- This topic has 1 ответ, 2 участника, and was last updated 13 years, 8 months назад by
.
-
Сообщения
-
у меня стоит «Авира». только я включаю компьютер высвечивается Окно Авиры:
«В файле ‘C:WINDOWSsystem32wtfm.exe’
был обнаружен вирус или вредоносная программа ‘BDS/Agent.73728.C’ [backdoor]» Вне зависимости от того какое действие я выбираю «Удалить» или «запретить доступ» окно исчезает и появляется снова раз пять минимум. Потом замолкает.
Кроме того, ранее было следующее сообщение Авиры :
В файле ‘C:WINDOWSsystem32x’
был обнаружен вирус или вредоносная программа ‘WORM/Conficker.Z.10’ [worm].
Найти я их самостоятельно не смогла,но при проверке системы Авирой вижу,что они есть…где-то.
Не знаю,связано ли это,но Пк стал запускаться дольше,а при выключении иногда зависает; постоянно тормозит или обрывается соединение с Оперой.
Отчет: (info.txt не показывает)
Logfile of random’s system information tool 1.08 (written by random/random)
Run by ADMIN at 2011-03-23 18:04:36
Microsoft Windows XP Professional Service Pack 3
System drive C: has 19 GB (62%) free of 31 GB
Total RAM: 2038 MB (76% free)Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:04:49, on 23.03.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesAviraAntiVir Desktopsched.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32igfxtray.exe
C:WINDOWSsystem32hkcmd.exe
C:WINDOWSsystem32igfxpers.exe
C:Program FilesAviraAntiVir Desktopavgnt.exe
C:Program FilesMail.RuGuardGuardMailRu.exe
C:WINDOWSsystem32igfxsrvc.exe
C:PROGRA~1EPSONS~1EVENTM~1EEventManager.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesRocketDockRocketDock.exe
C:Program FilesVistaDriveIconVistaDrv.exe
C:Program FilesuTorrentuTorrent.exe
C:WINDOWSsystem32wtfm.exe
C:WINDOWSmscmtl32.exe
C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIFBR.EXE
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesAviraAntiVir Desktopavguard.exe
C:Program FilesMail.RuGuardGuardMailRu.exe
C:Program FilesJavajre6binjqs.exe
C:WINDOWSTEMPGuardGuard.exe
C:WINDOWSsystem32KaraokeSer.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32wbemwmiapsrv.exe
C:Program FilesOperaopera.exe
C:WINDOWSsystem32NOTEPAD.EXE
C:Documents and SettingsADMINРабочий столRSIT.exe
C:Program Filestrend microADMIN.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.mail.ru/cnt/7828
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: Conduit Engine — {30F9B915-B755-4826-820B-08FBA6BD249D} — C:Program FilesConduitEngineConduitEngine.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: Easy Photo Print — {9421DD08-935F-4701-A9CA-22DF90AC4EA6} — C:Program FilesEpson SoftwareEasy Photo PrintEPTBL.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: Media Star Toolbar — {dfabc5b5-039b-4865-979a-de31cdf3e351} — C:Program FilesMedia_StartbMedi.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 — BHO: EpsonToolBandKicker Class — {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} — C:Program FilesEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 — Toolbar: Media Star Toolbar — {dfabc5b5-039b-4865-979a-de31cdf3e351} — C:Program FilesMedia_StartbMedi.dll
O3 — Toolbar: Conduit Engine — {30F9B915-B755-4826-820B-08FBA6BD249D} — C:Program FilesConduitEngineConduitEngine.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O3 — Toolbar: Яндекс.Бар (для uTorrent) — {1208AB5D-4748-49fe-A74A-484AE2FA5D34} — C:Program FilesYandexYandexBarIEbarsbarietorrentyndbar.dll
O3 — Toolbar: EPSON Web-To-Page — {EE5D279F-081B-4404-994D-C6B60AAEBA6D} — C:Program FilesEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 — Toolbar: Easy Photo Print — {9421DD08-935F-4701-A9CA-22DF90AC4EA6} — C:Program FilesEpson SoftwareEasy Photo PrintEPTBL.dll
O4 — HKLM..Run: [IgfxTray] C:WINDOWSsystem32igfxtray.exe
O4 — HKLM..Run: [HotKeysCmds] C:WINDOWSsystem32hkcmd.exe
O4 — HKLM..Run: [Persistence] C:WINDOWSsystem32igfxpers.exe
O4 — HKLM..Run: [avgnt] «C:Program FilesAviraAntiVir Desktopavgnt.exe» /min
O4 — HKLM..Run: [Guard.Mail.ru.gui] «C:Program FilesMail.RuGuardGuardMailRu.exe» /gui
O4 — HKLM..Run: [Microsoft Driver Setup] C:WINDOWSsystem32wtfm.exe
O4 — HKLM..Run: [Microsoft Device Manager] C:WINDOWSmscmtl32.exe
O4 — HKLM..Run: [EEventManager] C:PROGRA~1EPSONS~1EVENTM~1EEventManager.exe
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autorun
O4 — HKCU..Run: [RocketDock] «C:Program FilesRocketDockRocketDock.exe»
O4 — HKCU..Run: [VistaIcon] C:Program FilesVistaDriveIconVistaDrv.exe
O4 — HKCU..Run: [uTorrent] «C:Program FilesuTorrentuTorrent.exe»
O4 — HKCU..Run: [EPSON TX117_119 Series] C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIFBR.EXE /FU «C:WINDOWSTEMPE_S76.tmp» /EF «HKCU»
O4 — HKLM..PoliciesExplorerRun: [Microsoft Driver Setup] C:WINDOWSsystem32wtfm.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O17 — HKLMSystemCCSServicesTcpip..{4B28858B-536D-4E45-835C-40DEEDE89120}: NameServer = 91.216.22.3 91.216.22.2
O22 — SharedTaskScheduler: Предзагрузчик Browseui — {438755C2-A8BA-11D1-B96B-00A0C90312E1} — C:WINDOWSsystem32browseui.dll
O22 — SharedTaskScheduler: Демон кэша категорий компонентов — {8C7461EF-2B13-11d2-BE35-3078302C2030} — C:WINDOWSsystem32browseui.dll
O23 — Service: Avira AntiVir Планировщик (AntiVirSchedulerService) — Avira GmbH — C:Program FilesAviraAntiVir Desktopsched.exe
O23 — Service: Avira AntiVir Guard (AntiVirService) — Avira GmbH — C:Program FilesAviraAntiVir Desktopavguard.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Guard.Mail.ru — Unknown owner — C:Program FilesMail.RuGuardGuardMailRu.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: VIA Karaoke digital mixer Service (KaraokeService) — VIA Technologies, Inc. — C:WINDOWSsystem32KaraokeSer.exe
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 7696 bytes======Scheduled tasks folder======
C:WINDOWStasksEpson Printer Software Downloader.job
======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine — C:Program FilesConduitEngineConduitEngine.dll [2010-12-09 3911776][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2011-03-21 1546960][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print — C:Program FilesEpson SoftwareEasy Photo PrintEPTBL.dll [2008-04-02 266240][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2011-03-21 41760][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{dfabc5b5-039b-4865-979a-de31cdf3e351}]
Media Star Toolbar — C:Program FilesMedia_StartbMedi.dll [2010-12-09 3911776][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2011-03-21 79648][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class — C:Program FilesEPSONEPSON Web-To-PageEPSON Web-To-Page.dll [2005-02-21 368640][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{dfabc5b5-039b-4865-979a-de31cdf3e351} — Media Star Toolbar — C:Program FilesMedia_StartbMedi.dll [2010-12-09 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} — Conduit Engine — C:Program FilesConduitEngineConduitEngine.dll [2010-12-09 3911776]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2011-03-21 1546960]
{1208AB5D-4748-49fe-A74A-484AE2FA5D34} — Яндекс.Бар (для uTorrent) — C:Program FilesYandexYandexBarIEbarsbarietorrentyndbar.dll [2010-08-20 8888136]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} — EPSON Web-To-Page — C:Program FilesEPSONEPSON Web-To-PageEPSON Web-To-Page.dll [2005-02-21 368640]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} — Easy Photo Print — C:Program FilesEpson SoftwareEasy Photo PrintEPTBL.dll [2008-04-02 266240][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«IgfxTray»=C:WINDOWSsystem32igfxtray.exe [2010-01-28 141336]
«HotKeysCmds»=C:WINDOWSsystem32hkcmd.exe [2010-01-28 173592]
«Persistence»=C:WINDOWSsystem32igfxpers.exe [2010-01-28 142360]
«avgnt»=C:Program FilesAviraAntiVir Desktopavgnt.exe [2009-03-02 209153]
«Guard.Mail.ru.gui»=C:Program FilesMail.RuGuardGuardMailRu.exe [2011-03-21 2107584]
«Microsoft Driver Setup»=C:WINDOWSsystem32wtfm.exe [2011-03-22 71168]
«Microsoft Device Manager»=C:WINDOWSmscmtl32.exe [2011-03-23 41984]
«EEventManager»=C:PROGRA~1EPSONS~1EVENTM~1EEventManager.exe [2009-04-07 673616][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesExplorerRun]
«Microsoft Driver Setup»=C:WINDOWSsystem32wtfm.exe [2011-03-22 71168][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2008-04-15 37376]
«Sidebar»=C:Program FilesWindows Sidebarsidebar.exe [2008-11-23 1250304]
«RocketDock»=C:Program FilesRocketDockRocketDock.exe [2007-09-02 495616]
«VistaIcon»=C:Program FilesVistaDriveIconVistaDrv.exe [2008-01-02 132096]
«uTorrent»=C:Program FilesuTorrentuTorrent.exe [2011-03-21 396152]
«EPSON TX117_119 Series»=C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIFBR.EXE [2008-09-27 199680][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyigfxcui]
C:WINDOWSsystem32igfxdev.dll [2010-01-13 205824][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=255[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=255[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesCyberLinkPowerDVD10PowerDVD10.exe»=»C:Program FilesCyberLinkPowerDVD10PowerDVD10.exe:*:Enabled:CyberLink PowerDVD 10.0»
«C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE»=»C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook»
«C:Program FilesOperaopera.exe»=»C:Program FilesOperaopera.exe:*:Enabled:Opera Internet Browser»
«C:Program FilesMail.RuSputnikSputnikHelper.exe»=»C:Program FilesMail.RuSputnikSputnikHelper.exe:*:Enabled:C:Program FilesMail.RuSputnikSputnikHelper.exe»
«C:Program FilesMail.RuSputnikSputnikFlashPlayer.exe»=»C:Program FilesMail.RuSputnikSputnikFlashPlayer.exe:*:Enabled:C:Program FilesMail.RuSputnikSputnikFlashPlayer.exe»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesCyberLinkPowerDVD10PowerDVD10.exe»=»C:Program FilesCyberLinkPowerDVD10PowerDVD10.exe:*:Enabled:CyberLink PowerDVD 10.0»======List of files/folders created in the last 1 months======
2011-03-23 17:56:15 —-A—- C:WINDOWSEEventManager.INI
2011-03-23 17:51:49 —-D—- C:Program Filestrend micro
2011-03-23 17:51:48 —-D—- C:rsit
2011-03-23 17:32:36 —-D—- C:Documents and SettingsADMINApplication DataEpson
2011-03-23 17:27:13 —-D—- C:Documents and SettingsAll UsersApplication DataUDL
2011-03-23 17:24:06 —-D—- C:Program FilesEpson Software
2011-03-23 17:24:03 —-D—- C:Program FilesCommon FilesInstallShield
2011-03-23 17:23:12 —-D—- C:Program FilesABBYY FineReader 6.0 Sprint
2011-03-23 17:21:43 —-A—- C:WINDOWSsystem32PICSDK2.dll
2011-03-23 17:21:43 —-A—- C:WINDOWSsystem32PICSDK.ini
2011-03-23 17:21:43 —-A—- C:WINDOWSsystem32PICSDK.dll
2011-03-23 17:21:43 —-A—- C:WINDOWSsystem32PICEntry.dll
2011-03-23 17:21:43 —-A—- C:WINDOWSsystem32EpPicPrt.dll
2011-03-23 17:21:43 —-A—- C:WINDOWSsystem32EPPicMgr.dll
2011-03-23 17:21:41 —-D—- C:Documents and SettingsADMINApplication DataInstallShield
2011-03-23 17:20:51 —-A—- C:WINDOWSsystem32E_FLBFBR.DLL
2011-03-23 17:20:51 —-A—- C:WINDOWSsystem32E_FD4BFBR.DLL
2011-03-23 17:20:51 —-A—- C:WINDOWSsystem32E_DCINST.DLL
2011-03-23 17:20:28 —-D—- C:Documents and SettingsAll UsersApplication DataEPSON
2011-03-23 17:20:14 —-A—- C:WINDOWSsystem32eswiaud.dll
2011-03-23 17:20:14 —-A—- C:WINDOWSsystem32esdevapp.exe
2011-03-23 17:20:14 —-A—- C:WINDOWSsystem32escdev.dll
2011-03-23 17:20:11 —-D—- C:Program Filesepson
2011-03-23 09:16:56 —-H—- C:WINDOWSmscmtl32.exe
2011-03-22 20:05:58 —-A—- C:zUtil.exe
2011-03-22 20:04:51 —-A—- C:WINDOWSlogfile32.txt
2011-03-22 20:04:50 —-N—- C:WINDOWSsystem32wtfm.exe
2011-03-21 16:43:44 —-D—- C:Program FilesSchool
2011-03-21 16:43:13 —-D—- C:Documents and SettingsADMINApplication Dataulif
2011-03-21 16:42:32 —-D—- C:Documents and SettingsADMINApplication DataWinRAR
2011-03-21 16:30:00 —-D—- C:Documents and SettingsAll UsersApplication DataYandex
2011-03-21 16:30:00 —-D—- C:Documents and SettingsADMINApplication DataYandex
2011-03-21 16:29:58 —-D—- C:Program FilesYandex
2011-03-21 16:29:58 —-D—- C:Documents and SettingsADMINApplication DataMozilla
2011-03-21 16:29:19 —-D—- C:Program FilesuTorrent
2011-03-21 16:27:41 —-D—- C:Documents and SettingsADMINApplication DatauTorrent
2011-03-21 16:27:33 —-D—- C:Program FilesMail.Ru
2011-03-21 15:57:28 —-A—- C:WINDOWSsystem32wmpns.dll
2011-03-21 13:29:51 —-D—- C:Program FilesConduit
2011-03-21 13:29:50 —-D—- C:Program FilesConduitEngine
2011-03-21 13:29:49 —-D—- C:Program FilesMedia_Star
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32wrap_oal.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32Vbrun300.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32vbrun200.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32vbrun100.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32Vb40032.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32Vb40016.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32ssleay32.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32OpenAL32.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32msvcrt10.dll
2011-03-21 13:18:55 —-A—- C:WINDOWSsystem32msvcr70.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MSVCP70.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32msvci70.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MSSTKPRP.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71u.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71KOR.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71JPN.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71ITA.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71FRA.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71ESP.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71ENU.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71DEU.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71CHT.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71CHS.DLL
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32MFC71.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70u.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70kor.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70jpn.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70ita.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70fra.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70esp.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70enu.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70deu.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70cht.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70chs.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32mfc70.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32libeay32.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32atl71.dll
2011-03-21 13:18:54 —-A—- C:WINDOWSsystem32atl70.dll
2011-03-21 13:17:47 —-D—- C:Documents and SettingsADMINApplication DataMacromedia
2011-03-21 13:08:25 —-D—- C:Documents and SettingsADMINApplication DataCyberLink
2011-03-21 13:07:23 —-D—- C:Documents and SettingsADMINApplication DataAIMP3
2011-03-21 12:56:45 —-D—- C:Documents and SettingsADMINApplication DataAusLogics
2011-03-21 12:56:30 —-D—- C:WINDOWSXSxS
2011-03-21 12:56:30 —-D—- C:Program FilesXenocode
2011-03-21 12:56:30 —-D—- C:Program FilesAuslogics
2011-03-21 12:48:06 —-A—- C:WINDOWSsystem32iis.msc
2011-03-21 12:48:06 —-A—- C:WINDOWSsystem32dnsmgmt.msc
2011-03-21 12:46:02 —-A—- C:WINDOWSsystem32oeminfo.ini
2011-03-21 12:45:59 —-D—- C:WINDOWSResPatch
2011-03-21 12:43:30 —-A—- C:WINDOWSsystem32uxtheme.dll.backup
2011-03-21 12:40:40 —-D—- C:WINDOWSsystem32XPSViewer
2011-03-21 12:40:40 —-D—- C:WINDOWSsystem32en-US
2011-03-21 12:40:40 —-D—- C:Program FilesMSBuild
2011-03-21 12:40:37 —-D—- C:Program FilesReference Assemblies
2011-03-21 12:38:38 —-D—- C:WINDOWSsystem32URTTemp
2011-03-21 12:37:41 —-AD—- C:WINDOWSCursors
2011-03-21 12:37:31 —-AD—- C:Program FilesVistaDriveIcon
2011-03-21 12:37:18 —-AD—- C:WINDOWSMedia
2011-03-21 11:27:54 —-D—- C:Program Files7-Zip
2011-03-21 11:26:53 —-A—- C:WINDOWSsystem32driversavipbb.sys
2011-03-21 11:26:53 —-A—- C:WINDOWSsystem32driversavgntmgr.sys
2011-03-21 11:26:53 —-A—- C:WINDOWSsystem32driversavgntflt.sys
2011-03-21 11:26:53 —-A—- C:WINDOWSsystem32driversavgntdd.sys
2011-03-21 11:26:52 —-D—- C:Program FilesAvira
2011-03-21 11:26:52 —-D—- C:Documents and SettingsAll UsersApplication DataAvira
2011-03-21 11:26:52 —-A—- C:WINDOWSsystem32driversssmdrv.sys
2011-03-21 11:26:20 —-N—- C:WINDOWSsystem32driversimagesrv.sys
2011-03-21 11:26:20 —-N—- C:WINDOWSsystem32driversimagedrv.sys
2011-03-21 11:26:07 —-N—- C:WINDOWSsystem32TwnLib4.dll
2011-03-21 11:26:07 —-N—- C:WINDOWSsystem32ImagXRA7.dll
2011-03-21 11:26:07 —-N—- C:WINDOWSsystem32ImagXR7.dll
2011-03-21 11:26:07 —-N—- C:WINDOWSsystem32ImagXpr7.dll
2011-03-21 11:26:07 —-N—- C:WINDOWSsystem32ImagX7.dll
2011-03-21 11:26:07 —-D—- C:Program FilesCommon FilesAhead
2011-03-21 11:26:07 —-D—- C:Program FilesAhead
2011-03-21 11:26:07 —-A—- C:WINDOWSsystem32TwnLib20.dll
2011-03-21 11:26:07 —-A—- C:WINDOWSsystem32NeroCheck.exe
2011-03-21 11:25:52 —-D—- C:Documents and SettingsAll UsersApplication DataSun
2011-03-21 11:25:51 —-D—- C:Program FilesCommon FilesJava
2011-03-21 11:25:41 —-A—- C:WINDOWSsystem32javaws.exe
2011-03-21 11:25:41 —-A—- C:WINDOWSsystem32javaw.exe
2011-03-21 11:25:41 —-A—- C:WINDOWSsystem32deployJava1.dll
2011-03-21 11:25:40 —-A—- C:WINDOWSsystem32java.exe
2011-03-21 11:25:36 —-D—- C:Program FilesJava
2011-03-21 11:25:28 —-D—- C:Documents and SettingsADMINApplication DataSun
2011-03-21 11:25:14 —-D—- C:Documents and SettingsADMINApplication DataAdobe
2011-03-21 11:25:11 —-D—- C:WINDOWSsystem32Adobe
2011-03-21 11:25:00 —-D—- C:Documents and SettingsADMINApplication DataFastStone
2011-03-21 11:24:59 —-D—- C:Program FilesFastStone
2011-03-21 11:24:01 —-D—- C:Documents and SettingsADMINApplication DataOpera
2011-03-21 11:23:59 —-D—- C:Program FilesOpera
2011-03-21 11:23:50 —-A—- C:WINDOWSsystem32bdeker32.dll
2011-03-21 11:23:49 —-D—- C:Program FilesBorland
2011-03-21 11:23:23 —-N—- C:WINDOWSsystem32spmsg.dll
2011-03-21 11:23:21 —-A—- C:WINDOWSsystem32spupdsvc.exe
2011-03-21 11:23:20 —-HDC—- C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$
2011-03-21 11:23:10 —-D—- C:Program FilesAlky for Applications
2011-03-21 11:23:05 —-D—- C:Program FilesWindows Sidebar
2011-03-21 11:23:05 —-A—- C:WINDOWSsystem32lcid.exe
2011-03-21 11:22:42 —-D—- C:Program FilesRocketDock
2011-03-21 11:22:28 —-A—- C:WINDOWSsystem32engine.dll
2011-03-21 11:22:14 —-D—- C:Program FilesTotal Commander
2011-03-21 11:22:12 —-D—- C:Program FilesSTDU Viewer
2011-03-21 11:22:12 —-D—- C:Program FilesCommon FilesSTDUtility
2011-03-21 11:22:07 —-D—- C:Program FilesCCleaner
2011-03-21 11:21:33 —-RSD—- C:WINDOWSassembly
2011-03-21 11:21:32 —-D—- C:WINDOWSMicrosoft.NET
2011-03-21 11:21:08 —-D—- C:Program FilesMicrosoft Works
2011-03-21 11:21:03 —-D—- C:Program FilesMicrosoft Visual Studio
2011-03-21 11:21:03 —-D—- C:Program FilesCommon FilesDESIGNER
2011-03-21 11:20:04 —-D—- C:WINDOWSSHELLNEW
2011-03-21 11:19:58 —-D—- C:Program FilesMicrosoft Office
2011-03-21 11:19:58 —-D—- C:Documents and SettingsAll UsersApplication DataMicrosoft Help
2011-03-21 11:19:48 —-RHD—- C:MSOCache
2011-03-21 11:18:48 —-D—- C:Program FilesWinRAR
2011-03-21 11:18:38 —-D—- C:Documents and SettingsAll UsersApplication DataCyberLink
2011-03-21 11:18:33 —-HD—- C:Program FilesInstallShield Installation Information
2011-03-21 11:18:06 —-D—- C:Program FilesCyberLink
2011-03-21 11:18:06 —-A—- C:WINDOWSsystem32msxml3a.dll
2011-03-21 11:18:02 —-AD—- C:Documents and SettingsAll UsersApplication DataTemp
2011-03-21 11:17:29 —-A—- C:WINDOWSsystem32vct3216.dll
2011-03-21 11:17:29 —-A—- C:WINDOWSsystem32maguiinter.dll
2011-03-21 11:17:29 —-A—- C:WINDOWSsystem32maguiengine.dll
2011-03-21 11:17:29 —-A—- C:WINDOWSsystem32magpcmac.dll
2011-03-21 11:17:29 —-A—- C:WINDOWSsystem32magcore.dll
2011-03-21 11:17:29 —-A—- C:WINDOWSsystem32checkcommon.dll
2011-03-21 11:17:29 —-A—- C:WINDOWSsystem32checkactivate.dll
2011-03-21 11:17:26 —-D—- C:Program FilesKMPlayer
2011-03-21 11:17:18 —-A—- C:WINDOWSsystem32unrar.dll
2011-03-21 11:17:18 —-A—- C:WINDOWSsystem32rmoc3260.dll
2011-03-21 11:17:18 —-A—- C:WINDOWSsystem32pndx5032.dll
2011-03-21 11:17:18 —-A—- C:WINDOWSsystem32pndx5016.dll
2011-03-21 11:17:18 —-A—- C:WINDOWSsystem32pncrt.dll
2011-03-21 11:17:17 —-A—- C:WINDOWSsystem32yv12vfw.dll
2011-03-21 11:17:17 —-A—- C:WINDOWSavisplitter.ini
2011-03-21 11:17:16 —-A—- C:WINDOWSsystem32xvidvfw.dll
2011-03-21 11:17:16 —-A—- C:WINDOWSsystem32xvidcore.dll
2011-03-21 11:17:16 —-A—- C:WINDOWSsystem32qt-dx331.dll
2011-03-21 11:17:16 —-A—- C:WINDOWSsystem32dpl100.dll
2011-03-21 11:17:16 —-A—- C:WINDOWSsystem32divx.dll
2011-03-21 11:17:15 —-A—- C:WINDOWSsystem32ff_vfw.dll.manifest
2011-03-21 11:17:15 —-A—- C:WINDOWSsystem32ff_vfw.dll
2011-03-21 11:17:14 —-D—- C:Program FilesK-Lite Codec Pack
2011-03-21 11:17:14 —-A—- C:WINDOWSsystem32msvcr71.dll
2011-03-21 11:17:14 —-A—- C:WINDOWSsystem32msvcp71.dll
2011-03-21 11:17:04 —-D—- C:Program FilesAIMP3
2011-03-21 11:12:48 —-A—- C:WINDOWSsystem32driversL8042Kbd.sys
2011-03-21 11:11:14 —-A—- C:WINDOWSsystem32driverssplitter.sys
2011-03-21 11:11:12 —-A—- C:WINDOWSsystem32driversDMusic.sys
2011-03-21 11:11:10 —-A—- C:WINDOWSsystem32driversswmidi.sys
2011-03-21 11:11:09 —-A—- C:WINDOWSsystem32driverskmixer.sys
2011-03-21 11:11:09 —-A—- C:WINDOWSsystem32driversaec.sys
2011-03-21 11:11:08 —-A—- C:WINDOWSsystem32driversdrmkaud.sys
2011-03-21 11:11:07 —-A—- C:WINDOWSsystem32driverssysaudio.sys
2011-03-21 11:11:06 —-A—- C:WINDOWSsystem32driversMSKSSRV.sys
2011-03-21 11:11:05 —-A—- C:WINDOWSsystem32driversMSPQM.sys
2011-03-21 11:11:03 —-A—- C:WINDOWSsystem32driversMSPCLOCK.sys
2011-03-21 11:11:01 —-RA—- C:WINDOWSsystem32KaraokeSer.exe
2011-03-21 11:11:01 —-RA—- C:WINDOWSsystem32driversviahduaa.sys
2011-03-21 11:11:01 —-RA—- C:WINDOWSsystem32Audio3D.dll
2011-03-21 11:11:01 —-RA—- C:WINDOWSsystem32A3D.dll
2011-03-21 11:11:01 —-A—- C:WINDOWSsystem32ksuser.dll
2011-03-21 11:11:01 —-A—- C:WINDOWSsystem32driversportcls.sys
2011-03-21 11:11:01 —-A—- C:WINDOWSsystem32driversdrmk.sys
2011-03-21 11:10:46 —-A—- C:WINDOWSsystem32RTNUninst32.dll
2011-03-21 11:10:46 —-A—- C:WINDOWSsystem32RtNicProp32.dll
2011-03-21 11:10:46 —-A—- C:WINDOWSsystem32driversRtenicxp.sys
2011-03-21 11:10:11 —-D—- C:WINDOWSsystem32x64
2011-03-21 11:10:11 —-A—- C:WINDOWSsystem32igxpun.exe
2011-03-21 11:10:06 —-DC—- C:WINDOWSsystem32DRVSTORE
2011-03-21 11:10:06 —-A—- C:WINDOWSsystem32difxapi.dll
2011-03-21 11:09:59 —-A—- C:WINDOWSsystem32igxprd32.dll
2011-03-21 11:09:59 —-A—- C:WINDOWSsystem32igxpgd32.dll
2011-03-21 11:09:59 —-A—- C:WINDOWSsystem32driversigxpmp32.sys
2011-03-21 11:09:58 —-A—- C:WINDOWSsystem32igxpdx32.dll
2011-03-21 11:09:58 —-A—- C:WINDOWSsystem32igxpdv32.dll
2011-03-21 11:09:56 —-A—- C:WINDOWSsystem32iglicd32.dll
2011-03-21 11:09:56 —-A—- C:WINDOWSsystem32igldev32.dll
2011-03-21 11:09:56 —-A—- C:WINDOWSsystem32igfxsrvc.dll
2011-03-21 11:09:56 —-A—- C:WINDOWSsystem32igfxress.dll
2011-03-21 11:09:56 —-A—- C:WINDOWSsystem32igfxCoIn_v5218.dll
2011-03-21 11:09:55 —-A—- C:WINDOWSsystem32igfxpph.dll
2011-03-21 11:09:55 —-A—- C:WINDOWSsystem32igfxexps.dll
2011-03-21 11:09:55 —-A—- C:WINDOWSsystem32igfxdo.dll
2011-03-21 11:09:55 —-A—- C:WINDOWSsystem32igfxdev.dll
2011-03-21 11:09:53 —-A—- C:WINDOWSsystem32hccutils.dll
2011-03-21 11:09:52 —-A—- C:WINDOWSsystem32igfxtray.exe
2011-03-21 11:09:52 —-A—- C:WINDOWSsystem32igfxsrvc.exe
2011-03-21 11:09:52 —-A—- C:WINDOWSsystem32igfxpers.exe
2011-03-21 11:09:52 —-A—- C:WINDOWSsystem32igfxext.exe
2011-03-21 11:09:52 —-A—- C:WINDOWSsystem32igfxcfg.exe
2011-03-21 11:09:50 —-A—- C:WINDOWSsystem32hkcmd.exe
2011-03-21 11:09:35 —-A—- C:WINDOWSsystem32driversASACPI.sys
2011-03-21 11:06:21 —-ASH—- C:pagefile.sys======List of files/folders modified in the last 1 months======
2011-03-23 17:57:10 —-D—- C:WINDOWSTemp
2011-03-23 17:57:08 —-D—- C:WINDOWSsystem32CatRoot2
2011-03-23 17:56:23 —-A—- C:WINDOWSSchedLgU.Txt
2011-03-23 17:56:15 —-D—- C:WINDOWS
2011-03-23 17:51:49 —-RD—- C:Program Files
2011-03-23 17:32:51 —-HD—- C:WINDOWSinf
2011-03-23 17:27:38 —-SHD—- C:WINDOWSInstaller
2011-03-23 17:27:36 —-SD—- C:WINDOWSTasks
2011-03-23 17:25:13 —-SD—- C:WINDOWSDownloaded Program Files
2011-03-23 17:24:03 —-D—- C:Program FilesCommon Files
2011-03-23 17:23:15 —-D—- C:WINDOWSPrefetch
2011-03-23 17:21:43 —-AD—- C:WINDOWSsystem32
2011-03-23 17:20:11 —-D—- C:WINDOWStwain_32
2011-03-23 17:13:29 —-D—- C:WINDOWSSoftwareDistribution
2011-03-21 15:47:26 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2011-03-21 13:30:00 —-D—- C:WINDOWSDebug
2011-03-21 13:21:26 —-SD—- C:Documents and SettingsADMINApplication DataMicrosoft
2011-03-21 13:19:09 —-D—- C:WINDOWSWinSxS
2011-03-21 13:09:50 —-SHD—- C:System Volume Information
2011-03-21 13:09:50 —-D—- C:WINDOWSsystem32Restore
2011-03-21 13:01:48 —-D—- C:WINDOWSsystem32config
2011-03-21 12:48:13 —-D—- C:WINDOWSsystem32ru-ru
2011-03-21 12:48:07 —-RSHDC—- C:WINDOWSsystem32dllcache
2011-03-21 12:48:06 —-A—- C:WINDOWSsystem32sfcfiles.dll
2011-03-21 12:46:55 —-AD—- C:WINDOWSsystem32Com
2011-03-21 12:46:21 —-AD—- C:WINDOWSpchealth
2011-03-21 12:43:30 —-A—- C:WINDOWSsystem32uxtheme.dll
2011-03-21 12:41:01 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2011-03-21 12:40:40 —-RSD—- C:WINDOWSFonts
2011-03-21 12:40:25 —-D—- C:WINDOWSsystem32spool
2011-03-21 12:39:45 —-D—- C:Program FilesInternet Explorer
2011-03-21 12:39:23 —-D—- C:WINDOWSRegistration
2011-03-21 12:38:42 —-D—- C:WINDOWSsystem32mui
2011-03-21 12:37:25 —-RD—- C:WINDOWSWeb
2011-03-21 11:29:24 —-SHD—- C:RECYCLER
2011-03-21 11:26:55 —-D—- C:WINDOWSsystem32drivers
2011-03-21 11:25:13 —-D—- C:WINDOWSsystem32Macromed
2011-03-21 11:21:08 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2011-03-21 11:20:09 —-A—- C:WINDOWSwin.ini
2011-03-21 11:20:08 —-D—- C:Program FilesCommon FilesSystem
2011-03-21 11:17:59 —-A—- C:WINDOWSsystem32msxml3r.dll======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ahci7xx;SCSI Miniport; C:WINDOWSSystem32DRIVERSahci7xx.sys [2008-03-08 176136]
R0 amdbusdr;System Bus Extender; C:WINDOWSSystem32DRIVERSamdbusdr.sys [2006-02-26 29696]
R0 amdide;System Bus Extender; C:WINDOWSSystem32DRIVERSamdide.sys [2007-10-12 9096]
R0 fasttx2k;SCSI Miniport; C:WINDOWSSystem32DRIVERSfasttx2k.sys [2006-02-26 159744]
R0 iaStor;Intel AHCI Controller; C:WINDOWSSystem32DRIVERSiaStor.sys [2008-09-12 327192]
R0 iaStor55;Intel RAID Controller; C:WINDOWSSystem32DRIVERSiaStor55.sys [2005-10-12 874240]
R0 iaStor70;Intel AHCI Controller; C:WINDOWSSystem32DRIVERSiaStor70.sys [2007-02-12 277784]
R0 iaStorw;Intel AHCI Controller; C:WINDOWSSystem32DRIVERSiaStorw.sys [2007-09-29 308248]
R0 iteatapi;ITEATAPI_Service_Install; C:WINDOWSSystem32DRIVERSiteatapi.sys [2005-10-28 27648]
R0 iteraid;ITERAID_Service_Install; C:WINDOWSSystem32DRIVERSiteraid.sys [2005-08-04 26112]
R0 jraid;SCSI Miniport; C:WINDOWSSystem32DRIVERSjraid.sys [2008-04-03 76688]
R0 m5228;SCSI Miniport; C:WINDOWSSystem32DRIVERSm5228.sys [2006-02-26 45069]
R0 m5281;SCSI Miniport; C:WINDOWSSystem32DRIVERSm5281.sys [2006-02-26 51072]
R0 m5287;SCSI Miniport; C:WINDOWSSystem32DRIVERSm5287.sys [2005-09-23 103680]
R0 m5288;SCSI Miniport; C:WINDOWSSystem32DRIVERSm5288.sys [2005-12-23 210304]
R0 m5289;SCSI Miniport; C:WINDOWSSystem32DRIVERSm5289.sys [2005-07-04 52480]
R0 mv614x;SCSI Miniport; C:WINDOWSSystem32DRIVERSmv614x.sys [2006-01-06 34432]
R0 mv61xx;SCSI Miniport; C:WINDOWSSystem32DRIVERSmv61xx.sys [2007-10-18 143360]
R0 nvgt2;SCSI Miniport; C:WINDOWSSystem32DRIVERSnvgt2.sys [2008-01-26 132096]
R0 nvgts;SCSI Miniport; C:WINDOWSSystem32DRIVERSnvgts.sys [2007-07-27 105984]
R0 nvrd33;NVIDIA nForce RAID Driver; C:WINDOWSSystem32DRIVERSnvrd33.sys [2008-01-26 125440]
R0 raidsrc;SCSI Miniport; C:WINDOWSSystem32DRIVERSraidsrc.sys [2006-02-26 45392]
R0 SI3112;SiI-3112 SATALink Controller; C:WINDOWSSystem32DRIVERSSI3112.sys [2007-06-29 74280]
R0 SI3114r;SiI-3114 SATARaid Controller; C:WINDOWSSystem32DRIVERSSI3114r.sys [2007-10-04 116776]
R0 SI3124;SiI-3124 SATALink Controller; C:WINDOWSSystem32DRIVERSSI3124.sys [2007-11-20 81960]
R0 SI3132D;SiI-3132 SATALink Controller; C:WINDOWSSystem32DRIVERSSI3132D.sys [2007-10-03 80424]
R0 Si3531;SiI-3531 SATA Controller; C:WINDOWSSystem32DRIVERSSi3531.sys [2007-06-01 210736]
R0 siside;System Bus Extender; C:WINDOWSSystem32DRIVERSsiside.sys [2003-03-25 4096]
R0 SiSRaid;SCSI Miniport; C:WINDOWSSystem32DRIVERSSiSRaid.sys [2004-09-03 46464]
R0 SiSRaid1;SCSI Miniport; C:WINDOWSSystem32DRIVERSSiSRaid1.sys [2004-09-03 46464]
R0 SiSRaid2;SCSI Miniport; C:WINDOWSSystem32DRIVERSSiSRaid2.sys [2005-01-11 30976]
R0 sisraid4;SCSI Miniport; C:WINDOWSSystem32DRIVERSsisraid4.sys [2007-01-17 68864]
R0 sisraidx;SCSI Miniport; C:WINDOWSSystem32DRIVERSsisraidx.sys [2007-01-12 47616]
R0 viamraid;SCSI Miniport; C:WINDOWSSystem32DRIVERSviamraid.sys [2008-07-10 117248]
R0 viapdsk;VIA ATA/ATAPI Host Controller; C:WINDOWSSystem32DRIVERSviapdsk.sys [2006-02-26 29184]
R0 videX32;System Bus Extender; C:WINDOWSSystem32DRIVERSvideX32.sys [2007-11-20 9216]
R0 vmscsi;vmscsi; C:WINDOWSSystem32DRIVERSvmscsi.sys [2007-05-09 17968]
R1 avgio;avgio; ??C:Program FilesAviraAntiVir Desktopavgio.sys []
R1 avipbb;avipbb; C:WINDOWSsystem32DRIVERSavipbb.sys [2009-03-30 96104]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-15 40704]
R1 ssmdrv;ssmdrv; C:WINDOWSsystem32DRIVERSssmdrv.sys [2009-05-11 28520]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/21 12:18:37]; ??C:Program FilesCyberLinkPowerDVD10NavFilter�00.fcl []
R2 avgntflt;avgntflt; C:WINDOWSsystem32DRIVERSavgntflt.sys [2009-11-25 56816]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2008-04-15 144384]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32driversHidUsb.sys [2008-04-13 10368]
R3 ialm;ialm; C:WINDOWSsystem32DRIVERSigxpmp32.sys [2010-01-13 1730272]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:WINDOWSsystem32DRIVERSL8042Kbd.sys [2010-08-24 20304]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32driversMouHid.sys [2001-10-19 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:WINDOWSsystem32DRIVERSASACPI.sys [2004-08-13 5810]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtenicxp.sys [2010-09-09 234728]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32driversusbccgp.sys [2008-04-13 32128]
R3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2008-04-13 25856]
R3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2008-04-13 15104]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32driversusbuhci.sys [2008-04-13 20608]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:WINDOWSsystem32driversviahduaa.sys [2010-12-14 2152944]
S1 kbdhid;Keyboard HID Driver; C:WINDOWSsystem32driversKbdHid.sys [2008-04-14 14720]
S3 NtApm;Драйвер интерфейса NT Apm/Legacy; C:WINDOWSsystem32DRIVERSNtApm.sys [2001-10-19 9472]
S3 usbstor;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-13 26368]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirSchedulerService;Avira AntiVir Планировщик; C:Program FilesAviraAntiVir Desktopsched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:Program FilesAviraAntiVir Desktopavguard.exe [2009-07-21 185089]
R2 Guard.Mail.ru;Guard.Mail.ru; C:Program FilesMail.RuGuardGuardMailRu.exe [2011-03-21 2107584]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2011-03-21 153376]
R2 KaraokeService;VIA Karaoke digital mixer Service; C:WINDOWSsystem32KaraokeSer.exe [2010-12-14 88688]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]
EOF
Здравствуйте!
Для борьбы с Kido нужно сделать лог Combofix
- Тема ‘Помогите "чайничку":вирусы ‘BDS/Agent.73728.C’ [backdoor]" и’ закрыта для новых сообщений.
