wklejto.pl

Dodane przez: ~pawcio151 (2008-07-12 23:42) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
\"Silent Runners.vbs\", revision 56, http://www.silentrunners.org/
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by \"{++}\"
 
 
Startup items buried in registry:
---------------------------------
 
HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Run\\ {++}
\"CTFMON.EXE\" = \"C:\\WINDOWS\\system32\\ctfmon.exe\" [MS]
 
HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run\\ {++}
\"SoundMan\" = \"SOUNDMAN.EXE\" [\"Realtek Semiconductor Corp.\"]
\"NVRaidService\" = \"C:\\WINDOWS\\System32\\nvraidservice.exe\" [\"NVIDIA Corporation\"]
\"RemoteControl\" = \"\"C:\\Program Files\\CyberLink\\PowerDVD\\PDVDServ.exe\"\" [\"Cyberlink Corp.\"]
\"LanguageShortcut\" = \"\"C:\\Program Files\\CyberLink\\PowerDVD\\Language\\Language.exe\"\" [null data]
\"HP Software Update\" = \"C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe\" [\"Hewlett-Packard Development Company, L.P.\"]
\"NeroFilterCheck\" = \"C:\\Program Files\\Common Files\\Ahead\\Lib\\NeroCheck.exe\" [\"Nero AG\"]
\"ISUSPM Startup\" = \"C:\\PROGRA~1\\COMMON~1\\INSTAL~1\\UPDATE~1\\ISUSPM.exe -startup\" [\"InstallShield Software Corporation\"]
\"ISUSScheduler\" = \"\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\issch.exe\" -start\" [\"InstallShield Software Corporation\"]
\"ATIPTA\" = \"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\" [\"ATI Technologies, Inc.\"]
\"AVP\" = \"\"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 7.0\\avp.exe\"\" [\"Kaspersky Lab\"]
 
HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\\(Default) = (no title provided)
  -> {HKLM...CLSID} = \"Adobe PDF Reader Link Helper\"
                   \\InProcServer32\\(Default) = \"D:\\Adobe Reader\\ActiveX\\AcroIEHelper.dll\" [\"Adobe Systems Incorporated\"]
{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}\\(Default) = \"Winamp Toolbar BHO\"
  -> {HKLM...CLSID} = \"Winamp Toolbar BHO\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Winamp Toolbar\\winamptb.dll\" [\"AOL LLC\"]
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}\\(Default) = \"BitComet ClickCapture\"
  -> {HKLM...CLSID} = \"BitComet Helper\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\BitComet\\tools\\BitCometBHO_1.1.7.4.dll\" [\"BitComet\"]
{4FB971C4-99FB-480d-BA3F-55B8263010FB}\\(Default) = (no title provided)
  -> {HKLM...CLSID} = \"Peer2Mail Toolbar Helper\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Peer2Mail Toolbar\\v2.0.0.0\\Peer2Mail_Toolbar.dll\" [null data]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\\(Default) = (no title provided)
  -> {HKLM...CLSID} = \"SSVHelper Class\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Java\\jre1.6.0_03\\bin\\ssv.dll\" [\"Sun Microsystems, Inc.\"]
{C451C08A-EC37-45DF-AAAD-18B51AB5E837}\\(Default) = (no title provided)
  -> {HKLM...CLSID} = \"PDFCreator Toolbar Helper\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\PDFCreator Toolbar\\v3.3.0.1\\PDFCreator_Toolbar.dll\" [null data]
 
HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Shell Extensions\\Approved\\
\"{42071714-76d4-11d1-8b24-00a0c9068ff3}\" = \"Rozszerzenie CPL kadrowania wyświetlania\"
  -> {HKLM...CLSID} = \"Rozszerzenie CPL kadrowania wyświetlania\"
                   \\InProcServer32\\(Default) = \"deskpan.dll\" [file not found]
\"{88895560-9AA2-1069-930E-00AA0030EBC8}\" = \"Rozszerzenie ikony HyperTerminalu\"
  -> {HKLM...CLSID} = \"HyperTerminal Icon Ext\"
                   \\InProcServer32\\(Default) = \"C:\\WINDOWS\\System32\\hticons.dll\" [\"Hilgraeve, Inc.\"]
\"{B41DB860-8EE4-11D2-9906-E49FADC173CA}\" = \"WinRAR shell extension\"
  -> {HKLM...CLSID} = \"WinRAR\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\WinRAR\\rarext.dll\" [null data]
\"{00020D75-0000-0000-C000-000000000046}\" = \"Microsoft Office Outlook Desktop Icon Handler\"
  -> {HKLM...CLSID} = \"Microsoft Office Outlook\"
                   \\InProcServer32\\(Default) = \"C:\\PROGRA~1\\MICROS~2\\OFFICE11\\MLSHEXT.DLL\" [MS]
\"{0006F045-0000-0000-C000-000000000046}\" = \"Microsoft Office Outlook Custom Icon Handler\"
  -> {HKLM...CLSID} = \"Rozszerzenie ikon plików programu Outlook\"
                   \\InProcServer32\\(Default) = \"C:\\PROGRA~1\\MICROS~2\\OFFICE11\\OLKFSTUB.DLL\" [MS]
\"{42042206-2D85-11D3-8CFF-005004838597}\" = \"Microsoft Office HTML Icon Handler\"
  -> {HKLM...CLSID} = (no title provided)
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Microsoft Office\\OFFICE11\\msohev.dll\" [MS]
\"{97F68CE3-7146-45FF-BE24-D9A7DD7CB8A2}\" = \"NeroCoverEd Live Icons\"
  -> {HKLM...CLSID} = \"NeroCoverEdLiveIcons Class\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Nero\\Nero 7\\Nero CoverDesigner\\CoverEdExtension.dll\" [\"Nero AG\"]
\"{9999A076-A9E2-4C99-8A2B-632FC9429223}\" = \"Bonjour\"
  -> {HKLM...CLSID} = \"Bonjour\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Bonjour\\ExplorerPlugin.dll\" [\"Apple Computer, Inc.\"]
\"{85E0B171-04FA-11D1-B7DA-00A0C90348D6}\" = \"Web Anti-Virus statistics\"
  -> {HKLM...CLSID} = \"Web Anti-Virus statistics\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 7.0\\SCIEPlgn.dll\" [\"Kaspersky Lab\"]
 
HKLM\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\
<<!>> AtiExtEvent\\DLLName = \"Ati2evxx.dll\" [\"ATI Technologies Inc.\"]
<<!>> klogon\\DLLName = \"C:\\WINDOWS\\system32\\klogon.dll\" [\"Kaspersky Lab\"]
 
HKLM\\SOFTWARE\\Classes\\PROTOCOLS\\Filter\\
<<!>> text/xml\\CLSID = \"{807553E5-5146-11D5-A672-00B0D022E945}\"
  -> {HKLM...CLSID} = (no title provided)
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Common Files\\Microsoft Shared\\OFFICE11\\MSOXMLMF.DLL\" [MS]
 
HKLM\\SOFTWARE\\Classes\\Folder\\shellex\\ColumnHandlers\\
{F9DB5320-233E-11D1-9F84-707F02C10627}\\(Default) = \"PDF Column Info\"
  -> {HKLM...CLSID} = \"PDF Shell Extension\"
                   \\InProcServer32\\(Default) = \"D:\\Adobe Reader\\ActiveX\\PDFShell.dll\" [\"Adobe Systems, Inc.\"]
 
HKLM\\SOFTWARE\\Classes\\*\\shellex\\ContextMenuHandlers\\
Cover Designer\\(Default) = \"{73FCA462-9BD5-4065-A73F-A8E5F6904EF7}\"
  -> {HKLM...CLSID} = \"NeroCoverEdContextMenu Class\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Nero\\Nero 7\\Nero CoverDesigner\\CoverEdExtension.dll\" [\"Nero AG\"]
Kaspersky Anti-Virus\\(Default) = \"{dd230880-495a-11d1-b064-008048ec2fc5}\"
  -> {HKLM...CLSID} = (no title provided)
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 7.0\\ShellEx.dll\" [\"Kaspersky Lab\"]
WinRAR\\(Default) = \"{B41DB860-8EE4-11D2-9906-E49FADC173CA}\"
  -> {HKLM...CLSID} = \"WinRAR\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\WinRAR\\rarext.dll\" [null data]
 
HKLM\\SOFTWARE\\Classes\\Directory\\shellex\\ContextMenuHandlers\\
WinRAR\\(Default) = \"{B41DB860-8EE4-11D2-9906-E49FADC173CA}\"
  -> {HKLM...CLSID} = \"WinRAR\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\WinRAR\\rarext.dll\" [null data]
 
HKLM\\SOFTWARE\\Classes\\Folder\\shellex\\ContextMenuHandlers\\
Kaspersky Anti-Virus\\(Default) = \"{dd230880-495a-11d1-b064-008048ec2fc5}\"
  -> {HKLM...CLSID} = (no title provided)
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 7.0\\ShellEx.dll\" [\"Kaspersky Lab\"]
WinRAR\\(Default) = \"{B41DB860-8EE4-11D2-9906-E49FADC173CA}\"
  -> {HKLM...CLSID} = \"WinRAR\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\WinRAR\\rarext.dll\" [null data]
 
 
Group Policies {GPedit.msc branch and setting}:
-----------------------------------------------
 
Note: detected settings may not have any effect.
 
HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\
 
\"HideLegacyLogonScripts\" = (REG_DWORD) dword:0x00000000
{unrecognized setting}
 
\"HideLogoffScripts\" = (REG_DWORD) dword:0x00000000
{unrecognized setting}
 
\"RunLogonScriptSync\" = (REG_DWORD) dword:0x00000001
{unrecognized setting}
 
\"RunStartupScriptSync\" = (REG_DWORD) dword:0x00000001
{unrecognized setting}
 
\"HideStartupScripts\" = (REG_DWORD) dword:0x00000000
{unrecognized setting}
 
HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\\
 
\"shutdownwithoutlogon\" = (REG_DWORD) dword:0x00000001
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
Shutdown: Allow system to be shut down without having to log on}
 
\"undockwithoutlogon\" = (REG_DWORD) dword:0x00000001
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
Devices: Allow undock without having to log on}
 
\"DisableRegistryTools\" = (REG_DWORD) dword:0x00000000
{unrecognized setting}
 
\"HideLegacyLogonScripts\" = (REG_DWORD) dword:0x00000000
{unrecognized setting}
 
\"HideLogoffScripts\" = (REG_DWORD) dword:0x00000000
{unrecognized setting}
 
\"RunLogonScriptSync\" = (REG_DWORD) dword:0x00000001
{unrecognized setting}
 
\"RunStartupScriptSync\" = (REG_DWORD) dword:0x00000001
{unrecognized setting}
 
\"HideStartupScripts\" = (REG_DWORD) dword:0x00000000
{unrecognized setting}
 
 
Active Desktop and Wallpaper:
-----------------------------
 
Active Desktop may be disabled at this entry:
HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Explorer\\ShellState
 
Displayed if Active Desktop enabled and wallpaper not set by Group Policy:
HKCU\\Software\\Microsoft\\Internet Explorer\\Desktop\\General\\
\"Wallpaper\" = \"C:\\WINDOWS\\system32\\config\\systemprofile\\Ustawienia lokalne\\Dane aplikacji\\Microsoft\\Wallpaper1.bmp\"
 
Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\\Control Panel\\Desktop\\
\"Wallpaper\" = \"C:\\Documents and Settings\\Pawel\\Ustawienia lokalne\\Dane aplikacji\\Microsoft\\Wallpaper1.bmp\"
 
 
Enabled Screen Saver:
---------------------
 
HKCU\\Control Panel\\Desktop\\
\"SCRNSAVE.EXE\" = \"C:\\WINDOWS\\System32\\logon.scr\" [MS]
 
 
Startup items in \"Pawel\" & \"All Users\" startup folders:
-------------------------------------------------------
 
C:\\Documents and Settings\\All Users\\Menu Start\\Programy\\Autostart
\"Kalendarz XP\" -> shortcut to: \"C:\\Program Files\\Kalendarz XP\\Kalendarz.exe\" [null data]
 
 
Winsock2 Service Provider DLLs:
-------------------------------
 
Namespace Service Providers
 
HKLM\\SYSTEM\\CurrentControlSet\\Services\\Winsock2\\Parameters\\NameSpace_Catalog5\\Catalog_Entries\\ {++}
000000000001\\LibraryPath = \"%SystemRoot%\\System32\\mswsock.dll\" [MS]
000000000002\\LibraryPath = \"%SystemRoot%\\System32\\winrnr.dll\" [MS]
000000000003\\LibraryPath = \"%SystemRoot%\\System32\\mswsock.dll\" [MS]
000000000004\\LibraryPath = \"C:\\Program Files\\Bonjour\\mdnsNSP.dll\" [\"Apple Computer, Inc.\"]
 
Transport Service Providers
 
HKLM\\SYSTEM\\CurrentControlSet\\Services\\Winsock2\\Parameters\\Protocol_Catalog9\\Catalog_Entries\\ {++}
0000000000##\\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\\system32\\mswsock.dll [MS], 01 - 03, 06 - 11
%SystemRoot%\\system32\\rsvpsp.dll [MS], 04 - 05
 
 
Toolbars, Explorer Bars, Extensions:
------------------------------------
 
Toolbars
 
HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar\\WebBrowser\\
\"{37B85A29-692B-4205-9CAD-2626E4993404}\"
  -> {HKLM...CLSID} = \"My Global Search Bar\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\MyGlobalSearch\\bar\\1.bin\\MGSBAR.DLL\" [file not found]
\"{43F2A7F9-06F6-48A5-B0DC-8530BF29CE66}\"
  -> {HKLM...CLSID} = \"Peer2Mail Toolbar\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Peer2Mail Toolbar\\v2.0.0.0\\Peer2Mail_Toolbar.dll\" [null data]
\"{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}\"
  -> {HKLM...CLSID} = \"Winamp Toolbar\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Winamp Toolbar\\winamptb.dll\" [\"AOL LLC\"]
\"{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}\"
  -> {HKLM...CLSID} = \"PDFCreator Toolbar\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\PDFCreator Toolbar\\v3.3.0.1\\PDFCreator_Toolbar.dll\" [null data]
 
HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Toolbar\\
\"{43F2A7F9-06F6-48A5-B0DC-8530BF29CE66}\" = \"Peer2Mail Toolbar\"
  -> {HKLM...CLSID} = \"Peer2Mail Toolbar\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Peer2Mail Toolbar\\v2.0.0.0\\Peer2Mail_Toolbar.dll\" [null data]
\"{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}\" = \"Winamp Toolbar\"
  -> {HKLM...CLSID} = \"Winamp Toolbar\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Winamp Toolbar\\winamptb.dll\" [\"AOL LLC\"]
\"{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}\" = \"PDFCreator Toolbar\"
  -> {HKLM...CLSID} = \"PDFCreator Toolbar\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\PDFCreator Toolbar\\v3.3.0.1\\PDFCreator_Toolbar.dll\" [null data]
 
Explorer Bars
 
HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Explorer Bars\\
 
HKLM\\SOFTWARE\\Classes\\CLSID\\{85E0B171-04FA-11D1-B7DA-00A0C90348D6}\\(Default) = \"Web Anti-Virus statistics\"
Implemented Categories\\{00021493-0000-0000-C000-000000000046}\\ [vertical bar]
InProcServer32\\(Default) = \"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 7.0\\SCIEPlgn.dll\" [\"Kaspersky Lab\"]
 
HKLM\\SOFTWARE\\Classes\\CLSID\\{9999A076-A9E2-4C99-8A2B-632FC9429223}\\(Default) = \"Bonjour\"
Implemented Categories\\{00021493-0000-0000-C000-000000000046}\\ [vertical bar]
InProcServer32\\(Default) = \"C:\\Program Files\\Bonjour\\ExplorerPlugin.dll\" [\"Apple Computer, Inc.\"]
 
HKLM\\SOFTWARE\\Classes\\CLSID\\{E7A829CC-671F-4C3D-B590-8C0AEA72E6B2}\\(Default) = \"BitComet Search\"
Implemented Categories\\{00021493-0000-0000-C000-000000000046}\\ [vertical bar]
InProcServer32\\(Default) = \"C:\\Program Files\\BitComet\\tools\\BitCometBHO_1.1.7.4.dll\" [\"BitComet\"]
 
HKLM\\SOFTWARE\\Classes\\CLSID\\{FF059E31-CC5A-4E2E-BF3B-96E929D65503}\\(Default) = \"&Badanie\"
Implemented Categories\\{00021493-0000-0000-C000-000000000046}\\ [vertical bar]
InProcServer32\\(Default) = \"C:\\PROGRA~1\\MICROS~2\\OFFICE11\\REFIEBAR.DLL\" [MS]
 
Extensions (Tools menu items, main toolbar menu buttons)
 
HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Extensions\\
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\\
\"MenuText\" = \"Sun Java Console\"
\"CLSIDExtension\" = \"{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}\"
  -> {HKCU...CLSID} = \"Java Plug-in 1.6.0_03\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Java\\jre1.6.0_03\\bin\\ssv.dll\" [\"Sun Microsystems, Inc.\"]
  -> {HKLM...CLSID} = \"Java Plug-in 1.6.0_03\"
                   \\InProcServer32\\(Default) = \"C:\\Program Files\\Java\\jre1.6.0_03\\bin\\npjpi160_03.dll\" [\"Sun Microsystems, Inc.\"]
 
{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E}\\
\"ButtonText\" = \"Web Anti-Virus statistics\"
 
{461CC20B-FB6E-4F16-8FE8-C29359DB100E}\\
\"ButtonText\" = \"BitComet Search\"
 
{7F9DB11C-E358-4CA6-A83D-ACC663939424}\\
\"ButtonText\" = \"Bonjour\"
 
{92780B25-18CC-41C8-B9BE-3C9C571A8263}\\
\"ButtonText\" = \"Badanie\"
 
 
Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------
 
##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##, Bonjour Service, \"\"C:\\Program Files\\Bonjour\\mDNSResponder.exe\"\" [\"Apple Computer, Inc.\"]
Ati HotKey Poller, Ati HotKey Poller, \"C:\\WINDOWS\\system32\\Ati2evxx.exe\" [\"ATI Technologies Inc.\"]
Cyberlink RichVideo Service(CRVS), RichVideo, \"\"C:\\Program Files\\CyberLink\\Shared Files\\RichVideo.exe\"\" [empty string]
LightScribeService Direct Disc Labeling Service, LightScribeService, \"C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\" [\"Hewlett-Packard Company\"]
Pml Driver HPZ12, Pml Driver HPZ12, \"C:\\WINDOWS\\system32\\HPZipm12.exe\" [\"HP\"]
PnkBstrA, PnkBstrA, \"C:\\WINDOWS\\system32\\PnkBstrA.exe\" [null data]
PnkBstrB, PnkBstrB, \"C:\\WINDOWS\\system32\\PnkBstrB.exe\" [null data]
Windows User Mode Driver Framework, UMWdf, \"C:\\WINDOWS\\System32\\wdfmgr.exe\" [MS]
 
 
Print Monitors:
---------------
 
HKLM\\SYSTEM\\CurrentControlSet\\Control\\Print\\Monitors\\
HP Standard TCP/IP Port\\Driver = \"HpTcpMon.dll\" [\"Hewlett Packard\"]
LIDIL hpzll054\\Driver = \"hpzll054.dll\" [\"Hewlett-Packard Company\"]
Microsoft Document Imaging Writer Monitor\\Driver = \"mdimon.dll\" [MS]
PDFCreator\\Driver = \"pdfcmnnt.dll\" [\"internet-support foehr.com\"]
 
 
---------- (launch time: 2008-07-12 23:32:27)
<<!>>: Suspicious data at a malware launch point.
 
+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
  launch it from a command prompt or a shortcut with the -all parameter.
+ The search for DESKTOP.INI DLL launch points on all local fixed drives
  took 108 seconds.
---------- (total run time: 178 seconds)
 
Wygenerowano w 0.113s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!