Witam!
Od jakiegos czasu nie uruchamiaja mi się niektóre pliki z rozszezeniem .exe. Nie pomaga ponowne zainstalowanie aplikacji. Skanowałem go paroma programami, aż usłyszałem o combofix. Przeskanowałem go nim a w logu pod napisem wpisy startowe rejestru są właśnie niektóre z tych programów które mi nie chcą odpalić!.
Zresztą… zobaczcie sami:
ComboFix 10-01-04.01 - aa 2010-01-09 12:42:18.3.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.255.122 [GMT 1:00]
Uruchomiony z: c:\documents and settings\aa\Pulpit\ComboFix.exe
.
((((((((((((((((((((((((( Pliki utworzone od 2009-12-09 do 2010-01-09 )))))))))))))))))))))))))))))))
.
2010-01-08 20:07 . 2010-01-08 20:35 -------- d-----w- c:\program files\SkanerOnline
2010-01-08 18:11 . 2010-01-09 10:36 -------- d-----w- c:\program files\Valve
2010-01-03 16:26 . 2010-01-08 09:53 -------- d-----w- c:\documents and settings\Daria\Dane aplikacji\f2fElementary
2009-12-30 10:03 . 2009-12-30 10:03 -------- d-----w- c:\program files\ip changer
2009-12-27 21:21 . 2009-12-27 21:22 -------- d-----w- c:\program files\KM Wakeup
2009-12-24 12:44 . 2009-12-24 12:44 -------- d-----w- c:\documents and settings\aa\Ustawienia lokalne\Dane aplikacji\Mozilla
2009-12-21 17:21 . 2009-12-31 09:01 403047 ----a-w- c:\windows\Fishing_beta_1.3.1.exe
2009-12-11 18:45 . 2009-12-16 13:31 -------- d-----w- c:\program files\Metin2_PL
2009-12-10 19:04 . 2009-12-10 19:04 -------- d-----w- c:\documents and settings\aa\Ustawienia lokalne\Dane aplikacji\Conduit
2009-12-10 18:51 . 2009-12-10 18:51 -------- d-----w- c:\windows\system32\xircom
2009-12-10 18:51 . 2009-12-10 18:51 -------- d-----w- c:\windows\system32\wbem\snmp
2009-12-10 18:51 . 2009-12-10 18:51 -------- d-----w- c:\program files\microsoft frontpage
2009-12-10 17:34 . 2009-12-10 17:34 50040 ----a-w- c:\documents and settings\aa\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2009-12-10 13:27 . 2009-12-10 13:27 -------- d-----w- c:\documents and settings\aa\Dane aplikacji\DivX
2009-12-10 13:26 . 2009-12-23 15:26 -------- d-----w- c:\documents and settings\aa\Dane aplikacji\Winamp
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-09 11:35 . 2008-07-07 08:49 -------- d-----w- c:\program files\OO Software
2010-01-08 20:48 . 2008-10-09 12:04 -------- d-----w- c:\program files\AMT
2010-01-07 14:06 . 2008-07-07 08:40 -------- d-----w- c:\program files\Gadu-Gadu
2010-01-02 10:37 . 2009-03-23 16:03 1 ----a-w- c:\documents and settings\Daria\Dane aplikacji\OpenOffice.ux.pl\3\user\uno_packages\cache\stamp.sys
2009-12-28 18:05 . 2009-08-29 14:50 3532 ----a-w- C:\drmHeader.bin
2009-12-11 18:30 . 2009-02-20 19:18 -------- d-----w- c:\program files\Wizard
2009-12-10 19:19 . 2008-07-07 08:43 -------- d-----w- c:\program files\Opera
2009-12-10 18:56 . 2008-07-07 08:38 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab
2009-12-10 10:03 . 2001-10-26 16:15 84916 ----a-w- c:\windows\system32\perfc015.dat
2009-12-10 10:03 . 2001-10-26 16:15 493632 ----a-w- c:\windows\system32\perfh015.dat
2009-12-09 20:36 . 2009-12-09 17:09 -------- d-----w- c:\documents and settings\aa\Dane aplikacji\Gadu-Gadu 10
2009-12-08 18:05 . 2009-12-08 18:05 -------- d-----w- c:\program files\Alwil Software
2009-12-08 17:30 . 2009-12-08 17:30 -------- d-----w- c:\documents and settings\aa\Dane aplikacji\Gadu-Gadu
2009-12-02 17:52 . 2009-12-02 17:52 37376 ----a-w- c:\documents and settings\aa\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll
2009-12-02 17:52 . 2009-12-02 17:52 11776 ----a-w- c:\documents and settings\aa\Dane aplikacji\Gadu-Gadu 10\_userdata\npgg.2.dll
2009-11-12 16:29 . 2008-12-19 15:45 137545 ----a-w- c:\windows\War3Unin.dat
2009-11-12 16:07 . 2008-12-19 15:45 2829 ----a-w- c:\windows\War3Unin.pif
2009-11-12 16:07 . 2008-12-19 15:45 139264 ----a-w- c:\windows\War3Unin.exe
2009-10-29 07:44 . 2008-03-01 14:02 832512 ------w- c:\windows\system32\wininet.dll
2009-10-29 07:44 . 2008-05-02 06:47 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-10-29 07:44 . 2008-05-02 06:47 17408 ----a-w- c:\windows\system32\corpol.dll
2009-10-21 05:40 . 2008-04-14 20:50 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-21 05:40 . 2008-04-14 20:50 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-20 16:20 . 2008-04-13 22:23 265728 ----a-w- c:\windows\system32\drivers\http.sys
2009-10-13 10:34 . 2008-04-14 20:50 271360 ----a-w- c:\windows\system32\oakley.dll
2009-10-12 13:40 . 2008-04-14 20:50 79872 ----a-w- c:\windows\system32\raschap.dll
2009-10-12 13:40 . 2008-04-14 20:50 150016 ----a-w- c:\windows\system32\rastls.dll
2008-07-19 15:51 . 2008-07-19 15:50 24 --sh--w- c:\windows\S2A42A6B1.tmp
.
((((((((((((((((((((((((((((( SnapShot@2009-12-10_18.33.21 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-12-01 23:46 . 2006-12-01 23:46 65536 c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll
+ 2006-12-01 23:26 . 2006-12-01 23:26 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2006-12-01 21:56 . 2006-12-01 21:56 96256 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll
+ 2008-04-11 20:17 . 2008-04-11 20:17 89088 c:\windows\system32\SkanerOnlineUninstall.exe
+ 2010-01-09 11:37 . 2010-01-09 11:37 45056 c:\windows\Installer\{ED6C5ECD-5AA4-4054-BF67-8F49526E5765}\NewShortcut24_D840A6EA92214470BCE0FD7EF9D6C0CF.exe
+ 2009-09-11 23:29 . 2009-09-11 23:29 9984 c:\windows\system32\oodbsrs.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
+ 2009-01-21 16:11 . 2009-01-21 16:11 473600 c:\windows\system32\SkanerOnline.dll
+ 2009-09-11 23:29 . 2009-09-11 23:29 546048 c:\windows\system32\oodssrs.dll
+ 2009-09-11 23:33 . 2009-09-11 23:33 199936 c:\windows\system32\oodbs.exe
+ 2009-12-27 21:22 . 2009-12-27 21:22 331264 c:\windows\Installer\372b9e.msi
+ 2010-01-09 11:37 . 2010-01-09 11:37 335872 c:\windows\Installer\{ED6C5ECD-5AA4-4054-BF67-8F49526E5765}\NewShortcut11_D840A6EA92214470BCE0FD7EF9D6C0CF.exe
+ 2010-01-09 11:37 . 2010-01-09 11:37 335872 c:\windows\Installer\{ED6C5ECD-5AA4-4054-BF67-8F49526E5765}\NewShortcut1_D840A6EA92214470BCE0FD7EF9D6C0CF.exe
+ 2010-01-09 11:37 . 2010-01-09 11:37 335872 c:\windows\Installer\{ED6C5ECD-5AA4-4054-BF67-8F49526E5765}\ARPPRODUCTICON.exe
+ 2006-12-01 23:25 . 2006-12-01 23:25 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
+ 2009-09-11 23:34 . 2009-09-11 23:34 1254656 c:\windows\system32\ooscrsav.scr
+ 2010-01-08 18:49 . 2010-01-08 18:49 1295872 c:\windows\Installer\eeba06.msi
+ 2005-08-23 06:47 . 2005-08-23 06:47 1295872 c:\windows\Installer\b7104.msi
+ 2009-12-10 19:19 . 2009-12-10 19:19 2226688 c:\windows\Installer\b6ec2.msi
+ 2010-01-09 11:37 . 2010-01-09 11:37 4505088 c:\windows\Installer\2029b.msi
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
2008-09-02 14:05 398776 ----a-w- c:\program files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OODefragTray"="d:\oo\oodtray.exe" [2009-09-11 2524416]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
"nltide_3"="advpack.dll" [2009-10-29 124928]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^America Online 9.0 Tray Icon.lnk]
path=c:\documents and settings\All Users\Menu Start\Programy\Autostart\America Online 9.0 Tray Icon.lnk
backup=c:\windows\pss\America Online 9.0 Tray Icon.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Daria^Menu Start^Programy^Autostart^lsass.exe]
path=c:\documents and settings\Daria\Menu Start\Programy\Autostart\lsass.exe
backup=c:\windows\pss\lsass.exeStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
2006-01-02 14:41 45056 ----a-w- c:\program files\ATI Technologies\ATI.ACE\CLI.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIModeChange]
2001-09-04 21:24 28672 ----a-w- c:\windows\system32\Ati2mdxx.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
2003-02-28 19:00 315392 ----a-w- c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
2008-03-03 16:06 1848648 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2008-03-10 16:20 689488 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
2008-04-14 20:51 15360 ------w- c:\windows\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
2009-12-02 17:53 11833960 ----a-w- c:\program files\Gadu-Gadu\gg.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu 10]
2009-12-02 17:53 11833960 ----a-w- c:\program files\Gadu-Gadu\gg.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
2001-07-09 10:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-09-05 08:17 77824 ----a-w- c:\program files\QuickTime\qttask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2006-11-17 03:42 577536 ------r- c:\windows\soundman.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
e:\steam\Steam.exe [BU]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2008-08-03 23:02 36352 ----a-w- c:\program files\Winamp\winampa.exe
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Gadu-Gadu\\gg.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2008-07-08 717296]
S2 Augmofcyihb;Augmofcyihb;c:\windows\System32\svchost.exe -k netsvcs [2008-04-14 14336]
S2 dlgx1;dlgx1;c:\windows\system32\dlg.exe [2009-10-02 223744]
S3 hidusbf;USB Mouse Rate Adjuster Lower Filter by SweetLow;c:\windows\system32\drivers\hidusbf.sys [2009-04-04 4544]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Augmofcyihb
.
.
------- Skan uzupełniający -------
.
uStart Page = about:blank
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
Trusted Zone: mks.com.pl\www
FF - ProfilePath - c:\documents and settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\fz2oop3o.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1708250&SearchSource=3&q=
FF - prefs.js: browser.search.selectedEngine - Free_Lunch_Design Customized Web Search
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1708250&SearchSource=2&q=
FF - component: c:\program files\DAEMON Tools Toolbar\FirefoxDTT\components\DTToolbarFF.dll
FF - component: c:\program files\Mozilla Firefox\extensions\{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec}\components\FFAlert.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - USUNIĘTO PUSTE WPISY - - - -
MSConfigStartUp-OODefragTray - c:\windows\system32\oodtray.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-09 12:52
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG10.00.00.01WORKSTATION"="C6C94AD4DA44989F9AEA1E8FFB1CCF5DCCC518675C7D698C395EE5375A8E308C6D70986E9D643348722197DB47FDD47FD84350026C4E28A7A229C17B61D7A7D9F6075877D7D4AF51A4E40F3ACB74D4F9FAA26F363E23FD11E909D435C2E65ACD766C8887DA479D2704DFA8D2A6C9959CE276DFE2DAFE85983A19ED919215585B37E402BFE90D227D161D6258E86A717BF3B563E742866CD374593243DFE3C43936976D42FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CA6A0AC4980AC79339DB7CE019D40AA5CC038D530D6EB3452BA7FD869164D679469BC5B8F72FD6104E29B2D4C9DF1659BCCEF22AD7F5A8BE5AA4C9C32352AA084F240A03FABB8534A1B2D44570DE64970703471D590CE8BDBCC3372380587B8F78949D708BCF6941AD073263D3B37DBF73D3953C3BF846E2FBF671E891743C55B60D5A919BE0F42BCC8466DCC5CE23EEDA2CDF98A0045FAAC425006133A8ED3AB2487CE617EBACC00B9A0CA96DA4BE7908466A9FA783BCBA104FBA10BF37E42E9F12595967D9879B44D228071543AA0A2BA1C392C82F8D064AA9B0068788DC499DA976133EEAADFB2248C66789959876A1128157A2D71CC4BCD03C067B6996443E66DA7F33CD76DD0D0C7E70830390DB2C7EBBF84BBFD55317CAC99094D627B750E5971D7016A63EF595D834452CB794A936B4B2DA35A55F63633D4110F8D3ABF402F60A68E11D56D3A7ECD116D6AE3041C4F601C0FA78D8071D94F078325A3365DEA2368685DAEB362FBEB9BA24F3B367C613BBB5EE90E349604F8B7661691723D2882EAC8C7A929B2CD9A4FC799C1BB4614AC3CA209BEFE81BB5833A733AD112AAB57BD9AA757BB050D29DE65CD8CF27C78180FA252D94F85AC074D6AAFF9B1DF5810377E3E9C5EA2FAFA413B5206BD17C8776D58F5EF9965A8B01E0627487912BA3071CA2B3307CBF906B03872EA050360D4527387E1565B2419030794BF91E67F4CC70677272D3210D72A045E4D321F3F52FA5600E7FE14B7131AABDBDEA6F77810DB6D8BD8D07DE88D71762914B24088A36C173C8B14B02189CAE741F268531B3993F1B7FE71C8D3DB0C1E4AF7FAAD0311EC7F7BAC9AC6C0F8B8E36C220DFA821917B72D9F9623420942BC1D0781A49DF6878F647D19DE9B73D37AED624B65EB1855968219C98FCB71254761A2BF54E6C48BF9FC049AF45A9DCA3BB57F61FABA2EFC1CB19C17842B0385E7B902B461137F0D23321C30FB4BAF916919998F1CF16B8488992D916EC0C1797AAE2DE463F83F62A755746C58DCF8E07D51251A1ABC71A550FC264E2B0D465B12A982D3E515B026D5991067E1A6D935227CE8493AE9765D9C81B1E58D39B949F37C338FE80714B72E1945BDE6DE474D381B01EA36E9446A49B1D1F8DD8DDAA4"
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
- - - - - - - > 'winlogon.exe'(644)
c:\windows\system32\wininet.dll
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'lsass.exe'(708)
c:\windows\system32\wininet.dll
.
Czas ukończenia: 2010-01-09 12:55:52
ComboFix-quarantined-files.txt 2010-01-09 11:55
ComboFix2.txt 2010-01-09 09:53
ComboFix3.txt 2009-12-10 18:39
Przed: 4 531 273 728 bajtów wolnych
Po: 4 517 404 672 bajtów wolnych
Current=5 Default=5 Failed=4 LastKnownGood=6 Sets=1,2,3,4,5,6
- - End Of File - - E81C7BE52187EF4A0A345692AB898BD5
To jest drugi log we wcześniejszym robionym godzine wcześniej usunęła tylko 2 pliki systemowe.
Proszę więc o pomoc
Dziex z góry i pozdrawiam;)
