Wirus z facebooka prosze o pomoc

Mi12 · 23 Sierpień 2011 19:07

Witam mam ten sam problem co większość wirusa na szczęście już nie ma ale nie mogę wejść na stronę Facebooka bo wyskakuje mi ze “nie udało się nawiązać połączenia” poczytałem trochę wiec zrobiłem jak napisane mam już pliki OTL i Extras oto linki do nich proszę o pomoc

OTL; http://www.wklej.org/id/583193/

Extras ; http://www.wklej.org/id/583195/

anon89827741 · 23 Sierpień 2011 19:12

Mi@ołaj , na forum używamy polskich znaków (ż, ł, ć, ś, ą itp.). Proszę wyedytować swojego posta i poprawić co trzeba. Niezastosowanie się do prośby będzie skutkowało przeniesieniem tematu do śmietnika.

drobok · 23 Sierpień 2011 19:21

W własne opcje skanowania wklej:

:OTL


MOD - [2011-08-19 14:01:44 | 000,382,464 | ---- | M] () -- C:\WINDOWS\update.7.1\svchostdriver.exe

SRV - File not found [Disabled | Stopped] -- -- (HidServ)

SRV - File not found [Auto | Stopped] -- -- (avg8wd)

SRV - File not found [On_Demand | Stopped] -- -- (AVG Security Toolbar Service)

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)

SRV - [2011-08-19 14:01:44 | 000,382,464 | ---- | M] () [Auto | Running] -- C:\WINDOWS\update.7.1\svchostdriver.exe -- (ddservice)

File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\WĹ‚AĹ›CICIEL\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\GTD779VI.DEFAULT\EXTENSIONS\{0B38152B-1B20-484D-A11F-5E04A9B0661F}

File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\WĹ‚AĹ›CICIEL\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\GTD779VI.DEFAULT\EXTENSIONS\{20A82645-C095-46ED-80E3-08825760534B}

File not found (No name found) -- C:\DOCUMENTS AND SETTINGS\WĹ‚AĹ›CICIEL\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\GTD779VI.DEFAULT\EXTENSIONS\FFXTLBR@BABYLON.COM

O3 - HKU\S-1-5-21-436374069-1708537768-682003330-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - File not found

O4 - HKLM..\Run: [BabylonToolbar] File not found

O4 - HKLM..\Run: [KernelFaultCheck] File not found

O4 - HKLM..\Run: [tray_ico] File not found

O4 - HKLM..\Run: [tray_ico1] File not found

O4 - HKLM..\Run: [tray_ico2] File not found

O4 - HKLM..\Run: [tray_ico3] File not found

O4 - HKLM..\Run: [tray_ico4] File not found

O4 - HKU\S-1-5-21-436374069-1708537768-682003330-1003..\Run: [AQQ] File not found

O4 - HKU\S-1-5-21-436374069-1708537768-682003330-1003..\Run: [EA Core] File not found

O4 - HKU\S-1-5-21-436374069-1708537768-682003330-1003..\Run: [Komunikator] File not found

O4 - HKU\S-1-5-21-436374069-1708537768-682003330-1003..\Run: [PowerBar] File not found

O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - File not found

O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - File not found

O31 - SafeBoot: AlternateShell - services32.exe

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

[2011-08-19 22:05:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\ufa

[2011-08-19 15:37:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\phoenix

[2011-08-19 14:01:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.7.1

[2011-08-19 13:42:48 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.5.0

[2011-08-19 13:42:13 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.2

[2011-08-19 13:40:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\av_ico

[2011-08-19 13:39:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.1

[2011-08-19 13:38:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-12-0-lnk

[2011-08-19 13:38:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\update.tray-12-0

File not found -- C:\Documents and Settings\Właściciel\Pulpit\Pidżama Porno

File not found -- C:\Documents and Settings\Właściciel\Pulpit\Letni, Chamski Podryw -

[2011-08-19 22:05:53 | 005,589,370 | ---- | M] () -- C:\WINDOWS\phoenix.rar

[2011-08-19 22:05:53 | 000,182,617 | ---- | M] () -- C:\WINDOWS\ufa.rar

[2011-08-19 14:01:45 | 000,000,179 | ---- | M] () -- C:\WINDOWS\info1

[2011-08-19 13:42:26 | 000,904,792 | ---- | M] () -- C:\WINDOWS\geoiplist.rar

[2011-08-19 13:42:11 | 000,000,000 | ---- | M] () -- C:\WINDOWS\loader2.exe_ok

[2011-08-19 15:37:18 | 005,589,370 | ---- | C] () -- C:\WINDOWS\phoenix.rar

[2011-08-19 15:37:18 | 000,182,617 | ---- | C] () -- C:\WINDOWS\ufa.rar

[2011-08-19 15:37:17 | 001,075,284 | ---- | C] () -- C:\WINDOWS\rpcminer.rar

[2011-08-19 13:42:27 | 004,636,907 | ---- | C] () -- C:\WINDOWS\geoiplist

[2011-08-19 13:42:26 | 000,904,792 | ---- | C] () -- C:\WINDOWS\geoiplist.rar

[2011-08-19 13:42:26 | 000,246,272 | ---- | C] () -- C:\WINDOWS\unrar.exe

[2011-08-19 13:42:13 | 000,000,179 | ---- | C] () -- C:\WINDOWS\info1

[2011-08-19 13:41:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\loader2.exe_ok


:Reg

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]

"AlternateShell"="cmd.exe"


:Commands

[RESETHOSTS]

[emptytemp]

Kliknij wykonaj skrypt, po czym zresetuj komputer i wykonaj nowy log ;]

Mi12 · 23 Sierpień 2011 20:36

nowy log ? czyli ? (wiem jestem ciemny)

drobok · 23 Sierpień 2011 20:37

Wykonałeś skrypt ? Po prostu zrób to co zrobiłeś by utworzyć logi które masz w pierwszym poście ;]

Mi12 · 23 Sierpień 2011 21:19

wykonałem

drobok · 23 Sierpień 2011 21:22

W otl kliknij skan, wklej powstałe logi na wklej.org i daj link na forum.

Mi12 · 23 Sierpień 2011 21:31

OTL; http://wklej.org/id/583317/

problem w tym że nie ma Extras

drobok · 24 Sierpień 2011 08:10

W opcje skanowania wklej:

O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found

O3 - HKLM\..\Toolbar: (Free Lunch Design Toolbar) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - File not found

O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - File not found

O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.

O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found

File not found -- C:\Documents and Settings\Właściciel\Pulpit\Pidżama Porno

File not found -- C:\Documents and Settings\Właściciel\Pulpit\Letni, Chamski Podryw -

[2011-08-20 12:20:11 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hîsts

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\winhlp32.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\wiaservc.log:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\xpsp2res.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\xpsp1res.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wupdmgr.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wuauserv.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wshtcpip.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wscsvc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wscntfy.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ws2help.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ws2_32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wmi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wlnotify.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wldap32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\winspool.drv:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\winscard.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\winrnr.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\winmm.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\winmine.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\winlogon.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\win32spl.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wdmaud.drv:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\w32time.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\vga.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\vfwwdm32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\version.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\vdmdbg.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\userinit.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\userenv.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\user.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\usbmon.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\upnp.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\uniplat.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\unimdm.tsp:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ulib.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\trkwks.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\tourstart.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\themeui.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\termsrv.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\tcpmon.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\tapi32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sysmon.ocx:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\svchost.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\stobject.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sti_ci.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\stdole32.tlb:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\stdole2.tlb:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ssdpsrv.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ssdpapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\srsvc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\srclient.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\spider.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sol.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sndvol32.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sndrec32.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\smss.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\shimeng.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\shgina.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\shdoclc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sfcfiles.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sfc_os.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sfc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sens.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\seclogon.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\schedsvc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\scesrv.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\scecli.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\samsrv.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\samlib.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\rundll32.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\rtutils.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\rsaenh.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\regapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\rastapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\rasppp.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\rasman.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\rasdlg.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\rasapi32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\pstorsvc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\psbase.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\psapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\profmap.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\pjlmon.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\olethk32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\oleacc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\odbcint.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\odbcad32.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\odbc32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ntvdm.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ntshrui.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ntlsapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ntdsapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\NSSearch.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\notepad.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\netlogon.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ndptsp.tsp:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\nddeapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ncobjapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mydocs.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mycomput.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msxml3r.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msvfw32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msvcr71.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msvcp71.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msvcirt.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mstsc.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mstlsapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mstask.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msprivs.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mspatcha.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\MSIMTF.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mshearts.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msh263.drv:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msgina.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msacm32.drv:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msacm32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mprapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mpr.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\moricons.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\midimap.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\mfc42.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\lz32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\lsass.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\logonui.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\lmhsvc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\kmddsp.tsp:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\jspl.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ipsink.ax:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ipsecsvc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ipnathlp.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ipconf.tsp:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\input.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\inetpp.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\inetcfg.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\imapi.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ImagXpr7.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ImagX7.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\imagehlp.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\icaapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\hnetwiz.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\hnetcfg.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\hidphone.tsp:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\h323.tsp:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\freecell.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\FNTCACHE.DAT:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\filemgmt.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\eventlog.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ersvc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\els.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\duser.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\dssenh.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\dsound.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\usbccgp.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\swmidi.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\StreamIP.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\SLIP.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\NdisIP.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\MSTEE.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\mssmbios.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\MSPQM.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\MSPCLOCK.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\MSKSSRV.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\intelppm.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\Hdaudbus.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\DMusic.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\system32\DRIVERS\disk.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\BrScnUsb.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\system32\DRIVERS\ACPI.sys:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\dispex.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\dfrgres.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ddrawex.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ddraw.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\dciman32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ctfmon.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\csrss.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\cscui.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\cryptsvc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\cryptdll.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\credui.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\comres.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\compatUI.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\comdlg32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\cnbjmon.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\clusapi.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\cleanmgr.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\clb.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\charmap.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\certcli.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\calc.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\BrWiaNCp.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\BRWEBUP.EXE:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\BrWebIns.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\browser.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\browselc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\brinsstr.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\bridf06a.dat:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\batmeter.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\basesrv.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\avicap32.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\audiosrv.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\alg.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\adsldpc.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\actxprxy.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\activeds.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\aclui.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\accwiz.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\Ctregrun.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\brunin03.dll:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Program Files\Uninstall_CDS.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Program Files\Common Files\LightScribe\LSSrvc.exe:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\Właściciel\Moje dokumenty\desktop.ini:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\Właściciel\Menu Start\Programy\Pomoc zdalna.lnk:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\Właściciel\Menu Start\Programy\Outlook Express.lnk:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\Właściciel\Menu Start\Programy\desktop.ini:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\Właściciel\Menu Start\Programy\Autostart\desktop.ini:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\Właściciel\Dane aplikacji\desktop.ini:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Pulpit\Creative Photo Calendar.lnk:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Menu Start\Programy\Windows Messenger.lnk:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Menu Start\Programy\desktop.ini:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\desktop.ini:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Dokumenty\desktop.ini:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\wmsetup.log:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\wmprfPLK.prx:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\twain_32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\zipfldr.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\xpob2res.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wzcsapi.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wzcdlg.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wshpl.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wshnetbs.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wshext.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wpabaln.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wowexec.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wow32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wmploc.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\winoldap.mod:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\winipsec.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wiashext.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wiadss.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wiaacmgr.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wfwnet.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\webfldrs.msi:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\watchdog.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\vssvc.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\vssapi.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\vidcap.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\vga64k.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\vga256.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\vga.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\Vb40032.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\utildll.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ups.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\unicode.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\TwnLib4.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\TwnLib20.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\tssoft32.acm:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\tsappcmp.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\timer.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\taskmgr.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\tabctl32.ocx:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\system.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\streamci.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\storprop.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\spoolss.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sound.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sorttbls.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sortkey.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\snmpapi.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\smlogsvc.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sl_anet.acm:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\shscrap.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\shmgrate.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\shimgvw.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\shell.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sessmgr.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sdhcinst.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\scrrun.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\scrobj.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sclgntfy.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\scardsvr.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\runonce.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\rsvp.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\route.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\riched32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\resutils.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\redir.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\rcimlby.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\racpldlg.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\qedit.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\progman.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\printui.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ppremove.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\pport_res.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\PDRVINST.DLL:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\opengl32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\olesvr32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\olepro32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\oleaccrc.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\nvnt4cpl.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\nvmccsrs.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\nvhwvid.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\nvexpbar.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\nvdspsch.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ntvdmd.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ntprint.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ntmarta.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ntlanman.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ntio.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ntdos.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\netui1.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\netui0.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\netstat.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\netsetup.cpl:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\netrap.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\netmsg.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\netevent.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\netdde.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msidle.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msh261.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msgsm32.acm:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msg723.acm:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msg711.acm:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msdtc.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msdmo.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\Mscomct2.ocx:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mscdexnt.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mscat32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msadp32.acm:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mouse.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mobsync.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mnmsrvc.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mmsystem.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mmsys.cpl:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mmdrv.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mmcbase.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mlang.dat:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mfcsubs.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\MFC71.DLL:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mfc42loc.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mdminst.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mciwave.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mapi32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\LoopyMusic.wav:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\locator.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\locale.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\licdll.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ksxbar.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\kswdmcap.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\kstvtune.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\krnl386.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\keyboard.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\keyboard.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\kbdus.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\kbdpl1.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\kbdpl.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\kb16.com:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\irprops.cpl:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ir50_32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ir41_32.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ir32_32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ipconfig.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\inetmib1.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ImagXRA7.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ImagXR7.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\imaadp32.acm:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\icmp.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\icfgnt5.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\iccvid.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\iac25_32.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\himem.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\hid.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\hal.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\grpconv.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\glu32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\geo.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\gdi.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\framebuf.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\firewall.cpl:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\FILTER.AX:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ega.cpi:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dxdiagn.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drwtsn32.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drprov.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\WSTCODEC.SYS:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\wmilib.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\wanarp.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\videoprt.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\vga.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usbuhci.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usbstor.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usbprint.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usbport.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usbehci.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\termdd.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\tdi.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\sysaudio.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\swenum.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\system32\DRIVERS\sr.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\sfloppy.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\serial.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\serenum.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\redbook.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\rdpcdd.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\raspti.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\raspptp.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\raspppoe.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\rasl2tp.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\rasacd.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ptilink.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\psched.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\system32\DRIVERS\pciide.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\system32\DRIVERS\pci.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\parvdm.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\parport.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\nwlnkfwd.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\nwlnkflt.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\NVXBAR.SYS:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\NVCAP.SYS:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\null.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\npfs.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\netbt.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\netbios.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ndproxy.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ndiswan.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ndisuio.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ndistapi.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\NABTSFEC.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\msgpc.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\msfs.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\mouhid.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\mouclass.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\mnmdd.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\kbdclass.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\system32\DRIVERS\isapnp.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\irenum.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ipsec.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ipinip.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ipfltdrv.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ip6fw.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\imapi.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\i8042prt.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\hidusb.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\hidparse.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\hidclass.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\system32\DRIVERS\ftdisk.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\fs_rec.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\flpydisk.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\fips.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\fdc.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\dxgthk.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\dxg.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\dxapi.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\drmkaud.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\dmload.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\dmio.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\dmboot.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\cdrom.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\cdfs.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\cdaudio.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\CCDECODE.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\bridge.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\beep.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\audstub.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\atmarpc.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\system32\DRIVERS\atapi.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\asyncmac.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dpcdll.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dosx.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dmusic.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dmadmin.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllhost.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wstcodec.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vidcap.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vfwwdm32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbprint.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbccgp.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\streamip.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\slip.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ndisip.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nabtsfec.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\mstee.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ksxbar.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\kswdmcap.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\kstvtune.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ipsink.ax:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ccdecode.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\brpinfo.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\browsewm.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\browser.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\browselc.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\bridge.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dinput.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\devmgr.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\devenum.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\desk.cpl:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ddeml.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dbghelp.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\davclnt.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\d3d9.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\d3d8thk.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\d3d8.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ctype.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ctl3dv2.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ctl3d32.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\cryptnet.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\cryptext.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\country.sys:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\commdlg.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\command.com:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\comm.drv:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\comctl32.ocx:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\comcat.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\cmd.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\clipsrv.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\cisvc.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_28591.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1253.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1252.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1251.nls:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\BuzzingBee.wav:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\bthprops.cpl:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\bthci.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\BrWia06a.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\BrUsi06a.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\browsewm.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\bootvid.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\batt.dll:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\AUTOEXEC.NT:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\autochk.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\audiopid.vxd:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\arp.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\appwiz.cpl:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\$winnt$.inf:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\VER.DLL:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\TIMER.DRV:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\MMSYSTEM.DLL:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\LZEXPAND.DLL:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\setupact.log:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\setup.log:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\SchedLgU.Txt:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\regedit.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\maxlink.ini:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\DPINST.LOG:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\CVRPAGE.BMP:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\BRWMARK.INI:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\BRPP2KA.INI:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\bootstat.dat:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\_default.pif:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\Documents and Settings\Właściciel\ntuser.ini:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\Documents and Settings\All Users\Pulpit\SightSpeed.lnk:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\Documents and Settings\All Users\Pulpit\Creative Product Registration.lnk:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\Documents and Settings\All Users\Pulpit\Creative Photo Manager.lnk:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\Brxpinst.log:KAVICHS

@Alternate Data Stream - 228 bytes -> C:\WINDOWS\WindowsUpdate.log:KAVICHS

@Alternate Data Stream - 164 bytes -> C:\WINDOWS\System32\wpa.dbl:KAVICHS

@Alternate Data Stream - 164 bytes -> C:\WINDOWS\System32\wpa.bak:KAVICHS

@Alternate Data Stream - 132 bytes -> C:\WINDOWS\System32\wtsapi32.dll:KAVICHS

@Alternate Data Stream - 132 bytes -> C:\WINDOWS\System32\shfolder.dll:KAVICHS

@Alternate Data Stream - 132 bytes -> C:\WINDOWS\System32\setupapi.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\wzcsvc.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\wsock32.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\winsta.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\uxtheme.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\syssetup.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\sti.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\sensapi.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\regsvr32.exe:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\rcbdyctl.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\powrprof.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\newdev.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\netshell.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\netcfgx.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\msvcrt.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\msvcp60.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\msutb.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\msimg32.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\mlang.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\ksuser.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\imm32.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\cscdll.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\cryptui.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\crypt32.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\cfgmgr32.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\cabinet.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\Brnsplg.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\BrNetSti.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\BrMuSNMP.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\apphelp.dll:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\WINDOWS\setupapi.log.0.old:KAVICHS

@Alternate Data Stream - 100 bytes -> C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe:KAVICHS


:Reg

[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]

"AlternateShell"="cmd.exe"


:Commands

[RESETHOSTS]

[emptytemp]

Później wykonaj skrypt, zresetuj komputer. Po czym daj kolejny log korzystając z opcji skan.

Mi12 · 24 Sierpień 2011 08:36

http://wklej.org/id/583492/

drobok · 24 Sierpień 2011 08:46

Wklej w opcje skanowania:

:OTL

SRV - File not found [Auto | Stopped] -- -- (zaziewsx)

SRV - File not found [Auto | Stopped] -- -- (ydgty)

SRV - File not found [Auto | Stopped] -- -- (wrfjpi)

SRV - File not found [Auto | Stopped] -- -- (sbzzvh)

SRV - File not found [Auto | Stopped] -- -- (qoyem)

SRV - File not found [Auto | Stopped] -- -- (ogsqudp)

SRV - File not found [Auto | Stopped] -- -- (ocszj)

SRV - File not found [Auto | Stopped] -- -- (nzesk)

SRV - File not found [Auto | Stopped] -- -- (mqpaisg)

SRV - File not found [Auto | Stopped] -- -- (mdsqalx)

SRV - File not found [Auto | Stopped] -- -- (iflkuifs)

SRV - File not found [Auto | Stopped] -- -- (fqfyy)

SRV - File not found [Auto | Stopped] -- -- (doodsndjw)

SRV - File not found [Auto | Stopped] -- -- (dcoleia)

SRV - File not found [Auto | Stopped] -- -- (ahkhcla)

IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - File not found

O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - File not found

O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - File not found

O2 - BHO: (Free Lunch Design Toolbar) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - File not found

O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - File not found

O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found

O3 - HKLM\..\Toolbar: (Free Lunch Design Toolbar) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - File not found

O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - File not found

O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found

[2011-08-20 12:20:11 | 000,000,734 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hîsts

Powinno być ok. Wykonaj skrypt, zresetuj komputer, użyj opcji sprzątaj. Zainstaluj sp3, przeczyść ccleanerem.

Mi12 · 24 Sierpień 2011 09:08

Jest Ok Dziękuję za pomoc.