Prośba o sprawdzienie logu ComboFixa
: 12 maja 2010, 22:36
autor: Tom
Nie wiem w jakim dziale powinienem to dać, dlatego daję to tu. Wykonałem czyszczenie combofixem i prosiłbym o sprawdzenie logów czy coś było i czy coś nadal może być.
Dziękuję 
Spoiler:
ComboFix 10-05-11.06 - Tomek 2010-05-12 18:41:03.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.767.461 [GMT 2:00]
Uruchomiony z: c:\documents and settings\Tomek\Pulpit\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\HyperCam Toolbar\tbHElper.dll
c:\windows\system32\scvideo.dll
.
((((((((((((((((((((((((( Pliki utworzone od 2010-04-12 do 2010-05-12 )))))))))))))))))))))))))))))))
.
2010-05-10 17:15 . 2010-05-10 16:36 15880 ----a-w- c:\windows\system32\lsdelete.exe
2010-05-10 17:11 . 2010-05-10 17:11 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2010-05-10 16:43 . 2010-05-10 16:43 -------- d-----w- c:\documents and settings\LocalService\Pulpit
2010-05-10 16:36 . 2010-02-04 15:53 64288 ----a-w- c:\windows\system32\drivers\Lbd.sys
2010-05-10 16:36 . 2010-05-10 16:36 95024 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2010-05-10 16:26 . 2010-05-10 16:26 -------- dc-h--w- c:\documents and settings\All Users\Dane aplikacji\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
2010-05-10 16:26 . 2010-02-04 15:53 2954656 -c--a-w- c:\documents and settings\All Users\Dane aplikacji\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}\Ad-AwareInstaller.exe
2010-05-10 16:25 . 2010-05-10 16:36 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Lavasoft
2010-05-10 16:07 . 2010-05-10 16:26 -------- d-----w- c:\program files\Lavasoft
2010-05-09 12:50 . 2010-05-06 20:39 164048 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-05-09 12:50 . 2010-05-06 20:33 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-05-09 12:50 . 2010-05-06 20:34 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-05-09 12:50 . 2010-05-06 20:39 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-05-09 12:50 . 2010-05-06 20:33 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-05-09 12:50 . 2010-05-06 20:33 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-05-09 12:50 . 2010-05-06 20:33 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-05-09 12:49 . 2010-05-06 20:59 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-05-09 12:49 . 2010-05-06 20:59 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-05-09 12:49 . 2010-05-09 12:49 -------- d-----w- c:\program files\Alwil Software
2010-05-09 09:26 . 2010-05-09 09:26 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Opera
2010-05-07 19:52 . 2010-05-07 19:52 41872 ----a-w- c:\windows\system32\xfcodec.dll
2010-05-06 19:30 . 2010-05-06 19:40 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\AnvSoft
2010-05-05 19:23 . 2010-05-05 19:23 -------- d-----w- C:\MB XML
2010-05-04 19:46 . 2010-05-04 19:46 -------- d-sh--w- c:\documents and settings\Tomek\PrivacIE
2010-05-04 18:03 . 2008-04-13 22:15 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-05-04 18:03 . 2008-04-13 22:15 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-05-03 20:12 . 2010-05-11 18:04 -------- d-----w- c:\documents and settings\Tomek\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
2010-05-03 20:11 . 2010-05-12 16:46 -------- d-----w- c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
2010-05-03 20:11 . 2010-05-03 20:11 -------- d-----w- c:\program files\LogMeIn Hamachi
2010-05-03 20:02 . 2010-05-04 17:47 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\TS3Client
2010-05-03 20:00 . 2010-05-03 20:01 -------- d-----w- c:\documents and settings\Tomek\Ustawienia lokalne\Dane aplikacji\TeamSpeak 3 Client
2010-05-03 10:26 . 2010-05-03 10:26 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\CD-LabelPrint
2010-05-01 11:22 . 2010-05-01 11:22 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Canneverbe_Limited
2010-05-01 11:22 . 2010-05-01 11:22 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Canneverbe Limited
2010-05-01 11:22 . 2010-05-01 11:22 -------- d-----w- c:\program files\CDBurnerXP
2010-05-01 11:17 . 2010-05-01 11:17 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\StarBurn
2010-05-01 11:16 . 2010-05-01 11:16 721904 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-05-01 08:53 . 2010-05-01 08:53 -------- d-sh--w- c:\documents and settings\Tomek\IETldCache
2010-04-30 18:17 . 2010-04-30 18:20 -------- dc-h--w- c:\windows\ie8
2010-04-28 17:17 . 2010-04-28 17:17 -------- d--h--w- c:\windows\$hf_mig$
2010-04-28 17:11 . 2010-04-28 17:11 -------- d-----w- c:\documents and settings\Tomek\WapSter
2010-04-28 17:09 . 2010-04-28 17:09 -------- d-----w- c:\program files\WapSter
2010-04-27 17:11 . 2010-04-27 17:11 148752 ----a-w- c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
2010-04-27 17:10 . 2010-04-27 17:10 -------- d-----w- c:\program files\MSBuild
2010-04-27 17:10 . 2010-04-27 17:13 -------- d-----w- c:\windows\system32\XPSViewer
2010-04-27 17:10 . 2010-04-27 17:10 -------- d-----w- c:\program files\Reference Assemblies
2010-04-27 17:09 . 2007-03-22 18:24 28160 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2010-04-27 17:08 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2010-04-27 16:31 . 2010-04-27 16:37 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\SA-MP Audio Plugin
2010-04-24 12:14 . 2010-04-24 12:15 -------- d-----w- c:\windows\system32\Side 9 Screensaver dir
2010-04-24 12:14 . 2010-04-24 12:14 520192 ----a-w- c:\windows\system32\Side 9 Screensaver.scr
2010-04-23 15:23 . 2010-04-23 15:23 -------- d-----w- c:\program files\Microsoft Silverlight
2010-04-22 17:58 . 2010-04-22 18:03 -------- d-----w- c:\program files\Tlen7
2010-04-22 17:58 . 2010-04-22 18:01 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Tlen.pl
2010-04-21 17:32 . 2010-04-28 17:54 148 ----a-w- C:\Tlen, Foobar, Opera.bat
2010-04-20 18:05 . 2010-04-20 18:05 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-04-15 14:35 . 2010-05-07 18:13 -------- d-----w- c:\program files\uTorrent
2010-04-15 14:34 . 2010-05-11 13:37 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\uTorrent
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-12 16:46 . 2010-04-05 20:56 -------- d-----w- c:\program files\HyperCam Toolbar
2010-05-12 16:37 . 2010-03-30 17:28 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Xfire
2010-05-12 16:21 . 2010-03-28 16:47 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\foobar2000
2010-05-12 15:24 . 2010-03-30 17:27 -------- d-----w- c:\program files\Xfire
2010-05-11 17:16 . 2010-03-30 17:56 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-05-11 17:16 . 2010-03-30 17:56 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-05-08 13:30 . 2010-04-11 19:07 -------- d-----w- c:\program files\Ogonki 97
2010-05-08 13:11 . 2010-03-28 16:17 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-05-06 19:32 . 2010-04-05 20:22 -------- d---a-w- c:\documents and settings\All Users\Dane aplikacji\TEMP
2010-04-30 18:28 . 2010-03-28 15:37 -------- d-----w- c:\program files\Opera
2010-04-28 17:47 . 2010-03-28 16:13 47520 ----a-w- c:\documents and settings\Tomek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2010-04-27 17:11 . 2001-10-26 18:15 84208 ----a-w- c:\windows\system32\perfc015.dat
2010-04-27 17:11 . 2001-10-26 18:15 491152 ----a-w- c:\windows\system32\perfh015.dat
2010-04-25 09:26 . 2010-03-28 15:38 -------- d-----w- c:\program files\Audacity
2010-04-15 19:21 . 2010-04-06 12:50 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\PC Suite
2010-04-09 17:42 . 2010-04-09 17:41 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\GHISLER
2010-04-06 18:22 . 2010-04-06 18:22 -------- d-----w- c:\program files\Intuwave
2010-04-06 18:19 . 2010-04-06 11:38 146 ----a-w- c:\windows\DelMR.bat
2010-04-06 12:57 . 2010-04-06 12:50 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Nokia
2010-04-06 12:51 . 2010-04-06 12:51 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2010-04-06 12:51 . 2010-04-06 12:51 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2010-04-06 12:50 . 2010-04-06 12:50 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\PC Suite
2010-04-06 12:50 . 2010-04-06 12:50 -------- d-----w- c:\program files\Common Files\PCSuite
2010-04-06 12:50 . 2010-04-06 12:50 -------- d-----w- c:\program files\Common Files\Nokia
2010-04-06 12:50 . 2010-04-06 12:49 -------- d-----w- c:\program files\Nokia
2010-04-06 12:50 . 2010-04-06 12:50 -------- d-----w- c:\program files\DIFX
2010-04-06 12:49 . 2010-04-06 12:49 -------- d-----w- c:\program files\PC Connectivity Solution
2010-04-06 12:48 . 2010-04-06 12:48 95232 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\pcswpcsi.exe
2010-04-06 12:48 . 2010-04-06 12:48 8192 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstCCD.exe
2010-04-06 12:48 . 2010-04-06 12:48 61440 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-04-06 12:48 . 2010-04-06 12:48 10240 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCS.exe
2010-04-06 12:47 . 2010-04-06 12:47 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Installations
2010-04-06 12:47 . 2010-04-06 12:48 34760920 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Nokia_PC_Suite_pol_web.exe
2010-04-06 11:23 . 2010-04-05 20:55 -------- d-----w- c:\program files\HyCam2
2010-04-05 20:56 . 2010-04-05 20:56 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Toolbar4
2010-04-05 20:36 . 2010-04-05 20:36 13824 ----a-w- c:\windows\system32\drivers\splitcam.sys
2010-04-05 20:35 . 2010-04-05 20:35 -------- d-----w- c:\program files\SplitCam
2010-04-05 20:21 . 2010-04-05 20:21 -------- d-----w- c:\program files\Mobiola Web Camera for S60
2010-04-05 19:19 . 2010-03-28 16:16 -------- d-----w- c:\program files\Common Files\InstallShield
2010-04-05 19:08 . 2010-04-05 19:08 -------- d-----w- c:\program files\The KMPlayer
2010-04-03 13:19 . 2010-04-03 13:19 -------- d-----w- c:\documents and settings\LocalService\Dane aplikacji\Xfire
2010-04-01 16:06 . 2010-03-31 16:02 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\vlc
2010-04-01 16:05 . 2010-04-01 16:05 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Media Player Classic
2010-04-01 16:04 . 2010-04-01 16:04 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Apple Computer
2010-04-01 16:04 . 2010-04-01 16:04 -------- d-----w- c:\program files\QuickTime Alternative
2010-03-30 17:56 . 2010-03-30 17:56 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-03-30 17:44 . 2010-03-30 17:44 -------- d-----w- c:\documents and settings\NetworkService\Dane aplikacji\Xfire
2010-03-29 17:33 . 2010-03-29 17:33 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Foxit
2010-03-29 17:33 . 2010-03-29 17:33 -------- d-----w- c:\program files\Foxit Software
2010-03-28 16:44 . 2010-03-28 16:42 -------- d-----w- c:\program files\Canon
2010-03-28 16:44 . 2010-03-28 16:44 -------- d--h--w- c:\documents and settings\All Users\Dane aplikacji\CanonBJ
2010-03-28 16:43 . 2010-03-28 16:43 -------- d--h--w- c:\program files\CanonBJ
2010-03-28 16:39 . 2010-03-28 16:13 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\FLEXnet
2010-03-28 16:26 . 2010-03-28 16:26 -------- d-----w- c:\program files\QuickTime
2010-03-28 16:25 . 2010-03-28 16:25 -------- d-----w- c:\program files\Bonjour
2010-03-28 16:25 . 2010-03-28 15:55 -------- d-----w- c:\program files\Common Files\Adobe
2010-03-28 16:18 . 2010-03-28 16:17 -------- d-----w- c:\program files\ATI Technologies
2010-03-28 16:17 . 2010-03-23 21:36 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-03-28 16:06 . 2010-03-28 16:06 -------- d-----w- c:\program files\Adobe Media Player
2010-03-28 16:06 . 2010-03-28 16:06 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-03-28 15:58 . 2010-03-28 15:58 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-03-28 15:51 . 2010-03-28 15:44 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Microsoft Help
2010-03-28 15:50 . 2010-03-28 15:50 -------- d-----w- c:\program files\Microsoft Works
2010-03-28 15:41 . 2010-03-28 15:41 -------- d-----w- c:\program files\MagicDisc
2010-03-28 15:40 . 2010-03-28 15:40 -------- d-----w- c:\program files\IrfanView
2010-03-28 15:36 . 2010-03-28 15:36 -------- d-----w- c:\program files\VideoLAN
2010-03-28 15:35 . 2010-03-28 15:35 -------- d-----w- c:\program files\foobar2000
2010-03-28 15:35 . 2010-03-28 15:35 -------- d-----w- c:\program files\XP Codec Pack
2010-03-28 15:33 . 2010-03-28 15:33 -------- d-----w- c:\program files\Ashampoo
2010-03-28 15:31 . 2010-03-28 15:31 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Alwil Software
2010-03-23 21:37 . 2010-03-23 21:37 -------- d-----w- c:\program files\microsoft frontpage
2010-03-23 21:35 . 2010-03-23 21:35 -------- d-----w- c:\program files\Usługi online
2010-03-23 21:33 . 2010-03-23 21:33 21856 ----a-w- c:\windows\system32\emptyregdb.dat
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mRouterConfig"="c:\program files\Intuwave\Shared\mRouterRuntime\mRouterConfig.exe" [2006-03-02 290816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-12-01 77824]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"Ashampoo FireWall"="c:\program files\Ashampoo\Ashampoo FireWall FREE\FireWall.exe" [2008-06-02 3251800]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-05-06 2815192]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\Tomek\Menu Start\Programy\Autostart\
MagicDisc.lnk - c:\program files\MagicDisc\MagicDisc.exe [2010-3-28 576000]
Xfire.lnk - c:\program files\Xfire\Xfire.exe [2010-5-7 3475856]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
(małpa)="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
(małpa)="Driver"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-05-10 64288]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010-05-09 164048]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-05-09 19024]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010-05-01 721904]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2010-02-04 1285864]
.
Zawartość folderu 'Zaplanowane zadania'
2010-05-12 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2010-02-04 16:34]
.
.
------- Skan uzupełniający -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\program files\Ashampoo\Ashampoo FireWall FREE\spi.dll
.
- - - - USUNIĘTO PUSTE WPISY - - - -
HKCU-Run-AdobeBridge - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-12 18:46
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ASFWHide]
"ImagePath"="\??\c:\docume~1\Tomek\USTAWI~1\Temp\ASFWHide"
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
- - - - - - - > 'winlogon.exe'(616)
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'lsass.exe'(672)
c:\program files\Ashampoo\Ashampoo FireWall FREE\spi.dll
.
Czas ukończenia: 2010-05-12 18:49:23
ComboFix-quarantined-files.txt 2010-05-12 16:49
Przed: 5 472 387 072 bajtów wolnych
Po: 5 696 675 840 bajtów wolnych
WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
- - End Of File - - D98A695AA43747002DDE66B0DFF11771
Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.767.461 [GMT 2:00]
Uruchomiony z: c:\documents and settings\Tomek\Pulpit\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\HyperCam Toolbar\tbHElper.dll
c:\windows\system32\scvideo.dll
.
((((((((((((((((((((((((( Pliki utworzone od 2010-04-12 do 2010-05-12 )))))))))))))))))))))))))))))))
.
2010-05-10 17:15 . 2010-05-10 16:36 15880 ----a-w- c:\windows\system32\lsdelete.exe
2010-05-10 17:11 . 2010-05-10 17:11 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2010-05-10 16:43 . 2010-05-10 16:43 -------- d-----w- c:\documents and settings\LocalService\Pulpit
2010-05-10 16:36 . 2010-02-04 15:53 64288 ----a-w- c:\windows\system32\drivers\Lbd.sys
2010-05-10 16:36 . 2010-05-10 16:36 95024 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2010-05-10 16:26 . 2010-05-10 16:26 -------- dc-h--w- c:\documents and settings\All Users\Dane aplikacji\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
2010-05-10 16:26 . 2010-02-04 15:53 2954656 -c--a-w- c:\documents and settings\All Users\Dane aplikacji\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}\Ad-AwareInstaller.exe
2010-05-10 16:25 . 2010-05-10 16:36 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Lavasoft
2010-05-10 16:07 . 2010-05-10 16:26 -------- d-----w- c:\program files\Lavasoft
2010-05-09 12:50 . 2010-05-06 20:39 164048 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-05-09 12:50 . 2010-05-06 20:33 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-05-09 12:50 . 2010-05-06 20:34 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-05-09 12:50 . 2010-05-06 20:39 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-05-09 12:50 . 2010-05-06 20:33 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-05-09 12:50 . 2010-05-06 20:33 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-05-09 12:50 . 2010-05-06 20:33 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-05-09 12:49 . 2010-05-06 20:59 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-05-09 12:49 . 2010-05-06 20:59 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-05-09 12:49 . 2010-05-09 12:49 -------- d-----w- c:\program files\Alwil Software
2010-05-09 09:26 . 2010-05-09 09:26 -------- d-----w- c:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Opera
2010-05-07 19:52 . 2010-05-07 19:52 41872 ----a-w- c:\windows\system32\xfcodec.dll
2010-05-06 19:30 . 2010-05-06 19:40 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\AnvSoft
2010-05-05 19:23 . 2010-05-05 19:23 -------- d-----w- C:\MB XML
2010-05-04 19:46 . 2010-05-04 19:46 -------- d-sh--w- c:\documents and settings\Tomek\PrivacIE
2010-05-04 18:03 . 2008-04-13 22:15 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-05-04 18:03 . 2008-04-13 22:15 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-05-03 20:12 . 2010-05-11 18:04 -------- d-----w- c:\documents and settings\Tomek\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
2010-05-03 20:11 . 2010-05-12 16:46 -------- d-----w- c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
2010-05-03 20:11 . 2010-05-03 20:11 -------- d-----w- c:\program files\LogMeIn Hamachi
2010-05-03 20:02 . 2010-05-04 17:47 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\TS3Client
2010-05-03 20:00 . 2010-05-03 20:01 -------- d-----w- c:\documents and settings\Tomek\Ustawienia lokalne\Dane aplikacji\TeamSpeak 3 Client
2010-05-03 10:26 . 2010-05-03 10:26 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\CD-LabelPrint
2010-05-01 11:22 . 2010-05-01 11:22 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Canneverbe_Limited
2010-05-01 11:22 . 2010-05-01 11:22 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Canneverbe Limited
2010-05-01 11:22 . 2010-05-01 11:22 -------- d-----w- c:\program files\CDBurnerXP
2010-05-01 11:17 . 2010-05-01 11:17 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\StarBurn
2010-05-01 11:16 . 2010-05-01 11:16 721904 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-05-01 08:53 . 2010-05-01 08:53 -------- d-sh--w- c:\documents and settings\Tomek\IETldCache
2010-04-30 18:17 . 2010-04-30 18:20 -------- dc-h--w- c:\windows\ie8
2010-04-28 17:17 . 2010-04-28 17:17 -------- d--h--w- c:\windows\$hf_mig$
2010-04-28 17:11 . 2010-04-28 17:11 -------- d-----w- c:\documents and settings\Tomek\WapSter
2010-04-28 17:09 . 2010-04-28 17:09 -------- d-----w- c:\program files\WapSter
2010-04-27 17:11 . 2010-04-27 17:11 148752 ----a-w- c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
2010-04-27 17:10 . 2010-04-27 17:10 -------- d-----w- c:\program files\MSBuild
2010-04-27 17:10 . 2010-04-27 17:13 -------- d-----w- c:\windows\system32\XPSViewer
2010-04-27 17:10 . 2010-04-27 17:10 -------- d-----w- c:\program files\Reference Assemblies
2010-04-27 17:09 . 2007-03-22 18:24 28160 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2010-04-27 17:08 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2010-04-27 16:31 . 2010-04-27 16:37 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\SA-MP Audio Plugin
2010-04-24 12:14 . 2010-04-24 12:15 -------- d-----w- c:\windows\system32\Side 9 Screensaver dir
2010-04-24 12:14 . 2010-04-24 12:14 520192 ----a-w- c:\windows\system32\Side 9 Screensaver.scr
2010-04-23 15:23 . 2010-04-23 15:23 -------- d-----w- c:\program files\Microsoft Silverlight
2010-04-22 17:58 . 2010-04-22 18:03 -------- d-----w- c:\program files\Tlen7
2010-04-22 17:58 . 2010-04-22 18:01 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Tlen.pl
2010-04-21 17:32 . 2010-04-28 17:54 148 ----a-w- C:\Tlen, Foobar, Opera.bat
2010-04-20 18:05 . 2010-04-20 18:05 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-04-15 14:35 . 2010-05-07 18:13 -------- d-----w- c:\program files\uTorrent
2010-04-15 14:34 . 2010-05-11 13:37 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\uTorrent
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-12 16:46 . 2010-04-05 20:56 -------- d-----w- c:\program files\HyperCam Toolbar
2010-05-12 16:37 . 2010-03-30 17:28 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Xfire
2010-05-12 16:21 . 2010-03-28 16:47 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\foobar2000
2010-05-12 15:24 . 2010-03-30 17:27 -------- d-----w- c:\program files\Xfire
2010-05-11 17:16 . 2010-03-30 17:56 137464 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-05-11 17:16 . 2010-03-30 17:56 214520 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-05-08 13:30 . 2010-04-11 19:07 -------- d-----w- c:\program files\Ogonki 97
2010-05-08 13:11 . 2010-03-28 16:17 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-05-06 19:32 . 2010-04-05 20:22 -------- d---a-w- c:\documents and settings\All Users\Dane aplikacji\TEMP
2010-04-30 18:28 . 2010-03-28 15:37 -------- d-----w- c:\program files\Opera
2010-04-28 17:47 . 2010-03-28 16:13 47520 ----a-w- c:\documents and settings\Tomek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2010-04-27 17:11 . 2001-10-26 18:15 84208 ----a-w- c:\windows\system32\perfc015.dat
2010-04-27 17:11 . 2001-10-26 18:15 491152 ----a-w- c:\windows\system32\perfh015.dat
2010-04-25 09:26 . 2010-03-28 15:38 -------- d-----w- c:\program files\Audacity
2010-04-15 19:21 . 2010-04-06 12:50 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\PC Suite
2010-04-09 17:42 . 2010-04-09 17:41 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\GHISLER
2010-04-06 18:22 . 2010-04-06 18:22 -------- d-----w- c:\program files\Intuwave
2010-04-06 18:19 . 2010-04-06 11:38 146 ----a-w- c:\windows\DelMR.bat
2010-04-06 12:57 . 2010-04-06 12:50 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Nokia
2010-04-06 12:51 . 2010-04-06 12:51 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2010-04-06 12:51 . 2010-04-06 12:51 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2010-04-06 12:50 . 2010-04-06 12:50 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\PC Suite
2010-04-06 12:50 . 2010-04-06 12:50 -------- d-----w- c:\program files\Common Files\PCSuite
2010-04-06 12:50 . 2010-04-06 12:50 -------- d-----w- c:\program files\Common Files\Nokia
2010-04-06 12:50 . 2010-04-06 12:49 -------- d-----w- c:\program files\Nokia
2010-04-06 12:50 . 2010-04-06 12:50 -------- d-----w- c:\program files\DIFX
2010-04-06 12:49 . 2010-04-06 12:49 -------- d-----w- c:\program files\PC Connectivity Solution
2010-04-06 12:48 . 2010-04-06 12:48 95232 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\pcswpcsi.exe
2010-04-06 12:48 . 2010-04-06 12:48 8192 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstCCD.exe
2010-04-06 12:48 . 2010-04-06 12:48 61440 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-04-06 12:48 . 2010-04-06 12:48 10240 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCS.exe
2010-04-06 12:47 . 2010-04-06 12:47 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Installations
2010-04-06 12:47 . 2010-04-06 12:48 34760920 ----a-w- c:\documents and settings\All Users\Dane aplikacji\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Nokia_PC_Suite_pol_web.exe
2010-04-06 11:23 . 2010-04-05 20:55 -------- d-----w- c:\program files\HyCam2
2010-04-05 20:56 . 2010-04-05 20:56 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Toolbar4
2010-04-05 20:36 . 2010-04-05 20:36 13824 ----a-w- c:\windows\system32\drivers\splitcam.sys
2010-04-05 20:35 . 2010-04-05 20:35 -------- d-----w- c:\program files\SplitCam
2010-04-05 20:21 . 2010-04-05 20:21 -------- d-----w- c:\program files\Mobiola Web Camera for S60
2010-04-05 19:19 . 2010-03-28 16:16 -------- d-----w- c:\program files\Common Files\InstallShield
2010-04-05 19:08 . 2010-04-05 19:08 -------- d-----w- c:\program files\The KMPlayer
2010-04-03 13:19 . 2010-04-03 13:19 -------- d-----w- c:\documents and settings\LocalService\Dane aplikacji\Xfire
2010-04-01 16:06 . 2010-03-31 16:02 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\vlc
2010-04-01 16:05 . 2010-04-01 16:05 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Media Player Classic
2010-04-01 16:04 . 2010-04-01 16:04 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Apple Computer
2010-04-01 16:04 . 2010-04-01 16:04 -------- d-----w- c:\program files\QuickTime Alternative
2010-03-30 17:56 . 2010-03-30 17:56 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-03-30 17:44 . 2010-03-30 17:44 -------- d-----w- c:\documents and settings\NetworkService\Dane aplikacji\Xfire
2010-03-29 17:33 . 2010-03-29 17:33 -------- d-----w- c:\documents and settings\Tomek\Dane aplikacji\Foxit
2010-03-29 17:33 . 2010-03-29 17:33 -------- d-----w- c:\program files\Foxit Software
2010-03-28 16:44 . 2010-03-28 16:42 -------- d-----w- c:\program files\Canon
2010-03-28 16:44 . 2010-03-28 16:44 -------- d--h--w- c:\documents and settings\All Users\Dane aplikacji\CanonBJ
2010-03-28 16:43 . 2010-03-28 16:43 -------- d--h--w- c:\program files\CanonBJ
2010-03-28 16:39 . 2010-03-28 16:13 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\FLEXnet
2010-03-28 16:26 . 2010-03-28 16:26 -------- d-----w- c:\program files\QuickTime
2010-03-28 16:25 . 2010-03-28 16:25 -------- d-----w- c:\program files\Bonjour
2010-03-28 16:25 . 2010-03-28 15:55 -------- d-----w- c:\program files\Common Files\Adobe
2010-03-28 16:18 . 2010-03-28 16:17 -------- d-----w- c:\program files\ATI Technologies
2010-03-28 16:17 . 2010-03-23 21:36 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2010-03-28 16:06 . 2010-03-28 16:06 -------- d-----w- c:\program files\Adobe Media Player
2010-03-28 16:06 . 2010-03-28 16:06 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-03-28 15:58 . 2010-03-28 15:58 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-03-28 15:51 . 2010-03-28 15:44 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Microsoft Help
2010-03-28 15:50 . 2010-03-28 15:50 -------- d-----w- c:\program files\Microsoft Works
2010-03-28 15:41 . 2010-03-28 15:41 -------- d-----w- c:\program files\MagicDisc
2010-03-28 15:40 . 2010-03-28 15:40 -------- d-----w- c:\program files\IrfanView
2010-03-28 15:36 . 2010-03-28 15:36 -------- d-----w- c:\program files\VideoLAN
2010-03-28 15:35 . 2010-03-28 15:35 -------- d-----w- c:\program files\foobar2000
2010-03-28 15:35 . 2010-03-28 15:35 -------- d-----w- c:\program files\XP Codec Pack
2010-03-28 15:33 . 2010-03-28 15:33 -------- d-----w- c:\program files\Ashampoo
2010-03-28 15:31 . 2010-03-28 15:31 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Alwil Software
2010-03-23 21:37 . 2010-03-23 21:37 -------- d-----w- c:\program files\microsoft frontpage
2010-03-23 21:35 . 2010-03-23 21:35 -------- d-----w- c:\program files\Usługi online
2010-03-23 21:33 . 2010-03-23 21:33 21856 ----a-w- c:\windows\system32\emptyregdb.dat
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mRouterConfig"="c:\program files\Intuwave\Shared\mRouterRuntime\mRouterConfig.exe" [2006-03-02 290816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-12-01 77824]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"Ashampoo FireWall"="c:\program files\Ashampoo\Ashampoo FireWall FREE\FireWall.exe" [2008-06-02 3251800]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-05-06 2815192]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\Tomek\Menu Start\Programy\Autostart\
MagicDisc.lnk - c:\program files\MagicDisc\MagicDisc.exe [2010-3-28 576000]
Xfire.lnk - c:\program files\Xfire\Xfire.exe [2010-5-7 3475856]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
(małpa)="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
(małpa)="Driver"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2010-05-10 64288]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010-05-09 164048]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-05-09 19024]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010-05-01 721904]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2010-02-04 1285864]
.
Zawartość folderu 'Zaplanowane zadania'
2010-05-12 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2010-02-04 16:34]
.
.
------- Skan uzupełniający -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\program files\Ashampoo\Ashampoo FireWall FREE\spi.dll
.
- - - - USUNIĘTO PUSTE WPISY - - - -
HKCU-Run-AdobeBridge - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-12 18:46
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ASFWHide]
"ImagePath"="\??\c:\docume~1\Tomek\USTAWI~1\Temp\ASFWHide"
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
- - - - - - - > 'winlogon.exe'(616)
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'lsass.exe'(672)
c:\program files\Ashampoo\Ashampoo FireWall FREE\spi.dll
.
Czas ukończenia: 2010-05-12 18:49:23
ComboFix-quarantined-files.txt 2010-05-12 16:49
Przed: 5 472 387 072 bajtów wolnych
Po: 5 696 675 840 bajtów wolnych
WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
- - End Of File - - D98A695AA43747002DDE66B0DFF11771