ComboFix 11-07-26.02 - Pokoj 26.07.2011 9:32.1.8 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.6141.4262 [GMT 2:00]
Spuštěný z: c:\users\Pokoj\Desktop\ComboFix.exe
SP: IObit Security 360 *Disabled/Outdated* {FAE2835A-B90A-9E7A-85DA-82DBDA7C1E3A}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\facemoods.com
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoods.crx
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoods.png
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsApp.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsEng.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\uninstall.exe
c:\users\Pokoj\AppData\Roaming\chrtmp
c:\windows\btc_client_iplist.txt
c:\windows\ddh_iplist.txt
c:\windows\front_ip_list.txt
c:\windows\iecheck_iplist.txt
c:\windows\info1
c:\windows\iplist.txt
c:\windows\IsUn0405.exe
c:\windows\loader2.exe_ok
c:\windows\phoenix.rar
c:\windows\proc_list1.log
c:\windows\rpcminer.rar
c:\windows\SysWow64\html
c:\windows\SysWow64\html\calendar.html
c:\windows\SysWow64\html\calendarbottom.html
c:\windows\SysWow64\html\calendartop.html
c:\windows\SysWow64\html\crystalexportdialog.htm
c:\windows\SysWow64\html\crystalprinthost.html
c:\windows\SysWow64\images
c:\windows\SysWow64\images\toolbar\calendar.gif
c:\windows\SysWow64\images\toolbar\crlogo.gif
c:\windows\SysWow64\images\toolbar\export.gif
c:\windows\SysWow64\images\toolbar\export_over.gif
c:\windows\SysWow64\images\toolbar\exportd.gif
c:\windows\SysWow64\images\toolbar\First.gif
c:\windows\SysWow64\images\toolbar\first_over.gif
c:\windows\SysWow64\images\toolbar\Firstd.gif
c:\windows\SysWow64\images\toolbar\gotopage.gif
c:\windows\SysWow64\images\toolbar\gotopage_over.gif
c:\windows\SysWow64\images\toolbar\gotopaged.gif
c:\windows\SysWow64\images\toolbar\grouptree.gif
c:\windows\SysWow64\images\toolbar\grouptree_over.gif
c:\windows\SysWow64\images\toolbar\grouptreed.gif
c:\windows\SysWow64\images\toolbar\grouptreepressed.gif
c:\windows\SysWow64\images\toolbar\Last.gif
c:\windows\SysWow64\images\toolbar\last_over.gif
c:\windows\SysWow64\images\toolbar\Lastd.gif
c:\windows\SysWow64\images\toolbar\Next.gif
c:\windows\SysWow64\images\toolbar\next_over.gif
c:\windows\SysWow64\images\toolbar\Nextd.gif
c:\windows\SysWow64\images\toolbar\Prev.gif
c:\windows\SysWow64\images\toolbar\prev_over.gif
c:\windows\SysWow64\images\toolbar\Prevd.gif
c:\windows\SysWow64\images\toolbar\print.gif
c:\windows\SysWow64\images\toolbar\print_over.gif
c:\windows\SysWow64\images\toolbar\printd.gif
c:\windows\SysWow64\images\toolbar\Refresh.gif
c:\windows\SysWow64\images\toolbar\refresh_over.gif
c:\windows\SysWow64\images\toolbar\refreshd.gif
c:\windows\SysWow64\images\toolbar\Search.gif
c:\windows\SysWow64\images\toolbar\search_over.gif
c:\windows\SysWow64\images\toolbar\searchd.gif
c:\windows\SysWow64\images\toolbar\up.gif
c:\windows\SysWow64\images\toolbar\up_over.gif
c:\windows\SysWow64\images\toolbar\upd.gif
c:\windows\SysWow64\images\tree\begindots.gif
c:\windows\SysWow64\images\tree\beginminus.gif
c:\windows\SysWow64\images\tree\beginplus.gif
c:\windows\SysWow64\images\tree\blank.gif
c:\windows\SysWow64\images\tree\blankdots.gif
c:\windows\SysWow64\images\tree\dots.gif
c:\windows\SysWow64\images\tree\lastdots.gif
c:\windows\SysWow64\images\tree\lastminus.gif
c:\windows\SysWow64\images\tree\lastplus.gif
c:\windows\SysWow64\images\tree\Magnify.gif
c:\windows\SysWow64\images\tree\minus.gif
c:\windows\SysWow64\images\tree\minusbox.gif
c:\windows\SysWow64\images\tree\plus.gif
c:\windows\SysWow64\images\tree\plusbox.gif
c:\windows\SysWow64\images\tree\singleminus.gif
c:\windows\SysWow64\images\tree\singleplus.gif
c:\windows\ufa.rar
c:\windows\update.1
c:\windows\update.2
c:\windows\update.3
c:\windows\update.5.0
c:\windows\winlog-dirs.txt
c:\windows\winlog-ids.txt
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-26 do 2011-07-26 )))))))))))))))))))))))))))))))
.
.
2011-07-26 07:36 . 2011-07-26 07:36 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-07-26 07:25 . 2011-07-13 04:53 8578896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3355407A-9A1D-4FB7-B348-3E0CB287A015}\mpengine.dll
2011-07-25 21:14 . 2011-07-25 21:14 -------- d-----w- c:\users\Pokoj\AppData\Roaming\Malwarebytes
2011-07-25 21:14 . 2011-07-25 21:14 -------- d-----w- c:\programdata\Malwarebytes
2011-07-25 21:14 . 2011-07-06 17:52 41272 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-07-25 21:14 . 2011-07-25 21:14 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-07-25 21:14 . 2011-07-06 17:52 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-25 21:12 . 2011-07-25 21:12 -------- d-----w- c:\windows\ufa
2011-07-25 20:30 . 2011-07-26 07:21 -------- d-----w- c:\program files\trend micro
2011-07-25 20:30 . 2011-07-25 20:30 -------- d-----w- C:\rsit
2011-07-25 16:45 . 2011-07-25 16:45 -------- d-----w- c:\windows\phoenix
2011-07-25 16:35 . 2011-07-25 21:12 246272 ----a-w- c:\windows\unrar.exe
2011-07-25 16:31 . 2011-07-25 16:31 -------- d-----w- c:\windows\av_ico
2011-07-25 16:29 . 2011-07-25 22:48 -------- d--h--w- c:\windows\update.tray-7-0-lnk
2011-07-25 16:29 . 2011-07-25 22:48 -------- d--h--w- c:\windows\update.tray-7-0
2011-07-25 07:54 . 2011-07-25 07:54 -------- d-----w- c:\program files\GamePark2
2011-07-17 16:16 . 2011-07-17 16:16 -------- d-----w- c:\users\Pokoj\AppData\Local\GIANTS Editor 4.1.7
2011-07-16 09:50 . 2011-07-16 09:50 -------- d-----w- c:\users\Default\AppData\Roaming\IObit
2011-07-03 13:06 . 2011-07-03 13:06 -------- d-----w- c:\program files (x86)\Common Files\Java
2011-06-29 21:43 . 2011-06-29 21:43 -------- d-----w- c:\program files (x86)\Common Files\Nero
2011-06-27 22:06 . 2011-06-27 22:06 -------- d-----w- c:\users\Pokoj\AppData\Roaming\2K Sports
2011-06-27 14:28 . 2011-06-27 14:28 -------- d-----w- c:\users\Pokoj\AppData\Local\Quadriga Games
2011-06-27 14:01 . 2011-06-27 14:01 -------- d-----w- c:\windows\3F5C371F8EA24F259D3DD0B4526E3AEA.TMP
2011-06-27 14:01 . 2011-06-27 14:01 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2011-06-27 07:46 . 2011-07-04 11:36 600920 ----a-w- c:\windows\system32\drivers\aswSnx.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-26 07:38 . 2010-05-02 07:06 24072 ----a-w- c:\windows\gdrv.sys
2011-07-25 07:55 . 2010-05-08 20:13 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-07-25 07:55 . 2010-05-03 11:23 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-07-04 11:43 . 2010-07-18 19:17 40112 ----a-w- c:\windows\avastSS.scr
2011-07-04 11:43 . 2010-05-02 07:18 199304 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-07-04 11:43 . 2011-01-19 13:04 253888 ----a-w- c:\windows\system32\aswBoot.exe
2011-07-04 11:36 . 2010-05-02 07:20 288088 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-07-04 11:35 . 2010-05-02 07:20 45400 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-07-04 11:32 . 2010-05-02 07:20 31064 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-07-04 11:32 . 2010-05-02 07:20 64856 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-07-04 11:32 . 2010-05-02 07:20 22360 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-06-07 19:52 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-06-07 19:52 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-06-03 05:57 . 2011-07-16 09:40 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2011-05-31 15:21 . 2011-06-08 18:15 2886888 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2011-05-31 15:05 . 2010-05-14 13:35 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2011-05-31 15:05 . 2010-05-14 13:35 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2011-05-31 14:38 . 2011-06-08 18:15 91240 ----a-w- c:\windows\system32\RCoInst64.dll
2011-05-31 08:09 . 2011-06-08 18:15 3114088 ----a-w- c:\windows\system32\RtkAPO64.dll
2011-05-27 15:58 . 2010-05-02 07:12 1284712 ----a-w- c:\windows\RtlExUpd.dll
2011-05-24 17:14 . 2010-05-02 07:20 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-05-24 13:01 . 2011-06-08 18:15 1559656 ----a-w- c:\windows\system32\RTSnMg64.cpl
2011-05-23 15:12 . 2011-06-08 18:15 1245288 ----a-w- c:\windows\system32\RTCOM64.dll
2011-05-21 19:26 . 2011-05-21 19:26 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-05-21 19:26 . 2011-05-21 19:26 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-05-21 19:26 . 2011-05-21 19:26 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-05-21 19:26 . 2011-05-21 19:26 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-05-21 19:26 . 2011-05-21 19:26 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-05-21 19:26 . 2011-05-21 19:26 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-05-21 19:26 . 2011-05-21 19:26 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-05-21 19:26 . 2011-05-21 19:26 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-05-21 19:26 . 2011-05-21 19:26 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-05-21 19:26 . 2011-05-21 19:26 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-05-21 19:26 . 2011-05-21 19:26 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-05-21 19:26 . 2011-05-21 19:26 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-05-21 19:26 . 2011-05-21 19:26 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-05-21 19:26 . 2011-05-21 19:26 448512 ----a-w- c:\windows\system32\html.iec
2011-05-21 19:26 . 2011-05-21 19:26 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-05-21 19:26 . 2011-05-21 19:26 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-05-21 19:26 . 2011-05-21 19:26 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-05-21 19:26 . 2011-05-21 19:26 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-05-21 19:26 . 2011-05-21 19:26 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-05-21 19:26 . 2011-05-21 19:26 222208 ----a-w- c:\windows\system32\msls31.dll
2011-05-21 19:26 . 2011-05-21 19:26 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-05-21 19:26 . 2011-05-21 19:26 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-05-21 19:26 . 2011-05-21 19:26 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-05-21 19:26 . 2011-05-21 19:26 160256 ----a-w- c:\windows\system32\wextract.exe
2011-05-21 19:26 . 2011-05-21 19:26 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-05-21 19:26 . 2011-05-21 19:26 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-05-21 19:26 . 2011-05-21 19:26 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-05-21 19:26 . 2011-05-21 19:26 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-05-21 19:26 . 2011-05-21 19:26 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-05-21 19:26 . 2011-05-21 19:26 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-05-21 19:26 . 2011-05-21 19:26 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-05-21 19:26 . 2011-05-21 19:26 12288 ----a-w- c:\windows\system32\mshta.exe
2011-05-21 19:26 . 2011-05-21 19:26 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-05-21 19:26 . 2011-05-21 19:26 114176 ----a-w- c:\windows\system32\admparse.dll
2011-05-21 19:26 . 2011-05-21 19:26 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-05-21 19:26 . 2011-05-21 19:26 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-05-21 19:26 . 2011-05-21 19:26 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-05-21 19:26 . 2011-05-21 19:26 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-05-20 08:44 . 2011-06-08 18:15 2405992 ----a-w- c:\windows\system32\RtPgEx64.dll
2011-05-05 13:24 . 2011-06-08 18:14 2085440 ----a-w- c:\windows\system32\FMAPO64.dll
2011-05-04 02:52 . 2010-08-11 12:06 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-05-03 05:29 . 2011-06-16 09:43 976896 ----a-w- c:\windows\system32\inetcomm.dll
2011-05-03 04:30 . 2011-06-16 09:43 741376 ----a-w- c:\windows\SysWow64\inetcomm.dll
2011-04-29 03:06 . 2011-06-16 09:43 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2011-04-29 03:05 . 2011-06-16 09:43 410112 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-04-29 03:05 . 2011-06-16 09:43 168448 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-04-27 21:30 . 2011-04-27 21:30 321024 ----a-w- c:\windows\system32\d3d10_1core.dll
2011-04-27 21:30 . 2011-04-27 21:30 219136 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2011-04-27 21:30 . 2011-04-27 21:30 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2011-04-27 21:30 . 2011-04-27 21:30 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
.
Kód: Vybrat vše
<pre>
c:\program files (x86)\Adobe\Adobe Photoshop CS5\Make Desktop & Start Menu Icon .exe
</pre>
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
2010-03-17 13:45 2355224 ----a-w- c:\program files (x86)\Softonic-Eng7\tbSoft.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{e802027b-1f2b-40bd-b307-0bd96d036835}]
2010-04-15 10:33 2515552 ----a-w- c:\program files (x86)\AstroburnBar\tbAstr.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{e802027b-1f2b-40bd-b307-0bd96d036835}"= "c:\program files (x86)\AstroburnBar\tbAstr.dll" [2010-04-15 2515552]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files (x86)\Softonic-Eng7\tbSoft.dll" [2010-03-17 2355224]
.
[HKEY_CLASSES_ROOT\clsid\{e802027b-1f2b-40bd-b307-0bd96d036835}]
.
[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"DAEMON Tools Lite"="d:\programy\DAEMON Tools Lite\DTLite.exe" [2011-01-05 1305408]
"Advanced SystemCare 4"="d:\programy\Advanced SystemCare 4\ASCTray.exe" [2011-05-28 412560]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ChangeFilterMerit"="d:\programy\ChangeFilterMerit.exe" [2007-06-08 51280]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-06-08 37296]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"LogMeIn Hamachi Ui"="d:\programy\Hamachi\hamachi-2-ui.exe" [2011-05-25 1951112]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-07-06 449584]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2010-5-3 113664]
GamePark klient 2.lnk - c:\program files\GamePark2\gpcl.exe [2011-7-25 442880]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableSecureUIAPaths"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
"DisableThumbnailCache"=dword:00000001
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 GEST Service;GEST Service for program management.;c:\program files (x86)\GIGABYTE\EnergySaver\GSvr.exe [2008-12-08 68136]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\DRIVERS\massfilter.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);c:\windows\system32\DRIVERS\RtVLAN60.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\DRIVERS\ZTEusbnet.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [x]
S2 AdvancedSystemCareService;Advanced SystemCare Service;d:\programy\Advanced SystemCare 4\ASCService.exe [2011-05-28 353168]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;d:\programy\Hamachi\hamachi-2.exe [2011-05-25 2275720]
S2 ICQ Service;ICQ Service;c:\program files (x86)\ICQ6Toolbar\ICQ Service.exe [2010-03-28 246520]
S2 IS360service;IS360service;d:\programy\IObit Security 360\IS360srv.exe [2010-06-11 312152]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-07-06 366640]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys [x]
S2 VMCService;Vodafone Mobile Connect Service;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2008-11-04 14336]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-07-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-537160728-978004406-2760012527-1000Core.job
- c:\users\Pokoj\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-02 07:37]
.
2011-07-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-537160728-978004406-2760012527-1000UA.job
- c:\users\Pokoj\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-02 07:37]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-07-20 182808]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-05-31 11855976]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://meta-finder.com/
uDefault_Search_URL = hxxp://
www.Google.com
uSearchAssistant = hxxp://
www.Google.com/
uCustomizeSearch = hxxp://
www.Google.com/
uSearchURL,(Default) = hxxp://
www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - d:\programy\MS Office 2010\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\programy\MS Office 2010\Office14\ONBttnIE.dll/105
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - d:\programy\ICQ 7\ICQ7.1\ICQ.exe
FF - ProfilePath - c:\users\Pokoj\AppData\Roaming\Mozilla\Firefox\Profiles\zsbj9v6e.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search13.net/search.php?clid=486&q=
FF - prefs.js: browser.search.selectedEngine - Facemoods Search
FF - prefs.js: browser.startup.homepage - hxxp://meta-finder.com/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=2.0.0.3&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
FF - Ext: DAEMON Tools Toolbar:
DTToolbar@toolbarnet.com - %profile%\extensions\
DTToolbar@toolbarnet.com
FF - Ext: Facemoods:
ffxtlbr@Facemoods.com - %profile%\extensions\
ffxtlbr@Facemoods.com
FF - Ext: GamePlayLabs Plugin:
plugin2@gameplaylabs.com - %profile%\extensions\
plugin2@gameplaylabs.com
FF - Ext: Stylish Profile: {6236BA26-C117-4007-928C-DE0716C7FA80} - %profile%\extensions\{6236BA26-C117-4007-928C-DE0716C7FA80}
FF - Ext: Express Tab: {6236BA26-C117-4007-928C-DE0716C7FA82} - %profile%\extensions\{6236BA26-C117-4007-928C-DE0716C7FA82}
FF - Ext: Usage Stat: {6236BA26-C117-4007-928C-DE0716C7FA96} - %profile%\extensions\{6236BA26-C117-4007-928C-DE0716C7FA96}
FF - Ext: FBFan: {6236BA26-C117-4007-928C-DE0716C7FA99} - %profile%\extensions\{6236BA26-C117-4007-928C-DE0716C7FA99}
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.startup.homepage - hxxp://meta-finder.com/
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{64182481-4F71-486b-A045-B233BD0DA8FC} - c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
Toolbar-{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
WebBrowser-{E802027B-1F2B-40BD-B307-0BD96D036835} - (no file)
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
AddRemove-Adobe Photoshop 7.0 CE - c:\windows\ISUN0405.EXE
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-facemoods - c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=hex:51,66,7a,6c,4c,1d,38,12,c2,99,1a,
36,00,8f,58,04,e1,8c,0d,76,4f,1c,0a,03
"{E802027B-1F2B-40BD-B307-0BD96D036835}"=hex:51,66,7a,6c,4c,1d,38,12,15,01,11,
ec,19,51,d3,05,cc,11,48,99,68,5d,2c,21
"{855F3B16-6D32-4FE6-8A56-BBB695989046}"=hex:51,66,7a,6c,4c,1d,38,12,78,38,4c,
81,00,23,88,0a,f5,40,f8,f6,90,c6,d4,52
"{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}"=hex:51,66,7a,6c,4c,1d,38,12,f3,6e,58,
45,a7,04,e3,0b,ca,a7,57,dd,d7,87,7f,a7
"{8DCB7100-DF86-4384-8842-8FA844297B3F}"=hex:51,66,7a,6c,4c,1d,38,12,6e,72,d8,
89,b4,91,ea,06,f7,54,cc,e8,41,77,3f,2b
"{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}"=hex:51,66,7a,6c,4c,1d,38,12,4a,94,5d,
df,2a,bb,93,08,e3,6a,3b,f5,24,5d,8e,ad
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{64182481-4F71-486B-A045-B233BD0DA8FC}"=hex:51,66,7a,6c,4c,1d,38,12,ef,27,0b,
60,43,01,05,0d,df,53,f1,73,b8,53,ec,e8
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{9FDDE16B-836F-4806-AB1F-1455CBEFF289}"=hex:51,66,7a,6c,4c,1d,38,12,05,e2,ce,
9b,5d,cd,68,0d,d4,09,57,15,ce,b1,b6,9d
"{A3CF7606-E683-4375-A372-96B75DA0AEF7}"=hex:51,66,7a,6c,4c,1d,38,12,68,75,dc,
a7,b1,a8,1b,06,dc,64,d5,f7,58,fe,ea,e3
"{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}"=hex:51,66,7a,6c,4c,1d,38,12,07,5b,93,
aa,6e,60,ba,0b,f0,6d,b2,b7,80,44,00,83
"{D2CE3E00-F94A-4740-988E-03DC2F38C34F}"=hex:51,66,7a,6c,4c,1d,38,12,6e,3d,dd,
d6,78,b7,2e,02,e7,98,40,9c,2a,66,87,5b
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{929801A8-4AEF-4D12-BE31-D85BF666452B}"=hex:51,66,7a,6c,4c,1d,38,12,c6,02,8b,
96,dd,04,7c,08,c1,27,9b,1b,f3,38,01,3f
"{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16,
fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17
"{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9,
b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:d9,ff,00,5c,f9,17,cc,01
.
[HKEY_USERS\S-1-5-21-537160728-978004406-2760012527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-537160728-978004406-2760012527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (S-1-5-21-537160728-978004406-2760012527-1000)
@Denied: (2) (LocalSystem)
"Progid"="Outlook.File.vcf"
.
[HKEY_USERS\S-1-5-21-537160728-978004406-2760012527-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-537160728-978004406-2760012527-1000\Software\SecuROM\License information*]
"datasecu"=hex:dc,fc,7f,b6,9a,9b,5e,6b,8a,14,34,6a,2e,53,92,d0,a8,7b,71,15,23,
85,1b,5e,74,a6,49,6d,41,90,d9,e5,00,6f,58,40,8c,6b,e6,96,3c,ff,22,38,e1,53,\
"rkeysecu"=hex:44,6e,f0,1e,6a,32,41,8a,3e,a9,46,84,7c,af,35,f4
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10e.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10e.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE
c:\program files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
d:\programy\Advanced SystemCare 4\PMonitor.exe
d:\programy\Smart Defrag 2\SmartDefrag.exe
.
**************************************************************************
.
Celkový čas: 2011-07-26 09:45:28 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-07-26 07:45
.
Před spuštěním: Volných bajtů: 138 590 679 040
Po spuštění: Volných bajtů: 138 098 384 896
.
- - End Of File - - 22E8BD0A09F574EF3D4A10DD8536888B
