SPYWARE-RU.COM

Созданные ответы форума

Просмотр 1 сообщения - с 1 по 1 (всего 1)

Автор

Сообщения
13 октября, 2009 в 6:15 пп в ответ на: Порно-баннер на рабочем столе #26349
Bang992
Participant
- Темы:1
- Сообщений:2
Logfile of random’s system information tool 1.06 (written by random/random)
Run by A.C.A.B at 2009-10-13 21:13:58
Microsoft Windows XP Professional Service Pack 3
System drive C: has 13 GB (41%) free of 31 GB
Total RAM: 2559 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:14:01, on 13.10.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:Program FilesESETESET NOD32 Antivirusekrn.exe
C:WINDOWSsystem32PnkBstrA.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.exe
C:WINDOWSSOUNDMAN.EXE
C:Program FilesESETESET NOD32 Antivirusegui.exe
C:Program FilesATI TechnologiesATI.ACECore-Staticccc.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Program Files2IPStartGuardStartGuard.EXE
C:Documents and SettingsA.C.A.BРабочий столRSIT.exe
C:Program Filestrend microA.C.A.B.exe

R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page =
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4D91-8333-CF10577473F7} — (no file)
O4 — HKLM..Run: [StartCCC] «C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe» MSRun
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [egui] «C:Program FilesESETESET NOD32 Antivirusegui.exe» /hide /waitservice
O4 — HKLM..Run: [adGuard] C:Program FilesadGuardadGuard.exe
O4 — HKCU..Run: [AlcoholAutomount] «C:Program FilesAlcohol SoftAlcohol 120axcmd.exe» /automount
O4 — HKCU..Run: [ccleaner] «C:Program FilesCCleanerCCleaner.exe» /AUTO
O4 — HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Global Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOffice10OSA.EXE
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O17 — HKLMSystemCCSServicesTcpip..{52E199AB-925C-45E9-A20B-B7D725FEA204}: NameServer = 193.200.65.1
O23 — Service: Ati HotKey Poller — ATI Technologies Inc. — C:WINDOWSsystem32Ati2evxx.exe
O23 — Service: ATI Smart — Unknown owner — C:WINDOWSsystem32ati2sgag.exe
O23 — Service: ESET HTTP Server (EhttpSrv) — ESET — C:Program FilesESETESET NOD32 AntivirusEHttpSrv.exe
O23 — Service: ESET Service (ekrn) — ESET — C:Program FilesESETESET NOD32 Antivirusekrn.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: PnkBstrA — Unknown owner — C:WINDOWSsystem32PnkBstrA.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) — CACE Technologies — C:Program FilesWinPcaprpcapd.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe

—
End of file — 4867 bytes

======Scheduled tasks folder======

C:WINDOWStasksWGASetup.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4D91-8333-CF10577473F7}]
&Google

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«StartCCC»=C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe [2009-07-21 61440]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2009-10-03 577536]
«egui»=C:Program FilesESETESET NOD32 Antivirusegui.exe [2009-03-19 2029640]
«adGuard»=C:Program FilesadGuardadGuard.exe []

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«AlcoholAutomount»=C:Program FilesAlcohol SoftAlcohol 120axcmd.exe [2009-04-24 203928]
«ccleaner»=C:Program FilesCCleanerCCleaner.exe [2009-09-02 1682744]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2008-04-15 15360]

C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
Microsoft Office.lnk — C:Program FilesMicrosoft OfficeOffice10OSA.EXE

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyAtiExtEvent]
C:WINDOWSsystem32Ati2evxx.dll [2009-07-21 155648]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=323
«NoDriveAutoRun»=67108863
«NoDrives»=0

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=
«NoDriveTypeAutoRun»=
«NoDriveAutoRun»=
«NoDrives»=

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«C:WINDOWSsystem32PnkBstrA.exe»=»C:WINDOWSsystem32PnkBstrA.exe:*:Enabled:PnkBstrA»
«C:WINDOWSsystem32PnkBstrB.exe»=»C:WINDOWSsystem32PnkBstrB.exe:*:Enabled:PnkBstrB»
«C:Program FilesActivisionCall of Duty 4 — Modern Warfareiw3mp.exe»=»C:Program FilesActivisionCall of Duty 4 — Modern Warfareiw3mp.exe:*:Enabled:Call of Duty(R) 4 — Modern Warfare(TM) «
«C:WINDOWSNetwork Diagnosticxpnetdiag.exe»=»C:WINDOWSNetwork Diagnosticxpnetdiag.exe:*:Disabled:@xpsp3res.dll,-20000»
«C:Program FilesGarenaGarena.exe»=»C:Program FilesGarenaGarena.exe:*:Enabled:Garena»
«E:S.T.A.L.K.E.RbinXR_3DA.exe»=»E:S.T.A.L.K.E.RbinXR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. (CLI)»
«E:S.T.A.L.K.E.RbindedicatedXR_3DA.exe»=»E:S.T.A.L.K.E.RbindedicatedXR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. (SRV)»
«C:Program FilesadGuardadGuard.exe»=»C:Program FilesadGuardadGuard.exe:*:Enabled: Banner Advertising Blocker»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{55116f93-b0b5-11de-8da3-00138f27a50c}]
shellAutoRuncommand — G:setuprsrcAutorun.exe
shelldinstallcommand — G:Directxdxsetup.exe

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{55116f94-b0b5-11de-8da3-00138f27a50c}]
shellAutoRuncommand — H:setup.exe

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{7f8657f6-b813-11de-8db8-00138f27a50c}]
shellAutoRuncommand — I:Autorun.exe

======List of files/folders created in the last 1 months======

2009-10-13 21:04:44 —-D—- C:Program Filestrend micro
2009-10-13 21:04:43 —-D—- C:rsit
2009-10-13 20:54:48 —-D—- C:Program Files2IPStartGuard
2009-10-13 20:32:46 —-D—- C:Documents and SettingsA.C.A.BApplication DataLeadertech
2009-10-13 20:23:18 —-D—- C:WINDOWSLastGood
2009-10-13 20:14:51 —-SHD—- C:RECYCLER
2009-10-13 20:05:39 —-D—- C:WINDOWSsystem32appmgmt
2009-10-13 19:18:00 —-A—- C:ComboFix.txt
2009-10-13 19:07:38 —-A—- C:WINDOWSNIRCMD.exe
2009-10-13 19:07:33 —-A—- C:WINDOWSPEV.exe
2009-10-13 19:07:32 —-A—- C:WINDOWSzip.exe
2009-10-13 19:07:32 —-A—- C:WINDOWSSWREG.exe
2009-10-13 19:07:32 —-A—- C:WINDOWSsed.exe
2009-10-13 19:07:32 —-A—- C:WINDOWSgrep.exe
2009-10-13 19:07:31 —-A—- C:WINDOWSSWXCACLS.exe
2009-10-13 19:07:31 —-A—- C:WINDOWSSWSC.exe
2009-10-13 19:07:22 —-D—- C:WINDOWSERDNT
2009-10-13 19:06:15 —-D—- C:Qoobox
2009-10-13 16:31:11 —-D—- C:Program FilesGSC World Publishing
2009-10-10 12:52:10 —-D—- C:Program FilesGarena
2009-10-10 12:51:41 —-D—- C:Documents and SettingsA.C.A.BApplication DataInstallShield
2009-10-09 19:56:38 —-D—- C:Program FilesDota Temple
2009-10-09 13:09:53 —-D—- C:Documents and SettingsA.C.A.BApplication DataMozilla
2009-10-08 19:32:15 —-A—- C:WINDOWSsystem32D3DX81ab.dll
2009-10-08 19:31:53 —-D—- C:Program FilesWinPcap
2009-10-07 19:24:02 —-D—- C:Documents and SettingsA.C.A.BApplication DataQIP
2009-10-06 15:29:44 —-D—- C:Program FilesCCleaner
2009-10-06 15:09:59 —-D—- C:WINDOWSie8updates
2009-10-06 15:08:05 —-D—- C:WINDOWSWBEM
2009-10-06 15:02:52 —-HDC—- C:WINDOWSie8
2009-10-06 15:01:05 —-A—- C:WINDOWSsystem32MRT.exe
2009-10-05 08:25:26 —-D—- C:WINDOWSsystem32KB905474
2009-10-04 20:07:57 —-D—- C:Documents and SettingsA.C.A.BApplication DataMedia Player Classic
2009-10-04 16:16:26 —-D—- C:Program FilesAdobe
2009-10-04 16:11:43 —-D—- C:Program FilesGoogle
2009-10-04 13:06:04 —-A—- C:WINDOWSsystem32h323log.txt
2009-10-04 13:02:44 —-A—- C:WINDOWSsystem32usbui.dll
2009-10-04 13:01:36 —-SHD—- C:WINDOWSInstaller
2009-10-04 13:01:36 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-10-04 13:01:35 —-D—- C:Program FilesCommon FilesODBC
2009-10-04 13:01:35 —-A—- C:WINDOWSODBCINST.INI
2009-10-04 13:01:32 —-D—- C:Program FilesCommon FilesSpeechEngines
2009-10-04 13:01:31 —-RD—- C:Program Files
2009-10-04 13:01:31 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2009-10-04 13:01:31 —-D—- C:Program FilesCommon Files
2009-10-04 13:01:27 —-RA—- C:WINDOWSsystem32kbdtuq.dll
2009-10-04 13:01:27 —-RA—- C:WINDOWSsystem32kbdtuf.dll
2009-10-04 13:01:27 —-RA—- C:WINDOWSsystem32kbdazel.dll
2009-10-04 13:01:26 —-RA—- C:WINDOWSsystem32kbdhept.dll
2009-10-04 13:01:26 —-RA—- C:WINDOWSsystem32kbdhela3.dll
2009-10-04 13:01:26 —-RA—- C:WINDOWSsystem32kbdhela2.dll
2009-10-04 13:01:26 —-RA—- C:WINDOWSsystem32kbdhe319.dll
2009-10-04 13:01:26 —-RA—- C:WINDOWSsystem32kbdhe220.dll
2009-10-04 13:01:26 —-RA—- C:WINDOWSsystem32kbdhe.dll
2009-10-04 13:01:26 —-RA—- C:WINDOWSsystem32kbdgkl.dll
2009-10-04 13:01:24 —-RA—- C:WINDOWSsystem32kbdlv1.dll
2009-10-04 13:01:24 —-RA—- C:WINDOWSsystem32kbdlv.dll
2009-10-04 13:01:24 —-RA—- C:WINDOWSsystem32kbdlt1.dll
2009-10-04 13:01:24 —-RA—- C:WINDOWSsystem32kbdlt.dll
2009-10-04 13:01:24 —-RA—- C:WINDOWSsystem32kbdest.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdycl.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdsl1.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdsl.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdro.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdpl1.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdpl.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdhu1.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdhu.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdcz2.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdcz1.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdcz.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32kbdcr.dll
2009-10-04 13:01:22 —-RA—- C:WINDOWSsystem32KBDAL.DLL
2009-10-04 13:01:19 —-A—- C:WINDOWSsystem32kbdmon.dll
2009-10-04 13:01:19 —-A—- C:WINDOWSsystem32kbdkyr.dll
2009-10-04 13:01:18 —-A—- C:WINDOWSsystem32kbdycc.dll
2009-10-04 13:01:18 —-A—- C:WINDOWSsystem32kbduzb.dll
2009-10-04 13:01:18 —-A—- C:WINDOWSsystem32kbdur.dll
2009-10-04 13:01:18 —-A—- C:WINDOWSsystem32kbdtat.dll
2009-10-04 13:01:18 —-A—- C:WINDOWSsystem32kbdkaz.dll
2009-10-04 13:01:18 —-A—- C:WINDOWSsystem32kbdbu.dll
2009-10-04 13:01:18 —-A—- C:WINDOWSsystem32kbdblr.dll
2009-10-04 13:01:18 —-A—- C:WINDOWSsystem32kbdaze.dll
2009-10-04 13:01:17 —-A—- C:WINDOWSsystem32spxcoins.dll
2009-10-04 13:01:17 —-A—- C:WINDOWSsystem32irclass.dll
2009-10-04 13:01:17 —-A—- C:WINDOWSsystem32EqnClass.Dll
2009-10-04 13:01:17 —-A—- C:WINDOWSsystem32dgsetup.dll
2009-10-04 13:01:17 —-A—- C:WINDOWSsystem32dgrpsetu.dll
2009-10-04 13:01:15 —-N—- C:WINDOWSsystem32CONFIG.TMP
2009-10-04 13:01:15 —-A—- C:WINDOWSTASKMAN.EXE
2009-10-04 13:01:14 —-A—- C:WINDOWSsystem32batt.dll
2009-10-04 13:01:14 —-A—- C:WINDOWSNOTEPAD.EXE
2009-10-04 13:01:13 —-A—- C:WINDOWSsystem32storprop.dll
2009-10-04 13:01:06 —-ASH—- C:Documents and SettingsAll UsersApplication Datadesktop.ini
2009-10-04 12:59:23 —-RA—- C:WINDOWSSET8.tmp
2009-10-04 12:59:21 —-RA—- C:WINDOWSSET4.tmp
2009-10-04 12:59:20 —-RA—- C:WINDOWSSET3.tmp
2009-10-04 12:59:14 —-D—- C:WINDOWSsystem32CatRoot2
2009-10-04 12:59:14 —-D—- C:WINDOWSsystem32CatRoot
2009-10-04 12:59:09 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2009-10-04 12:58:47 —-SHD—- C:System Volume Information
2009-10-04 12:58:47 —-D—- C:Documents and Settings
2009-10-04 12:58:01 —-SH—- C:boot.ini
2009-10-04 12:52:06 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-10-04 12:52:06 —-RSD—- C:WINDOWSFonts
2009-10-04 12:52:06 —-RD—- C:WINDOWSWeb
2009-10-04 12:52:06 —-HD—- C:WINDOWSinf
2009-10-04 12:52:06 —-D—- C:WINDOWSWinSxS
2009-10-04 12:52:06 —-D—- C:WINDOWStwain_32
2009-10-04 12:52:06 —-D—- C:WINDOWSTemp
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32wins
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32wbem
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32usmt
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32spool
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32ShellExt
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32Setup
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32ru-ru
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32ru
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32ras
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32oobe
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32npp
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32mui
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32inetsrv
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32IME
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32icsxml
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32ias
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32export
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32drivers
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32dhcp
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32config
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem323com_dmi
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem323076
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem322052
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321054
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321049
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321042
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321041
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321037
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321033
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321031
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321028
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem321025
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem32
2009-10-04 12:52:06 —-D—- C:WINDOWSsystem
2009-10-04 12:52:06 —-D—- C:WINDOWSsecurity
2009-10-04 12:52:06 —-D—- C:WINDOWSResources
2009-10-04 12:52:06 —-D—- C:WINDOWSrepair
2009-10-04 12:52:06 —-D—- C:WINDOWSProvisioning
2009-10-04 12:52:06 —-D—- C:WINDOWSPeerNet
2009-10-04 12:52:06 —-D—- C:WINDOWSpchealth
2009-10-04 12:52:06 —-D—- C:WINDOWSNetwork Diagnostic
2009-10-04 12:52:06 —-D—- C:WINDOWSmui
2009-10-04 12:52:06 —-D—- C:WINDOWSmsapps
2009-10-04 12:52:06 —-D—- C:WINDOWSmsagent
2009-10-04 12:52:06 —-D—- C:WINDOWSMedia
2009-10-04 12:52:06 —-D—- C:WINDOWSL2Schemas
2009-10-04 12:52:06 —-D—- C:WINDOWSjava
2009-10-04 12:52:06 —-D—- C:WINDOWSime
2009-10-04 12:52:06 —-D—- C:WINDOWSHelp
2009-10-04 12:52:06 —-D—- C:WINDOWSehome
2009-10-04 12:52:06 —-D—- C:WINDOWSDriver Cache
2009-10-04 12:52:06 —-D—- C:WINDOWSDebug
2009-10-04 12:52:06 —-D—- C:WINDOWSCursors
2009-10-04 12:52:06 —-D—- C:WINDOWSConnection Wizard
2009-10-04 12:52:06 —-D—- C:WINDOWSConfig
2009-10-04 12:52:06 —-D—- C:WINDOWSAppPatch
2009-10-04 12:52:06 —-D—- C:WINDOWSaddins
2009-10-04 12:52:06 —-D—- C:WINDOWS
2009-10-04 12:00:31 —-D—- C:Documents and SettingsA.C.A.BApplication DataAIMP
2009-10-04 10:33:30 —-A—- C:WINDOWSsystem32PnkBstrB.exe
2009-10-04 10:33:29 —-D—- C:WINDOWSsystem32LogFiles
2009-10-04 10:33:29 —-A—- C:WINDOWSsystem32PnkBstrA.exe
2009-10-04 10:33:28 —-A—- C:WINDOWSgame.ini
2009-10-04 10:18:00 —-D—- C:Program FilesActivision
2009-10-04 10:16:21 —-SHD—- C:WINDOWSftpcache
2009-10-04 10:12:17 —-D—- C:Program FilesAlcohol Soft
2009-10-04 10:09:25 —-D—- C:WINDOWSsystem32PreInstall
2009-10-04 10:09:23 —-HD—- C:WINDOWS$hf_mig$
2009-10-04 10:08:15 —-D—- C:Documents and SettingsA.C.A.BApplication DataWinRAR
2009-10-04 09:59:41 —-D—- C:Documents and SettingsA.C.A.BApplication DataMacromedia
2009-10-04 09:59:41 —-D—- C:Documents and SettingsA.C.A.BApplication DataAdobe
2009-10-04 09:58:09 —-D—- C:Documents and SettingsAll UsersApplication DataATI
2009-10-04 09:58:09 —-D—- C:Documents and SettingsA.C.A.BApplication DataATI
2009-10-04 09:53:44 —-D—- C:Program FilesFraps
2009-10-04 09:53:01 —-D—- C:Program FilesAIMP2
2009-10-04 09:52:20 —-A—- C:WINDOWSsystem32XAudio2_5.dll
2009-10-04 09:52:19 —-A—- C:WINDOWSsystem32xactengine3_5.dll
2009-10-04 09:52:18 —-A—- C:WINDOWSsystem32D3DCompiler_42.dll
2009-10-04 09:52:17 —-A—- C:WINDOWSsystem32d3dcsx_42.dll
2009-10-04 09:52:16 —-A—- C:WINDOWSsystem32d3dx11_42.dll
2009-10-04 09:52:15 —-A—- C:WINDOWSsystem32d3dx10_42.dll
2009-10-04 09:52:14 —-A—- C:WINDOWSsystem32D3DX9_42.dll
2009-10-04 09:52:13 —-A—- C:WINDOWSsystem32d3dx10_41.dll
2009-10-04 09:52:13 —-A—- C:WINDOWSsystem32D3DCompiler_41.dll
2009-10-04 09:52:11 —-A—- C:WINDOWSsystem32D3DX9_41.dll
2009-10-04 09:52:10 —-A—- C:WINDOWSsystem32XAudio2_4.dll
2009-10-04 09:52:10 —-A—- C:WINDOWSsystem32XAPOFX1_3.dll
2009-10-04 09:52:09 —-A—- C:WINDOWSsystem32xactengine3_4.dll
2009-10-04 09:52:08 —-A—- C:WINDOWSsystem32X3DAudio1_6.dll
2009-10-04 09:52:07 —-A—- C:WINDOWSsystem32d3dx10_40.dll
2009-10-04 09:52:07 —-A—- C:WINDOWSsystem32D3DCompiler_40.dll
2009-10-04 09:52:06 —-A—- C:WINDOWSsystem32D3DX9_40.dll
2009-10-04 09:52:04 —-A—- C:WINDOWSsystem32XAudio2_3.dll
2009-10-04 09:52:04 —-A—- C:WINDOWSsystem32XAPOFX1_2.dll
2009-10-04 09:52:03 —-A—- C:WINDOWSsystem32xactengine3_3.dll
2009-10-04 09:52:02 —-A—- C:WINDOWSsystem32X3DAudio1_5.dll
2009-10-04 09:52:01 —-A—- C:WINDOWSsystem32XAudio2_2.dll
2009-10-04 09:52:01 —-A—- C:WINDOWSsystem32XAPOFX1_1.dll
2009-10-04 09:52:00 —-A—- C:WINDOWSsystem32xactengine3_2.dll
2009-10-04 09:51:59 —-A—- C:WINDOWSsystem32d3dx10_39.dll
2009-10-04 09:51:59 —-A—- C:WINDOWSsystem32D3DCompiler_39.dll
2009-10-04 09:51:57 —-A—- C:WINDOWSsystem32D3DX9_39.dll
2009-10-04 09:51:56 —-A—- C:WINDOWSsystem32XAudio2_1.dll
2009-10-04 09:51:56 —-A—- C:WINDOWSsystem32XAPOFX1_0.dll
2009-10-04 09:51:55 —-A—- C:WINDOWSsystem32xactengine3_1.dll
2009-10-04 09:51:54 —-A—- C:WINDOWSsystem32X3DAudio1_4.dll
2009-10-04 09:51:53 —-A—- C:WINDOWSsystem32d3dx10_38.dll
2009-10-04 09:51:53 —-A—- C:WINDOWSsystem32D3DCompiler_38.dll
2009-10-04 09:51:51 —-A—- C:WINDOWSsystem32D3DX9_38.dll
2009-10-04 09:51:50 —-A—- C:WINDOWSsystem32XAudio2_0.dll
2009-10-04 09:51:49 —-A—- C:WINDOWSsystem32xactengine3_0.dll
2009-10-04 09:51:48 —-A—- C:WINDOWSsystem32X3DAudio1_3.dll
2009-10-04 09:51:47 —-A—- C:WINDOWSsystem32d3dx10_37.dll
2009-10-04 09:51:47 —-A—- C:WINDOWSsystem32D3DCompiler_37.dll
2009-10-04 09:51:46 —-A—- C:WINDOWSsystem32D3DX9_37.dll
2009-10-04 09:51:44 —-A—- C:WINDOWSsystem32xactengine2_10.dll
2009-10-04 09:51:42 —-A—- C:WINDOWSsystem32d3dx10_36.dll
2009-10-04 09:51:42 —-A—- C:WINDOWSsystem32D3DCompiler_36.dll
2009-10-04 09:51:41 —-A—- C:WINDOWSsystem32d3dx9_36.dll
2009-10-04 09:51:40 —-A—- C:WINDOWSsystem32xactengine2_9.dll
2009-10-04 09:51:38 —-A—- C:WINDOWSsystem32d3dx10_35.dll
2009-10-04 09:51:38 —-A—- C:WINDOWSsystem32D3DCompiler_35.dll
2009-10-04 09:51:37 —-A—- C:WINDOWSsystem32d3dx9_35.dll
2009-10-04 09:51:35 —-A—- C:WINDOWSsystem32xactengine2_8.dll
2009-10-04 09:51:35 —-A—- C:WINDOWSsystem32X3DAudio1_2.dll
2009-10-04 09:51:34 —-A—- C:WINDOWSsystem32d3dx10_34.dll
2009-10-04 09:51:34 —-A—- C:WINDOWSsystem32D3DCompiler_34.dll
2009-10-04 09:51:33 —-A—- C:WINDOWSsystem32d3dx9_34.dll
2009-10-04 09:51:31 —-A—- C:WINDOWSsystem32xinput1_3.dll
2009-10-04 09:51:30 —-A—- C:WINDOWSsystem32xactengine2_7.dll
2009-10-04 09:51:29 —-A—- C:WINDOWSsystem32d3dx10_33.dll
2009-10-04 09:51:29 —-A—- C:WINDOWSsystem32D3DCompiler_33.dll
2009-10-04 09:51:27 —-A—- C:WINDOWSsystem32xactengine2_6.dll
2009-10-04 09:51:27 —-A—- C:WINDOWSsystem32xactengine2_5.dll
2009-10-04 09:51:27 —-A—- C:WINDOWSsystem32d3dx9_33.dll
2009-10-04 09:51:26 —-A—- C:WINDOWSsystem32xactengine2_4.dll
2009-10-04 09:51:26 —-A—- C:WINDOWSsystem32xactengine2_3.dll
2009-10-04 09:51:26 —-A—- C:WINDOWSsystem32x3daudio1_1.dll
2009-10-04 09:51:26 —-A—- C:WINDOWSsystem32d3dx9_32.dll
2009-10-04 09:51:26 —-A—- C:WINDOWSsystem32d3dx9_31.dll
2009-10-04 09:51:25 —-A—- C:WINDOWSsystem32xinput1_2.dll
2009-10-04 09:51:25 —-A—- C:WINDOWSsystem32xinput1_1.dll
2009-10-04 09:51:25 —-A—- C:WINDOWSsystem32xactengine2_2.dll
2009-10-04 09:51:24 —-A—- C:WINDOWSsystem32xactengine2_1.dll
2009-10-04 09:51:19 —-A—- C:WINDOWSsystem32xactengine2_0.dll
2009-10-04 09:51:19 —-A—- C:WINDOWSsystem32x3daudio1_0.dll
2009-10-04 09:51:19 —-A—- C:WINDOWSsystem32d3dx9_30.dll
2009-10-04 09:51:19 —-A—- C:WINDOWSsystem32d3dx9_29.dll
2009-10-04 09:51:18 —-A—- C:WINDOWSsystem32xinput9_1_0.dll
2009-10-04 09:51:18 —-A—- C:WINDOWSsystem32d3dx9_28.dll
2009-10-04 09:51:18 —-A—- C:WINDOWSsystem32d3dx9_27.dll
2009-10-04 09:51:17 —-A—- C:WINDOWSsystem32d3dx9_26.dll
2009-10-04 09:51:17 —-A—- C:WINDOWSsystem32d3dx9_25.dll
2009-10-04 09:51:16 —-A—- C:WINDOWSsystem32d3dx9_24.dll
2009-10-04 09:51:03 —-D—- C:WINDOWSLogs
2009-10-04 09:49:33 —-D—- C:Program FilesESET
2009-10-04 09:49:33 —-D—- C:Documents and SettingsAll UsersApplication DataESET
2009-10-04 09:47:53 —-A—- C:WINDOWSODBC.INI
2009-10-04 09:47:11 —-D—- C:Program FilesCommon FilesDesigner
2009-10-04 09:46:56 —-D—- C:WINDOWSShellNew
2009-10-04 09:46:51 —-D—- C:Program FilesMicrosoft Office
2009-10-04 09:45:09 —-D—- C:Program FilesuTorrent
2009-10-04 09:45:03 —-D—- C:Documents and SettingsA.C.A.BApplication DatauTorrent
2009-10-04 09:44:36 —-D—- C:Program FilesWinRAR
2009-10-04 09:43:39 —-N—- C:WINDOWSsystem32spmsg2.dll
2009-10-04 09:43:36 —-HDC—- C:WINDOWS$NtUninstallXPSEPSCLP$
2009-10-04 09:42:06 —-D—- C:WINDOWSsystem32XPSViewer
2009-10-04 09:42:03 —-D—- C:Program FilesMSBuild
2009-10-04 09:42:02 —-D—- C:WINDOWSsystem32en-US
2009-10-04 09:41:58 —-D—- C:Program FilesReference Assemblies
2009-10-04 09:41:38 —-N—- C:WINDOWSsystem32spmsg.dll
2009-10-04 09:41:35 —-A—- C:WINDOWSsystem32spupdsvc.exe
2009-10-04 09:41:32 —-N—- C:WINDOWSsystem32xpssvcs.dll
2009-10-04 09:41:32 —-N—- C:WINDOWSsystem32xpsshhdr.dll
2009-10-04 09:41:32 —-N—- C:WINDOWSsystem32prntvpt.dll
2009-10-04 09:41:08 —-RSD—- C:WINDOWSassembly
2009-10-04 09:40:46 —-D—- C:WINDOWSMicrosoft.NET
2009-10-04 09:39:41 —-A—- C:WINDOWSsystem32ChCfg.exe
2009-10-04 09:39:07 —-A—- C:WINDOWSsystem32ksuser.dll
2009-10-04 09:38:56 —-D—- C:Program FilesRealtek AC97
2009-10-04 09:38:55 —-A—- C:WINDOWSsystem32RTLCPL.exe
2009-10-04 09:38:53 —-A—- C:WINDOWSsoundman.exe
2009-10-04 09:38:52 —-A—- C:WINDOWSsystem32RtlCPAPI.dll
2009-10-04 09:38:50 —-A—- C:WINDOWSalcupd.exe
2009-10-04 09:38:50 —-A—- C:WINDOWSAlcrmv.exe
2009-10-04 09:37:07 —-D—- C:Program FilesMozilla Firefox
2009-10-04 09:36:39 —-N—- C:WINDOWSsystem32ati2sgag.exe
2009-10-04 09:36:34 —-D—- C:Program FilesQIP Infium
2009-10-04 09:36:19 —-HD—- C:Program FilesInstallShield Installation Information
2009-10-04 09:36:19 —-D—- C:Program FilesATI Technologies
2009-10-04 09:36:14 —-D—- C:Program FilesXP Codec Pack
2009-10-04 09:35:54 —-D—- C:Program FilesCommon FilesInstallShield
2009-10-04 09:35:29 —-D—- C:ATI
2009-10-04 09:34:32 —-D—- C:Documents and SettingsA.C.A.BApplication DataIdentities
2009-10-04 09:34:30 —-HD—- C:Program FilesUninstall Information
2009-10-04 09:34:20 —-SD—- C:Documents and SettingsA.C.A.BApplication DataMicrosoft
2009-10-04 09:34:20 —-ASH—- C:Documents and SettingsA.C.A.BApplication Datadesktop.ini
2009-10-04 09:32:56 —-D—- C:WINDOWSsystem32SoftwareDistribution
2009-10-04 09:29:30 —-D—- C:WINDOWSSoftwareDistribution
2009-10-04 09:29:29 —-D—- C:WINDOWSPrefetch
2009-10-04 09:29:28 —-SD—- C:WINDOWSsystem32Microsoft
2009-10-04 09:29:28 —-N—- C:WINDOWSSchedLgU.Txt
2009-10-04 09:13:18 —-D—- C:WINDOWSsystem32xircom
2009-10-04 09:13:18 —-D—- C:Program Filesxerox
2009-10-04 09:13:18 —-D—- C:Program Filesmicrosoft frontpage
2009-10-04 09:12:54 —-A—- C:WINDOWScontrol.ini
2009-10-04 09:12:54 —-A—- C:AUTOEXEC.BAT
2009-10-04 09:12:34 —-A—- C:WINDOWSsystem32mapi32.dll
2009-10-04 09:11:40 —-SD—- C:WINDOWSDownloaded Program Files
2009-10-04 09:11:40 —-RD—- C:WINDOWSOffline Web Pages
2009-10-04 09:11:39 —-RAH—- C:WINDOWSsystem32logonui.exe.manifest
2009-10-04 09:11:33 —-RAH—- C:WINDOWSsystem32cdplayer.exe.manifest
2009-10-04 09:11:29 —-HD—- C:Program FilesWindowsUpdate
2009-10-04 09:11:25 —-D—- C:Program FilesOnline Services
2009-10-04 09:11:10 —-D—- C:WINDOWSsystem32DirectX
2009-10-04 09:11:05 —-A—- C:WINDOWSsystem32atrace.dll
2009-10-04 09:11:03 —-A—- C:WINDOWSsystem32desktop.ini
2009-10-04 09:11:03 —-A—- C:WINDOWSdesktop.ini
2009-10-04 09:10:58 —-A—- C:WINDOWSsystem32nmevtmsg.dll
2009-10-04 09:10:57 —-A—- C:WINDOWSsystem32acctres.dll
2009-10-04 09:10:56 —-D—- C:Program FilesCommon FilesServices
2009-10-04 09:10:54 —-SD—- C:WINDOWSTasks
2009-10-04 09:10:54 —-A—- C:WINDOWSsystem32icfgnt5.dll
2009-10-04 09:10:53 —-D—- C:Program FilesCommon FilesMSSoap
2009-10-04 09:10:50 —-D—- C:WINDOWSsrchasst
2009-10-04 09:10:49 —-D—- C:WINDOWSsystem32Macromed
2009-10-04 09:10:47 —-A—- C:WINDOWSsystem32wuweb.dll
2009-10-04 09:10:47 —-A—- C:WINDOWSsystem32wucltui.dll
2009-10-04 09:10:46 —-N—- C:WINDOWSsystem32wuauclt.exe
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32wups.dll
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32wuauserv.dll
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32wuaueng1.dll
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32wuaueng.dll
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32wuauclt1.exe
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32wuapi.dll
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32bitsprx4.dll
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32bitsprx3.dll
2009-10-04 09:10:46 —-A—- C:WINDOWSsystem32bitsprx2.dll
2009-10-04 09:10:45 —-N—- C:WINDOWSsystem32qmgr.dll
2009-10-04 09:10:45 —-A—- C:WINDOWSsystem32qmgrprxy.dll
2009-10-04 09:10:42 —-D—- C:Program FilesMovie Maker
2009-10-04 09:10:27 —-A—- C:WINDOWSsystem32safrslv.dll
2009-10-04 09:10:27 —-A—- C:WINDOWSsystem32safrdm.dll
2009-10-04 09:10:27 —-A—- C:WINDOWSsystem32safrcdlg.dll
2009-10-04 09:10:27 —-A—- C:WINDOWSsystem32racpldlg.dll
2009-10-04 09:10:23 —-A—- C:WINDOWSsystem32fltMc.exe
2009-10-04 09:10:23 —-A—- C:WINDOWSsystem32fltlib.dll
2009-10-04 09:10:22 —-N—- C:WINDOWSsystem32srsvc.dll
2009-10-04 09:10:22 —-D—- C:WINDOWSsystem32Restore
2009-10-04 09:10:22 —-A—- C:WINDOWSsystem32srrstr.dll
2009-10-04 09:10:22 —-A—- C:WINDOWSsystem32srclient.dll
2009-10-04 09:10:21 —-A—- C:WINDOWSsystem32nmmkcert.dll
2009-10-04 09:10:21 —-A—- C:WINDOWSsystem32msconf.dll
2009-10-04 09:10:21 —-A—- C:WINDOWSsystem32mnmsrvc.exe
2009-10-04 09:10:21 —-A—- C:WINDOWSsystem32mnmdd.dll
2009-10-04 09:10:21 —-A—- C:WINDOWSsystem32isrdbg32.dll
2009-10-04 09:10:21 —-A—- C:WINDOWSsystem32ils.dll
2009-10-04 09:10:18 —-D—- C:Program FilesNetMeeting
2009-10-04 09:10:18 —-A—- C:WINDOWSsystem32msoert2.dll
2009-10-04 09:10:18 —-A—- C:WINDOWSsystem32msoeacct.dll
2009-10-04 09:10:17 —-A—- C:WINDOWSsystem32inetres.dll
2009-10-04 09:10:17 —-A—- C:WINDOWSsystem32inetcomm.dll
2009-10-04 09:10:15 —-N—- C:WINDOWSsystem32schedsvc.dll
2009-10-04 09:10:15 —-D—- C:Program FilesOutlook Express
2009-10-04 09:10:15 —-A—- C:WINDOWSsystem32mstinit.exe
2009-10-04 09:10:15 —-A—- C:WINDOWSsystem32mstask.dll
2009-10-04 09:10:14 —-A—- C:WINDOWSsystem32isign32.dll
2009-10-04 09:10:14 —-A—- C:WINDOWSsystem32inetcfg.dll
2009-10-04 09:10:14 —-A—- C:WINDOWSsystem32icwphbk.dll
2009-10-04 09:10:14 —-A—- C:WINDOWSsystem32icwdial.dll
2009-10-04 09:10:09 —-D—- C:Program FilesCommon FilesSystem
2009-10-04 09:10:08 —-D—- C:Program FilesInternet Explorer
2009-10-04 09:09:25 —-D—- C:Program FilesComPlus Applications
2009-10-04 09:09:23 —-A—- C:WINDOWSvbaddin.ini
2009-10-04 09:09:23 —-A—- C:WINDOWSvb.ini
2009-10-04 09:09:19 —-D—- C:WINDOWSRegistration
2009-10-04 09:09:12 —-D—- C:Program FilesWindows Media Player
2009-10-04 09:09:06 —-D—- C:Program FilesMessenger
2009-10-04 09:09:03 —-D—- C:Program FilesMSN Gaming Zone
2009-10-04 09:09:03 —-A—- C:WINDOWSsystem32write.exe
2009-10-04 09:08:55 —-A—- C:WINDOWSsystem32sndvol32.exe
2009-10-04 09:08:55 —-A—- C:WINDOWSsystem32hticons.dll
2009-10-04 09:08:55 —-A—- C:WINDOWSsystem32avwav.dll
2009-10-04 09:08:55 —-A—- C:WINDOWSsystem32avtapi.dll
2009-10-04 09:08:55 —-A—- C:WINDOWSsystem32avmeter.dll
2009-10-04 09:08:54 —-A—- C:WINDOWSsystem32winchat.exe
2009-10-04 09:08:49 —-A—- C:WINDOWSsystem32getuname.dll
2009-10-04 09:08:49 —-A—- C:WINDOWSsystem32charmap.exe
2009-10-04 09:08:49 —-A—- C:WINDOWSsystem32calc.exe
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32winmine.exe
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32usrlogon.cmd
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32tsshutdn.exe
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32tslabels.ini
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32tskill.exe
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32sol.exe
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32reset.exe
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32mshearts.exe
2009-10-04 09:08:48 —-A—- C:WINDOWSsystem32freecell.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32tsdiscon.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32tscon.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32shadow.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32rwinsta.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32regini.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32rdpcfgex.dll
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32qwinsta.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32qappsrv.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32msg.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32msdtcprf.ini
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32logoff.exe
2009-10-04 09:08:47 —-A—- C:WINDOWSsystem32cdmodem.dll
2009-10-04 09:08:42 —-A—- C:WINDOWSsystem32wmimgmt.msc
2009-10-04 09:08:41 —-A—- C:WINDOWSsystem32sndrec32.exe
2009-10-04 09:08:41 —-A—- C:WINDOWSsystem32mplay32.exe
2009-10-04 09:08:41 —-A—- C:WINDOWSsystem32hypertrm.dll
2009-10-04 09:08:41 —-A—- C:WINDOWSsystem32accwiz.exe
2009-10-04 09:08:40 —-D—- C:Program FilesWindows NT
2009-10-04 09:08:40 —-A—- C:WINDOWSsystem32spider.exe
2009-10-04 09:08:40 —-A—- C:WINDOWSsystem32mspaint.exe
2009-10-04 09:08:40 —-A—- C:WINDOWSsystem32clipbrd.exe
2009-10-04 09:08:39 —-A—- C:WINDOWSsystem32tsgqec.dll
2009-10-04 09:08:39 —-A—- C:WINDOWSsystem32tscfgwmi.dll
2009-10-04 09:08:39 —-A—- C:WINDOWSsystem32rhttpaa.dll
2009-10-04 09:08:39 —-A—- C:WINDOWSsystem32aaclient.dll
2009-10-04 09:08:38 —-N—- C:WINDOWSsystem32termsrv.dll
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32sessmgr.exe
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32remotepg.dll
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32rdshost.exe
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32rdsaddin.exe
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32rdpwsx.dll
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32rdpsnd.dll
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32rdpclip.exe
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32rdchost.dll
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32mstscax.dll
2009-10-04 09:08:38 —-A—- C:WINDOWSsystem32mstsc.exe
2009-10-04 09:08:37 —-D—- C:WINDOWSsystem32MsDtc
2009-10-04 09:08:37 —-A—- C:WINDOWSsystem32xolehlp.dll
2009-10-04 09:08:37 —-A—- C:WINDOWSsystem32qprocess.exe
2009-10-04 09:08:37 —-A—- C:WINDOWSsystem32mtxoci.dll
2009-10-04 09:08:37 —-A—- C:WINDOWSsystem32msdtcuiu.dll
2009-10-04 09:08:37 —-A—- C:WINDOWSsystem32msdtctm.dll
2009-10-04 09:08:37 —-A—- C:WINDOWSsystem32msdtcprx.dll
2009-10-04 09:08:37 —-A—- C:WINDOWSsystem32icaapi.dll
2009-10-04 09:08:37 —-A—- C:WINDOWSsystem32cfgbkend.dll
2009-10-04 09:08:36 —-A—- C:WINDOWSsystem32mtxlegih.dll
2009-10-04 09:08:36 —-A—- C:WINDOWSsystem32mtxex.dll
2009-10-04 09:08:36 —-A—- C:WINDOWSsystem32mtxdm.dll
2009-10-04 09:08:36 —-A—- C:WINDOWSsystem32msdtclog.dll
2009-10-04 09:08:36 —-A—- C:WINDOWSsystem32msdtc.exe
2009-10-04 09:08:36 —-A—- C:WINDOWSsystem32dcomcnfg.exe
2009-10-04 09:08:35 —-D—- C:WINDOWSsystem32Com
2009-10-04 09:08:35 —-A—- C:WINDOWSsystem32stclient.dll
2009-10-04 09:08:35 —-A—- C:WINDOWSsystem32comrepl.dll
2009-10-04 09:08:35 —-A—- C:WINDOWSsystem32comaddin.dll
2009-10-04 09:08:35 —-A—- C:WINDOWSsystem32colbact.dll
2009-10-04 09:08:35 —-A—- C:WINDOWSsystem32clbcatex.dll
2009-10-04 09:08:35 —-A—- C:WINDOWSsystem32catsrvut.dll
2009-10-04 09:08:35 —-A—- C:WINDOWSsystem32catsrvps.dll
2009-10-04 09:08:35 —-A—- C:WINDOWSsystem32catsrv.dll
2009-10-04 09:08:34 —-A—- C:WINDOWSsystem32comuid.dll
2009-10-04 09:08:34 —-A—- C:WINDOWSsystem32comsvcs.dll
2009-10-04 09:08:34 —-A—- C:WINDOWSsystem32comsnap.dll
2009-10-04 09:08:34 —-A—- C:WINDOWSsystem32clbcatq.dll
2009-10-04 09:08:29 —-A—- C:WINDOWSsystem32servdeps.dll
2009-10-04 09:08:29 —-A—- C:WINDOWSsystem32mmfutil.dll
2009-10-04 09:08:29 —-A—- C:WINDOWSsystem32licwmi.dll
2009-10-04 09:08:29 —-A—- C:WINDOWSsystem32cmprops.dll

======List of files/folders modified in the last 1 months======

2009-10-13 19:16:16 —-A—- C:WINDOWSsystem.ini
2009-10-04 09:12:53 —-A—- C:WINDOWSwin.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:WINDOWSsystem32DRIVERSehdrv.sys [2009-03-19 107256]
R1 epfwtdir;epfwtdir; C:WINDOWSsystem32DRIVERSepfwtdir.sys [2009-03-19 93848]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-15 40704]
R2 eamon;eamon; C:WINDOWSsystem32DRIVERSeamon.sys [2009-03-19 113960]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2009-10-03 4030144]
R3 ati2mtag;ati2mtag; C:WINDOWSsystem32DRIVERSati2mtag.sys [2009-07-21 3565056]
R3 hidusb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2008-04-15 10368]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2008-04-15 12160]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet адаптер, драйвер для NT; C:WINDOWSsystem32DRIVERSRTL8139.SYS [2008-04-14 20992]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-15 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2008-04-15 59520]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-15 20608]
S3 ae48v23o;ae48v23o; C:WINDOWSsystem32driversae48v23o.sys []
S3 catchme;catchme; ??C:DOCUME~1ACA~1.BLOCALS~1Tempcatchme.sys []
S3 nm;Драйвер сетевого монитора; C:WINDOWSsystem32DRIVERSNMnt.sys [2008-04-15 40320]
S3 NPF;NetGroup Packet Filter Driver; C:WINDOWSsystem32driversnpf.sys [2005-08-03 32512]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-13 26368]
S4 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2008-04-15 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:WINDOWSsystem32Ati2evxx.exe [2009-07-21 602112]
R2 ekrn;ESET Service; C:Program FilesESETESET NOD32 Antivirusekrn.exe [2009-03-19 731840]
R2 PnkBstrA;PnkBstrA; C:WINDOWSsystem32PnkBstrA.exe [2009-10-04 66872]
S2 ATI Smart;ATI Smart; C:WINDOWSsystem32ati2sgag.exe [2009-07-21 593920]
S3 aspnet_state;Служба состояний ASP.NET; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:Program FilesESETESET NOD32 AntivirusEHttpSrv.exe [2009-03-19 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:Program FilesWinPcaprpcapd.exe [2005-08-03 86016]
S4 NetTcpPortSharing;Служба общего доступа к портам Net.Tcp; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]

EOF
Автор

Сообщения

Просмотр 1 сообщения - с 1 по 1 (всего 1)

Bang992

Созданные ответы форума

Добро пожаловать

Поиск

Важные инструкции

Как удалить рекламный вирус в браузере (Chrome, Opera, Firefox, Internet Explorer, Edge)

Как удалить вирус с телефона Андроид (Инструкция)

Как удалить вредоносные программы, лучшие утилиты

Какой лучший антивирус ? Как выбрать антивирус ?

Как запустить компьютер в безопасном режиме (Safe Mode)

СПАЙВАРЕ РУ

Нужна помощь?

Ссылки