SystemLook 30.07.11 by jpshortstuff Log created at 13:39 on 11/10/2012 by Seba Administrator - Elevation successful ========== reg ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSIServer] "Type"= 0x0000000020 (32) "Start"= 0x0000000003 (3) "ErrorControl"= 0x0000000001 (1) "ImagePath"="C:\windows\system32\msiexec.exe /V" "DisplayName"="Instalator Windows" "DependOnService"="RpcSs" "DependOnGroup"=" " "ObjectName"="LocalSystem" "Description"="Dodaje, modyfikuje i usuwa aplikacje dostarczane jako pakiet Instalatora Windows (*.msi). Jeśli ta usługa zostanie wyłączona, wszelkie usługi jawnie od niej zależne przestaną się uruchamiać." [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSIServer\Security] "Security"=01 00 14 80 90 00 00 00 9c 00 00 00 14 00 00 00 30 00 00 00 02 00 1c 00 01 00 00 00 02 80 14 00 ff 01 0f 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 60 00 04 00 00 00 00 00 14 00 fd 01 02 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 ff 01 0f 00 01 02 00 00 00 00 00 05 20 00 00 00 20 02 00 00 00 00 14 00 8d 01 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 18 00 fd 01 02 00 01 02 00 00 00 00 00 05 20 00 00 00 23 02 00 00 01 01 00 00 00 00 00 05 12 00 00 00 01 01 00 00 00 00 00 05 12 00 00 00 (REG_BINARY) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSIServer\Enum] "0"="Root\LEGACY_MSISERVER\0000" "Count"= 0x0000000001 (1) "NextInstance"= 0x0000000001 (1) ========== filefind ========== Searching for "msi.dll" C:\msi.dll --a---- 2341376 bytes [21:28 09/10/2012] [13:54 14/02/2012] 0CE4D3BD306DA6D1F6F233C403F5B667 C:\WINDOWS\system32\msi.dll --a---- 2843136 bytes [21:28 09/10/2012] [20:50 14/04/2008] 1FA6B05E25B553EE6B9C507AB0F86B76 Searching for "msiexec.exe" C:\WINDOWS\system32\msiexec.exe --a---- 78848 bytes [21:06 09/10/2012] [20:51 14/04/2008] 294D062D834ED634EA46073A4CA7AF39 Searching for "msihnd.dll" C:\WINDOWS\system32\msihnd.dll --a---- 271360 bytes [21:41 02/07/2012] [20:50 14/04/2008] E1425A4A7F1F6F2028BF110388408737 -= EOF =-