wklejto.pl

Dodane przez: ~kasiek531 (2009-12-22 15:02) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
586.
587.
588.
589.
590.
591.
592.
593.
594.
595.
596.
597.
598.
599.
600.
601.
602.
603.
604.
605.
606.
607.
608.
609.
610.
611.
612.
[CODE]
 
2009-12-22,15:03:48
 
System Repair Engineer 2.8.1.1279
Smallfrogs (http://www.KZTechs.com)
 
Windows XP Home Edition Dodatek Service Pack 3 (Build 2600) - Administrative User - Completed Functions Allowed
 
Follow item(s) have been selected:
    All Boot Items (Including Registry, Startup Folders, Services and so on)
    Browser Add-ons
    Running Processes (Including process model information)
    File Associations
    Winsock Provider
    Autorun.Inf
    HOSTS File
    Process Privileges Scan
    Scheduled Tasks
    Windows Security Update Check
    API HOOK
    Hidden Process
 
 
Boot Items
Registry
[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
    <EA Core><\"D:\\Electronic Arts\\EADM\\Core.exe\" -silent>  [Electronic Arts]
    <ctfmon.exe><C:\\WINDOWS\\system32\\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Gadu-Gadu 10><\"D:\\Program Files\\Gadu-Gadu 10\\gg.exe\">  [(Verified)GG Network S.A.]
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
    <NvCplDaemon><RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup>  [(Verified)F-Secure Corporation]
    <nwiz><nwiz.exe /install>  []
    <NvMediaCenter><RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <BearShare><\"D:\\Program Files\\BearShare\\BearShare.exe\" /pause>  [File is missing]
    <KernelFaultCheck><%systemroot%\\system32\\dumprep 0 -k>  [File is missing]
    <F-Secure Manager><\"C:\\Program Files\\F-Secure\\Common\\FSM32.EXE\" /splash>  [(Verified)F-Secure Corporation]
    <F-Secure TNB><\"C:\\Program Files\\F-Secure\\FSGUI\\TNBUtil.exe\" /CHECKALL /WAITFORSW>  [(Verified)F-Secure Corporation]
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\\WINDOWS\\system32\\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows NT\\CurrentVersion\\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\\system32\\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\\system32\\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><%Systemroot%\\system32\\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
    <SysTray><%systemroot%\\system32\\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WPDShServiceObj><C:\\WINDOWS\\system32\\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\dimsntfy]
    <WinlogonNotify: dimsntfy><%SystemRoot%\\System32\\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\\system32\\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\\system32\\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><C:\\WINDOWS\\inf\\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><%systemroot%\\system32\\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <Dostosowywanie przeglądarki><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\\system32\\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\\system32\\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\\system32\\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><\"%ProgramFiles%\\Outlook Express\\setup50.exe\" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\\WINDOWS\\INF\\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\\WINDOWS\\INF\\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\\WINDOWS\\INF\\wmp11.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <Książka adresowa 6><\"%ProgramFiles%\\Outlook Express\\setup50.exe\" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Aktualizacja pulpitu Windows><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer 6><%SystemRoot%\\system32\\ie4uinit.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Active Setup\\Installed Components\\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><c:\\WINDOWS\\system32\\Rundll32.exe c:\\WINDOWS\\system32\\mscories.dll,Install>  [(Verified)Microsoft Corporation]
 
==================================
Startup Folders
[hp psc 1000 series]
  <C:\\Documents and Settings\\All Users\\Menu Start\\Programy\\Autostart\\hp psc 1000 series.lnk --> C:\\PROGRA~1\\HEWLET~1\\DIGITA~1\\bin\\hpohmr08.exe [Hewlett-Packard Co.]><N>
[hpoddt01.exe]
  <C:\\Documents and Settings\\All Users\\Menu Start\\Programy\\Autostart\\hpoddt01.exe.lnk --> C:\\PROGRA~1\\HEWLET~1\\DIGITA~1\\bin\\hpotdd01.exe [Hewlett-Packard]><N>
[Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007]
  <C:\\Documents and Settings\\KASIA.P2600\\Menu Start\\Programy\\Autostart\\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk --> C:\\PROGRA~1\\MICROS~2\\Office12\\ONENOTEM.EXE [Microsoft Corporation]><N>
 
==================================
Services
[Zarządzanie aplikacjami / AppMgmt][Stopped/Manual Start]
  <C:\\WINDOWS\\system32\\svchost.exe -k netsvcs-->%SystemRoot%\\System32\\appmgmts.dll><N/A>
[FSGKHS / F-Secure Gatekeeper Handler Starter][Running/Auto Start]
  <\"C:\\Program Files\\F-Secure\\Anti-Virus\\fsgk32st.exe\"><F-Secure Corporation>
[F-Secure Anti-Virus Firewall Daemon / FSDFWD][Running/Manual Start]
  <\"C:\\Program Files\\F-Secure\\FWES\\Program\\fsdfwd.exe\"><F-Secure Corporation>
[F-Secure Management Agent / FSMA][Running/Auto Start]
  <\"C:\\Program Files\\F-Secure\\Common\\FSMA32.EXE\"><F-Secure Corporation>
[F-Secure ORSP Client / FSORSPClient][Running/Manual Start]
  <\"C:\\Program Files\\F-Secure\\ORSP Client\\fsorsp.exe\"><F-Secure Corporation>
[Google Software Updater / gusvc][Stopped/Manual Start]
  <\"C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe\"><(File is missing)>
[Java Quick Starter / JavaQuickStarterService][Running/Auto Start]
  <\"C:\\Program Files\\Java\\jre6\\bin\\jqs.exe\" -service -config \"C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\jqs.conf\"><Sun Microsystems, Inc.>
[LightScribeService Direct Disc Labeling Service / LightScribeService][Running/Auto Start]
  <\"C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\"><Hewlett-Packard Company>
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
  <C:\\WINDOWS\\system32\\nvsvc32.exe><NVIDIA Corporation>
[TuneUp Drive Defrag Service / TuneUp.Defrag][Stopped/Manual Start]
  <C:\\WINDOWS\\System32\\TuneUpDefragService.exe><TuneUp Software GmbH>
 
==================================
Drivers
[catchme / catchme][Stopped/Manual Start]
  <\\??\\C:\\DOCUME~1\\KASIA~1.P26\\USTAWI~1\\Temp\\catchme.sys><N/A>
[C-Media High Definition Audio Interface / cmudax][Running/Manual Start]
  <system32\\drivers\\cmudax.sys><C-Media Inc.>
[F-Secure File System Filter / F-Secure Filter][Stopped/Disabled]
  <\\??\\C:\\Program Files\\F-Secure\\Anti-Virus\\Win2K\\FSfilter.sys><>
[F-Secure Gatekeeper / F-Secure Gatekeeper][Running/Manual Start]
  <\\??\\C:\\Program Files\\F-Secure\\Anti-Virus\\minifilter\\fsgk.sys><>
[F-Secure HIPS Driver / F-Secure HIPS][Running/System Start]
  <\\??\\C:\\Program Files\\F-Secure\\HIPS\\drivers\\fshs.sys><F-Secure Corporation>
[F-Secure File System Recognizer / F-Secure Recognizer][Stopped/Disabled]
  <\\??\\C:\\Program Files\\F-Secure\\Anti-Virus\\Win2K\\FSrec.sys><>
[fsbts / fsbts][Running/Boot Start]
  <\\SystemRoot\\system32\\Drivers\\fsbts.sys><>
[F-Secure Firewall Driver / FSFW][Running/Boot Start]
  <\\SystemRoot\\System32\\drivers\\fsdfw.sys><F-Secure Corporation>
[Sterownik magistrali Microsoft UAA dla High Definition Audio / HDAudBus][Running/Manual Start]
  <system32\\DRIVERS\\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[IEEE-1284.4 Driver HPZid412 / HPZid412][Stopped/Manual Start]
  <system32\\DRIVERS\\HPZid412.sys><HP>
[Print Class Driver for IEEE-1284.4 HPZipr12 / HPZipr12][Stopped/Manual Start]
  <system32\\DRIVERS\\HPZipr12.sys><HP>
[USB to IEEE-1284.4 Translation Driver HPZius12 / HPZius12][Stopped/Manual Start]
  <system32\\DRIVERS\\HPZius12.sys><HP>
[ATK0110 ACPI UTILITY / MTsensor][Running/Manual Start]
  <system32\\DRIVERS\\ASACPI.sys><>
[Nokia USB Phone Parent / nmwcd][Stopped/Manual Start]
  <system32\\drivers\\nmwcd.sys><Nokia>
[Nokia USB Generic / nmwcdc][Stopped/Manual Start]
  <system32\\drivers\\nmwcdc.sys><Nokia>
[Nokia USB Port / nmwcdcj][Stopped/Manual Start]
  <system32\\drivers\\nmwcdcj.sys><Nokia>
[Nokia USB Modem / nmwcdcm][Stopped/Manual Start]
  <system32\\drivers\\nmwcdcm.sys><Nokia>
[nv / nv][Running/Manual Start]
  <system32\\DRIVERS\\nv4_mini.sys><NVIDIA Corporation>
[Sterownik bezpośredniego połączenia kablowego / Ptilink][Running/Manual Start]
  <system32\\DRIVERS\\ptilink.sys><Parallel Technologies, Inc.>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\\DRIVERS\\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[Sterownik filtru USB Sony (SONYPVU1) / SONYPVU1][Stopped/Manual Start]
  <system32\\DRIVERS\\SONYPVU1.SYS><Sony Corporation>
[NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start]
  <system32\\DRIVERS\\yk51x86.sys><Marvell>
 
==================================
Browser Add-ons
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[Automated Content Enhancer]
  {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} <C:\\Program Files\\Automated Content Enhancer\\4.1.0.5290\\ACEIEAddOn.dll, >
[Customized Platform Advancer]
  {42C7C39F-3128-4a17-BDB7-91C46032B5B9} <C:\\Program Files\\Customized Platform Advancer\\4.1.0.1960\\CPAIEAddOn.dll, >
[]
  {AA58ED58-01DD-4d91-8333-CF10577473F7} <, >
[]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <, >
[Content Management Wizard]
  {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} <C:\\Program Files\\Content Management Wizard\\1.1.0.1990\\CMWIE.dll, >
[Browsing Protection Class]
  {C6867EB7-8350-4856-877F-93CF8AE3DC9C} <C:\\Program Files\\F-Secure\\NRS\\iescript\\baselitmus.dll, (Signed) F-Secure Corporation>
[]
  {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <, >
[Textual Content Provider]
  {CAC89FF9-34A9-4431-8CFE-292A47F843BC} <C:\\Program Files\\Textual Content Provider\\1.1.0.1810\\TCPIE.dll, >
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435b-BC74-9C25C1C588A9} <C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll, Sun Microsystems, Inc.>
[JQSIEStartDetectorImpl Class]
  {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll, Sun Microsystems, Inc.>
[Web Search Operator]
  {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} <C:\\Program Files\\Web Search Operator\\4.1.0.2080\\wso.dll, >
[IEPluginBHO Class]
  {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} <C:\\Documents and Settings\\KASIA.P2600\\Dane aplikacji\\Gadu-Gadu 10\\_userdata\\ggbho.2.dll, GG Network S.A.>
[Send to OneNote from Internet Explorer button]
  {2670000A-7350-4f3c-8081-5663EE0C6C49} <C:\\PROGRA~1\\MICROS~2\\Office12\\ONBttnIE.dll, (Signed) Microsoft Corporation>
[&Poszukaj]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\\PROGRA~1\\MICROS~2\\Office12\\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[]
  {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\\Network Diagnostic\\xpnetdiag.exe, (Signed) N/A>
[Gameztar Toolbar]
  {D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2} <C:\\Program Files\\Gameztar Toolbar\\2.1.3.6670\\mvb0.dll, N/A>
[Browsing Protection Toolbar]
  {265EEE8E-3228-44D3-AEA5-F7FDF5860049} <C:\\Program Files\\F-Secure\\NRS\\iescript\\baselitmus.dll, (Signed) F-Secure Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\\WINDOWS\\system32\\Macromed\\Flash\\Flash10b.ocx, (Signed) Adobe Systems, Inc.>
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[Automated Content Enhancer]
  {1D74E9DD-8987-448B-B2CB-67FFF2B8A932} <C:\\Program Files\\Automated Content Enhancer\\4.1.0.5290\\ACEIEAddOn.dll, >
[]
  {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <, >
[]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <, >
[Browsing Protection Toolbar]
  {265EEE8E-3228-44D3-AEA5-F7FDF5860049} <C:\\Program Files\\F-Secure\\NRS\\iescript\\baselitmus.dll, (Signed) F-Secure Corporation>
[]
  {2670000A-7350-4F3C-8081-5663EE0C6C49} <, >
[GGClass Class]
  {3760D689-C63B-4422-9A1D-31CA856CD5C1} <C:\\Documents and Settings\\KASIA.P2600\\Dane aplikacji\\Gadu-Gadu 10\\_userdata\\ggbho.2.dll, GG Network S.A.>
[]
  {37B85A29-692B-4205-9CAD-2626E4993404} <, >
[Customized Platform Advancer]
  {42C7C39F-3128-4A17-BDB7-91C46032B5B9} <C:\\Program Files\\Customized Platform Advancer\\4.1.0.1960\\CPAIEAddOn.dll, >
[Microsoft RDP Client Control (redist)]
  {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} <C:\\WINDOWS\\system32\\mstscax.dll, (Signed) Microsoft Corporation>
[Microsoft RDP Client Control (redist)]
  {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} <C:\\WINDOWS\\system32\\mstscax.dll, (Signed) Microsoft Corporation>
[]
  {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} <, >
[Microsoft RDP Client Control (redist)]
  {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} <C:\\WINDOWS\\system32\\mstscax.dll, (Signed) Microsoft Corporation>
[]
  {74322BF9-DF26-493F-B0DA-6D2FC5E6429E} <, >
[Microsoft RDP Client Control (redist)]
  {7584c670-2274-4efb-b00b-d6aaba6d3850} <C:\\WINDOWS\\system32\\mstscax.dll, (Signed) Microsoft Corporation>
[]
  {7C3B01BC-53A5-48A0-A43B-0C67731134BA} <, >
[Przeglądarka sieci Web firmy Microsoft]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\\WINDOWS\\system32\\shdocvw.dll, (Signed) Microsoft Corporation>
[Microsoft RDP Client Control (redist)]
  {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} <C:\\WINDOWS\\system32\\mstscax.dll, (Signed) Microsoft Corporation>
[]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <, >
[]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <, >
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\\system32\\shdocvw.dll, (Signed) N/A>
[Content Management Wizard]
  {B72681C0-A222-4B21-A0E2-53A5A5CA3D41} <C:\\Program Files\\Content Management Wizard\\1.1.0.1990\\CMWIE.dll, >
[Browsing Protection Class]
  {C6867EB7-8350-4856-877F-93CF8AE3DC9C} <C:\\Program Files\\F-Secure\\NRS\\iescript\\baselitmus.dll, (Signed) F-Secure Corporation>
[]
  {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <, >
[Microsoft Office 12 Authorization Control]
  {C9712B19-838B-45A5-ABF2-9A315DDDED50} <C:\\PROGRA~1\\MICROS~2\\Office12\\AUTHZAX.DLL, (Signed) Microsoft Corporation>
[Textual Content Provider]
  {CAC89FF9-34A9-4431-8CFE-292A47F843BC} <C:\\Program Files\\Textual Content Provider\\1.1.0.1810\\TCPIE.dll, >
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\\WINDOWS\\system32\\Macromed\\Flash\\Flash10b.ocx, (Signed) Adobe Systems, Inc.>
[Gameztar Toolbar]
  {D45817B8-3EAD-4D1D-8FCA-EC63A8E35DE2} <C:\\Program Files\\Gameztar Toolbar\\2.1.3.6670\\mvb0.dll, N/A>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll, Sun Microsystems, Inc.>
[]
  {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[JQSIEStartDetectorImpl Class]
  {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll, Sun Microsystems, Inc.>
[Web Search Operator]
  {EB4A577D-BCAD-4B1C-8AF2-9A74B8DD3431} <C:\\Program Files\\Web Search Operator\\4.1.0.2080\\wso.dll, >
[IEPluginBHO Class]
  {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} <C:\\Documents and Settings\\KASIA.P2600\\Dane aplikacji\\Gadu-Gadu 10\\_userdata\\ggbho.2.dll, GG Network S.A.>
 
==================================
Running Processes
[PID: 540 / SYSTEM][\\SystemRoot\\System32\\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 608 / SYSTEM][\\??\\C:\\WINDOWS\\system32\\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 632 / SYSTEM][\\??\\C:\\WINDOWS\\system32\\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 676 / SYSTEM][C:\\WINDOWS\\system32\\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
[PID: 688 / SYSTEM][C:\\WINDOWS\\system32\\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 840 / SYSTEM][C:\\WINDOWS\\system32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 920 / USŁUGA SIECIOWA][C:\\WINDOWS\\system32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 948 / SYSTEM][C:\\WINDOWS\\System32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [c:\\windows\\system32\\uxtuneup.dll]  [TuneUp Software GmbH, 2.0.0.12]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
[PID: 996 / SYSTEM][C:\\WINDOWS\\system32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1148 / USŁUGA SIECIOWA][C:\\WINDOWS\\system32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
[PID: 1300 / USŁUGA LOKALNA][C:\\WINDOWS\\system32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
[PID: 1468 / KASIA][C:\\WINDOWS\\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
    [C:\\Program Files\\F-Secure\\Spam Control\\fsscoepl.dll]  [F-Secure Corporation, 1.02.7380]
    [C:\\Program Files\\F-Secure\\Common\\fpshx.dll]  [F-Secure Corporation, 8.80.15180]
    [C:\\Program Files\\F-Secure\\Common\\FSMA32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\FSPMAPI.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\fslapi.dll]  [F-Secure Corporation, 8.00.4052 ]
    [D:\\Program Files\\WinZip\\wzshlstb.dll]  [WinZip Computing, S.L., 4.1 (32-bit)]
    [C:\\Program Files\\WinRAR\\rarext.dll]  [, ]
    [C:\\Program Files\\TuneUp Utilities 2008\\SDShelEx-win32.dll]  [TuneUp Software GmbH, 2.0.0.4]
    [C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\PDFShell.dll]  [Adobe Systems, Inc., 9.1.0.2009022700]
    [C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\PDFShell.POL]  [, ]
[PID: 1560 / SYSTEM][C:\\WINDOWS\\system32\\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
    [C:\\WINDOWS\\system32\\hpzsnt07.dll]  [HP, 2,140,0,0]
[PID: 1636 / USŁUGA LOKALNA][C:\\WINDOWS\\system32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1680 / SYSTEM][C:\\Program Files\\F-Secure\\Anti-Virus\\fsgk32st.exe]  [F-Secure Corporation, 8.70.15111.1]
[PID: 1692 / SYSTEM][C:\\Program Files\\F-Secure\\Common\\FSMA32.EXE]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\fsma32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\FSPMAPI.dll]  [F-Secure Corporation, 8.10.30088 ]
[PID: 1700 / SYSTEM][C:\\Program Files\\F-Secure\\Anti-Virus\\FSGK32.EXE]  [F-Secure Corporation, 9.00.15450.85]
    [c:\\program files\\f-secure\\common\\fspmapi.dll]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\common\\fsma32s.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Scanner-Interface\\fsgkiapi.dll]  [F-Secure Corp., 8.80.15211.23872]
    [C:\\Program Files\\F-Secure\\HIPS\\fships.dll]  [F-Secure Corporation, 2.20.146]
    [c:\\program files\\f-secure\\orsp client\\orspapi.dll]  [F-Secure Corporation, 1.0.15 build 134]
    [c:\\program files\\f-secure\\orsp client\\json_c.dll]  [F-Secure Corporation, 1, 0, 0, 4]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fsumi.dll]  [F-Secure Corporation, 2.20.146]
    [c:\\program files\\f-secure\\daas2\\fsclm.dll]  [F-Secure Corporation, 2.3.6 ]
[PID: 1724 / SYSTEM][C:\\Program Files\\Java\\jre6\\bin\\jqs.exe]  [Sun Microsystems, Inc., 6.0.130.3]
    [C:\\Program Files\\Java\\jre6\\bin\\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
    [C:\\WINDOWS\\system32\\netfxperf.dll]  [Microsoft Corporation, 1.1.4322.573]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\avperf.dll]  [F-Secure Corp., 7.70.14161.19981]
    [C:\\Program Files\\F-Secure\\FWES\\Program\\fsfwperf.dll]  [F-Secure Corporation, 6.24.103]
    [C:\\Program Files\\F-Secure\\FWES\\Program\\fsesperf.dll]  [F-Secure Corporation, 2.00.432]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 1772 / SYSTEM][C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe]  [Hewlett-Packard Company, 1.4.44.1]
    [C:\\Program Files\\Common Files\\LightScribe\\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\\Program Files\\Common Files\\LightScribe\\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 1800 / SYSTEM][C:\\Program Files\\F-Secure\\Common\\FSHDLL32.EXE]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\fsma32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\FSPMAPI.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\FCH32.DLL]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\FSPMENG.DLL]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\daas2\\fsclm.dll]  [F-Secure Corporation, 2.3.6 ]
    [C:\\Program Files\\F-Secure\\FSAUA\\program\\fsaua.dll]  [F-Secure Corporation, 8.25.3737 ]
    [C:\\Program Files\\F-Secure\\Common\\FAMEH32.DLL]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\fslapi.dll]  [F-Secure Corporation, 8.00.4052 ]
    [C:\\Program Files\\F-Secure\\Common\\AMEHEVN.DLL]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\FSPC\\fspc.dll]  [F-Secure Corporation, 8.40.15270 ]
    [c:\\program files\\f-secure\\scanner-interface\\fsgkiapi.dll]  [F-Secure Corp., 8.80.15211.23872]
    [c:\\program files\\f-secure\\tnb\\fstnb.dll]  [F-Secure Corporation, 2.40.15272 ]
    [c:\\program files\\f-secure\\fsaua\\program\\fsaua_api_dll.dll]  [F-Secure Corporation, 8.25.3737 ]
    [C:\\Program Files\\F-Secure\\Common\\AMEHLOG.DLL]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
[PID: 1812 / SYSTEM][C:\\WINDOWS\\system32\\nvsvc32.exe]  [NVIDIA Corporation, 6.14.10.8421]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 1900 / SYSTEM][C:\\WINDOWS\\system32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1416 / SYSTEM][C:\\Program Files\\F-Secure\\FWES\\Program\\fsdfwd.exe]  [F-Secure Corporation, 6.24.103]
    [c:\\program files\\f-secure\\common\\fsma32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\common\\fspmapi.dll]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\tnb\\fstnb.dll]  [F-Secure Corporation, 2.40.15272 ]
    [c:\\program files\\f-secure\\common\\fslapi.dll]  [F-Secure Corporation, 8.00.4052 ]
    [C:\\Program Files\\F-Secure\\FWES\\Program\\fsmirror.dll]  [F-Secure Corporation, 2.00.432]
    [c:\\program files\\f-secure\\scanner-interface\\fsgkiapi.dll]  [F-Secure Corp., 8.80.15211.23872]
    [C:\\Program Files\\F-Secure\\FWES\\Program\\fsesperf.dll]  [F-Secure Corporation, 2.00.432]
    [C:\\Program Files\\F-Secure\\Common\\fsdfwres.eng]  [F-Secure Corporation, 6.24.103]
    [c:\\program files\\f-secure\\orsp client\\orspapi.dll]  [F-Secure Corporation, 1.0.15 build 134]
    [c:\\program files\\f-secure\\orsp client\\json_c.dll]  [F-Secure Corporation, 1, 0, 0, 4]
    [c:\\program files\\f-secure\\fsaua\\program\\fsaua_api_dll.dll]  [F-Secure Corporation, 8.25.3737 ]
    [C:\\Program Files\\F-Secure\\FWES\\Program\\fsfwperf.dll]  [F-Secure Corporation, 6.24.103]
    [c:\\program files\\f-secure\\common\\fswscs.dll]  [F-Secure Corporation, 1.00.15190]
[PID: 1460 / SYSTEM][C:\\Program Files\\F-Secure\\Anti-Virus\\fssm32.exe]  [F-Secure Corporation, 9.00.15450.85]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\Aquarius\\fpiaqu.dll]  [F-Secure Corporation, 1.0.15370]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\Aquarius\\core\\bdcore.dll]  [BitDefender, 11, 0, 0, 33]
    [C:\\Program Files\\F-Secure\\Gemini\\fsgem.dll]  [F-Secure Corporation, 2.20.890]
    [C:\\Program Files\\F-Secure\\Gemini\\fsgeme.dll]  [F-Secure Corporation, Gemini 3.0.23]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\fsepx32.dll]  [F-Secure Corporation, 2, 1, 1, 0]
    [c:\\program files\\f-secure\\daas2\\fsclm.dll]  [F-Secure Corporation, 2.3.6 ]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\fsecr32.dll]  [F-Secure Corporation, 4.2.9420]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\fsuss.dll]  [F-Secure Corporation, 3.00.15420]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\fsusscr.dll]  [F-Secure Corporation, 3.00.15420]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\fm4av.dll]  [, ]
    [C:\\Program Files\\F-Secure\\Spam Control\\fsas.dll]  [, ]
[PID: 1888 / USŁUGA SIECIOWA][C:\\Program Files\\F-Secure\\ORSP Client\\fsorsp.exe]  [F-Secure Corporation, 1.0.15 build 134]
    [C:\\Program Files\\F-Secure\\ORSP Client\\orspplug.dll]  [F-Secure Corporation, 1.0.15 build 134]
    [c:\\program files\\f-secure\\common\\fsma32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\common\\fspmapi.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\ORSP Client\\json_c.dll]  [F-Secure Corporation, 1, 0, 0, 4]
    [c:\\program files\\f-secure\\daas2\\fsclm.dll]  [F-Secure Corporation, 2.3.6 ]
    [c:\\program files\\f-secure\\daas2\\daas2.dll]  [, 1.0.6 build 102]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
[PID: 2124 / USŁUGA LOKALNA][C:\\WINDOWS\\System32\\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 2448 / KASIA][C:\\Program Files\\F-Secure\\Common\\FSM32.EXE]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\FSPMAPI.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\fslapi.dll]  [F-Secure Corporation, 8.00.4052 ]
    [C:\\Program Files\\F-Secure\\Common\\fsma32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\FSGUI\\about.dll]  [N/A, ]
    [c:\\program files\\f-secure\\tnb\\fstnb.dll]  [F-Secure Corporation, 2.40.15272 ]
    [C:\\Program Files\\F-Secure\\FSGUI\\aboutres.dll]  [N/A, ]
    [C:\\Program Files\\F-Secure\\FSGUI\\strres.eng]  [N/A, ]
    [C:\\Program Files\\F-Secure\\Common\\fsmres.eng]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\FSGUI\\fsmuiav.dll]  [F-Secure Corporation, 9, 00, 4864, 0]
    [C:\\Program Files\\F-Secure\\FSGUI\\gres.dll]  [N/A, ]
    [C:\\Program Files\\F-Secure\\FSAUA\\program\\fsauainfo.dll]  [F-Secure Corporation, 8.25.3737 ]
    [C:\\Program Files\\F-Secure\\FSGUI\\guilaunc.dll]  [F-Secure Corporation, 9, 00, 4864, 0]
    [C:\\Program Files\\F-Secure\\FSGUI\\guiplugn.dll]  [F-Secure Corporation, 9, 00, 4864, 0]
    [c:\\program files\\f-secure\\fspc\\fspcapi.dll]  [F-Secure Corporation, 8.40.15270 ]
    [C:\\Program Files\\F-Secure\\FSGUI\\PCPWD.DLL]  [F-Secure Corporation, 9, 00, 4864, 0]
    [C:\\Program Files\\F-Secure\\FSGUI\\fsavesui.dll]  [F-Secure Corporation, 9, 00, 4864, 0]
    [C:\\Program Files\\F-Secure\\FSGUI\\fsavures.eng]  [N/A, ]
    [C:\\Program Files\\F-Secure\\FSGUI\\flyer.dll]  [F-Secure Corporation, 9, 00, 4864, 0]
    [C:\\Program Files\\F-Secure\\ISPNews\\ispnews.dll]  [F-Secure Corporation, 1.00.140]
    [C:\\Program Files\\F-Secure\\ISPNews\\ispnewsres.eng]  [F-Secure Corporation, 1.00.140]
    [C:\\Program Files\\F-Secure\\Common\\fsmaui32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\fsmaures.eng]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\FSGUI\\flyerres.eng]  [N/A, ]
    [C:\\Program Files\\F-Secure\\FSPC\\fspcfsm.dll]  [F-Secure Corporation, 8.40.15270 ]
    [C:\\Program Files\\F-Secure\\Spam Control\\fsscoepl.dll]  [F-Secure Corporation, 1.02.7380]
    [c:\\program files\\f-secure\\fsgui\\fsscgui.dll]  [F-Secure Corporation, 9, 00, 4864, 0]
    [C:\\Program Files\\F-Secure\\FSPC\\fspcfsm.eng]  [N/A, ]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 2512 / KASIA][D:\\Electronic Arts\\EADM\\Core.exe]  [Electronic Arts, 5.1.0.4]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
    [c:\\program files\\f-secure\\scanner-interface\\fsgkiapi.dll]  [F-Secure Corp., 8.80.15211.23872]
    [C:\\Program Files\\F-Secure\\Spam Control\\fsscoepl.dll]  [F-Secure Corporation, 1.02.7380]
    [C:\\WINDOWS\\system32\\Macromed\\Flash\\Flash10b.ocx]  [Adobe Systems, Inc., 10,0,22,87]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 2556 / KASIA][C:\\WINDOWS\\system32\\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[PID: 2616 / KASIA][C:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpohmr08.exe]  [Hewlett-Packard Co., 4.2.0.020]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 2624 / KASIA][C:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpotdd01.exe]  [Hewlett-Packard, 1, 0, 0, 1]
    [C:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpodvd08.dll]  [Hewlett-Packard, 2, 0, 2, 2]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 2856 / SYSTEM][C:\\WINDOWS\\System32\\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 3188 / SYSTEM][C:\\Program Files\\F-Secure\\Anti-Virus\\fsav32.exe]  [F-Secure Corporation, 9.30.15430]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\FSCHED.dll]  [F-Secure Corporation, 8.20.14250]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\Qrt.dll]  [F-Secure Corporation, 8.20.14200]
    [c:\\program files\\f-secure\\common\\fsma32s.dll]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\common\\fspmapi.dll]  [F-Secure Corporation, 8.10.30088 ]
    [C:\\Program Files\\F-Secure\\Common\\fswscs.dll]  [F-Secure Corporation, 1.00.15190]
    [C:\\Program Files\\F-Secure\\TNB\\fstnb.dll]  [F-Secure Corporation, 2.40.15272 ]
    [c:\\program files\\f-secure\\common\\fslapi.dll]  [F-Secure Corporation, 8.00.4052 ]
    [C:\\Program Files\\F-Secure\\Anti-Virus\\FSAVHRES.eng]  [N/A, ]
    [c:\\program files\\f-secure\\fsaua\\program\\fsaua_api_dll.dll]  [F-Secure Corporation, 8.25.3737 ]
    [c:\\program files\\f-secure\\common\\fsma32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\daas2\\fsclm.dll]  [F-Secure Corporation, 2.3.6 ]
[PID: 3820 / SYSTEM][C:\\WINDOWS\\system32\\wbem\\wmiapsrv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 3396 / KASIA][C:\\WINDOWS\\system32\\wuauclt.exe]  [(Verified) Microsoft Corporation, 7.4.7600.226 (winmain_wtr_wsus3sp2(wmbla).090806-1834)]
    [C:\\Program Files\\F-Secure\\Spam Control\\fsscoepl.dll]  [F-Secure Corporation, 1.02.7380]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 1976 / KASIA][C:\\Program Files\\Mozilla Firefox\\firefox.exe]  [Mozilla Corporation, 1.9.1.6]
    [C:\\Program Files\\Mozilla Firefox\\xul.dll]  [Mozilla Foundation, 1.9.1.6]
    [C:\\Program Files\\Mozilla Firefox\\sqlite3.dll]  [sqlite.org, 3.6.16.1]
    [C:\\Program Files\\Mozilla Firefox\\MOZCRT19.dll]  [Mozilla Foundation, 8.00.0000]
    [C:\\Program Files\\Mozilla Firefox\\js3250.dll]  [Netscape Communications Corporation, 4.0]
    [C:\\Program Files\\Mozilla Firefox\\nspr4.dll]  [Mozilla Foundation, 4.8.2]
    [C:\\Program Files\\Mozilla Firefox\\smime3.dll]  [Mozilla Foundation, 3.12.4.5 Basic ECC]
    [C:\\Program Files\\Mozilla Firefox\\nss3.dll]  [Mozilla Foundation, 3.12.4.5 Basic ECC]
    [C:\\Program Files\\Mozilla Firefox\\nssutil3.dll]  [Mozilla Foundation, 3.12.4.5]
    [C:\\Program Files\\Mozilla Firefox\\plc4.dll]  [Mozilla Foundation, 4.8.2]
    [C:\\Program Files\\Mozilla Firefox\\plds4.dll]  [Mozilla Foundation, 4.8.2]
    [C:\\Program Files\\Mozilla Firefox\\ssl3.dll]  [Mozilla Foundation, 3.12.4.5 Basic ECC]
    [C:\\Program Files\\Mozilla Firefox\\xpcom.dll]  [Mozilla Foundation, 1.9.1.6]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
    [C:\\Program Files\\F-Secure\\Spam Control\\fsscoepl.dll]  [F-Secure Corporation, 1.02.7380]
    [C:\\Program Files\\Mozilla Firefox\\components\\browserdirprovider.dll]  [Mozilla Foundation, 1.9.1.6]
    [C:\\Program Files\\Automated Content Enhancer\\4.1.0.5290\\FF\\components\\ACEFFAddOn.dll]  [, 4,1,0,5290]
    [C:\\Program Files\\Automated Content Enhancer\\4.1.0.5290\\lri.dll]  [, 0, 0, 0, 7]
    [C:\\Program Files\\Automated Content Enhancer\\4.1.0.5290\\ACECommon.dll]  [, 4,1,0,5290]
    [C:\\Program Files\\Customized Platform Advancer\\4.1.0.1960\\FF\\components\\CPAFFAddOn.dll]  [, 4,1,0,1960]
    [C:\\Program Files\\Customized Platform Advancer\\4.1.0.1960\\lri.dll]  [, 0, 0, 0, 7]
    [C:\\Program Files\\Customized Platform Advancer\\4.1.0.1960\\CPACommon.dll]  [, 4,1,0,1960]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
    [c:\\program files\\f-secure\\scanner-interface\\fsgkiapi.dll]  [F-Secure Corp., 8.80.15211.23872]
    [C:\\Program Files\\Mozilla Firefox\\components\\brwsrcmp.dll]  [Mozilla Foundation, 1.9.1.6]
    [C:\\Program Files\\Web Search Operator\\4.1.0.2080\\FF\\components\\WSOFFAddOn.dll]  [, 4,1,0,2080]
    [C:\\Program Files\\Web Search Operator\\4.1.0.2080\\lri.dll]  [, 0, 0, 0, 7]
    [C:\\Program Files\\Web Search Operator\\4.1.0.2080\\WSOCommon.dll]  [, 4,1,0,2080]
    [C:\\Program Files\\Mozilla Firefox\\softokn3.dll]  [Mozilla Foundation, 3.12.4.5 Basic ECC]
    [C:\\Program Files\\Mozilla Firefox\\nssdbm3.dll]  [Mozilla Foundation, 3.12.4.5 Basic ECC]
    [C:\\Program Files\\Mozilla Firefox\\freebl3.dll]  [Mozilla Foundation, 3.12.4.5 Basic ECC]
    [C:\\Program Files\\Mozilla Firefox\\nssckbi.dll]  [Mozilla Foundation, 1.75]
    [C:\\Documents and Settings\\KASIA.P2600\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\4bgfkqu4.default\\extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}\\components\\googletoolbarloader.dll]  [N/A, ]
    [C:\\Documents and Settings\\KASIA.P2600\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\4bgfkqu4.default\\extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}\\libraries\\googletoolbar-ff3.dll]  [N/A, ]
    [C:\\Documents and Settings\\KASIA.P2600\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\4bgfkqu4.default\\extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}\\components\\frozen.dll]  [N/A, ]
    [C:\\Program Files\\F-Secure\\NRS\\litmus-ff@f-secure.com\\components\\litmus-ff.dll]  [F-Secure Corporation, 1.10.5435.0]
    [c:\\program files\\f-secure\\common\\fslapi.dll]  [F-Secure Corporation, 8.00.4052 ]
    [C:\\Program Files\\F-Secure\\NRS\\litmus.eng]  [F-Secure Corporation, 1.0.0.1]
    [c:\\program files\\f-secure\\orsp client\\orspapi.dll]  [F-Secure Corporation, 1.0.15 build 134]
    [c:\\program files\\f-secure\\common\\fspmapi.dll]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\common\\fsma32.dll]  [F-Secure Corporation, 8.10.30088 ]
    [c:\\program files\\f-secure\\fspc\\fspcapi.dll]  [F-Secure Corporation, 8.40.15270 ]
    [C:\\Program Files\\F-Secure\\FSGUI\\PCPWD.DLL]  [F-Secure Corporation, 9, 00, 4864, 0]
    [c:\\program files\\f-secure\\exploitshield\\fseshook.dll]  [F-Secure Corporation, 1, 10, 2371, 733]
    [c:\\program files\\f-secure\\tnb\\fstnb.dll]  [F-Secure Corporation, 2.40.15272 ]
    [C:\\WINDOWS\\system32\\Macromed\\Flash\\NPSWF32.dll]  [, ]
[PID: 3544 / KASIA][C:\\DOCUME~1\\KASIA~1.P26\\USTAWI~1\\Temp\\Rar$EX01.546\\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.1.1279]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
[PID: 396 / KASIA][C:\\DOCUME~1\\KASIA~1.P26\\USTAWI~1\\Temp\\Rar$EX01.546\\SREf2f3ffdd.EXE]  [Smallfrogs Studio, 2.8.1.1279]
    [\\\\?\\c:\\program files\\f-secure\\hips\\fshook32.dll]  [F-Secure Corporation, 2.20.146]
    [C:\\Program Files\\F-Secure\\Spam Control\\fsscoepl.dll]  [F-Secure Corporation, 1.02.7380]
    [C:\\DOCUME~1\\KASIA~1.P26\\USTAWI~1\\Temp\\Rar$EX01.546\\Upload\\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
    [C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL]  [F-Secure Corporation, 2.01.910]
    [c:\\program files\\f-secure\\scanner-interface\\fsgkiapi.dll]  [F-Secure Corp., 8.80.15211.23872]
 
==================================
File Associations
.TXT  OK. [%SystemRoot%\\system32\\NOTEPAD.EXE %1]
.EXE  OK. [\"%1\" %*]
.COM  OK. [\"%1\" %*]
.PIF  OK. [\"%1\" %*]
.REG  OK. [regedit.exe \"%1\"]
.BAT  OK. [\"%1\" %*]
.SCR  OK. [\"%1\" /S]
.CHM  Error. [\"%SYSTEMROOT%\\hh.exe\" %1]
.HLP  OK. [%SystemRoot%\\System32\\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\\System32\\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\\System32\\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\\System32\\WScript.exe \"%1\" %*]
.JS   OK. [%SystemRoot%\\System32\\WScript.exe \"%1\" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]
 
==================================
Winsock Provider
F-Secure Protocol Scanner over [MSAFD Tcpip [TCP/IP]]
    C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL(F-Secure Corporation, F-Secure Protocol Scanner LSP)
F-Secure Protocol Scanner over [MSAFD Tcpip [UDP/IP]]
    C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL(F-Secure Corporation, F-Secure Protocol Scanner LSP)
F-Secure Protocol Scanner over [MSAFD Tcpip [RAW/IP]]
    C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL(F-Secure Corporation, F-Secure Protocol Scanner LSP)
F-Secure Protocol Scanner
    C:\\Program Files\\F-Secure\\FSPS\\program\\FSLSP.DLL(F-Secure Corporation, F-Secure Protocol Scanner LSP)
 
==================================
Autorun.Inf
N/A
 
==================================
HOSTS File
127.0.0.1       localhost
 
==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2512, D:\\ELECTRONIC ARTS\\EADM\\CORE.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2616, C:\\PROGRAM FILES\\HEWLETT-PACKARD\\DIGITAL IMAGING\\BIN\\HPOHMR08.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2624, C:\\PROGRAM FILES\\HEWLETT-PACKARD\\DIGITAL IMAGING\\BIN\\HPOTDD01.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3544, C:\\DOCUME~1\\KASIA~1.P26\\USTAWI~1\\TEMP\\RAR$EX01.546\\SRENGLDR.EXE]
 
==================================
Scheduled Tasks
[Enabled] FRU Task #Hewlett-Packard#hp psc 1200 series#1220259838.job
        C:\\Program Files\\Hewlett-Packard\\Digital Imaging\\Bin\\hpqfrucl.exe 
 
==================================
Windows Security Update Check
 Platforma Microsoft .NET Framework w wersji 1.1, język polski 
KB829019,  Pakiet językowy dla platformy Microsoft .NET Framework 2.0: x86 (KB829019) 
KB892130,  Narzędzie sprawdzania autentyczności Dodatki dla Oryginalnego Systemu Windows (KB892130) 
KB940157,  Usługa wyszukiwania systemu Windows 4.0 dla systemu Windows XP (KB940157) 
KB928416,  Microsoft .NET Framework 3.0: pakiet językowy dla komputerów z procesorem x86 (KB928416) 
KB909520,  Pakiet Podstawowy dostawca usług kryptograficznych dla kart inteligentnych firmy Microsoft: x86 (KB909520) 
KB963678,  Aktualizacja Pomocy programu Microsoft Office Excel 2007 (KB963678) 
KB963669,  Aktualizacja Pomocy programu Microsoft Office PowerPoint 2007 (KB963669) 
KB963665,  Aktualizacja Pomocy programu Microsoft Office Word 2007 (KB963665) 
KB951847,  Pakiet językowy dla programu Microsoft .NET Framework 3.5 z dodatkiem Service Pack 1 (KB951847): procesory x86 
KB951847,  Dodatek Office Live 1.4 
KB944036,  Internet Explorer 8 dla systemu Windows XP 
KB974331,  Microsoft Silverlight (KB974331) 
KB974331,  Podstawowe programy Windows Live 
KB971513,  Aktualizacja dla systemu Windows XP (KB971513) 
KB974561,  Aktualizacja programu Microsoft Office Word 2007 (KB974561) 
KB931125,  Aktualizacja certyfikatów głównych (KB931125) [listopad 2009] 
KB955759,  Aktualizacja dla systemu Windows XP (KB955759) 
KB890830,  Narzędzie Windows do usuwania złośliwego oprogramowania — grudzień 2009 (KB890830) 
 
==================================
API HOOK
Entrypoint Error: NtCreateProcess (Dangerous Level: High,  Hooked by Module: 0x00DA0011)
Entrypoint Error: NtCreateProcessEx (Dangerous Level: High,  Hooked by Module: 0x00DA1011)
Entrypoint Error: ZwCreateProcess (Dangerous Level: High,  Hooked by Module: 0x00DA0011)
Entrypoint Error: ZwCreateProcessEx (Dangerous Level: High,  Hooked by Module: 0x00DA1011)
Entrypoint Error: ControlService (Dangerous Level: High,  Hooked by Module: 0x00DA6011)
Entrypoint Error: CreateServiceW (Dangerous Level: High,  Hooked by Module: 0x00DA8011)
Entrypoint Error: LoadLibraryExW (Dangerous Level: High,  Hooked by Module: 0x00DA2011)
Entrypoint Error: TerminateThread (Dangerous Level: High,  Hooked by Module: 0x00DA3011)
Entrypoint Error: ExitProcess (Dangerous Level: High,  Hooked by Module: 0x00DA2FE8)
Entrypoint Error: SetWindowsHookExW (Dangerous Level: High,  Hooked by Module: 0x00DA4011)
 
==================================
Hidden Process
N/A
 
==================================
 
 
[/CODE]
Wygenerowano w 0.316s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!