GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-06-19 02:02:00
Windows 6.1.7600  Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 TOSHIBA_MK1235GSL rev.PV010A
Running: x0vy946w.exe; Driver: C:\Users\Maria\AppData\Local\Temp\kwddypob.sys


---- System - GMER 1.0.15 ----

SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwAdjustPrivilegesToken [0x87D8A28A]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwAlpcConnectPort [0x87DA4342]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwAlpcCreatePort [0x87DA4678]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwAlpcSendWaitReceivePort [0x87DA49EE]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwClose [0x87D8AD04]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwConnectPort [0x87DA402A]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreateEvent [0x87D8B276]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreateMutant [0x87D8B164]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreatePort [0x87DA44E8]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreateSection [0x87D8A046]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreateSemaphore [0x87D8B38E]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreateThread [0x87D8A8BA]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreateThreadEx [0x87D8AA2A]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreateUserProcess [0x87D8B4A6]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwCreateWaitablePort [0x87DA45B0]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwDebugActiveProcess [0x87D8B74E]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwDeviceIoControlFile [0x87D8AD46]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwDuplicateObject [0x87D8C750]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwLoadDriver [0x87D8B840]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwMapViewOfSection [0x87D8BDAC]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwNotifyChangeKey [0x87DA2840]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwOpenEvent [0x87D8B308]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwOpenMutant [0x87D8B1F0]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwOpenProcess [0x87D8A4C4]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwOpenSection [0x87D8BB90]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwOpenSemaphore [0x87D8B420]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwOpenThread [0x87D8A3B8]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwQueryDirectoryObject [0x87D8B55C]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwQueryObject [0x87DA2A38]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwQuerySection [0x87D8C0D2]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwQueueApcThread [0x87D8B9E0]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwReplyPort [0x87DA47DC]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwReplyWaitReceivePort [0x87DA472A]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwRequestWaitReplyPort [0x87DA4848]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwResumeThread [0x87D8C5F2]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwSecureConnectPort [0x87DA41B2]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwSetContextThread [0x87D8ABA4]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwSetInformationToken [0x87D8B5FA]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwSetSystemInformation [0x87D8C222]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwSuspendProcess [0x87D8C316]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwSuspendThread [0x87D8C450]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwSystemDebugControl [0x87D8B670]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwTerminateProcess [0x87D8A664]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwTerminateThread [0x87D8A5BA]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwUnmapViewOfSection [0x87D8BF8A]
SSDT            \SystemRoot\system32\DRIVERS\klif.sys (Klif Mini-Filter [fre_wlh_x86]/Kaspersky Lab)                                                        ZwWriteVirtualMemory [0x87D8A750]

---- Kernel code sections - GMER 1.0.15 ----

.text           ntkrnlpa.exe!ZwRollbackTransaction + 13E9                                                                                                   8245A599 1 Byte  [06]
.text           ntkrnlpa.exe!KiDispatchInterrupt + 5A2                                                                                                      8247F092 19 Bytes  [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text           ntkrnlpa.exe!RtlSidHashLookup + 220                                                                                                         82486870 4 Bytes  [8A, A2, D8, 87]
.text           ntkrnlpa.exe!RtlSidHashLookup + 248                                                                                                         82486898 8 Bytes  [42, 43, DA, 87, 78, 46, DA, ...] {INC EDX; INC EBX; FIADD DWORD [EDI-0x7825b988]}
.text           ntkrnlpa.exe!RtlSidHashLookup + 28C                                                                                                         824868DC 4 Bytes  [EE, 49, DA, 87]
.text           ntkrnlpa.exe!RtlSidHashLookup + 2B8                                                                                                         82486908 4 Bytes  [04, AD, D8, 87]
.text           ntkrnlpa.exe!RtlSidHashLookup + 2DC                                                                                                         8248692C 4 Bytes  [2A, 40, DA, 87]
.text           ...                                                                                                                                         

---- User IAT/EAT - GMER 1.0.15 ----

IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipAlloc]                                                             [740524FA] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdiplusStartup]                                                        [7403565B] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown]                                                       [74035719] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipFree]                                                              [74052575] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics]                                                    [740485D9] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage]                                                      [74044D8D] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth]                                                     [74045134] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight]                                                    [74045209] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromHBITMAP]                                           [74046736] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC]                                                     [74048330] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode]                                                [7404887F] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode]                                              [740490E0] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI]                                                    [7404E283] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT             C:\windows\Explorer.EXE[1476] @ C:\windows\Explorer.EXE [gdiplus.dll!GdipCloneImage]                                                        [74044CBF] C:\windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice  \Driver\volmgr \Device\HarddiskVolume12                                                                                                     fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\kbdclass \Device\KeyboardClass0                                                                                                     Wdf01000.sys (Aparat wykonawczy struktury sterowników trybu jądra/Microsoft Corporation)
AttachedDevice  \Driver\kbdclass \Device\KeyboardClass1                                                                                                     Wdf01000.sys (Aparat wykonawczy struktury sterowników trybu jądra/Microsoft Corporation)
AttachedDevice  \Driver\tdx \Device\Tcp                                                                                                                     kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume1                                                                                                      fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume2                                                                                                      fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume3                                                                                                      fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume8                                                                                                      fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume9                                                                                                      fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device          \Driver\ACPI_HAL \Device\00000148                                                                                                           halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

AttachedDevice  \Driver\tdx \Device\Udp                                                                                                                     kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice  \Driver\tdx \Device\RawIp                                                                                                                   kl1.sys (Kaspersky Unified Driver/Kaspersky Lab ZAO)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume10                                                                                                     fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \Driver\volmgr \Device\HarddiskVolume11                                                                                                     fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice  \FileSystem\fastfat \Fat                                                                                                                    fltmgr.sys (Menedżer filtrów systemu plików firmy Microsoft/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg             HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{6B683E0E-1505-488C-8053-3C1301924246}\Linkage@Bind    ??????????0?????????????Po??czenie lokalne* 110?????????????????????????? ??????????????????????????????????????11???????????o????cSAT??Typ?0????????????????????????????????t??????????????38??Net?????????????????????????????????????????? ?????????????????????1????????????&?????????????????????????????????????????m?????????????????q???????????????? ?????????????????????1????????????????????? ???????????????????n?1????????????????????? ?????????????????????1????????????&???????????????????????? ?????????????????????1????????????????????????????? ?????????????????????1????????????????????????????? ???????? ????????????1????????????&???????????????????????????????????????????? ?????????????????????1????????????????????????????? ?????????????????????1????????????????????????????????????????????????????????????? ?????????????????????1????????????&???????????????????????? ?????????????????????1????????????????????????????? ?????????????????????1????????????????????????????????????????????????????????????\\?\STORAGE
Reg             HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{6B683E0E-1505-488C-8053-3C1301924246}\Linkage@Route   ????e.??????????? ????????????????????4??????_??????????*6to4mp?????nettun.inf:Microsoft.NTx86:6to4mp.ndi:6.1.7600.16385:*6to4mp??????*?????????????6to4mp.ndi???????????????????????????????????????????????????????????????f??????????????????????????????????????6to4mp.ndi?{F9???????????3??9F??Karta Microsoft 6to4 #236???Microsoft????????????3??14??Karta Microsoft 6to4????????????????????????6.1.7600.16385?470??@nettun.inf,%msft%;Microsoft????tunnel?iec???????????D??ic??Microsoft???? ?????????????????????-??"?????l???????????????????????????????tunnel??????nettun.inf??????v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\program files\videolan\vlc\vlc.exe|Name=VLC media player|Desc=VLC media player|Defer=User|?"?"??????????????????????nettun.inf??????????????????????????????? ??????????????????????????????????????????{4d36e972-e325-11ce-bfc1-08002be10318}??????? ??????????????????????????*6to4mp??????????????R????????m?MS???????????????e??????4m??????????????? ?????????????????????????????
Reg             HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{6B683E0E-1505-488C-8053-3C1301924246}\Linkage@Export  ?????&????.Po??czenie lokalne* 115??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????2Karta Microsoft 6to4 #101?????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg             HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\00225fc180da                                                                 
Reg             HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\701a043a2a12                                                                 
Reg             HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\701a04ba91ac                                                                 
Reg             HKLM\SYSTEM\CurrentControlSet\services\LanmanServer\Linkage@Bind                                                                            ?????)????z?????????????????????? ???m??????????????????????????????????????????????????? ????????????????????????????*????? ???????0???????????????????????????? ????????????????????????????*????? ???????1????????????????????????????????????????????s??? ????????????????????????????*????? ???????2????????????t??????????ty??? ????????????????????????????*????? ???????3????????????6??????????t4???????????D??????????t0??????????? ????????????????????????????*????? ???????4???????????????????????????? ????????????????????????????*????? ???????5????????????0??????????t&??? ????????????????????????????*????? ???????6???????????????????????????? ????????????????????????????*?????????????????? ????????????????????????????*????? ???????7???? ????????????????????????????*????? ???????8???????????? ??????????t???? ????????????????????????????*??? ??????????????????????4??????????ta??? ????????????????????????????*??????????????????????????C??D3??? ?????????????????????1????????????&?????????????????????????????????????I
Reg             HKLM\SYSTEM\CurrentControlSet\services\LanmanServer\Linkage@Route                                                                           ????BA??????????@nettun.inf,%msft%;Microsoft????? ???k???????????????????????????g???e???e??????????? ??#????????????-???U?f???g???g?g???????????????????3??????A-????N???????????D253????N??????|???????}????N??????B?????????????????????????????????????????????g???g???g?g???? ????????Z???g???g????????????Karta Microsoft 6to4 #42?e????2?????????????16???????????????????????e??????????????????????????????????????????????????? ??$???????????x??????Z???g???g????????????????????*6to4mp?ea????2?????????????16??Net?8???*6to4mp???????????????????????????????????????????????N?????????????????{3B60DDE2-E551-4DEC-805B-BF44AB44820C}???????????????????e???????????????????s??? ???????d?????iec????????????????????????????? ? ?5??????????????????????????????.?????????C2??????? ?????????????????????1????????????????????? ???????????????????g?1????????????????????? ?????????????????????1????????????????????????????????????????????????????????????????????? ???????????????????g?1????????????????????? ?????????????????????1???????
Reg             HKLM\SYSTEM\CurrentControlSet\services\LanmanServer\Linkage@Export                                                                          ????????int?????? ???????}???????????e????????"???;?????????vi????X??????&???t????N??????&?????}?&???????????&???&??Net??&????????????????N??????c???????????????????y??????????????????????l???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{4B350588-0C56-461B-922C-9E86AA4AE67E}] DATAGRAM 253????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????? ??????????nettun.inf:Microsoft.NTx86:6to4mp.ndi:6.1.7600.16385:*6to4mp????6.1.7600.16385???}??Root\*6TO4MP\0007???? ???????o???????????j?,????????8?????????????8???????????h?????system32\DRIVERS\WinUsb.sys??????????i?????????e????? ???????6?????4-A??? ???????????????????a?1????????????????????? ???????8??????n2??6.1.7600.16805?ce\??? ?????????????????????1????????????????????? ?????????????
Reg             HKLM\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Linkage@Bind                                                                       ?????e???????????????????l???????????????u?????s? ??????????????????????? ????????????????????????????N??????4????DFB4??????? ?????????????????????-??"???&??????????????4??{93f44e4d-64e5-5807-92b2-c528d62632f6}?etB???????????????????? ?????????0????????????0????c?????Zapewnia aktualizacj? Twojego oprogramowania Google. Je?li ta us?uga zostanie wy??czona lub zatrzymana, oprogramowanie Google nie b?dzie aktualizowane, co oznacza, ?e zauwa?one luki w zabezpieczeniach nie mog? by? naprawiane, a funkcje mog? nie dzia?a?. Ta us?uga odinstalowuje si? samoczynnie, gdy nie ma ?adnego oprogramowania Google, kt?re z niej korzysta.?di????t??????i????h{CA??Atheros Extensible Wireless LAN device driver???Typ?38???????????(??????? ???????|???????????f?:????????????&???????????????????????? ???????U?????????????????????????e<????t?t?t?t?t?t?m???????????????????0???-???????????i?j?j?j?j?h?j???k??De??????????????????@usbstor.inf,%genericbulkonly.devicedesc%;Urz?dzenie pami?ci masowej USB?0????|????????g?????????????0??????pi?
Reg             HKLM\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Linkage@Route                                                                      ????c???????????? ?????????????????????1??????????????????????????????????????????????????????????X?{62dc1??? ?????????????????????1???????? ????????????????????T??????6_??????????? ?????????????????????1????????????????????? ?????????????????????1??????????????????????J??????????????????????????????????????????h???A??s-??Microsoft???? ???????i?????????????-??4?????????0???????????????????????????? ???????5?????-9B??????????????? ?????????????????????-??"????????????????????????-B9??USBSTOR\DiskKingstonDataTraveler_2.01.00?USBSTOR\DiskKingstonDataTraveler_2.0?USBSTOR\DiskKingston?USBSTOR\KingstonDataTraveler_2.01?KingstonDataTraveler_2.01?USBSTOR\GenDisk?GenDisk??????{4d36e967-e325-11ce-bfc1-08002be10318}\0004?HD??@disk.inf,%genmanufacturer%;(Standardowe stacje dysk?w)?????????????????????????????@disk.inf,%disk_devdesc%;Stacja dysk?w??????????xj???9???e??USBSTOR\Disk?USBSTOR\RAW????????????????os??????????????????????????????{50cb28f8-5c3d-517e-b5db-469ef723bca8}??????? ??????????????s???disk.inf:disk_devic
Reg             HKLM\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Linkage@Export                                                                     ????te????????????????>?????????????Klasa PRINTER USB Microsoft???????????????????????????????m??????????y??????????? ???????o???????????y??????????T????????R???????????|???????}??????????????????-4???????????F?????sB7???????l??? ??s????????d?????|???????|?????|???|??????????????v_mscdsc.inf_x86_neutral_ef3a0c30c03f0225?????????????????????m??????????????????h????2?????????????16??? ???f??????????????*6to4mp??B??? ???|?????????????????????|?????-??? ???????o???????????????????????????????i??volsnap.inf:MSFT.NTx86:volume_snapshot_install:6.1.7600.16385:storage\volumesnapshot? ??Rodzajowa kopia w tle wolumin?w?_T??? ???????|?????|???????1?????????????????????????????4??????? ???????}???????????e????????"??? ?????????? ??? ???????}???????????d????????"???!?????????? ??Karta Microsoft 6to4 #10?v????????????@??}??????????? ???????o?????|?????|????????$???????????????J??|?????????e????@%SystemRoot%\system32\dwm.exe,-2000?????????|??????p????????|????????h?????%SystemRoot%\System32\svchost.exe -k LocalSystemNetwork
Reg             HKLM\SYSTEM\CurrentControlSet\services\NetBIOS\Linkage@Bind                                                                                 ?????i??{4249D769-D695-4F27-875C-CE391712DB64}???????????????????????????e??Basic_Install?????????????????????m??z???????????????????????????????}???|???????????????n??nettun.inf??52??? ???????|???????????h?:??????????v?&????????????????????D??? ???????}???????????i????????"?????????????A3??????????????????l???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{1CD2E707-6C6E-4C8F-A67B-D1CEF509E42A}] DATAGRAM 203????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????32??MSAFD NetBIOS [\Device\NetBT_Tcpip6_{57D038F6-22CA-40EB-9EFD-B2B5FFC718E6}] DATAGRAM 177????????????????????????????????????????????l??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg             HKLM\SYSTEM\CurrentControlSet\services\NetBIOS\Linkage@Route                                                                                ????????????????? ?????????????????????1????????????????????? ?????????????????????1????????????????????????????????????????????????????????????? ?????????????????????1????????????????????? ?????????????????????1????????????????????? l??????a?????icr??Microsoft???????????? ?????????????????????1?????????????????????????????B??28??????????????? ???????|???????????i?:????????????&????????????????????i???????????M?????eft??????????????????11??????????????????? ?????????????????????1????????????&????????????????????8??????????????????? ?????????????????????1????????????????????? ?????????????????????1????????????????????? ??????????????????????????????????????????Typ?????? ?????????????????????1????????????????????6.1.7600.16385??l???? ?????????????????????1????????*????????????????????B????c\De???????????T???t???????????-??39??????????????? ?????????????????????1????????????????????\Device\{037938E9-5685-4B48-936F-A221705865CF}??????? ?????????????????????1????????????????????? ?????????????????????1???????????
Reg             HKLM\SYSTEM\CurrentControlSet\services\NetBIOS\Linkage@Export                                                                               ????-0?????????????????e?????????y???}??????????volsnap?????????iv????????????????(?????????????????????????? ??????????????????????? ???????????????t???????.??????????????????????????????????l???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{1002CEFB-A426-418C-9463-7D052354BA81}] DATAGRAM 207????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{08BF121A-01EA-4E04-9095-99D948A492BD}] DATAGRAM 174????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{511CF6EE-68FF-4037-915E-0F7268D419AA}] SEQPACKET 171???? ???????}???????????i????????"?????????????MS??MSAFD NetBIOS [\Device\NetBT_Tcpip6_{ADC4D16B-2394-456C-9DFA-10858981C59E}] DATAGRAM 170????? ???????}???????????i????????"?????????????????MSAFD NetBIOS [\Device\NetB
Reg             HKLM\SYSTEM\CurrentControlSet\services\NetBT\Linkage@Bind                                                                                   ????????usbstor.inf:Generic.NTx86:USBSTOR_BULK:6.1.7600.16778:usb\class_08&subclass_02&prot_50??????????????????????????????????Urz?dzenie pami?ci masowej USB??B???????????????D7??? ??????????????????????????????????????????????????????????????????????????? ?????????????????????1????????????????????? ?????????????????????1????????>?????????????>??????.??76??Urz?dzenie pami?ci masowej USB??????? ?????????????????????1????????????????????????????????????????"NetBT" "Tcpip" "{E1ED40AD-4785-4C43-9B00-4E266E5EAA25}"?"NetBT" "Tcpip" "{82BCEE91-B8F9-45AC-BADE-8E29B539B891}"?"NetBT" "Tcpip" "{A12590EE-FBA3-4863-8FB4-A298FFB2DC28}"?"NetBT" "Tcpip6" "{35B2407B-11CF-4797-9F90-96BFC201341D}"?"NetBT" "Tcpip6" "{DF33E9E7-9725-4F5F-8839-73CB6C9E461A}"?"NetBT" "Tcpip6" "{FCE54F10-D349-48E2-9918-CBDDA475C0B4}"?"NetBT" "Tcpip6" "{B84A2DB3-A06B-4237-ADBF-31B3F57F8E97}"?"NetBT" "Tcpip6" "{243E7D5C-AC7A-49D1-9275-1371BD329551}"?"NetBT" "Tcpip6" "{F539B4B4-43F3-4266-BA55-023DED509A52}"?"NetBT" "Tcpip6" "{96FDA4CE-AB24-4F41-8D8B-A
Reg             HKLM\SYSTEM\CurrentControlSet\services\NetBT\Linkage@Route                                                                                  ????????????????????? ?????????????????????1????????????????????????????? ???????:?????????????:????????????&????????????????????8??? ???????A?????8F-???????????????"?????e" ??? ?????????????????????1?????????????????????????????????????e??????????? ?????????????????????1????????????????????? ?????????????????????1?????????????????????????????????????????????d??5_??*6to4mp??I??? ?????????????????????1??????????????????????.Po??czenie lokalne* 173??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????2Karta Microsoft 6to4 #148?????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg             HKLM\SYSTEM\CurrentControlSet\services\NetBT\Linkage@Export                                                                                 ?????????????????????z???????e??????????????text?????????????????????????}???&??????? P??????6?????B07???????????y??????????????11????????`??????????????????y?????????????z?????z??????????????????{126BB24B-85F1-4D9F-A205-7C012ECAF8E4}??B0??\Device\{126BB24B-85F1-4D9F-A205-7C012ECAF8E4}??7F??? ???????????????????y??????????>??????i????????9-??Kingston DataTraveler G3 USB Device?????6.1.7600.16385???????????????a??????? ???????????????????y??????????"??? ??????ns???? ???????D?????525??? "??????2?????-43??ndis5_ip6_tunnel?F??? ???????????????????????????????????????F????????????????c???????N??????e???????e??????????? ???????????????????z??????????????????????????Adres sieciowy??????? ???????????????????z???????????????????????????z????????c??????????????m???????????????????????????????????????????????????????????????????????????????4??????????????? ???????U?????????????,??N?????$?T?<???????????????????????????????43??? ?????????????????????,????????????'????????????????????}?????????????????????????????????????
Reg             HKLM\SYSTEM\CurrentControlSet\services\Smb\Linkage@Bind                                                                                     ??????????????????????????????$?????????????????ROOT\*6TO4MP\0139????????????????????????????????1??????????? ????????????(?????????????????>??????ied??? ??????????????????????????????????????????11??????? ??????????????????????????????????????????????Typ???????????????????c?????Adres sieciowy??? ???? ?????????????text????? ???????????????????????????????????????????????????????????????????????????t??????????????????int?? ??????????????????tunnel????????>?????????????Sterownik karty Microsoft 6to4??????? ??????????????????????????????"??? ???????????? ??????????????????tunnel??????? "?????????????ne??ndis5_ip6_tunnel?N???????????.??i:??6to4mp.ndi??????????????*6to4mp??????????????l??????????????????@usbstor.inf,%genericbulkonly.devicedesc%;Urz?dzenie pami?ci masowej USB????? ?????????????????????1????????????&???????????????????????? ?????????????????????1????????"?????????????????????????????"?????????????SuperMulti RW   ? ??? l?????????????????? ?????????????????????,????????z?????#-8E??????????????? ?????
Reg             HKLM\SYSTEM\CurrentControlSet\services\Smb\Linkage@Route                                                                                    ????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{65AB0B02-37E4-4350-BCBF-89EE1DFD959A}] DATAGRAM 92?????? ????????????????????????????"?????????????8-???????????6????????m?????????????????????????????????? ???????}???????????m????????"?????????????E-??????????????????l???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{F6C8769C-ACEB-4D63-A30C-1E266CF0117B}] DATAGRAM 102????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{16F48A1E-8228-4314-B664-E41282F7C119}] SEQPACKET 91??????????????????????mft???????????????????????? ???????}???????????m????????"?????????????06??????????????????l??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg             HKLM\SYSTEM\CurrentControlSet\services\Smb\Linkage@Export                                                                                   ????????? ?????????????????????-??"?????l?????????????????????????????????????????????????????????:??????/?g?/??*6to4mp?????text?????????????????????????????????????????????e??????????tunnel??????????????????????????????????????????????GH???????????B??usb\class_08&subclass_06&prot_50????int?el???????????j??text????? ?????????????????????-??????????????????????s vo??????????????????????? ?????????????????????-?????????????????f??? ?????????????????????1??L????????? ??????57???????????????????????? ?????????????????????1????????????&????????????????????.??? ?????????????????????1????????????????????? ?????????????????????1????????z???????????????????????? ??????????????????????????????DC???????????B??? ?????????????????????1??L????????? ???????68??????????????{0??l???tunnel??z???Sterownik karty Microsoft 6to4?8????? ??????????????????????????????"??? ???????????tunnel??????? "?????????????????ndis5_ip6_tunnel????????????????????????????????????????????*6to4mp?????? ?????????????????????-??????????????????????s
Reg             HKLM\SYSTEM\CurrentControlSet\services\TCPIP6\Linkage@Bind                                                                                  ????????????tunnel???0??????????????????????? ???????????????????? ??????[??????@nettun.inf,%msft%;Microsoft????????????????????? ???????i?????b_T??*6to4mp??F??? ????????????????????????????$?N???????????{4d36e972-e325-11ce-bfc1-08002be10318}\0154??\??????????? ????????????????N?????????????????{B7F32156-B1F4-4D5A-A127-61C2A336E41A}???????????????????????????????????????s??? ???????A??????????????????????????????D7??????????????????? ?????????????????????1????????????&???????????????????????? ?????????????????????1??????*?0??? ????????????????????????????9??????????d4???????????w????????????0?????? ??o4??Po??czenie lokalne* 163?????????????????????????????? ???????????????????u??????7-????$??????C??????????ROOT\*6TO4MP\0140????????????????????????????????C??????????? ??????????????????????????????>??????i3A??????????? ???????????????????????????????????????B??????????? ???????????????????????????????????????????-???????????????????\????ce\S??Adres sieciowy?BA-???????????5???t??*6to4mp?????????????????????? ?
Reg             HKLM\SYSTEM\CurrentControlSet\services\TCPIP6\Linkage@Route                                                                                 ????FA??????70??? ?????????????????????1????????????&????????????????????t??? ???????????????????o?1??????*?0??? ?????????????????????$?????????????????ROOT\*6TO4MP\0198????????????????????????????????g????????????? ??0???????????????????c?????*6to4mp??t??????????????????l???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{4EEA5C5B-AE4C-4235-B098-2B3EBBF30E58}] SEQPACKET 73????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????EA??????????????????l???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{4EEA5C5B-AE4C-4235-B098-2B3EBBF30E58}] DATAGRAM 73????????????????????????????????????????????
Reg             HKLM\SYSTEM\CurrentControlSet\services\TCPIP6\Linkage@Export                                                                                ????Tc??? ?????????????????????-??"?????l????????????????????2??10????:??????e?gun????????????????????????????????0?????????????????????????? ?????????????????????1????????????????????? ?????????????????????1????????z???????????????????? ?????s????????????????????????????????????????????????? ?????????????????????1????????????&????????????????????8??? ???????A??????????tunnel??ol???????????l?n??????????????????>??????0???????????????????????????????????????????????????????????????????????????????D???????I????N??????c??????????????????????????????*6to4mp???????N???????????D?????? "??????????????????????????6?????????-?y???????????N????????m??a???a??????????????????? ???????????????????????????????????????P????????????????????????>?????????????Sterownik karty Microsoft 6to4??????? ??????????????? ??????????????????? ?????????????????????1????????????&????????????????????7??????????????????????? ?????????????????????1????????????????????text?&??? ?????????????????????1???????????????????????????????????????????
Reg             HKLM\SYSTEM\ControlSet002\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{6B683E0E-1505-488C-8053-3C1301924246}\Linkage@Bind        ???0????? ??????????????????????????1????????8??\SystemRoot\system32\DRIVERS\intelide.sys?????0??.?????????ein?????.????????????????????????????? ??????? ???????????.?5????????T????????????????7???.?.?.??? ???????,?????.???????-????????????????????? ???????.?????/???????-???????????? ???????????? ???????.?????????????-????????????????????? .??.??????????? ??ACPI\PNP0C0D?*PNP0C0D?????????N??.??????????????????`????????????????????6???6???????.?6?????.?.?.??\SystemRoot\system32\DRIVERS\iirsp.sys???.??Bluetooth AVRCP Profile??????e??\SystemRoot\system32\DRIVERS\vsmraid.sys?D??\SystemRoot\system32\DRIVERS\viaide.sys?????\SystemRoot\system32\DRIVERS\cmdide.sys?????\SystemRoot\system32\DRIVERS\stexstor.sys?????N??.???&????D??????.??\SystemRoot\system32\DRIVERS\aliide.sys?cy????T??.???m???????d??\SystemRoot\system32\DRIVERS\sisraid4.sys???\SystemRoot\system32\DRIVERS\SiSRaid2.sys???\SystemRoot\system32\DRIVERS\amdide.sys?????\SystemRoot\system32\DRIVERS\nfrd960.sys????\SystemRoot\system32\drivers\amdsata.sys????Nat
Reg             HKLM\SYSTEM\ControlSet002\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{6B683E0E-1505-488C-8053-3C1301924246}\Linkage@Route       ???y?????????????????????-?????s1D??LegacyDriver?3??srvnet????????????????????????????? ?,??????? ???????,?????????????,??????????????????????t?????? ???????0?????0???????,???????????????????????0?&??? ???????0?????0???????,????????????????D??????0????? ???????0??????????? ?,?????? ??????????0?????0????? ???????0?????0???????,?????????????????E?????0???0?????????????????????????0???0??????????????? ???????0???????????0?,?????? ??????????0??????????????????? ?????????????????????2?0??????????????????10862eeb????? ???????0???????????0?0????????H??????????l????? ???????????????????0?2?0??????????????1???88aca446????? ???0??????????????????????????? ???????????????????0?2?0?????????????G????90a7a57352??? ???0???0??????????? ???????????????????0?2?0??????????????????0583dabaac???????0???????n??????????????????????oem2.inf?0??? ??????????????????????D????????????????0???0???????0??????????????????????3des,rc4????? ?????????????0?????0?0??????????????????e???????????????? ???0?5?????0???0???????????0???????0???????
Reg             HKLM\SYSTEM\ControlSet002\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{6B683E0E-1505-488C-8053-3C1301924246}\Linkage@Export      ????????????????Net??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????B??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????N????8?8????????? ??????????????????????????????????????????? ???????????????????????????????????????????8?8??????????,Po??czenie lokalne* 72???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????0Karta Microsoft 6to4 #59??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg             HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\00225fc180da (not active ControlSet)                                             
Reg             HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\701a043a2a12 (not active ControlSet)                                             
Reg             HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\701a04ba91ac (not active ControlSet)                                             
Reg             HKLM\SYSTEM\ControlSet002\services\LanmanServer\Linkage@Bind                                                                                ???i?????????l??volsnap?8}?????i????? ???????i?????i???????1????????????????????? 6??i???????????4??? ???????i???????????f?1????????r????????????????o??????????? ?????sce???????????2?????sC2???????i???n???n???????????????i???1?????????????i????? ???????i?????i???????1????????????????????? ???????i???????????f?1??????????????????????????????????????????N??????B????D86}??? L?????????????????LegacyDriver?????????????????h???a???????????????????1?????i????? ???????i?????i???????1?????????????????????????`???????e???????????i???o??? ???????i???????????f?1?????????????????????????l???????????????????????????o?????i????? ???????i?????i???????1????????????????????? ???????i???????????f?1????????????????????{8ECC055D-047F-11D1-A537-0000F8753ED1}??s??????????i????? ???????i?????i???????1????????????????????? ???????i???????????f?1????????,???????????Virtual WiFi Filter Driver?ros????X??i???4???4???????????j?j?2?????i????? ???????i?????i???????1???????????????????????i???i???i???i???i???i???i???i???i???i???i????? ?????
Reg             HKLM\SYSTEM\ControlSet002\services\LanmanServer\Linkage@Route                                                                               ???????????k?????????????????????????????????e??volume_snapshot_install?????storage\volumesnapshot?x86???k?k?k??Microsoft????k?k?????k?????k???????k?????????k???0??????????????{71a27cdd-812a-11d0-bec7-08002be2092f}?702???k?k?e??????????????t???? ???????k?????????????-??????????????????????s?????? ???????k?????????????-?????????????????f??? ???????k?????k???????1??L????????? ??????????????k???k???k????????? ???????k?????k???????1????????????&???????????????????????? ???????k?????k???????1????????????????????? ???????k???????????g?1????????????????????{00000000-0000-0000-0000-000000000000}?F7C???l?l?????????? ??????????????????????????????g??m ???????????????????k?k?k??? ???????k?????k???????1?????????????????????????o???k??? ???????k???????????h?1????????????????????{71a27cdd-812a-11d0-bec7-08002be2092f}\0002?Tc??? ???????k?????k???????1???????????????????????k???k???k????????? ???????k???????????h?1????????????????????6.1.7600.16385?9-0??volume_install?9-2?????k????? ???????k?????k???????1????????????&??????
Reg             HKLM\SYSTEM\ControlSet002\services\LanmanServer\Linkage@Export                                                                              ?????????????l???c??????T_???????????????????????????????????j??? ???????8?????F6B??*6to4mp?????usbstor.inf?cp???????????????????????????????????????0?????e10??????????????????????????? ???????????????????????????????_??A0????????????????????m?????????????????????????text?6???????????????????????????????????????9??22??? ???????U?????????????,????????$?c?<???????????????????????????????D-???????????????????????????????????????t??? ?????????????????????,????????z?????#-45??@%SystemRoot%\system32\tcpipcfg.dll,-50004???4???????????n??????@machine.inf,%rdp_kbd.devicedesc%;Terminal Server Keyboard Driver???{00000000-0000-0000-FFFF-FFFFFFFFFFFF}??????@machine.inf,%swenum.devicedesc%;Plug and Play Software Device Enumerator???????????????????????????????????????????????????????????Net?????Net?????????????????????????????????d???nettun.inf?FE}???????????????????????????????????????????????????????????e??????????dT??????????????????????????r????}????????????0?????????????????? ?????????????????????1??????*?0??? ??????
Reg             HKLM\SYSTEM\ControlSet002\services\LanmanWorkstation\Linkage@Bind                                                                           ???k?????????????????????????????????e??volume_snapshot_install?????storage\volumesnapshot?x86???k?k?k??Microsoft????k?k?????k?????k???????k?????????k???0??????????????{71a27cdd-812a-11d0-bec7-08002be2092f}?702???k?k?e??????????????t???? ???????k?????????????-??????????????????????s?????? ???????k?????????????-?????????????????f??? ???????k?????k???????1??L????????? ??????????????k???k???k????????? ???????k?????k???????1????????????&???????????????????????? ???????k?????k???????1????????????????????? ???????k???????????g?1????????????????????{00000000-0000-0000-0000-000000000000}?F7C???l?l?????????? ??????????????????????????????g??m ???????????????????k?k?k??? ???????k?????k???????1?????????????????????????o???k??? ???????k???????????h?1????????????????????{71a27cdd-812a-11d0-bec7-08002be2092f}\0002?Tc??? ???????k?????k???????1???????????????????????k???k???k????????? ???????k???????????h?1????????????????????6.1.7600.16385?9-0??volume_install?9-2?????k????? ???????k?????k???????1????????????&??????????????
Reg             HKLM\SYSTEM\ControlSet002\services\LanmanWorkstation\Linkage@Route                                                                          ?????????????????????k???E??\D???k?krf?????k????? ???????k?????k?????h?-???????????? ???????D????k?k?k???l?l????t???? ???????k???????????h?-????????N???????????storage\volumesnapshot???????k?k???????k?&??{533c5b84-ec70-11d2-9505-00c04f79deaf}\0006?so???????l??????????? 0??k???.???????{????.??k???3??11???????k???5??BF???????????F???6???k?k?k???????k???????o??msonpui.dll??????j?k?????k?k?/???k?k????? ???????k?????k?????h?-?????????? ?????????????VolumeSnapshot?072??? ???????k???????????h?-????????N?????????????????????????????N??k??????????\s?????k?&??Rodzajowa kopia w tle wolumin?w?.d?????k????STORAGE\VolumeSnapshot??????????????????t????????Z??????s?????N??k??????????????? V??k??????????????{00000000-0000-0000-0000-000000000000}??iv????:??m????????h????????????????? 3???????l???????????????k???????????k?k????? ???????k???????????h?1????????????????????????????????????? ???????k?????k???????1???????????????????????k???k???k???k???k???k???k???k???k???k??S2????? ???????k???????????k?1???????????????????????k???
Reg             HKLM\SYSTEM\ControlSet002\services\LanmanWorkstation\Linkage@Export                                                                         ?????????????????$??????????? ???????f?????\???????-?????????????????????????/??????s????????Z???s??t???? ???????b???????????c?+????????*?[?&????????????????????????????????????d?????????????????l????? *??c??????????????EventLog-Application?????????c???????????d???????????????????c???????c???????????d???????????????????????c?c?c?c?c?c?c??????????????????? ???????b???????????c??????????*?\?&????????????????????????????????????d?????????????????l????? *??c??????????????EventLog-Application?????????c???????????d???????????????????c???????c???????????d???????????????????????c?c?c?c?c?c?c???????????????????g?b???b???b???b???b???b???b???b???b???b???b???b???b???b???b???b???b???b???b???c???c???c???c???c???c???c???c?? c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???????c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???c???
Reg             HKLM\SYSTEM\ControlSet002\services\NetBIOS\Linkage@Bind                                                                                     ???h?m???f?f?f??l????f???????????????????f ??e?????????/?&??@system32\DRIVERS\pci.sys,#3075;Universal Serial Bus (USB) Controller????????????????????????f???????????????f???e??cy??pci\ven_8086&dev_8117????????f???D??A5????h??f??????????NDIS Proxy??????????? ???????e???????????[?-??????$???????????????s??4???????????????????f?f?&??? ???????e???????????9?-??????"??????????f??@sdbus.inf,%pci\cc_080501.devicedesc%;SDA Standard Compliant SD Host Controller?????? ???f???n??????????????????????????????????????1c??oem2.inf:INTEL_SYS:INTEL_USB2:8.8.0.1014:pci\ven_8086&dev_8117???????????????0???0??INTEL_USB2?2?&???????????s??ci???????f???????6???????f???o??ag????0??g???2???????????????f???????7??????????????? ???f?f?f??Intel??????e???e?????????\???????e????N??????a????D?????Net?0D???????f???0???4???4??? ???????f?????f???????-??"?????h???????????????INTEL_USB????????f???,?????????????????????????f??????2??u???"????????????:??????T?gip????X??g???????????????f???4???????f?fl??????f????? ???????f?????f???????1???????????
Reg             HKLM\SYSTEM\ControlSet002\services\NetBIOS\Linkage@Route                                                                                    ?????????????s??tunnel??ol??{36fc9e60-c465-11cf-8056-444553540000}\0022?? ???????????????s??tunnel???????????????????????????s??ap??? ?????????????????????1????????????&????????????????????e???????????i??????ud????.Po??czenie lokalne* 140??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????2Karta Microsoft 6to4 #124?????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg             HKLM\SYSTEM\ControlSet002\services\NetBIOS\Linkage@Export                                                                                   ?????????h?f??????????????0?????????????????????3???Net?51??tunnel??????Samsung S2 Portable USB Device??????????????????????????????w???????????@disk.inf,%disk_devdesc%;Stacja dysk?w?613??? 4?????????????s???????e???WUDFRd??N????????????????????m??D:\????????????????????e??????N?????????????????Net?????????????????????{ac07bfc7-038c-50f4-8e52-41a1021a1199}?Tcp???????????????????m??????????????????????????????????????????????????tunnel??????????????{4d36e967-e325-11ce-bfc1-08002be10318}?9-4??????????????????????Net?25????N?????????????????????????????????text????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{1F50568F-44CE-445D-BCB6-C1981CF6B672}] DATAGRAM 110????MSAFD NetBIOS [\Device\NetBT_Tcpip6_{356010EC-D827-4CE6-B058-ABE7DAFCBD6B}] SEQPACKET 109???????????????????? ????????????????????????????"???"?????????????????????????? ????????????????????????????"?????????????7E??MSAFD NetBIOS [\Device\NetBT_Tcpip6_{356010EC-D827-4CE6-B058-ABE7DAFCBD6B}] DATAGRAM 109????? ????????????????????????????"?????????????????Net?.p?
Reg             HKLM\SYSTEM\ControlSet002\services\NetBT\Linkage@Bind                                                                                       ???i?????????????????????????????????M??????1&?????? ????t?????sa6??????????USB??????????????????????????h???4???????i?i?????2??Microsoft??????????????????i????? ???????i?????i?? ????-??"???&??????????????9???????????????????????????9???????e??????????????????????????????????????????? ??? ???{???l??????????????????????????????Microsoft??????i???i??????N??i???:????D??????????i??????? ??{8ECC055D-047F-11D1-A537-0000F8753ED1}?4?4???????2????N??k????????D??????????????????????????????????????????h???????e???????????k?k???????????i????? X??i????????????????<??i?????g?????? ??8???8???e?????????????????? ???6-21-2006????j?j???????? ??????g?????????????s???e??LegacyDriver?e???[?\?g?h?h?h?h??{8ECC055D-047F-11D1-A537-0000F8753ED1}??&????j?j?i??????lt???j?j??????????????????????N??i??????????????{8ECC055D-047F-11D1-A537-0000F8753ED1}???????????????????????????????i??????s?????N??i??????????????volsnap?9&???????????v???????????l???z???l??WPD?????USBSTOR??????j?jiv???????g???t???????????z???j?j????bth\ms_bthbrb??????????
Reg             HKLM\SYSTEM\ControlSet002\services\NetBT\Linkage@Route                                                                                      ????e???? ?????????????????????????????????????????????????????????????????????????e????wpdfs.inf:Microsoft.NTx86:Basic_Install:6.1.7600.16385:wpdbusenum\fs?c??%SystemRoot%\system32\wpdshext.dll,-701?????????????????????????????{77F7F122-20B0-4117-A2FB-059D1FC88256}??????? ??????????????????????????????????????????tunnel??????????????????????????????????????????????????????????????????????????????kl1??????????????????????????????????????????????????????????????????S????????????IEV_???????????????e????????????????????????????I?????????????????s???????????????? ?????????????????????????????????????????e{0??????????????Net??????????????????????????????0???????????????(???? ??????n??????????????*6to4mp?????? ????????????????????????????????????#683???????????C???????i??STORAGE\Volume\{fa1fbda9-74ee-11e1-923b-ad4fa2aa2ba7}#0000000000007E00?p6_???????????????4??????7E??\\?\STORAGE#Volume#{fa1fbda9-74ee-11e1-923b-ad4fa2aa2ba7}#0000000000007E00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}???????volume.inf?}?\??? ?????????
Reg             HKLM\SYSTEM\ControlSet002\services\NetBT\Linkage@Export                                                                                     ????????????????????????????????????????11??????? ???????e?????795??????????????????????????????????????????????????????????? ?????????????????????1????????????????????? ?????????????????????1????????????????????????????????????????0#??????????????????????????????????????????? ?????????????????????1????????????&????????????????????.????????????????????????????z?????????????? ???????U?????????????,??N?????$???<???????????????????????????????B0??6.1.7600.16385??? ??? ?????????????????????,????????????'????????????????????}??? ?????????????????????1????????????????????? ?????????????????????1????????????????????????????????????? ?????????????????????1????????????????????? ?????????????????????1????????z???????????????????????????tunnel??????? *?????????????????????????@volsnap.inf,%storage\volumesnapshot.devicedesc%;Rodzajowa kopia w tle wolumin?w????? ?????????????????????1????????????????????????????? ???????1?????????????,??N?????$???<???????????????????????????????????\\?\Root#*6TO4MP#0129#{ad498944-762f-11
Reg             HKLM\SYSTEM\ControlSet002\services\Smb\Linkage@Bind                                                                                         ???h?k???$???\???????????????????????????U?Z?V??????????Network??????????U???????e???????????????????\?_?\??? $??\???,?????%;M???????????????????T???&???&??srv2?????????`?`?Z??{4d36e97d-e325-11ce-bfc1-08002be10318}??????NDProxy??\???e?ebf??MBRES????d?d????tunnel??????????????NO_DRV_X? ???$??????????????????????????????{4d36e97d-e325-11ce-bfc1-08002be10318}????????&??????????e????N??n?????????e?????????????????????d?dS????????????????????????Z??? ???????Z?????Z???????1??????????\?&??????????????????????????Z?????Z??? ???????Z???????????Z?1??????*?,??? ?????????????,??Z???????????Z?Z?Z???Z??Po??czenie lokalne* 3? 3????????????????????????d????Z?Z?Z?????????Z????? ???????Z?????Z???????1????????????&???????????????????????????????????????????? ???????Z???????????Z?1??????*?,??? ?????????????,??Z???????????????Z??????????????Po??czenie lokalne* 2? 2??????????????????????????????,??Z???&??????? ???????Z?????Z???????1????????????&???????????????????????? ???????Z???????????Z?1??????*?,??? ??????????????????????????
Reg             HKLM\SYSTEM\ControlSet002\services\Smb\Linkage@Route                                                                                        ???i?n????@??h?????????e????????????????????????????????????????????System32\drivers\discache.sys???????????????????Video Init???????i???????????i???????????t?t?t????$??m??????p????????o??????????????t???@%systemroot%\system32\drivers\dfsc.sys,-101?????????o???t?t?i??????????LDDM Graphics Subsystem??????????i?????????n?????????o????4??h?????????????????????h?????????l??????????????@%systemroot%\system32\drivers\dfsc.sys,-102????Brother RemovableDisk(U)?????{???l???????????d???????n????? ?+?&?????????????????i???+???+???????h??*6to4mp??m???h???????????????????o????????m?????@%systemroot%\system32\drivers\discache.sys,-102?????????U???l??????????????????????@%SystemRoot%\system32\FirewallAPI.dll,-23092????z??2????????????????&???h?????????????????????????????????????????????????????????????????#????????????????????@FirewallAPI.dll,-23501??????????????????????????&???h??????????????????????????????????????????????????????????????????????????????????????@FirewallAPI.dll,-23501?????????????????????????? ???????(?
Reg             HKLM\SYSTEM\ControlSet002\services\Smb\Linkage@Export                                                                                       ???l?n???????m???????????n????????????P??m?????????n???????????l????? ???????l?????l???????1????????????????????? ???????l???????????h?1????????????????????????????????????????????????? ???????l???????o???l?????l????? ???????l?????l???????1???????????????????????l???l???l???l???l???l???l???l?????????????????l??????????????? ???????l???????????h?1????????????????????????V_?????l????? ???????k?????l???????-??????????Q?????????????? ???????l?????l?????j?-??"?????z???????????????????????t????????m????N?????????????????????Net????????????????????????????????????????l?&??usbport.inf:Generic.Section.NTx86:ROOTHUB.Dev:6.1.7600.16788:usb\root_hub????????????????????????????????????????????1??85????X??????????????8??1c???????l???????????????????????????????????????????k???k???????????????????????????N??? ????B??l???s??NF???????????t??ll???????????????2???????i???????????????????b??ev???????l???s??lt??@%SystemRoot%\system32\drivers\http.sys,-1???????????????????????????????????????l??????????????????????? ???????l?????
Reg             HKLM\SYSTEM\ControlSet002\services\TCPIP6\Linkage@Bind                                                                                      ???m?n???????z???u??????????????????it??USB Video Device?????????m?????????????????m????? ???????m?????m???????1????????????????????Microsoft???? ???????m???????????i?1?????????????????????? ??Z??????p???????????????Microsoft??????m????? ???????m?????m???????1???????????????????????m???m???m????????? ???????m???????????i?1????????????????????mmcico.dll,MediaClassCoInstaller???????????m????? ???????m?????m???????1????????????&??????????????????????????m???m????? ???????m?????m???????1????????????????????? ???????m???????????i?1??????????????????????R??????????????d??????????????Typ??????n??it?????m????? ???????m?????m???????1????????????????????????????????? ???????m???????????i?1????????????????????ks.inf?kscaptur.inf??????m???????????????????????e??????.NT?????int?el???.??? ???????m?????m???????1??????????????????????8??m????????h?????? ???????m???????????i?1????????@????????????????????????????????m???????????m?m????6-21-2006???11???????????2?????m????? ???????m?????m???????1????????????????????? ???????m?
Reg             HKLM\SYSTEM\ControlSet002\services\TCPIP6\Linkage@Route                                                                                     ???n?????????????????????n???????????????????????e???????????????????????o??????????????t???@%systemroot%\system32\DRIVERS\RDPCDD.sys,-100????????????????????????m???????????????????????m?????????????????e???????????????????????@%systemroot%\system32\drivers\RdpRefMp.sys,-101????system32\DRIVERS\rspndr.sys?????Security Processor Loader Driver??????????????????s??????????n??????e????????????????????????~???u????????m??n????????????????????8??n????????h??????????????????????????????????????????????????n?????n????? ???????n?????????????-?????????????????f?????n????? ???????n?????n???????1??L????????? ??????????????n???n????? ???????n?????n???????1????????????&???????????????????????? ???????n?????n???????1????????????????????????????? ???????n???????????l?1??????????????????????b??n?????????n?????????n???-???5??????????system32\DRIVERS\rdbss.sys?????????????????????????????????????????????d???????????????????????n????? ???????n?????n???????1????????????????????????????????? ???????n???????????l?1???????????????
Reg             HKLM\SYSTEM\ControlSet002\services\TCPIP6\Linkage@Export                                                                                    ???n?n???????????????5??????e???Microsoft???system32\DRIVERS\AgileVpn.sys????????o???????n???????5???????????????????y??*6to4mp????????n???n????? ???????n?????????????-?????????????????f??? ???????n?????n???????1??L????????? ???????? ?????n???n????? ???????n?????n???????1????????????&???????????????????????? ???????n?????n???????1????????????????????????????? ???????n???????????l?1????????????????????@%systemroot%\system32\drivers\RDPENCDD.sys,-101????system32\drivers\rdprefmp.sys????????????y????2??????n???????6?????????????????????????n????? ???????n?????n???????1?????????????????????????????n??? ???????n???????????l?1??????????????????????^??n?????????n???????????????????????????n????? ???????n?????n???????1???????????????????????n???n???n??8?ST??? ???????n???????????l?1????????????????????System32\drivers\rdyboost.sys??????????????n????? ???????n?????n???????1????????????&????????????????????9?????n???n????? ???????n?????n???????1????????????????????? ???????n???????????l?1???????????????????????????????

---- EOF - GMER 1.0.15 ----