VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Pc naběhne až po několikanásobném restartu

https://forum.viry.cz:443/viewtopic.php?t=125219

Stránka 2 z 2

Re: Pc naběhne až po několikanásobném restartu

Napsal: 23 říj 2012 21:31
od Rudy
OK, večer tu budu, zatím není zač!

Re: Pc naběhne až po několikanásobném restartu

Napsal: 24 říj 2012 16:28
od PredyP
ComboFix 12-10-24.01 - matej 24.10.2012 17:10:46.1.2 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.2046.707 [GMT 2:00]
Spuštěný z: c:\users\matej\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\DFR5F64.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-24 do 2012-10-24 )))))))))))))))))))))))))))))))
.
.
2012-10-24 15:21 . 2012-10-24 15:21 -------- d-----w- c:\users\matej\AppData\Local\temp
2012-10-24 15:21 . 2012-10-24 15:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-24 15:06 . 2012-10-24 15:08 -------- d-----w- C:\32788R22FWJFW
2012-10-23 17:46 . 2012-10-23 17:47 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2012-10-23 15:20 . 2012-10-23 15:20 -------- d-----w- c:\users\matej\AppData\Roaming\Malwarebytes
2012-10-23 15:19 . 2012-10-23 15:19 -------- d-----w- c:\programdata\Malwarebytes
2012-10-23 15:19 . 2012-10-23 15:19 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-10-23 15:19 . 2012-09-29 17:54 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-22 17:50 . 2012-10-22 17:55 -------- d-----w- c:\program files\trend micro
2012-10-22 17:50 . 2012-10-22 17:50 -------- d-----w- C:\rsit
2012-10-22 16:35 . 2012-10-22 16:35 935175 ----a-w- C:\RSITx64.exe
2012-10-15 11:37 . 2012-10-15 11:37 -------- d-----w- c:\users\matej\AppData\Local\Criterion Games
2012-10-13 16:32 . 2012-10-13 16:32 -------- d-----w- c:\users\matej\AppData\Roaming\MusicNet
2012-10-13 16:32 . 2012-10-13 16:32 -------- d-----w- c:\programdata\2BD1
2012-10-13 16:32 . 2012-10-13 17:39 -------- d-----w- c:\programdata\boost_interprocess
2012-10-13 16:32 . 2012-10-13 16:32 -------- d-----w- c:\users\matej\AppData\Local\iMesh
2012-10-13 16:31 . 2012-10-13 16:32 -------- d-----w- c:\program files (x86)\iMesh Applications
2012-10-13 16:31 . 2012-10-13 16:31 -------- d-----w- c:\programdata\iMesh
2012-10-13 16:30 . 2012-10-13 16:33 -------- dc-h--w- c:\programdata\{3002E08A-4925-4821-8D06-D5FC4EBFF034}
2012-10-13 16:30 . 2012-10-13 16:30 -------- d-----w- c:\users\matej\AppData\Local\PackageAware
2012-10-12 12:32 . 2012-06-02 00:20 174592 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-12 12:32 . 2012-06-02 00:20 132096 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-12 12:32 . 2012-06-02 00:20 1268736 ----a-w- c:\windows\system32\crypt32.dll
2012-10-12 12:32 . 2012-06-02 00:02 985088 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-12 12:32 . 2012-06-02 00:02 98304 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-10-12 12:32 . 2012-06-02 00:02 133120 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-11 08:47 . 2012-09-13 13:45 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-11 08:47 . 2012-09-13 13:28 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-10 20:33 . 2012-10-10 20:33 20044 ----a-w- c:\windows\SysWow64\ealregsnapshot1.reg
2012-10-10 20:17 . 2012-10-11 10:37 -------- d-----w- c:\users\matej\AppData\Roaming\vlc
2012-10-10 20:13 . 2012-10-10 20:13 -------- d-----w- c:\program files (x86)\VideoLAN
2012-10-10 19:18 . 2012-10-10 19:05 13497344 ----a-w- C:\EA Core.msi
2012-10-10 19:05 . 2012-10-10 20:32 -------- d-----w- c:\users\matej\AppData\Local\Downloaded Installations
2012-10-10 18:57 . 2012-08-24 16:07 218624 ----a-w- c:\windows\system32\wintrust.dll
2012-10-10 18:57 . 2012-08-24 15:53 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-10-10 18:54 . 2012-08-29 11:40 4699520 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-10 17:49 . 2012-10-10 17:49 -------- d-----w- c:\program files (x86)\TorrentHandler
2012-10-10 17:48 . 2012-10-10 17:49 -------- d-----w- c:\program files (x86)\1ClickDownload
2012-10-10 17:44 . 2012-10-10 17:44 -------- d-----w- c:\programdata\Browser Manager
2012-10-10 17:43 . 2012-10-10 17:43 -------- d-----w- c:\programdata\Babylon
2012-10-10 17:43 . 2012-10-10 17:43 -------- d-----w- c:\users\matej\AppData\Roaming\Babylon
2012-10-10 17:43 . 2012-10-10 17:43 -------- d-----w- c:\program files (x86)\YourFileDownloader
2012-10-10 17:43 . 2012-10-10 17:43 -------- d-----w- c:\users\matej\AppData\Roaming\YourFileDownloader
2012-10-10 17:21 . 2012-10-10 17:21 -------- d-----w- c:\programdata\Electronic Arts
2012-10-06 15:49 . 2012-10-06 15:49 -------- d-----w- c:\programdata\Big Fish Games
2012-10-06 15:48 . 2012-10-06 15:49 -------- d-----w- c:\program files (x86)\bfgclient
2012-10-06 15:46 . 2012-10-06 15:49 -------- d-----w- C:\BigFishGamesCache
2012-09-29 17:34 . 2012-09-29 17:34 -------- d-----w- c:\program files (x86)\DsNET Corp
2012-09-29 17:33 . 2012-09-29 17:33 -------- d-----w- c:\programdata\Ask
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-21 10:51 . 2006-11-02 12:35 65309168 ----a-w- c:\windows\system32\mrt.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"= "c:\program files (x86)\Winamp Toolbar\winamptb.dll" [2010-07-28 1267024]
.
[HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{bff6b2ca-366c-4a90-b685-d87776deb0d2}]
2012-09-06 21:11 89288 ----a-w- c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{bff6b2ca-366c-4a90-b685-d87776deb0d2}"= "c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll" [2012-09-06 89288]
.
[HKEY_CLASSES_ROOT\clsid\{bff6b2ca-366c-4a90-b685-d87776deb0d2}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1555968]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 138240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 336384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~3\browse~1\23765~1.24\{16cdf~1\browse~1.dll c:\progra~3\browse~1\23765~1.24\{16cdf~1\browsemngr.dll
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Themes
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-05-27 10:11]
.
2012-10-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-05-27 10:11]
.
2012-06-05 c:\windows\Tasks\User_Feed_Synchronization-{1090D40C-B40A-4F60-8A28-70A2C046C2DC}.job
- c:\windows\system32\msfeedssync.exe [2012-03-08 17:34]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\progra~2\IMESHA~1\Mediabar\Datamngr\x64\datamngr.dll c:\progra~2\IMESHA~1\Mediabar\Datamngr\x64\IEBHO.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.imesh.net
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Winamp Search - c:\programdata\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files (x86)\ICQ7.6\ICQ.exe
TCP: Interfaces\{EF507DC6-91FD-4210-B9AE-3B3AD32C4063}: NameServer = 192.168.1.1
FF - ProfilePath - c:\users\matej\AppData\Roaming\Mozilla\Firefox\Profiles\h39lm6ue.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.startup.homepage - hxxp://search.imesh.net
FF - prefs.js: keyword.URL - hxxp://dts.search-results.com/sr?src=ffb&gct=ds&appid=393&systemid=1&apn_dtid=IME001&apn_ptnrs=AG1&apn_uid=3751854136954114&o=APN10653&q=
FF - prefs.js: browser.search.selectedEngine - Search Results
FF - ExtSQL: 2012-09-29 19:34; {bfc39e47-d643-4dc2-aa1d-61377501c844}; c:\users\matej\AppData\Roaming\Mozilla\Firefox\Profiles\h39lm6ue.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}
FF - ExtSQL: !HIDDEN! 2011-01-21 15:00; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKLM-Run-HF_G_Jul - c:\program files (x86)\AVG Secure Search\HF_G_Jul.exe
Wow6432Node-HKLM-Run-ROC_ROC_JULY_P1 - c:\program files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe
Toolbar-10 - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-Shockwave - c:\windows\System32\Macromed\SHOCKW~1\UNWISE.EXE
AddRemove-{6889EE56-1816-4E89-94DF-9F56E7804039}_is1 - c:\program files (x86)\Valve\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=hex:51,66,7a,6c,4c,1d,38,12,c2,99,1a,
36,00,8f,58,04,e1,8c,0d,76,4f,1c,0a,03
"{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}"=hex:51,66,7a,6c,4c,1d,38,12,6c,b9,e1,
ef,a6,de,34,09,fa,9d,f8,59,8a,63,c9,f6
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=hex:51,66,7a,6c,4c,1d,38,12,11,7f,11,
d0,78,5b,08,05,de,bb,01,03,dd,4c,30,54
"{855F3B16-6D32-4FE6-8A56-BBB695989046}"=hex:51,66,7a,6c,4c,1d,38,12,78,38,4c,
81,00,23,88,0a,f5,40,f8,f6,90,c6,d4,52
"{95B7759C-8C7F-4BF1-B163-73684A933233}"=hex:51,66,7a,6c,4c,1d,38,12,f2,76,a4,
91,4d,c2,9f,0e,ce,75,30,28,4f,cd,76,27
"{759D9886-0C6F-4498-BAB6-4A5F47C6C72F}"=hex:51,66,7a,6c,4c,1d,38,12,e8,9b,8e,
71,5d,42,f6,01,c5,a0,09,1f,42,98,83,3b
"{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}"=hex:51,66,7a,6c,4c,1d,38,12,82,eb,dd,
21,02,19,d2,04,f4,4e,61,9d,cd,f5,c8,34
"{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}"=hex:51,66,7a,6c,4c,1d,38,12,c3,d3,96,
33,cd,f1,98,02,c0,4d,e6,c7,c4,3c,ba,cd
"{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}"=hex:51,66,7a,6c,4c,1d,38,12,7c,f0,b1,
38,5c,21,3d,0e,d9,78,0d,25,e1,c9,8c,d4
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{21347690-EC41-4F9A-8887-1F4AEE672439}"=hex:51,66,7a,6c,4c,1d,38,12,fe,75,27,
25,73,a2,f4,0a,f7,91,5c,0a,eb,39,60,2d
"{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16,
fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17
"{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9,
b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:93,45,d4,b3,31,26,cd,01
.
[HKEY_USERS\S-1-5-21-813944393-3697655055-1528102837-1000\Software\SecuROM\License information*]
"datasecu"=hex:ce,0b,12,f3,af,22,fe,0f,35,78,c7,81,60,4a,0d,4a,be,1d,7b,6a,13,
c7,27,a5,9e,a0,f3,a2,8c,d3,9e,3e,92,06,cb,f8,0f,f6,0e,58,7e,50,98,51,88,cb,\
"rkeysecu"=hex:11,b9,26,9b,3a,d9,3d,3b,ed,3f,c2,c2,5c,2e,85,0f
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
Celkový čas: 2012-10-24 17:26:26
ComboFix-quarantined-files.txt 2012-10-24 15:26
.
Před spuštěním: Volných bajtů: 114 936 860 672
Po spuštění: Volných bajtů: 115 158 343 680
.
- - End Of File - - A97D95F705973F15A72E2376A9702B69

Re: Pc naběhne až po několikanásobném restartu

Napsal: 24 říj 2012 17:55
od Rudy
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
KillAll::

Files::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\programdata\Babylon
c:\users\matej\AppData\Roaming\Babylon
c:\programdata\Ask
c:\program files (x86)\Winamp Toolbar
c:\progra~2\IMESHA~1\Mediabar

Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"=-
[-HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[-HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[-HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[-HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]
[-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
[-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{bff6b2ca-366c-4a90-b685-d87776deb0d2}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{bff6b2ca-366c-4a90-b685-d87776deb0d2}"=-
[-HKEY_CLASSES_ROOT\clsid\{bff6b2ca-366c-4a90-b685-d87776deb0d2}]

Firefox::
FF - ProfilePath - c:\users\matej\AppData\Roaming\Mozilla\Firefox\Profiles\h39lm6ue.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/sli ... ie7&query=
FF - prefs.js: browser.startup.homepage - hxxp://search.imesh.net
FF - prefs.js: keyword.URL - hxxp://dts.search-results.com/sr?src=ff ... PN10653&q=
FF - prefs.js: browser.search.selectedEngine - Search Results
FF - ExtSQL: 2012-09-29 19:34; {bfc39e47-d643-4dc2-aa1d-61377501c844}; c:\users\matej\AppData\Roaming\Mozilla\Firefox\Profiles\h39lm6ue.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}
FF - ExtSQL: !HIDDEN! 2011-01-21 15:00; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);

RegLock::
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}][HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]

RegNull::
[HKEY_USERS\S-1-5-21-813944393-3697655055-1528102837-1000\Software\SecuROM\License information*]

Reboot::
Uložte na plochu jako CFScript.txt. pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek

Re: Pc naběhne až po několikanásobném restartu

Napsal: 24 říj 2012 19:19
od PredyP
ComboFix 12-10-24.02 - matej 24.10.2012 19:56:48.2.2 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.2046.970 [GMT 2:00]
Spuštěný z: c:\users\matej\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\matej\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\progra~2\IMESHA~1\Mediabar
c:\progra~2\IMESHA~1\Mediabar\Datamngr\BrowserConnection.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\datamngr.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\datamngrUI.exe
c:\progra~2\IMESHA~1\Mediabar\Datamngr\DnsBHO.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlp.xpt
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF10.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF11.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF12.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF13.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF14.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF15.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF3.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF4.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF5.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF6.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF7.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF8.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF9.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\DataMngr.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\DnsBHO.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\Error404BHO.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\NewTabBHO.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\overlay.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\overlay.xul
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\RelatedSearch.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\RequestPreserver.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\SearchBHO.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\SettingManager.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\content\Settings.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\chrome.manifest
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\chrome.manifest.alt
c:\progra~2\IMESHA~1\Mediabar\Datamngr\FirefoxExtension\install.rdf
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\css\new-tab.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\images\fav_amazon.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\images\fav_ebay.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\images\fav_facebook.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\images\fav_fantastigames.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\images\fav_ftalk.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\images\fav_youtube.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\images\IDR_WEBSTORE_ICON.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\images\imesh_logo_128.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\config\skin\new-tab.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\lib\analytics.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\lib\constant.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\lib\default-config.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\lib\jquery.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\lib\localStorage.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\lib\new-tab.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\lib\preferences.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\manifest.json
c:\progra~2\IMESHA~1\Mediabar\Datamngr\ChromeExtension\OurLocalPage.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\IEBHO.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\installhelper.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\as_guid.dat
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\components\windowmediator.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\dtUser.exe
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\custom.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\about.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\custom.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\dtxpanel.xul
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\dtxpaneltransparent.xul
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\dtxpanelwin.xul
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\dtxprefwin.xul
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\dtxtransparentwin.xul
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\dtxwin.xul
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\emailnotifierproviders.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\external.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\neterror.xhtml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\rsspreview.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\rsswin.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\rsswin.xsl
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\lib\wmpstreamer.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\modules\datastore.jsm
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\modules\nsDragAndDrop.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\neterror.xhtml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\preferences.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\template.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\toolbar.htm
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\toolbar.xul
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\vmncode.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\vmnrsswin.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_icon.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_iconFF.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_iconPressed.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_iconPressedFF.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_pref_icon.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\thumbs\tb_thumb_icon.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\widget.jsw
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\widget.jsww
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\com.djboxservice.dj.DJBox\widget.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-buffering.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-connecting.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-ico.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-playing.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta-stopped.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\radiobeta.ico
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\tb_icon.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\widget.jsw
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\content\widgets\net.vmn.www.RadioBeta\widget.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\data\search\engines.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\data\search\search.xsl
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\data\weather\icons.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\locale\lib\en.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\locale\locale.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\locale\toolbar\de.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\locale\toolbar\en.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\locale\toolbar\es.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\locale\toolbar\fr.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\locale\toolbar\it.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\blip.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\bluelite.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\bluesky.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\btn-search-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\btn-search.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\btn-settings-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\btn-settings.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\btn-widgets-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\btn-widgets.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\btn_settings.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\custom.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\dailymotion.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\divider.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\ebay.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\facebook.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\find-videos.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\grey.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\icon_games.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\images.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\add.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\alexabutton.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\aol.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\arrow-dn.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\arrow-right-disabled.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\arrow-right.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\arrow-up.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btn-divider.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btn-end.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btn-mdl.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btn-mdl_ff.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btn-start.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btnover-divider.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btnover-end.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btnover-mdl.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btnover-mdl_ff.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\bg-btnover-start.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\blank.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btn-widgets-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btn-widgets.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btn_slider.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btnback-down-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btnback-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btnleft-down-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btnleft-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btnright-down-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\btnright-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\button-splitter-down-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\button-splitter-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\button-splitter.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\collapse.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\debugbar\debug.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\dtx-test.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\dtx.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\edit-back-hot.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\edit-back.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\expand.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\found.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\gmail.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\highlight.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\highlight_blue.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\highlight_cyan.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\highlight_lime.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\highlight_magenta.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\highlight_yellow.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\hotmail.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\checkmark.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\chevron.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\imap.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\lastsearch-thumb-back.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\launchers.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\loadingMid.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\lock.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\logo-separator.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\mailcom.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menu_bg-basic.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menu_separator_bar.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menu_separator_white.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menuitem-splitter.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menuitemback-down-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menuitemback-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menuitemleft-down-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menuitemleft-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menuitemleft.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menuitemright-down-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\menuitemright-vista.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\minus.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\modify.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\move.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\movetarget.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\css\panels.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\css\popupAbout.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\css\popupGames.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\css\popupWidgets.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\css\dialog.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\bg.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\btn-search.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\btn-wide-close-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\btn-wide-close.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\default.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\tab-off-l.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\tab-off-r.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\tab-on-l.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\tab-on-r.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\transparent.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\ttlbar-left.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\ttlbar-mdl.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\ttlbar-right.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\win-btm-left.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\win-btm-mdl.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\win-btm-right-resize.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\win-btm-right.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\win-left.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\images\win-right.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\main.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\main.html.bak
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\scripts\defscript.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\default\scripts\defscript.js.bak
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\footer.htm
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\gamecategory.xsl
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\gameData.js
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\gameList.xsl
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\gametype.xsl
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\arrow-dn.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\arrow-sml-drop.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\arrow-sml.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\arrow-up.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\arrowr-bluew5.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\bg-aboutbox.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\bg-btnover.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\bg-pnl520x390.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-addtoolbar-left-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-addtoolbar-left.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-addtoolbar-right.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-back.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-close-grey.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-close-greyover.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-drag.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-mdl-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-mdl.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-moredetails.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-next-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-next.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-play-left-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-play-left.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-previous-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-previous.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-right-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-search-pnlbtm-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-search-pnlbtm.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-try-left-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\btn-try-left.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\bullet-orange.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\gamethumb-on.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\gamethumb2-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\ico-calendar.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\ico-dollar.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\ico-download.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\ico-joystick24.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\ico-news24.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\ico-play.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\ico-tags.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\icon-Add.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\icon-download.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\icon-Info.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\icon-play.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\icon-shop.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\menul-bgon.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\menul-bgover.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\panel-botm-noscroll.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scroll-bg-206.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scroll-bg.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scroll-topwin.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scrollb-disable.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scrollb-down.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scrollb-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scrollb.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scrollt-disable.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scrollt-down.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scrollt-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\scrollt.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\searchbox-pnlbtm.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\star_x_grey.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\star_x_orange.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\throbber.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\TRUSTe_about.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\view-detailed-on.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\view-detailed-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\view-thumb-on.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\view-thumb-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\widgets-square-16px.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\widgets-square-24px.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\images\widgets.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\initHTML.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\popupGames.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\popupHTML.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\popupWidgets.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\panels\scroll.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\plus.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\pop.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\radio.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\reload.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\remove.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\rename.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\resize-box.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\rss.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\rsschannelback.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\RSSLogo.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\rsstabdivider.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\scroll-left.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\scroll-right.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\search-go.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\search.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\separator.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\text-ellipsis.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\throbber.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\toolbarsplitter.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\transparent_1px.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_02.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_03.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_04.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_06.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_07.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_08.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_09.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_10.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_11.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_12.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_13.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_14.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_15.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_16.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_18.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_19.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_20.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\border_21.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\btn-close-grey.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\btn-close-greyover.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\close-hot.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\close-normal.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\loadingMid.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\paneltemplate.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\proxy.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\template.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\template.html.bak
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\template.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\templateFF.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\uwa\throbber.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\icons\cond999.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\icons\icons.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\icons\na-s.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\icons\na-t.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\icons\na.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\icons\weather.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\add.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\arrowr-bluew5.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\bg-pnl.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue-whitebg.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\box-check.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\box-uncheck.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btn-close-grey.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btn-close-greyover.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btn-delete.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next-off.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous-off.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid-s.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\ico-check.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\options-weather.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\over-blue.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\over-orange.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug2.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\radio-checked.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\radio-unchecked.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\searchbox-pnlbtm.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\images\weather-contour.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\popupWeather.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\weatherbutton\panels\popupWeather.html
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lib\yahoo.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\lichen.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\logo-about.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\logo-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\logo-separator.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\logo.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\menuseparatorback.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\metacafe.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\modify-save.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\modify.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\modifyhot.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\namespacetoolbar.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\options-search.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\options\options-main.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\options\options-search.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\options\options-weather.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\options\options-weather.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\options\options-widgets.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\orange.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\search-over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\search_icon.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\searchbar\searchbar-background-left.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\searchbar\searchbar-background-middle.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\searchbar\searchbar-background-right.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\setting_stb_16x.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\settings.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\settings_stb_19x.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\settings_stb_19x_over.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\skin-bluelite.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\skin-bluesky.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\skin-grey.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\skin-lichen.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\skin-orange.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\skin-yellow.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\skin.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\sv.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\throbber.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\toolbarsplitter.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\TRUSTe_about.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\tv.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\twitter.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\veoh.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\video.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\vimeo.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\vmn.css
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\web.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\websearch.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\yellow.gif
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\chrome\skin\youtube.png
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\install.ico
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\manifest.xml
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\searchresultstb.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\uninstall.exe
c:\progra~2\IMESHA~1\Mediabar\Datamngr\x64\BrowserConnection.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\x64\datamngr.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\x64\datamngrUI.exe
c:\progra~2\IMESHA~1\Mediabar\Datamngr\x64\DnsBHO.dll
c:\progra~2\IMESHA~1\Mediabar\Datamngr\x64\IEBHO.dll
c:\progra~2\IMESHA~1\Mediabar\sysid.ini
c:\progra~2\IMESHA~1\Mediabar\uninstall.exe
c:\program files (x86)\Winamp Toolbar
c:\program files (x86)\Winamp Toolbar\apopup.dll
c:\program files (x86)\Winamp Toolbar\install.log
c:\program files (x86)\Winamp Toolbar\msvcr71.dll
c:\program files (x86)\Winamp Toolbar\uninstall.exe
c:\program files (x86)\Winamp Toolbar\winamptb.dll
c:\program files (x86)\Winamp Toolbar\winampTbServer.exe
c:\program files (x86)\Winamp Toolbar\winamptbServerPS.dll
c:\program files (x86)\Winamp Toolbar\xprt5.dll
c:\programdata\Ask
c:\programdata\Ask\APN-Stub\ATU2\Local\APNIC.dll
c:\programdata\Babylon
c:\users\matej\AppData\Roaming\Babylon
c:\users\matej\AppData\Roaming\Babylon\log_file.txt
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-24 do 2012-10-24 )))))))))))))))))))))))))))))))
.
.
2012-10-24 18:08 . 2012-10-24 18:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-23 17:46 . 2012-10-23 17:47 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2012-10-23 15:20 . 2012-10-23 15:20 -------- d-----w- c:\users\matej\AppData\Roaming\Malwarebytes
2012-10-23 15:19 . 2012-10-23 15:19 -------- d-----w- c:\programdata\Malwarebytes
2012-10-23 15:19 . 2012-10-23 15:19 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-10-23 15:19 . 2012-09-29 17:54 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-22 17:50 . 2012-10-22 17:55 -------- d-----w- c:\program files\trend micro
2012-10-22 17:50 . 2012-10-22 17:50 -------- d-----w- C:\rsit
2012-10-22 16:35 . 2012-10-22 16:35 935175 ----a-w- C:\RSITx64.exe
2012-10-15 11:37 . 2012-10-15 11:37 -------- d-----w- c:\users\matej\AppData\Local\Criterion Games
2012-10-13 16:32 . 2012-10-13 16:32 -------- d-----w- c:\users\matej\AppData\Roaming\MusicNet
2012-10-13 16:32 . 2012-10-13 16:32 -------- d-----w- c:\programdata\2BD1
2012-10-13 16:32 . 2012-10-13 17:39 -------- d-----w- c:\programdata\boost_interprocess
2012-10-13 16:32 . 2012-10-13 16:32 -------- d-----w- c:\users\matej\AppData\Local\iMesh
2012-10-13 16:31 . 2012-10-24 18:08 -------- d-----w- c:\program files (x86)\iMesh Applications
2012-10-13 16:31 . 2012-10-13 16:31 -------- d-----w- c:\programdata\iMesh
2012-10-13 16:30 . 2012-10-13 16:33 -------- dc-h--w- c:\programdata\{3002E08A-4925-4821-8D06-D5FC4EBFF034}
2012-10-13 16:30 . 2012-10-13 16:30 -------- d-----w- c:\users\matej\AppData\Local\PackageAware
2012-10-12 12:32 . 2012-06-02 00:20 174592 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-12 12:32 . 2012-06-02 00:20 132096 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-12 12:32 . 2012-06-02 00:20 1268736 ----a-w- c:\windows\system32\crypt32.dll
2012-10-12 12:32 . 2012-06-02 00:02 985088 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-10-12 12:32 . 2012-06-02 00:02 98304 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-10-12 12:32 . 2012-06-02 00:02 133120 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-10-11 08:47 . 2012-09-13 13:45 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-11 08:47 . 2012-09-13 13:28 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-10-10 20:33 . 2012-10-10 20:33 20044 ----a-w- c:\windows\SysWow64\ealregsnapshot1.reg
2012-10-10 20:17 . 2012-10-11 10:37 -------- d-----w- c:\users\matej\AppData\Roaming\vlc
2012-10-10 20:13 . 2012-10-10 20:13 -------- d-----w- c:\program files (x86)\VideoLAN
2012-10-10 19:18 . 2012-10-10 19:05 13497344 ----a-w- C:\EA Core.msi
2012-10-10 19:05 . 2012-10-10 20:32 -------- d-----w- c:\users\matej\AppData\Local\Downloaded Installations
2012-10-10 18:57 . 2012-08-24 16:07 218624 ----a-w- c:\windows\system32\wintrust.dll
2012-10-10 18:57 . 2012-08-24 15:53 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-10-10 18:54 . 2012-08-29 11:40 4699520 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-10 17:49 . 2012-10-10 17:49 -------- d-----w- c:\program files (x86)\TorrentHandler
2012-10-10 17:48 . 2012-10-10 17:49 -------- d-----w- c:\program files (x86)\1ClickDownload
2012-10-10 17:44 . 2012-10-10 17:44 -------- d-----w- c:\programdata\Browser Manager
2012-10-10 17:43 . 2012-10-10 17:43 -------- d-----w- c:\program files (x86)\YourFileDownloader
2012-10-10 17:43 . 2012-10-10 17:43 -------- d-----w- c:\users\matej\AppData\Roaming\YourFileDownloader
2012-10-10 17:21 . 2012-10-10 17:21 -------- d-----w- c:\programdata\Electronic Arts
2012-10-06 15:49 . 2012-10-06 15:49 -------- d-----w- c:\programdata\Big Fish Games
2012-10-06 15:48 . 2012-10-06 15:49 -------- d-----w- c:\program files (x86)\bfgclient
2012-10-06 15:46 . 2012-10-06 15:49 -------- d-----w- C:\BigFishGamesCache
2012-09-29 17:34 . 2012-09-29 17:34 -------- d-----w- c:\program files (x86)\DsNET Corp
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-21 10:51 . 2006-11-02 12:35 65309168 ----a-w- c:\windows\system32\mrt.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1555968]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 138240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 336384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~3\browse~1\23765~1.24\{16cdf~1\browse~1.dll c:\progra~3\browse~1\23765~1.24\{16cdf~1\browsemngr.dll c:\progra~3\browse~1\23765~1.24\{16cdf~1\browsemngr.dll
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Themes
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-05-27 10:11]
.
2012-10-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-05-27 10:11]
.
2012-06-05 c:\windows\Tasks\User_Feed_Synchronization-{1090D40C-B40A-4F60-8A28-70A2C046C2DC}.job
- c:\windows\system32\msfeedssync.exe [2012-03-08 17:34]
.
.
--------- X64 Entries -----------
.
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.imesh.net
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Winamp Search - c:\programdata\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files (x86)\ICQ7.6\ICQ.exe
TCP: Interfaces\{EF507DC6-91FD-4210-B9AE-3B3AD32C4063}: NameServer = 192.168.1.1
FF - ProfilePath - c:\users\matej\AppData\Roaming\Mozilla\Firefox\Profiles\h39lm6ue.default\
FF - ExtSQL: 2012-09-29 19:34; {bfc39e47-d643-4dc2-aa1d-61377501c844}; c:\users\matej\AppData\Roaming\Mozilla\Firefox\Profiles\h39lm6ue.default\extensions\{bfc39e47-d643-4dc2-aa1d-61377501c844}
FF - ExtSQL: !HIDDEN! 2011-01-21 15:00; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
user_pref('extensions.autoDisableScopes', 0);user_pref('security.csp.enable', false);user_pref('security.OCSP.enabled', 0);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{BE7A24F5-69CB-4708-B77B-B1EDA6043B95} - c:\progra~2\IMESHA~1\Mediabar\Datamngr\BROWSE~1.DLL
BHO-{bff6b2ca-366c-4a90-b685-d87776deb0d2} - c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
Toolbar-10 - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-imeshtoolbar2 - c:\progra~2\IMESHA~1\Mediabar\Datamngr\SRTOOL~1\uninstall.exe
AddRemove-Shockwave - c:\windows\System32\Macromed\SHOCKW~1\UNWISE.EXE
AddRemove-Winamp Toolbar - c:\program files (x86)\Winamp Toolbar\uninstall.exe
AddRemove-{6889EE56-1816-4E89-94DF-9F56E7804039}_is1 - c:\program files (x86)\Valve\unins000.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\programdata\Browser Manager\2.3.765.24\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
c:\programdata\Browser Manager\2.3.765.24\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
.
**************************************************************************
.
Celkový čas: 2012-10-24 20:18:01 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-24 18:17
ComboFix2.txt 2012-10-24 15:26
.
Před spuštěním: Volných bajtů: 114 411 515 904
Po spuštění: Volných bajtů: 114 477 637 632
.
- - End Of File - - 25CFB8921FF0CF9DF39D18CBC44AC1C6

Re: Pc naběhne až po několikanásobném restartu

Napsal: 24 říj 2012 19:53
od Rudy
Smazáno, log již vypadá OK. Nastala nějaká změna?

Re: Pc naběhne až po několikanásobném restartu

Napsal: 24 říj 2012 20:02
od PredyP
Zatím to vypadá dobře ale čas ukáže určitě bych se ozval.
:worship: :worship: Děkuji za pomoc

Re: Pc naběhne až po několikanásobném restartu

Napsal: 24 říj 2012 20:05
od Rudy
OK. Nemáte zač!
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz