- This topic has 6 ответов, 2 участника, and was last updated 16 years, 3 months назад by
.
-
Сообщения
-
- Темы:532
- Сообщений:1553
- ☆☆☆☆☆
как только заходишь в интернет на экране появляется информер с просьбой отправить смс и получишь код чтобы его убрать.Помогите пожалуйста его удалить
Logfile of random’s system information tool 1.05 (written by random/random)
Run by Наташа at 2009-01-05 01:08:59
Microsoft Windows XP Professional Service Pack 2
System drive C: has 7 GB (61%) free of 12 GB
Total RAM: 255 MB (20% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:10:04, on 05.01.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
C:WINDOWSExplorer.EXE
C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSSOUNDMAN.EXE
C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe
C:Program FilesCommon FilesSymantec SharedccApp.exe
C:PROGRA~1SYMANT~1VPTray.exe
C:WINDOWSSamsungSMPanelMgrSSMMgr.exe
C:Program FilesSamsungSamsung SCX-4×21 SeriesPSUScan2pc.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe
C:Program FilesSymantec AntiVirusDefWatch.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesSymantec AntiVirusRtvscan.exe
C:Program FilesWIDCOMMПрограммное обеспечение BluetoothBTTray.exe
C:Program FilesMicrosoft OfficeOffice12WINWORD.EXE
C:Program FilesMicrosoft OfficeOffice12WINWORD.EXE
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesMail.RuAgentmagent.exe
C:Program FilesInternet Exploreriexplore.exe
C:Documents and SettingsНаташаРабочий столRSIT.exe
C:Program Filestrend microНаташа.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.mail.ru
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: agblibP — {065C52C3-9AA2-4577-AFB0-33F17EA5686E} — C:Documents and SettingsAll UsersApplication Dataagblib.dll
O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 — BHO: Groove GFS Browser Helper — {72853161-30C5-4D22-B7F9-0BBC1D38A37E} — C:PROGRA~1MICROS~2Office12GRA8E1~1.DLL
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 — HKLM..Run: [GrooveMonitor] «C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe»
O4 — HKLM..Run: [ccApp] «C:Program FilesCommon FilesSymantec SharedccApp.exe»
O4 — HKLM..Run: [vptray] C:PROGRA~1SYMANT~1VPTray.exe
O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 8.0ReaderReader_sl.exe»
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [SamsungSM PanelMgr] C:WINDOWSSamsungSMPanelMgrSSMMgr.exe /autorun
O4 — HKLM..Run: [WHITNEY_S2P] C:Program FilesSamsungSamsung SCX-4×21 SeriesPSUScan2pc.exe
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Global Startup: BTTray.lnk = ?
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O8 — Extra context menu item: Отправить через &Bluetooth — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbtsendto_ie_ctx.htm
O8 — Extra context menu item: Поиск@Mail.Ru — res://C:Program FilesMail.RuSputnikMailRuSputnik.dll/282
O8 — Extra context menu item: Словари@Mail.Ru — res://C:Program FilesMail.RuSputnikMailRuSputnik.dll/283
O9 — Extra button: Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra ‘Tools’ menuitem: &Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: @btrez.dll,-4015 — {CCA281CA-C863-46ef-9331-5C8D4460577F} — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbtsendto_ie.htm
O9 — Extra ‘Tools’ menuitem: @btrez.dll,-4017 — {CCA281CA-C863-46ef-9331-5C8D4460577F} — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbtsendto_ie.htm
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O17 — HKLMSystemCCSServicesTcpip..{13915705-247C-4123-81DA-B5B18C03C77E}: NameServer = 195.161.184.2,195.161.184.4
O17 — HKLMSystemCS1ServicesTcpip..{13915705-247C-4123-81DA-B5B18C03C77E}: NameServer = 195.161.184.2,195.161.184.4
O17 — HKLMSystemCS2ServicesTcpip..{13915705-247C-4123-81DA-B5B18C03C77E}: NameServer = 195.161.184.2,195.161.184.4
O18 — Protocol: grooveLocalGWS — {88FED34C-F0CA-4636-A375-3CB6248B04CD} — C:PROGRA~1MICROS~2Office12GR99D3~1.DLL
O23 — Service: Bluetooth Service (btwdins) — Broadcom Corporation. — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe
O23 — Service: Symantec Event Manager (ccEvtMgr) — Symantec Corporation — C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
O23 — Service: Symantec Settings Manager (ccSetMgr) — Symantec Corporation — C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
O23 — Service: Монитор описаний Symantec AntiVirus (DefWatch) — Symantec Corporation — C:Program FilesSymantec AntiVirusDefWatch.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: LiveUpdate — Symantec Corporation — C:PROGRA~1SymantecLIVEUP~1LUCOMS~1.EXE
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: SAVRoam (SavRoam) — symantec — C:Program FilesSymantec AntiVirusSavRoam.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Symantec Network Drivers Service (SNDSrvc) — Symantec Corporation — C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe
O23 — Service: Symantec SPBBCSvc (SPBBCSvc) — Symantec Corporation — C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe
O23 — Service: Symantec AntiVirus — Symantec Corporation — C:Program FilesSymantec AntiVirusRtvscan.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 8203 bytes======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{065C52C3-9AA2-4577-AFB0-33F17EA5686E}]
ALAC Video Helper — C:Documents and SettingsAll UsersApplication Dataagblib.dll [2009-01-04 322560][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2006-10-22 62080][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper — C:PROGRA~1MICROS~2Office12GRA8E1~1.DLL [2006-10-27 2210608][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2009-01-05 676704][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2009-01-05 676704][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2002-02-05 46592]
«NeroFilterCheck»=C:WINDOWSsystem32NeroCheck.exe [2001-07-09 155648]
«GrooveMonitor»=C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2006-10-27 31016]
«ccApp»=C:Program FilesCommon FilesSymantec SharedccApp.exe [2006-11-21 52840]
«vptray»=C:PROGRA~1SYMANT~1VPTray.exe [2007-05-16 125488]
«Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [2008-01-11 39792]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2009-01-05 5598392]
«SamsungSM PanelMgr»=C:WINDOWSSamsungSMPanelMgrSSMMgr.exe [2008-02-28 536576]
«WHITNEY_S2P»=C:Program FilesSamsungSamsung SCX-4×21 SeriesPSUScan2pc.exe [2006-03-27 229376][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-17 15360]C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
BTTray.lnk — C:Program FilesWIDCOMMПрограммное обеспечение BluetoothBTTray.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyNavLogon]
C:WINDOWSsystem32NavLogon.dll [2007-05-16 43568][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:PROGRA~1MICROS~2Office12GRA8E1~1.DLL [2006-10-27 2210608][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE»=»C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook»
«C:Program FilesMicrosoft OfficeOffice12GROOVE.EXE»=»C:Program FilesMicrosoft OfficeOffice12GROOVE.EXE:*:Enabled:Microsoft Office Groove»
«C:Program FilesMicrosoft OfficeOffice12ONENOTE.EXE»=»C:Program FilesMicrosoft OfficeOffice12ONENOTE.EXE:*:Enabled:Microsoft Office OneNote»
«D:ИгрыWarCraftIII — Пробуждение ЗлаWarcraft III.exe»=»D:ИгрыWarCraftIII — Пробуждение ЗлаWarcraft III.exe:*:Enabled:Warcraft III»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{448d1904-d0f5-11dd-85a0-806d6172696f}]
shellAutoRuncommand — uxdeiect.com
shellexplorecommand — uxdeiect.com
shellopencommand — uxdeiect.com[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b26f011-d8cb-11dd-82ac-0021917a2627}]
shellAutoRuncommand — G:awda2.exe
shellexplorecommand — G:awda2.exe
shellopencommand — G:awda2.exe[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f5ed6d57-d0e0-11dd-828f-837d3829289f}]
shellauToplAycommand — G:clshsy.cmd
shellAutoRuncommand — G:clshsy.cmd
shellexPlorecommand — G:clshsy.cmd
shellopencommand — G:clshsy.cmd======List of files/folders created in the last 1 months======
2009-01-07 06:56:39 —-D—- C:Documents and SettingsНаташаApplication DataMacromedia
2009-01-06 19:44:11 —-D—- C:Documents and SettingsНаташаApplication DataSmarThru4
2009-01-06 19:43:55 —-A—- C:WINDOWSprinst.exe
2009-01-06 19:43:44 —-A—- C:WINDOWSsystem32SamFaxPort.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LTRPR13n.DLL
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LTRIO13N.DLL
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LTR13N.DLL
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfpsd13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LFPNM13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32Lfpng13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfpcx13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfpcd13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfmsp13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfjbg13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LFJ2K13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfitg13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfitg13n.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfimg13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfimg13n.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfiff13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfiff13n.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lffax13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lffax13n.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfeps13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LFCMP13s.DLL
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfclp13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfbmp13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfavi13s.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32PCDLIB32.DLL
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lttwn13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LTTLB13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32Ltpnt13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32ltpdg13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LTOCR13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32ltefx13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LTCLR13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32ltbar13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lftif13s.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lftif13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfpsd13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LFPNM13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32Lfpng13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfpcx13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfpcd13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfmsp13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfjbg13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LFJ2K13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfeps13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LFCMP13n.DLL
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfclp13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfavi13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfani13s.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfani13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32Mfcoleui.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32Ltwvc13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32lttmb13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltlst13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltkrn13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltimg13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltfil13n.DLL
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltdlg13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32LTDIS13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32lfbmp13n.dll
2009-01-06 19:43:38 —-A—- C:WINDOWSsystem32msxml4r.dll
2009-01-06 19:43:38 —-A—- C:WINDOWSsystem32msxml4.dll
2009-01-06 19:43:31 —-A—- C:WINDOWSReadiris.ini
2009-01-06 19:43:26 —-A—- C:WINDOWSsystem32irisco32.dll
2009-01-06 19:42:42 —-D—- C:Program FilesReadiris
2009-01-06 19:42:23 —-D—- C:Program FilesSmarThru 4
2009-01-06 19:41:57 —-A—- C:WINDOWSssndii.exe
2009-01-06 19:41:50 —-D—- C:WINDOWSSamsungSM
2009-01-06 19:41:42 —-A—- C:WINDOWSWiainst.exe
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32WIASTIIO.dll
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32WIAIPH.dll
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32WIAEH.dll
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32Sswiadrv.dll
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32Ssuiext.dll
2009-01-06 19:41:41 —-A—- C:WINDOWSsystem32Ssusbpn.dll
2009-01-06 19:41:41 —-A—- C:WINDOWSsystem32Ssdevm.dll
2009-01-06 19:38:23 —-A—- C:WINDOWSsystem32SUGW2LMK.DLL
2009-01-06 19:38:15 —-A—- C:WINDOWSsystem32SUGW2CI.exe
2009-01-06 19:38:14 —-A—- C:WINDOWSsystem32SUGW2CI.dll
2009-01-06 19:36:28 —-D—- C:Program FilesSamsung
2009-01-05 19:58:18 —-D—- C:Documents and SettingsНаташаApplication DataMra
2009-01-05 19:58:09 —-D—- C:Program FilesMail.Ru
2009-01-05 00:32:59 —-D—- C:Program Filestrend micro
2009-01-05 00:32:56 —-D—- C:rsit
2009-01-04 22:51:03 —-A—- C:Documents and SettingsAll UsersApplication Dataagblib.dll
2009-01-03 15:57:07 —-D—- C:музыка хрен знает
2009-01-01 20:40:35 —-A—- C:WINDOWSsymgame.ini
2009-01-01 20:22:53 —-A—- C:WINDOWSEntPack.ini
2008-12-31 23:54:28 —-A—- C:WINDOWSsumgame.ini
2008-12-31 23:51:02 —-A—- C:WINDOWSSYMGAMES.INI
2008-12-25 14:41:29 —-D—- C:Program FilesCommon FilesDirectX
2008-12-23 20:33:28 —-D—- C:Documents and SettingsНаташаApplication DataAdobe
2008-12-23 20:32:06 —-D—- C:Documents and SettingsAll UsersApplication DataAdobe
2008-12-23 20:31:47 —-D—- C:Program FilesCommon FilesAdobe
2008-12-23 20:31:46 —-D—- C:Program FilesAdobe
2008-12-23 20:25:14 —-D—- C:WINDOWSsystem32appmgmt
2008-12-23 20:14:21 —-SHD—- C:RECYCLER
2008-12-23 17:09:51 —-A—- C:WINDOWSvpc32.INI
2008-12-23 16:40:33 —-A—- C:WINDOWSsystem32h323log.txt
2008-12-23 16:37:03 —-A—- C:WINDOWSsystem32nv4_disp.dll
2008-12-23 16:36:39 —-A—- C:WINDOWSsystem32ksuser.dll
2008-12-23 16:36:19 —-A—- C:WINDOWSsystem32usbui.dll
2008-12-23 16:35:02 —-SHD—- C:WINDOWSInstaller
2008-12-23 16:35:02 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2008-12-23 16:35:01 —-D—- C:Program FilesCommon FilesODBC
2008-12-23 16:35:01 —-A—- C:WINDOWSODBCINST.INI
2008-12-23 16:34:57 —-D—- C:Program FilesCommon FilesSpeechEngines
2008-12-23 16:34:56 —-RD—- C:Program Files
2008-12-23 16:34:56 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2008-12-23 16:34:56 —-D—- C:Program FilesCommon Files
2008-12-23 16:34:52 —-RA—- C:WINDOWSsystem32kbdtuq.dll
2008-12-23 16:34:52 —-RA—- C:WINDOWSsystem32kbdtuf.dll
2008-12-23 16:34:52 —-RA—- C:WINDOWSsystem32kbdazel.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhept.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhela3.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhela2.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhe319.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhe220.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhe.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdgkl.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdlv1.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdlv.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdlt1.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdlt.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdest.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdycl.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdsl1.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdsl.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdro.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdpl1.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdpl.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdhu1.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdhu.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdcz2.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdcz1.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdcz.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdcr.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32KBDAL.DLL
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbduzb.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdtat.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdmon.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdkyr.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdkaz.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdaze.dll
2008-12-23 16:34:41 —-A—- C:WINDOWSsystem32kbdycc.dll
2008-12-23 16:34:41 —-A—- C:WINDOWSsystem32kbdur.dll
2008-12-23 16:34:41 —-A—- C:WINDOWSsystem32kbdbu.dll
2008-12-23 16:34:41 —-A—- C:WINDOWSsystem32kbdblr.dll
2008-12-23 16:34:40 —-A—- C:WINDOWSsystem32spxcoins.dll
2008-12-23 16:34:40 —-A—- C:WINDOWSsystem32irclass.dll
2008-12-23 16:34:40 —-A—- C:WINDOWSsystem32dgsetup.dll
2008-12-23 16:34:40 —-A—- C:WINDOWSsystem32dgrpsetu.dll
2008-12-23 16:34:39 —-A—- C:WINDOWSsystem32EqnClass.Dll
2008-12-23 16:34:37 —-N—- C:WINDOWSsystem32CONFIG.TMP
2008-12-23 16:34:37 —-A—- C:WINDOWSTASKMAN.EXE
2008-12-23 16:34:36 —-A—- C:WINDOWSsystem32batt.dll
2008-12-23 16:34:36 —-A—- C:WINDOWSNOTEPAD.EXE
2008-12-23 16:34:35 —-A—- C:WINDOWSsystem32storprop.dll
2008-12-23 16:34:26 —-ASH—- C:Documents and SettingsAll UsersApplication Datadesktop.ini
2008-12-23 16:34:21 —-RA—- C:WINDOWSSET8.tmp
2008-12-23 16:34:18 —-RA—- C:WINDOWSSET4.tmp
2008-12-23 16:34:16 —-RA—- C:WINDOWSSET3.tmp
2008-12-23 16:34:11 —-D—- C:WINDOWSsystem32CatRoot2
2008-12-23 16:34:11 —-D—- C:WINDOWSsystem32CatRoot
2008-12-23 16:34:05 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2008-12-23 16:33:42 —-A—- C:WINDOWSsetuplog.txt
2008-12-23 16:33:38 —-SHD—- C:System Volume Information
2008-12-23 16:33:38 —-D—- C:Documents and Settings
2008-12-23 16:32:57 —-SH—- C:boot.ini
2008-12-23 16:27:11 —-RSHDC—- C:WINDOWSsystem32dllcache
2008-12-23 16:27:11 —-RSD—- C:WINDOWSFonts
2008-12-23 16:27:11 —-RD—- C:WINDOWSWeb
2008-12-23 16:27:11 —-HD—- C:WINDOWSinf
2008-12-23 16:27:11 —-D—- C:WINDOWSWinSxS
2008-12-23 16:27:11 —-D—- C:WINDOWStwain_32
2008-12-23 16:27:11 —-D—- C:WINDOWSTemp
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32wins
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32wbem
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32usmt
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32spool
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32ShellExt
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32Setup
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32ras
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32oobe
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32npp
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32mui
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32inetsrv
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32IME
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32icsxml
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32ias
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32export
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32drivers
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32dhcp
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32config
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem323com_dmi
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem323076
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem322052
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321054
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321049
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321042
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321041
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321037
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321033
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321031
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321028
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321025
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem
2008-12-23 16:27:11 —-D—- C:WINDOWSsecurity
2008-12-23 16:27:11 —-D—- C:WINDOWSResources
2008-12-23 16:27:11 —-D—- C:WINDOWSrepair
2008-12-23 16:27:11 —-D—- C:WINDOWSProvisioning
2008-12-23 16:27:11 —-D—- C:WINDOWSPeerNet
2008-12-23 16:27:11 —-D—- C:WINDOWSpchealth
2008-12-23 16:27:11 —-D—- C:WINDOWSmui
2008-12-23 16:27:11 —-D—- C:WINDOWSmsapps
2008-12-23 16:27:11 —-D—- C:WINDOWSmsagent
2008-12-23 16:27:11 —-D—- C:WINDOWSMedia
2008-12-23 16:27:11 —-D—- C:WINDOWSjava
2008-12-23 16:27:11 —-D—- C:WINDOWSime
2008-12-23 16:27:11 —-D—- C:WINDOWSHelp
2008-12-23 16:27:11 —-D—- C:WINDOWSehome
2008-12-23 16:27:11 —-D—- C:WINDOWSDriver Cache
2008-12-23 16:27:11 —-D—- C:WINDOWSDebug
2008-12-23 16:27:11 —-D—- C:WINDOWSCursors
2008-12-23 16:27:11 —-D—- C:WINDOWSConnection Wizard
2008-12-23 16:27:11 —-D—- C:WINDOWSConfig
2008-12-23 16:27:11 —-D—- C:WINDOWSAppPatch
2008-12-23 16:27:11 —-D—- C:WINDOWSaddins
2008-12-23 16:27:11 —-D—- C:WINDOWS
2008-12-23 16:17:30 —-A—- C:WINDOWSwinamp.ini
2008-12-23 15:57:45 —-A—- C:WINDOWSNeroDigital.ini
2008-12-23 15:57:38 —-D—- C:Documents and SettingsНаташаApplication DataMedia Player Classic
2008-12-23 14:56:58 —-D—- C:Program FilesWIDCOMM
2008-12-23 14:27:01 —-A—- C:WINDOWSsystem32S32EVNT1.DLL
2008-12-23 14:26:57 —-D—- C:WINDOWSRegisteredPackages
2008-12-23 14:26:46 —-D—- C:Program FilesSymantec AntiVirus
2008-12-23 14:25:29 —-A—- C:WINDOWSsystem32capicom.dll
2008-12-23 14:25:28 —-D—- C:Program FilesSymantec
2008-12-23 14:25:28 —-D—- C:Program FilesCommon FilesSymantec Shared
2008-12-23 14:25:28 —-D—- C:Documents and SettingsAll UsersApplication DataSymantec
2008-12-23 14:25:28 —-A—- C:WINDOWSsystem32MFC71.DLL
2008-12-23 14:13:29 —-A—- C:WINDOWSsystem32msonpmon.dll
2008-12-23 14:11:44 —-D—- C:Program FilesMicrosoft Works
2008-12-23 14:11:32 —-D—- C:Program FilesMSBuild
2008-12-23 14:10:46 —-D—- C:Program FilesMicrosoft Visual Studio
2008-12-23 14:10:45 —-D—- C:Program FilesCommon FilesDESIGNER
2008-12-23 14:07:06 —-D—- C:WINDOWSSHELLNEW
2008-12-23 14:06:39 —-D—- C:Program FilesMicrosoft Office
2008-12-23 14:06:38 —-D—- C:Documents and SettingsAll UsersApplication DataMicrosoft Help
2008-12-23 14:05:58 —-D—- C:Documents and SettingsНаташаApplication DataAIMP
2008-12-23 14:05:26 —-RHD—- C:MSOCache
2008-12-23 14:05:00 —-A—- C:WINDOWSsystem32TwnLib20.dll
2008-12-23 14:04:58 —-N—- C:WINDOWSsystem32ImagXRA7.dll
2008-12-23 14:04:58 —-N—- C:WINDOWSsystem32ImagXR7.dll
2008-12-23 14:04:58 —-N—- C:WINDOWSsystem32ImagXpr7.dll
2008-12-23 14:04:58 —-N—- C:WINDOWSsystem32ImagX7.dll
2008-12-23 14:04:58 —-D—- C:Program FilesCommon FilesAhead
2008-12-23 14:04:58 —-A—- C:WINDOWSsystem32NeroCheck.exe
2008-12-23 14:04:54 —-D—- C:Program FilesAhead
2008-12-23 14:04:27 —-D—- C:Program FilesAIMP Classic
2008-12-23 14:03:38 —-D—- C:Program FilesWinRAR
2008-12-23 14:01:02 —-D—- C:Program FilesLight Alloy
2008-12-23 14:00:48 —-A—- C:WINDOWSsystem32xvidvfw.dll
2008-12-23 14:00:48 —-A—- C:WINDOWSsystem32xvidcore.dll
2008-12-23 14:00:48 —-A—- C:WINDOWSsystem32WMV9VCM.dll
2008-12-23 14:00:47 —-A—- C:WINDOWSsystem32qt-dx331.dll
2008-12-23 14:00:46 —-A—- C:WINDOWSsystem32ff_vfw.dll.manifest
2008-12-23 14:00:46 —-A—- C:WINDOWSsystem32ff_vfw.dll
2008-12-23 14:00:45 —-A—- C:WINDOWSsystem32msvcr71.dll
2008-12-23 14:00:45 —-A—- C:WINDOWSsystem32msvcp71.dll
2008-12-23 14:00:44 —-D—- C:Program FilesK-Lite Codec Pack
2008-12-23 13:56:12 —-D—- C:WINDOWSsystem32ReinstallBackups
2008-12-23 13:55:59 —-A—- C:WINDOWSIsUninst.exe
2008-12-23 13:55:38 —-D—- C:Program FilesAvance Sound Manager
2008-12-23 13:55:35 —-N—- C:WINDOWSavrack.ini
2008-12-23 13:55:35 —-D—- C:Program FilesAvRack
2008-12-23 13:55:34 —-N—- C:WINDOWSalcupd.exe
2008-12-23 13:55:34 —-N—- C:WINDOWSalcrmv.exe
2008-12-23 13:55:34 —-A—- C:WINDOWSSOUNDMAN.EXE
2008-12-23 13:55:33 —-HD—- C:Program FilesInstallShield Installation Information
2008-12-23 13:55:28 —-D—- C:Program FilesCommon FilesInstallShield
2008-12-23 13:52:53 —-D—- C:Documents and SettingsНаташаApplication DataIdentities
2008-12-23 13:52:52 —-HD—- C:Program FilesUninstall Information
2008-12-23 13:52:47 —-ASH—- C:Documents and SettingsНаташаApplication Datadesktop.ini
2008-12-23 13:52:46 —-SD—- C:Documents and SettingsНаташаApplication DataMicrosoft
2008-12-23 13:51:50 —-D—- C:WINDOWSSoftwareDistribution
2008-12-23 13:51:49 —-D—- C:WINDOWSPrefetch
2008-12-23 13:51:48 —-SD—- C:WINDOWSsystem32Microsoft
2008-12-23 13:51:48 —-A—- C:WINDOWSSchedLgU.Txt
2008-12-23 13:47:29 —-D—- C:WINDOWSsystem32xircom
2008-12-23 13:47:29 —-D—- C:Program Filesxerox
2008-12-23 13:47:29 —-D—- C:Program Filesmicrosoft frontpage
2008-12-23 13:47:03 —-A—- C:WINDOWScontrol.ini
2008-12-23 13:47:03 —-A—- C:AUTOEXEC.BAT
2008-12-23 13:46:49 —-A—- C:WINDOWSOEWABLog.txt
2008-12-23 13:46:44 —-A—- C:WINDOWSsystem32mapi32.dll
2008-12-23 13:45:36 —-RD—- C:WINDOWSOffline Web Pages
2008-12-23 13:45:35 —-SD—- C:WINDOWSDownloaded Program Files
2008-12-23 13:45:35 —-RAH—- C:WINDOWSsystem32logonui.exe.manifest
2008-12-23 13:45:28 —-RAH—- C:WINDOWSsystem32cdplayer.exe.manifest
2008-12-23 13:45:23 —-HD—- C:Program FilesWindowsUpdate
2008-12-23 13:45:18 —-D—- C:Program FilesOnline Services
2008-12-23 13:44:57 —-D—- C:WINDOWSsystem32DirectX
2008-12-23 13:44:34 —-A—- C:WINDOWSsystem32atrace.dll
2008-12-23 13:44:31 —-A—- C:WINDOWSsystem32desktop.ini
2008-12-23 13:44:31 —-A—- C:WINDOWSdesktop.ini
2008-12-23 13:44:23 —-A—- C:WINDOWSsystem32nmevtmsg.dll
2008-12-23 13:44:22 —-A—- C:WINDOWSsystem32acctres.dll
2008-12-23 13:44:21 —-D—- C:Program FilesCommon FilesServices
2008-12-23 13:44:19 —-SD—- C:WINDOWSTasks
2008-12-23 13:44:19 —-A—- C:WINDOWSsystem32icfgnt5.dll
2008-12-23 13:44:17 —-D—- C:Program FilesCommon FilesMSSoap
2008-12-23 13:44:12 —-D—- C:WINDOWSsrchasst
2008-12-23 13:44:11 —-D—- C:WINDOWSsystem32Macromed
2008-12-23 13:44:08 —-A—- C:WINDOWSsystem32wuweb.dll
2008-12-23 13:44:07 —-A—- C:WINDOWSsystem32wucltui.dll
2008-12-23 13:44:07 —-A—- C:WINDOWSsystem32wuauserv.dll
2008-12-23 13:44:07 —-A—- C:WINDOWSsystem32wuaueng1.dll
2008-12-23 13:44:07 —-A—- C:WINDOWSsystem32wuaueng.dll
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32wups.dll
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32wuauclt1.exe
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32wuauclt.exe
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32wuapi.dll
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32bitsprx3.dll
2008-12-23 13:44:05 —-A—- C:WINDOWSsystem32qmgrprxy.dll
2008-12-23 13:44:05 —-A—- C:WINDOWSsystem32qmgr.dll
2008-12-23 13:44:05 —-A—- C:WINDOWSsystem32bitsprx2.dll
2008-12-23 13:44:01 —-D—- C:Program FilesMovie Maker
2008-12-23 13:43:56 —-A—- C:WINDOWSsystem32safrslv.dll
2008-12-23 13:43:56 —-A—- C:WINDOWSsystem32safrdm.dll
2008-12-23 13:43:56 —-A—- C:WINDOWSsystem32safrcdlg.dll
2008-12-23 13:43:56 —-A—- C:WINDOWSsystem32racpldlg.dll
2008-12-23 13:43:51 —-A—- C:WINDOWSsystem32fltMc.exe
2008-12-23 13:43:51 —-A—- C:WINDOWSsystem32fltlib.dll
2008-12-23 13:43:50 —-D—- C:WINDOWSsystem32Restore
2008-12-23 13:43:50 —-A—- C:WINDOWSsystem32srsvc.dll
2008-12-23 13:43:50 —-A—- C:WINDOWSsystem32srrstr.dll
2008-12-23 13:43:50 —-A—- C:WINDOWSsystem32srclient.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32nmmkcert.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32msconf.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32mnmsrvc.exe
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32mnmdd.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32isrdbg32.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32ils.dll
2008-12-23 13:43:45 —-D—- C:Program FilesNetMeeting
2008-12-23 13:43:45 —-A—- C:WINDOWSsystem32msoert2.dll
2008-12-23 13:43:45 —-A—- C:WINDOWSsystem32msoeacct.dll
2008-12-23 13:43:44 —-A—- C:WINDOWSsystem32inetres.dll
2008-12-23 13:43:43 —-A—- C:WINDOWSsystem32inetcomm.dll
2008-12-23 13:43:41 —-D—- C:Program FilesOutlook Express
2008-12-23 13:43:41 —-A—- C:WINDOWSsystem32schedsvc.dll
2008-12-23 13:43:41 —-A—- C:WINDOWSsystem32mstinit.exe
2008-12-23 13:43:41 —-A—- C:WINDOWSsystem32mstask.dll
2008-12-23 13:43:40 —-A—- C:WINDOWSsystem32isign32.dll
2008-12-23 13:43:40 —-A—- C:WINDOWSsystem32icwphbk.dll
2008-12-23 13:43:40 —-A—- C:WINDOWSsystem32icwdial.dll
2008-12-23 13:43:39 —-A—- C:WINDOWSsystem32inetcfg.dll
2008-12-23 13:43:32 —-D—- C:Program FilesCommon FilesSystem
2008-12-23 13:43:31 —-D—- C:Program FilesInternet Explorer
2008-12-23 13:42:47 —-D—- C:Program FilesComPlus Applications
2008-12-23 13:42:45 —-A—- C:WINDOWSvbaddin.ini
2008-12-23 13:42:45 —-A—- C:WINDOWSvb.ini
2008-12-23 13:42:40 —-D—- C:WINDOWSRegistration
2008-12-23 13:42:32 —-D—- C:Program FilesWindows Media Player
2008-12-23 13:42:25 —-D—- C:Program FilesMessenger
2008-12-23 13:42:20 —-D—- C:Program FilesMSN Gaming Zone
2008-12-23 13:42:20 —-A—- C:WINDOWSsystem32write.exe
2008-12-23 13:42:11 —-A—- C:WINDOWSsystem32sndvol32.exe
2008-12-23 13:42:10 —-A—- C:WINDOWSsystem32hticons.dll
2008-12-23 13:42:10 —-A—- C:WINDOWSsystem32avwav.dll
2008-12-23 13:42:10 —-A—- C:WINDOWSsystem32avtapi.dll
2008-12-23 13:42:10 —-A—- C:WINDOWSsystem32avmeter.dll
2008-12-23 13:42:09 —-A—- C:WINDOWSsystem32winchat.exe
2008-12-23 13:42:02 —-A—- C:WINDOWSsystem32getuname.dll
2008-12-23 13:42:02 —-A—- C:WINDOWSsystem32charmap.exe
2008-12-23 13:42:01 —-A—- C:WINDOWSsystem32winmine.exe
2008-12-23 13:42:01 —-A—- C:WINDOWSsystem32sol.exe
2008-12-23 13:42:01 —-A—- C:WINDOWSsystem32calc.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32usrlogon.cmd
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tsshutdn.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tslabels.ini
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tskill.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tsdiscon.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tscon.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32reset.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32mshearts.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32freecell.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32shadow.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32rwinsta.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32regini.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32rdpcfgex.dll
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32qwinsta.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32qappsrv.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32msg.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32logoff.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32cdmodem.dll
2008-12-23 13:41:58 —-A—- C:WINDOWSsystem32msdtcprf.ini
2008-12-23 13:41:58 —-A—- C:WINDOWSsystem32dcomcnfg.exe
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32stclient.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32mtxlegih.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32mtxex.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32mtxdm.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32comsnap.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32comrepl.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32comaddin.dll
2008-12-23 13:41:51 —-A—- C:WINDOWSsystem32wmimgmt.msc
2008-12-23 13:41:50 —-A—- C:WINDOWSsystem32sndrec32.exe
2008-12-23 13:41:50 —-A—- C:WINDOWSsystem32mplay32.exe
2008-12-23 13:41:50 —-A—- C:WINDOWSsystem32accwiz.exe
2008-12-23 13:41:49 —-D—- C:Program FilesWindows NT
2008-12-23 13:41:49 —-A—- C:WINDOWSsystem32mspaint.exe
2008-12-23 13:41:49 —-A—- C:WINDOWSsystem32hypertrm.dll
2008-12-23 13:41:48 —-A—- C:WINDOWSsystem32spider.exe
2008-12-23 13:41:48 —-A—- C:WINDOWSsystem32clipbrd.exe
2008-12-23 13:41:47 —-A—- C:WINDOWSsystem32tscfgwmi.dll
2008-12-23 13:41:47 —-A—- C:WINDOWSsystem32mstscax.dll
2008-12-23 13:41:47 —-A—- C:WINDOWSsystem32mstsc.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32tscupgrd.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32termsrv.dll
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32sessmgr.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32remotepg.dll
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32rdshost.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32rdsaddin.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32rdchost.dll
2008-12-23 13:41:45 —-D—- C:WINDOWSsystem32MsDtc
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32rdpwsx.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32rdpsnd.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32rdpclip.exe
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32qprocess.exe
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32mtxoci.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32msdtcuiu.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32icaapi.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32cfgbkend.dll
2008-12-23 13:41:44 —-A—- C:WINDOWSsystem32xolehlp.dll
2008-12-23 13:41:44 —-A—- C:WINDOWSsystem32msdtctm.dll
2008-12-23 13:41:44 —-A—- C:WINDOWSsystem32msdtcprx.dll
2008-12-23 13:41:43 —-A—- C:WINDOWSsystem32msdtclog.dll
2008-12-23 13:41:43 —-A—- C:WINDOWSsystem32msdtc.exe
2008-12-23 13:41:42 —-D—- C:WINDOWSsystem32Com
2008-12-23 13:41:42 —-A—- C:WINDOWSsystem32colbact.dll
2008-12-23 13:41:42 —-A—- C:WINDOWSsystem32clbcatex.dll
2008-12-23 13:41:42 —-A—- C:WINDOWSsystem32catsrvut.dll
2008-12-23 13:41:42 —-A—- C:WINDOWSsystem32catsrvps.dll
2008-12-23 13:41:41 —-A—- C:WINDOWSsystem32comsvcs.dll
2008-12-23 13:41:41 —-A—- C:WINDOWSsystem32catsrv.dll
2008-12-23 13:41:40 —-A—- C:WINDOWSsystem32comuid.dll
2008-12-23 13:41:40 —-A—- C:WINDOWSsystem32clbcatq.dll
2008-12-23 13:41:33 —-A—- C:WINDOWSsystem32servdeps.dll
2008-12-23 13:41:33 —-A—- C:WINDOWSsystem32mmfutil.dll
2008-12-23 13:41:33 —-A—- C:WINDOWSsystem32licwmi.dll
2008-12-23 13:41:33 —-A—- C:WINDOWSsystem32cmprops.dll======List of files/folders modified in the last 1 months======
2009-01-01 20:22:17 —-A—- C:WINDOWSwin.ini
2008-12-23 16:34:55 —-A—- C:WINDOWSsystem.ini======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK7;Драйвер AMD K7 процессора; C:WINDOWSsystem32DRIVERSamdk7.sys [2004-08-17 41728]
R1 eeCtrl;Symantec Eraser Control driver; ??C:Program FilesCommon FilesSymantec SharedEENGINEeeCtrl.sys []
R1 SAVRT;SAVRT; ??C:Program FilesSymantec AntiVirussavrt.sys []
R1 SAVRTPEL;SAVRTPEL; ??C:Program FilesSymantec AntiVirusSavrtpel.sys []
R1 SPBBCDrv;SPBBCDrv; ??C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCDrv.sys []
R1 SYMTDI;SYMTDI; C:WINDOWSSystem32DriversSYMTDI.SYS [2007-02-12 196752]
R2 BTSERIAL;Bluetooth Serial Driver; ??C:WINDOWSsystem32driversbtserial.sys []
R2 BTSLBCSP;Bluetooth Port Client Driver; ??C:WINDOWSsystem32driversbtslbcsp.sys []
R2 DgiVecp;DgiVecp; ??C:WINDOWSsystem32DriversDgiVecp.sys []
R3 ALCXWDM;Service for Avance AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2002-02-04 278908]
R3 BTKRNL;Нумератор шины Bluetooth; C:WINDOWSsystem32DRIVERSbtkrnl.sys [2006-05-12 1342602]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; ??C:Program FilesCommon FilesSymantec SharedEENGINEEraserUtilRebootDrv.sys []
R3 FETNDIS;VIA Rhine Family Fast Ethernet Adapter Driver; C:WINDOWSsystem32DRIVERSfetnd5b.sys [2002-03-21 36352]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 ms_mpu401;Драйвер UART Microsoft MPU-401 MIDI; C:WINDOWSsystem32driversmsmpu401.sys [2001-08-18 2944]
R3 NAVENG;NAVENG; ??C:PROGRA~1COMMON~1SYMANT~1VIRUSD~120090106.004naveng.sys []
R3 NAVEX15;NAVEX15; ??C:PROGRA~1COMMON~1SYMANT~1VIRUSD~120090106.004navex15.sys []
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2004-08-04 1897408]
R3 SymEvent;SymEvent; ??C:WINDOWSsystem32DriversSYMEVENT.SYS []
R3 SYMREDRV;SYMREDRV; C:WINDOWSSystem32DriversSYMREDRV.SYS [2007-02-12 24720]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-03 26624]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-03 57600]
R3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
R3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-03 20480]
S2 SSPORT;SSPORT; ??C:WINDOWSsystem32DriversSSPORT.sys []
S3 btaudio;Аудиоустройство Bluetooth; C:WINDOWSsystem32driversbtaudio.sys [2006-05-12 401664]
S3 BTDriver;Драйвер виртуальной связи Bluetooth; C:WINDOWSsystem32DRIVERSbtport.sys [2006-05-12 30363]
S3 BTWDNDIS;Сервер доступа к локальной сети Bluetooth; C:WINDOWSsystem32DRIVERSbtwdndis.sys [2006-05-12 148168]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:WINDOWSSystem32Driversbtwusb.sys [2006-05-12 57320]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 btwdins;Bluetooth Service; C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe [2006-05-12 258103]
R2 ccEvtMgr;Symantec Event Manager; C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe [2006-11-21 192104]
R2 ccSetMgr;Symantec Settings Manager; C:Program FilesCommon FilesSymantec SharedccSetMgr.exe [2006-11-21 169576]
R2 DefWatch;Монитор описаний Symantec AntiVirus; C:Program FilesSymantec AntiVirusDefWatch.exe [2007-05-16 31280]
R2 SPBBCSvc;Symantec SPBBCSvc; C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe [2007-01-10 1160792]
R2 Symantec AntiVirus;Symantec AntiVirus; C:Program FilesSymantec AntiVirusRtvscan.exe [2007-05-16 1825328]
S3 LiveUpdate;LiveUpdate; C:PROGRA~1SymantecLIVEUP~1LUCOMS~1.EXE [2007-01-31 2918008]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 SavRoam;SAVRoam; C:Program FilesSymantec AntiVirusSavRoam.exe [2007-05-16 119344]
S3 SNDSrvc;Symantec Network Drivers Service; C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe [2007-02-12 214672]
EOF
Здравствуйте Наталья, добро пожаловать на Spyware-ru форум.
Кроме описанной вами проблемы, ваш компьютер заражён autorun.inf трояном.
Прочитайте эту инструкцию Flash_Disinfector ещё одно оружие против autorun.inf троянов. Скачайте и запустите Flash_Disinfector, не забудьте при этом по требованию программы вставить ваш флэш диск или подключить другие внешние устройства хранения информации.Скачайте OTMoveIt3 by OldTimer кликнув по этой ссылке.
Запустите программу и в большое поле ввода (заголовок этого поля выделено желтым цветом) скопируйте следующий текст.:Processes
explorer.exe
:reg
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{065C52C3-9AA2-4577-AFB0-33F17EA5686E}]
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{448d1904-d0f5-11dd-85a0-806d6172696f}]
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b26f011-d8cb-11dd-82ac-0021917a2627}]
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f5ed6d57-d0e0-11dd-828f-837d3829289f}]
:files
C:Documents and SettingsAll UsersApplication Dataagblib.dll
:Commands
[emptytemp]
[start explorer]
[Reboot]Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
По-завершении работы программы должен будет показан лог, вставьте его в ваш ответ.
Так же к вашему ответу приложите свежий RSIT лог.- Темы:532
- Сообщений:1553
- ☆☆☆☆☆
Огромное вам спасибо! я вам так благодарна. Я очень рада что нашла ваш форум. Редко встретишь в нашей жизни людей которые могут так помогать, тем более бескорыстно! А вы на самом деле очень очень нам помогаете. Ещё раз спасибо!
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{065C52C3-9AA2-4577-AFB0-33F17EA5686E}\ deleted successfully.
Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{448d1904-d0f5-11dd-85a0-806d6172696f}\ deleted successfully.
Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8b26f011-d8cb-11dd-82ac-0021917a2627}\ deleted successfully.
Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{f5ed6d57-d0e0-11dd-828f-837d3829289f}\ deleted successfully.
========== FILES ==========
C:Documents and SettingsAll UsersApplication Dataagblib.dll unregistered successfully.
C:Documents and SettingsAll UsersApplication Dataagblib.dll moved successfully.
========== COMMANDS ==========
File delete failed. C:DOCUME~14977~1LOCALS~1Temp~DF8BD0.tmp scheduled to be deleted on reboot.
User’s Temp folder emptied.
User’s Temporary Internet Files folder emptied.
User’s Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Temp folders emptied.
Explorer started successfullyOTMoveIt3 by OldTimer — Version 1.0.8.0 log created on 01052009_234151
Files moved on Reboot…
C:DOCUME~14977~1LOCALS~1Temp~DF8BD0.tmp moved successfully.
File move failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be moved on reboot.
Logfile of random’s system information tool 1.05 (written by random/random)
Run by Наташа at 2009-01-06 00:04:52
Microsoft Windows XP Professional Service Pack 2
System drive C: has 7 GB (62%) free of 12 GB
Total RAM: 255 MB (23% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0:05:02, on 06.01.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe
C:Program FilesSymantec AntiVirusDefWatch.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesSymantec AntiVirusRtvscan.exe
C:WINDOWSnotepad.exe
C:WINDOWSSOUNDMAN.EXE
C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe
C:Program FilesCommon FilesSymantec SharedccApp.exe
C:PROGRA~1SYMANT~1VPTray.exe
C:Program FilesMail.RuAgentMAgent.exe
C:WINDOWSSamsungSMPanelMgrSSMMgr.exe
C:Program FilesSamsungSamsung SCX-4×21 SeriesPSUScan2pc.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesWIDCOMMПрограммное обеспечение BluetoothBTTray.exe
C:WINDOWSexplorer.exe
C:Program FilesInternet Exploreriexplore.exe
C:Documents and SettingsНаташаРабочий столRSIT.exe
C:Program Filestrend microНаташа.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.mail.ru/
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 — BHO: Groove GFS Browser Helper — {72853161-30C5-4D22-B7F9-0BBC1D38A37E} — C:PROGRA~1MICROS~2Office12GRA8E1~1.DLL
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 — HKLM..Run: [GrooveMonitor] «C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe»
O4 — HKLM..Run: [ccApp] «C:Program FilesCommon FilesSymantec SharedccApp.exe»
O4 — HKLM..Run: [vptray] C:PROGRA~1SYMANT~1VPTray.exe
O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 8.0ReaderReader_sl.exe»
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [SamsungSM PanelMgr] C:WINDOWSSamsungSMPanelMgrSSMMgr.exe /autorun
O4 — HKLM..Run: [WHITNEY_S2P] C:Program FilesSamsungSamsung SCX-4×21 SeriesPSUScan2pc.exe
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Global Startup: BTTray.lnk = ?
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O8 — Extra context menu item: Отправить через &Bluetooth — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbtsendto_ie_ctx.htm
O8 — Extra context menu item: Поиск@Mail.Ru — res://C:Program FilesMail.RuSputnikMailRuSputnik.dll/282
O8 — Extra context menu item: Словари@Mail.Ru — res://C:Program FilesMail.RuSputnikMailRuSputnik.dll/283
O9 — Extra button: Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra ‘Tools’ menuitem: &Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: @btrez.dll,-4015 — {CCA281CA-C863-46ef-9331-5C8D4460577F} — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbtsendto_ie.htm
O9 — Extra ‘Tools’ menuitem: @btrez.dll,-4017 — {CCA281CA-C863-46ef-9331-5C8D4460577F} — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbtsendto_ie.htm
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O17 — HKLMSystemCCSServicesTcpip..{13915705-247C-4123-81DA-B5B18C03C77E}: NameServer = 195.161.184.2,195.161.184.4
O17 — HKLMSystemCS1ServicesTcpip..{13915705-247C-4123-81DA-B5B18C03C77E}: NameServer = 195.161.184.2,195.161.184.4
O17 — HKLMSystemCS2ServicesTcpip..{13915705-247C-4123-81DA-B5B18C03C77E}: NameServer = 195.161.184.2,195.161.184.4
O18 — Protocol: grooveLocalGWS — {88FED34C-F0CA-4636-A375-3CB6248B04CD} — C:PROGRA~1MICROS~2Office12GR99D3~1.DLL
O23 — Service: Bluetooth Service (btwdins) — Broadcom Corporation. — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe
O23 — Service: Symantec Event Manager (ccEvtMgr) — Symantec Corporation — C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
O23 — Service: Symantec Settings Manager (ccSetMgr) — Symantec Corporation — C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
O23 — Service: Монитор описаний Symantec AntiVirus (DefWatch) — Symantec Corporation — C:Program FilesSymantec AntiVirusDefWatch.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: LiveUpdate — Symantec Corporation — C:PROGRA~1SymantecLIVEUP~1LUCOMS~1.EXE
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: SAVRoam (SavRoam) — symantec — C:Program FilesSymantec AntiVirusSavRoam.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Symantec Network Drivers Service (SNDSrvc) — Symantec Corporation — C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe
O23 — Service: Symantec SPBBCSvc (SPBBCSvc) — Symantec Corporation — C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe
O23 — Service: Symantec AntiVirus — Symantec Corporation — C:Program FilesSymantec AntiVirusRtvscan.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 7948 bytes======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2006-10-22 62080][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper — C:PROGRA~1MICROS~2Office12GRA8E1~1.DLL [2006-10-27 2210608][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2009-01-05 676704][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2009-01-05 676704][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2002-02-05 46592]
«NeroFilterCheck»=C:WINDOWSsystem32NeroCheck.exe [2001-07-09 155648]
«GrooveMonitor»=C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2006-10-27 31016]
«ccApp»=C:Program FilesCommon FilesSymantec SharedccApp.exe [2006-11-21 52840]
«vptray»=C:PROGRA~1SYMANT~1VPTray.exe [2007-05-16 125488]
«Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [2008-01-11 39792]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2009-01-05 5598392]
«SamsungSM PanelMgr»=C:WINDOWSSamsungSMPanelMgrSSMMgr.exe [2008-02-28 536576]
«WHITNEY_S2P»=C:Program FilesSamsungSamsung SCX-4×21 SeriesPSUScan2pc.exe [2006-03-27 229376][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-17 15360]C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
BTTray.lnk — C:Program FilesWIDCOMMПрограммное обеспечение BluetoothBTTray.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyNavLogon]
C:WINDOWSsystem32NavLogon.dll [2007-05-16 43568][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:PROGRA~1MICROS~2Office12GRA8E1~1.DLL [2006-10-27 2210608][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=36
«NoDriveAutoRun»=FFFFFFFF[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE»=»C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook»
«C:Program FilesMicrosoft OfficeOffice12GROOVE.EXE»=»C:Program FilesMicrosoft OfficeOffice12GROOVE.EXE:*:Enabled:Microsoft Office Groove»
«C:Program FilesMicrosoft OfficeOffice12ONENOTE.EXE»=»C:Program FilesMicrosoft OfficeOffice12ONENOTE.EXE:*:Enabled:Microsoft Office OneNote»
«D:ИгрыWarCraftIII — Пробуждение ЗлаWarcraft III.exe»=»D:ИгрыWarCraftIII — Пробуждение ЗлаWarcraft III.exe:*:Enabled:Warcraft III»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»======List of files/folders created in the last 1 months======
2009-01-07 06:56:39 —-D—- C:Documents and SettingsНаташаApplication DataMacromedia
2009-01-06 19:44:11 —-D—- C:Documents and SettingsНаташаApplication DataSmarThru4
2009-01-06 19:43:55 —-A—- C:WINDOWSprinst.exe
2009-01-06 19:43:44 —-A—- C:WINDOWSsystem32SamFaxPort.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LTRPR13n.DLL
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LTRIO13N.DLL
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LTR13N.DLL
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfpsd13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LFPNM13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32Lfpng13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfpcx13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfpcd13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfmsp13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfjbg13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LFJ2K13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfitg13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfitg13n.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfimg13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfimg13n.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfiff13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfiff13n.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lffax13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lffax13n.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfeps13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32LFCMP13s.DLL
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfclp13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfbmp13s.dll
2009-01-06 19:43:41 —-A—- C:WINDOWSsystem32lfavi13s.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32PCDLIB32.DLL
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lttwn13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LTTLB13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32Ltpnt13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32ltpdg13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LTOCR13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32ltefx13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LTCLR13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32ltbar13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lftif13s.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lftif13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfpsd13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LFPNM13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32Lfpng13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfpcx13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfpcd13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfmsp13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfjbg13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LFJ2K13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfeps13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32LFCMP13n.DLL
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfclp13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfavi13n.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfani13s.dll
2009-01-06 19:43:40 —-A—- C:WINDOWSsystem32lfani13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32Mfcoleui.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32Ltwvc13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32lttmb13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltlst13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltkrn13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltimg13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltfil13n.DLL
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32ltdlg13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32LTDIS13n.dll
2009-01-06 19:43:39 —-A—- C:WINDOWSsystem32lfbmp13n.dll
2009-01-06 19:43:38 —-A—- C:WINDOWSsystem32msxml4r.dll
2009-01-06 19:43:38 —-A—- C:WINDOWSsystem32msxml4.dll
2009-01-06 19:43:31 —-A—- C:WINDOWSReadiris.ini
2009-01-06 19:43:26 —-A—- C:WINDOWSsystem32irisco32.dll
2009-01-06 19:42:42 —-D—- C:Program FilesReadiris
2009-01-06 19:42:23 —-D—- C:Program FilesSmarThru 4
2009-01-06 19:41:57 —-A—- C:WINDOWSssndii.exe
2009-01-06 19:41:50 —-D—- C:WINDOWSSamsungSM
2009-01-06 19:41:42 —-A—- C:WINDOWSWiainst.exe
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32WIASTIIO.dll
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32WIAIPH.dll
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32WIAEH.dll
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32Sswiadrv.dll
2009-01-06 19:41:41 —-RA—- C:WINDOWSsystem32Ssuiext.dll
2009-01-06 19:41:41 —-A—- C:WINDOWSsystem32Ssusbpn.dll
2009-01-06 19:41:41 —-A—- C:WINDOWSsystem32Ssdevm.dll
2009-01-06 19:38:23 —-A—- C:WINDOWSsystem32SUGW2LMK.DLL
2009-01-06 19:38:15 —-A—- C:WINDOWSsystem32SUGW2CI.exe
2009-01-06 19:38:14 —-A—- C:WINDOWSsystem32SUGW2CI.dll
2009-01-06 19:36:28 —-D—- C:Program FilesSamsung
2009-01-05 23:57:05 —-RASHD—- C:autorun.inf
2009-01-05 23:41:15 —-D—- C:_OTMoveIt
2009-01-05 19:58:18 —-D—- C:Documents and SettingsНаташаApplication DataMra
2009-01-05 19:58:09 —-D—- C:Program FilesMail.Ru
2009-01-05 00:32:59 —-D—- C:Program Filestrend micro
2009-01-05 00:32:56 —-D—- C:rsit
2009-01-03 15:57:07 —-D—- C:музыка хрен знает
2009-01-01 20:40:35 —-A—- C:WINDOWSsymgame.ini
2009-01-01 20:22:53 —-A—- C:WINDOWSEntPack.ini
2008-12-31 23:54:28 —-A—- C:WINDOWSsumgame.ini
2008-12-31 23:51:02 —-A—- C:WINDOWSSYMGAMES.INI
2008-12-25 14:41:29 —-D—- C:Program FilesCommon FilesDirectX
2008-12-23 20:33:28 —-D—- C:Documents and SettingsНаташаApplication DataAdobe
2008-12-23 20:32:06 —-D—- C:Documents and SettingsAll UsersApplication DataAdobe
2008-12-23 20:31:47 —-D—- C:Program FilesCommon FilesAdobe
2008-12-23 20:31:46 —-D—- C:Program FilesAdobe
2008-12-23 20:25:14 —-D—- C:WINDOWSsystem32appmgmt
2008-12-23 20:14:21 —-SHD—- C:RECYCLER
2008-12-23 17:09:51 —-A—- C:WINDOWSvpc32.INI
2008-12-23 16:40:33 —-A—- C:WINDOWSsystem32h323log.txt
2008-12-23 16:37:03 —-A—- C:WINDOWSsystem32nv4_disp.dll
2008-12-23 16:36:39 —-A—- C:WINDOWSsystem32ksuser.dll
2008-12-23 16:36:19 —-A—- C:WINDOWSsystem32usbui.dll
2008-12-23 16:35:05 —-A—- C:WINDOWSimsins.BAK
2008-12-23 16:35:02 —-SHD—- C:WINDOWSInstaller
2008-12-23 16:35:02 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2008-12-23 16:35:01 —-D—- C:Program FilesCommon FilesODBC
2008-12-23 16:35:01 —-A—- C:WINDOWSODBCINST.INI
2008-12-23 16:34:57 —-D—- C:Program FilesCommon FilesSpeechEngines
2008-12-23 16:34:56 —-RD—- C:Program Files
2008-12-23 16:34:56 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2008-12-23 16:34:56 —-D—- C:Program FilesCommon Files
2008-12-23 16:34:52 —-RA—- C:WINDOWSsystem32kbdtuq.dll
2008-12-23 16:34:52 —-RA—- C:WINDOWSsystem32kbdtuf.dll
2008-12-23 16:34:52 —-RA—- C:WINDOWSsystem32kbdazel.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhept.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhela3.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhela2.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhe319.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhe220.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdhe.dll
2008-12-23 16:34:50 —-RA—- C:WINDOWSsystem32kbdgkl.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdlv1.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdlv.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdlt1.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdlt.dll
2008-12-23 16:34:48 —-RA—- C:WINDOWSsystem32kbdest.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdycl.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdsl1.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdsl.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdro.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdpl1.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdpl.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdhu1.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdhu.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdcz2.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdcz1.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdcz.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32kbdcr.dll
2008-12-23 16:34:46 —-RA—- C:WINDOWSsystem32KBDAL.DLL
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbduzb.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdtat.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdmon.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdkyr.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdkaz.dll
2008-12-23 16:34:42 —-A—- C:WINDOWSsystem32kbdaze.dll
2008-12-23 16:34:41 —-A—- C:WINDOWSsystem32kbdycc.dll
2008-12-23 16:34:41 —-A—- C:WINDOWSsystem32kbdur.dll
2008-12-23 16:34:41 —-A—- C:WINDOWSsystem32kbdbu.dll
2008-12-23 16:34:41 —-A—- C:WINDOWSsystem32kbdblr.dll
2008-12-23 16:34:40 —-A—- C:WINDOWSsystem32spxcoins.dll
2008-12-23 16:34:40 —-A—- C:WINDOWSsystem32irclass.dll
2008-12-23 16:34:40 —-A—- C:WINDOWSsystem32dgsetup.dll
2008-12-23 16:34:40 —-A—- C:WINDOWSsystem32dgrpsetu.dll
2008-12-23 16:34:39 —-A—- C:WINDOWSsystem32EqnClass.Dll
2008-12-23 16:34:37 —-N—- C:WINDOWSsystem32CONFIG.TMP
2008-12-23 16:34:37 —-A—- C:WINDOWSTASKMAN.EXE
2008-12-23 16:34:36 —-A—- C:WINDOWSsystem32batt.dll
2008-12-23 16:34:36 —-A—- C:WINDOWSNOTEPAD.EXE
2008-12-23 16:34:35 —-A—- C:WINDOWSsystem32storprop.dll
2008-12-23 16:34:26 —-ASH—- C:Documents and SettingsAll UsersApplication Datadesktop.ini
2008-12-23 16:34:21 —-RA—- C:WINDOWSSET8.tmp
2008-12-23 16:34:18 —-RA—- C:WINDOWSSET4.tmp
2008-12-23 16:34:16 —-RA—- C:WINDOWSSET3.tmp
2008-12-23 16:34:11 —-D—- C:WINDOWSsystem32CatRoot2
2008-12-23 16:34:11 —-D—- C:WINDOWSsystem32CatRoot
2008-12-23 16:34:05 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2008-12-23 16:33:42 —-A—- C:WINDOWSsetuplog.txt
2008-12-23 16:33:38 —-SHD—- C:System Volume Information
2008-12-23 16:33:38 —-D—- C:Documents and Settings
2008-12-23 16:32:57 —-SH—- C:boot.ini
2008-12-23 16:27:11 —-RSHDC—- C:WINDOWSsystem32dllcache
2008-12-23 16:27:11 —-RSD—- C:WINDOWSFonts
2008-12-23 16:27:11 —-RD—- C:WINDOWSWeb
2008-12-23 16:27:11 —-HD—- C:WINDOWSinf
2008-12-23 16:27:11 —-D—- C:WINDOWSWinSxS
2008-12-23 16:27:11 —-D—- C:WINDOWStwain_32
2008-12-23 16:27:11 —-D—- C:WINDOWSTemp
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32wins
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32wbem
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32usmt
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32spool
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32ShellExt
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32Setup
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32ras
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32oobe
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32npp
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32mui
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32inetsrv
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32IME
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32icsxml
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32ias
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32export
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32drivers
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32dhcp
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32config
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem323com_dmi
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem323076
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem322052
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321054
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321049
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321042
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321041
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321037
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321033
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321031
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321028
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem321025
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem32
2008-12-23 16:27:11 —-D—- C:WINDOWSsystem
2008-12-23 16:27:11 —-D—- C:WINDOWSsecurity
2008-12-23 16:27:11 —-D—- C:WINDOWSResources
2008-12-23 16:27:11 —-D—- C:WINDOWSrepair
2008-12-23 16:27:11 —-D—- C:WINDOWSProvisioning
2008-12-23 16:27:11 —-D—- C:WINDOWSPeerNet
2008-12-23 16:27:11 —-D—- C:WINDOWSpchealth
2008-12-23 16:27:11 —-D—- C:WINDOWSmui
2008-12-23 16:27:11 —-D—- C:WINDOWSmsapps
2008-12-23 16:27:11 —-D—- C:WINDOWSmsagent
2008-12-23 16:27:11 —-D—- C:WINDOWSMedia
2008-12-23 16:27:11 —-D—- C:WINDOWSjava
2008-12-23 16:27:11 —-D—- C:WINDOWSime
2008-12-23 16:27:11 —-D—- C:WINDOWSHelp
2008-12-23 16:27:11 —-D—- C:WINDOWSehome
2008-12-23 16:27:11 —-D—- C:WINDOWSDriver Cache
2008-12-23 16:27:11 —-D—- C:WINDOWSDebug
2008-12-23 16:27:11 —-D—- C:WINDOWSCursors
2008-12-23 16:27:11 —-D—- C:WINDOWSConnection Wizard
2008-12-23 16:27:11 —-D—- C:WINDOWSConfig
2008-12-23 16:27:11 —-D—- C:WINDOWSAppPatch
2008-12-23 16:27:11 —-D—- C:WINDOWSaddins
2008-12-23 16:27:11 —-D—- C:WINDOWS
2008-12-23 16:17:30 —-A—- C:WINDOWSwinamp.ini
2008-12-23 15:57:45 —-A—- C:WINDOWSNeroDigital.ini
2008-12-23 15:57:38 —-D—- C:Documents and SettingsНаташаApplication DataMedia Player Classic
2008-12-23 14:56:58 —-D—- C:Program FilesWIDCOMM
2008-12-23 14:27:01 —-A—- C:WINDOWSsystem32S32EVNT1.DLL
2008-12-23 14:26:57 —-D—- C:WINDOWSRegisteredPackages
2008-12-23 14:26:46 —-D—- C:Program FilesSymantec AntiVirus
2008-12-23 14:25:29 —-A—- C:WINDOWSsystem32capicom.dll
2008-12-23 14:25:28 —-D—- C:Program FilesSymantec
2008-12-23 14:25:28 —-D—- C:Program FilesCommon FilesSymantec Shared
2008-12-23 14:25:28 —-D—- C:Documents and SettingsAll UsersApplication DataSymantec
2008-12-23 14:25:28 —-A—- C:WINDOWSsystem32MFC71.DLL
2008-12-23 14:13:29 —-A—- C:WINDOWSsystem32msonpmon.dll
2008-12-23 14:11:44 —-D—- C:Program FilesMicrosoft Works
2008-12-23 14:11:32 —-D—- C:Program FilesMSBuild
2008-12-23 14:10:46 —-D—- C:Program FilesMicrosoft Visual Studio
2008-12-23 14:10:45 —-D—- C:Program FilesCommon FilesDESIGNER
2008-12-23 14:07:06 —-D—- C:WINDOWSSHELLNEW
2008-12-23 14:06:39 —-D—- C:Program FilesMicrosoft Office
2008-12-23 14:06:38 —-D—- C:Documents and SettingsAll UsersApplication DataMicrosoft Help
2008-12-23 14:05:58 —-D—- C:Documents and SettingsНаташаApplication DataAIMP
2008-12-23 14:05:26 —-RHD—- C:MSOCache
2008-12-23 14:05:00 —-A—- C:WINDOWSsystem32TwnLib20.dll
2008-12-23 14:04:58 —-N—- C:WINDOWSsystem32ImagXRA7.dll
2008-12-23 14:04:58 —-N—- C:WINDOWSsystem32ImagXR7.dll
2008-12-23 14:04:58 —-N—- C:WINDOWSsystem32ImagXpr7.dll
2008-12-23 14:04:58 —-N—- C:WINDOWSsystem32ImagX7.dll
2008-12-23 14:04:58 —-D—- C:Program FilesCommon FilesAhead
2008-12-23 14:04:58 —-A—- C:WINDOWSsystem32NeroCheck.exe
2008-12-23 14:04:54 —-D—- C:Program FilesAhead
2008-12-23 14:04:27 —-D—- C:Program FilesAIMP Classic
2008-12-23 14:03:38 —-D—- C:Program FilesWinRAR
2008-12-23 14:01:02 —-D—- C:Program FilesLight Alloy
2008-12-23 14:00:48 —-A—- C:WINDOWSsystem32xvidvfw.dll
2008-12-23 14:00:48 —-A—- C:WINDOWSsystem32xvidcore.dll
2008-12-23 14:00:48 —-A—- C:WINDOWSsystem32WMV9VCM.dll
2008-12-23 14:00:47 —-A—- C:WINDOWSsystem32qt-dx331.dll
2008-12-23 14:00:46 —-A—- C:WINDOWSsystem32ff_vfw.dll.manifest
2008-12-23 14:00:46 —-A—- C:WINDOWSsystem32ff_vfw.dll
2008-12-23 14:00:45 —-A—- C:WINDOWSsystem32msvcr71.dll
2008-12-23 14:00:45 —-A—- C:WINDOWSsystem32msvcp71.dll
2008-12-23 14:00:44 —-D—- C:Program FilesK-Lite Codec Pack
2008-12-23 13:56:12 —-D—- C:WINDOWSsystem32ReinstallBackups
2008-12-23 13:55:59 —-A—- C:WINDOWSIsUninst.exe
2008-12-23 13:55:38 —-D—- C:Program FilesAvance Sound Manager
2008-12-23 13:55:35 —-N—- C:WINDOWSavrack.ini
2008-12-23 13:55:35 —-D—- C:Program FilesAvRack
2008-12-23 13:55:34 —-N—- C:WINDOWSalcupd.exe
2008-12-23 13:55:34 —-N—- C:WINDOWSalcrmv.exe
2008-12-23 13:55:34 —-A—- C:WINDOWSSOUNDMAN.EXE
2008-12-23 13:55:33 —-HD—- C:Program FilesInstallShield Installation Information
2008-12-23 13:55:28 —-D—- C:Program FilesCommon FilesInstallShield
2008-12-23 13:52:53 —-D—- C:Documents and SettingsНаташаApplication DataIdentities
2008-12-23 13:52:52 —-HD—- C:Program FilesUninstall Information
2008-12-23 13:52:47 —-ASH—- C:Documents and SettingsНаташаApplication Datadesktop.ini
2008-12-23 13:52:46 —-SD—- C:Documents and SettingsНаташаApplication DataMicrosoft
2008-12-23 13:51:50 —-D—- C:WINDOWSSoftwareDistribution
2008-12-23 13:51:49 —-D—- C:WINDOWSPrefetch
2008-12-23 13:51:48 —-SD—- C:WINDOWSsystem32Microsoft
2008-12-23 13:51:48 —-A—- C:WINDOWSSchedLgU.Txt
2008-12-23 13:47:29 —-D—- C:WINDOWSsystem32xircom
2008-12-23 13:47:29 —-D—- C:Program Filesxerox
2008-12-23 13:47:29 —-D—- C:Program Filesmicrosoft frontpage
2008-12-23 13:47:03 —-A—- C:WINDOWScontrol.ini
2008-12-23 13:47:03 —-A—- C:AUTOEXEC.BAT
2008-12-23 13:46:49 —-A—- C:WINDOWSOEWABLog.txt
2008-12-23 13:46:44 —-A—- C:WINDOWSsystem32mapi32.dll
2008-12-23 13:45:36 —-RD—- C:WINDOWSOffline Web Pages
2008-12-23 13:45:35 —-SD—- C:WINDOWSDownloaded Program Files
2008-12-23 13:45:35 —-RAH—- C:WINDOWSsystem32logonui.exe.manifest
2008-12-23 13:45:28 —-RAH—- C:WINDOWSsystem32cdplayer.exe.manifest
2008-12-23 13:45:23 —-HD—- C:Program FilesWindowsUpdate
2008-12-23 13:45:18 —-D—- C:Program FilesOnline Services
2008-12-23 13:44:57 —-D—- C:WINDOWSsystem32DirectX
2008-12-23 13:44:34 —-A—- C:WINDOWSsystem32atrace.dll
2008-12-23 13:44:31 —-A—- C:WINDOWSsystem32desktop.ini
2008-12-23 13:44:31 —-A—- C:WINDOWSdesktop.ini
2008-12-23 13:44:23 —-A—- C:WINDOWSsystem32nmevtmsg.dll
2008-12-23 13:44:22 —-A—- C:WINDOWSsystem32acctres.dll
2008-12-23 13:44:21 —-D—- C:Program FilesCommon FilesServices
2008-12-23 13:44:19 —-SD—- C:WINDOWSTasks
2008-12-23 13:44:19 —-A—- C:WINDOWSsystem32icfgnt5.dll
2008-12-23 13:44:17 —-D—- C:Program FilesCommon FilesMSSoap
2008-12-23 13:44:12 —-D—- C:WINDOWSsrchasst
2008-12-23 13:44:11 —-D—- C:WINDOWSsystem32Macromed
2008-12-23 13:44:08 —-A—- C:WINDOWSsystem32wuweb.dll
2008-12-23 13:44:07 —-A—- C:WINDOWSsystem32wucltui.dll
2008-12-23 13:44:07 —-A—- C:WINDOWSsystem32wuauserv.dll
2008-12-23 13:44:07 —-A—- C:WINDOWSsystem32wuaueng1.dll
2008-12-23 13:44:07 —-A—- C:WINDOWSsystem32wuaueng.dll
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32wups.dll
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32wuauclt1.exe
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32wuauclt.exe
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32wuapi.dll
2008-12-23 13:44:06 —-A—- C:WINDOWSsystem32bitsprx3.dll
2008-12-23 13:44:05 —-A—- C:WINDOWSsystem32qmgrprxy.dll
2008-12-23 13:44:05 —-A—- C:WINDOWSsystem32qmgr.dll
2008-12-23 13:44:05 —-A—- C:WINDOWSsystem32bitsprx2.dll
2008-12-23 13:44:01 —-D—- C:Program FilesMovie Maker
2008-12-23 13:43:56 —-A—- C:WINDOWSsystem32safrslv.dll
2008-12-23 13:43:56 —-A—- C:WINDOWSsystem32safrdm.dll
2008-12-23 13:43:56 —-A—- C:WINDOWSsystem32safrcdlg.dll
2008-12-23 13:43:56 —-A—- C:WINDOWSsystem32racpldlg.dll
2008-12-23 13:43:51 —-A—- C:WINDOWSsystem32fltMc.exe
2008-12-23 13:43:51 —-A—- C:WINDOWSsystem32fltlib.dll
2008-12-23 13:43:50 —-D—- C:WINDOWSsystem32Restore
2008-12-23 13:43:50 —-A—- C:WINDOWSsystem32srsvc.dll
2008-12-23 13:43:50 —-A—- C:WINDOWSsystem32srrstr.dll
2008-12-23 13:43:50 —-A—- C:WINDOWSsystem32srclient.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32nmmkcert.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32msconf.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32mnmsrvc.exe
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32mnmdd.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32isrdbg32.dll
2008-12-23 13:43:49 —-A—- C:WINDOWSsystem32ils.dll
2008-12-23 13:43:45 —-D—- C:Program FilesNetMeeting
2008-12-23 13:43:45 —-A—- C:WINDOWSsystem32msoert2.dll
2008-12-23 13:43:45 —-A—- C:WINDOWSsystem32msoeacct.dll
2008-12-23 13:43:44 —-A—- C:WINDOWSsystem32inetres.dll
2008-12-23 13:43:43 —-A—- C:WINDOWSsystem32inetcomm.dll
2008-12-23 13:43:41 —-D—- C:Program FilesOutlook Express
2008-12-23 13:43:41 —-A—- C:WINDOWSsystem32schedsvc.dll
2008-12-23 13:43:41 —-A—- C:WINDOWSsystem32mstinit.exe
2008-12-23 13:43:41 —-A—- C:WINDOWSsystem32mstask.dll
2008-12-23 13:43:40 —-A—- C:WINDOWSsystem32isign32.dll
2008-12-23 13:43:40 —-A—- C:WINDOWSsystem32icwphbk.dll
2008-12-23 13:43:40 —-A—- C:WINDOWSsystem32icwdial.dll
2008-12-23 13:43:39 —-A—- C:WINDOWSsystem32inetcfg.dll
2008-12-23 13:43:32 —-D—- C:Program FilesCommon FilesSystem
2008-12-23 13:43:31 —-D—- C:Program FilesInternet Explorer
2008-12-23 13:42:47 —-D—- C:Program FilesComPlus Applications
2008-12-23 13:42:45 —-A—- C:WINDOWSvbaddin.ini
2008-12-23 13:42:45 —-A—- C:WINDOWSvb.ini
2008-12-23 13:42:40 —-D—- C:WINDOWSRegistration
2008-12-23 13:42:32 —-D—- C:Program FilesWindows Media Player
2008-12-23 13:42:25 —-D—- C:Program FilesMessenger
2008-12-23 13:42:20 —-D—- C:Program FilesMSN Gaming Zone
2008-12-23 13:42:20 —-A—- C:WINDOWSsystem32write.exe
2008-12-23 13:42:11 —-A—- C:WINDOWSsystem32sndvol32.exe
2008-12-23 13:42:10 —-A—- C:WINDOWSsystem32hticons.dll
2008-12-23 13:42:10 —-A—- C:WINDOWSsystem32avwav.dll
2008-12-23 13:42:10 —-A—- C:WINDOWSsystem32avtapi.dll
2008-12-23 13:42:10 —-A—- C:WINDOWSsystem32avmeter.dll
2008-12-23 13:42:09 —-A—- C:WINDOWSsystem32winchat.exe
2008-12-23 13:42:02 —-A—- C:WINDOWSsystem32getuname.dll
2008-12-23 13:42:02 —-A—- C:WINDOWSsystem32charmap.exe
2008-12-23 13:42:01 —-A—- C:WINDOWSsystem32winmine.exe
2008-12-23 13:42:01 —-A—- C:WINDOWSsystem32sol.exe
2008-12-23 13:42:01 —-A—- C:WINDOWSsystem32calc.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32usrlogon.cmd
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tsshutdn.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tslabels.ini
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tskill.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tsdiscon.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32tscon.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32reset.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32mshearts.exe
2008-12-23 13:42:00 —-A—- C:WINDOWSsystem32freecell.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32shadow.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32rwinsta.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32regini.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32rdpcfgex.dll
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32qwinsta.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32qappsrv.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32msg.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32logoff.exe
2008-12-23 13:41:59 —-A—- C:WINDOWSsystem32cdmodem.dll
2008-12-23 13:41:58 —-A—- C:WINDOWSsystem32msdtcprf.ini
2008-12-23 13:41:58 —-A—- C:WINDOWSsystem32dcomcnfg.exe
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32stclient.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32mtxlegih.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32mtxex.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32mtxdm.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32comsnap.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32comrepl.dll
2008-12-23 13:41:57 —-A—- C:WINDOWSsystem32comaddin.dll
2008-12-23 13:41:51 —-A—- C:WINDOWSsystem32wmimgmt.msc
2008-12-23 13:41:50 —-A—- C:WINDOWSsystem32sndrec32.exe
2008-12-23 13:41:50 —-A—- C:WINDOWSsystem32mplay32.exe
2008-12-23 13:41:50 —-A—- C:WINDOWSsystem32accwiz.exe
2008-12-23 13:41:49 —-D—- C:Program FilesWindows NT
2008-12-23 13:41:49 —-A—- C:WINDOWSsystem32mspaint.exe
2008-12-23 13:41:49 —-A—- C:WINDOWSsystem32hypertrm.dll
2008-12-23 13:41:48 —-A—- C:WINDOWSsystem32spider.exe
2008-12-23 13:41:48 —-A—- C:WINDOWSsystem32clipbrd.exe
2008-12-23 13:41:47 —-A—- C:WINDOWSsystem32tscfgwmi.dll
2008-12-23 13:41:47 —-A—- C:WINDOWSsystem32mstscax.dll
2008-12-23 13:41:47 —-A—- C:WINDOWSsystem32mstsc.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32tscupgrd.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32termsrv.dll
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32sessmgr.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32remotepg.dll
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32rdshost.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32rdsaddin.exe
2008-12-23 13:41:46 —-A—- C:WINDOWSsystem32rdchost.dll
2008-12-23 13:41:45 —-D—- C:WINDOWSsystem32MsDtc
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32rdpwsx.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32rdpsnd.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32rdpclip.exe
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32qprocess.exe
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32mtxoci.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32msdtcuiu.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32icaapi.dll
2008-12-23 13:41:45 —-A—- C:WINDOWSsystem32cfgbkend.dll
2008-12-23 13:41:44 —-A—- C:WINDOWSsystem32xolehlp.dll
2008-12-23 13:41:44 —-A—- C:WINDOWSsystem32msdtctm.dll
2008-12-23 13:41:44 —-A—- C:WINDOWSsystem32msdtcprx.dll
2008-12-23 13:41:43 —-A—- C:WINDOWSsystem32msdtclog.dll
2008-12-23 13:41:43 —-A—- C:WINDOWSsystem32msdtc.exe
2008-12-23 13:41:42 —-D—- C:WINDOWSsystem32Com
2008-12-23 13:41:42 —-A—- C:WINDOWSsystem32colbact.dll
2008-12-23 13:41:42 —-A—- C:WINDOWSsystem32clbcatex.dll
2008-12-23 13:41:42 —-A—- C:WINDOWSsystem32catsrvut.dll
2008-12-23 13:41:42 —-A—- C:WINDOWSsystem32catsrvps.dll
2008-12-23 13:41:41 —-A—- C:WINDOWSsystem32comsvcs.dll
2008-12-23 13:41:41 —-A—- C:WINDOWSsystem32catsrv.dll
2008-12-23 13:41:40 —-A—- C:WINDOWSsystem32comuid.dll
2008-12-23 13:41:40 —-A—- C:WINDOWSsystem32clbcatq.dll
2008-12-23 13:41:33 —-A—- C:WINDOWSsystem32servdeps.dll
2008-12-23 13:41:33 —-A—- C:WINDOWSsystem32mmfutil.dll
2008-12-23 13:41:33 —-A—- C:WINDOWSsystem32licwmi.dll
2008-12-23 13:41:33 —-A—- C:WINDOWSsystem32cmprops.dll======List of files/folders modified in the last 1 months======
2009-01-01 20:22:17 —-A—- C:WINDOWSwin.ini
2008-12-23 16:34:55 —-A—- C:WINDOWSsystem.ini======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK7;Драйвер AMD K7 процессора; C:WINDOWSsystem32DRIVERSamdk7.sys [2004-08-17 41728]
R1 eeCtrl;Symantec Eraser Control driver; ??C:Program FilesCommon FilesSymantec SharedEENGINEeeCtrl.sys []
R1 SAVRT;SAVRT; ??C:Program FilesSymantec AntiVirussavrt.sys []
R1 SAVRTPEL;SAVRTPEL; ??C:Program FilesSymantec AntiVirusSavrtpel.sys []
R1 SPBBCDrv;SPBBCDrv; ??C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCDrv.sys []
R1 SYMTDI;SYMTDI; C:WINDOWSSystem32DriversSYMTDI.SYS [2007-02-12 196752]
R2 BTSERIAL;Bluetooth Serial Driver; ??C:WINDOWSsystem32driversbtserial.sys []
R2 BTSLBCSP;Bluetooth Port Client Driver; ??C:WINDOWSsystem32driversbtslbcsp.sys []
R2 DgiVecp;DgiVecp; ??C:WINDOWSsystem32DriversDgiVecp.sys []
R3 ALCXWDM;Service for Avance AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2002-02-04 278908]
R3 BTKRNL;Нумератор шины Bluetooth; C:WINDOWSsystem32DRIVERSbtkrnl.sys [2006-05-12 1342602]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; ??C:Program FilesCommon FilesSymantec SharedEENGINEEraserUtilRebootDrv.sys []
R3 FETNDIS;VIA Rhine Family Fast Ethernet Adapter Driver; C:WINDOWSsystem32DRIVERSfetnd5b.sys [2002-03-21 36352]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 ms_mpu401;Драйвер UART Microsoft MPU-401 MIDI; C:WINDOWSsystem32driversmsmpu401.sys [2001-08-18 2944]
R3 NAVENG;NAVENG; ??C:PROGRA~1COMMON~1SYMANT~1VIRUSD~120090106.004naveng.sys []
R3 NAVEX15;NAVEX15; ??C:PROGRA~1COMMON~1SYMANT~1VIRUSD~120090106.004navex15.sys []
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2004-08-04 1897408]
R3 SymEvent;SymEvent; ??C:WINDOWSsystem32DriversSYMEVENT.SYS []
R3 SYMREDRV;SYMREDRV; C:WINDOWSSystem32DriversSYMREDRV.SYS [2007-02-12 24720]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-03 26624]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-03 57600]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-03 20480]
S2 SSPORT;SSPORT; ??C:WINDOWSsystem32DriversSSPORT.sys []
S3 btaudio;Аудиоустройство Bluetooth; C:WINDOWSsystem32driversbtaudio.sys [2006-05-12 401664]
S3 BTDriver;Драйвер виртуальной связи Bluetooth; C:WINDOWSsystem32DRIVERSbtport.sys [2006-05-12 30363]
S3 BTWDNDIS;Сервер доступа к локальной сети Bluetooth; C:WINDOWSsystem32DRIVERSbtwdndis.sys [2006-05-12 148168]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:WINDOWSSystem32Driversbtwusb.sys [2006-05-12 57320]
S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 btwdins;Bluetooth Service; C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe [2006-05-12 258103]
R2 ccEvtMgr;Symantec Event Manager; C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe [2006-11-21 192104]
R2 ccSetMgr;Symantec Settings Manager; C:Program FilesCommon FilesSymantec SharedccSetMgr.exe [2006-11-21 169576]
R2 DefWatch;Монитор описаний Symantec AntiVirus; C:Program FilesSymantec AntiVirusDefWatch.exe [2007-05-16 31280]
R2 SPBBCSvc;Symantec SPBBCSvc; C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe [2007-01-10 1160792]
R2 Symantec AntiVirus;Symantec AntiVirus; C:Program FilesSymantec AntiVirusRtvscan.exe [2007-05-16 1825328]
S3 LiveUpdate;LiveUpdate; C:PROGRA~1SymantecLIVEUP~1LUCOMS~1.EXE [2007-01-31 2918008]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 SavRoam;SAVRoam; C:Program FilesSymantec AntiVirusSavRoam.exe [2007-05-16 119344]
S3 SNDSrvc;Symantec Network Drivers Service; C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe [2007-02-12 214672]
EOF
- Темы:532
- Сообщений:1553
- ☆☆☆☆☆
Нет. Всё в порядке. кроме того улучшилась работа компьютера. Спасибо вам большое.
Несколько завершающих действий.
Запустите программу OTMoveIT3. Кликните по кнопке CleanUp. Если появится запрос на перезагрузку компьютера, то кликните Да/Yes.
Удалите RSIT и другие скачанные вами сканеры и небольшие утилиты, а так же все файлы и каталоги который были созданы в процессе лечения компьютера.Установите программу Spybot Search and Destroy, это довольно неплохая дополнительная защита.
Запустите ваш антивирус и проверьте состояние автоматической защиты. Включите, если она выключена.
Удалите старые точки восстановления, так как в них возможно нахождения инфицированных файлов, троянов и других вредоносных программ. Для этого кликните по иконке Мой компьютер, выберите пункт Свойства. В открывшемся окне выберите вкладку Восстановление системы. Поставьте галочку напротив пункта Отключить восстановление системы на всех дисках. Кликните по кнопке Применить. Подтвердите свои действия кликнув по кнопке OK в открывшемся диалоге. Закройте окно Свойства системы, кликнув по кнопке OK.
После загрузки компьютера выполните действия описанные выше, только в этот раз снимите галочку.
Создайте новую точку восстановления. Это поможет вам в случае необходимости загрузить текущую конфигурацию Windows и быстро излечиться от спайваре/вируса. Для этого кликните по кнопке Пуск, далее выберите пункт Стандартные, в нём Служебные и запустите программу Восстановление системы. В открывшемся окне выберите задачу Создать точку восстановления и нажмите кнопку Далее и следуйте указаниям.
Не забывайте обновлять Windows, ваши программы и особенно ваш антивирус.
Всего доброго!
- Темы:532
- Сообщений:1553
- ☆☆☆☆☆
Спасибо вам большое. Вам тоже всего наилучшего! 😀
- Для ответа в этой теме необходимо авторизоваться.
