Порно на весь экран Логи тут=>

[maxcorp]

info.txt logfile of random’s system information tool 1.06 2009-12-29 14:33:57

======Uninstall list======

—>MsiExec /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
ACDSee 3.0 Russian—>»C:Program FilesAcdUninstal.exe»
Adobe Acrobat 5.0—>C:WINDOWSISUNINST.EXE -f»C:Program FilesCommon FilesAdobeAcrobat 5.0NTUninst.isu» -c»C:Program FilesCommon FilesAdobeAcrobat 5.0NTUninst.dll»
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Shockwave Player 11.5—>»C:WINDOWSsystem32AdobeShockwave 11uninstaller.exe»
Auslogics BoostSpeed—>»C:Program FilesAuslogicsAuslogics BoostSpeedunins000.exe»
BIRTHDAY! millennium—>C:WINDOWSbmuninst.exe
Borderlands—>»C:Program FilesInstallShield Installation Information{1739BBDF-B1D3-4605-AD94-C1248D9E5ED8}setup.exe» -runfromtemp -l0x0419 -removeonly
Borderlands—>MsiExec.exe /I{1739BBDF-B1D3-4605-AD94-C1248D9E5ED8}
Columbia ScreenSaver—>C:WINDOWSColumbia.scr /U
Compatibility Pack for the 2007 Office system—>MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
HDAUDIO Soft Data Fax Modem with SmartCP—>C:Program FilesCONEXANTCNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118UIU32m.exe -U -IAcZUnM5k.inf
Icon Restore 1.0—>C:WINDOWSunins000.exe
Java(TM) 6 Update 3—>MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Jet Radio 1.0—>C:Program FilesJet Radiouninst.exe
jetAudio Plus VX—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1050Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}setup.exe» -l0x19 -removeonly
Kaspersky Internet Security 2010—>MsiExec.exe /I{9D8B0949-7C47-476F-9F06-F900D3B078EA}
Kaspersky Internet Security 2010—>MsiExec.exe /I{9D8B0949-7C47-476F-9F06-F900D3B078EA}
Keyboard Driver—>C:Program FilesInstallShield Installation Information{DFCDD1CE-6D49-49B8-BFB7-93391D22776B}setup.exe -runfromtemp -l0x0409
K-Lite Mega Codec Pack 3.6.2—>»C:Program FilesK-Lite Codec Packunins000.exe»
Light Alloy 4.1—>C:Program FilesLight Alloyuninst.exe
Malwarebytes’ Anti-Malware—>»C:Program FilesMalwarebytes’ Anti-Malwareunins000.exe»
Microsoft .NET Framework 1.1 Russian Language Pack—>MsiExec.exe /X{2BB372D9-52B4-410A-BC1A-FEAB63181EEF}
Microsoft .NET Framework 1.1—>msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1—>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1—>MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Games for Windows — LIVE Redistributable—>MsiExec.exe /X{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Microsoft Office 2003 Web Components—>MsiExec.exe /I{90120000-00A4-0419-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.5—>»C:WINDOWS$NtUninstallWudf01005$spuninstspuninst.exe»
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.21022—>MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729.17—>MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
MSVC80_x86—>MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSXML 4.0 SP2 (KB936181)—>MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 6.0 Parser (KB933579)—>MsiExec.exe /I{8FCE7820-08DF-4663-AF5B-B190EF387C4B}
Need for Speed SHIFT—>»D:GamesNeed for Speed SHIFTunins000.exe»
Nero 8 Lite v8.1.1.4—>»C:Program FilesNerounins000.exe»
Nero 8 Lite v8.3.2.1—>»C:Program FilesNerounins001.exe»
Nokia Connectivity Cable Driver—>MsiExec.exe /X{C3F19A5F-35A8-4FDB-A6ED-0F4CE398DA48}
Nokia PC Suite—>C:Documents and SettingsAll UsersApplication DataInstallations{2B8BEBBF-73A0-497D-9900-8474D022AB3F}Nokia_PC_Suite_rel_7_0_7_0_rus_web.exe
Nokia PC Suite—>MsiExec.exe /I{2B8BEBBF-73A0-497D-9900-8474D022AB3F}
Norton Security Scan—>C:Program FilesNortonInstaller{397E31AA-0D78-4649-A01C-339D73A2ED35}NSSLicenseType2.3.0.44InstStub.exe /X
NVIDIA Drivers—>C:WINDOWSsystem32nvudisp.exe UninstallGUI
NVIDIA PhysX—>MsiExec.exe /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
OpenAL—>»C:Program FilesOpenALOpenALwEAX.exe» /U /S
Paint.NET v3.20—>rundll32.exe advpack.dll,LaunchINFSection C:WINDOWSINFPaintDN.inf,Uninstall
PC Connectivity Solution—>MsiExec.exe /I{9C7C8898-DC29-4E8B-9E77-55A77C3250F6}
PerfectDisk—>MsiExec.exe /I{212F5777-1190-4DEF-8E4D-6B2F313B45E7}
PowerDVD—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1Engine6INTEL3~1ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}Setup.exe» -uninstall
PunkBuster Services—>C:WINDOWSsystem32pbsvc.exe -u
Realtek High Definition Audio Driver—>RtlUpd.exe -r -m
RocketDock 1.3.5—>»C:Program FilesRocketDockunins000.exe»
SAM CoDeC Pack 2009—>»C:Program FilesSAM CoDeC PackUninstall.exe»
Scorpion-Disfigured—>»C:Program FilesInstallShield Installation Information{63F557CB-153A-491F-9484-E22E8D74EA7A}setup.exe» -runfromtemp -l0x0419 -removeonly
Scorpion-Disfigured—>MsiExec.exe /I{63F557CB-153A-491F-9484-E22E8D74EA7A}
Spy Emergency—>»C:Program FilesNETGATESpy Emergencyunins000.exe»
Trojan Remover 6.8.1—>»C:Program FilesTrojan Removerunins000.exe»
TVBrowser LITE (14.02.2007)—>»C:Program FilesTVBrowserLITEUninstallunins000.exe»
UnInstallTC—>C:Program FilesTotalCmdUninstall.exe
Winamp—>»C:Program FilesWinampUninstWA.exe»
Windows Media Format 11 runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Xvid 1.2.1 final uninstall—>»C:Program FilesXvidunins000.exe»
Архиватор WinRAR—>C:Program FilesWinRARuninstall.exe
Бесконечные пазлы—>C:Program FilesAlawar.ruБесконечные пазлыUninstall.exe
Веселая ферма—>C:Program FilesAlawar.ruВеселая фермаUninstall.exe
Волшебные пузыри 1.0—>C:Program FilesAlawar.ruВолшебные пузыриUninstall.exe
Долина фей 1.0—>C:Program FilesAlawar.ruДолина фейUninstall.exe
Загадка эльфов 1.0—>C:Program FilesAlawar.ruЗагадка эльфовUninstall.exe
Загадки Египта 1.0—>C:Program FilesAlawar.ruЗагадки ЕгиптаUninstall.exe
Игра слов 1.0—>C:Program FilesAlawar.ruИгра словUninstall.exe
Пакет драйверов Windows — Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)—>C:PROGRA~1DIFX7B44739871F4D539FA473F57A832EA4B6A59EF06DPInst.exe /d /u C:WINDOWSsystem32DRVSTOREamdk8_5F4DE5B38BD0C6463F94F7534C8C84D5EACE412Damdk8.inf
Пакет драйверов Windows — Intel (NETw4x32) net (03/13/2008 11.5.1.15)—>C:PROGRA~1DIFXF929F18D0995BF1B0A8B3FA812681ED4504B2DADPINST.exe /u C:WINDOWSsystem32DRVSTOREnetw4x32_21C0199BF50662EE493A66C790D8938F76DE5E41netw4x32.inf
Пакет драйверов Windows — Intel (NETw5x32) net (04/21/2008 12.0.0.72)—>C:PROGRA~1DIFXF929F18D0995BF1B0A8B3FA812681ED4504B2DADPINST.exe /u C:WINDOWSsystem32DRVSTOREnetw5x32_97AF20DC1789A0A0BC61FB0A8C3C5F08445A4F7Bnetw5x32.inf
Пакет драйверов Windows — Nokia Modem (05/22/2008 3.8)—>C:PROGRA~1DIFX270581355A767BF1dpinst.exe /u C:WINDOWSsystem32DRVSTOREnokia_blue_6F90B0F4A73A2F780A1010B5D6CB5DDFB098181Enokia_bluetooth.inf
Пакет драйверов Windows — Nokia Modem (05/22/2008 7.00.0.1)—>C:PROGRA~1DIFX270581355A767BF1dpinst.exe /u C:WINDOWSsystem32DRVSTOREnokbtmdm_E68D50F7E25BFE399D47C864C3B52557346242A9nokbtmdm.inf
Пакет драйверов Windows — Nokia pccsmcfd (10/12/2007 6.85.4.0)—>C:PROGRA~1DIFX270581355A767BF1dpinst.exe /u C:WINDOWSsystem32DRVSTOREpccsmcfd_4A1E30386F4D0DEC8F5DF262CFBD8845EEBAB175pccsmcfd.inf
Пакет драйверов Windows — NVIDIA (nv) Display (11/12/2008 6.14.11.8048)—>C:PROGRA~1DIFXF929F18D0995BF1B0A8B3FA812681ED4504B2DADPINST.exe /u C:WINDOWSsystem32DRVSTOREnv4_go_4E957618D6410393172A61A58B2A4993089FE175nv4_go.inf
Пакет обеспечения совместимости для выпуска 2007 системы Microsoft Office—>MsiExec.exe /X{90120000-0020-0419-0000-0000000FF1CE}
Удалить Winamp—>»C:Program FilesWinampunins000.exe»

======Hosts File======

127.0.0.1 localhost

127.0.0.1 mpa.one.microsoft.com

======Security center information======

AV: Kaspersky Internet Security
FW: Kaspersky Internet Security
AS: Spy Emergency
AS: Kaspersky Internet Security

======System event log======

Computer Name: MICROSOF-D3DE34
Event Code: 6006
Message: Служба журнала событий остановлена.

Record Number: 6187
Source Name: EventLog
Time Written: 20091128143322.000000+300
Event Type: информация
User:

Computer Name: MICROSOF-D3DE34
Event Code: 7036
Message: Служба «Диспетчер подключений удаленного доступа» перешла в состояние Остановлена.

Record Number: 6186
Source Name: Service Control Manager
Time Written: 20091128143321.000000+300
Event Type: информация
User:

Computer Name: MICROSOF-D3DE34
Event Code: 7023
Message: Служба «Обозреватель компьютеров» завершена из-за ошибки
Возврат из операции произошел из-за превышения времени ожидания.

Record Number: 6185
Source Name: Service Control Manager
Time Written: 20091128133813.000000+300
Event Type: ошибка
User:

Computer Name: MICROSOF-D3DE34
Event Code: 7036
Message: Служба «Обозреватель компьютеров» перешла в состояние Остановлена.

Record Number: 6184
Source Name: Service Control Manager
Time Written: 20091128133813.000000+300
Event Type: информация
User:

Computer Name: MICROSOF-D3DE34
Event Code: 7036
Message: Служба «Служба COM записи компакт-дисков IMAPI» перешла в состояние Остановлена.

Record Number: 6183
Source Name: Service Control Manager
Time Written: 20091128133426.000000+300
Event Type: информация
User:

=====Application event log=====

Computer Name: MICROSOF-D3DE34
Event Code: 11707
Message: Продукт: Borderlands — Операция установки успешно завершена.

Record Number: 1010
Source Name: MsiInstaller
Time Written: 20091114224405.000000+300
Event Type: информация
User: MICROSOF-D3DE34Admin

Computer Name: MICROSOF-D3DE34
Event Code: 11708
Message: Продукт: Borderlands — Операция установки не выполнена.

Record Number: 1009
Source Name: MsiInstaller
Time Written: 20091114215642.000000+300
Event Type: информация
User: MICROSOF-D3DE34Admin

Computer Name: MICROSOF-D3DE34
Event Code: 1013
Message: Продукт: Borderlands — Запуск этой установки путем простого запуска пакета MSI невозможен. Необходимо запустить setup.exe.

Record Number: 1008
Source Name: MsiInstaller
Time Written: 20091114215642.000000+300
Event Type: ошибка
User: MICROSOF-D3DE34Admin

Computer Name: MICROSOF-D3DE34
Event Code: 11708
Message: Продукт: Borderlands — Операция установки не выполнена.

Record Number: 1007
Source Name: MsiInstaller
Time Written: 20091114215635.000000+300
Event Type: информация
User: MICROSOF-D3DE34Admin

Computer Name: MICROSOF-D3DE34
Event Code: 1013
Message: Продукт: Borderlands — Запуск этой установки путем простого запуска пакета MSI невозможен. Необходимо запустить setup.exe.

Record Number: 1006
Source Name: MsiInstaller
Time Written: 20091114215635.000000+300
Event Type: ошибка
User: MICROSOF-D3DE34Admin

======Environment variables======

«cdrom»=F:
«ComSpec»=%SystemRoot%system32cmd.exe
«FP_NO_HOST_CHECK»=NO
«NUMBER_OF_PROCESSORS»=2
«OS»=Windows_NT
«Path»=C:Program FilesPC Connectivity Solution;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 15 Stepping 13, GenuineIntel
«PROCESSOR_LEVEL»=6
«PROCESSOR_REVISION»=0f0d
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«windir»=%SystemRoot%

---

EOF

---

[maxcorp]

Logfile of random’s system information tool 1.06 (written by random/random)
Run by Admin at 2009-12-29 14:34:37
Microsoft Windows XP Professional Service Pack 2
System drive C: has 23 GB (48%) free of 48 GB
Total RAM: 2046 MB (79% free)

HijackThis download failed

======Scheduled tasks folder======

C:WINDOWStasksNorton Security Scan for Admin.job
C:WINDOWStasksSys Check.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx [2001-03-02 37808]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class — C:Program FilesKaspersky LabKaspersky Internet Security 2010ievkbd.dll [2009-10-20 68112]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class — C:Program FilesJavajre1.6.0_03binssv.dll [2007-09-25 501136]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class — C:Documents and SettingsAdminApplication DataMicrosoftInternet Explorerqipsearchbar.dll [2009-07-14 150768]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll [2009-10-20 268816]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2008-11-12 13672448]
«nwiz»=nwiz.exe /install []
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2007-11-06 16855552]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2005-05-03 69632]
«MbWzdFPAP-EXL600″=C:WINDOWSsystem32FPAP-EXL600PdtGuide.exe [2007-06-25 997888]
«BluetoothAuthenticationAgent»=bthprops.cpl,,BluetoothAuthenticationAgent []
«AVP»=C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe [2009-10-20 340456]
«KMCONFIG»=C:Program FilesKeyboard DriverStartAutorun.exe [2008-05-30 212992]
«TrojanScanner»=C:Program FilesTrojan RemoverTrjscan.exe [2009-10-17 1070984]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Punto Switcher»=C:Program FilesPunto Switcherps.exe [2007-01-25 201728]
«VistaIcon»=C:Program FilesVistaDriveIconVistaDrv.exe [2007-07-02 132608]
«RocketDock»=C:Program FilesRocketDockRocketDock.exe [2007-09-02 495616]
«PC Suite Tray»=C:Program FilesNokiaNokia PC Suite 7PCSuite.exe [2008-06-18 1122816]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2007-12-22 30208]

C:Documents and SettingsAdminГлавное менюПрограммыАвтозагрузка
BIRTHDAY! millennium.lnk — C:Program FilesBIRTHDAYbirthmil.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows]
«AppInit_DLLS»=»C:PROGRA~1KASPER~1KASPER~1mzvkbd3.dll,C:PROGRA~1KASPER~1KASPER~1kloehk.dll»

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyklogon]
C:WINDOWSsystem32klogon.dll [2009-10-20 219664]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2007-06-18 133632]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145
«NoSharedDocuments»=1
«NoThumbnailCache»=1
«NoSMConfigurePrograms»=1

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»

======List of files/folders created in the last 1 months======

2009-12-29 14:33:55 —-D—- C:Program Filestrend micro
2009-12-29 14:33:54 —-D—- C:rsit
2009-12-29 13:45:25 —-D—- C:Documents and SettingsAll UsersApplication DataNETGATE
2009-12-29 13:45:23 —-D—- C:Program FilesNETGATE
2009-12-29 13:11:07 —-A—- C:WINDOWSOEWABLog.txt
2009-12-27 23:52:47 —-D—- C:Documents and SettingsAll UsersApplication DataTEMP
2009-12-27 23:49:44 —-A—- C:WINDOWSsystem32ztvunrar36.dll
2009-12-27 23:49:44 —-A—- C:WINDOWSsystem32ztvunace26.dll
2009-12-27 23:49:44 —-A—- C:WINDOWSsystem32ztvcabinet.dll
2009-12-27 23:49:44 —-A—- C:WINDOWSsystem32UNRAR3.dll
2009-12-27 23:49:44 —-A—- C:WINDOWSsystem32unacev2.dll
2009-12-27 23:49:43 —-D—- C:Program FilesTrojan Remover
2009-12-27 23:49:43 —-D—- C:Documents and SettingsAll UsersApplication DataSimply Super Software
2009-12-27 23:49:43 —-D—- C:Documents and SettingsAdminApplication DataSimply Super Software
2009-12-27 23:18:22 —-RA—- C:WINDOWSsystem32tmpA.tmp
2009-12-27 23:18:12 —-RA—- C:WINDOWSsystem32tmp9.tmp
2009-12-27 23:18:12 —-RA—- C:WINDOWSsystem32tmp8.tmp
2009-12-27 22:35:19 —-D—- C:Documents and SettingsAdminApplication DataMalwarebytes
2009-12-27 22:35:14 —-D—- C:Program FilesMalwarebytes’ Anti-Malware
2009-12-27 22:35:14 —-D—- C:Documents and SettingsAll UsersApplication DataMalwarebytes
2009-12-27 22:33:59 —-SHD—- C:WINDOWSCSC
2009-12-27 22:31:01 —-D—- C:WINDOWSpss
2009-12-25 18:36:47 —-D—- C:Program FilesCommon FilesSymantec Shared
2009-12-24 22:46:25 —-D—- C:Program FilesNorton Security Scan
2009-12-24 22:46:25 —-D—- C:Documents and SettingsAll UsersApplication DataNorton
2009-12-24 22:46:23 —-D—- C:Program FilesNortonInstaller
2009-12-24 22:46:23 —-D—- C:Documents and SettingsAll UsersApplication DataNortonInstaller
2009-12-21 21:48:08 —-A—- C:WINDOWSdirsaver.ini
2009-12-17 01:12:45 —-A—- C:WINDOWSIsUn0419.exe
2009-12-02 20:35:43 —-D—- C:Program FilesKaspersky Lab
2009-12-02 20:34:47 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab Setup Files
2009-12-01 19:05:30 —-D—- C:Program FilesWinRAR
2009-12-01 18:58:55 —-N—- C:WINDOWSsystem32pxsfs.dll
2009-12-01 18:58:55 —-N—- C:WINDOWSsystem32pxinsa64.exe
2009-12-01 18:58:55 —-N—- C:WINDOWSsystem32pxcpya64.exe
2009-12-01 18:58:55 —-N—- C:WINDOWSsystem32pxafs.dll
2009-12-01 18:54:13 —-N—- C:WINDOWSsystem32vxblock.dll
2009-12-01 18:54:13 —-N—- C:WINDOWSsystem32pxwave.dll
2009-12-01 18:54:13 —-N—- C:WINDOWSsystem32pxmas.dll
2009-12-01 18:54:13 —-N—- C:WINDOWSsystem32pxhpinst.exe
2009-12-01 18:54:13 —-N—- C:WINDOWSsystem32pxdrv.dll
2009-12-01 02:31:58 —-HDC—- C:WINDOWS$NtUninstallWudf01005$
2009-12-01 02:19:20 —-A—- C:WINDOWSsystem32wshirda.dll
2009-12-01 02:19:19 —-A—- C:WINDOWSsystem32irmon.dll
2009-12-01 02:19:19 —-A—- C:WINDOWSsystem32irftp.exe
2009-12-01 01:57:24 —-D—- C:Documents and SettingsAdminApplication DataPC Suite
2009-12-01 01:57:23 —-D—- C:Documents and SettingsAll UsersApplication DataPC Suite
2009-12-01 01:57:23 —-D—- C:Documents and SettingsAdminApplication DataNokia
2009-12-01 01:55:57 —-D—- C:Program FilesCommon FilesPCSuite
2009-12-01 01:55:56 —-D—- C:Program FilesCommon FilesNokia
2009-12-01 01:55:37 —-D—- C:Program FilesPC Connectivity Solution
2009-12-01 01:55:24 —-A—- C:WINDOWSsystem32nmwcdcls.dll
2009-12-01 01:55:23 —-D—- C:Program FilesNokia
2009-12-01 01:54:51 —-D—- C:Documents and SettingsAll UsersApplication DataInstallations
2009-12-01 01:22:27 —-D—- C:Documents and SettingsAdminApplication DataAuslogics
2009-12-01 01:20:14 —-D—- C:Program FilesAuslogics
2009-12-01 00:43:15 —-D—- C:WINDOWSMinidump
2009-12-01 00:35:37 —-A—- C:WINDOWSntbtlog.txt
2009-12-01 00:33:20 —-D—- C:Program FilesKaspersky Anti-Virus 7.0
2009-12-01 00:33:13 —-D—- C:Program FilesKaspersky Internet Security 7.0
2009-12-01 00:23:15 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab
2009-12-01 00:08:34 —-D—- C:Documents and SettingsAdminApplication DataOpera
2009-12-01 00:00:14 —-D—- C:Program FilesLight Alloy
2009-11-30 23:57:33 —-D—- C:Program FilesJet Radio
2009-11-30 23:57:01 —-A—- C:WINDOWSbmuninst.exe
2009-11-30 23:57:00 —-D—- C:Program FilesBIRTHDAY
2009-11-30 23:56:41 —-D—- C:Program FilesQIP
2009-11-30 23:51:50 —-D—- C:Documents and SettingsAdminApplication DataSkype
2009-11-30 23:42:47 —-D—- C:Program FilesTVBrowserLITE
2009-11-30 23:42:20 —-D—- C:Program FilesRocketDock

======List of files/folders modified in the last 1 months======

2009-12-29 14:33:55 —-D—- C:Program Files
2009-12-29 14:33:30 —-D—- C:WINDOWSTemp
2009-12-29 14:29:59 —-A—- C:WINDOWSSchedLgU.Txt
2009-12-29 14:29:57 —-D—- C:WINDOWSsystem32CatRoot2
2009-12-29 14:08:15 —-SHD—- C:RECYCLER
2009-12-29 14:00:39 —-D—- C:WINDOWSsystem32
2009-12-29 13:45:44 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2009-12-29 13:45:33 —-D—- C:WINDOWSsystem32drivers
2009-12-29 13:11:23 —-SHD—- C:WINDOWSInstaller
2009-12-29 13:11:07 —-D—- C:WINDOWS
2009-12-29 13:10:57 —-D—- C:Documents and Settings
2009-12-29 13:08:43 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-12-27 23:47:32 —-RSH—- C:boot.ini
2009-12-27 23:47:32 —-A—- C:WINDOWSwin.ini
2009-12-27 23:47:32 —-A—- C:WINDOWSsystem.ini
2009-12-27 23:18:12 —-A—- C:WINDOWSsystem32wrap_oal.dll
2009-12-27 23:18:12 —-A—- C:WINDOWSsystem32OpenAL32.dll
2009-12-27 17:55:39 —-SD—- C:WINDOWSTasks
2009-12-25 18:36:47 —-D—- C:Program FilesCommon Files
2009-12-24 22:46:25 —-D—- C:Documents and SettingsAll UsersApplication DataSymantec
2009-12-23 23:18:28 —-D—- C:WINDOWSsystem32Adobe
2009-12-23 01:21:29 —-A—- C:WINDOWSModemLog_HDAUDIO Soft Data Fax Modem with SmartCP.txt
2009-12-21 21:45:38 —-D—- C:Documents and SettingsAdminApplication DataReal
2009-12-17 01:19:51 —-D—- C:WINDOWSsystem32CatRoot
2009-12-13 21:09:49 —-HD—- C:WINDOWSinf
2009-12-06 20:04:56 —-D—- C:Temp
2009-12-03 22:19:25 —-D—- C:Program FilesAlawar.ru
2009-12-01 19:10:28 —-D—- C:WINDOWSsystem32LogFiles
2009-12-01 19:06:18 —-D—- C:Documents and SettingsAdminApplication DataWinRAR
2009-12-01 19:01:27 —-D—- C:Program FilesWinamp
2009-12-01 02:25:29 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-12-01 02:21:05 —-D—- C:WINDOWSsecurity
2009-12-01 01:55:45 —-D—- C:Program FilesDIFX
2009-12-01 01:55:44 —-DC—- C:WINDOWSsystem32DRVSTORE
2009-12-01 01:23:55 —-D—- C:WINDOWSDebug
2009-12-01 00:25:25 —-SD—- C:Documents and SettingsAdminApplication DataMicrosoft
2009-12-01 00:12:27 —-D—- C:Program FilesMozilla Firefox
2009-12-01 00:03:59 —-D—- C:Program FilesESET
2009-11-30 21:48:50 —-D—- C:Program FilesCommon FilesAcronis

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2007-12-22 40448]
R1 kl1;Kl1; ??C:WINDOWSsystem32driverskl1.sys []
R1 KLIF;Kaspersky Lab Driver; C:WINDOWSsystem32DRIVERSklif.sys [2009-12-02 315408]
R1 SpyEmrg;Spy Emergency Driver; C:WINDOWSSystem32Driversspyemrg.sys [2009-09-17 12344]
R1 VD_FileDisk;VD_FileDisk; C:WINDOWSsystem32driversVD_FileDisk.sys [2006-07-23 15872]
R1 WmiAcpi;Интерфейс управления для ACPI Microsoft Windows; C:WINDOWSsystem32DRIVERSwmiacpi.sys [2007-12-22 8832]
R2 mdmxsdk;mdmxsdk; C:WINDOWSsystem32DRIVERSmdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:WINDOWSsystem32DRIVERSrimmptsk.sys [2007-05-17 39936]
R2 rimsptsk;rimsptsk; C:WINDOWSsystem32DRIVERSrimsptsk.sys [2007-05-17 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:WINDOWSsystem32DRIVERSrixdptsk.sys [2007-05-17 37376]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:WINDOWSsystem32DRIVERSb57xp32.sys [2007-10-22 161792]
R3 CmBatt;Драйвер батареи с ACPI-управлением (Майкрософт); C:WINDOWSsystem32DRIVERSCmBatt.sys [2007-12-22 14080]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2005-12-26 138752]
R3 hidusb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2004-08-18 9600]
R3 HSF_DPV;HSF_DPV; C:WINDOWSsystem32DRIVERSHSF_DPV.sys [2006-12-22 988800]
R3 HSFHWAZL;HSFHWAZL; C:WINDOWSsystem32DRIVERSHSFHWAZL.sys [2006-12-22 209664]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2007-11-14 4625408]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:WINDOWSsystem32DRIVERSklim5.sys [2009-09-14 32272]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:WINDOWSsystem32DRIVERSklmouflt.sys [2009-10-02 19472]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2004-08-18 12160]
R3 NETw4x32;Драйвер адаптера Intel(R) Wireless WiFi Link для Windows XP 32 Bit; C:WINDOWSsystem32DRIVERSNETw4x32.sys [2008-03-13 2530176]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2008-11-12 6188320]
R3 sdbus;sdbus; C:WINDOWSsystem32DRIVERSsdbus.sys [2007-12-22 78720]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-18 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2007-12-22 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2007-12-22 59392]
R3 usbstor;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-18 26496]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2007-12-22 20608]
R3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2007-12-22 121856]
R3 winachsf;winachsf; C:WINDOWSsystem32DRIVERSHSF_CNXT.sys [2006-12-22 730112]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2007-12-21 14848]
S3 Arp1394;Протокол клиента 1394 ARP; C:WINDOWSsystem32DRIVERSarp1394.sys [2007-12-22 60800]
S3 BthEnum;Драйвер блока запроса Bluetooth; C:WINDOWSsystem32DRIVERSBthEnum.sys [2007-12-22 17024]
S3 BTHMODEM;Драйвер для устройства связи по последовательному каналу Bluetooth; C:WINDOWSsystem32DRIVERSbthmodem.sys [2007-12-21 38016]
S3 BthPan;Bluetooth Device (Personal Area Network); C:WINDOWSsystem32DRIVERSbthpan.sys [2007-12-22 100992]
S3 BTHPORT;Драйвер порта Bluetooth; C:WINDOWSSystem32DriversBTHport.sys [2007-12-22 274688]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WINDOWSSystem32DriversBTHUSB.sys [2007-12-22 18944]
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2007-12-22 17024]
S3 KMWDFilter;KMWDFilter; ??C:WINDOWSSystem32DriversKMWDFilter.SYS []
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2007-12-21 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2007-12-22 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2007-12-22 10880]
S3 NIC1394;Сетевой драйвер 1394; C:WINDOWSsystem32DRIVERSnic1394.sys [2007-12-22 61824]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:WINDOWSsystem32DRIVERSpccsmcfd.sys [2007-09-17 21632]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:WINDOWSsystem32DRIVERSrfcomm.sys [2007-12-22 59648]
S3 sffdisk;Драйвер класса SFF Storage; C:WINDOWSsystem32DRIVERSsffdisk.sys [2007-12-22 12032]
S3 sffp_sd;Драйвер протокола SFF Storage для SDBus; C:WINDOWSsystem32DRIVERSsffp_sd.sys [2007-12-22 11008]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2007-12-22 11136]
S3 SpyEmrgAccess;Spy Emergency OnAccess Driver; C:WINDOWSSystem32Driversspyemrg_access.sys [2009-09-17 18232]
S3 SpyEmrgGuard;Spy Emergency Real-Time Shield Driver; C:WINDOWSSystem32Driversspyemrg_guard.sys [2009-09-17 14392]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2007-12-22 15360]
S3 WpdUsb;WpdUsb; C:WINDOWSsystem32DRIVERSwpdusb.sys [2007-06-18 38528]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2007-12-22 19328]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-15 82688]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []
S4 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2004-08-18 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVP;Kaspersky Internet Security; C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe [2009-10-20 340456]
R2 BthServ;Bluetooth Support Service; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:Program FilesKeyboard DriverKMWDSrv.exe [2008-06-23 208896]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-20 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2008-11-12 163908]
R2 PDAgent;PDAgent; C:Program FilesRaxcoPerfectDiskPDAgent.exe [2007-11-06 414984]
R2 PnkBstrA;PnkBstrA; C:WINDOWSsystem32PnkBstrA.exe [2009-09-23 75064]
R2 UTSCSI;CLCV0; C:WINDOWSsystem32UTSCSI.EXE [2009-09-01 45056]
R2 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
R3 PDEngine;PDEngine; C:Program FilesRaxcoPerfectDiskPDEngine.exe [2007-11-06 734472]
R3 ServiceLayer;ServiceLayer; C:Program FilesPC Connectivity SolutionServiceLayer.exe [2008-05-30 572416]
S2 SpyEmrgSrv;Spy Emergency Engine Service; C:Program FilesNETGATESpy EmergencySpyEmergencySrv.exe [2009-09-17 1817144]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2007-10-24 70144]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:Program FilesWindows Media Playerwmpnetwk.exe [2006-10-18 913408]

---

EOF

---

[cman]

Kaspersky Internet Security 2010
Kaspersky Internet Security 2010
Spy Emergency
Trojan Remover 6.8.1

Где гарантия, что нет конфликтов ПО?

[Admin]

Здравствуйте, добро пожаловать на Spyware-ru форум.

Необходима дополнительная проверка.
Скачайте программу Combofix. Закройте все открытые окна и запустите эту программу.
После выполнения будет создан лог файл, пожалуйста вставьте его в ваш ответ.

Примечание: перед использованием Combofix обязательно установите Recovery console. Как это сделать будет описано на странице, ссылку на которую я привёл выше.

[Автор]

Сообщения