- This topic has 2 ответа, 1 участник, and was last updated 13 years, 8 months назад by
.
-
Сообщения
-
На жестком диске, на навигаторе. Папка выглядит как ярлык, запускается через командную строку.
С навигатора вообще папки не открываются.
Прошу, помогите вылечить хотя бы сначала ноутбук, на нем чаще работаю.
log.txt
Logfile of random’s system information tool 1.06 (written by random/random)
Run by мвидео at 2011-03-08 16:12:57
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 41 GB (34%) free of 119 GB
Total RAM: 2814 MB (33% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:13:49, on 08.03.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19019)
Boot mode: NormalRunning processes:
C:Windowssystem32Dwm.exe
C:WindowsSYSTEM32WISPTIS.EXE
C:WindowsExplorer.EXE
C:Windowssystem32taskeng.exe
C:Windowssystem32taskeng.exe
C:Program FilesWindows DefenderMSASCui.exe
C:Program FilesASUSASUS Live UpdateALU.exe
C:Program FilesASUSSmartLogonsensorsrv.exe
C:WindowsRtHDVCpl.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:Program FilesASUSATK MediaDMedia.exe
C:WindowsASScrPro.exe
C:Program FilesDrWebspideragent.exe
C:Program FilesDrWebspiderml.exe
C:Program FilesDrWebspiderui.exe
C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.exe
C:Windowssystem32WTabletTabUserW.exe
C:WindowsSystem32ATWTUSB.EXE
C:Program FilesWindows Media Playerwmpnscfg.exe
C:Program FilesMail.RuGuardGuardMailRu.exe
D:DistrMouse UtilitaMouseUtility.exe
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:UsersмвидеоAppDataLocalGoogleUpdate1.2.183.39GoogleCrashHandler.exe
C:Program FilesYandexPunto Switcherpunto.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Program FilesUSBGuardUSBGuard.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesЗоркий глазANTIVIRЬ.exe
C:Program FilesSynapticsSynTPSynTPHelper.exe
C:Windowssystem32conime.exe
C:Program FilesDrWebDrWeb32W.Exe
C:Program FilesCommon FilesAdobeOOBEPDAppUWAAAM Updates Notifier.exe
C:Program FilesMicrosoft OfficeOffice12WINWORD.EXE
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоDesktopRSIT.exe
C:Program Filestrend microмвидео.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://mail.ru
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:UsersмвидеоAppDataRoamingMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O1 — Hosts: ::1 localhost
O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 — BHO: Groove GFS Browser Helper — {72853161-30C5-4D22-B7F9-0BBC1D38A37E} — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: IE 4.x-6.x BHO for Download Master — {9961627E-4059-41B4-8E0E-A7D6B3854ADF} — C:PROGRA~1DOWNLO~1dmiehlp.dll
O2 — BHO: AlterGeo Magic Scanner — {9BFBA68E-E21B-458E-AE12-FE85E903D2C1} — C:Program FilesAlterGeoAlterGeo Magic Scanner2.8.8.615AlterGeo.BrowserPlugin.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O2 — BHO: SkypeIEPluginBHO — {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.6.5805.1910swg.dll
O3 — Toolbar: DAEMON Tools Toolbar — {32099AAC-C132-4136-9E9A-4E364A424E17} — C:Program FilesDAEMON Tools ToolbarDTToolbar.dll
O3 — Toolbar: DM Bar — {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — C:Program FilesDownload Masterdmbar.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O4 — HKLM..Run: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
O4 — HKLM..Run: [StartCCC] «C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe» MSRun
O4 — HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 — HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 — HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMedia.exe
O4 — HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsAsScrProlog.exe
O4 — HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 — HKLM..Run: [SpIDerAgent] «C:Program FilesDrWebSpIDerAgent.exe»
O4 — HKLM..Run: [SpIDerMail] «C:Program FilesDrWebspiderml.exe»
O4 — HKLM..Run: [SpIDerNT] C:PROGRA~1DrWebspiderui.exe /agent
O4 — HKLM..Run: [GrooveMonitor] «C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe»
O4 — HKLM..Run: [Skytel] Skytel.exe
O4 — HKLM..Run: [LanguageShortcut] «C:Program FilesASUSTekASUSDVDLanguageLanguage.exe»
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [atwtusb] atwtusb.exe beta
O4 — HKLM..Run: [AdobeAAMUpdater-1.0] «C:Program FilesCommon FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe»
O4 — HKLM..Run: [SwitchBoard] C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe
O4 — HKLM..Run: [AdobeCS5ServiceManager] «C:Program FilesCommon FilesAdobeCS5ServiceManagerCS5ServiceManager.exe» -launchedbylogin
O4 — HKLM..Run: [Guard.Mail.ru.gui] «C:Program FilesMail.RuGuardGuardMailRu.exe» /gui
O4 — HKLM..Run: [2Gis Update Notifier] «C:Program Files2gis3.02GISTrayNotifier.exe» -delayed_start
O4 — HKCU..Run: [Google Update] «C:UsersмвидеоAppDataLocalGoogleUpdateGoogleUpdate.exe» /c
O4 — HKCU..Run: [MouseUtility] D:DistrMouse UtilitaMouseUtility.exe
O4 — HKCU..Run: [Skype] «C:Program FilesSkype\PhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [swg] «C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe»
O4 — HKCU..Run: [WMPNSCFG] C:Program FilesWindows Media PlayerWMPNSCFG.exe
O4 — HKCU..Run: [MAgent] C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe -CU
O4 — HKCU..Run: [Qwjwjm] C:UsersмвидеоAppDataRoamingQwjwjm.exe
O4 — Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe
O4 — Startup: USBGuard.lnk = C:Program FilesUSBGuardUSBGuard.exe
O8 — Extra context menu item: Google ВикиКомментарии… — res://C:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
O8 — Extra context menu item: Закачать ВСЕ при помощи Download Master — C:Program FilesDownload Masterdmieall.htm
O8 — Extra context menu item: Закачать при помощи Download Master — C:Program FilesDownload Masterdmie.htm
O8 — Extra context menu item: Передать на удаленную закачку DM — C:Program FilesDownload Masterremdown.htm
O9 — Extra button: Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra ‘Tools’ menuitem: &Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra button: Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra ‘Tools’ menuitem: &Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe (HKCU)
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe (HKCU)
O16 — DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} — http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 — HKLMSystemCCSServicesTcpip..{213FF536-9BB5-49C1-B7E6-880C0A4FD15E}: NameServer = 213.234.192.7 85.21.192.5
O17 — HKLMSystemCS1ServicesTcpip..{213FF536-9BB5-49C1-B7E6-880C0A4FD15E}: NameServer = 213.234.192.7 85.21.192.5
O17 — HKLMSystemCS2ServicesTcpip..{213FF536-9BB5-49C1-B7E6-880C0A4FD15E}: NameServer = 213.234.192.7 85.21.192.5
O18 — Protocol: grooveLocalGWS — {88FED34C-F0CA-4636-A375-3CB6248B04CD} — C:Program FilesMicrosoft OfficeOffice12GrooveSystemServices.dll
O18 — Protocol: skype-ie-addon-data — {91774881-D725-4E58-B298-07617B9B86A8} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: 2GIS UpdateService (2GISUpdateService) — ООО ДубльГИС — C:Program Files2gis3.02GISUpdateService.exe
O23 — Service: Adobe LM Service — Adobe Systems — C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe
O23 — Service: ADSM Service (ADSMService) — Unknown owner — C:Program FilesASUSASUS Data Security ManagerADSMSrv.exe
O23 — Service: Agere Modem Call Progress Audio (AgereModemAudio) — Agere Systems — C:Windowssystem32agrsmsvc.exe
O23 — Service: ASLDR Service (ASLDRService) — Unknown owner — C:Program FilesATK HotkeyASLDRSrv.exe
O23 — Service: Ati External Event Utility — ATI Technologies Inc. — C:Windowssystem32Ati2evxx.exe
O23 — Service: ATKGFNEX Service (ATKGFNEXSrv) — Unknown owner — C:Program FilesATKGFNEXGFNEXSrv.exe
O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
O23 — Service: Dr.Web Scanning Engine (DrWebEngine) (DrWebEngine) — Doctor Web, Ltd. — C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe
O23 — Service: Guard.Mail.ru — Unknown owner — C:Program FilesMail.RuGuardGuardMailRu.exe
O23 — Service: Служба Google Update (gupdate) (gupdate) — Google Inc. — C:Program FilesGoogleUpdateGoogleUpdate.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: LightScribeService Direct Disc Labeling Service (LightScribeService) — Hewlett-Packard Company — C:Program FilesCommon FilesLightScribeLSSrvc.exe
O23 — Service: Cyberlink RichVideo Service(CRVS) (RichVideo) — Unknown owner — C:Program FilesCyberLinkShared FilesRichVideo.exe
O23 — Service: AMD Safely Remove Disk Drive (SafeRemove) — AMD — C:Program FilesAMDSafely Remove DiskSafeRemoveService.exe
O23 — Service: SpIDer Guard for Windows (SPIDERNT) — Doctor Web, Ltd. — C:PROGRA~1DrWebspidernt.exe
O23 — Service: spmgr — Unknown owner — C:Program FilesASUSNB ProbeSPMspmgr.exe
O23 — Service: SwitchBoard — Adobe Systems Incorporated — C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe
O23 — Service: TabletService — Wacom Technology, Corp. — C:Windowssystem32Tablet.exe
O23 — Service: @C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) — Корпорация Майкрософт — C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe—
End of file — 13924 bytes======Scheduled tasks folder======
C:WindowstasksDr.Web Daily scan.job
C:WindowstasksDr.Web Update.job
C:WindowstasksGoogleUpdateTaskMachineCore.job
C:WindowstasksGoogleUpdateTaskMachineUA.job
C:WindowstasksGoogleUpdateTaskUserS-1-5-21-2749546941-1591866588-2318720215-1000Core.job
C:WindowstasksGoogleUpdateTaskUserS-1-5-21-2749546941-1591866588-2318720215-1000UA.job
C:WindowstasksUser_Feed_Synchronization-{7001626F-C3AC-4112-900D-5A67CBC5303F}.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2006-10-22 62080][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2010-11-22 1243320][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
IE 4.x-6.x BHO for Download Master — C:PROGRA~1DOWNLO~1dmiehlp.dll [2010-12-02 162928][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9BFBA68E-E21B-458E-AE12-FE85E903D2C1}]
AlterGeoBHO Class — C:Program FilesAlterGeoAlterGeo Magic Scanner2.8.8.615AlterGeo.BrowserPlugin.dll [2010-08-31 257384][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2011-02-02 297648][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll [2010-02-08 804136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.6.5805.1910swg.dll [2010-10-23 843832][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} — DAEMON Tools Toolbar — C:Program FilesDAEMON Tools ToolbarDTToolbar.dll [2008-12-10 929224]
{0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — DM Bar — C:Program FilesDownload Masterdmbar.dll [2007-11-26 180224]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2010-11-22 1243320]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2011-02-02 297648][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«Windows Defender»=C:Program FilesWindows DefenderMSASCui.exe [2008-01-21 1008184]
«StartCCC»=C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe [2008-01-21 61440]
«RtHDVCpl»=C:WindowsRtHDVCpl.exe [2008-06-13 6183456]
«SynTPEnh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2007-12-06 1029416]
«ATKMEDIA»=C:Program FilesASUSATK MediaDMedia.exe [2008-06-24 159744]
«ASUS Camera ScreenSaver»=C:WindowsAsScrProlog.exe [2008-09-15 47672]
«ASUS Screen Saver Protector»=C:WindowsASScrPro.exe [2008-09-15 33136]
«SpIDerAgent»=C:Program FilesDrWebSpIDerAgent.exe [2010-02-15 447728]
«SpIDerMail»=C:Program FilesDrWebspiderml.exe [2009-07-02 644336]
«SpIDerNT»=C:PROGRA~1DrWebspiderui.exe [2011-02-10 232352]
«GrooveMonitor»=C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2008-10-25 31072]
«Skytel»=C:WindowsSkytel.exe [2007-11-20 1826816]
«LanguageShortcut»=C:Program FilesASUSTekASUSDVDLanguageLanguage.exe [2008-02-22 62760]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2010-03-11 8746680]
«atwtusb»=atwtusb.exe beta []
«AdobeAAMUpdater-1.0″=C:Program FilesCommon FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [2010-06-27 500208]
«SwitchBoard»=C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe [2010-02-19 517096]
«AdobeCS5ServiceManager»=C:Program FilesCommon FilesAdobeCS5ServiceManagerCS5ServiceManager.exe [2010-02-22 406992]
«Guard.Mail.ru.gui»=C:Program FilesMail.RuGuardGuardMailRu.exe [2010-12-28 1041088]
«2Gis Update Notifier»=C:Program Files2gis3.02GISTrayNotifier.exe [2010-12-24 4579672][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Google Update»=C:UsersмвидеоAppDataLocalGoogleUpdateGoogleUpdate.exe [2010-03-28 136176]
«MouseUtility»=D:DistrMouse UtilitaMouseUtility.exe [2010-01-03 351232]
«Skype»=C:Program FilesSkype\PhoneSkype.exe [2010-09-02 13351304]
«swg»=C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2010-08-28 39408]
«AdobeBridge»= []
«WMPNSCFG»=C:Program FilesWindows Media PlayerWMPNSCFG.exe [2008-01-21 202240]
«MAgent»=C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe [2010-12-10 12319424]
«Qwjwjm»=C:UsersмвидеоAppDataRoamingQwjwjm.exe [2011-03-08 103424][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [2008-01-11 39792][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregATKOSD2]
C:Program FilesATKOSD2ATKOSD2.exe [2007-10-17 7737344][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregatwtusb]
atwtusb.exe beta [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCLMLServer]
C:Program FilesCyberLinkPower2GoCLMLSvc.exe [2008-07-18 104936][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMAgent]
C:Program FilesMail.RuAgentMAgent.exe [2010-03-11 8746680][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregP2Go_Menu]
C:Program FilesCyberLinkPower2GoMUITransferMUIStartMenu.exe [2008-06-13 210216][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRemoteControl]
C:Program FilesASUSTekASUSDVDPDVDServ.exe [2008-04-02 87336]C:UsersмвидеоAppDataRoamingMicrosoftWindowsStart MenuProgramsStartup
Punto Switcher.lnk — C:Program FilesYandexPunto Switcherpunto.exe
USBGuard.lnk — C:Program FilesUSBGuardUSBGuard.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848]
«{AEB6717E-7E19-11d0-97EE-00C04FD91972}»= [][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfPf]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfRd]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfSvc]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfUsbccidDriver]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«EnableUIADesktopToggle»=0[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDrives»=0
«NoDriveTypeAutoRun»=159[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«BindDirectlyToPropertySetStorage»=
«NoDrives»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
======File associations======
.js — edit — C:WindowsSystem32Notepad.exe %1
======List of files/folders created in the last 1 months======
2011-03-08 07:26:02
C:UsersмвидеоAppDataRoamingQwjwjm.exe
2011-03-03 20:36:43 —-D—- C:Program FilesЗоркий глаз
2011-02-28 16:27:51 —-A—- C:Windowssystem32shsvcs.dll
2011-02-26 18:09:41 —-D—- C:WindowsSQLTools9_KB970892_ENU
2011-02-26 18:06:35 —-D—- C:WindowsSQL9_KB970892_ENU
2011-02-26 18:04:39 —-D—- C:Windowssystem32WindowsPowerShell
2011-02-26 18:01:56 —-A—- C:Windowssystem32winrsmgr.dll
2011-02-26 18:01:34 —-A—- C:Windowssystem32wsmprovhost.exe
2011-02-26 18:01:33 —-A—- C:Windowssystem32winrshost.exe
2011-02-26 18:01:33 —-A—- C:Windowssystem32winrs.exe
2011-02-26 18:01:29 —-A—- C:Windowssystem32wsmplpxy.dll
2011-02-26 18:01:29 —-A—- C:Windowssystem32winrssrv.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32WsmRes.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wevtfwd.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecutil.exe
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecsvc.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecapi.dll
2011-02-26 18:01:22 —-A—- C:Windowssystem32pwrshplugin.dll
2011-02-26 18:01:08 —-A—- C:Windowssystem32winrm.vbs
2011-02-26 18:01:05 —-A—- C:Windowssystem32WsmAuto.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WsmWmiPl.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WSManMigrationPlugin.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WSManHTTPConfig.exe
2011-02-26 18:01:04 —-A—- C:Windowssystem32winrscmd.dll
2011-02-26 18:01:01 —-A—- C:Windowssystem32WsmSvc.dll
2011-02-12 15:20:05 —-A—- C:WindowsODBC.INI
2011-02-12 15:19:01 —-D—- C:Windowssystem32js
2011-02-12 15:19:01 —-D—- C:Windowssystem32images
2011-02-12 15:19:01 —-D—- C:Windowssystem32html
2011-02-12 15:19:01 —-D—- C:Windowssystem32css
2011-02-12 15:19:01 —-D—- C:Program FilesBusiness Objects
2011-02-12 15:11:34 —-D—- C:Program FilesMicrosoft SQL Server
2011-02-12 15:10:22 —-D—- C:Program FilesMicrosoft Device Emulator
2011-02-12 15:07:30 —-D—- C:Program FilesWindows Mobile 5.0 SDK R2
2011-02-12 15:06:02 —-D—- C:Program FilesMicrosoft Synchronization Services
2011-02-12 15:06:02 —-D—- C:Program FilesMicrosoft SQL Server Compact Edition
2011-02-12 14:52:05 —-D—- C:ProgramDataPreEmptive Solutions
2011-02-12 14:41:07 —-D—- C:Windowssymbols
2011-02-12 14:40:11 —-D—- C:Windowssystem321033
2011-02-12 14:36:34 —-D—- C:Program FilesMicrosoft SDKs
2011-02-12 14:36:34 —-D—- C:Program FilesHTML Help Workshop
2011-02-12 14:36:34 —-D—- C:Program FilesCommon FilesMerge Modules
2011-02-12 14:36:34 —-D—- C:Program FilesCE Remote Tools
2011-02-12 14:36:33 —-D—- C:Program FilesMicrosoft Visual Studio 9.0
2011-02-12 14:28:26 —-D—- C:Program FilesMicrosoft Web Designer Tools
2011-02-09 15:13:24 —-A—- C:Windowssystem32FntCache.dll
2011-02-09 15:13:24 —-A—- C:Windowssystem32d3d10warp.dll
2011-02-09 15:13:23 —-A—- C:Windowssystem32DWrite.dll
2011-02-09 15:13:21 —-A—- C:Windowssystem32MFH264Dec.dll
2011-02-09 15:13:21 —-A—- C:Windowssystem32d2d1.dll
2011-02-09 15:13:20 —-A—- C:Windowssystem32XpsRasterService.dll
2011-02-09 15:13:20 —-A—- C:Windowssystem32XpsGdiConverter.dll
2011-02-09 15:13:19 —-A—- C:Windowssystem32XpsPrint.dll
2011-02-09 15:13:18 —-A—- C:Windowssystem32xpsservices.dll
2011-02-09 15:13:18 —-A—- C:Windowssystem32MFHEAACdec.dll
2011-02-09 15:13:17 —-A—- C:Windowssystem32mfreadwrite.dll
2011-02-09 15:13:17 —-A—- C:Windowssystem32mfmp4src.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32OpcServices.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32dxgi.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32d3d10_1core.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32mf.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32d3d10_1.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32d3d10.dll
2011-02-09 15:13:13 —-A—- C:Windowssystem32printfilterpipelinesvc.exe
2011-02-09 15:13:12 —-A—- C:Windowssystem32shdocvw.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32mfplat.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32d3d10level9.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32d3d10core.dll
2011-02-09 15:13:11 —-A—- C:Windowssystem32stobject.dll
2011-02-09 15:13:10 —-A—- C:Windowssystem32mfps.dll
2011-02-09 15:13:10 —-A—- C:Windowssystem32cdd.dll
2011-02-09 15:13:09 —-A—- C:Windowssystem32printfilterpipelineprxy.dll
2011-02-09 15:12:30 —-A—- C:Windowssystem32ntkrnlpa.exe
2011-02-09 15:12:30 —-A—- C:Windowssystem32ntdll.dll
2011-02-09 15:12:28 —-A—- C:Windowssystem32ntoskrnl.exe
2011-02-09 15:12:07 —-A—- C:Windowssystem32mshtml.dll
2011-02-09 15:12:05 —-A—- C:Windowssystem32ieframe.dll
2011-02-09 15:12:03 —-A—- C:Windowssystem32urlmon.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32wininet.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32msfeeds.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32iertutil.dll
2011-02-09 15:12:01 —-A—- C:Windowssystem32mstime.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32occache.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32ieui.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32iepeers.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32iedkcs32.dll
2011-02-09 15:11:59 —-A—- C:Windowssystem32mshtmled.dll
2011-02-09 15:11:59 —-A—- C:Windowssystem32ieUnatt.exe
2011-02-09 15:11:59 —-A—- C:Windowssystem32iesysprep.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32msfeedssync.exe
2011-02-09 15:11:58 —-A—- C:Windowssystem32msfeedsbs.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32licmgr10.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32jsproxy.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32iesetup.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32iernonce.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32ie4uinit.exe
2011-02-09 15:11:53 —-A—- C:Windowssystem32shell32.dll
2011-02-09 15:11:49 —-A—- C:Windowssystem32shlwapi.dll
2011-02-09 15:11:46 —-A—- C:Windowssystem32atmfd.dll
2011-02-09 15:11:45 —-A—- C:Windowssystem32atmlib.dll======List of files/folders modified in the last 1 months======
2011-03-08 16:13:49 —-D—- C:Program Filestrend micro
2011-03-08 16:13:00 —-D—- C:Windowstemp
2011-03-08 15:47:07 —-D—- C:Program FilesDrWeb
2011-03-08 14:31:19 —-SHD—- C:System Volume Information
2011-03-08 09:44:58 —-D—- C:UsersмвидеоAppDataRoamingWTablet
2011-03-08 09:41:38 —-D—- C:UsersмвидеоAppDataRoamingBitTorrent
2011-03-08 09:32:06 —-D—- C:WindowsSystem32
2011-03-08 09:32:06 —-D—- C:Windowsinf
2011-03-08 09:32:06 —-A—- C:Windowssystem32PerfStringBackup.INI
2011-03-07 20:26:40 —-D—- C:UsersмвидеоAppDataRoamingAIMP
2011-03-07 17:24:20 —-D—- C:UsersмвидеоAppDataRoamingSkype
2011-03-07 16:05:44 —-D—- C:UsersмвидеоAppDataRoamingskypePM
2011-03-07 12:26:27 —-D—- C:Program FilesMozilla Firefox
2011-03-05 18:01:47 —-D—- C:Windowswinsxs
2011-03-05 15:38:03 —-SHD—- C:WindowsInstaller
2011-03-04 13:46:33 —-D—- C:WTablet
2011-03-03 20:36:43 —-RD—- C:Program Files
2011-03-03 09:54:55 —-D—- C:WindowsPrefetch
2011-03-01 12:55:31 —-A—- C:Windowssystem32acovcnt.exe
2011-02-27 10:38:22 —-D—- C:Windowsrescache
2011-02-27 10:37:36 —-D—- C:WindowsMicrosoft.NET
2011-02-26 18:11:59 —-RSD—- C:Windowsassembly
2011-02-26 18:10:23 —-D—- C:Windowsregistration
2011-02-26 18:09:41 —-D—- C:Windows
2011-02-26 18:04:48 —-D—- C:WindowsPolicyDefinitions
2011-02-26 18:04:39 —-D—- C:Windowssystem32ru-RU
2011-02-26 18:04:05 —-D—- C:Windowssystem32catroot2
2011-02-26 18:04:05 —-D—- C:Windowssystem32catroot
2011-02-25 14:30:32 —-D—- C:System32
2011-02-24 15:29:11 —-D—- C:UsersмвидеоAppDataRoaminggtk-2.0
2011-02-21 11:07:54 —-D—- C:Program FilesOpera
2011-02-19 18:47:09 —-D—- C:ProgramDataMicrosoft Help
2011-02-19 18:37:55 —-D—- C:Program FilesCommon Filesmicrosoft shared
2011-02-18 13:36:14 —-D—- C:UsersмвидеоAppDataRoamingIP-TV Player
2011-02-12 21:23:23 —-D—- C:Program FilesWindows Mail
2011-02-12 21:23:19 —-D—- C:Windowssystem32drivers
2011-02-12 21:23:19 —-D—- C:Program FilesInternet Explorer
2011-02-12 21:23:17 —-D—- C:Windowssystem32migration
2011-02-12 18:03:17 —-A—- C:Windowssystem32mrt.exe
2011-02-12 15:14:23 —-D—- C:Program FilesMicrosoft.NET
2011-02-12 15:10:04 —-RSD—- C:WindowsFonts
2011-02-12 15:01:07 —-SD—- C:UsersмвидеоAppDataRoamingMicrosoft
2011-02-12 15:01:07 —-SD—- C:ProgramDataMicrosoft
2011-02-12 14:52:05 —-D—- C:ProgramData
2011-02-12 14:42:35 —-D—- C:Program FilesMSBuild
2011-02-12 14:36:34 —-D—- C:Program FilesCommon Files======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASMMAP;ASMMAP; ??C:Program FilesATKGFNEXASMMAP.sys [2007-07-24 13880]
R2 ghaio;ghaio; ??C:Program FilesASUSNB ProbeSPMghaio.sys [2007-08-03 20936]
R2 rimmptsk;rimmptsk; C:Windowssystem32DRIVERSrimmptsk.sys [2008-02-15 46592]
R2 rimsptsk;rimsptsk; C:Windowssystem32DRIVERSrimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:Windowssystem32DRIVERSrixdptsk.sys [2007-07-30 38400]
R2 SPIDER;SpIDer Guard File System Monitor; ??C:PROGRA~1DrWebspider.sys [2011-02-10 316240]
R3 AgereSoftModem;Agere Systems Soft Modem; C:Windowssystem32DRIVERSAGRSM.sys [2007-08-23 1201312]
R3 athr;Atheros Extensible Wireless LAN device driver; C:Windowssystem32DRIVERSathr.sys [2008-04-27 909824]
R3 atikmdag;atikmdag; C:Windowssystem32DRIVERSatikmdag.sys [2008-07-11 3698176]
R3 CmBatt;Драйвер батареи с ACPI-управлением (Microsoft); C:Windowssystem32DRIVERSCmBatt.sys [2008-01-21 14208]
R3 FStarForce;FStarForce; C:Windowssystem32DRIVERSFStarForce.sys [2009-04-08 8704]
R3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:Windowssystem32driversRTKVHDA.sys [2008-06-17 2153688]
R3 kbfiltr;Keyboard Filter; C:Windowssystem32DRIVERSkbfiltr.sys [2008-06-03 15928]
R3 MODEMCSA;Устройство фильтрации потока Unimodem; C:Windowssystem32driversMODEMCSA.sys [2008-01-21 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:Windowssystem32DRIVERSATKACPI.sys [2006-12-14 7680]
R3 sdbus;sdbus; C:Windowssystem32DRIVERSsdbus.sys [2009-04-11 89088]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:Windowssystem32DRIVERSsnp2uvc.sys [2008-05-13 1772544]
R3 SynTP;Synaptics TouchPad Driver; C:Windowssystem32DRIVERSSynTP.sys [2007-12-06 196400]
R3 usbfilter;AMD USB Filter Driver; C:Windowssystem32DRIVERSusbfilter.sys [2008-03-19 22072]
R3 wacommousefilter;Wacom Mouse Filter Driver; C:Windowssystem32DRIVERSwacommousefilter.sys [2007-02-16 11312]
R3 wacomvhid;Wacom Virtual Hid Driver; C:Windowssystem32DRIVERSwacomvhid.sys [2007-02-16 12848]
S3 adptawe9;adptawe9; C:Windowssystem32driversadptawe9.sys []
S3 BthEnum;Драйвер блока запроса Bluetooth; C:Windowssystem32DRIVERSBthEnum.sys [2008-01-21 19456]
S3 BthPan;Устройства Bluetooth (личной сети); C:Windowssystem32DRIVERSbthpan.sys [2008-01-21 92160]
S3 BTHPORT;Драйвер порта Bluetooth; C:WindowsSystem32DriversBTHport.sys [2008-01-21 219648]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WindowsSystem32DriversBTHUSB.sys [2008-01-21 29184]
S3 catchme;catchme; ??C:Users467E~1AppDataLocalTempcatchme.sys []
S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:Windowssystem32DRIVERSrfcomm.sys [2008-01-21 49664]
S3 RTL8169;Realtek 8169 NT Driver; C:Windowssystem32DRIVERSRtlh86.sys [2008-05-02 122368]
S3 smserial;smserial; C:Windowssystem32DRIVERSsmserial.sys [2006-11-02 1010560]
S3 TPM;TPM; C:Windowssystem32driverstpm.sys [2008-01-21 45624]
S3 usbscan;Драйвер USB-сканера; C:Windowssystem32DRIVERSusbscan.sys [2008-01-21 35328]
S3 usbvideo;USB-видеоустройство (WDM); C:WindowsSystem32Driversusbvideo.sys [2008-01-21 134016]
S3 utblfilt;utblfilt; C:WindowsSystem32driversutblfilt.sys []
S3 WpdUsb;WpdUsb; C:Windowssystem32DRIVERSwpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32driverswmiacpi.sys [2008-01-21 11264]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ADSMService;ADSM Service; C:Program FilesASUSASUS Data Security ManagerADSMSrv.exe [2007-05-18 73728]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:Windowssystem32agrsmsvc.exe [2007-08-23 13312]
R2 ASLDRService;ASLDR Service; C:Program FilesATK HotkeyASLDRSrv.exe [2007-10-02 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:Windowssystem32Ati2evxx.exe [2008-07-11 692224]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:Program FilesATKGFNEXGFNEXSrv.exe [2007-08-07 94208]
R2 BthServ;@%SystemRoot%System32bthserv.dll,-101; C:Windowssystem32svchost.exe [2008-01-21 21504]
R2 DrWebEngine;Dr.Web Scanning Engine (DrWebEngine); C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe [2009-09-29 869688]
R2 FontCache;@%systemroot%system32FntCache.dll,-100; C:Windowssystem32svchost.exe [2008-01-21 21504]
R2 Guard.Mail.ru;Guard.Mail.ru; C:Program FilesMail.RuGuardGuardMailRu.exe [2010-12-28 1041088]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:Program FilesCommon FilesLightScribeLSSrvc.exe [2008-06-09 73728]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnsqlservr.exe [2009-05-27 29262680]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:Program FilesCyberLinkShared FilesRichVideo.exe [2007-05-14 272024]
R2 SafeRemove;AMD Safely Remove Disk Drive; C:Program FilesAMDSafely Remove DiskSafeRemoveService.exe [2008-07-07 147456]
R2 SPIDERNT;SpIDer Guard for Windows; C:PROGRA~1DrWebspidernt.exe [2011-02-10 231816]
R2 spmgr;spmgr; C:Program FilesASUSNB ProbeSPMspmgr.exe [2007-08-03 125496]
R2 SQLBrowser;SQL Server Browser; C:Program FilesMicrosoft SQL Server90Sharedsqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; C:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe [2008-11-24 87904]
R2 TabletService;TabletService; C:Windowssystem32Tablet.exe [2007-03-31 1189424]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Служба Google Update (gupdate); C:Program FilesGoogleUpdateGoogleUpdate.exe [2010-08-28 135664]
S3 2GISUpdateService;2GIS UpdateService; C:Program Files2gis3.02GISUpdateService.exe [2010-12-24 848216]
S3 Adobe LM Service;Adobe LM Service; C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe [2009-06-14 72704]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2010-08-28 182768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 SwitchBoard;SwitchBoard; C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe [2010-02-19 517096]
S3 WPFFontCache_v0400;@C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe,-100; C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe [2010-03-18 753504]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:Program FilesMicrosoft SQL Server90Sharedsqladhlp90.exe [2008-11-24 45408]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:Program FilesMicrosoft Visual Studio 9.0Common7IDERemote Debuggerx86msvsmon.exe [2007-11-07 3004416]
EOF
Почистила анти-автораном, но ярлыки остались. Хотя если прописать полный путь до папки, то папка есть.
Как избавиться, и удален ли вирус? Помогло ли?
Лог файлLogfile of random’s system information tool 1.06 (written by random/random)
Run by мвидео at 2011-03-08 18:20:31
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 41 GB (34%) free of 119 GB
Total RAM: 2814 MB (41% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:20:44, on 08.03.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19019)
Boot mode: NormalRunning processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskeng.exe
C:Windowssystem32taskeng.exe
C:Program FilesWindows DefenderMSASCui.exe
C:Program FilesDrWebspideragent.exe
C:Program FilesDrWebspiderml.exe
C:Program FilesDrWebspiderui.exe
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program FilesDrWebDrWeb32W.Exe
C:WindowsSYSTEM32WISPTIS.EXE
C:WindowsExplorer.exe
C:Program FilesWindows Media Playerwmpnscfg.exe
C:Windowssystem32wbemunsecapp.exe
C:Windowssystem32conime.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоAppDataLocalGoogleChromeApplicationchrome.exe
C:UsersмвидеоDesktopRSIT.exe
C:Program Filestrend microмвидео.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://mail.ru
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:UsersмвидеоAppDataRoamingMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O1 — Hosts: ::1 localhost
O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 — BHO: Groove GFS Browser Helper — {72853161-30C5-4D22-B7F9-0BBC1D38A37E} — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: IE 4.x-6.x BHO for Download Master — {9961627E-4059-41B4-8E0E-A7D6B3854ADF} — C:PROGRA~1DOWNLO~1dmiehlp.dll
O2 — BHO: AlterGeo Magic Scanner — {9BFBA68E-E21B-458E-AE12-FE85E903D2C1} — C:Program FilesAlterGeoAlterGeo Magic Scanner2.8.8.615AlterGeo.BrowserPlugin.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O2 — BHO: SkypeIEPluginBHO — {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.6.5805.1910swg.dll
O3 — Toolbar: DAEMON Tools Toolbar — {32099AAC-C132-4136-9E9A-4E364A424E17} — C:Program FilesDAEMON Tools ToolbarDTToolbar.dll
O3 — Toolbar: DM Bar — {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — C:Program FilesDownload Masterdmbar.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O4 — HKLM..Run: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
O4 — HKLM..Run: [StartCCC] «C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe» MSRun
O4 — HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 — HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 — HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMedia.exe
O4 — HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsAsScrProlog.exe
O4 — HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 — HKLM..Run: [SpIDerAgent] «C:Program FilesDrWebSpIDerAgent.exe»
O4 — HKLM..Run: [SpIDerMail] «C:Program FilesDrWebspiderml.exe»
O4 — HKLM..Run: [SpIDerNT] C:PROGRA~1DrWebspiderui.exe /agent
O4 — HKLM..Run: [GrooveMonitor] «C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe»
O4 — HKLM..Run: [Skytel] Skytel.exe
O4 — HKLM..Run: [LanguageShortcut] «C:Program FilesASUSTekASUSDVDLanguageLanguage.exe»
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [atwtusb] atwtusb.exe beta
O4 — HKLM..Run: [AdobeAAMUpdater-1.0] «C:Program FilesCommon FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe»
O4 — HKLM..Run: [SwitchBoard] C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe
O4 — HKLM..Run: [AdobeCS5ServiceManager] «C:Program FilesCommon FilesAdobeCS5ServiceManagerCS5ServiceManager.exe» -launchedbylogin
O4 — HKLM..Run: [Guard.Mail.ru.gui] «C:Program FilesMail.RuGuardGuardMailRu.exe» /gui
O4 — HKLM..Run: [2Gis Update Notifier] «C:Program Files2gis3.02GISTrayNotifier.exe» -delayed_start
O4 — HKCU..Run: [Google Update] «C:UsersмвидеоAppDataLocalGoogleUpdateGoogleUpdate.exe» /c
O4 — HKCU..Run: [MouseUtility] D:DistrMouse UtilitaMouseUtility.exe
O4 — HKCU..Run: [Skype] «C:Program FilesSkype\PhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [swg] «C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe»
O4 — HKCU..Run: [WMPNSCFG] C:Program FilesWindows Media PlayerWMPNSCFG.exe
O4 — HKCU..Run: [MAgent] C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe -CU
O4 — HKCU..Run: [Qwjwjm] C:UsersмвидеоAppDataRoamingQwjwjm.exe
O4 — HKCU..Run: [CTFMON.EXE] C:Windowssystem32ctfmon.exe
O4 — Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe
O4 — Startup: USBGuard.lnk = C:Program FilesUSBGuardUSBGuard.exe
O8 — Extra context menu item: Google ВикиКомментарии… — res://C:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
O8 — Extra context menu item: Закачать ВСЕ при помощи Download Master — C:Program FilesDownload Masterdmieall.htm
O8 — Extra context menu item: Закачать при помощи Download Master — C:Program FilesDownload Masterdmie.htm
O8 — Extra context menu item: Передать на удаленную закачку DM — C:Program FilesDownload Masterremdown.htm
O9 — Extra button: Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra ‘Tools’ menuitem: &Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra button: Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra ‘Tools’ menuitem: &Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe (HKCU)
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe (HKCU)
O16 — DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} — http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 — HKLMSystemCCSServicesTcpip..{213FF536-9BB5-49C1-B7E6-880C0A4FD15E}: NameServer = 213.234.192.7 85.21.192.5
O17 — HKLMSystemCS1ServicesTcpip..{213FF536-9BB5-49C1-B7E6-880C0A4FD15E}: NameServer = 213.234.192.7 85.21.192.5
O17 — HKLMSystemCS2ServicesTcpip..{213FF536-9BB5-49C1-B7E6-880C0A4FD15E}: NameServer = 213.234.192.7 85.21.192.5
O18 — Protocol: grooveLocalGWS — {88FED34C-F0CA-4636-A375-3CB6248B04CD} — C:Program FilesMicrosoft OfficeOffice12GrooveSystemServices.dll
O18 — Protocol: skype-ie-addon-data — {91774881-D725-4E58-B298-07617B9B86A8} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: 2GIS UpdateService (2GISUpdateService) — ООО ДубльГИС — C:Program Files2gis3.02GISUpdateService.exe
O23 — Service: Adobe LM Service — Adobe Systems — C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe
O23 — Service: ADSM Service (ADSMService) — Unknown owner — C:Program FilesASUSASUS Data Security ManagerADSMSrv.exe
O23 — Service: Agere Modem Call Progress Audio (AgereModemAudio) — Agere Systems — C:Windowssystem32agrsmsvc.exe
O23 — Service: ASLDR Service (ASLDRService) — Unknown owner — C:Program FilesATK HotkeyASLDRSrv.exe
O23 — Service: Ati External Event Utility — ATI Technologies Inc. — C:Windowssystem32Ati2evxx.exe
O23 — Service: ATKGFNEX Service (ATKGFNEXSrv) — Unknown owner — C:Program FilesATKGFNEXGFNEXSrv.exe
O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
O23 — Service: Dr.Web Scanning Engine (DrWebEngine) (DrWebEngine) — Doctor Web, Ltd. — C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe
O23 — Service: Guard.Mail.ru — Unknown owner — C:Program FilesMail.RuGuardGuardMailRu.exe
O23 — Service: Служба Google Update (gupdate) (gupdate) — Google Inc. — C:Program FilesGoogleUpdateGoogleUpdate.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: LightScribeService Direct Disc Labeling Service (LightScribeService) — Hewlett-Packard Company — C:Program FilesCommon FilesLightScribeLSSrvc.exe
O23 — Service: Cyberlink RichVideo Service(CRVS) (RichVideo) — Unknown owner — C:Program FilesCyberLinkShared FilesRichVideo.exe
O23 — Service: AMD Safely Remove Disk Drive (SafeRemove) — AMD — C:Program FilesAMDSafely Remove DiskSafeRemoveService.exe
O23 — Service: SpIDer Guard for Windows (SPIDERNT) — Doctor Web, Ltd. — C:PROGRA~1DrWebspidernt.exe
O23 — Service: spmgr — Unknown owner — C:Program FilesASUSNB ProbeSPMspmgr.exe
O23 — Service: SwitchBoard — Adobe Systems Incorporated — C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe
O23 — Service: TabletService — Wacom Technology, Corp. — C:Windowssystem32Tablet.exe
O23 — Service: @C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) — Корпорация Майкрософт — C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe—
End of file — 13003 bytes======Scheduled tasks folder======
C:WindowstasksDr.Web Daily scan.job
C:WindowstasksDr.Web Update.job
C:WindowstasksGoogleUpdateTaskMachineCore.job
C:WindowstasksGoogleUpdateTaskMachineUA.job
C:WindowstasksGoogleUpdateTaskUserS-1-5-21-2749546941-1591866588-2318720215-1000Core.job
C:WindowstasksGoogleUpdateTaskUserS-1-5-21-2749546941-1591866588-2318720215-1000UA.job
C:WindowstasksUser_Feed_Synchronization-{7001626F-C3AC-4112-900D-5A67CBC5303F}.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2006-10-22 62080][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2010-11-22 1243320][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
IE 4.x-6.x BHO for Download Master — C:PROGRA~1DOWNLO~1dmiehlp.dll [2010-12-02 162928][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9BFBA68E-E21B-458E-AE12-FE85E903D2C1}]
AlterGeoBHO Class — C:Program FilesAlterGeoAlterGeo Magic Scanner2.8.8.615AlterGeo.BrowserPlugin.dll [2010-08-31 257384][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2011-02-02 297648][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll [2010-02-08 804136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.6.5805.1910swg.dll [2010-10-23 843832][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} — DAEMON Tools Toolbar — C:Program FilesDAEMON Tools ToolbarDTToolbar.dll [2008-12-10 929224]
{0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — DM Bar — C:Program FilesDownload Masterdmbar.dll [2007-11-26 180224]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2010-11-22 1243320]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2011-02-02 297648][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«Windows Defender»=C:Program FilesWindows DefenderMSASCui.exe [2008-01-21 1008184]
«StartCCC»=C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe [2008-01-21 61440]
«RtHDVCpl»=C:WindowsRtHDVCpl.exe [2008-06-13 6183456]
«SynTPEnh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2007-12-06 1029416]
«ATKMEDIA»=C:Program FilesASUSATK MediaDMedia.exe [2008-06-24 159744]
«ASUS Camera ScreenSaver»=C:WindowsAsScrProlog.exe [2008-09-15 47672]
«ASUS Screen Saver Protector»=C:WindowsASScrPro.exe [2008-09-15 33136]
«SpIDerAgent»=C:Program FilesDrWebSpIDerAgent.exe [2010-02-15 447728]
«SpIDerMail»=C:Program FilesDrWebspiderml.exe [2009-07-02 644336]
«SpIDerNT»=C:PROGRA~1DrWebspiderui.exe [2011-02-10 232352]
«GrooveMonitor»=C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2008-10-25 31072]
«Skytel»=C:WindowsSkytel.exe [2007-11-20 1826816]
«LanguageShortcut»=C:Program FilesASUSTekASUSDVDLanguageLanguage.exe [2008-02-22 62760]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2010-03-11 8746680]
«atwtusb»=atwtusb.exe beta []
«AdobeAAMUpdater-1.0″=C:Program FilesCommon FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [2010-06-27 500208]
«SwitchBoard»=C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe [2010-02-19 517096]
«AdobeCS5ServiceManager»=C:Program FilesCommon FilesAdobeCS5ServiceManagerCS5ServiceManager.exe [2010-02-22 406992]
«Guard.Mail.ru.gui»=C:Program FilesMail.RuGuardGuardMailRu.exe [2010-12-28 1041088]
«2Gis Update Notifier»=C:Program Files2gis3.02GISTrayNotifier.exe [2010-12-24 4579672][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Google Update»=C:UsersмвидеоAppDataLocalGoogleUpdateGoogleUpdate.exe [2010-03-28 136176]
«MouseUtility»=D:DistrMouse UtilitaMouseUtility.exe [2010-01-03 351232]
«Skype»=C:Program FilesSkype\PhoneSkype.exe [2010-09-02 13351304]
«swg»=C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2010-08-28 39408]
«AdobeBridge»= []
«WMPNSCFG»=C:Program FilesWindows Media PlayerWMPNSCFG.exe [2008-01-21 202240]
«MAgent»=C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe [2010-12-10 12319424]
«Qwjwjm»=C:UsersмвидеоAppDataRoamingQwjwjm.exe [2011-03-08 103424]
«CTFMON.EXE»=C:Windowssystem32ctfmon.exe [2006-11-02 8704][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [2008-01-11 39792][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregATKOSD2]
C:Program FilesATKOSD2ATKOSD2.exe [2007-10-17 7737344][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregatwtusb]
atwtusb.exe beta [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCLMLServer]
C:Program FilesCyberLinkPower2GoCLMLSvc.exe [2008-07-18 104936][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMAgent]
C:Program FilesMail.RuAgentMAgent.exe [2010-03-11 8746680][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregP2Go_Menu]
C:Program FilesCyberLinkPower2GoMUITransferMUIStartMenu.exe [2008-06-13 210216][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRemoteControl]
C:Program FilesASUSTekASUSDVDPDVDServ.exe [2008-04-02 87336]C:UsersмвидеоAppDataRoamingMicrosoftWindowsStart MenuProgramsStartup
Punto Switcher.lnk — C:Program FilesYandexPunto Switcherpunto.exe
USBGuard.lnk — C:Program FilesUSBGuardUSBGuard.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848]
«{AEB6717E-7E19-11d0-97EE-00C04FD91972}»= [][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfPf]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfRd]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfSvc]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfUsbccidDriver]
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«DisableRegedit»=0
«DisableTaskMgr»=0
«NoDispScrSavPage»=0[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«EnableUIADesktopToggle»=0
«DisableRegedit»=0
«DisableTaskMgr»=0[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDrives»=0
«NoDriveTypeAutoRun»=159
«NoFolderOptions»=0[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«BindDirectlyToPropertySetStorage»=
«NoDrives»=
«NoFolderOptions»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
======File associations======
.js — edit — C:WindowsSystem32Notepad.exe %1
======List of files/folders created in the last 1 months======
2011-03-08 07:26:02
C:UsersмвидеоAppDataRoamingQwjwjm.exe
2011-03-03 20:36:43 —-D—- C:Program FilesЗоркий глаз
2011-02-28 16:27:51 —-A—- C:Windowssystem32shsvcs.dll
2011-02-26 18:09:41 —-D—- C:WindowsSQLTools9_KB970892_ENU
2011-02-26 18:06:35 —-D—- C:WindowsSQL9_KB970892_ENU
2011-02-26 18:04:39 —-D—- C:Windowssystem32WindowsPowerShell
2011-02-26 18:01:56 —-A—- C:Windowssystem32winrsmgr.dll
2011-02-26 18:01:34 —-A—- C:Windowssystem32wsmprovhost.exe
2011-02-26 18:01:33 —-A—- C:Windowssystem32winrshost.exe
2011-02-26 18:01:33 —-A—- C:Windowssystem32winrs.exe
2011-02-26 18:01:29 —-A—- C:Windowssystem32wsmplpxy.dll
2011-02-26 18:01:29 —-A—- C:Windowssystem32winrssrv.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32WsmRes.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wevtfwd.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecutil.exe
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecsvc.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecapi.dll
2011-02-26 18:01:22 —-A—- C:Windowssystem32pwrshplugin.dll
2011-02-26 18:01:08 —-A—- C:Windowssystem32winrm.vbs
2011-02-26 18:01:05 —-A—- C:Windowssystem32WsmAuto.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WsmWmiPl.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WSManMigrationPlugin.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WSManHTTPConfig.exe
2011-02-26 18:01:04 —-A—- C:Windowssystem32winrscmd.dll
2011-02-26 18:01:01 —-A—- C:Windowssystem32WsmSvc.dll
2011-02-12 15:20:05 —-A—- C:WindowsODBC.INI
2011-02-12 15:19:01 —-D—- C:Windowssystem32js
2011-02-12 15:19:01 —-D—- C:Windowssystem32images
2011-02-12 15:19:01 —-D—- C:Windowssystem32html
2011-02-12 15:19:01 —-D—- C:Windowssystem32css
2011-02-12 15:19:01 —-D—- C:Program FilesBusiness Objects
2011-02-12 15:11:34 —-D—- C:Program FilesMicrosoft SQL Server
2011-02-12 15:10:22 —-D—- C:Program FilesMicrosoft Device Emulator
2011-02-12 15:07:30 —-D—- C:Program FilesWindows Mobile 5.0 SDK R2
2011-02-12 15:06:02 —-D—- C:Program FilesMicrosoft Synchronization Services
2011-02-12 15:06:02 —-D—- C:Program FilesMicrosoft SQL Server Compact Edition
2011-02-12 14:52:05 —-D—- C:ProgramDataPreEmptive Solutions
2011-02-12 14:41:07 —-D—- C:Windowssymbols
2011-02-12 14:40:11 —-D—- C:Windowssystem321033
2011-02-12 14:36:34 —-D—- C:Program FilesMicrosoft SDKs
2011-02-12 14:36:34 —-D—- C:Program FilesHTML Help Workshop
2011-02-12 14:36:34 —-D—- C:Program FilesCommon FilesMerge Modules
2011-02-12 14:36:34 —-D—- C:Program FilesCE Remote Tools
2011-02-12 14:36:33 —-D—- C:Program FilesMicrosoft Visual Studio 9.0
2011-02-12 14:28:26 —-D—- C:Program FilesMicrosoft Web Designer Tools
2011-02-09 15:13:24 —-A—- C:Windowssystem32FntCache.dll
2011-02-09 15:13:24 —-A—- C:Windowssystem32d3d10warp.dll
2011-02-09 15:13:23 —-A—- C:Windowssystem32DWrite.dll
2011-02-09 15:13:21 —-A—- C:Windowssystem32MFH264Dec.dll
2011-02-09 15:13:21 —-A—- C:Windowssystem32d2d1.dll
2011-02-09 15:13:20 —-A—- C:Windowssystem32XpsRasterService.dll
2011-02-09 15:13:20 —-A—- C:Windowssystem32XpsGdiConverter.dll
2011-02-09 15:13:19 —-A—- C:Windowssystem32XpsPrint.dll
2011-02-09 15:13:18 —-A—- C:Windowssystem32xpsservices.dll
2011-02-09 15:13:18 —-A—- C:Windowssystem32MFHEAACdec.dll
2011-02-09 15:13:17 —-A—- C:Windowssystem32mfreadwrite.dll
2011-02-09 15:13:17 —-A—- C:Windowssystem32mfmp4src.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32OpcServices.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32dxgi.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32d3d10_1core.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32mf.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32d3d10_1.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32d3d10.dll
2011-02-09 15:13:13 —-A—- C:Windowssystem32printfilterpipelinesvc.exe
2011-02-09 15:13:12 —-A—- C:Windowssystem32shdocvw.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32mfplat.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32d3d10level9.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32d3d10core.dll
2011-02-09 15:13:11 —-A—- C:Windowssystem32stobject.dll
2011-02-09 15:13:10 —-A—- C:Windowssystem32mfps.dll
2011-02-09 15:13:10 —-A—- C:Windowssystem32cdd.dll
2011-02-09 15:13:09 —-A—- C:Windowssystem32printfilterpipelineprxy.dll
2011-02-09 15:12:30 —-A—- C:Windowssystem32ntkrnlpa.exe
2011-02-09 15:12:30 —-A—- C:Windowssystem32ntdll.dll
2011-02-09 15:12:28 —-A—- C:Windowssystem32ntoskrnl.exe
2011-02-09 15:12:07 —-A—- C:Windowssystem32mshtml.dll
2011-02-09 15:12:05 —-A—- C:Windowssystem32ieframe.dll
2011-02-09 15:12:03 —-A—- C:Windowssystem32urlmon.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32wininet.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32msfeeds.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32iertutil.dll
2011-02-09 15:12:01 —-A—- C:Windowssystem32mstime.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32occache.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32ieui.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32iepeers.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32iedkcs32.dll
2011-02-09 15:11:59 —-A—- C:Windowssystem32mshtmled.dll
2011-02-09 15:11:59 —-A—- C:Windowssystem32ieUnatt.exe
2011-02-09 15:11:59 —-A—- C:Windowssystem32iesysprep.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32msfeedssync.exe
2011-02-09 15:11:58 —-A—- C:Windowssystem32msfeedsbs.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32licmgr10.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32jsproxy.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32iesetup.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32iernonce.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32ie4uinit.exe
2011-02-09 15:11:53 —-A—- C:Windowssystem32shell32.dll
2011-02-09 15:11:49 —-A—- C:Windowssystem32shlwapi.dll
2011-02-09 15:11:46 —-A—- C:Windowssystem32atmfd.dll
2011-02-09 15:11:45 —-A—- C:Windowssystem32atmlib.dll======List of files/folders modified in the last 1 months======
2011-03-08 18:20:33 —-D—- C:Windowstemp
2011-03-08 18:20:32 —-D—- C:Program Filestrend micro
2011-03-08 18:17:34 —-D—- C:Program FilesDrWeb
2011-03-08 17:42:41 —-D—- C:Windows
2011-03-08 14:31:19 —-SHD—- C:System Volume Information
2011-03-08 09:44:58 —-D—- C:UsersмвидеоAppDataRoamingWTablet
2011-03-08 09:41:38 —-D—- C:UsersмвидеоAppDataRoamingBitTorrent
2011-03-08 09:32:06 —-D—- C:WindowsSystem32
2011-03-08 09:32:06 —-D—- C:Windowsinf
2011-03-08 09:32:06 —-A—- C:Windowssystem32PerfStringBackup.INI
2011-03-07 20:26:40 —-D—- C:UsersмвидеоAppDataRoamingAIMP
2011-03-07 17:24:20 —-D—- C:UsersмвидеоAppDataRoamingSkype
2011-03-07 16:05:44 —-D—- C:UsersмвидеоAppDataRoamingskypePM
2011-03-07 12:26:27 —-D—- C:Program FilesMozilla Firefox
2011-03-05 18:01:47 —-D—- C:Windowswinsxs
2011-03-05 15:38:03 —-SHD—- C:WindowsInstaller
2011-03-04 13:46:33 —-D—- C:WTablet
2011-03-03 20:36:43 —-RD—- C:Program Files
2011-03-03 09:54:55 —-D—- C:WindowsPrefetch
2011-03-01 12:55:31 —-A—- C:Windowssystem32acovcnt.exe
2011-02-27 10:38:22 —-D—- C:Windowsrescache
2011-02-27 10:37:36 —-D—- C:WindowsMicrosoft.NET
2011-02-26 18:11:59 —-RSD—- C:Windowsassembly
2011-02-26 18:10:23 —-D—- C:Windowsregistration
2011-02-26 18:04:48 —-D—- C:WindowsPolicyDefinitions
2011-02-26 18:04:39 —-D—- C:Windowssystem32ru-RU
2011-02-26 18:04:05 —-D—- C:Windowssystem32catroot2
2011-02-26 18:04:05 —-D—- C:Windowssystem32catroot
2011-02-25 14:30:32 —-D—- C:System32
2011-02-24 15:29:11 —-D—- C:UsersмвидеоAppDataRoaminggtk-2.0
2011-02-21 11:07:54 —-D—- C:Program FilesOpera
2011-02-19 18:47:09 —-D—- C:ProgramDataMicrosoft Help
2011-02-19 18:37:55 —-D—- C:Program FilesCommon Filesmicrosoft shared
2011-02-18 13:36:14 —-D—- C:UsersмвидеоAppDataRoamingIP-TV Player
2011-02-12 21:23:23 —-D—- C:Program FilesWindows Mail
2011-02-12 21:23:19 —-D—- C:Windowssystem32drivers
2011-02-12 21:23:19 —-D—- C:Program FilesInternet Explorer
2011-02-12 21:23:17 —-D—- C:Windowssystem32migration
2011-02-12 18:03:17 —-A—- C:Windowssystem32mrt.exe
2011-02-12 15:14:23 —-D—- C:Program FilesMicrosoft.NET
2011-02-12 15:10:04 —-RSD—- C:WindowsFonts
2011-02-12 15:01:07 —-SD—- C:UsersмвидеоAppDataRoamingMicrosoft
2011-02-12 15:01:07 —-SD—- C:ProgramDataMicrosoft
2011-02-12 14:52:05 —-D—- C:ProgramData
2011-02-12 14:42:35 —-D—- C:Program FilesMSBuild
2011-02-12 14:36:34 —-D—- C:Program FilesCommon Files======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASMMAP;ASMMAP; ??C:Program FilesATKGFNEXASMMAP.sys [2007-07-24 13880]
R2 ghaio;ghaio; ??C:Program FilesASUSNB ProbeSPMghaio.sys [2007-08-03 20936]
R2 rimmptsk;rimmptsk; C:Windowssystem32DRIVERSrimmptsk.sys [2008-02-15 46592]
R2 rimsptsk;rimsptsk; C:Windowssystem32DRIVERSrimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:Windowssystem32DRIVERSrixdptsk.sys [2007-07-30 38400]
R2 SPIDER;SpIDer Guard File System Monitor; ??C:PROGRA~1DrWebspider.sys [2011-02-10 316240]
R3 AgereSoftModem;Agere Systems Soft Modem; C:Windowssystem32DRIVERSAGRSM.sys [2007-08-23 1201312]
R3 athr;Atheros Extensible Wireless LAN device driver; C:Windowssystem32DRIVERSathr.sys [2008-04-27 909824]
R3 atikmdag;atikmdag; C:Windowssystem32DRIVERSatikmdag.sys [2008-07-11 3698176]
R3 CmBatt;Драйвер батареи с ACPI-управлением (Microsoft); C:Windowssystem32DRIVERSCmBatt.sys [2008-01-21 14208]
R3 FStarForce;FStarForce; C:Windowssystem32DRIVERSFStarForce.sys [2009-04-08 8704]
R3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:Windowssystem32driversRTKVHDA.sys [2008-06-17 2153688]
R3 kbfiltr;Keyboard Filter; C:Windowssystem32DRIVERSkbfiltr.sys [2008-06-03 15928]
R3 MODEMCSA;Устройство фильтрации потока Unimodem; C:Windowssystem32driversMODEMCSA.sys [2008-01-21 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:Windowssystem32DRIVERSATKACPI.sys [2006-12-14 7680]
R3 sdbus;sdbus; C:Windowssystem32DRIVERSsdbus.sys [2009-04-11 89088]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:Windowssystem32DRIVERSsnp2uvc.sys [2008-05-13 1772544]
R3 SynTP;Synaptics TouchPad Driver; C:Windowssystem32DRIVERSSynTP.sys [2007-12-06 196400]
R3 usbfilter;AMD USB Filter Driver; C:Windowssystem32DRIVERSusbfilter.sys [2008-03-19 22072]
R3 wacommousefilter;Wacom Mouse Filter Driver; C:Windowssystem32DRIVERSwacommousefilter.sys [2007-02-16 11312]
R3 wacomvhid;Wacom Virtual Hid Driver; C:Windowssystem32DRIVERSwacomvhid.sys [2007-02-16 12848]
S3 adptawe9;adptawe9; C:Windowssystem32driversadptawe9.sys []
S3 BthEnum;Драйвер блока запроса Bluetooth; C:Windowssystem32DRIVERSBthEnum.sys [2008-01-21 19456]
S3 BthPan;Устройства Bluetooth (личной сети); C:Windowssystem32DRIVERSbthpan.sys [2008-01-21 92160]
S3 BTHPORT;Драйвер порта Bluetooth; C:WindowsSystem32DriversBTHport.sys [2008-01-21 219648]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WindowsSystem32DriversBTHUSB.sys [2008-01-21 29184]
S3 catchme;catchme; ??C:Users467E~1AppDataLocalTempcatchme.sys []
S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:Windowssystem32DRIVERSrfcomm.sys [2008-01-21 49664]
S3 RTL8169;Realtek 8169 NT Driver; C:Windowssystem32DRIVERSRtlh86.sys [2008-05-02 122368]
S3 smserial;smserial; C:Windowssystem32DRIVERSsmserial.sys [2006-11-02 1010560]
S3 TPM;TPM; C:Windowssystem32driverstpm.sys [2008-01-21 45624]
S3 usbscan;Драйвер USB-сканера; C:Windowssystem32DRIVERSusbscan.sys [2008-01-21 35328]
S3 usbvideo;USB-видеоустройство (WDM); C:WindowsSystem32Driversusbvideo.sys [2008-01-21 134016]
S3 utblfilt;utblfilt; C:WindowsSystem32driversutblfilt.sys []
S3 WpdUsb;WpdUsb; C:Windowssystem32DRIVERSwpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32driverswmiacpi.sys [2008-01-21 11264]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ADSMService;ADSM Service; C:Program FilesASUSASUS Data Security ManagerADSMSrv.exe [2007-05-18 73728]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:Windowssystem32agrsmsvc.exe [2007-08-23 13312]
R2 ASLDRService;ASLDR Service; C:Program FilesATK HotkeyASLDRSrv.exe [2007-10-02 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:Windowssystem32Ati2evxx.exe [2008-07-11 692224]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:Program FilesATKGFNEXGFNEXSrv.exe [2007-08-07 94208]
R2 BthServ;@%SystemRoot%System32bthserv.dll,-101; C:Windowssystem32svchost.exe [2008-01-21 21504]
R2 DrWebEngine;Dr.Web Scanning Engine (DrWebEngine); C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe [2009-09-29 869688]
R2 FontCache;@%systemroot%system32FntCache.dll,-100; C:Windowssystem32svchost.exe [2008-01-21 21504]
R2 Guard.Mail.ru;Guard.Mail.ru; C:Program FilesMail.RuGuardGuardMailRu.exe [2010-12-28 1041088]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:Program FilesCommon FilesLightScribeLSSrvc.exe [2008-06-09 73728]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnsqlservr.exe [2009-05-27 29262680]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:Program FilesCyberLinkShared FilesRichVideo.exe [2007-05-14 272024]
R2 SafeRemove;AMD Safely Remove Disk Drive; C:Program FilesAMDSafely Remove DiskSafeRemoveService.exe [2008-07-07 147456]
R2 SPIDERNT;SpIDer Guard for Windows; C:PROGRA~1DrWebspidernt.exe [2011-02-10 231816]
R2 spmgr;spmgr; C:Program FilesASUSNB ProbeSPMspmgr.exe [2007-08-03 125496]
R2 SQLBrowser;SQL Server Browser; C:Program FilesMicrosoft SQL Server90Sharedsqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; C:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe [2008-11-24 87904]
R2 TabletService;TabletService; C:Windowssystem32Tablet.exe [2007-03-31 1189424]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Служба Google Update (gupdate); C:Program FilesGoogleUpdateGoogleUpdate.exe [2010-08-28 135664]
S3 2GISUpdateService;2GIS UpdateService; C:Program Files2gis3.02GISUpdateService.exe [2010-12-24 848216]
S3 Adobe LM Service;Adobe LM Service; C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe [2009-06-14 72704]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2010-08-28 182768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 SwitchBoard;SwitchBoard; C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe [2010-02-19 517096]
S3 WPFFontCache_v0400;@C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe,-100; C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe [2010-03-18 753504]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:Program FilesMicrosoft SQL Server90Sharedsqladhlp90.exe [2008-11-24 45408]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:Program FilesMicrosoft Visual Studio 9.0Common7IDERemote Debuggerx86msvsmon.exe [2007-11-07 3004416]
EOF
Покопалась.
Но у меня все флешки даже после форматирования заражены —>>заражен ноут.
Пользовалась антиавтораном, зорким глазом, комбофиксом
логLogfile of random’s system information tool 1.06 (written by random/random)
Run by мвидео at 2011-03-09 19:38:05
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 49 GB (41%) free of 119 GB
Total RAM: 2814 MB (61% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:38:08, on 09.03.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19019)
Boot mode: NormalRunning processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskeng.exe
C:Windowssystem32taskeng.exe
C:Program FilesDrWebspideragent.exe
C:Program FilesDrWebspiderml.exe
C:Program FilesDrWebspiderui.exe
C:WindowsExplorer.exe
C:WindowsSYSTEM32WISPTIS.EXE
C:Program FilesWindows Media Playerwmpnscfg.exe
C:Windowssystem32wbemunsecapp.exe
C:Windowssystem32wuauclt.exe
C:Program FilesЗоркий глазANTIVIRЬ.exe
C:Windowssystem32conime.exe
C:UsersмвидеоDesktopRSIT.exe
C:Program Filestrend microмвидео.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://mail.ru
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 — BHO: Groove GFS Browser Helper — {72853161-30C5-4D22-B7F9-0BBC1D38A37E} — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: IE 4.x-6.x BHO for Download Master — {9961627E-4059-41B4-8E0E-A7D6B3854ADF} — C:PROGRA~1DOWNLO~1dmiehlp.dll
O2 — BHO: AlterGeo Magic Scanner — {9BFBA68E-E21B-458E-AE12-FE85E903D2C1} — C:Program FilesAlterGeoAlterGeo Magic Scanner2.8.8.615AlterGeo.BrowserPlugin.dll
O2 — BHO: SkypeIEPluginBHO — {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O3 — Toolbar: DAEMON Tools Toolbar — {32099AAC-C132-4136-9E9A-4E364A424E17} — C:Program FilesDAEMON Tools ToolbarDTToolbar.dll
O3 — Toolbar: DM Bar — {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — C:Program FilesDownload Masterdmbar.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O4 — HKLM..Run: [StartCCC] «C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe» MSRun
O4 — HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 — HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 — HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMedia.exe
O4 — HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsAsScrProlog.exe
O4 — HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 — HKLM..Run: [SpIDerAgent] «C:Program FilesDrWebSpIDerAgent.exe»
O4 — HKLM..Run: [SpIDerMail] «C:Program FilesDrWebspiderml.exe»
O4 — HKLM..Run: [SpIDerNT] C:PROGRA~1DrWebspiderui.exe /agent
O4 — HKLM..Run: [GrooveMonitor] «C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe»
O4 — HKLM..Run: [Skytel] Skytel.exe
O4 — HKLM..Run: [LanguageShortcut] «C:Program FilesASUSTekASUSDVDLanguageLanguage.exe»
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [atwtusb] atwtusb.exe beta
O4 — HKLM..Run: [AdobeAAMUpdater-1.0] «C:Program FilesCommon FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe»
O4 — HKLM..Run: [SwitchBoard] C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe
O4 — HKLM..Run: [AdobeCS5ServiceManager] «C:Program FilesCommon FilesAdobeCS5ServiceManagerCS5ServiceManager.exe» -launchedbylogin
O4 — HKLM..Run: [Guard.Mail.ru.gui] «C:Program FilesMail.RuGuardGuardMailRu.exe» /gui
O4 — HKLM..Run: [2Gis Update Notifier] «C:Program Files2gis3.02GISTrayNotifier.exe» -delayed_start
O4 — HKCU..Run: [Google Update] «C:UsersмвидеоAppDataLocalGoogleUpdateGoogleUpdate.exe» /c
O4 — HKCU..Run: [MouseUtility] D:DistrMouse UtilitaMouseUtility.exe
O4 — HKCU..Run: [Skype] «C:Program FilesSkype\PhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [WMPNSCFG] C:Program FilesWindows Media PlayerWMPNSCFG.exe
O4 — HKCU..Run: [Qwjwjm] C:UsersмвидеоAppDataRoamingQwjwjm.exe
O4 — HKCU..Run: [CTFMON.EXE] C:Windowssystem32ctfmon.exe
O4 — Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe
O4 — Startup: USBGuard.lnk = C:Program FilesUSBGuardUSBGuard.exe
O8 — Extra context menu item: Google ВикиКомментарии… — res://C:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
O8 — Extra context menu item: Закачать ВСЕ при помощи Download Master — C:Program FilesDownload Masterdmieall.htm
O8 — Extra context menu item: Закачать при помощи Download Master — C:Program FilesDownload Masterdmie.htm
O8 — Extra context menu item: Передать на удаленную закачку DM — C:Program FilesDownload Masterremdown.htm
O9 — Extra button: Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra ‘Tools’ menuitem: &Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra button: Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra ‘Tools’ menuitem: &Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe (HKCU)
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:UsersмвидеоAppDataRoamingMail.RuAgentmagent.exe (HKCU)
O16 — DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} — http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 — HKLMSystemCCSServicesTcpip..{213FF536-9BB5-49C1-B7E6-880C0A4FD15E}: NameServer = 213.234.192.7 85.21.192.5
O17 — HKLMSystemCS1ServicesTcpip..{213FF536-9BB5-49C1-B7E6-880C0A4FD15E}: NameServer = 213.234.192.7 85.21.192.5
O18 — Protocol: grooveLocalGWS — {88FED34C-F0CA-4636-A375-3CB6248B04CD} — C:Program FilesMicrosoft OfficeOffice12GrooveSystemServices.dll
O18 — Protocol: skype-ie-addon-data — {91774881-D725-4E58-B298-07617B9B86A8} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: 2GIS UpdateService (2GISUpdateService) — ООО ДубльГИС — C:Program Files2gis3.02GISUpdateService.exe
O23 — Service: Adobe LM Service — Adobe Systems — C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe
O23 — Service: ADSM Service (ADSMService) — Unknown owner — C:Program FilesASUSASUS Data Security ManagerADSMSrv.exe
O23 — Service: Agere Modem Call Progress Audio (AgereModemAudio) — Agere Systems — C:Windowssystem32agrsmsvc.exe
O23 — Service: ASLDR Service (ASLDRService) — Unknown owner — C:Program FilesATK HotkeyASLDRSrv.exe
O23 — Service: Ati External Event Utility — ATI Technologies Inc. — C:Windowssystem32Ati2evxx.exe
O23 — Service: ATKGFNEX Service (ATKGFNEXSrv) — Unknown owner — C:Program FilesATKGFNEXGFNEXSrv.exe
O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
O23 — Service: Dr.Web Scanning Engine (DrWebEngine) (DrWebEngine) — Doctor Web, Ltd. — C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe
O23 — Service: Guard.Mail.ru — Unknown owner — C:Program FilesMail.RuGuardGuardMailRu.exe
O23 — Service: Служба Google Update (gupdate) (gupdate) — Google Inc. — C:Program FilesGoogleUpdateGoogleUpdate.exe
O23 — Service: LightScribeService Direct Disc Labeling Service (LightScribeService) — Hewlett-Packard Company — C:Program FilesCommon FilesLightScribeLSSrvc.exe
O23 — Service: Cyberlink RichVideo Service(CRVS) (RichVideo) — Unknown owner — C:Program FilesCyberLinkShared FilesRichVideo.exe
O23 — Service: AMD Safely Remove Disk Drive (SafeRemove) — AMD — C:Program FilesAMDSafely Remove DiskSafeRemoveService.exe
O23 — Service: SpIDer Guard for Windows (SPIDERNT) — Doctor Web, Ltd. — C:PROGRA~1DrWebspidernt.exe
O23 — Service: spmgr — Unknown owner — C:Program FilesASUSNB ProbeSPMspmgr.exe
O23 — Service: SwitchBoard — Adobe Systems Incorporated — C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe
O23 — Service: TabletService — Wacom Technology, Corp. — C:Windowssystem32Tablet.exe
O23 — Service: @C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) — Корпорация Майкрософт — C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe—
End of file — 10105 bytes======Scheduled tasks folder======
C:WindowstasksDr.Web Daily scan.job
C:WindowstasksDr.Web Update.job
C:WindowstasksGoogleUpdateTaskMachineCore.job
C:WindowstasksGoogleUpdateTaskMachineUA.job
C:WindowstasksUser_Feed_Synchronization-{7001626F-C3AC-4112-900D-5A67CBC5303F}.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2006-10-22 62080][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2010-11-22 1243320][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
IE 4.x-6.x BHO for Download Master — C:PROGRA~1DOWNLO~1dmiehlp.dll [2010-12-02 162928][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9BFBA68E-E21B-458E-AE12-FE85E903D2C1}]
AlterGeoBHO Class — C:Program FilesAlterGeoAlterGeo Magic Scanner2.8.8.615AlterGeo.BrowserPlugin.dll [2010-08-31 257384][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll [2010-02-08 804136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} — DAEMON Tools Toolbar — C:Program FilesDAEMON Tools ToolbarDTToolbar.dll [2008-12-10 929224]
{0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — DM Bar — C:Program FilesDownload Masterdmbar.dll [2007-11-26 180224]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2010-11-22 1243320][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«StartCCC»=C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe [2008-01-21 61440]
«RtHDVCpl»=C:WindowsRtHDVCpl.exe [2008-06-13 6183456]
«SynTPEnh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2007-12-06 1029416]
«ATKMEDIA»=C:Program FilesASUSATK MediaDMedia.exe [2008-06-24 159744]
«ASUS Camera ScreenSaver»=C:WindowsAsScrProlog.exe [2008-09-15 47672]
«ASUS Screen Saver Protector»=C:WindowsASScrPro.exe [2008-09-15 33136]
«SpIDerAgent»=C:Program FilesDrWebSpIDerAgent.exe [2010-02-15 447728]
«SpIDerMail»=C:Program FilesDrWebspiderml.exe [2009-07-02 644336]
«SpIDerNT»=C:PROGRA~1DrWebspiderui.exe [2011-02-10 232352]
«GrooveMonitor»=C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2008-10-25 31072]
«Skytel»=C:WindowsSkytel.exe [2007-11-20 1826816]
«LanguageShortcut»=C:Program FilesASUSTekASUSDVDLanguageLanguage.exe [2008-02-22 62760]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2010-03-11 8746680]
«atwtusb»=atwtusb.exe beta []
«AdobeAAMUpdater-1.0″=C:Program FilesCommon FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [2010-06-27 500208]
«SwitchBoard»=C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe [2010-02-19 517096]
«AdobeCS5ServiceManager»=C:Program FilesCommon FilesAdobeCS5ServiceManagerCS5ServiceManager.exe [2010-02-22 406992]
«Guard.Mail.ru.gui»=C:Program FilesMail.RuGuardGuardMailRu.exe [2010-12-28 1041088]
«2Gis Update Notifier»=C:Program Files2gis3.02GISTrayNotifier.exe [2010-12-24 4579672][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Google Update»=C:UsersмвидеоAppDataLocalGoogleUpdateGoogleUpdate.exe [2010-03-28 136176]
«MouseUtility»=D:DistrMouse UtilitaMouseUtility.exe [2010-01-03 351232]
«Skype»=C:Program FilesSkype\PhoneSkype.exe [2010-09-02 13351304]
«WMPNSCFG»=C:Program FilesWindows Media PlayerWMPNSCFG.exe [2008-01-21 202240]
«Qwjwjm»=C:UsersмвидеоAppDataRoamingQwjwjm.exe [2011-03-08 103424]
«CTFMON.EXE»=C:Windowssystem32ctfmon.exe [2006-11-02 8704][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [2008-01-11 39792][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregATKOSD2]
C:Program FilesATKOSD2ATKOSD2.exe [2007-10-17 7737344][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregatwtusb]
atwtusb.exe beta [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCLMLServer]
C:Program FilesCyberLinkPower2GoCLMLSvc.exe [2008-07-18 104936][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMAgent]
C:Program FilesMail.RuAgentMAgent.exe [2010-03-11 8746680][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregP2Go_Menu]
C:Program FilesCyberLinkPower2GoMUITransferMUIStartMenu.exe [2008-06-13 210216][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRemoteControl]
C:Program FilesASUSTekASUSDVDPDVDServ.exe [2008-04-02 87336]C:UsersмвидеоAppDataRoamingMicrosoftWindowsStart MenuProgramsStartup
Punto Switcher.lnk — C:Program FilesYandexPunto Switcherpunto.exe
USBGuard.lnk — C:Program FilesUSBGuardUSBGuard.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848]
«{AEB6717E-7E19-11d0-97EE-00C04FD91972}»= [][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfPf]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfRd]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfSvc]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfUsbccidDriver]
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«DisableRegedit»=0
«DisableTaskMgr»=0
«NoDispScrSavPage»=0[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«EnableUIADesktopToggle»=0
«DisableRegedit»=0
«DisableTaskMgr»=0[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDrives»=0
«NoDriveTypeAutoRun»=159
«NoFolderOptions»=0[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«BindDirectlyToPropertySetStorage»=
«NoDrives»=
«NoFolderOptions»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
======File associations======
.js — edit — C:WindowsSystem32Notepad.exe %1
======List of files/folders created in the last 3 months======
2011-03-09 18:00:09 —-D—- C:Windowstemp
2011-03-09 17:59:58 —-A—- C:ComboFix.txt
2011-03-09 17:56:51 —-SHD—- C:$RECYCLE.BIN
2011-03-09 17:16:51 —-D—- C:Qoobox
2011-03-09 17:16:25 —-A—- C:WindowsSWXCACLS.exe
2011-03-09 17:01:10 —-A—- C:lcamgt.txt
2011-03-08 19:34:14 —-D—- C:The KMPlayer
2011-03-08 07:26:02
C:UsersмвидеоAppDataRoamingQwjwjm.exe
2011-03-03 20:36:43 —-D—- C:Program FilesЗоркий глаз
2011-02-28 16:27:51 —-A—- C:Windowssystem32shsvcs.dll
2011-02-26 18:09:41 —-D—- C:WindowsSQLTools9_KB970892_ENU
2011-02-26 18:06:35 —-D—- C:WindowsSQL9_KB970892_ENU
2011-02-26 18:04:39 —-D—- C:Windowssystem32WindowsPowerShell
2011-02-26 18:01:56 —-A—- C:Windowssystem32winrsmgr.dll
2011-02-26 18:01:34 —-A—- C:Windowssystem32wsmprovhost.exe
2011-02-26 18:01:33 —-A—- C:Windowssystem32winrshost.exe
2011-02-26 18:01:33 —-A—- C:Windowssystem32winrs.exe
2011-02-26 18:01:29 —-A—- C:Windowssystem32wsmplpxy.dll
2011-02-26 18:01:29 —-A—- C:Windowssystem32winrssrv.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32WsmRes.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wevtfwd.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecutil.exe
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecsvc.dll
2011-02-26 18:01:23 —-A—- C:Windowssystem32wecapi.dll
2011-02-26 18:01:22 —-A—- C:Windowssystem32pwrshplugin.dll
2011-02-26 18:01:08 —-A—- C:Windowssystem32winrm.vbs
2011-02-26 18:01:05 —-A—- C:Windowssystem32WsmAuto.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WsmWmiPl.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WSManMigrationPlugin.dll
2011-02-26 18:01:04 —-A—- C:Windowssystem32WSManHTTPConfig.exe
2011-02-26 18:01:04 —-A—- C:Windowssystem32winrscmd.dll
2011-02-26 18:01:01 —-A—- C:Windowssystem32WsmSvc.dll
2011-02-12 15:20:05 —-A—- C:WindowsODBC.INI
2011-02-12 15:19:01 —-D—- C:Windowssystem32js
2011-02-12 15:19:01 —-D—- C:Windowssystem32css
2011-02-12 15:19:01 —-D—- C:Program FilesBusiness Objects
2011-02-12 15:11:34 —-D—- C:Program FilesMicrosoft SQL Server
2011-02-12 15:10:22 —-D—- C:Program FilesMicrosoft Device Emulator
2011-02-12 15:07:30 —-D—- C:Program FilesWindows Mobile 5.0 SDK R2
2011-02-12 15:06:02 —-D—- C:Program FilesMicrosoft Synchronization Services
2011-02-12 15:06:02 —-D—- C:Program FilesMicrosoft SQL Server Compact Edition
2011-02-12 14:52:05 —-D—- C:ProgramDataPreEmptive Solutions
2011-02-12 14:41:07 —-D—- C:Windowssymbols
2011-02-12 14:40:11 —-D—- C:Windowssystem321033
2011-02-12 14:36:34 —-D—- C:Program FilesMicrosoft SDKs
2011-02-12 14:36:34 —-D—- C:Program FilesHTML Help Workshop
2011-02-12 14:36:34 —-D—- C:Program FilesCommon FilesMerge Modules
2011-02-12 14:36:34 —-D—- C:Program FilesCE Remote Tools
2011-02-12 14:36:33 —-D—- C:Program FilesMicrosoft Visual Studio 9.0
2011-02-12 14:28:26 —-D—- C:Program FilesMicrosoft Web Designer Tools
2011-02-09 15:13:24 —-A—- C:Windowssystem32FntCache.dll
2011-02-09 15:13:24 —-A—- C:Windowssystem32d3d10warp.dll
2011-02-09 15:13:23 —-A—- C:Windowssystem32DWrite.dll
2011-02-09 15:13:21 —-A—- C:Windowssystem32MFH264Dec.dll
2011-02-09 15:13:21 —-A—- C:Windowssystem32d2d1.dll
2011-02-09 15:13:20 —-A—- C:Windowssystem32XpsRasterService.dll
2011-02-09 15:13:20 —-A—- C:Windowssystem32XpsGdiConverter.dll
2011-02-09 15:13:19 —-A—- C:Windowssystem32XpsPrint.dll
2011-02-09 15:13:18 —-A—- C:Windowssystem32xpsservices.dll
2011-02-09 15:13:18 —-A—- C:Windowssystem32MFHEAACdec.dll
2011-02-09 15:13:17 —-A—- C:Windowssystem32mfreadwrite.dll
2011-02-09 15:13:17 —-A—- C:Windowssystem32mfmp4src.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32OpcServices.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32dxgi.dll
2011-02-09 15:13:15 —-A—- C:Windowssystem32d3d10_1core.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32mf.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32d3d10_1.dll
2011-02-09 15:13:14 —-A—- C:Windowssystem32d3d10.dll
2011-02-09 15:13:13 —-A—- C:Windowssystem32printfilterpipelinesvc.exe
2011-02-09 15:13:12 —-A—- C:Windowssystem32shdocvw.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32mfplat.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32d3d10level9.dll
2011-02-09 15:13:12 —-A—- C:Windowssystem32d3d10core.dll
2011-02-09 15:13:11 —-A—- C:Windowssystem32stobject.dll
2011-02-09 15:13:10 —-A—- C:Windowssystem32mfps.dll
2011-02-09 15:13:10 —-A—- C:Windowssystem32cdd.dll
2011-02-09 15:13:09 —-A—- C:Windowssystem32printfilterpipelineprxy.dll
2011-02-09 15:12:30 —-A—- C:Windowssystem32ntkrnlpa.exe
2011-02-09 15:12:30 —-A—- C:Windowssystem32ntdll.dll
2011-02-09 15:12:28 —-A—- C:Windowssystem32ntoskrnl.exe
2011-02-09 15:12:07 —-A—- C:Windowssystem32mshtml.dll
2011-02-09 15:12:05 —-A—- C:Windowssystem32ieframe.dll
2011-02-09 15:12:03 —-A—- C:Windowssystem32urlmon.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32wininet.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32msfeeds.dll
2011-02-09 15:12:02 —-A—- C:Windowssystem32iertutil.dll
2011-02-09 15:12:01 —-A—- C:Windowssystem32mstime.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32occache.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32ieui.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32iepeers.dll
2011-02-09 15:12:00 —-A—- C:Windowssystem32iedkcs32.dll
2011-02-09 15:11:59 —-A—- C:Windowssystem32mshtmled.dll
2011-02-09 15:11:59 —-A—- C:Windowssystem32ieUnatt.exe
2011-02-09 15:11:59 —-A—- C:Windowssystem32iesysprep.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32msfeedssync.exe
2011-02-09 15:11:58 —-A—- C:Windowssystem32msfeedsbs.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32licmgr10.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32jsproxy.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32iesetup.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32iernonce.dll
2011-02-09 15:11:58 —-A—- C:Windowssystem32ie4uinit.exe
2011-02-09 15:11:53 —-A—- C:Windowssystem32shell32.dll
2011-02-09 15:11:49 —-A—- C:Windowssystem32shlwapi.dll
2011-02-09 15:11:46 —-A—- C:Windowssystem32atmfd.dll
2011-02-09 15:11:45 —-A—- C:Windowssystem32atmlib.dll
2011-02-07 14:02:30 —-D—- C:UsersмвидеоAppDataRoamingApple Computer
2011-02-07 13:29:22 —-D—- C:ProgramDataApple Computer
2011-02-07 13:29:22 —-D—- C:Program FilesSafari
2011-02-07 13:27:32 —-D—- C:Program FilesCommon FilesApple
2011-02-07 13:27:03 —-D—- C:ProgramDataApple
2011-02-07 13:27:03 —-D—- C:Program FilesApple Software Update
2011-02-07 07:49:33 —-D—- C:ProgramDataArcade Lab
2011-02-01 13:28:42 —-D—- C:UsersмвидеоAppDataRoamingvlc
2011-02-01 11:48:11 —-D—- C:Program FilesVideoLAN
2011-02-01 11:34:25 —-D—- C:Program FilesLivestream Procaster
2011-01-24 09:46:48 —-D—- C:UsersмвидеоAppDataRoamingIP-TV Player
2011-01-24 09:46:37 —-D—- C:Program FilesInternet Helper REAL
2011-01-15 19:42:49 —-D—- C:UsersмвидеоAppDataRoamingThinstall
2011-01-14 08:11:29 —-A—- C:Windowssystem32odbc32.dll
2011-01-14 08:09:12 —-A—- C:Windowssystem32sdclt.exe
2011-01-09 14:57:24 —-D—- C:Program FilesStrongDC++
2010-12-28 18:38:34 —-D—- C:ProgramDataGuard.Mail.Ru
2010-12-15 16:25:42 —-A—- C:Windowssystem32schedsvc.dll
2010-12-15 16:25:40 —-A—- C:Windowssystem32taskschd.dll
2010-12-15 16:25:39 —-A—- C:Windowssystem32wmicmiplugin.dll
2010-12-15 16:25:38 —-A—- C:Windowssystem32taskeng.exe
2010-12-15 16:25:37 —-A—- C:Windowssystem32taskcomp.dll
2010-12-15 16:25:29 —-A—- C:Windowssystem32consent.exe
2010-12-15 16:25:23 —-A—- C:Windowssystem32fontsub.dll
2010-12-15 16:24:53 —-A—- C:Windowssystem32tzres.dll
2010-12-12 10:54:20 —-SHD—- C:ProgramDataSecuROM
2010-12-10 16:36:41 —-D—- C:Program FilesAlterGeo======List of files/folders modified in the last 3 months======
2011-03-09 19:38:06 —-D—- C:Program Filestrend micro
2011-03-09 19:26:49 —-D—- C:WindowsSystem32
2011-03-09 19:26:49 —-A—- C:Windowssystem32PerfStringBackup.INI
2011-03-09 19:26:48 —-D—- C:Windowsinf
2011-03-09 19:17:03 —-D—- C:Program FilesDrWeb
2011-03-09 18:04:20 —-D—- C:UsersмвидеоAppDataRoamingWTablet
2011-03-09 18:00:15 —-D—- C:Windowssystem32drivers
2011-03-09 18:00:09 —-D—- C:Windows
2011-03-09 17:57:54 —-D—- C:WindowsTasks
2011-03-09 17:43:40 —-A—- C:Windowssystem.ini
2011-03-09 17:43:00 —-A—- C:Windowssystem32acovcnt.exe
2011-03-09 17:39:18 —-D—- C:Windowssystem32config
2011-03-09 17:38:36 —-D—- C:WindowsERDNT
2011-03-09 17:28:02 —-D—- C:WindowsAppPatch
2011-03-09 17:27:59 —-D—- C:Program FilesCommon Files
2011-03-09 16:44:01 —-D—- C:Windowssystem32catroot
2011-03-09 16:43:55 —-D—- C:Windowswinsxs
2011-03-09 16:38:33 —-D—- C:Program FilesGoogle
2011-03-09 16:36:13 —-D—- C:Windowssystem32catroot2
2011-03-08 19:41:53 —-D—- C:UsersмвидеоAppDataRoamingSkype
2011-03-08 19:36:41 —-D—- C:UsersмвидеоAppDataRoamingskypePM
2011-03-08 19:34:37 —-SHD—- C:System Volume Information
2011-03-08 19:19:14 —-RD—- C:Program Files
2011-03-08 19:19:14 —-HD—- C:Program FilesInstallShield Installation Information
2011-03-08 19:15:45 —-D—- C:ProgramDataGoogle
2011-03-08 19:15:41 —-SHD—- C:WindowsInstaller
2011-03-08 09:41:38 —-D—- C:UsersмвидеоAppDataRoamingBitTorrent
2011-03-07 20:26:40 —-D—- C:UsersмвидеоAppDataRoamingAIMP
2011-03-07 12:26:27 —-D—- C:Program FilesMozilla Firefox
2011-03-04 13:46:33 —-D—- C:WTablet
2011-03-03 09:54:55 —-D—- C:WindowsPrefetch
2011-02-27 10:38:22 —-D—- C:Windowsrescache
2011-02-27 10:37:36 —-D—- C:WindowsMicrosoft.NET
2011-02-26 18:11:59 —-RSD—- C:Windowsassembly
2011-02-26 18:10:23 —-D—- C:Windowsregistration
2011-02-26 18:04:48 —-D—- C:WindowsPolicyDefinitions
2011-02-26 18:04:39 —-D—- C:Windowssystem32ru-RU
2011-02-25 14:30:32 —-D—- C:System32
2011-02-24 15:29:11 —-D—- C:UsersмвидеоAppDataRoaminggtk-2.0
2011-02-21 11:07:54 —-D—- C:Program FilesOpera
2011-02-19 18:47:09 —-D—- C:ProgramDataMicrosoft Help
2011-02-19 18:37:55 —-D—- C:Program FilesCommon Filesmicrosoft shared
2011-02-12 21:23:23 —-D—- C:Program FilesWindows Mail
2011-02-12 21:23:19 —-D—- C:Program FilesInternet Explorer
2011-02-12 21:23:17 —-D—- C:Windowssystem32migration
2011-02-12 18:03:17 —-A—- C:Windowssystem32mrt.exe
2011-02-12 15:14:23 —-D—- C:Program FilesMicrosoft.NET
2011-02-12 15:10:04 —-RSD—- C:WindowsFonts
2011-02-12 15:01:07 —-SD—- C:UsersмвидеоAppDataRoamingMicrosoft
2011-02-12 15:01:07 —-SD—- C:ProgramDataMicrosoft
2011-02-12 14:52:05 —-D—- C:ProgramData
2011-02-12 14:42:35 —-D—- C:Program FilesMSBuild
2011-02-07 13:27:11 —-D—- C:Windowssystem32Tasks
2011-02-02 17:11:20 —-N—- C:Windowssystem32MpSigStub.exe
2011-02-02 11:56:33 —-D—- C:ProgramDataYandex
2011-02-02 11:56:32 —-D—- C:UsersмвидеоAppDataRoamingYandex
2011-01-28 16:40:42 —-D—- C:Program FilesDownload Master
2011-01-27 19:34:19 —-D—- C:Program FilesTablet
2011-01-27 19:33:41 —-D—- C:Windowssystem32WTablet
2011-01-20 14:05:52 —-D—- C:UsersмвидеоAppDataRoaminguTorrent
2011-01-10 10:09:21 —-D—- C:Program FilesBitTorrent
2011-01-05 21:01:31 —-D—- C:WindowsLiveKernelReports
2010-12-12 10:48:26 —-HD—- C:Windowsmsdownld.tmp
2010-12-12 10:48:20 —-D—- C:WindowsLogs
2010-12-12 10:48:19 —-D—- C:Windowssystem32directx
2010-12-10 16:35:59 —-D—- C:UsersмвидеоAppDataRoamingMail.Ru
2010-12-10 16:35:49 —-D—- C:UsersмвидеоAppDataRoamingMra======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASMMAP;ASMMAP; ??C:Program FilesATKGFNEXASMMAP.sys [2007-07-24 13880]
R2 ghaio;ghaio; ??C:Program FilesASUSNB ProbeSPMghaio.sys [2007-08-03 20936]
R2 rimmptsk;rimmptsk; C:Windowssystem32DRIVERSrimmptsk.sys [2008-02-15 46592]
R2 rimsptsk;rimsptsk; C:Windowssystem32DRIVERSrimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:Windowssystem32DRIVERSrixdptsk.sys [2007-07-30 38400]
R2 SPIDER;SpIDer Guard File System Monitor; ??C:PROGRA~1DrWebspider.sys [2011-02-10 316240]
R3 AgereSoftModem;Agere Systems Soft Modem; C:Windowssystem32DRIVERSAGRSM.sys [2007-08-23 1201312]
R3 athr;Atheros Extensible Wireless LAN device driver; C:Windowssystem32DRIVERSathr.sys [2008-04-27 909824]
R3 atikmdag;atikmdag; C:Windowssystem32DRIVERSatikmdag.sys [2008-07-11 3698176]
R3 CmBatt;Драйвер батареи с ACPI-управлением (Microsoft); C:Windowssystem32DRIVERSCmBatt.sys [2008-01-21 14208]
R3 FStarForce;FStarForce; C:Windowssystem32DRIVERSFStarForce.sys [2009-04-08 8704]
R3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:Windowssystem32driversRTKVHDA.sys [2008-06-17 2153688]
R3 kbfiltr;Keyboard Filter; C:Windowssystem32DRIVERSkbfiltr.sys [2008-06-03 15928]
R3 MODEMCSA;Устройство фильтрации потока Unimodem; C:Windowssystem32driversMODEMCSA.sys [2008-01-21 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:Windowssystem32DRIVERSATKACPI.sys [2006-12-14 7680]
R3 sdbus;sdbus; C:Windowssystem32DRIVERSsdbus.sys [2009-04-11 89088]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:Windowssystem32DRIVERSsnp2uvc.sys [2008-05-13 1772544]
R3 SynTP;Synaptics TouchPad Driver; C:Windowssystem32DRIVERSSynTP.sys [2007-12-06 196400]
R3 usbfilter;AMD USB Filter Driver; C:Windowssystem32DRIVERSusbfilter.sys [2008-03-19 22072]
R3 wacommousefilter;Wacom Mouse Filter Driver; C:Windowssystem32DRIVERSwacommousefilter.sys [2007-02-16 11312]
R3 wacomvhid;Wacom Virtual Hid Driver; C:Windowssystem32DRIVERSwacomvhid.sys [2007-02-16 12848]
S3 ajz6q42x;ajz6q42x; C:Windowssystem32driversajz6q42x.sys []
S3 BthEnum;Драйвер блока запроса Bluetooth; C:Windowssystem32DRIVERSBthEnum.sys [2008-01-21 19456]
S3 BthPan;Устройства Bluetooth (личной сети); C:Windowssystem32DRIVERSbthpan.sys [2008-01-21 92160]
S3 BTHPORT;Драйвер порта Bluetooth; C:WindowsSystem32DriversBTHport.sys [2008-01-21 219648]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WindowsSystem32DriversBTHUSB.sys [2008-01-21 29184]
S3 catchme;catchme; ??C:ComboFixcatchme.sys []
S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:Windowssystem32DRIVERSrfcomm.sys [2008-01-21 49664]
S3 RTL8169;Realtek 8169 NT Driver; C:Windowssystem32DRIVERSRtlh86.sys [2008-05-02 122368]
S3 smserial;smserial; C:Windowssystem32DRIVERSsmserial.sys [2006-11-02 1010560]
S3 TPM;TPM; C:Windowssystem32driverstpm.sys [2008-01-21 45624]
S3 usbscan;Драйвер USB-сканера; C:Windowssystem32DRIVERSusbscan.sys [2008-01-21 35328]
S3 usbvideo;USB-видеоустройство (WDM); C:WindowsSystem32Driversusbvideo.sys [2008-01-21 134016]
S3 utblfilt;utblfilt; C:WindowsSystem32driversutblfilt.sys []
S3 WpdUsb;WpdUsb; C:Windowssystem32DRIVERSwpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32driverswmiacpi.sys [2008-01-21 11264]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ADSMService;ADSM Service; C:Program FilesASUSASUS Data Security ManagerADSMSrv.exe [2007-05-18 73728]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:Windowssystem32agrsmsvc.exe [2007-08-23 13312]
R2 ASLDRService;ASLDR Service; C:Program FilesATK HotkeyASLDRSrv.exe [2007-10-02 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:Windowssystem32Ati2evxx.exe [2008-07-11 692224]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:Program FilesATKGFNEXGFNEXSrv.exe [2007-08-07 94208]
R2 BthServ;@%SystemRoot%System32bthserv.dll,-101; C:Windowssystem32svchost.exe [2008-01-21 21504]
R2 DrWebEngine;Dr.Web Scanning Engine (DrWebEngine); C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe [2009-09-29 869688]
R2 FontCache;@%systemroot%system32FntCache.dll,-100; C:Windowssystem32svchost.exe [2008-01-21 21504]
R2 Guard.Mail.ru;Guard.Mail.ru; C:Program FilesMail.RuGuardGuardMailRu.exe [2010-12-28 1041088]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:Program FilesCommon FilesLightScribeLSSrvc.exe [2008-06-09 73728]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnsqlservr.exe [2009-05-27 29262680]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:Program FilesCyberLinkShared FilesRichVideo.exe [2007-05-14 272024]
R2 SafeRemove;AMD Safely Remove Disk Drive; C:Program FilesAMDSafely Remove DiskSafeRemoveService.exe [2008-07-07 147456]
R2 SPIDERNT;SpIDer Guard for Windows; C:PROGRA~1DrWebspidernt.exe [2011-02-10 231816]
R2 spmgr;spmgr; C:Program FilesASUSNB ProbeSPMspmgr.exe [2007-08-03 125496]
R2 SQLBrowser;SQL Server Browser; C:Program FilesMicrosoft SQL Server90Sharedsqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; C:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe [2008-11-24 87904]
R2 TabletService;TabletService; C:Windowssystem32Tablet.exe [2007-03-31 1189424]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Служба Google Update (gupdate); C:Program FilesGoogleUpdateGoogleUpdate.exe [2010-08-28 135664]
S3 2GISUpdateService;2GIS UpdateService; C:Program Files2gis3.02GISUpdateService.exe [2010-12-24 848216]
S3 Adobe LM Service;Adobe LM Service; C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe [2009-06-14 72704]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 SwitchBoard;SwitchBoard; C:Program FilesCommon FilesAdobeSwitchBoardSwitchBoard.exe [2010-02-19 517096]
S3 WPFFontCache_v0400;@C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe,-100; C:WindowsMicrosoft.NETFrameworkv4.0.30319WPFWPFFontCache_v0400.exe [2010-03-18 753504]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:Program FilesMicrosoft SQL Server90Sharedsqladhlp90.exe [2008-11-24 45408]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:Program FilesMicrosoft Visual Studio 9.0Common7IDERemote Debuggerx86msvsmon.exe [2007-11-07 3004416]
EOF
- Тема ‘На съемных носителях папки стали ярлыками’ закрыта для новых сообщений.
