Chyba wirus, proszę o pomoc logi combofix

Dla specjalistów Bezpieczeństwo
#1

Witam. Mam problem, ogólnie mi się komputer przymulił, avast się sam wyłączył i jest brak możliwości jego uruchomienia, chyba mam dobry wirus ;/ zamieszczam logi z hijacks z góry dziękuje.

ComboFix 12-11-23.02 - Kuba 2012-11-23 23:52:26.2.2 - x86

Microsoft Windows 7 Ultimate 6.1.7601.1.1250.48.1045.18.3067.2220 [GMT 1:00]

Uruchomiony z: e:\pobrane\ComboFix.exe

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\users\Kuba\AppData\Roaming\Abqyvu

c:\users\Kuba\AppData\Roaming\Abqyvu\ynaly.exe

c:\users\Kuba\AppData\Roaming\Adydho

c:\users\Kuba\AppData\Roaming\Adydho\enrek.irv

c:\users\Kuba\AppData\Roaming\Begaf

c:\users\Kuba\AppData\Roaming\Begaf\aqew.pou

c:\users\Kuba\AppData\Roaming\Ceasdi

c:\users\Kuba\AppData\Roaming\Ceasdi\zogut.exe

c:\users\Kuba\AppData\Roaming\Fuqayz

c:\users\Kuba\AppData\Roaming\Fuqayz\couni.exe

c:\users\Kuba\AppData\Roaming\Hiire

c:\users\Kuba\AppData\Roaming\Hiire\caazy.yww

c:\users\Kuba\AppData\Roaming\Inpie

c:\users\Kuba\AppData\Roaming\Inpie\yxav.exe

c:\users\Kuba\AppData\Roaming\Iqle

c:\users\Kuba\AppData\Roaming\Iqle\exed.iqe

c:\users\Kuba\AppData\Roaming\Kyvoyd

c:\users\Kuba\AppData\Roaming\Kyvoyd\uluby.exe

c:\users\Kuba\AppData\Roaming\Liek

c:\users\Kuba\AppData\Roaming\Liek\awcy.exe

c:\users\Kuba\AppData\Roaming\Moze

c:\users\Kuba\AppData\Roaming\Moze\qivyx.exe

c:\users\Kuba\AppData\Roaming\Mubi

c:\users\Kuba\AppData\Roaming\Mubi\ikipe.exe

c:\users\Kuba\AppData\Roaming\Nimu

c:\users\Kuba\AppData\Roaming\Nimu\yzicn.exe

c:\users\Kuba\AppData\Roaming\Nisyk

c:\users\Kuba\AppData\Roaming\Nisyk\sobo.dew

c:\users\Kuba\AppData\Roaming\Ofdu

c:\users\Kuba\AppData\Roaming\Ofdu\qise.yki

c:\users\Kuba\AppData\Roaming\Olaff

c:\users\Kuba\AppData\Roaming\Olaff\etir.exe

c:\users\Kuba\AppData\Roaming\Oniw

c:\users\Kuba\AppData\Roaming\Oniw\diup.ybw

c:\users\Kuba\AppData\Roaming\Osfot

c:\users\Kuba\AppData\Roaming\Osfot\kawo.sie

c:\users\Kuba\AppData\Roaming\Otyr

c:\users\Kuba\AppData\Roaming\Otyr\uqyb.goe

c:\users\Kuba\AppData\Roaming\Puihez

c:\users\Kuba\AppData\Roaming\Puihez\ulfe.exe

c:\users\Kuba\AppData\Roaming\Qymyi

c:\users\Kuba\AppData\Roaming\Qymyi\luax.owo

c:\users\Kuba\AppData\Roaming\Ruok

c:\users\Kuba\AppData\Roaming\Ruok\zyhyd.los

c:\users\Kuba\AppData\Roaming\Tyig

c:\users\Kuba\AppData\Roaming\Tyig\qaxiq.ymi

c:\users\Kuba\AppData\Roaming\Uqugir

c:\users\Kuba\AppData\Roaming\Uqugir\fiuw.exe

c:\users\Kuba\AppData\Roaming\Uszeu

c:\users\Kuba\AppData\Roaming\Uszeu\ewah.ahy

c:\users\Kuba\AppData\Roaming\Xaylba

c:\users\Kuba\AppData\Roaming\Xaylba\baria.exe

c:\users\Kuba\AppData\Roaming\Xusog

c:\users\Kuba\AppData\Roaming\Xusog\nyiq.exe

c:\users\Kuba\AppData\Roaming\Xyrey

c:\users\Kuba\AppData\Roaming\Xyrey\xulae.exe

c:\users\Kuba\AppData\Roaming\Ykokr

c:\users\Kuba\AppData\Roaming\Ykokr\leub.xye

c:\users\Kuba\AppData\Roaming\Ypta

c:\users\Kuba\AppData\Roaming\Ypta\akcan.exe

c:\users\Kuba\AppData\Roaming\Yruge

c:\users\Kuba\AppData\Roaming\Yruge\ynxuw.mim

c:\users\Kuba\AppData\Roaming\Yzwo

c:\users\Kuba\AppData\Roaming\Yzwo\lera.mou

c:\windows\unin0415.exe

.

.

((((((((((((((((((((((((( Pliki utworzone od 2012-10-23 do 2012-11-23 )))))))))))))))))))))))))))))))

.

.

2012-11-23 22:31 . 2012-11-23 22:31	388096	----a-r-	c:\users\Kuba\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2012-11-23 22:31 . 2012-11-23 22:31	--------	d-----w-	c:\program files\Trend Micro

2012-11-23 22:17 . 2012-11-23 22:47	170816	----a-w-	c:\windows\system32\drivers\sfi.dat

2012-11-11 16:32 . 2012-11-11 16:32	--------	d-----w-	c:\users\Kuba\AppData\Roaming\ABBYY

2012-11-11 16:29 . 2012-11-11 16:29	--------	d-----w-	c:\program files\Common Files\ABBYY

2012-11-11 16:27 . 2012-11-11 16:27	--------	d-----w-	c:\users\Kuba\AppData\Local\ABBYY

2012-11-11 16:27 . 2012-11-11 16:27	--------	d-----w-	c:\programdata\ABBYY

2012-11-11 08:54 . 2012-11-11 08:54	119808	----a-r-	c:\users\Kuba\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe

2012-11-11 08:54 . 2012-11-11 08:54	--------	d-----w-	c:\users\Kuba\AppData\Local\Apps

2012-11-10 09:44 . 2012-11-10 09:44	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Zuacv

2012-11-09 14:07 . 2012-11-09 14:07	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Pohyp

2012-11-08 18:01 . 2012-11-08 18:01	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Ukofuk

2012-11-07 15:16 . 2012-11-07 15:16	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Rocu

2012-11-07 07:16 . 2012-11-07 07:16	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Meareg

2012-11-06 11:57 . 2012-11-06 11:57	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Erte

2012-11-05 18:12 . 2012-11-05 18:12	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Ifpi

2012-11-02 15:41 . 2012-11-02 15:41	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Eriwup

2012-11-01 15:40 . 2012-11-01 15:40	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Unpu

2012-11-01 00:09 . 2012-11-01 00:09	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Usiwa

2012-10-31 16:09 . 2012-10-31 16:09	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Acub

2012-10-30 17:36 . 2012-10-30 17:36	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Foedge

2012-10-29 20:24 . 2012-10-29 20:24	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Uvqe

2012-10-29 12:24 . 2012-10-29 12:24	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Uzbaz

2012-10-28 20:40 . 2012-10-28 20:40	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Yxun

2012-10-28 11:25 . 2012-10-28 11:26	--------	d-----w-	c:\users\Kuba\AppData\Roaming\GHISLER

2012-10-28 02:51 . 2012-10-28 02:51	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Xibeo

2012-10-27 18:49 . 2012-11-23 21:47	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Lozuyx

2012-10-27 18:49 . 2012-10-27 18:49	--------	d-----w-	c:\users\Kuba\AppData\Roaming\Wepoym

.

.

.

(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-09-29 19:54 . 2012-09-29 19:55	27520	----a-w-	c:\windows\system32\drivers\ew_juextctrl.sys

2012-09-29 19:54 . 2012-09-29 19:55	195072	----a-w-	c:\windows\system32\drivers\ew_juwwanecm.sys

2012-09-29 19:54 . 2012-09-29 19:55	861696	----a-w-	c:\windows\system32\drivers\mod7700.sys

2012-09-29 19:54 . 2012-09-29 19:55	11136	----a-w-	c:\windows\system32\drivers\ew_usbenumfilter.sys

2012-09-29 19:54 . 2012-09-29 19:55	95616	----a-w-	c:\windows\system32\drivers\ew_jucdcacm.sys

2012-09-29 19:54 . 2012-09-29 19:55	76544	----a-w-	c:\windows\system32\drivers\ew_jubusenum.sys

2012-09-29 19:54 . 2012-09-29 19:55	67584	----a-w-	c:\windows\system32\drivers\ew_jucdcecm.sys

2012-09-29 19:54 . 2012-09-29 19:55	19200	----a-w-	c:\windows\system32\drivers\ew_hwupgrade.sys

2012-09-29 19:54 . 2012-09-29 19:55	369152	----a-w-	c:\windows\system32\drivers\ewusbwwan.sys

2012-09-29 19:54 . 2012-09-29 19:55	25856	----a-w-	c:\windows\system32\drivers\ewdcsc.sys

2012-09-29 19:54 . 2012-09-29 19:55	199168	----a-w-	c:\windows\system32\drivers\ewusbmdm.sys

2012-09-29 19:54 . 2012-09-29 19:55	102784	----a-w-	c:\windows\system32\drivers\ew_hwusbdev.sys

2012-09-29 19:54 . 2012-09-29 19:55	1112288	----a-w-	c:\windows\system32\WdfCoInstaller01007.dll

2012-09-29 19:54 . 2012-09-29 19:55	1112288	----a-w-	c:\windows\system32\drivers\WdfCoInstaller01007.dll

2012-09-19 08:02 . 2012-09-19 08:02	83168	----a-w-	c:\windows\system32\drivers\ssudbus.sys

2012-09-19 08:02 . 2012-09-19 08:02	181344	----a-w-	c:\windows\system32\drivers\ssudmdm.sys

2012-08-30 09:57 . 2012-07-13 12:14	139280	----a-w-	c:\windows\system32\drivers\PnkBstrK.sys

2012-08-30 09:57 . 2012-07-13 13:17	281872	----a-w-	c:\windows\system32\PnkBstrB.xtr

2012-08-30 09:57 . 2012-07-13 12:14	281872	----a-w-	c:\windows\system32\PnkBstrB.exe

2012-08-30 09:56 . 2012-07-13 12:14	111928	----a-w-	c:\windows\system32\PnkBstrB.ex0

.

.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  

REGEDIT4

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"PLFSetI"="c:\windows\PLFSetI.exe" [2012-03-15 200704]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 0 (0x0)

"EnableInstallerDetection"= 0 (0x0)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"EnableVirtualization"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

"EnableLinkedConnections"= 1 (0x1)

.

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"TaskbarNoNotification"= 1 (0x1)

"DisallowCpl"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux1"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2012-01-03 07:37	843712	----a-w-	c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]

2009-11-15 09:42	33120	----a-w-	d:\programy\ALCOHOL 120\AxAutoMntSrv.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]

2010-03-13 13:54	91520	----a-w-	d:\programy\MICROSOFT OFFICE\Office14\BCSSync.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bonus.SSR.FR10]

2010-01-31 12:19	941320	----a-w-	d:\programy\ABBY\Bonus.ScreenshotReader.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]

2012-02-13 08:06	3481408	----a-w-	d:\programy\DEAMON TOOLS\DAEMON Tools Lite\DTLite.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]

2010-04-03 00:27	1234216	----a-w-	d:\programy\NERO\Nero BackItUp\NBAgent.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]

2009-11-30 19:46	8120864	------w-	c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

2012-06-07 17:17	17425072	----a-r-	c:\program files\Skype\Phone\Skype.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

2012-01-17 09:07	252296	----a-w-	c:\program files\Common Files\Java\Java Update\jusched.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]

2012-07-26 12:16	247768	----a-w-	c:\program files\TomTom HOME 2\TomTomHOMERunner.exe

.

R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [x]

R2 KMService;KMService;c:\windows\system32\srvany.exe [x]

R2 PLAY ONLINE. RunOuc;PLAY ONLINE. OUC;c:\program files\PLAY ONLINE\UpdateDog\ouc.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]

R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [x]

R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]

R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [x]

R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys [x]

R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [x]

R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys [x]

R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys [x]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]

R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [x]

R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]

R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]

R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]

R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]

S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]

S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]

S2 ABBYY.Licensing.FineReader.Professional.10.0;ABBYY FineReader 10 PE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe [x]

S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [x]

S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]

S3 k57nd60x;Karta Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60x.sys [x]

S3 netw5v32;Sterownik karty Intel(R) Wireless WiFi Link 5000 Series dla systemu Windows Vista w wersji 32-bitowej;c:\windows\system32\DRIVERS\netw5v32.sys [x]

.

.

.

------- Skan uzupełniający -------

.

uStart Page = 

IE: E&ksportuj do programu Microsoft Excel - d:\programy\MICROS~1\Office14\EXCEL.EXE/3000

TCP: DhcpNameServer = 192.168.1.254

FF - ProfilePath - c:\users\Kuba\AppData\Roaming\Mozilla\Firefox\Profiles\pyrwgo9d.hfdnfd\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/

FF - user.js: network.cookie.cookieBehavior - 0

FF - user.js: privacy.clearOnShutdown.cookies - false

FF - user.js: security.warn_viewing_mixed - false

FF - user.js: security.warn_viewing_mixed.show_once - false

FF - user.js: security.warn_submit_insecure - false

FF - user.js: security.warn_submit_insecure.show_once - false

.

- - - - USUNIĘTO PUSTE WPISY - - - -

.

HKCU-Run-Zyifimoq - c:\users\Kuba\AppData\Roaming\Iddoci\cewo.exe

MSConfigStartUp-Zyifimoq - c:\users\Kuba\AppData\Roaming\Iddoci\cewo.exe

AddRemove-01_Simmental - c:\program files\SAMSUNG\USB Drivers\01_Simmental\Uninstall.exe

AddRemove-02_Siberian - c:\program files\SAMSUNG\USB Drivers\02_Siberian\Uninstall.exe

AddRemove-03_Swallowtail - c:\program files\SAMSUNG\USB Drivers\03_Swallowtail\Uninstall.exe

AddRemove-04_semseyite - c:\program files\SAMSUNG\USB Drivers\04_semseyite\Uninstall.exe

AddRemove-05_Sloan - c:\program files\SAMSUNG\USB Drivers\05_Sloan\Uninstall.exe

AddRemove-06_Spencer - c:\program files\SAMSUNG\USB Drivers\06_Spencer\Uninstall.exe

AddRemove-07_Schorl - c:\program files\SAMSUNG\USB Drivers\07_Schorl\Uninstall.exe

AddRemove-08_EMPChipset - c:\program files\SAMSUNG\USB Drivers\08_EMPChipset\Uninstall.exe

AddRemove-09_Hsp - c:\program files\SAMSUNG\USB Drivers\09_Hsp\Uninstall.exe

AddRemove-11_HSP_Plus_Default - c:\program files\SAMSUNG\USB Drivers\11_HSP_Plus_Default\Uninstall.exe

AddRemove-12_Symbian_USB_Download_Driver - c:\program files\SAMSUNG\USB Drivers\12_Symbian_USB_Download_Driver\Uninstall.exe

AddRemove-15_Symbian_Samsung_PC_DLC_Driver - c:\program files\SAMSUNG\USB Drivers\15_Symbian_Samsung_PC_DLC_Driver\Uninstall.exe

AddRemove-16_Shrewsbury - c:\program files\SAMSUNG\USB Drivers\16_Shrewsbury\Uninstall.exe

AddRemove-17_EMP_Chipset2 - c:\program files\SAMSUNG\USB Drivers\17_EMP_Chipset2\Uninstall.exe

AddRemove-18_Zinia_Serial_Driver - c:\program files\SAMSUNG\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe

AddRemove-19_VIA_driver - c:\program files\SAMSUNG\USB Drivers\19_VIA_driver\Uninstall.exe

AddRemove-20_NXP_Driver - c:\program files\SAMSUNG\USB Drivers\20_NXP_Driver\Uninstall.exe

AddRemove-21_Searsburg - c:\program files\SAMSUNG\USB Drivers\21_Searsburg\Uninstall.exe

.

.

.

--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

"MSCurrentCountry"=dword:000000b5

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Czas ukończenia: 2012-11-24 00:02:18

ComboFix-quarantined-files.txt 2012-11-23 23:02

.

Przed: 52 143 714 304 bajtów wolnych

Po: 53 778 718 720 bajtów wolnych

.

- - End Of File - - 1E622A2EFA9F5F871AC62AFE3B3A48DF
#2

kubaa_17 ,

Proszę zapoznać się z tematem i poprawić tytuł na konkretny, mówiący o problemie. W celu dokonania zaleconej korekty proszę użyć przycisku Edytuj przy poście otwierającym ten temat.

Wklejanie logów na forum - przeczytaj i zastosuj się do Tematu

Zignorowanie zalecenia będzie skutkowało usunięciem tematu do Kosza.

analiza-dezynfekcja-zestaw-narzedzi-nieingerencyjnych-t485632.html