.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Poprzednie uruchomienie -------
.
c:\program files\Internet Explorer\setupapi.dll
c:\windows\system32\AutoRun.inf
c:\windows\system32\hpowiax3.dll
.
((((((((((((((((((((((((( Pliki utworzone od 2009-01-01 do 2009-02-01 )))))))))))))))))))))))))))))))
.
2009-01-31 15:07 . 2009-01-31 15:07 <DIR> d-------- c:\windows\San Andreas Mod Installer
2009-01-30 23:11 . 2009-01-31 21:01 155 --a------ c:\windows\NeroDigital.ini
2009-01-30 13:13 . 2005-09-01 11:03 127,488 --------- c:\windows\system32\drivers\imagesrv.sys
2009-01-30 13:13 . 2005-09-01 11:03 5,888 --------- c:\windows\system32\drivers\imagedrv.sys
2009-01-30 13:12 . 2009-01-30 13:12 <DIR> d-------- c:\program files\Ahead
2009-01-30 13:12 . 2004-07-26 16:16 1,568,768 --------- c:\windows\system32\ImagX7.dll
2009-01-30 13:12 . 2004-07-26 16:16 476,320 --------- c:\windows\system32\ImagXpr7.dll
2009-01-30 13:12 . 2004-07-26 16:16 471,040 --------- c:\windows\system32\ImagXRA7.dll
2009-01-30 13:12 . 2004-07-09 08:43 364,544 --------- c:\windows\system32\TwnLib4.dll
2009-01-30 13:12 . 2004-07-26 16:16 262,144 --------- c:\windows\system32\ImagXR7.dll
2009-01-30 13:12 . 2006-01-12 15:40 155,648 --a------ c:\windows\system32\NeroCheck.exe
2009-01-30 13:12 . 2000-06-26 10:45 106,496 --a------ c:\windows\system32\TwnLib20.dll
2009-01-30 12:38 . 2009-01-30 12:38 <DIR> d-------- c:\program files\Common Files\Nero
2009-01-30 12:38 . 2001-03-08 18:30 24,064 --------- c:\windows\system32\msxml3a.dll
2009-01-30 12:37 . 2009-01-30 13:12 <DIR> d-------- c:\program files\Common Files\Ahead
2009-01-30 12:37 . 2009-01-30 12:37 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Ahead
2009-01-30 11:14 . 2009-01-30 11:14 <DIR> d-------- c:\windows\system32\LogFiles
2009-01-30 11:13 . 2008-04-14 00:15 26,112 --a------ c:\windows\system32\drivers\usbser.sys
2009-01-30 11:13 . 2008-04-14 00:15 26,112 --a------ c:\windows\system32\dllcache\usbser.sys
2009-01-30 11:13 . 2008-03-21 13:57 23,856 --a------ c:\windows\system32\spupdsvc.exe
2009-01-30 11:13 . 2008-03-21 13:57 14,640 --------- c:\windows\system32\spmsgXP_2k3.dll
2009-01-30 11:13 . 2009-01-30 11:13 0 --ah----- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-01-30 11:13 . 2009-01-30 11:13 0 --ah----- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-01-29 21:52 . 2009-01-29 21:52 <DIR> d-------- c:\program files\Common Files\Adobe AIR
2009-01-29 21:52 . 2009-01-29 21:52 <DIR> d-------- c:\program files\Adobe Media Player
2009-01-29 21:48 . 2009-01-29 21:48 <DIR> d-------- c:\program files\Google
2009-01-29 21:43 . 2009-01-29 21:43 <DIR> d-------- c:\program files\Common Files\Adobe
2009-01-29 18:04 . 2009-02-01 00:30 154 --a------ c:\windows\wcx_ftp.ini
2009-01-29 14:59 . 2009-01-29 14:59 <DIR> d-------- c:\program files\Winamp Toolbar
2009-01-29 14:59 . 2009-01-29 14:59 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Winamp Toolbar
2009-01-29 14:58 . 2009-01-29 14:58 <DIR> d-------- c:\program files\Winamp Remote
2009-01-29 14:58 . 2009-01-29 14:58 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\OrbNetworks
2009-01-29 14:57 . 2009-01-29 14:57 <DIR> d-------- c:\program files\Microsoft Silverlight
2009-01-29 14:53 . 2009-01-29 15:00 <DIR> d-------- c:\program files\Winamp
2009-01-29 14:53 . 2009-01-29 15:33 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\Winamp
2009-01-29 14:43 . 2009-01-31 21:24 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\PC Suite
2009-01-29 14:43 . 2009-01-30 11:13 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\Nokia
2009-01-29 14:43 . 2009-01-30 11:13 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\PC Suite
2009-01-29 14:41 . 2009-01-29 14:41 <DIR> d-------- c:\program files\DIFX
2009-01-29 14:41 . 2009-01-29 14:41 <DIR> d-------- c:\program files\Common Files\PCSuite
2009-01-29 14:41 . 2009-01-29 14:41 <DIR> d-------- c:\program files\Common Files\Nokia
2009-01-29 14:41 . 2008-08-26 09:26 18,816 --a------ c:\windows\system32\drivers\pccsmcfd.sys
2009-01-29 14:40 . 2009-01-29 14:40 <DIR> d-------- c:\program files\PC Connectivity Solution
2009-01-29 14:40 . 2009-01-29 14:41 <DIR> d-------- c:\program files\Nokia
2009-01-29 14:40 . 2008-09-15 07:29 1,112,288 --a------ c:\windows\system32\wdfcoinstaller01007.dll
2009-01-29 14:40 . 2009-01-29 14:40 892,928 --a------ c:\windows\system32\iconv.dll
2009-01-29 14:40 . 2009-01-29 14:40 675,840 --a------ c:\windows\system32\ac3filter.ax
2009-01-29 14:40 . 2008-09-15 07:56 659,968 --a------ c:\windows\system32\nmwcdcocls.dll
2009-01-29 14:40 . 2008-09-15 07:56 91,136 --a------ c:\windows\system32\nmwcdcls.dll
2009-01-29 14:40 . 2008-09-15 07:56 22,016 --a------ c:\windows\system32\drivers\ccdcmbo.sys
2009-01-29 14:40 . 2008-09-15 07:56 17,664 --a------ c:\windows\system32\drivers\ccdcmb.sys
2009-01-29 14:40 . 2008-09-15 07:56 8,064 --a------ c:\windows\system32\drivers\usbser_lowerfltj.sys
2009-01-29 14:40 . 2008-09-15 07:56 8,064 --a------ c:\windows\system32\drivers\usbser_lowerflt.sys
2009-01-29 14:39 . 2009-01-29 14:39 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Installations
2009-01-29 14:39 . 2009-01-29 14:39 1,415,680 --a------ c:\windows\system32\WMV9VCM.dll
2009-01-29 14:39 . 2009-01-29 14:39 921,600 --a------ c:\windows\system32\vorbisenc.dll
2009-01-29 14:39 . 2009-01-29 14:39 245,760 --a------ c:\windows\system32\mplvpx.dll
2009-01-29 14:39 . 2009-01-29 14:39 237,568 --a------ c:\windows\system32\OggDS.dll
2009-01-29 14:39 . 2009-01-29 14:39 188,416 --a------ c:\windows\system32\vorbis.dll
2009-01-29 14:39 . 2009-01-29 14:39 106,496 --a------ c:\windows\system32\lmpgspl.ax
2009-01-29 14:39 . 2009-01-29 14:39 94,208 --a------ c:\windows\system32\lmpgvd.ax
2009-01-29 14:39 . 2009-01-29 14:39 86,528 --a------ c:\windows\system32\DVDVideo.ax
2009-01-29 14:39 . 2009-01-29 14:39 45,056 --a------ c:\windows\system32\ogg.dll
2009-01-29 14:39 . 2009-01-29 14:39 9,216 --a------ c:\windows\system32\cpuinf32.dll
2009-01-29 14:38 . 2009-01-29 14:38 <DIR> d-------- c:\program files\NAPI-PROJEKT
2009-01-29 14:38 . 2009-01-29 14:38 77,824 --a------ c:\windows\system32\xvid.ax
2009-01-29 14:37 . 2009-01-30 23:11 <DIR> d-------- c:\program files\ALLPlayer
2009-01-29 14:35 . 2007-09-04 17:56 164,352 --a------ c:\windows\system32\unrar.dll
2009-01-29 14:35 . 2008-10-03 13:30 414 --a------ c:\windows\system32\lame_acm.xml
2009-01-29 14:35 . 2008-07-30 20:09 38 --a------ c:\windows\avisplitter.ini
2009-01-29 14:34 . 2009-01-29 14:34 <DIR> d-------- c:\program files\K-Lite Codec Pack
2009-01-29 14:34 . 2008-09-16 01:14 3,596,288 --a------ c:\windows\system32\qt-dx331.dll
2009-01-29 14:34 . 2008-09-24 19:41 839,680 --a------ c:\windows\system32\lameACM.acm
2009-01-29 14:34 . 2009-01-29 14:38 795,648 --a------ c:\windows\system32\xvidcore.dll
2009-01-29 14:34 . 2008-09-16 01:11 683,520 --a------ c:\windows\system32\divx.dll
2009-01-29 14:34 . 2004-01-11 23:00 348,160 --a------ c:\windows\system32\msvcr71.dll
2009-01-29 14:34 . 2004-01-25 17:18 217,088 --a------ c:\windows\system32\yv12vfw.dll
2009-01-29 14:34 . 2009-01-29 14:38 130,048 --a------ c:\windows\system32\xvidvfw.dll
2009-01-29 14:34 . 2009-01-29 14:40 118,784 --a------ c:\windows\system32\ac3acm.acm
2009-01-29 14:34 . 2008-09-16 01:12 81,920 --a------ c:\windows\system32\dpl100.dll
2009-01-29 14:34 . 2008-06-12 19:36 7,680 --a------ c:\windows\system32\ff_vfw.dll
2009-01-29 14:34 . 2007-07-10 17:10 547 --a------ c:\windows\system32\ff_vfw.dll.manifest
2009-01-29 14:30 . 2006-10-26 19:56 32,592 --a------ c:\windows\system32\msonpmon.dll
2009-01-29 14:29 . 2009-01-30 12:33 <DIR> d-------- c:\program files\uTorrent
2009-01-29 14:28 . 2009-01-29 14:28 <DIR> d-------- c:\program files\MSBuild
2009-01-29 14:28 . 2009-01-29 14:28 <DIR> d-------- c:\program files\Microsoft Works
2009-01-29 14:28 . 2009-01-30 12:42 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\uTorrent
2009-01-29 14:25 . 2009-01-29 14:28 <DIR> d-------- c:\windows\SHELLNEW
2009-01-29 14:25 . 2009-01-29 14:30 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Microsoft Help
2009-01-29 14:24 . 2009-01-29 14:24 <DIR> dr-h----- C:\MSOCache
2009-01-29 14:19 . 2009-01-29 14:19 <DIR> d-------- c:\program files\Kaspersky Lab
2009-01-29 14:19 . 2009-02-01 11:37 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab
2009-01-29 14:19 . 2009-02-01 00:58 1,089,568 --ahs---- c:\windows\system32\drivers\fidbox.dat
2009-01-29 14:19 . 2009-02-01 11:40 245,792 --ahs---- c:\windows\system32\drivers\fidbox2.dat
2009-01-29 14:19 . 2009-01-29 14:34 96,976 --a------ c:\windows\system32\drivers\klin.dat
2009-01-29 14:19 . 2009-01-29 14:34 87,855 --a------ c:\windows\system32\drivers\klick.dat
2009-01-29 14:19 . 2009-02-01 00:58 11,688 --ahs---- c:\windows\system32\drivers\fidbox.idx
2009-01-29 14:19 . 2009-02-01 11:40 4,016 --ahs---- c:\windows\system32\drivers\fidbox2.idx
2009-01-29 14:18 . 2009-01-29 14:18 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Kaspersky Lab Setup Files
2009-01-29 14:14 . 2009-01-29 14:14 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\DAEMON Tools Pro
2009-01-29 14:14 . 2009-01-29 14:14 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\DAEMON Tools
2009-01-29 14:13 . 2009-01-29 14:13 <DIR> d-------- c:\program files\DAEMON Tools Toolbar
2009-01-29 14:13 . 2009-01-29 14:21 <DIR> d-------- c:\program files\DAEMON Tools Lite
2009-01-29 14:13 . 2009-01-29 14:13 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\DAEMON Tools Lite
2009-01-29 14:12 . 2009-01-29 14:12 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\DAEMON Tools Lite
2009-01-29 14:12 . 2009-01-29 14:12 717,296 --a------ c:\windows\system32\drivers\sptd.sys
2009-01-28 20:30 . 2009-01-28 20:30 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\HP
2009-01-28 20:30 . 2009-01-28 20:30 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\WEBREG
2009-01-28 20:29 . 2009-01-28 20:29 <DIR> d-------- c:\documents and settings\Damian\Dane aplikacji\HPAppData
2009-01-28 20:29 . 2009-01-28 20:29 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\HPSSUPPLY
2009-01-28 20:28 . 2009-01-28 20:28 <DIR> d-------- c:\program files\Common Files\HP
2009-01-28 20:28 . 2009-01-28 20:28 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\HP Product Assistant
2009-01-28 20:28 . 2009-01-28 20:28 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\HP
2009-01-28 20:27 . 2009-01-28 20:27 <DIR> d-------- c:\program files\Hewlett-Packard
2009-01-28 20:27 . 2009-01-28 20:27 <DIR> d-------- c:\program files\Common Files\Hewlett-Packard
2009-01-28 20:27 . 2007-03-08 05:20 49,920 -ra------ c:\windows\system32\drivers\HPZid412.sys
2009-01-28 20:27 . 2007-03-08 05:20 21,568 -ra------ c:\windows\system32\drivers\HPZius12.sys
2009-01-28 20:27 . 2007-03-08 05:20 16,496 -ra------ c:\windows\system32\drivers\HPZipr12.sys
2009-01-28 20:26 . 2009-01-29 14:41 <DIR> d----c--- c:\windows\system32\DRVSTORE
2009-01-28 20:26 . 2009-01-28 20:29 <DIR> d-------- c:\program files\HP
2009-01-28 20:26 . 2009-01-28 20:26 <DIR> d-------- c:\documents and settings\All Users\Dane aplikacji\Hewlett-Packard
2009-01-28 20:26 . 2007-03-17 17:11 569,344 -ra------ c:\windows\system32\hpotscl3.dll
2009-01-28 20:26 . 2007-03-08 05:20 364,544 -ra------ c:\windows\system32\hppldcoi.dll
2009-01-28 20:26 . 2007-03-08 05:20 309,760 -ra------ c:\windows\system32\difxapi.dll
2009-01-28 20:26 . 2007-03-17 17:11 303,104 -ra------ c:\windows\system32\hpovst10.dll
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-28 11:06 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-27 22:33 --------- d-----w c:\program files\Realtek
2009-01-27 22:31 --------- d-----w c:\program files\Intel
2009-01-27 22:31 --------- d-----w c:\program files\Analog Devices
2009-01-27 22:29 --------- d-----w c:\program files\My Company Name
2009-01-27 22:27 --------- d-----w c:\program files\Common Files\InstallShield
2009-01-27 21:48 --------- d-----w c:\program files\Usługi online
2009-01-27 21:46 --------- d-----w c:\program files\Windows Media Connect 2
.
------- Sigcheck -------
2008-05-02 07:48 361344 8e036eec565910417ea020ce0962aa24 c:\windows\system32\drivers\tcpip.sys
.
((((((((((((((((((((((((((((( snapshot_2009-01-29_17.05.21.92 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-12-12 14:06:42 295,606 ----a-r c:\windows\Installer\{AC76BA86-7AD7-1045-7B44-A90000000001}\SC_Reader.exe
+ 2009-01-31 14:07:06 451,072 ----a-w c:\windows\San Andreas Mod Installer\uninstall.exe
- 2000-08-31 07:00:00 161,792 ----a-w c:\windows\SWREG.exe
+ 2000-08-31 07:00:00 286,720 ----a-w c:\windows\SWREG.exe
+ 2008-10-29 10:29:54 531,968 ----a-w c:\windows\system32\drivers\UMDF\PCCSWpdDriver.dll
+ 2008-03-27 15:27:46 503,008 ------w c:\windows\system32\drivers\wdf01000.sys
+ 2008-03-27 15:27:48 35,040 ------w c:\windows\system32\drivers\wdfldr.sys
- 2008-05-02 06:46:41 77,568 ----a-w c:\windows\system32\drivers\wudfpf.sys
+ 2006-09-15 21:29:52 76,544 ----a-w c:\windows\system32\drivers\WudfPf.sys
- 2008-05-02 06:46:42 82,944 ----a-w c:\windows\system32\drivers\wudfrd.sys
+ 2006-09-15 21:30:10 82,688 ----a-w c:\windows\system32\drivers\WudfRd.sys
+ 2008-10-05 03:16:26 235,936 ----a-r c:\windows\system32\Macromed\Flash\FlashUtil10a.exe
+ 2009-01-29 20:48:43 88,590 ----a-w c:\windows\system32\Macromed\Flash\uninstall_activeX.exe
- 2009-01-27 21:53:21 39,992 ----a-w c:\windows\system32\perfc009.dat
+ 2009-01-31 23:22:59 40,836 ----a-w c:\windows\system32\perfc009.dat
- 2009-01-27 21:53:21 49,492 ----a-w c:\windows\system32\perfc015.dat
+ 2009-01-31 23:22:59 50,748 ----a-w c:\windows\system32\perfc015.dat
- 2009-01-27 21:53:21 311,604 ----a-w c:\windows\system32\perfh009.dat
+ 2009-01-31 23:22:59 314,508 ----a-w c:\windows\system32\perfh009.dat
- 2009-01-27 21:53:21 355,486 ----a-w c:\windows\system32\perfh015.dat
+ 2009-01-31 23:22:59 358,834 ----a-w c:\windows\system32\perfh015.dat
- 2007-03-06 03:28:33 16,096 ------w c:\windows\system32\spmsg.dll
+ 2006-09-16 02:02:34 14,640 ------w c:\windows\system32\spmsg.dll
- 2008-05-02 06:46:41 95,344 ----a-w c:\windows\system32\wudfcoinstaller.dll
+ 2006-09-15 22:30:16 87,040 ----a-w c:\windows\system32\WUDFCoinstaller.dll
- 2008-05-02 06:46:41 146,432 ----a-w c:\windows\system32\wudfhost.exe
+ 2006-09-15 22:30:06 142,848 ----a-w c:\windows\system32\WudfHost.exe
- 2008-05-02 06:46:41 165,376 ----a-w c:\windows\system32\wudfplatform.dll
+ 2006-09-15 21:29:54 163,840 ----a-w c:\windows\system32\WudfPlatform.dll
- 2008-05-02 06:46:42 55,808 ----a-w c:\windows\system32\wudfsvc.dll
+ 2006-09-15 22:30:16 55,296 ----a-w c:\windows\system32\WudfSvc.dll
+ 2008-10-29 10:24:36 831,048 ----a-w c:\windows\system32\WudfUpdate_01005.dll
- 2008-05-02 06:46:42 316,416 ----a-w c:\windows\system32\wudfx.dll
+ 2006-09-15 22:30:16 308,224 ----a-w c:\windows\system32\WUDFx.dll
.
-- Migawka wyzerowana --
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Gadu-Gadu"="c:\program files\Gadu-Gadu\gg.exe" [2008-03-20 2127296]
"ALLUpdate"="c:\program files\ALLPlayer\ALLUpdate.exe" [2008-11-24 869888]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-12-03 1205760]
"Orb"="c:\program files\Winamp Remote\bin\OrbTray.exe" [2008-04-01 507904]
"swg"="c:\program files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2009-01-29 171448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-06-01 7618560]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2005-05-20 925696]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 49152]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" [2008-04-25 201992]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-08-04 36352]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2006-01-12 155648]
"nwiz"="nwiz.exe" [2006-06-01 c:\windows\system32\nwiz.exe]
"NvMediaCenter"="NvMCTray.dll" [2006-06-01 c:\windows\system32\nvmctray.dll]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
"nltide_3"="advpack.dll" [2008-03-01 c:\windows\system32\advpack.dll]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Gadu-Gadu\\gg.exe"=
"c:\\Documents and Settings\\All Users\\Dane aplikacji\\Kaspersky Lab Setup Files\\Kaspersky Anti-Virus 2009\\Polish\\setup.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\Orb.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-01-29 32784]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-03-25 24592]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9c3d7df1-ed32-11dd-a413-0018f365470b}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\ntldr.com g:
\Shell\Open\command - resycled\ntldr.com g:
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.onet.pl/
IE: &Winamp Search - c:\documents and settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2009-02-01 11:44:02
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
- - - - - - - > 'winlogon.exe'(1000)
c:\windows\system32\klogon.dll[/b]