- This topic has 6 ответов, 3 участника, and was last updated 14 years, 1 month назад by
.
-
Сообщения
-
Всем привет.
У меня вот такая проблема в диспечер висит такой процесс hale.exe и нагружае работу компа. Пользуюсь G DATA TotalCare 2011 собственно он его ловит и отправляет на карантин, но потом сматрю в карантине совсем другие файлы.
Вот срин.
Но при рестартє компа в диспечири снова висит hale.exe
Пробовал сканировать Malwarebytes ‘Anti-Malware но он ничего не нашел. Думаю установил себе этого друга, когда злетела активация Win7 и скачал себе какой-то непонятный кряк.
Собственно вот такая проблема, вот еще логи RSIT только вот (log : info) не влезают пишет максимально только 60000 знаков.
http://depositfiles.com/files/19a5to1iwЗдравствуйте!
Добро пожаловать на Spyware-ru форум.
Логи можно разделить на части и эти части выложить в вашей теме. Так же сделайте и с инфо файлом.log
Logfile of random’s system information tool 1.08 (written by random/random)
Run by AMD at 2010-09-27 18:30:39
Microsoft Windows 7 Максимальная Service Pack 3
System drive C: has 11 GB (16%) free of 71 GB
Total RAM: 4094 MB (64% free)Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:31:43, on 27.09.2010
Platform: Windows 7 SP3 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: NormalRunning processes:
C:WindowsSystem32hale.exe
C:Program Files (x86)RocketDockRocketDock.exe
C:Program Files (x86)WinstepNexus.exe
C:Program Files (x86)WIBUKEYServerWkSvMgr.exe
C:Program Files (x86)WebMoney Agentwmagent.exe
C:Program Files (x86)Malwarebytes’ Anti-Malwarembamgui.exe
C:Program Files (x86)Common FilesJavaJava Updatejusched.exe
C:Program Files (x86)G DataTotalCareAVKTrayAVKTray.exe
C:Program Files (x86)G DataTotalCareFirewallGDFirewallTray.exe
C:UsersAMDDesktopRSIT.exe
C:Program Files (x86)AIMP2AIMP2.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)GoogleChromeApplicationchrome.exe
C:Program Files (x86)trend microAMD.exeR1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = Preserve
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.APEHA.ru
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
R3 — URLSearchHook: (no name) — — (no file)
R3 — URLSearchHook: ICQToolBar — {855F3B16-6D32-4fe6-8A56-BBB695989046} — C:Program Files (x86)ICQ6ToolbarICQToolBar.dll
R3 — URLSearchHook: ToolbarURLSearchHook Class — {CA3EB689-8F09-4026-AA10-B9534C691CE0} — C:Program Files (x86)WebMoney Advisortbhelper.dll
O1 — Hosts: ::1 localhost
O2 — BHO: G Data WebFilter Class — {0124123D-61B4-456f-AF86-78C53A0790C5} — C:Program Files (x86)G DataTotalCareWebFilterAvkWebIE.dll
O2 — BHO: IE 4.x-6.x BHO for Download Master — {9961627E-4059-41B4-8E0E-A7D6B3854ADF} — C:PROGRA~2DOWNLO~1dmiehlp.dll
O2 — BHO: SkypeIEPluginBHO — {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} — C:Program Files (x86)SkypeToolbarsInternet Explorerskypeieplugin.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program Files (x86)GoogleGoogleToolbarNotifier5.2.4204.1700swg.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program Files (x86)Javajre6binjp2ssv.dll
O2 — BHO: TBSB03374 — {FCBCCB87-9224-4B8D-B117-F56D924BEB18} — C:Program Files (x86)WebMoney Advisortbcore3.dll
O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program Files (x86)YandexYandexBarIEyndbar.dll
O3 — Toolbar: (no name) — {32099AAC-C132-4136-9E9A-4E364A424E17} — (no file)
O3 — Toolbar: SnagIt — {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} — C:Program Files (x86)TechSmithSnagIt 9SnagItIEAddin.dll
O3 — Toolbar: ICQToolBar — {855F3B16-6D32-4fe6-8A56-BBB695989046} — C:Program Files (x86)ICQ6ToolbarICQToolBar.dll
O3 — Toolbar: Trellian Toolbar — {71AAABE5-1F0F-11d7-BD6F-004854603DCE} — C:Program Files (x86)TRELLIANToolBartoolbar.dll
O3 — Toolbar: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program Files (x86)WebMoney Advisortbcore3.dll
O3 — Toolbar: &Save Flash — {4064EA35-578D-4073-A834-C96D82CBCF40} — C:Program Files (x86)Save FlashSaveFlash.dll
O3 — Toolbar: G Data WebFilter — {0124123D-61B4-456f-AF86-78C53A0790C5} — C:Program Files (x86)G DataTotalCareWebFilterAvkWebIE.dll
O4 — HKLM..Run: [wmagent.exe] «C:Program Files (x86)WebMoney Agentwmagent.exe»
O4 — HKLM..Run: [Malwarebytes’ Anti-Malware] «C:Program Files (x86)Malwarebytes’ Anti-Malwarembamgui.exe» /starttray
O4 — HKLM..Run: [StartCCC] «C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe» MSRun
O4 — HKLM..Run: [ATICustomerCare] «C:Program Files (x86)ATIATICustomerCareATICustomerCare.exe»
O4 — HKLM..Run: [SunJavaUpdateSched] «C:Program Files (x86)Common FilesJavaJava Updatejusched.exe»
O4 — HKLM..Run: [G Data AntiVirus Tray Application] C:Program Files (x86)G DataTotalCareAVKTrayAVKTray.exe
O4 — HKLM..Run: [GDFirewallTray] C:Program Files (x86)G DataTotalCareFirewallGDFirewallTray.exe
O4 — HKCU..Run: [RocketDock] «C:Program Files (x86)RocketDockRocketDock.exe»
O4 — HKCU..Run: [NeXuS] C:Program Files (x86)WinstepNexus.exe autostart
O4 — HKCU..Run: [DAEMON Tools Lite] «C:Program Files (x86)DAEMON Tools LiteDTLite.exe» -autorun
O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-20..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User ‘NETWORK SERVICE’)
O4 — Startup: vrayspawner60.exe
O4 — Global Startup: Network Server.lnk = C:Program Files (x86)WIBUKEYServerWkSvMgr.exe
O8 — Extra context menu item: Sothink SWF Catcher — C:Program Files (x86)Common FilesSourceTecSWF CatcherInternetExplorer.htm
O8 — Extra context menu item: Закачать ВСЕ при помощи Download Master — C:Program Files (x86)Download Masterdmieall.htm
O8 — Extra context menu item: Закачать при помощи Download Master — C:Program Files (x86)Download Masterdmie.htm
O8 — Extra context menu item: Передать на удаленную закачку DM — C:Program Files (x86)Download Masterremdown.htm
O9 — Extra button: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program Files (x86)WebMoney Advisortbcore3.dll
O9 — Extra ‘Tools’ menuitem: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program Files (x86)WebMoney Advisortbcore3.dll
O9 — Extra button: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program Files (x86)SkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program Files (x86)SkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra button: Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program Files (x86)Download Masterdmaster.exe
O9 — Extra ‘Tools’ menuitem: &Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program Files (x86)Download Masterdmaster.exe
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~2MICROS~1OFFICE11REFIEBAR.DLL
O9 — Extra button: Sothink SWF Catcher — {E19ADC6E-3909-43E4-9A89-B7B676377EE3} — C:Program Files (x86)Common FilesSourceTecSWF CatcherInternetExplorer.htm
O9 — Extra ‘Tools’ menuitem: Sothink SWF Catcher — {E19ADC6E-3909-43E4-9A89-B7B676377EE3} — C:Program Files (x86)Common FilesSourceTecSWF CatcherInternetExplorer.htm
O9 — Extra button: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program Files (x86)ICQ6.5ICQ.exe
O9 — Extra ‘Tools’ menuitem: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program Files (x86)ICQ6.5ICQ.exe
O10 — Unknown file in Winsock LSP: c:program files (x86)vmwarevmware workstationvsocklib.dll
O10 — Unknown file in Winsock LSP: c:program files (x86)vmwarevmware workstationvsocklib.dll
O15 — Trusted Zone: http://*.capitaller.ru
O15 — Trusted Zone: http://linktrader.cyberspacehq.com
O15 — Trusted Zone: http://*.enum.ru
O15 — Trusted Zone: http://*.exchanger.ru
O15 — Trusted Zone: http://*.indx.ru
O15 — Trusted Zone: http://*.megastock.com
O15 — Trusted Zone: http://*.megastock.ru
O15 — Trusted Zone: http://*.oplata.info
O15 — Trusted Zone: http://*.paymer.com
O15 — Trusted Zone: http://*.publicant.ru
O15 — Trusted Zone: http://*.shareholder.ru
O15 — Trusted Zone: http://*.softactivation.com
O15 — Trusted Zone: http://*.telepat.ru
O15 — Trusted Zone: http://*.webmoney.ru
O15 — Trusted Zone: http://*.wmkeeper.com
O15 — Trusted Zone: http://*.wmtransfer.com
O17 — HKLMSystemCCSServicesTcpip..{CAA3E2AD-4433-416A-B8AA-D31BCBBF7C3D}: NameServer = 178.210.128.3 178.210.128.5
O18 — Protocol: skype-ie-addon-data — {91774881-D725-4E58-B298-07617B9B86A8} — C:Program Files (x86)SkypeToolbarsInternet Explorerskypeieplugin.dll
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~2COMMON~1SkypeSKYPE4~1.DLL
O20 — AppInit_DLLs:
O22 — SharedTaskScheduler: Windows DreamScene — {E31004D1-A431-41B8-826F-E902F9D95C81} — C:WindowsSysWow64DreamScene.dll
O23 — Service: @%SystemRoot%system32Alg.exe,-112 (ALG) — Unknown owner — C:WindowsSystem32alg.exe (file missing)
O23 — Service: AMD External Events Utility — Unknown owner — C:Windowssystem32atiesrxx.exe (file missing)
O23 — Service: AODService — Unknown owner — C:Program Files (x86)AMDOverDriveAODAssist.exe
O23 — Service: Apple Mobile Device — Apple Inc. — C:Program Files (x86)Common FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe
O23 — Service: AST Service (astcc) — Nalpeiron Ltd. — C:WindowsSYSTEM32astsrv.exe
O23 — Service: Atihedlsode — Unknown owner — (no file)
O23 — Service: Autodesk Licensing Service — Unknown owner — C:Program Files (x86)Common FilesAutodesk SharedServiceAdskScSrv.exe
O23 — Service: G Data AntiVirus Proxy (AVKProxy) — G Data Software AG — C:Program Files (x86)Common FilesG DATAAVKProxyAVKProxy.exe
O23 — Service: G Data Scheduler (AVKService) — G Data Software AG — C:Program Files (x86)G DataTotalCareAVKAVKService.exe
O23 — Service: G Data Монитор файловой системы (AVKWCtl) — Unknown owner — C:Program Files (x86)G DataTotalCareAVKAVKWCtlX64.exe
O23 — Service: Bonjour Service — Apple Inc. — C:Program Files (x86)BonjourmDNSResponder.exe
O23 — Service: @%SystemRoot%system32efssvc.dll,-100 (EFS) — Unknown owner — C:WindowsSystem32lsass.exe (file missing)
O23 — Service: @%systemroot%system32fxsresm.dll,-118 (Fax) — Unknown owner — C:Windowssystem32fxssvc.exe (file missing)
O23 — Service: FLEXnet Licensing Service — Acresso Software Inc. — C:Program Files (x86)Common FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
O23 — Service: FLEXnet Licensing Service 64 — Acresso Software Inc. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService64.exe
O23 — Service: G Data Backup Service (GDBackupSvc) — G Data Software AG — C:Program Files (x86)G DataTotalCareAVKBackupAVKBackupService.exe
O23 — Service: G Data Personal Firewall (GDFwSvc) — G Data Software AG — C:Program Files (x86)G DataTotalCareFirewallGDFwSvcx64.exe
O23 — Service: G Data Scanner (GDScan) — G Data Software AG — C:Program Files (x86)Common FilesG DATAGDScanGDScan.exe
O23 — Service: G Data Tuner Service (GDTunerSvc) — G Data Software AG — C:Program Files (x86)G DataTotalCareAVKTunerAVKTunerService.exe
O23 — Service: Google Update Service (gupdate) (gupdate) — Google Inc. — C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program Files (x86)GoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: ICQ Service — Unknown owner — C:Program Files (x86)ICQ6ToolbarICQ Service.exe
O23 — Service: iPod Service — Apple Inc. — C:Program FilesiPodbiniPodService.exe
O23 — Service: @keyiso.dll,-100 (KeyIso) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: MBAMService — Malwarebytes Corporation — C:Program Files (x86)Malwarebytes’ Anti-Malwarembamservice.exe
O23 — Service: mental ray 3.7 Satellite for Autodesk 3ds Max 2010 32-bit 32-bit (mi-raysat_3dsmax2010_32) — Unknown owner — C:Program Files (x86)Autodesk3ds Max 2010mentalraysatelliteraysat_3dsmax2010_32server.exe
O23 — Service: @comres.dll,-2797 (MSDTC) — Unknown owner — C:WindowsSystem32msdtc.exe (file missing)
O23 — Service: @%SystemRoot%System32netlogon.dll,-102 (Netlogon) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: PnkBstrA — Unknown owner — C:Windowssystem32PnkBstrA.exe
O23 — Service: PnkBstrB — Unknown owner — C:Windowssystem32PnkBstrB.exe
O23 — Service: @%systemroot%system32psbase.dll,-300 (ProtectedStorage) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: Cyberlink RichVideo Service(CRVS) (RichVideo) — Unknown owner — D:CyberLink PowerDVD Ultra v8.0.2021.50+Keys-HeartBugSetup 8.0.1730RichVideoRichVideo.exe (file missing)
O23 — Service: @%systemroot%system32Locator.exe,-2 (RpcLocator) — Unknown owner — C:Windowssystem32locator.exe (file missing)
O23 — Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) — Unknown owner — C:WindowsSystem32snmptrap.exe (file missing)
O23 — Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) — Unknown owner — C:WindowsSystem32spoolsv.exe (file missing)
O23 — Service: @%SystemRoot%system32sppsvc.exe,-101 (sppsvc) — Unknown owner — C:Windowssystem32sppsvc.exe (file missing)
O23 — Service: Steam Client Service — Valve Corporation — C:Program Files (x86)Common FilesSteamSteamService.exe
O23 — Service: SwitchBoard — Adobe Systems Incorporated — C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe
O23 — Service: VMware Agent Service (ufad-ws60) — VMware, Inc. — C:Program Files (x86)VMwareVMware Workstationvmware-ufad.exe
O23 — Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect) — Unknown owner — C:Windowssystem32UI0Detect.exe (file missing)
O23 — Service: Ulead Burning Helper (UleadBurningHelper) — Unknown owner — C:Program Files (x86)Common FilesUlead SystemsDVDULCDRSvr.exe (file missing)
O23 — Service: @%SystemRoot%system32vaultsvc.dll,-1003 (VaultSvc) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: @%SystemRoot%system32vds.exe,-100 (vds) — Unknown owner — C:WindowsSystem32vds.exe (file missing)
O23 — Service: VMware Authorization Service (VMAuthdService) — VMware, Inc. — C:Program Files (x86)VMwareVMware Workstationvmware-authd.exe
O23 — Service: VMware DHCP Service (VMnetDHCP) — VMware, Inc. — C:Windowssystem32vmnetdhcp.exe
O23 — Service: VMware USB Arbitration Service (VMUSBArbService) — VMware, Inc. — C:Program Files (x86)Common FilesVMwareUSBvmware-usbarbitrator.exe
O23 — Service: VMware NAT Service — VMware, Inc. — C:Windowssystem32vmnat.exe
O23 — Service: @%systemroot%system32vssvc.exe,-102 (VSS) — Unknown owner — C:Windowssystem32vssvc.exe (file missing)
O23 — Service: @%SystemRoot%system32WatWatUX.exe,-601 (WatAdminSvc) — Unknown owner — C:Windowssystem32WatWatAdminSvc.exe (file missing)
O23 — Service: @%systemroot%system32wbengine.exe,-104 (wbengine) — Unknown owner — C:Windowssystem32wbengine.exe (file missing)
O23 — Service: Winstep Xtreme Service — Unknown owner — C:Program.exe (file missing)
O23 — Service: WIBU-KEY Server (WkSvW32.exe) — WIBU-SYSTEMS AG — C:PROGRAM FILES (X86)WIBUKEYSERVERWkSvW32.exe
O23 — Service: @%Systemroot%system32wbemwmiapsrv.exe,-110 (wmiApSrv) — Unknown owner — C:Windowssystem32wbemWmiApSrv.exe (file missing)
O23 — Service: @%PROGRAMFILES%Windows Media Playerwmpnetwk.exe,-101 (WMPNetworkSvc) — Unknown owner — C:Program Files (x86)Windows Media Playerwmpnetwk.exe (file missing)
O23 — Service: XAMPP Service (XAMPP) — Unknown owner — C:Serverxamppservice.exe (file missing)
O23 — Service: Служба G Data Тюнер — G Data Software AG — C:Program Files (x86)G DataTotalCareAVKTunerAVKTunerService.exe—
End of file — 16822 bytes======Scheduled tasks folder======
C:WindowstasksAd-Aware Update (Weekly).job
C:WindowstasksGoogle Software Updater.job
C:WindowstasksGoogleUpdateTaskMachineCore.job
C:WindowstasksGoogleUpdateTaskMachineUA.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{0124123D-61B4-456f-AF86-78C53A0790C5}]
G Data WebFilter — C:Program Files (x86)G DataTotalCareWebFilterAvkWebIE.dll [2010-09-02 658504][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
IE 4.x-6.x BHO for Download Master — C:PROGRA~2DOWNLO~1dmiehlp.dll [2010-07-27 165184][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer — C:Program Files (x86)SkypeToolbarsInternet Explorerskypeieplugin.dll [2010-02-08 804136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program Files (x86)GoogleGoogleToolbarNotifier5.2.4204.1700swg.dll [2010-05-18 761840][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program Files (x86)Javajre6binjp2ssv.dll [2010-09-22 41760][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
WebMoney Advisor — BHO Helper — C:Program Files (x86)WebMoney Advisortbcore3.dll [2010-02-24 2559608][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program Files (x86)YandexYandexBarIEyndbar.dll [2009-12-24 8729864]
{32099AAC-C132-4136-9E9A-4E364A424E17}
{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} — SnagIt — C:Program Files (x86)TechSmithSnagIt 9SnagItIEAddin.dll [2008-09-16 161096]
{855F3B16-6D32-4fe6-8A56-BBB695989046} — ICQToolBar — C:Program Files (x86)ICQ6ToolbarICQToolBar.dll [2009-10-27 1014520]
{71AAABE5-1F0F-11d7-BD6F-004854603DCE} — Trellian Toolbar — C:Program Files (x86)TRELLIANToolBartoolbar.dll [2003-10-10 507904]
{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — WebMoney Advisor — C:Program Files (x86)WebMoney Advisortbcore3.dll [2010-02-24 2559608]
{4064EA35-578D-4073-A834-C96D82CBCF40} — &Save Flash — C:Program Files (x86)Save FlashSaveFlash.dll [2010-06-04 1179648]
{0124123D-61B4-456f-AF86-78C53A0790C5} — G Data WebFilter — C:Program Files (x86)G DataTotalCareWebFilterAvkWebIE.dll [2010-09-02 658504][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«wmagent.exe»=C:Program Files (x86)WebMoney Agentwmagent.exe [2009-10-19 210400]
«Malwarebytes’ Anti-Malware»=C:Program Files (x86)Malwarebytes’ Anti-Malwarembamgui.exe [2010-04-29 437584]
«StartCCC»=C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe [2010-02-03 98304]
«ATICustomerCare»=C:Program Files (x86)ATIATICustomerCareATICustomerCare.exe [2010-03-04 311296]
«SunJavaUpdateSched»=C:Program Files (x86)Common FilesJavaJava Updatejusched.exe [2010-05-14 248552]
«G Data AntiVirus Tray Application»=C:Program Files (x86)G DataTotalCareAVKTrayAVKTray.exe [2010-09-02 994888]
«GDFirewallTray»=C:Program Files (x86)G DataTotalCareFirewallGDFirewallTray.exe [2010-09-02 1537096][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«RocketDock»=C:Program Files (x86)RocketDockRocketDock.exe [2007-09-02 495616]
«AdobeBridge»= []
«NeXuS»=C:Program Files (x86)WinstepNexus.exe [2010-03-27 8892468]
«DAEMON Tools Lite»=C:Program Files (x86)DAEMON Tools LiteDTLite.exe [2010-04-01 357696]C:ProgramDataMicrosoftWindowsStart MenuProgramsStartup
Network Server.lnk — C:Program Files (x86)WIBUKEYServerWkSvMgr.exeC:UsersAMDAppDataRoamingMicrosoftWindowsStart MenuProgramsStartup
vrayspawner60.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows]
«AppInit_DLLs»=» «[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WebCheck — {E6FB5E20-DE35-11CF-9C87-00AA005127ED}[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionexplorerSharedTaskScheduler]
Windows DreamScene — {E31004D1-A431-41B8-826F-E902F9D95C81} — C:WindowsSysWow64DreamScene.dll [2009-05-12 275360][HKEY_LOCAL_MACHINEsystemcurrentcontrolsetcontrolsecurityproviders]
«SecurityProviders»=credssp.dll[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkAFD]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«ConsentPromptBehaviorAdmin»=0
«EnableLUA»=0
«EnableUIADesktopToggle»=0
«PromptOnSecureDesktop»=0
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoActiveDesktop»=1
«ForceActiveDesktopOn»=0
«NoActiveDesktopChanges»=0[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
======File associations======
.js — edit — C:WindowsSystem32Notepad.exe %1
.js — open — «C:Program Files (x86)AdobeAdobe Dreamweaver CS4Dreamweaver.exe»,»%1″
.scr — open — C:Windowssystem32notepad.exe «%1»
.scr — install —
.scr — config —======List of files/folders created in the last 1 months======
2010-09-27 12:23:01 —-D—- C:Program Files (x86)trend micro
2010-09-27 12:23:00 —-D—- C:rsit
2010-09-24 14:13:09 —-D—- C:UsersAMDAppDataRoamingXWindows Dock
2010-09-22 22:11:23 —-D—- C:WindowsSun
2010-09-22 20:39:15 —-D—- C:ProgramDataSun
2010-09-22 20:39:13 —-D—- C:Program Files (x86)Common FilesJava
2010-09-22 20:38:40 —-A—- C:WindowsSysWOW64javaws.exe
2010-09-22 20:38:40 —-A—- C:WindowsSysWOW64javaw.exe
2010-09-22 20:38:40 —-A—- C:WindowsSysWOW64java.exe
2010-09-22 20:38:40 —-A—- C:WindowsSysWOW64deployJava1.dll
2010-09-22 20:37:51 —-D—- C:Program Files (x86)Java
2010-09-22 17:31:16 —-D—- C:ProgramDataG DATA
2010-09-22 17:31:16 —-D—- C:Program Files (x86)G Data
2010-09-22 17:31:16 —-D—- C:Program Files (x86)Common FilesG DATA
2010-09-22 12:33:19 —-D—- C:Windows1C4551A64743409391E41477CD655043.TMP
2010-09-16 19:32:30 —-D—- C:ProgramDataDivinity 2
2010-09-15 18:30:58 —-A—- C:WindowsSysWOW64iertutil.dll
2010-09-15 16:43:13 —-D—- C:Program Files (x86)Lightsmark 2008
2010-09-11 21:03:31 —-A—- C:plugin.ini
2010-09-11 20:56:12 —-D—- C:Program Files (x86)Chaos Group
2010-09-11 20:53:19 —-A—- C:WindowsSysWOW64WkExt32.dll
2010-09-11 20:53:19 —-A—- C:WindowsSysWOW64WibuXpm4J32.dll
2010-09-11 20:53:19 —-A—- C:WindowsSysWOW64wibuKJni.dll
2010-09-11 20:53:09 —-A—- C:WindowsSysWOW64WkWin32.dll
2010-09-11 20:53:04 —-D—- C:Program Files (x86)WIBU-SYSTEMS
2010-09-11 20:53:04 —-D—- C:Program Files (x86)WIBUKEY
2010-09-05 13:21:04 —-D—- C:UsersAMDAppDataRoamingYoutube Downloader HD
2010-09-05 13:20:40 —-D—- C:Program Files (x86)Youtube Downloader HD
2010-09-04 15:16:31 —-A—- C:WindowsSysWOW64tsccvid.dll
2010-09-04 15:15:25 —-D—- C:WindowsSysWOW64QuickTime
2010-09-02 14:05:45 —-D—- C:UsersAMDAppDataRoamingF-Secure
2010-09-02 12:05:13 —-A—- C:WindowsSysWOW64driversfsbts.sys
2010-09-02 12:02:28 —-D—- C:Program Files (x86)F-Secure
2010-09-02 12:01:53 —-D—- C:ProgramDatafssg
2010-09-02 12:00:26 —-D—- C:ProgramDataf-secure======List of files/folders modified in the last 1 months======
2010-09-27 18:31:39 —-D—- C:WindowsTemp
2010-09-27 18:31:13 —-D—- C:UsersAMDAppDataRoamingAIMP
2010-09-27 18:29:41 —-D—- C:ProgramDataVMware
2010-09-27 17:34:37 —-D—- C:Program Files (x86)Garena
2010-09-27 17:34:14 —-A—- C:vraylog.txt
2010-09-27 12:34:28 —-D—- C:Program Files (x86)Mozilla Firefox 3.6 Beta 2
2010-09-27 12:23:01 —-RD—- C:Program Files (x86)
2010-09-27 11:32:01 —-SHD—- C:System Volume Information
2010-09-25 16:18:34 —-D—- C:UsersAMDAppDataRoaminguTorrent
2010-09-24 20:48:37 —-D—- C:WindowsSystem32
2010-09-24 20:48:37 —-D—- C:Windowsinf
2010-09-24 13:46:47 —-AD—- C:Windows
2010-09-24 13:45:48 —-D—- C:WindowsTasks
2010-09-24 13:45:46 —-D—- C:Windowsregistration
2010-09-24 13:45:46 —-D—- C:Program Files (x86)Total Commander
2010-09-24 13:45:46 —-D—- C:Program Files (x86)RocketDock
2010-09-23 23:16:28 —-D—- C:UsersAMDAppDataRoamingSkype
2010-09-23 17:41:41 —-D—- C:UsersAMDAppDataRoamingskypePM
2010-09-23 16:52:54 —-HD—- C:ProgramData
2010-09-23 16:39:27 —-SHD—- C:WindowsInstaller
2010-09-23 16:38:07 —-D—- C:WindowsSysWOW64
2010-09-23 16:31:44 —-D—- C:Program Files (x86)campaper
2010-09-23 11:56:18 —-D—- C:Windowswinsxs
2010-09-22 20:39:13 —-D—- C:Program Files (x86)Common Files
2010-09-22 17:29:11 —-D—- C:WindowsPrefetch
2010-09-22 12:29:50 —-RSD—- C:Windowsassembly
2010-09-22 12:22:34 —-HD—- C:Program Files (x86)InstallShield Installation Information
2010-09-22 06:16:15 —-D—- C:Program Files (x86)Google
2010-09-21 20:40:50 —-D—- C:Windowsdebug
2010-09-21 19:44:19 —-D—- C:UsersAMDAppDataRoamingVMware
2010-09-20 22:42:00 —-D—- C:UsersAMDAppDataRoamingFileZilla
2010-09-20 20:23:55 —-D—- C:UsersAMDAppDataRoamingThe Bat!
2010-09-16 15:27:27 —-A—- C:WindowsSysWOW64PnkBstrB.exe
2010-09-15 15:56:31 —-D—- C:Program Files (x86)3dsmax7
2010-09-12 21:26:57 —-D—- C:Program Files (x86)Opera 10 Preview
2010-09-12 01:37:40 —-D—- C:Program Files (x86)Common FilesChaosGroup
2010-09-12 01:37:02 —-RD—- C:Program Files
2010-09-11 20:05:02 —-A—- C:Windowswinamp.ini
2010-09-08 00:40:52 —-D—- C:UsersAMDAppDataRoamingWebMoney
2010-09-07 19:11:01 —-AD—- C:ProgramDataTEMP
2010-09-04 20:16:20 —-D—- C:Downloads
2010-09-04 19:57:42 —-D—- C:Program Files (x86)Common FilesAutodesk Shared
2010-09-02 17:21:20 —-A—- C:WindowsSysWOW64PerfStringBackup.INI
2010-09-02 12:05:13 —-D—- C:WindowsSysWOW64drivers
2010-09-02 11:55:50 —-D—- C:ProgramDataAvira
2010-08-31 12:49:17 —-D—- C:My Recorded Files
2010-08-30 11:47:20 —-D—- C:Program Files (x86)Nexus Radio======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 GDBehave;GDBehave; C:Windowssystem32driversGDBehave.sys []
R0 pciide;pciide; C:Windowssystem32DRIVERSpciide.sys []
R0 rdyboost;ReadyBoost; C:WindowsSystem32driversrdyboost.sys []
R0 speedfan;speedfan; C:WindowsSysWOW64speedfan.sys [2007-02-07 14104]
R0 sptd;sptd; C:WindowsSystem32Driverssptd.sys []
R1 cdrblock;cdrblock; C:Windowssystem32DRIVERScdrblock.sys []
R1 CSC;@%systemroot%system32cscsvc.dll,-202; C:Windowssystem32driverscsc.sys []
R1 GDMnIcpt;GDMnIcpt; ??C:Windowssystem32driversMiniIcpt.sys []
R1 gdwfpcd;G DATA WFP CD; C:Windowssystem32driversgdwfpcd64.sys []
R1 GRD;G Data Rootkit Detector Driver; ??C:Windowssystem32driversGRD.sys []
R1 HookCentre;HookCentre; ??C:Windowssystem32driversHookCentre.sys []
R2 adfs;adfs; C:WindowsSysWOW64driversadfs.sys [2008-08-14 74720]
R2 aksdf;aksdf; C:Windowssystem32DRIVERSaksdf.sys []
R2 atksgt;atksgt; C:Windowssystem32DRIVERSatksgt.sys []
R2 Hardlock;Hardlock; ??C:Windowssystem32drivershardlock.sys []
R2 hcmon;VMware hcmon; ??C:Windowssystem32drivershcmon.sys []
R2 lirsgt;lirsgt; C:Windowssystem32DRIVERSlirsgt.sys []
R2 vmci;VMware vmci; ??C:Windowssystem32driversvmci.sys []
R2 VMnetBridge;VMware Bridge Protocol; C:Windowssystem32DRIVERSvmnetbridge.sys []
R2 VMnetuserif;VMware Network Application Interface; ??C:Windowssystem32driversvmnetuserif.sys []
R2 vmx86;VMware vmx86; ??C:Windowssystem32driversvmx86.sys []
R2 vstor2-ws60;Vstor2 WS60 Virtual Storage Driver; ??C:Program Files (x86)VMwareVMware Workstationvstor2-ws60.sys [2009-10-12 32816]
R3 amdkmdag;amdkmdag; C:Windowssystem32DRIVERSatikmdag.sys []
R3 amdkmdap;amdkmdap; C:Windowssystem32DRIVERSatikmpag.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:Windowssystem32driversAtiHdmi.sys []
R3 GDPkIcpt;GDPkIcpt; ??C:Windowssystem32driversPktIcpt.sys []
R3 GearAspiWDM;GEARAspiWDM; C:WindowsSystem32driversGEARAspiWDM.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:Windowssystem32driversRTKVHD64.sys []
R3 pcouffin;VSO Software pcouffin; C:WindowsSystem32Driverspcouffin.sys []
R3 RTL8167;Драйвер Realtek 8167 NT; C:Windowssystem32DRIVERSRt64win7.sys []
R3 TotRec7;Total Recorder WDM audio driver; C:Windowssystem32driversTotRec7.sys []
R3 TotRec8;Total Recorder WDM audio filter driver; ??C:Windowssystem32driversTotRec8.sys []
R3 vmkbd;VMware kbd; ??C:Windowssystem32driversVMkbd.sys []
S1 hwinterface;hwinterface; C:WindowsSystem32Drivershwinterface.sys [2009-10-01 3026]
S1 NVKEYNT;NVKEYNT; ??C:Windowssystem32DRIVERSNVKEYNT.SYS [2005-10-06 71680]
S3 61883;Устройство 61883; C:Windowssystem32DRIVERS61883.sys []
S3 atikmdag;atikmdag; C:Windowssystem32DRIVERSatikmdag.sys []
S3 Avc;Устройство AVC; C:Windowssystem32DRIVERSavc.sys []
S3 Bridge;@%SystemRoot%system32bridgeres.dll,-3; C:Windowssystem32DRIVERSbridge.sys []
S3 BridgeMP;@%SystemRoot%system32bridgeres.dll,-1; C:Windowssystem32DRIVERSbridge.sys []
S3 cpuz130;cpuz130; ??C:UsersAMDAppDataLocalTempcpuz130cpuz_x64.sys []
S3 ENTECH64;ENTECH64; ??C:Windowssystem32DRIVERSENTECH64.sys []
S3 GGSAFERDriver;GGSAFER Driver; ??C:Program Files (x86)GarenapluginsUIsafedrv.sys []
S3 GT680x;GrandTechICNameNT; C:WindowsSystem32Driversgt680x.sys [2007-02-06 22528]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:Windowssystem32DRIVERSewusbmdm.sys []
S3 MBAMProtector;MBAMProtector; ??C:Windowssystem32driversmbam.sys []
S3 MSDV;Microsoft DV Camera and VCR; C:Windowssystem32DRIVERSmsdv.sys []
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:Windowssystem32driversnmwcdnsucx64.sys []
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:Windowssystem32driversnmwcdnsux64.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:Windowssystem32DRIVERSpccsmcfdx64.sys []
S3 PPJoyBus;Parallel Port Joystick Bus Enumerator; C:Windowssystem32DRIVERSPPJoyBus64.sys []
S3 PPortJoystick;Parallel Port Joystick Device Driver; C:Windowssystem32DRIVERSPPortJoy64.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:WindowsSystem32driversrdpdr.sys []
S3 RivaTuner64;RivaTuner64; ??C:Program Files (x86)RivaTuner v2.24 MSI Master Overclocking Arena 2009 editionRivaTuner64.sys [2009-08-22 12288]
S3 s3cap;s3cap; C:Windowssystem32DRIVERSvms3cap.sys []
S3 storvsc;storvsc; C:Windowssystem32DRIVERSstorvsc.sys []
S3 tbhsd;Tunebite High-Speed Dubbing; C:Windowssystem32driverstbhsd.sys []
S3 upperdev;upperdev; C:Windowssystem32DRIVERSusbser_lowerfltx64.sys []
S3 vmbus;@%SystemRoot%system32vmbusres.dll,-1000; C:Windowssystem32DRIVERSvmbus.sys []
S3 VMBusHID;VMBusHID; C:Windowssystem32DRIVERSVMBusHID.sys []
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:Windowssystem32DRIVERSvmnetadapter.sys []
S3 vmusb;VMware USB Client Driver; C:WindowsSystem32Driversvmusb.sys []
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:WindowsSystem32DRIVERSvserial.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:Windowssystem32atiesrxx.exe []
R2 astcc;AST Service; C:WindowsSYSTEM32astsrv.exe [2010-02-16 57344]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:Program Files (x86)Common FilesAutodesk SharedServiceAdskScSrv.exe [2010-07-18 68608]
R2 AVKProxy;G Data AntiVirus Proxy; C:Program Files (x86)Common FilesG DATAAVKProxyAVKProxy.exe [2010-09-02 1097288]
R2 AVKService;G Data Scheduler; C:Program Files (x86)G DataTotalCareAVKAVKService.exe [2010-04-12 410696]
R2 AVKWCtl;G Data Монитор файловой системы; C:Program Files (x86)G DataTotalCareAVKAVKWCtlX64.exe [2010-08-26 1865344]
R2 Bonjour Service;Bonjour Service; C:Program Files (x86)BonjourmDNSResponder.exe [2008-12-12 238888]
R2 CscService;@%systemroot%system32cscsvc.dll,-200; C:WindowsSystem32svchost.exe [2009-07-14 20992]
R2 mi-raysat_3dsmax2010_32;mental ray 3.7 Satellite for Autodesk 3ds Max 2010 32-bit 32-bit; C:Program Files (x86)Autodesk3ds Max 2010mentalraysatelliteraysat_3dsmax2010_32server.exe [2009-03-12 86016]
R2 PnkBstrA;PnkBstrA; C:Windowssystem32PnkBstrA.exe [2010-02-12 75064]
R2 PnkBstrB;PnkBstrB; C:Windowssystem32PnkBstrB.exe [2010-09-16 215128]
R2 VMnetDHCP;VMware DHCP Service; C:Windowssystem32vmnetdhcp.exe [2009-10-22 334384]
R2 VMUSBArbService;VMware USB Arbitration Service; C:Program Files (x86)Common FilesVMwareUSBvmware-usbarbitrator.exe [2009-10-22 563760]
R2 VMware NAT Service;VMware NAT Service; C:Windowssystem32vmnat.exe [2009-10-22 395824]
R3 GDFwSvc;G Data Personal Firewall; C:Program Files (x86)G DataTotalCareFirewallGDFwSvcx64.exe [2010-08-26 1718608]
R3 GDScan;G Data Scanner; C:Program Files (x86)Common FilesG DATAGDScanGDScan.exe [2010-08-26 340552]
S2 AODService;AODService; C:Program Files (x86)AMDOverDriveAODAssist.exe [2009-05-05 124256]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:WindowsMicrosoft.NETFramework64v4.0.30319mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Google Update Service (gupdate); C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2010-05-06 136176]
S2 gusvc;Google Software Updater; C:Program Files (x86)GoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2010-07-12 194104]
S2 MBAMService;MBAMService; C:Program Files (x86)Malwarebytes’ Anti-Malwarembamservice.exe [2010-04-29 304464]
S2 UleadBurningHelper;Ulead Burning Helper; C:Program Files (x86)Common FilesUlead SystemsDVDULCDRSvr.exe []
S2 VMAuthdService;VMware Authorization Service; C:Program Files (x86)VMwareVMware Workstationvmware-authd.exe [2009-10-22 113200]
S3 Apple Mobile Device;Apple Mobile Device; C:Program Files (x86)Common FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe [2009-08-28 144672]
S3 AppMgmt;@appmgmts.dll,-3250; C:Windowssystem32svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:WindowsMicrosoft.NETFramework64v4.0.30319aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService64.exe [2010-06-16 1436424]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program Files (x86)Common FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2010-03-04 867080]
S3 GDBackupSvc;G Data Backup Service; C:Program Files (x86)G DataTotalCareAVKBackupAVKBackupService.exe [2010-05-05 901192]
S3 GDTunerSvc;G Data Tuner Service; C:Program Files (x86)G DataTotalCareAVKTunerAVKTunerService.exe [2010-03-08 934984]
S3 ICQ Service;ICQ Service; C:Program Files (x86)ICQ6ToolbarICQ Service.exe [2009-10-27 246520]
S3 iPod Service;iPod Service; C:Program FilesiPodbiniPodService.exe [2009-11-12 660256]
S3 ose;Office Source Engine; C:Program Files (x86)Common FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%system32peerdistsvc.dll,-9000; C:WindowsSystem32svchost.exe [2009-07-14 20992]
S3 RichVideo;Cyberlink RichVideo Service(CRVS); D:CyberLink PowerDVD Ultra v8.0.2021.50+Keys-HeartBugSetup 8.0.1730RichVideoRichVideo.exe []
S3 Steam Client Service;Steam Client Service; C:Program Files (x86)Common FilesSteamSteamService.exe [2010-03-08 332720]
S3 SwitchBoard;SwitchBoard; C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe [2010-02-19 517096]
S3 ufad-ws60;VMware Agent Service; C:Program Files (x86)VMwareVMware Workstationvmware-ufad.exe [2009-10-12 191024]
S3 UmRdpService;@%SystemRoot%system32umrdp.dll,-1000; C:WindowsSystem32svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%system32WatWatUX.exe,-601; C:Windowssystem32WatWatAdminSvc.exe []
S4 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:Program Files (x86)Common FilesABBYYFineReader9.00LicensingPENetworkLicenseServer.exe [2007-12-06 660768]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:Program FilesMicrosoft Visual Studio 9.0Common7IDERemote Debuggerx64msvsmon.exe [2008-07-29 4737024]
S4 NetMsmqActivator;@C:WindowsMicrosoft.NETFramework64v4.0.30319\ServiceModelInstallRC.dll,-8195; C:WindowsMicrosoft.NETFramework64v4.0.30319SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:WindowsMicrosoft.NETFramework64v4.0.30319\ServiceModelInstallRC.dll,-8197; C:WindowsMicrosoft.NETFramework64v4.0.30319SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:WindowsMicrosoft.NETFramework64v4.0.30319\ServiceModelInstallRC.dll,-8199; C:WindowsMicrosoft.NETFramework64v4.0.30319SMSvcHost.exe [2010-03-18 124240]
EOFinfo
info.txt logfile of random’s system information tool 1.08 2010-09-27 12:23:11
======Uninstall list======
—>MsiExec /X{F9835182-794B-4F24-902A-E2CA9D43380F}
—>MsiExec.exe /I{9A346205-EA92-4406-B1AB-50379DA3F057}
3DMark Vantage—>»C:Program Files (x86)InstallShield Installation Information{C40C3C3D-97CF-44B5-836C-766E374464B3}setup.exe» -runfromtemp -l0x0009 -removeonly
3ds max 7 Additional Maps and Materials—>MsiExec.exe /I{5EB4C5CA-962C-486B-81FF-A41B7B8FFBEC}
3ds max 7 Architectural Materials—>MsiExec.exe /I{54199443-342B-4162-B10D-CAA1C211E7A6}
3ds max 7 Reference Files—>MsiExec.exe /I{E5F6E1A6-44AA-4CF7-883E-4F7FA7C4BCA5}
3ds max 7—>MsiExec.exe /I{F92AB933-9FE7-4335-92BD-D1C3BA27613C}
3dsmax ancillary install—>MsiExec.exe /I{7C8B5E63-821A-4DFB-BDFA-19854D88EC5C}
7-Zip 9.05 alpha—>»C:Program Files (x86)7-ZipUninstall.exe»
AAA Logo 2009 Business Edition 3.0—>»C:Program Files (x86)AAALOGO2009unins000.exe»
ABBYY FineReader 9.0 Professional Edition—>MsiExec.exe /I{F9000000-0001-0000-0000-074957833700}
ACDSee Pro 2—>MsiExec.exe /I{4AAC95F4-A30E-4EE5-A086-6F79581D0D70}
ACDSee Pro 3—>MsiExec.exe /I{1B280FAF-AE10-4E31-A41A-DB3917D651DC}
Adobe After Effects CS4 Presets—>MsiExec.exe /I{44E240EC-2224-4078-A88B-2CEE0D3016EF}
Adobe After Effects CS4 Third Party Content—>MsiExec.exe /I{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}
Adobe After Effects CS4—>C:Program Files (x86)Common FilesAdobeInstallers3dcb365ab9e01871fb8c6f27b0ea079Setup.exe —uninstall=1
Adobe After Effects CS4—>MsiExec.exe /I{45EC816C-0771-4C14-AE6D-72D1B578F4C8}
Adobe AIR—>C:Program Files (x86)Common FilesAdobe AIRVersions1.0ResourcesAdobe AIR Updater.exe -arp:uninstall
Adobe AIR—>MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Anchor Service CS4—>MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8}
Adobe Bridge CS4—>MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0}
Adobe CMaps CS4—>MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}
Adobe Color EU Extra Settings CS4—>MsiExec.exe /I{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}
Adobe Color JA Extra Settings CS4—>MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F}
Adobe Color NA Recommended Settings CS4—>MsiExec.exe /I{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}
Adobe Color Video Profiles AE CS4—>MsiExec.exe /I{B15381DD-FF97-4FCD-A881-ED4DB0975500}
Adobe Community Help—>msiexec /qb /x {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Community Help—>MsiExec.exe /I{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe CSI CS4—>MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF}
Adobe Default Language CS4—>MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}
Adobe Device Central CS4—>MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A}
Adobe Dreamweaver CS4—>C:Program Files (x86)Common FilesAdobeInstallersacce07fd2c8fe7f9e3f26243e626578Setup.exe —uninstall=1
Adobe Dreamweaver CS4—>MsiExec.exe /I{30C8AA56-4088-426F-91D1-0EDFD3A25678}
Adobe Drive CS4—>MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C}
Adobe Dynamiclink Support—>MsiExec.exe /I{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}
Adobe ExtendScript Toolkit CS4—>MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
Adobe Extension Manager CS4—>MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972}
Adobe Flash Player 10 ActiveX—>MsiExec.exe /X{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}
Adobe Flash Player 10 Plugin—>C:WindowsSysWOW64MacromedFlashFlashUtil10k_Plugin.exe -maintain plugin
Adobe Flash Professional CS5—>C:Program Files (x86)Common FilesAdobeOOBEPDAppcorePDApp.exe —appletID=»DWA_UI» —appletVersion=»1.0″ —mode=»Uninstall» —mediaSignature=»{CFC9F871-7C40-40B6-BE4A-B98A5B309716}»
Adobe Fonts All—>MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
Adobe Illustrator CS4—>C:Program Files (x86)Common FilesAdobeInstallers2a31ae7a5c43ff52d8577782dd34e04Setup.exe —uninstall=1
Adobe Illustrator CS4—>MsiExec.exe /I{87532CAB-7932-4F84-8937-823337622807}
Adobe Linguistics CS4—>MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67}
Adobe Media Encoder CS4 Additional Exporter—>MsiExec.exe /I{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}
Adobe Media Encoder CS4 Exporter—>MsiExec.exe /I{561968FD-56A1-49FD-9ED0-F55482C7C5BC}
Adobe Media Encoder CS4 Importer—>MsiExec.exe /I{8186FF34-D389-4B7E-9A2F-C197585BCFBD}
Adobe Media Encoder CS4—>MsiExec.exe /I{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}
Adobe Media Player—>msiexec /qb /x {39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Adobe Media Player—>MsiExec.exe /I{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Adobe MotionPicture Color Files CS4—>MsiExec.exe /I{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}
Adobe Output Module—>MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A}
Adobe PDF Library Files CS4—>MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}
Adobe Photoshop CS5—>C:Program Files (x86)Common FilesAdobeOOBEPDAppcorePDApp.exe —appletID=»DWA_UI» —appletVersion=»1.0″ —mode=»Uninstall» —mediaSignature=»{15FEDA5F-141C-4127-8D7E-B962D1742728}»
Adobe Reader 9.1 — Russian—>MsiExec.exe /I{AC76BA86-7AD7-1049-7B44-A91000000001}
Adobe Search for Help—>MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA}
Adobe Service Manager Extension—>MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}
Adobe Setup—>MsiExec.exe /I{14AFE241-FC6E-4FDB-BCA0-7AD6F4974171}
Adobe Setup—>MsiExec.exe /I{411F3ABA-2AB5-4799-AA19-6ADF0A8F7424}
Adobe Setup—>MsiExec.exe /I{8CE08C3C-8FF4-45D9-925E-4F3CE2D7FA7D}
Adobe Type Support CS4—>MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
Adobe Update Manager CS4—>MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755}
Adobe WinSoft Linguistics Plugin—>MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}
Adobe XMP Panels CS4—>MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
AdobeColorCommonSetCMYK—>MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4}
AdobeColorCommonSetRGB—>MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
AIMP2—>C:Program Files (x86)AIMP2Uninstall.exe
Aliens vs Predator—>»E:GamesAliens vs Predatorunins000.exe»
AMD Fusion Media Explorer—>MsiExec.exe /X{2D943F95-2C76-4951-9AEF-0977AF5DE11A}
AMD OverDrive—>MsiExec.exe /X{20AEA7B1-6155-44A2-B58E-430F2C9F4ABD}
Apple Application Support—>MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Software Update—>MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
ArtIcons Pro—>»C:Program Files (x86)ArtIcons Prouninstall.exe»
ArtMoney SE v7.31—>»C:Program Files (x86)ArtMoneyUninstallunins000.exe»
ATI Catalyst Registration—>MsiExec.exe /X{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}
Autodesk 3ds Max 2010 32-bit—>MsiExec.exe /I{317AC0C7-FEBF-0409-87A3-4FC70D0ED900}
Autodesk DWF Viewer 7—>MsiExec.exe /I{9A346205-EA92-4406-B1AB-50379DA3F057}
Autodesk FBX Plugin 2009.4 — 3ds Max 2010—>C:Program Files (x86)AutodeskFBXFBXPlugins2009.43ds Max 2010Uninstall.exe
Autodesk Material Library 2011 Base Image library—>MsiExec.exe /I{CD1E078C-A6B9-47DA-B035-6365C85C7832}
Autodesk Material Library 2011—>MsiExec.exe /I{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}
Backburner—>MsiExec.exe /I{3D347E6D-5A03-4342-B5BA-6A771885F379}
Battlefield: Bad Company™ 2—>MsiExec.exe /X{3AC8457C-0385-4BEA-A959-E095F05D6D67}
BearPaw 1200CU Plus v1.0—>DriverUNINST.EXE
Bink and Smacker—>C:PROGRA~2RADVideoUNWISE.EXE C:PROGRA~2RADVideoINSTALL.LOG
BitTorrent—>C:Program Files (x86)BitTorrentuninst.exe
boujou 4.1.1—>»C:Program Files (x86)2d3boujou 4.1.1unins000.exe»
Button Beats Virtual Piano 4—>C:Program Files (x86)Button Beats Virtual Piano 4uninstall.exe
Call Of Duty 2 — Modern Warfare 2—>»E:GamesCall Of Duty 2 — Modern Warfare 2unins000.exe»
Catalyst Control Center — Branding—>MsiExec.exe /I{87323561-58BA-4D5B-BADA-A791B69D1705}
CCleaner—>»C:Program Files (x86)CCleaneruninst.exe»
Colin McRae. DiRT 2—>»C:UsersAMDAppDataLocalR.G. MechanicsColin McRae. DiRT 2Uninstallunins000.exe»
ColorMania 2.6—>»C:Program Files (x86)ColorManiaunins000.exe»
Connect—>MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D}
Counter-Strike 1.6—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1PROFES~1RunTime90Intel32Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{13B792AA-C078-43A4-8A3A-8B12D629940D}Setup.exe» -l0x19
CyberLink PowerDVD 8—>»C:Program Files (x86)InstallShield Installation Information{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}setup.exe» /z-uninstall
Download Master version 5.7.3.1221—>»C:Program Files (x86)Download Masterunins000.exe»
DVDFab Platinum—>C:Program Files (x86)DVDFab 5Uninstall.exe
EDIUS 5(SetupManager)—>»C:Program Files (x86)InstallShield Installation Information{FA8B6532-78E9-490B-B97D-32379E16810E}setup.exe» -runfromtemp -l0x0009 -removeonly
eMusic — 50 Free MP3 offer—>»C:Program Files (x86)WinampeMusicUninst-eMusic-promotion.exe»
EVEREST Ultimate Edition v5.02—>»C:Program Files (x86)LavalysEVEREST Ultimate Editionunins000.exe»
FARO LS 1.1.406.58—>MsiExec.exe /I{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}
FBX Plugin 2006.08 for Max 9.0—>C:Program Files (x86)AutodeskFBXFbxPlugins2006.08Max90Uninstall.exe
Feed Viewer for Windows SideShow—>MsiExec.exe /X{E4DA04B6-3EC4-4DFD-A14E-44959EF36D5B}
FeedDemon—>»C:Program Files (x86)FeedDemonunins000.exe»
ffdshow [rev 3285] [2010-02-25]—>»C:Program Files (x86)K-Lite Codec Packffdshowunins000.exe»
FileZilla Client 3.3.3—>C:Program Files (x86)FileZilla FTP Clientuninstall.exe
Format Convert 2.0—>»C:Program Files (x86)Format Convert 2.0unins000.exe»
Fortop Album Creator 1.9—>»C:Program Files (x86)Fortop Digital SoftwareFortop Album Creatorunins000.exe»
Fraps—>»E:EXESTfrapsuninstall.exe»
Futuremark SystemInfo—>»C:Program Files (x86)InstallShield Installation Information{BEE64C14-BEF1-4610-8A68-A16EAA47B882}setup.exe» -runfromtemp -l0x0009 -removeonly
G Data TotalCare 2011—>MsiExec.exe /I{31B59248-4591-4ED7-BBE9-588C60F09FAC}
Gamestudio A7—>»C:Program Files (x86)GStudio7un_gstudio705_14314.exe»
Garena 2010—>C:Program Files (x86)Garenauninst.exe
Garena 2010—>C:Program Files (x86)Garenauninst.exe
Genuine Fractals 6.0 Professional Edition—>»C:Program Files (x86)InstallShield Installation Information{FCADA4FF-142C-42A8-B73C-0A54A7F83345}setup.exe» -runfromtemp -l0x0009 -uninst -removeonly
GOM Player—>»C:Program Files (x86)GRETECHGomPlayerUninstall.exe»
Google Books Download—>»C:Program Files (x86)PDFsvgGoogle Books DownloadUninstall.exe»
Google Chrome—>»C:Program Files (x86)GoogleChromeApplication6.0.472.63Installersetup.exe» —uninstall —system-level
Google Earth—>MsiExec.exe /X{4286E640-B5FB-11DF-AC4B-005056C00008}
Google Update Helper—>MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Grand Theft Auto IV—>»E:GamesGrand Theft Auto IVunins000.exe»
Guardant driver—>»C:Windowssystem32rundll32.exe» grddrv32.dll,GD_UninstallDriver 1
HASP Device Drivers—>C:Windowssystem32UNWISE.EXE C:Windowssystem32HDD32.LOG
HDD Regenerator—>MsiExec.exe /X{2445981B-A23B-4A0E-AD15-3D391BDAEC3E}
Hotfix for Microsoft Visual C# 2008 Express Edition with SP1 — ENU (KB945282)—>C:WindowsSysWOW64msiexec.exe /package {A4418082-E601-3954-805B-D56A2B50EC8B} /uninstall /qb+ REBOOTPROMPT=»»
Hotfix for Microsoft Visual C# 2008 Express Edition with SP1 — ENU (KB946040)—>C:WindowsSysWOW64msiexec.exe /package {A4418082-E601-3954-805B-D56A2B50EC8B} /uninstall /qb+ REBOOTPROMPT=»»
Hotfix for Microsoft Visual C# 2008 Express Edition with SP1 — ENU (KB946308)—>C:WindowsSysWOW64msiexec.exe /package {A4418082-E601-3954-805B-D56A2B50EC8B} /uninstall /qb+ REBOOTPROMPT=»»
Hotfix for Microsoft Visual C# 2008 Express Edition with SP1 — ENU (KB947540)—>C:WindowsSysWOW64msiexec.exe /package {A4418082-E601-3954-805B-D56A2B50EC8B} /uninstall /qb+ REBOOTPROMPT=»»
Hotfix for Microsoft Visual C# 2008 Express Edition with SP1 — ENU (KB947789)—>C:WindowsSysWOW64msiexec.exe /package {A4418082-E601-3954-805B-D56A2B50EC8B} /uninstall /qb+ REBOOTPROMPT=»»
Hotfix for Microsoft Visual Studio 2008 Remote Debugger Light (x64) — ENU (KB944899)—>C:WindowsSysWOW64msiexec.exe /package {90A80D89-A0E4-33C1-B13D-B93CB3496867} /uninstall /qb+ REBOOTPROMPT=»»
ICQ Toolbar—>C:Program Files (x86)ICQ6ToolbarICQUnToolbar.exe
ICQ6.5—>»C:Program Files (x86)InstallShield Installation Information{60DE4033-9503-48D1-A483-7846BD217CA9}setup.exe» -runfromtemp -l0x0009 -removeonly
Internet Explorer Proxy Monitor 1.0—>»C:Program Files (x86)Internet Explorer Proxy Monitorunins000.exe»
iZotope Ozone 4—>»C:Program Files (x86)iZotopeOzone 4unins000.exe»
iZotope Vinyl—>»C:Program Files (x86)iZotopeVinylunins000.exe»
JAF Setup—>»C:Program Files (x86)ODEONJAFuninstall.exe»
Java(TM) 6 Update 21—>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF}
K-Lite Codec Pack 5.1.0 (Full)—>»C:Program Files (x86)K-Lite Codec Packunins000.exe»
kuler—>MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243}
L4D Update 1.0.1.4 (3887)—>C:Program Files (x86)Steamsteamappscommonleft 4 deadUninstall.exe
Left 4 Dead Standalone Patch—>C:Program Files (x86)Steamsteamappscommonleft 4 deaduninstall.exe
Lightsmark 2008—>MsiExec.exe /I{9418C162-91BF-47DC-B302-60EC1A6749E0}
Lizardtech DjVu Control—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{105CFC7C-6992-11D5-BD9D-000102C10FD8}Setup.exe» -l0x9
LOST PLANET 2 Benchmark Version—>MsiExec.exe /X{FB2D4820-A19F-4D3B-AAB6-5A16CE9040B6}
Mafia II (With Shitty Crack)—>»E:GamesMafia II (With Shitty Crack)Uninstallunins000.exe»
Magic Bullet PhotoLooks—>C:Windowsunvise32.exe C:Program Files (x86)AdobeAdobe Photoshop CS3Plug-insmbphotolooks.log
Malwarebytes’ Anti-Malware—>»C:Program Files (x86)Malwarebytes’ Anti-Malwareunins000.exe»
Maya 2010 Documentation (en_US)—>MsiExec.exe /I{3CAA4788-85E1-4bd6-890E-09B4BE3CD3D1}
Metro 2033—>»E:GamesMetro 2033unins000.exe»
Microsoft Games for Windows — LIVE Redistributable—>MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows — LIVE—>MsiExec.exe /X{A1C962E2-2426-49C6-A38B-9A07E40D607C}
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Microsoft SOAP Toolkit 3.0—>MsiExec.exe /I{BCB4C18A-ACA6-4383-8688-E19933A705DD}
Microsoft SQL Server 2008 Management Objects—>MsiExec.exe /I{F5E87B12-3C27-452F-8E78-21D42164FD83}
Microsoft SQL Server Compact 3.5 SP1 Design Tools English—>MsiExec.exe /X{0C19D563-5F25-4621-BF10-01F741BD283F}
Microsoft SQL Server Compact 3.5 SP1 English—>MsiExec.exe /I{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}
Microsoft Visual C# 2008 Express Edition with SP1 — ENU—>C:Program Files (x86)Microsoft Visual Studio 9.0Microsoft Visual C# 2008 Express Edition with SP1 — ENUsetup.exe
Microsoft Visual C# 2008 Express Edition with SP1 — ENU—>MsiExec.exe /X{A4418082-E601-3954-805B-D56A2B50EC8B}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.21022—>MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30411—>MsiExec.exe /X{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729.17—>MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729.4148—>MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729—>MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729—>MsiExec.exe /X{402ED4A1-8F5B-387A-8688-997ABF58B8F2}
Microsoft Visual Studio 2008 Remote Debugger Light (x64) — ENU Service Pack 1 (KB945140)—>C:WindowsSysWOW64msiexec.exe /package {90A80D89-A0E4-33C1-B13D-B93CB3496867} /uninstall /qb+ REBOOTPROMPT=»»
Microsoft XNA Framework Redistributable 3.0—>MsiExec.exe /I{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}
Microsoft XNA Framework Redistributable 3.1—>MsiExec.exe /I{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}
Microsoft XNA Game Studio 3.1 (ARP entry)—>MsiExec.exe /I{E1D78366-91DA-4AD0-B417-28155743CC22}
Microsoft XNA Game Studio 3.1 (Platformer)—>MsiExec.exe /I{007BECB0-17DD-4230-9D2F-185287262B14}
Microsoft XNA Game Studio 3.1 (Redists)—>MsiExec.exe /I{0DC16794-7E69-4534-82FA-9DD0500FF338}
Microsoft XNA Game Studio 3.1 (Shared Components)—>MsiExec.exe /I{AF9BDE67-11A5-449A-B9F0-BE572A093DDB}
Microsoft XNA Game Studio 3.1 (VCSExpress)—>MsiExec.exe /I{3BA37E38-B53D-4520-B8DA-1DD62AD3A74E}
Microsoft XNA Game Studio 3.1 (XnaLiveProxy)—>MsiExec.exe /I{DFB81F19-ED3A-4DA5-AFE4-1B999E2A8DC5}
Microsoft XNA Game Studio 3.1 Documentation—>MsiExec.exe /I{7FD30AE7-281D-455F-AF9F-0C6C5E334EAD}
Microsoft XNA Game Studio 3.1—>C:Program Files (x86)Microsoft XNAXNA Game Studiov3.1SetupBootstrapper.exe en-US
Microsoft XNA Game Studio Platform Tools—>MsiExec.exe /I{BED4CEEC-863F-4AB3-BA23-541764E2D2CE}
Microsoft_VC80_ATL_x86—>MsiExec.exe /I{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}
Microsoft_VC80_CRT_x86—>MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC80_MFC_x86—>MsiExec.exe /I{D1A19B02-817E-4296-A45B-07853FD74D57}
Microsoft_VC80_MFCLOC_x86—>MsiExec.exe /I{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
Microsoft_VC90_ATL_x86—>MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Microsoft_VC90_CRT_x86—>MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Microsoft_VC90_MFC_x86—>MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
Mozilla Firefox (3.6.8)—>C:Program Files (x86)Mozilla Firefox 3.6 Beta 2uninstallhelper.exe
MSVC80_x86_v2—>MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
MSVC80_x86—>MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSXML 4.0 SP2 (KB973688)—>MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Natural Mod—>C:Program Files (x86)Natural Moduninstall.exe
Neat Image v6 Demo (with plug-in)—>»C:Program Files (x86)Neat Imageunins000.exe»
NewBlue 3D Explosions for Windows—>C:Program Files (x86)NewBlue3D Explosions for WindowsUninstalEdius.exe
NewBlue Art Effects for Windows—>C:Program Files (x86)NewBlueArt Effects for WindowsUninstalEdius.exe
NewBlue Film Effects for Windows—>C:Program Files (x86)NewBlueFilm Effects for WindowsUninstalEdius.exe
NewBlue Video Essentials for Windows—>C:Program Files (x86)NewBlueVideo Essentials for WindowsUninstalEdius.exe
Nexus 10.3—>»C:Program Files (x86)Winstepunins000.exe»
Nexus Radio—>MsiExec.exe /X{E550F15F-1024-4FB6-8A76-5E9F77368B53}
NFSpeed-Shift—>»E:GamesNFSpeed-Shiftunins000.exe»
Notepad++—>C:Program Files (x86)Notepad++uninstall.exe
NVIDIA PhysX—>MsiExec.exe /X{F9835182-794B-4F24-902A-E2CA9D43380F}
Offline Course Player—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1PROFES~1RunTime701Intel32Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{3BC1AB78-2D98-4906-84B5-4230B5420DCC}Setup.exe» -l0x9
Ontrack EasyRecovery Professional—>C:PROGRA~2COMMON~1INSTAL~1Driver7INTEL3~1IDriver.exe /M{268723B7-A994-4286-9F85-B974D5CAFC7B} /l1033
OpenAL—>»C:Program Files (x86)OpenALoalinst.exe» /U
OpenOffice.org 3.1—>MsiExec.exe /I{B1D25CBD-A1E2-4807-B556-20C14DB9FEF9}
Opera 10.00—>MsiExec.exe /X{2085F05D-24C5-4E27-B7B4-A51DE890FFC9}
Opera 10.10—>MsiExec.exe /X{690BE098-6D0D-493D-B079-BD7E8F81A141}
Opera 10.50—>MsiExec.exe /X{022F6097-A053-4B1B-BE50-3AADE4116B92}
Opera 10.51—>MsiExec.exe /X{05ADEEC8-BD58-43D9-A9E3-1F53B0DA117A}
Opera 10.53—>MsiExec.exe /X{1A0D2EFC-C4FC-446A-8BC3-57A54CE5EADD}
Opera 10.61—>MsiExec.exe /X{70858C67-8761-4444-895A-0A8B2E9E144E}
Opera 10.62—>MsiExec.exe /X{18E65799-76BD-46EF-9E53-972FE5A40736}
Opera 9.64—>MsiExec.exe /X{E1BBBAC5-2857-4155-82A6-54492CE88620}
Pantera 2.0—>c:Program FilesPanterauninstal.exe
Passware Kit Enterprise 7.9—>C:Program Files (x86)Passwareun-kit_ent.exe
PDF Settings CS4—>MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}
PDF Settings CS5—>MsiExec.exe /I{A78FE97A-C0C8-49CE-89D0-EDD524A17392}
PhotoFrame Pro 3.1 Demo—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{5F073685-ADDB-4D5A-98E9-0F795989A57F}setup.exe» -l0x9 -uninst -removeonly
Photoshop Camera Raw—>MsiExec.exe /I{CC75AB5C-2110-4A7F-AF52-708680D22FE8}
PhotoTune 3.0.1—>»C:Program Files (x86)InstallShield Installation Information{12DC97BF-4D60-4C97-9A10-762F8D710695}setup.exe» -runfromtemp -l0x0009 -uninst -removeonly
PIMOne 5.35—>»C:Program Files (x86)PIMOneunins000.exe»
Pixel Bender Toolkit—>MsiExec.exe /I{43509E18-076E-40FE-AF38-CA5ED400A5A9}
PixiePack Codec Pack—>MsiExec.exe /I{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}
pLan OpenVPN Edition—>C:PROGRA~2pLanUNWISE.EXE C:PROGRA~2pLanINSTALL.LOG
proDAD Vitascene 1.0—>»C:Program Files (x86)proDADVitascene-1.0uninstall.exe» uninstall spcp PATHVERSION 1.0 MAINNAME Vitascene
PunkBuster Services—>C:Windowssystem32pbsvc_bc2.exe -u
QuickTime—>MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
Radiotracker—>MsiExec.exe /I{CC1F6639-8DF7-43AC-B321-82D94C9D475A}
RapidShare Plus 4 1.00—>C:Program Files (x86)Gladiator16RapidShare Plus 4Uninstall.exe
RAR Recovery Toolbox 1.1—>»C:Program Files (x86)RAR Recovery Toolboxunins000.exe»
Realtek 8136 8168 8169 Ethernet Driver—>C:Program Files (x86)InstallShield Installation Information{8833FFB6-5B0C-4764-81AA-06DFEED9A476}setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}Setup.exe» -removeonly
Risen—>»C:Program Files (x86)InstallShield Installation Information{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}setup.exe» -runfromtemp -l0x0019 -removeonly
RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition—>»C:Program Files (x86)RivaTuner v2.24 MSI Master Overclocking Arena 2009 editionuninstall.exe»
RocketDock 1.3.5—>»C:Program Files (x86)RocketDockunins000.exe»
Rockstar Games Social Club—>»C:Program Files (x86)InstallShield Installation Information{08B3869E-D282-424C-9AFC-870E04A4BA14}setup.exe» -runfromtemp -l0x0009 -removeonly
Safari—>MsiExec.exe /I{D6E4E5D6-7693-4BB4-95BA-21F38FAFEE90}
Save Flash 4.2—>C:Program Files (x86)Save Flashuninst.exe
Screensaver (vodopad)—>C:Windowsvodopad.scr /U
Side 9 Screensaver—>C:Windowssystem32Side 9 Screensaver.scr /u
Skype Toolbars—>MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A}
Skype™ 4.2—>MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
SmartPhotoRefresh—>UNWISE.EXE install.log
SmartSound Quicktracks Plugin—>C:PROGRA~2COMMON~1INSTAL~1Driver9INTEL3~1IDriver.exe /M{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}
SnagIt 9—>MsiExec.exe /I{2FADA80A-5D89-4CC8-9ED7-445527754A83}
Sothink SWF Decompiler—>»C:Program Files (x86)SourceTecSothink SWF Decompilerunins000.exe»
SpeedFan (remove only)—>»C:Program Files (x86)SpeedFanuninstall.exe»
Splash Lite—>MsiExec.exe /I{465E6124-3DD3-4176-B560-0D1E3E09370B}
Splash PRO—>MsiExec.exe /I{337E9F8D-2062-4D93-A593-6697D80E0096}
SQL Server System CLR Types—>MsiExec.exe /I{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}
Steam—>MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Suite Shared Configuration CS4—>MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434}
The Bat! Professional v4.2.36.4—>MsiExec.exe /I{80C22308-DC4F-4F1E-BE7C-FB903B0AFCF8}
The Lord of the Rings FREE Trial —>MsiExec.exe /X{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}
tools-freebsd—>MsiExec.exe /X{003BFBBD-6C67-419E-A24D-0DCAFC3A5249}
tools-linux—>MsiExec.exe /X{D102611A-6466-4101-A51D-51069303AC65}
tools-netware—>MsiExec.exe /X{197597A7-AD33-4898-9D8E-73066818B464}
tools-solaris—>MsiExec.exe /X{AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}
tools-windows—>MsiExec.exe /X{FFD9383C-01D5-4897-A954-43AF599AED30}
tools-winPreА вот эти файли G-data отправляет на карантин при обнаружении hale.exe
crc32.exe
flick.exe
icsm.dll
wac32.dll
wac64.dll
wiv32.dll
wiv64.dll
wla32.dll
wla64.dll
wslmt.dllЗдравствуйте, добро пожаловать на Spyware-ru форум.
проверьте файл
C:UsersAMDAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupvrayspawner60.exe
на сайте VirusTotal.В поле Отправить файл кликните по кнопке Browse/Обзор.
Выберите подозрительный фай, о котором я писал выше.
Кликните по кнопке Отправить файл.Результат сканирования вставьте в ваше ответное сообщение.
Єто собственно файл рендера для 3d max.
File name: vrayspawner60.exe
Submission date: 2010-09-29 10:11:24 (UTC)
Current status: finished
Result: 0/ 43 (0.0%)AhnLab-V3 2010.09.29.01 2010.09.29 —
AntiVir 7.10.12.78 2010.09.29 —
Antiy-AVL 2.0.3.7 2010.09.29 —
Authentium 5.2.0.5 2010.09.29 —
Avast 4.8.1351.0 2010.09.29 —
Avast5 5.0.594.0 2010.09.28 —
AVG 9.0.0.851 2010.09.29 —
BitDefender 7.2 2010.09.29 —
CAT-QuickHeal 11.00 2010.09.29 —
ClamAV 0.96.2.0-git 2010.09.29 —
Comodo 6235 2010.09.29 —
DrWeb 5.0.2.03300 2010.09.29 —
Emsisoft 5.0.0.50 2010.09.29 —
eSafe 7.0.17.0 2010.09.28 —
eTrust-Vet 36.1.7881 2010.09.28 —
F-Prot 4.6.2.117 2010.09.28 —
F-Secure 9.0.15370.0 2010.09.29 —
Fortinet 4.1.143.0 2010.09.29 —
GData 21 2010.09.29 —
Ikarus T3.1.1.90.0 2010.09.29 —
Jiangmin 13.0.900 2010.09.29 —
K7AntiVirus 9.63.2628 2010.09.28 —
Kaspersky 7.0.0.125 2010.09.29 —
McAfee 5.400.0.1158 2010.09.29 —
McAfee-GW-Edition 2010.1C 2010.09.29 —
Microsoft 1.6201 2010.09.29 —
NOD32 5488 2010.09.29 —
Norman 6.06.06 2010.09.28 —
nProtect 2010-09-29.01 2010.09.29 —
Panda 10.0.2.7 2010.09.28 —
PCTools 7.0.3.5 2010.09.28 —
Prevx 3.0 2010.09.29 —
Rising 22.67.01.01 2010.09.29 —
Sophos 4.58.0 2010.09.29 —
Sunbelt 6943 2010.09.29 —
SUPERAntiSpyware 4.40.0.1006 2010.09.29 —
Symantec 20101.2.0.161 2010.09.29 —
TheHacker 6.7.0.1.039 2010.09.29 —
TrendMicro 9.120.0.1004 2010.09.29 —
TrendMicro-HouseCall 9.120.0.1004 2010.09.29 —
VBA32 3.12.14.1 2010.09.27 —
ViRobot 2010.8.31.4017 2010.09.29 —
VirusBuster 12.66.4.0 2010.09.28 —
- Для ответа в этой теме необходимо авторизоваться.
