• Инструкции
    • Как использовать
      • Программы
    • Как удалить
      • Шпионское и рекламное ПО (adware и spyware)
      • Поддельное антиспайваре
      • Руткиты
      • Трояны
      • Кейлоггеры
  • Скачать программы
  • Вопросы и Ответы
  • Форумы

SPYWARE-RU.COM
Меню
  • Инструкции
    • Как использовать
      • Программы
    • Как удалить
      • Шпионское и рекламное ПО (adware и spyware)
      • Поддельное антиспайваре
      • Руткиты
      • Трояны
      • Кейлоггеры
  • Скачать программы
  • Вопросы и Ответы
  • Форумы
В начало › Установилась реклама помогите убрать
Adguard
 

Установилась реклама помогите убрать

Удаление вирусов и троянов. Защита компьютера. › Помощь в удалении вирусов, троянов, рекламы и других зловредов › Установилась реклама помогите убрать

  • This topic has 5 ответов, 2 участника, and was last updated 16 years, 1 month назад by Admin.
Просмотр 6 сообщений - с 1 по 6 (из 6 всего)
  • Автор
    Сообщения
  • 19 ноября, 2009 в 3:12 пп #17446
    Аноним
    Гость
    • Темы:532
    • Сообщений:1553
    • ☆☆☆☆☆

    при открытии эксплорер выплывает порно реклама не могу убрать помогите в это сообщение не поместился весь лог блокнот
    Logfile of random’s system information tool 1.06 (written by random/random)
    Run by Сергей at 2009-11-19 18:25:53
    Microsoft® Windows Vista™ Ultimate Service Pack 2
    System drive C: has 239 GB (64%) free of 372 GB
    Total RAM: 3070 MB (31% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:26:20, on 19.11.2009
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18828)
    Boot mode: Normal

    Running processes:
    C:Windowssystem32Dwm.exe
    C:WindowsExplorer.EXE
    C:Windowssystem32taskeng.exe
    C:Program FilesWindows DefenderMSASCui.exe
    C:Program FilesVIAVIAudioiVDeckVDeck.exe
    C:WindowsSystem32rundll32.exe
    C:Program FilesAcronisTrueImageHomeTrueImageMonitor.exe
    C:Program FilesAcronisTrueImageHomeTimounterMonitor.exe
    C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe
    C:WindowsWindowsMobilewmdSync.exe
    C:Program FilesQuickTimeqttask.exe
    C:Program FilesWinampwinampa.exe
    C:Program FilesAlwil SoftwareAvast5AvastUI.exe
    C:Program FilesWindows Sidebarsidebar.exe
    C:Windowsehomeehtray.exe
    C:Program FilesYandexOnlineonline.exe
    D:ИнтернетЗагрузкиDownload Masterdmaster.exe
    C:Program FilesuTorrentuTorrent.exe
    C:Program FilesCommon FilesAheadLibNMBgMonitor.exe
    C:Windowsehomeehmsas.exe
    C:UsersСергейAppDataLocalNevoSoftrun.exe
    C:Program FilesCommon FilesAheadLibNMIndexStoreSvr.exe
    C:Program FilesWindows Sidebarsidebar.exe
    C:Program FilesYandexOnlineyachatyachat.exe
    C:Program FilesMicrosoft GamesSolitaireSolitaire.exe
    C:Program FilesWindows Media Playerwmpnscfg.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Windowssystem32MacromedFlashFlashUtil10b.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesThe Sims — Pet StoriesTSBinSimsPS.exe
    C:Program FilesMicrosoft OfficeOffice12WINWORD.EXE
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Windowssystem32SearchFilterHost.exe
    C:UsersСергейDesktopRSIT.exe
    C:Program Filestrend microСергей.exe

    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://search.qip.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://search.qip.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.qip.ru/ie
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://search.qip.ru
    R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.yandex.ru/?clid=40316
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://search.myheritage.com
    R1 — HKCUSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = http://search.qip.ru/ie
    R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
    R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
    R1 — HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = Root: HKCU; Subkey: SoftwareMicrosoftInternet ExplorerSearchUrl; ValueType: string; ValueName: ‘; ValueData: ‘; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Windows Internet Explorer предоставлен: Яндекс
    R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
    R3 — URLSearchHook: QIPBHO Class — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — C:UsersСергейAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll
    R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
    R3 — URLSearchHook: (no name) — — (no file)
    R3 — URLSearchHook: MHURLSearchHook Class — {1C4AB6A5-595F-4e86-B15F-F93CCE2BBD48} — C:Program FilesFamily Toolbartbhelper.dll
    O1 — Hosts: ::1 localhost
    O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
    O2 — BHO: MHTBPos00 — {0C37B053-FD68-456a-82E1-D788EE342E6F} — C:Program FilesFamily Toolbartbcore3.dll
    O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
    O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
    O2 — BHO: (no name) — {88888888-8888-8888-8888-888888888888} — (no file)
    O2 — BHO: MS Media Module — {9A727FBF-480A-5BE7-11F6-4AFB9E290E21} — %APPDATA%au5FtikM_89_sB.dll (file missing)
    O2 — BHO: QIPBHO — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — C:UsersСергейAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll
    O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll
    O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program FilesYandexYandexBarIEyndbar.dll
    O3 — Toolbar: Family Toolbar — {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} — C:Program FilesFamily Toolbartbcore3.dll
    O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
    O4 — HKLM..Run: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
    O4 — HKLM..Run: [HDAudDeck] C:Program FilesVIAVIAudioiVDeckVDeck.exe -r
    O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:Windowssystem32NvCpl.dll,NvStartup
    O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:Windowssystem32NvMcTray.dll,NvTaskbarInit
    O4 — HKLM..Run: [TrueImageMonitor.exe] C:Program FilesAcronisTrueImageHomeTrueImageMonitor.exe
    O4 — HKLM..Run: [AcronisTimounterMonitor] C:Program FilesAcronisTrueImageHomeTimounterMonitor.exe
    O4 — HKLM..Run: [Acronis Scheduler2 Service] «C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe»
    O4 — HKLM..Run: [Windows Mobile-based device management] %windir%WindowsMobilewmdSync.exe
    O4 — HKLM..Run: [QuickTime Task] «C:Program FilesQuickTimeqttask.exe» -atboottime
    O4 — HKLM..Run: [Family Tree Builder Update] E:MyHeritageBinFTBCheckUpdates.exe
    O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 9.0ReaderReader_sl.exe»
    O4 — HKLM..Run: [NeroFilterCheck] C:Program FilesCommon FilesAheadLibNeroCheck.exe
    O4 — HKLM..Run: [WinampAgent] «C:Program FilesWinampwinampa.exe»
    O4 — HKLM..Run: [avast5] C:PROGRA~1ALWILS~1Avast5avastUI.exe /nogui
    O4 — HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
    O4 — HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
    O4 — HKCU..Run: [YandexOnline] «C:Program FilesYandexOnlineonline.exe» -AutoStart
    O4 — HKCU..Run: [swg] «C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe»
    O4 — HKCU..Run: [Download Master] D:ИнтернетЗагрузкиDownload Masterdmaster.exe -autorun
    O4 — HKCU..Run: [uTorrent] «C:Program FilesuTorrentuTorrent.exe»
    O4 — HKCU..Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] «C:Program FilesCommon FilesAheadLibNMBgMonitor.exe»
    O4 — HKCU..Run: [NevoDRM] «C:ИгрыNevoDRMNevoDRM.exe»
    O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘NETWORK SERVICE’)
    O8 — Extra context menu item: &Winamp Search — C:ProgramDataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
    O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
    O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
    O12 — Plugin for .spop: C:Program FilesInternet ExplorerPluginsNPDocBox.dll
    O13 — Gopher Prefix:
    O15 — Trusted Zone: http://www.redshift.maris.com
    O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O17 — HKLMSystemCCSServicesTcpip..{9EE6EC82-6DDD-4E3E-BFC5-9D586581AEC2}: NameServer = 62.213.0.12 62.213.2.1
    O23 — Service: Acronis Scheduler2 Service (AcrSch2Svc) — Acronis — C:Program FilesCommon FilesAcronisSchedule2schedul2.exe
    O23 — Service: Application Driver Auto Removal Service (01) (appdrvrem01) — Protection Technology — C:WindowsSystem32appdrvrem01.exe
    O23 — Service: Automatic LiveUpdate Scheduler — Symantec Corporation — C:Program FilesSymantecLiveUpdateAluSchedulerSvc.exe
    O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
    O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
    O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
    O23 — Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) — Apple Computer, Inc. — C:Program FilesBonjourmDNSResponder.exe
    O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
    O23 — Service: FLEXnet Licensing Service — Macrovision Europe Ltd. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
    O23 — Service: Google Update Service (gupdate) (gupdate) — Google Inc. — C:Program FilesGoogleUpdateGoogleUpdate.exe
    O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
    O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
    O23 — Service: LiveUpdate — Symantec Corporation — C:Program FilesSymantecLiveUpdateLuComServer_3_4.EXE
    O23 — Service: NBService — Nero AG — C:Program FilesNeroNero 7Nero BackItUpNBService.exe
    O23 — Service: Nero BackItUp Scheduler 4.0 — Unknown owner — C:Program FilesCommon FilesNeroNero BackItUp 4NBService.exe (file missing)
    O23 — Service: NMIndexingService — Nero AG — C:Program FilesCommon FilesAheadLibNMIndexingService.exe
    O23 — Service: NVIDIA Display Driver Service (nvsvc) — NVIDIA Corporation — C:Windowssystem32nvvsvc.exe
    O23 — Service: Acronis Try And Decide Service (TryAndDecideService) — Unknown owner — C:Program FilesCommon FilesAcronisFomatikTrueImageTryStartService.exe

    —
    End of file — 11116 bytes

    ======Scheduled tasks folder======

    C:WindowstasksAppleSoftwareUpdate.job
    C:WindowstasksGoogle Software Updater.job
    C:WindowstasksGoogleUpdateTaskMachineCore.job
    C:WindowstasksGoogleUpdateTaskMachineUA.job
    C:WindowstasksNorton Security Scan for Сергей.job
    C:WindowstasksUser_Feed_Synchronization-{86873E30-F5F6-4820-B266-18DF3A58B733}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2009-02-27 61816]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{0C37B053-FD68-456a-82E1-D788EE342E6F}]
    MHTBPos00 Class — C:Program FilesFamily Toolbartbcore3.dll [2009-05-08 2642432]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
    Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2009-05-06 1262888]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{88888888-8888-8888-8888-888888888888}]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9A727FBF-480A-5BE7-11F6-4AFB9E290E21}]
    MS Media Module — C:UsersСергейAppDataRoamingau5FtikM_89_sB.dll [2009-11-19 16384]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
    QIPBHO Class — C:UsersСергейAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll [2009-07-14 150768]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll [2009-11-15 762864]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
    {91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program FilesYandexYandexBarIEyndbar.dll [2009-10-21 5724448]
    {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} — Family Toolbar — C:Program FilesFamily Toolbartbcore3.dll [2009-05-08 2642432]
    {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2009-05-06 1262888]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
    «Windows Defender»=C:Program FilesWindows DefenderMSASCui.exe [2008-01-21 1008184]
    «HDAudDeck»=C:Program FilesVIAVIAudioiVDeckVDeck.exe [2008-08-26 16986112]
    «NvCplDaemon»=C:Windowssystem32NvCpl.dll [2008-10-21 13584928]
    «NvMediaCenter»=C:Windowssystem32NvMcTray.dll [2008-10-21 92704]
    «TrueImageMonitor.exe»=C:Program FilesAcronisTrueImageHomeTrueImageMonitor.exe [2007-11-20 2615896]
    «AcronisTimounterMonitor»=C:Program FilesAcronisTrueImageHomeTimounterMonitor.exe [2007-11-20 910864]
    «Acronis Scheduler2 Service»=C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe [2007-11-20 140568]
    «Windows Mobile-based device management»=C:WindowsWindowsMobilewmdSync.exe [2008-01-21 215552]
    «QuickTime Task»=C:Program FilesQuickTimeqttask.exe [2006-09-01 282624]
    «Family Tree Builder Update»=E:MyHeritageBinFTBCheckUpdates.exe [2009-01-14 113680]
    «Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-02-27 35696]
    «NeroFilterCheck»=C:Program FilesCommon FilesAheadLibNeroCheck.exe [2007-03-01 153136]
    «WinampAgent»=C:Program FilesWinampwinampa.exe [2009-07-01 37888]
    «avast5″=C:PROGRA~1ALWILS~1Avast5avastUI.exe [2009-11-05 2574672]

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
    «Sidebar»=C:Program FilesWindows Sidebarsidebar.exe [2009-04-11 1233920]
    «ehTray.exe»=C:WindowsehomeehTray.exe [2008-01-21 125952]
    «YandexOnline»=C:Program FilesYandexOnlineonline.exe [2009-10-15 2267912]
    «swg»=C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-09-13 39408]
    «Download Master»=D:ИнтернетЗагрузкиDownload Masterdmaster.exe [2009-02-06 3769856]
    «uTorrent»=C:Program FilesuTorrentuTorrent.exe [2009-11-15 289584]
    «BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}»=C:Program FilesCommon FilesAheadLibNMBgMonitor.exe [2007-05-16 153136]
    «NevoDRM»=C:ИгрыNevoDRMNevoDRM.exe [2008-12-11 41984]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa]
    «authentication packages»=msv1_0
    relog_ap

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfPf]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfRd]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfSvc]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfUsbccidDriver]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
    «dontdisplaylastusername»=0
    «legalnoticecaption»=
    «legalnoticetext»=
    «shutdownwithoutlogon»=1
    «undockwithoutlogon»=1
    «EnableUIADesktopToggle»=0

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
    «BindDirectlyToPropertySetStorage»=

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]

    ======File associations======

    .js — edit — C:WindowsSystem32Notepad.exe %1
    .js — open — C:WindowsSystem32WScript.exe «%1» %*
    в

    19 ноября, 2009 в 3:57 пп #26992
    Аноним
    Гость
    • Темы:532
    • Сообщений:1553
    • ☆☆☆☆☆

    вторая половина

    доктор веб убрал рекламу так что в любом случае спосибо
    ======List of files/folders created in the last 1 months======

    2009-11-19 18:25:54 —-D—- C:Program Filestrend micro
    2009-11-19 18:25:53 —-D—- C:rsit
    2009-11-19 10:38:12 —-D—- C:UsersСергейAppDataRoamingLavasoft
    2009-11-19 10:38:06 —-D—- C:Program FilesLavasoft
    2009-11-19 09:35:15 —-A—- C:UsersСергейAppDataRoamingau5FtikM_89_sB.dll
    2009-11-18 22:56:37 —-A—- C:Windowssystem32aswBoot.exe
    2009-11-18 22:56:33 —-D—- C:ProgramDataAlwil Software
    2009-11-18 22:56:33 —-D—- C:Program FilesAlwil Software
    2009-11-17 22:37:35 —-D—- C:Program FilesWindows Portable Devices
    2009-11-17 22:34:55 —-A—- C:Windowssystem32UIRibbonRes.dll
    2009-11-17 22:34:55 —-A—- C:Windowssystem32UIRibbon.dll
    2009-11-17 22:34:55 —-A—- C:Windowssystem32UIAnimation.dll
    2009-11-17 22:34:36 —-A—- C:Windowssystem32WMPhoto.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32xpsservices.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32XpsRasterService.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32XpsPrint.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32XpsGdiConverter.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32WindowsCodecsExt.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32WindowsCodecs.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32printfilterpipelinesvc.exe
    2009-11-17 22:34:35 —-A—- C:Windowssystem32printfilterpipelineprxy.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32PhotoMetadataHandler.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32OpcServices.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32FntCache.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32dxgi.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32dxdiagn.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32dxdiag.exe
    2009-11-17 22:34:35 —-A—- C:Windowssystem32DWrite.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d11.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10warp.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10level9.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10core.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10_1core.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10_1.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d2d1.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32cdd.dll
    2009-11-17 22:34:13 —-A—- C:Windowssystem32WPDShextAutoplay.exe
    2009-11-17 22:34:13 —-A—- C:Windowssystem32wpdbusenum.dll
    2009-11-17 22:34:13 —-A—- C:Windowssystem32BthMtpContextHandler.dll
    2009-11-17 22:34:11 —-A—- C:Windowssystem32PortableDeviceConnectApi.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32WPDSp.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32WPDShServiceObj.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32wpdshext.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32wpd_ci.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32PortableDeviceWMDRM.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32PortableDeviceTypes.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32PortableDeviceClassExtension.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32PortableDeviceApi.dll
    2009-11-17 22:33:04 —-A—- C:Windowssystem32oleaccrc.dll
    2009-11-17 22:33:03 —-A—- C:Windowssystem32UIAutomationCore.dll
    2009-11-17 22:33:03 —-A—- C:Windowssystem32oleacc.dll
    2009-11-17 22:07:25 —-D—- C:ProgramDataWinamp Toolbar
    2009-11-17 22:07:25 —-D—- C:Program FilesWinamp Toolbar
    2009-11-17 22:06:44 —-D—- C:Program FilesCommon FilesPX Storage Engine
    2009-11-17 20:40:24 —-D—- C:UsersСергейAppDataRoamingAhead
    2009-11-17 20:39:49 —-D—- C:ProgramDataAhead
    2009-11-17 20:37:46 —-D—- C:Program FilesNero
    2009-11-17 10:27:04 —-A—- C:Windowssystem32TwnLib20.dll
    2009-11-17 10:27:03 —-N—- C:Windowssystem32picn20.dll
    2009-11-17 10:27:02 —-D—- C:Program FilesCommon FilesAhead
    2009-11-17 10:27:02 —-A—- C:Windowssystem32NeroCheck.exe
    2009-11-17 10:26:59 —-D—- C:Program FilesAhead
    2009-11-16 22:15:44 —-D—- C:Игры
    2009-11-16 12:21:06 —-D—- C:ProgramDataNero
    2009-11-15 22:41:08 —-D—- C:Windowssystem32vi-VN
    2009-11-15 22:41:08 —-D—- C:Windowssystem32eu-ES
    2009-11-15 22:41:08 —-D—- C:Windowssystem32ca-ES
    2009-11-15 22:29:39 —-D—- C:Windowssystem32EventProviders
    2009-11-15 20:04:53 —-D—- C:UsersСергейAppDataRoamingOpera
    2009-11-15 20:04:53 —-D—- C:ProgramDataYandex
    2009-11-15 19:09:58 —-D—- C:Program FilesuTorrent
    2009-11-15 19:08:37 —-D—- C:UsersСергейAppDataRoaminguTorrent
    2009-11-15 19:05:56 —-A—- C:Windowssystem32NlsLexicons0007.dll
    2009-11-15 19:05:53 —-A—- C:Windowssystem32SLsvc.exe
    2009-11-15 19:05:53 —-A—- C:Windowssystem32SLCExt.dll
    2009-11-15 19:05:52 —-A—- C:Windowssystem32FunctionDiscoveryFolder.dll
    2009-11-15 19:05:52 —-A—- C:Windowssystem32DevicePairingWizard.exe
    2009-11-15 19:05:51 —-A—- C:Windowssystem32NlsLexicons0009.dll
    2009-11-15 19:05:49 —-A—- C:Windowssystem32mssrch.dll
    2009-11-15 19:05:48 —-A—- C:Windowssystem32tquery.dll
    2009-11-15 19:05:48 —-A—- C:Windowssystem32PresentationNative_v0300.dll
    2009-11-15 19:05:47 —-A—- C:Windowssystem32scavenge.dll
    2009-11-15 19:05:47 —-A—- C:Windowssystem32RMActivate_isv.exe
    2009-11-15 19:05:47 —-A—- C:Windowssystem32RMActivate.exe
    2009-11-15 19:05:46 —-A—- C:Windowssystem32msi.dll
    2009-11-15 19:05:46 —-A—- C:Windowssystem32imapi2fs.dll
    2009-11-15 19:05:45 —-A—- C:Windowssystem32WscEapPr.dll
    2009-11-15 19:05:45 —-A—- C:Windowssystem32wcnwiz2.dll
    2009-11-15 19:05:45 —-A—- C:Windowssystem32sysmain.dll
    2009-11-15 19:05:45 —-A—- C:Windowssystem32secproc_isv.dll
    2009-11-15 19:05:44 —-A—- C:Windowssystem32icardagt.exe
    2009-11-15 19:05:44 —-A—- C:Windowssystem32EhStorShell.dll
    2009-11-15 19:05:44 —-A—- C:Windowssystem32AuxiliaryDisplayCpl.dll
    2009-11-15 19:05:43 —-A—- C:Windowssystem32spreview.exe
    2009-11-15 19:05:43 —-A—- C:Windowssystem32spinstall.exe
    2009-11-15 19:05:43 —-A—- C:Windowssystem32drmv2clt.dll
    2009-11-15 19:05:42 —-A—- C:Windowssystem32spwizui.dll
    2009-11-15 19:05:42 —-A—- C:Windowssystem32shell32.dll
    2009-11-15 19:05:42 —-A—- C:Windowssystem32secproc.dll
    2009-11-15 19:05:42 —-A—- C:Windowssystem32mcupdate_GenuineIntel.dll
    2009-11-15 19:05:41 —-A—- C:Windowssystem32SearchIndexer.exe
    2009-11-15 19:05:41 —-A—- C:Windowssystem32p2psvc.dll
    2009-11-15 19:05:41 —-A—- C:Windowssystem32mssvp.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32sdohlp.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32mssphtb.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32mssph.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32MSMPEG2VDEC.DLL
    2009-11-15 19:05:40 —-A—- C:Windowssystem32mscoree.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32imapi2.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32wevtsvc.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32sperror.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32RMActivate_ssp.exe
    2009-11-15 19:05:39 —-A—- C:Windowssystem32korwbrkr.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32IMJP10K.DLL
    2009-11-15 19:05:39 —-A—- C:Windowssystem32esent.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32DevicePairing.dll
    2009-11-15 19:05:38 —-A—- C:Windowssystem32SLC.dll
    2009-11-15 19:05:38 —-A—- C:Windowssystem32RMActivate_ssp_isv.exe
    2009-11-15 19:05:38 —-A—- C:Windowssystem32PresentationHostProxy.dll
    2009-11-15 19:05:38 —-A—- C:Windowssystem32pmcsnap.dll
    2009-11-15 19:05:38 —-A—- C:Windowssystem32msshsq.dll
    2009-11-15 19:05:37 —-A—- C:Windowssystem32msxml6.dll
    2009-11-15 19:05:37 —-A—- C:Windowssystem32msjet40.dll
    2009-11-15 19:05:37 —-A—- C:Windowssystem32MPSSVC.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32Query.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32qmgr.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32P2PGraph.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32ole32.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32ntdll.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32msexch40.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32IasMigReader.exe
    2009-11-15 19:05:36 —-A—- C:Windowssystem32diagperf.dll
    2009-11-15 19:05:35 —-A—- C:Windowssystem32winload.exe
    2009-11-15 19:05:35 —-A—- C:Windowssystem32srchadmin.dll
    2009-11-15 19:05:35 —-A—- C:Windowssystem32msxml3.dll
    2009-11-15 19:05:35 —-A—- C:Windowssystem32mblctr.exe
    2009-11-15 19:05:35 —-A—- C:Windowssystem32EncDec.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32uDWM.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32riched20.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32mmc.exe
    2009-11-15 19:05:34 —-A—- C:Windowssystem32IasMigPlugin.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32fdBth.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32dfsr.exe
    2009-11-15 19:05:33 —-A—- C:Windowssystem32SearchProtocolHost.exe
    2009-11-15 19:05:33 —-A—- C:Windowssystem32SearchFilterHost.exe
    2009-11-15 19:05:33 —-A—- C:Windowssystem32RacEngn.dll
    2009-11-15 19:05:33 —-A—- C:Windowssystem32milcore.dll
    2009-11-15 19:05:33 —-A—- C:Windowssystem32kernel32.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32spoolss.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32schedsvc.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32NaturalLanguage6.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32EhStorAPI.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32CertEnroll.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32AuxiliaryDisplayDriverLib.dll
    2009-11-15 19:05:31 —-A—- C:Windowssystem32WinSAT.exe
    2009-11-15 19:05:31 —-A—- C:Windowssystem32msvcp60.dll
    2009-11-15 19:05:31 —-A—- C:Windowssystem32msjtes40.dll
    2009-11-15 19:05:31 —-A—- C:Windowssystem32infocardapi.dll
    2009-11-15 19:05:31 —-A—- C:Windowssystem32gpedit.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32PresentationSettings.exe
    2009-11-15 19:05:30 —-A—- C:Windowssystem32mstext40.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32Magnify.exe
    2009-11-15 19:05:30 —-A—- C:Windowssystem32fveapi.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32es.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32cscsvc.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32AuxiliaryDisplayServices.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32advapi32.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32WebClnt.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32vssapi.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32slwmi.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32msxbde40.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32msexcl40.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32comsvcs.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32authui.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32propsys.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32PresentationHost.exe
    2009-11-15 19:05:28 —-A—- C:Windowssystem32PresentationCFFRasterizerNative_v0300.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32newdev.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32NetProjW.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32msrepl40.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32iasrecst.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32gpsvc.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32eudcedit.exe
    2009-11-15 19:05:28 —-A—- C:Windowssystem32crypt32.dll
    2009-11-15 19:05:27 —-A—- C:Windowssystem32setupapi.dll
    2009-11-15 19:05:27 —-A—- C:Windowssystem32rpcss.dll
    2009-11-15 19:05:27 —-A—- C:Windowssystem32mspbde40.dll
    2009-11-15 19:05:27 —-A—- C:Windowssystem32d3d9.dll
    2009-11-15 19:05:27 —-A—- C:Windowsexplorer.exe
    2009-11-15 19:05:26 —-A—- C:Windowssystem32shlwapi.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32msrd3x40.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32msltus40.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32mfc42.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32EhStorPwdMgr.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32EhStorAuthn.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32davclnt.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32wevtapi.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32user32.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32photowiz.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32nlhtml.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32msdtctm.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32browseui.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32win32spl.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32SLCommDlg.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32samsrv.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32quartz.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32ci.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32WcnNetsh.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32oleaut32.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32netshell.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32kerberos.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32IKEEXT.DLL
    2009-11-15 19:05:23 —-A—- C:Windowssystem32compcln.exe
    2009-11-15 19:05:22 —-A—- C:Windowssystem32xmlfilter.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32winhttp.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32mswstr10.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32msctf.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32emdmgmt.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32audiosrv.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32apds.dll
    2009-11-15 19:05:21 —-A—- C:Windowssystem32VSSVC.exe
    2009-11-15 19:05:21 —-A—- C:Windowssystem32QAGENTRT.DLL
    2009-11-15 19:05:21 —-A—- C:Windowssystem32msvcrt.dll
    2009-11-15 19:05:21 —-A—- C:Windowssystem32mfc42u.dll
    2009-11-15 19:05:21 —-A—- C:Windowssystem32iphlpsvc.dll
    2009-11-15 19:05:21 —-A—- C:Windowssystem32gdi32.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32winresume.exe
    2009-11-15 19:05:20 —-A—- C:Windowssystem32wbengine.exe
    2009-11-15 19:05:20 —-A—- C:Windowssystem32sqlsrv32.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32SLUI.exe
    2009-11-15 19:05:20 —-A—- C:Windowssystem32propdefs.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32odbc32.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32msrd2x40.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32eapphost.dll
    2009-11-15 19:05:19 —-A—- C:Windowssystem32wevtutil.exe
    2009-11-15 19:05:19 —-A—- C:Windowssystem32shdocvw.dll
    2009-11-15 19:05:19 —-A—- C:Windowssystem32mssitlb.dll
    2009-11-15 19:05:19 —-A—- C:Windowssystem32dbgeng.dll
    2009-11-15 19:05:18 —-A—- C:Windowssystem32WsmSvc.dll
    2009-11-15 19:05:18 —-A—- C:Windowssystem32usp10.dll
    2009-11-15 19:05:18 —-A—- C:Windowssystem32swprv.dll
    2009-11-15 19:05:18 —-A—- C:Windowssystem32mmcndmgr.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32WFS.exe
    2009-11-15 19:05:17 —-A—- C:Windowssystem32vds.exe
    2009-11-15 19:05:17 —-A—- C:Windowssystem32schannel.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32netlogon.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32msscb.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32msctfp.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32fdBthProxy.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32evr.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32drvinst.exe
    2009-11-15 19:05:17 —-A—- C:Windowssystem32devmgr.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32DevicePairingProxy.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32BFE.DLL
    2009-11-15 19:05:17 —-A—- C:Windowssystem32adsldpc.dll
    2009-11-15 19:05:16 —-A—- C:Windowssystem32WMVSDECD.DLL
    2009-11-15 19:05:16 —-A—- C:Windowssystem32Wldap32.dll
    2009-11-15 19:05:16 —-A—- C:Windowssystem32wcnwiz.dll
    2009-11-15 19:05:15 —-A—- C:Windowssystem32wercon.exe
    2009-11-15 19:05:15 —-A—- C:Windowssystem32services.exe
    2009-11-15 19:05:13 —-A—- C:Windowssystem32comdlg32.dll
    2009-11-15 19:05:12 —-A—- C:Windowssystem32wcncsvc.dll
    2009-11-15 19:05:12 —-A—- C:Windowssystem32mimefilt.dll
    2009-11-15 19:05:12 —-A—- C:Windowssystem32adtschema.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32umpnpmgr.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32taskeng.exe
    2009-11-15 19:05:11 —-A—- C:Windowssystem32rtffilt.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32reg.exe
    2009-11-15 19:05:11 —-A—- C:Windowssystem32mswdat10.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32msjter40.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32msdtcprx.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32msdrm.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32ipsmsnap.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32dnsapi.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32certutil.exe
    2009-11-15 19:05:11 —-A—- C:Windowssystem32certcli.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32WMNetMgr.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32w32time.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32rsaenh.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32msshooks.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32msscntrs.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32msihnd.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32IPSECSVC.DLL
    2009-11-15 19:05:10 —-A—- C:Windowssystem32bthserv.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32bcrypt.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32TsWpfWrp.exe
    2009-11-15 19:05:09 —-A—- C:Windowssystem32scrptadm.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32netapi32.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32mtxclu.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32msstrc.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32MMDevAPI.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32inetpp.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32inetcomm.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32fundisc.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32dfshim.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32cryptsvc.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32wmicmiplugin.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32termsrv.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32shsvcs.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32profsvc.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32msiexec.exe
    2009-11-15 19:05:08 —-A—- C:Windowssystem32mscories.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32imapi.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32hidserv.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32dhcpcsvc6.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32wdc.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32spoolsv.exe
    2009-11-15 19:05:07 —-A—- C:Windowssystem32rasmans.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32pnidui.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32icardres.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32iassdo.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32chsbrkr.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32autofmt.exe
    2009-11-15 19:05:06 —-A—- C:Windowssystem32wersvc.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32slmgr.vbs
    2009-11-15 19:05:06 —-A—- C:Windowssystem32scrrun.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32PSHED.DLL
    2009-11-15 19:05:06 —-A—- C:Windowssystem32pidgenx.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32pdh.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32dhcpcsvc.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32CertEnrollUI.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32azroles.dll
    2009-11-15 19:05:05 —-A—- C:Windowssystem32wmpmde.dll
    2009-11-15 19:05:05 —-A—- C:Windowssystem32winlogon.exe
    2009-11-15 19:05:05 —-A—- C:Windowssystem32SyncCenter.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32SLUINotify.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32sethc.exe
    2009-11-15 19:05:04 —-A—- C:Windowssystem32ncrypt.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32msjetoledb40.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32kd1394.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32comuid.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32certmgr.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32wisptis.exe
    2009-11-15 19:05:03 —-A—- C:Windowssystem32untfs.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32taskcomp.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32spp.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32scrobj.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32rtutils.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32iassam.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32dwm.exe
    2009-11-15 19:05:03 —-A—- C:Windowssystem32cscui.dll
    2009-11-15 19:05:02 —-A—- C:Windowssystem32winsrv.dll
    2009-11-15 19:05:02 —-A—- C:Windowssystem32printui.dll
    2009-11-15 19:05:02 —-A—- C:Windowssystem32iasnap.dll
    2009-11-15 19:05:02 —-A—- C:Windowssystem32autoconv.exe
    2009-11-15 19:05:02 —-A—- C:Windowssystem32autochk.exe
    2009-11-15 19:05:01 —-A—- C:Windowssystem32wow32.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32userenv.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32osk.exe
    2009-11-15 19:05:01 —-A—- C:Windowssystem32onex.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32mswsock.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32kdcom.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32cscript.exe
    2009-11-15 19:05:01 —-A—- C:Windowssystem32basecsp.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32audiodg.exe
    2009-11-15 19:05:00 —-A—- C:Windowssystem32WinSCard.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32winmm.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32WerFaultSecure.exe
    2009-11-15 19:05:00 —-A—- C:Windowssystem32spcmsg.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32RelMon.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32rdpencom.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32offfilt.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32msftedit.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32kdusb.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32dnsrslvr.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32wsepno.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32WerFault.exe
    2009-11-15 19:04:59 —-A—- C:Windowssystem32Utilman.exe
    2009-11-15 19:04:59 —-A—- C:Windowssystem32stobject.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32secproc_ssp_isv.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32secproc_ssp.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32mfplat.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32wscript.exe
    2009-11-15 19:04:58 —-A—- C:Windowssystem32wiaservc.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32ulib.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32sysclass.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32SndVol.exe
    2009-11-15 19:04:58 —-A—- C:Windowssystem32prnntfy.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32odbccp32.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32msnetobj.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32mscms.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32mcmde.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32iasdatastore.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32dsound.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32diskraid.exe
    2009-11-15 19:04:58 —-A—- C:Windowssystem32apphelp.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32adsmsext.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32wscntfy.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32wlangpui.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32rastls.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32rastapi.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32pnpsetup.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32ipsecsnp.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32IPHLPAPI.DLL
    2009-11-15 19:04:57 —-A—- C:Windowssystem32gpapi.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32fdProxy.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32diskpart.exe
    2009-11-15 19:04:57 —-A—- C:Windowssystem32cryptui.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32brcpl.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32zipfldr.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32wusa.exe
    2009-11-15 19:04:56 —-A—- C:Windowssystem32wshext.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32wscsvc.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32wpccpl.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32WMVENCOD.DLL
    2009-11-15 19:04:56 —-A—- C:Windowssystem32vdsdyn.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32regsvc.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32rasapi32.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32ntprint.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32netcenter.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32mscorier.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32logman.exe
    2009-11-15 19:04:56 —-A—- C:Windowssystem32iasrad.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32iashlpr.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32findstr.exe
    2009-11-15 19:04:55 —-A—- C:Windowssystem32wsnmp32.dll
    2009-11-15 19:04:55 —-A—- C:Windowssystem32wer.dll
    2009-11-15 19:04:55 —-A—- C:Windowssystem32themecpl.dll
    2009-11-15 19:04:55 —-A—- C:Windowssystem32rasdlg.dll
    2009-11-15 19:04:55 —-A—- C:Windowssystem32iassvcs.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32uxsms.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32tsbyuv.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32srvsvc.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32scansetting.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32ntmarta.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32msutb.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32mstlsapi.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32mssprxy.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32iasads.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32umrdp.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32slcc.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32powrprof.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32powercpl.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32PerfCenterCPL.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32newdev.exe
    2009-11-15 19:04:53 —-A—- C:Windowssystem32networkmap.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32mstsc.exe
    2009-11-15 19:04:53 —-A—- C:Windowssystem32iasacct.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32fveui.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32connect.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32authz.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32usercpl.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32themeui.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32systemcpl.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32sud.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32samlib.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32qdvd.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32pcaui.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32mmci.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32dot3svc.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32brcplsiw.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32autoplay.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32accessibilitycpl.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32wpcao.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32wlanpref.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32vdsutil.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32tapisrv.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32scksp.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32scesrv.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32rpchttp.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32regapi.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32psisdecd.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32oleprn.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32msinfo32.exe
    2009-11-15 19:04:51 —-A—- C:Windowssystem32mpr.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32fvecpl.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32feclient.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32cscobj.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32wscisvif.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32WindowsUltimateExtrasCPL.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32sdclt.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32rekeywiz.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32qedit.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32pnpui.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32perfdisk.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32ncryptui.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32imm32.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32iaspolcy.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32Faultrep.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32dpapimig.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32dot3msm.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32DeviceEject.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32certreq.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32AudioSes.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32TSTheme.exe
    2009-11-15 19:04:49 —-A—- C:Windowssystem32tcpmon.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32tcpipcfg.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32spwinsat.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32SmartcardCredentialProvider.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32scecli.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32rasplap.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32rasgcw.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32PnPUnattend.exe
    2009-11-15 19:04:49 —-A—- C:Windowssystem32hdwwiz.exe
    2009-11-15 19:04:49 —-A—- C:Windowssystem32FWPUCLNT.DLL
    2009-11-15 19:04:49 —-A—- C:Windowssystem32fdWSD.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32cmmon32.exe
    2009-11-15 19:04:48 —-A—- C:Windowssystem32whealogr.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32srcore.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32SnippingTool.exe
    2009-11-15 19:04:48 —-A—- C:Windowssystem32SCardSvr.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32raschap.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32MSVidCtl.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32fontext.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32conime.exe
    2009-11-15 19:04:48 —-A—- C:Windowssystem32cmdial32.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32WMVXENCD.DLL
    2009-11-15 19:04:47 —-A—- C:Windowssystem32wlanui.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32wiaaut.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32shwebsvc.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32shsetup.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32rasppp.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32PnPutil.exe
    2009-11-15 19:04:47 —-A—- C:Windowssystem32oobefldr.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32dsprop.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32dimsroam.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32wmdrmsdk.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32rasmontr.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32mscandui.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32modemui.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32dataclen.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32chtbrkr.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32WSDMon.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32wmpeffects.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32wlgpclnt.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32tscfgwmi.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32smss.exe
    2009-11-15 19:04:45 —-A—- C:Windowssystem32rdpwsx.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32networkexplorer.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32netplwiz.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32CscMig.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32credui.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32certprop.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32blackbox.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32appmgmts.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32wscapi.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32wpcsvc.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32msscp.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32msimtf.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32logagent.exe
    2009-11-15 19:04:44 —-A—- C:Windowssystem32InkEd.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32ifmon.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32gpresult.exe
    2009-11-15 19:04:44 —-A—- C:Windowssystem32cipher.exe
    2009-11-15 19:04:43 —-A—- C:Windowssystem32thawbrkr.dll
    2009-11-15 19:04:43 —-A—- C:Windowssystem32softkbd.dll
    2009-11-15 19:04:43 —-A—- C:Windowssystem32sendmail.dll
    2009-11-15 19:04:43 —-A—- C:Windowssystem32msctfui.dll
    2009-11-15 19:04:43 —-A—- C:Windowssystem32MediaMetadataHandler.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32rdpclip.exe
    2009-11-15 19:04:41 —-A—- C:Windowssystem32puiapi.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32olepro32.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32input.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32gpprnext.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32drmmgrtn.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32dmsynth.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32wshbth.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32version.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32SLLUA.exe
    2009-11-15 19:04:40 —-A—- C:Windowssystem32rdpendp.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32msjint40.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32msisip.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32MsCtfMonitor.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32mprapi.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32fdSSDP.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32fc.exe
    2009-11-15 19:04:40 —-A—- C:Windowssystem32ExplorerFrame.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32dmusic.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32cscapi.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32wsdchngr.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32Storprop.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32SMBHelperClass.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32rasdial.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32rasdiag.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32PrintBrmUi.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32l2nacp.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32ipconfig.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32gpscript.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32ftp.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32fdWCN.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32eappcfg.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32eapp3hst.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32dot3cfg.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32cscdll.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32bthudtask.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32bthci.dll
    2009-11-15 19:04:38 —-A—- C:Windowssystem32tscupgrd.exe
    2009-11-15 19:04:38 —-A—- C:Windowssystem32slcinst.dll
    2009-11-15 19:04:38 —-A—- C:Windowssystem32nslookup.exe
    2009-11-15 19:04:38 —-A—- C:Windowssystem32networkitemfactory.dll
    2009-11-15 19:04:38 —-A—- C:Windowssystem32CHxReadingStringIME.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32qprocess.exe
    2009-11-15 19:04:37 —-A—- C:Windowssystem32PNPXAssoc.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32ocsetup.exe
    2009-11-15 19:04:37 —-A—- C:Windowssystem32mmcico.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32hbaapi.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32gpscript.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32FwRemoteSvr.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32fdeploy.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32eappgnui.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32chgport.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32tscon.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32shadow.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32NcdProp.dll
    2009-11-15 19:04:36 —-A—- C:Windowssystem32logoff.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32iscsilog.dll
    2009-11-15 19:04:36 —-A—- C:Windowssystem32gpupdate.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32csrstub.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32chgusr.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32cbsra.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32bitsigd.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32winrnr.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32vdmdbg.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32tskill.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32tsdiscon.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32slwga.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32rwinsta.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32reset.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32query.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32qappsrv.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32odbcconf.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32inetppui.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32chglogon.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32change.exe
    2009-11-15 19:04:34 —-A—- C:Windowssystem32midimap.dll
    2009-11-15 19:04:32 —-A—- C:Windowssystem32msimsg.dll
    2009-11-15 19:04:32 —-A—- C:Windowssystem32f3ahvoas.dll
    2009-11-15 19:04:06 —-A—- C:Windowssystem32SmiEngine.dll
    2009-11-15 19:03:50 —-A—- C:Windowssystem32wdscore.dll
    2009-11-15 19:03:50 —-A—- C:Windowssystem32PkgMgr.exe
    2009-11-15 19:03:03 —-A—- C:Windowssystem32drvstore.dll
    2009-11-15 19:02:06 —-D—- C:Downloads
    2009-11-15 01:25:26 —-D—- C:UsersСергейAppDataRoamingDownload Master
    2009-11-15 01:24:47 —-D—- C:Program FilesDownload Master
    2009-11-14 17:50:34 —-D—- C:Program FilesМедиаХауз
    2009-11-14 03:01:33 —-A—- C:Windowssystem32netfxperf.dll
    2009-11-13 22:49:07 —-D—- C:UsersСергейAppDataRoamingYaChatData
    2009-11-13 22:03:34 —-D—- C:Program FilesFamily Toolbar
    2009-11-12 20:17:27 —-D—- C:Program Filesintercross
    2009-11-12 17:56:48 —-A—- C:Windowssystem32WSDApi.dll
    2009-11-06 18:00:15 —-A—- C:Windowssystem32wmp.dll
    2009-11-06 18:00:14 —-A—- C:Windowssystem32unregmp2.exe
    2009-11-06 18:00:12 —-A—- C:Windowssystem32wmploc.DLL
    2009-11-06 17:39:26 —-A—- C:Windowssystem32mshtml.dll
    2009-11-06 17:01:07 —-A—- C:Windowssystem32wups2.dll
    2009-11-06 17:01:07 —-A—- C:Windowssystem32wucltux.dll
    2009-11-06 17:01:07 —-A—- C:Windowssystem32wuaueng.dll
    2009-11-06 17:01:07 —-A—- C:Windowssystem32wuauclt.exe
    2009-11-06 17:00:52 —-A—- C:Windowssystem32wups.dll
    2009-11-06 17:00:52 —-A—- C:Windowssystem32wudriver.dll
    2009-11-06 17:00:52 —-A—- C:Windowssystem32wuapi.dll
    2009-11-06 17:00:47 —-A—- C:Windowssystem32wuwebv.dll
    2009-11-06 17:00:47 —-A—- C:Windowssystem32wuapp.exe
    2009-11-05 20:00:26 —-A—- C:Windowssystem32ieframe.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32wininet.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32urlmon.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32occache.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32msfeeds.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32ieui.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32iertutil.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32iedkcs32.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32msfeedssync.exe
    2009-11-05 20:00:24 —-A—- C:Windowssystem32msfeedsbs.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32jsproxy.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32ieUnatt.exe
    2009-11-05 20:00:24 —-A—- C:Windowssystem32iesysprep.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32iesetup.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32iernonce.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32iepeers.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32ie4uinit.exe
    2009-10-31 18:19:11 —-D—- C:Program FilesQIP
    2009-10-30 20:52:28 —-D—- C:WindowsProfiles
    2009-10-30 20:52:27 —-D—- C:Windowssystem32Adobe
    2009-10-30 20:52:27 —-D—- C:UsersСергейAppDataRoamingInterTrust
    2009-10-30 20:51:53 —-A—- C:Windowsphotoimpression.ini
    2009-10-30 20:51:52 —-D—- C:My Documents
    2009-10-30 20:51:52 —-A—- C:Windowssystem32pcdlib32.dll
    2009-10-30 20:51:37 —-D—- C:Program FilesArcSoft
    2009-10-30 20:50:15 —-D—- C:Program FilesABBYY FineReader 4.0 Sprint
    2009-10-30 20:49:18 —-D—- C:Program FilesEscntl
    2009-10-28 18:27:19 —-D—- C:ProgramDataXerox
    2009-10-28 18:22:09 —-RA—- C:Windowssystem32WNASPI32.DLL
    2009-10-28 18:22:09 —-RA—- C:WindowsESUSD.DLL
    2009-10-28 18:22:09 —-R—- C:WindowsESUSDX.DLL
    2009-10-28 18:22:08 —-D—- C:Windowsusbbin
    2009-10-25 09:04:03 —-D—- C:Program FilesSpirit
    2009-10-24 20:09:17 —-D—- C:Program FilesShareman
    2009-10-24 08:51:37 —-A—- C:Windowssystem32ntoskrnl.exe
    2009-10-24 08:51:37 —-A—- C:Windowssystem32ntkrnlpa.exe

    ======List of files/folders modified in the last 1 months======

    2009-11-19 18:25:58 —-D—- C:WindowsTemp
    2009-11-19 18:25:54 —-RD—- C:Program Files
    2009-11-19 14:57:20 —-D—- C:WindowsTasks
    2009-11-19 13:22:22 —-D—- C:WindowsSystem32
    2009-11-19 13:22:22 —-D—- C:Windowsinf
    2009-11-19 13:22:22 —-A—- C:Windowssystem32PerfStringBackup.INI
    2009-11-19 13:15:42 —-D—- C:WindowsPrefetch
    2009-11-19 12:05:16 —-SHD—- C:WindowsInstaller
    2009-11-19 10:46:40 —-SHD—- C:System Volume Information
    2009-11-19 10:44:37 —-D—- C:Program FilesCommon FilesWise Installation Wizard
    2009-11-19 10:38:07 —-SD—- C:ProgramDataMicrosoft
    2009-11-19 09:44:08 —-D—- C:Program FilesGoogle
    2009-11-18 22:57:41 —-D—- C:Windowssystem32drivers
    2009-11-18 22:57:34 —-D—- C:Windowswinsxs
    2009-11-18 22:56:33 —-HD—- C:ProgramData
    2009-11-18 22:03:20 —-D—- C:WindowsMinidump
    2009-11-18 22:03:15 —-D—- C:Windows
    2009-11-17 22:55:03 —-D—- C:Windowsrescache
    2009-11-17 22:39:54 —-D—- C:Windowssystem32Tasks
    2009-11-17 22:37:35 —-D—- C:Windowssystem32wbem
    2009-11-17 22:37:35 —-D—- C:Windowssystem32ru-RU
    2009-11-17 22:37:34 —-D—- C:Windowssystem32zh-TW
    2009-11-17 22:37:34 —-D—- C:Windowssystem32zh-HK
    2009-11-17 22:37:34 —-D—- C:Windowssystem32zh-CN
    2009-11-17 22:37:34 —-D—- C:Windowssystem32uk-UA
    2009-11-17 22:37:34 —-D—- C:Windowssystem32tr-TR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32th-TH
    2009-11-17 22:37:34 —-D—- C:Windowssystem32sv-SE
    2009-11-17 22:37:34 —-D—- C:Windowssystem32sr-Latn-CS
    2009-11-17 22:37:34 —-D—- C:Windowssystem32sl-SI
    2009-11-17 22:37:34 —-D—- C:Windowssystem32sk-SK
    2009-11-17 22:37:34 —-D—- C:Windowssystem32ro-RO
    2009-11-17 22:37:34 —-D—- C:Windowssystem32pt-PT
    2009-11-17 22:37:34 —-D—- C:Windowssystem32pt-BR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32pl-PL
    2009-11-17 22:37:34 —-D—- C:Windowssystem32nl-NL
    2009-11-17 22:37:34 —-D—- C:Windowssystem32nb-NO
    2009-11-17 22:37:34 —-D—- C:Windowssystem32lv-LV
    2009-11-17 22:37:34 —-D—- C:Windowssystem32lt-LT
    2009-11-17 22:37:34 —-D—- C:Windowssystem32ko-KR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32ja-JP
    2009-11-17 22:37:34 —-D—- C:Windowssystem32it-IT
    2009-11-17 22:37:34 —-D—- C:Windowssystem32hu-HU
    2009-11-17 22:37:34 —-D—- C:Windowssystem32hr-HR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32he-IL
    2009-11-17 22:37:34 —-D—- C:Windowssystem32fr-FR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32fi-FI
    2009-11-17 22:37:34 —-D—- C:Windowssystem32et-EE
    2009-11-17 22:37:34 —-D—- C:Windowssystem32es-ES
    2009-11-17 22:37:34 —-D—- C:Windowssystem32en-US
    2009-11-17 22:37:34 —-D—- C:Windowssystem32el-GR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32de-DE
    2009-11-17 22:37:34 —-D—- C:Windowssystem32da-DK
    2009-11-17 22:37:34 —-D—- C:Windowssystem32cs-CZ
    2009-11-17 22:37:34 —-D—- C:Windowssystem32bg-BG
    2009-11-17 22:37:34 —-D—- C:Windowssystem32ar-SA
    2009-11-17 22:35:01 —-D—- C:Windowssystem32catroot
    2009-11-17 22:34:49 —-D—- C:Windowssystem32catroot2
    2009-11-17 22:12:15 —-D—- C:Program FilesWinamp
    2009-11-17 22:06:44 —-D—- C:Program FilesCommon Files
    2009-11-17 21:31:53 —-D—- C:Windowsehome
    2009-11-17 21:23:40 —-D—- C:Windowssystem32appmgmt
    2009-11-17 20:49:00 —-D—- C:Temp
    2009-11-17 18:14:00 —-D—- C:Program FilesCommon Filesmicrosoft shared
    2009-11-17 12:55:34 —-D—- C:Program FilesCommon FilesAdobe
    2009-11-17 12:55:33 —-D—- C:ProgramDataAdobe
    2009-11-17 12:55:26 —-D—- C:Program FilesAdobe
    2009-11-17 10:48:41 —-D—- C:WindowsMicrosoft.NET
    2009-11-17 10:48:36 —-RSD—- C:Windowsassembly
    2009-11-17 09:40:18 —-D—- C:ProgramDataMeridian93
    2009-11-17 09:39:49 —-D—- C:UsersСергейAppDataRoamingMeridian93
    2009-11-16 16:03:38 —-SD—- C:UsersСергейAppDataRoamingMicrosoft
    2009-11-16 13:49:52 —-D—- C:UsersСергейAppDataRoamingNero
    2009-11-15 22:46:30 —-D—- C:ProgramDataNVIDIA
    2009-11-15 22:45:59 —-SHD—- C:Boot
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Sidebar
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Photo Gallery
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Media Player
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Mail
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Journal
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Collaboration
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Calendar
    2009-11-15 22:41:21 —-D—- C:Program FilesMovie Maker
    2009-11-15 22:41:21 —-D—- C:Program FilesInternet Explorer
    2009-11-15 22:41:21 —-D—- C:Program FilesCommon FilesSystem
    2009-11-15 22:41:20 —-D—- C:Windowsservicing
    2009-11-15 22:41:20 —-D—- C:Program FilesWindows Defender
    2009-11-15 22:41:19 —-D—- C:Windowssystem32XPSViewer
    2009-11-15 22:41:19 —-D—- C:WindowsPolicyDefinitions
    2009-11-15 22:41:19 —-D—- C:WindowsIME
    2009-11-15 22:41:17 —-D—- C:Windowssystem32oobe
    2009-11-15 22:41:17 —-D—- C:Windowssystem32migration
    2009-11-15 22:41:16 —-D—- C:Windowssystem32SLUI
    2009-11-15 22:41:16 —-D—- C:Windowssystem32setup
    2009-11-15 22:41:16 —-D—- C:Windowssystem32ru
    2009-11-15 22:41:16 —-D—- C:Windowssystem32manifeststore
    2009-11-15 22:41:16 —-D—- C:Windowssystem32AdvancedInstallers
    2009-11-15 22:41:15 —-D—- C:Windowssystem32migwiz
    2009-11-15 22:41:13 —-RSD—- C:WindowsFonts
    2009-11-15 22:41:13 —-D—- C:WindowsAppPatch
    2009-11-15 22:41:08 —-D—- C:Windowssystem32Boot
    2009-11-15 10:09:55 —-D—- C:Windowssystem32config
    2009-11-15 10:09:04 —-D—- C:WindowsWindowsMobile
    2009-11-15 10:09:03 —-D—- C:Windowssystem32spool
    2009-11-15 10:09:03 —-D—- C:Windowssystem32Msdtc
    2009-11-15 10:09:03 —-D—- C:Windowssystem32CodeIntegrity
    2009-11-15 10:08:54 —-D—- C:ProgramDataFLEXnet
    2009-11-15 10:08:26 —-D—- C:Windowsregistration
    2009-11-15 10:08:23 —-D—- C:Windowssystem32WCN
    2009-11-15 10:01:42 —-D—- C:Windowssystem32LogFiles
    2009-11-14 17:50:32 —-HD—- C:Program FilesInstallShield Installation Information
    2009-11-13 22:48:34 —-D—- C:UsersСергейAppDataRoamingYandex
    2009-11-13 22:48:33 —-D—- C:Program FilesYandex
    2009-11-13 22:05:27 —-A—- C:WindowsMyHeritage.INI
    2009-11-13 22:04:17 —-D—- C:ProgramDataMyHeritage
    2009-11-13 22:03:46 —-D—- C:UsersСергейAppDataRoamingMyHeritage
    2009-11-07 19:32:09 —-D—- C:Windowssystem32WDI
    2009-11-05 21:36:21 —-A—- C:Windowssystem32mrt.exe
    2009-11-02 20:42:06 —-N—- C:Windowssystem32MpSigStub.exe
    2009-10-30 20:49:18 —-D—- C:Windowstwain_32
    2009-10-30 20:35:23 —-D—- C:Program FilesABBYY FineReader 8.0 Professional Edition
    2009-10-25 07:47:24 —-D—- C:Program FilesBuka

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 appdrv01;Application Driver (01); C:WindowsSystem32Driversappdrv01.sys [2009-05-17 3100776]
    R1 aswRdr;aswRdr; C:Windowssystem32driversaswRdr.sys [2009-11-05 23248]
    R1 aswSP;aswSP; C:Windowssystem32driversaswSP.sys [2009-11-05 149328]
    R1 aswTdi;avast! Network Shield Support; C:Windowssystem32driversaswTdi.sys [2009-11-05 46544]
    R1 CSC;Offline Files Driver; C:Windowssystem32driverscsc.sys [2009-04-11 351744]
    R1 prodrv06;StarForce Protection Environment Driver v6; C:WindowsSystem32driversprodrv06.sys [2004-01-26 52224]
    R1 StarOpen;StarOpen; C:Windowssystem32driversStarOpen.sys [2006-07-24 5632]
    R2 aswFsBlk;aswFsBlk; C:Windowssystem32driversaswFsBlk.sys [2009-11-05 19024]
    R2 aswMonFlt;aswMonFlt; ??C:Windowssystem32driversaswMonFlt.sys [2009-11-05 51792]
    R2 tifsfilter;Acronis True Image FS Filter; C:Windowssystem32DRIVERStifsfilt.sys [2009-04-21 44384]
    R3 MarvinBus;Pinnacle Marvin Bus; C:Windowssystem32DRIVERSMarvinBus.sys [2005-09-23 171520]
    R3 MTsensor;ATK0110 ACPI UTILITY; C:Windowssystem32DRIVERSASACPI.sys [2006-10-16 7680]
    R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:Windowssystem32DRIVERSnvmfdx32.sys [2008-03-25 1048480]
    R3 nvlddmkm;nvlddmkm; C:Windowssystem32DRIVERSnvlddmkm.sys [2008-10-21 7380896]
    R3 pcouffin;VSO Software pcouffin; C:WindowsSystem32Driverspcouffin.sys [2009-05-18 47360]
    R3 StillCam;Драйвер цифровой фотокамеры для посл. порта; C:Windowssystem32DRIVERSserscan.sys [2008-01-21 9216]
    R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:Windowssystem32driversviahduaa.sys [2008-07-25 870400]
    R3 VST_DPV;VST_DPV; C:Windowssystem32DRIVERSVSTDPV3.SYS [2008-01-21 987648]
    R3 VSTHWBS2;VSTHWBS2; C:Windowssystem32DRIVERSVSTBS23.SYS [2008-01-21 251904]
    R3 winachsf;winachsf; C:Windowssystem32DRIVERSVSTCNXT3.SYS [2008-01-21 654336]
    R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32DRIVERSwmiacpi.sys [2008-01-21 11264]
    S2 Sentinel;Sentinel; C:WindowsSystem32DriversSENTINEL.SYS [1997-06-27 64512]
    S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
    S3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2006-11-02 235520]
    S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
    S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:Windowssystem32DRIVERSse59bus.sys [2006-09-05 61536]
    S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:Windowssystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
    S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:Windowssystem32DRIVERSse59mdm.sys [2006-09-05 97088]
    S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:Windowssystem32DRIVERSss_bus.sys [2007-05-02 83592]
    S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:Windowssystem32DRIVERSss_mdfl.sys [2007-05-02 15112]
    S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:Windowssystem32DRIVERSss_mdm.sys [2007-05-02 109704]
    S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:Windowssystem32DRIVERSsscdbus.sys [2007-07-03 80552]
    S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:Windowssystem32DRIVERSsscdmdfl.sys [2007-07-03 11944]
    S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:Windowssystem32DRIVERSsscdmdm.sys [2007-07-03 106792]
    S3 usbscan;Драйвер USB-сканера; C:Windowssystem32DRIVERSusbscan.sys [2008-01-21 35328]
    S3 winusb;WinUSB Service; C:Windowssystem32DRIVERSwinusb.sys [2009-04-11 31616]
    S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AcrSch2Svc;Acronis Scheduler2 Service; C:Program FilesCommon FilesAcronisSchedule2schedul2.exe [2007-11-20 427288]
    R2 Automatic LiveUpdate Scheduler;Automatic LiveUpdate Scheduler; C:Program FilesSymantecLiveUpdateAluSchedulerSvc.exe [2008-02-09 238968]
    R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2009-11-05 40384]
    R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:Program FilesBonjourmDNSResponder.exe [2006-02-28 229376]
    R2 CscService;@%systemroot%system32cscsvc.dll,-200; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    R2 nvsvc;NVIDIA Display Driver Service; C:Windowssystem32nvvsvc.exe [2008-10-21 203296]
    R2 RapiMgr;@%windir%WindowsMobilerapimgr.dll,-104; C:Windowssystem32svchost.exe [2008-01-21 21504]
    R2 TryAndDecideService;Acronis Try And Decide Service; C:Program FilesCommon FilesAcronisFomatikTrueImageTryStartService.exe [2007-11-20 495600]
    R2 WcesComm;@%windir%WindowsMobilewcescomm.dll,-40079; C:Windowssystem32svchost.exe [2008-01-21 21504]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2009-11-05 40384]
    R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2009-11-05 40384]
    R3 NMIndexingService;NMIndexingService; C:Program FilesCommon FilesAheadLibNMIndexingService.exe [2007-05-16 271920]
    S2 appdrvrem01;Application Driver Auto Removal Service (01); C:WindowsSystem32appdrvrem01.exe [2009-05-17 304528]
    S2 gupdate;Google Update Service (gupdate); C:Program FilesGoogleUpdateGoogleUpdate.exe [2009-09-14 133104]
    S2 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-09-13 194032]
    S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:Program FilesCommon FilesNeroNero BackItUp 4NBService.exe []
    S3 AppMgmt;@appmgmts.dll,-3250; C:Windowssystem32svchost.exe [2008-01-21 21504]
    S3 aspnet_state;Служба состояний ASP.NET; C:WindowsMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2009-03-30 31048]
    S3 Fax;@%systemroot%system32fxsresm.dll,-118; C:Windowssystem32fxssvc.exe [2008-01-21 523776]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2009-04-21 654848]
    S3 FontCache;@%systemroot%system32FntCache.dll,-100; C:Windowssystem32svchost.exe [2008-01-21 21504]
    S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]
    S3 LiveUpdate;LiveUpdate; C:Program FilesSymantecLiveUpdateLuComServer_3_4.EXE [2008-02-09 3220856]
    S3 NBService;NBService; C:Program FilesNeroNero 7Nero BackItUpNBService.exe [2007-04-13 792112]
    S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
    S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
    S3 UmRdpService;@%SystemRoot%system32umrdp.dll,-1000; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    S3 wbengine;@%systemroot%system32wbengine.exe,-104; C:Windowssystem32wbengine.exe [2009-04-11 918528]

    EOF

    доктор веб убрал рекламу так что в любом случае спосибо

    20 ноября, 2009 в 4:36 пп #26993
    Admin
    Keymaster
    • Темы:40
    • Сообщений:5676
    • ☆☆☆☆☆

    Здравствуйте, добро пожаловать на Spyware-ru форум.

    Ваш компьютер был заражён msmedia adware.
    Скиньте свежий RSIT лог для проверки, всё ли удалил DrWeb.

    25 ноября, 2009 в 2:16 пп #26994
    Аноним
    Гость
    • Темы:532
    • Сообщений:1553
    • ☆☆☆☆☆

    только вчера заметил на фирафокс токую же рекламу хоть я им не пользуюсь всеравно не приятно и еще мне кажется все эти мои беды идут от неро7 я его скачал недавно
    Logfile of random’s system information tool 1.06 (written by random/random)
    Run by Сергей at 2009-11-25 18:07:52
    Microsoft® Windows Vista™ Ultimate Service Pack 2
    System drive C: has 213 GB (57%) free of 372 GB
    Total RAM: 3070 MB (41% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:07:57, on 25.11.2009
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18828)
    Boot mode: Normal

    Running processes:
    C:Windowssystem32Dwm.exe
    C:WindowsExplorer.EXE
    C:Program FilesWindows DefenderMSASCui.exe
    C:Program FilesVIAVIAudioiVDeckVDeck.exe
    C:WindowsSystem32rundll32.exe
    C:Program FilesAcronisTrueImageHomeTrueImageMonitor.exe
    C:Program FilesAcronisTrueImageHomeTimounterMonitor.exe
    C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe
    C:WindowsWindowsMobilewmdSync.exe
    C:Program FilesQuickTimeqttask.exe
    C:Program FilesWinampwinampa.exe
    C:Program FilesAlwil SoftwareAvast5AvastUI.exe
    C:Program FilesWindows Sidebarsidebar.exe
    C:Windowsehomeehtray.exe
    C:Program FilesYandexOnlineonline.exe
    D:ИнтернетЗагрузкиDownload Masterdmaster.exe
    C:Program FilesuTorrentuTorrent.exe
    C:Windowsehomeehmsas.exe
    C:Windowssystem32taskeng.exe
    C:Program FilesYandexOnlineyachatyachat.exe
    C:Program FilesWindows Sidebarsidebar.exe
    C:UsersСергейAppDataLocalNevoSoftrun.exe
    C:Program FilesWindows Media Playerwmpnscfg.exe
    C:Windowssystem32conime.exe
    C:Program FilesCommon FilesAheadLibNMIndexStoreSvr.exe
    C:Program FilesCommon FilesAheadLibNMBgMonitor.exe
    C:Windowssystem32taskeng.exe
    C:Program FilesCommon FilesAheadLibNMIndexStoreSvr.exe
    C:Program FilesMicrosoft GamesSolitaireSolitaire.exe
    C:Windowssystem32MacromedFlashFlashUtil10b.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:Program FilesInternet Exploreriexplore.exe
    C:UsersСергейDesktopRSIT.exe
    C:Program Filestrend microСергей.exe

    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://search.qip.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://search.qip.ru
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.qip.ru/ie
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://search.qip.ru
    R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.yandex.ru/?clid=40316
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://search.myheritage.com
    R1 — HKCUSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = http://search.qip.ru/ie
    R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
    R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
    R1 — HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = Root: HKCU; Subkey: SoftwareMicrosoftInternet ExplorerSearchUrl; ValueType: string; ValueName: ‘; ValueData: ‘; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
    R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Windows Internet Explorer предоставлен: Яндекс
    R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
    R3 — URLSearchHook: QIPBHO Class — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — C:UsersСергейAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll
    R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
    R3 — URLSearchHook: (no name) — — (no file)
    R3 — URLSearchHook: MHURLSearchHook Class — {1C4AB6A5-595F-4e86-B15F-F93CCE2BBD48} — C:Program FilesFamily Toolbartbhelper.dll
    O1 — Hosts: ::1 localhost
    O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
    O2 — BHO: MHTBPos00 — {0C37B053-FD68-456a-82E1-D788EE342E6F} — C:Program FilesFamily Toolbartbcore3.dll
    O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
    O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
    O2 — BHO: (no name) — {88888888-8888-8888-8888-888888888888} — (no file)
    O2 — BHO: MS Media Module — {9A727FBF-480A-5BE7-11F6-4AFB9E290E21} — %APPDATA%au5FtikM_89_sB.dll (file missing)
    O2 — BHO: QIPBHO — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — C:UsersСергейAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll
    O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll
    O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program FilesYandexYandexBarIEyndbar.dll
    O3 — Toolbar: Family Toolbar — {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} — C:Program FilesFamily Toolbartbcore3.dll
    O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
    O4 — HKLM..Run: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
    O4 — HKLM..Run: [HDAudDeck] C:Program FilesVIAVIAudioiVDeckVDeck.exe -r
    O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:Windowssystem32NvCpl.dll,NvStartup
    O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:Windowssystem32NvMcTray.dll,NvTaskbarInit
    O4 — HKLM..Run: [TrueImageMonitor.exe] C:Program FilesAcronisTrueImageHomeTrueImageMonitor.exe
    O4 — HKLM..Run: [AcronisTimounterMonitor] C:Program FilesAcronisTrueImageHomeTimounterMonitor.exe
    O4 — HKLM..Run: [Acronis Scheduler2 Service] «C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe»
    O4 — HKLM..Run: [Windows Mobile-based device management] %windir%WindowsMobilewmdSync.exe
    O4 — HKLM..Run: [QuickTime Task] «C:Program FilesQuickTimeqttask.exe» -atboottime
    O4 — HKLM..Run: [Family Tree Builder Update] E:MyHeritageBinFTBCheckUpdates.exe
    O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 9.0ReaderReader_sl.exe»
    O4 — HKLM..Run: [WinampAgent] «C:Program FilesWinampwinampa.exe»
    O4 — HKLM..Run: [avast5] C:PROGRA~1ALWILS~1Avast5avastUI.exe /nogui
    O4 — HKLM..Run: [NeroFilterCheck] C:Program FilesCommon FilesAheadLibNeroCheck.exe
    O4 — HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
    O4 — HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
    O4 — HKCU..Run: [YandexOnline] «C:Program FilesYandexOnlineonline.exe» -AutoStart
    O4 — HKCU..Run: [swg] «C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe»
    O4 — HKCU..Run: [Download Master] D:ИнтернетЗагрузкиDownload Masterdmaster.exe -autorun
    O4 — HKCU..Run: [uTorrent] «C:Program FilesuTorrentuTorrent.exe»
    O4 — HKCU..Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] «C:Program FilesCommon FilesAheadLibNMBgMonitor.exe»
    O4 — HKCU..Run: [NevoDRM] «C:ИгрыNevoDRMNevoDRM.exe»
    O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
    O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘NETWORK SERVICE’)
    O8 — Extra context menu item: &Winamp Search — C:ProgramDataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
    O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
    O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
    O12 — Plugin for .spop: C:Program FilesInternet ExplorerPluginsNPDocBox.dll
    O13 — Gopher Prefix:
    O15 — Trusted Zone: http://www.redshift.maris.com
    O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O17 — HKLMSystemCCSServicesTcpip..{9EE6EC82-6DDD-4E3E-BFC5-9D586581AEC2}: NameServer = 62.213.0.12 62.213.2.1
    O23 — Service: Acronis Scheduler2 Service (AcrSch2Svc) — Acronis — C:Program FilesCommon FilesAcronisSchedule2schedul2.exe
    O23 — Service: Application Driver Auto Removal Service (01) (appdrvrem01) — Protection Technology — C:WindowsSystem32appdrvrem01.exe
    O23 — Service: Automatic LiveUpdate Scheduler — Symantec Corporation — C:Program FilesSymantecLiveUpdateAluSchedulerSvc.exe
    O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
    O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
    O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
    O23 — Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) — Apple Computer, Inc. — C:Program FilesBonjourmDNSResponder.exe
    O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
    O23 — Service: FLEXnet Licensing Service — Macrovision Europe Ltd. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
    O23 — Service: Google Update Service (gupdate) (gupdate) — Google Inc. — C:Program FilesGoogleUpdateGoogleUpdate.exe
    O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
    O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
    O23 — Service: LiveUpdate — Symantec Corporation — C:Program FilesSymantecLiveUpdateLuComServer_3_4.EXE
    O23 — Service: NBService — Nero AG — C:Program FilesNeroNero 7Nero BackItUpNBService.exe
    O23 — Service: Nero BackItUp Scheduler 4.0 — Unknown owner — C:Program FilesCommon FilesNeroNero BackItUp 4NBService.exe (file missing)
    O23 — Service: NMIndexingService — Nero AG — C:Program FilesCommon FilesAheadLibNMIndexingService.exe
    O23 — Service: NVIDIA Display Driver Service (nvsvc) — NVIDIA Corporation — C:Windowssystem32nvvsvc.exe
    O23 — Service: Acronis Try And Decide Service (TryAndDecideService) — Unknown owner — C:Program FilesCommon FilesAcronisFomatikTrueImageTryStartService.exe

    —
    End of file — 10988 bytes

    ======Scheduled tasks folder======

    C:WindowstasksAppleSoftwareUpdate.job
    C:WindowstasksGoogle Software Updater.job
    C:WindowstasksGoogleUpdateTaskMachineCore.job
    C:WindowstasksGoogleUpdateTaskMachineUA.job
    C:WindowstasksNorton Security Scan for Сергей.job
    C:WindowstasksUser_Feed_Synchronization-{86873E30-F5F6-4820-B266-18DF3A58B733}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2009-02-27 61816]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{0C37B053-FD68-456a-82E1-D788EE342E6F}]
    MHTBPos00 Class — C:Program FilesFamily Toolbartbcore3.dll [2009-05-08 2642432]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
    Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2009-05-06 1262888]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{88888888-8888-8888-8888-888888888888}]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9A727FBF-480A-5BE7-11F6-4AFB9E290E21}]
    MS Media Module — C:UsersСергейAppDataRoamingau5FtikM_89_sB.dll []

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
    QIPBHO Class — C:UsersСергейAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll [2009-07-14 150768]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll [2009-11-15 762864]

    [HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
    {91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program FilesYandexYandexBarIEyndbar.dll [2009-10-21 5724448]
    {FD2FD708-1F6F-4B68-B141-C5778F0C19BB} — Family Toolbar — C:Program FilesFamily Toolbartbcore3.dll [2009-05-08 2642432]
    {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2009-05-06 1262888]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
    «Windows Defender»=C:Program FilesWindows DefenderMSASCui.exe [2008-01-21 1008184]
    «HDAudDeck»=C:Program FilesVIAVIAudioiVDeckVDeck.exe [2008-08-26 16986112]
    «NvCplDaemon»=C:Windowssystem32NvCpl.dll [2008-10-21 13584928]
    «NvMediaCenter»=C:Windowssystem32NvMcTray.dll [2008-10-21 92704]
    «TrueImageMonitor.exe»=C:Program FilesAcronisTrueImageHomeTrueImageMonitor.exe [2007-11-20 2615896]
    «AcronisTimounterMonitor»=C:Program FilesAcronisTrueImageHomeTimounterMonitor.exe [2007-11-20 910864]
    «Acronis Scheduler2 Service»=C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe [2007-11-20 140568]
    «Windows Mobile-based device management»=C:WindowsWindowsMobilewmdSync.exe [2008-01-21 215552]
    «QuickTime Task»=C:Program FilesQuickTimeqttask.exe [2006-09-01 282624]
    «Family Tree Builder Update»=E:MyHeritageBinFTBCheckUpdates.exe [2009-01-14 113680]
    «Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-02-27 35696]
    «WinampAgent»=C:Program FilesWinampwinampa.exe [2009-07-01 37888]
    «avast5″=C:PROGRA~1ALWILS~1Avast5avastUI.exe [2009-11-18 2608168]
    «NeroFilterCheck»=C:Program FilesCommon FilesAheadLibNeroCheck.exe [2007-03-01 153136]

    [HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
    «Sidebar»=C:Program FilesWindows Sidebarsidebar.exe [2009-04-11 1233920]
    «ehTray.exe»=C:WindowsehomeehTray.exe [2008-01-21 125952]
    «YandexOnline»=C:Program FilesYandexOnlineonline.exe [2009-10-15 2267912]
    «swg»=C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-09-13 39408]
    «Download Master»=D:ИнтернетЗагрузкиDownload Masterdmaster.exe [2009-02-06 3769856]
    «uTorrent»=C:Program FilesuTorrentuTorrent.exe [2009-11-15 289584]
    «BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}»=C:Program FilesCommon FilesAheadLibNMBgMonitor.exe [2007-05-16 153136]
    «NevoDRM»=C:ИгрыNevoDRMNevoDRM.exe [2008-12-11 41984]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa]
    «authentication packages»=msv1_0
    relog_ap

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfPf]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfRd]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfSvc]

    [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfUsbccidDriver]

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
    «dontdisplaylastusername»=0
    «legalnoticecaption»=
    «legalnoticetext»=
    «shutdownwithoutlogon»=1
    «undockwithoutlogon»=1
    «EnableUIADesktopToggle»=0

    [HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
    «BindDirectlyToPropertySetStorage»=

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]

    [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]

    [HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8cc73071-2dcb-11de-a9c7-806e6f6e6963}]
    shellAutoRuncommand — F:autorun.exe

    25 ноября, 2009 в 2:18 пп #26995
    Аноним
    Гость
    • Темы:532
    • Сообщений:1553
    • ☆☆☆☆☆

    вторая половина
    =====File associations======

    .js — edit — C:WindowsSystem32Notepad.exe %1
    .js — open — C:WindowsSystem32WScript.exe «%1» %*

    ======List of files/folders created in the last 1 months======

    2009-11-21 17:41:47 —-D—- C:Program FilesLigos
    2009-11-21 17:37:29 —-A—- C:Windowssystem32LMRTREND.dll
    2009-11-21 17:37:28 —-A—- C:Windowssystem32LMRT.dll
    2009-11-21 17:37:28 —-A—- C:Windowssystem32dxtmsft3.dll
    2009-11-21 17:37:27 —-A—- C:Windowssystem32unam4ie.exe
    2009-11-21 17:37:27 —-A—- C:Windowssystem32strmdll.dll
    2009-11-21 17:37:23 —-A—- C:Windowssystem32vidx16.dll
    2009-11-21 17:37:23 —-A—- C:Windowssystem32qcut.dll
    2009-11-21 17:37:23 —-A—- C:Windowssystem32danim.dll
    2009-11-21 17:37:21 —-A—- C:Windowssystem32w95inf32.dll
    2009-11-21 17:37:21 —-A—- C:Windowssystem32w95inf16.dll
    2009-11-21 17:34:35 —-D—- C:Program FilesKing
    2009-11-19 18:25:54 —-D—- C:Program Filestrend micro
    2009-11-19 18:25:53 —-D—- C:rsit
    2009-11-19 10:38:12 —-D—- C:UsersСергейAppDataRoamingLavasoft
    2009-11-19 10:38:06 —-D—- C:Program FilesLavasoft
    2009-11-18 22:56:37 —-A—- C:Windowssystem32aswBoot.exe
    2009-11-18 22:56:33 —-D—- C:ProgramDataAlwil Software
    2009-11-18 22:56:33 —-D—- C:Program FilesAlwil Software
    2009-11-17 22:37:35 —-D—- C:Program FilesWindows Portable Devices
    2009-11-17 22:34:55 —-A—- C:Windowssystem32UIRibbonRes.dll
    2009-11-17 22:34:55 —-A—- C:Windowssystem32UIRibbon.dll
    2009-11-17 22:34:55 —-A—- C:Windowssystem32UIAnimation.dll
    2009-11-17 22:34:36 —-A—- C:Windowssystem32WMPhoto.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32xpsservices.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32XpsRasterService.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32XpsPrint.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32XpsGdiConverter.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32WindowsCodecsExt.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32WindowsCodecs.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32printfilterpipelinesvc.exe
    2009-11-17 22:34:35 —-A—- C:Windowssystem32printfilterpipelineprxy.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32PhotoMetadataHandler.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32OpcServices.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32FntCache.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32dxgi.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32dxdiagn.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32dxdiag.exe
    2009-11-17 22:34:35 —-A—- C:Windowssystem32DWrite.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d11.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10warp.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10level9.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10core.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10_1core.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10_1.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d3d10.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32d2d1.dll
    2009-11-17 22:34:35 —-A—- C:Windowssystem32cdd.dll
    2009-11-17 22:34:13 —-A—- C:Windowssystem32WPDShextAutoplay.exe
    2009-11-17 22:34:13 —-A—- C:Windowssystem32wpdbusenum.dll
    2009-11-17 22:34:13 —-A—- C:Windowssystem32BthMtpContextHandler.dll
    2009-11-17 22:34:11 —-A—- C:Windowssystem32PortableDeviceConnectApi.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32WPDSp.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32WPDShServiceObj.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32wpdshext.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32wpd_ci.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32PortableDeviceWMDRM.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32PortableDeviceTypes.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32PortableDeviceClassExtension.dll
    2009-11-17 22:34:10 —-A—- C:Windowssystem32PortableDeviceApi.dll
    2009-11-17 22:33:04 —-A—- C:Windowssystem32oleaccrc.dll
    2009-11-17 22:33:03 —-A—- C:Windowssystem32UIAutomationCore.dll
    2009-11-17 22:33:03 —-A—- C:Windowssystem32oleacc.dll
    2009-11-17 22:07:25 —-D—- C:ProgramDataWinamp Toolbar
    2009-11-17 22:07:25 —-D—- C:Program FilesWinamp Toolbar
    2009-11-17 22:06:44 —-D—- C:Program FilesCommon FilesPX Storage Engine
    2009-11-17 20:40:24 —-D—- C:UsersСергейAppDataRoamingAhead
    2009-11-17 20:39:49 —-D—- C:ProgramDataAhead
    2009-11-17 20:37:46 —-D—- C:Program FilesNero
    2009-11-17 10:27:04 —-A—- C:Windowssystem32TwnLib20.dll
    2009-11-17 10:27:03 —-N—- C:Windowssystem32picn20.dll
    2009-11-17 10:27:02 —-D—- C:Program FilesCommon FilesAhead
    2009-11-17 10:27:02 —-A—- C:Windowssystem32NeroCheck.exe
    2009-11-17 10:26:59 —-D—- C:Program FilesAhead
    2009-11-16 22:15:44 —-D—- C:Игры
    2009-11-16 12:21:06 —-D—- C:ProgramDataNero
    2009-11-15 22:41:08 —-D—- C:Windowssystem32vi-VN
    2009-11-15 22:41:08 —-D—- C:Windowssystem32eu-ES
    2009-11-15 22:41:08 —-D—- C:Windowssystem32ca-ES
    2009-11-15 22:29:39 —-D—- C:Windowssystem32EventProviders
    2009-11-15 20:04:53 —-D—- C:UsersСергейAppDataRoamingOpera
    2009-11-15 20:04:53 —-D—- C:ProgramDataYandex
    2009-11-15 19:09:58 —-D—- C:Program FilesuTorrent
    2009-11-15 19:08:37 —-D—- C:UsersСергейAppDataRoaminguTorrent
    2009-11-15 19:05:56 —-A—- C:Windowssystem32NlsLexicons0007.dll
    2009-11-15 19:05:53 —-A—- C:Windowssystem32SLsvc.exe
    2009-11-15 19:05:53 —-A—- C:Windowssystem32SLCExt.dll
    2009-11-15 19:05:52 —-A—- C:Windowssystem32FunctionDiscoveryFolder.dll
    2009-11-15 19:05:52 —-A—- C:Windowssystem32DevicePairingWizard.exe
    2009-11-15 19:05:51 —-A—- C:Windowssystem32NlsLexicons0009.dll
    2009-11-15 19:05:49 —-A—- C:Windowssystem32mssrch.dll
    2009-11-15 19:05:48 —-A—- C:Windowssystem32tquery.dll
    2009-11-15 19:05:48 —-A—- C:Windowssystem32PresentationNative_v0300.dll
    2009-11-15 19:05:47 —-A—- C:Windowssystem32scavenge.dll
    2009-11-15 19:05:47 —-A—- C:Windowssystem32RMActivate_isv.exe
    2009-11-15 19:05:47 —-A—- C:Windowssystem32RMActivate.exe
    2009-11-15 19:05:46 —-A—- C:Windowssystem32msi.dll
    2009-11-15 19:05:46 —-A—- C:Windowssystem32imapi2fs.dll
    2009-11-15 19:05:45 —-A—- C:Windowssystem32WscEapPr.dll
    2009-11-15 19:05:45 —-A—- C:Windowssystem32wcnwiz2.dll
    2009-11-15 19:05:45 —-A—- C:Windowssystem32sysmain.dll
    2009-11-15 19:05:45 —-A—- C:Windowssystem32secproc_isv.dll
    2009-11-15 19:05:44 —-A—- C:Windowssystem32icardagt.exe
    2009-11-15 19:05:44 —-A—- C:Windowssystem32EhStorShell.dll
    2009-11-15 19:05:44 —-A—- C:Windowssystem32AuxiliaryDisplayCpl.dll
    2009-11-15 19:05:43 —-A—- C:Windowssystem32spreview.exe
    2009-11-15 19:05:43 —-A—- C:Windowssystem32spinstall.exe
    2009-11-15 19:05:43 —-A—- C:Windowssystem32drmv2clt.dll
    2009-11-15 19:05:42 —-A—- C:Windowssystem32spwizui.dll
    2009-11-15 19:05:42 —-A—- C:Windowssystem32shell32.dll
    2009-11-15 19:05:42 —-A—- C:Windowssystem32secproc.dll
    2009-11-15 19:05:42 —-A—- C:Windowssystem32mcupdate_GenuineIntel.dll
    2009-11-15 19:05:41 —-A—- C:Windowssystem32SearchIndexer.exe
    2009-11-15 19:05:41 —-A—- C:Windowssystem32p2psvc.dll
    2009-11-15 19:05:41 —-A—- C:Windowssystem32mssvp.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32sdohlp.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32mssphtb.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32mssph.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32MSMPEG2VDEC.DLL
    2009-11-15 19:05:40 —-A—- C:Windowssystem32mscoree.dll
    2009-11-15 19:05:40 —-A—- C:Windowssystem32imapi2.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32wevtsvc.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32sperror.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32RMActivate_ssp.exe
    2009-11-15 19:05:39 —-A—- C:Windowssystem32korwbrkr.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32IMJP10K.DLL
    2009-11-15 19:05:39 —-A—- C:Windowssystem32esent.dll
    2009-11-15 19:05:39 —-A—- C:Windowssystem32DevicePairing.dll
    2009-11-15 19:05:38 —-A—- C:Windowssystem32SLC.dll
    2009-11-15 19:05:38 —-A—- C:Windowssystem32RMActivate_ssp_isv.exe
    2009-11-15 19:05:38 —-A—- C:Windowssystem32PresentationHostProxy.dll
    2009-11-15 19:05:38 —-A—- C:Windowssystem32pmcsnap.dll
    2009-11-15 19:05:38 —-A—- C:Windowssystem32msshsq.dll
    2009-11-15 19:05:37 —-A—- C:Windowssystem32msxml6.dll
    2009-11-15 19:05:37 —-A—- C:Windowssystem32msjet40.dll
    2009-11-15 19:05:37 —-A—- C:Windowssystem32MPSSVC.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32Query.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32qmgr.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32P2PGraph.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32ole32.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32ntdll.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32msexch40.dll
    2009-11-15 19:05:36 —-A—- C:Windowssystem32IasMigReader.exe
    2009-11-15 19:05:36 —-A—- C:Windowssystem32diagperf.dll
    2009-11-15 19:05:35 —-A—- C:Windowssystem32winload.exe
    2009-11-15 19:05:35 —-A—- C:Windowssystem32srchadmin.dll
    2009-11-15 19:05:35 —-A—- C:Windowssystem32msxml3.dll
    2009-11-15 19:05:35 —-A—- C:Windowssystem32mblctr.exe
    2009-11-15 19:05:35 —-A—- C:Windowssystem32EncDec.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32uDWM.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32riched20.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32mmc.exe
    2009-11-15 19:05:34 —-A—- C:Windowssystem32IasMigPlugin.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32fdBth.dll
    2009-11-15 19:05:34 —-A—- C:Windowssystem32dfsr.exe
    2009-11-15 19:05:33 —-A—- C:Windowssystem32SearchProtocolHost.exe
    2009-11-15 19:05:33 —-A—- C:Windowssystem32SearchFilterHost.exe
    2009-11-15 19:05:33 —-A—- C:Windowssystem32RacEngn.dll
    2009-11-15 19:05:33 —-A—- C:Windowssystem32milcore.dll
    2009-11-15 19:05:33 —-A—- C:Windowssystem32kernel32.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32spoolss.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32schedsvc.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32NaturalLanguage6.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32EhStorAPI.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32CertEnroll.dll
    2009-11-15 19:05:32 —-A—- C:Windowssystem32AuxiliaryDisplayDriverLib.dll
    2009-11-15 19:05:31 —-A—- C:Windowssystem32WinSAT.exe
    2009-11-15 19:05:31 —-A—- C:Windowssystem32msvcp60.dll
    2009-11-15 19:05:31 —-A—- C:Windowssystem32msjtes40.dll
    2009-11-15 19:05:31 —-A—- C:Windowssystem32infocardapi.dll
    2009-11-15 19:05:31 —-A—- C:Windowssystem32gpedit.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32PresentationSettings.exe
    2009-11-15 19:05:30 —-A—- C:Windowssystem32mstext40.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32Magnify.exe
    2009-11-15 19:05:30 —-A—- C:Windowssystem32fveapi.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32es.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32cscsvc.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32AuxiliaryDisplayServices.dll
    2009-11-15 19:05:30 —-A—- C:Windowssystem32advapi32.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32WebClnt.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32vssapi.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32slwmi.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32msxbde40.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32msexcl40.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32comsvcs.dll
    2009-11-15 19:05:29 —-A—- C:Windowssystem32authui.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32propsys.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32PresentationHost.exe
    2009-11-15 19:05:28 —-A—- C:Windowssystem32PresentationCFFRasterizerNative_v0300.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32newdev.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32NetProjW.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32msrepl40.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32iasrecst.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32gpsvc.dll
    2009-11-15 19:05:28 —-A—- C:Windowssystem32eudcedit.exe
    2009-11-15 19:05:28 —-A—- C:Windowssystem32crypt32.dll
    2009-11-15 19:05:27 —-A—- C:Windowssystem32setupapi.dll
    2009-11-15 19:05:27 —-A—- C:Windowssystem32rpcss.dll
    2009-11-15 19:05:27 —-A—- C:Windowssystem32mspbde40.dll
    2009-11-15 19:05:27 —-A—- C:Windowssystem32d3d9.dll
    2009-11-15 19:05:27 —-A—- C:Windowsexplorer.exe
    2009-11-15 19:05:26 —-A—- C:Windowssystem32shlwapi.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32msrd3x40.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32msltus40.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32mfc42.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32EhStorPwdMgr.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32EhStorAuthn.dll
    2009-11-15 19:05:26 —-A—- C:Windowssystem32davclnt.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32wevtapi.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32user32.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32photowiz.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32nlhtml.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32msdtctm.dll
    2009-11-15 19:05:25 —-A—- C:Windowssystem32browseui.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32win32spl.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32SLCommDlg.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32samsrv.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32quartz.dll
    2009-11-15 19:05:24 —-A—- C:Windowssystem32ci.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32WcnNetsh.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32oleaut32.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32netshell.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32kerberos.dll
    2009-11-15 19:05:23 —-A—- C:Windowssystem32IKEEXT.DLL
    2009-11-15 19:05:23 —-A—- C:Windowssystem32compcln.exe
    2009-11-15 19:05:22 —-A—- C:Windowssystem32xmlfilter.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32winhttp.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32mswstr10.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32msctf.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32emdmgmt.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32audiosrv.dll
    2009-11-15 19:05:22 —-A—- C:Windowssystem32apds.dll
    2009-11-15 19:05:21 —-A—- C:Windowssystem32VSSVC.exe
    2009-11-15 19:05:21 —-A—- C:Windowssystem32QAGENTRT.DLL
    2009-11-15 19:05:21 —-A—- C:Windowssystem32msvcrt.dll
    2009-11-15 19:05:21 —-A—- C:Windowssystem32mfc42u.dll
    2009-11-15 19:05:21 —-A—- C:Windowssystem32iphlpsvc.dll
    2009-11-15 19:05:21 —-A—- C:Windowssystem32gdi32.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32winresume.exe
    2009-11-15 19:05:20 —-A—- C:Windowssystem32wbengine.exe
    2009-11-15 19:05:20 —-A—- C:Windowssystem32sqlsrv32.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32SLUI.exe
    2009-11-15 19:05:20 —-A—- C:Windowssystem32propdefs.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32odbc32.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32msrd2x40.dll
    2009-11-15 19:05:20 —-A—- C:Windowssystem32eapphost.dll
    2009-11-15 19:05:19 —-A—- C:Windowssystem32wevtutil.exe
    2009-11-15 19:05:19 —-A—- C:Windowssystem32shdocvw.dll
    2009-11-15 19:05:19 —-A—- C:Windowssystem32mssitlb.dll
    2009-11-15 19:05:19 —-A—- C:Windowssystem32dbgeng.dll
    2009-11-15 19:05:18 —-A—- C:Windowssystem32WsmSvc.dll
    2009-11-15 19:05:18 —-A—- C:Windowssystem32usp10.dll
    2009-11-15 19:05:18 —-A—- C:Windowssystem32swprv.dll
    2009-11-15 19:05:18 —-A—- C:Windowssystem32mmcndmgr.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32WFS.exe
    2009-11-15 19:05:17 —-A—- C:Windowssystem32vds.exe
    2009-11-15 19:05:17 —-A—- C:Windowssystem32schannel.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32netlogon.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32msscb.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32msctfp.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32fdBthProxy.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32evr.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32drvinst.exe
    2009-11-15 19:05:17 —-A—- C:Windowssystem32devmgr.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32DevicePairingProxy.dll
    2009-11-15 19:05:17 —-A—- C:Windowssystem32BFE.DLL
    2009-11-15 19:05:17 —-A—- C:Windowssystem32adsldpc.dll
    2009-11-15 19:05:16 —-A—- C:Windowssystem32WMVSDECD.DLL
    2009-11-15 19:05:16 —-A—- C:Windowssystem32Wldap32.dll
    2009-11-15 19:05:16 —-A—- C:Windowssystem32wcnwiz.dll
    2009-11-15 19:05:15 —-A—- C:Windowssystem32wercon.exe
    2009-11-15 19:05:15 —-A—- C:Windowssystem32services.exe
    2009-11-15 19:05:13 —-A—- C:Windowssystem32comdlg32.dll
    2009-11-15 19:05:12 —-A—- C:Windowssystem32wcncsvc.dll
    2009-11-15 19:05:12 —-A—- C:Windowssystem32mimefilt.dll
    2009-11-15 19:05:12 —-A—- C:Windowssystem32adtschema.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32umpnpmgr.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32taskeng.exe
    2009-11-15 19:05:11 —-A—- C:Windowssystem32rtffilt.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32reg.exe
    2009-11-15 19:05:11 —-A—- C:Windowssystem32mswdat10.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32msjter40.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32msdtcprx.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32msdrm.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32ipsmsnap.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32dnsapi.dll
    2009-11-15 19:05:11 —-A—- C:Windowssystem32certutil.exe
    2009-11-15 19:05:11 —-A—- C:Windowssystem32certcli.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32WMNetMgr.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32w32time.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32rsaenh.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32msshooks.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32msscntrs.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32msihnd.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32IPSECSVC.DLL
    2009-11-15 19:05:10 —-A—- C:Windowssystem32bthserv.dll
    2009-11-15 19:05:10 —-A—- C:Windowssystem32bcrypt.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32TsWpfWrp.exe
    2009-11-15 19:05:09 —-A—- C:Windowssystem32scrptadm.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32netapi32.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32mtxclu.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32msstrc.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32MMDevAPI.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32inetpp.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32inetcomm.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32fundisc.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32dfshim.dll
    2009-11-15 19:05:09 —-A—- C:Windowssystem32cryptsvc.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32wmicmiplugin.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32termsrv.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32shsvcs.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32profsvc.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32msiexec.exe
    2009-11-15 19:05:08 —-A—- C:Windowssystem32mscories.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32imapi.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32hidserv.dll
    2009-11-15 19:05:08 —-A—- C:Windowssystem32dhcpcsvc6.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32wdc.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32spoolsv.exe
    2009-11-15 19:05:07 —-A—- C:Windowssystem32rasmans.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32pnidui.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32icardres.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32iassdo.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32chsbrkr.dll
    2009-11-15 19:05:07 —-A—- C:Windowssystem32autofmt.exe
    2009-11-15 19:05:06 —-A—- C:Windowssystem32wersvc.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32slmgr.vbs
    2009-11-15 19:05:06 —-A—- C:Windowssystem32scrrun.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32PSHED.DLL
    2009-11-15 19:05:06 —-A—- C:Windowssystem32pidgenx.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32pdh.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32dhcpcsvc.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32CertEnrollUI.dll
    2009-11-15 19:05:06 —-A—- C:Windowssystem32azroles.dll
    2009-11-15 19:05:05 —-A—- C:Windowssystem32wmpmde.dll
    2009-11-15 19:05:05 —-A—- C:Windowssystem32winlogon.exe
    2009-11-15 19:05:05 —-A—- C:Windowssystem32SyncCenter.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32SLUINotify.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32sethc.exe
    2009-11-15 19:05:04 —-A—- C:Windowssystem32ncrypt.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32msjetoledb40.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32kd1394.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32comuid.dll
    2009-11-15 19:05:04 —-A—- C:Windowssystem32certmgr.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32wisptis.exe
    2009-11-15 19:05:03 —-A—- C:Windowssystem32untfs.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32taskcomp.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32spp.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32scrobj.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32rtutils.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32iassam.dll
    2009-11-15 19:05:03 —-A—- C:Windowssystem32dwm.exe
    2009-11-15 19:05:03 —-A—- C:Windowssystem32cscui.dll
    2009-11-15 19:05:02 —-A—- C:Windowssystem32winsrv.dll
    2009-11-15 19:05:02 —-A—- C:Windowssystem32printui.dll
    2009-11-15 19:05:02 —-A—- C:Windowssystem32iasnap.dll
    2009-11-15 19:05:02 —-A—- C:Windowssystem32autoconv.exe
    2009-11-15 19:05:02 —-A—- C:Windowssystem32autochk.exe
    2009-11-15 19:05:01 —-A—- C:Windowssystem32wow32.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32userenv.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32osk.exe
    2009-11-15 19:05:01 —-A—- C:Windowssystem32onex.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32mswsock.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32kdcom.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32cscript.exe
    2009-11-15 19:05:01 —-A—- C:Windowssystem32basecsp.dll
    2009-11-15 19:05:01 —-A—- C:Windowssystem32audiodg.exe
    2009-11-15 19:05:00 —-A—- C:Windowssystem32WinSCard.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32winmm.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32WerFaultSecure.exe
    2009-11-15 19:05:00 —-A—- C:Windowssystem32spcmsg.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32RelMon.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32rdpencom.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32offfilt.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32msftedit.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32kdusb.dll
    2009-11-15 19:05:00 —-A—- C:Windowssystem32dnsrslvr.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32wsepno.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32WerFault.exe
    2009-11-15 19:04:59 —-A—- C:Windowssystem32Utilman.exe
    2009-11-15 19:04:59 —-A—- C:Windowssystem32stobject.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32secproc_ssp_isv.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32secproc_ssp.dll
    2009-11-15 19:04:59 —-A—- C:Windowssystem32mfplat.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32wscript.exe
    2009-11-15 19:04:58 —-A—- C:Windowssystem32wiaservc.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32ulib.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32sysclass.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32SndVol.exe
    2009-11-15 19:04:58 —-A—- C:Windowssystem32prnntfy.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32odbccp32.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32msnetobj.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32mscms.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32mcmde.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32iasdatastore.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32dsound.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32diskraid.exe
    2009-11-15 19:04:58 —-A—- C:Windowssystem32apphelp.dll
    2009-11-15 19:04:58 —-A—- C:Windowssystem32adsmsext.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32wscntfy.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32wlangpui.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32rastls.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32rastapi.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32pnpsetup.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32ipsecsnp.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32IPHLPAPI.DLL
    2009-11-15 19:04:57 —-A—- C:Windowssystem32gpapi.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32fdProxy.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32diskpart.exe
    2009-11-15 19:04:57 —-A—- C:Windowssystem32cryptui.dll
    2009-11-15 19:04:57 —-A—- C:Windowssystem32brcpl.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32zipfldr.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32wusa.exe
    2009-11-15 19:04:56 —-A—- C:Windowssystem32wshext.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32wscsvc.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32wpccpl.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32WMVENCOD.DLL
    2009-11-15 19:04:56 —-A—- C:Windowssystem32vdsdyn.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32regsvc.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32rasapi32.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32ntprint.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32netcenter.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32mscorier.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32logman.exe
    2009-11-15 19:04:56 —-A—- C:Windowssystem32iasrad.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32iashlpr.dll
    2009-11-15 19:04:56 —-A—- C:Windowssystem32findstr.exe
    2009-11-15 19:04:55 —-A—- C:Windowssystem32wsnmp32.dll
    2009-11-15 19:04:55 —-A—- C:Windowssystem32wer.dll
    2009-11-15 19:04:55 —-A—- C:Windowssystem32themecpl.dll
    2009-11-15 19:04:55 —-A—- C:Windowssystem32rasdlg.dll
    2009-11-15 19:04:55 —-A—- C:Windowssystem32iassvcs.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32uxsms.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32tsbyuv.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32srvsvc.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32scansetting.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32ntmarta.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32msutb.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32mstlsapi.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32mssprxy.dll
    2009-11-15 19:04:54 —-A—- C:Windowssystem32iasads.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32umrdp.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32slcc.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32powrprof.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32powercpl.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32PerfCenterCPL.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32newdev.exe
    2009-11-15 19:04:53 —-A—- C:Windowssystem32networkmap.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32mstsc.exe
    2009-11-15 19:04:53 —-A—- C:Windowssystem32iasacct.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32fveui.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32connect.dll
    2009-11-15 19:04:53 —-A—- C:Windowssystem32authz.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32usercpl.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32themeui.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32systemcpl.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32sud.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32samlib.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32qdvd.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32pcaui.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32mmci.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32dot3svc.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32brcplsiw.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32autoplay.dll
    2009-11-15 19:04:52 —-A—- C:Windowssystem32accessibilitycpl.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32wpcao.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32wlanpref.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32vdsutil.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32tapisrv.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32scksp.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32scesrv.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32rpchttp.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32regapi.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32psisdecd.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32oleprn.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32msinfo32.exe
    2009-11-15 19:04:51 —-A—- C:Windowssystem32mpr.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32fvecpl.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32feclient.dll
    2009-11-15 19:04:51 —-A—- C:Windowssystem32cscobj.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32wscisvif.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32WindowsUltimateExtrasCPL.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32sdclt.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32rekeywiz.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32qedit.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32pnpui.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32perfdisk.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32ncryptui.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32imm32.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32iaspolcy.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32Faultrep.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32dpapimig.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32dot3msm.dll
    2009-11-15 19:04:50 —-A—- C:Windowssystem32DeviceEject.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32certreq.exe
    2009-11-15 19:04:50 —-A—- C:Windowssystem32AudioSes.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32TSTheme.exe
    2009-11-15 19:04:49 —-A—- C:Windowssystem32tcpmon.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32tcpipcfg.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32spwinsat.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32SmartcardCredentialProvider.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32scecli.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32rasplap.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32rasgcw.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32PnPUnattend.exe
    2009-11-15 19:04:49 —-A—- C:Windowssystem32hdwwiz.exe
    2009-11-15 19:04:49 —-A—- C:Windowssystem32FWPUCLNT.DLL
    2009-11-15 19:04:49 —-A—- C:Windowssystem32fdWSD.dll
    2009-11-15 19:04:49 —-A—- C:Windowssystem32cmmon32.exe
    2009-11-15 19:04:48 —-A—- C:Windowssystem32whealogr.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32srcore.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32SnippingTool.exe
    2009-11-15 19:04:48 —-A—- C:Windowssystem32SCardSvr.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32raschap.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32MSVidCtl.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32fontext.dll
    2009-11-15 19:04:48 —-A—- C:Windowssystem32conime.exe
    2009-11-15 19:04:48 —-A—- C:Windowssystem32cmdial32.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32WMVXENCD.DLL
    2009-11-15 19:04:47 —-A—- C:Windowssystem32wlanui.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32wiaaut.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32shwebsvc.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32shsetup.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32rasppp.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32PnPutil.exe
    2009-11-15 19:04:47 —-A—- C:Windowssystem32oobefldr.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32dsprop.dll
    2009-11-15 19:04:47 —-A—- C:Windowssystem32dimsroam.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32wmdrmsdk.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32rasmontr.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32mscandui.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32modemui.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32dataclen.dll
    2009-11-15 19:04:46 —-A—- C:Windowssystem32chtbrkr.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32WSDMon.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32wmpeffects.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32wlgpclnt.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32tscfgwmi.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32smss.exe
    2009-11-15 19:04:45 —-A—- C:Windowssystem32rdpwsx.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32networkexplorer.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32netplwiz.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32CscMig.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32credui.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32certprop.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32blackbox.dll
    2009-11-15 19:04:45 —-A—- C:Windowssystem32appmgmts.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32wscapi.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32wpcsvc.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32msscp.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32msimtf.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32logagent.exe
    2009-11-15 19:04:44 —-A—- C:Windowssystem32InkEd.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32ifmon.dll
    2009-11-15 19:04:44 —-A—- C:Windowssystem32gpresult.exe
    2009-11-15 19:04:44 —-A—- C:Windowssystem32cipher.exe
    2009-11-15 19:04:43 —-A—- C:Windowssystem32thawbrkr.dll
    2009-11-15 19:04:43 —-A—- C:Windowssystem32softkbd.dll
    2009-11-15 19:04:43 —-A—- C:Windowssystem32sendmail.dll
    2009-11-15 19:04:43 —-A—- C:Windowssystem32msctfui.dll
    2009-11-15 19:04:43 —-A—- C:Windowssystem32MediaMetadataHandler.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32rdpclip.exe
    2009-11-15 19:04:41 —-A—- C:Windowssystem32puiapi.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32olepro32.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32input.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32gpprnext.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32drmmgrtn.dll
    2009-11-15 19:04:41 —-A—- C:Windowssystem32dmsynth.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32wshbth.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32version.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32SLLUA.exe
    2009-11-15 19:04:40 —-A—- C:Windowssystem32rdpendp.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32msjint40.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32msisip.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32MsCtfMonitor.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32mprapi.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32fdSSDP.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32fc.exe
    2009-11-15 19:04:40 —-A—- C:Windowssystem32ExplorerFrame.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32dmusic.dll
    2009-11-15 19:04:40 —-A—- C:Windowssystem32cscapi.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32wsdchngr.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32Storprop.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32SMBHelperClass.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32rasdial.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32rasdiag.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32PrintBrmUi.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32l2nacp.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32ipconfig.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32gpscript.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32ftp.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32fdWCN.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32eappcfg.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32eapp3hst.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32dot3cfg.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32cscdll.dll
    2009-11-15 19:04:39 —-A—- C:Windowssystem32bthudtask.exe
    2009-11-15 19:04:39 —-A—- C:Windowssystem32bthci.dll
    2009-11-15 19:04:38 —-A—- C:Windowssystem32tscupgrd.exe
    2009-11-15 19:04:38 —-A—- C:Windowssystem32slcinst.dll
    2009-11-15 19:04:38 —-A—- C:Windowssystem32nslookup.exe
    2009-11-15 19:04:38 —-A—- C:Windowssystem32networkitemfactory.dll
    2009-11-15 19:04:38 —-A—- C:Windowssystem32CHxReadingStringIME.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32qprocess.exe
    2009-11-15 19:04:37 —-A—- C:Windowssystem32PNPXAssoc.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32ocsetup.exe
    2009-11-15 19:04:37 —-A—- C:Windowssystem32mmcico.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32hbaapi.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32gpscript.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32FwRemoteSvr.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32fdeploy.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32eappgnui.dll
    2009-11-15 19:04:37 —-A—- C:Windowssystem32chgport.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32tscon.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32shadow.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32NcdProp.dll
    2009-11-15 19:04:36 —-A—- C:Windowssystem32logoff.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32iscsilog.dll
    2009-11-15 19:04:36 —-A—- C:Windowssystem32gpupdate.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32csrstub.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32chgusr.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32cbsra.exe
    2009-11-15 19:04:36 —-A—- C:Windowssystem32bitsigd.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32winrnr.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32vdmdbg.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32tskill.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32tsdiscon.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32slwga.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32rwinsta.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32reset.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32query.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32qappsrv.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32odbcconf.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32inetppui.dll
    2009-11-15 19:04:35 —-A—- C:Windowssystem32chglogon.exe
    2009-11-15 19:04:35 —-A—- C:Windowssystem32change.exe
    2009-11-15 19:04:34 —-A—- C:Windowssystem32midimap.dll
    2009-11-15 19:04:32 —-A—- C:Windowssystem32msimsg.dll
    2009-11-15 19:04:32 —-A—- C:Windowssystem32f3ahvoas.dll
    2009-11-15 19:04:06 —-A—- C:Windowssystem32SmiEngine.dll
    2009-11-15 19:03:50 —-A—- C:Windowssystem32wdscore.dll
    2009-11-15 19:03:50 —-A—- C:Windowssystem32PkgMgr.exe
    2009-11-15 19:03:03 —-A—- C:Windowssystem32drvstore.dll
    2009-11-15 19:02:06 —-D—- C:Downloads
    2009-11-15 01:25:26 —-D—- C:UsersСергейAppDataRoamingDownload Master
    2009-11-15 01:24:47 —-D—- C:Program FilesDownload Master
    2009-11-14 17:50:34 —-D—- C:Program FilesМедиаХауз
    2009-11-14 03:01:33 —-A—- C:Windowssystem32netfxperf.dll
    2009-11-13 22:49:07 —-D—- C:UsersСергейAppDataRoamingYaChatData
    2009-11-13 22:03:34 —-D—- C:Program FilesFamily Toolbar
    2009-11-12 20:17:27 —-D—- C:Program Filesintercross
    2009-11-12 17:56:48 —-A—- C:Windowssystem32WSDApi.dll
    2009-11-06 18:00:15 —-A—- C:Windowssystem32wmp.dll
    2009-11-06 18:00:14 —-A—- C:Windowssystem32unregmp2.exe
    2009-11-06 18:00:12 —-A—- C:Windowssystem32wmploc.DLL
    2009-11-06 17:39:26 —-A—- C:Windowssystem32mshtml.dll
    2009-11-06 17:01:07 —-A—- C:Windowssystem32wups2.dll
    2009-11-06 17:01:07 —-A—- C:Windowssystem32wucltux.dll
    2009-11-06 17:01:07 —-A—- C:Windowssystem32wuaueng.dll
    2009-11-06 17:01:07 —-A—- C:Windowssystem32wuauclt.exe
    2009-11-06 17:00:52 —-A—- C:Windowssystem32wups.dll
    2009-11-06 17:00:52 —-A—- C:Windowssystem32wudriver.dll
    2009-11-06 17:00:52 —-A—- C:Windowssystem32wuapi.dll
    2009-11-06 17:00:47 —-A—- C:Windowssystem32wuwebv.dll
    2009-11-06 17:00:47 —-A—- C:Windowssystem32wuapp.exe
    2009-11-05 20:00:26 —-A—- C:Windowssystem32ieframe.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32wininet.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32urlmon.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32occache.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32msfeeds.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32ieui.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32iertutil.dll
    2009-11-05 20:00:25 —-A—- C:Windowssystem32iedkcs32.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32msfeedssync.exe
    2009-11-05 20:00:24 —-A—- C:Windowssystem32msfeedsbs.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32jsproxy.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32ieUnatt.exe
    2009-11-05 20:00:24 —-A—- C:Windowssystem32iesysprep.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32iesetup.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32iernonce.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32iepeers.dll
    2009-11-05 20:00:24 —-A—- C:Windowssystem32ie4uinit.exe
    2009-10-31 18:19:11 —-D—- C:Program FilesQIP
    2009-10-30 20:52:28 —-D—- C:WindowsProfiles
    2009-10-30 20:52:27 —-D—- C:Windowssystem32Adobe
    2009-10-30 20:52:27 —-D—- C:UsersСергейAppDataRoamingInterTrust
    2009-10-30 20:51:53 —-A—- C:Windowsphotoimpression.ini
    2009-10-30 20:51:52 —-D—- C:My Documents
    2009-10-30 20:51:52 —-A—- C:Windowssystem32pcdlib32.dll
    2009-10-30 20:51:37 —-D—- C:Program FilesArcSoft
    2009-10-30 20:50:15 —-D—- C:Program FilesABBYY FineReader 4.0 Sprint
    2009-10-30 20:49:18 —-D—- C:Program FilesEscntl
    2009-10-28 18:27:19 —-D—- C:ProgramDataXerox
    2009-10-28 18:22:09 —-RA—- C:Windowssystem32WNASPI32.DLL
    2009-10-28 18:22:09 —-RA—- C:WindowsESUSD.DLL
    2009-10-28 18:22:09 —-R—- C:WindowsESUSDX.DLL
    2009-10-28 18:22:08 —-D—- C:Windowsusbbin

    ======List of files/folders modified in the last 1 months======

    2009-11-25 18:07:54 —-D—- C:WindowsTemp
    2009-11-25 18:07:43 —-D—- C:WindowsPrefetch
    2009-11-25 17:43:21 —-D—- C:Windowssystem32catroot
    2009-11-25 17:43:19 —-D—- C:Windowswinsxs
    2009-11-25 17:38:39 —-D—- C:Windowssystem32catroot2
    2009-11-25 15:16:10 —-SHD—- C:System Volume Information
    2009-11-25 14:19:10 —-D—- C:WindowsTasks
    2009-11-25 14:11:01 —-D—- C:WindowsSystem32
    2009-11-25 14:11:01 —-D—- C:Windowsinf
    2009-11-25 14:11:01 —-A—- C:Windowssystem32PerfStringBackup.INI
    2009-11-24 11:20:31 —-D—- C:Program FilesMozilla Firefox
    2009-11-24 11:18:58 —-SHD—- C:WindowsInstaller
    2009-11-24 11:17:13 —-D—- C:Windowsehome
    2009-11-24 11:17:07 —-D—- C:Windows
    2009-11-21 17:41:47 —-RD—- C:Program Files
    2009-11-21 17:41:47 —-D—- C:WindowsHelp
    2009-11-21 17:37:28 —-D—- C:Program FilesWindows Media Player
    2009-11-20 17:38:18 —-D—- C:UsersСергейAppDataRoamingGetRight Pro
    2009-11-20 15:05:30 —-D—- C:Program FilesCommon FilesSymantec Shared
    2009-11-19 10:44:37 —-D—- C:Program FilesCommon FilesWise Installation Wizard
    2009-11-19 10:38:07 —-SD—- C:ProgramDataMicrosoft
    2009-11-19 09:44:08 —-D—- C:Program FilesGoogle
    2009-11-18 22:57:41 —-D—- C:Windowssystem32drivers
    2009-11-18 22:56:33 —-HD—- C:ProgramData
    2009-11-18 22:03:20 —-D—- C:WindowsMinidump
    2009-11-17 22:55:03 —-D—- C:Windowsrescache
    2009-11-17 22:39:54 —-D—- C:Windowssystem32Tasks
    2009-11-17 22:37:35 —-D—- C:Windowssystem32wbem
    2009-11-17 22:37:35 —-D—- C:Windowssystem32ru-RU
    2009-11-17 22:37:34 —-D—- C:Windowssystem32zh-TW
    2009-11-17 22:37:34 —-D—- C:Windowssystem32zh-HK
    2009-11-17 22:37:34 —-D—- C:Windowssystem32zh-CN
    2009-11-17 22:37:34 —-D—- C:Windowssystem32uk-UA
    2009-11-17 22:37:34 —-D—- C:Windowssystem32tr-TR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32th-TH
    2009-11-17 22:37:34 —-D—- C:Windowssystem32sv-SE
    2009-11-17 22:37:34 —-D—- C:Windowssystem32sr-Latn-CS
    2009-11-17 22:37:34 —-D—- C:Windowssystem32sl-SI
    2009-11-17 22:37:34 —-D—- C:Windowssystem32sk-SK
    2009-11-17 22:37:34 —-D—- C:Windowssystem32ro-RO
    2009-11-17 22:37:34 —-D—- C:Windowssystem32pt-PT
    2009-11-17 22:37:34 —-D—- C:Windowssystem32pt-BR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32pl-PL
    2009-11-17 22:37:34 —-D—- C:Windowssystem32nl-NL
    2009-11-17 22:37:34 —-D—- C:Windowssystem32nb-NO
    2009-11-17 22:37:34 —-D—- C:Windowssystem32lv-LV
    2009-11-17 22:37:34 —-D—- C:Windowssystem32lt-LT
    2009-11-17 22:37:34 —-D—- C:Windowssystem32ko-KR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32ja-JP
    2009-11-17 22:37:34 —-D—- C:Windowssystem32it-IT
    2009-11-17 22:37:34 —-D—- C:Windowssystem32hu-HU
    2009-11-17 22:37:34 —-D—- C:Windowssystem32hr-HR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32he-IL
    2009-11-17 22:37:34 —-D—- C:Windowssystem32fr-FR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32fi-FI
    2009-11-17 22:37:34 —-D—- C:Windowssystem32et-EE
    2009-11-17 22:37:34 —-D—- C:Windowssystem32es-ES
    2009-11-17 22:37:34 —-D—- C:Windowssystem32en-US
    2009-11-17 22:37:34 —-D—- C:Windowssystem32el-GR
    2009-11-17 22:37:34 —-D—- C:Windowssystem32de-DE
    2009-11-17 22:37:34 —-D—- C:Windowssystem32da-DK
    2009-11-17 22:37:34 —-D—- C:Windowssystem32cs-CZ
    2009-11-17 22:37:34 —-D—- C:Windowssystem32bg-BG
    2009-11-17 22:37:34 —-D—- C:Windowssystem32ar-SA
    2009-11-17 22:12:15 —-D—- C:Program FilesWinamp
    2009-11-17 22:06:44 —-D—- C:Program FilesCommon Files
    2009-11-17 21:23:40 —-D—- C:Windowssystem32appmgmt
    2009-11-17 20:49:00 —-D—- C:Temp
    2009-11-17 18:14:00 —-D—- C:Program FilesCommon Filesmicrosoft shared
    2009-11-17 12:55:34 —-D—- C:Program FilesCommon FilesAdobe
    2009-11-17 12:55:33 —-D—- C:ProgramDataAdobe
    2009-11-17 12:55:26 —-D—- C:Program FilesAdobe
    2009-11-17 10:48:41 —-D—- C:WindowsMicrosoft.NET
    2009-11-17 10:48:36 —-RSD—- C:Windowsassembly
    2009-11-17 09:40:18 —-D—- C:ProgramDataMeridian93
    2009-11-17 09:39:49 —-D—- C:UsersСергейAppDataRoamingMeridian93
    2009-11-16 16:03:38 —-SD—- C:UsersСергейAppDataRoamingMicrosoft
    2009-11-16 13:49:52 —-D—- C:UsersСергейAppDataRoamingNero
    2009-11-15 22:46:30 —-D—- C:ProgramDataNVIDIA
    2009-11-15 22:45:59 —-SHD—- C:Boot
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Sidebar
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Photo Gallery
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Mail
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Journal
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Collaboration
    2009-11-15 22:41:21 —-D—- C:Program FilesWindows Calendar
    2009-11-15 22:41:21 —-D—- C:Program FilesMovie Maker
    2009-11-15 22:41:21 —-D—- C:Program FilesInternet Explorer
    2009-11-15 22:41:21 —-D—- C:Program FilesCommon FilesSystem
    2009-11-15 22:41:20 —-D—- C:Windowsservicing
    2009-11-15 22:41:20 —-D—- C:Program FilesWindows Defender
    2009-11-15 22:41:19 —-D—- C:Windowssystem32XPSViewer
    2009-11-15 22:41:19 —-D—- C:WindowsPolicyDefinitions
    2009-11-15 22:41:19 —-D—- C:WindowsIME
    2009-11-15 22:41:17 —-D—- C:Windowssystem32oobe
    2009-11-15 22:41:17 —-D—- C:Windowssystem32migration
    2009-11-15 22:41:16 —-D—- C:Windowssystem32SLUI
    2009-11-15 22:41:16 —-D—- C:Windowssystem32setup
    2009-11-15 22:41:16 —-D—- C:Windowssystem32ru
    2009-11-15 22:41:16 —-D—- C:Windowssystem32manifeststore
    2009-11-15 22:41:16 —-D—- C:Windowssystem32AdvancedInstallers
    2009-11-15 22:41:15 —-D—- C:Windowssystem32migwiz
    2009-11-15 22:41:13 —-RSD—- C:WindowsFonts
    2009-11-15 22:41:13 —-D—- C:WindowsAppPatch
    2009-11-15 22:41:08 —-D—- C:Windowssystem32Boot
    2009-11-15 10:09:55 —-D—- C:Windowssystem32config
    2009-11-15 10:09:04 —-D—- C:WindowsWindowsMobile
    2009-11-15 10:09:03 —-D—- C:Windowssystem32spool
    2009-11-15 10:09:03 —-D—- C:Windowssystem32Msdtc
    2009-11-15 10:09:03 —-D—- C:Windowssystem32CodeIntegrity
    2009-11-15 10:08:54 —-D—- C:ProgramDataFLEXnet
    2009-11-15 10:08:26 —-D—- C:Windowsregistration
    2009-11-15 10:08:23 —-D—- C:Windowssystem32WCN
    2009-11-15 10:01:42 —-D—- C:Windowssystem32LogFiles
    2009-11-14 17:50:32 —-HD—- C:Program FilesInstallShield Installation Information
    2009-11-13 22:48:34 —-D—- C:UsersСергейAppDataRoamingYandex
    2009-11-13 22:48:33 —-D—- C:Program FilesYandex
    2009-11-13 22:05:27 —-A—- C:WindowsMyHeritage.INI
    2009-11-13 22:04:17 —-D—- C:ProgramDataMyHeritage
    2009-11-13 22:03:46 —-D—- C:UsersСергейAppDataRoamingMyHeritage
    2009-11-07 19:32:09 —-D—- C:Windowssystem32WDI
    2009-11-05 21:36:21 —-A—- C:Windowssystem32mrt.exe
    2009-11-02 20:42:06 —-N—- C:Windowssystem32MpSigStub.exe
    2009-10-30 20:49:18 —-D—- C:Windowstwain_32
    2009-10-30 20:35:23 —-D—- C:Program FilesABBYY FineReader 8.0 Professional Edition
    2009-10-26 12:22:08 —-D—- C:Program FilesShareman

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 appdrv01;Application Driver (01); C:WindowsSystem32Driversappdrv01.sys [2009-05-17 3100776]
    R1 aswRdr;aswRdr; C:Windowssystem32driversaswRdr.sys [2009-11-05 23248]
    R1 aswSP;aswSP; C:Windowssystem32driversaswSP.sys [2009-11-18 149456]
    R1 aswTdi;avast! Network Shield Support; C:Windowssystem32driversaswTdi.sys [2009-11-18 46544]
    R1 CSC;Offline Files Driver; C:Windowssystem32driverscsc.sys [2009-04-11 351744]
    R1 prodrv06;StarForce Protection Environment Driver v6; C:WindowsSystem32driversprodrv06.sys [2004-01-26 52224]
    R1 StarOpen;StarOpen; C:Windowssystem32driversStarOpen.sys [2006-07-24 5632]
    R2 aswFsBlk;aswFsBlk; C:Windowssystem32driversaswFsBlk.sys [2009-11-05 19024]
    R2 aswMonFlt;aswMonFlt; ??C:Windowssystem32driversaswMonFlt.sys [2009-11-05 51792]
    R2 tifsfilter;Acronis True Image FS Filter; C:Windowssystem32DRIVERStifsfilt.sys [2009-04-21 44384]
    R3 MarvinBus;Pinnacle Marvin Bus; C:Windowssystem32DRIVERSMarvinBus.sys [2005-09-23 171520]
    R3 MTsensor;ATK0110 ACPI UTILITY; C:Windowssystem32DRIVERSASACPI.sys [2006-10-16 7680]
    R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:Windowssystem32DRIVERSnvmfdx32.sys [2008-03-25 1048480]
    R3 nvlddmkm;nvlddmkm; C:Windowssystem32DRIVERSnvlddmkm.sys [2008-10-21 7380896]
    R3 pcouffin;VSO Software pcouffin; C:WindowsSystem32Driverspcouffin.sys [2009-05-18 47360]
    R3 StillCam;Драйвер цифровой фотокамеры для посл. порта; C:Windowssystem32DRIVERSserscan.sys [2008-01-21 9216]
    R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:Windowssystem32driversviahduaa.sys [2008-07-25 870400]
    R3 VST_DPV;VST_DPV; C:Windowssystem32DRIVERSVSTDPV3.SYS [2008-01-21 987648]
    R3 VSTHWBS2;VSTHWBS2; C:Windowssystem32DRIVERSVSTBS23.SYS [2008-01-21 251904]
    R3 winachsf;winachsf; C:Windowssystem32DRIVERSVSTCNXT3.SYS [2008-01-21 654336]
    R3 winusb;WinUSB Service; C:Windowssystem32DRIVERSwinusb.sys [2009-04-11 31616]
    R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32DRIVERSwmiacpi.sys [2008-01-21 11264]
    S2 Sentinel;Sentinel; C:WindowsSystem32DriversSENTINEL.SYS [1997-06-27 64512]
    S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
    S3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2006-11-02 235520]
    S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
    S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:Windowssystem32DRIVERSse59bus.sys [2006-09-05 61536]
    S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:Windowssystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
    S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:Windowssystem32DRIVERSse59mdm.sys [2006-09-05 97088]
    S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:Windowssystem32DRIVERSss_bus.sys [2007-05-02 83592]
    S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:Windowssystem32DRIVERSss_mdfl.sys [2007-05-02 15112]
    S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:Windowssystem32DRIVERSss_mdm.sys [2007-05-02 109704]
    S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:Windowssystem32DRIVERSsscdbus.sys [2007-07-03 80552]
    S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:Windowssystem32DRIVERSsscdmdfl.sys [2007-07-03 11944]
    S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:Windowssystem32DRIVERSsscdmdm.sys [2007-07-03 106792]
    S3 usbscan;Драйвер USB-сканера; C:Windowssystem32DRIVERSusbscan.sys [2008-01-21 35328]
    S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AcrSch2Svc;Acronis Scheduler2 Service; C:Program FilesCommon FilesAcronisSchedule2schedul2.exe [2007-11-20 427288]
    R2 Automatic LiveUpdate Scheduler;Automatic LiveUpdate Scheduler; C:Program FilesSymantecLiveUpdateAluSchedulerSvc.exe [2008-02-09 238968]
    R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2009-11-05 40384]
    R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:Program FilesBonjourmDNSResponder.exe [2006-02-28 229376]
    R2 CscService;@%systemroot%system32cscsvc.dll,-200; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    R2 nvsvc;NVIDIA Display Driver Service; C:Windowssystem32nvvsvc.exe [2008-10-21 203296]
    R2 RapiMgr;@%windir%WindowsMobilerapimgr.dll,-104; C:Windowssystem32svchost.exe [2008-01-21 21504]
    R2 TryAndDecideService;Acronis Try And Decide Service; C:Program FilesCommon FilesAcronisFomatikTrueImageTryStartService.exe [2007-11-20 495600]
    R2 WcesComm;@%windir%WindowsMobilewcescomm.dll,-40079; C:Windowssystem32svchost.exe [2008-01-21 21504]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2009-11-05 40384]
    R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2009-11-05 40384]
    R3 NMIndexingService;NMIndexingService; C:Program FilesCommon FilesAheadLibNMIndexingService.exe [2007-05-16 271920]
    S2 appdrvrem01;Application Driver Auto Removal Service (01); C:WindowsSystem32appdrvrem01.exe [2009-05-17 304528]
    S2 gupdate;Google Update Service (gupdate); C:Program FilesGoogleUpdateGoogleUpdate.exe [2009-09-14 133104]
    S2 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-09-13 194032]
    S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:Program FilesCommon FilesNeroNero BackItUp 4NBService.exe []
    S3 AppMgmt;@appmgmts.dll,-3250; C:Windowssystem32svchost.exe [2008-01-21 21504]
    S3 aspnet_state;Служба состояний ASP.NET; C:WindowsMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2009-03-30 31048]
    S3 Fax;@%systemroot%system32fxsresm.dll,-118; C:Windowssystem32fxssvc.exe [2008-01-21 523776]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2009-04-21 654848]
    S3 FontCache;@%systemroot%system32FntCache.dll,-100; C:Windowssystem32svchost.exe [2008-01-21 21504]
    S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]
    S3 LiveUpdate;LiveUpdate; C:Program FilesSymantecLiveUpdateLuComServer_3_4.EXE [2008-02-09 3220856]
    S3 NBService;NBService; C:Program FilesNeroNero 7Nero BackItUpNBService.exe [2007-04-13 792112]
    S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
    S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
    S3 UmRdpService;@%SystemRoot%system32umrdp.dll,-1000; C:WindowsSystem32svchost.exe [2008-01-21 21504]
    S3 wbengine;@%systemroot%system32wbengine.exe,-104; C:Windowssystem32wbengine.exe [2009-04-11 918528]

    EOF

    27 ноября, 2009 в 5:32 пп #26996
    Admin
    Keymaster
    • Темы:40
    • Сообщений:5676
    • ☆☆☆☆☆

    В реестре остались хвосты.
    Скачайте OTM by OldTimer кликнув по этой ссылке.
    Запустите OTM и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.

    :reg
    
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{88888888-8888-8888-8888-888888888888}]
    
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9A727FBF-480A-5BE7-11F6-4AFB9E290E21}]
    

    
:Commands
    
[start explorer]
    
[Reboot]

    Проверьте вставленный скрипт, если слева перед директивами появились пробелы, то удалите их, скрипт должен выглядеть так же как в сообщении. Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
    По-завершении работы программы должен будет показан лог. Если лог не будет показан, то его можно найти в папке C:_OTMMovedFiles.

    Вставьте в ваше ответное сообщение содержимое этого лога. И приложите свежий RSIT лог.

    мои беды идут от неро7 я его скачал недавно

    Смотря откуда скачали.

  • Автор
    Сообщения
Просмотр 6 сообщений - с 1 по 6 (из 6 всего)
  • Для ответа в этой теме необходимо авторизоваться.
Войти

Добро пожаловать

На нашем сайте размещены инструкции и программы, которые помогут вам абсолютно бесплатно и самостоятельно удалить навязчивую рекламу, вирусы и трояны.

Поиск

Последние темы

  • Странность в Malwebytes опубликовано Artem225
    6 years, 1 month назад
  • SUSPICIOUS.FakedMBR.1 что делать, помогите!!! опубликовано White
    6 years, 2 months назад
  • Помогите пожалуйста вирус замучил. опубликовано dimazons1233211
    6 years, 4 months назад
  • Замучила реклама опубликовано Данила Беспятов
    6 years, 5 months назад
  • Замучила реклама опубликовано Марк
    6 years, 2 months назад
  • Вирус S1.video.ru.net опубликовано ludovik
    6 years, 7 months назад
  • Чертов Safe Finder!!!! опубликовано kosta savo
    6 years, 4 months назад
  • ESET блокирует неизвестный сайт , вход на который не осуществлялся. опубликовано trollhamaren
    6 years, 8 months назад

СПАЙВАРЕ РУ

  • О Спайваре Ру
  • Контакты
  • Реклама на сайте
  • Политика конфиденциальности
  • Правила использования

Нужна помощь?

Задайте свой вопрос прямо сейчас кликнув по следующей ссылке Задать вопрос.

Или обратитесь на наш форум, где команда Spyware-ru поможет вам. Узнайте, как попросить о помощи здесь.

Ссылки

  • Инструкции
  • Скачать программы
  • Помощь в удалении вирусов
  • Как вылечить компьютер
Copyright © 2008 - 2024 Spyware-RU.com (en)