Log z Combofix:
ComboFix 12-07-08.02 - Ondra 11.07.2012 12:19:22.2.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4096.2613 [GMT 2:00]
Spuštěný z: c:\users\Ondra\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Ondra\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
FILE ::
"c:\users\Ondra\AppData\Local\Google\Update\GoogleUpdate.exe"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3665984473-3663502770-289684553-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3665984473-3663502770-289684553-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\found.000
c:\found.000\dir0000.chk\MSI12AF.tmp
c:\found.000\dir0000.chk\MSI12B1.tmp
c:\found.000\dir0000.chk\MSI12E0.tmp
c:\found.000\dir0000.chk\MSI12F1.tmp
c:\found.000\dir0000.chk\MSI32DD.tmp
c:\found.000\dir0000.chk\MSI3D98.tmp
c:\found.000\dir0000.chk\MSI3DA9.tmp
c:\found.000\dir0000.chk\MSI3DAA.tmp
c:\found.000\dir0000.chk\MSI3DCB.tmp
c:\found.000\dir0000.chk\MSI3DDB.tmp
c:\found.000\dir0000.chk\MSI3DEC.tmp
c:\found.000\dir0000.chk\MSI3DFD.tmp
c:\found.000\dir0000.chk\MSI3E0E.tmp
c:\found.000\dir0000.chk\MSI3E40.tmp
c:\found.000\dir0000.chk\MSI3E62.tmp
c:\found.000\dir0000.chk\MSI40.tmp
c:\found.000\dir0000.chk\MSI4039.tmp
c:\found.000\dir0000.chk\MSI4111.tmp
c:\found.000\dir0000.chk\MSI4112.tmp
c:\found.000\dir0000.chk\MSI4165.tmp
c:\found.000\dir0000.chk\MSI4487.tmp
c:\found.000\dir0000.chk\MSI44A7.tmp
c:\found.000\dir0000.chk\MSI44B8.tmp
c:\found.000\dir0000.chk\MSI44C9.tmp
c:\found.000\dir0000.chk\MSI46D.tmp
c:\found.000\dir0000.chk\MSI49EA.tmp
c:\found.000\dir0000.chk\MSI4C6E.tmp
c:\found.000\dir0000.chk\MSI4C7E.tmp
c:\found.000\dir0000.chk\MSI4C90.tmp
c:\found.000\dir0000.chk\MSI4CF4.tmp
c:\found.000\dir0000.chk\MSI4D08.tmp
c:\found.000\dir0000.chk\MSI4DBF.tmp
c:\found.000\dir0000.chk\MSI4DCF.tmp
c:\found.000\dir0000.chk\MSI4E3.tmp
c:\found.000\dir0000.chk\MSI4F0B.tmp
c:\found.000\dir0000.chk\MSI4F1C.tmp
c:\found.000\dir0000.chk\MSI4F1E.tmp
c:\found.000\dir0000.chk\MSI4F3D.tmp
c:\found.000\dir0000.chk\MSI4F4E.tmp
c:\found.000\dir0000.chk\MSI4F5F.tmp
c:\found.000\dir0000.chk\MSI4F7F.tmp
c:\found.000\dir0000.chk\MSI51.tmp
c:\found.000\dir0000.chk\MSI51F2.tmp
c:\found.000\dir0000.chk\MSI5202.tmp
c:\found.000\dir0000.chk\MSI522.tmp
c:\found.000\dir0000.chk\MSI523.tmp
c:\found.000\dir0000.chk\MSI5427.tmp
c:\found.000\dir0000.chk\MSI5448.tmp
c:\found.000\dir0000.chk\MSI5459.tmp
c:\found.000\dir0000.chk\MSI5469.tmp
c:\found.000\dir0000.chk\MSI547A.tmp
c:\found.000\dir0000.chk\MSI54DC.tmp
c:\found.000\dir0000.chk\MSI54FC.tmp
c:\found.000\dir0000.chk\MSI550D.tmp
c:\found.000\dir0000.chk\MSI554.tmp
c:\found.000\dir0000.chk\MSI558E.tmp
c:\found.000\dir0000.chk\MSI55AE.tmp
c:\found.000\dir0000.chk\MSI55CF.tmp
c:\found.000\dir0000.chk\MSI55E0.tmp
c:\found.000\dir0000.chk\MSI55F0.tmp
c:\found.000\dir0000.chk\MSI5708.tmp
c:\found.000\dir0000.chk\MSI5719.tmp
c:\found.000\dir0000.chk\MSI5729.tmp
c:\found.000\dir0000.chk\MSI575.tmp
c:\found.000\dir0000.chk\MSI578D.tmp
c:\found.000\dir0000.chk\MSI57A0.tmp
c:\found.000\dir0000.chk\MSI57AE.tmp
c:\found.000\dir0000.chk\MSI57BF.tmp
c:\found.000\dir0000.chk\MSI5803.tmp
c:\found.000\dir0000.chk\MSI5814.tmp
c:\found.000\dir0000.chk\MSI5825.tmp
c:\found.000\dir0000.chk\MSI586.tmp
c:\found.000\dir0000.chk\MSI5894.tmp
c:\found.000\dir0000.chk\MSI58A5.tmp
c:\found.000\dir0000.chk\MSI58B6.tmp
c:\found.000\dir0000.chk\MSI58C7.tmp
c:\found.000\dir0000.chk\MSI597.tmp
c:\found.000\dir0000.chk\MSI5982.tmp
c:\found.000\dir0000.chk\MSI5984.tmp
c:\found.000\dir0000.chk\MSI59A3.tmp
c:\found.000\dir0000.chk\MSI59F5.tmp
c:\found.000\dir0000.chk\MSI5A06.tmp
c:\found.000\dir0000.chk\MSI5A07.tmp
c:\found.000\dir0000.chk\MSI5A17.tmp
c:\found.000\dir0000.chk\MSI5A28.tmp
c:\found.000\dir0000.chk\MSI5A39.tmp
c:\found.000\dir0000.chk\MSI5A49.tmp
c:\found.000\dir0000.chk\MSI5A4A.tmp
c:\found.000\dir0000.chk\MSI5A7.tmp
c:\found.000\dir0000.chk\MSI5A8.tmp
c:\found.000\dir0000.chk\MSI5AC0.tmp
c:\found.000\dir0000.chk\MSI5AD0.tmp
c:\found.000\dir0000.chk\MSI5AD1.tmp
c:\found.000\dir0000.chk\MSI5AE2.tmp
c:\found.000\dir0000.chk\MSI5B9.tmp
c:\found.000\dir0000.chk\MSI5BAC.tmp
c:\found.000\dir0000.chk\MSI5BBD.tmp
c:\found.000\dir0000.chk\MSI5BDE.tmp
c:\found.000\dir0000.chk\MSI5C00.tmp
c:\found.000\dir0000.chk\MSI5C9.tmp
c:\found.000\dir0000.chk\MSI5CBC.tmp
c:\found.000\dir0000.chk\MSI5CCE.tmp
c:\found.000\dir0000.chk\MSI5CEB.tmp
c:\found.000\dir0000.chk\MSI5CEC.tmp
c:\found.000\dir0000.chk\MSI5CFD.tmp
c:\found.000\dir0000.chk\MSI5D0D.tmp
c:\found.000\dir0000.chk\MSI5DA4.tmp
c:\found.000\dir0000.chk\MSI5DC.tmp
c:\found.000\dir0000.chk\MSI5E08.tmp
c:\found.000\dir0000.chk\MSI5E17.tmp
c:\found.000\dir0000.chk\MSI5E28.tmp
c:\found.000\dir0000.chk\MSI5E7A.tmp
c:\found.000\dir0000.chk\MSI5E9B.tmp
c:\found.000\dir0000.chk\MSI5EB.tmp
c:\found.000\dir0000.chk\MSI5EC.tmp
c:\found.000\dir0000.chk\MSI5EFA.tmp
c:\found.000\dir0000.chk\MSI5F2A.tmp
c:\found.000\dir0000.chk\MSI5F5D.tmp
c:\found.000\dir0000.chk\MSI5FC9.tmp
c:\found.000\dir0000.chk\MSI5FD.tmp
c:\found.000\dir0000.chk\MSI6029.tmp
c:\found.000\dir0000.chk\MSI604A.tmp
c:\found.000\dir0000.chk\MSI6065.tmp
c:\found.000\dir0000.chk\MSI60F.tmp
c:\found.000\dir0000.chk\MSI60F2.tmp
c:\found.000\dir0000.chk\MSI611F.tmp
c:\found.000\dir0000.chk\MSI6149.tmp
c:\found.000\dir0000.chk\MSI615C.tmp
c:\found.000\dir0000.chk\MSI616B.tmp
c:\found.000\dir0000.chk\MSI617B.tmp
c:\found.000\dir0000.chk\MSI618B.tmp
c:\found.000\dir0000.chk\MSI619B.tmp
c:\found.000\dir0000.chk\MSI61AB.tmp
c:\found.000\dir0000.chk\MSI61BC.tmp
c:\found.000\dir0000.chk\MSI61CE.tmp
c:\found.000\dir0000.chk\MSI61E3.tmp
c:\found.000\dir0000.chk\MSI61EE.tmp
c:\found.000\dir0000.chk\MSI61FF.tmp
c:\found.000\dir0000.chk\MSI6223.tmp
c:\found.000\dir0000.chk\MSI6240.tmp
c:\found.000\dir0000.chk\MSI6255.tmp
c:\found.000\dir0000.chk\MSI6261.tmp
c:\found.000\dir0000.chk\MSI6271.tmp
c:\found.000\dir0000.chk\MSI6281.tmp
c:\found.000\dir0000.chk\MSI6293.tmp
c:\found.000\dir0000.chk\MSI62AD.tmp
c:\found.000\dir0000.chk\MSI62C7.tmp
c:\found.000\dir0000.chk\MSI62D3.tmp
c:\found.000\dir0000.chk\MSI62E.tmp
c:\found.000\dir0000.chk\MSI62EC.tmp
c:\found.000\dir0000.chk\MSI62F9.tmp
c:\found.000\dir0000.chk\MSI630.tmp
c:\found.000\dir0000.chk\MSI6307.tmp
c:\found.000\dir0000.chk\MSI6316.tmp
c:\found.000\dir0000.chk\MSI6328.tmp
c:\found.000\dir0000.chk\MSI6338.tmp
c:\found.000\dir0000.chk\MSI6349.tmp
c:\found.000\dir0000.chk\MSI634A.tmp
c:\found.000\dir0000.chk\MSI6359.tmp
c:\found.000\dir0000.chk\MSI636A.tmp
c:\found.000\dir0000.chk\MSI637B.tmp
c:\found.000\dir0000.chk\MSI637C.tmp
c:\found.000\dir0000.chk\MSI638C.tmp
c:\found.000\dir0000.chk\MSI639D.tmp
c:\found.000\dir0000.chk\MSI63AD.tmp
c:\found.000\dir0000.chk\MSI63BE.tmp
c:\found.000\dir0000.chk\MSI63CF.tmp
c:\found.000\dir0000.chk\MSI63D0.tmp
c:\found.000\dir0000.chk\MSI63E.tmp
c:\found.000\dir0000.chk\MSI63E1.tmp
c:\found.000\dir0000.chk\MSI63F.tmp
c:\found.000\dir0000.chk\MSI63F1.tmp
c:\found.000\dir0000.chk\MSI6402.tmp
c:\found.000\dir0000.chk\MSI6412.tmp
c:\found.000\dir0000.chk\MSI6413.tmp
c:\found.000\dir0000.chk\MSI6427.tmp
c:\found.000\dir0000.chk\MSI6460.tmp
c:\found.000\dir0000.chk\MSI6482.tmp
c:\found.000\dir0000.chk\MSI64CA.tmp
c:\found.000\dir0000.chk\MSI64DB.tmp
c:\found.000\dir0000.chk\MSI6502.tmp
c:\found.000\dir0000.chk\MSI653.tmp
c:\found.000\dir0000.chk\MSI6534.tmp
c:\found.000\dir0000.chk\MSI653B.tmp
c:\found.000\dir0000.chk\MSI69FB.tmp
c:\found.000\dir0000.chk\MSI6A18.tmp
c:\found.000\dir0000.chk\MSI6A29.tmp
c:\found.000\dir0000.chk\MSI6C38.tmp
c:\found.000\dir0000.chk\MSI6C58.tmp
c:\found.000\dir0000.chk\MSI6C69.tmp
c:\found.000\dir0000.chk\MSI6CAE.tmp
c:\found.000\dir0000.chk\MSI6CB0.tmp
c:\found.000\dir0000.chk\MSI6CF2.tmp
c:\found.000\dir0000.chk\MSI6D02.tmp
c:\found.000\dir0000.chk\MSI6D4F.tmp
c:\found.000\dir0000.chk\MSI6D5F.tmp
c:\found.000\dir0000.chk\MSI6D70.tmp
c:\found.000\dir0000.chk\MSI6D80.tmp
c:\found.000\dir0000.chk\MSI6DE2.tmp
c:\found.000\dir0000.chk\MSI6DF3.tmp
c:\found.000\dir0000.chk\MSI6E03.tmp
c:\found.000\dir0000.chk\MSI6E15.tmp
c:\found.000\dir0000.chk\MSI6E25.tmp
c:\found.000\dir0000.chk\MSI6E56.tmp
c:\found.000\dir0000.chk\MSI6E66.tmp
c:\found.000\dir0000.chk\MSI6E77.tmp
c:\found.000\dir0000.chk\MSI6ECA.tmp
c:\found.000\dir0000.chk\MSI6F2B.tmp
c:\found.000\dir0000.chk\MSI6F4C.tmp
c:\found.000\dir0000.chk\MSI6F5D.tmp
c:\found.000\dir0000.chk\MSI70AA.tmp
c:\found.000\dir0000.chk\MSI70BC.tmp
c:\found.000\dir0000.chk\MSI70CB.tmp
c:\found.000\dir0000.chk\MSI713E.tmp
c:\found.000\dir0000.chk\MSI714F.tmp
c:\found.000\dir0000.chk\MSI715F.tmp
c:\found.000\dir0000.chk\MSI7170.tmp
c:\found.000\dir0000.chk\MSI7180.tmp
c:\found.000\dir0000.chk\MSI76E2.tmp
c:\found.000\dir0000.chk\MSI76F2.tmp
c:\found.000\dir0000.chk\MSI77E5.tmp
c:\found.000\dir0000.chk\MSI77F6.tmp
c:\found.000\dir0000.chk\MSI7816.tmp
c:\found.000\dir0000.chk\MSI78AB.tmp
c:\found.000\dir0000.chk\MSI796E.tmp
c:\found.000\dir0000.chk\MSI7990.tmp
c:\found.000\dir0000.chk\MSI79F1.tmp
c:\found.000\dir0000.chk\MSI7A11.tmp
c:\found.000\dir0000.chk\MSI7A22.tmp
c:\found.000\dir0000.chk\MSI7BF.tmp
c:\found.000\dir0000.chk\MSI7D92.tmp
c:\found.000\dir0000.chk\MSI7E0.tmp
c:\found.000\dir0000.chk\MSI7E5C.tmp
c:\found.000\dir0000.chk\MSI7E7B.tmp
c:\found.000\dir0000.chk\MSI7EBD.tmp
c:\found.000\dir0000.chk\MSI7ECD.tmp
c:\found.000\dir0000.chk\MSI8177.tmp
c:\found.000\dir0000.chk\MSI824D.tmp
c:\found.000\dir0000.chk\MSI825E.tmp
c:\found.000\dir0000.chk\MSI826F.tmp
c:\found.000\dir0000.chk\MSI83EA.tmp
c:\found.000\dir0000.chk\MSI83FB.tmp
c:\found.000\dir0000.chk\MSI841D.tmp
c:\found.000\dir0000.chk\MSI897B.tmp
c:\found.000\dir0000.chk\MSI898C.tmp
c:\found.000\dir0000.chk\MSI8DDF.tmp
c:\found.000\dir0000.chk\MSI8E00.tmp
c:\found.000\dir0000.chk\MSI8F20.tmp
c:\found.000\dir0000.chk\MSI8F40.tmp
c:\found.000\dir0000.chk\MSI8F58.tmp
c:\found.000\dir0000.chk\MSI8F73.tmp
c:\found.000\dir0000.chk\MSI8FC7.tmp
c:\found.000\dir0000.chk\MSI8FD1.tmp
c:\found.000\dir0000.chk\MSI8FF3.tmp
c:\found.000\dir0000.chk\MSI9325.tmp
c:\found.000\dir0000.chk\MSI932B.tmp
c:\found.000\dir0000.chk\MSI932D.tmp
c:\found.000\dir0000.chk\MSI932E.tmp
c:\found.000\dir0000.chk\MSI9333.tmp
c:\found.000\dir0000.chk\MSI9431.tmp
c:\found.000\dir0000.chk\MSI9444.tmp
c:\found.000\dir0000.chk\MSI97C4.tmp
c:\found.000\dir0000.chk\MSI981.tmp
c:\found.000\dir0000.chk\MSI98C2.tmp
c:\found.000\dir0000.chk\MSI98DF.tmp
c:\found.000\dir0000.chk\MSI98F3.tmp
c:\found.000\dir0000.chk\MSI9B.tmp
c:\found.000\dir0000.chk\MSI9FED.tmp
c:\found.000\dir0000.chk\MSI9FFB.tmp
c:\found.000\dir0000.chk\MSIA01D.tmp
c:\found.000\dir0000.chk\MSIA02D.tmp
c:\found.000\dir0000.chk\MSIA05F.tmp
c:\found.000\dir0000.chk\MSIA072.tmp
c:\found.000\dir0000.chk\MSIA080.tmp
c:\found.000\dir0000.chk\MSIA0C5.tmp
c:\found.000\dir0000.chk\MSIA107.tmp
c:\found.000\dir0000.chk\MSIA116.tmp
c:\found.000\dir0000.chk\MSIA15.tmp
c:\found.000\dir0000.chk\MSIA158.tmp
c:\found.000\dir0000.chk\MSIA178.tmp
c:\found.000\dir0000.chk\MSIA1BA.tmp
c:\found.000\dir0000.chk\MSIA1CB.tmp
c:\found.000\dir0000.chk\MSIA1DC.tmp
c:\found.000\dir0000.chk\MSIA36.tmp
c:\found.000\dir0000.chk\MSIA36F.tmp
c:\found.000\dir0000.chk\MSIA3C7.tmp
c:\found.000\dir0000.chk\MSIA3DB.tmp
c:\found.000\dir0000.chk\MSIA4E0.tmp
c:\found.000\dir0000.chk\MSIA4F1.tmp
c:\found.000\dir0000.chk\MSIA522.tmp
c:\found.000\dir0000.chk\MSIA545.tmp
c:\found.000\dir0000.chk\MSIA565.tmp
c:\found.000\dir0000.chk\MSIA576.tmp
c:\found.000\dir0000.chk\MSIA5A7.tmp
c:\found.000\dir0000.chk\MSIA5B7.tmp
c:\found.000\dir0000.chk\MSIA5D2.tmp
c:\found.000\dir0000.chk\MSIA5E3.tmp
c:\found.000\dir0000.chk\MSIA603.tmp
c:\found.000\dir0000.chk\MSIA623.tmp
c:\found.000\dir0000.chk\MSIA634.tmp
c:\found.000\dir0000.chk\MSIA655.tmp
c:\found.000\dir0000.chk\MSIA675.tmp
c:\found.000\dir0000.chk\MSIA6A5.tmp
c:\found.000\dir0000.chk\MSIA6B7.tmp
c:\found.000\dir0000.chk\MSIA6D8.tmp
c:\found.000\dir0000.chk\MSIA6F7.tmp
c:\found.000\dir0000.chk\MSIA717.tmp
c:\found.000\dir0000.chk\MSIA738.tmp
c:\found.000\dir0000.chk\MSIA759.tmp
c:\found.000\dir0000.chk\MSIA769.tmp
c:\found.000\dir0000.chk\MSIA79A.tmp
c:\found.000\dir0000.chk\MSIA7E9.tmp
c:\found.000\dir0000.chk\MSIA81A.tmp
c:\found.000\dir0000.chk\MSIA82E.tmp
c:\found.000\dir0000.chk\MSIA84A.tmp
c:\found.000\dir0000.chk\MSIA85F.tmp
c:\found.000\dir0000.chk\MSIA881.tmp
c:\found.000\dir0000.chk\MSIA88B.tmp
c:\found.000\dir0000.chk\MSIA8AB.tmp
c:\found.000\dir0000.chk\MSIA8BC.tmp
c:\found.000\dir0000.chk\MSIA8CD.tmp
c:\found.000\dir0000.chk\MSIA8DD.tmp
c:\found.000\dir0000.chk\MSIA8EE.tmp
c:\found.000\dir0000.chk\MSIA996.tmp
c:\found.000\dir0000.chk\MSIA9A7.tmp
c:\found.000\dir0000.chk\MSIA9B7.tmp
c:\found.000\dir0000.chk\MSIA9C8.tmp
c:\found.000\dir0000.chk\MSIA9D9.tmp
c:\found.000\dir0000.chk\MSIA9E9.tmp
c:\found.000\dir0000.chk\MSIA9FB.tmp
c:\found.000\dir0000.chk\MSIAA0C.tmp
c:\found.000\dir0000.chk\MSIAA1B.tmp
c:\found.000\dir0000.chk\MSIAA2C.tmp
c:\found.000\dir0000.chk\MSIAA4E.tmp
c:\found.000\dir0000.chk\MSIAA5E.tmp
c:\found.000\dir0000.chk\MSIAA6E.tmp
c:\found.000\dir0000.chk\MSIAA8F.tmp
c:\found.000\dir0000.chk\MSIAA9F.tmp
c:\found.000\dir0000.chk\MSIAAB0.tmp
c:\found.000\dir0000.chk\MSIAAC1.tmp
c:\found.000\dir0000.chk\MSIAAD3.tmp
c:\found.000\dir0000.chk\MSIAAF7.tmp
c:\found.000\file0000.chk
C:\TDSSKiller_Quarantine
c:\tdsskiller_quarantine\09.07.2012_15.27.24\susp0000\object.ini
c:\tdsskiller_quarantine\09.07.2012_15.27.24\susp0000\svc0000\object.ini
c:\tdsskiller_quarantine\09.07.2012_15.27.24\susp0000\svc0000\tsk0000.dta
c:\tdsskiller_quarantine\09.07.2012_15.27.24\susp0000\svc0000\tsk0000.ini
c:\tdsskiller_quarantine\09.07.2012_15.27.24\susp0001\object.ini
c:\tdsskiller_quarantine\09.07.2012_15.27.24\susp0001\svc0000\object.ini
c:\tdsskiller_quarantine\09.07.2012_15.27.24\susp0001\svc0000\tsk0000.dta
c:\tdsskiller_quarantine\09.07.2012_15.27.24\susp0001\svc0000\tsk0000.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-06-11 do 2012-07-11 )))))))))))))))))))))))))))))))
.
.
2012-07-11 10:25 . 2012-07-11 10:25 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-10 08:01 . 2012-06-18 01:12 9013136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{685F33F0-E9FC-4266-86C2-3C01C1971962}\mpengine.dll
2012-07-09 14:18 . 2012-07-11 10:25 -------- d-----w- c:\users\Rodiče\AppData\Local\temp
2012-07-08 19:16 . 2012-07-08 19:16 -------- d-----w- c:\users\Rodiče\AppData\Local\Macromedia
2012-07-08 16:58 . 2012-07-09 11:53 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-08 16:58 . 2012-07-09 11:53 419488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-07-08 16:58 . 2012-07-08 16:58 -------- d-----w- c:\windows\system32\Macromed
2012-07-08 16:53 . 2012-07-08 16:53 476936 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2012-07-08 16:53 . 2012-07-08 16:53 -------- d-----w- c:\program files (x86)\Java
2012-07-08 16:43 . 2012-07-08 16:43 -------- d-----w- c:\users\Admin
2012-07-08 16:19 . 2012-07-08 16:19 -------- d-----w- c:\users\Ondra\AppData\Roaming\Malwarebytes
2012-07-08 16:19 . 2012-07-08 16:19 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-07-08 16:19 . 2012-07-08 16:19 -------- d-----w- c:\programdata\Malwarebytes
2012-07-08 16:19 . 2012-04-04 13:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-08 16:13 . 2012-07-08 16:13 -------- d-----w- c:\users\Ondra\AppData\Local\Adobe
2012-07-08 16:11 . 2012-07-08 16:10 955840 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-07-05 20:54 . 2012-07-05 20:54 -------- d-----w- c:\users\Ondra\AppData\Local\Stardock
2012-07-05 20:54 . 2012-07-05 20:54 -------- dc-h--w- c:\programdata\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}
2012-07-04 07:22 . 2012-07-04 07:22 -------- d-----w- c:\users\Rodiče\AppData\Roaming\WinRAR
2012-06-30 05:51 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-30 05:51 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-30 05:51 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-30 05:51 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-28 16:32 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-28 16:32 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-28 16:32 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-27 17:57 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-27 17:57 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-08 16:53 . 2010-12-23 11:53 472840 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-07-08 16:10 . 2010-10-17 08:43 839096 ----a-w- c:\windows\system32\deployJava1.dll
2012-06-30 16:17 . 2012-04-24 17:55 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-06-30 16:17 . 2012-04-24 17:55 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-05-31 10:25 . 2010-10-17 08:33 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-04-24 17:55 . 2012-04-24 17:55 75064 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2012-07-09_14.15.50 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-10-17 07:58 . 2012-07-10 07:58 31978 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-07-11 09:09 33236 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-10-17 07:42 . 2012-07-11 09:10 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-17 07:42 . 2012-07-09 11:40 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-10-17 07:42 . 2012-07-11 09:10 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-10-17 07:42 . 2012-07-09 11:40 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-07-09 11:40 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-07-11 09:10 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-10-17 07:52 . 2012-07-09 11:38 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-10-17 07:52 . 2012-07-11 10:29 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-17 07:52 . 2012-07-09 11:38 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-10-17 07:52 . 2012-07-11 10:29 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-10-17 07:52 . 2012-07-09 11:38 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-10-17 07:52 . 2012-07-11 10:29 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-10-17 08:11 . 2012-07-11 10:29 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-17 08:11 . 2012-07-09 14:06 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-17 08:11 . 2012-07-09 14:06 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-10-17 08:11 . 2012-07-11 10:29 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-10-19 15:57 . 2012-07-11 09:09 6558 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3665984473-3663502770-289684553-1001_UserData.bin
+ 2010-10-17 07:52 . 2012-07-10 15:06 8990 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3665984473-3663502770-289684553-1000_UserData.bin
- 2010-10-17 07:52 . 2012-07-01 15:28 8990 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3665984473-3663502770-289684553-1000_UserData.bin
- 2012-07-09 11:36 . 2012-07-09 11:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-07-11 10:26 . 2012-07-11 10:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-07-09 11:36 . 2012-07-09 11:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-07-11 10:26 . 2012-07-11 10:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-07-14 05:01 . 2012-07-08 19:29 385004 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-07-11 10:26 385004 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-05-15 14:35 . 2012-07-11 10:26 24902024 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3665984473-3663502770-289684553-1001-12288.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"OfficeSyncProcess"="c:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2011-07-21 718720]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"CursorFX"="d:\users\Ondra\Desktop\Stardock\CursorFX\CursorFX.exe" [2008-07-07 416768]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"tsnpstd3"="c:\windows\tsnpstd3.exe" [2007-03-30 262144]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-09 257696]
R3 Axtmvflt;Axesstel USB Filter Service;c:\windows\system32\DRIVERS\Axtmvflt.sys [2007-03-26 6144]
R3 Axtmvmdm;Axesstel USB Modem;c:\windows\system32\DRIVERS\Axtmvmdm.sys [2007-03-26 54272]
R3 Axtmvprt;Axesstel Diagnostic Port;c:\windows\system32\Drivers\Axtmvprt.sys [2007-03-26 52224]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-18 113120]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-10-17 1255736]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-10-17 834544]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-07-29 141264]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-07-29 168544]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-08-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2010-07-29 126320]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-07-09 248936]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-04-04 24904]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-07-11 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-08 11:53]
.
2012-07-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3665984473-3663502770-289684553-1000Core.job
- c:\users\Ondra\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-22 17:37]
.
2012-07-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3665984473-3663502770-289684553-1000UA.job
- c:\users\Ondra\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-22 17:37]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-08-12 2916584]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-07-28 11101800]
"snpstd3"="c:\windows\vsnpstd3.exe" [2006-09-18 843776]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 90.183.111.6 90.183.111.1
FF - ProfilePath - c:\users\Ondra\AppData\Roaming\Mozilla\Firefox\Profiles\lievxrd4.default\
FF - prefs.js: browser.startup.homepage - www.centrum.cz
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.032"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.abr"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ani"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.apd"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.arw"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.bay"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.bmp"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.bw"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.cr2"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.crw"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.cs1"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.cur"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.dcr"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.dcx"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.dib"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.djv"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.djvu"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.dng"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.emf"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.eps"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.erf"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.fff"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.fpx"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.gif"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.hdr"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.icl"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.icn"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.iff"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ilbm"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.int"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.inta"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.iw4"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.j2c"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.j2k"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jbr"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jfif"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jif"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jp2"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpc"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpe"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpeg"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpg"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpk"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpx"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.kdc"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.lbm"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.mef"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.mos"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.mrw"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.nef"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.nrw"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.orf"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pbm"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pbr"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pcd"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pct"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pcx"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pef"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pgm"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pic"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pict"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pix"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.png"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ppm"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.psd"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.psp"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pspbrush"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pspimage"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.raf"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ras"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.raw"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rgb"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rgba"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rle"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rsb"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rw2"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rwl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rwl"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.sgi"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.sr2"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.srf"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.tga"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.thm"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.tif"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.tiff"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ttc"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ttf"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v30po\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.v30po"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v30pp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.v30pp"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v30ppf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.v30ppf"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.wbm"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.wbmp"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.wmf"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.xbm"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.xif"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.xmp"
.
[HKEY_USERS\S-1-5-21-3665984473-3663502770-289684553-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.xpm"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\`ó;*]
"DFC90B5F2B0FFA63D84FD16F6BF37C4B"=multi:"\03\00\00\00\04\00\00\00˙˙\00\00¸\00\00\00\00\00\00\00@\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00\00đ\00\00\00\0e\1fş\0e\00´\09Í!¸\01LÍ!This program cannot be run in DOS mode.\0d\0d\0a$\00\00\00\00\00\00\00Q\"ô”\15CšÇ\15CšÇ\15CšÇz51Ç\00\00"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\PnkBstrB.exe
.
**************************************************************************
.
Celkový čas: 2012-07-11 12:53:21 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-07-11 10:53
.
Před spuštěním: 1 913 856 000
Po spuštění: 2 136 002 560
.
- - End Of File - - BD7FB9643B1F5C70F1ECBE761373604B
kolaps pc, smyčka restart Vyřešeno
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: kolaps pc, smyčka restart
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš
pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš
pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj antivir a antispyware ,následně T-Cleaner smaž a zapni si znovu antivir a antispyware.
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: kolaps pc, smyčka restart Vyřešeno
Děkujeme!
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 52 hostů