Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 483

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 112

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 27

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 28

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 29

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 30

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 31

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 32

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 33

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 35

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 36

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 37

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 38

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 39

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 40

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 41

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 42

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 43

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 44

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 45

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 47

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 48

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 49

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 50

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 51

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 52

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 53

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 54

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 55

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 56

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 80

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 81

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 82

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 83

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 84

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 85

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 86

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 87

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 88

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 89

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 90

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 91

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 92

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 93

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 94

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 112

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 27

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 28

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 29

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 30

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 31

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 32

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 33

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 35

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 36

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 37

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 38

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 39

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 40

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 41

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 42

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 43

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 44

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 45

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 47

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 48

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 49

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 50

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 51

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 52

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 53

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 54

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 55

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 56

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 80

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 81

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 82

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 83

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 84

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 85

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 86

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 87

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 88

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 89

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 90

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 91

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 92

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 93

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 94

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663

Deprecated: preg_replace(): The /e modifier is deprecated, use preg_replace_callback instead in /home/mati/domains/forum.programosy.pl/public_html/includes/bbcode.php on line 112

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 27

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 28

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 29

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 30

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 31

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 32

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 33

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 35

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 36

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 37

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 38

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 39

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 40

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 41

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 42

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 43

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 44

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 45

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 47

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 48

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 49

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 50

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 51

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 52

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 53

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 54

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 55

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 56

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 80

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 81

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 82

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 83

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 84

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 85

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 86

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 87

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 88

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 89

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 90

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 91

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 92

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 93

Deprecated: Function eregi() is deprecated in /home/mati/domains/forum.programosy.pl/public_html/includes/functions_gfxua.php on line 94

Strict Standards: Non-static method utf_normalizer::nfkc() should not be called statically in /home/mati/domains/forum.programosy.pl/public_html/includes/utf/utf_tools.php on line 1663
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3900: Cannot modify header information - headers already sent by (output started at /includes/bbcode.php:483)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3902: Cannot modify header information - headers already sent by (output started at /includes/bbcode.php:483)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3903: Cannot modify header information - headers already sent by (output started at /includes/bbcode.php:483)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3904: Cannot modify header information - headers already sent by (output started at /includes/bbcode.php:483)
resetowane połączenia komp mocno muli • programosy.pl
Aktualizacje na programosy.pl: Maxthon Cloud BrowserFar ManagerreaConverter LiteAlternate Pic ViewWashAndGoYT DownloaderSmartFTPChrisPC YTD Downloader MP3 ConverterSyncovery  

  • Ogłoszenie:

resetowane połączenia komp mocno muli

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.
Wyślij odpowiedź

resetowane połączenia komp mocno muli

Postprzez skowrona 22 Mar 2007, 23:14

reklama
dałem logi HijackThis i Silent Runners na inne forum niestety teraz nie moge wejsc (kumpli chodzi) i kazali mi dać loga z ComboScana wiec wklejam tego loga tutaj bo programosy są jedna z ostatnich stron które mi chodzą :(

Kod: Zaznacz wszystko
ComboScan v20070306.20 run by Dawid on 2007-03-22 at 21:16:00
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created ComboScan Restore Point.


-- Last 5 Restore Point(s) --
10: 2007-03-22 20:16:11 UTC - RP10 - ComboScan Restore Point
9: 2007-03-18 14:18:14 UTC - RP9 - Instalacja niepodpisanego sterownika
8: 2007-03-09 20:59:59 UTC - RP8 - Installed Borland C++Builder 6
7: 2007-03-09 17:48:07 UTC - RP7 - Punkt kontrolny systemu
6: 2007-03-05 13:31:40 UTC - RP6 - Punkt kontrolny systemu


-- First Restore Point --
1: 2007-02-21 19:06:59 UTC - RP1 - Punkt kontrolny systemu


Performed disk cleanup.


-- HijackThis (run as Dawid.exe) -----------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 21:16:44, on 2007-03-22
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\D-Tools\daemon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\LClock\LClock.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\foobar2000\foobar2000.exe
C:\Documents and Settings\Dawid\Pulpit\comboscan.exe
C:\DOCUME~1\Dawid\Pulpit\Dawid.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: MEGAUPLOADTOOLBAR - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O3 - Toolbar: MEGAUPLOADTOOLBAR - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe"  -lang 1033
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [LClock] C:\Program Files\LClock\LClock.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O17 - HKLM\System\CCS\Services\Tcpip\..\{A1B156CA-54BE-447B-9771-21FE1042C53A}: NameServer = 88.199.79.3,88.199.79.6
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe


-- File Associations -----------------------------------------------------------

.bat - batfile - "%1" %*
.chm - chm.file - "C:\WINDOWS\hh.exe" %1
.cmd - cmdfile - "%1" %*
.com - comfile - "%1" %*
.exe - exefile - "%1" %*
.hlp - hlpfile - %SystemRoot%\System32\winhlp32.exe %1
.inf - inffile - %SystemRoot%\System32\NOTEPAD.EXE %1
.ini - inifile - %SystemRoot%\System32\NOTEPAD.EXE %1
.js - JSFile - %SystemRoot%\System32\WScript.exe "%1" %*
.lnk - lnkfile - {00021401-0000-0000-C000-000000000046}
.pif - piffile - "%1" %*
.reg - regfile - regedit.exe "%1"
.scr - scrfile - "%1" /S
.txt - txtfile - %SystemRoot%\system32\NOTEPAD.EXE %1
.vbs - VBSFile - %SystemRoot%\System32\WScript.exe "%1" %*


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

1R Aavmker4 (avast! Asynchronous Virus Monitor) - C:\WINDOWS\system32\drivers\aavmker4.sys
1R AmdK7 (Sterownik procesora AMD K7) - C:\WINDOWS\system32\drivers\amdk7.sys
2R aswMon2 (avast! Standard Shield Support) - C:\WINDOWS\system32\drivers\aswmon2.sys
3R aswRdr - C:\WINDOWS\system32\drivers\aswRdr.sys
1R aswTdi (avast! Network Shield Support) - C:\WINDOWS\system32\drivers\aswTdi.sys
3R cmuda (C-Media WDM Audio Interface) - C:\WINDOWS\system32\drivers\cmuda.sys
0R d347bus - C:\WINDOWS\system32\drivers\d347bus.sys
0R d347prt - C:\WINDOWS\system32\drivers\d347prt.sys
1R fwdrv (Firewall Driver) - C:\WINDOWS\system32\drivers\fwdrv.sys
0R gagp30kx (Filtr rodzajowy AGPv3.0 firmy Microsoft dla platform procesora K8) - C:\WINDOWS\system32\drivers\gagp30kx.sys
3R hidusb (Sterownik Microsoft klasy HID) - C:\WINDOWS\system32\drivers\hidusb.sys
2R irda (Protokół IrDA) - C:\WINDOWS\system32\drivers\irda.sys
1R khips (Kerio HIPS Driver) - C:\WINDOWS\system32\drivers\khips.sys
3S MSIRCOMM (Microsoft IR Communications Driver) - C:\WINDOWS\system32\drivers\MSIRCOMM.sys
3R nv - C:\WINDOWS\system32\drivers\nv4_mini.sys
3R Rasirda (WAN Miniport (IrDA)) - C:\WINDOWS\system32\drivers\rasirda.sys
3R rtl8139 (Sterownik NT karty Realtek RTL8139(A/B/C)-based PCI Fast Ethernet) - C:\WINDOWS\system32\drivers\rtl8139.sys
3S SER120 (OTI Serial port driver) - C:\WINDOWS\system32\drivers\ser120.sys
3S SISNIC (Sterownik karty PCI Fast Ethernet SiS) - C:\WINDOWS\system32\drivers\sisnic.sys
3S STIrUsb (Klucz szyfrujący SigmaTel USB-IrDA) - C:\WINDOWS\system32\drivers\irstusb.sys
3R usbehci (Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft) - C:\WINDOWS\system32\drivers\usbehci.sys
3R usbohci (Sterownik Miniport otwartego kontrolera hosta USB Microsoft) - C:\WINDOWS\system32\drivers\usbohci.sys
3S usbscan (Sterownik skanera USB) - C:\WINDOWS\system32\drivers\usbscan.sys
3S USBSTOR (Sterownik magazynu masowego USB) - C:\WINDOWS\system32\drivers\USBSTOR.SYS
3S WudfPf (Windows Driver Foundation - User-mode Driver Framework Platform Driver) - C:\WINDOWS\system32\drivers\WudfPf.sys
3S WudfRd (Windows Driver Foundation - User-mode Driver Framework Reflector) - C:\WINDOWS\system32\drivers\WudfRd.sys


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

3S Adobe LM Service - "C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"
3S AresChatServer (Ares Chatroom server) - C:\Program Files\Ares\chatServer.exe
2R aswUpdSv (avast! iAVS4 Control Service) - "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
2R avast! Antivirus - "C:\Program Files\Alwil Software\Avast4\ashServ.exe"
3R avast! Mail Scanner - "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service
3R avast! Web Scanner - "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service
2R Irmon (Monitor podczerwieni) - C:\WINDOWS\system32\svchost.exe -k netsvcs
2R KPF4 (Sunbelt Kerio Personal Firewall 4) - "C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe"
3S Microsoft Office Groove Audit Service - "C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe"
2R NVSvc (NVIDIA Display Driver Service) - C:\WINDOWS\system32\nvsvc32.exe
3S odserv (Microsoft Office Diagnostics Service) - "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE"
3S ose (Office Source Engine) - "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
3S Visual Studio Analyzer RPC bridge - D:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe


-- Files created between 2007-02-22 and 2007-03-22 -----------------------------

2007-03-19 18:42:23         0 d-------- C:\Program Files\IrfanView<IRFANV~1>
2007-03-18 15:31:54         0 d-------- C:\Program Files\WorldUnlock Codes Calculator<WORLDU~1>
2007-03-18 15:18:26     32782 -ra------ C:\WINDOWS\system32\drivers\ser120.sys
2007-03-09 22:25:47         0 d-------- C:\Program Files\Dziobas Rar Player<DZIOBA~1>
2007-03-08 19:19:55         0 d-------- C:\Program Files\Web Publish<WEBPUB~1>
2007-02-27 16:10:14       545 --a------ C:\WINDOWS\UC.PIF
2007-02-27 16:10:14       545 --a------ C:\WINDOWS\RAR.PIF
2007-02-27 16:10:14       545 --a------ C:\WINDOWS\PKZIP.PIF
2007-02-27 16:10:14       545 --a------ C:\WINDOWS\PKUNZIP.PIF
2007-02-27 16:10:14       545 --a------ C:\WINDOWS\NOCLOSE.PIF
2007-02-27 16:10:14       545 --a------ C:\WINDOWS\LHA.PIF
2007-02-27 16:10:14       545 --a------ C:\WINDOWS\ARJ.PIF
2007-02-27 16:10:05         0 d-------- C:\totalcmd
2007-02-26 20:51:55         0 d-------- C:\Program Files\FlashGet
2007-02-26 15:09:35         0 d-------- C:\Program Files\BearShare<BEARSH~1>
2007-02-24 14:28:07    420240 --a------ C:\WINDOWS\system32\mpg4c32.dll
2007-02-24 14:22:16         0 d--h----- C:\Program Files\InstallShield Installation Information<INSTAL~1>
2007-02-24 12:35:10         0 d-------- C:\WINDOWS\pss
2007-02-23 22:19:49         0 d-------- C:\Program Files\Rymówka 1.0<RYMWKA~1.0>
2007-02-22 18:17:46     32768 --a------ C:\WINDOWS\system32\BCGPOleAcc.dll<BCGPOL~1.DLL>
2007-02-22 18:17:46   2605056 --a------ C:\WINDOWS\system32\BCGCBPRO800u.dll<BCGCBP~2.DLL>
2007-02-22 18:17:45    364544 --a------ C:\WINDOWS\system32\TwnLib4.dll
2007-02-22 18:17:45    471040 --a------ C:\WINDOWS\system32\imagXRA7.dll
2007-02-22 18:17:45   2600960 --a------ C:\WINDOWS\system32\BCGCBPRO800.dll<BCGCBP~1.DLL>
2007-02-22 18:17:44    262144 --a------ C:\WINDOWS\system32\imagXR7.dll
2007-02-22 18:17:44    476320 --a------ C:\WINDOWS\system32\imagXpr7.dll
2007-02-22 18:17:43   1568768 --a------ C:\WINDOWS\system32\imagX7.dll
2007-02-22 18:17:40         0 d-------- C:\Program Files\Nero


-- Find3M Report ---------------------------------------------------------------

2007-03-22 17:16:55         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\foobar2000<FOOBAR~1>
2007-03-22 08:43:29         0 d-------- C:\Program Files\Mozilla Firefox<MOZILL~1>
2007-03-11 21:58:06         0 d-------- C:\Program Files\Gadu-Gadu<GADU-G~1>
2007-03-11 17:19:47      3881 --a------ C:\WINDOWS\mozver.dat
2007-03-11 14:28:44         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\GanymedeNet<GANYME~1>
2007-03-10 15:05:31         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Help
2007-03-08 19:47:52         0 d---s---- C:\Documents and Settings\Dawid\Dane aplikacji\Microsoft<MICROS~1>
2007-03-03 17:20:57         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Adobe
2007-02-26 15:08:51      4720 --a------ C:\WINDOWS\unins000.dat
2007-02-25 18:24:08    358834 --a------ C:\WINDOWS\system32\perfh015.dat
2007-02-25 18:24:08     50748 --a------ C:\WINDOWS\system32\perfc015.dat
2007-02-25 15:36:19         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\MegauploadToolbar<MEGAUP~1>
2007-02-24 18:23:56         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Macromedia<MACROM~1>
2007-02-22 18:20:30         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Ahead
2007-02-22 18:18:03         0 d-------- C:\Program Files\Common Files\Ahead
2007-02-22 18:14:53         0 d-------- C:\Program Files\Ahead
2007-02-21 21:25:01         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Talkback
2007-02-21 20:22:26         0 d-------- C:\Program Files\LClock
2007-02-21 20:22:24         0 d-------- C:\Program Files\Glass2k
2007-02-21 20:15:46    219648 --a------ C:\WINDOWS\system32\uxtheme.dll
2007-02-21 14:27:03         0 d-------- C:\Program Files\Microsoft Works<MICROS~4>
2007-02-21 14:26:44         0 d-------- C:\Program Files\MSBuild
2007-02-20 18:24:38         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Media Player Classic<MEDIAP~1>
2007-02-20 14:16:10         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Alien Skin<ALIENS~1>
2007-02-19 16:30:05         0 d-------- C:\Program Files\Alien Skin<ALIENS~1>
2007-02-16 17:26:54         0 d-------- C:\Program Files\Common Files\Adobe
2007-02-16 17:24:23         0 d-------- C:\Program Files\Common Files\Adobe Systems Shared<ADOBES~1>
2007-02-16 16:14:59         0 d-------- C:\Program Files\TC PowerPack<TCPOWE~1>
2007-02-16 14:40:03         0 d-------- C:\Program Files\D-Tools
2007-02-15 11:05:52         0 d-------- C:\Program Files\MegauploadToolbar<MEGAUP~1>
2007-02-14 20:42:06         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Sun
2007-02-14 15:35:15         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Real
2007-02-10 12:51:02         0 d-------- C:\Program Files\PhotoFiltre<PHOTOF~1>
2007-02-10 09:20:06         0 d-------- C:\Program Files\MyGlobalSearch<MYGLOB~1>
2007-02-09 17:25:10         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Opera
2007-02-09 17:23:51         0 d-------- C:\Program Files\Opera
2007-02-09 17:11:35         0 d-------- C:\Program Files\MarBit
2007-02-08 22:05:41         0 d-------- C:\Program Files\CCleaner
2007-02-08 22:04:30         0 d-------- C:\Program Files\Ares
2007-02-08 19:31:12         0 d-------- C:\Program Files\Java
2007-02-08 19:13:30         0 d-------- C:\Program Files\Common Files\Java
2007-02-08 19:01:42         0 d-------- C:\Program Files\foobar2000<FOOBAR~1>
2007-02-08 18:57:47         0 --a------ C:\WINDOWS\nsreg.dat
2007-02-08 18:57:25         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Mozilla
2007-02-08 18:34:15         0 d-------- C:\Program Files\K-Lite Codec Pack<K-LITE~1>
2007-02-08 18:31:13         0 d-------- C:\Program Files\C-Media 3D Audio<C-MEDI~1>
2007-02-08 18:29:46         0 d-------- C:\Program Files\Sunbelt Software<SUNBEL~1>
2007-02-08 18:28:59         0 d-------- C:\Program Files\Alwil Software<ALWILS~1>
2007-02-08 18:25:42         0 d-------- C:\Program Files\Common Files\InstallShield<INSTAL~1>
2007-02-08 18:16:30         0 d-------- C:\Program Files\Messenger<MESSEN~1>
2007-02-08 18:16:07         0 d-------- C:\Program Files\Movie Maker<MOVIEM~1>
2007-02-08 18:13:24         0 d-------- C:\Program Files\Windows NT<WINDOW~1>
2007-02-08 18:03:16         0 d-------- C:\Documents and Settings\Dawid\Dane aplikacji\Identities<IDENTI~1>
2007-02-08 17:58:31         0 d-------- C:\Program Files\microsoft frontpage<MICROS~1>
2007-02-08 17:58:06         0 -rahs---- C:\MSDOS.SYS
2007-02-08 17:58:06         0 -rahs---- C:\IO.SYS
2007-02-08 17:58:06         0 --a------ C:\CONFIG.SYS
2007-02-08 17:58:06         0 --a------ C:\AUTOEXEC.BAT
2007-02-08 17:56:32         0 d-------- C:\Program Files\Usługi online<USUGIO~1>
2007-02-08 17:55:37         0 d-------- C:\Program Files\Common Files\MSSoap
2007-02-08 17:54:44     21856 --a------ C:\WINDOWS\system32\emptyregdb.dat<EMPTYR~1.DAT>
2007-02-08 17:54:24         0 d--h----- C:\Program Files\WindowsUpdate<WINDOW~3>
2007-02-08 17:54:14         0 d-------- C:\Program Files\MSN Gaming Zone<MSNGAM~1>
2007-02-08 17:46:44         0 d-------- C:\Program Files\Common Files\ODBC
2007-02-08 17:46:41         0 d-------- C:\Program Files\Common Files\SpeechEngines<SPEECH~1>
2007-02-08 17:46:17        62 --ahs---- C:\Documents and Settings\Dawid\Dane aplikacji\desktop.ini
2007-01-15 18:32:07    689280 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-01-15 18:23:20     90112 --a------ C:\WINDOWS\system32\AVASTSS.scr


-- Registry Dump ---------------------------------------------------------------


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"nwiz"="nwiz.exe /install"
"Cmaudio"="RunDll32 cmicnfg.cpl,CMICtrlWnd"
"UnlockerAssistant"="\"C:\\Program Files\\Unlocker\\UnlockerAssistant.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_10\\bin\\jusched.exe\""
"NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"
"DAEMON Tools-1033"="\"C:\\Program Files\\D-Tools\\daemon.exe\"  -lang 1033"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"GrooveMonitor"="\"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\""
"LClock"="C:\\Program Files\\LClock\\LClock.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="StrongGG"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Gadu-Gadu\\StrongGG.exe\" /tray"
"inimapping"="0"
   

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"="Groove GFS Stub Execution Hook"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService   REG_MULTI_SZ      Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService   REG_MULTI_SZ      DnsCache\0\0
rpcss   REG_MULTI_SZ      RpcSs\0\0
imgsvc   REG_MULTI_SZ      StiSvc\0\0
termsvcs   REG_MULTI_SZ      TermService\0\0
HTTPFilter   REG_MULTI_SZ      HTTPFilter\0\0
DcomLaunch   REG_MULTI_SZ      DcomLaunch\0TermService\0\0
WudfServiceGroup   REG_MULTI_SZ      WUDFSvc\0\0


[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{827dee08-bdc3-11db-8d2c-806d6172696f}]
Shell\AutoRun\command   H:\SETUP.EXE /AUTORUN
Shell\configure\command   H:\SETUP.EXE
Shell\install\command   H:\SETUP.EXE


-- End of ComboScan: finished at 2007-03-22 at 21:18:12 ------------------------


Kod: Zaznacz wszystko
ComboScan v20070306.20 run by Dawid on 2007-03-22 at 21:16:00
Supplementary logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: Polish

CPU 0: AMD Athlon(tm) XP
Percentage of Memory in Use: 85%
Physical Memory (total/avail): 255.48 MiB / 36.21 MiB
Pagefile Memory (total/avail): 684 MiB / 351.98 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1991.75 MiB

A: is Removable (No Media)
C: is Fixed (NTFS) - 9.77 GiB total, 1.76 GiB free.
D: is Fixed (NTFS) - 32.39 GiB total, 13.23 GiB free.
E: is Fixed (NTFS) - 32.37 GiB total, 12.95 GiB free.
F: is CDROM (No Media)
G: is CDROM (No Media)
H: is CDROM (CDFS)


-- Security Center -------------------------------------------------------------

AUOptions is disabled.
Windows Internal Firewall is disabled.


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Dawid\Dane aplikacji
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=DAWID-4X3CWON0C
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Dawid
LOGONSERVER=\\DAWID-4X3CWON0C
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=D:\PROGRA~1\Borland\CBUILD~1\Bin;D:\PROGRA~1\Borland\CBUILD~1\Projects\Bpl;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\Common Files\Adobe\AGL
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 8 Stepping 1, AuthenticAMD
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0801
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Dawid\USTAWI~1\Temp
TMP=C:\DOCUME~1\Dawid\USTAWI~1\Temp
USERDOMAIN=DAWID-4X3CWON0C
USERNAME=Dawid
USERPROFILE=C:\Documents and Settings\Dawid
windir=C:\WINDOWS


-- User Profiles ---------------------------------------------------------------

Dawid [I](admin)[/I]
Administrator [I](new local, admin)[/I]


-- Add/Remove Programs ---------------------------------------------------------

--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Bridge 1.0 --> MsiExec.exe /I{B74D4E10-1033-0000-0000-000000000001}
Adobe Common File Installer --> MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5B39}
Adobe Help Center 1.0 --> MsiExec.exe /I{E9787678-1033-0000-8E67-000000000001}
Adobe Photoshop CS2 --> msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D}
Adobe Shockwave Player --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Adobe Stock Photos 1.0 --> MsiExec.exe /I{786C5747-1033-0000-B58E-000000000001}
Alien Skin Blow Up --> D:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\ALIENS~2\BLOWUP~1\Unwise32.exe D:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\ALIENS~2\BLOWUP~1\INSTALL.LOG
Alien Skin Eye Candy 5 Nature --> D:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\ALIENS~2\EYECAN~1\Unwise32.exe D:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\ALIENS~2\EYECAN~1\INSTALL.LOG
Alien Skin Snap Art --> D:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\ALIENS~2\SNAPAR~1\Unwise32.exe D:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\ALIENS~2\SNAPAR~1\INSTALL.LOG
Alien Skin Xenofex 2.0 --> D:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\ALIENS~1\UNWISE.EXE D:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\ALIENS~1\INSTALL.LOG
ALLPlayer V2.2 --> C:\Program Files\MarBit\ALLPlayer\UnGins.exe "C:\Program Files\MarBit\ALLPlayer\install.log"
Archiwizator WinRAR --> C:\Program Files\WinRAR\uninstall.exe
Ares 2.0.5 --> "C:\Program Files\Ares\uninstall.exe"
avast! Antivirus --> rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
BearShare --> C:\PROGRA~1\BEARSH~1\UNWISE.EXE C:\PROGRA~1\BEARSH~1\INSTALL.LOG
Borland C++Builder 6 --> MsiExec.exe /I{2864C41B-EF2D-4640-95A2-526276524519}
C-Media 3D Audio --> C:\WINDOWS\CMIUnInstall.exe
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
Colin McRae Rally 04 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F8718F95-21A1-44B9-97EC-679C93020BAE}\setup.exe" -l0x15  -removeonly
DAEMON Tools --> MsiExec.exe /I{3DED3A72-61A8-4B87-98A5-EF0BC8038AA0}
Dziobas Rar Player 0.007PL --> "C:\Program Files\Dziobas Rar Player\unins000.exe"
FlashGet(Jetcar) 1.81 --> C:\PROGRA~1\FlashGet\UNWISE.EXE C:\PROGRA~1\FlashGet\INSTALL.LOG
foobar2000 v0.9.4.2 --> "C:\Program Files\foobar2000\uninstall.exe"
Gadu-Gadu 7.6 --> C:\Program Files\Gadu-Gadu\Setup.exe
HijackThis 1.99.1 --> E:\HijackThis.exe /uninstall
IrfanView (remove only) --> C:\Program Files\IrfanView\iv_uninstall.exe
J2SE Runtime Environment 5.0 Update 10 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 9 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
K-Lite Mega Codec Pack 1.62 --> "C:\Program Files\K-Lite Codec Pack\unins000.exe"
Little Fighter 2 v1.9 --> e:\Program Files\LittleFighter2\LF2_v1.9\Uninstal.exe
Megaupload Toolbar --> C:\Program Files\MegauploadToolbar\uninstall.exe
Microsoft Office Access MUI (Polish) 2007 --> MsiExec.exe /X{90120000-0015-0415-0000-0000000FF1CE}
Microsoft Office Enterprise 2007 --> "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007 --> MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Polish) 2007 --> MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE}
Microsoft Office Groove MUI (Polish) 2007 --> MsiExec.exe /X{90120000-00BA-0415-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Polish) 2007 --> MsiExec.exe /X{90120000-0044-0415-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Polish) 2007 --> MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Polish) 2007 --> MsiExec.exe /X{90120000-001A-0415-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Polish) 2007 --> MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007 --> MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007 --> MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Polish) 2007 --> MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE}
Microsoft Office Proofing (Polish) 2007 --> MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Polish) 2007 --> MsiExec.exe /X{90120000-0019-0415-0000-0000000FF1CE}
Microsoft Office Shared MUI (Polish) 2007 --> MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE}
Microsoft Office Word MUI (Polish) 2007 --> MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.0.0 (Pre-Release 5348) --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual Studio 6.0 Enterprise Edition --> "D:\Program Files\Microsoft Visual Studio\Common\Setup\1033\Setup.exe"
Microsoft Web Publishing Wizard 1.53 --> RunDll32 ADVPACK.DLL,LaunchINFSection C:\WINDOWS\INF\wpie3x86.inf,WebPostUninstall
Mozilla Firefox (2.0.0.3) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
My Global Search Bar --> rundll32 C:\PROGRA~1\MYGLOB~1\bar\1.bin\mgsBar.dll,O
Native Instruments Traktor DJ Studio 3 --> D:\PROGRA~1\NATIVE~1\TRAKTO~1\UNWISE.EXE D:\PROGRA~1\NATIVE~1\TRAKTO~1\INSTALL.LOG
Nero 7 Lite v7.5.1.1 --> "C:\Program Files\Nero\unins000.exe"
Niezbędnik CD --> C:\WINDOWS\unins000.exe
NVIDIA Drivers --> C:\WINDOWS\system32\nvudisp.exe UninstallGUI
Opera 9.10 --> MsiExec.exe /X{750B9AD1-4C63-4143-94C5-6FB304199BAD}
PhotoFiltre --> "C:\Program Files\PhotoFiltre\Uninst.exe"
Rymówka 1.0 --> C:\Program Files\Rymówka 1.0\Uninstal.exe
Skoki Narciarskie 2006 --> d:\Program Files\Metropolis Software\Skoki Narciarskie 2006\uninstall.exe
Sunbelt Kerio Personal Firewall --> MsiExec.exe /X{E659E0EE-10E6-49B7-8696-60F38D0EB174}
Table Tennis Pro V2 Lite (V2.32) --> "D:\Table Tennis Pro V2 Lite\unins000.exe"
TC PowerPack 1.7 --> C:\Program Files\TC PowerPack\uninstall.exe
Total Commander (Remove or Repair) --> c:\totalcmd\tcuninst.exe
Unlocker 1.8.5 --> C:\Program Files\Unlocker\uninst.exe
Vista Transformation Pack 6.0 RC1 --> C:\WINDOWS\System32\vimc.exe
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
WorldUnlock Codes Calculator --> "C:\Program Files\WorldUnlock Codes Calculator\uninst.exe"


-- End of ComboScan: finished at 2007-03-22 at 21:18:12 ------------------------



Image
Awatar użytkownika
skowrona
~user
 
Posty: 1861
Dołączenie: 14 Gru 2006, 22:51
Pochwały: 71

Góra

Postprzez wojtas 22 Mar 2007, 23:24

pobierz:

http://gmer.net/gmer.zip

1) Rootkit >>> zaznaczone Pokaż wszystko >>> wskazane tylko Usługi >>> Szukaj >>> Kopiuj >>> CTRL+V do posta
2) Rootkit >>> odznaczone Pokaż wszystko >>> wskazane wszystkie obiekty do skanu >>> Szukaj >>> Kopiuj >>> CTRL+V do posta
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656


Góra

Postprzez skowrona 22 Mar 2007, 23:50

Kod: Zaznacz wszystko
GMER 1.0.12.12086 - http://www.gmer.net
Rootkit scan 2007-03-23 13:23:58
Windows 5.1.2600 Dodatek Service Pack 2


---- Services - GMER 1.0.12 ----

Service                                                                                     [SYSTEM] Aavmker4
Service                                                                                     [DISABLED] Abiosdsk
Service                                                                                     [DISABLED] abp480n5
Service  C:\WINDOWS\System32\DRIVERS\ACPI.sys                                               [BOOT] ACPI
Service                                                                                     [DISABLED] ACPIEC
Service  C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe          [MANUAL] Adobe LM Service
Service                                                                                     [DISABLED] adpu160m
Service  C:\WINDOWS\system32\drivers\aec.sys                                                [MANUAL] aec
Service  C:\WINDOWS\System32\drivers\afd.sys                                                [SYSTEM] AFD
Service                                                                                     [DISABLED] Aha154x
Service                                                                                     [DISABLED] aic78u2
Service                                                                                     [DISABLED] aic78xx
Service  C:\WINDOWS\System32\svchost.exe                                                    [DISABLED] Alerter
Service  C:\WINDOWS\System32\alg.exe                                                        [MANUAL] ALG
Service                                                                                     [DISABLED] AliIde
Service  C:\WINDOWS\System32\DRIVERS\amdk7.sys                                              [SYSTEM] AmdK7
Service                                                                                     [DISABLED] amsint
Service  C:\WINDOWS\system32\svchost.exe                                                    [MANUAL] AppMgmt
Service  C:\Program Files\Ares\chatServer.exe                                               [MANUAL] AresChatServer
Service                                                                                     [DISABLED] asc
Service                                                                                     [DISABLED] asc3350p
Service                                                                                     [DISABLED] asc3550
Service                                                                                     [AUTO] aswMon2
Service                                                                                     [MANUAL] aswRdr
Service                                                                                     [SYSTEM] aswTdi
Service  C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe                                [AUTO] aswUpdSv
Service  C:\WINDOWS\System32\DRIVERS\asyncmac.sys                                           [MANUAL] AsyncMac
Service  C:\WINDOWS\System32\DRIVERS\atapi.sys                                              [BOOT] atapi
Service                                                                                     [DISABLED] Atdisk
Service  C:\WINDOWS\System32\DRIVERS\atmarpc.sys                                            [MANUAL] Atmarpc
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] AudioSrv
Service  C:\WINDOWS\System32\DRIVERS\audstub.sys                                            [MANUAL] audstub
Service  C:\Program Files\Alwil Software\Avast4\ashServ.exe                                 [AUTO] avast! Antivirus
Service  C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe                                [MANUAL] avast! Mail Scanner
Service  C:\Program Files\Alwil Software\Avast4\ashWebSv.exe                                [MANUAL] avast! Web Scanner
Service                                                                                     BattC
Service                                                                                     [SYSTEM] Beep
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] BITS
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] Browser
Service                                                                                     [DISABLED] cbidf2k
Service                                                                                     [DISABLED] cd20xrnt
Service                                                                                     [SYSTEM] Cdaudio
Service                                                                                     [DISABLED] Cdfs
Service  C:\WINDOWS\System32\DRIVERS\cdrom.sys                                              [SYSTEM] Cdrom
Service                                                                                     [SYSTEM] Changer
Service  C:\WINDOWS\system32\cisvc.exe                                                      [MANUAL] CiSvc
Service  C:\WINDOWS\system32\clipsrv.exe                                                    [DISABLED] ClipSrv
Service                                                                                     [DISABLED] CmdIde
Service  C:\WINDOWS\system32\drivers\cmuda.sys                                              [MANUAL] cmuda
Service  C:\WINDOWS\System32\dllhost.exe                                                    [MANUAL] COMSysApp
Service                                                                                     ContentFilter
Service                                                                                     ContentIndex
Service                                                                                     [DISABLED] Cpqarray
Service  C:\WINDOWS\system32\svchost.exe                                                    [AUTO] CryptSvc
Service  C:\WINDOWS\system32\DRIVERS\d347bus.sys                                            [BOOT] d347bus
Service  C:\WINDOWS\System32\Drivers\d347prt.sys                                            [BOOT] d347prt
Service                                                                                     [DISABLED] dac2w2k
Service                                                                                     [DISABLED] dac960nt
Service  C:\WINDOWS\system32\svchost.exe                                                    [AUTO] DcomLaunch
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] Dhcp
Service  C:\WINDOWS\System32\DRIVERS\disk.sys                                               [BOOT] Disk
Service  C:\WINDOWS\System32\dmadmin.exe                                                    [MANUAL] dmadmin
Service  C:\WINDOWS\System32\drivers\dmboot.sys                                             [DISABLED] dmboot
Service  C:\WINDOWS\System32\drivers\dmio.sys                                               [BOOT] dmio
Service  C:\WINDOWS\System32\drivers\dmload.sys                                             [BOOT] dmload
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] dmserver
Service  C:\WINDOWS\system32\drivers\DMusic.sys                                             [MANUAL] DMusic
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] Dnscache
Service                                                                                     [DISABLED] dpti2o
Service  C:\WINDOWS\system32\drivers\drmkaud.sys                                            [MANUAL] drmkaud
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] ERSvc
Service  C:\WINDOWS\system32\services.exe                                                   [AUTO] Eventlog
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] EventSystem
Service                                                                                     [DISABLED] Fastfat
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] FastUserSwitchingCompatibility
Service  C:\WINDOWS\System32\DRIVERS\fdc.sys                                                [MANUAL] Fdc
Service                                                                                     [SYSTEM] Fips
Service  C:\WINDOWS\System32\DRIVERS\flpydisk.sys                                           [MANUAL] Flpydisk
Service  C:\WINDOWS\system32\drivers\fltmgr.sys                                             [BOOT] FltMgr
Service                                                                                     [SYSTEM] Fs_Rec
Service  C:\WINDOWS\System32\DRIVERS\ftdisk.sys                                             [BOOT] Ftdisk
Service  C:\WINDOWS\system32\drivers\fwdrv.sys                                              [SYSTEM] fwdrv
Service  C:\WINDOWS\System32\DRIVERS\gagp30kx.sys                                           [BOOT] gagp30kx
Service  C:\WINDOWS\System32\DRIVERS\gameenum.sys                                           [MANUAL] gameenum
Service  C:\WINDOWS\System32\DRIVERS\gmer.sys                                               [MANUAL] gmer
Service  C:\WINDOWS\System32\DRIVERS\msgpc.sys                                              [MANUAL] Gpc
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] helpsvc
Service  C:\WINDOWS\System32\svchost.exe                                                    [DISABLED] HidServ
Service  C:\WINDOWS\System32\DRIVERS\hidusb.sys                                             [MANUAL] hidusb
Service                                                                                     [DISABLED] hpn
Service  C:\WINDOWS\System32\Drivers\HTTP.sys                                               [MANUAL] HTTP
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] HTTPFilter
Service                                                                                     [SYSTEM] i2omgmt
Service                                                                                     [DISABLED] i2omp
Service  C:\WINDOWS\System32\DRIVERS\i8042prt.sys                                           [SYSTEM] i8042prt
Service  C:\WINDOWS\System32\DRIVERS\imapi.sys                                              [SYSTEM] Imapi
Service  C:\WINDOWS\System32\imapi.exe                                                      [MANUAL] ImapiService
Service                                                                                     inetaccs
Service                                                                                     [DISABLED] ini910u
Service                                                                                     Inport
Service                                                                                     [DISABLED] IntelIde
Service  C:\WINDOWS\system32\drivers\ip6fw.sys                                              [MANUAL] ip6fw
Service  C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys                                           [MANUAL] IpFilterDriver
Service  C:\WINDOWS\System32\DRIVERS\ipinip.sys                                             [MANUAL] IpInIp
Service  C:\WINDOWS\System32\DRIVERS\ipnat.sys                                              [MANUAL] IpNat
Service  C:\WINDOWS\System32\DRIVERS\ipsec.sys                                              [SYSTEM] IPSec
Service  C:\WINDOWS\system32\DRIVERS\irda.sys                                               [AUTO] irda
Service  C:\WINDOWS\System32\DRIVERS\irenum.sys                                             [MANUAL] IRENUM
Service  C:\WINDOWS\system32\svchost.exe                                                    [AUTO] Irmon
Service                                                                                     ISAPISearch
Service  C:\WINDOWS\System32\DRIVERS\isapnp.sys                                             [BOOT] isapnp
Service  C:\WINDOWS\System32\DRIVERS\kbdclass.sys                                           [SYSTEM] Kbdclass
Service  C:\WINDOWS\system32\drivers\khips.sys                                              [SYSTEM] khips
Service  C:\WINDOWS\system32\drivers\kmixer.sys                                             [MANUAL] kmixer
Service  C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe                     [AUTO] KPF4
Service                                                                                     [BOOT] KSecDD
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] lanmanserver
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] lanmanworkstation
Service                                                                                     [SYSTEM] lbrtfdc
Service                                                                                     ldap
Service                                                                                     LicenseService
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] LmHosts
Service  C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE                    [AUTO] MDM
Service  C:\WINDOWS\System32\svchost.exe                                                    [DISABLED] Messenger
Service  C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe                  [MANUAL] Microsoft Office Groove Audit Service
Service                                                                                     [SYSTEM] mnmdd
Service  C:\WINDOWS\System32\mnmsrvc.exe                                                    [MANUAL] mnmsrvc
Service                                                                                     [MANUAL] Modem
Service  C:\WINDOWS\System32\DRIVERS\mouclass.sys                                           [SYSTEM] Mouclass
Service                                                                                     [BOOT] MountMgr
Service                                                                                     [DISABLED] mraid35x
Service  C:\WINDOWS\System32\DRIVERS\mrxdav.sys                                             [MANUAL] MRxDAV
Service  C:\WINDOWS\System32\DRIVERS\mrxsmb.sys                                             [SYSTEM] MRxSmb
Service  C:\WINDOWS\System32\msdtc.exe                                                      [MANUAL] MSDTC
Service                                                                                     [SYSTEM] Msfs
Service  C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys                                           [MANUAL] MSIRCOMM
Service  C:\WINDOWS\System32\msiexec.exe                                                    [MANUAL] MSIServer
Service  C:\WINDOWS\system32\drivers\MSKSSRV.sys                                            [MANUAL] MSKSSRV
Service  C:\WINDOWS\system32\drivers\MSPCLOCK.sys                                           [MANUAL] MSPCLOCK
Service  C:\WINDOWS\system32\drivers\MSPQM.sys                                              [MANUAL] MSPQM
Service  C:\WINDOWS\System32\DRIVERS\mssmbios.sys                                           [MANUAL] mssmbios
Service                                                                                     [BOOT] Mup
Service                                                                                     [BOOT] NDIS
Service  C:\WINDOWS\System32\DRIVERS\ndistapi.sys                                           [MANUAL] NdisTapi
Service  C:\WINDOWS\System32\DRIVERS\ndisuio.sys                                            [MANUAL] Ndisuio
Service  C:\WINDOWS\System32\DRIVERS\ndiswan.sys                                            [MANUAL] NdisWan
Service                                                                                     [MANUAL] NDProxy
Service  C:\WINDOWS\System32\DRIVERS\netbios.sys                                            [SYSTEM] NetBIOS
Service  C:\WINDOWS\System32\DRIVERS\netbt.sys                                              [MANUAL] NetBT
Service  C:\WINDOWS\system32\netdde.exe                                                     [DISABLED] NetDDE
Service  C:\WINDOWS\system32\netdde.exe                                                     [DISABLED] NetDDEdsdm
Service  C:\WINDOWS\System32\lsass.exe                                                      [MANUAL] Netlogon
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] Netman
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] Nla
Service                                                                                     [SYSTEM] Npfs
Service                                                                                     [DISABLED] Ntfs
Service  C:\WINDOWS\System32\lsass.exe                                                      [MANUAL] NtLmSsp
Service  C:\WINDOWS\system32\svchost.exe                                                    [MANUAL] NtmsSvc
Service                                                                                     [SYSTEM] Null
Service  C:\WINDOWS\System32\DRIVERS\nv4_mini.sys                                           [MANUAL] nv
Service  C:\WINDOWS\system32\nvsvc32.exe                                                    [AUTO] NVSvc
Service  C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys                                           [MANUAL] NwlnkFlt
Service  C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys                                           [MANUAL] NwlnkFwd
Service  C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE                 [MANUAL] odserv
Service  C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE               [MANUAL] ose
Service                                                                                     Outlook
Service  C:\WINDOWS\System32\DRIVERS\parport.sys                                            [MANUAL] Parport
Service                                                                                     [BOOT] PartMgr
Service                                                                                     [AUTO] ParVdm
Service  C:\WINDOWS\System32\DRIVERS\pci.sys                                                [BOOT] PCI
Service                                                                                     [SYSTEM] PCIDump
Service  C:\WINDOWS\System32\DRIVERS\pciide.sys                                             [BOOT] PCIIde
Service                                                                                     [DISABLED] Pcmcia
Service                                                                                     [MANUAL] PDCOMP
Service                                                                                     [MANUAL] PDFRAME
Service                                                                                     [MANUAL] PDRELI
Service                                                                                     [MANUAL] PDRFRAME
Service                                                                                     [DISABLED] perc2
Service                                                                                     [DISABLED] perc2hib
Service                                                                                     PerfDisk
Service                                                                                     PerfNet
Service                                                                                     PerfOS
Service                                                                                     PerfProc
Service  C:\WINDOWS\system32\services.exe                                                   [AUTO] PlugPlay
Service  C:\WINDOWS\System32\lsass.exe                                                      [AUTO] PolicyAgent
Service  C:\WINDOWS\System32\DRIVERS\raspptp.sys                                            [MANUAL] PptpMiniport
Service  C:\WINDOWS\system32\lsass.exe                                                      [AUTO] ProtectedStorage
Service  C:\WINDOWS\System32\DRIVERS\psched.sys                                             [MANUAL] PSched
Service  C:\WINDOWS\System32\DRIVERS\ptilink.sys                                            [MANUAL] Ptilink
Service                                                                                     [DISABLED] ql1080
Service                                                                                     [DISABLED] Ql10wnt
Service                                                                                     [DISABLED] ql12160
Service                                                                                     [DISABLED] ql1240
Service                                                                                     [DISABLED] ql1280
Service  C:\WINDOWS\System32\DRIVERS\rasacd.sys                                             [SYSTEM] RasAcd
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] RasAuto
Service  C:\WINDOWS\System32\DRIVERS\rasirda.sys                                            [MANUAL] Rasirda
Service  C:\WINDOWS\System32\DRIVERS\rasl2tp.sys                                            [MANUAL] Rasl2tp
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] RasMan
Service  C:\WINDOWS\System32\DRIVERS\raspppoe.sys                                           [MANUAL] RasPppoe
Service  C:\WINDOWS\System32\DRIVERS\raspti.sys                                             [MANUAL] Raspti
Service  C:\WINDOWS\System32\DRIVERS\rdbss.sys                                              [SYSTEM] Rdbss
Service  C:\WINDOWS\System32\DRIVERS\RDPCDD.sys                                             [SYSTEM] RDPCDD
Service                                                                                     RDPDD
Service  C:\WINDOWS\System32\DRIVERS\rdpdr.sys                                              [MANUAL] rdpdr
Service                                                                                     RDPNP
Service                                                                                     [MANUAL] RDPWD
Service  C:\WINDOWS\system32\sessmgr.exe                                                    [MANUAL] RDSessMgr
Service  C:\WINDOWS\System32\DRIVERS\redbook.sys                                            [SYSTEM] redbook
Service  C:\WINDOWS\System32\svchost.exe                                                    [DISABLED] RemoteAccess
Service  C:\WINDOWS\system32\svchost.exe                                                    [AUTO] RemoteRegistry
Service  C:\WINDOWS\System32\locator.exe                                                    [MANUAL] RpcLocator
Service  C:\WINDOWS\system32\svchost.exe                                                    [AUTO] RpcSs
Service  C:\WINDOWS\System32\rsvp.exe                                                       [MANUAL] RSVP
Service  C:\WINDOWS\System32\DRIVERS\RTL8139.SYS                                            [MANUAL] rtl8139
Service  C:\WINDOWS\system32\lsass.exe                                                      [AUTO] SamSs
Service  C:\WINDOWS\System32\SCardSvr.exe                                                   [MANUAL] SCardSvr
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] Schedule
Service                                                                                     ScsiPort
Service  C:\WINDOWS\System32\DRIVERS\secdrv.sys                                             [MANUAL] Secdrv
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] seclogon
Service  C:\WINDOWS\system32\svchost.exe                                                    [AUTO] SENS
Service  C:\WINDOWS\system32\DRIVERS\SER120.sys                                             [MANUAL] SER120
Service  C:\WINDOWS\System32\DRIVERS\serenum.sys                                            [MANUAL] serenum
Service  C:\WINDOWS\System32\DRIVERS\serial.sys                                             [SYSTEM] Serial
Service                                                                                     [SYSTEM] Sfloppy
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] SharedAccess
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] ShellHWDetection
Service                                                                                     [DISABLED] Simbad
Service  C:\WINDOWS\System32\DRIVERS\sisnic.sys                                             [MANUAL] SISNIC
Service                                                                                     [DISABLED] Sparrow
Service  C:\WINDOWS\system32\drivers\splitter.sys                                           [MANUAL] splitter
Service  C:\WINDOWS\system32\spoolsv.exe                                                    [AUTO] Spooler
Service  C:\WINDOWS\System32\DRIVERS\sr.sys                                                 [BOOT] sr
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] srservice
Service  C:\WINDOWS\System32\DRIVERS\srv.sys                                                [MANUAL] Srv
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] SSDPSRV
Service  C:\WINDOWS\system32\DRIVERS\irstusb.sys                                            [MANUAL] STIrUsb
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] stisvc
Service  C:\WINDOWS\System32\DRIVERS\swenum.sys                                             [MANUAL] swenum
Service  C:\WINDOWS\system32\drivers\swmidi.sys                                             [MANUAL] swmidi
Service  C:\WINDOWS\System32\dllhost.exe                                                    [MANUAL] SwPrv
Service                                                                                     swwd
Service                                                                                     [DISABLED] symc810
Service                                                                                     [DISABLED] symc8xx
Service                                                                                     [DISABLED] sym_hi
Service                                                                                     [DISABLED] sym_u3
Service  C:\WINDOWS\system32\drivers\sysaudio.sys                                           [MANUAL] sysaudio
Service  C:\WINDOWS\system32\smlogsvc.exe                                                   [MANUAL] SysmonLog
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] TapiSrv
Service  C:\WINDOWS\System32\DRIVERS\tcpip.sys                                              [SYSTEM] Tcpip
Service                                                                                     [MANUAL] TDPIPE
Service                                                                                     [MANUAL] TDTCP
Service  C:\WINDOWS\System32\DRIVERS\termdd.sys                                             [SYSTEM] TermDD
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] TermService
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] Themes
Service  C:\WINDOWS\System32\tlntsvr.exe                                                    [DISABLED] TlntSvr
Service                                                                                     [DISABLED] TosIde
Service  C:\WINDOWS\system32\svchost.exe                                                    [AUTO] TrkWks
Service                                                                                     TSDDD
Service                                                                                     [DISABLED] Udfs
Service                                                                                     [DISABLED] ultra
Service                                                                                     UnlockerDriver5
Service  C:\WINDOWS\System32\DRIVERS\update.sys                                             [MANUAL] Update
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] upnphost
Service  C:\WINDOWS\System32\ups.exe                                                        [MANUAL] UPS
Service  C:\WINDOWS\System32\DRIVERS\usbehci.sys                                            [MANUAL] usbehci
Service  C:\WINDOWS\System32\DRIVERS\usbhub.sys                                             [MANUAL] usbhub
Service  C:\WINDOWS\System32\DRIVERS\usbohci.sys                                            [MANUAL] usbohci
Service  C:\WINDOWS\system32\DRIVERS\usbscan.sys                                            [MANUAL] usbscan
Service  C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS                                            [MANUAL] USBSTOR
Service  C:\WINDOWS\System32\drivers\vga.sys                                                [SYSTEM] VgaSave
Service                                                                                     [DISABLED] ViaIde
Service  D:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe  [MANUAL] Visual Studio Analyzer RPC bridge
Service                                                                                     [BOOT] VolSnap
Service  C:\WINDOWS\System32\vssvc.exe                                                      [MANUAL] VSS
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] W32Time
Service                                                                                     W3SVC
Service  C:\WINDOWS\System32\DRIVERS\wanarp.sys                                             [MANUAL] Wanarp
Service                                                                                     [MANUAL] WDICA
Service  C:\WINDOWS\system32\drivers\wdmaud.sys                                             [MANUAL] wdmaud
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] WebClient
Service  C:\WINDOWS\system32\svchost.exe                                                    [AUTO] winmgmt
Service                                                                                     [MANUAL] Winsock
Service                                                                                     WinSock2
Service                                                                                     WinTrust
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] WmdmPmSN
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] Wmi
Service                                                                                     WmiApRpl
Service  C:\WINDOWS\System32\wbem\wmiapsrv.exe                                              [MANUAL] WmiApSrv
Service  C:\Program Files\Windows Media Player\WMPNetwk.exe                                 [MANUAL] WMPNetworkSvc
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] wscsvc
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] wuauserv
Service  C:\WINDOWS\system32\DRIVERS\WudfPf.sys                                             [MANUAL] WudfPf
Service  C:\WINDOWS\system32\DRIVERS\wudfrd.sys                                             [MANUAL] WudfRd
Service  C:\WINDOWS\system32\svchost.exe                                                    [MANUAL] WudfSvc
Service  C:\WINDOWS\System32\svchost.exe                                                    [AUTO] WZCSVC
Service  C:\WINDOWS\System32\svchost.exe                                                    [MANUAL] xmlprov
Service                                                                                     {8B920D55-3D0D-4088-9113-E373FF3DA3AC}
Service                                                                                     {A1B156CA-54BE-447B-9771-21FE1042C53A}

---- EOF - GMER 1.0.12 ----



GMER 1.0.12.12086 - http://www.gmer.net
Rootkit scan 2007-03-23 13:49:13
Windows 5.1.2600 Dodatek Service Pack 2


---- System - GMER 1.0.12 ----

SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwClose
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwCreateFile
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwCreateKey
SSDT d347bus.sys ZwCreatePagingFile
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwCreateProcess
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwCreateProcessEx
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwCreateThread
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwDeleteFile
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwDeleteKey
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwDeleteValueKey
SSDT d347bus.sys ZwEnumerateKey
SSDT d347bus.sys ZwEnumerateValueKey
SSDT \SystemRoot\system32\drivers\khips.sys ZwLoadDriver
SSDT \SystemRoot\system32\drivers\khips.sys ZwMapViewOfSection
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwOpenFile
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwOpenKey
SSDT d347bus.sys ZwQueryKey
SSDT d347bus.sys ZwQueryValueKey
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwResumeThread
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwSetInformationFile
SSDT d347bus.sys ZwSetSystemPowerState
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwSetValueKey
SSDT \SystemRoot\system32\drivers\fwdrv.sys ZwWriteFile

---- Kernel code sections - GMER 1.0.12 ----

PAGENDSM NDIS.sys!NdisMIndicateStatus F984EA5F 6 Bytes JMP F7F41ED0 \SystemRoot\system32\drivers\fwdrv.sys

---- User code sections - GMER 1.0.12 ----

.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 000301A8
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00030090
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00030694
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 000302C0
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 00030234
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00030004
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0003011C
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 000304F0
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!CreateThread 7C81082F 5 Bytes JMP 0003057C
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 000303D8
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0003034C
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!WinExec 7C86114D 5 Bytes JMP 00030464
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] kernel32.dll!SetThreadContext 7C862849 5 Bytes JMP 00030608
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 000307AC
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00030720
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WS2_32.dll!socket 71A53B91 5 Bytes JMP 000308C4
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WS2_32.dll!bind 71A53E00 5 Bytes JMP 00030838
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WS2_32.dll!connect 71A5406A 5 Bytes JMP 00030950
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WININET.dll!InternetConnectA 771C1C6A 5 Bytes JMP 00030F54
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WININET.dll!InternetConnectW 771C2B63 5 Bytes JMP 00030FE0
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WININET.dll!InternetOpenA 771CA6DD 5 Bytes JMP 00030D24
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WININET.dll!InternetOpenW 771CAFC2 5 Bytes JMP 00030DB0
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WININET.dll!InternetOpenUrlA 771CC8BD 5 Bytes JMP 00030E3C
.text C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe[212] WININET.dll!InternetOpenUrlW 77215A51 5 Bytes JMP 00030EC8
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 000801A8
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00080090
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00080694
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 000802C0
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 00080234
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00080004
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0008011C
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 000804F0
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!CreateThread 7C81082F 5 Bytes JMP 0008057C
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 000803D8
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0008034C
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!WinExec 7C86114D 5 Bytes JMP 00080464
.text C:\WINDOWS\system32\svchost.exe[576] kernel32.dll!SetThreadContext 7C862849 5 Bytes JMP 00080608
.text C:\WINDOWS\system32\svchost.exe[576] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 000807AC
.text C:\WINDOWS\system32\svchost.exe[576] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00080720
.text C:\WINDOWS\system32\csrss.exe[624] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 001607AC
.text C:\WINDOWS\system32\csrss.exe[624] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00160720
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 001601A8
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00160090
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00160694
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!CreateProcessW 7C802332 5 Bytes JMP 001602C0
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!CreateProcessA 7C802367 5 Bytes JMP 00160234
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00160004
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0016011C
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 001604F0
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!CreateThread 7C81082F 5 Bytes JMP 0016057C
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 001603D8
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0016034C
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!WinExec 7C86114D 5 Bytes JMP 00160464
.text C:\WINDOWS\system32\csrss.exe[624] KERNEL32.dll!SetThreadContext 7C862849 5 Bytes JMP 00160608
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 000701A8
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00070090
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00070694
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 000702C0
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 00070234
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00070004
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0007011C
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 000704F0
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!CreateThread 7C81082F 5 Bytes JMP 0007057C
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 000703D8
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0007034C
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!WinExec 7C86114D 5 Bytes JMP 00070464
.text C:\WINDOWS\system32\winlogon.exe[648] kernel32.dll!SetThreadContext 7C862849 5 Bytes JMP 00070608
.text C:\WINDOWS\system32\winlogon.exe[648] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 000707AC
.text C:\WINDOWS\system32\winlogon.exe[648] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00070720
.text C:\WINDOWS\system32\winlogon.exe[648] WS2_32.dll!socket 71A53B91 5 Bytes JMP 000708C4
.text C:\WINDOWS\system32\winlogon.exe[648] WS2_32.dll!bind 71A53E00 5 Bytes JMP 00070838
.text C:\WINDOWS\system32\winlogon.exe[648] WS2_32.dll!connect 71A5406A 5 Bytes JMP 00070950
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 000801A8
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00080090
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00080694
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 000802C0
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 00080234
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00080004
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0008011C
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 000804F0
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!CreateThread 7C81082F 5 Bytes JMP 0008057C
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 000803D8
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0008034C
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!WinExec 7C86114D 5 Bytes JMP 00080464
.text C:\WINDOWS\system32\services.exe[692] kernel32.dll!SetThreadContext 7C862849 5 Bytes JMP 00080608
.text C:\WINDOWS\system32\services.exe[692] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 000807AC
.text C:\WINDOWS\system32\services.exe[692] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00080720
.text C:\WINDOWS\system32\services.exe[692] WS2_32.dll!socket 71A53B91 5 Bytes JMP 000808C4
.text C:\WINDOWS\system32\services.exe[692] WS2_32.dll!bind 71A53E00 5 Bytes JMP 00080838
.text C:\WINDOWS\system32\services.exe[692] WS2_32.dll!connect 71A5406A 5 Bytes JMP 00080950
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 000801A8
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00080090
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00080694
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 000802C0
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 00080234
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00080004
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0008011C
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 000804F0
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!CreateThread 7C81082F 5 Bytes JMP 0008057C
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 000803D8
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0008034C
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!WinExec 7C86114D 5 Bytes JMP 00080464
.text C:\WINDOWS\system32\svchost.exe[940] kernel32.dll!SetThreadContext 7C862849 5 Bytes JMP 00080608
.text C:\WINDOWS\system32\svchost.exe[940] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 000807AC
.text C:\WINDOWS\system32\svchost.exe[940] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00080720
.text C:\WINDOWS\system32\svchost.exe[940] WS2_32.dll!socket 71A53B91 5 Bytes JMP 000808C4
.text C:\WINDOWS\system32\svchost.exe[940] WS2_32.dll!bind 71A53E00 5 Bytes JMP 00080838
.text C:\WINDOWS\system32\svchost.exe[940] WS2_32.dll!connect 71A5406A 5 Bytes JMP 00080950
.text C:\WINDOWS\system32\svchost.exe[940] WININET.dll!InternetConnectA 771C1C6A 5 Bytes JMP 00080F54
.text C:\WINDOWS\system32\svchost.exe[940] WININET.dll!InternetConnectW 771C2B63 5 Bytes JMP 00080FE0
.text C:\WINDOWS\system32\svchost.exe[940] WININET.dll!InternetOpenA 771CA6DD 5 Bytes JMP 00080D24
.text C:\WINDOWS\system32\svchost.exe[940] WININET.dll!InternetOpenW 771CAFC2 5 Bytes JMP 00080DB0
.text C:\WINDOWS\system32\svchost.exe[940] WININET.dll!InternetOpenUrlA 771CC8BD 5 Bytes JMP 00080E3C
.text C:\WINDOWS\system32\svchost.exe[940] WININET.dll!InternetOpenUrlW 77215A51 5 Bytes JMP 00080EC8
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 001301A8
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00130090
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00130694
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 001302C0
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 00130234
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00130004
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0013011C
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 001304F0
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!CreateThread 7C81082F 5 Bytes JMP 0013057C
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 001303D8
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0013034C
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!WinExec 7C86114D 5 Bytes JMP 00130464
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] kernel32.dll!SetThreadContext 7C862849 5 Bytes JMP 00130608
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] WS2_32.dll!socket 71A53B91 5 Bytes JMP 001308C4
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] WS2_32.dll!bind 71A53E00 5 Bytes JMP 00130838
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] WS2_32.dll!connect 71A5406A 5 Bytes JMP 00130950
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 001307AC
.text C:\Program Files\Alwil Software\Avast4\ashWebSv.exe[1080] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00130720
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 000801A8
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00080090
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00080694
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 000802C0
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 00080234
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00080004
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0008011C
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 000804F0
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!CreateThread 7C81082F 5 Bytes JMP 0008057C
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 000803D8
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0008034C
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!WinExec 7C86114D 5 Bytes JMP 00080464
.text C:\WINDOWS\explorer.exe[1372] kernel32.dll!SetThreadContext 7C862849 5 Bytes JMP 00080608
.text C:\WINDOWS\explorer.exe[1372] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 000807AC
.text C:\WINDOWS\explorer.exe[1372] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00080720
.text C:\WINDOWS\explorer.exe[1372] SHELL32.dll!SHFileOperationW 7CA6D1B9 5 Bytes JMP 10001102 C:\Program Files\Unlocker\UnlockerHook.dll
.text C:\WINDOWS\explorer.exe[1372] WININET.dll!InternetConnectA 771C1C6A 5 Bytes JMP 00080F54
.text C:\WINDOWS\explorer.exe[1372] WININET.dll!InternetConnectW 771C2B63 5 Bytes JMP 00080FE0
.text C:\WINDOWS\explorer.exe[1372] WININET.dll!InternetOpenA 771CA6DD 5 Bytes JMP 00080D24
.text C:\WINDOWS\explorer.exe[1372] WININET.dll!InternetOpenW 771CAFC2 5 Bytes JMP 00080DB0
.text C:\WINDOWS\explorer.exe[1372] WININET.dll!InternetOpenUrlA 771CC8BD 5 Bytes JMP 00080E3C
.text C:\WINDOWS\explorer.exe[1372] WININET.dll!InternetOpenUrlW 77215A51 5 Bytes JMP 00080EC8
.text C:\WINDOWS\explorer.exe[1372] WS2_32.dll!socket 71A53B91 5 Bytes JMP 000808C4
.text C:\WINDOWS\explorer.exe[1372] WS2_32.dll!bind 71A53E00 5 Bytes JMP 00080838
.text C:\WINDOWS\explorer.exe[1372] WS2_32.dll!connect 71A5406A 5 Bytes JMP 00080950
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!VirtualProtectEx 7C801A5D 5 Bytes JMP 000801A8
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!VirtualProtect 7C801AD0 5 Bytes JMP 00080090
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!WriteProcessMemory 7C80220F 5 Bytes JMP 00080694
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!CreateProcessW 7C802332 5 Bytes JMP 000802C0
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!CreateProcessA 7C802367 5 Bytes JMP 00080234
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!VirtualAlloc 7C809A81 5 Bytes JMP 00080004
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!VirtualAllocEx 7C809AA2 5 Bytes JMP 0008011C
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!CreateRemoteThread 7C810626 5 Bytes JMP 000804F0
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!CreateThread 7C81082F 5 Bytes JMP 0008057C
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!CreateProcessInternalW 7C8191EB 5 Bytes JMP 000803D8
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!CreateProcessInternalA 7C81DA9E 5 Bytes JMP 0008034C
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!WinExec 7C86114D 5 Bytes JMP 00080464
.text C:\WINDOWS\system32\spoolsv.exe[1508] kernel32.dll!SetThreadContext 7C862849 5 Bytes JMP 00080608
.text C:\WINDOWS\system32\spoolsv.exe[1508] USER32.dll!SetWindowsHookExW 77D5E621 5 Bytes JMP 000807AC
.text C:\WINDOWS\system32\spoolsv.exe[1508] USER32.dll!SetWindowsHookExA 77D602B2 5 Bytes JMP 00080720
.text C:\WINDOWS\system32\spoolsv.exe[1508] WS2_32.dll!socket 71A53B91 5 Bytes JMP 000808C4
.text C:\WINDOWS\system32\spoolsv.exe[1508] WS2_32.dll!bind 71A53E00 5 Bytes JMP 00080838
.text C:\WINDOWS\system32\spoolsv.exe[1508] WS2_32.dll!connect 71A5406A 5 Bytes JMP 00080950
.text C:\PROGRA~1\ALWILS~1\Avast4\ashDisp
Image
Awatar użytkownika
skowrona
~user
 
Posty: 1861
Dołączenie: 14 Gru 2006, 22:51
Pochwały: 71

Góra
Wyślij odpowiedź

Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 5 gości

Powered by phpBB © Group
Forum Programosy.pl