"Administrator" - 07-05-04 8:42:37 Dodatek Service Pack 2 ComboFix 07-04-25.4V - Running from: "C:\Documents and Settings\Administrator\Pulpit\" ((((((((((((((((((((((((((((((( Files Created from 2007-04-04 to 2007-05-04 )))))))))))))))))))))))))))))))))) 2007-05-03 19:40 d-------- C:\Program Files\Expressivo 2007-05-03 19:38 d-------- C:\Program Files\Foxit 2007-05-03 19:21 d-------- C:\Program Files\vDownloader 2007-05-03 18:04 d-------- C:\Program Files\ScanSoft 2007-05-03 16:44 d-------- C:\DOCUME~1\ADMINI~1\DANEAP~1\Thinstall 2007-05-03 16:42 d-------- C:\Program Files\GBA 2007-05-03 15:19 d-------- C:\Program Files\PSX 2007-05-03 14:47 d-------- C:\Program Files\InstallShield Installation Information 2007-05-03 14:45 d-------- C:\WINDOWS\Pixart 2007-05-03 14:45 d-------- C:\WINDOWS\LastGood 2007-05-03 14:45 d-------- C:\Program Files\PC VGA Camer@ 2007-05-03 14:45 d-------- C:\Program Files\Common Files\PCCamera 2007-05-03 13:27 d-------- C:\DOCUME~1\ADMINI~1\DANEAP~1\Gadu-Gadu 2007-05-02 23:19 d-------- C:\WINDOWS\pss 2007-05-02 23:18 d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\nView_Profiles 2007-05-02 23:10 d-------- C:\DOCUME~1\ADMINI~1\DANEAP~1\GetRightToGo 2007-05-02 22:30 369,184 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat 2007-05-02 22:30 11,040 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat 2007-05-02 22:30 d-------- C:\Program Files\Kaspersky 2007-05-02 22:30 d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\Kaspersky Lab 2007-05-02 22:26 516,173 --a------ C:\WINDOWS\system32\MSVCP60D.DLL 2007-05-02 22:26 385,100 --a------ C:\WINDOWS\system32\MSVCRTD.DLL 2007-05-02 22:25 59,904 --a------ C:\WINDOWS\system32\Mscc2fr.dll 2007-05-02 22:25 32,768 --a------ C:\WINDOWS\system32\CMDLGFR.DLL 2007-05-02 22:25 307,200 --a------ C:\WINDOWS\system32\msvcr70.dll 2007-05-02 22:25 21,504 --a------ C:\WINDOWS\system32\TABCTFR.DLL 2007-05-02 22:25 15,360 --a------ C:\WINDOWS\system32\inetfr.DLL 2007-05-02 22:25 141,312 --a------ C:\WINDOWS\system32\MSCMCFR.DLL 2007-05-02 22:25 119,568 --a------ C:\WINDOWS\system32\VB6FR.DLL 2007-05-02 22:25 101,888 --a------ C:\WINDOWS\system32\VB6STKIT.DLL 2007-05-02 22:25 1,060,864 --a------ C:\WINDOWS\system32\MFC71.dll 2007-05-02 22:25 d-------- C:\Program Files\Free Audio Pack 2007-05-02 22:20 d-------- C:\Program Files\Common Files\Skype 2007-05-02 22:20 d-------- C:\DOCUME~1\ADMINI~1\DANEAP~1\Skype 2007-05-02 22:19 d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\Skype 2007-05-02 22:18 d-------- C:\Program Files\Skype 2007-05-02 22:06 d-------- C:\Program Files\Spybot 2007-05-02 22:06 d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\Spybot - Search & Destroy 2007-05-02 22:01 d-------- C:\Program Files\mp3DirectCut 2007-05-02 22:00 d-------- C:\Program Files\Context 2007-05-02 21:47 d-------- C:\Program Files\Best Player 2007-05-02 21:46 d-------- C:\Program Files\Ad-Aware 2007-05-02 21:23 d-------- C:\Program Files\GG Lite 2007-05-02 21:08 d-------- C:\Program Files\Ad Muncher 2007-05-02 21:03 d-------- C:\DOCUME~1\ADMINI~1\DANEAP~1\IrfanView 2007-05-02 21:01 d-------- C:\Program Files\IrfanView 2007-05-02 21:01 d-------- C:\Program Files\foobar2000 2007-05-02 20:53 466,944 --a------ C:\WINDOWS\system32\nvshell.dll 2007-05-02 20:53 442,368 --a------ C:\WINDOWS\system32\nvappbar.exe 2007-05-02 20:53 425,984 --a------ C:\WINDOWS\system32\keystone.exe 2007-05-02 20:53 356,352 --a------ C:\WINDOWS\system32\nvudisp.exe 2007-05-02 20:53 147,456 --a------ C:\WINDOWS\system32\nvcolor.exe 2007-05-02 20:53 1,662,976 --a------ C:\WINDOWS\system32\nvwdmcpl.dll 2007-05-02 20:53 1,622,016 --a------ C:\WINDOWS\system32\nwiz.exe 2007-05-02 20:53 1,470,464 --a------ C:\WINDOWS\system32\nview.dll 2007-05-02 20:53 1,339,392 --a------ C:\WINDOWS\system32\nvdspsch.exe 2007-05-02 20:53 1,019,904 --a------ C:\WINDOWS\system32\nvwimg.dll 2007-05-02 20:53 d-------- C:\WINDOWS\nview 2007-05-02 20:53 d-------- C:\WINDOWS\LastGood.Tmp 2007-05-02 20:53 d-------- C:\WINDOWS\help 2007-05-02 20:52 60,273 --a------ C:\WINDOWS\system32\pthreadGC2.dll 2007-05-02 20:52 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll 2007-05-02 20:52 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll 2007-05-02 20:52 10,752 --a------ C:\WINDOWS\system32\ff_vfw.dll 2007-05-02 20:52 d-------- C:\Program Files\ffdshow 2007-05-02 20:51 90,112 --a------ C:\WINDOWS\unvise32.exe 2007-05-02 20:51 356,352 --a------ C:\WINDOWS\system32\NVUNINST.EXE 2007-05-02 20:51 d-------- C:\Program Files\nVidia 2007-05-02 20:51 d-------- C:\Program Files\Keyboard 2007-05-02 20:51 d-------- C:\Program Files\Common Files\InstallShield 2007-05-02 20:49 d-------- C:\Program Files\ScarAngel 2007-05-02 20:44 d-------- C:\Program Files\BitLord 2007-05-02 20:43 1,156 --a------ C:\WINDOWS\mozver.dat 2007-05-02 20:40 0 --a------ C:\WINDOWS\nsreg.dat 2007-05-02 18:01 7,552 --a------ C:\WINDOWS\system32\drivers\MSKSSRV.sys 2007-05-02 18:01 6,400 --a------ C:\WINDOWS\system32\drivers\splitter.sys 2007-05-02 18:01 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys 2007-05-02 18:01 52,864 --a------ C:\WINDOWS\system32\drivers\DMusic.sys 2007-05-02 18:01 2,944 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys 2007-05-02 18:01 142,464 --a------ C:\WINDOWS\system32\drivers\aec.sys 2007-05-02 18:00 82,944 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys 2007-05-02 18:00 60,800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys 2007-05-02 18:00 58,624 --a------ C:\WINDOWS\system32\drivers\redbook.sys 2007-05-02 18:00 5,376 --a------ C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2007-05-02 18:00 4,992 --a------ C:\WINDOWS\system32\drivers\MSPQM.sys 2007-05-02 18:00 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys 2007-05-02 18:00 171,776 --a------ C:\WINDOWS\system32\drivers\kmixer.sys 2007-05-02 17:59 2,944 --a------ C:\WINDOWS\system32\drivers\msmpu401.sys 2007-05-02 17:58 60,288 --a------ C:\WINDOWS\system32\drivers\drmk.sys 2007-05-02 17:58 6,912 --a------ C:\WINDOWS\system32\drivers\ctlfacem.sys 2007-05-02 17:58 51,200 --a------ C:\WINDOWS\system32\sfman32.dll 2007-05-02 17:58 495,616 --a------ C:\WINDOWS\system32\sblfx.dll 2007-05-02 17:58 42,240 --a------ C:\WINDOWS\system32\drivers\VIAAGP.SYS 2007-05-02 17:58 4,096 --a------ C:\WINDOWS\system32\ksuser.dll 2007-05-02 17:58 4,096 --a------ C:\WINDOWS\system32\ctwdm32.dll 2007-05-02 17:58 36,480 --a------ C:\WINDOWS\system32\drivers\sfmanm.sys 2007-05-02 17:58 3,712 --a------ C:\WINDOWS\system32\drivers\ctljystk.sys 2007-05-02 17:58 283,904 --a------ C:\WINDOWS\system32\drivers\emu10k1m.sys 2007-05-02 17:58 256,512 --a------ C:\WINDOWS\system32\devcon32.dll 2007-05-02 17:58 24,064 --a------ C:\WINDOWS\system32\devldr32.exe 2007-05-02 17:58 20,992 --a------ C:\WINDOWS\system32\drivers\RTL8139.sys 2007-05-02 17:58 145,792 --a------ C:\WINDOWS\system32\drivers\portcls.sys 2007-05-02 17:58 10,624 --a------ C:\WINDOWS\system32\drivers\gameenum.sys 2007-05-02 17:57 77,312 --a------ C:\WINDOWS\system32\usbui.dll 2007-05-02 17:56 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL 2007-05-02 17:56 9,168 --a------ C:\WINDOWS\system\VER.DLL 2007-05-02 17:56 83,456 --a------ C:\WINDOWS\system\OLECLI.DLL 2007-05-02 17:56 8,704 --a------ C:\WINDOWS\system32\batt.dll 2007-05-02 17:56 75,776 --a------ C:\WINDOWS\system32\storprop.dll 2007-05-02 17:56 70,144 --a------ C:\WINDOWS\NOTEPAD.EXE 2007-05-02 17:56 70,096 --a------ C:\WINDOWS\system\AVICAP.DLL 2007-05-02 17:56 69,552 --a------ C:\WINDOWS\system\MMSYSTEM.DLL 2007-05-02 17:56 5,120 --a------ C:\WINDOWS\system\SHELL.DLL 2007-05-02 17:56 33,376 --a------ C:\WINDOWS\system\COMMDLG.DLL 2007-05-02 17:56 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL 2007-05-02 17:56 19,200 --a------ C:\WINDOWS\system\TAPI.DLL 2007-05-02 17:56 15,360 --a------ C:\WINDOWS\TASKMAN.EXE 2007-05-02 17:56 13,312 --a------ C:\WINDOWS\system32\irclass.dll 2007-05-02 17:56 127,008 --a------ C:\WINDOWS\system\MSVIDEO.DLL 2007-05-02 17:56 11,264 --a------ C:\WINDOWS\system32\drivers\irenum.sys 2007-05-02 17:56 109,488 --a------ C:\WINDOWS\system\AVIFILE.DLL 2007-05-02 17:56 dr-h----- C:\DOCUME~1\DEFAUL~1\Ustawienia lokalne 2007-05-02 17:56 dr------- C:\DOCUME~1\DEFAUL~1\Menu Start 2007-05-02 17:56 dr------- C:\DOCUME~1\ALLUSE~1\Menu Start 2007-05-02 17:56 dr------- C:\DOCUME~1\ALLUSE~1\Dokumenty 2007-05-02 17:56 d--hs---- C:\WINDOWS\Installer 2007-05-02 17:56 d--h----- C:\DOCUME~1\DEFAUL~1\Szablony 2007-05-02 17:56 d--h----- C:\DOCUME~1\ALLUSE~1\Szablony 2007-05-02 17:56 d-------- C:\Program Files\Common Files\SpeechEngines 2007-05-02 17:56 d-------- C:\Program Files\Common Files\ODBC 2007-05-02 17:56 d-------- C:\Program Files 2007-05-02 17:56 d-------- C:\DOCUME~1\DEFAUL~1\Ulubione 2007-05-02 17:56 d-------- C:\DOCUME~1\DEFAUL~1\Pulpit 2007-05-02 17:56 d-------- C:\DOCUME~1\DEFAUL~1\Moje dokumenty 2007-05-02 17:56 d-------- C:\DOCUME~1\ALLUSE~1\Ulubione 2007-05-02 17:56 d-------- C:\DOCUME~1\ALLUSE~1\Pulpit 2007-05-02 17:55 dr-h----- C:\DOCUME~1\DEFAUL~1\Dane aplikacji 2007-05-02 17:55 dr-h----- C:\DOCUME~1\ALLUSE~1\Dane aplikacji 2007-05-02 17:55 d--hs---- C:\System Volume Information 2007-05-02 17:55 d-------- C:\WINDOWS\system32\CatRoot2 2007-05-02 17:55 d-------- C:\WINDOWS\system32\CatRoot 2007-05-02 17:55 d-------- C:\Documents and Settings 2007-05-02 17:50 dr-hsc--- C:\WINDOWS\system32\dllcache 2007-05-02 17:50 dr--s---- C:\WINDOWS\Fonts 2007-05-02 17:50 d-------- C:\WINDOWS\WinSxS 2007-05-02 17:50 d-------- C:\WINDOWS\Web 2007-05-02 17:50 d-------- C:\WINDOWS\twain_32 2007-05-02 17:50 d-------- C:\WINDOWS\system32\wins 2007-05-02 17:50 d-------- C:\WINDOWS\system32\wbem 2007-05-02 17:50 d-------- C:\WINDOWS\system32\usmt 2007-05-02 17:50 d-------- C:\WINDOWS\system32\spool 2007-05-02 17:50 d-------- C:\WINDOWS\system32\ShellExt 2007-05-02 17:50 d-------- C:\WINDOWS\system32\Setup 2007-05-02 17:50 d-------- C:\WINDOWS\system32\ras 2007-05-02 17:50 d-------- C:\WINDOWS\system32\PreInstall 2007-05-02 17:50 d-------- C:\WINDOWS\system32\npp 2007-05-02 17:50 d-------- C:\WINDOWS\system32\mui 2007-05-02 17:50 d-------- C:\WINDOWS\system32\inetsrv 2007-05-02 17:50 d-------- C:\WINDOWS\system32\IME 2007-05-02 17:50 d-------- C:\WINDOWS\system32\icsxml 2007-05-02 17:50 d-------- C:\WINDOWS\system32\ias 2007-05-02 17:50 d-------- C:\WINDOWS\system32\export 2007-05-02 17:50 d-------- C:\WINDOWS\system32\drivers\etc 2007-05-02 17:50 d-------- C:\WINDOWS\system32\drivers\disdn 2007-05-02 17:50 d-------- C:\WINDOWS\system32\drivers 2007-05-02 17:50 d-------- C:\WINDOWS\system32\dhcp 2007-05-02 17:50 d-------- C:\WINDOWS\system32\config 2007-05-02 17:50 d-------- C:\WINDOWS\system32\3com_dmi 2007-05-02 17:50 d-------- C:\WINDOWS\system32\3076 2007-05-02 17:50 d-------- C:\WINDOWS\system32\2052 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1054 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1045 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1042 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1041 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1037 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1033 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1031 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1028 2007-05-02 17:50 d-------- C:\WINDOWS\system32\1025 2007-05-02 17:50 d-------- C:\WINDOWS\system32 2007-05-02 17:50 d-------- C:\WINDOWS\system 2007-05-02 17:50 d-------- C:\WINDOWS\security 2007-05-02 17:50 d-------- C:\WINDOWS\Resources 2007-05-02 17:50 d-------- C:\WINDOWS\repair 2007-05-02 17:50 d-------- C:\WINDOWS\Provisioning 2007-05-02 17:50 d-------- C:\WINDOWS\PeerNet 2007-05-02 17:50 d-------- C:\WINDOWS\mui 2007-05-02 17:50 d-------- C:\WINDOWS\msapps 2007-05-02 17:50 d-------- C:\WINDOWS\Media 2007-05-02 17:50 d-------- C:\WINDOWS\inf 2007-05-02 17:50 d-------- C:\WINDOWS\ime 2007-05-02 17:50 d-------- C:\WINDOWS\ehome 2007-05-02 17:50 d-------- C:\WINDOWS\Driver Cache 2007-05-02 17:50 d-------- C:\WINDOWS\Debug 2007-05-02 17:50 d-------- C:\WINDOWS\Cursors 2007-05-02 17:50 d-------- C:\WINDOWS\Connection Wizard 2007-05-02 17:50 d-------- C:\WINDOWS\Config 2007-05-02 17:50 d-------- C:\WINDOWS\AppPatch 2007-05-02 17:50 d-------- C:\WINDOWS\addins 2007-05-02 17:50 d-------- C:\WINDOWS 2007-05-02 16:38 d-------- C:\Program Files\WinTools 2007-05-02 16:35 d--hs---- C:\RECYCLER 2007-05-02 16:10 1,310,720 --ah----- C:\DOCUME~1\ADMINI~1\NTUSER.DAT 2007-05-02 16:10 dr-h----- C:\DOCUME~1\ADMINI~1\Dane aplikacji 2007-05-02 16:10 dr------- C:\DOCUME~1\ADMINI~1\Ulubione 2007-05-02 16:10 dr------- C:\DOCUME~1\ADMINI~1\Menu Start 2007-05-02 16:10 d--h----- C:\DOCUME~1\ADMINI~1\Ustawienia lokalne 2007-05-02 16:10 d--h----- C:\DOCUME~1\ADMINI~1\Szablony 2007-05-02 16:10 d-------- C:\DOCUME~1\ADMINI~1\Pulpit 2007-05-02 16:09 786,432 --ah----- C:\DOCUME~1\NETWOR~1\NTUSER.DAT 2007-05-02 16:09 114,688 --ah----- C:\DOCUME~1\LOCALS~1\NTUSER.DAT 2007-05-02 16:09 d--h----- C:\DOCUME~1\NETWOR~1\Ustawienia lokalne 2007-05-02 16:09 d--h----- C:\DOCUME~1\LOCALS~1\Ustawienia lokalne 2007-05-02 16:09 d-------- C:\WINDOWS\Prefetch 2007-05-02 16:09 d-------- C:\DOCUME~1\NETWOR~1\Dane aplikacji 2007-05-02 16:09 d-------- C:\DOCUME~1\LOCALS~1\Dane aplikacji 2007-05-02 16:07 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe 2007-05-02 16:07 114,688 ---h----- C:\DOCUME~1\DEFAUL~1\NTUSER.DAT 2007-05-02 16:07 d-------- C:\WINDOWS\RegisteredPackages 2007-05-02 16:06 28,672 --------- C:\WINDOWS\system32\verclsid.exe 2007-05-02 16:06 112,128 --a------ C:\WINDOWS\system32\mapi32.dll 2007-05-02 16:06 0 -rahs---- C:\MSDOS.SYS 2007-05-02 16:06 0 -rahs---- C:\IO.SYS 2007-05-02 16:06 0 --a------ C:\CONFIG.SYS 2007-05-02 16:06 0 --a------ C:\AUTOEXEC.BAT 2007-05-02 16:06 d--h----- C:\WINDOWS\$hf_mig$ 2007-05-02 16:05 dr------- C:\WINDOWS\Offline Web Pages 2007-05-02 16:05 d--hs---- C:\DOCUME~1\ALLUSE~1\DRM 2007-05-02 16:05 d---s---- C:\WINDOWS\Downloaded Program Files 2007-05-02 16:04 679,424 --a------ C:\WINDOWS\system32\inetcomm.dll 2007-05-02 16:04 67,584 --a------ C:\WINDOWS\system32\acctres.dll 2007-05-02 16:04 49,664 --a------ C:\WINDOWS\system32\inetres.dll 2007-05-02 16:04 278,528 --a------ C:\WINDOWS\system32\mstask.dll 2007-05-02 16:04 252,928 --a------ C:\WINDOWS\system32\msoeacct.dll 2007-05-02 16:04 22,528 --a------ C:\WINDOWS\system32\fltMc.exe 2007-05-02 16:04 192,000 --a------ C:\WINDOWS\system32\schedsvc.dll 2007-05-02 16:04 16,896 --a------ C:\WINDOWS\system32\fltlib.dll 2007-05-02 16:04 124,800 --a------ C:\WINDOWS\system32\drivers\fltMgr.sys 2007-05-02 16:04 12,288 --a------ C:\WINDOWS\system32\mstinit.exe 2007-05-02 16:04 105,984 --a------ C:\WINDOWS\system32\msoert2.dll 2007-05-02 16:04 d---s---- C:\WINDOWS\Tasks 2007-05-02 16:04 d-------- C:\WINDOWS\system32\Macromed 2007-05-02 16:04 d-------- C:\Program Files\Common Files\MSSoap 2007-05-02 16:03 80,896 --a------ C:\WINDOWS\system32\charmap.exe 2007-05-02 16:03 605,696 --a------ C:\WINDOWS\system32\getuname.dll 2007-05-02 16:03 57,344 --a------ C:\WINDOWS\system32\sol.exe 2007-05-02 16:03 55,808 --a------ C:\WINDOWS\system32\freecell.exe 2007-05-02 16:03 5,632 --a------ C:\WINDOWS\system32\write.exe 2007-05-02 16:03 21,856 --a------ C:\WINDOWS\system32\emptyregdb.dat 2007-05-02 16:03 139,264 --a------ C:\WINDOWS\system32\sndvol32.exe 2007-05-02 16:03 128,000 --a------ C:\WINDOWS\system32\mshearts.exe 2007-05-02 16:03 119,808 --a------ C:\WINDOWS\system32\winmine.exe 2007-05-02 16:03 115,200 --a------ C:\WINDOWS\system32\calc.exe 2007-05-02 16:03 d-------- C:\WINDOWS\Registration 2007-05-02 16:02 97,792 --a------ C:\WINDOWS\system32\comrepl.dll 2007-05-02 16:02 945,152 --a------ C:\WINDOWS\system32\msdtctm.dll 2007-05-02 16:02 91,136 --a------ C:\WINDOWS\system32\mtxoci.dll 2007-05-02 16:02 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll 2007-05-02 16:02 625,152 --a------ C:\WINDOWS\system32\catsrvut.dll 2007-05-02 16:02 60,416 --a------ C:\WINDOWS\system32\colbact.dll 2007-05-02 16:02 6,144 --a------ C:\WINDOWS\system32\msdtc.exe 2007-05-02 16:02 58,880 --a------ C:\WINDOWS\system32\msdtclog.dll 2007-05-02 16:02 58,880 --a------ C:\WINDOWS\system32\licwmi.dll 2007-05-02 16:02 56,320 --a------ C:\WINDOWS\system32\servdeps.dll 2007-05-02 16:02 540,160 --a------ C:\WINDOWS\system32\comuid.dll 2007-05-02 16:02 54,272 --a------ C:\WINDOWS\system32\stclient.dll 2007-05-02 16:02 539,136 --a------ C:\WINDOWS\system32\spider.exe 2007-05-02 16:02 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe 2007-05-02 16:02 498,688 --a------ C:\WINDOWS\system32\clbcatq.dll 2007-05-02 16:02 425,472 --a------ C:\WINDOWS\system32\msdtcprx.dll 2007-05-02 16:02 4,096 --a------ C:\WINDOWS\system32\mtxex.dll 2007-05-02 16:02 345,088 --a------ C:\WINDOWS\system32\mspaint.exe 2007-05-02 16:02 25,600 --a------ C:\WINDOWS\system32\comaddin.dll 2007-05-02 16:02 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll 2007-05-02 16:02 225,792 --a------ C:\WINDOWS\system32\catsrv.dll 2007-05-02 16:02 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll 2007-05-02 16:02 187,904 --a------ C:\WINDOWS\system32\cmprops.dll 2007-05-02 16:02 187,904 --a------ C:\WINDOWS\system32\accwiz.exe 2007-05-02 16:02 17,920 --a------ C:\WINDOWS\system32\mmfutil.dll 2007-05-02 16:02 161,280 --a------ C:\WINDOWS\system32\msdtcuiu.dll 2007-05-02 16:02 147,456 --a------ C:\WINDOWS\system32\comsnap.dll 2007-05-02 16:02 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll 2007-05-02 16:02 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll 2007-05-02 16:02 103,424 --a------ C:\WINDOWS\system32\clipbrd.exe 2007-05-02 16:02 1,267,200 --a------ C:\WINDOWS\system32\comsvcs.dll 2007-05-02 16:02 d-------- C:\WINDOWS\system32\MsDtc 2007-05-02 16:02 d-------- C:\WINDOWS\system32\Com 2007-05-02 16:02 d-------- C:\Program Files\Windows NT (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-05-02 17:56 62 --ahs---- C:\DOCUME~1\ADMINI~1\DANEAP~1\desktop.ini 2007-05-02 16:39 37224 --a------ C:\WINDOWS\system32\perfc015.dat 2007-05-02 16:39 319760 --a------ C:\WINDOWS\system32\perfh015.dat (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "iKeyWorks"="C:\\PROGRA~1\\Keyboard\\Ikeymain.exe" "kav"="\"C:\\Program Files\\Kaspersky\\avp.exe\"" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "Ad Muncher"="\"C:\\Program Files\\Ad Muncher\\AdMunch.exe\" /bt" "Mmm"="\"C:\\Program Files\\Context\\Mmm.exe\"" [HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce] "nlsf"=hex(2):63,6d,64,2e,65,78,65,20,2f,43,20,6d,6f,76,65,20,2f,59,20,22,25,\ 53,79,73,74,65,6d,52,6f,6f,74,25,5c,53,79,73,74,65,6d,33,32,5c,73,79,73,73,\ 65,74,75,62,2e,64,6c,6c,22,20,22,25,53,79,73,74,65,6d,52,6f,6f,74,25,5c,53,\ 79,73,74,65,6d,33,32,5c,73,79,73,73,65,74,75,70,2e,64,6c,6c,22,00 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "DisableStatusMessages"=dword:00000000 "SynchronousMachineGroupPolicy"=dword:00000000 "SynchronousUserGroupPolicy"=dword:00000000 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "NoSecCpl"=dword:00000000 "DisableChangePassword"=dword:00000000 "DisableLockWorkstation"=dword:00000000 "NoDispCpl"=dword:00000000 "NoDispBackgroundPage"=dword:00000000 "NoDispScrSavPage"=dword:00000000 "NoDispAppearancePage"=dword:00000000 "NoDispSettingsPage"=dword:00000000 "NoVisualStyleChoice"=dword:00000000 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoDesktopCleanupWizard"=dword:00000001 "ForceClassicControlPanel"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoSMHelp"=dword:00000001 "NoSharedDocuments"=dword:00000001 "ClearRecentDocsOnExit"=dword:00000001 "NoRecentDocsMenu"=dword:00000001 "NoRecentDocsHistory"=dword:00000001 "NoWindowsUpdate"=dword:00000001 "NoResolveTrack"=dword:00000001 "LinkResolveIgnoreLinkInfo "=dword:00000001 "NoLowDiskSpaceChecks"=dword:00000001 "NoInstrumentation"=dword:00000001 "NoSMMyDocs"=dword:00000001 "NoSMConfigurePrograms"=dword:00000001 "NoFavoritesMenu"=hex:01,00,00,00 "NoHelp"=hex:01,00,00,00 "HideClock"=dword:00000000 "NoManageMyComputerVerb"=dword:00000000 "NoCDBurning"=dword:00000000 "NoStartMenuPinnedList"=dword:00000000 "NoStartMenuMFUprogramsList"=dword:00000000 "NoUserNameInStartMenu"=dword:00000000 "StartmenuLogoff"=dword:00000000 "NoStartMenuSubFolders"=dword:00000000 "NoCommonGroups"=dword:00000000 "NoPrinterTabs"=dword:00000000 "NoDeletePrinter"=dword:00000000 "NoAddPrinter"=dword:00000000 "NoPrinters"=dword:00000000 "NoNetworkConnections"=dword:00000000 "NoClose"=dword:00000000 "NoSetFolders"=dword:00000000 "NoChangeStartMenu"=dword:00000000 "NoViewContextMenu"=dword:00000000 "NoFileMenu"=dword:00000000 "NoShellSearchButton"=dword:00000000 "NoToolbarCustomize"=dword:00000000 "NoRecentDocsNetHood"=dword:00000000 "NoChangeAnimation"=dword:00000000 "NoChangeKeyboardNavigationIndicators"=dword:00000000 "NoThemesTab"=dword:00000000 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\run] [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoSMHelp"=dword:00000001 "NoSharedDocuments"=dword:00000001 "ClearRecentDocsOnExit"=dword:00000001 "NoRecentDocsMenu"=dword:00000001 "NoRecentDocsHistory"=dword:00000001 "NoWindowsUpdate"=dword:00000001 "NoResolveTrack"=dword:00000001 "LinkResolveIgnoreLinkInfo "=dword:00000001 "NoLowDiskSpaceChecks"=dword:00000001 "NoInstrumentation"=dword:00000001 "NoSMMyDocs"=dword:00000001 "NoSMConfigurePrograms"=dword:00000001 [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer\run] HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa Authentication Packages REG_MULTI_SZ msv1_0\0\0 Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0 Notification Packages REG_MULTI_SZ scecli\0\0 [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvCpl" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvMcTray" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="nwiz" "hkey"="HKLM" "command"="nwiz.exe /install" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Skype" "hkey"="HKCU" "command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] HTTPFilter REG_MULTI_SZ HTTPFilter\0\0 LocalService REG_MULTI_SZ LmHosts\0SSDPSRV\0\0 NetworkService REG_MULTI_SZ DnsCache\0\0 DcomLaunch REG_MULTI_SZ DcomLaunch\0\0 rpcss REG_MULTI_SZ RpcSs\0\0 imgsvc REG_MULTI_SZ StiSvc\0\0 ******************************************************************** catchme 0.3.660 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-05-04 08:46:30 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes ... scanning hidden services ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 ******************************************************************** Completion time: 07-05-04 8:46:33 C:\ComboFix-quarantined-files.txt ... 07-05-04 08:46