Ostatnio mój komp spowolnił swoją pracę. Przeskanowałem go antyvirem (KIS 2009) i wykrył dwa trojany(Trojan-PWS.Win32.steam.dj; Trojan.Win32.Genome.ljf ) z którymi sobie poradził, ale system chodzi bez zmian. Dodam, że format był robiony na początku stycznia.
Mógłby ktoś spojrzeć, czy jest tu coś niepokojącego?
Log z combofixa:
- Kod: Zaznacz wszystko
ComboFix 08-11-03.06 - Tomek 2009-02-15 19:03:19.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.103 [GMT 1:00]
Uruchomiony z: d:\documents and settings\Tomek\Moje dokumenty\ComboFix.exe
* Utworzono nowy punkt przywracania
.
- TRYB ZREDUKOWANEJ FUNKCJONALNOŚCI -
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
d:\windows\system32\Cfx32.lic
d:\windows\system32\cfx32.ocx
.
((((((((((((((((((((((((( Pliki utworzone od 2009-01-15 do 2009-02-15 )))))))))))))))))))))))))))))))
.
2009-02-15 15:34 . 2009-02-15 15:47 <DIR> d-------- d:\windows\nview
2009-02-15 15:34 . 2005-08-02 09:35 176,128 --a------ d:\windows\system32\nvudisp.exe
2009-02-15 15:34 . 2009-02-15 16:45 29,204 --a------ d:\windows\system32\nvapps.xml
2009-02-15 15:34 . 2005-08-02 09:35 14,757 --a------ d:\windows\system32\nvdisp.nvu
2009-02-08 18:33 . 2009-02-08 18:33 <DIR> d-------- d:\documents and settings\Tomek\Dane aplikacji\ZoomBrowser EX
2009-02-08 18:30 . 2009-02-08 18:30 <DIR> d-------- d:\documents and settings\Tomek\Dane aplikacji\CANON INC
2009-02-08 18:30 . 2009-02-08 18:33 <DIR> d-------- d:\documents and settings\Tomek\Dane aplikacji\CameraWindowDC
2009-02-08 18:29 . 2004-08-04 00:44 159,232 --a------ d:\windows\system32\ptpusd.dll
2009-02-08 18:29 . 2004-08-03 22:58 15,104 --a------ d:\windows\system32\drivers\usbscan.sys
2009-02-08 18:29 . 2004-08-03 22:58 15,104 --a--c--- d:\windows\system32\dllcache\usbscan.sys
2009-02-08 18:29 . 2001-10-26 17:29 5,632 --a------ d:\windows\system32\ptpusb.dll
2009-02-08 18:12 . 2009-02-08 18:12 <DIR> d-------- d:\documents and settings\All Users\Dane aplikacji\ZoomBrowser
2009-02-08 18:10 . 2009-02-08 18:23 <DIR> d-------- d:\program files\Canon
2009-02-08 18:09 . 2009-02-08 18:09 <DIR> d-------- d:\program files\Common Files\Canon
2009-02-05 18:32 . 2009-02-15 14:43 <DIR> d-------- D:\Karolina
2009-02-04 17:05 . 2009-02-04 17:09 <DIR> d-------- d:\program files\PhotoFiltre
2009-02-04 15:13 . 2009-02-04 15:48 101,287 --a------ d:\windows\system32\drivers\klin.dat
2009-02-04 15:13 . 2009-02-04 15:48 89,601 --a------ d:\windows\system32\drivers\klick.dat
2009-02-04 15:12 . 2009-02-04 15:12 <DIR> d-------- d:\program files\Kaspersky Lab
2009-02-04 15:12 . 2009-02-15 16:45 <DIR> d-------- d:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab
2009-02-04 15:12 . 2009-02-15 16:24 3,487,264 --ahs---- d:\windows\system32\drivers\fidbox.dat
2009-02-04 15:12 . 2009-02-15 16:24 286,752 --ahs---- d:\windows\system32\drivers\fidbox2.dat
2009-02-04 15:12 . 2009-02-15 16:24 30,420 --ahs---- d:\windows\system32\drivers\fidbox.idx
2009-02-04 15:12 . 2009-02-15 16:24 4,156 --ahs---- d:\windows\system32\drivers\fidbox2.idx
2009-02-04 15:10 . 2009-02-04 15:10 <DIR> d-------- d:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2009-01-30 17:31 . 2009-01-30 19:18 69 --a------ d:\windows\NeroDigital.ini
2009-01-27 19:06 . 2009-01-27 22:40 <DIR> d-------- d:\windows\system32\CatRoot_bak
2009-01-27 18:19 . 2008-08-14 14:46 2,137,600 -----c--- d:\windows\system32\dllcache\ntkrnlmp.exe
2009-01-27 18:18 . 2008-08-14 14:46 2,181,632 -----c--- d:\windows\system32\dllcache\ntoskrnl.exe
2009-01-27 18:18 . 2008-08-14 14:46 2,059,008 -----c--- d:\windows\system32\dllcache\ntkrnlpa.exe
2009-01-27 18:18 . 2008-08-14 14:46 2,017,280 -----c--- d:\windows\system32\dllcache\ntkrpamp.exe
2009-01-27 17:39 . 2008-06-14 19:01 273,024 --------- d:\windows\system32\drivers\bthport.sys
2009-01-27 17:39 . 2008-06-14 19:01 273,024 -----c--- d:\windows\system32\dllcache\bthport.sys
2009-01-27 16:52 . 2008-10-24 12:10 453,632 -----c--- d:\windows\system32\dllcache\mrxsmb.sys
2009-01-27 16:18 . 2009-01-28 16:25 <DIR> d--h----- d:\windows\$hf_mig$
2009-01-27 16:18 . 2005-02-25 04:36 22,752 --a------ d:\windows\system32\spupdsvc.exe
2009-01-23 18:11 . 2009-01-23 18:11 <DIR> d-------- d:\documents and settings\Tomek\Dane aplikacji\DivX
2009-01-17 12:02 . 2009-02-12 20:18 <DIR> d-------- d:\program files\PokerStars
2009-01-16 17:12 . 2009-01-16 17:12 <DIR> d-------- d:\program files\FLVPlayer
2009-01-15 23:31 . 2009-01-15 23:31 <DIR> d-------- d:\program files\Nokia
2009-01-15 23:31 . 2009-01-15 23:31 <DIR> d-------- d:\program files\InstallShield Installation Information
2009-01-15 23:31 . 2009-01-15 23:31 <DIR> d-------- d:\program files\Common Files\Nokia
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-15 17:56 --------- d-----w d:\documents and settings\Tomek\Dane aplikacji\foobar2000
2009-02-10 14:14 33,808 ----a-w d:\windows\system32\drivers\klbg.sys
2009-01-31 10:19 --------- d-----w d:\program files\Common Files\Ahead
2009-01-23 17:19 --------- d-----w d:\program files\SubEdit-Player
2009-01-15 22:30 --------- d-----w d:\program files\Common Files\InstallShield
2009-01-11 23:02 --------- d-----w d:\documents and settings\All Users\Dane aplikacji\Last.fm
2009-01-11 23:00 --------- d-----w d:\program files\Last.fm
2009-01-07 16:47 --------- d-----w d:\program files\Common Files\Borland Shared
2009-01-07 16:42 --------- d-----w d:\program files\Borland
2009-01-04 17:32 --------- d-----w d:\program files\Słownik
2009-01-02 22:58 --------- d-----w d:\documents and settings\Tomek\Dane aplikacji\GanymedeNet
2009-01-02 21:34 --------- d-----w d:\program files\IrfanView
2009-01-02 21:02 --------- d-----w d:\program files\OrangeBS
2009-01-02 21:01 --------- d-----w d:\program files\Common Files\France Telecom
2009-01-02 20:58 --------- d-----w d:\program files\CardDetector
2009-01-02 20:17 --------- d-----w d:\program files\Microsoft.NET
2009-01-02 20:15 --------- d-----w d:\program files\Microsoft Works
2009-01-02 20:05 --------- d-----w d:\documents and settings\Tomek\Dane aplikacji\Ahead
2009-01-02 20:00 --------- d-----w d:\program files\Nero
2009-01-02 19:42 --------- d-----w d:\program files\Winamp
2009-01-02 19:02 --------- d-----w d:\program files\BearShare
2009-01-02 19:00 --------- d-----w d:\program files\KAV
2009-01-02 18:53 --------- d-----w d:\program files\Alcohol Soft
2009-01-02 18:53 --------- d-----w d:\documents and settings\Tomek\Dane aplikacji\Gadu-Gadu
2009-01-02 18:50 --------- d-----w d:\program files\ZipGenius 6
2009-01-02 18:50 --------- d-----w d:\documents and settings\Tomek\Dane aplikacji\ZipGenius
2009-01-02 18:48 --------- d-----w d:\program files\foobar2000
2009-01-02 18:46 --------- d-----w d:\program files\Real Alternative
2009-01-02 18:46 --------- d-----w d:\program files\Media Player Classic
2009-01-02 18:45 --------- d-----w d:\program files\Codec Pack - All In 1
2009-01-02 18:44 737,280 ----a-w d:\windows\iun6002.exe
2009-01-02 18:44 --------- d-----w d:\program files\Codec
2009-01-02 18:44 --------- d-----w d:\program files\7-Zip
2009-01-02 18:43 --------- d-----w d:\program files\Java
2009-01-02 18:43 --------- d-----w d:\program files\Common Files\Java
2009-01-02 18:41 --------- d-----w d:\program files\Gadu-Gadu
2009-01-02 18:23 --------- d-----w d:\program files\VIA Technologies, Inc
2009-01-02 18:14 --------- d-----w d:\program files\microsoft frontpage
2009-01-02 18:11 --------- d-----w d:\program files\Usługi online
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\system32\ctfmon.exe" [2004-08-03 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="d:\program files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 83608]
"CardDetectorHUAWEI170"="d:\program files\CardDetector\HUAWEI170\CardDetector.exe" [2007-11-13 278528]
"BEWINTERNET-PL-IEWSessionManager"="d:\program files\OrangeBS\BEWInternet-PL-IEW\SessionManager\SessionManager.exe" [2008-01-21 107248]
"AVP"="d:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-02-10 206088]
"NvCplDaemon"="d:\windows\system32\NvCpl.dll" [2005-08-02 7110656]
"NvMediaCenter"="d:\windows\system32\NvMcTray.dll" [2005-08-02 86016]
"nwiz"="nwiz.exe" [2005-08-02 d:\windows\system32\nwiz.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
d:\documents and settings\Tomek\Menu Start\Programy\Autostart\
Gadu-Gadu.lnk - d:\program files\Gadu-Gadu\gg.exe [2007-05-10 2111176]
Last.fm.lnk - d:\program files\Last.fm\LastFM.exe [2009-01-12 1138688]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=d:\progra~1\KASPER~1\KASPER~1\mzvkbd.dll,d:\progra~1\KASPER~1\KASPER~1\mzvkbd3.dll,d:\progra~1\KASPER~1\KASPER~1\adialhk.dll,d:\progra~1\KASPER~1\KASPER~1\kloehk.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.l3acm"= l3codecp.acm
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"d:\\Program Files\\OrangeBS\\BEWInternet-PL-IEW\\Connectivity\\ConnectivityManager.exe"=
R0 klbg;Kaspersky Lab Boot Guard Driver;d:\windows\system32\drivers\klbg.sys [2009-02-10 33808]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;d:\windows\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;d:\windows\system32\DRIVERS\klim5.sys [2008-04-30 24592]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\I]
\Shell\AutoRun\command - I:\AutoRunCardDetector.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{15cdc9d9-d90a-11dd-be7e-c1ef353b1fd8}]
\Shell\AutoRun\command - I:\AutoRunCardDetector.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{42cc3427-e663-11dd-be9d-ee37b89a76d8}]
\Shell\AutoRun\command - d:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe pagefile.sys.vbs
*Newly Created Service* - CATCHME
.
- - - - USUNIĘTO PUSTE WPISY - - - -
MSConfigStartUp-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - d:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
MSConfigStartUp-NeroFilterCheck - d:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
------- Skan uzupełniający -------
.
FireFox -: Profile - d:\documents and settings\Tomek\Dane aplikacji\Mozilla\Firefox\Profiles\elvlehjb.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - onet.pl
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-15 19:04:12
Windows 5.1.2600 Dodatek Service Pack 2 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
.
Czas ukończenia: 2009-02-15 19:06:22
ComboFix-quarantined-files.txt 2009-02-15 18:06:19
Przed: 3 680 583 680 bajtów wolnych
Po: 5,575,475,200 bajtów wolnych
165 --- E O F --- 2009-01-28 15:25:59
log z Hijack:
- Kod: Zaznacz wszystko
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:37:52, on 2009-02-16
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
D:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
D:\WINDOWS\system32\nvsvc32.exe
D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Canon\CAL\CALMAIN.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
D:\Program Files\CardDetector\HUAWEI170\CardDetector.exe
D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\OrangeBS\BEWInternet-PL-IEW\Launcher\Launcher.exe
D:\Program Files\Gadu-Gadu\gg.exe
D:\Program Files\Last.fm\LastFM.exe
D:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
D:\WINDOWS\system32\wscntfy.exe
D:\Program Files\OrangeBS\BEWInternet-PL-IEW\systray\systrayapp.exe
D:\Program Files\OrangeBS\BEWInternet-PL-IEW\connectivity\connectivitymanager.exe
D:\Program Files\OrangeBS\BEWInternet-PL-IEW\connectivity\CoreCom\CoreCom.exe
D:\Program Files\OrangeBS\BEWInternet-PL-IEW\Deskboard\deskboard.exe
D:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
D:\Program Files\OrangeBS\BEWInternet-PL-IEW\connectivity\CoreCom\OraConfigRecover.exe
D:\Program Files\Winamp\winamp.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\foobar2000\foobar2000.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [CardDetectorHUAWEI170] D:\Program Files\CardDetector\HUAWEI170\CardDetector.exe
O4 - HKLM\..\Run: [BEWINTERNET-PL-IEWSessionManager] D:\Program Files\OrangeBS\BEWInternet-PL-IEW\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [AVP] "D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Gadu-Gadu.lnk = D:\Program Files\Gadu-Gadu\gg.exe
O4 - Startup: Last.fm.lnk = D:\Program Files\Last.fm\LastFM.exe
O8 - Extra context menu item: Dodaj do listy blokowanych banerów - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Statystyki ochrony WWW - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - D:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{DF9D6B10-5794-4584-9B36-94795BFDF5B6}: NameServer = 79.163.127.70 217.116.100.65
O20 - AppInit_DLLs: D:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,D:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,D:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,D:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - D:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - D:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - D:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
--
End of file - 6042 bytes
Mam jeszcze log z Silent Runnersa:
http://wklej.org/id/53359/
Dziękuję.
