- This topic has 4 ответа, 2 участника, and was last updated 16 years, 3 months назад by
.
-
Сообщения
-
скачал RSIT, но для меня это темный лес . все что получилось…ниже
Logfile of random’s system information tool 1.05 (written by random/random)
Run by папа at 2009-02-07 17:40:25
Microsoft Windows XP Professional Service Pack 2
System drive C: has 20 GB (56%) free of 35 GB
Total RAM: 255 MB (16% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:40:34, on 07.02.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
C:Program FilesAlwil SoftwareAvast4ashServ.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSsystem32nvsvc32.exe
C:PROGRA~1ALWILS~1Avast4ashDisp.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesA4TechMouseAmoumain.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Documents and SettingsпапаРабочий столRSIT.exe
C:Program Filestrend microпапа.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: QIPBHO Class — {95289393-33EA-4F8D-B952-483415B9C955} — C:Documents and Settingsz00mApplication DataMicrosoftInternet Explorerqipsearchbar.dll
O2 — BHO: bxolibP — {065408F9-7ADC-41E0-87C0-771916035956} — C:Documents and SettingsAll UsersApplication Databxolib.dll
O2 — BHO: AcroIEHlprObj Class — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 — BHO: QIPBHO — {95289393-33EA-4F8D-B952-483415B9C955} — C:Documents and Settingsz00mApplication DataMicrosoftInternet Explorerqipsearchbar.dll
O4 — HKLM..Run: [PCI Audio Applications] F:Audiocmedia4channelW2K-MEappSetup.exe
O4 — HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [WheelMouse] C:Program FilesA4TechMouseAmoumain.exe
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Global Startup: Ускоренный запуск Adobe Reader.lnk = C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O17 — HKLMSystemCCSServicesTcpip..{3CEA95FC-2C83-4CAF-88A8-97EB1B64B602}: NameServer = 192.168.33.1,192.168.33.2
O17 — HKLMSystemCCSServicesTcpip..{53A8F45A-85EF-4C1B-8982-2EA32E196D36}: NameServer = 192.168.33.1 192.168.33.1
O17 — HKLMSystemCS1ServicesTcpip..{3CEA95FC-2C83-4CAF-88A8-97EB1B64B602}: NameServer = 192.168.33.1,192.168.33.2
O17 — HKLMSystemCS2ServicesTcpip..{3CEA95FC-2C83-4CAF-88A8-97EB1B64B602}: NameServer = 192.168.33.1,192.168.33.2
O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 6081 bytes======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{065408F9-7ADC-41E0-87C0-771916035956}]
LTAC Data Decoder — C:Documents and SettingsAll UsersApplication Databxolib.dll [2009-01-29 323072][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2004-12-14 63136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class — C:Documents and Settingsz00mApplication DataMicrosoftInternet Explorerqipsearchbar.dll [2009-01-19 131072][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«PCI Audio Applications»=F:Audiocmedia4channelW2K-MEappSetup.exe []
«avast!»=C:PROGRA~1ALWILS~1Avast4ashDisp.exe [2008-11-26 81000]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2007-11-25 7700480]
«nwiz»=nwiz.exe /install []
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2007-11-25 86016]
«WheelMouse»=C:Program FilesA4TechMouseAmoumain.exe [2007-05-15 204800][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
Ускоренный запуск Adobe Reader.lnk — C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesVypress ChatVyChat.exe»=»C:Program FilesVypress ChatVyChat.exe:*:Enabled:Vypress Chat — network chat software»
«C:Program FilesCommFortCommFort.exe»=»C:Program FilesCommFortCommFort.exe:*:Enabled:CommFort»
«E:GamesОБЫЧНАЯ КСValvehl.exe»=»E:GamesОБЫЧНАЯ КСValvehl.exe:*:Enabled:Half-Life Launcher»
«D:Ea GamesNeed For Speed Undergroundspeed.exe»=»D:Ea GamesNeed For Speed Undergroundspeed.exe:*:Enabled:speed»
«C:Program FilesGarenaGarena.exe»=»C:Program FilesGarenaGarena.exe:*:Enabled:Garena»
«C:GAMESTRIADASharp Shootersharpshooter.exe»=»C:GAMESTRIADASharp Shootersharpshooter.exe:*:Enabled:sharpshooter»
«C:WINDOWSsystem32dpnsvr.exe»=»C:WINDOWSsystem32dpnsvr.exe:*:Enabled:Сервер Microsoft DirectPlay8»
«C:Program FilesStrongDC++StrongDC++StrongDC.exe»=»C:Program FilesStrongDC++StrongDC++StrongDC.exe:*:Enabled:StrongDC++»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{80fe81a0-f514-11dd-a581-00e04d079388}]
shellAutoRuncommand — C:WINDOWSsystem32RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE .RECYCLERS-5-3-42-2819952290-8240758988-879315005-3665jwgkvsq.vmx,ahaezedrn======List of files/folders created in the last 1 months======
2009-02-07 17:12:46 —-D—- C:Program Filestrend micro
2009-02-07 17:12:45 —-D—- C:rsit
2009-02-07 16:33:30 —-D—- C:Documents and SettingsAll UsersApplication DataWindows Genuine Advantage
2009-02-07 15:10:04 —-D—- C:WINDOWSie7updates
2009-02-07 15:09:24 —-D—- C:WINDOWSWBEM
2009-02-07 15:09:23 —-D—- C:WINDOWSsystem32ru-ru
2009-02-07 15:07:56 —-HDC—- C:WINDOWSie7
2009-02-07 15:07:34 —-HDC—- C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$
2009-02-07 15:07:08 —-HDC—- C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$
2009-02-07 15:06:40 —-HDC—- C:WINDOWS$NtUninstallKB915865$
2009-02-07 15:06:37 —-N—- C:WINDOWSsystem32xmllite.dll
2009-02-07 15:03:48 —-A—- C:WINDOWSsystem32MRT.exe
2009-02-07 15:03:42 —-D—- C:WINDOWSnetwork diagnostic
2009-02-07 15:03:41 —-HDC—- C:WINDOWS$NtUninstallKB914440$
2009-02-07 15:03:30 —-HDC—- C:WINDOWS$NtUninstallKB904942$
2009-02-07 10:40:17 —-D—- C:WINDOWSGAMES
2009-02-07 10:40:17 —-A—- C:WINDOWSKNP.INI
2009-02-07 10:03:50 —-D—- C:Documents and SettingsпапаApplication DataQIP
2009-02-07 09:06:00 —-A—- C:WINDOWSmafosav.INI
2009-02-05 22:06:33 —-D—- C:Program FilesQIP Infium
2009-02-04 20:23:53 —-D—- C:WINDOWSsystem32appmgmt
2009-02-04 19:14:09 —-D—- C:Documents and SettingsпапаApplication DataMozilla
2009-02-04 19:13:02 —-D—- C:Documents and SettingsпапаApplication DataMacromedia
2009-02-04 17:57:10 —-D—- C:Program FilesQIP
2009-02-03 21:56:31 —-D—- C:Program FilesGarena
2009-02-01 11:40:56 —-D—- C:WINDOWSCache
2009-01-30 11:11:53 —-A—- C:WINDOWSsystem32OpenALwEAX.exe
2009-01-30 11:11:41 —-A—- C:WINDOWSsystem32mfcm80u.dll
2009-01-30 11:11:41 —-A—- C:WINDOWSsystem32mfcm80.dll
2009-01-30 11:11:40 —-A—- C:WINDOWSsystem32mfc80u.dll
2009-01-30 11:11:40 —-A—- C:WINDOWSsystem32mfc80.dll
2009-01-30 11:10:49 —-A—- C:WINDOWSsystem32imon.dll
2009-01-29 05:29:13 —-HDC—- C:WINDOWS$NtUninstallKB956803$
2009-01-29 05:29:05 —-HDC—- C:WINDOWS$NtUninstallKB954211$
2009-01-29 05:29:00 —-D—- C:WINDOWSsystem32PreInstall
2009-01-29 05:28:58 —-HDC—- C:WINDOWS$NtUninstallKB898461$
2009-01-29 05:28:47 —-HDC—- C:WINDOWS$NtUninstallKB958644$
2009-01-29 05:28:47 —-HD—- C:WINDOWS$hf_mig$
2009-01-29 03:24:57 —-A—- C:WINDOWSavisplitter.INI
2009-01-29 03:17:24 —-A—- C:Documents and SettingsAll UsersApplication Databxolib.dll
2009-01-29 03:11:25 —-D—- C:Program FilesMozilla Firefox
2009-01-29 03:00:43 —-D—- C:WINDOWSsystem32SoftwareDistribution
2009-01-28 21:58:46 —-D—- C:Documents and SettingsпапаApplication DataCOWON
2009-01-27 20:00:54 —-D—- C:Program FilesStrongDC++
2009-01-25 13:37:32 —-D—- C:Documents and SettingsAll UsersApplication DataNVIDIA
2009-01-25 13:31:59 —-D—- C:Program FilesA4Tech
2009-01-24 11:34:29 —-A—- C:WINDOWSsystem32Borlndmm.dll
2009-01-24 11:34:28 —-A—- C:WINDOWSsystem32Cc3250mt.dll
2009-01-24 11:34:22 —-A—- C:WINDOWSsystem32eax.dll
2009-01-24 11:34:21 —-A—- C:WINDOWSsystem32mfc70.dll
2009-01-24 11:34:20 —-A—- C:WINDOWSsystem32mfc70u.dll
2009-01-24 11:34:19 —-A—- C:WINDOWSsystem32MFC71u.dll
2009-01-24 11:34:17 —-A—- C:WINDOWSsystem32msvci70d.dll
2009-01-24 11:34:17 —-A—- C:WINDOWSsystem32msvci70.dll
2009-01-24 11:34:16 —-A—- C:WINDOWSsystem32msvcm80.dll
2009-01-24 11:34:15 —-A—- C:WINDOWSsystem32msvcp70d.dll
2009-01-24 11:34:15 —-A—- C:WINDOWSsystem32Msvcp70.dll
2009-01-24 11:34:15 —-A—- C:WINDOWSsystem32Msvcp60d.dll
2009-01-24 11:34:14 —-A—- C:WINDOWSsystem32msvcp80.dll
2009-01-24 11:34:14 —-A—- C:WINDOWSsystem32msvcp71d.dll
2009-01-24 11:34:13 —-A—- C:WINDOWSsystem32msvcr70d.dll
2009-01-24 11:34:13 —-A—- C:WINDOWSsystem32Msvcr70.dll
2009-01-24 11:34:11 —-A—- C:WINDOWSsystem32msxml3a.dll
2009-01-24 11:34:11 —-A—- C:WINDOWSsystem32msvcr80.dll
2009-01-24 11:34:11 —-A—- C:WINDOWSsystem32msvcr71d.dll
2009-01-24 11:34:10 —-A—- C:WINDOWSsystem32msxml4a.dll
2009-01-24 11:34:09 —-A—- C:WINDOWSsystem32OpenAL32.dll
2009-01-24 11:34:08 —-A—- C:WINDOWSsystem32Vb5db.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32xmltok.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32xmlparse.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32xmlinst.exe
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32wrap_oal.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32vp6vfw.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32vp6install.exe
2009-01-24 11:21:28 —-D—- C:GAMES
2009-01-24 11:21:21 —-A—- C:WINDOWSIsUninst.exe
2009-01-23 10:21:12 —-D—- C:StRace
2009-01-20 18:18:10 —-A—- C:WINDOWSuninst.exe
2009-01-19 19:50:36 —-D—- C:WINDOWSMinidump
2009-01-18 19:21:12 —-A—- C:WINDOWSModemLog_Motorola USB Modem.txt
2009-01-18 19:20:52 —-N—- C:WINDOWSsystem32spmsg.dll
2009-01-18 19:20:48 —-A—- C:WINDOWSsystem32spupdsvc.exe
2009-01-18 19:20:46 —-HDC—- C:WINDOWS$NtUninstallWdf01005$
2009-01-18 19:19:18 —-D—- C:Documents and SettingsпапаApplication DataAdobe
2009-01-18 19:18:33 —-D—- C:Program FilesAvanquest update
2009-01-18 19:17:26 —-D—- C:WINDOWSRegisteredPackages
2009-01-18 19:17:06 —-A—- C:WINDOWSsystem32wdfcoinstaller01005.dll
2009-01-18 19:17:03 —-DC—- C:WINDOWSsystem32DRVSTORE
2009-01-18 19:16:22 —-D—- C:Program FilesCommon FilesMotorola Shared
2009-01-18 19:15:17 —-D—- C:Program FilesMotorola Phone Tools
2009-01-18 19:15:17 —-D—- C:Documents and SettingsAll UsersApplication DataBVRP Software
2009-01-18 19:14:41 —-D—- C:Documents and SettingsпапаApplication DataInstallShield
2009-01-17 11:47:28 —-D—- C:Documents and SettingsAll UsersApplication DataNFS Underground
2009-01-17 11:38:55 —-D—- C:Program FilesCommon FilesDirectX
2009-01-15 13:59:32 —-SHD—- C:RECYCLER
2009-01-15 13:59:05 —-D—- C:Program FilesWarRun
2009-01-15 13:58:31 —-D—- C:Program FilesCommFort
2009-01-15 13:55:48 —-D—- C:Program FilesVypress Chat
2009-01-15 12:48:01 —-D—- C:Program FilesCommon FilesCOWON
2009-01-15 12:48:00 —-D—- C:Program FilesJetAudio
2009-01-15 12:47:59 —-HD—- C:Program FilesInstallShield Installation Information
2009-01-15 12:47:06 —-A—- C:WINDOWSsystem32rmoc3260.dll
2009-01-15 12:47:06 —-A—- C:WINDOWSsystem32pndx5032.dll
2009-01-15 12:47:06 —-A—- C:WINDOWSsystem32pndx5016.dll
2009-01-15 12:47:06 —-A—- C:WINDOWSsystem32pncrt.dll
2009-01-15 12:47:04 —-A—- C:WINDOWSsystem32unrar.dll
2009-01-15 12:46:57 —-A—- C:WINDOWSsystem32yv12vfw.dll
2009-01-15 12:46:56 —-A—- C:WINDOWSsystem32xvidvfw.dll
2009-01-15 12:46:56 —-A—- C:WINDOWSsystem32xvidcore.dll
2009-01-15 12:46:55 —-A—- C:WINDOWSsystem32qt-dx331.dll
2009-01-15 12:46:55 —-A—- C:WINDOWSsystem32dpl100.dll
2009-01-15 12:46:54 —-A—- C:WINDOWSsystem32divx.dll
2009-01-15 12:46:52 —-A—- C:WINDOWSsystem32ff_vfw.dll.manifest
2009-01-15 12:46:52 —-A—- C:WINDOWSsystem32ff_vfw.dll
2009-01-15 12:46:48 —-D—- C:Program FilesK-Lite Codec Pack
2009-01-15 12:46:48 —-D—- C:Documents and SettingsAll UsersApplication DataReal
2009-01-15 12:44:10 —-D—- C:Documents and SettingsAll UsersApplication DatanView_Profiles
2009-01-15 12:41:32 —-D—- C:WINDOWSnview
2009-01-15 12:41:32 —-A—- C:WINDOWSsystem32nvudisp.exe
2009-01-15 12:41:17 —-D—- C:WINDOWSsystem32ReinstallBackups
2009-01-15 12:41:10 —-A—- C:WINDOWSsystem32NVUNINST.EXE
2009-01-15 12:40:57 —-D—- C:Program FilesCommon FilesInstallShield
2009-01-15 01:19:15 —-A—- C:WINDOWSsystem32h323log.txt
2009-01-15 01:17:35 —-A—- C:WINDOWSsystem32hidserv.dll
2009-01-15 01:16:46 —-A—- C:WINDOWSsystem32nv4_disp.dll
2009-01-15 01:16:08 —-A—- C:WINDOWSsystem32usbui.dll
2009-01-15 01:14:45 —-A—- C:WINDOWSimsins.BAK
2009-01-15 01:14:42 —-SHD—- C:WINDOWSInstaller
2009-01-15 01:14:42 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-01-15 01:14:41 —-D—- C:Program FilesCommon FilesODBC
2009-01-15 01:14:41 —-A—- C:WINDOWSODBCINST.INI
2009-01-15 01:14:37 —-D—- C:Program FilesCommon FilesSpeechEngines
2009-01-15 01:14:37 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2009-01-15 01:14:36 —-RD—- C:Program Files
2009-01-15 01:14:36 —-D—- C:Program FilesCommon Files
2009-01-15 01:14:33 —-RA—- C:WINDOWSsystem32kbdtuq.dll
2009-01-15 01:14:33 —-RA—- C:WINDOWSsystem32kbdtuf.dll
2009-01-15 01:14:33 —-RA—- C:WINDOWSsystem32kbdazel.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhept.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhela3.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhela2.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhe319.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhe220.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhe.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdgkl.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdlv1.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdlv.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdlt1.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdlt.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdest.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdycl.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdsl1.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdsl.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdro.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdpl1.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdpl.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdhu1.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdhu.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdcz2.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdcz1.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdcz.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdcr.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32KBDAL.DLL
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdycc.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbduzb.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdur.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdtat.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdmon.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdkyr.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdkaz.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdbu.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdblr.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdaze.dll
2009-01-15 01:14:22 —-A—- C:WINDOWSsystem32irclass.dll
2009-01-15 01:14:22 —-A—- C:WINDOWSsystem32dgrpsetu.dll
2009-01-15 01:14:21 —-A—- C:WINDOWSsystem32spxcoins.dll
2009-01-15 01:14:21 —-A—- C:WINDOWSsystem32EqnClass.Dll
2009-01-15 01:14:21 —-A—- C:WINDOWSsystem32dgsetup.dll
2009-01-15 01:14:19 —-N—- C:WINDOWSsystem32CONFIG.TMP
2009-01-15 01:14:19 —-A—- C:WINDOWSTASKMAN.EXE
2009-01-15 01:14:18 —-A—- C:WINDOWSsystem32batt.dll
2009-01-15 01:14:18 —-A—- C:WINDOWSNOTEPAD.EXE
2009-01-15 01:14:17 —-A—- C:WINDOWSsystem32storprop.dll
2009-01-15 01:14:08 —-ASH—- C:Documents and SettingsAll UsersApplication Datadesktop.ini
2009-01-15 01:14:03 —-RA—- C:WINDOWSSET8.tmp
2009-01-15 01:14:00 —-RA—- C:WINDOWSSET4.tmp
2009-01-15 01:13:58 —-RA—- C:WINDOWSSET3.tmp
2009-01-15 01:13:52 —-D—- C:WINDOWSsystem32CatRoot2
2009-01-15 01:13:52 —-D—- C:WINDOWSsystem32CatRoot
2009-01-15 01:13:47 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2009-01-15 01:13:23 —-A—- C:WINDOWSsetuplog.txt
2009-01-15 01:13:19 —-D—- C:Documents and Settings
2009-01-15 01:10:16 —-SH—- C:boot.ini
2009-01-15 01:09:14 —-SHD—- C:System Volume Information
2009-01-15 01:02:33 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-01-15 01:02:33 —-RSD—- C:WINDOWSFonts
2009-01-15 01:02:33 —-RD—- C:WINDOWSWeb
2009-01-15 01:02:33 —-HD—- C:WINDOWSinf
2009-01-15 01:02:33 —-D—- C:WINDOWSWinSxS
2009-01-15 01:02:33 —-D—- C:WINDOWStwain_32
2009-01-15 01:02:33 —-D—- C:WINDOWSTemp
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32wins
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32wbem
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32usmt
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32spool
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32ShellExt
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32Setup
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32ras
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32oobe
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32npp
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32mui
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32inetsrv
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32IME
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32icsxml
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32ias
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32export
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32drivers
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32dhcp
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32config
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem323com_dmi
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem323076
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem322052
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321054
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321049
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321042
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321041
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321037
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321033
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321031
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321028
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321025
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem
2009-01-15 01:02:33 —-D—- C:WINDOWSsecurity
2009-01-15 01:02:33 —-D—- C:WINDOWSResources
2009-01-15 01:02:33 —-D—- C:WINDOWSrepair
2009-01-15 01:02:33 —-D—- C:WINDOWSProvisioning
2009-01-15 01:02:33 —-D—- C:WINDOWSPeerNet
2009-01-15 01:02:33 —-D—- C:WINDOWSpchealth
2009-01-15 01:02:33 —-D—- C:WINDOWSmui
2009-01-15 01:02:33 —-D—- C:WINDOWSmsapps
2009-01-15 01:02:33 —-D—- C:WINDOWSmsagent
2009-01-15 01:02:33 —-D—- C:WINDOWSMedia
2009-01-15 01:02:33 —-D—- C:WINDOWSjava
2009-01-15 01:02:33 —-D—- C:WINDOWSime
2009-01-15 01:02:33 —-D—- C:WINDOWSHelp
2009-01-15 01:02:33 —-D—- C:WINDOWSehome
2009-01-15 01:02:33 —-D—- C:WINDOWSDriver Cache
2009-01-15 01:02:33 —-D—- C:WINDOWSDebug
2009-01-15 01:02:33 —-D—- C:WINDOWSCursors
2009-01-15 01:02:33 —-D—- C:WINDOWSConnection Wizard
2009-01-15 01:02:33 —-D—- C:WINDOWSConfig
2009-01-15 01:02:33 —-D—- C:WINDOWSAppPatch
2009-01-15 01:02:33 —-D—- C:WINDOWSaddins
2009-01-15 01:02:33 —-D—- C:WINDOWS
2009-01-14 23:39:20 —-A—- C:WINDOWSsystem32XAudio2_0.dll
2009-01-14 23:39:20 —-A—- C:WINDOWSsystem32xactengine3_0.dll
2009-01-14 23:39:19 —-A—- C:WINDOWSsystem32X3DAudio1_3.dll
2009-01-14 23:39:18 —-A—- C:WINDOWSsystem32d3dx10_37.dll
2009-01-14 23:39:18 —-A—- C:WINDOWSsystem32D3DCompiler_37.dll
2009-01-14 23:39:17 —-A—- C:WINDOWSsystem32xactengine2_10.dll
2009-01-14 23:39:17 —-A—- C:WINDOWSsystem32D3DX9_37.dll
2009-01-14 23:39:15 —-A—- C:WINDOWSsystem32d3dx10_36.dll
2009-01-14 23:39:15 —-A—- C:WINDOWSsystem32D3DCompiler_36.dll
2009-01-14 23:39:14 —-A—- C:WINDOWSsystem32d3dx9_36.dll
2009-01-14 23:38:56 —-A—- C:WINDOWSsystem32xactengine2_9.dll
2009-01-14 23:38:40 —-A—- C:WINDOWSsystem32d3dx10_35.dll
2009-01-14 23:38:40 —-A—- C:WINDOWSsystem32D3DCompiler_35.dll
2009-01-14 23:38:39 —-A—- C:WINDOWSsystem32d3dx9_35.dll
2009-01-14 23:38:38 —-A—- C:WINDOWSsystem32xactengine2_8.dll
2009-01-14 23:38:38 —-A—- C:WINDOWSsystem32X3DAudio1_2.dll
2009-01-14 23:38:37 —-A—- C:WINDOWSsystem32d3dx10_34.dll
2009-01-14 23:38:37 —-A—- C:WINDOWSsystem32D3DCompiler_34.dll
2009-01-14 23:38:36 —-A—- C:WINDOWSsystem32xinput1_3.dll
2009-01-14 23:38:36 —-A—- C:WINDOWSsystem32d3dx9_34.dll
2009-01-14 23:38:34 —-A—- C:WINDOWSsystem32xactengine2_7.dll
2009-01-14 23:38:33 —-A—- C:WINDOWSsystem32d3dx10_33.dll
2009-01-14 23:38:33 —-A—- C:WINDOWSsystem32D3DCompiler_33.dll
2009-01-14 23:38:32 —-A—- C:WINDOWSsystem32d3dx9_33.dll
2009-01-14 23:38:30 —-A—- C:WINDOWSsystem32xactengine2_6.dll
2009-01-14 23:38:30 —-A—- C:WINDOWSsystem32xactengine2_5.dll
2009-01-14 23:38:29 —-A—- C:WINDOWSsystem32d3dx9_32.dll
2009-01-14 23:38:28 —-A—- C:WINDOWSsystem32xactengine2_4.dll
2009-01-14 23:38:28 —-A—- C:WINDOWSsystem32x3daudio1_1.dll
2009-01-14 23:38:27 —-A—- C:WINDOWSsystem32xactengine2_3.dll
2009-01-14 23:38:27 —-A—- C:WINDOWSsystem32d3dx9_31.dll
2009-01-14 23:38:26 —-A—- C:WINDOWSsystem32xinput1_2.dll
2009-01-14 23:38:26 —-A—- C:WINDOWSsystem32xactengine2_2.dll
2009-01-14 23:38:10 —-A—- C:WINDOWSsystem32xinput1_1.dll
2009-01-14 23:38:10 —-A—- C:WINDOWSsystem32xactengine2_1.dll
2009-01-14 23:38:09 —-A—- C:WINDOWSsystem32d3dx9_30.dll
2009-01-14 23:38:08 —-A—- C:WINDOWSsystem32xactengine2_0.dll
2009-01-14 23:38:08 —-A—- C:WINDOWSsystem32x3daudio1_0.dll
2009-01-14 23:38:07 —-A—- C:WINDOWSsystem32d3dx9_29.dll
2009-01-14 23:38:06 —-A—- C:WINDOWSsystem32d3dx9_28.dll
2009-01-14 23:38:05 —-A—- C:WINDOWSsystem32xinput9_1_0.dll
2009-01-14 23:38:05 —-A—- C:WINDOWSsystem32d3dx9_27.dll
2009-01-14 23:38:04 —-A—- C:WINDOWSsystem32d3dx9_26.dll
2009-01-14 23:38:03 —-A—- C:WINDOWSsystem32d3dx9_25.dll
2009-01-14 23:38:02 —-A—- C:WINDOWSsystem32d3dx9_24.dll
2009-01-14 23:32:04 —-D—- C:Program FilesSateira
2009-01-14 23:32:01 —-D—- C:Program FilesAce Utilities
2009-01-14 23:31:57 —-D—- C:Program FilesTotal Commander
2009-01-14 23:31:24 —-D—- C:Program FilesWinRAR
2009-01-14 23:26:45 —-A—- C:WINDOWSODBC.INI
2009-01-14 23:26:40 —-A—- C:WINDOWSsystem32mdimon.dll
2009-01-14 23:25:42 —-D—- C:Program FilesMicrosoft.NET
2009-01-14 23:24:53 —-D—- C:Program FilesCommon FilesDESIGNER
2009-01-14 23:24:22 —-D—- C:WINDOWSSHELLNEW
2009-01-14 23:24:15 —-D—- C:Program FilesMicrosoft Office
2009-01-14 23:21:11 —-D—- C:Program FilesCommon FilesAdobe
2009-01-14 23:21:05 —-D—- C:Documents and SettingsAll UsersApplication DataAdobe
2009-01-14 23:19:07 —-D—- C:Program FilesAdobe
2009-01-14 22:44:40 —-N—- C:WINDOWSsystem32MSVCR71.dll
2009-01-14 22:44:40 —-N—- C:WINDOWSsystem32MFC71.dll
2009-01-14 22:44:40 —-A—- C:WINDOWSsystem32msvcp71.dll
2009-01-14 22:44:40 —-A—- C:WINDOWSsystem32aswBoot.exe
2009-01-14 22:44:36 —-D—- C:Program FilesAlwil Software
2009-01-14 22:41:29 —-A—- C:WINDOWSsystem32ksuser.dll
2009-01-14 22:41:24 —-A—- C:WINDOWSCMISETUP.INI
2009-01-14 22:41:21 —-A—- C:WINDOWSsystem32cmprop.dll
2009-01-14 22:41:18 —-D—- C:C-Media
2009-01-14 22:41:18 —-A—- C:WINDOWSsystem32Audio3D.dll
2009-01-14 22:41:18 —-A—- C:WINDOWSsystem32a3d.dll
2009-01-14 22:41:15 —-A—- C:WINDOWSCMCDPLAY.INI
2009-01-14 22:37:26 —-D—- C:Documents and SettingsпапаApplication DataIdentities
2009-01-14 22:37:25 —-HD—- C:Program FilesUninstall Information
2009-01-14 22:36:50 —-ASH—- C:Documents and SettingsпапаApplication Datadesktop.ini
2009-01-14 22:36:49 —-SD—- C:Documents and SettingsпапаApplication DataMicrosoft
2009-01-14 22:35:16 —-D—- C:WINDOWSSoftwareDistribution
2009-01-14 22:35:14 —-SD—- C:WINDOWSsystem32Microsoft
2009-01-14 22:35:14 —-D—- C:WINDOWSPrefetch
2009-01-14 22:35:14 —-A—- C:WINDOWSSchedLgU.Txt
2009-01-14 22:28:37 —-D—- C:WINDOWSsystem32xircom
2009-01-14 22:28:37 —-D—- C:Program Filesxerox
2009-01-14 22:28:37 —-D—- C:Program Filesmicrosoft frontpage
2009-01-14 22:28:07 —-A—- C:WINDOWScontrol.ini
2009-01-14 22:28:07 —-A—- C:AUTOEXEC.BAT
2009-01-14 22:27:52 —-A—- C:WINDOWSOEWABLog.txt
2009-01-14 22:27:47 —-A—- C:WINDOWSsystem32mapi32.dll
2009-01-14 22:26:22 —-SD—- C:WINDOWSDownloaded Program Files
2009-01-14 22:26:22 —-RD—- C:WINDOWSOffline Web Pages
2009-01-14 22:26:21 —-RAH—- C:WINDOWSsystem32logonui.exe.manifest
2009-01-14 22:26:14 —-RAH—- C:WINDOWSsystem32cdplayer.exe.manifest
2009-01-14 22:26:07 —-HD—- C:Program FilesWindowsUpdate
2009-01-14 22:26:02 —-D—- C:Program FilesOnline Services
2009-01-14 22:25:42 —-D—- C:WINDOWSsystem32DirectX
2009-01-14 22:25:21 —-A—- C:WINDOWSsystem32atrace.dll
2009-01-14 22:25:18 —-A—- C:WINDOWSsystem32desktop.ini
2009-01-14 22:25:18 —-A—- C:WINDOWSdesktop.ini
2009-01-14 22:25:09 —-A—- C:WINDOWSsystem32nmevtmsg.dll
2009-01-14 22:25:08 —-D—- C:Program FilesCommon FilesServices
2009-01-14 22:25:08 —-A—- C:WINDOWSsystem32acctres.dll
2009-01-14 22:25:05 —-SD—- C:WINDOWSTasks
2009-01-14 22:25:05 —-A—- C:WINDOWSsystem32icfgnt5.dll
2009-01-14 22:25:04 —-D—- C:Program FilesCommon FilesMSSoap
2009-01-14 22:24:59 —-D—- C:WINDOWSsystem32Macromed
2009-01-14 22:24:59 —-D—- C:WINDOWSsrchasst
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuweb.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wups.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wucltui.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuauserv.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuaueng1.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuaueng.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuauclt1.exe
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuauclt.exe
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32wuapi.dll
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32qmgrprxy.dll
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32qmgr.dll
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32bitsprx3.dll
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32bitsprx2.dll
2009-01-14 22:24:49 —-D—- C:Program FilesMovie Maker
2009-01-14 22:24:44 —-A—- C:WINDOWSsystem32safrslv.dll
2009-01-14 22:24:44 —-A—- C:WINDOWSsystem32safrdm.dll
2009-01-14 22:24:44 —-A—- C:WINDOWSsystem32safrcdlg.dll
2009-01-14 22:24:44 —-A—- C:WINDOWSsystem32racpldlg.dll
2009-01-14 22:24:40 —-A—- C:WINDOWSsystem32fltMc.exe
2009-01-14 22:24:40 —-A—- C:WINDOWSsystem32fltlib.dll
2009-01-14 22:24:39 —-D—- C:WINDOWSsystem32Restore
2009-01-14 22:24:39 —-A—- C:WINDOWSsystem32srsvc.dll
2009-01-14 22:24:39 —-A—- C:WINDOWSsystem32srrstr.dll
2009-01-14 22:24:39 —-A—- C:WINDOWSsystem32srclient.dll
2009-01-14 22:24:39 —-A—- C:WINDOWSsystem32ils.dll
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32nmmkcert.dll
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32msconf.dll
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32mnmsrvc.exe
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32mnmdd.dll
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32isrdbg32.dll
2009-01-14 22:24:35 —-D—- C:Program FilesNetMeeting
2009-01-14 22:24:35 —-A—- C:WINDOWSsystem32msoert2.dll
2009-01-14 22:24:35 —-A—- C:WINDOWSsystem32msoeacct.dll
2009-01-14 22:24:34 —-A—- C:WINDOWSsystem32inetres.dll
2009-01-14 22:24:34 —-A—- C:WINDOWSsystem32inetcomm.dll
2009-01-14 22:24:32 —-D—- C:Program FilesOutlook Express
2009-01-14 22:24:32 —-A—- C:WINDOWSsystem32schedsvc.dll
2009-01-14 22:24:32 —-A—- C:WINDOWSsystem32mstinit.exe
2009-01-14 22:24:32 —-A—- C:WINDOWSsystem32mstask.dll
2009-01-14 22:24:31 —-A—- C:WINDOWSsystem32isign32.dll
2009-01-14 22:24:31 —-A—- C:WINDOWSsystem32inetcfg.dll
2009-01-14 22:24:31 —-A—- C:WINDOWSsystem32icwphbk.dll
2009-01-14 22:24:31 —-A—- C:WINDOWSsystem32icwdial.dll
2009-01-14 22:24:24 —-D—- C:Program FilesCommon FilesSystem
2009-01-14 22:24:19 —-D—- C:Program FilesInternet Explorer
2009-01-14 22:23:29 —-D—- C:Program FilesComPlus Applications
2009-01-14 22:23:26 —-A—- C:WINDOWSvbaddin.ini
2009-01-14 22:23:26 —-A—- C:WINDOWSvb.ini
2009-01-14 22:23:21 —-D—- C:WINDOWSRegistration
2009-01-14 22:23:13 —-D—- C:Program FilesWindows Media Player
2009-01-14 22:23:06 —-D—- C:Program FilesMessenger
2009-01-14 22:23:00 —-D—- C:Program FilesMSN Gaming Zone
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32usrlogon.cmd
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tsshutdn.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tslabels.ini
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tskill.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tsdiscon.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tscon.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32shadow.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32rwinsta.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32reset.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32regini.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32rdpcfgex.dll
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32qwinsta.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32qappsrv.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32msg.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32msdtcprf.ini
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32logoff.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32cdmodem.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32mtxlegih.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32mtxex.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32mtxdm.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32dcomcnfg.exe
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32comrepl.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32comaddin.dll
2009-01-14 22:22:36 —-A—- C:WINDOWSsystem32stclient.dll
2009-01-14 22:22:35 —-A—- C:WINDOWSsystem32comsnap.dll
2009-01-14 22:22:30 —-A—- C:WINDOWSsystem32wmimgmt.msc
2009-01-14 22:22:27 —-D—- C:Program FilesWindows NT
2009-01-14 22:22:26 —-A—- C:WINDOWSsystem32tscfgwmi.dll
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32tscupgrd.exe
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32sessmgr.exe
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32remotepg.dll
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32rdshost.exe
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32rdsaddin.exe
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32rdchost.dll
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32mstscax.dll
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32mstsc.exe
2009-01-14 22:22:24 —-D—- C:WINDOWSsystem32MsDtc
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32termsrv.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32rdpwsx.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32rdpsnd.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32rdpclip.exe
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32qprocess.exe
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32msdtcuiu.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32icaapi.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32cfgbkend.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32xolehlp.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32mtxoci.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32msdtctm.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32msdtcprx.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32msdtclog.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32msdtc.exe
2009-01-14 22:22:22 —-D—- C:WINDOWSsystem32Com
2009-01-14 22:22:22 —-A—- C:WINDOWSsystem32colbact.dll
2009-01-14 22:22:22 —-A—- C:WINDOWSsystem32clbcatex.dll
2009-01-14 22:22:22 —-A—- C:WINDOWSsystem32catsrvps.dll
2009-01-14 22:22:21 —-A—- C:WINDOWSsystem32comuid.dll
2009-01-14 22:22:21 —-A—- C:WINDOWSsystem32comsvcs.dll
2009-01-14 22:22:21 —-A—- C:WINDOWSsystem32catsrvut.dll
2009-01-14 22:22:21 —-A—- C:WINDOWSsystem32catsrv.dll
2009-01-14 22:22:20 —-A—- C:WINDOWSsystem32clbcatq.dll
2009-01-14 22:22:13 —-A—- C:WINDOWSsystem32servdeps.dll
2009-01-14 22:22:12 —-A—- C:WINDOWSsystem32mmfutil.dll
2009-01-14 22:22:12 —-A—- C:WINDOWSsystem32licwmi.dll
2009-01-14 22:22:12 —-A—- C:WINDOWSsystem32cmprops.dll======List of files/folders modified in the last 1 months======
2009-01-27 13:09:36 —-A—- C:WINDOWSwin.ini
2009-01-15 01:14:35 —-A—- C:WINDOWSsystem.ini======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2008-11-26 26944]
R1 AmdK7;Драйвер AMD K7 процессора; C:WINDOWSsystem32DRIVERSamdk7.sys [2004-08-18 41728]
R1 Amfilter;A4Tech Mouse Filter Driver; C:WINDOWSsystem32DRIVERSAmfilter.sys [2007-05-15 9216]
R1 aswSP;avast! Self Protection; C:WINDOWSsystem32driversaswSP.sys [2008-11-26 111184]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2008-11-26 50864]
R1 prodrv04;Star Force copy protection driver v4; C:WINDOWSSystem32driversprodrv04.sys [2009-01-16 114496]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32DRIVERSaswFsBlk.sys [2008-11-26 20560]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2008-11-26 94032]
R3 Amusbprt;A4Tech HID-compliant Mouse Driver; C:WINDOWSsystem32DRIVERSAmusbprt.sys [2007-05-15 14336]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2008-11-26 23152]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:WINDOWSsystem32driverscmaudio.sys [2001-02-12 265928]
R3 hidusb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2004-08-18 9600]
R3 ms_mpu401;Драйвер UART Microsoft MPU-401 MIDI; C:WINDOWSsystem32driversmsmpu401.sys [2001-08-17 2944]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2007-11-25 3994624]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet адаптер, драйвер для NT; C:WINDOWSsystem32DRIVERSRTL8139.SYS [2004-08-04 20992]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-18 57600]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-18 20480]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-18 14848]
S3 motmodem;Motorola USB CDC ACM Driver; C:WINDOWSsystem32DRIVERSmotmodem.sys [2007-06-18 23680]
S3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2004-08-18 12160]
S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-18 31616]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 Wdf01000;Wdf01000; C:WINDOWSsystem32DRIVERSWdf01000.sys [2006-11-02 492000]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2008-11-26 18752]
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast4ashServ.exe [2008-11-26 155160]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2007-11-25 159810]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2008-11-26 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2008-11-26 352920]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
EOF
info.txt logfile of random’s system information tool 1.05 2009-02-07 17:17:02======Uninstall list======
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
3D Frogman—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADA3D FrogmanUninst.isu»
3D Maze Man—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADA3D Maze ManUninst.isu»
3D Ms. Maze—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADA3D Ms. MazeUninst.isu»
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Reader 7.0 — Russian—>MsiExec.exe /I{AC76BA86-7AD7-1049-7B44-A70000000000}
Agent 2002—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAAgent 2002Uninst.isu»
Avanquest update—>C:Program FilesInstallShield Installation Information{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}setup.exe -runfromtemp -l0x0019 -removeonly
avast! Antivirus—>C:Program FilesAlwil SoftwareAvast4aswRunDll.exe «C:Program FilesAlwil SoftwareAvast4Setupsetiface.dll»,RunSetup
CommFort 4.02—>»C:Program FilesCommFortunins000.exe»
DiRT—>D:GamesDiRTUNWISE.EXE D:GamesDiRTINSTALL.LOG
DX-Ball 1.09—>D:DX-BallUNWISE.EXE D:DX-BallINSTALL.LOG
Garena—>C:Program FilesInstallShield Installation Information{89C89156-A70F-4C6D-9CAE-2EA71F1396FE}setup.exe -runfromtemp -l0x0019 -removeonly
GTR 2 1.0.0.0—>D:GamesGTR2UNWISE.EXE D:GamesGTR2INSTALL.LOG
HijackThis 2.0.2—>»C:Program Filestrend microHijackThis.exe» /uninstall
Hopmon V1.1—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAHopmon V1.1Uninst.isu»
Hotfix for Windows XP (KB915865)—>»C:WINDOWS$NtUninstallKB915865$spuninstspuninst.exe»
jetAudio Plus VX—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1050Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}setup.exe» -l0x19 -removeonly
K-Lite Mega Codec Pack 3.9.0—>»C:Program FilesK-Lite Codec Packunins000.exe»
Melker the Elk Hunt—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAMelker the Elk HuntUninst.isu»
Micro Tracks—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAMicro TracksUninst.isu»
Microsoft Internationalized Domain Names Mitigation APIs—>»C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$spuninstspuninst.exe»
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5—>»C:WINDOWS$NtUninstallWdf01005$spuninstspuninst.exe»
Microsoft National Language Support Downlevel APIs—>»C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$spuninstspuninst.exe»
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Motorola Driver Installation 3.2.0—>MsiExec.exe /I{D6A1E429-CCE1-4140-A615-710B806D12BA}
Motorola Phone Tools—>C:Program FilesInstallShield Installation Information{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}setup.exe -runfromtemp -l0x0019 -removeonly
Mozilla Firefox (3.0.6)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
Mr Cool Ball—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAMr Cool BallUninst.isu»
Ms. Pac-Man — Quest for the Golden Maze—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAMs. Pac-Man — Quest for the Golden MazeUninst.isu»
Need For Speed Underground 2—>»D:Новая папка (2)Need For Speed Underground 2unins000.exe»
Need For Speed Underground—>D:EAGAME~1NEEDFO~1r{F7F2D~1UNWISE.EXE D:EAGAME~1NEEDFO~1r{F7F2D~1INSTALL.LOG
NVIDIA Drivers—>C:WINDOWSsystem32nvudisp.exe UninstallGUI
Pacmania 3D—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAPacmania 3DUninst.isu»
Pokemon Trading Card Game 2—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAPokemon Trading Card Game 2Uninst.isu»
QIP 2005 Uninstall—>»C:Program FilesQIPunqip.exe»
QIP Infium 2.0.9024 RC4—>»C:Program FilesQIP Infiumunins000.exe»
Sharp Shooter—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADASharp ShooterUninst.isu»
Smart-X7 7.80—>C:Program FilesA4TechMouseUninst32.exe
Total Commander 7.00 PowerPack—>»C:Program FilesTotal Commanderuninstall.exe»
UBM—>D:Новая папка (2)Багги_Короли_бездорожьяuninstall.exe
Vypress Chat 2.0—>MsiExec.exe /X{A1E1619F-036F-4176-8563-AA9E570113F0}
WarRun 4.00 alpha—>»C:Program FilesWarRununins000.exe»
Windows Internet Explorer 7—>»C:WINDOWSie7spuninstspuninst.exe»
Witch Frog—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAWitch FrogUninst.isu»
Антошка—>C:WINDOWSuninst.exe -fd:DeIsL1.isu
Архиватор WinRAR (только удаление)—>C:Program FilesWinRARuninstall.exe
Исправление для Windows XP (KB914440)—>»C:WINDOWS$NtUninstallKB914440$spuninstspuninst.exe»
Обновление безопасности для Windows Internet Explorer 7 (KB956390)—>»C:WINDOWSie7updatesKB956390-IE7spuninstspuninst.exe»
Обновление безопасности для Windows Internet Explorer 7 (KB958215)—>»C:WINDOWSie7updatesKB958215-IE7spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB954211)—>»C:WINDOWS$NtUninstallKB954211$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB956803)—>»C:WINDOWS$NtUninstallKB956803$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB958644)—>»C:WINDOWS$NtUninstallKB958644$spuninstspuninst.exe»
Обновление для Windows XP (KB898461)—>»C:WINDOWS$NtUninstallKB898461$spuninstspuninst.exe»
Обновление для Windows XP (KB904942)—>»C:WINDOWS$NtUninstallKB904942$spuninstspuninst.exe»
Стритрейсеры: Горячий Асфальт—>»D:DX-BallСтритрейсерыunins000.exe»
Четвероногие друзья. Мой котенок—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime�9�1Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{B132D582-E83C-4E01-9B67-68B9553E1050}setup.exe» -l0x19======Security center information======
AV: avast! antivirus 4.8.1296 [VPS 090206-0]
System event log
Computer Name: Z00M_MER
Event Code: 7035
Message: Служба «aswRdr» успешно отправила управляющий элемент «запустить».Record Number: 2722
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User: NT AUTHORITYSYSTEMComputer Name: Z00M_MER
Event Code: 7036
Message: Служба «avast! Mail Scanner» перешла в состояние Работает.Record Number: 2721
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User:Computer Name: Z00M_MER
Event Code: 7036
Message: Служба «avast! Web Scanner» перешла в состояние Работает.Record Number: 2720
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User:Computer Name: Z00M_MER
Event Code: 7035
Message: Служба «Служба сетевого расположения (NLA)» успешно отправила управляющий элемент «запустить».Record Number: 2719
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User: NT AUTHORITYSYSTEMComputer Name: Z00M_MER
Event Code: 7035
Message: Служба «avast! Web Scanner» успешно отправила управляющий элемент «запустить».Record Number: 2718
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User: NT AUTHORITYSYSTEMApplication event log
Computer Name: Z00M_MER
Event Code: 1800
Message: Служба центра обеспечения безопасности Windows запущена.Record Number: 713
Source Name: SecurityCenter
Time Written: 20090202201732.000000+180
Event Type: информация
User:Computer Name: Z00M_MER
Event Code: 1000
Message: Ошибка приложения hl.exe, версия 1.1.1.1, модуль mp3dec.asi, версия 3.0.0.0, адрес 0x00001bdb.Record Number: 712
Source Name: Application Error
Time Written: 20090202191932.000000+180
Event Type: ошибка
User:Computer Name: Z00M_MER
Event Code: 1000
Message: Ошибка приложения hl.exe, версия 1.1.1.1, модуль unknown, версия 0.0.0.0, адрес 0xf8f6f8f8.Record Number: 711
Source Name: Application Error
Time Written: 20090202191813.000000+180
Event Type: ошибка
User:Computer Name: Z00M_MER
Event Code: 1800
Message: Служба центра обеспечения безопасности Windows запущена.Record Number: 710
Source Name: SecurityCenter
Time Written: 20090202163805.000000+180
Event Type: информация
User:Computer Name: Z00M_MER
Event Code: 1800
Message: Служба центра обеспечения безопасности Windows запущена.Record Number: 709
Source Name: SecurityCenter
Time Written: 20090202145659.000000+180
Event Type: информация
User:======Environment variables======
«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 6 Stepping 2, AuthenticAMD
«PROCESSOR_REVISION»=0602
«NUMBER_OF_PROCESSORS»=1
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
EOF
Здравствуйте, добро пожаловать на Spyware-ru форум.
Кроме описанной вами проблемы, ваш компьютер заражён autorun.inf трояном.
Прочитайте эту инструкцию Flash_Disinfector ещё одно оружие против autorun.inf троянов. Отключите ваш антивирус. Скачайте и запустите Flash_Disinfector, не забудьте при этом по требованию программы вставить ваш флэш диск или подключить другие внешние устройства хранения информации. Запускайте программу столько раз, сколько нужно чтобы очистить все ваши подключаемые диски.Скачайте OTMoveIt3 by OldTimer кликнув по этой ссылке.
Запустите программу и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.:Processes
explorer.exe
:reg
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{065408F9-7ADC-41E0-87C0-771916035956}]
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{80fe81a0-f514-11dd-a581-00e04d079388}]
:files
C:Documents and SettingsAll UsersApplication Databxolib.dll
c:RECYCLERS-5-3-42-2819952290-8240758988-879315005-3665jwgkvsq.vmx
:Commands
[emptytemp]
[start explorer]
[Reboot]Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
По-завершении работы программы должен будет показан лог, вставьте его в ваш ответ.
Так же приложите к вашему ответу свежий RSIT лог.Искреннее спасибо, но запустив Flash_Disinfector.exe виснет комп. лента новостей пропала. посылаю логи OTMoveIt3.exe:
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{065408F9-7ADC-41E0-87C0-771916035956}\ deleted successfully.
Registry key HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{80fe81a0-f514-11dd-a581-00e04d079388}\ deleted successfully.
========== FILES ==========
C:Documents and SettingsAll UsersApplication Databxolib.dll unregistered successfully.
C:Documents and SettingsAll UsersApplication Databxolib.dll moved successfully.
File/Folder c:RECYCLERS-5-3-42-2819952290-8240758988-879315005-3665jwgkvsq.vmx not found.
========== COMMANDS ==========
File delete failed. C:DOCUME~18C46~1LOCALS~1TempSma1A.tmp scheduled to be deleted on reboot.
User’s Temp folder emptied.
User’s Temporary Internet Files folder emptied.
User’s Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:WINDOWStemp_avast4_Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:WINDOWStempPerflib_Perfdata_3fc.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
File delete failed. C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultCache_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultCache_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultCache_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultCache_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaulturlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaulturlclassifier3.sqlite-journal scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultXUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfullyOTMoveIt3 by OldTimer — Version 1.0.8.0 log created on 02092009_194905
Files moved on Reboot…
C:DOCUME~18C46~1LOCALS~1TempSma1A.tmp moved successfully.
File move failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be moved on reboot.
File move failed. C:WINDOWStemp_avast4_Webshlock.txt scheduled to be moved on reboot.
File C:WINDOWStempPerflib_Perfdata_3fc.dat not found!
C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultCache_CACHE_001_ moved successfully.
C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultCache_CACHE_002_ moved successfully.
C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultCache_CACHE_003_ moved successfully.
C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultCache_CACHE_MAP_ moved successfully.
C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaulturlclassifier3.sqlite moved successfully.
C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaulturlclassifier3.sqlite-journal moved successfully.
C:Documents and SettingsпапаLocal SettingsApplication DataMozillaFirefoxProfiles�qdsqm9i.defaultXUL.mfl moved successfully.И логи от RSIT.exe:
info.txt logfile of random’s system information tool 1.05 2009-02-07 17:17:02======Uninstall list======
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
3D Frogman—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADA3D FrogmanUninst.isu»
3D Maze Man—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADA3D Maze ManUninst.isu»
3D Ms. Maze—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADA3D Ms. MazeUninst.isu»
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Reader 7.0 — Russian—>MsiExec.exe /I{AC76BA86-7AD7-1049-7B44-A70000000000}
Agent 2002—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAAgent 2002Uninst.isu»
Avanquest update—>C:Program FilesInstallShield Installation Information{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}setup.exe -runfromtemp -l0x0019 -removeonly
avast! Antivirus—>C:Program FilesAlwil SoftwareAvast4aswRunDll.exe «C:Program FilesAlwil SoftwareAvast4Setupsetiface.dll»,RunSetup
CommFort 4.02—>»C:Program FilesCommFortunins000.exe»
DiRT—>D:GamesDiRTUNWISE.EXE D:GamesDiRTINSTALL.LOG
DX-Ball 1.09—>D:DX-BallUNWISE.EXE D:DX-BallINSTALL.LOG
Garena—>C:Program FilesInstallShield Installation Information{89C89156-A70F-4C6D-9CAE-2EA71F1396FE}setup.exe -runfromtemp -l0x0019 -removeonly
GTR 2 1.0.0.0—>D:GamesGTR2UNWISE.EXE D:GamesGTR2INSTALL.LOG
HijackThis 2.0.2—>»C:Program Filestrend microHijackThis.exe» /uninstall
Hopmon V1.1—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAHopmon V1.1Uninst.isu»
Hotfix for Windows XP (KB915865)—>»C:WINDOWS$NtUninstallKB915865$spuninstspuninst.exe»
jetAudio Plus VX—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1050Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}setup.exe» -l0x19 -removeonly
K-Lite Mega Codec Pack 3.9.0—>»C:Program FilesK-Lite Codec Packunins000.exe»
Melker the Elk Hunt—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAMelker the Elk HuntUninst.isu»
Micro Tracks—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAMicro TracksUninst.isu»
Microsoft Internationalized Domain Names Mitigation APIs—>»C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$spuninstspuninst.exe»
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5—>»C:WINDOWS$NtUninstallWdf01005$spuninstspuninst.exe»
Microsoft National Language Support Downlevel APIs—>»C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$spuninstspuninst.exe»
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Motorola Driver Installation 3.2.0—>MsiExec.exe /I{D6A1E429-CCE1-4140-A615-710B806D12BA}
Motorola Phone Tools—>C:Program FilesInstallShield Installation Information{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}setup.exe -runfromtemp -l0x0019 -removeonly
Mozilla Firefox (3.0.6)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
Mr Cool Ball—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAMr Cool BallUninst.isu»
Ms. Pac-Man — Quest for the Golden Maze—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAMs. Pac-Man — Quest for the Golden MazeUninst.isu»
Need For Speed Underground 2—>»D:Новая папка (2)Need For Speed Underground 2unins000.exe»
Need For Speed Underground—>D:EAGAME~1NEEDFO~1r{F7F2D~1UNWISE.EXE D:EAGAME~1NEEDFO~1r{F7F2D~1INSTALL.LOG
NVIDIA Drivers—>C:WINDOWSsystem32nvudisp.exe UninstallGUI
Pacmania 3D—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAPacmania 3DUninst.isu»
Pokemon Trading Card Game 2—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAPokemon Trading Card Game 2Uninst.isu»
QIP 2005 Uninstall—>»C:Program FilesQIPunqip.exe»
QIP Infium 2.0.9024 RC4—>»C:Program FilesQIP Infiumunins000.exe»
Sharp Shooter—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADASharp ShooterUninst.isu»
Smart-X7 7.80—>C:Program FilesA4TechMouseUninst32.exe
Total Commander 7.00 PowerPack—>»C:Program FilesTotal Commanderuninstall.exe»
UBM—>D:Новая папка (2)Багги_Короли_бездорожьяuninstall.exe
Vypress Chat 2.0—>MsiExec.exe /X{A1E1619F-036F-4176-8563-AA9E570113F0}
WarRun 4.00 alpha—>»C:Program FilesWarRununins000.exe»
Windows Internet Explorer 7—>»C:WINDOWSie7spuninstspuninst.exe»
Witch Frog—>C:WINDOWSIsUninst.exe -f»C:GAMESTRIADAWitch FrogUninst.isu»
Антошка—>C:WINDOWSuninst.exe -fd:DeIsL1.isu
Архиватор WinRAR (только удаление)—>C:Program FilesWinRARuninstall.exe
Исправление для Windows XP (KB914440)—>»C:WINDOWS$NtUninstallKB914440$spuninstspuninst.exe»
Обновление безопасности для Windows Internet Explorer 7 (KB956390)—>»C:WINDOWSie7updatesKB956390-IE7spuninstspuninst.exe»
Обновление безопасности для Windows Internet Explorer 7 (KB958215)—>»C:WINDOWSie7updatesKB958215-IE7spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB954211)—>»C:WINDOWS$NtUninstallKB954211$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB956803)—>»C:WINDOWS$NtUninstallKB956803$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB958644)—>»C:WINDOWS$NtUninstallKB958644$spuninstspuninst.exe»
Обновление для Windows XP (KB898461)—>»C:WINDOWS$NtUninstallKB898461$spuninstspuninst.exe»
Обновление для Windows XP (KB904942)—>»C:WINDOWS$NtUninstallKB904942$spuninstspuninst.exe»
Стритрейсеры: Горячий Асфальт—>»D:DX-BallСтритрейсерыunins000.exe»
Четвероногие друзья. Мой котенок—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime�9�1Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{B132D582-E83C-4E01-9B67-68B9553E1050}setup.exe» -l0x19======Security center information======
AV: avast! antivirus 4.8.1296 [VPS 090206-0]
System event log
Computer Name: Z00M_MER
Event Code: 7035
Message: Служба «aswRdr» успешно отправила управляющий элемент «запустить».Record Number: 2722
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User: NT AUTHORITYSYSTEMComputer Name: Z00M_MER
Event Code: 7036
Message: Служба «avast! Mail Scanner» перешла в состояние Работает.Record Number: 2721
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User:Computer Name: Z00M_MER
Event Code: 7036
Message: Служба «avast! Web Scanner» перешла в состояние Работает.Record Number: 2720
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User:Computer Name: Z00M_MER
Event Code: 7035
Message: Служба «Служба сетевого расположения (NLA)» успешно отправила управляющий элемент «запустить».Record Number: 2719
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User: NT AUTHORITYSYSTEMComputer Name: Z00M_MER
Event Code: 7035
Message: Служба «avast! Web Scanner» успешно отправила управляющий элемент «запустить».Record Number: 2718
Source Name: Service Control Manager
Time Written: 20090130145831.000000+180
Event Type: информация
User: NT AUTHORITYSYSTEMApplication event log
Computer Name: Z00M_MER
Event Code: 1800
Message: Служба центра обеспечения безопасности Windows запущена.Record Number: 713
Source Name: SecurityCenter
Time Written: 20090202201732.000000+180
Event Type: информация
User:Computer Name: Z00M_MER
Event Code: 1000
Message: Ошибка приложения hl.exe, версия 1.1.1.1, модуль mp3dec.asi, версия 3.0.0.0, адрес 0x00001bdb.Record Number: 712
Source Name: Application Error
Time Written: 20090202191932.000000+180
Event Type: ошибка
User:Computer Name: Z00M_MER
Event Code: 1000
Message: Ошибка приложения hl.exe, версия 1.1.1.1, модуль unknown, версия 0.0.0.0, адрес 0xf8f6f8f8.Record Number: 711
Source Name: Application Error
Time Written: 20090202191813.000000+180
Event Type: ошибка
User:Computer Name: Z00M_MER
Event Code: 1800
Message: Служба центра обеспечения безопасности Windows запущена.Record Number: 710
Source Name: SecurityCenter
Time Written: 20090202163805.000000+180
Event Type: информация
User:Computer Name: Z00M_MER
Event Code: 1800
Message: Служба центра обеспечения безопасности Windows запущена.Record Number: 709
Source Name: SecurityCenter
Time Written: 20090202145659.000000+180
Event Type: информация
User:======Environment variables======
«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 6 Stepping 2, AuthenticAMD
«PROCESSOR_REVISION»=0602
«NUMBER_OF_PROCESSORS»=1
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
EOF
Logfile of random’s system information tool 1.05 (written by random/random)
Run by папа at 2009-02-09 19:56:02
Microsoft Windows XP Professional Service Pack 2
System drive C: has 19 GB (54%) free of 35 GB
Total RAM: 255 MB (27% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:56:11, on 09.02.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
C:Program FilesAlwil SoftwareAvast4ashServ.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
C:WINDOWSsystem32wscntfy.exe
C:WINDOWSnotepad.exe
C:PROGRA~1ALWILS~1Avast4ashDisp.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesA4TechMouseAmoumain.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Documents and SettingsпапаРабочий столRSIT.exe
C:Program Filestrend microпапа.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: QIPBHO Class — {95289393-33EA-4F8D-B952-483415B9C955} — C:Documents and Settingsz00mApplication DataMicrosoftInternet Explorerqipsearchbar.dll
O2 — BHO: AcroIEHlprObj Class — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 — BHO: QIPBHO — {95289393-33EA-4F8D-B952-483415B9C955} — C:Documents and Settingsz00mApplication DataMicrosoftInternet Explorerqipsearchbar.dll
O4 — HKLM..Run: [PCI Audio Applications] F:Audiocmedia4channelW2K-MEappSetup.exe
O4 — HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [WheelMouse] C:Program FilesA4TechMouseAmoumain.exe
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Global Startup: Ускоренный запуск Adobe Reader.lnk = C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O17 — HKLMSystemCCSServicesTcpip..{3CEA95FC-2C83-4CAF-88A8-97EB1B64B602}: NameServer = 192.168.33.1,192.168.33.2
O17 — HKLMSystemCCSServicesTcpip..{53A8F45A-85EF-4C1B-8982-2EA32E196D36}: NameServer = 192.168.33.1 192.168.33.1
O17 — HKLMSystemCS1ServicesTcpip..{3CEA95FC-2C83-4CAF-88A8-97EB1B64B602}: NameServer = 192.168.33.1,192.168.33.2
O17 — HKLMSystemCS2ServicesTcpip..{3CEA95FC-2C83-4CAF-88A8-97EB1B64B602}: NameServer = 192.168.33.1,192.168.33.2
O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 6036 bytes======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2004-12-14 63136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class — C:Documents and Settingsz00mApplication DataMicrosoftInternet Explorerqipsearchbar.dll [2009-01-19 131072][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«PCI Audio Applications»=F:Audiocmedia4channelW2K-MEappSetup.exe []
«avast!»=C:PROGRA~1ALWILS~1Avast4ashDisp.exe [2008-11-26 81000]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2007-11-25 7700480]
«nwiz»=nwiz.exe /install []
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2007-11-25 86016]
«WheelMouse»=C:Program FilesA4TechMouseAmoumain.exe [2007-05-15 204800][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
Ускоренный запуск Adobe Reader.lnk — C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=36
«NoDriveAutoRun»=FFFFFFFF[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesVypress ChatVyChat.exe»=»C:Program FilesVypress ChatVyChat.exe:*:Enabled:Vypress Chat — network chat software»
«C:Program FilesCommFortCommFort.exe»=»C:Program FilesCommFortCommFort.exe:*:Enabled:CommFort»
«E:GamesОБЫЧНАЯ КСValvehl.exe»=»E:GamesОБЫЧНАЯ КСValvehl.exe:*:Enabled:Half-Life Launcher»
«D:Ea GamesNeed For Speed Undergroundspeed.exe»=»D:Ea GamesNeed For Speed Undergroundspeed.exe:*:Enabled:speed»
«C:Program FilesGarenaGarena.exe»=»C:Program FilesGarenaGarena.exe:*:Enabled:Garena»
«C:GAMESTRIADASharp Shootersharpshooter.exe»=»C:GAMESTRIADASharp Shootersharpshooter.exe:*:Enabled:sharpshooter»
«C:WINDOWSsystem32dpnsvr.exe»=»C:WINDOWSsystem32dpnsvr.exe:*:Enabled:Сервер Microsoft DirectPlay8»
«C:Program FilesStrongDC++StrongDC++StrongDC.exe»=»C:Program FilesStrongDC++StrongDC++StrongDC.exe:*:Enabled:StrongDC++»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»======List of files/folders created in the last 1 months======
2009-02-08 13:23:19 —-RASHD—- C:autorun.inf
2009-02-07 22:58:38 —-D—- C:WINDOWSsystem32CatRoot_bak
2009-02-07 18:55:09 —-D—- C:_OTMoveIt
2009-02-07 17:12:46 —-D—- C:Program Filestrend micro
2009-02-07 17:12:45 —-D—- C:rsit
2009-02-07 16:33:30 —-D—- C:Documents and SettingsAll UsersApplication DataWindows Genuine Advantage
2009-02-07 15:10:04 —-D—- C:WINDOWSie7updates
2009-02-07 15:09:24 —-D—- C:WINDOWSWBEM
2009-02-07 15:09:23 —-D—- C:WINDOWSsystem32ru-ru
2009-02-07 15:07:56 —-HDC—- C:WINDOWSie7
2009-02-07 15:07:34 —-HDC—- C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$
2009-02-07 15:07:08 —-HDC—- C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$
2009-02-07 15:06:40 —-HDC—- C:WINDOWS$NtUninstallKB915865$
2009-02-07 15:06:37 —-N—- C:WINDOWSsystem32xmllite.dll
2009-02-07 15:03:48 —-A—- C:WINDOWSsystem32MRT.exe
2009-02-07 15:03:42 —-D—- C:WINDOWSnetwork diagnostic
2009-02-07 15:03:41 —-HDC—- C:WINDOWS$NtUninstallKB914440$
2009-02-07 15:03:30 —-HDC—- C:WINDOWS$NtUninstallKB904942$
2009-02-07 10:40:17 —-D—- C:WINDOWSGAMES
2009-02-07 10:40:17 —-A—- C:WINDOWSKNP.INI
2009-02-07 10:03:50 —-D—- C:Documents and SettingsпапаApplication DataQIP
2009-02-07 09:06:00 —-A—- C:WINDOWSmafosav.INI
2009-02-05 22:06:33 —-D—- C:Program FilesQIP Infium
2009-02-04 20:23:53 —-D—- C:WINDOWSsystem32appmgmt
2009-02-04 19:14:09 —-D—- C:Documents and SettingsпапаApplication DataMozilla
2009-02-04 19:13:02 —-D—- C:Documents and SettingsпапаApplication DataMacromedia
2009-02-04 17:57:10 —-D—- C:Program FilesQIP
2009-02-03 21:56:31 —-D—- C:Program FilesGarena
2009-02-01 11:40:56 —-D—- C:WINDOWSCache
2009-01-30 11:11:53 —-A—- C:WINDOWSsystem32OpenALwEAX.exe
2009-01-30 11:11:41 —-A—- C:WINDOWSsystem32mfcm80u.dll
2009-01-30 11:11:41 —-A—- C:WINDOWSsystem32mfcm80.dll
2009-01-30 11:11:40 —-A—- C:WINDOWSsystem32mfc80u.dll
2009-01-30 11:11:40 —-A—- C:WINDOWSsystem32mfc80.dll
2009-01-30 11:10:49 —-A—- C:WINDOWSsystem32imon.dll
2009-01-29 05:29:13 —-HDC—- C:WINDOWS$NtUninstallKB956803$
2009-01-29 05:29:05 —-HDC—- C:WINDOWS$NtUninstallKB954211$
2009-01-29 05:29:00 —-D—- C:WINDOWSsystem32PreInstall
2009-01-29 05:28:58 —-HDC—- C:WINDOWS$NtUninstallKB898461$
2009-01-29 05:28:47 —-HDC—- C:WINDOWS$NtUninstallKB958644$
2009-01-29 05:28:47 —-HD—- C:WINDOWS$hf_mig$
2009-01-29 03:24:57 —-A—- C:WINDOWSavisplitter.INI
2009-01-29 03:11:25 —-D—- C:Program FilesMozilla Firefox
2009-01-29 03:00:43 —-D—- C:WINDOWSsystem32SoftwareDistribution
2009-01-28 21:58:46 —-D—- C:Documents and SettingsпапаApplication DataCOWON
2009-01-27 20:00:54 —-D—- C:Program FilesStrongDC++
2009-01-25 13:37:32 —-D—- C:Documents and SettingsAll UsersApplication DataNVIDIA
2009-01-25 13:31:59 —-D—- C:Program FilesA4Tech
2009-01-24 11:34:29 —-A—- C:WINDOWSsystem32Borlndmm.dll
2009-01-24 11:34:28 —-A—- C:WINDOWSsystem32Cc3250mt.dll
2009-01-24 11:34:22 —-A—- C:WINDOWSsystem32eax.dll
2009-01-24 11:34:21 —-A—- C:WINDOWSsystem32mfc70.dll
2009-01-24 11:34:20 —-A—- C:WINDOWSsystem32mfc70u.dll
2009-01-24 11:34:19 —-A—- C:WINDOWSsystem32MFC71u.dll
2009-01-24 11:34:17 —-A—- C:WINDOWSsystem32msvci70d.dll
2009-01-24 11:34:17 —-A—- C:WINDOWSsystem32msvci70.dll
2009-01-24 11:34:16 —-A—- C:WINDOWSsystem32msvcm80.dll
2009-01-24 11:34:15 —-A—- C:WINDOWSsystem32msvcp70d.dll
2009-01-24 11:34:15 —-A—- C:WINDOWSsystem32Msvcp70.dll
2009-01-24 11:34:15 —-A—- C:WINDOWSsystem32Msvcp60d.dll
2009-01-24 11:34:14 —-A—- C:WINDOWSsystem32msvcp80.dll
2009-01-24 11:34:14 —-A—- C:WINDOWSsystem32msvcp71d.dll
2009-01-24 11:34:13 —-A—- C:WINDOWSsystem32msvcr70d.dll
2009-01-24 11:34:13 —-A—- C:WINDOWSsystem32Msvcr70.dll
2009-01-24 11:34:11 —-A—- C:WINDOWSsystem32msxml3a.dll
2009-01-24 11:34:11 —-A—- C:WINDOWSsystem32msvcr80.dll
2009-01-24 11:34:11 —-A—- C:WINDOWSsystem32msvcr71d.dll
2009-01-24 11:34:10 —-A—- C:WINDOWSsystem32msxml4a.dll
2009-01-24 11:34:09 —-A—- C:WINDOWSsystem32OpenAL32.dll
2009-01-24 11:34:08 —-A—- C:WINDOWSsystem32Vb5db.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32xmltok.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32xmlparse.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32xmlinst.exe
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32wrap_oal.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32vp6vfw.dll
2009-01-24 11:34:03 —-A—- C:WINDOWSsystem32vp6install.exe
2009-01-24 11:21:28 —-D—- C:GAMES
2009-01-24 11:21:21 —-A—- C:WINDOWSIsUninst.exe
2009-01-23 10:21:12 —-D—- C:StRace
2009-01-20 18:18:10 —-A—- C:WINDOWSuninst.exe
2009-01-19 19:50:36 —-D—- C:WINDOWSMinidump
2009-01-18 19:21:12 —-A—- C:WINDOWSModemLog_Motorola USB Modem.txt
2009-01-18 19:20:52 —-N—- C:WINDOWSsystem32spmsg.dll
2009-01-18 19:20:48 —-A—- C:WINDOWSsystem32spupdsvc.exe
2009-01-18 19:20:46 —-HDC—- C:WINDOWS$NtUninstallWdf01005$
2009-01-18 19:19:18 —-D—- C:Documents and SettingsпапаApplication DataAdobe
2009-01-18 19:18:33 —-D—- C:Program FilesAvanquest update
2009-01-18 19:17:26 —-D—- C:WINDOWSRegisteredPackages
2009-01-18 19:17:06 —-A—- C:WINDOWSsystem32wdfcoinstaller01005.dll
2009-01-18 19:17:03 —-DC—- C:WINDOWSsystem32DRVSTORE
2009-01-18 19:16:22 —-D—- C:Program FilesCommon FilesMotorola Shared
2009-01-18 19:15:17 —-D—- C:Program FilesMotorola Phone Tools
2009-01-18 19:15:17 —-D—- C:Documents and SettingsAll UsersApplication DataBVRP Software
2009-01-18 19:14:41 —-D—- C:Documents and SettingsпапаApplication DataInstallShield
2009-01-17 11:47:28 —-D—- C:Documents and SettingsAll UsersApplication DataNFS Underground
2009-01-17 11:38:55 —-D—- C:Program FilesCommon FilesDirectX
2009-01-15 13:59:32 —-SHD—- C:RECYCLER
2009-01-15 13:59:05 —-D—- C:Program FilesWarRun
2009-01-15 13:58:31 —-D—- C:Program FilesCommFort
2009-01-15 13:55:48 —-D—- C:Program FilesVypress Chat
2009-01-15 12:48:01 —-D—- C:Program FilesCommon FilesCOWON
2009-01-15 12:48:00 —-D—- C:Program FilesJetAudio
2009-01-15 12:47:59 —-HD—- C:Program FilesInstallShield Installation Information
2009-01-15 12:47:06 —-A—- C:WINDOWSsystem32rmoc3260.dll
2009-01-15 12:47:06 —-A—- C:WINDOWSsystem32pndx5032.dll
2009-01-15 12:47:06 —-A—- C:WINDOWSsystem32pndx5016.dll
2009-01-15 12:47:06 —-A—- C:WINDOWSsystem32pncrt.dll
2009-01-15 12:47:04 —-A—- C:WINDOWSsystem32unrar.dll
2009-01-15 12:46:57 —-A—- C:WINDOWSsystem32yv12vfw.dll
2009-01-15 12:46:56 —-A—- C:WINDOWSsystem32xvidvfw.dll
2009-01-15 12:46:56 —-A—- C:WINDOWSsystem32xvidcore.dll
2009-01-15 12:46:55 —-A—- C:WINDOWSsystem32qt-dx331.dll
2009-01-15 12:46:55 —-A—- C:WINDOWSsystem32dpl100.dll
2009-01-15 12:46:54 —-A—- C:WINDOWSsystem32divx.dll
2009-01-15 12:46:52 —-A—- C:WINDOWSsystem32ff_vfw.dll.manifest
2009-01-15 12:46:52 —-A—- C:WINDOWSsystem32ff_vfw.dll
2009-01-15 12:46:48 —-D—- C:Program FilesK-Lite Codec Pack
2009-01-15 12:46:48 —-D—- C:Documents and SettingsAll UsersApplication DataReal
2009-01-15 12:44:10 —-D—- C:Documents and SettingsAll UsersApplication DatanView_Profiles
2009-01-15 12:41:32 —-D—- C:WINDOWSnview
2009-01-15 12:41:32 —-A—- C:WINDOWSsystem32nvudisp.exe
2009-01-15 12:41:17 —-D—- C:WINDOWSsystem32ReinstallBackups
2009-01-15 12:41:10 —-A—- C:WINDOWSsystem32NVUNINST.EXE
2009-01-15 12:40:57 —-D—- C:Program FilesCommon FilesInstallShield
2009-01-15 01:19:15 —-A—- C:WINDOWSsystem32h323log.txt
2009-01-15 01:17:35 —-A—- C:WINDOWSsystem32hidserv.dll
2009-01-15 01:16:46 —-A—- C:WINDOWSsystem32nv4_disp.dll
2009-01-15 01:16:08 —-A—- C:WINDOWSsystem32usbui.dll
2009-01-15 01:14:45 —-A—- C:WINDOWSimsins.BAK
2009-01-15 01:14:42 —-SHD—- C:WINDOWSInstaller
2009-01-15 01:14:42 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-01-15 01:14:41 —-D—- C:Program FilesCommon FilesODBC
2009-01-15 01:14:41 —-A—- C:WINDOWSODBCINST.INI
2009-01-15 01:14:37 —-D—- C:Program FilesCommon FilesSpeechEngines
2009-01-15 01:14:37 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2009-01-15 01:14:36 —-RD—- C:Program Files
2009-01-15 01:14:36 —-D—- C:Program FilesCommon Files
2009-01-15 01:14:33 —-RA—- C:WINDOWSsystem32kbdtuq.dll
2009-01-15 01:14:33 —-RA—- C:WINDOWSsystem32kbdtuf.dll
2009-01-15 01:14:33 —-RA—- C:WINDOWSsystem32kbdazel.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhept.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhela3.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhela2.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhe319.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhe220.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdhe.dll
2009-01-15 01:14:31 —-RA—- C:WINDOWSsystem32kbdgkl.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdlv1.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdlv.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdlt1.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdlt.dll
2009-01-15 01:14:29 —-RA—- C:WINDOWSsystem32kbdest.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdycl.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdsl1.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdsl.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdro.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdpl1.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdpl.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdhu1.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdhu.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdcz2.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdcz1.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdcz.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32kbdcr.dll
2009-01-15 01:14:27 —-RA—- C:WINDOWSsystem32KBDAL.DLL
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdycc.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbduzb.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdur.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdtat.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdmon.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdkyr.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdkaz.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdbu.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdblr.dll
2009-01-15 01:14:23 —-A—- C:WINDOWSsystem32kbdaze.dll
2009-01-15 01:14:22 —-A—- C:WINDOWSsystem32irclass.dll
2009-01-15 01:14:22 —-A—- C:WINDOWSsystem32dgrpsetu.dll
2009-01-15 01:14:21 —-A—- C:WINDOWSsystem32spxcoins.dll
2009-01-15 01:14:21 —-A—- C:WINDOWSsystem32EqnClass.Dll
2009-01-15 01:14:21 —-A—- C:WINDOWSsystem32dgsetup.dll
2009-01-15 01:14:19 —-N—- C:WINDOWSsystem32CONFIG.TMP
2009-01-15 01:14:19 —-A—- C:WINDOWSTASKMAN.EXE
2009-01-15 01:14:18 —-A—- C:WINDOWSsystem32batt.dll
2009-01-15 01:14:18 —-A—- C:WINDOWSNOTEPAD.EXE
2009-01-15 01:14:17 —-A—- C:WINDOWSsystem32storprop.dll
2009-01-15 01:14:08 —-ASH—- C:Documents and SettingsAll UsersApplication Datadesktop.ini
2009-01-15 01:14:03 —-RA—- C:WINDOWSSET8.tmp
2009-01-15 01:14:00 —-RA—- C:WINDOWSSET4.tmp
2009-01-15 01:13:58 —-RA—- C:WINDOWSSET3.tmp
2009-01-15 01:13:52 —-D—- C:WINDOWSsystem32CatRoot2
2009-01-15 01:13:52 —-D—- C:WINDOWSsystem32CatRoot
2009-01-15 01:13:47 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2009-01-15 01:13:23 —-A—- C:WINDOWSsetuplog.txt
2009-01-15 01:13:19 —-D—- C:Documents and Settings
2009-01-15 01:10:16 —-SH—- C:boot.ini
2009-01-15 01:09:14 —-SHD—- C:System Volume Information
2009-01-15 01:02:33 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-01-15 01:02:33 —-RSD—- C:WINDOWSFonts
2009-01-15 01:02:33 —-RD—- C:WINDOWSWeb
2009-01-15 01:02:33 —-HD—- C:WINDOWSinf
2009-01-15 01:02:33 —-D—- C:WINDOWSWinSxS
2009-01-15 01:02:33 —-D—- C:WINDOWStwain_32
2009-01-15 01:02:33 —-D—- C:WINDOWSTemp
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32wins
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32wbem
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32usmt
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32spool
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32ShellExt
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32Setup
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32ras
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32oobe
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32npp
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32mui
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32inetsrv
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32IME
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32icsxml
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32ias
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32export
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32drivers
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32dhcp
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32config
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem323com_dmi
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem323076
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem322052
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321054
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321049
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321042
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321041
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321037
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321033
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321031
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321028
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem321025
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem32
2009-01-15 01:02:33 —-D—- C:WINDOWSsystem
2009-01-15 01:02:33 —-D—- C:WINDOWSsecurity
2009-01-15 01:02:33 —-D—- C:WINDOWSResources
2009-01-15 01:02:33 —-D—- C:WINDOWSrepair
2009-01-15 01:02:33 —-D—- C:WINDOWSProvisioning
2009-01-15 01:02:33 —-D—- C:WINDOWSPeerNet
2009-01-15 01:02:33 —-D—- C:WINDOWSpchealth
2009-01-15 01:02:33 —-D—- C:WINDOWSmui
2009-01-15 01:02:33 —-D—- C:WINDOWSmsapps
2009-01-15 01:02:33 —-D—- C:WINDOWSmsagent
2009-01-15 01:02:33 —-D—- C:WINDOWSMedia
2009-01-15 01:02:33 —-D—- C:WINDOWSjava
2009-01-15 01:02:33 —-D—- C:WINDOWSime
2009-01-15 01:02:33 —-D—- C:WINDOWSHelp
2009-01-15 01:02:33 —-D—- C:WINDOWSehome
2009-01-15 01:02:33 —-D—- C:WINDOWSDriver Cache
2009-01-15 01:02:33 —-D—- C:WINDOWSDebug
2009-01-15 01:02:33 —-D—- C:WINDOWSCursors
2009-01-15 01:02:33 —-D—- C:WINDOWSConnection Wizard
2009-01-15 01:02:33 —-D—- C:WINDOWSConfig
2009-01-15 01:02:33 —-D—- C:WINDOWSAppPatch
2009-01-15 01:02:33 —-D—- C:WINDOWSaddins
2009-01-15 01:02:33 —-D—- C:WINDOWS
2009-01-14 23:39:20 —-A—- C:WINDOWSsystem32XAudio2_0.dll
2009-01-14 23:39:20 —-A—- C:WINDOWSsystem32xactengine3_0.dll
2009-01-14 23:39:19 —-A—- C:WINDOWSsystem32X3DAudio1_3.dll
2009-01-14 23:39:18 —-A—- C:WINDOWSsystem32d3dx10_37.dll
2009-01-14 23:39:18 —-A—- C:WINDOWSsystem32D3DCompiler_37.dll
2009-01-14 23:39:17 —-A—- C:WINDOWSsystem32xactengine2_10.dll
2009-01-14 23:39:17 —-A—- C:WINDOWSsystem32D3DX9_37.dll
2009-01-14 23:39:15 —-A—- C:WINDOWSsystem32d3dx10_36.dll
2009-01-14 23:39:15 —-A—- C:WINDOWSsystem32D3DCompiler_36.dll
2009-01-14 23:39:14 —-A—- C:WINDOWSsystem32d3dx9_36.dll
2009-01-14 23:38:56 —-A—- C:WINDOWSsystem32xactengine2_9.dll
2009-01-14 23:38:40 —-A—- C:WINDOWSsystem32d3dx10_35.dll
2009-01-14 23:38:40 —-A—- C:WINDOWSsystem32D3DCompiler_35.dll
2009-01-14 23:38:39 —-A—- C:WINDOWSsystem32d3dx9_35.dll
2009-01-14 23:38:38 —-A—- C:WINDOWSsystem32xactengine2_8.dll
2009-01-14 23:38:38 —-A—- C:WINDOWSsystem32X3DAudio1_2.dll
2009-01-14 23:38:37 —-A—- C:WINDOWSsystem32d3dx10_34.dll
2009-01-14 23:38:37 —-A—- C:WINDOWSsystem32D3DCompiler_34.dll
2009-01-14 23:38:36 —-A—- C:WINDOWSsystem32xinput1_3.dll
2009-01-14 23:38:36 —-A—- C:WINDOWSsystem32d3dx9_34.dll
2009-01-14 23:38:34 —-A—- C:WINDOWSsystem32xactengine2_7.dll
2009-01-14 23:38:33 —-A—- C:WINDOWSsystem32d3dx10_33.dll
2009-01-14 23:38:33 —-A—- C:WINDOWSsystem32D3DCompiler_33.dll
2009-01-14 23:38:32 —-A—- C:WINDOWSsystem32d3dx9_33.dll
2009-01-14 23:38:30 —-A—- C:WINDOWSsystem32xactengine2_6.dll
2009-01-14 23:38:30 —-A—- C:WINDOWSsystem32xactengine2_5.dll
2009-01-14 23:38:29 —-A—- C:WINDOWSsystem32d3dx9_32.dll
2009-01-14 23:38:28 —-A—- C:WINDOWSsystem32xactengine2_4.dll
2009-01-14 23:38:28 —-A—- C:WINDOWSsystem32x3daudio1_1.dll
2009-01-14 23:38:27 —-A—- C:WINDOWSsystem32xactengine2_3.dll
2009-01-14 23:38:27 —-A—- C:WINDOWSsystem32d3dx9_31.dll
2009-01-14 23:38:26 —-A—- C:WINDOWSsystem32xinput1_2.dll
2009-01-14 23:38:26 —-A—- C:WINDOWSsystem32xactengine2_2.dll
2009-01-14 23:38:10 —-A—- C:WINDOWSsystem32xinput1_1.dll
2009-01-14 23:38:10 —-A—- C:WINDOWSsystem32xactengine2_1.dll
2009-01-14 23:38:09 —-A—- C:WINDOWSsystem32d3dx9_30.dll
2009-01-14 23:38:08 —-A—- C:WINDOWSsystem32xactengine2_0.dll
2009-01-14 23:38:08 —-A—- C:WINDOWSsystem32x3daudio1_0.dll
2009-01-14 23:38:07 —-A—- C:WINDOWSsystem32d3dx9_29.dll
2009-01-14 23:38:06 —-A—- C:WINDOWSsystem32d3dx9_28.dll
2009-01-14 23:38:05 —-A—- C:WINDOWSsystem32xinput9_1_0.dll
2009-01-14 23:38:05 —-A—- C:WINDOWSsystem32d3dx9_27.dll
2009-01-14 23:38:04 —-A—- C:WINDOWSsystem32d3dx9_26.dll
2009-01-14 23:38:03 —-A—- C:WINDOWSsystem32d3dx9_25.dll
2009-01-14 23:38:02 —-A—- C:WINDOWSsystem32d3dx9_24.dll
2009-01-14 23:32:04 —-D—- C:Program FilesSateira
2009-01-14 23:32:01 —-D—- C:Program FilesAce Utilities
2009-01-14 23:31:57 —-D—- C:Program FilesTotal Commander
2009-01-14 23:31:24 —-D—- C:Program FilesWinRAR
2009-01-14 23:26:45 —-A—- C:WINDOWSODBC.INI
2009-01-14 23:26:40 —-A—- C:WINDOWSsystem32mdimon.dll
2009-01-14 23:25:42 —-D—- C:Program FilesMicrosoft.NET
2009-01-14 23:24:53 —-D—- C:Program FilesCommon FilesDESIGNER
2009-01-14 23:24:22 —-D—- C:WINDOWSSHELLNEW
2009-01-14 23:24:15 —-D—- C:Program FilesMicrosoft Office
2009-01-14 23:21:11 —-D—- C:Program FilesCommon FilesAdobe
2009-01-14 23:21:05 —-D—- C:Documents and SettingsAll UsersApplication DataAdobe
2009-01-14 23:19:07 —-D—- C:Program FilesAdobe
2009-01-14 22:44:40 —-N—- C:WINDOWSsystem32MSVCR71.dll
2009-01-14 22:44:40 —-N—- C:WINDOWSsystem32MFC71.dll
2009-01-14 22:44:40 —-A—- C:WINDOWSsystem32msvcp71.dll
2009-01-14 22:44:40 —-A—- C:WINDOWSsystem32aswBoot.exe
2009-01-14 22:44:36 —-D—- C:Program FilesAlwil Software
2009-01-14 22:41:29 —-A—- C:WINDOWSsystem32ksuser.dll
2009-01-14 22:41:24 —-A—- C:WINDOWSCMISETUP.INI
2009-01-14 22:41:21 —-A—- C:WINDOWSsystem32cmprop.dll
2009-01-14 22:41:18 —-D—- C:C-Media
2009-01-14 22:41:18 —-A—- C:WINDOWSsystem32Audio3D.dll
2009-01-14 22:41:18 —-A—- C:WINDOWSsystem32a3d.dll
2009-01-14 22:41:15 —-A—- C:WINDOWSCMCDPLAY.INI
2009-01-14 22:37:26 —-D—- C:Documents and SettingsпапаApplication DataIdentities
2009-01-14 22:37:25 —-HD—- C:Program FilesUninstall Information
2009-01-14 22:36:50 —-ASH—- C:Documents and SettingsпапаApplication Datadesktop.ini
2009-01-14 22:36:49 —-SD—- C:Documents and SettingsпапаApplication DataMicrosoft
2009-01-14 22:35:16 —-D—- C:WINDOWSSoftwareDistribution
2009-01-14 22:35:14 —-SD—- C:WINDOWSsystem32Microsoft
2009-01-14 22:35:14 —-D—- C:WINDOWSPrefetch
2009-01-14 22:35:14 —-A—- C:WINDOWSSchedLgU.Txt
2009-01-14 22:28:37 —-D—- C:WINDOWSsystem32xircom
2009-01-14 22:28:37 —-D—- C:Program Filesxerox
2009-01-14 22:28:37 —-D—- C:Program Filesmicrosoft frontpage
2009-01-14 22:28:07 —-A—- C:WINDOWScontrol.ini
2009-01-14 22:28:07 —-A—- C:AUTOEXEC.BAT
2009-01-14 22:27:52 —-A—- C:WINDOWSOEWABLog.txt
2009-01-14 22:27:47 —-A—- C:WINDOWSsystem32mapi32.dll
2009-01-14 22:26:22 —-SD—- C:WINDOWSDownloaded Program Files
2009-01-14 22:26:22 —-RD—- C:WINDOWSOffline Web Pages
2009-01-14 22:26:21 —-RAH—- C:WINDOWSsystem32logonui.exe.manifest
2009-01-14 22:26:14 —-RAH—- C:WINDOWSsystem32cdplayer.exe.manifest
2009-01-14 22:26:07 —-HD—- C:Program FilesWindowsUpdate
2009-01-14 22:26:02 —-D—- C:Program FilesOnline Services
2009-01-14 22:25:42 —-D—- C:WINDOWSsystem32DirectX
2009-01-14 22:25:21 —-A—- C:WINDOWSsystem32atrace.dll
2009-01-14 22:25:18 —-A—- C:WINDOWSsystem32desktop.ini
2009-01-14 22:25:18 —-A—- C:WINDOWSdesktop.ini
2009-01-14 22:25:09 —-A—- C:WINDOWSsystem32nmevtmsg.dll
2009-01-14 22:25:08 —-D—- C:Program FilesCommon FilesServices
2009-01-14 22:25:08 —-A—- C:WINDOWSsystem32acctres.dll
2009-01-14 22:25:05 —-SD—- C:WINDOWSTasks
2009-01-14 22:25:05 —-A—- C:WINDOWSsystem32icfgnt5.dll
2009-01-14 22:25:04 —-D—- C:Program FilesCommon FilesMSSoap
2009-01-14 22:24:59 —-D—- C:WINDOWSsystem32Macromed
2009-01-14 22:24:59 —-D—- C:WINDOWSsrchasst
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuweb.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wups.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wucltui.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuauserv.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuaueng1.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuaueng.dll
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuauclt1.exe
2009-01-14 22:24:55 —-A—- C:WINDOWSsystem32wuauclt.exe
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32wuapi.dll
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32qmgrprxy.dll
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32qmgr.dll
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32bitsprx3.dll
2009-01-14 22:24:54 —-A—- C:WINDOWSsystem32bitsprx2.dll
2009-01-14 22:24:49 —-D—- C:Program FilesMovie Maker
2009-01-14 22:24:44 —-A—- C:WINDOWSsystem32safrslv.dll
2009-01-14 22:24:44 —-A—- C:WINDOWSsystem32safrdm.dll
2009-01-14 22:24:44 —-A—- C:WINDOWSsystem32safrcdlg.dll
2009-01-14 22:24:44 —-A—- C:WINDOWSsystem32racpldlg.dll
2009-01-14 22:24:40 —-A—- C:WINDOWSsystem32fltMc.exe
2009-01-14 22:24:40 —-A—- C:WINDOWSsystem32fltlib.dll
2009-01-14 22:24:39 —-D—- C:WINDOWSsystem32Restore
2009-01-14 22:24:39 —-A—- C:WINDOWSsystem32srsvc.dll
2009-01-14 22:24:39 —-A—- C:WINDOWSsystem32srrstr.dll
2009-01-14 22:24:39 —-A—- C:WINDOWSsystem32srclient.dll
2009-01-14 22:24:39 —-A—- C:WINDOWSsystem32ils.dll
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32nmmkcert.dll
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32msconf.dll
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32mnmsrvc.exe
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32mnmdd.dll
2009-01-14 22:24:38 —-A—- C:WINDOWSsystem32isrdbg32.dll
2009-01-14 22:24:35 —-D—- C:Program FilesNetMeeting
2009-01-14 22:24:35 —-A—- C:WINDOWSsystem32msoert2.dll
2009-01-14 22:24:35 —-A—- C:WINDOWSsystem32msoeacct.dll
2009-01-14 22:24:34 —-A—- C:WINDOWSsystem32inetres.dll
2009-01-14 22:24:34 —-A—- C:WINDOWSsystem32inetcomm.dll
2009-01-14 22:24:32 —-D—- C:Program FilesOutlook Express
2009-01-14 22:24:32 —-A—- C:WINDOWSsystem32schedsvc.dll
2009-01-14 22:24:32 —-A—- C:WINDOWSsystem32mstinit.exe
2009-01-14 22:24:32 —-A—- C:WINDOWSsystem32mstask.dll
2009-01-14 22:24:31 —-A—- C:WINDOWSsystem32isign32.dll
2009-01-14 22:24:31 —-A—- C:WINDOWSsystem32inetcfg.dll
2009-01-14 22:24:31 —-A—- C:WINDOWSsystem32icwphbk.dll
2009-01-14 22:24:31 —-A—- C:WINDOWSsystem32icwdial.dll
2009-01-14 22:24:24 —-D—- C:Program FilesCommon FilesSystem
2009-01-14 22:24:19 —-D—- C:Program FilesInternet Explorer
2009-01-14 22:23:29 —-D—- C:Program FilesComPlus Applications
2009-01-14 22:23:26 —-A—- C:WINDOWSvbaddin.ini
2009-01-14 22:23:26 —-A—- C:WINDOWSvb.ini
2009-01-14 22:23:21 —-D—- C:WINDOWSRegistration
2009-01-14 22:23:13 —-D—- C:Program FilesWindows Media Player
2009-01-14 22:23:06 —-D—- C:Program FilesMessenger
2009-01-14 22:23:00 —-D—- C:Program FilesMSN Gaming Zone
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32usrlogon.cmd
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tsshutdn.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tslabels.ini
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tskill.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tsdiscon.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32tscon.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32shadow.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32rwinsta.exe
2009-01-14 22:22:39 —-A—- C:WINDOWSsystem32reset.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32regini.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32rdpcfgex.dll
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32qwinsta.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32qappsrv.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32msg.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32msdtcprf.ini
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32logoff.exe
2009-01-14 22:22:38 —-A—- C:WINDOWSsystem32cdmodem.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32mtxlegih.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32mtxex.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32mtxdm.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32dcomcnfg.exe
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32comrepl.dll
2009-01-14 22:22:37 —-A—- C:WINDOWSsystem32comaddin.dll
2009-01-14 22:22:36 —-A—- C:WINDOWSsystem32stclient.dll
2009-01-14 22:22:35 —-A—- C:WINDOWSsystem32comsnap.dll
2009-01-14 22:22:30 —-A—- C:WINDOWSsystem32wmimgmt.msc
2009-01-14 22:22:27 —-D—- C:Program FilesWindows NT
2009-01-14 22:22:26 —-A—- C:WINDOWSsystem32tscfgwmi.dll
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32tscupgrd.exe
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32sessmgr.exe
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32remotepg.dll
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32rdshost.exe
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32rdsaddin.exe
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32rdchost.dll
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32mstscax.dll
2009-01-14 22:22:25 —-A—- C:WINDOWSsystem32mstsc.exe
2009-01-14 22:22:24 —-D—- C:WINDOWSsystem32MsDtc
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32termsrv.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32rdpwsx.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32rdpsnd.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32rdpclip.exe
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32qprocess.exe
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32msdtcuiu.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32icaapi.dll
2009-01-14 22:22:24 —-A—- C:WINDOWSsystem32cfgbkend.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32xolehlp.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32mtxoci.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32msdtctm.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32msdtcprx.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32msdtclog.dll
2009-01-14 22:22:23 —-A—- C:WINDOWSsystem32msdtc.exe
2009-01-14 22:22:22 —-D—- C:WINDOWSsystem32Com
2009-01-14 22:22:22 —-A—- C:WINDOWSsystem32colbact.dll
2009-01-14 22:22:22 —-A—- C:WINDOWSsystem32clbcatex.dll
2009-01-14 22:22:22 —-A—- C:WINDOWSsystem32catsrvps.dll
2009-01-14 22:22:21 —-A—- C:WINDOWSsystem32comuid.dll
2009-01-14 22:22:21 —-A—- C:WINDOWSsystem32comsvcs.dll
2009-01-14 22:22:21 —-A—- C:WINDOWSsystem32catsrvut.dll
2009-01-14 22:22:21 —-A—- C:WINDOWSsystem32catsrv.dll
2009-01-14 22:22:20 —-A—- C:WINDOWSsystem32clbcatq.dll
2009-01-14 22:22:13 —-A—- C:WINDOWSsystem32servdeps.dll
2009-01-14 22:22:12 —-A—- C:WINDOWSsystem32mmfutil.dll
2009-01-14 22:22:12 —-A—- C:WINDOWSsystem32licwmi.dll
2009-01-14 22:22:12 —-A—- C:WINDOWSsystem32cmprops.dll======List of files/folders modified in the last 1 months======
2009-01-27 13:09:36 —-A—- C:WINDOWSwin.ini
2009-01-15 01:14:35 —-A—- C:WINDOWSsystem.ini======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2008-11-26 26944]
R1 AmdK7;Драйвер AMD K7 процессора; C:WINDOWSsystem32DRIVERSamdk7.sys [2004-08-18 41728]
R1 Amfilter;A4Tech Mouse Filter Driver; C:WINDOWSsystem32DRIVERSAmfilter.sys [2007-05-15 9216]
R1 aswSP;avast! Self Protection; C:WINDOWSsystem32driversaswSP.sys [2008-11-26 111184]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2008-11-26 50864]
R1 prodrv04;Star Force copy protection driver v4; C:WINDOWSSystem32driversprodrv04.sys [2009-01-16 114496]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32DRIVERSaswFsBlk.sys [2008-11-26 20560]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2008-11-26 94032]
R3 Amusbprt;A4Tech HID-compliant Mouse Driver; C:WINDOWSsystem32DRIVERSAmusbprt.sys [2007-05-15 14336]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2008-11-26 23152]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:WINDOWSsystem32driverscmaudio.sys [2001-02-12 265928]
R3 hidusb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2004-08-18 9600]
R3 ms_mpu401;Драйвер UART Microsoft MPU-401 MIDI; C:WINDOWSsystem32driversmsmpu401.sys [2001-08-17 2944]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2007-11-25 3994624]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet адаптер, драйвер для NT; C:WINDOWSsystem32DRIVERSRTL8139.SYS [2004-08-04 20992]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-18 57600]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-18 20480]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-18 14848]
S3 GarenaPEngine;GarenaPEngine; ??C:DOCUME~1z00mLOCALS~1TempXEL46.tmp []
S3 motmodem;Motorola USB CDC ACM Driver; C:WINDOWSsystem32DRIVERSmotmodem.sys [2007-06-18 23680]
S3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2004-08-18 12160]
S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-18 31616]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 Wdf01000;Wdf01000; C:WINDOWSsystem32DRIVERSWdf01000.sys [2006-11-02 492000]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2008-11-26 18752]
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast4ashServ.exe [2008-11-26 155160]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2008-11-26 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2008-11-26 352920]
S2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2007-11-25 159810]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
EOF
но запустив Flash_Disinfector.exe виснет комп.
Но тем не менее, программа работу выполнила.
RSIT лог выглядит нормально.
Несколько завершающих действий.Запустите программу OTMoveIT3. Кликните по кнопке CleanUp. Если появится запрос на перезагрузку компьютера, то кликните Да/Yes.
Удалите RSIT и другие скачанные вами сканеры и небольшие утилиты, а так же все файлы и каталоги который были созданы в процессе лечения компьютера.Установите программу Spybot Search and Destroy, это довольно неплохая дополнительная защита от шпионских и других вредоносных программ..
Запустите ваш антивирус и проверьте состояние автоматической защиты. Включите, если она выключена.
Удалите старые точки восстановления, так как в них возможно нахождения инфицированных файлов, троянов и других вредоносных программ. Для этого кликните по иконке Мой компьютер, выберите пункт Свойства. В открывшемся окне выберите вкладку Восстановление системы. Поставьте галочку напротив пункта Отключить восстановление системы на всех дисках. Кликните по кнопке Применить. Подтвердите свои действия кликнув по кнопке OK в открывшемся диалоге. Закройте окно Свойства системы, кликнув по кнопке OK.
После загрузки компьютера выполните действия описанные выше, только в этот раз снимите галочку.
Создайте новую точку восстановления. Это поможет вам в случае необходимости загрузить текущую конфигурацию Windows и быстро излечиться от спайваре/вируса. Для этого кликните по кнопке Пуск, далее выберите пункт Стандартные, в нём Служебные и запустите программу Восстановление системы. В открывшемся окне выберите задачу Создать точку восстановления и нажмите кнопку Далее и следуйте указаниям.
Не забывайте обновлять Windows, ваши программы и особенно ваш антивирус.
Всего доброго!
- Для ответа в этой теме необходимо авторизоваться.
