Terminál Fórum - Téma megtekintése

Megválaszolatlan hozzászólások | Aktív témák

Pontos idő: hétf. nov. 18, 2024 7:17

stell, help me

Moderátorok: Wiki, Moderátorok

Oldal: 35 / 39

[ 1923 hozzászólás ]

Oldal Előző 1 ... 32, 33, 34, 35, 36, 37, 38, 39 Következő

Nyomtatóbarát verzió

Előző téma | Következő téma

stell, help me

Szerző	Üzenet
seven7 ezüst tag Csatlakozott: hétf. jan. 15, 2007 10:51 Hozzászólások: 56	Rendben, nagyon szépen köszönöm a segítséget Stell!
hétf. júl. 07, 2008 15:21

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	A FF-fagyasat okozhatjak a kelekek,de ahogy latom a SAS leszedte. Na mostan Fixeld le ezeket: R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) Pucold att tisztara CCleanerall. Ha meg fagyna akor>Start>minden program>Mozilla>firefox>csokentet mod>es it probald ki ha fagy,] Ha nem fagy >akor >Klik eszkozok>lEskozkezelo>es szed le az egesz firefox kelekeket,mert valamejik nemkompatibilikus.Aztan ird meg hogy mivan. Udv
hétf. júl. 07, 2008 15:12

seven7 ezüst tag Csatlakozott: hétf. jan. 15, 2007 10:51 Hozzászólások: 56	Hello Stell, megvagyok itt a log: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:01:33, on 2008.07.07. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Sun\SDK\lib\appservService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\MATLAB7\webserver\bin\win32\matlabserver.exe C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe C:\Program Files\Eset\nod32krn.exe C:\Program Files\Sun\SDK\jdk\bin\java.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\stsystra.exe C:\WINDOWS\system32\WLTRAY.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\Program Files\Aqua Dock\Aqua Dock.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Eset\nod32kui.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\TGTSoft\StyleXP\StyleXP.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Poppy\Poppy.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\totalcmd\TOTALCMD.EXE D:\Letöltés\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: wellgames Toolbar - {8e41e543-e069-4197-8608-e8b4c2f75747} - C:\Program Files\wellgames\tbwel1.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: wellgames Toolbar - {8e41e543-e069-4197-8608-e8b4c2f75747} - C:\Program Files\wellgames\tbwel1.dll O2 - BHO: Windows Live bejelentkezési segítség - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll O3 - Toolbar: wellgames Toolbar - {8e41e543-e069-4197-8608-e8b4c2f75747} - C:\Program Files\wellgames\tbwel1.dll O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Openwares LiveUpdate] C:\Program Files\LiveUpdate\LiveUpdate.exe O4 - HKLM\..\Run: [Aqua Dock] C:\Program Files\Aqua Dock\Aqua Dock.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Poppy for Windows.lnk = C:\Program Files\Poppy\Poppy.exe O4 - Global Startup: Adobe Reader gyorsindító.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: &Letöltés a FlashGet-tel - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: &Minden letöltése a FlashGet-tel - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: E&xportálás Microsoft Excel formátumba - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Kutatás - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: SunJavaSystemAppserver9PE (AppServer9PE) - Unknown owner - C:\Program Files\Sun\SDK\lib\appservService.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrlAPI - Unknown owner - C:\cygwin\bin\cygrunsrv.exe (file missing) O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: MATLAB Server (matlabserver) - Unknown owner - C:\MATLAB7\webserver\bin\win32\matlabserver.exe O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe O23 - Service: wampapache - Apache Software Foundation - c:\wamp\apache2\bin\httpd.exe O23 - Service: wampmysqld - Unknown owner - c:\wamp\mysql\bin\mysqld-nt.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE -- End of file - 9055 bytes Gondolod, h egy ilyen trójai okozhatja a firefox fagyásomat?
hétf. júl. 07, 2008 15:04

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Szevasz seven7 Ez a O4 - HKLM..Run: [Repair Registry Pro] \P4-2ghzd!utilsXPrepairregistryprov1.2crackdr.13RepairRegistryPro.exe -s TROJA PROGRAM es tolti a gepedbe a trojakat: Tolds lea SAS>programot.SuperAntiSpyware es futasd amit talal mindent torolj es aztan ted ide az uj HJT.logot.
hétf. júl. 07, 2008 13:59

seven7 ezüst tag Csatlakozott: hétf. jan. 15, 2007 10:51 Hozzászólások: 56	Hello Stell! Szeretnélek megkérni, h nézd meg a Hijack logomat, ugyanis pár napja a firefoxom nagyon nagyon rosszul kezdett viselkedni. Teljesen biztonságos oldalak közbe is lefagy és súlyos hibával leáll. A firefoxom verziója egyébként: Mozilla/5.0 (Windows; U; Windows NT 5.1; hu; rv:1.8.1.15) Gecko/20080623 Firefox/2.0.0.15 És íme a hijack log: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:34:37, on 2008.07.07. Platform: Windows XP Szervizcsomag 2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\stsystra.exe C:\WINDOWS\system32\WLTRAY.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\Program Files\Aqua Dock\Aqua Dock.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Eset\nod32kui.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Poppy\Poppy.exe C:\Program Files\Sun\SDK\lib\appservService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\MATLAB7\webserver\bin\win32\matlabserver.exe C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe C:\Program Files\Sun\SDK\jdk\bin\java.exe C:\Program Files\Eset\nod32krn.exe C:\Program Files\totalcmd\TOTALCMD.EXE C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Mozilla Firefox\firefox.exe D:\Letöltés\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: wellgames Toolbar - {8e41e543-e069-4197-8608-e8b4c2f75747} - C:\Program Files\wellgames\tbwel1.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: wellgames Toolbar - {8e41e543-e069-4197-8608-e8b4c2f75747} - C:\Program Files\wellgames\tbwel1.dll O2 - BHO: Windows Live bejelentkezési segítség - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll O3 - Toolbar: wellgames Toolbar - {8e41e543-e069-4197-8608-e8b4c2f75747} - C:\Program Files\wellgames\tbwel1.dll O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Openwares LiveUpdate] C:\Program Files\LiveUpdate\LiveUpdate.exe O4 - HKLM\..\Run: [Aqua Dock] C:\Program Files\Aqua Dock\Aqua Dock.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [Repair Registry Pro] \\P4-2ghz\d\!utilsXP\repairregistryprov1.2crackdr.13\RepairRegistryPro.exe -s O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HELYI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'HÁLÓZATI SZOLGÁLTATÁS') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Poppy for Windows.lnk = C:\Program Files\Poppy\Poppy.exe O4 - Global Startup: Adobe Reader gyorsindító.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: &Letöltés a FlashGet-tel - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: &Minden letöltése a FlashGet-tel - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: E&xportálás Microsoft Excel formátumba - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Kutatás - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: SunJavaSystemAppserver9PE (AppServer9PE) - Unknown owner - C:\Program Files\Sun\SDK\lib\appservService.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrlAPI - Unknown owner - C:\cygwin\bin\cygrunsrv.exe (file missing) O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: MATLAB Server (matlabserver) - Unknown owner - C:\MATLAB7\webserver\bin\win32\matlabserver.exe O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe O23 - Service: wampapache - Apache Software Foundation - c:\wamp\apache2\bin\httpd.exe O23 - Service: wampmysqld - Unknown owner - c:\wamp\mysql\bin\mysqld-nt.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE -- End of file - 9068 bytes Köszönöm szépen, Seven
hétf. júl. 07, 2008 13:38

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Nem értem ezt lehet hogy rosszul másoltam a linket de tegnap többszöri próbálkozással se tudtom kinyitni de ma működik Stealth MBR rootkit detector 0.2.4 by Gmer, http://www.gmer.net device: opened successfully user: MBR read successfully kernel: MBR read successfully user & kernel MBR OK Úgy nézem - tiszta.
szer. júl. 02, 2008 6:12

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	http://www2.gmer.net/mbr/mbr.exe
kedd júl. 01, 2008 20:21

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Ez a hivatkozás rosz amit adtál , googlebol nem merem nehogy valami más töltsem is galibazom _ esetlek ö az - http://pcwin.com/Utilities/_Kill/index.htm
kedd júl. 01, 2008 18:19

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	ok szergej nincsen mit koszonod,ez nekem nem munka Meg megnezuk ha nincsen e Boot virusod.Majd a logjat ted a Privat uzibe. Idézet: http://www2.gmer.net/mbr/mbr.exe ted a C:\-re 2x klik > mbr.log, csinal logot ted a PU-be.
kedd júl. 01, 2008 15:32

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Leszedtem a DTOOlSt lehet hogy az is ludas volt azért egy darabig nem rakom fel . A gép normálisan működik ahogy kell persze most nagyon fürge a sok pucolás teszi a dolgát . Ezért köszönőm szépen a segítségedet . Sok plusz munkával jár ez neked így nagyon halás vagyok érte
kedd júl. 01, 2008 15:25

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	ok szergej,akor meg volt egy vundo meg egy agent,csinald azt amit irtam es probald ki es ird meg hogy mivan.ok.
kedd júl. 01, 2008 14:10

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	nacorvus írta: :shock: muszáj ezt a három oldalas förmedvényt feltenni egy fórumba? Már törlöm is
kedd júl. 01, 2008 14:04

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	ok. Köszönőm szépen !!, még egy log Malwarebytes' Anti-Malware 1.19 Adatbázis verzió: 910 Windows 5.1.2600 Szervizcsomag 3 14:55:15 2008-07-01 mbam-log-7-1-2008 (14-55-15).txt Vizsgálat típusa: Teljes vizsgálat (C:\\|) Átvizsgált objektumok: 148158 Eltelt idő: 40 minute(s), 13 second(s) Fertőzött memóriafolyamatok: 0 Fertőzött memória modulok: 0 Fertőzött rendszerleíró kulcsok: 2 Fertőzött rendszerleíró értékek: 0 Fertőzött rednszerleíró elemek: 0 Fertőzött mappák: 0 Fertőzött fájlok: 2 Fertőzött memóriafolyamatok: (Nem észleltem rosszindulatú elemeket) Fertőzött memória modulok: (Nem észleltem rosszindulatú elemeket) Fertőzött rendszerleíró kulcsok: HKEY_CURRENT_USER\SOFTWARE\Microsoft\affri (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\affri (Malware.Trace) -> Quarantined and deleted successfully. Fertőzött rendszerleíró értékek: (Nem észleltem rosszindulatú elemeket) Fertőzött rednszerleíró elemek: (Nem észleltem rosszindulatú elemeket) Fertőzött mappák: (Nem észleltem rosszindulatú elemeket) Fertőzött fájlok: C:\Documents and Settings\szergej rozumnij\Asztal\Letöltések\Nero 8.3.2.1\nero8.2.8.2hun\Masik K.gén\keygen.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\clkcnt.txt (Trojan.Vundo) -> Quarantined and deleted successfully.
kedd júl. 01, 2008 14:02

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Ok szergej .Rootkit nincsen >kitorolheted,a restart problemat ugy nez ki a Daemon Tools okoza,szed le es rakd fel csokented modban ha kell .
kedd júl. 01, 2008 13:30

nacorvus a fórum lelke Csatlakozott: vas. szept. 12, 2004 18:08 Hozzászólások: 6037 Tartózkodási hely: Usa	muszáj ezt a három oldalas förmedvényt feltenni egy fórumba?
kedd júl. 01, 2008 13:13

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 14:05-kor.
kedd júl. 01, 2008 12:38

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Béke legyen a világba és mindenki élhet ki ki saját ízlése szerit , élni is hagyni élni másakat . Bocs fiuk hogy írok ide is nem tudom mit tehetek fel mit meg nem mert ha tudnám akkor nem regisztráltam volna ide is megoldanám magam a problémáim .,Ezek szerint tévedtem hogy ez a fórum azért van. A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 14:19-kor.
kedd júl. 01, 2008 12:35

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	A hozzászólást terjedelme miatt töröltem. Bocs! A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 14:22-kor.
kedd júl. 01, 2008 12:30

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	A hozzászólást terjedelme miatt töröltem. Bocs! A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 14:23-kor.
kedd júl. 01, 2008 12:26

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	GMER 1.0.14.14536 - http://www.gmer.net Rootkit scan 2008-07-01 12:22:06 Windows 5.1.2600 Szervizcsomag 3 ---- System - GMER 1.0.14 ---- SSDT d347bus.sys (PnP BIOS Extension/ ) ZwEnumerateKey [0xF73402A8] SSDT d347bus.sys (PnP BIOS Extension/ ) ZwEnumerateValueKey [0xF734B910] SSDT \SystemRoot\system32\DRIVERS\SandBox.sys (Host Protection Component/Agnitum Ltd.) ZwQueryDirectoryFile [0xBA450DF0] ---- Devices - GMER 1.0.14 ---- Device \FileSystem\Ntfs \Ntfs 86F651E8 Device \FileSystem\Ntfs \Ntfs 86EC6B60 Device \FileSystem\Fastfat \Fat 86B68658 Device \FileSystem\Fastfat \Fat 86A60A00 Device \Driver\Tcpip \Device\Ip afw.sys (Agnitum Firewall Driver/Agnitum Ltd.) Device \Driver\Tcpip \Device\Tcp afw.sys (Agnitum Firewall Driver/Agnitum Ltd.) Device \Driver\Tcpip \Device\Udp afw.sys (Agnitum Firewall Driver/Agnitum Ltd.) Device \Driver\Tcpip \Device\RawIp afw.sys (Agnitum Firewall Driver/Agnitum Ltd.) ---- Modules - GMER 1.0.14 ---- Module _________ F72C8000-F72E0000 (98304 bytes) ---- EOF - GMER 1.0.14 ----
kedd júl. 01, 2008 11:25

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Laci_L írta: rozumnij sergej nyikolaje Olvastad? Tegnap írtam: http://forum.terminal.hu/viewtopic.php?p=874380#874380 Légyszíves. Kitöröltem képeimet igy most már jó lesz ? Szivesen Láci_L
kedd júl. 01, 2008 10:55

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Ha van akor a spybot tea timer,TERMINATOR,>Ezek alitsak visza.>de ezek csak program maradekok es nemveszejesek.
kedd júl. 01, 2008 9:34

Laci_L a fórum lelke Csatlakozott: szer. márc. 24, 2004 13:43 Hozzászólások: 11960 Tartózkodási hely: Budapest, Solymár	rozumnij sergej nyikolaje Olvastad? Tegnap írtam: http://forum.terminal.hu/viewtopic.php?p=874380#874380 Légyszíves.
kedd júl. 01, 2008 9:29

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Törlöm én , és restartol is a gép de ujjá futtatom új OTMOVEITot és megint itt vannak lehet Outpost gátolja? Nekifutok Ashampo Winoptimizerrel A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 10:48-kor.
kedd júl. 01, 2008 8:57

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Nyugodtan torolj mindent: YES
kedd júl. 01, 2008 8:53

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Megint lefuttatom is megint törölt dolgokat letöltöm megint megcsinálom még egy szer Félek nem jön össze válámi most ugy csináltam - kikapcsoltam a rendszer visszaállítást meg Outposztot is , most meglátjuk hogy megint még ott lesznek . A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 10:48-kor.
kedd júl. 01, 2008 8:33

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Nemlatom mert kicsi a kep de az jo mert Torli a hasznalt ,progikat amit a virusoleshez hasznaltuk,tehat ha magat is torolte rendben van.Na csinald a GMERT. AHA most mar latom,ez rendben van,
kedd júl. 01, 2008 8:25

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 10:46-kor.
kedd júl. 01, 2008 8:20

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Az semi amit az Cureit ir ki,ez csak paranoja mert ezek a programok 100% tisztak.SDFIX+COMBOFIX.Tehat mar torolheted is.A HJT>nemutat semi ara hogy baj legyen a gepel,csak egypar felesleges dolgok vannak.Tehat vagy melegedes vagy ROOTKIT.Szed le a geprol a combofixet,SDFIXET.Toltsd le ezta programot;OTMOVEIT2>futasd>KLIK .gomb CLEANUP aztan KLIK>YES>ez eltavolitja a programok maradekat amit hasznaltunk. http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe Es megnezuk nincsenek e ROOTKITEK.: Idézet: Tolds le a GMER;Programot: http://www.gmer.net/gmer.zip Szet csomagolod es futatod,most lefut egy gyors sken>utana klik joboldalon lent Save es ted ide az elso logot: Majd fojtatod igy>a baloldalon bepipazol mindent es klik>scan Megvarod a sken veget>klik>save es ide teszed a masik logot is.
kedd júl. 01, 2008 6:35

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Még mindig nem tisztá a helyzet ,- újraindult a gép magától miközben szerkesztettem a hozzászólásaim a fórumba
kedd júl. 01, 2008 5:41

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Logfile of HijackThis v1.99.1 Scan saved at 06:20, on 2008-07-01 Platform: Windows XP Szervizcsomag 3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe C:\WINDOWS\system32\crypserv.exe C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\WINDOWS\system32\UTSCSI.EXE C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Program Files\WinFast\WFTVFM\WFWIZ.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\VMSnap23.exe C:\WINDOWS\Domino.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\IEPro\MiniDM.exe C:\Documents and Settings\szergej rozumnij\Asztal\szergej rozumnij.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hu/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = .local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hivatkozások R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader hivatkozássúgó - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: IE 4.x-6.x BHO for Download Master - {9961627E-4059-41B4-8E0E-A7D6B3854ADF} - C:\PROGRA~1\DOWNLO~1\dmiehlp.dll O3 - Toolbar: DM Bar - {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} - C:\Program Files\Download Master\dmbar.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: MSN Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\hu-hu\msntb.dll O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NvMixerTray.exe O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFTVFM\WFWIZ.exe O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [BigDogPath323VMSnap] C:\WINDOWS\VMSnap23.exe O4 - HKLM\..\Run: [BigDogPath323Domino] C:\WINDOWS\Domino.exe O4 - HKLM\..\Run: [OutpostMonitor] C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe /tray /noservice O4 - HKLM\..\Run: [OutpostFeedBack] "C:\Program Files\Agnitum\Outpost Security Suite Pro\feedback.exe" /dump:os_startup O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [AtiTrayTools] "C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: HP Photosmart Premier gyorsindító.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xportálás a Microsoft Excel programba - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportálás Microsoft Excel formátumba - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Çŕęŕ÷ŕňü ÂŃĹ ďđč ďîěîůč Download Master - C:\Program Files\Download Master\dmieall.htm O8 - Extra context menu item: Çŕęŕ÷ŕňü ďđč ďîěîůč Download Master - C:\Program Files\Download Master\dmie.htm O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Küldés blogba - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Küldés blogba a Windows Live Writer programmal - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Outpost Security Suite Pro Gyorshangolás - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Security Suite Pro\ie_bar.dll O9 - Extra button: Download Master - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - C:\Program Files\Download Master\dmaster.exe O9 - Extra 'Tools' menuitem: &Download Master - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - C:\Program Files\Download Master\dmaster.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [INTERNATIONAL] International O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - http://messenger.zone.msn.com/binary/ms ... b56986.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} - http://messenger.zone.msn.com/binary/So ... b56986.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 9509481578 O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - http://www.nvidia.com/content/DriverDow ... rtScan.cab O16 - DPF: {86A88967-7A20-11D2-8EDA-00600818EDB1} (ParallelGraphics Cortona Control) - http://www.parallelgraphics.com/l2/bin/cortvrml.cab O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} - http://www.superadblocker.com/activex/sabspx.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - http://messenger.zone.msn.com/binary/Me ... b56907.cab O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} - http://driveragent.com/files/driveragent.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - http://messenger.zone.msn.com/binary/Mi ... b56986.cab O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\progra~1\agnitum\outpos~1\wl_hook.dll c:\progra~1\kasper~1\kasper~1\kloehk.dll O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe O23 - Service: ADSLAutoconnect - Unknown owner - C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z (file missing) O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: InterBase Server (InterBaseServer) - Unknown owner - C:\Program.exe (file missing) O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowProducer\ScsiAccess.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: CLCV0 (UTSCSI) - Unknown owner - C:\WINDOWS\system32\UTSCSI.EXE
kedd júl. 01, 2008 5:23

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 10:51-kor.
kedd júl. 01, 2008 4:35

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Ok SDFix: Version 1.199 Run by Rendszergazda on 2008.06.30. at 22:27 Microsoft Windows XP [verziószám: 5.1.2600] Running From: C:\SDFix Checking Services : Restoring Default Security Values Restoring Default Hosts File Restoring Default Desktop Wallpaper Rebooting Checking Files : Trojan Files Found: C:\WINDOWS\OQ_INF.EXE - Deleted C:\WINDOWS\system32\drivers\hosts - Deleted Could Not Remove C:\WINDOWS\rundll16.exe Removing Temp Files ADS Check : Final Check : catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-30 22:42:55 Windows 5.1.2600 Szervizcsomag 3 NTFS scanning hidden processes ... scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:02,4d,06,de,7a,f8,59,ce,6c,0d,24,d7,a8,81,a8,4b,f9,94,33,6c,a9,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "h0"=dword:00000001 "hdf12"=hex:82,9f,da,f9,43,ce,60,ce,fa,cf,14,bf,cc,66,c3,4c,1b,34,bf,ce,a4,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:5a,be,d5,db,53,65,cf,a0,66,da,a5,6d,78,5c,e2,5b,d1,1d,92,9f,18,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "h0"=dword:00000001 "hdf12"=hex:82,9f,da,f9,43,ce,60,ce,fa,cf,14,bf,cc,66,c3,4c,1b,34,bf,ce,a4,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:5a,be,d5,db,53,65,cf,a0,66,da,a5,6d,78,5c,e2,5b,d1,1d,92,9f,18,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "h0"=dword:00000001 "hdf12"=hex:82,9f,da,f9,43,ce,60,ce,fa,cf,14,bf,cc,66,c3,4c,1b,34,bf,ce,a4,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:5a,be,d5,db,53,65,cf,a0,66,da,a5,6d,78,5c,e2,5b,d1,1d,92,9f,18,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "h0"=dword:00000001 "hdf12"=hex:82,9f,da,f9,43,ce,60,ce,fa,cf,14,bf,cc,66,c3,4c,1b,34,bf,ce,a4,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:5a,be,d5,db,53,65,cf,a0,66,da,a5,6d,78,5c,e2,5b,d1,1d,92,9f,18,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "h0"=dword:00000001 "hdf12"=hex:82,9f,da,f9,43,ce,60,ce,fa,cf,14,bf,cc,66,c3,4c,1b,34,bf,ce,a4,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:5a,be,d5,db,53,65,cf,a0,66,da,a5,6d,78,5c,e2,5b,d1,1d,92,9f,18,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\d347prt\Cfg\0Jf40] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\d347prt\Cfg\0Jf41] "khjeh"=hex:20,02,00,00,d6,9a,4f,be,50,82,74,9a,b3,67,33,b0,aa,88,93,32,f5,.. "hj34z0"=hex:92,22,2d,a3,ba,a4,24,f7,c0,23,37,b8,a9,33,fd,b6,df,23,3f,15,4e,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\d347prt\Cfg\0Jf42] "khjeh"=hex:20,02,00,00,6a,4e,fa,27,5c,00,84,3f,cf,77,e4,6b,f6,80,94,a8,21,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:5bdf9ffd "s2"=dword:3e2320f0 "h0"=dword:00000002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "h0"=dword:00000001 "hdf12"=hex:82,9f,da,f9,43,ce,60,ce,fa,cf,14,bf,cc,66,c3,4c,1b,34,bf,ce,a4,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:5a,be,d5,db,53,65,cf,a0,66,da,a5,6d,78,5c,e2,5b,d1,1d,92,9f,18,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "h0"=dword:00000001 "hdf12"=hex:82,9f,da,f9,43,ce,60,ce,fa,cf,14,bf,cc,66,c3,4c,1b,34,bf,ce,a4,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:5a,be,d5,db,53,65,cf,a0,66,da,a5,6d,78,5c,e2,5b,d1,1d,92,9f,18,.. scanning hidden registry entries ... scanning hidden files ... C:\WINDOWS\CatRoot\OP_CACHE.ATR 24 bytes C:\WINDOWS\CatRoot\OP_CACHE.IDX 12 bytes C:\WINDOWS\PeerNet\OP_CACHE.ATR 72 bytes C:\WINDOWS\PeerNet\OP_CACHE.IDX 36 bytes C:\WINDOWS\Prefetch\OP_CACHE.IDX 1560 bytes C:\WINDOWS\Prefetch\OP_CACHE.ATR 3120 bytes C:\WINDOWS\Provisioning\Schemas\OP_CACHE.ATR 816 bytes C:\WINDOWS\Provisioning\Schemas\OP_CACHE.IDX 408 bytes C:\WINDOWS\pss\OP_CACHE.ATR 120 bytes C:\WINDOWS\pss\OP_CACHE.IDX 60 bytes C:\WINDOWS\system32\1033\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\1033\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\1038\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\1038\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\icsxml\OP_CACHE.ATR 120 bytes C:\WINDOWS\system32\icsxml\OP_CACHE.IDX 60 bytes C:\WINDOWS\system32\dllcache\OP_CACHE.ATR 40488 bytes C:\WINDOWS\system32\dllcache\OP_CACHE.IDX 20244 bytes C:\WINDOWS\system32\Filt\OP_CACHE.ATR 1728 bytes C:\WINDOWS\system32\Filt\OP_CACHE.IDX 864 bytes C:\WINDOWS\system32\Filt\tmp\OP_CACHE.ATR 528 bytes C:\WINDOWS\system32\Filt\tmp\OP_CACHE.IDX 264 bytes C:\WINDOWS\system32\oobe\actsetup\OP_CACHE.ATR 384 bytes C:\WINDOWS\system32\oobe\actsetup\OP_CACHE.IDX 192 bytes C:\WINDOWS\system32\oobe\error\OP_CACHE.ATR 192 bytes C:\WINDOWS\system32\oobe\error\OP_CACHE.IDX 96 bytes C:\WINDOWS\system32\oobe\html\dslmain\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\oobe\html\dslmain\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\oobe\html\iconnect\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\oobe\html\iconnect\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\oobe\html\isptype\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\oobe\html\isptype\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\oobe\html\mouse\images\OP_CACHE.ATR 768 bytes C:\WINDOWS\system32\oobe\html\mouse\images\OP_CACHE.IDX 384 bytes C:\WINDOWS\system32\oobe\html\mouse\OP_CACHE.ATR 288 bytes C:\WINDOWS\system32\oobe\html\mouse\OP_CACHE.IDX 144 bytes C:\WINDOWS\system32\oobe\html\sconnect\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\oobe\html\sconnect\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\oobe\icserror\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\oobe\icserror\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\oobe\images\OP_CACHE.ATR 1296 bytes C:\WINDOWS\system32\oobe\images\OP_CACHE.IDX 648 bytes C:\WINDOWS\system32\oobe\isperror\OP_CACHE.ATR 192 bytes C:\WINDOWS\system32\oobe\isperror\OP_CACHE.IDX 96 bytes C:\WINDOWS\system32\oobe\OP_CACHE.ATR 864 bytes C:\WINDOWS\system32\oobe\OP_CACHE.IDX 432 bytes C:\WINDOWS\system32\oobe\regerror\OP_CACHE.ATR 192 bytes C:\WINDOWS\system32\oobe\regerror\OP_CACHE.IDX 96 bytes C:\WINDOWS\system32\oobe\setup\OP_CACHE.ATR 1056 bytes C:\WINDOWS\system32\oobe\setup\OP_CACHE.IDX 528 bytes C:\WINDOWS\system32\OP_CACHE.ATR 57240 bytes C:\WINDOWS\system32\OP_CACHE.IDX 28620 bytes C:\WINDOWS\system32\mui\000e\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\mui\000e\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\mui\0409\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\mui\0409\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\mui\040E\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\mui\040E\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\npp\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\npp\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\wbem\AutoRecover\OP_CACHE.ATR 1368 bytes C:\WINDOWS\system32\wbem\AutoRecover\OP_CACHE.IDX 684 bytes C:\WINDOWS\system32\wbem\Repository\FS\OP_CACHE.ATR 168 bytes C:\WINDOWS\system32\wbem\Repository\FS\OP_CACHE.IDX 84 bytes C:\WINDOWS\system32\wbem\Repository\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\wbem\Repository\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\wbem\xml\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\wbem\xml\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\wbem\mof\good\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\wbem\mof\good\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\wbem\OP_CACHE.ATR 2952 bytes C:\WINDOWS\system32\wbem\OP_CACHE.IDX 1476 bytes C:\WINDOWS\system32\wbem\Performance\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\wbem\Performance\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\WinFast\Mulmedia\OP_CACHE.ATR 432 bytes C:\WINDOWS\system32\WinFast\Mulmedia\OP_CACHE.IDX 216 bytes C:\WINDOWS\system32\config\OP_CACHE.ATR 408 bytes C:\WINDOWS\system32\config\OP_CACHE.IDX 204 bytes C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\Content\OP_CACHE.ATR 240 bytes C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\Content\OP_CACHE.IDX 120 bytes C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\MetaData\OP_CACHE.ATR 240 bytes C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\CryptnetUrlCache\MetaData\OP_CACHE.IDX 120 bytes C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\Internet Explorer\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft\Internet Explorer\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Application Data\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Application Data\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Cookies\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Cookies\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Media Player\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Media Player\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Windows Media\9.0\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Windows Media\9.0\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012007051820070519\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012007051820070519\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008050720080508\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008050720080508\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\History\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\History\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\C7UDID29\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\C7UDID29\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\I325KHCP\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\I325KHCP\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\OHGNYJM1\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\OHGNYJM1\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\QLO7256P\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\QLO7256P\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\config\systemprofile\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\config\systemprofile\Sablonok\OP_CACHE.ATR 288 bytes C:\WINDOWS\system32\config\systemprofile\Sablonok\OP_CACHE.IDX 144 bytes C:\WINDOWS\system32\config\systemprofile\SendTo\OP_CACHE.ATR 96 bytes C:\WINDOWS\system32\config\systemprofile\SendTo\OP_CACHE.IDX 48 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Indítópult\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Indítópult\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Kellékek\Kisegítő lehetőségek\OP_CACHE.ATR 96 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Kellékek\Kisegítő lehetőségek\OP_CACHE.IDX 48 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Kellékek\OP_CACHE.ATR 168 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Kellékek\OP_CACHE.IDX 84 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Kellékek\Szórakozás\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Kellékek\Szórakozás\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\bits\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\bits\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\DirectX\Dinput\OP_CACHE.ATR 4320 bytes C:\WINDOWS\system32\DirectX\Dinput\OP_CACHE.IDX 2160 bytes C:\WINDOWS\system32\en-us\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\en-us\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\Macromed\Common\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\Macromed\Common\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\Macromed\Director\OP_CACHE.ATR 96 bytes C:\WINDOWS\system32\Macromed\Director\OP_CACHE.IDX 48 bytes C:\WINDOWS\system32\Macromed\Flash\FlashPlayerTrust\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\Macromed\Flash\FlashPlayerTrust\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\Macromed\Flash\OP_CACHE.ATR 288 bytes C:\WINDOWS\system32\Macromed\Flash\OP_CACHE.IDX 144 bytes C:\WINDOWS\system32\Macromed\Shockwave 10\OP_CACHE.ATR 432 bytes C:\WINDOWS\system32\Macromed\Shockwave 10\OP_CACHE.IDX 216 bytes C:\WINDOWS\system32\Macromed\Shockwave 10\Xtras\OP_CACHE.ATR 168 bytes C:\WINDOWS\system32\Macromed\Shockwave 10\Xtras\OP_CACHE.IDX 84 bytes C:\WINDOWS\system32\Macromed\Shockwave 8\OP_CACHE.ATR 336 bytes C:\WINDOWS\system32\Macromed\Shockwave 8\OP_CACHE.IDX 168 bytes C:\WINDOWS\system32\Macromed\Shockwave 8\Xtras\OP_CACHE.ATR 528 bytes C:\WINDOWS\system32\Macromed\Shockwave 8\Xtras\OP_CACHE.IDX 264 bytes C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\OP_CACHE.ATR 144 bytes C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\OP_CACHE.IDX 72 bytes C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\User\OP_CACHE.ATR 144 bytes C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\User\OP_CACHE.IDX 72 bytes C:\WINDOWS\system32\URTTemp\OP_CACHE.ATR 168 bytes C:\WINDOWS\system32\URTTemp\OP_CACHE.IDX 84 bytes C:\WINDOWS\system32\usmt\OP_CACHE.ATR 672 bytes C:\WINDOWS\system32\usmt\OP_CACHE.IDX 336 bytes C:\WINDOWS\system32\drivers\UMDF\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\drivers\UMDF\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\drivers\etc\OP_CACHE.ATR 384 bytes C:\WINDOWS\system32\drivers\etc\OP_CACHE.IDX 192 bytes C:\WINDOWS\system32\drivers\OP_CACHE.ATR 9624 bytes C:\WINDOWS\system32\drivers\OP_CACHE.IDX 4812 bytes C:\WINDOWS\system32\DRVSTORE\amdk8_80A891E3966D00DC24D225AB848FFBB3BF5D9FF3\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\DRVSTORE\amdk8_80A891E3966D00DC24D225AB848FFBB3BF5D9FF3\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\DRVSTORE\amdppm_C66586B319F61C772BA2DAB141D0FE08F299F411\OP_CACHE.ATR 96 bytes C:\WINDOWS\system32\DRVSTORE\amdppm_C66586B319F61C772BA2DAB141D0FE08F299F411\OP_CACHE.IDX 48 bytes C:\WINDOWS\system32\DRVSTORE\FETNDIS_65CD2CEFE3B902E4311EFF445111E42C5DDB94F6\OP_CACHE.ATR 120 bytes C:\WINDOWS\system32\DRVSTORE\FETNDIS_65CD2CEFE3B902E4311EFF445111E42C5DDB94F6\OP_CACHE.IDX 60 bytes C:\WINDOWS\system32\DRVSTORE\nokia_blue_0A5D98F754C6588B2E3DDE89DDEF097075ADFFB7\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\DRVSTORE\nokia_blue_0A5D98F754C6588B2E3DDE89DDEF097075ADFFB7\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\DRVSTORE\pccswpddri_4B5D882780830B9245673D197146B7FF82A23CFB\OP_CACHE.ATR 96 bytes C:\WINDOWS\system32\DRVSTORE\pccswpddri_4B5D882780830B9245673D197146B7FF82A23CFB\OP_CACHE.IDX 48 bytes C:\WINDOWS\system32\DRVSTORE\pccs_bluet_05A76228EE0EF20D8B64523AD40E95C8F09D6988\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\DRVSTORE\pccs_bluet_05A76228EE0EF20D8B64523AD40E95C8F09D6988\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\DRVSTORE\wlphonecv_8800C151E3BB9442F62327FF05F053BF5567B318\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\DRVSTORE\wlphonecv_8800C151E3BB9442F62327FF05F053BF5567B318\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\DRVSTORE\wlphonecv_B88DA7978559975500983DADC0107CF3AA89C14C\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\DRVSTORE\wlphonecv_B88DA7978559975500983DADC0107CF3AA89C14C\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wuapi.dll\5.8.0.2469\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wuapi.dll\5.8.0.2469\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\5.8.0.2469\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\5.8.0.2469\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.0.6000.374\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.0.6000.374\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.0.6000.381\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.0.6000.381\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.0.6000.374\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.0.6000.374\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.0.6000.381\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.0.6000.381\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\spool\drivers\color\OP_CACHE.ATR 1032 bytes C:\WINDOWS\system32\spool\drivers\color\OP_CACHE.IDX 516 bytes C:\WINDOWS\system32\spool\drivers\w32x86\3\hu-HU\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\spool\drivers\w32x86\3\hu-HU\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\spool\drivers\w32x86\3\OP_CACHE.ATR 1464 bytes C:\WINDOWS\system32\spool\drivers\w32x86\3\OP_CACHE.IDX 732 bytes C:\WINDOWS\system32\spool\drivers\w32x86\hpphotosmart_c5100_sca9c\OP_CACHE.ATR 1080 bytes C:\WINDOWS\system32\spool\drivers\w32x86\hpphotosmart_c5100_sca9c\OP_CACHE.IDX 540 bytes C:\WINDOWS\system32\spool\prtprocs\w32x86\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\spool\prtprocs\w32x86\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\spool\prtprocs\x64\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\spool\prtprocs\x64\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\spool\XPSEP\amd64\amd64\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\spool\XPSEP\amd64\amd64\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\spool\XPSEP\amd64\OP_CACHE.ATR 144 bytes C:\WINDOWS\system32\spool\XPSEP\amd64\OP_CACHE.IDX 72 bytes C:\WINDOWS\system32\spool\XPSEP\i386\i386\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\spool\XPSEP\i386\i386\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\spool\XPSEP\i386\OP_CACHE.ATR 144 bytes C:\WINDOWS\system32\spool\XPSEP\i386\OP_CACHE.IDX 72 bytes C:\WINDOWS\system32\spool\XPSEP\OP_CACHE.ATR 96 bytes C:\WINDOWS\system32\spool\XPSEP\OP_CACHE.IDX 48 bytes C:\WINDOWS\system32\Com\OP_CACHE.ATR 144 bytes C:\WINDOWS\system32\Com\OP_CACHE.IDX 72 bytes C:\WINDOWS\system32\CatRoot\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\CatRoot\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\CatRoot\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\CatRoot\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\OP_CACHE.ATR 3240 bytes C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\OP_CACHE.IDX 1620 bytes C:\WINDOWS\system32\CatRoot2\OP_CACHE.ATR 144 bytes C:\WINDOWS\system32\CatRoot2\OP_CACHE.IDX 72 bytes C:\WINDOWS\system32\CatRoot2\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\CatRoot2\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\Adobe\SVG Viewer 3.0\OP_CACHE.ATR 288 bytes C:\WINDOWS\system32\Adobe\SVG Viewer 3.0\OP_CACHE.IDX 144 bytes C:\WINDOWS\system32\Setup\OP_CACHE.ATR 408 bytes C:\WINDOWS\system32\Setup\OP_CACHE.IDX 204 bytes C:\WINDOWS\system32\XPSViewer\en-us\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\XPSViewer\en-us\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\XPSViewer\hu-HU\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\XPSViewer\hu-HU\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\XPSViewer\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\XPSViewer\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\MsDtc\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\MsDtc\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\MsDtc\Trace\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\MsDtc\Trace\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\NtmsData\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\NtmsData\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\Lang\OP_CACHE.ATR 456 bytes C:\WINDOWS\system32\Lang\OP_CACHE.IDX 228 bytes C:\WINDOWS\system32\ias\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\ias\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\OP_CACHE.ATR 1056 bytes C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\OP_CACHE.IDX 528 bytes C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\OP_CACHE.ATR 936 bytes C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\OP_CACHE.IDX 468 bytes C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\ReinstallBackups\0004\DriverFiles\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\OP_CACHE.ATR 264 bytes C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\OP_CACHE.IDX 132 bytes C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\OP_CACHE.ATR 168 bytes C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\OP_CACHE.IDX 84 bytes C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\ReinstallBackups\0010\DriverFiles\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\ReinstallBackups\0010\DriverFiles\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\ReinstallBackups\0011\DriverFiles\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\ReinstallBackups\0011\DriverFiles\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\ReinstallBackups\0012\DriverFiles\i386\OP_CACHE.ATR 288 bytes C:\WINDOWS\system32\ReinstallBackups\0012\DriverFiles\i386\OP_CACHE.IDX 144 bytes C:\WINDOWS\system32\ReinstallBackups\0012\DriverFiles\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\ReinstallBackups\0012\DriverFiles\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\drivers\dot4\Win2000\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\ReinstallBackups\0013\DriverFiles\drivers\dot4\Win2000\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\ReinstallBackups\0015\DriverFiles\drivers\dot4\Win2000\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\ReinstallBackups\0015\DriverFiles\drivers\dot4\Win2000\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\ReinstallBackups\0016\DriverFiles\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\ReinstallBackups\0016\DriverFiles\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\ReinstallBackups\0017\DriverFiles\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\ReinstallBackups\0017\DriverFiles\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\ReinstallBackups\0018\DriverFiles\i386\OP_CACHE.ATR 288 bytes C:\WINDOWS\system32\ReinstallBackups\0018\DriverFiles\i386\OP_CACHE.IDX 144 bytes C:\WINDOWS\system32\ReinstallBackups\0018\DriverFiles\OP_CACHE.ATR 96 bytes C:\WINDOWS\system32\ReinstallBackups\0018\DriverFiles\OP_CACHE.IDX 48 bytes C:\WINDOWS\system32\ReinstallBackups\0019\DriverFiles\OP_CACHE.ATR 48 bytes ..S így tovább .................................................................................................................. .................................................................................................. .................................................................
hétf. jún. 30, 2008 19:55

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	HMM,Szergej eztet a kovetkezo a lepes Kipucolni vagy haromszor CCleaneral. 1:Bekapcsolni a rejtet mapak megjeleniteset. 2:hasznalni csokentet modban az SDFIX-programot 3:Hasznalni a WEBCUREIT programot>EXPRES es Komplet skent. 4:Mindet ismered igy nemuszaj neked irnom mit tegyel. A legvegen eleg ha ide teszed a HiJack>logjat. A hozzászólást 1 alkalommal szerkesztették, utoljára stell hétf. jún. 30, 2008 20:26-kor.
hétf. jún. 30, 2008 19:53

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	ComboFix 08-06-20.4 - szergej rozumnij 2008-06-30 19:47:16.20 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1250.1.1038.18.592 [GMT 2:00] Running from: C:\Documents and Settings\szergej rozumnij\Asztal\ComboFix.exe * Created a new restore point WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\szergej rozumnij\Application Data\Microsoft\dtsc C:\Documents and Settings\szergej rozumnij\Application Data\Microsoft\dtsc\id . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_NPF ((((((((((((((((((((((((( Files Created from 2008-05-28 to 2008-06-30 ))))))))))))))))))))))))))))))) . 2008-06-30 15:06 . 2008-06-30 15:06 <DIR> d-------- C:\Program Files\Lavasoft 2008-06-27 16:26 . 2008-06-28 19:01 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-06-27 16:26 . 2008-06-27 16:26 1,409 --a------ C:\WINDOWS\QTFont.for 2008-06-22 12:03 . 2008-06-22 12:02 286,720 --a------ C:\WINDOWS\iun503.exe 2008-06-19 10:53 . 2008-06-19 10:53 922,325 --a------ C:\WINDOWS\Grand Theft Auto_ San Andreas hun Uninstaller.exe 2008-06-18 17:09 . 2008-06-18 17:09 <DIR> d-------- C:\Program Files\Rockstar Games 2008-06-17 22:27 . 2007-10-29 17:45 49 --a------ C:\WINDOWS\transp.gif 2008-06-17 22:26 . 2008-02-21 18:31 1,073,745 --a------ C:\WINDOWS\system32\drivers\VBEngNT.sys 2008-06-17 22:26 . 2008-03-12 12:31 449,184 --a------ C:\WINDOWS\system32\drivers\SandBox.sys 2008-06-17 22:26 . 2008-02-27 18:28 206,352 --a------ C:\WINDOWS\system32\drivers\afw.sys 2008-06-17 18:43 . 2008-06-14 19:36 272,512 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys 2008-06-17 18:43 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys 2008-06-12 20:20 . 2008-06-30 12:02 <DIR> d-------- C:\WINDOWS\system32\Filt 2008-06-12 20:20 . 2008-06-12 20:20 <DIR> d-------- C:\Program Files\Agnitum 2008-06-12 20:20 . 2008-06-12 20:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Agnitum 2008-06-12 20:20 . 2008-06-17 22:54 <DIR> d-------- C:\COMBO-FIX 2008-06-07 17:16 . 2008-06-07 17:16 <DIR> d-------- C:\Program Files\Kaspersky Lab 2008-06-07 17:16 . 2008-06-17 22:21 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-06-07 05:20 . 2008-06-12 20:19 <DIR> d-------- C:\RECYCLER(2) 2008-06-06 22:53 . 2008-06-06 22:53 0 ---hs---- C:\WINDOWS\S56594981.tmp 2008-06-05 23:36 . 2008-06-18 00:51 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-06-05 23:36 . 2008-06-05 23:36 <DIR> d-------- C:\Documents and Settings\szergej rozumnij\Application Data\Malwarebytes 2008-06-05 23:36 . 2008-06-05 23:36 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-06-04 19:54 . 2008-06-04 19:54 2,015 -r-h----- C:\WINDOWS\system32\drivers\hosts 2008-06-02 17:11 . 2008-06-02 17:11 <DIR> d-------- C:\Documents and Settings\Rendszergazda\Application Data\SUPERAntiSpyware.com 2008-06-02 10:42 . 2008-06-02 10:42 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\ESET 2008-06-02 07:39 . 2008-06-17 23:06 <DIR> d-------- C:\Documents and Settings\szergej rozumnij\Application Data\uTorrent 2008-06-02 07:39 . 2004-08-18 14:00 4,224 --a------ C:\WINDOWS\system32\beep.sys 2008-06-02 07:38 . 2008-06-17 23:01 <DIR> d-------- C:\Documents and Settings\LocalService\Application Data\IEPro 2008-05-28 14:53 . 2008-05-28 14:53 <DIR> d-------- C:\Documents and Settings\szergej rozumnij\Application Data\fltk.org 2008-05-28 14:05 . 2008-06-17 22:42 <DIR> d-------- C:\Program Files\Pcsx2 2008-05-22 19:06 . 2008-06-18 05:03 <DIR> d-------- C:\Program Files\FLV to AVI MPEG WMV 3GP MP4 iPod Converter 2008-05-22 19:06 . 2008-05-22 19:06 <DIR> d-------- C:\Program Files\Common Files\Download Manager 2008-05-22 19:00 . 2008-06-18 01:04 <DIR> d-------- C:\Program Files\Ultra Flash Video FLV Converter 2008-05-22 13:13 . 2008-05-22 13:13 <DIR> d-------- C:\Program Files\MSN Toolbar 2008-05-16 18:03 . 2008-06-17 22:42 <DIR> d-------- C:\Program Files\Pocket Tanks 2008-05-16 11:58 . 2008-05-16 11:58 12,632 --a------ C:\WINDOWS\system32\lsdelete.exe 2008-05-07 20:55 . 2008-06-18 01:30 <DIR> d-------- C:\WINDOWS\system32\hu 2008-05-07 20:55 . 2008-06-18 01:28 <DIR> d-------- C:\WINDOWS\system32\bits 2008-05-07 20:55 . 2008-06-18 01:24 <DIR> d-------- C:\WINDOWS\l2schemas 2008-05-07 20:51 . 2008-05-07 20:51 <DIR> d-------- C:\WINDOWS\ServicePackFiles 2008-05-07 20:39 . 2008-06-18 01:18 <DIR> d-------- C:\WINDOWS\EHome 2008-05-07 20:26 . 2004-08-17 16:19 327,040 --------- C:\WINDOWS\system32\drivers\ati2mtaa.sys 2008-05-07 07:12 . 2008-05-07 07:12 1,291,776 -----c--- C:\WINDOWS\system32\dllcache\quartz.dll 2008-05-06 08:20 . 2008-05-06 08:20 367,640 --a------ C:\WINDOWS\Need For Speed_ Most Wanted Elt volˇt˘.exe 2008-05-06 07:26 . 2008-05-06 07:26 <DIR> d-------- C:\Program Files\EA GAMES 2008-05-05 09:50 . 2008-05-05 09:53 367,582 --a------ C:\WINDOWS\Star Wars Jedi Knight_ Jedi Academy [Honosˇt s] Elt volˇt˘.exe 2008-05-02 11:31 . 2008-06-17 23:02 <DIR> d-------- C:\Documents and Settings\szergej rozumnij\Application Data\Hamachi 2008-05-02 11:30 . 2008-06-15 19:52 <DIR> d-------- C:\Program Files\Hamachi 2008-05-02 11:30 . 2008-05-24 09:46 26,056 --a------ C:\WINDOWS\system32\drivers\hamachi.sys . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-30 16:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\espionServerData 2008-06-30 16:21 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-06-30 16:04 --------- d-----w C:\Program Files\Opera 2008-06-30 16:04 --------- d-----w C:\Program Files\MOBILedit! Forensic 2008-06-30 13:07 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-06-30 13:05 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard 2008-06-29 15:10 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Azureus 2008-06-29 12:01 --------- d-----w C:\Program Files\Azureus 2008-06-18 12:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-06-17 23:05 --------- d-----w C:\Program Files\Yu-Gi-Oh! Power of Chaos Common 2008-06-17 23:05 --------- d-----w C:\Program Files\YouTube Downloader 2008-06-17 23:05 --------- d-----w C:\Program Files\XP Codec Pack 2008-06-17 23:05 --------- d-----w C:\Program Files\Windows Media Connect 2 2008-06-17 23:03 --------- d-----w C:\Program Files\TypingMaster 2008-06-17 23:03 --------- d-----w C:\Program Files\Tolomérő 2008-06-17 23:03 --------- d-----w C:\Program Files\SHOUTcast Source 2008-06-17 23:02 --------- d-----w C:\Program Files\Recomposit 2008-06-17 23:02 --------- d-----w C:\Program Files\Realtek AC97 2008-06-17 23:02 --------- d-----w C:\Program Files\RealMedia 2008-06-17 22:58 --------- d-----w C:\Program Files\OpenSource Flash Video Splitter 2008-06-17 22:57 --------- d-----w C:\Program Files\Naevius YouTube Converter 2008-06-17 22:57 --------- d-----w C:\Program Files\MSBuild 2008-06-17 22:55 --------- d-----w C:\Program Files\MOBILedit! 2008-06-17 22:51 --------- d-----w C:\Program Files\MessengerDiscovery 2008-06-17 22:51 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-06-17 22:51 --------- d-----w C:\Program Files\Loudtalks 2008-06-17 22:50 --------- d-----w C:\Program Files\K-Lite Codec Pack 2008-06-17 22:50 --------- d-----w C:\Program Files\JLearnIt 2008-06-17 22:50 --------- d-----w C:\Program Files\Jómagam 2008-06-17 22:39 --------- d-----w C:\Program Files\InfraRecorder 2008-06-17 22:38 --------- d-----w C:\Program Files\HP 2008-06-17 22:32 --------- dcsh--w C:\Program Files\Common Files\WindowsLiveInstaller 2008-06-17 22:32 --------- d-----w C:\Program Files\DOSBox-0.70 2008-06-17 22:32 --------- d-----w C:\Program Files\DirectVobSub 2008-06-17 22:32 --------- d-----w C:\Program Files\D-Tools 2008-06-17 22:31 --------- d-----w C:\Program Files\Common Files\Sonic Shared 2008-06-17 22:28 --------- d-----w C:\Program Files\Common Files\ACD Systems 2008-06-17 22:28 --------- d-----w C:\Program Files\CD Audio Reader Filter 2008-06-17 22:28 --------- d-----w C:\Program Files\Batch Picture Watermark 2008-06-17 22:26 --------- d-----w C:\Program Files\AusLogics Registry Defrag 2008-06-17 21:06 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Vso 2008-06-17 21:06 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Ulead Systems 2008-06-17 21:06 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\TypingMaster7 2008-06-17 21:06 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\ThemesCreator 2008-06-17 21:06 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\SystemRequirementsLab 2008-06-17 21:06 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Second Once Eggs 2008-06-17 21:06 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\PG Calculator 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\MyPhoneExplorer 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\MxBoost 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\MiniDm 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Media Player Classic 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Loudtalks 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\IEPro 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\IE7Pro 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Download Master 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\DAEMON Tools Pro 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Crystal Player 2008-06-17 21:02 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\BSplayer PRO 2008-06-17 21:01 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\BitTorrent 2008-06-17 21:01 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Ahead 2008-06-17 21:01 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\AdobeAUM 2008-06-17 21:01 --------- d-----w C:\Documents and Settings\szergej rozumnij\Application Data\Acoustica Premium 2008-06-17 21:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\WordPad 2008-06-17 21:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-06-17 21:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\WindowsLiveInstaller 2008-06-17 21:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\vsosdk 2008-06-17 21:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\Ulead Systems 2008-06-17 21:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sonic 2008-06-17 20:59 --------- d-----w C:\Documents and Settings\All Users\Application Data\shctxex.vb 2008-06-17 20:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\HPSSUPPLY 2008-06-17 20:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\FLEXnet 2008-06-17 20:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\EASY WORK 2008-06-17 20:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\delete mfcd sign eq 2008-06-17 20:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\Azureus 2008-06-17 20:50 --------- d-----w C:\Program Files\Microsoft Silverlight 2008-06-17 20:50 --------- d-----w C:\Program Files\LOIM 2008-06-17 20:50 --------- d-----w C:\Program Files\Common Files\Kulcs-Soft 2008-06-17 20:49 --------- d-----w C:\Program Files\SystemRequirementsLab 2008-06-17 20:49 --------- d-----w C:\Program Files\Ringtone Media Studio 2008-06-17 20:49 --------- d-----w C:\Program Files\Photodex Presenter 2008-06-17 20:49 --------- d-----w C:\Program Files\Common Files\Teleca Shared 2008-06-17 20:49 --------- d-----w C:\Program Files\Common Files\onOne Software Shared 2008-06-17 20:49 --------- d-----w C:\Program Files\Apple Software Update 2008-06-17 20:48 --------- d-----w C:\Program Files\PC Connectivity Solution 2008-06-17 20:48 --------- d-----w C:\Program Files\Microsoft Works 2008-06-17 20:48 --------- d-----w C:\Program Files\InterVideo Information Service 2008-06-17 20:48 --------- d-----w C:\Program Files\IEPro 2008-06-17 20:41 --------- d-----w C:\Program Files\xp-AntiSpy 2008-06-17 20:41 --------- d-----w C:\Program Files\vanBasco's Karaoke Player 2008-06-17 20:41 --------- d-----w C:\Program Files\Translator 2008-06-17 20:41 --------- d-----w C:\Program Files\Photo DVD Maker Professional 2008-06-17 20:41 --------- d-----w C:\Program Files\MyPhoneExplorer 2008-06-17 20:41 --------- d-----w C:\Program Files\Lakástervező 3D 2008-06-17 20:41 --------- d-----w C:\Program Files\Image Grabber II 2008-06-17 20:41 --------- d-----w C:\Program Files\Easy Rapidshare Points 2008-06-17 20:41 --------- d-----w C:\Program Files\AceMoney 2008-06-17 20:40 --------- d-----w C:\Program Files\QuickTime 2008-06-17 20:40 --------- d-----w C:\Program Files\Driver Cleaner PE 2008-06-17 20:40 --------- d-----w C:\Program Files\CCleaner 2008-06-17 20:40 --------- d-----w C:\Program Files\ArtIcons Pro . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 18:02 15360] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2005-10-28 17:25 94208] "AtiTrayTools"="C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe" [2007-11-05 09:55 570528] "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2007-01-10 11:46 204288] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 02:41 49152] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784] "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-03-20 17:34 213936] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-12-11 11:56 286720] "NVMixerTray"="C:\Program Files\NVIDIA Corporation\NvMixer\NvMixerTray.exe" [2004-12-20 18:12 131072] "WinFast Schedule"="C:\Program Files\WinFast\WFTVFM\WFWIZ.exe" [2007-10-18 14:47 876544] "SoundMan"="SOUNDMAN.EXE" [2007-04-16 16:28 577536 C:\WINDOWS\soundman.exe] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 14:06 40048] "BigDogPath323VMSnap"="C:\WINDOWS\VMSnap23.exe" [2006-09-19 14:26 212992] "BigDogPath323Domino"="C:\WINDOWS\Domino.exe" [2006-06-28 02:54 49152] "OutpostMonitor"="C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe" [2008-05-23 17:31 1035608] "OutpostFeedBack"="C:\Program Files\Agnitum\Outpost Security Suite Pro\feedback.exe" [2008-05-21 18:15 419160] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 18:02 15360] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoResolveTrack"= 0 (0x0) "NoFileAssociate"= 0 (0x0) [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-06-17 20:45 77824] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 14:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "appinit_dlls"=c:\progra~1\agnitum\outpos~1\wl_hook.dll c:\progra~1\kasper~1\kasper~1\kloehk.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.l3acm"= l3codecp.acm "VIDC.ZMBV"= zmbv.dll "VIDC.ACDV"= ACDV.dll "VIDC.YV12"= yv12vfw.dll "VIDC.FFDS"= ffdshow.ax [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Indítópult^Windows asztali kereső.lnk] path=C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult\Windows asztali kereső.lnk backup=C:\WINDOWS\pss\Windows asztali kereső.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^szergej rozumnij^Start Menu^Programs^Indítópult^Xfire.lnk] path=C:\Documents and Settings\szergej rozumnij\Start Menu\Programs\Indítópult\Xfire.lnk backup=C:\WINDOWS\pss\Xfire.lnkStartup [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"= "C:\\Program Files\\IEPro\\MiniDM.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "24163:TCP"= 24163:TCP:BitComet 24163 TCP "24163:UDP"= 24163:UDP:BitComet 24163 UDP R1 atitray;atitray;C:\Program Files\Ray Adams\ATI Tray Tools\atitray.sys [2007-11-05 09:55] R1 SandBox;SandBox;C:\WINDOWS\system32\DRIVERS\SandBox.sys [2008-03-12 12:31] R3 afw;Agnitum firewall driver;C:\WINDOWS\system32\DRIVERS\afw.sys [2008-02-27 18:28] R3 ASWFilt;ASWFilt;C:\WINDOWS\system32\Filt\ASWFilt.dll [2008-03-12 12:32] R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service;C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2007-09-21 20:24] R3 VBEngNT;VBEngNT;C:\WINDOWS\system32\DRIVERS\VBEngNT.sys [2008-02-21 18:31] R3 VBFilt;VBFilt;C:\WINDOWS\system32\Filt\VBFilt.dll [2008-03-12 12:32] R3 WFIOCTL;WFIOCTL;C:\Program Files\WinFast\WFTVFM\WFIOCTL.SYS [2005-01-06 17:55] S2 acssrv;Agnitum Client Security Service;C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2008-05-21 18:15] S2 WF23880;WinFast TV2000/DV2000 WDM Video Capture.;C:\WINDOWS\system32\drivers\wf88vcap.sys [2004-10-18 12:25] S2 WF88XBAR;WinFast TV2000/DV2000 WDM Crossbar.;C:\WINDOWS\system32\drivers\WF88XBAR.sys [2004-11-22 06:34] S2 WFTUNE;WinFast TV2000/DV2000 WDM Tuner.;C:\WINDOWS\system32\drivers\WF88TUNE.sys [2004-10-18 12:25] S3 AC2003;AC2003;C:\WINDOWS\system32\Drivers\AC2003.sys [2004-07-12 05:57] S3 ADSLAutoconnect;ADSLAutoconnect;"C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z [] S3 afwcore;afwcore;C:\WINDOWS\system32\drivers\afwcore.sys [] S3 ASPI;Advanced SCSI Programming Interface Driver;C:\WINDOWS\System32\DRIVERS\ASPI32.sys [2002-07-17 09:05] S3 Memctl;Memctl;C:\Program Files\ABIT\FlashMenu\Memctl.sys [2001-11-29 20:49] S3 usb2vcom;USB Data Cable;C:\WINDOWS\system32\DRIVERS\usb2vcom.sys [2005-08-06 05:06] S3 vmfilter323;323 filter service, Normal;C:\WINDOWS\system32\drivers\vmfilter323.sys [2006-08-08 11:25] S3 XDva076;XDva076;C:\WINDOWS\system32\XDva076.sys [] S3 ZSMC326;TD24 USB2.0 PC Camera;C:\WINDOWS\system32\Drivers\usbvm323.sys [2007-01-16 11:37] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{86cc1afc-34ee-11dc-bc74-00508d6939c8}] \Shell\AutoRun\command - F:\CojLauncher.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{86cc1b09-34ee-11dc-bc74-00508d6939c8}] \Shell\AutoRun\command - F:\CojLauncher.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b685c65b-bbdf-11dc-9876-00030d000001}] \Shell\AutoRun\command - G:\autorun.exe . Contents of the 'Scheduled Tasks' folder "2008-06-03 15:31:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-30 19:52:18 Windows 5.1.2600 Szervizcsomag 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... C:\WINDOWS\Downloaded Program Files\OP_CACHE.ATR 264 bytes C:\WINDOWS\Downloaded Program Files\OP_CACHE.IDX 132 bytes C:\Documents and Settings\szergej rozumnij\Start Menu\Programs\Indítópult\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Start Menu\Programs\Indítópult\OP_CACHE.IDX 24 bytes C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult\OP_CACHE.ATR 96 bytes C:\Documents and Settings\All Users\Start Menu\Programs\Indítópult\OP_CACHE.IDX 48 bytes C:\WINDOWS\0.log 0 bytes C:\WINDOWS\OP_CACHE.ATR 3696 bytes C:\WINDOWS\OP_CACHE.IDX 1848 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.livevideo.com\flvplayer\cryptid\id.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.livevideo.com\flvplayer\cryptid\id.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.livevideo.com\flvplayer\flvplayer.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.livevideo.com\flvplayer\flvplayer.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.205.99\warlordsNDg0.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.205.99\warlordsNDg0.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.234.18\battle-in-megavilleMTE0.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.234.18\battle-in-megavilleMTE0.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.234.18\protectorNDM0.swf\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.234.18\protectorNDM0.swf\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.234.18\treasureseasNDMw.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.234.18\treasureseasNDMw.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.234.34\mighty-spidyNDc2.swf\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\207.218.234.34\mighty-spidyNDc2.swf\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.114\12fightersMTYz.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.114\12fightersMTYz.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.114\taintedkingdomNDkw.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.114\taintedkingdomNDkw.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.114\territorywarOTQ=.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.114\territorywarOTQ=.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.122\kermixNDMx.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.122\kermixNDMx.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.122\xenotacticMjUx.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flcatchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net C:\OP_CACHE.ATR 1920 bytes C:\OP_CACHE.IDX 960 bytes C:\WINDOWS\system32\drivers\UMDF\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\drivers\UMDF\OP_CACHE.IDX 24 bytes C:\WINDOWS\system32\drivers\etc\OP_CACHE.ATR 384 bytes C:\WINDOWS\system32\drivers\etc\OP_CACHE.IDX 192 bytes C:\WINDOWS\system32\drivers\OP_CACHE.ATR 9624 bytes C:\WINDOWS\system32\drivers\OP_CACHE.IDX 4812 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\cache\OP_CACHE.ATR 1392 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\cache\OP_CACHE.IDX 696 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\db\OP_CACHE.ATR 600 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\db\OP_CACHE.IDX 300 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\OP_CACHE.ATR 408 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\OP_CACHE.IDX 204 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\PlugInData\OP_CACHE.ATR 144 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\PlugInData\OP_CACHE.IDX 72 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Definitions\DensityIndexFiles\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Definitions\DensityIndexFiles\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Definitions\LayoutStyleIndexFiles\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Definitions\LayoutStyleIndexFiles\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Definitions\PaperSizeIndexFiles\OP_CACHE.ATR 168 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Definitions\PaperSizeIndexFiles\OP_CACHE.IDX 84 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Definitions\ProjectIndexFiles\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Definitions\ProjectIndexFiles\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\cs\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\cs\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\da\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\da\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\de\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\de\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\el\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\el\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\en\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\en\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Appliccatchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net C:\Program Files\Common Files\muvee Technologies\030625\OP_CACHE.ATR 456 bytes C:\Program Files\Common Files\muvee Technologies\030625\OP_CACHE.IDX 228 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00002_Chaplinesque\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00002_Chaplinesque\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00003_Cinema\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00003_Cinema\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00007_OverTheTopMusicVideo\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00007_OverTheTopMusicVideo\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00010_ProMedium\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00010_ProMedium\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00019_Velvet\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\muvee Technologies\030625\S00019_Velvet\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\muvee Technologies\MainConcept\OP_CACHE.ATR 192 bytes C:\Program Files\Common Files\muvee Technologies\MainConcept\OP_CACHE.IDX 96 bytes C:\Program Files\Common Files\ACD Systems\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\ACD Systems\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\payloads\AdobeExtendScriptToolkit2.0.2All\OP_CACHE.ATR 24 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\payloads\AdobeExtendScriptToolkit2.0.2All\OP_CACHE.IDX 12 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\payloads\OP_CACHE.ATR 24 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\payloads\OP_CACHE.IDX 12 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\common\alert\OP_CACHE.ATR 120 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\common\alert\OP_CACHE.IDX 60 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\common\scripts\OP_CACHE.ATR 96 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\common\scripts\OP_CACHE.IDX 48 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\media\css\OP_CACHE.ATR 144 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\media\css\OP_CACHE.IDX 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\media\img\OP_CACHE.ATR 528 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\media\img\OP_CACHE.IDX 264 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\OP_CACHE.ATR 48 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\OP_CACHE.IDX 24 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\complete\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\complete\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\eula\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\eula\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369dcatchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net C:\WINDOWS\system32\wbem\AutoRecover\OP_CACHE.ATR 1368 bytes C:\WINDOWS\system32\wbem\AutoRecover\OP_CACHE.IDX 684 bytes C:\WINDOWS\system32\wbem\Repository\FS\OP_CACHE.ATR 168 bytes C:\WINDOWS\system32\wbem\Repository\FS\OP_CACHE.IDX 84 bytes C:\WINDOWS\system32\wbem\Repository\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\wbem\Repository\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\wbem\xml\OP_CACHE.ATR 72 bytes C:\WINDOWS\system32\wbem\xml\OP_CACHE.IDX 36 bytes C:\WINDOWS\system32\wbem\mof\good\OP_CACHE.ATR 24 bytes C:\WINDOWS\system32\wbem\mof\good\OP_CACHE.IDX 12 bytes C:\WINDOWS\system32\wbem\OP_CACHE.ATR 2952 bytes C:\WINDOWS\system32\wbem\OP_CACHE.IDX 1476 bytes C:\WINDOWS\system32\wbem\Performance\OP_CACHE.ATR 48 bytes C:\WINDOWS\system32\wbem\Performance\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.162\fuedMzI5.swf\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\216.40.252.162\fuedMzI5.swf\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\app.gamejacket.net\gja\GJData.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\app.gamejacket.net\gja\GJData.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\armorgames.com\files\games\castlewars-894.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\armorgames.com\files\games\castlewars-894.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\armorgames.com\files\games\space-bounty-739.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\armorgames.com\files\games\space-bounty-739.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\bin.clearspring.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\bin.clearspring.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\miniclip.com\games\battle-wheels\en\bww.dcr\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\miniclip.com\games\battle-wheels\en\bww.dcr\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\miniclip.com\games\police-chopper\en\heli.dcr\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\miniclip.com\games\police-chopper\en\heli.dcr\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\miniclip.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\miniclip.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\mochiads.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\mochiads.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\mochibot.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\mochibot.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\partner.pelikan.hu\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\partner.pelikan.hu\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\pornotube.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\pornotube.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\s.mcstatic.com\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macration Data\HP\Digital Imaging\ProjectsContent\Localize\Names\es\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\es\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\fi\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\fi\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\fr\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\fr\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\hu\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\hu\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\it\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\it\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\ja\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\ja\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\ko\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\ko\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\nl\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\nl\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\no\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\no\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\pl\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\pl\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\pt\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\pt\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\ru\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\ru\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\sv\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\sv\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\tr\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\omedia\Flash Player\#SharedObjects\2CQJZV6E\s.mcstatic.com\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\s.ytimg.com\OP_CACHE.ATR 72 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\s.ytimg.com\OP_CACHE.IDX 36 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\skins.branditz.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\skins.branditz.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\uk.youtube.com\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\uk.youtube.com\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\video.google.com\googleplayer.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\video.google.com\googleplayer.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.2dplay.com\rescue-mission\rescue-mission.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.2dplay.com\rescue-mission\rescue-mission.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.freewebarcade.com\game\achilles\achilles.swf\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.freewebarcade.com\game\achilles\achilles.swf\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.freewebarcade2.net\media\tainted-kingdom.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.freewebarcade2.net\media\tainted-kingdom.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.hentaimedia.com\flvplayer.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.hentaimedia.com\flvplayer.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.miniclip.com\games\age-of-speed\en\age_of_speed.dcr\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.miniclip.com\games\age-of-speed\en\age_of_speed.dcr\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.miniclip.com\games\battle-wheels\en\bww.dcr\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.miniclip.com\games\battle-wheels\en\bww.dcr\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.miniclip.com\games\power-boat\en\powerboat.dcr\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.miniclip.com\games\power-boat\en\powerboat.dcr\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.miniclip.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.miniclip.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\sze939e58ff\resources\pages\installationOptions\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\installationOptions\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\installationProgress\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\installationProgress\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\maintenanceWelcome\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\maintenanceWelcome\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\modifyOptions\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\modifyOptions\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\personalization\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\personalization\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\readyToModify\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\readyToModify\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\selectDestination\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\selectDestination\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\systemCheck\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\systemCheck\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\uninstallOptions\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\pages\uninstallOptions\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\scripts\OP_CACHE.ATR 240 bytes C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\resources\scripts\OP_CACHE.IDX 120 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\payloads\AdobeColorCommonSet1.0.1All\OP_CACHE.ATR 24 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\payloads\AdobeColorCommonSet1.0.1All\OP_CACHE.IDX 12 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\payloads\OP_CACHE.ATR 24 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\payloads\OP_CACHE.IDX 12 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\common\alert\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\common\alert\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\common\scripts\OP_CACHE.ATR 96 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\common\scripts\OP_CACHE.IDX 48 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\media\css\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\media\css\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2ergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.nike.com\nikeos\global\modules\video\v1\swf\video_player.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.nike.com\nikeos\global\modules\video\v1\swf\video_player.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.slutload.com\data\media\player\xplayer.swf\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.slutload.com\data\media\player\xplayer.swf\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.sploder.com\contest.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.sploder.com\contest.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.sploder.com\fullgame.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.sploder.com\fullgame.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.vidilife.com\flash\flvplayer.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.vidilife.com\flash\flvplayer.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.youtube.com\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www.youtube.com\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www0.freeonlinegames.com\nohotlinking\hey_taxi\hey_taxi.dcr\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\www0.freeonlinegames.com\nohotlinking\hey_taxi\hey_taxi.dcr\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\youtube.com\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\youtube.com\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\elladara-satellite.eu\forums\chat\chatui.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\elladara-satellite.eu\forums\chat\chatui.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\embed.redtube.com\player\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\embed.redtube.com\player\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\embend.hardsextube.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\embend.hardsextube.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\europe.nokia.com\EUROPE_NOKIA_COM_3\Get_Support\Software\Support_main_flash\SupportServiceHome.swf\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\europe.nokia.com\EUROPE_NOKIA_COM_3\Get_Support\Software\Support_main_flash\SupportServiceHome.swf\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej\resources\media\img\OP_CACHE.ATR 528 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\media\img\OP_CACHE.IDX 264 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\OP_CACHE.ATR 48 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\OP_CACHE.IDX 24 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\complete\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\complete\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\eula\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\eula\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\installationOptions\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\installationOptions\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\installationProgress\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\installationProgress\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\maintenanceWelcome\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\maintenanceWelcome\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\modifyOptions\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\modifyOptions\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\personalization\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\personalization\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\readyToModify\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\readyToModify\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\selectDestination\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\selectDestination\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\systemCheck\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\systemCheck\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\uninstallOptions\OP_CACHE.ATR 72 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\pages\uninstallOptions\OP_CACHE.IDX 36 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\scripts\OP_CACHE.ATR 240 bytes C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\resources\scripts\OP_CACHE.IDX 120 bytes C:\Program Files\Common Files\Adobe\Installers\OP_CACHE.ATR 264 bytes C:\Program Files\Common Files\Adobe\Installers\OP_CACHE.IDX 132 bytes C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\OP_CACHE.ATR 96 bytes C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\OP_CACHE.IDX 48 bytes C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\OP_CACHE.ATR 48 bytes C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\OP_CACHE.IDX 24 bytes C:\Program Files\Common Files\Adobe\Adobe PCD\cache\OP_CACHE.ATR 24 bytes C:\Program Files\Common Files\Adobe\Adobe PCD\cache\OP_C rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\europe.nokia.com\resfnc\phonegallery.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\europe.nokia.com\resfnc\phonegallery.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\files.freeonlinegames.com\nohotlinking\roadburner\roadburner.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\files.freeonlinegames.com\nohotlinking\roadburner\roadburner.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\files.freeonlinegames.com\nohotlinking\strongbow\strongbow2.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\files.freeonlinegames.com\nohotlinking\strongbow\strongbow2.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\files.indavideo.hu\player\player_upc.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\files.indavideo.hu\player\player_upc.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\flash.quantserve.com\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\flash.quantserve.com\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\img.mail.ru\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\img.mail.ru\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\media.tattomedia.com\OP_CACHE.ATR 48 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\media.tattomedia.com\OP_CACHE.IDX 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\media2.videoplayer.hu\flv_player.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\2CQJZV6E\media2.videoplayer.hu\flv_player.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\myvi.ru\ru\flash\player.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\myvi.ru\ru\flash\player.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\216.40.252.114\territorywarOTQ=.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\216.40.252.114\territorywarOTQ=.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\216.40.252.162\fuedMzI5.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\216.40.252.162\fuedMzI5.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\216.40.252.74\UnrealFlash2007MzM4.swf\OP_CACHE.ATR 24 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\216.40.252.74\UnrealFlash2007MzM4.swf\OP_CACHE.IDX 12 bytes C:\Documents and Settings\szergej rozumnij\Application Data\Macromedia\Flash Player\#SharedObjects\3AJ53VZD\embed.redtube.com\player\OP_CACHE.ATRLocalize\Names\tr\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\zh-CHS\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\zh-CHS\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\zh-CHT\OP_CACHE.ATR 96 bytes C:\Documents and Settings\szergej rozumnij\Local Settings\Application Data\HP\Digital Imaging\ProjectsContent\Localize\Names\zh-CHT\OP_CACHE.IDX 48 bytes C:\Documents and Settings\szergej rozumnij\Local Sett
hétf. jún. 30, 2008 19:45

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	szergej cimbora ez a log igen rovid,ez nemfutot ADMIN modban,
hétf. jún. 30, 2008 19:41

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Ók . boci fiuk tényleg nagy képet dobok májd kissebet teszek fel legközelebb ( nekem a 22's monitoron ez nem is tünt fel ) Stell -addig adj nekem is valami ötletet mivel próbáljam ezeket kivédeni mert ez a fiam gépének a lógja ComboFix 08-06-20.4 - szergej rozumnij 2008-06-30 19:47:16.20 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1250.1.1038.18.592 [GMT 2:00] Running from: C:\Documents and Settings\szergej rozumnij\Asztal\ComboFix.exe * Created a new restore point WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\szergej rozumnij\Application Data\Microsoft\dtsc C:\Documents and Settings\szergej rozumnij\Application Data\Microsoft\dtsc\id . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_NPF ((((((((((((((((((((((((( Files Created from 2008-05-28 to 2008-06-30 ))))))))))))))))))))))))))))))) . 2008-06-30 15:06 . 2008-06-30 15:06 <DIR> d-------- C:\Program Files\Lavasoft A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 5:30-kor.
hétf. jún. 30, 2008 19:25

Laci_L a fórum lelke Csatlakozott: szer. márc. 24, 2004 13:43 Hozzászólások: 11960 Tartózkodási hely: Budapest, Solymár	rozumnij sergej nyikolaje Arra kérlek, hogy a jövőben kisebb képet linkelj be, mert teljesen szétdobja a topikot. A http://kepfeltoltes.hu/ -n eleve van ilyen lehetőség. A megjelenő kép kicsi, gyorsan lejön, akit meg érdekel, rákattint és nagyban látja. Pontosabban olyanban, amiben feltöltötték.
hétf. jún. 30, 2008 19:24

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Majd itt szergej a JudoJudy, http://forum.terminal.hu/viewtopic.php?p=874358#874358 De eloszor kipucolom neki a gepjet.
hétf. jún. 30, 2008 17:55

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	ComboFix 08-06-20.4 - Windows XP 2008-06-30 18:30:47.3 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.1250.1.1038.18.1467 [GMT 2:00] Running from: C:\Documents and Settings\Windows XP\Asztal\ComboFix.exe Command switches used :: / u * Resident AV is active WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((( Files Created from 2008-05-28 to 2008-06-30 ))))))))))))))))))))))))))))))) . 2008-06-30 17:50 . 2008-06-30 17:50 <DIR> d-------- C:\Program Files\Yahoo! 2008-06-30 16:32 . 2008-06-30 16:32 <DIR> d-------- C:\VundoFix Backups 2008-06-30 15:34 . 2008-06-30 15:34 <DIR> d-------- C:\[Ad-Aware] Serials 2008-06-30 14:09 . 2008-06-30 14:09 <DIR> d-------- C:\Program Files\Lavasoft 2008-06-30 14:09 . 2008-06-30 14:11 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-06-30 14:08 . 2008-06-30 14:08 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard 2008-06-28 15:05 . 2008-06-28 15:05 <DIR> d-------- C:\Program Files\Bonjour 2008-06-28 15:00 . 2008-06-28 15:00 <DIR> d-------- C:\Program Files\Common Files\Macrovision Shared 2008-06-28 10:37 . 2008-06-28 10:37 <DIR> d-------- C:\[Adobe Photoshop CS3] Serials 2008-06-28 10:08 . 2008-06-28 10:08 <DIR> d-------- C:\Program Files\BCsoft 2008-06-23 23:01 . 2008-06-23 23:01 <DIR> d-------- C:\Program Files\KP Software 2008-06-23 23:01 . 2002-04-29 23:45 323,584 --a------ C:\WINDOWS\system32\AudioControl.ocx 2008-06-23 23:01 . 2000-08-04 12:04 24,576 --a------ C:\WINDOWS\system32\JKTryIcn.ocx 2008-06-23 00:06 . 2008-06-23 00:06 <DIR> d-------- C:\[Spyware Doctor] Serials 2008-06-19 07:21 . 2008-06-19 07:21 <DIR> d-------- C:\[Winamp] Serials 2008-06-18 21:57 . 2008-06-18 21:57 <DIR> d-------- C:\Program Files\Real 2008-06-18 21:57 . 2008-06-18 21:57 <DIR> d-------- C:\Program Files\Common Files\xing shared 2008-06-18 21:57 . 2008-06-18 21:57 <DIR> d-------- C:\Program Files\Common Files\Real 2008-06-18 17:27 . 2008-06-18 17:27 <DIR> d-------- C:\[GTA San Andreas] Serials 2008-06-13 20:12 . 2008-06-13 20:13 <DIR> d-------- C:\Program Files\My Video Converter 2008-06-13 20:12 . 2008-06-13 20:13 67 --a------ C:\WINDOWS\My Video Converter.INI 2008-06-13 09:11 . 2008-06-30 14:02 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-06-13 09:11 . 2008-06-13 09:11 <DIR> d-------- C:\Documents and Settings\Windows XP\Application Data\Malwarebytes 2008-06-13 09:11 . 2008-06-13 09:11 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-06-13 09:11 . 2008-06-28 14:16 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-06-13 09:11 . 2008-06-28 14:16 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-06-10 21:39 . 2008-06-14 19:36 272,512 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys 2008-06-10 21:39 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys 2008-06-09 14:29 . 2008-06-09 14:29 <DIR> d-------- C:\Documents and Settings\Windows XP\Application Data\fltk.org 2008-06-04 06:04 . 2008-06-04 06:04 <DIR> d-------- C:\Program Files\Microsoft Silverlight 2008-05-31 15:32 . 2008-05-31 15:32 <DIR> d-------- C:\Documents and Settings\LocalService\Application Data\CyberLink 2008-05-30 17:30 . 2008-05-30 20:34 <DIR> d-------- C:\Program Files\Solo8Eng 2008-05-30 17:05 . 2008-05-30 17:05 <DIR> d-------- C:\Program Files\Deskshare 2008-05-30 17:05 . 2008-05-30 17:05 <DIR> d-------- C:\Program Files\Common Files\DeskShare Shared 2008-05-30 17:05 . 2004-12-07 10:11 258,352 --a------ C:\WINDOWS\system32\Unicows.dll 2008-05-30 17:05 . 2004-03-09 00:00 224,016 --a------ C:\WINDOWS\system32\TABCTL32.OCX 2008-05-30 17:05 . 2001-02-20 03:47 140,288 --a------ C:\WINDOWS\system32\COMDLG32.OCX 2008-05-29 19:16 . 2008-05-29 19:16 <DIR> d-------- C:\Program Files\Common Files\NSV 2008-05-28 22:11 . 2008-05-28 22:11 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\IM 2008-05-28 22:06 . 2008-06-22 22:54 <DIR> d-------- C:\Program Files\IncrediMail 2008-05-28 22:06 . 2008-05-28 22:06 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\IncrediMail 2008-05-25 19:41 . 2004-02-22 10:11 719,872 --a------ C:\WINDOWS\system32\devil.dll 2008-05-25 19:41 . 2006-10-07 17:43 502,784 --a------ C:\WINDOWS\x2.64.exe 2008-05-25 19:41 . 2008-02-07 16:15 408,576 --a------ C:\WINDOWS\system32\Smab.dll 2008-05-25 19:41 . 2007-05-17 17:30 318,976 --a------ C:\WINDOWS\system32\avisynth.dll 2008-05-25 19:41 . 2005-02-28 13:16 240,128 --a------ C:\WINDOWS\system32\x.264.exe 2008-05-25 19:41 . 2004-01-25 00:00 70,656 --a------ C:\WINDOWS\system32\yv12vfw.dll 2008-05-25 19:41 . 2004-01-25 00:00 70,656 --a------ C:\WINDOWS\system32\i420vfw.dll 2008-05-25 19:41 . 2006-04-05 08:09 66,560 --a------ C:\WINDOWS\MOTA113.exe 2008-05-25 19:41 . 2005-07-14 12:31 27,648 --a------ C:\WINDOWS\system32\AVSredirect.dll 2008-05-25 19:40 . 2008-05-25 19:40 <DIR> d-------- C:\Program Files\AviSynth 2.5 2008-05-25 19:40 . 2006-04-12 09:47 217,073 --a------ C:\WINDOWS\meta4.exe 2008-05-25 19:38 . 2008-05-25 19:38 <DIR> d-------- C:\Program Files\eRightSoft 2008-05-24 09:42 . 2008-05-24 12:34 <DIR> d-------- C:\Documents and Settings\Windows XP\Application Data\Hamachi 2008-05-24 09:42 . 2008-05-24 09:42 26,056 --a------ C:\WINDOWS\system32\drivers\hamachi.sys 2008-05-23 18:40 . 2008-06-22 22:46 <DIR> d-------- C:\Program Files\USB Disk Security 2008-05-22 18:03 . 2008-05-22 18:03 <DIR> d-------- C:\Program Files\AliveMedia 2008-05-22 17:49 . 2004-08-17 16:47 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2008-05-22 17:44 . 2008-05-22 17:44 <DIR> d-------- C:\WINDOWS\system32\hu 2008-05-22 17:44 . 2008-05-22 17:44 <DIR> d-------- C:\WINDOWS\system32\bits 2008-05-22 17:44 . 2008-05-22 17:44 <DIR> d-------- C:\WINDOWS\l2schemas 2008-05-22 17:43 . 2008-05-22 17:43 <DIR> d-------- C:\WINDOWS\ServicePackFiles 2008-05-22 17:37 . 2004-08-03 22:41 1,041,536 --------- C:\WINDOWS\system32\drivers\hsfdpsp2.sys 2008-05-21 18:48 . 2008-04-14 17:40 14,720 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys 2008-05-21 18:48 . 2001-10-26 19:01 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys 2008-05-21 18:48 . 2001-10-26 19:01 12,160 --a--c--- C:\WINDOWS\system32\dllcache\mouhid.sys 2008-05-21 12:02 . 2008-05-21 12:03 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Bluetooth 2008-05-21 12:00 . 2008-05-21 12:00 <DIR> d-------- C:\Program Files\IVT Corporation 2008-05-21 12:00 . 2004-08-17 16:48 91,136 --a------ C:\WINDOWS\system32\drivers\kswdmcap.ax 2008-05-21 12:00 . 2004-08-17 16:48 61,952 --a------ C:\WINDOWS\system32\drivers\kstvtune.ax 2008-05-21 12:00 . 2004-08-17 16:47 54,272 --a------ C:\WINDOWS\system32\drivers\vfwwdm32.dll 2008-05-21 12:00 . 2004-08-17 16:48 43,008 --a------ C:\WINDOWS\system32\drivers\ksxbar.ax 2008-05-21 12:00 . 2004-08-17 16:48 28,672 --a------ C:\WINDOWS\system32\drivers\vidcap.ax 2008-05-21 07:58 . 2008-05-21 07:58 <DIR> d-------- C:\Program Files\Ringtone Media Studio 2008-05-21 07:58 . 2008-05-21 07:58 <DIR> d-------- C:\Program Files\Avanquest update 2008-05-21 07:58 . 2008-05-21 07:58 <DIR> d-------- C:\Documents and Settings\Windows XP\Application Data\InstallShield 2008-05-21 07:58 . 2008-05-21 07:58 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\BVRP Software 2008-05-16 11:58 . 2008-05-16 11:58 12,632 --a------ C:\WINDOWS\system32\lsdelete.exe 2008-05-13 21:04 . 2008-06-30 16:08 <DIR> d-------- C:\Program Files\Translator 2008-05-13 09:54 . 2008-05-17 10:09 103,736 --a------ C:\WINDOWS\system32\PnkBstrB.exe 2008-05-13 09:54 . 2007-10-19 05:19 63,040 --a------ C:\WINDOWS\system32\PnkBstrA.exe 2008-05-13 09:54 . 2008-05-17 10:09 22,328 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys 2008-05-13 09:53 . 2008-05-13 09:53 <DIR> dr-h----- C:\Documents and Settings\Windows XP\Application Data\SecuROM 2008-05-13 09:53 . 2008-05-13 09:53 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll 2008-05-13 09:41 . 2008-05-13 09:41 <DIR> d-------- C:\Program Files\Electronic Arts 2008-05-09 19:41 . 2008-05-09 20:25 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\FLEXnet 2008-05-08 18:58 . 2008-05-08 18:58 367,578 --a------ C:\WINDOWS\Star Wars Jedi Knight_ Jedi Academy [Honosítás] Eltávolító.exe 2008-05-07 07:12 . 2008-05-07 07:12 1,291,776 -----c--- C:\WINDOWS\system32\dllcache\quartz.dll 2008-05-06 17:44 . 2008-05-06 17:44 <DIR> d-------- C:\WINDOWS\Caps 2008-05-05 21:27 . 2008-05-30 17:29 <DIR> d-------- C:\Program Files\Solo9 2008-05-05 21:27 . 2008-05-05 21:28 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Solo9 2008-05-04 10:01 . 2008-05-04 10:01 <DIR> d-------- C:\Program Files\ScreenShot2Print 2008-05-03 09:08 . 2008-06-30 14:44 <DIR> d-------- C:\Program Files\Spyware Doctor 2008-05-03 09:08 . 2008-05-03 09:08 <DIR> d-------- C:\Documents and Settings\Windows XP\Application Data\PC Tools 2008-05-03 09:08 . 2007-12-10 13:53 81,288 --a------ C:\WINDOWS\system32\drivers\iksyssec.sys 2008-05-03 09:08 . 2007-12-10 13:53 66,952 --a------ C:\WINDOWS\system32\drivers\iksysflt.sys 2008-05-03 09:08 . 2008-02-01 11:55 42,376 --a------ C:\WINDOWS\system32\drivers\ikfilesec.sys 2008-05-03 09:08 . 2007-12-10 13:53 29,576 --a------ C:\WINDOWS\system32\drivers\kcom.sys 2008-05-02 23:11 . 2008-05-02 23:58 <DIR> d-------- C:\Program Files\Google 2008-05-02 22:56 . 2008-06-30 15:12 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP 2008-05-01 22:20 . 2008-05-01 22:20 <DIR> d-------- C:\Program Files\Download Master 2008-05-01 22:20 . 2008-05-02 20:05 <DIR> d-------- C:\Documents and Settings\Windows XP\Application Data\Download Master 2008-05-01 11:39 . 2008-05-01 11:40 <DIR> d-------- C:\Documents and Settings\Windows XP\Application Data\RouterControl . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-28 13:05 --------- d-----w C:\Program Files\Common Files\Adobe 2008-06-28 06:12 196,608 ----a-w C:\WINDOWS\system32\drivers\nStandard.bin 2008-06-19 18:11 --------- d-----w C:\Documents and Settings\Windows XP\Application Data\Vso 2008-06-18 19:57 499,712 ----a-w C:\WINDOWS\system32\msvcp71.dll 2008-06-18 19:57 348,160 ----a-w C:\WINDOWS\system32\msvcr71.dll 2008-06-14 17:36 272,512 ------w C:\WINDOWS\system32\drivers\bthport.sys 2008-06-05 11:19 --------- d-----w C:\Documents and Settings\Windows XP\Application Data\Winamp 2008-05-31 13:31 --------- d-----w C:\Documents and Settings\All Users\Application Data\CyberLink 2008-05-21 05:58 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-05-14 04:37 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-05-09 20:52 --------- d-----w C:\Program Files\CCleaner 2008-05-08 16:33 --------- d-----w C:\Program Files\LucasArts 2008-05-08 14:02 203,136 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys 2008-05-07 05:12 1,291,776 ----a-w C:\WINDOWS\system32\quartz.dll 2008-04-29 09:20 15,648 ----a-w C:\WINDOWS\system32\drivers\NSDriver.sys 2008-04-29 09:19 15,648 ----a-w C:\WINDOWS\system32\drivers\Awrtrd.sys 2008-04-29 09:19 12,960 ----a-w C:\WINDOWS\system32\drivers\Awrtpd.sys 2008-04-23 04:16 826,368 ----a-w C:\WINDOWS\system32\wininet.dll 2008-04-14 16:15 1,804 ----a-w C:\WINDOWS\system32\dcache.bin 2008-04-14 16:05 332,288 ----a-w C:\WINDOWS\system32\netsetup.exe 2008-04-14 16:01 98,816 ----a-w C:\WINDOWS\system32\loadperf.dll 2008-04-14 16:00 9,344 ----a-w C:\WINDOWS\system32\framebuf.dll 2008-04-14 15:43 2,146,816 ----a-w C:\WINDOWS\system32\ntoskrnl.exe 2008-04-14 15:43 2,025,472 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe 2008-04-14 15:42 4,096 ----a-w C:\WINDOWS\system32\dsprpres.dll 2008-04-14 15:41 89,600 ----a-w C:\WINDOWS\system32\msxml6r.dll 2008-04-14 15:40 79,360 ------w C:\WINDOWS\system32\msshavmsg.dll 2008-04-14 15:39 49,152 ----a-w C:\WINDOWS\system32\inetres.dll 2008-04-14 15:38 561,664 ----a-w C:\WINDOWS\system32\shdoclc.dll 2008-04-14 15:36 67,072 ----a-w C:\WINDOWS\system32\browselc.dll 2008-04-14 15:36 10,240 ----a-w C:\WINDOWS\system32\gpkrsrc.dll 2008-04-14 15:36 1,845,632 ----a-w C:\WINDOWS\system32\win32k.sys 2008-04-14 07:02 997,376 ----a-w C:\WINDOWS\system32\setupapi.dll 2008-04-14 07:02 11,264 ----a-w C:\WINDOWS\system32\spnpinst.exe 2008-04-14 07:01 424,448 ----a-w C:\WINDOWS\system32\licdll.dll 2008-04-13 18:44 17,664 ----a-w C:\WINDOWS\system32\watchdog.sys 2008-04-13 18:43 9,728 ------w C:\WINDOWS\system32\comsdupd.exe 2008-04-13 18:43 12,800 ----a-w C:\WINDOWS\system32\spiisupd.exe 2008-04-13 18:40 469,504 ----a-w C:\WINDOWS\system32\xpob2res.dll 2008-04-13 18:37 2,962,944 ----a-w C:\WINDOWS\system32\xpsp2res.dll 2008-04-13 18:35 195,584 ----a-w C:\WINDOWS\system32\xpsp1res.dll 2008-04-13 18:31 7,424 ----a-w C:\WINDOWS\system32\kd1394.dll 2008-04-13 18:30 61,440 ----a-w C:\WINDOWS\system32\msvcrt40.dll 2008-04-13 17:37 208,384 ----a-w C:\WINDOWS\system32\rsaenh.dll 2008-04-13 17:37 138,752 ----a-w C:\WINDOWS\system32\dssenh.dll 2008-04-13 17:26 12,288 ----a-w C:\WINDOWS\system32\odbcp32r.dll 2008-04-13 17:26 12,288 ----a-w C:\WINDOWS\system32\mscpx32r.dll 2008-04-13 17:21 733,696 ----a-w C:\WINDOWS\system32\qedwipes.dll 2008-04-13 16:48 1,647,616 ----a-w C:\WINDOWS\system32\winbrand.dll 2008-04-13 16:45 216,064 ----a-w C:\WINDOWS\system32\moricons.dll 2008-04-13 16:23 48,128 ----a-w C:\WINDOWS\system32\msprivs.dll 2008-04-13 15:39 884,736 ----a-w C:\WINDOWS\system32\msimsg.dll 2008-04-12 12:38 47,360 ----a-w C:\Documents and Settings\Windows XP\Application Data\pcouffin.sys 2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll 2008-03-25 04:51 170,784 ----a-w C:\WINDOWS\system32\msjint40.dll 2008-03-12 11:10 633,344 ------w C:\WINDOWS\system32\gpprefcl.dll 2008-03-03 12:25 5,702 ---ha-w C:\WINDOWS\nod32restoretemdono.reg 2006-05-03 09:06 163,328 --sh--r C:\WINDOWS\system32\flvDX.dll 2007-02-21 10:47 31,232 --sh--r C:\WINDOWS\system32\msfDX.dll 2007-12-17 12:43 27,648 --sh--w C:\WINDOWS\system32\Smab0.dll . ((((((((((((((((((((((((((((( snapshot@2008-06-30_16.44.34,32 ))))))))))))))))))))))))))))))))))))))))) . - 2008-06-30 04:42:11 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-06-30 15:53:28 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-06-30 15:57:12 16,384 ----atw C:\WINDOWS\TEMP\Perflib_Perfdata_780.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 17:07 1828136] "IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2008-06-12 13:49 243072] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 18:02 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" [2006-12-18 15:34 868352] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-06-28 18:43 8466432] "nwiz"="nwiz.exe" [2007-06-28 18:43 1626112 C:\WINDOWS\system32\nwiz.exe] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-06-28 18:43 81920] "ASUSGamerOSD"="C:\Program Files\ASUS\GamerOSD\GamerOSD.exe" [2007-07-12 10:03 380928] "PCMService"="C:\Program Files\CyberLink\PowerCinema\PCMService.exe" [2007-02-09 16:34 159744] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784] "NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [2008-02-28 09:59 570664] "NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 16:29 2221352] "WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2008-03-27 08:35 36352] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-01-10 15:27 385024] "egui"="C:\Program Files\ESET\ESET Smart Security\egui.exe" [2008-03-13 16:48 1443072] "BigDogPath323Domino"="C:\WINDOWS\Domino.exe" [2006-06-28 02:54 49152] "USB Antivirus"="C:\Program Files\USB Disk Security\USBGuard.exe" [2008-06-22 22:46 798720] "TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-06-18 21:57 185896] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792] C:\Documents and Settings\All Users\Start Menu\Programs\Indˇt˘pult\ BlueSoleil.lnk - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe [2005-09-20 10:28:16 1200128] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.I420"= i420vfw.dll "msacm.mkdmp3enc"= C:\PROGRA~1\CYBERL~1\POWERC~1\Kernel\Burner\MKDMP3Enc.ACM "vidc.yv12"= yv12vfw.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] --a------ 2006-12-20 18:53 25365032 C:\Program Files\Skype\Phone\Skype.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 [HKLM\~\ser catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-30 18:32:09 Windows 5.1.2600 Szervizcsomag 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************ . Completion time: 2008-06-30 18:32:42 ComboFix-quarantined-files.txt 2008-06-30 16:32:36 ComboFix2.txt 2008-06-30 15:17:26 ComboFix3.txt 2008-06-30 14:44:52 14 könyvtár 21,476,667,392 bájt szabad 17 könyvtár 21,465,243,648 bájt szabad 265 --- E O F --- 2008-06-20 15:07:09 A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 5:26-kor.
hétf. jún. 30, 2008 17:54

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Melyik Srácot mondtad a Néróval ? szívesen segítek !
hétf. jún. 30, 2008 17:53

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Lehet mert a Qoobox-ban biztosan ot volt es leakarta torolni de a NOD ugyeseb volt.Mert a combofix a Qoobox-ba rakja a letorolt virusokat ha veletlenul kel akor inen visza lehet alitani.
hétf. jún. 30, 2008 17:45

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	stell írta: neked is szergej.Ha gyereknek nemmegy fel a NERO akor majd nezd meg,mert te vagy a Nero specialista. Minden nérót 7 -8 - fel lehet tenni Ván rá mód Ezt nézd amikor futtatás combofix / u csinaltam elindult ahejet hody uninstalalodna de közbe a nod egybol bejejzett A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje hétf. jún. 30, 2008 19:43-kor.
hétf. jún. 30, 2008 17:41

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Hm érdekes
hétf. jún. 30, 2008 17:36

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	neked is szergej.Ha gyereknek nemmegy fel a NERO akor majd nezd meg,mert te vagy a Nero specialista.
hétf. jún. 30, 2008 17:36

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Ok. Üdvözöllek- Miden jót
hétf. jún. 30, 2008 17:30

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Szed le a combofixet: futatas> combofix /u ok. Pucold at es akor jo: Udv.
hétf. jún. 30, 2008 16:59

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	Tisztán indul a gép , amikor nyomtam az 1 & enter beugrattak a konvertáló progi telepitö kérdések - kilép a telepitésbol > igen is utána a combo törölte a windows aplication datat így nem lett telepítve is még gyökérbe megfojtva a Vundo A hozzászólást 1 alkalommal szerkesztették, utoljára rozumnij sergej nyikolaje kedd júl. 01, 2008 5:28-kor.
hétf. jún. 30, 2008 16:46

rozumnij sergej nyikolaje platina tag Csatlakozott: szomb. feb. 03, 2007 11:36 Hozzászólások: 528	De most már elbántuk velük a nod segitcségével még mikor vettem volná ki a karanténból
hétf. jún. 30, 2008 16:39

stell a fórum lelke Csatlakozott: vas. jún. 24, 2007 10:18 Hozzászólások: 6679 Tartózkodási hely: Revuca.S.k>>Szlovákia, nem tudok jól magyarul írni, ezért ilyen amit látsz,	Szergej -en mar nemlatom a combo logjaban a Vundokat>hova tunteted el.? Kiveted e a karantebol??Es meg mindig nemkapcsol ki a Gep??
hétf. jún. 30, 2008 16:35
Hozzászólások megjelenítése: Rendezés

Oldal: 35 / 39

[ 1923 hozzászólás ]

Oldal Előző 1 ... 32, 33, 34, 35, 36, 37, 38, 39 Következő

Ki van itt

Jelenlévő fórumozók: nincs regisztrált felhasználó valamint 2 vendég

Nem nyithatsz témákat ebben a fórumban.
Nem válaszolhatsz egy témára ebben a fórumban.
Nem szerkesztheted a hozzászólásaidat ebben a fórumban.
Nem törölheted a hozzászólásaidat ebben a fórumban.

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by ST Software for PTF.
Magyar fordítás © Magyar phpBB Közösség