আমার এক ভাই আমাকে ফেসবুকে একটা লিন্ক দেয় ,আমি ভুলে সেটা কি সে দিয়েছে নাকি ম্যালওয়্যার তা তার থেকে না জেনে ক্লিক করি। সমস্যার শুরু সেখান থেকেই....এর পরে আমি কারও সাথে চ্যাট করতে গেলে নিজ থেকেই ঐ লিন্ক চলে যেত আমি ইসেট দিয়ে স্ক্যান করে দেখলাম কিন্তু কোন কাজ হয়নি ইসেট ডিটেক্ট করতে পারে( temp folder e tmp127 সহ আরও টেমপ লেখা ফাইল যেগুলো ইসেট ডিটেক্ট করে কিন্তু ডিলিট করতে পরেনা) কিন্তু ডিলিট করতে পারে না ...এ্যান্টিম্যালওয়্যারবাইট দিতে স্ক্যান করার পরে সেটা থেকে ১/২ দিন এর জন্য রেহাই পেয়েছিলাম উল্লেখ্য সুপারএ্যান্টিস্পাইওয়্যার এর পর থেকে আপডেট নেয় না....কালকে আমার ইয়াহু ম্যাসেন্জার এ এই ম্যালওয়্যার সবাইকে লিন্ক পাঠিয়েছে এবং পিসি কিছুখন এর জন্য hang করে ফেলছে...ইসেট ও চলে না উন্ডোজ শুরু হলে কিছুখন পরে "error communicating with kernel" show kore.আমি ইসেট আনইন্সটল করতে গেলে নরমাল ভাবে হয়না এর পরে revouninstaller dea অনেকখন চেস্টা করে ডিলিট করেছি...এর পরে আবার ইন্সটল করার পরে কিছুক্ষন ভাল চলার পরে আবারও এই সমস্যা দেখা দেয় এর পরে গুগল করে সমস্যা কি জানতে চাইলে দেখি আমি কোন এ্যান্টিভাইরাস এর সাইটে যেতে পারছি না ....এর পরে কম্বফিক্স দিয়ে চেস্টা করলাম কিন্তু এখনও কোন এ্যান্টিভাইরাস সাইটে যেতে পারি না আর এ্যান্টিম্যালওয়্যারবাইট কোন ম্যালওয়্যার পায়না আর সুপারএ্যান্টিস্পাইওয়্যার আর ইসেট স্মার্ট সিকিউরিটি-৫ তো কোন কাজই করতে পারছে না ....আমাকে দয়া করে এই ম্যালওয়্যার থেকে মুক্তি দিন...আর ইসেট তো পুরা ভুয়া পারফমেন্স দিল (যদিও বেশ কিছু দিন ধরে চালাচ্ছিলাম এবং ভালই লাগছিল) তাই ভাল কোন এ্যান্টিভাইরাস এর ক্সাক সহ দিয়ে আমাকে সাহায্য করুন.....কম্বফিক্স এর লগফাইল নিচে দিলাম.....
ComboFix 12-05-12.01 - user 05/12/2012 14:18:36.2.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2012.1454 [GMT -7:00]
Running from: c:\documents and settings\user\My Documents\Downloads\Programs\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\user\WINDOWS
c:\windows\system32\wmptn32.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-04-12 to 2012-05-12 )))))))))))))))))))))))))))))))
.
.
2012-05-12 19:37 . 2012-05-12 19:38 -------- d-----w- c:\documents and settings\Administrator
2012-05-11 21:41 . 2012-05-11 21:41 -------- d-----w- c:\program files\ESET
2012-05-11 19:53 . 2012-05-11 19:53 -------- d-----w- c:\documents and settings\user\Application Data\SUPERAntiSpyware.com
2012-05-11 19:53 . 2012-05-11 19:53 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-05-11 18:11 . 2012-05-11 18:11 -------- d-----w- c:\program files\VS Revo Group
2012-05-07 22:29 . 2012-05-07 22:29 -------- d-----w- c:\windows\system32\config\systemprofile\Local Settings\Application Data\ESET
2012-05-05 09:31 . 2012-05-05 09:31 -------- d-----w- c:\program files\Common Files\Skype
2012-05-05 09:30 . 2012-05-05 09:31 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2012-05-03 19:56 . 2012-05-03 19:56 -------- d-----w- c:\documents and settings\user\Local Settings\Application Data\Sublight
2012-05-03 19:34 . 2012-05-10 14:01 -------- d-----w- c:\documents and settings\user\Local Settings\Application Data\PMB Files
2012-05-03 19:34 . 2012-05-10 13:02 -------- d-----w- c:\documents and settings\All Users\Application Data\PMB Files
2012-05-03 19:23 . 2012-05-03 19:23 -------- d-----w- c:\program files\Pando Networks
2012-04-25 01:02 . 2012-04-25 01:02 -------- d-----w- c:\windows\Downloaded Installations
2012-04-17 18:03 . 2011-11-28 16:45 490752 ----a-w- c:\windows\system32\UninstallWebsiteBlocking.exe
2012-04-16 18:31 . 2012-05-06 08:32 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-04-16 18:31 . 2012-05-06 08:32 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-04-15 19:53 . 2012-04-15 20:35 -------- d-----w- c:\program files\'Full Speed' Internet Booster + Performance Tests
2012-04-15 19:53 . 2012-04-15 19:53 -------- d-----w- c:\windows\'Full Speed' Internet Booster + Performance Tests
2012-04-15 19:53 . 2012-04-15 19:53 -------- d-----w- C:\aidualc3
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-23 11:26 . 2012-02-16 12:46 108448 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2012-04-04 22:56 . 2012-03-16 00:39 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-23 16:11 . 2012-03-11 23:52 24408 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2012-02-21 21:35 . 2012-02-21 21:35 637848 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-02-21 21:35 . 2012-02-21 21:35 567696 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-21 21:35 . 2012-02-21 21:35 141312 ----a-w- c:\windows\system32\javacpl.cpl
2012-04-11 16:58 . 2012-04-15 20:15 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2009-05-19 . 32272BF10467C8ACF1F83138C61D541E . 1580544 . . [5.1.2600.2180] . . c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((( SnapShot@2012-03-11_20.31.19 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-05-12 21:05 . 2012-05-12 21:05 16384 c:\windows\Temp\Perflib_Perfdata_104.dat
- 2012-02-18 20:30 . 2004-08-04 00:56 74752 c:\windows\system32\storprop.dll
+ 2012-02-18 20:30 . 2004-08-04 08:56 74752 c:\windows\system32\storprop.dll
- 2004-08-07 00:17 . 2012-02-19 07:14 67312 c:\windows\system32\perfc009.dat
+ 2004-08-07 00:17 . 2012-04-24 19:13 67312 c:\windows\system32\perfc009.dat
+ 2012-04-02 03:29 . 2010-02-26 00:51 25216 c:\windows\system32\drivers\tap0901.sys
+ 2011-08-04 17:20 . 2011-08-04 16:20 61936 c:\windows\system32\drivers\epfwtdi.sys
+ 2011-08-09 17:37 . 2011-08-09 16:37 39824 c:\windows\system32\drivers\epfwndis.sys
+ 2012-02-18 20:30 . 2004-08-04 08:56 74752 c:\windows\system32\dllcache\storprop.dll
+ 2012-03-14 00:53 . 2004-08-04 08:56 464384 c:\windows\system32\spool\drivers\w32x86\3\PSCRIPT5.DLL
+ 2012-03-14 00:53 . 2004-08-04 08:56 132608 c:\windows\system32\spool\drivers\w32x86\3\PS5UI.DLL
- 2004-08-07 00:17 . 2012-02-19 07:14 432356 c:\windows\system32\perfh009.dat
+ 2004-08-07 00:17 . 2012-04-24 19:13 432356 c:\windows\system32\perfh009.dat
+ 2012-05-06 08:32 . 2012-05-06 08:32 351904 c:\windows\system32\Macromed\Flash\FlashUtil32_11_2_202_235_Plugin.exe
+ 2012-04-16 18:31 . 2012-05-06 08:32 257696 c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
+ 2011-08-04 17:20 . 2011-08-04 16:20 147480 c:\windows\system32\drivers\epfw.sys
+ 2011-08-04 17:20 . 2011-08-04 16:20 118104 c:\windows\system32\drivers\ehdrv.sys
+ 2011-08-09 22:24 . 2011-08-09 21:24 154136 c:\windows\system32\drivers\eamon.sys
+ 2012-03-11 23:48 . 2012-04-17 21:41 262144 c:\windows\system32\config\systemprofile\NtUser.dat
+ 2012-05-05 09:31 . 2012-05-05 09:31 371272 c:\windows\Installer\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}\SkypeIcon.exe
+ 2012-04-03 01:44 . 2012-04-06 04:01 102400 c:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
+ 2012-04-15 19:53 . 2012-04-15 19:53 451072 c:\windows\'Full Speed' Internet Booster + Performance Tests\uninstall.exe
+ 2004-08-04 04:56 . 2004-02-24 03:42 1386496 c:\windows\system32\MSVBVM60.DLL
+ 2012-05-06 08:32 . 2012-05-06 08:32 8797856 c:\windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
+ 2004-08-04 04:56 . 2004-08-04 04:56 1974272 c:\windows\system32\ambolbud.dll
+ 2012-05-05 09:31 . 2012-05-05 09:31 1605120 c:\windows\Installer\23f0618.msi
+ 2012-04-06 04:01 . 2012-04-06 04:01 2283520 c:\windows\Installer\19f013.msi
+ 2012-04-25 01:02 . 2012-04-25 01:02 25222144 c:\windows\Downloaded Installations\{E82CC277-2800-4C0E-B6A6-B1D57E2ACAAE}\ACDSee Pro.msi
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-02-08 00:49 22376 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"F.lux"="c:\documents and settings\user\Local Settings\Apps\F.lux\flux.exe" [2009-08-29 966656]
"Avro Keyboard"="d:\soft. install\Avro Keyboard\Avro Keyboard.exe" [2007-07-02 1658880]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2012-04-27 3487128]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-03-07 3905920]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"googletalk"="c:\program files\Google\Google Talk\googletalk.exe" [2007-01-01 3739648]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"ApnUpdater"="c:\program files\Ask.com\Updater\Updater.exe" [2012-01-03 1391272]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TermService]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BijoyBayanno.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\BijoyBayanno.lnk
backup=c:\windows\pss\BijoyBayanno.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Avro Keyboard]
2007-07-02 10:23 1658880 ----a-w- d:\soft. install\Avro Keyboard\Avro Keyboard.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDAudDeck]
2011-08-01 03:42 41110128 ----a-r- c:\program files\VIA\VIAudioi\HDADeck\HDeck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2010-04-23 06:59 174104 ----a-r- c:\windows\system32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
2010-04-23 07:00 141848 ----a-r- c:\windows\system32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2010-04-23 06:59 144920 ----a-r- c:\windows\system32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\picon]
2009-07-21 06:40 796696 ----a-w- c:\program files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB Antivirus]
2008-06-14 19:16 798720 ----a-w- c:\program files\USB Disk Security\USBGuard.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"&#xwi;ndir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Google\\Google Talk\\googletalk.exe"=
"c:\\Program Files\\Maxthon3\\Bin\\Maxthon.exe"=
"c:\\Program Files\\Maxthon3\\Bin\\MxUp.exe"=
"c:\\Program Files\\Maxthon3\\Modules\\MxMiniThunder\\ThunderMini.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Documents and Settings\\user\\My Documents\\Downloads\\Programs\\uTorrent.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer_Service.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"9354:TCP"= 9354:TCP:elskeo
"56895:TCP"= 56895:TCPando Media Booster
"56895:UDP"= 56895:UDPando Media Booster
.
R1 AppleCharger;AppleCharger;c:\windows\system32\drivers\AppleCharger.sys [2/18/2012 9:56 PM 18544]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [3/11/2012 4:52 PM 24408]
R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [2/16/2012 5:46 AM 108448]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [7/22/2011 9:27 AM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [7/12/2011 2:55 PM 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [8/11/2011 4:38 PM 116608]
R2 KaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\KaraokeSer.exe [2/18/2012 9:54 PM 88688]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [3/15/2012 5:39 PM 654408]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2/19/2012 12:28 AM 2066968]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2/18/2012 9:56 PM 65136]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [3/15/2012 5:39 PM 22344]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2/18/2012 9:54 PM 2805744]
S2 dkcrb;Monitor Installer;c:\windows\system32\svchost.exe -k netsvcs [8/3/2004 9:56 PM 14336]
S2 dzedajl;Task Microsoft;c:\windows\system32\svchost.exe -k netsvcs [8/3/2004 9:56 PM 14336]
S2 embfoee;Shell Network;c:\windows\system32\svchost.exe -k netsvcs [8/3/2004 9:56 PM 14336]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2/29/2012 8:50 AM 158856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [4/16/2012 11:31 AM 257696]
S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?]
S3 CGVPNCliSrvc;CyberGhost VPN Client;c:\program files\CyberGhost VPN\CGVPNCliService.exe [4/2/2012 10:45 PM 2430128]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Classic\safedrv.sys --> c:\program files\Garena Classic\safedrv.sys [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [4/15/2012 1:15 PM 129976]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - DZEDAJL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
WmdmPmSNdkcrb
dzedajl
.
Contents of the 'Scheduled Tasks' folder
.
2012-05-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-16 08:32]
.
2012-05-12 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2012-01-03 23:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://safesearch.MyActionAlert.com/Custom?Key=FYDKBTX9LADPPAHNZC3RTXQCW&User=user
IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.4.1 8.8.8.8 202.168.254.8 202.168.254.4
FF - ProfilePath - c:\documents and settings\user\Application Data\Mozilla\Firefox\Profiles\7p2bpzia.default\
FF - prefs.js: browser.startup.homepage - safesearch.MyActionAlert.com/Custom?Key=FYDKBTX9LADPPAHNZC3RTXQCW&User=user
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-Windows Terminal Protocol - c:\windows\system32\wmptn32.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-05-12 14:22
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\dkcrb]
"ServiceDll"="c:\windows\system32\ambolbud.dll"
--
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\dzedajl]
"ServiceDll"="c:\windows\system32\ambolbud.dll"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{185d6c5b-73fa-4c4c-b6a2-8eeab52387eb}]
@Denied: (Full) (Everyone)
"Model"=dword:0000007f
"Therad"=dword:00000007
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):78,68,7a,23,b1,ea,ac,54,d8,13,99,38,d7,9c,ec,c7,f5,67,25,28,86,
16,c9,d9,bf,7d,20,04,48,bb,d7,d1,40,4e,41,71,14,75,24,ea,00,00,00,00,00,00,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(672)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
Completion time: 2012-05-12 14:24:38
ComboFix-quarantined-files.txt 2012-05-12 21:24
ComboFix2.txt 2012-03-11 20:32
.
Pre-Run: 6,277,087,232 bytes free
Post-Run: 6,267,510,784 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 0C879FF9CBE1F8E3F0FC6BAF631A758D
samu te prokashito
আমি ian। বিশ্বের সর্ববৃহৎ বিজ্ঞান ও প্রযুক্তির সৌশল নেটওয়ার্ক - টেকটিউনস এ আমি 13 বছর 6 মাস যাবৎ যুক্ত আছি। টেকটিউনস আমি এ পর্যন্ত 5 টি টিউন ও 56 টি টিউমেন্ট করেছি। টেকটিউনসে আমার 0 ফলোয়ার আছে এবং আমি টেকটিউনসে 0 টিউনারকে ফলো করি।
amar ami nai re....
https://www.techtunes.io/download/tune-id/119665
ট্রাই করে দেখতে পারেন