1. Log z comba
ComboFix 10-06-24.03 - Roman 25.06.2010 15:26:26.3.1 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.2048.1313 [GMT 2:00]
Spuštěný z: c:\users\Roman\Desktop\tygr.com.exe
Použité ovládací přepínače :: c:\users\Roman\Desktop\CFScript.txt
AV: avast! antivirus 4.7.1098 [VPS 100625-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
SP: Spyware Terminator *disabled* (Outdated) {55EE49A8-16BE-4601-BBE6-607B7F7317DE}
* Vytvořen nový Bod Obnovení
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-05-25 do 2010-06-25 )))))))))))))))))))))))))))))))
.
2010-06-25 13:33 . 2010-06-25 13:33 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-06-25 13:33 . 2010-06-25 13:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-06-25 13:16 . 2010-06-25 13:19 -------- d-----w- C:\32788R22FWJFW
2010-06-25 12:12 . 2010-06-25 13:33 -------- d-----w- c:\users\Roman\AppData\Local\temp
2010-06-23 23:01 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-06-23 23:01 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-06-23 23:01 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-06-23 23:01 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-06-23 23:01 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-06-22 16:59 . 2010-06-22 16:59 -------- d-----w- c:\users\Roman\AppData\Roaming\Malwarebytes
2010-06-22 16:58 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-06-22 16:58 . 2010-06-22 16:58 -------- d-----w- c:\programdata\Malwarebytes
2010-06-22 16:58 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-06-22 16:58 . 2010-06-22 16:58 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-06-22 16:36 . 2010-06-22 16:36 6144 ----a-w- c:\programdata\Spyware Terminator\sp_rsdel.exe
2010-06-22 16:36 . 2010-06-22 16:36 5632 ----a-w- c:\programdata\Spyware Terminator\fileobjinfo.sys
2010-06-22 16:36 . 2010-06-22 16:36 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-06-22 16:35 . 2010-06-22 16:36 -------- d-----w- c:\programdata\Spyware Terminator
2010-06-22 16:35 . 2010-06-22 16:36 -------- d-----w- c:\users\Roman\AppData\Roaming\Spyware Terminator
2010-06-18 15:05 . 2010-06-18 15:05 -------- d-----w- c:\program files\IObit
2010-06-18 14:24 . 2010-06-18 14:24 -------- d-----w- c:\users\Roman\AppData\Local\Adobe
2010-06-17 08:43 . 2010-06-25 10:44 -------- d-----w- c:\program files\Trend Micro
2010-06-15 16:30 . 2010-06-15 16:30 -------- d-----w- c:\program files\TeamSpeak 3 Client
2010-06-15 15:18 . 2010-06-17 09:06 -------- d-----w- c:\users\Roman\AppData\Roaming\TS3Client
2010-06-14 20:56 . 2010-06-15 16:32 -------- d-----w- c:\program files\Aesop
2010-06-09 19:50 . 2010-05-01 14:49 2326528 ----a-w- c:\windows\system32\win32k.sys
2010-06-09 19:50 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll
2010-06-09 19:49 . 2010-05-21 05:18 977920 ----a-w- c:\windows\system32\wininet.dll
2010-06-09 19:49 . 2010-05-27 07:24 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-06-09 19:49 . 2010-05-27 03:49 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-06-01 18:23 . 2010-06-01 18:27 -------- d-----w- c:\users\Roman\AppData\Local\Microsoft Games
2010-06-01 11:35 . 2010-06-01 11:35 -------- d-----w- c:\windows\system32\Wat
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-22 19:23 . 2010-01-22 13:31 -------- d-----w- c:\program files\Spybot - Search & Destroy
2010-06-22 19:21 . 2010-01-22 13:31 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2010-06-22 16:43 . 2010-01-22 12:19 110472 ----a-w- c:\users\Roman\AppData\Local\GDIPFONTCACHEV1.DAT
2010-06-22 16:40 . 2010-04-13 12:25 -------- d-----w- c:\program files\Spyware Terminator
2010-06-20 19:57 . 2010-01-22 11:31 -------- d-----w- c:\users\Roman\AppData\Roaming\teamspeak2
2010-06-17 11:09 . 2010-01-29 16:34 138328 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-06-17 11:09 . 2010-01-26 22:27 214816 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-06-15 16:20 . 2010-01-23 01:11 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-06-11 09:33 . 2009-07-26 17:53 669130 ----a-w- c:\windows\system32\perfh005.dat
2010-06-11 09:33 . 2009-07-26 17:53 136246 ----a-w- c:\windows\system32\perfc005.dat
2010-06-09 23:48 . 2010-01-22 14:05 -------- d-----w- c:\programdata\Microsoft Help
2010-05-24 20:24 . 2010-01-26 22:27 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-05-17 17:24 . 2010-05-17 17:24 -------- d-----w- c:\programdata\NVIDIA
2010-05-12 16:38 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-05-12 09:21 . 2010-01-22 11:37 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-05-11 14:46 . 2010-02-04 15:08 -------- d-----w- c:\users\Roman\AppData\Roaming\Skype
2010-05-11 14:05 . 2010-02-04 15:09 -------- d-----w- c:\users\Roman\AppData\Roaming\skypePM
2010-04-27 15:00 . 2010-04-27 15:00 -------- d-----w- c:\program files\Common Files\Skype
2010-04-23 07:13 . 2010-05-26 11:08 2048 ----a-w- c:\windows\system32\tzres.dll
2010-03-30 14:52 . 2010-03-30 14:43 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoFileAssociate"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
R3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\Dfsdks.exe [2009-08-24 406016]
R3 MosIrUsb;MosIrUsb.sys;c:\windows\system32\DRIVERS\MosIrUsb.sys [2007-10-11 22016]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-01 1343400]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-03-15 691696]
S1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2010-06-22 142592]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2007-12-04 45648]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
.
.
Celkový čas: 2010-06-25 15:37:03
ComboFix-quarantined-files.txt 2010-06-25 13:37
ComboFix2.txt 2010-06-25 12:20
Před spuštěním: Volných bajtů: 14 686 650 368
Po spuštění: Volných bajtů: 14 653 833 216
- - End Of File - - FA8DCC483288D0A43C1F4FAEBC321CF8
-----------------------------------------------------------------------------------------------------------------
2. Log z HJT
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:37:39, on 25.6.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\taskhost.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\Explorer.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCam Toolbar\tbcore3.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
https://fpdownload.macromedia.com/pub/s ... wflash.cabO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\Dfsdks.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
--
End of file - 4696 bytes
-----------------------------------------------------------------------------------------------------------------
3. Virustotal
http://www.virustotal.com/cs/analisis/9 ... 1277473280-----------------------------------------------------------------------------------------------------------------
4. Nenastavoval jsem si nikdy nic sám.. A když už jo, tak s radami od uživatelů na pc-helpu..
-----------------------------------------------------------------------------------------------------------------
5. Log z winda...
Svazek v jednotce C nem § dnou jmenovku.
S‚riov‚ źˇslo svazku je EC77-F9C7.
Věpis adres ýe C:\
25.06.2010 15:50 0 dirdat.txt
25.06.2010 15:37 8˙228 ComboFix.txt
25.06.2010 14:13 2˙147˙016˙704 pagefile.sys
25.06.2010 14:13 1˙610˙260˙480 hiberfil.sys
26.02.2010 15:43 0 IO.SYS
26.02.2010 15:43 0 MSDOS.SYS
22.01.2010 21:46 8˙192 BOOTSECT.BAK
02.08.2009 10:59 171˙136 grldr
14.07.2009 03:38 383˙562 bootmgr
15.06.2009 13:34 3˙691˙865 enrique iglesias ft. ciara - takin back my love .mp3
10.06.2009 23:42 10 config.sys
Soubor…: 11, Bajt…: 3˙761˙540˙177
Adres ý…: 0, Volněch bajt…: 14˙730˙698˙752
Svazek v jednotce C nem § dnou jmenovku.
S‚riov‚ źˇslo svazku je EC77-F9C7.
Věpis adres ýe C:\Windows\system
13.07.2009 23:41 24˙064 OLESVR.DLL
13.07.2009 23:41 12˙704 WFWNET.DRV
13.07.2009 23:41 32˙816 COMMDLG.DLL
13.07.2009 23:41 4˙048 TIMER.DRV
13.07.2009 23:41 68˙992 MMSYSTEM.DLL
13.07.2009 23:41 1˙152 mmtask.tsk
13.07.2009 23:41 2˙032 mouse.drv
13.07.2009 23:41 2˙176 vga.drv
13.07.2009 23:41 1˙744 sound.drv
13.07.2009 23:41 2˙000 keyboard.drv
13.07.2009 23:41 5˙120 SHELL.DLL
13.07.2009 23:41 3˙360 system.drv
10.06.2009 23:42 9˙008 ver.dll
10.06.2009 23:42 82˙944 olecli.dll
10.06.2009 23:42 9˙936 lzexpand.dll
10.06.2009 23:25 5˙532 stdole.tlb
10.06.2009 23:21 126˙912 msvideo.dll
10.06.2009 23:21 28˙160 mciwave.drv
10.06.2009 23:21 25˙264 mciseq.drv
10.06.2009 23:21 73˙376 mciavi.drv
10.06.2009 23:21 109˙456 avifile.dll
10.06.2009 23:21 69˙584 avicap.dll
Soubor…: 22, Bajt…: 700˙380
Adres ý…: 0, Volněch bajt…: 14˙730˙698˙752
Svazek v jednotce C nem § dnou jmenovku.
S‚riov‚ źˇslo svazku je EC77-F9C7.
Věpis adres ýe C:\Windows
25.06.2010 15:33 215 system.ini
25.06.2010 14:18 1˙125˙330 WindowsUpdate.log
25.06.2010 14:13 1˙008 setupact.log
25.06.2010 14:13 67˙584 bootstat.dat
25.06.2010 14:13 4˙022 PFRO.log
17.06.2010 16:53 0 setuperr.log
14.06.2010 23:02 280 emm386n.dl
26.04.2010 15:58 256˙512 PEV.exe
16.03.2010 06:47 172 ODBC.INI
26.02.2010 15:45 82 mafosav.INI
03.02.2010 03:40 513 win.ini
27.01.2010 00:22 0 SwSys2.bmp
27.01.2010 00:22 0 SwSys1.bmp
22.01.2010 17:39 177˙111 hpoins44.dat
31.10.2009 07:45 2˙614˙272 explorer.exe
25.10.2009 06:11 77˙312 MBR.exe
14.07.2009 06:41 749 WindowsShell.Manifest
14.07.2009 03:16 51˙200 twain_32.dll
14.07.2009 03:14 9˙216 write.exe
14.07.2009 03:14 9˙728 winhlp32.exe
14.07.2009 03:14 31˙232 twunk_32.exe
14.07.2009 03:14 398˙336 regedit.exe
14.07.2009 03:14 179˙712 notepad.exe
14.07.2009 03:14 15˙360 hh.exe
14.07.2009 03:14 497˙152 HelpPane.exe
14.07.2009 03:14 13˙824 fveupdate.exe
14.07.2009 03:14 65˙024 bfsvc.exe
14.07.2009 00:58 43˙131 mib.bin
11.06.2009 11:30 586 hpomdl44.dat
10.06.2009 23:42 707 _default.pif
10.06.2009 23:42 256˙192 winhelp.exe
10.06.2009 23:41 49˙680 twunk_16.exe
10.06.2009 23:41 94˙784 twain.dll
10.06.2009 23:34 316˙640 WMSysPr9.prx
10.06.2009 23:19 1˙405 msdfmap.ini
10.06.2009 23:14 51˙867 Ultimate.xml
10.06.2009 23:14 48˙201 Starter.xml
20.04.2009 12:56 31˙232 NIRCMD.exe
05.09.2007 08:02 545 PKZIP.PIF
05.09.2007 08:02 545 RAR.PIF
05.09.2007 08:02 545 LHA.PIF
05.09.2007 08:02 545 PKUNZIP.PIF
05.09.2007 08:02 545 ARJ.PIF
05.09.2007 08:02 545 UC.PIF
05.09.2007 08:02 545 NOCLOSE.PIF
11.10.2005 21:54 339˙968 vsnpstd.exe
02.02.2005 03:29 20˙480 usnpstd.exe
18.01.2003 01:35 13˙023 snpstd.src
18.01.2003 01:34 15˙541 snpstd.ini
31.08.2000 08:00 212˙480 SWXCACLS.exe
31.08.2000 08:00 161˙792 SWREG.exe
31.08.2000 08:00 80˙412 grep.exe
31.08.2000 08:00 68˙096 zip.exe
31.08.2000 08:00 136˙704 SWSC.exe
31.08.2000 08:00 98˙816 sed.exe
Soubor…: 55, Bajt…: 7˙641˙498
Adres ý…: 0, Volněch bajt…: 14˙730˙694˙656
Svazek v jednotce C nem § dnou jmenovku.
S‚riov‚ źˇslo svazku je EC77-F9C7.
Věpis adres ýe C:\Users\Roman\AppData\Local\Temp
25.06.2010 15:39 0 ~DF73BB025A3DAE7F9D.TMP
25.06.2010 15:39 16˙384 ~DF4B630335B28B3F99.TMP
25.06.2010 15:37 0 ~DF5C76951F8F025BD1.TMP
25.06.2010 15:37 114˙688 ~DFDC2B34E38FDDD338.TMP
25.06.2010 14:16 0 FXSAPIDebugLogFile.txt
Soubor…: 5, Bajt…: 131˙072
Adres ý…: 0, Volněch bajt…: 14˙730˙694˙656
co to máš za archivní combofix? ComboFix 09-11-21.02 , combofix se často aktualizuje, nemůžeš použít půl roku starý 
