ComboFix 08-02-22 - popcorn 2008-02-21 22:09:54.1 - FAT32x86
Microsoft Windows XP Home Edition 5.1.2600.2.1250.48.1045.18.45 [GMT 1:00]
Running from: C:\Documents and Settings\popcorn\Moje dokumenty\pobieralnia\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\system32\_000007_.tmp.dll
C:\WINDOWS\system32\_000008_.tmp.dll
C:\WINDOWS\system32\_000009_.tmp.dll
C:\WINDOWS\system32\_000012_.tmp.dll
C:\WINDOWS\system32\_000013_.tmp.dll
C:\WINDOWS\system32\_000014_.tmp.dll
.
((((((((((((((((((((((((( Files Created from 2008-01-22 to 2008-02-22 )))))))))))))))))))))))))))))))
.
2008-02-21 21:57 . 2008-02-21 21:57 <DIR> d-------- C:\WINDOWS\ERUNT
2008-02-21 21:53 . 2008-02-21 16:34 <DIR> d-------- C:\SDFix
2008-02-21 16:25 . 2007-12-07 03:14 6,066,176 --------- C:\WINDOWS\system32\dllcache\ieframe.dll
2008-02-21 16:25 . 2007-07-01 04:31 2,455,488 --------- C:\WINDOWS\system32\dllcache\ieapfltr.dat
2008-02-21 16:25 . 2007-07-01 04:36 1,036,288 --------- C:\WINDOWS\system32\dllcache\ieframe.dll.mui
2008-02-21 16:25 . 2007-12-07 03:14 459,264 --------- C:\WINDOWS\system32\dllcache\msfeeds.dll
2008-02-21 16:25 . 2007-12-07 03:14 383,488 --------- C:\WINDOWS\system32\dllcache\ieapfltr.dll
2008-02-21 16:25 . 2007-12-07 03:14 267,776 --------- C:\WINDOWS\system32\dllcache\iertutil.dll
2008-02-21 16:25 . 2007-12-07 03:14 63,488 --------- C:\WINDOWS\system32\dllcache\icardie.dll
2008-02-21 16:25 . 2007-12-07 03:14 52,224 --------- C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2008-02-21 16:25 . 2007-12-06 12:00 13,824 --------- C:\WINDOWS\system32\dllcache\ieudinit.exe
2008-02-21 16:24 . 2008-02-21 16:24 <DIR> d-------- C:\WINDOWS\system32\pl-pl
2008-02-15 22:45 . 2008-02-15 22:45 <DIR> d-------- C:\Program Files\CDex_151
2008-02-15 22:45 . 2008-02-15 22:45 <DIR> d-------- C:\Program Files\CDex_150
2008-02-14 01:41 . 2008-02-14 01:41 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\AVS4YOU
2008-02-14 01:39 . 2008-02-14 01:39 <DIR> d-------- C:\Program Files\Common Files\AVSMedia
2008-02-14 01:38 . 2008-02-14 01:38 <DIR> d-------- C:\Program Files\AVS4YOU
2008-02-12 19:59 . 2008-02-12 19:59 194,560 --a------ C:\WINDOWS\Sarah Brightman - Symphony 1.scr
2008-02-12 19:58 . 2008-02-12 19:58 <DIR> d-------- C:\WINDOWS\Sarah Brightman - Symphony 1 dir
2008-02-12 14:23 . 2008-02-12 14:23 194,560 --a------ C:\WINDOWS\SS02_1024x768-recompressed.scr
2008-02-12 14:22 . 2008-02-12 14:23 <DIR> d-------- C:\WINDOWS\SS02_1024x768-recompressed dir
2008-02-12 14:22 . 2008-02-12 19:59 606,848 --a------ C:\WINDOWS\flashax.exe
2008-02-12 14:22 . 2008-02-12 19:59 12,288 --a------ C:\WINDOWS\impborl.dll
2008-02-11 21:42 . 2008-02-12 15:07 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-02-11 21:42 . 2008-02-11 21:42 1,409 --a------ C:\WINDOWS\QTFont.for
2008-02-06 23:04 . 2008-02-06 23:05 <DIR> d-------- C:\Program Files\Audacity
2008-02-02 00:14 . 2008-02-02 00:14 <DIR> d-------- C:\Documents and Settings\popcorn\Dane aplikacji\Nokia Multimedia Player
2008-02-01 23:25 . 2008-02-01 23:25 <DIR> d-------- C:\Program Files\DIFX
2008-02-01 23:25 . 2008-02-01 23:25 <DIR> d-------- C:\Program Files\Common Files\PCSuite
2008-02-01 23:25 . 2008-02-01 23:25 <DIR> d-------- C:\Program Files\Common Files\Nokia
2008-02-01 23:25 . 2008-02-01 23:25 <DIR> d-------- C:\Documents and Settings\popcorn\Dane aplikacji\Nokia
2008-02-01 23:25 . 2008-02-01 23:26 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
2008-02-01 23:24 . 2008-02-01 23:24 <DIR> d-------- C:\Program Files\PC Connectivity Solution
2008-02-01 23:24 . 2008-02-01 23:24 <DIR> d-------- C:\Documents and Settings\popcorn\Dane aplikacji\PC Suite
2008-02-01 23:23 . 2007-02-22 10:15 90,624 --a------ C:\WINDOWS\system32\nmwcdcls.dll
2008-02-01 23:14 . 2008-02-01 23:14 <DIR> d-------- C:\Program Files\Nokia
2008-02-01 23:11 . 2008-02-01 23:11 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\Installations
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-19 15:49 --------- d-----w C:\Program Files\Veoh Networks
2008-01-15 23:03 --------- d-----w C:\Program Files\gretl
2008-01-15 23:03 --------- d-----w C:\Documents and Settings\popcorn\Dane aplikacji\gretl
2008-01-11 05:41 44,544 ------w C:\WINDOWS\system32\dllcache\pngfilt.dll
2007-12-29 15:33 --------- d-----w C:\Program Files\TEXTware
2007-12-29 15:33 --------- d-----w C:\Program Files\Cambridge
2007-12-19 22:58 347,136 ------w C:\WINDOWS\system32\dllcache\dxtmsft.dll
2007-12-18 09:51 179,584 ----a-w C:\WINDOWS\system32\dllcache\mrxdav.sys
2007-12-08 09:44 3,592,192 ------w C:\WINDOWS\system32\dllcache\mshtml.dll
2007-12-07 01:08 474,112 ----a-w C:\WINDOWS\system32\dllcache\shlwapi.dll
2007-12-07 01:08 151,552 ----a-w C:\WINDOWS\system32\dllcache\cdfview.dll
2007-12-07 01:08 1,494,528 ----a-w C:\WINDOWS\system32\dllcache\shdocvw.dll
2007-12-07 01:08 1,055,744 ----a-w C:\WINDOWS\system32\dllcache\danim.dll
2007-12-07 01:08 1,023,488 ----a-w C:\WINDOWS\system32\dllcache\browseui.dll
2007-12-06 11:06 625,664 ------w C:\WINDOWS\system32\dllcache\iexplore.exe
2007-12-06 11:05 70,656 ------w C:\WINDOWS\system32\dllcache\ie4uinit.exe
2007-12-06 04:59 161,792 ------w C:\WINDOWS\system32\dllcache\ieakui.dll
2007-12-04 18:42 550,912 ----a-w C:\WINDOWS\system32\oleaut32.dll
2007-12-04 18:42 550,912 ----a-w C:\WINDOWS\system32\dllcache\oleaut32.dll
2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-11-25 19:52 73,216 ----a-w C:\WINDOWS\ST6UNST.EXE
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
2007-10-04 22:06 1135968 --a------ C:\Program Files\Winamp Toolbar\winamptb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}
{81F4066B-F330-4872-8094-3E9FBCCEC8C1}
{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
[HKEY_CLASSES_ROOT\clsid\{ebf2ba02-9094-4c5a-858b-bb198f3d8de2}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLToolBand.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLToolBand]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}"= C:\Program Files\Winamp Toolbar\winamptb.dll [2007-10-04 22:06 1135968]
[HKEY_CLASSES_ROOT\clsid\{ebf2ba02-9094-4c5a-858b-bb198f3d8de2}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLToolBand.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLToolBand]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 20:00 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2005-07-20 15:05 729177]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2005-12-27 15:50 69632]
"ADMTray.exe"="C:\Acer\Empowering Technology\admtray.exe" [2005-10-24 16:45 2462208]
"ntiMUI"="C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2005-05-11 17:15 45056]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [ ]
"BluetoothAuthenticationAgent"="rundll32.exe" [2004-08-04 20:00 33280 C:\WINDOWS\system32\rundll32.exe]
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-01-17 18:28 344064]
"Acer ePower Management"="C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe" [2006-01-16 11:58 3080192]
"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2006-07-20 22:15 593920]
"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\Monitor.exe" [2006-01-24 18:00 397312]
"RTHDCPL"="RTHDCPL.EXE" [2006-11-14 17:21 16270848 C:\WINDOWS\RTHDCPL.exe]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]
"SpySweeper"="C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" [2005-06-15 02:15 2969600]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 20:00 15360]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2007-09-28 03:17 443968]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-11-07 17:35 1294336]
C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2006-01-17 10:45:32 618557]
Enable Wireless Keyboard Driver.lnk - C:\Program Files\Wireless Device\Wireless Keyboard\Magickey.exe [2007-01-06 14:10:40 180224]
Watch.lnk - C:\WINDOWS\twain_32\S6U12BX\WATCH.exe [2007-07-01 18:09:48 356352]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [1999-02-17 20:05:56 65588]
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^DSLMON.lnk]
path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DSLMON.lnk
backup=C:\WINDOWS\pss\DSLMON.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Enable Wireless Mouse Driver.lnk]
backup=C:\WINDOWS\pss\Enable Wireless Mouse Driver.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Microsoft Office.lnk]
path=C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk
backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^popcorn^Menu Start^Programy^Autostart^OpenOffice.org 2.2.lnk]
path=C:\Documents and Settings\popcorn\Menu Start\Programy\Autostart\OpenOffice.org 2.2.lnk
backup=C:\WINDOWS\pss\OpenOffice.org 2.2.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
--a------ 2005-05-03 18:43 69632 C:\WINDOWS\Alcmtr.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
--a------ 2002-11-17 19:15 21551 C:\Program Files\Gadu-Gadu\PowerGG.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\googletalk]
--a------ 2007-01-01 22:22 3739648 C:\Program Files\Google\Google Talk\googletalk.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchApp]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 2004-10-13 17:24 1694208 C:\Program Files\Messenger\msmsgs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nero PhotoShow Media Manager]
--a------ 2006-01-13 23:22 249856 C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NWEReboot]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
--a------ 2007-12-10 10:12 695808 C:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
--a------ 2007-09-28 03:17 443968 C:\Program Files\Picasa2\PicasaMediaDetector.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
--a------ 2006-05-16 18:04 2879488 C:\WINDOWS\SkyTel.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2007-08-30 01:28 185632 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
--a------ 2007-10-10 07:28 36352 C:\Program Files\Winamp\winampa.exe
R0 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 16:14]
R1 kbfilter;Keyboard Filter Driver;C:\WINDOWS\system32\drivers\kbfilter.sys [2002-10-15 14:48]
R1 OsaFsLoc;OsaFsLoc;C:\WINDOWS\system32\drivers\OsaFsLoc.sys [2005-10-15 18:20]
R2 int15.sys;int15.sys;C:\Acer\Empowering Technology\eRecovery\int15.sys [2005-01-13 14:46]
R2 osaio;osaio;C:\WINDOWS\system32\drivers\osaio.sys [2005-06-30 16:58]
R2 osanbm;osanbm;C:\WINDOWS\system32\drivers\osanbm.sys [2005-01-14 15:57]
R3 NdisFilt;OSA NdisFilter Protocol;C:\WINDOWS\system32\Drivers\NdisFilt.sys [2005-09-13 15:34]
S2 IKANLOADER2;General Purpose USB Driver (e4ldr.sys);C:\WINDOWS\system32\Drivers\e4ldr.sys [2006-09-15 11:07]
S3 e4usbaw;USB ADSL2 WAN Adapter;C:\WINDOWS\system32\DRIVERS\e4usbaw.sys [2006-09-19 11:03]
S3 USBSTOR;Sterownik magazynu masowego USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 20:00]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5755ec48-ac2a-11dc-b1bb-0016d4513325}]
\Shell\AutoRun\command - EXPLORER.EXE
\Shell\explore\Command - EXPLORER.EXE
\Shell\open\Command - EXPLORER.EXE
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8507be64-784a-11dc-b0fe-0016d4513325}]
\Shell\AutoRun\command - EXPLORER.EXE
\Shell\explore\Command - EXPLORER.EXE
\Shell\open\Command - EXPLORER.EXE
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8960ebf4-a845-11dc-b1af-0016d4513325}]
\Shell\AutoRun\command - EXPLORER.EXE
\Shell\explore\Command - EXPLORER.EXE
\Shell\open\Command - EXPLORER.EXE
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bb1c8e34-bbb3-11db-af09-0016cf7e78ef}]
\Shell\AutoRun\command - F:\EXPLORER.EXE
\Shell\explore\Command - F:\EXPLORER.EXE
\Shell\open\Command - F:\EXPLORER.EXE
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c6cb5ca8-c920-11dc-b20b-0016d4513325}]
\Shell\AutoRun\command - EXPLORER.EXE
\Shell\explore\Command - EXPLORER.EXE
\Shell\open\Command - EXPLORER.EXE
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d2e0d918-8c93-11db-ae96-0016d4513325}]
\Shell\AutoRun\command - F:\EXPLORER.EXE
\Shell\explore\Command - F:\EXPLORER.EXE
\Shell\open\Command - F:\EXPLORER.EXE
*Newly Created Service* - INT15.SYS
.
Contents of the 'Scheduled Tasks' folder
"2008-02-05 22:22:26 C:\WINDOWS\Tasks\wrSpySweeper20070724203202.job"
- C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe*/ScheduleSweep=wrSpySweeper20070724203202
"2008-02-15 16:04:06 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-22 22:13:07
Windows 5.1.2600 Dodatek Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-02-22 22:14:48
ComboFix-quarantined-files.txt 2008-02-22 21:14:44
.
2008-02-21 15:27:26 --- E O F ---
[ Dodano: Dzisiaj o 22:17 ] SDFix: Version 1.144
Run by popcorn on 2008-02-21 at 22:00
Microsoft Windows XP [Wersja 5.1.2600]
Running From: C:\SDFix
Checking Services:
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Restoring Missing SharedAccess Service
Rebooting...
Checking Files:
No Trojan Files Found
Removing Temp Files...
ADS Check:
Final Check:
catchme 0.3.1344.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-21 22:04:48
Windows 5.1.2600 Dodatek Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden services ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0
Remaining Services:
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:uTorrent"
"C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\NAPI-PROJEKT\\napisy.exe"="C:\\Program Files\\NAPI-PROJEKT\\napisy.exe:*:Enabled:www.napiprojekt.pl"
"C:\\Program Files\\Gadu-Gadu\\gg.exe"="C:\\Program Files\\Gadu-Gadu\\gg.exe:*:Enabled:Gadu-Gadu - program glowny"
"C:\\Program Files\\Tlen.pl\\tlen.exe"="C:\\Program Files\\Tlen.pl\\tlen.exe:*:Enabled:Komunikator Tlen.pl"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\DC++\\DCPlusPlus.exe"="C:\\Program Files\\DC++\\DCPlusPlus.exe:*:Enabled:DC++"
"C:\\Program Files\\Google\\Google Talk\\googletalk.exe"="C:\\Program Files\\Google\\Google Talk\\googletalk.exe:*:Enabled:Google Talk"
"C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"="C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe:*:Enabled:Veoh Client"
"C:\\Program Files\\IncrediMail\\bin\\IncMail.exe"="C:\\Program Files\\IncrediMail\\bin\\IncMail.exe:*:Disabled:IncrediMail"
"C:\\Program Files\\IncrediMail\\bin\\IMApp.exe"="C:\\Program Files\\IncrediMail\\bin\\IMApp.exe:*:Disabled:IncrediMail"
"C:\\Program Files\\Opera\\Opera.exe"="C:\\Program Files\\Opera\\Opera.exe:*:Disabled:Opera Internet Browser"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
Remaining Files:
Files with Hidden Attributes:
Sat 23 Jun 2007 1,024 ...HR --- "C:\WINDOWS\system32\NTICDMK7.dll"
Sat 23 Jun 2007 1,024 ...HR --- "C:\WINDOWS\system32\NTIMPEG2.dll"
Sat 23 Jun 2007 1,024 ...HR --- "C:\WINDOWS\system32\NTIMP3.dll"
Sat 23 Jun 2007 1,024 ...HR --- "C:\WINDOWS\system32\NTIFCD3.dll"
Sat 23 Jun 2007 1,024 ...HR --- "C:\WINDOWS\system32\NTIBUN4.dll"
Fri 12 Oct 2007 5,903,928 A..H. --- "C:\Program Files\Picasa2\setup.exe"
Thu 28 Jun 2007 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Mon 30 Jul 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv02.tmp"
Thu 28 Jun 2007 20 A..H. --- "C:\Documents and Settings\popcorn\Moje dokumenty\Moja muzyka\Kopia zapasowa licencji\drmv1lic.bak"
Thu 28 Jun 2007 4,348 ...H. --- "C:\Documents and Settings\popcorn\Moje dokumenty\Moja muzyka\Kopia zapasowa licencji\drmv1key.bak"
Thu 28 Jun 2007 1,536 A..H. --- "C:\Documents and Settings\popcorn\Moje dokumenty\Moja muzyka\Kopia zapasowa licencji\drmv2lic.bak"
Thu 28 Jun 2007 400 ...H. --- "C:\Documents and Settings\popcorn\Moje dokumenty\Moja muzyka\Kopia zapasowa licencji\drmv2key.bak"
Fri 5 Jan 2007 788,992 ...H. --- "C:\Documents and Settings\popcorn\Dane aplikacji\Microsoft\Word\~WRL0594.tmp"
Sat 17 Nov 2007 1,289,216 ...H. --- "C:\Documents and Settings\popcorn\Dane aplikacji\Microsoft\Word\~WRL2196.tmp"
Sun 17 Dec 2006 890,880 ...H. --- "C:\Documents and Settings\popcorn\Dane aplikacji\Microsoft\Word\~WRL4101.tmp"
Sun 17 Dec 2006 893,952 ...H. --- "C:\Documents and Settings\popcorn\Dane aplikacji\Microsoft\Word\~WRL3921.tmp"
Finished!
sa jakies bledy? jak ta to jakie?
