- This topic has 1 ответ, 2 участника, and was last updated 16 years, 3 months назад by
.
-
Сообщения
-
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Владик at 2009-04-02 22:54:27
Microsoft Windows XP Professional Service Pack 2
System drive C: has 5 GB (4%) free of 143 GB
Total RAM: 1023 MB (47% free)HijackThis download failed
======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — c:program filesmail.rusputnikMailRuSputnik.dll [2009-04-01 680624][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
Ask Toolbar BHO — C:Program FilesAskTBarbar1.binASKTBAR.DLL [2009-03-22 245760][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{FE063DB9-4EC0-403e-8DD8-394C54984B2C} — Ask Toolbar — C:Program FilesAskTBarbar1.binASKTBAR.DLL [2009-03-22 245760]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Niooiee@Mail.Ru — c:program filesmail.rusputnikMailRuSputnik.dll [2009-04-01 680624][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2006-06-01 7618560]
«nwiz»=nwiz.exe /install []
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2006-06-01 86016]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2009-04-01 6210744]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2005-10-24 90112]
«IMJPMIG8.1″=C:WINDOWSIMEimjp8_1IMJPMIG.EXE [2004-08-18 208952]
«MSPY2002″=C:WINDOWSsystem32IMEPINTLGNTImScInst.exe [2004-08-18 59392]
«PHIME2002ASync»=C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE [2004-08-18 455168]
«PHIME2002A»=C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE [2004-08-18 455168]
«Microsoft(R) System Manager»=C:WINDOWSsystem32sysmgr.exe [2009-03-22 46068]
«NeroFilterCheck»=C:Program FilesCommon FilesNeroLibNeroCheck.exe [2007-03-01 153136]
«netmon»=C:WINDOWSsystemservices.exe [2009-04-01 100864][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-17 15360]
«ICQ»=C:Program FilesICQ6.5ICQ.exe [2009-03-01 172792]
«AlcoholAutomount»=C:Program FilesAlcohol SoftAlcohol 120axcmd.exe /automount []
«QIP.Online»=C:Program FilesQIP.Onlineqiponline.exe [2009-03-23 3374592]C:Documents and SettingsAll Users.WINDOWSГлавное менюПрограммыАвтозагрузка
Peers.lnk — C:Program FilesPeersPeers.exe[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalmsile]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalMSNETDED]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalmsrsys]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalSVCWINSPOOL]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWindowsTelephony]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkmsile]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkMSNETDED]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkmsrsys]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkSVCWINSPOOL]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWindowsTelephony]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetwork{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:WINDOWSsystemsvhost.exe»=»C:WINDOWSsystemsvhost.exe:*:MSNETDED»
«C:WINDOWSSystem3260.scr»=»C:WINDOWSSystem3260.scr:*:MSNETDED»
«C:WINDOWSSystem3281.scr»=»C:WINDOWSSystem3281.scr:*:WindowsTelephony»
«C:WINDOWSSystem3244.scr»=»C:WINDOWSSystem3244.scr:*:MSNETDED»
«C:WINDOWSSystem3245.scr»=»C:WINDOWSSystem3245.scr:*:MSNETDED»
«C:WINDOWSSystem3278.scr»=»C:WINDOWSSystem3278.scr:*:WindowsTelephony»
«C:WINDOWSSystem3283.scr»=»C:WINDOWSSystem3283.scr:*:MSNETDED»
«C:WINDOWSsystemmsrsys32.exe»=»C:WINDOWSsystemmsrsys32.exe:*:msrsys»
«C:WINDOWSSystem3234.scr»=»C:WINDOWSSystem3234.scr:*:msrsys»
«C:WINDOWSsystemmsile.exe»=»C:WINDOWSsystemmsile.exe:*:msile»
«C:WINDOWSSystem3275.scr»=»C:WINDOWSSystem3275.scr:*:WindowsTelephony»
«C:Documents and SettingsВладик12377323801848.exe»=»C:Documents and SettingsВладик12377323801848.exe:*:msile»
«C:Documents and SettingsВладик12377378501896.exe»=»C:Documents and SettingsВладик12377378501896.exe:*:msile»
«C:WINDOWSTEMP20.exe»=»C:WINDOWSTEMP20.exe:*:msile»
«C:WINDOWSTEMP48.exe»=»C:WINDOWSTEMP48.exe:*:msile»
«C:WINDOWSTEMP81.exe»=»C:WINDOWSTEMP81.exe:*:msile»
«C:WINDOWSTEMP84.exe»=»C:WINDOWSTEMP84.exe:*:msile»
«C:WINDOWSTEMP77.exe»=»C:WINDOWSTEMP77.exe:*:msile»
«C:WINDOWSTEMP42.exe»=»C:WINDOWSTEMP42.exe:*:msile»
«C:Program FilesActivisionSpider-Man — Web of ShadowsimagepcSpider-Man Web of Shadows.exe»=»C:Program FilesActivisionSpider-Man — Web of ShadowsimagepcSpider-Man Web of Shadows.exe:*:Enabled:Spider-Man(TM) — Web of Shadows-Spiel»
«C:WINDOWSsystemservices.exe»=»C:WINDOWSsystemservices.exe:*:Microsoft Enabled»
«C:WINDOWSTEMP�6.exe»=»C:WINDOWSTEMP�6.exe:*:Microsoft Enabled»
«C:WINDOWSTEMP70.exe»=»C:WINDOWSTEMP70.exe:*:Microsoft Enabled»
«C:WINDOWSTEMP61.exe»=»C:WINDOWSTEMP61.exe:*:Microsoft Enabled»
«C:WINDOWSTEMP�7.exe»=»C:WINDOWSTEMP�7.exe:*:Microsoft Enabled»
«C:WINDOWSTEMP75.exe»=»C:WINDOWSTEMP75.exe:*:Microsoft Enabled»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{6d2c3b78-1612-11de-a186-00173164511c}]
shellAutoRuncommand — C:WINDOWSsystem32RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE .RECYCLERS-5-3-42-2819952290-8240758988-879315005-3665jwgkvsq.vmx,ahaezedrn======List of files/folders created in the last 1 months======
2009-04-02 22:54:27 —-D—- C:rsit
2009-04-01 20:12:00 —-A—- C:WINDOWSmsmacro32.exe
2009-03-30 20:08:16 —-A—- C:WINDOWSmsoff32.exe
2009-03-30 12:18:45 —-D—- C:Program FilesCommon FilesEZB Systems
2009-03-30 12:18:44 —-D—- C:Program FilesUltraISO
2009-03-30 11:21:21 —-D—- C:Documents and SettingsВладикApplication DataInstallShield Installation Information
2009-03-30 11:12:42 —-D—- C:Program FilesKOEI
2009-03-28 23:56:40 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataLast.fm
2009-03-28 23:53:53 —-D—- C:Program FilesLast.fm
2009-03-28 01:46:44 —-D—- C:Documents and SettingsВладикApplication DataQIP.Online
2009-03-28 01:46:36 —-D—- C:Program FilesQIP.Online
2009-03-28 01:45:10 —-D—- C:Documents and SettingsВладикApplication DataQIP
2009-03-28 01:44:55 —-D—- C:Program FilesQIP Infium
2009-03-27 10:12:13 —-A—- C:WINDOWSsystem32XAudio2_2.dll
2009-03-27 10:12:13 —-A—- C:WINDOWSsystem32XAPOFX1_1.dll
2009-03-27 10:12:13 —-A—- C:WINDOWSsystem32xactengine3_2.dll
2009-03-27 10:12:13 —-A—- C:WINDOWSsystem32d3dx10_39.dll
2009-03-27 10:12:13 —-A—- C:WINDOWSsystem32D3DCompiler_39.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32XAudio2_1.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32XAudio2_0.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32XAPOFX1_0.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32xactengine3_1.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32X3DAudio1_4.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32D3DX9_39.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32D3DX9_38.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32d3dx10_38.dll
2009-03-27 10:12:12 —-A—- C:WINDOWSsystem32D3DCompiler_38.dll
2009-03-27 10:12:11 —-A—- C:WINDOWSsystem32xactengine3_0.dll
2009-03-27 10:12:11 —-A—- C:WINDOWSsystem32xactengine2_10.dll
2009-03-27 10:12:11 —-A—- C:WINDOWSsystem32X3DAudio1_3.dll
2009-03-27 10:12:11 —-A—- C:WINDOWSsystem32D3DX9_37.dll
2009-03-27 10:12:11 —-A—- C:WINDOWSsystem32d3dx10_37.dll
2009-03-27 10:12:11 —-A—- C:WINDOWSsystem32D3DCompiler_37.dll
2009-03-27 10:12:09 —-A—- C:WINDOWSsystem32d3dx9_36.dll
2009-03-27 10:12:09 —-A—- C:WINDOWSsystem32d3dx10_36.dll
2009-03-27 10:12:09 —-A—- C:WINDOWSsystem32D3DCompiler_36.dll
2009-03-27 10:12:08 —-A—- C:WINDOWSsystem32xactengine2_9.dll
2009-03-27 10:12:08 —-A—- C:WINDOWSsystem32xactengine2_8.dll
2009-03-27 10:12:08 —-A—- C:WINDOWSsystem32X3DAudio1_2.dll
2009-03-27 10:12:08 —-A—- C:WINDOWSsystem32d3dx9_35.dll
2009-03-27 10:12:08 —-A—- C:WINDOWSsystem32d3dx10_35.dll
2009-03-27 10:12:08 —-A—- C:WINDOWSsystem32d3dx10_34.dll
2009-03-27 10:12:08 —-A—- C:WINDOWSsystem32D3DCompiler_35.dll
2009-03-27 10:12:08 —-A—- C:WINDOWSsystem32D3DCompiler_34.dll
2009-03-27 10:12:07 —-A—- C:WINDOWSsystem32xinput1_3.dll
2009-03-27 10:12:07 —-A—- C:WINDOWSsystem32xactengine2_7.dll
2009-03-27 10:12:07 —-A—- C:WINDOWSsystem32d3dx9_34.dll
2009-03-27 10:12:06 —-A—- C:WINDOWSsystem32d3dx10_33.dll
2009-03-27 10:12:06 —-A—- C:WINDOWSsystem32D3DCompiler_33.dll
2009-03-27 10:12:05 —-A—- C:WINDOWSsystem32xactengine2_6.dll
2009-03-27 10:12:05 —-A—- C:WINDOWSsystem32xactengine2_5.dll
2009-03-27 10:12:05 —-A—- C:WINDOWSsystem32d3dx9_33.dll
2009-03-27 10:12:05 —-A—- C:WINDOWSsystem32d3dx9_32.dll
2009-03-27 10:12:04 —-A—- C:WINDOWSsystem32xinput1_2.dll
2009-03-27 10:12:04 —-A—- C:WINDOWSsystem32xinput1_1.dll
2009-03-27 10:12:04 —-A—- C:WINDOWSsystem32xactengine2_4.dll
2009-03-27 10:12:04 —-A—- C:WINDOWSsystem32xactengine2_3.dll
2009-03-27 10:12:04 —-A—- C:WINDOWSsystem32xactengine2_2.dll
2009-03-27 10:12:04 —-A—- C:WINDOWSsystem32x3daudio1_1.dll
2009-03-27 10:12:04 —-A—- C:WINDOWSsystem32d3dx9_31.dll
2009-03-27 10:12:03 —-A—- C:WINDOWSsystem32xactengine2_1.dll
2009-03-27 10:11:57 —-A—- C:WINDOWSsystem32xinput9_1_0.dll
2009-03-27 10:11:57 —-A—- C:WINDOWSsystem32xactengine2_0.dll
2009-03-27 10:11:57 —-A—- C:WINDOWSsystem32x3daudio1_0.dll
2009-03-27 10:11:57 —-A—- C:WINDOWSsystem32d3dx9_29.dll
2009-03-27 10:11:57 —-A—- C:WINDOWSsystem32d3dx9_27.dll
2009-03-27 10:11:56 —-A—- C:WINDOWSsystem32d3dx9_26.dll
2009-03-27 10:11:56 —-A—- C:WINDOWSsystem32d3dx9_25.dll
2009-03-27 10:11:56 —-A—- C:WINDOWSsystem32d3dx9_24.dll
2009-03-27 10:11:51 —-D—- C:WINDOWSLogs
2009-03-27 10:10:55 —-D—- C:WINDOWSsystem32XPSViewer
2009-03-27 10:10:50 —-D—- C:WINDOWSsystem32en-us
2009-03-27 10:10:50 —-D—- C:Program FilesReference Assemblies
2009-03-27 10:10:30 —-N—- C:WINDOWSsystem32spmsg2.dll
2009-03-27 10:09:50 —-RSD—- C:WINDOWSassembly
2009-03-27 10:09:28 —-D—- C:WINDOWSMicrosoft.NET
2009-03-27 10:08:53 —-A—- C:WINDOWSsystem32spupdsvc.exe
2009-03-27 10:08:52 —-HDC—- C:WINDOWS$NtUninstallWIC$
2009-03-27 10:08:48 —-D—- C:Program FilesMSXML 6.0
2009-03-27 09:52:49 —-D—- C:Program FilesActivision
2009-03-27 09:47:19 —-N—- C:WINDOWSsystem32spmsg.dll
2009-03-27 09:46:44 —-SHD—- C:WINDOWSftpcache
2009-03-27 09:43:15 —-D—- C:Program FilesAlcohol Soft
2009-03-27 09:42:46 —-D—- C:Documents and SettingsВладикApplication DataAshampoo
2009-03-27 09:42:20 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication Dataashampoo
2009-03-27 09:42:11 —-D—- C:Program FilesAshampoo
2009-03-24 00:25:59 —-A—- C:WINDOWSsystem32vfwwdm32.dll
2009-03-22 23:04:53 —-D—- C:Documents and SettingsВладикApplication DataDAEMON Tools Pro
2009-03-22 22:50:41 —-D—- C:Program FilesNero
2009-03-22 22:50:41 —-D—- C:Program FilesCommon FilesNero
2009-03-22 22:50:41 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataNero
2009-03-22 22:45:53 —-D—- C:WINDOWSRegisteredPackages
2009-03-22 22:36:11 —-A—- C:WINDOWSsystem32d3dx9_30.dll
2009-03-22 22:36:09 —-A—- C:WINDOWSsystem32d3dx9_28.dll
2009-03-22 22:34:54 —-D—- C:Program FilesAskTBar
2009-03-22 17:17:45 —-A—- C:WINDOWSsystem32sysmgr.exe
2009-03-22 17:17:44 —-A—- C:WINDOWSsystem32msvcrt2.dll
2009-03-22 08:29:33 —-RSH—- C:WINDOWSsystem32msr.exe
2009-03-21 20:50:44 —-D—- C:Documents and SettingsВладикApplication DataICQ
2009-03-21 20:50:14 —-D—- C:Program FilesICQ6.5
2009-03-21 19:35:18 —-A—- C:WINDOWSsystem32korwbrkr.dll
2009-03-21 19:35:18 —-A—- C:WINDOWSsystem32chtbrkr.dll
2009-03-21 19:35:18 —-A—- C:WINDOWSsystem32chsbrkr.dll
2009-03-21 19:35:17 —-A—- C:WINDOWSsystem32msir3jp.dll
2009-03-21 19:35:05 —-A—- C:WINDOWSsystem32kbd101a.dll
2009-03-21 19:35:05 —-A—- C:WINDOWSsystem32c_g18030.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbdnecNT.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbdnecAT.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbdnec95.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbdlk41j.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbdlk41a.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbdibm02.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbdax2.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbd106n.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32kbd101.dll
2009-03-21 19:34:57 —-A—- C:WINDOWSsystem32f3ahvoas.dll
2009-03-21 19:34:43 —-A—- C:WINDOWSsystem32c_is2022.dll
2009-03-21 19:34:41 —-A—- C:WINDOWSsystem32uniime.dll
2009-03-21 19:34:35 —-A—- C:WINDOWSsystem32imjp81k.dll
2009-03-21 19:34:33 —-A—- C:WINDOWSsystem32kbdkor.dll
2009-03-21 19:34:33 —-A—- C:WINDOWSsystem32kbdjpn.dll
2009-03-21 19:34:33 —-A—- C:WINDOWSsystem32kbd106.dll
2009-03-21 19:34:33 —-A—- C:WINDOWSsystem32kbd103.dll
2009-03-21 19:34:33 —-A—- C:WINDOWSsystem32kbd101c.dll
2009-03-21 19:34:33 —-A—- C:WINDOWSsystem32kbd101b.dll
2009-03-21 19:34:32 —-RA—- C:WINDOWSsystem32kbdarmw.dll
2009-03-21 19:34:32 —-RA—- C:WINDOWSsystem32kbdarme.dll
2009-03-21 19:34:32 —-A—- C:WINDOWSsystem32Thawbrkr.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdvntc.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdintel.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdintam.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdinpun.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdinmar.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdinkan.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdinhin.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdinguj.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdindev.dll
2009-03-21 19:34:31 —-RA—- C:WINDOWSsystem32kbdgeo.dll
2009-03-21 19:34:31 —-A—- C:WINDOWSsystem32c_iscii.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbdurdu.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbdsyr2.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbdsyr1.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbdfa.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbddiv2.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbddiv1.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbda3.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbda2.dll
2009-03-21 19:34:29 —-RA—- C:WINDOWSsystem32kbda1.dll
2009-03-21 19:34:29 —-A—- C:WINDOWSsystem32kbdusa.dll
2009-03-21 19:34:26 —-RA—- C:WINDOWSsystem32kbdheb.dll
2009-03-21 19:34:22 —-RA—- C:WINDOWSsystem32kbdth3.dll
2009-03-21 19:34:22 —-RA—- C:WINDOWSsystem32kbdth2.dll
2009-03-21 19:34:22 —-RA—- C:WINDOWSsystem32kbdth1.dll
2009-03-21 19:34:21 —-RA—- C:WINDOWSsystem32kbdth0.dll
2009-03-21 19:34:21 —-A—- C:WINDOWSsystem32ftlx041e.dll
2009-03-21 18:50:10 —-A—- C:WINDOWSsystem32h323log.txt
2009-03-21 18:48:34 —-A—- C:WINDOWSsystem32hidserv.dll
2009-03-21 18:47:41 —-A—- C:WINDOWSsystem32ksuser.dll
2009-03-21 18:47:11 —-A—- C:WINDOWSsystem32usbui.dll
2009-03-21 18:44:09 —-A—- C:WINDOWSimsins.BAK
2009-03-21 18:44:05 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-03-21 18:44:04 —-A—- C:WINDOWSODBCINST.INI
2009-03-21 18:43:58 —-RA—- C:WINDOWSsystem32kbdtuq.dll
2009-03-21 18:43:58 —-RA—- C:WINDOWSsystem32kbdtuf.dll
2009-03-21 18:43:58 —-RA—- C:WINDOWSsystem32kbdazel.dll
2009-03-21 18:43:56 —-RA—- C:WINDOWSsystem32kbdhept.dll
2009-03-21 18:43:56 —-RA—- C:WINDOWSsystem32kbdhela3.dll
2009-03-21 18:43:56 —-RA—- C:WINDOWSsystem32kbdhela2.dll
2009-03-21 18:43:56 —-RA—- C:WINDOWSsystem32kbdhe319.dll
2009-03-21 18:43:56 —-RA—- C:WINDOWSsystem32kbdhe220.dll
2009-03-21 18:43:56 —-RA—- C:WINDOWSsystem32kbdhe.dll
2009-03-21 18:43:56 —-RA—- C:WINDOWSsystem32kbdgkl.dll
2009-03-21 18:43:54 —-RA—- C:WINDOWSsystem32kbdlv1.dll
2009-03-21 18:43:54 —-RA—- C:WINDOWSsystem32kbdlv.dll
2009-03-21 18:43:54 —-RA—- C:WINDOWSsystem32kbdlt1.dll
2009-03-21 18:43:54 —-RA—- C:WINDOWSsystem32kbdlt.dll
2009-03-21 18:43:54 —-RA—- C:WINDOWSsystem32kbdest.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdycl.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdsl1.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdsl.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdro.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdpl1.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdpl.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdhu1.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdhu.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdcz2.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdcz1.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdcz.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32kbdcr.dll
2009-03-21 18:43:52 —-RA—- C:WINDOWSsystem32KBDAL.DLL
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdycc.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbduzb.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdur.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdtat.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdmon.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdkyr.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdkaz.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdbu.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdblr.dll
2009-03-21 18:43:48 —-A—- C:WINDOWSsystem32kbdaze.dll
2009-03-21 18:43:47 —-A—- C:WINDOWSsystem32irclass.dll
2009-03-21 18:43:46 —-A—- C:WINDOWSsystem32spxcoins.dll
2009-03-21 18:43:46 —-A—- C:WINDOWSsystem32EqnClass.Dll
2009-03-21 18:43:46 —-A—- C:WINDOWSsystem32dgsetup.dll
2009-03-21 18:43:46 —-A—- C:WINDOWSsystem32dgrpsetu.dll
2009-03-21 18:43:44 —-N—- C:WINDOWSsystem32CONFIG.TMP
2009-03-21 18:43:44 —-A—- C:WINDOWSTASKMAN.EXE
2009-03-21 18:43:43 —-A—- C:WINDOWSsystem32batt.dll
2009-03-21 18:43:43 —-A—- C:WINDOWSNOTEPAD.EXE
2009-03-21 18:43:42 —-A—- C:WINDOWSsystem32storprop.dll
2009-03-21 18:43:34 —-ASH—- C:Documents and SettingsAll Users.WINDOWSApplication Datadesktop.ini
2009-03-21 18:43:31 —-RA—- C:WINDOWSSET8.tmp
2009-03-21 18:43:28 —-RA—- C:WINDOWSSET4.tmp
2009-03-21 18:43:27 —-RA—- C:WINDOWSSET3.tmp
2009-03-21 18:43:16 —-SD—- C:Documents and SettingsAll Users.WINDOWSApplication DataMicrosoft
2009-03-21 18:42:52 —-A—- C:WINDOWSsetuplog.txt
2009-03-21 18:28:57 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication Data2GIS
2009-03-21 18:24:50 —-D—- C:Documents and SettingsВладикApplication DataGrym
2009-03-21 14:20:02 —-D—- C:Program Filesqipinfium9000
2009-03-21 14:09:32 —-D—- C:Program Filesavz
2009-03-21 14:05:05 —-D—- C:Documents and SettingsВладикApplication DataPeers
2009-03-21 14:05:02 —-D—- C:Program FilesPeers
2009-03-21 14:01:50 —-D—- C:Program FilesWebteh
2009-03-21 14:01:50 —-D—- C:Documents and SettingsВладикApplication DataBSplayer PRO
2009-03-21 13:57:42 —-D—- C:Documents and SettingsВладикApplication DataMedia Player Classic
2009-03-21 13:52:09 —-AD—- C:Documents and SettingsAll Users.WINDOWSApplication DataTEMP
2009-03-21 13:51:22 —-R—- C:WINDOWSsystem32ChCfg.exe
2009-03-21 13:51:17 —-R—- C:WINDOWSsystem32RTLCPL.exe
2009-03-21 13:51:17 —-R—- C:WINDOWSsystem32RtlCPAPI.dll
2009-03-21 13:51:16 —-R—- C:WINDOWSsoundman.exe
2009-03-21 13:51:10 —-R—- C:WINDOWSavrack.ini
2009-03-21 13:51:06 —-D—- C:Program FilesRealtek AC97
2009-03-21 13:50:49 —-R—- C:WINDOWSalcupd.exe
2009-03-21 13:50:48 —-R—- C:WINDOWSalcrmv.exe
2009-03-21 13:40:09 —-A—- C:WINDOWSsystem32rmoc3260.dll
2009-03-21 13:40:09 —-A—- C:WINDOWSsystem32pndx5032.dll
2009-03-21 13:40:09 —-A—- C:WINDOWSsystem32pndx5016.dll
2009-03-21 13:40:09 —-A—- C:WINDOWSsystem32pncrt.dll
2009-03-21 13:40:08 —-A—- C:WINDOWSsystem32unrar.dll
2009-03-21 13:40:07 —-A—- C:WINDOWSsystem32yv12vfw.dll
2009-03-21 13:40:07 —-A—- C:WINDOWSsystem32xvidvfw.dll
2009-03-21 13:40:07 —-A—- C:WINDOWSsystem32xvidcore.dll
2009-03-21 13:40:07 —-A—- C:WINDOWSsystem32qt-dx331.dll
2009-03-21 13:40:07 —-A—- C:WINDOWSsystem32dpl100.dll
2009-03-21 13:40:06 —-A—- C:WINDOWSsystem32ff_vfw.dll.manifest
2009-03-21 13:40:06 —-A—- C:WINDOWSsystem32ff_vfw.dll
2009-03-21 13:40:06 —-A—- C:WINDOWSsystem32divx.dll
2009-03-21 13:40:05 —-D—- C:Program FilesK-Lite Codec Pack
2009-03-21 13:40:05 —-D—- C:Documents and SettingsВладикApplication DataReal
2009-03-21 13:40:05 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataReal
2009-03-21 13:40:05 —-A—- C:WINDOWSsystem32msvcr71.dll
2009-03-21 13:28:31 —-D—- C:Documents and SettingsВладикApplication DataMacromedia
2009-03-21 13:28:30 —-D—- C:Documents and SettingsВладикApplication DataAdobe
2009-03-21 13:27:25 —-D—- C:Documents and SettingsВладикApplication DataMra
2009-03-21 13:25:08 —-D—- C:Documents and SettingsВладикApplication DataYandex
2009-03-21 13:24:52 —-D—- C:Documents and SettingsВладикApplication DataMozilla
2009-03-21 13:16:43 —-A—- C:WINDOWSsystem32nvudisp.exe
2009-03-21 13:07:32 —-A—- C:WINDOWSsystem32CapabilityTable.exe
2009-03-21 13:07:24 —-A—- C:WINDOWSsystem32nvuide.exe
2009-03-21 13:07:23 —-RA—- C:WINDOWSsystem32NVCOI.DLL
2009-03-21 13:07:23 —-RA—- C:WINDOWSsystem32idecoins.dll
2009-03-21 13:07:23 —-RA—- C:WINDOWSsystem32idecoi.dll
2009-03-21 13:07:12 —-RA—- C:WINDOWSsystem32fdco1ins.dll
2009-03-21 13:07:12 —-RA—- C:WINDOWSsystem32fdco1.dll
2009-03-21 13:07:09 —-A—- C:WINDOWSsystem32nvunrm.exe
2009-03-21 13:07:08 —-RA—- C:WINDOWSsystem32nvconrm.dll
2009-03-21 13:07:08 —-RA—- C:WINDOWSsystem32bdco1ins.dll
2009-03-21 13:07:08 —-RA—- C:WINDOWSsystem32bdco1.dll
2009-03-21 13:07:07 —-A—- C:WINDOWSsystem32nvusmb.exe
2009-03-21 13:07:07 —-A—- C:WINDOWSsystem32NVUNINST.EXE
2009-03-21 13:06:08 —-RA—- C:WINDOWSsystem32raidmgmt.ini
2009-03-21 13:05:39 —-A—- C:WINDOWSAscd_tmp.ini
2009-03-21 13:03:01 —-D—- C:Documents and SettingsВладикApplication DataIdentities
2009-03-21 13:02:55 —-ASH—- C:Documents and SettingsВладикApplication Datadesktop.ini
2009-03-21 13:02:54 —-SD—- C:Documents and SettingsВладикApplication DataMicrosoft
2009-03-21 13:01:29 —-A—- C:WINDOWSSchedLgU.Txt
2009-03-21 12:55:41 —-A—- C:WINDOWScontrol.ini
2009-03-21 12:55:26 —-A—- C:WINDOWSOEWABLog.txt
2009-03-21 12:55:18 —-A—- C:WINDOWSsystem32mapi32.dll
2009-03-21 12:54:30 —-RAH—- C:WINDOWSsystem32logonui.exe.manifest
2009-03-21 12:54:23 —-RAH—- C:WINDOWSsystem32cdplayer.exe.manifest
2009-03-21 12:53:34 —-A—- C:WINDOWSsystem32atrace.dll
2009-03-21 12:53:31 —-A—- C:WINDOWSsystem32desktop.ini
2009-03-21 12:53:31 —-A—- C:WINDOWSdesktop.ini
2009-03-21 12:53:25 —-A—- C:WINDOWSsystem32nmevtmsg.dll
2009-03-21 12:53:24 —-A—- C:WINDOWSsystem32icfgnt5.dll
2009-03-21 12:53:24 —-A—- C:WINDOWSsystem32acctres.dll
2009-03-21 12:53:19 —-A—- C:WINDOWSsystem32wuweb.dll
2009-03-21 12:53:19 —-A—- C:WINDOWSsystem32wucltui.dll
2009-03-21 12:53:19 —-A—- C:WINDOWSsystem32wuauserv.dll
2009-03-21 12:53:19 —-A—- C:WINDOWSsystem32wuaueng1.dll
2009-03-21 12:53:18 —-A—- C:WINDOWSsystem32wups.dll
2009-03-21 12:53:18 —-A—- C:WINDOWSsystem32wuaueng.dll
2009-03-21 12:53:18 —-A—- C:WINDOWSsystem32wuauclt1.exe
2009-03-21 12:53:18 —-A—- C:WINDOWSsystem32wuauclt.exe
2009-03-21 12:53:18 —-A—- C:WINDOWSsystem32wuapi.dll
2009-03-21 12:53:18 —-A—- C:WINDOWSsystem32bitsprx3.dll
2009-03-21 12:53:18 —-A—- C:WINDOWSsystem32bitsprx2.dll
2009-03-21 12:53:17 —-A—- C:WINDOWSsystem32qmgrprxy.dll
2009-03-21 12:53:17 —-A—- C:WINDOWSsystem32qmgr.dll
2009-03-21 12:53:13 —-A—- C:WINDOWSsystem32safrslv.dll
2009-03-21 12:53:13 —-A—- C:WINDOWSsystem32safrdm.dll
2009-03-21 12:53:13 —-A—- C:WINDOWSsystem32safrcdlg.dll
2009-03-21 12:53:13 —-A—- C:WINDOWSsystem32racpldlg.dll
2009-03-21 12:53:10 —-A—- C:WINDOWSsystem32srsvc.dll
2009-03-21 12:53:10 —-A—- C:WINDOWSsystem32srrstr.dll
2009-03-21 12:53:10 —-A—- C:WINDOWSsystem32srclient.dll
2009-03-21 12:53:10 —-A—- C:WINDOWSsystem32fltMc.exe
2009-03-21 12:53:10 —-A—- C:WINDOWSsystem32fltlib.dll
2009-03-21 12:53:09 —-A—- C:WINDOWSsystem32nmmkcert.dll
2009-03-21 12:53:09 —-A—- C:WINDOWSsystem32mnmdd.dll
2009-03-21 12:53:09 —-A—- C:WINDOWSsystem32isrdbg32.dll
2009-03-21 12:53:09 —-A—- C:WINDOWSsystem32ils.dll
2009-03-21 12:53:08 —-A—- C:WINDOWSsystem32msoert2.dll
2009-03-21 12:53:08 —-A—- C:WINDOWSsystem32msoeacct.dll
2009-03-21 12:53:08 —-A—- C:WINDOWSsystem32msconf.dll
2009-03-21 12:53:08 —-A—- C:WINDOWSsystem32mnmsrvc.exe
2009-03-21 12:53:08 —-A—- C:WINDOWSsystem32inetres.dll
2009-03-21 12:53:08 —-A—- C:WINDOWSsystem32inetcomm.dll
2009-03-21 12:53:06 —-A—- C:WINDOWSsystem32schedsvc.dll
2009-03-21 12:53:06 —-A—- C:WINDOWSsystem32mstinit.exe
2009-03-21 12:53:06 —-A—- C:WINDOWSsystem32mstask.dll
2009-03-21 12:53:05 —-A—- C:WINDOWSsystem32isign32.dll
2009-03-21 12:53:05 —-A—- C:WINDOWSsystem32icwphbk.dll
2009-03-21 12:53:05 —-A—- C:WINDOWSsystem32icwdial.dll
2009-03-21 12:53:04 —-A—- C:WINDOWSsystem32inetcfg.dll
2009-03-21 12:52:20 —-A—- C:WINDOWSvbaddin.ini
2009-03-21 12:52:20 —-A—- C:WINDOWSvb.ini
2009-03-21 12:51:56 —-A—- C:WINDOWSsystem32write.exe
2009-03-21 12:51:49 —-A—- C:WINDOWSsystem32sndvol32.exe
2009-03-21 12:51:49 —-A—- C:WINDOWSsystem32hticons.dll
2009-03-21 12:51:49 —-A—- C:WINDOWSsystem32avwav.dll
2009-03-21 12:51:49 —-A—- C:WINDOWSsystem32avtapi.dll
2009-03-21 12:51:49 —-A—- C:WINDOWSsystem32avmeter.dll
2009-03-21 12:51:48 —-A—- C:WINDOWSsystem32winchat.exe
2009-03-21 12:51:41 —-A—- C:WINDOWSsystem32getuname.dll
2009-03-21 12:51:41 —-A—- C:WINDOWSsystem32charmap.exe
2009-03-21 12:51:40 —-A—- C:WINDOWSsystem32winmine.exe
2009-03-21 12:51:40 —-A—- C:WINDOWSsystem32sol.exe
2009-03-21 12:51:40 —-A—- C:WINDOWSsystem32mshearts.exe
2009-03-21 12:51:40 —-A—- C:WINDOWSsystem32calc.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32usrlogon.cmd
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32tsshutdn.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32tslabels.ini
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32tskill.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32tsdiscon.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32tscon.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32shadow.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32rwinsta.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32reset.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32regini.exe
2009-03-21 12:51:39 —-A—- C:WINDOWSsystem32freecell.exe
2009-03-21 12:51:38 —-A—- C:WINDOWSsystem32rdpcfgex.dll
2009-03-21 12:51:38 —-A—- C:WINDOWSsystem32qwinsta.exe
2009-03-21 12:51:38 —-A—- C:WINDOWSsystem32qappsrv.exe
2009-03-21 12:51:38 —-A—- C:WINDOWSsystem32msg.exe
2009-03-21 12:51:38 —-A—- C:WINDOWSsystem32msdtcprf.ini
2009-03-21 12:51:38 —-A—- C:WINDOWSsystem32logoff.exe
2009-03-21 12:51:38 —-A—- C:WINDOWSsystem32cdmodem.dll
2009-03-21 12:51:37 —-A—- C:WINDOWSsystem32mtxlegih.dll
2009-03-21 12:51:37 —-A—- C:WINDOWSsystem32mtxex.dll
2009-03-21 12:51:37 —-A—- C:WINDOWSsystem32mtxdm.dll
2009-03-21 12:51:37 —-A—- C:WINDOWSsystem32dcomcnfg.exe
2009-03-21 12:51:37 —-A—- C:WINDOWSsystem32comrepl.dll
2009-03-21 12:51:37 —-A—- C:WINDOWSsystem32comaddin.dll
2009-03-21 12:51:36 —-A—- C:WINDOWSsystem32stclient.dll
2009-03-21 12:51:36 —-A—- C:WINDOWSsystem32comsnap.dll
2009-03-21 12:51:31 —-A—- C:WINDOWSsystem32wmimgmt.msc
2009-03-21 12:51:30 —-A—- C:WINDOWSsystem32sndrec32.exe
2009-03-21 12:51:30 —-A—- C:WINDOWSsystem32mplay32.exe
2009-03-21 12:51:30 —-A—- C:WINDOWSsystem32accwiz.exe
2009-03-21 12:51:29 —-A—- C:WINDOWSsystem32spider.exe
2009-03-21 12:51:29 —-A—- C:WINDOWSsystem32mspaint.exe
2009-03-21 12:51:29 —-A—- C:WINDOWSsystem32hypertrm.dll
2009-03-21 12:51:29 —-A—- C:WINDOWSsystem32clipbrd.exe
2009-03-21 12:51:28 —-A—- C:WINDOWSsystem32tscfgwmi.dll
2009-03-21 12:51:28 —-A—- C:WINDOWSsystem32sessmgr.exe
2009-03-21 12:51:28 —-A—- C:WINDOWSsystem32remotepg.dll
2009-03-21 12:51:28 —-A—- C:WINDOWSsystem32rdshost.exe
2009-03-21 12:51:28 —-A—- C:WINDOWSsystem32rdsaddin.exe
2009-03-21 12:51:28 —-A—- C:WINDOWSsystem32mstscax.dll
2009-03-21 12:51:28 —-A—- C:WINDOWSsystem32mstsc.exe
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32tscupgrd.exe
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32termsrv.dll
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32rdpwsx.dll
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32rdpsnd.dll
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32rdpclip.exe
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32rdchost.dll
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32qprocess.exe
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32icaapi.dll
2009-03-21 12:51:27 —-A—- C:WINDOWSsystem32cfgbkend.dll
2009-03-21 12:51:26 —-A—- C:WINDOWSsystem32xolehlp.dll
2009-03-21 12:51:26 —-A—- C:WINDOWSsystem32mtxoci.dll
2009-03-21 12:51:26 —-A—- C:WINDOWSsystem32msdtcuiu.dll
2009-03-21 12:51:26 —-A—- C:WINDOWSsystem32msdtctm.dll
2009-03-21 12:51:26 —-A—- C:WINDOWSsystem32msdtcprx.dll
2009-03-21 12:51:26 —-A—- C:WINDOWSsystem32msdtclog.dll
2009-03-21 12:51:26 —-A—- C:WINDOWSsystem32msdtc.exe
2009-03-21 12:51:25 —-A—- C:WINDOWSsystem32colbact.dll
2009-03-21 12:51:25 —-A—- C:WINDOWSsystem32clbcatex.dll
2009-03-21 12:51:25 —-A—- C:WINDOWSsystem32catsrvps.dll
2009-03-21 12:51:24 —-A—- C:WINDOWSsystem32comuid.dll
2009-03-21 12:51:24 —-A—- C:WINDOWSsystem32comsvcs.dll
2009-03-21 12:51:24 —-A—- C:WINDOWSsystem32clbcatq.dll
2009-03-21 12:51:24 —-A—- C:WINDOWSsystem32catsrvut.dll
2009-03-21 12:51:24 —-A—- C:WINDOWSsystem32catsrv.dll
2009-03-21 12:51:15 —-A—- C:WINDOWSsystem32servdeps.dll
2009-03-21 12:51:15 —-A—- C:WINDOWSsystem32mmfutil.dll
2009-03-21 12:51:14 —-A—- C:WINDOWSsystem32licwmi.dll
2009-03-21 12:51:14 —-A—- C:WINDOWSsystem32cmprops.dll
2009-03-21 00:37:25 —-HD—- C:WINDOWSPIF
2009-03-20 23:32:25 —-D—- C:Program FilesFieryAds
2009-03-11 15:12:37 —-D—- C:WINDOWSPixArt
2009-03-11 15:05:07 —-D—- C:WINDOWSAlbum
2009-03-11 15:05:03 —-D—- C:Program FilesKYE
2009-03-11 09:16:09 —-HDC—- C:WINDOWS$NtUninstallKB960225$
2009-03-11 09:16:05 —-HDC—- C:WINDOWS$NtUninstallKB958690$
2009-03-11 09:15:57 —-HDC—- C:WINDOWS$NtUninstallKB959772_WM11$======List of files/folders modified in the last 1 months======
2009-04-02 22:37:32 —-D—- C:Program FilesMozilla Firefox
2009-04-02 20:49:06 —-D—- C:WINDOWSTemp
2009-04-02 20:49:06 —-D—- C:WINDOWSsystem32
2009-04-02 15:00:58 —-D—- C:WINDOWSPrefetch
2009-04-01 20:12:03 —-D—- C:WINDOWSsystem
2009-04-01 20:12:00 —-D—- C:WINDOWS
2009-03-30 21:32:56 —-D—- C:Program FilesSteam
2009-03-30 21:32:40 —-D—- C:WINDOWSsystem32CatRoot2
2009-03-30 12:18:45 —-D—- C:Program FilesCommon Files
2009-03-30 12:18:44 —-RD—- C:Program Files
2009-03-30 11:21:21 —-SHD—- C:WINDOWSInstaller
2009-03-30 11:07:53 —-D—- C:WINDOWSsystem32drivers
2009-03-28 23:56:37 —-D—- C:Program FilesWindows Media Player
2009-03-27 10:54:06 —-HD—- C:WINDOWSinf
2009-03-27 10:12:13 —-D—- C:WINDOWSsystem32DirectX
2009-03-27 10:11:37 —-D—- C:WINDOWSWinSxS
2009-03-27 10:10:58 —-RSD—- C:WINDOWSFonts
2009-03-27 10:10:34 —-D—- C:WINDOWSsystem32spool
2009-03-27 10:10:31 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-03-27 10:09:36 —-D—- C:Program FilesInternet Explorer
2009-03-27 10:08:14 —-HD—- C:Program FilesInstallShield Installation Information
2009-03-27 09:47:17 —-HDC—- C:WINDOWS$MSI31Uninstall_KB893803v2$
2009-03-22 23:02:51 —-D—- C:WINDOWSsecurity
2009-03-22 21:33:36 —-SHD—- C:System Volume Information
2009-03-22 21:33:36 —-D—- C:WINDOWSsystem32Restore
2009-03-21 19:35:17 —-D—- C:WINDOWSHelp
2009-03-21 18:44:00 —-A—- C:WINDOWSsystem.ini
2009-03-21 18:42:52 —-D—- C:WINDOWSDebug
2009-03-21 18:41:29 —-D—- C:WINDOWSsystem32Setup
2009-03-21 18:41:13 —-D—- C:WINDOWSsystem32usmt
2009-03-21 18:41:00 —-D—- C:WINDOWSAppPatch
2009-03-21 18:40:59 —-D—- C:WINDOWSehome
2009-03-21 18:40:58 —-D—- C:WINDOWSime
2009-03-21 18:40:55 —-D—- C:WINDOWSMedia
2009-03-21 18:40:38 —-D—- C:WINDOWSPeerNet
2009-03-21 18:40:15 —-D—- C:WINDOWSsystem32npp
2009-03-21 18:40:04 —-D—- C:WINDOWSmsagent
2009-03-21 18:36:52 —-D—- C:WINDOWSsystem321049
2009-03-21 18:36:46 —-D—- C:WINDOWStwain_32
2009-03-21 18:36:34 —-D—- C:WINDOWSsystem32ras
2009-03-21 18:36:22 —-D—- C:WINDOWSsystem32icsxml
2009-03-21 18:35:23 —-D—- C:WINDOWSsystem321033
2009-03-21 18:33:04 —-D—- C:WINDOWSsystem32Temp
2009-03-21 18:33:03 —-D—- C:WINDOWSsystem32Lang
2009-03-21 18:32:57 —-HD—- C:WINDOWSShellNew
2009-03-21 18:32:53 —-HDC—- C:WINDOWS$NtUninstallWudf01005$
2009-03-21 18:32:53 —-D—- C:WINDOWSCorel
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallwmp11$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallWMFDist11$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB967715$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB960715$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB960714$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB958687$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB958644$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB958215$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB957097$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB957095$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB956841$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB956803$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB956802$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB956391$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB956390$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB955839$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB955069$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB954600$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB954211$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB954154_WM11$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB952954$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB952287$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB952069_WM9$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB951748$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB951698$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB951066$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB950974$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB950762$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB950749$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB946648$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB944338-v2$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB943460$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB941569$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB939683$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB937894$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB936782_WMP11$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB933729$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB932168$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB929399$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB927802$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB926436$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB926239$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB925902$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB925398_WMP64$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB924667$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB922582$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB920213$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB914389$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB913580$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB911564$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB910437$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB908531$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB901017$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB900725$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB899591$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB899587$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB896423$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB894391$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB891781$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB886185$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB885836$
2009-03-21 18:32:52 —-HDC—- C:WINDOWS$NtUninstallKB885835$
2009-03-21 13:51:12 —-D—- C:Program FilesAvRack
2009-03-21 13:32:49 —-D—- C:WINDOWSsystem32Macromed
2009-03-21 13:32:48 —-D—- C:WINDOWSnview
2009-03-21 13:24:33 —-SD—- C:WINDOWSDownloaded Program Files
2009-03-21 13:03:54 —-SHD—- C:RECYCLER
2009-03-21 13:02:54 —-D—- C:Documents and Settings
2009-03-21 13:01:31 —-D—- C:WINDOWSSoftwareDistribution
2009-03-21 13:01:29 —-SD—- C:WINDOWSTasks
2009-03-21 12:59:37 —-D—- C:WINDOWSsystem32config
2009-03-21 12:55:57 —-D—- C:WINDOWSrepair
2009-03-21 12:55:41 —-A—- C:WINDOWSwin.ini
2009-03-21 12:55:15 —-D—- C:WINDOWSRegistration
2009-03-21 12:55:06 —-D—- C:WINDOWSsystem32ias
2009-03-21 12:54:33 —-RD—- C:WINDOWSWeb
2009-03-21 12:54:30 —-RD—- C:WINDOWSOffline Web Pages
2009-03-21 12:54:03 —-D—- C:WINDOWSsrchasst
2009-03-21 12:53:35 —-D—- C:WINDOWSsystem32oobe
2009-03-21 12:52:35 —-D—- C:WINDOWSsystem32Com
2009-03-21 12:52:12 —-D—- C:WINDOWSsystem32MsDtc
2009-03-21 12:51:58 —-D—- C:Program FilesMessenger
2009-03-21 12:51:56 —-D—- C:WINDOWSCursors
2009-03-21 12:51:36 —-D—- C:WINDOWSsystem32wbem
2009-03-21 12:50:21 —-SH—- C:boot.ini
2009-03-11 08:49:15 —-HD—- C:WINDOWS$hf_mig$======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ISODrive;ISO DVD/CD-ROM Device Driver; ??C:Program FilesUltraISOdriversISODrive.sys []
R1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-17 14848]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2005-10-26 3786944]
R3 hidusb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-10-20 9600]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-20 12160]
R3 ms_mpu401;Драйвер UART Microsoft MPU-401 MIDI; C:WINDOWSsystem32driversmsmpu401.sys [2001-08-18 2944]
R3 MTsensor;ATK0110 ACPI UTILITY; C:WINDOWSsystem32DRIVERSASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-06-01 3925920]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:WINDOWSsystem32DRIVERSNVENETFD.sys [2005-04-06 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:WINDOWSsystem32DRIVERSnvnetbus.sys [2005-04-06 12928]
R3 sysdrv32;Play Port I/O Driver; ??C:WINDOWSsystem32driverssysdrv32.sys []
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-04 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-04 26624]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-04 57600]
R3 usbohci;Драйвер минипорта Microsoft USB открытого хост-контроллера; C:WINDOWSsystem32DRIVERSusbohci.sys [2004-08-04 17024]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-04 26496]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []
S4 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2001-10-20 12032]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 MSNETDED;Network Monitor service; C:WINDOWSsystemsvhost.exe [2009-03-21 995328]
R2 msrpxy;Microsoft Reverse Proxy Service; C:WINDOWSsystem32msr.exe [2009-03-22 966656]
R2 msrsys;MSR System Service; C:WINDOWSsystemmsrsys32.exe [2009-03-22 995328]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-06-01 155715]
R2 UMWdf;Windows User Mode Driver Framework; C:WINDOWSsystem32wdfmgr.exe [2004-08-11 38912]
R2 WindowsTelephony;Windows Telephony; C:WINDOWSsystemsvhost.exe [2009-03-21 995328]
S2 msile;microsoft install le; C:WINDOWSsystemmsile.exe [2009-03-22 51715]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2007-10-09 36864]
S3 idsvc;Windows CardSpace; c:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2007-10-11 864256]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2007-10-11 122880]
EOF
info.txt logfile of random’s system information tool 1.06 2009-04-02 22:54:31======Uninstall list======
—>C:Program FilesNeroNero8\nerouninstallUNNERO.exe /UNINSTALL
—>C:WINDOWSUNNeroBackItUp.exe /UNINSTALL
—>C:WINDOWSUNNeroMediaHome.exe /UNINSTALL
—>C:WINDOWSUNNeroShowTime.exe /UNINSTALL
—>C:WINDOWSUNNeroVision.exe /UNINSTALL
—>C:WINDOWSUNRecode.exe /UNINSTALL
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Ashampoo Burning Studio 7.10—>»C:Program FilesAshampooAshampoo Burning Studio 7unins000.exe»
Ask Toolbar—>rundll32 C:PROGRA~1AskTBarbar1.binAskTBar.dll,O
BS.Player PRO—>»C:Program FilesWebtehBSplayerProuninstall.exe»
Dynasty Warriors 6—>MsiExec.exe /X{7506D1CD-B7FE-40C7-AE1F-FE8666361700}
ICQ6.5—>»C:Program FilesInstallShield Installation Information{60DE4033-9503-48D1-A483-7846BD217CA9}setup.exe» -runfromtemp -l0x0009 -removeonly
K-Lite Mega Codec Pack 3.4.5—>»C:Program FilesK-Lite Codec Packunins000.exe»
Last.fm 1.5.4.24567—>»C:Program FilesLast.fmunins000.exe»
Mail.Ru Агент 5.4 (сборка 2647, для всех пользователей)—>C:Program FilesMail.RuAgentmagentsetup.exe -uninstalllm
Mail.Ru Спутник 2.0.1.90—>c:program filesmail.rusputnikSputnikInstaller.exe -uninstall
Microsoft .NET Framework 2.0 Service Pack 1—>MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0 Service Pack 1—>MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783}
Microsoft .NET Framework 3.5—>c:WINDOWSMicrosoft.NETFrameworkv3.5Microsoft .NET Framework 3.5setup.exe
Microsoft .NET Framework 3.5—>MsiExec.exe /I{2FC099BD-AC9B-33EB-809C-D332E1B27C40}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mozilla Firefox (3.0.8)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
MSXML 6.0 Parser (KB933579)—>MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Nero 8—>MsiExec.exe /X{8AEA4BE2-2B52-41C0-BB7D-9F2D17AF1049}
NVIDIA Drivers—>C:WINDOWSsystem32nvudisp.exe UninstallGUI
Peers r428—>»C:Program FilesPeersunins000.exe»
QIP.Online—>C:Program FilesQIP.OnlineUninstall.exe
Realtek AC’97 Audio—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime11�0Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{FB08F381-6533-4108-B7DD-039E11FBC27E}Setup.exe» -l0x19 -removeonly
Spider-Man(TM) — Web of Shadows-Spiel—>C:Program FilesInstallShield Installation Information{7F7E4FA7-6F32-4DE2-917E-361E034AED7A}setup.exe -runfromtemp -l0x0407
UltraISO Premium V8.63—>»C:Program FilesUltraISOunins000.exe»
Windows Imaging Component—>»C:WINDOWS$NtUninstallWIC$spuninstspuninst.exe»
Windows Installer 3.1 (KB893803)—>»C:WINDOWS$MSI31Uninstall_KB893803v2$spuninstspuninst.exe»
Windows Media Format Runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll======System event log======
Computer Name: D581AB2291FA475
Event Code: 4226
Message: Достигнут предел безопасности для TCP/IP, налагаемый на количество попыток одновременных TCP-подключений.Record Number: 2315
Source Name: Tcpip
Time Written: 20090328203322.000000+360
Event Type: предупреждение
User:Computer Name: D581AB2291FA475
Event Code: 4201
Message: Система обнаружила, что сетевой адаптер DEVICETCPIP_{28C8A67F-5F74-44F7-81A5-90C57439009B} был подключен к сети,
и инициировала нормальную работу через этот сетевой адаптер.Record Number: 2314
Source Name: Tcpip
Time Written: 20090328203301.000000+360
Event Type: информация
User:Computer Name: D581AB2291FA475
Event Code: 2
Message: Device identified.Record Number: 2313
Source Name: nvata
Time Written: 20090328203301.000000+360
Event Type: информация
User:Computer Name: D581AB2291FA475
Event Code: 6005
Message: Запущена служба журнала событий.Record Number: 2312
Source Name: EventLog
Time Written: 20090328203249.000000+360
Event Type: информация
User:Computer Name: D581AB2291FA475
Event Code: 6009
Message: Microsoft (R) Windows 2000 (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.Record Number: 2311
Source Name: EventLog
Time Written: 20090328203249.000000+360
Event Type: информация
User:=====Application event log=====
Computer Name: D581AB2291FA475
Event Code: 1000
Message: Счетчики производительности для службы MSDTC (MSDTC) загружены успешно.
Данные записи содержат новые значение индекса,
назначенного этой службе.Record Number: 5
Source Name: LoadPerf
Time Written: 20090321115208.000000+360
Event Type: информация
User:Computer Name: D581AB2291FA475
Event Code: 1000
Message: Счетчики производительности для службы TermService (Службы терминалов) загружены успешно.
Данные записи содержат новые значение индекса,
назначенного этой службе.Record Number: 4
Source Name: LoadPerf
Time Written: 20090321115203.000000+360
Event Type: информация
User:Computer Name: D581AB2291FA475
Event Code: 1000
Message: Счетчики производительности для службы RemoteAccess (Маршрутизация и удаленный доступ) загружены успешно.
Данные записи содержат новые значение индекса,
назначенного этой службе.Record Number: 3
Source Name: LoadPerf
Time Written: 20090321115107.000000+360
Event Type: информация
User:Computer Name: D581AB2291FA475
Event Code: 1000
Message: Счетчики производительности для службы PSched (PSched) загружены успешно.
Данные записи содержат новые значение индекса,
назначенного этой службе.Record Number: 2
Source Name: LoadPerf
Time Written: 20090321115036.000000+360
Event Type: информация
User:Computer Name: D581AB2291FA475
Event Code: 1000
Message: Счетчики производительности для службы RSVP (QoS RSVP) загружены успешно.
Данные записи содержат новые значение индекса,
назначенного этой службе.Record Number: 1
Source Name: LoadPerf
Time Written: 20090321115035.000000+360
Event Type: информация
User:======Environment variables======
«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=15
«PROCESSOR_IDENTIFIER»=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
«PROCESSOR_REVISION»=2f02
«NUMBER_OF_PROCESSORS»=1
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
EOF
Здравствуйте, добро пожаловать на Spyware-ru форум.
Ваш компьютер заражён несколькими троянами, включая autorun.inf троян.
Прочитайте эту инструкцию Flash_Disinfector ещё одно оружие против autorun.inf троянов.* Отключите ваш антивирус.
* Скачайте и запустите Flash_Disinfector.
* По требованию программы вставьте ваш флэш диск или подключите другие внешние устройства хранения информации.Примечание: запускайте программу столько раз, сколько нужно чтобы очистить все ваши подключаемые диски.
Скачайте OTMoveIt3 by OldTimer кликнув по этой ссылке.
Запустите OTMoveIt3 и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.:Processes
explorer.exe
:services
sysdrv32
MSNETDED
msrpxy
msrsys
WindowsTelephony
msile
:reg
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
"Microsoft(R) System Manager"=-
"netmon"=-
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalmsile]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalMSNETDED]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalmsrsys]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalSVCWINSPOOL]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWindowsTelephony]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkmsile]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkMSNETDED]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkmsrsys]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkSVCWINSPOOL]
[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWindowsTelephony]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
"C:WINDOWSsystemsvhost.exe"=-
"C:WINDOWSSystem3260.scr"=-
"C:WINDOWSSystem3281.scr"=-
"C:WINDOWSSystem3244.scr"=-
"C:WINDOWSSystem3245.scr"=-
"C:WINDOWSSystem3278.scr"=-
"C:WINDOWSSystem3283.scr"=-
"C:WINDOWSsystemmsrsys32.exe"=-
"C:WINDOWSSystem3234.scr"=-
"C:WINDOWSsystemmsile.exe"=-
"C:WINDOWSSystem3275.scr"="-
"C:Documents and SettingsВладик12377323801848.exe"=-
"C:Documents and SettingsВладик12377378501896.exe"=-
"C:WINDOWSTEMP20.exe"=-
"C:WINDOWSTEMP48.exe"=-
"C:WINDOWSTEMP81.exe"=-
"C:WINDOWSTEMP84.exe"=-
"C:WINDOWSTEMP77.exe"=-
"C:WINDOWSTEMP42.exe"=-
"C:WINDOWSsystemservices.exe"=-
"C:WINDOWSTEMP6.exe"=-
"C:WINDOWSTEMP70.exe"=-
"C:WINDOWSTEMP61.exe"=-
"C:WINDOWSTEMP7.exe"=-
"C:WINDOWSTEMP75.exe"=-
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{6d2c3b78-1612-11de-a186-00173164511c}]
:files
C:WINDOWSmsmacro32.exe
C:WINDOWSmsoff32.exe
C:RECYCLERS-5-3-42-2819952290-8240758988-879315005-3665
C:WINDOWSsystem32driverssysdrv32.sys
C:WINDOWSsystemsvhost.exe
C:WINDOWSsystem32msr.exe
C:WINDOWSsystemmsrsys32.exe
C:WINDOWSsystemmsile.exe
C:WINDOWSsystemservices.exe
C:WINDOWSsystem32sysmgr.exe
C:WINDOWSSystem3260.scr
C:WINDOWSSystem3281.scr
C:WINDOWSSystem3244.scr
C:WINDOWSSystem3245.scr
C:WINDOWSSystem3278.scr
C:WINDOWSSystem3283.scr
C:WINDOWSSystem3234.scr
C:WINDOWSSystem3275.scr
C:WINDOWSTEMP20.exe
C:WINDOWSTEMP48.exe
C:WINDOWSTEMP81.exe
C:WINDOWSTEMP84.exe
C:WINDOWSTEMP77.exe
C:WINDOWSTEMP42.exe
C:WINDOWSTEMP6.exe
C:WINDOWSTEMP70.exe
C:WINDOWSTEMP61.exe
C:WINDOWSTEMP7.exe
C:WINDOWSTEMP75.exe
:Commands
[emptytemp]
[start explorer]
[Reboot]Проверьте вставленный скрипт, если слева перед директивами появились пробелы, то удалите их, скрипт должен выглядеть так же как в сообщении. Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
По-завершении работы программы должен будет показан лог. Если лог не будет показан, то его можно найти в папке C:_OTMoveItMovedFiles.Вставьте в ваше ответное сообщение содержимое этого лога. И ещё приложите свежий RSIT лог.
- Для ответа в этой теме необходимо авторизоваться.
