerDVD_v6.0_by_Paradox\pdx-cpd6.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\1.21nocd.rar"
-> contain : 1.21nocd\War3.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\1.21nocd.rar"
-> contain : 1.21nocd\worldedit.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\w3battle_121a.rar"
-> contain : w3battle_121a.exe
################## | ! End of report # UsbFix V6.059 ! |
############################## | UsbFix V6.059 |
User : Standartuser (Administrators) # NB01
Update on 01/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 13:35:29 | 28.6.2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Core(TM)2 Duo CPU P9300 @ 2.26GHz
Systém Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 6.0.2900.5512
Windows Firewall Status : Disabled
AV : ESET NOD32 Antivirus 3.0 3.0 [ Enabled | Updated ]
FW : ZoneAlarm Firewall[ Enabled ]9.1.007.002
C:\ -> Místní pevný disk # 232,75 Go (216,83 Go free) [OS] # NTFS
D:\ -> Disk CD-ROM
E:\ -> Místní pevný disk # 1397,26 Go (658,23 Go free) [SAMSUNG] # NTFS
F:\ -> Místní pevný disk # 298,09 Go (105,65 Go free) [My Book] # NTFS
G:\ -> Místní pevný disk # 1397,26 Go (510,22 Go free) [SAMSUNG] # NTFS
J:\ -> Vyměnitelný disk # 248,75 Mo (86,42 Mo free) # FAT32
K:\ -> Místní pevný disk # 141,01 Mo (132,08 Mo free) # FAT
L:\ -> Vyměnitelný disk
############################## | Active processes |
C:\WINDOWS\System32\smss.exe 888
C:\WINDOWS\system32\csrss.exe 988
C:\WINDOWS\system32\winlogon.exe 1016
C:\WINDOWS\system32\services.exe 1060
C:\WINDOWS\system32\lsass.exe 1072
C:\WINDOWS\system32\svchost.exe 1292
C:\WINDOWS\system32\svchost.exe 1360
C:\WINDOWS\System32\svchost.exe 1480
C:\WINDOWS\system32\svchost.exe 1516
C:\WINDOWS\system32\svchost.exe 1704
C:\WINDOWS\system32\svchost.exe 1740
C:\WINDOWS\system32\WgaTray.exe 560
C:\WINDOWS\Explorer.EXE 564
C:\WINDOWS\System32\WLTRYSVC.EXE 876
C:\WINDOWS\System32\bcmwltry.exe 900
C:\WINDOWS\system32\spoolsv.exe 952
c:\drivers\audio\r213367\stacsv.exe 152
C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe 1404
C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe 1416
C:\WINDOWS\System32\SCardSvr.exe 1436
C:\WINDOWS\system32\svchost.exe 1696
C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe 1928
C:\WINDOWS\system32\wbem\wmiprvse.exe 2000
C:\Program Files\WIDCOMM\Bluetooth Software\BtTray.exe 292
C:\Program Files\Intel\ASF Agent\ASFAgent.exe 336
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe 1116
C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe 436
C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe 512
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe 428
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 672
C:\Program Files\Java\jre6\bin\jqs.exe 728
C:\WINDOWS\system32\svchost.exe 2108
C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe 2168
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe 2384
C:\WINDOWS\system32\wuauclt.exe 2464
C:\WINDOWS\system32\wbem\wmiprvse.exe 2480
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE 2648
C:\WINDOWS\system32\wbem\wmiapsrv.exe 3140
C:\WINDOWS\System32\alg.exe 3552
################## | Files # Infected Folders |
################## | Spyware.OnlineGames |
################## | Registry # Infected Keys |
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableRegistryTools"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"
################## | Registry # Mountpoints2 |
################## | Listing of the present files |
[15.06.2009 10:02|--a------|211] C:\Boot.bak
[14.02.2010 21:34|-rahs----|281] C:\boot.ini
[14.04.2008 14:00|-rahs----|4952] C:\Bootfont.bin
[04.08.2004 00:00|--a------|261312] C:\cmldr
[26.06.2010 13:05|--a------|11717] C:\ComboFix.txt
[08.05.2008 06:55|--a------|0] C:\CONFIG.SYS
[04.04.2010 11:18|--a------|872] C:\Crash.log
[10.06.2009 01:03|-rah-----|5681] C:\dell.sdr
[?|?|?] C:\hiberfil.sys
[08.05.2008 06:55|--ah-----|0] C:\IO.SYS
[08.05.2008 06:55|--ah-----|0] C:\MSDOS.SYS
[14.04.2008 14:00|-rahs----|47564] C:\NTDETECT.COM
[14.04.2008 14:00|-rahs----|250576] C:\ntldr
[?|?|?] C:\pagefile.sys
[28.06.2010 13:38|--a------|4172] C:\UsbFix.txt
[22.02.2010 20:33|--a------|11776] J:\klimat-paleozoik.doc
[23.02.2010 23:50|--a------|620032] J:\aparat fotograficzny.doc
[23.01.2010 07:52|--a------|3267300] J:\07 - Mozart - Symphony No. 4, K.19 in D major - Allegro.mp3
[29.11.2009 22:03|--a------|47538713] J:\The Wall.pdf
[22.02.2010 20:44|--a------|318464] J:\widlaki-obr.doc
[03.02.2010 09:02|--a------|3844017] J:\ComboFix.exe
[03.02.2010 08:58|--a------|781909] J:\RSIT.exe
[23.01.2010 08:40|--a------|15801731] J:\06 - Mozart - Symphony No. 41, K.551 'Jupiter' in C major - Andante cantabile.mp3
[23.01.2010 03:28|--a------|14871972] J:\05 - Mozart - Symphony No. 29, K.201 (186a) in A major - Allegro moderato.mp3
[03.02.2010 20:03|--a------|5115824] J:\mbam-setup.exe
[16.02.2010 23:19|--a------|13793280] J:\Allegro ma non troppo-beethoven -9-.mp3
[22.02.2010 20:44|--a------|14848] J:\mozeseghodzic-przyroda.doc
[22.02.2010 19:53|--a------|476672] J:\Graptolity.doc
[22.02.2010 20:40|--a------|487936] J:\stawonogi-obrazki.doc
[07.03.2010 14:50|--a------|585] J:\links.txt
[05.02.2010 16:58|--a------|29772848] J:\cureit.exe
[13.06.2005 20:58|--a------|33016678] J:\Jim Chapin - Advanced Techniques For The Modern Drummer.pdf
[07.05.2010 18:40|--a------|73297] J:\barack_obama2 copy.jpg
[12.05.2010 07:48|--a------|223492] J:\watcher.pdf
[13.06.2010 21:21|--a------|1312] J:\BOOTEX.LOG
[13.08.2008 16:19|-ra------|57389] K:\COMMAND.COM
[13.08.2008 16:19|-rahs----|23856] K:\DELLBIO.BIN
[13.08.2008 16:19|-rahs----|30978] K:\DELLRMK.BIN
[05.01.2000 12:32|--a------|49] K:\CONFIG.BTS
[22.02.2009 13:19|--a------|1050] K:\AUTOEXEC.BAT
[12.12.2005 22:05|--a------|50393] K:\SEAL.EXE
[22.02.2009 13:19|--a------|138] K:\CONFIG.SYS
[20.09.1997 15:08|--a------|29] K:\DIR.LST
[15.06.2009 09:20|--a------|10283] K:\SEAL.INI
[22.02.2009 13:19|--a------|1050] K:\AUTOEXEC.UP
[22.02.2009 13:19|--a------|138] K:\CONFIG.UP
[22.02.2009 13:19|--a------|85] K:\COPYUP.BAT
[22.02.2009 13:19|--a------|320] K:\DELLDIAG.INI
[22.02.2009 13:20|--a------|15121] K:\HIMEM.SYS
################## | Vaccination |
# C:\autorun.inf -> Folder created by UsbFix.
# E:\autorun.inf -> Folder created by UsbFix.
# F:\autorun.inf -> Folder created by UsbFix.
# G:\autorun.inf -> Folder created by UsbFix.
# J:\autorun.inf -> Folder created by UsbFix.
# K:\autorun.inf -> Folder created by UsbFix.
################## | Cracks / Keygens / Serials |
"F:\Michal\backup-michal\ALL Plocha\Keygen.exe"
31.01.2008 19:40 |Size 96768 |Crc32 28f3cfc2 |Md5 80201f3d8c1852f5024eb1cd0db8e564
"F:\Michal\backup-michal\Install\Get Data For NTFS\Crack\gdbnt.exe"
24.11.2004 21:54 |Size 890368 |Crc32 4816eb31 |Md5 5f29a5b8a7f47377da628ac81c9e8f59
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop.CS2.KeyGen.exe"
20.08.2006 13:58 |Size 190976 |Crc32 b2bfa27c |Md5 29d2c757af7ba64a25723237fc369bff
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Setup.exe"
20.08.2006 14:12 |Size 625 |Crc32 9b1b9f8c |Md5 822103d4df14add0cd2ce0a1a6358a47
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\instmsia.exe"
21.08.2006 21:33 |Size 1708856 |Crc32 fdc1b378 |Md5 a08e90df932ce4724ad63dbfa2081f85
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\instmsiw.exe"
20.08.2006 12:33 |Size 1822520 |Crc32 9219cc02 |Md5 a3d539872d21ecc07d4bf1ce45c73f83
"F:\Michal\backup-michal\Install\Photoshop CS2 v9.0 + working KeyGen\Photoshop CS2\Adobe(R) Photoshop(R) CS2\setup.exe"
20.08.2006 13:48 |Size 225280 |Crc32 569f2f2c |Md5 3354ab56ddee8b7dc8636615888b48dc
"F:\Michal\Mich@l-data z compa\HTML editory\Macromedia Dreamwawer 8 Flash 8\Macromedia DreamWeaver8+CZ+serial\Dreamweaver8.exe"
28.10.2006 14:09 |Size 62651176 |Crc32 1998e803 |Md5 8aab7676ce692ccb3d21d985eca44674
"F:\Michal\Mich@l-data z compa\HTML editory\Macromedia Dreamwawer 8 Flash 8\Macromedia Flash8\keygen.exe"
13.09.2005 13:26 |Size 55296 |Crc32 567e703a |Md5 3bd08acd4079d75290eb1fb0c34ff700
"F:\Michal\Mich@l-data z compa\Power ISO\All Tools\PowerISO 3.4 + keygen\PowerISO34.exe"
05.07.2007 16:59 |Size 816741 |Crc32 a8afbfed |Md5 5bf1ae413fe2d6eb857dd3475571c902
"F:\Michal\Mich@l-data z compa\Power ISO\All Tools\PowerISO 3.4 + keygen\powerisokeygen.exe"
05.07.2007 16:59 |Size 282365 |Crc32 DENIED |Md5 DENIED
"F:\Michal\Vçe mo§ne\AdobeGOlive\Adobe Golive CS2\keygen\keygen.exe"
04.05.2005 02:47 |Size 59904 |Crc32 5a18eced |Md5 b824c5d7bea0d803440c19744c6543ef
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\War3TFT_121a_Cesky(2).exe"
05.09.2007 22:29 |Size 63163599 |Crc32 e88c4baf |Md5 6a23c45e38c2fcbdbb3f37cfaa4b34be
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\War3TFT_121a_Cesky.exe"
23.01.2007 03:28 |Size 63163599 |Crc32 e88c4baf |Md5 6a23c45e38c2fcbdbb3f37cfaa4b34be
"F:\Michal\backup-michal\Install\CD\Clone DVD\CloneDVD_Keygen_by_Dirty_Denim.zip"
-> Contain : Clone Dvd.exe
"F:\Michal\backup-michal\Install\Get Data For NTFS\Crack\getdatabackv2.31forntfsworkingcrackrevenge.zip"
-> Contain : gdbnt.exe 890368 DFLT-X 2% 873612 24-11-2004 19:54:32 4816eb31
"F:\Michal\backup-michal\Install\Total Commander 6.51\Total_Commander_All_Version_Crack_by_EFC87.zip"
-> Contain : Total.Commander All Version Crack by EFC87\Total.Commander.All Version Crack by EFC87.exe
"F:\Michal\Mich@l-data z compa\Power ISO\All Tools\PowerISO 3.4 + keygen\PowerISO_3_4_CZ.zip"
-> Contain : PowerISO_3.4-CZ.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\war3tft_121a_cesky.zip"
-> Contain : War3TFT_121a_Cesky.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\Warcraft_3_-_The_Frozen_Throne.zip"
-> Contain : Warcraft.3.The.Frozen.Throne_KEYGEN-FFF\War3x-TFT-Kg.exe
"F:\Michal\DVDFab.Platinum.v4.0.3.2.Cracked-F4CG.rar"
-> contain : setup.exe
"F:\Michal\kigeny\Corel Draw 12 - keygen.rar"
-> contain : cdrsuitkg.exe
"F:\Michal\Vçe mo§ne\Corel Draw 12-Graphics Suite\Corel Draw 12 - keygen.rar"
-> contain : cdrsuitkg.exe
"F:\Michal\Vçe mo§ne\Vçe k DivX film…m\powerdvd6+crack.rar"
-> contain : PowerDVD_v6.0_by_Paradox\PDVD_6_trial.exe
"F:\Michal\Vçe mo§ne\Vçe k DivX film…m\powerdvd6+crack.rar"
-> contain : PowerDVD_v6.0_by_Paradox\pdx-cpd6.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\1.21nocd.rar"
-> contain : 1.21nocd\War3.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\1.21nocd.rar"
-> contain : 1.21nocd\worldedit.exe
"F:\Michal\Vçe mo§ne\Warcraft3-patche and crack\w3battle_121a.rar"
-> contain : w3battle_121a.exe
################## | ! End of report # UsbFix V6.059 ! |
Re: RECYCLER?
Je to ok, můžete USBfix odstranit
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: RECYCLER?
Dobře.Stačí ho vymazat do koše a z koše ven nebo mám použít nějaký příkaz?
Děkuji za pomoc!
Hezký den!
Děkuji za pomoc!
Hezký den!
Re: RECYCLER?
Ted nevím, který USBfix máte, ale měla by tam být možnost uninstal. Pokud není, smažte ho do koše
Není zač, kdyby byli problémy, ozvěte se
Není zač, kdyby byli problémy, ozvěte se
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Přispějete na provoz fóra?