خطأ مكتوب فيها حدث خطأ في Explorer.exe

س

سمآآرتي بوي

زيزوومي جديد
إنضم
11 أبريل 2009
المشاركات
60
مستوى التفاعل
0
النقاط
80
الإقامة
الريــآآآض
غير متصل
بسم الله الرحمن الرحيم
يا متخصصين أنا كل ما بغيت أدخل أحد ملفاتي يطلع رسالهـ خطأ مكتوب فيها حدث خطأ في Explorer.exe ولا أدري ليهـ ..,,, أتمنى تساعدوني ..,,,:f:
 

توقيع : سمآآرتي بوي
ترتيب حسب التاريخ ترتيب حسب الأصوات
وهذا تقرير الهايجاك ..,,


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 03:52:32 ص, on 18/08/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Hotspot Shield\bin\openvpnas.exe
C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ACEngSvr.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\ATK Hotkey\Hcontrol.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ASUS\ASUS MultiFrame\MultiFrame.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\ATK Hotkey\ATKOSD.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files\ATK Hotkey\WDC.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\برامج\برامج الحماية\Zyzoom_HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O2 - BHO: مساعد رابط Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [ACMON] "C:\Program Files\ASUS\Splendid\ACMON.exe"
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [ATKHOTKEY] "C:\Program Files\ATK Hotkey\Hcontrol.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [MultiFrame] C:\Program Files\ASUS\ASUS MultiFrame\MultiFrame.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: &تصدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: تدوين هذا في المدونة - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &تدوين هذا في Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: خدمة تحديث Google (gupdate1c9b46b9678fb82) (gupdate1c9b46b9678fb82) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Hotspot Shield Helper Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
--
End of file - 10018 bytes
 
توقيع : سمآآرتي بوي
تأييد 0
السسسسسسسلام عليكم ... صباح الخير ..

وكل عام وانت بخير يالغالي ..

عطل برامج الحماية عن العمل
ثم
حمل الاداة التالية واحفظها على سطح المكتب

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


عند تشغيلها بتظهر لك رسالة ,, اضغط على >> Yes
بعدها بتظهر لك رساله ثانيه ,, اضغط على >> Yes
اثناء الفحص ممكن يعاد تشغيل الجهاز
وبعد اعادة التشغيل ,, سوف تبدأ الاداة بالفحص مرره ثانيه
لا تقم بتشغيل اي برنامج ،، ومهما طالت عملية الفحص انتظر حتى تنتهي
انتظر حتى يظهر لك تقرير ،،انسخه والصقه بمشاركتك القادمة


 
توقيع : shaded
تأييد 0
صبــآآح النور والسرور مشكور أخوي وجاري التطبيق ..,,
 
توقيع : سمآآرتي بوي
تأييد 0
المعذرة بتعديل العنوان لينم عن فحواه
وارجوا الاطلاع على ها الموضوع في المره المقبله

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


ودي
 
توقيع : KoNaMi
تأييد 0
لا ما عليه أخوي عدّل بكيفك ..,,,,,,,,, اخوي خلصت من الأداة وهذا تقريرها .............................



ComboFix 09-08-10.06 - ASUS 08/18/2009 4:18.3.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1256.966.1025.18.959.437 [GMT 3:00]
Running from: c:\documents and settings\ASUS\سطح المكتب\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\Installer\3114e8b.msp
c:\windows\Installer\3114e8c.msp
c:\windows\Installer\3114ea3.msp
c:\windows\system32\acovcnt.exe
c:\windows\system32\winntue16.dll
.
((((((((((((((((((((((((( Files Created from 2009-07-18 to 2009-08-18 )))))))))))))))))))))))))))))))
.
2009-08-18 00:33 . 2009-08-18 00:33 -------- d-----w- c:\windows\system32\wbem\Repository
2009-08-17 18:39 . 2009-08-17 19:03 -------- d-----w- c:\documents and settings\ASUS\Application Data\Skype
2009-08-17 18:39 . 2009-08-17 18:39 -------- d-----w- c:\program files\Skype
2009-08-16 07:00 . 2009-08-16 07:01 -------- d-----w- c:\program files\Error Repair Professional
2009-08-16 06:55 . 2009-08-16 06:55 -------- d-----w- c:\program files\IP Hider
2009-08-15 21:13 . 2009-08-15 21:13 -------- d-----w- C:\Hotspot Shield
2009-08-15 21:01 . 2009-07-02 02:34 33840 ----a-w- c:\windows\system32\drivers\hssdrv.sys
2009-08-15 21:00 . 2009-08-15 21:13 -------- d-----w- c:\program files\Hotspot Shield
2009-08-13 00:04 . 2009-08-13 00:04 -------- d-----w- c:\windows\ServicePackFiles
2009-08-12 21:12 . 2009-06-09 14:54 290816 -c----w- c:\windows\system32\dllcache\rhttpaa.dll
2009-08-12 21:12 . 2009-06-09 14:54 53248 -c----w- c:\windows\system32\dllcache\tsgqec.dll
2009-08-12 21:12 . 2009-06-09 14:54 136192 -c----w- c:\windows\system32\dllcache\aaclient.dll
2009-08-12 16:17 . 2008-05-29 06:28 28416 ----a-w- c:\windows\system32\uxtuneup.dll
2009-08-12 16:17 . 2009-08-12 16:17 355584 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-08-12 16:16 . 2009-08-12 16:16 -------- d-----w- c:\documents and settings\All Users\Application Data\TuneUp Software
2009-08-12 16:16 . 2009-08-12 16:18 -------- d-----w- c:\program files\TuneUp Utilities 2008
2009-08-12 16:13 . 2009-08-12 16:13 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-08-12 00:00 . 2009-08-12 00:00 -------- d-----w- C:\Inbox
2009-08-11 00:20 . 2004-08-03 21:55 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2009-08-11 00:20 . 2004-08-03 21:55 21504 ----a-w- c:\windows\system32\hidserv.dll
2009-08-11 00:20 . 2004-08-03 20:07 59264 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2009-08-11 00:20 . 2004-08-03 20:07 59264 ----a-w- c:\windows\system32\drivers\USBAUDIO.sys
2009-08-10 04:07 . 2009-08-10 04:07 -------- d-----w- c:\program files\Add Remove Plus! 2004
2009-07-24 00:36 . 2009-07-24 00:36 -------- d-----w- c:\documents and settings\ASUS\Application Data\Alien Skin
2009-07-22 19:13 . 2009-07-22 19:13 28592 ----a-w- c:\windows\system32\drivers\tap0901.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-18 00:39 . 2008-11-30 17:06 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-08-18 00:39 . 2001-09-19 11:00 61916 ----a-w- c:\windows\system32\perfc001.dat
2009-08-18 00:39 . 2001-09-19 11:00 335966 ----a-w- c:\windows\system32\perfh001.dat
2009-08-18 00:33 . 2009-07-08 03:59 4424 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-08-18 00:33 . 2009-07-08 03:59 671776 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-08-18 00:33 . 2009-07-08 03:59 3297312 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-08-18 00:33 . 2009-07-08 03:59 27888 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-08-17 19:03 . 2009-04-13 14:57 -------- d-----w- c:\documents and settings\ASUS\Application Data\uTorrent
2009-08-15 21:40 . 2009-04-19 18:17 -------- d-----w- c:\program files\GetData
2009-08-12 22:12 . 2009-04-19 18:16 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-08-05 09:05 . 2004-08-03 21:55 204800 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 01:31 . 2008-09-23 21:38 -------- d-----w- c:\program files\Windows Media Connect 2
2009-07-21 16:46 . 2009-07-08 05:29 208616 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\avp.exe
2009-07-19 17:49 . 2009-03-19 11:27 -------- d-----w- c:\program files\All2Chat
2009-07-19 14:04 . 2008-12-17 17:31 -------- d-----w- c:\documents and settings\All Users\Application Data\beep axis mode free
2009-07-19 14:01 . 2008-12-17 17:30 -------- d-----w- c:\documents and settings\ASUS\Application Data\drive dupe ping
2009-07-17 18:55 . 2004-08-03 21:55 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-13 20:43 . 2004-08-03 21:55 286208 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-11 15:25 . 2008-09-20 02:45 -------- d-----w- c:\program files\Google
2009-07-11 04:02 . 2009-07-11 04:02 315392 ----a-w- c:\documents and settings\ASUS\Application Data\drive dupe ping\AimCompMode.exe
2009-07-11 04:02 . 2009-07-11 04:02 397312 ----a-w- c:\documents and settings\ASUS\Application Data\drive dupe ping\TitlePlatformPlanBore.exe
2009-07-11 04:01 . 2009-07-11 04:01 -------- d-----w- c:\program files\drive dupe ping
2009-07-11 04:00 . 2008-12-17 17:29 -------- d-----w- c:\program files\Circle Developement
2009-07-11 04:00 . 2008-09-20 02:51 -------- d-----w- c:\program files\Messenger Plus! Live
2009-07-11 00:17 . 2009-05-25 13:56 -------- d-----w- c:\program files\Rell
2009-07-08 05:29 . 2008-01-29 14:29 33808 ----a-w- c:\windows\system32\drivers\klbg.sys
2009-07-08 05:29 . 2009-07-08 04:00 94643 ----a-w- c:\windows\system32\drivers\klick.dat
2009-07-08 05:29 . 2009-07-08 04:00 105395 ----a-w- c:\windows\system32\drivers\klin.dat
2009-07-08 05:28 . 2009-07-08 05:28 33808 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\klbg.sys
2009-07-08 05:28 . 2009-07-08 05:26 226832 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\XP\klif.sys
2009-07-08 03:59 . 2009-07-08 00:07 -------- d-----w- c:\program files\Kaspersky Lab
2009-07-05 17:37 . 2009-07-05 07:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Yahoo!
2009-07-05 07:03 . 2009-07-05 07:03 262144 ----a-w- C:\ntuser.dat
2009-07-03 16:55 . 2007-04-23 03:53 915456 ----a-w- c:\windows\system32\wininet.dll
2009-06-29 08:58 . 2009-06-12 14:09 -------- d-----w- c:\documents and settings\ASUS\Application Data\BSplayer PRO
2009-06-25 18:35 . 2004-08-03 21:55 95744 ----a-w- c:\windows\system32\mqsec.dll
2009-06-25 18:35 . 2004-08-03 21:55 517120 ----a-w- c:\windows\system32\mqsnap.dll
2009-06-25 18:35 . 2004-08-03 21:55 48640 ----a-w- c:\windows\system32\mqupgrd.dll
2009-06-25 18:35 . 2004-08-03 21:55 466432 ----a-w- c:\windows\system32\mqutil.dll
2009-06-25 18:35 . 2004-08-03 21:55 186880 ----a-w- c:\windows\system32\mqtrig.dll
2009-06-25 18:35 . 2004-08-03 21:55 177152 ----a-w- c:\windows\system32\mqrt.dll
2009-06-25 18:35 . 2004-08-03 21:55 123392 ----a-w- c:\windows\system32\mqrtdep.dll
2009-06-25 18:35 . 2004-08-03 21:55 661504 ----a-w- c:\windows\system32\mqqm.dll
2009-06-25 18:35 . 2004-08-03 21:55 47104 ----a-w- c:\windows\system32\mqdscli.dll
2009-06-25 18:35 . 2004-08-03 21:55 225280 ----a-w- c:\windows\system32\mqoa.dll
2009-06-25 18:35 . 2004-08-03 21:55 16896 ----a-w- c:\windows\system32\mqise.dll
2009-06-25 18:35 . 2004-08-03 21:55 138240 ----a-w- c:\windows\system32\mqad.dll
2009-06-25 08:17 . 2007-04-23 03:52 723968 ----a-w- c:\windows\system32\lsasrv.dll
2009-06-25 08:17 . 2007-04-23 03:50 59392 ----a-w- c:\windows\system32\wdigest.dll
2009-06-25 08:17 . 2007-04-23 03:50 301568 ----a-w- c:\windows\system32\kerberos.dll
2009-06-25 08:17 . 2004-08-03 21:55 56320 ----a-w- c:\windows\system32\secur32.dll
2009-06-25 08:17 . 2004-08-03 21:55 168448 ----a-w- c:\windows\system32\schannel.dll
2009-06-25 08:17 . 2004-08-03 21:55 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-06-24 19:26 . 2009-05-25 13:56 25121 ----a-w- c:\documents and settings\ASUS\Application Data\YV.dat
2009-06-22 11:49 . 2004-08-03 21:56 19968 ----a-w- c:\windows\system32\mqbkup.exe
2009-06-22 11:49 . 2004-08-03 21:56 117248 ----a-w- c:\windows\system32\mqtgsvc.exe
2009-06-22 11:49 . 2004-08-03 21:56 4608 ----a-w- c:\windows\system32\mqsvc.exe
2009-06-22 11:48 . 2004-08-03 19:58 91776 ----a-w- c:\windows\system32\drivers\mqac.sys
2009-06-22 11:35 . 2004-08-03 19:59 92544 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-06-20 15:58 . 2009-06-20 15:58 -------- d-----w- c:\program files\Common Files\xing shared
2009-06-20 15:57 . 2008-09-20 02:53 -------- d-----w- c:\program files\Common Files\Real
2009-06-20 15:57 . 2008-09-20 02:53 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-06-16 14:44 . 2007-04-23 03:50 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-16 14:44 . 2007-04-23 03:50 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-12 11:49 . 2004-08-03 21:56 80896 ----a-w- c:\windows\system32\tlntsess.exe
2009-06-12 11:49 . 2005-05-10 22:51 76288 ----a-w- c:\windows\system32\telnet.exe
2009-06-10 14:23 . 2004-08-03 21:55 84992 ----a-w- c:\windows\system32\avifil32.dll
2009-06-10 06:26 . 2007-04-23 03:52 134144 ----a-w- c:\windows\system32\wkssvc.dll
2009-06-09 14:54 . 2008-09-20 02:06 2067968 ----a-w- c:\windows\system32\mstscax.dll
2009-06-09 14:54 . 2007-04-23 03:54 53248 ----a-w- c:\windows\system32\tsgqec.dll
2009-06-09 14:54 . 2007-04-23 03:54 290816 ----a-w- c:\windows\system32\rhttpaa.dll
2009-06-09 14:54 . 2007-04-23 03:54 136192 ----a-w- c:\windows\system32\aaclient.dll
2009-06-09 09:12 . 2008-09-20 02:06 677888 ----a-w- c:\windows\system32\mstsc.exe
2009-06-03 19:23 . 2007-04-23 03:50 1289216 ----a-w- c:\windows\system32\quartz.dll
2009-05-28 10:55 . 2009-05-28 10:55 9728 --sha-w- c:\program files\Thumbs.db
2009-05-20 13:00 . 2008-09-20 02:44 10697 ----a-w- c:\documents and settings\All Users\Application Data\DVD X Studios\DVD X Player 4.1 Professional\DVDXPlayer.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-07-11_16.00.18 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-11 16:41 . 2009-07-11 16:41 97280 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.dll
+ 2009-08-18 00:35 . 2009-08-18 00:35 16384 c:\windows\Temp\Perflib_Perfdata_420.dat
+ 2006-11-02 08:51 . 2006-11-02 08:51 35840 c:\windows\system32\wpdshextres.dll
+ 2006-10-18 17:00 . 2006-10-18 17:00 17408 c:\windows\system32\wpdshextautoplay.exe
+ 2006-10-18 18:47 . 2006-10-18 18:47 63488 c:\windows\system32\wpdmtpus.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 35840 c:\windows\system32\wpdconns.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 99840 c:\windows\system32\wmpshell.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 37376 c:\windows\system32\wmdmps.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 33792 c:\windows\system32\wmdmlog.dll
+ 2009-08-16 06:18 . 2006-09-25 14:58 14640 c:\windows\system32\spmsg.dll
+ 2001-09-19 11:00 . 2009-08-18 00:39 61738 c:\windows\system32\perfc009.dat
+ 2004-08-03 21:55 . 2006-10-18 18:47 27136 c:\windows\system32\mspmsnsv.dll
+ 2009-03-08 01:31 . 2009-07-03 16:55 55296 c:\windows\system32\msfeedsbs.dll
- 2009-03-08 01:31 . 2009-03-08 01:31 55296 c:\windows\system32\msfeedsbs.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 11264 c:\windows\system32\LAPRXY.dll
+ 2007-04-23 03:53 . 2009-07-03 16:55 25600 c:\windows\system32\jsproxy.dll
- 2007-04-23 03:53 . 2009-04-30 21:13 25600 c:\windows\system32\jsproxy.dll
+ 2006-10-18 17:00 . 2006-10-18 17:00 38528 c:\windows\system32\drivers\wpdusb.sys
- 2009-07-10 10:33 . 2009-04-30 21:13 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2009-07-10 10:33 . 2009-07-03 16:55 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 99840 c:\windows\system32\dllcache\wmpshell.dll
+ 2008-09-20 02:08 . 2006-10-18 18:46 64000 c:\windows\system32\dllcache\wmplayer.exe
+ 2008-09-20 02:08 . 2006-10-18 18:47 96256 c:\windows\system32\dllcache\wmpband.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 37376 c:\windows\system32\dllcache\wmdmps.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 33792 c:\windows\system32\dllcache\wmdmlog.dll
+ 2007-04-23 03:50 . 2009-06-25 08:17 59392 c:\windows\system32\dllcache\wdigest.dll
+ 2004-08-03 21:56 . 2009-06-12 11:49 80896 c:\windows\system32\dllcache\tlntsess.exe
+ 2005-05-10 22:51 . 2009-06-12 11:49 76288 c:\windows\system32\dllcache\telnet.exe
- 2004-08-03 21:55 . 2009-02-03 19:52 56320 c:\windows\system32\dllcache\secur32.dll
+ 2004-08-03 21:55 . 2009-06-25 08:17 56320 c:\windows\system32\dllcache\secur32.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 27136 c:\windows\system32\dllcache\mspmsnsv.dll
- 2008-09-22 01:45 . 2009-03-08 01:31 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2008-09-22 01:45 . 2009-07-03 16:55 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 48640 c:\windows\system32\dllcache\mqupgrd.dll
- 2004-08-03 21:55 . 2007-07-06 12:50 48640 c:\windows\system32\dllcache\mqupgrd.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 95744 c:\windows\system32\dllcache\mqsec.dll
- 2004-08-03 21:55 . 2007-07-06 12:50 95744 c:\windows\system32\dllcache\mqsec.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 16896 c:\windows\system32\dllcache\mqise.dll
- 2004-08-03 21:55 . 2007-07-06 12:50 16896 c:\windows\system32\dllcache\mqise.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 47104 c:\windows\system32\dllcache\mqdscli.dll
- 2004-08-03 21:55 . 2007-07-06 12:50 47104 c:\windows\system32\dllcache\mqdscli.dll
- 2004-08-03 21:56 . 2004-08-03 21:56 19968 c:\windows\system32\dllcache\mqbkup.exe
+ 2004-08-03 21:56 . 2009-06-22 11:49 19968 c:\windows\system32\dllcache\mqbkup.exe
+ 2004-08-03 19:58 . 2009-06-22 11:48 91776 c:\windows\system32\dllcache\mqac.sys
+ 2004-08-03 21:55 . 2006-10-18 18:47 11264 c:\windows\system32\dllcache\LAPRXY.dll
+ 2004-08-03 19:59 . 2009-06-22 11:35 92544 c:\windows\system32\dllcache\ksecdd.sys
- 2007-04-23 03:53 . 2009-04-30 21:13 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2007-04-23 03:53 . 2009-07-03 16:55 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2007-04-23 03:50 . 2009-06-16 14:44 81920 c:\windows\system32\dllcache\fontsub.dll
- 2004-08-03 21:55 . 2004-08-03 21:55 84992 c:\windows\system32\dllcache\avifil32.dll
+ 2004-08-03 21:55 . 2009-06-10 14:23 84992 c:\windows\system32\dllcache\avifil32.dll
- 2004-08-03 21:55 . 2004-08-03 21:55 58880 c:\windows\system32\dllcache\atl.dll
+ 2004-08-03 21:55 . 2009-07-17 18:55 58880 c:\windows\system32\dllcache\atl.dll
+ 2008-09-20 03:05 . 2009-08-15 20:56 23040 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 23040 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 61440 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 61440 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 27136 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 27136 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 11264 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 11264 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 86016 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 86016 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 12288 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 12288 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2009-07-30 00:01 . 2009-04-30 21:13 12800 c:\windows\ie8updates\KB972260-IE8\xpshims.dll
+ 2009-07-30 00:01 . 2009-03-08 01:31 55296 c:\windows\ie8updates\KB972260-IE8\msfeedsbs.dll
+ 2009-07-30 00:01 . 2009-04-30 21:13 25600 c:\windows\ie8updates\KB972260-IE8\jsproxy.dll
+ 2009-07-15 00:01 . 2007-04-23 03:50 80896 c:\windows\$NtUninstallKB961371$\fontsub.dll
+ 2009-07-15 00:03 . 2008-07-08 12:58 26488 c:\windows\$hf_mig$\KB973346\update\spcustom.dll
+ 2009-07-15 00:03 . 2008-07-08 12:58 17784 c:\windows\$hf_mig$\KB973346\spmsg.dll
+ 2009-07-15 00:03 . 2008-07-08 12:58 26488 c:\windows\$hf_mig$\KB971633\update\spcustom.dll
+ 2009-07-15 00:03 . 2008-07-08 12:58 17784 c:\windows\$hf_mig$\KB971633\spmsg.dll
+ 2009-07-15 00:01 . 2008-07-08 12:58 26488 c:\windows\$hf_mig$\KB961371\update\spcustom.dll
+ 2009-07-15 00:01 . 2008-07-08 12:58 17784 c:\windows\$hf_mig$\KB961371\spmsg.dll
+ 2009-06-16 14:43 . 2009-06-16 14:43 81920 c:\windows\$hf_mig$\KB961371\SP3QFE\fontsub.dll
+ 2009-06-16 14:36 . 2009-06-16 14:36 81920 c:\windows\$hf_mig$\KB961371\SP3GDR\fontsub.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\wmvdmoe2.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\wmvdmod.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 4096 c:\windows\system32\WMVADVE.DLL
+ 2006-10-18 18:47 . 2006-10-18 18:47 4096 c:\windows\system32\WMVADVD.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\wmsdmoe2.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\wmsdmod.dll
+ 2006-10-18 18:58 . 2006-10-18 18:58 8704 c:\windows\system32\wdfmgr.exe
+ 2006-10-18 18:47 . 2006-10-18 18:47 4096 c:\windows\system32\wdfapi.dll
+ 2006-10-18 18:58 . 2006-10-18 18:58 8704 c:\windows\system32\uwdf.exe
+ 2008-09-24 16:56 . 2009-08-18 00:33 9152 c:\windows\system32\Restore\rstrlog.dat
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\MPG4DMOD.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\MP4SDMOD.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\MP43DMOD.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\dllcache\wmvdmoe2.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\dllcache\wmvdmod.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\dllcache\wmsdmoe2.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\dllcache\wmsdmod.dll
+ 2004-08-03 21:56 . 2009-06-22 11:49 4608 c:\windows\system32\dllcache\mqsvc.exe
- 2004-08-03 21:56 . 2004-08-03 21:56 4608 c:\windows\system32\dllcache\mqsvc.exe
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\dllcache\MPG4DMOD.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\dllcache\MP4SDMOD.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 4096 c:\windows\system32\dllcache\MP43DMOD.dll
+ 2004-08-03 21:52 . 2006-10-18 18:47 7168 c:\windows\system32\dllcache\asferror.dll
+ 2004-08-03 21:52 . 2006-10-18 18:47 7168 c:\windows\system32\asferror.dll
- 2008-09-20 03:05 . 2009-06-12 07:29 4096 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 4096 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2006-10-18 18:47 . 2006-10-18 18:47 356352 c:\windows\system32\wpdsp.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 133632 c:\windows\system32\WPDShServiceObj.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 154624 c:\windows\system32\wpdmtp.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 629760 c:\windows\system32\wpd_ci.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 656896 c:\windows\system32\WMVXENCD.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 767488 c:\windows\system32\WMVSENCD.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 603648 c:\windows\system32\WMSPDMOD.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 204288 c:\windows\system32\wmpsrcwp.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 130048 c:\windows\system32\wmpps.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 613376 c:\windows\system32\wmpmde.dll
+ 2006-10-18 18:47 . 2008-06-24 15:12 295936 c:\windows\system32\wmpeffects.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 242688 c:\windows\system32\wmpasf.dll
+ 2004-08-03 21:55 . 2008-06-18 02:03 938496 c:\windows\system32\WMNetmgr.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 157184 c:\windows\system32\wmidx.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 227328 c:\windows\system32\wmerror.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 535040 c:\windows\system32\wmdrmsdk.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 348672 c:\windows\system32\wmdrmnet.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 429056 c:\windows\system32\wmdrmdev.dll
+ 2004-08-03 21:55 . 2007-10-25 06:28 222720 c:\windows\system32\wmasf.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 757248 c:\windows\system32\wmadmod.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 169472 c:\windows\system32\Setup\msmqocm.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 211456 c:\windows\system32\qasf.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 199168 c:\windows\system32\PortableDeviceWMDRM.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 132096 c:\windows\system32\PortableDeviceWiaCompat.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 166912 c:\windows\system32\PortableDeviceTypes.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 101888 c:\windows\system32\PortableDeviceClassExtension.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 284160 c:\windows\system32\PortableDeviceApi.dll
+ 2001-09-19 11:00 . 2009-08-18 00:39 400326 c:\windows\system32\perfh009.dat
+ 2004-08-03 21:55 . 2009-07-03 16:55 206848 c:\windows\system32\occache.dll
+ 2004-08-03 21:55 . 2009-02-06 18:46 408064 c:\windows\system32\netlogon.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 321536 c:\windows\system32\mswmdm.dll
+ 2004-08-03 21:56 . 2006-12-04 13:21 414720 c:\windows\system32\msscp.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 175616 c:\windows\system32\mspmsp.dll
+ 2004-08-03 21:56 . 2006-10-18 18:47 179712 c:\windows\system32\msnetobj.dll
+ 2009-03-08 01:32 . 2009-07-03 16:55 594432 c:\windows\system32\msfeeds.dll
- 2009-03-08 01:32 . 2009-03-08 01:32 594432 c:\windows\system32\msfeeds.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 259072 c:\windows\system32\MPG4DECD.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 317440 c:\windows\system32\MP4SDECD.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 259072 c:\windows\system32\MP43DECD.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 212992 c:\windows\system32\MFPLAT.dll
+ 2004-08-03 21:56 . 2008-06-17 22:09 100864 c:\windows\system32\logagent.exe
+ 2007-04-23 03:53 . 2009-07-03 16:55 184320 c:\windows\system32\iepeers.dll
+ 2004-08-03 21:55 . 2009-07-03 16:55 386048 c:\windows\system32\iedkcs32.dll
- 2004-08-03 21:56 . 2009-04-30 11:21 173056 c:\windows\system32\ie4uinit.exe
+ 2004-08-03 21:56 . 2009-07-03 11:01 173056 c:\windows\system32\ie4uinit.exe
+ 2004-08-03 21:56 . 2006-10-18 18:47 991744 c:\windows\system32\drmv2clt.dll
+ 2006-10-18 17:00 . 2006-10-18 17:00 249856 c:\windows\system32\drmupgds.exe
+ 2006-10-18 18:47 . 2006-10-18 18:47 671232 c:\windows\system32\drivers\UMDF\wpdmtpdr.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 603648 c:\windows\system32\dllcache\WMSPDMOD.dll
+ 2004-08-03 21:55 . 2009-07-13 20:43 286208 c:\windows\system32\dllcache\wmpdxm.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 242688 c:\windows\system32\dllcache\wmpasf.dll
+ 2004-08-03 21:55 . 2008-06-18 02:03 938496 c:\windows\system32\dllcache\WMNetmgr.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 157184 c:\windows\system32\dllcache\wmidx.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 227328 c:\windows\system32\dllcache\wmerror.dll
+ 2004-08-03 21:55 . 2007-10-25 06:28 222720 c:\windows\system32\dllcache\wmasf.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 757248 c:\windows\system32\dllcache\WMADMOD.dll
+ 2007-04-23 03:52 . 2009-06-10 06:26 134144 c:\windows\system32\dllcache\wkssvc.dll
- 2007-04-23 03:53 . 2009-05-13 05:02 915456 c:\windows\system32\dllcache\wininet.dll
+ 2007-04-23 03:53 . 2009-07-03 16:55 915456 c:\windows\system32\dllcache\wininet.dll
+ 2004-08-03 21:56 . 2007-06-27 13:34 317952 c:\windows\system32\dllcache\unregmp2.exe
+ 2007-04-23 03:50 . 2009-06-16 14:44 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2004-08-03 21:55 . 2009-06-25 08:17 168448 c:\windows\system32\dllcache\schannel.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 211456 c:\windows\system32\dllcache\qasf.dll
+ 2004-08-03 21:55 . 2009-07-03 16:55 206848 c:\windows\system32\dllcache\occache.dll
+ 2004-08-03 21:55 . 2009-02-06 18:46 408064 c:\windows\system32\dllcache\netlogon.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 321536 c:\windows\system32\dllcache\mswmdm.dll
+ 2004-08-03 21:55 . 2009-08-05 09:05 204800 c:\windows\system32\dllcache\mswebdvd.dll
+ 2004-08-03 21:55 . 2009-06-25 08:17 136192 c:\windows\system32\dllcache\msv1_0.dll
+ 2008-09-20 02:06 . 2009-06-09 09:12 677888 c:\windows\system32\dllcache\mstsc.exe
+ 2004-08-03 21:56 . 2006-12-04 13:21 414720 c:\windows\system32\dllcache\msscp.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 175616 c:\windows\system32\dllcache\mspmsp.dll
+ 2004-08-03 21:56 . 2006-10-18 18:47 179712 c:\windows\system32\dllcache\msnetobj.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 169472 c:\windows\system32\dllcache\msmqocm.dll
- 2008-09-22 01:45 . 2009-03-08 01:32 594432 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-09-22 01:45 . 2009-07-03 16:55 594432 c:\windows\system32\dllcache\msfeeds.dll
- 2004-08-03 21:55 . 2007-07-06 12:50 466432 c:\windows\system32\dllcache\mqutil.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 466432 c:\windows\system32\dllcache\mqutil.dll
- 2004-08-03 21:55 . 2004-08-03 21:55 186880 c:\windows\system32\dllcache\mqtrig.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 186880 c:\windows\system32\dllcache\mqtrig.dll
- 2004-08-03 21:56 . 2004-08-03 21:56 117248 c:\windows\system32\dllcache\mqtgsvc.exe
+ 2004-08-03 21:56 . 2009-06-22 11:49 117248 c:\windows\system32\dllcache\mqtgsvc.exe
+ 2004-08-03 21:55 . 2009-06-25 18:35 517120 c:\windows\system32\dllcache\mqsnap.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 123392 c:\windows\system32\dllcache\mqrtdep.dll
- 2004-08-03 21:55 . 2004-08-03 21:55 123392 c:\windows\system32\dllcache\mqrtdep.dll
- 2004-08-03 21:55 . 2007-07-06 12:50 177152 c:\windows\system32\dllcache\mqrt.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 177152 c:\windows\system32\dllcache\mqrt.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 661504 c:\windows\system32\dllcache\mqqm.dll
- 2004-08-03 21:55 . 2004-08-03 21:55 225280 c:\windows\system32\dllcache\mqoa.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 225280 c:\windows\system32\dllcache\mqoa.dll
- 2004-08-03 21:55 . 2007-07-06 12:50 138240 c:\windows\system32\dllcache\mqad.dll
+ 2004-08-03 21:55 . 2009-06-25 18:35 138240 c:\windows\system32\dllcache\mqad.dll
+ 2008-09-20 02:08 . 2006-10-18 18:47 243712 c:\windows\system32\dllcache\mpvis.dll
+ 2007-04-23 03:52 . 2009-06-25 08:17 723968 c:\windows\system32\dllcache\lsasrv.dll
+ 2004-08-03 21:56 . 2008-06-17 22:09 100864 c:\windows\system32\dllcache\logagent.exe
+ 2007-04-23 03:50 . 2009-06-25 08:17 301568 c:\windows\system32\dllcache\kerberos.dll
- 2009-07-10 10:33 . 2009-04-30 21:13 246272 c:\windows\system32\dllcache\ieproxy.dll
+ 2009-07-10 10:33 . 2009-07-03 16:55 246272 c:\windows\system32\dllcache\ieproxy.dll
+ 2007-04-23 03:53 . 2009-07-03 16:55 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2004-08-03 21:55 . 2009-07-03 16:55 386048 c:\windows\system32\dllcache\iedkcs32.dll
+ 2004-08-03 21:56 . 2009-07-03 11:01 173056 c:\windows\system32\dllcache\ie4uinit.exe
- 2004-08-03 21:56 . 2009-04-30 11:21 173056 c:\windows\system32\dllcache\ie4uinit.exe
+ 2004-08-03 21:56 . 2006-10-18 18:47 991744 c:\windows\system32\dllcache\drmv2clt.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 229376 c:\windows\system32\dllcache\cewmdm.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 542720 c:\windows\system32\dllcache\blackbox.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 229376 c:\windows\system32\cewmdm.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 542720 c:\windows\system32\blackbox.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 276992 c:\windows\system32\audiodev.dll
+ 2009-07-29 00:00 . 2009-07-29 00:00 248832 c:\windows\Installer\1699a45.msi
- 2008-09-20 03:05 . 2009-06-12 07:29 409600 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 409600 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 286720 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 286720 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 249856 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 249856 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 794624 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 794624 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 135168 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 135168 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-09-20 03:05 . 2009-06-12 07:29 593920 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2008-09-20 03:05 . 2009-08-15 20:56 593920 c:\windows\Installer\{90110401-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2003-07-15 00:18 . 2003-07-15 00:18 141360 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\ATP.DLL
+ 2004-08-03 21:56 . 2007-06-27 13:34 317952 c:\windows\inf\unregmp2.exe
+ 2009-07-30 00:01 . 2009-05-13 05:02 915456 c:\windows\ie8updates\KB972260-IE8\wininet.dll
+ 2009-07-30 00:01 . 2009-05-26 11:40 380792 c:\windows\ie8updates\KB972260-IE8\spuninst\updspapi.dll
+ 2009-07-30 00:01 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB972260-IE8\spuninst\spuninst.exe
+ 2009-07-30 00:01 . 2009-03-08 01:34 109568 c:\windows\ie8updates\KB972260-IE8\occache.dll
+ 2009-07-30 00:01 . 2009-03-08 01:32 594432 c:\windows\ie8updates\KB972260-IE8\msfeeds.dll
+ 2009-07-30 00:01 . 2009-04-30 21:13 246272 c:\windows\ie8updates\KB972260-IE8\ieproxy.dll
+ 2009-07-30 00:01 . 2009-03-08 01:31 183808 c:\windows\ie8updates\KB972260-IE8\iepeers.dll
+ 2009-07-30 00:01 . 2009-04-30 21:13 385536 c:\windows\ie8updates\KB972260-IE8\iedkcs32.dll
+ 2009-07-30 00:01 . 2009-04-30 11:21 173056 c:\windows\ie8updates\KB972260-IE8\ie4uinit.exe
+ 2009-07-15 00:03 . 2008-07-08 12:58 380792 c:\windows\$NtUninstallKB973346$\spuninst\updspapi.dll
+ 2009-07-15 00:03 . 2008-07-08 12:58 231288 c:\windows\$NtUninstallKB973346$\spuninst\spuninst.exe
+ 2009-07-15 00:03 . 2008-07-09 07:34 380792 c:\windows\$NtUninstallKB971633$\spuninst\updspapi.dll
+ 2009-07-15 00:03 . 2008-07-08 12:58 231288 c:\windows\$NtUninstallKB971633$\spuninst\spuninst.exe
+ 2009-07-15 00:01 . 2007-04-23 03:50 117760 c:\windows\$NtUninstallKB961371$\t2embed.dll
+ 2009-07-15 00:01 . 2009-05-26 11:40 380792 c:\windows\$NtUninstallKB961371$\spuninst\updspapi.dll
+ 2009-07-15 00:01 . 2008-07-08 12:58 231288 c:\windows\$NtUninstallKB961371$\spuninst\spuninst.exe
+ 2009-07-15 00:03 . 2008-07-08 12:58 380792 c:\windows\$hf_mig$\KB973346\update\updspapi.dll
+ 2009-07-15 00:03 . 2008-07-08 12:58 752504 c:\windows\$hf_mig$\KB973346\update\update.exe
+ 2009-07-15 00:03 . 2008-07-08 12:58 231288 c:\windows\$hf_mig$\KB973346\spuninst.exe
+ 2009-07-15 00:03 . 2008-07-09 07:34 380792 c:\windows\$hf_mig$\KB971633\update\updspapi.dll
+ 2009-07-15 00:03 . 2008-07-09 07:34 752504 c:\windows\$hf_mig$\KB971633\update\update.exe
+ 2009-07-15 00:03 . 2008-07-08 12:58 231288 c:\windows\$hf_mig$\KB971633\spuninst.exe
+ 2009-07-15 00:01 . 2009-05-26 11:40 380792 c:\windows\$hf_mig$\KB961371\update\updspapi.dll
+ 2009-07-15 00:01 . 2009-05-26 11:40 752504 c:\windows\$hf_mig$\KB961371\update\update.exe
+ 2009-07-15 00:01 . 2008-07-08 12:58 231288 c:\windows\$hf_mig$\KB961371\spuninst.exe
+ 2009-06-16 14:43 . 2009-06-16 14:43 119808 c:\windows\$hf_mig$\KB961371\SP3QFE\t2embed.dll
+ 2009-06-16 14:36 . 2009-06-16 14:36 119808 c:\windows\$hf_mig$\KB961371\SP3GDR\t2embed.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 2603008 c:\windows\system32\WpdShext.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 1382912 c:\windows\system32\WMVSDECD.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 1574912 c:\windows\system32\WMVENCOD.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 1543680 c:\windows\system32\WMVDECOD.dll
+ 2004-08-03 21:56 . 2008-06-18 02:03 2458112 c:\windows\system32\wmvcore.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 1329152 c:\windows\system32\WMSPDMOE.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 8231936 c:\windows\system32\wmploc.dll
+ 2006-10-18 18:47 . 2006-10-18 18:47 1661440 c:\windows\system32\wmpencen.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 1117696 c:\windows\system32\WMADMOE.dll
+ 2007-04-23 03:53 . 2009-07-03 16:55 1208832 c:\windows\system32\urlmon.dll
+ 2007-04-23 03:53 . 2009-07-19 13:13 5937152 c:\windows\system32\mshtml.dll
+ 2009-03-08 01:32 . 2009-07-03 16:55 1985536 c:\windows\system32\iertutil.dll
+ 2004-08-03 21:56 . 2008-06-18 02:03 2458112 c:\windows\system32\dllcache\wmvcore.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 1329152 c:\windows\system32\dllcache\WMSPDMOE.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 8231936 c:\windows\system32\dllcache\wmploc.dll
+ 2004-08-03 21:55 . 2006-10-18 18:47 1117696 c:\windows\system32\dllcache\WMADMOE.dll
+ 2007-04-23 03:53 . 2009-07-03 16:55 1208832 c:\windows\system32\dllcache\urlmon.dll
+ 2008-09-20 02:08 . 2006-11-01 15:31 1669120 c:\windows\system32\dllcache\setup_wm.exe
+ 2007-04-23 03:50 . 2009-06-03 19:23 1289216 c:\windows\system32\dllcache\quartz.dll
+ 2008-09-20 02:06 . 2009-06-09 14:54 2067968 c:\windows\system32\dllcache\mstscax.dll
+ 2008-09-20 02:08 . 2009-07-10 13:37 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2007-04-23 03:53 . 2009-07-19 13:13 5937152 c:\windows\system32\dllcache\mshtml.dll
+ 2008-09-22 01:45 . 2009-07-03 16:55 1985536 c:\windows\system32\dllcache\iertutil.dll
+ 2009-06-30 08:30 . 2009-06-30 08:30 5520384 c:\windows\Installer\bce12b.msp
+ 2009-08-04 23:11 . 2009-08-04 23:11 5518848 c:\windows\Installer\a7972.msp
+ 2009-07-01 10:21 . 2009-07-01 10:21 8891904 c:\windows\Installer\a795b.msp
+ 2009-08-12 16:17 . 2009-08-12 16:17 1670144 c:\windows\Installer\1642c6e.msi
+ 2007-05-10 10:45 . 2007-05-10 10:45 8069464 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OWC11.DLL
+ 2007-03-14 10:10 . 2007-03-14 10:10 7255384 c:\windows\Installer\$PatchCache$\Managed\1040110900063D11C8EF10054038389C\11.0.8173\OWC10.DLL
+ 2009-07-30 00:01 . 2009-04-30 21:13 1207808 c:\windows\ie8updates\KB972260-IE8\urlmon.dll
+ 2009-07-30 00:01 . 2009-05-13 05:02 5936128 c:\windows\ie8updates\KB972260-IE8\mshtml.dll
+ 2009-07-30 00:01 . 2009-04-30 21:13 1985024 c:\windows\ie8updates\KB972260-IE8\iertutil.dll
+ 2009-07-15 00:03 . 2008-12-20 22:57 1286144 c:\windows\$NtUninstallKB971633$\quartz.dll
+ 2009-06-03 19:11 . 2009-06-03 19:11 1289216 c:\windows\$hf_mig$\KB971633\SP3QFE\quartz.dll
+ 2009-06-03 19:10 . 2009-06-03 19:10 1289216 c:\windows\$hf_mig$\KB971633\SP3GDR\quartz.dll
+ 2004-08-03 21:55 . 2009-07-13 20:43 10841088 c:\windows\system32\wmp.dll
+ 2008-09-27 23:14 . 2009-07-30 00:49 24281536 c:\windows\system32\MRT.exe
+ 2009-03-08 01:39 . 2009-07-19 15:43 11067392 c:\windows\system32\ieframe.dll
+ 2004-08-03 21:55 . 2009-07-13 20:43 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2008-09-22 01:45 . 2009-07-19 15:43 11067392 c:\windows\system32\dllcache\ieframe.dll
+ 2009-07-01 10:19 . 2009-07-01 10:19 10607104 c:\windows\Installer\a795c.msp
+ 2009-07-30 00:01 . 2009-04-30 21:13 11064832 c:\windows\ie8updates\KB972260-IE8\ieframe.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
2009-08-15 21:01 332776 ----a-w- c:\program files\Hotspot Shield\hssie\HssIE.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MultiFrame"="c:\program files\ASUS\ASUS MultiFrame\MultiFrame.exe" [2007-06-21 999792]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2004-10-13 1694208]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-14 68856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Power_Gear"="c:\program files\ASUS\Power4 Gear\BatteryLife.exe" [2006-07-26 90112]
"ACMON"="c:\program files\ASUS\Splendid\ACMON.exe" [2007-07-10 851968]
"ATKOSD2"="c:\program files\ATKOSD2\ATKOSD2.exe" [2007-07-03 7708672]
"SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-11-22 630784]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-25 786521]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2006-11-02 61440]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-08-16 8478720]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-07-21 208616]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-06-20 198160]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2008-05-07 16862208]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2007-08-16 1626112]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-03 44544]
"nltide_3"="advpack.dll" - c:\windows\system32\advpack.dll [2009-03-08 128512]
c:\documents and settings\All Users\çں‍ê، ں §ڑ\ںé ©ںê¤\ §ک ں颬نïé\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2008-9-20 113664]
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-5-22 2756608]
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 2009\\English\\setup.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [29/01/2008 05:29 م 33808]
R2 HssSrv;Hotspot Shield Helper Service;c:\program files\Hotspot Shield\HssWPR\hsssrv.exe [06/08/2009 09:58 م 331824]
R3 ASNDIS5;ASNDIS5 Protocol Driver;c:\progra~1\ATKHOT~1\ASNDIS5.SYS [20/09/2008 05:33 ص 16269]
R3 HssDrv;Hotspot Shield Helper Miniport;c:\windows\system32\drivers\hssdrv.sys [16/08/2009 12:01 ص 33840]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [13/03/2008 06:02 م 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [30/04/2008 05:06 م 24592]
R3 tap0901;TAP-Win32 Adapter V9;c:\windows\system32\drivers\tap0901.sys [22/07/2009 10:13 م 28592]
S2 gupdate1c9b46b9678fb82;خدمة تحديث Google (gupdate1c9b46b9678fb82);c:\program files\Google\Update\GoogleUpdate.exe [03/04/2009 05:50 م 133104]
S3 HssTrayService;Hotspot Shield Tray Service;c:\program files\Hotspot Shield\bin\HssTrayService.exe [11/08/2009 02:19 ص 57640]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder
2009-08-18 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-06-20 06:09]
2009-08-18 c:\windows\Tasks\GoogleUpdateTaskMachine.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-03 14:50]
2009-08-16 c:\windows\Tasks\OGADaily.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 14:04]
2009-08-18 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 14:04]
.
- - - - ORPHANS REMOVED - - - -
WebBrowser-{C95A4E8E-816D-4655-8C79-D736DA1ADB6D} - (no file)

.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com.sa/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE: &تصدير إلى Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: تحميل محتوى FLV بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetVL.htm
DPF: Microsoft XML Parser for Java -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


Rootkit scan 2009-08-18 04:21
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2009-08-18 4:23
ComboFix-quarantined-files.txt 2009-08-18 01:23
ComboFix2.txt 2009-07-11 16:03
ComboFix3.txt 2009-04-11 19:19
Pre-Run: 59,468,984,320 bytes free
Post-Run: 59,444,621,312 bytes free
519 --- E O F --- 2009-08-15 20:56
 
توقيع : سمآآرتي بوي
تأييد 0
ايوا اخوي رجعه

الحين هات تقرير جديد للهاجيك ...
 
توقيع : KoNaMi
تأييد 0
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:39:32 ص, on 18/08/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Hotspot Shield\bin\openvpnas.exe
C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ACEngSvr.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\ATK Hotkey\Hcontrol.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ASUS\ASUS MultiFrame\MultiFrame.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\ATK Hotkey\ATKOSD.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files\ATK Hotkey\WDC.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\برامج\برامج الحماية\Zyzoom_HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O2 - BHO: مساعد رابط Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: مساعد تسجيل الدخول إلى Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [ACMON] "C:\Program Files\ASUS\Splendid\ACMON.exe"
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [MultiFrame] C:\Program Files\ASUS\ASUS MultiFrame\MultiFrame.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: &تصدير إلى Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: تحميل الكل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: تحميل بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: تحميل محتوى FLV بواسطة Internet Download Manager - C:\Program Files\Internet Download Manager\IEGetVL.htm
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: تدوين هذا في المدونة - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &تدوين هذا في Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: بحث - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) -

يجب عليك تسجيل الدخول أو التسجيل لمشاهدة الرابط المخفي


O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: خدمة تحديث Google (gupdate1c9b46b9678fb82) (gupdate1c9b46b9678fb82) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Hotspot Shield Helper Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
--
End of file - 9779 bytes
 
توقيع : سمآآرتي بوي
تأييد 0
74187578.png
 
توقيع : سمآآرتي بوي
تأييد 0
يا شباب أنا انتظر لي فترة وما أحد يرد وضعت صورة للتوضيح المشكلة ...,,,
 
توقيع : سمآآرتي بوي
تأييد 0
الحمد لله يا ذيــآآبة المشكلة وانتهت وآسف إذا ازعجتكم ..,,, لكم خآآلص الشكر ..,,
 
توقيع : سمآآرتي بوي
تأييد 0
المعذرة على التأخير اخوي

بس كيف حليت المشكله ؟؟
 
توقيع : KoNaMi
تأييد 0
يجب تسجيل الدخول أو التسجيل كي تتمكن من الرد هنا.
عودة
أعلى