Лог утилиты random's system information tool 1.09 (автор: random/random)
Run by Admin at 2012-07-30 12:27:47
Microsoft Windows XP Professional Service Pack 3
Системный раздел C: размер 7 GB (25%) Свободно 30 GB
Total RAM: 2047 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:27:56, on 30.07.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\VistaDriveIcon\VistaDrv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\uTorrent\utorrent.exe
C:\Program Files\Clip2Net\clip2net.exe
C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe
C:\FlylinkDC++\FlylinkDC.exe
C:\Program Files\iPod\bin\iPodService.exe
H:\Архивы\avz4\avz4\avz.exe
C:\Program Files\Opera\opera.exe
C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
H:\RSIT.exe
C:\Program Files\trend micro\Admin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://browserhelp.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Ссылки
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: IE 4.x-6.x BHO for Download Master - {9961627E-4059-41B4-8E0E-A7D6B3854ADF} - C:\PROGRA~1\DOWNLO~1\dmiehlp.dll
O2 - BHO: Html5 geolocation provider - {9BFBA68E-E21B-458E-AE12-FE85E903D2C0} - C:\Documents and Settings\All Users\Application Data\AlterGeo\Update for Html5 geolocation provider\html5loc.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AlterGeoUpdater] C:\Program Files\AlterGeo\Html5 geolocation provider\html5locsvc.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MAgent] C:\Program Files\Mail.Ru\Agent\magent.exe -LM
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [VistaIcon] C:\Program Files\VistaDriveIcon\VistaDrv.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [AlterGeoUpdater] C:\Documents and Settings\All Users\Application Data\AlterGeo\Update for Html5 geolocation provider\html5locsvc.exe
O4 - HKCU\..\Run: [Clip2Net] C:\Program Files\Clip2Net\clip2net.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [VistaIcon] C:\Program Files\VistaDriveIcon\VistaDrv.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [wmptweak_inf] rundll32 advpack.dll,LaunchINFSectionEx WMPtweak.inf,DefaultInstall,,4,N (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [IE8_01] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [IE8_02] rundll32 advpack.dll,LaunchINFSectionEx IE8tweak.inf,DefaultInstall,,4,N (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [wmptweak_inf] rundll32 advpack.dll,LaunchINFSectionEx WMPtweak.inf,DefaultInstall,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [VistaIcon] C:\Program Files\VistaDriveIcon\VistaDrv.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [wmptweak_inf] rundll32 advpack.dll,LaunchINFSectionEx WMPtweak.inf,DefaultInstall,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [VistaIcon] C:\Program Files\VistaDriveIcon\VistaDrv.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [wmptweak_inf] rundll32 advpack.dll,LaunchINFSectionEx WMPtweak.inf,DefaultInstall,,4,N (User 'Default user')
O4 - Startup: FlylinkDC++.lnk = C:\FlylinkDC++\FlylinkDC.exe
O4 - Startup: flynet.lnk = ?
O4 - Global Startup: forteManager.lnk = ?
O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Закачать ВСЕ при помощи Download Master - C:\Program Files\Download Master\dmieall.htm
O8 - Extra context menu item: Закачать при помощи Download Master - C:\Program Files\Download Master\dmie.htm
O8 - Extra context menu item: Передать на удаленную закачку DM - C:\Program Files\Download Master\remdown.htm
O9 - Extra button: Отправить в OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Отправить в OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Mail.Ru Агент - {7558B7E5-7B26-4201-BEDB-00D5FF534523} - C:\Program Files\Mail.Ru\Agent\magent.exe
O9 - Extra 'Tools' menuitem: Mail.Ru Агент - {7558B7E5-7B26-4201-BEDB-00D5FF534523} - C:\Program Files\Mail.Ru\Agent\magent.exe
O9 - Extra button: Download Master - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - C:\Program Files\Download Master\dmaster.exe
O9 - Extra 'Tools' menuitem: &Download Master - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - C:\Program Files\Download Master\dmaster.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1341425603515
O17 - HKLM\System\CCS\Services\Tcpip\..\{F5A597B4-0D4B-477A-9855-938BBBCE764B}: NameServer = 91.215.176.7 91.215.176.2
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O22 - SharedTaskScheduler: Предзагрузчик Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Демон кэша категорий компонентов - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Служба Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Журнал событий (Eventlog) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: Служба Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Служба Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Служба COM записи компакт-дисков IMAPI (ImapiService) - Корпорация Майкрософт - C:\WINDOWS\system32\imapi.exe
O23 - Service: Сервис iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plug and Play (PlugPlay) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) - Корпорация Майкрософт - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Смарт-карты (SCardSvr) - Корпорация Майкрософт - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Журналы и оповещения производительности (SysmonLog) - Корпорация Майкрософт - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Теневое копирование тома (VSS) - Корпорация Майкрософт - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Адаптер производительности WMI (WmiApSrv) - Корпорация Майкрософт - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--
End of file - 13713 bytes

======Папка назначеных зданий======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AlterGeoUpdaterS-1-5-18.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\k7wui19f.default

prefs.js - "browser.search.useDBForOrder" -  true
prefs.js - "browser.startup.homepage" -  "http://browserhelp.ru"
prefs.js - "extensions.enabledItems" -  "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3, {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.6.7, smarterwiki@wikiatic.com:3.1.2, {1018e4d6-728f-4b20-ad56-37578a4de76b}:3.3.20, {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.1.10, {582195F5-92E7-40a0-A127-DB71295901D7}:0.6, {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20091209.4, {9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC}:6.0.4, {cd617375-6743-4ee8-bac4-fbf10f35729e}:2.5, SkipScreen@SkipScreen:0.3.20091214_AMO, {dc572301-7619-498c-a57d-39143191b318}:0.3.8.2, {54BB9F3F-07E5-486c-9B39-C7398B99391C}:3.1.2009110201, {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20091028, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.268 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_268.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Плагин Детектора iTunes
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\WINDOWS\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
elemhidehelper@adblockplus.org
imglikeopera@imfo.ru
{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
{3d7eb24f-2740-49df-8937-200b1cc08f8a}
{54BB9F3F-07E5-486c-9B39-C7398B99391C}
{77b819fa-95ad-4f2c-ac7c-486b356188a9}
{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdm.dll
nppdf32.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
mailru.xml
ozonru.xml
priceru.xml
torgmailru.xml
wikipedia-ru.xml
yandex-slovari.xml
yandex.xml

C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\k7wui19f.default\extensions\
dmbarff@westbyte.com
dmpluginff@westbyte.com
dmremote@westbyte.com
{1018e4d6-728f-4b20-ad56-37578a4de76b}
{77b819fa-95ad-4f2c-ac7c-486b356188a9}
{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC}
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
{B100D0FF-0001-8CE4-2790-AACE49B8AE35}
{e4a8a97b-f2ed-450b-b12d-ee082ba24781}

C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\k7wui19f.default\searchplugins\
mailru.xml

======Снимок реестра======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05 453544]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
IE 4.x-6.x BHO for Download Master - C:\PROGRA~1\DOWNLO~1\dmiehlp.dll [2012-05-23 165736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9BFBA68E-E21B-458E-AE12-FE85E903D2C0}]
AlterGeoBHO Class - C:\Documents and Settings\All Users\Application Data\AlterGeo\Update for Html5 geolocation provider\html5loc.dll [2012-06-06 307272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05 157616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-06-12 17887232]
"USB Antivirus"=C:\Program Files\USB Disk Security\USBGuard.exe [2010-01-11 819200]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-04-17 196608]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2005-12-21 98304]
""= []
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-11-04 2219184]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-09-17 13574144]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-09-17 86016]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"AlterGeoUpdater"=C:\Program Files\AlterGeo\Html5 geolocation provider\html5locsvc.exe [2012-02-06 27680]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-05-30 59280]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2012-06-07 421776]
"MAgent"=C:\Program Files\Mail.Ru\Agent\magent.exe [2012-07-08 18423360]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2012-07-03 462920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"VistaIcon"=C:\Program Files\VistaDriveIcon\VistaDrv.exe [2008-01-02 132096]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2010-03-12 30208]
"uTorrent"=C:\Program Files\uTorrent\utorrent.exe [2010-03-16 319792]
"AlterGeoUpdater"=C:\Documents and Settings\All Users\Application Data\AlterGeo\Update for Html5 geolocation provider\html5locsvc.exe [2012-06-06 29256]
"Clip2Net"=C:\Program Files\Clip2Net\clip2net.exe [2011-09-08 1879552]

C:\Documents and Settings\All Users\Главное меню\Программы\Автозагрузка
forteManager.lnk - C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe

C:\Documents and Settings\Admin\Главное меню\Программы\Автозагрузка
FlylinkDC++.lnk - C:\FlylinkDC++\FlylinkDC.exe
flynet.lnk - 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-05-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoSharedDocuments"=1
"NoSMConfigurePrograms"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm

======Список файлов и папок, созданных за последние 3 месяца======

2012-07-30 12:17:44 ----A---- C:\WINDOWS\system32\drivers\ujezmza0.sys
2012-07-30 12:17:43 ----A---- C:\WINDOWS\system32\drivers\utezmza0.sys
2012-07-30 11:14:36 ----D---- C:\Program Files\trend micro
2012-07-30 11:14:35 ----D---- C:\rsit
2012-07-30 11:12:34 ----A---- C:\avz_log.txt
2012-07-30 10:29:46 ----A---- C:\WINDOWS\resetlog.txt
2012-07-30 10:28:43 ----D---- C:\ERDNT
2012-07-30 10:19:31 ----D---- C:\Заславль
2012-07-30 09:31:36 ----A---- C:\2т.txt
2012-07-30 09:31:36 ----A---- C:\1.txt
2012-07-29 22:00:44 ----D---- C:\Documents and Settings\Admin\Application Data\Malwarebytes
2012-07-29 22:00:35 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-07-29 22:00:35 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2012-07-29 22:00:35 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2012-07-29 21:59:03 ----A---- C:\6s4m4toyvz.exe
2012-07-29 21:53:35 ----D---- C:\Program Files\Common Files\Java
2012-07-29 21:53:35 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2012-07-29 21:53:17 ----D---- C:\Program Files\Oracle
2012-07-29 21:53:15 ----D---- C:\Documents and Settings\Admin\Application Data\Oracle
2012-07-29 21:53:11 ----A---- C:\WINDOWS\system32\npDeployJava1.dll
2012-07-29 21:53:11 ----A---- C:\WINDOWS\system32\javaws.exe
2012-07-29 21:53:11 ----A---- C:\WINDOWS\system32\deployJava1.dll
2012-07-29 21:53:08 ----A---- C:\WINDOWS\system32\javaw.exe
2012-07-29 21:53:08 ----A---- C:\WINDOWS\system32\java.exe
2012-07-29 21:49:58 ----A---- C:\jxpiinstall.exe
2012-07-24 01:23:51 ----A---- C:\magentsetup_rfrsplash.exe
2012-07-14 20:51:39 ----D---- C:\Новая папка (3)
2012-07-12 10:56:10 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2012-07-10 11:01:03 ----D---- C:\Documents and Settings\All Users\Application Data\Caphyon
2012-07-10 11:00:17 ----A---- C:\WINDOWS\system32\MSI1E81.tmp
2012-07-09 11:40:56 ----D---- C:\Новая папка (2)
2012-07-09 11:39:59 ----A---- C:\WINDOWS\system32\ptpusd.dll
2012-07-09 11:39:59 ----A---- C:\WINDOWS\system32\ptpusb.dll
2012-07-09 11:32:14 ----D---- C:\Documents and Settings\Admin\Application Data\COWON
2012-07-09 11:27:58 ----D---- C:\Program Files\JetAudio
2012-07-09 11:27:58 ----D---- C:\Program Files\Common Files\COWON
2012-07-09 11:12:09 ----D---- C:\Documents and Settings\Admin\Application Data\Apple Computer
2012-07-09 11:12:04 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2012-07-09 11:12:04 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
2012-07-09 11:11:37 ----D---- C:\Program Files\iPod
2012-07-09 11:11:36 ----D---- C:\Program Files\iTunes
2012-07-09 11:11:36 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2012-07-09 11:11:36 ----D---- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2012-07-09 11:11:23 ----D---- C:\Program Files\Apple Software Update
2012-07-09 11:11:16 ----DC---- C:\WINDOWS\system32\DRVSTORE
2012-07-09 11:11:16 ----A---- C:\WINDOWS\system32\usbaaplrc.dll
2012-07-09 11:11:16 ----A---- C:\WINDOWS\system32\drivers\usbaapl.sys
2012-07-09 11:11:04 ----D---- C:\Program Files\Bonjour
2012-07-09 11:10:56 ----D---- C:\Program Files\Common Files\Apple
2012-07-09 11:10:56 ----D---- C:\Documents and Settings\All Users\Application Data\Apple
2012-07-08 23:27:12 ----D---- C:\Documents and Settings\All Users\Application Data\AlterGeo
2012-07-08 23:25:52 ----D---- C:\Program Files\AlterGeo
2012-07-08 23:11:23 ----D---- C:\Documents and Settings\Admin\Application Data\AdobeUM
2012-07-08 23:06:43 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2012-07-08 23:04:33 ----D---- C:\Program Files\Common Files\Adobe Systems Shared
2012-07-08 23:03:33 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2012-07-08 23:03:25 ----D---- C:\Program Files\Adobe
2012-07-08 16:06:25 ----D---- C:\Documents and Settings\Admin\Application Data\ConsultantPlus
2012-07-08 16:00:43 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2012-07-07 20:46:41 ----D---- C:\WINDOWS\Sun
2012-07-07 20:46:39 ----D---- C:\Documents and Settings\Admin\Application Data\Sun
2012-07-05 18:26:03 ----D---- C:\Program Files\Clip2Net
2012-07-05 15:49:06 ----D---- C:\Documents and Settings\Admin\Application Data\Foxit Software
2012-07-05 15:48:37 ----D---- C:\Program Files\Google
2012-07-05 15:47:08 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-07-05 12:58:47 ----A---- C:\WINDOWS\system32\drivers\PnkBstrK.sys
2012-07-05 12:58:46 ----A---- C:\Documents and Settings\Admin\Application Data\PnkBstrK.sys
2012-07-05 12:58:43 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2012-07-05 12:58:19 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2012-07-05 12:58:16 ----A---- C:\WINDOWS\system32\pbsvc.exe
2012-07-05 12:58:12 ----D---- C:\WINDOWS\system32\LogFiles
2012-07-05 12:33:33 ----D---- C:\Documents and Settings\Admin\Application Data\Download Master
2012-07-05 12:31:52 ----D---- C:\Program Files\Download Master
2012-07-05 12:22:26 ----D---- C:\Downloads
2012-07-05 12:21:53 ----D---- C:\Documents and Settings\Admin\Application Data\WinRAR
2012-07-04 22:08:59 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-07-04 22:08:59 ----D---- C:\Documents and Settings\All Users\Application Data\Mozilla
2012-07-04 21:55:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2012-07-04 21:55:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2707511$
2012-07-04 21:55:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$
2012-07-04 21:55:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2659262$
2012-07-04 21:55:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2564958$
2012-07-04 21:54:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2483614$
2012-07-04 21:54:51 ----D---- C:\Documents and Settings\Admin\Application Data\Skype
2012-07-04 21:54:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2012-07-04 21:54:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893-v2$
2012-07-04 21:54:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2012-07-04 21:53:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276-v2$
2012-07-04 21:53:32 ----HDC---- C:\WINDOWS\$NtUninstallKB2646524$
2012-07-04 21:53:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-07-04 21:53:29 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2012-07-04 21:53:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2631813$
2012-07-04 21:53:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2012-07-04 21:52:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2012-07-04 21:51:58 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2012-07-04 21:51:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2012-07-04 21:51:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2012-07-04 21:49:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2012-07-04 21:49:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2485663$
2012-07-04 21:48:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2598479$
2012-07-04 21:48:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2012-07-04 21:47:25 ----A---- C:\WINDOWS\system32\MRT.exe
2012-07-04 21:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB2686509$
2012-07-04 21:47:17 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2012-07-04 21:47:12 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2012-07-04 21:47:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2012-07-04 21:47:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2012-07-04 21:46:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2012-07-04 21:46:38 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2012-07-04 21:46:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2012-07-04 21:46:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2624667$
2012-07-04 21:44:09 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2012-07-04 21:42:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2592799$
2012-07-04 21:42:44 ----HDC---- C:\WINDOWS\$NtUninstallKB2718704$
2012-07-04 21:42:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2695962$
2012-07-04 21:42:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2012-07-04 21:42:27 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2012-07-04 21:42:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2570947$
2012-07-04 21:42:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2685939$
2012-07-04 21:41:38 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2012-07-04 21:41:34 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2012-07-04 21:41:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2507618$
2012-07-04 21:41:27 ----HDC---- C:\WINDOWS\$NtUninstallKB2603381$
2012-07-04 21:41:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2419632$
2012-07-04 21:41:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2508429$
2012-07-04 21:41:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2653956$
2012-07-04 21:41:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2506212$
2012-07-04 21:41:06 ----HDC---- C:\WINDOWS\$NtUninstallKB2633952$
2012-07-04 21:41:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2012-07-04 21:41:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2012-07-04 21:40:56 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2012-07-04 21:40:53 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2012-07-04 21:40:50 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2012-07-04 21:40:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2618451$
2012-07-04 21:38:24 ----D---- C:\WINDOWS\SxsCaPendDel
2012-07-04 21:37:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2509553$
2012-07-04 21:37:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2676562$
2012-07-04 21:36:23 ----HDC---- C:\WINDOWS\$NtUninstallKB2709162$
2012-07-04 21:36:20 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2012-07-04 21:36:15 ----D---- C:\WINDOWS\ie8updates
2012-07-04 21:36:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2012-07-04 21:36:05 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2012-07-04 21:36:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2012-07-04 21:35:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2566454$
2012-07-04 21:35:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2661637$
2012-07-04 21:35:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2584146$
2012-07-04 21:35:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2012-07-04 21:35:41 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2012-07-04 21:35:41 ----HD---- C:\WINDOWS\$hf_mig$
2012-07-04 21:31:51 ----A---- C:\WINDOWS\system32\msonpmon.dll
2012-07-04 21:31:13 ----D---- C:\Program Files\Microsoft Works
2012-07-04 21:30:58 ----D---- C:\Program Files\Microsoft Visual Studio
2012-07-04 21:30:58 ----D---- C:\Program Files\Common Files\DESIGNER
2012-07-04 21:30:34 ----D---- C:\Program Files\Microsoft.NET
2012-07-04 21:29:10 ----D---- C:\Program Files\Microsoft Visual Studio 8
2012-07-04 21:28:33 ----D---- C:\WINDOWS\SHELLNEW
2012-07-04 21:28:18 ----D---- C:\Program Files\Microsoft Office
2012-07-04 21:28:18 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2012-07-04 21:27:56 ----RHD---- C:\MSOCache
2012-07-04 21:27:49 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2012-07-04 21:04:19 ----N---- C:\WINDOWS\system32\iacenc.dll
2012-07-04 21:01:10 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2012-07-04 20:38:52 ----A---- C:\WINDOWS\system32\nvModes.dat
2012-07-04 20:34:45 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2012-07-04 20:34:10 ----ASH---- C:\hiberfil.sys
2012-07-04 20:32:48 ----RA---- C:\WINDOWS\system32\LgExport.dll
2012-07-04 20:32:48 ----RA---- C:\WINDOWS\system32\LGDispDrv.dll
2012-07-04 20:32:43 ----D---- C:\Program Files\LG Soft India
2012-07-04 20:29:01 ----D---- C:\WINDOWS\system32\AGEIA
2012-07-04 20:29:00 ----D---- C:\Program Files\AGEIA Technologies
2012-07-04 20:28:38 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2012-07-04 20:27:58 ----D---- C:\WINDOWS\nview
2012-07-04 20:27:58 ----A---- C:\WINDOWS\system32\nvudisp.exe
2012-07-04 20:11:19 ----D---- C:\Новая папка
2012-07-04 19:13:32 ----D---- C:\Documents and Settings\All Users\Application Data\IP-TV Player
2012-07-04 19:13:28 ----D---- C:\Program Files\IP-TV Player
2012-07-04 19:12:31 ----D---- C:\Documents and Settings\Admin\Application Data\ESMA
2012-07-04 19:12:00 ----D---- C:\Program Files\ESMA Ltd
2012-07-04 19:10:30 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2012-07-04 19:10:07 ----A---- C:\WINDOWS\jestertb.dll
2012-07-04 19:04:33 ----D---- C:\Documents and Settings\Admin\Application Data\ESET
2012-07-04 19:03:49 ----D---- C:\Program Files\ESET
2012-07-04 19:03:49 ----D---- C:\Documents and Settings\All Users\Application Data\ESET
2012-07-04 18:55:10 ----D---- C:\Program Files\CCleaner
2012-07-04 18:53:37 ----D---- C:\Program Files\Mail.Ru
2012-07-04 18:53:37 ----D---- C:\Documents and Settings\Admin\Application Data\Mra
2012-07-04 18:22:08 ----RA---- C:\WINDOWS\system32\CSVer.dll
2012-07-04 18:22:08 ----D---- C:\Program Files\Intel
2012-07-04 18:21:43 ----D---- C:\Intel
2012-07-04 18:18:31 ----D---- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
2012-07-04 17:06:02 ----A---- C:\WINDOWS\system32\h323log.txt
2012-07-04 17:04:10 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2012-07-04 17:04:09 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2012-07-04 17:04:08 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2012-07-04 17:04:07 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2012-07-04 17:04:06 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2012-07-04 17:04:05 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2012-07-04 17:04:04 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2012-07-04 17:04:03 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2012-07-04 17:04:03 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2012-07-04 17:04:02 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2012-07-04 17:04:01 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2012-07-04 17:03:58 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2012-07-04 17:03:39 ----A---- C:\WINDOWS\system32\hidserv.dll
2012-07-04 17:03:13 ----D---- C:\WINDOWS\system32\RTCOM
2012-07-04 17:03:12 ----A---- C:\WINDOWS\system32\ksuser.dll
2012-07-04 17:03:12 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2012-07-04 17:03:12 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2012-07-04 17:02:45 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2012-07-04 17:02:12 ----D---- C:\Program Files\NVIDIA Corporation
2012-07-04 17:01:10 ----A---- C:\WINDOWS\system32\usbui.dll
2012-07-04 17:01:00 ----A---- C:\WINDOWS\system32\drivers\intelide.sys
2012-07-04 16:59:22 ----SHD---- C:\WINDOWS\Installer
2012-07-04 16:59:22 ----D---- C:\Program Files\Common Files\ODBC
2012-07-04 16:59:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-07-04 16:59:22 ----A---- C:\WINDOWS\ODBCINST.INI
2012-07-04 16:59:19 ----D---- C:\Program Files\Common Files\SpeechEngines
2012-07-04 16:59:18 ----RD---- C:\Program Files
2012-07-04 16:59:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-07-04 16:59:18 ----D---- C:\Program Files\Common Files
2012-07-04 16:59:15 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2012-07-04 16:59:15 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2012-07-04 16:59:15 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2012-07-04 16:59:13 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2012-07-04 16:59:13 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2012-07-04 16:59:13 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2012-07-04 16:59:13 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2012-07-04 16:59:13 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2012-07-04 16:59:13 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2012-07-04 16:59:13 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2012-07-04 16:59:12 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2012-07-04 16:59:12 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2012-07-04 16:59:12 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2012-07-04 16:59:12 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2012-07-04 16:59:12 ----RA---- C:\WINDOWS\system32\kbdest.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdro.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2012-07-04 16:59:10 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdycc.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbduzb.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdur.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdtat.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdmon.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdkyr.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdkaz.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdbu.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdblr.dll
2012-07-04 16:59:07 ----A---- C:\WINDOWS\system32\kbdaze.dll
2012-07-04 16:59:06 ----A---- C:\WINDOWS\system32\spxcoins.dll
2012-07-04 16:59:06 ----A---- C:\WINDOWS\system32\irclass.dll
2012-07-04 16:59:06 ----A---- C:\WINDOWS\system32\dgsetup.dll
2012-07-04 16:59:06 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2012-07-04 16:59:05 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2012-07-04 16:59:03 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2012-07-04 16:59:03 ----A---- C:\WINDOWS\TASKMAN.EXE
2012-07-04 16:59:03 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2012-07-04 16:59:03 ----A---- C:\WINDOWS\system32\batt.dll
2012-07-04 16:59:03 ----A---- C:\WINDOWS\notepadorig.exe
2012-07-04 16:59:02 ----A---- C:\WINDOWS\system32\storprop.dll
2012-07-04 16:58:56 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2012-07-04 16:57:38 ----RA---- C:\WINDOWS\SET8.tmp
2012-07-04 16:57:37 ----RA---- C:\WINDOWS\SET4.tmp
2012-07-04 16:57:36 ----RA---- C:\WINDOWS\SET3.tmp
2012-07-04 16:57:32 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2012-07-04 16:55:52 ----A---- C:\WINDOWS\system32\OpenCL.dll
2012-07-04 16:55:51 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2012-07-04 16:55:51 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2012-07-04 16:55:50 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2012-07-04 16:53:11 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2012-07-04 16:53:11 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys
2012-07-04 16:53:09 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2012-07-04 16:53:09 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2012-07-04 16:53:08 ----A---- C:\WINDOWS\vncutil.exe
2012-07-04 16:53:07 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2012-07-04 16:53:07 ----A---- C:\WINDOWS\SkyTel.exe
2012-07-04 16:53:07 ----A---- C:\WINDOWS\RtlUpd.exe
2012-07-04 16:53:07 ----A---- C:\WINDOWS\RTLCPL.EXE
2012-07-04 16:53:07 ----A---- C:\WINDOWS\RtkAudioService.exe
2012-07-04 16:53:06 ----A---- C:\WINDOWS\RTHDCPL.EXE
2012-07-04 16:53:06 ----A---- C:\WINDOWS\MicCal.exe
2012-07-04 16:53:04 ----A---- C:\WINDOWS\ALCWZRD.EXE
2012-07-04 16:53:04 ----A---- C:\WINDOWS\ALCMTR.EXE
2012-07-04 16:51:05 ----A---- C:\WINDOWS\system32\mvcoinst.dll
2012-07-04 16:51:02 ----A---- C:\WINDOWS\system32\drivers\l1e51x86.sys
2012-07-04 16:50:54 ----A---- C:\WINDOWS\system32\drivers\ASACPI.sys
2012-07-04 16:50:26 ----D---- C:\WINDOWS\system32\CatRoot2
2012-07-04 16:50:26 ----D---- C:\WINDOWS\system32\CatRoot
2012-07-04 16:48:38 ----D---- C:\Documents and Settings
2012-07-04 16:48:37 ----SHD---- C:\System Volume Information
2012-07-04 16:48:37 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2012-07-04 16:47:21 ----SH---- C:\boot.ini
2012-07-04 16:43:52 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-07-04 16:43:52 ----RD---- C:\WINDOWS\Web
2012-07-04 16:43:52 ----RD---- C:\WINDOWS\Fonts
2012-07-04 16:43:52 ----HD---- C:\WINDOWS\inf
2012-07-04 16:43:52 ----D---- C:\WINDOWS\WinSxS
2012-07-04 16:43:52 ----D---- C:\WINDOWS\twain_32
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Temp
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\wins
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\wbem
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\usmt
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\spool
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\ShellExt
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\Setup
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\ru-ru
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\ru
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\ras
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\oobe
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\npp
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\mui
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\inetsrv
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\IME
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\icsxml
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\ias
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\export
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\drivers\UMDF
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\drivers\etc
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\drivers\disdn
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\drivers
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\dhcp
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\config
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\3com_dmi
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\3076
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\2052
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1054
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1049
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1042
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1041
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1037
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1033
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1031
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1028
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32\1025
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system32
2012-07-04 16:43:52 ----D---- C:\WINDOWS\system
2012-07-04 16:43:52 ----D---- C:\WINDOWS\security
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Resources
2012-07-04 16:43:52 ----D---- C:\WINDOWS\repair
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Provisioning
2012-07-04 16:43:52 ----D---- C:\WINDOWS\PeerNet
2012-07-04 16:43:52 ----D---- C:\WINDOWS\pchealth
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Network Diagnostic
2012-07-04 16:43:52 ----D---- C:\WINDOWS\mui
2012-07-04 16:43:52 ----D---- C:\WINDOWS\msapps
2012-07-04 16:43:52 ----D---- C:\WINDOWS\msagent
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Media
2012-07-04 16:43:52 ----D---- C:\WINDOWS\L2Schemas
2012-07-04 16:43:52 ----D---- C:\WINDOWS\java
2012-07-04 16:43:52 ----D---- C:\WINDOWS\ime
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Help
2012-07-04 16:43:52 ----D---- C:\WINDOWS\ehome
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Driver Cache
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Debug
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Cursors
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Connection Wizard
2012-07-04 16:43:52 ----D---- C:\WINDOWS\Config
2012-07-04 16:43:52 ----D---- C:\WINDOWS\AppPatch
2012-07-04 16:43:52 ----D---- C:\WINDOWS\addins
2012-07-04 16:43:52 ----D---- C:\WINDOWS
2012-07-04 16:43:52 ----ASH---- C:\pagefile.sys
2012-07-04 15:24:32 ----D---- C:\WINDOWS\ASUSInstAll
2012-07-04 15:20:04 ----D---- C:\Documents and Settings\Admin\Application Data\Symantec
2012-07-04 15:18:32 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2012-07-04 15:18:15 ----D---- C:\Program Files\Common Files\Symantec Shared
2012-07-04 15:17:20 ----A---- C:\WINDOWS\Ascd_log.ini
2012-07-04 15:14:23 ----A---- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2012-07-04 15:14:23 ----A---- C:\WINDOWS\Ascd_tmp.ini
2012-07-04 15:12:03 ----D---- C:\FlylinkDC++
2012-07-04 15:11:15 ----D---- C:\Documents and Settings\Admin\Application Data\Opera
2012-07-04 15:11:12 ----D---- C:\Program Files\Opera
2012-07-04 15:02:57 ----D---- C:\Documents and Settings\Admin\Application Data\Macromedia
2012-07-04 13:58:34 ----D---- C:\Program Files\Hewlett-Packard
2012-07-04 13:58:28 ----D---- C:\Program Files\HP
2012-07-04 13:57:59 ----A---- C:\WINDOWS\system32\wiafbdrv.dll
2012-07-04 13:57:59 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2012-07-04 13:56:46 ----RA---- C:\WINDOWS\fonts\fontlist.txt
2012-07-04 13:56:22 ----A---- C:\WINDOWS\system32\ltwen13n.dll
2012-07-04 13:56:22 ----A---- C:\WINDOWS\system32\lttw213n.dll
2012-07-04 13:56:22 ----A---- C:\WINDOWS\system32\ltpdg13n.dll
2012-07-04 13:56:22 ----A---- C:\WINDOWS\system32\ltdlg13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\ltwnd13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\ltrtn13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\ltpnt13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\ltcry13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\lftif13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\lfpng13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\lfjbg13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\lfiff13n.dll
2012-07-04 13:56:21 ----A---- C:\WINDOWS\system32\lfbmp13n.dll
2012-07-04 13:56:20 ----A---- C:\WINDOWS\system32\lteml13n.dll
2012-07-04 13:56:20 ----A---- C:\WINDOWS\system32\ltclr13n.dll
2012-07-04 13:56:20 ----A---- C:\WINDOWS\system32\lfcmp13n.dll
2012-07-04 13:56:19 ----A---- C:\WINDOWS\system32\Ltwvc13n.dll
2012-07-04 13:56:19 ----A---- C:\WINDOWS\system32\ltkrn13n.dll
2012-07-04 13:56:19 ----A---- C:\WINDOWS\system32\ltimg13n.dll
2012-07-04 13:56:19 ----A---- C:\WINDOWS\system32\ltfil13n.dll
2012-07-04 13:56:19 ----A---- C:\WINDOWS\system32\ltefx13n.dll
2012-07-04 13:56:19 ----A---- C:\WINDOWS\system32\LTDIS13n.dll
2012-07-04 13:56:19 ----A---- C:\WINDOWS\system32\LTCON13n.dll
2012-07-04 13:56:18 ----A---- C:\WINDOWS\system32\HPMLVS.dll
2012-07-04 13:56:18 ----A---- C:\WINDOWS\system32\HP1005LM.DLL
2012-07-04 13:56:18 ----A---- C:\WINDOWS\system32\agmcrdrv.dll
2012-07-04 13:55:59 ----HD---- C:\Program Files\Agilent-HP
2012-07-04 13:52:58 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2012-07-04 13:49:37 ----D---- C:\Documents and Settings\Admin\Application Data\HP
2012-07-04 13:48:25 ----SHD---- C:\RECYCLER
2012-07-04 13:45:38 ----D---- C:\Documents and Settings\All Users\Application Data\InstallShield
2012-07-04 13:45:30 ----HD---- C:\Program Files\InstallShield Installation Information
2012-07-04 13:45:22 ----D---- C:\Program Files\Common Files\InstallShield
2012-07-04 13:41:02 ----A---- C:\WINDOWS\NeroDigital.ini
2012-07-04 13:40:13 ----D---- C:\Program Files\uTorrent
2012-07-04 13:40:13 ----D---- C:\Documents and Settings\Admin\Application Data\uTorrent
2012-07-04 13:39:47 ----D---- C:\Documents and Settings\All Users\Application Data\AlawarWrapper
2012-07-04 13:39:24 ----D---- C:\Program Files\Skype
2012-07-04 13:39:18 ----D---- C:\Program Files\QIP Infium
2012-07-04 13:39:07 ----D---- C:\Program Files\Mozilla Firefox
2012-07-04 13:39:06 ----D---- C:\Documents and Settings\Admin\Application Data\Mozilla
2012-07-04 13:38:58 ----D---- C:\Program Files\UltraISO
2012-07-04 13:38:58 ----D---- C:\Program Files\Common Files\EZB Systems
2012-07-04 13:38:52 ----N---- C:\WINDOWS\system32\drivers\imagesrv.sys
2012-07-04 13:38:52 ----N---- C:\WINDOWS\system32\drivers\imagedrv.sys
2012-07-04 13:38:41 ----N---- C:\WINDOWS\system32\TwnLib4.dll
2012-07-04 13:38:41 ----N---- C:\WINDOWS\system32\ImagXRA7.dll
2012-07-04 13:38:41 ----N---- C:\WINDOWS\system32\ImagXR7.dll
2012-07-04 13:38:41 ----N---- C:\WINDOWS\system32\ImagXpr7.dll
2012-07-04 13:38:41 ----N---- C:\WINDOWS\system32\ImagX7.dll
2012-07-04 13:38:41 ----A---- C:\WINDOWS\system32\TwnLib20.dll
2012-07-04 13:38:41 ----A---- C:\WINDOWS\system32\NeroCheck.exe
2012-07-04 13:38:40 ----D---- C:\Program Files\Common Files\Ahead
2012-07-04 13:38:40 ----D---- C:\Program Files\Ahead
2012-07-04 13:38:27 ----A---- C:\WINDOWS\system32\MODIFYPE.EXE
2012-07-04 13:38:27 ----A---- C:\WINDOWS\system32\CABTOOLS.VBS
2012-07-04 13:38:27 ----A---- C:\WINDOWS\system32\CABOUT.VBS
2012-07-04 13:38:27 ----A---- C:\WINDOWS\system32\CABIN.VBS
2012-07-04 13:38:27 ----A---- C:\WINDOWS\system32\CABARC.EXE
2012-07-04 13:38:26 ----D---- C:\Program Files\7-Zip
2012-07-04 13:38:25 ----D---- C:\Program Files\WinRAR
2012-07-04 13:38:24 ----D---- C:\Program Files\FastStone Image Viewer
2012-07-04 13:38:24 ----D---- C:\Documents and Settings\Admin\Application Data\FastStone
2012-07-04 13:38:01 ----D---- C:\Program Files\Common Files\Adobe
2012-07-04 13:37:14 ----D---- C:\Program Files\FsCapture
2012-07-04 13:37:12 ----D---- C:\Program Files\Unlocker
2012-07-04 13:37:10 ----D---- C:\Program Files\Total Commander
2012-07-04 13:37:07 ----D---- C:\Documents and Settings\Admin\Application Data\Adobe
2012-07-04 13:37:04 ----D---- C:\Program Files\Uninstall Tool
2012-07-04 13:36:57 ----D---- C:\Program Files\Winamp
2012-07-04 13:36:57 ----D---- C:\Documents and Settings\Admin\Application Data\Winamp
2012-07-04 13:36:46 ----D---- C:\Program Files\KMPlayer
2012-07-04 13:36:34 ----D---- C:\Program Files\USB Disk Security
2012-07-04 13:36:34 ----D---- C:\Documents and Settings\All Users\Application Data\Zbshareware Lab
2012-07-04 13:35:11 ----D---- C:\WINDOWS\system32\XPSViewer
2012-07-04 13:35:11 ----D---- C:\WINDOWS\system32\en-US
2012-07-04 13:35:11 ----D---- C:\Program Files\MSBuild
2012-07-04 13:35:08 ----D---- C:\Program Files\Reference Assemblies
2012-07-04 13:34:45 ----N---- C:\WINDOWS\system32\spmsg.dll
2012-07-04 13:34:45 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2012-07-04 13:33:20 ----D---- C:\WINDOWS\system32\URTTemp
2012-07-04 13:31:56 ----D---- C:\Program Files\Everest
2012-07-04 13:27:31 ----D---- C:\Program Files\Vuescan
2012-07-04 13:27:15 ----D---- C:\WINDOWS\system32\AkelFiles
2012-07-04 13:27:15 ----A---- C:\WINDOWS\system32\akelpad.ini
2012-07-04 13:27:11 ----A---- C:\WINDOWS\WPI_Log_2012.07.04_13.27.11.txt
2012-07-04 13:24:20 ----A---- C:\WINDOWS\system32\Reg2Inf.exe
2012-07-04 13:24:09 ----D---- C:\WINDOWS\system32\Lang
2012-07-04 13:24:05 ----A---- C:\WINDOWS\system32\oeminfo.ini
2012-07-04 13:24:04 ----A---- C:\WINDOWS\system32\Пузыри.scr
2012-07-04 13:24:04 ----A---- C:\WINDOWS\system32\ssmyst.scr
2012-07-04 13:24:04 ----A---- C:\WINDOWS\system32\ssbezier.scr
2012-07-04 13:24:04 ----A---- C:\WINDOWS\system32\OEMINFO.CMD
2012-07-04 13:24:04 ----A---- C:\WINDOWS\system32\hidcon.exe
2012-07-04 13:23:52 ----A---- C:\WINDOWS\system32\wmpns.dll
2012-07-04 13:23:51 ----D---- C:\Documents and Settings\Admin\Application Data\Identities
2012-07-04 13:23:50 ----HD---- C:\Program Files\Uninstall Information
2012-07-04 13:23:29 ----SD---- C:\Documents and Settings\Admin\Application Data\Microsoft
2012-07-04 13:23:29 ----ASH---- C:\Documents and Settings\Admin\Application Data\desktop.ini
2012-07-04 13:14:48 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-07-04 13:13:21 ----AS---- C:\WINDOWS\bootstat.dat
2012-07-04 13:12:12 ----D---- C:\WINDOWS\system32\xircom
2012-07-04 13:11:55 ----D---- C:\Program Files\VistaDriveIcon
2012-07-04 13:11:45 ----A---- C:\WINDOWS\innounp.exe
2012-07-04 13:11:42 ----SD---- C:\WINDOWS\system32\Microsoft
2012-07-04 13:11:40 ----A---- C:\WINDOWS\system32\deploytk.dll
2012-07-04 13:11:36 ----D---- C:\Program Files\Java
2012-07-04 13:11:24 ----RSD---- C:\WINDOWS\assembly
2012-07-04 13:11:23 ----D---- C:\WINDOWS\Microsoft.NET
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\zlib1.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\Vbrun300.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\vbrun200.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\vbrun100.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\Vb40032.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\Vb40016.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\ssleay32.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\msvcrt10.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\msvcr71.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\msvcr70.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\msvcp71.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\MSVCP70.DLL
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\msvci70.dll
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\MSSTKPRP.DLL
2012-07-04 13:11:09 ----A---- C:\WINDOWS\system32\msstdfmt.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71u.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71KOR.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71JPN.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71ITA.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71FRA.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71ESP.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71ENU.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71DEU.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71CHT.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71CHS.DLL
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\MFC71.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70u.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70kor.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70jpn.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70ita.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70fra.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70esp.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70enu.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70deu.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70cht.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70chs.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\mfc70.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\libeay32.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\atl71.dll
2012-07-04 13:11:08 ----A---- C:\WINDOWS\system32\atl70.dll
2012-07-04 13:10:48 ----RASH---- C:\MSDOS.SYS
2012-07-04 13:10:48 ----RASH---- C:\IO.SYS
2012-07-04 13:10:48 ----A---- C:\WINDOWS\control.ini
2012-07-04 13:10:48 ----A---- C:\CONFIG.SYS
2012-07-04 13:10:48 ----A---- C:\AUTOEXEC.BAT
2012-07-04 13:10:34 ----A---- C:\WINDOWS\system32\mapi32.dll
2012-07-04 13:09:52 ----HD---- C:\Program Files\WindowsUpdate
2012-07-04 13:09:50 ----D---- C:\Program Files\Online Services
2012-07-04 13:09:42 ----A---- C:\WINDOWS\system32\atrace.dll
2012-07-04 13:09:41 ----A---- C:\WINDOWS\system32\desktop.ini
2012-07-04 13:09:41 ----A---- C:\WINDOWS\desktop.ini
2012-07-04 13:09:33 ----D---- C:\Program Files\Common Files\Services
2012-07-04 13:09:33 ----A---- C:\WINDOWS\system32\acctres.dll
2012-07-04 13:09:30 ----SD---- C:\WINDOWS\Tasks
2012-07-04 13:09:30 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2012-07-04 13:09:29 ----D---- C:\Program Files\Common Files\MSSoap
2012-07-04 13:09:26 ----D---- C:\WINDOWS\system32\Macromed
2012-07-04 13:09:26 ----D---- C:\WINDOWS\srchasst
2012-07-04 13:09:24 ----A---- C:\WINDOWS\system32\wuweb.dll
2012-07-04 13:09:24 ----A---- C:\WINDOWS\system32\wucltui.dll
2012-07-04 13:09:23 ----A---- C:\WINDOWS\system32\wups.dll
2012-07-04 13:09:23 ----A---- C:\WINDOWS\system32\wuauserv.dll
2012-07-04 13:09:23 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2012-07-04 13:09:23 ----A---- C:\WINDOWS\system32\wuaueng.dll
2012-07-04 13:09:23 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2012-07-04 13:09:23 ----A---- C:\WINDOWS\system32\wuauclt.exe
2012-07-04 13:09:22 ----A---- C:\WINDOWS\system32\wuapi.dll
2012-07-04 13:09:22 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2012-07-04 13:09:22 ----A---- C:\WINDOWS\system32\qmgr.dll
2012-07-04 13:09:22 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2012-07-04 13:09:22 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2012-07-04 13:09:22 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2012-07-04 13:09:19 ----D---- C:\Program Files\Movie Maker
2012-07-04 13:09:05 ----A---- C:\WINDOWS\system32\safrslv.dll
2012-07-04 13:09:05 ----A---- C:\WINDOWS\system32\safrdm.dll
2012-07-04 13:09:05 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2012-07-04 13:09:05 ----A---- C:\WINDOWS\system32\racpldlg.dll
2012-07-04 13:09:02 ----A---- C:\WINDOWS\system32\fltMc.exe
2012-07-04 13:09:02 ----A---- C:\WINDOWS\system32\fltlib.dll
2012-07-04 13:09:02 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2012-07-04 13:09:01 ----D---- C:\WINDOWS\system32\Restore
2012-07-04 13:09:01 ----A---- C:\WINDOWS\system32\srsvc.dll
2012-07-04 13:09:01 ----A---- C:\WINDOWS\system32\srrstr.dll
2012-07-04 13:09:01 ----A---- C:\WINDOWS\system32\srclient.dll
2012-07-04 13:09:01 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2012-07-04 13:09:00 ----A---- C:\WINDOWS\system32\msoert2.dll
2012-07-04 13:09:00 ----A---- C:\WINDOWS\system32\msoeacct.dll
2012-07-04 13:08:59 ----A---- C:\WINDOWS\system32\inetres.dll
2012-07-04 13:08:59 ----A---- C:\WINDOWS\system32\inetcomm.dll
2012-07-04 13:08:57 ----D---- C:\Program Files\Outlook Express
2012-07-04 13:08:57 ----A---- C:\WINDOWS\system32\schedsvc.dll
2012-07-04 13:08:57 ----A---- C:\WINDOWS\system32\mstinit.exe
2012-07-04 13:08:57 ----A---- C:\WINDOWS\system32\mstask.dll
2012-07-04 13:08:57 ----A---- C:\WINDOWS\system32\icwphbk.dll
2012-07-04 13:08:56 ----A---- C:\WINDOWS\system32\isign32.dll
2012-07-04 13:08:56 ----A---- C:\WINDOWS\system32\inetcfg.dll
2012-07-04 13:08:56 ----A---- C:\WINDOWS\system32\icwdial.dll
2012-07-04 13:08:51 ----D---- C:\Program Files\Common Files\System
2012-07-04 13:08:31 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2012-07-04 13:08:23 ----D---- C:\Program Files\ComPlus Applications
2012-07-04 13:08:21 ----A---- C:\WINDOWS\vbaddin.ini
2012-07-04 13:08:21 ----A---- C:\WINDOWS\vb.ini
2012-07-04 13:08:18 ----D---- C:\WINDOWS\Registration
2012-07-04 13:08:07 ----D---- C:\Program Files\Windows Media Player
2012-07-04 13:08:07 ----D---- C:\Program Files\Windows Media Connect 2
2012-07-04 13:08:05 ----A---- C:\WINDOWS\system32\winfxdocobj.exe
2012-07-04 13:08:05 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2012-07-04 13:08:05 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2012-07-04 13:08:03 ----RD---- C:\WINDOWS\Offline Web Pages
2012-07-04 13:08:03 ----D---- C:\WINDOWS\wbem
2012-07-04 13:08:03 ----D---- C:\Program Files\Internet Explorer
2012-07-04 13:08:02 ----SD---- C:\WINDOWS\Downloaded Program Files
2012-07-04 13:08:02 ----A---- C:\WINDOWS\system32\TweakUI.exe
2012-07-04 13:08:01 ----D---- C:\WINDOWS\system32\PreInstall
2012-07-04 13:08:01 ----D---- C:\WINDOWS\SoftwareDistribution
2012-07-04 13:08:01 ----A---- C:\WINDOWS\system32\muweb.dll
2012-07-04 13:08:01 ----A---- C:\WINDOWS\system32\mucltui.dll
2012-07-04 13:08:01 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2012-07-04 13:08:00 ----D---- C:\Program Files\Messenger
2012-07-04 13:07:57 ----D---- C:\Program Files\MSN Gaming Zone
2012-07-04 13:07:57 ----A---- C:\WINDOWS\system32\write.exe
2012-07-04 13:07:43 ----A---- C:\WINDOWS\system32\sndvol32.exe
2012-07-04 13:07:43 ----A---- C:\WINDOWS\system32\hticons.dll
2012-07-04 13:07:43 ----A---- C:\WINDOWS\system32\avwav.dll
2012-07-04 13:07:43 ----A---- C:\WINDOWS\system32\avtapi.dll
2012-07-04 13:07:43 ----A---- C:\WINDOWS\system32\avmeter.dll
2012-07-04 13:07:42 ----A---- C:\WINDOWS\system32\winchat.exe
2012-07-04 13:07:33 ----A---- C:\WINDOWS\system32\getuname.dll
2012-07-04 13:07:33 ----A---- C:\WINDOWS\system32\charmap.exe
2012-07-04 13:07:33 ----A---- C:\WINDOWS\system32\calc.exe
2012-07-04 13:07:32 ----A---- C:\WINDOWS\system32\winmine.exe
2012-07-04 13:07:32 ----A---- C:\WINDOWS\system32\sol.exe
2012-07-04 13:07:32 ----A---- C:\WINDOWS\system32\mshearts.exe
2012-07-04 13:07:32 ----A---- C:\WINDOWS\system32\freecell.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\tslabels.ini
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\tskill.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\tscon.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\shadow.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\rwinsta.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\reset.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\regini.exe
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2012-07-04 13:07:31 ----A---- C:\WINDOWS\system32\qwinsta.exe
2012-07-04 13:07:30 ----A---- C:\WINDOWS\system32\qappsrv.exe
2012-07-04 13:07:30 ----A---- C:\WINDOWS\system32\msg.exe
2012-07-04 13:07:30 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2012-07-04 13:07:30 ----A---- C:\WINDOWS\system32\logoff.exe
2012-07-04 13:07:30 ----A---- C:\WINDOWS\system32\cdmodem.dll
2012-07-04 13:07:25 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2012-07-04 13:07:24 ----A---- C:\WINDOWS\system32\sndrec32.exe
2012-07-04 13:07:24 ----A---- C:\WINDOWS\system32\accwiz.exe
2012-07-04 13:07:23 ----D---- C:\Program Files\Windows NT
2012-07-04 13:07:23 ----A---- C:\WINDOWS\system32\mplay32.exe
2012-07-04 13:07:23 ----A---- C:\WINDOWS\system32\hypertrm.dll
2012-07-04 13:07:22 ----A---- C:\WINDOWS\system32\spider.exe
2012-07-04 13:07:22 ----A---- C:\WINDOWS\system32\mspaint.exe
2012-07-04 13:07:22 ----A---- C:\WINDOWS\system32\clipbrd.exe
2012-07-04 13:07:21 ----A---- C:\WINDOWS\system32\tsgqec.dll
2012-07-04 13:07:21 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2012-07-04 13:07:21 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2012-07-04 13:07:21 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2012-07-04 13:07:21 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2012-07-04 13:07:21 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2012-07-04 13:07:21 ----A---- C:\WINDOWS\system32\aaclient.dll
2012-07-04 13:07:20 ----A---- C:\WINDOWS\system32\remotepg.dll
2012-07-04 13:07:20 ----A---- C:\WINDOWS\system32\rdshost.exe
2012-07-04 13:07:20 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2012-07-04 13:07:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2012-07-04 13:07:20 ----A---- C:\WINDOWS\system32\mstsc.exe
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\termsrv.dll
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\sessmgr.exe
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\rdpclip.exe
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\rdchost.dll
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\qprocess.exe
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\icaapi.dll
2012-07-04 13:07:19 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2012-07-04 13:07:18 ----D---- C:\WINDOWS\system32\MsDtc
2012-07-04 13:07:18 ----A---- C:\WINDOWS\system32\xolehlp.dll
2012-07-04 13:07:18 ----A---- C:\WINDOWS\system32\mtxoci.dll
2012-07-04 13:07:18 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2012-07-04 13:07:18 ----A---- C:\WINDOWS\system32\msdtctm.dll
2012-07-04 13:07:18 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2012-07-04 13:07:18 ----A---- C:\WINDOWS\system32\msdtclog.dll
2012-07-04 13:07:17 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2012-07-04 13:07:17 ----A---- C:\WINDOWS\system32\mtxex.dll
2012-07-04 13:07:17 ----A---- C:\WINDOWS\system32\mtxdm.dll
2012-07-04 13:07:17 ----A---- C:\WINDOWS\system32\msdtc.exe
2012-07-04 13:07:17 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2012-07-04 13:07:16 ----D---- C:\WINDOWS\system32\Com
2012-07-04 13:07:16 ----A---- C:\WINDOWS\system32\stclient.dll
2012-07-04 13:07:16 ----A---- C:\WINDOWS\system32\comrepl.dll
2012-07-04 13:07:16 ----A---- C:\WINDOWS\system32\comaddin.dll
2012-07-04 13:07:16 ----A---- C:\WINDOWS\system32\colbact.dll
2012-07-04 13:07:16 ----A---- C:\WINDOWS\system32\clbcatex.dll
2012-07-04 13:07:16 ----A---- C:\WINDOWS\system32\catsrvut.dll
2012-07-04 13:07:16 ----A---- C:\WINDOWS\system32\catsrvps.dll
2012-07-04 13:07:16 ----A---- C:\WINDOWS\system32\catsrv.dll
2012-07-04 13:07:15 ----A---- C:\WINDOWS\system32\comuid.dll
2012-07-04 13:07:15 ----A---- C:\WINDOWS\system32\comsvcs.dll
2012-07-04 13:07:15 ----A---- C:\WINDOWS\system32\comsnap.dll
2012-07-04 13:07:15 ----A---- C:\WINDOWS\system32\clbcatq.dll
2012-07-04 13:07:10 ----A---- C:\WINDOWS\system32\servdeps.dll
2012-07-04 13:07:10 ----A---- C:\WINDOWS\system32\mmfutil.dll
2012-07-04 13:07:10 ----A---- C:\WINDOWS\system32\licwmi.dll
2012-07-04 13:07:10 ----A---- C:\WINDOWS\system32\cmprops.dll
2012-07-04 13:07:09 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2012-07-04 13:07:09 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys

======Список файлов и папок, измененных за последние 3 месяца======

2012-07-30 09:41:36 ----A---- C:\WINDOWS\system.ini
2012-07-08 07:58:25 ----A---- C:\WINDOWS\win.ini
2012-07-04 13:10:23 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2012-06-02 16:19:48 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2012-06-02 16:19:34 ----A---- C:\WINDOWS\system32\wups2.dll
2012-06-02 16:19:34 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2012-06-02 16:19:34 ----A---- C:\WINDOWS\system32\cdm.dll
2012-06-02 16:19:18 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2012-05-31 17:19:37 ----A---- C:\WINDOWS\system32\crypt32.dll
2012-05-16 19:08:31 ----A---- C:\WINDOWS\system32\wininet.dll
2012-05-11 18:42:57 ----A---- C:\WINDOWS\system32\urlmon.dll
2012-05-11 18:42:57 ----A---- C:\WINDOWS\system32\url.dll
2012-05-11 18:42:57 ----A---- C:\WINDOWS\system32\occache.dll
2012-05-11 18:42:57 ----A---- C:\WINDOWS\system32\mstime.dll
2012-05-11 18:42:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2012-05-11 18:42:56 ----A---- C:\WINDOWS\system32\mshtml.dll
2012-05-11 18:42:56 ----A---- C:\WINDOWS\system32\msfeeds.dll
2012-05-11 18:42:56 ----A---- C:\WINDOWS\system32\licmgr10.dll
2012-05-11 18:42:56 ----A---- C:\WINDOWS\system32\jsproxy.dll
2012-05-11 18:42:56 ----A---- C:\WINDOWS\system32\iertutil.dll
2012-05-11 18:42:55 ----A---- C:\WINDOWS\system32\iepeers.dll
2012-05-11 18:42:55 ----A---- C:\WINDOWS\system32\ieframe.dll
2012-05-11 18:42:55 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2012-05-11 16:14:31 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2012-05-05 07:13:59 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2012-05-05 07:13:59 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe

======Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено)======

R0 mv61xx;mv61xx; C:\WINDOWS\system32\DRIVERS\mv61xx.sys [2009-03-20 154664]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-08-03 55256]
R1 intelppm;Драйвер Intel процессора; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40704]
R1 kbdhid;Драйвер клавиатуры HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-15 14720]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-08-04 140752]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-07-29 134512]
R2 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2009-01-28 133632]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2008-10-11 62848]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384]
R3 hidusb;Драйвер класса HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-15 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-06-16 5095936]
R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2009-12-24 46632]
R3 LGDDCDevice;LGDDCDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\I2CDriver.sys []
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys []
R3 mouhid;Драйвер мыши HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2010-03-12 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2006-02-26 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-09-17 6132576]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-15 32128]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-06 1684736]
S3 LGII2CDevice;LGII2CDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\PII2CDriver.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys []
S3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys []
S3 ujezmza0;AVZ-SG Kernel Driver; \??\C:\WINDOWS\system32\Drivers\ujezmza0.sys []
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2012-04-25 43520]
S3 usbprint;Класс принтеров Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Драйвер USB-сканера; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 utezmza0;AVZ Kernel Driver; \??\C:\WINDOWS\system32\Drivers\utezmza0.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-05-18 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-05-18 82944]

======Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-05-24 55184]
R2 Bonjour Service;Служба Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-11-04 810144]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe [2012-07-05 161704]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-09-17 163908]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2012-07-10 75064]
R3 iPod Service;Сервис iPod; C:\Program Files\iPod\bin\iPodService.exe [2012-06-07 821648]
S2 gupdate;Служба Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-05 136176]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2012-07-08 69632]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-27 250056]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-11-04 33584]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Служба Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-05 136176]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-19 113120]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:\Program Files\Windows Media Player\wmpnetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------