- This topic has 7 ответов, 2 участника, and was last updated 14 years, 10 months назад by
.
-
Сообщения
-
Что может быть? При включении компа- «Загрузка личных параметров» и сразу же «Завершение сеанса». Уже второй день. Запустить можно раза с десятого или в безопасном режиме.
Здравствуйте.
Выглядит подобно ситуации, когда не грузится файл userinit.exe.
Возможно компьютер заражён трояном, необходимо выполнить проверку.
Скачайте сканер RSIT кликнув по этой ссылке и сохраните файл на вашем рабочем столе.* Дважды кликните по скачанному файлу.
* Если у вас есть файрвал (firewall) и он покажет, что программа RSIT пытается выйти в Интернет, то разрешите ей.
* Кликните по кнопке Continue.
* Когда программа закончит работу, будут показаны два лога (log.txt и info.txt).Вставьте оба RSIT лога (их содержимое) в ваш ответ. Каждый лог в отдельное сообщение.
У меня почему-то выдало только один лог.
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Admin at 2010-01-27 22:14:33
Microsoft Windows XP Professional Service Pack 2
System drive C: has 16 GB (43%) free of 38 GB
Total RAM: 1279 MB (50% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:15:10, on 27.01.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
C:Program FilesAlwil SoftwareAvast4ashServ.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSexplorer.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:WINDOWSSOUNDMAN.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesKeyboard DriverStartAutorun.exe
C:Program FilesKeyboard DriverKMConfig.exe
C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe
C:WINDOWSsystem32ctfmon.exe
C:PROGRA~1skypePhoneSkype.exe
C:Program FilesSpybot — Search & DestroyTeaTimer.exe
C:WINDOWSCommonBinWinCinemaMgr.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesCommon FilesLogishrdLQCVFXCOCIManager.exe
C:Program FilesKeyboard DriverKMProcess.exe
C:Program FilesBonjourmDNSResponder.exe
C:WINDOWSsystem32CTsvcCDA.exe
C:Program FilesCreativeShared FilesCTDevSrv.exe
C:Program FilesNeroNero 7InCDInCDsrv.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesKeyboard DriverKMWDSrv.exe
C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
C:WINDOWSsystem32nvsvc32.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32uphclean.exe
C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
C:Program FilesOpera AC 3.5.1opera.exe
C:Program FilesskypePlugin ManagerskypePM.exe
C:Documents and SettingsAdmin.USER-ECEEA47CDBРабочий столRSIT.exe
C:Program Filestrend microAdmin.exeR1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSPCHealthHelpCtrSystempanelsblank.htm
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
R3 — URLSearchHook: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
R3 — URLSearchHook: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
F2 — REG:system.ini: Shell=explorer.exe rundll32.exe aqlb.hjo lhoweid
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
O2 — BHO: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O2 — BHO: BitComet ClickCapture — {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll
O2 — BHO: Spybot-S&D IE Protection — {53707962-6F74-2D53-2644-206D7942484F} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll
O2 — BHO: Google Dictionary Compression sdch — {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O2 — BHO: Ask Toolbar BHO — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: kikin Plugin — {E601996F-E400-41CA-804B-CD6373A7EEE2} — C:Program Fileskikinie_kikin.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 — BHO: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O3 — Toolbar: PandoraTV Toolbar — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O3 — Toolbar: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [BigDog305] C:WINDOWSVM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 — HKLM..Run: [avast!] «C:Program FilesAlwil SoftwareAvast4ashDisp.exe»
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [KMCONFIG] C:Program FilesKeyboard DriverStartAutorun.exe KMConfig.exe
O4 — HKLM..Run: [LogitechQuickCamRibbon] «C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe» /hide
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [BitComet] «C:Program FilesBitCometBitComet.exe» /tray
O4 — HKCU..Run: [Skype] «C:PROGRA~1skypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot — Search & DestroyTeaTimer.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [LinkDel] linkdel.cmd (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — S-1-5-18 Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘SYSTEM’)
O4 — .DEFAULT Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘Default user’)
O4 — Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe
O4 — Global Startup: InterVideo WinCinema Manager.lnk = C:WINDOWSCommonBinWinCinemaMgr.exe
O8 — Extra context menu item: &Winamp Search — C:Documents and SettingsAll Users.WINDOWSApplication DataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
O8 — Extra context menu item: &З&агрузить &с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 — Extra context menu item: &З&агрузить все видео файлы с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 — Extra context menu item: &З&агрузить все с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O9 — Extra button: (no name) — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra ‘Tools’ menuitem: My kikin — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: BitComet — {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} — res://C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll/206 (file missing)
O9 — Extra button: (no name) — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra ‘Tools’ menuitem: Spybot — Search & Destroy Configuration — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O10 — Unknown file in Winsock LSP: c:windowssystem32nwprovau.dll
O16 — DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) — http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O18 — Filter: x-sdch — {B1759355-3EEC-4C1E-B0F1-B719FE26E377} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 — Service: Bonjour Service — Apple Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: Creative Service for CDROM Access — Creative Technology Ltd — C:WINDOWSsystem32CTsvcCDA.exe
O23 — Service: CT Device Query service (CTDevice_Srv) — Creative Technology Ltd — C:Program FilesCreativeShared FilesCTDevSrv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: InCD Helper (InCDsrv) — Nero AG — C:Program FilesNeroNero 7InCDInCDsrv.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: Keyboard And Mouse Communication Service (KMWDSERVICE) — UASSOFT.COM — C:Program FilesKeyboard DriverKMWDSrv.exe
O23 — Service: Process Monitor (LVPrcSrv) — Logitech Inc. — C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Pml Driver HPZ12 — HP — C:WINDOWSsystem32HPZipm12.exe
O23 — Service: SageTV — Realtek Semiconductor Corporation — (no file)
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 12226 bytes======Scheduled tasks folder======
C:WINDOWStasksMicrosoft_Hardware_Launch_IPoint_exe.job
C:WINDOWStasksScheduled Update for Ask Toolbar.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll [2008-08-11 656696][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection — C:PROGRA~1Spybot — Search & DestroySDHelper.dll [2009-01-26 1879896][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll [2009-09-23 762864][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll [2009-04-27 470512][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-03-09 35840][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E601996F-E400-41CA-804B-CD6373A7EEE2}]
kikin Plugin — C:Program Fileskikinie_kikin.dll [2009-11-06 642752][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-11-13 73728][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{ecdee021-0d17-467f-a1ff-c7a115230949}]
free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]
{D4027C7F-154A-4066-A1AD-4243D8127440} — PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]
{ecdee021-0d17-467f-a1ff-c7a115230949} — free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} — IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2009-11-13 7700480]
«nwiz»=nwiz.exe /install []
«BigDog305″=C:WINDOWSVM305_STI.EXE [2005-11-03 61440]
«avast!»=C:Program FilesAlwil SoftwareAvast4ashDisp.exe [2009-11-25 81000]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2007-04-16 577536]
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]
«KMCONFIG»=C:Program FilesKeyboard DriverStartAutorun.exe [2008-05-30 212992]
«LogitechQuickCamRibbon»=C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe [2009-10-14 2793304][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]
«BitComet»=C:Program FilesBitCometBitComet.exe [2008-12-03 2514744]
«Skype»=C:PROGRA~1skypePhoneSkype.exe [2008-11-07 21633320]
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe [2009-03-05 2260480][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-02-27 35696][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCTZDetec.exe]
C:Program FilesCreativeCreative Media LiteCTZDetec.exe [2009-11-13 368640][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHP Software Update]
C:Program FilesHPHP Software UpdateHPWuSchd2.exe [2004-02-12 49152][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregInCD]
C:Program FilesNeroNero 7InCDInCDldr.exe [2006-06-05 27136][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregIntelliPoint]
C:Program FilesMicrosoft IntelliPointipoint.exe [2009-01-07 1468296][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
C:Program FilesCommon FilesAheadLibNeroCheck.exe [2009-11-13 155648][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSoftAuto.exe]
C:Program FilesCreativeSoftware Update 3SoftAuto.exe [2009-11-13 405504][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSunJavaUpdateSched]
C:Program FilesJavajre6binjusched.exe [2009-03-09 148888][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregswg]
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-02-23 39408]C:Documents and SettingsAll Users.WINDOWSГлавное менюПрограммыАвтозагрузка
InterVideo WinCinema Manager.lnk — C:WINDOWSCommonBinWinCinemaMgr.exeC:Documents and SettingsAdmin.USER-ECEEA47CDBГлавное менюПрограммыАвтозагрузка
Logitech . Регистрация Продукта.lnk — C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm.sys]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoResolveTrack»=
«NoResolveSearch»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesskypePhoneSkype.exe»=»C:Program FilesskypePhoneSkype.exe:*:Enabled:Skype»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5c569344-744a-11dd-b4fe-000129239d09}]
shellopencommand — rundll32.exe .desktop.dll,InstallM======List of files/folders created in the last 1 months======
2010-01-27 21:00:44 —-D—- C:Program Filestrend micro
2010-01-27 21:00:20 —-D—- C:rsit
2010-01-23 19:48:46 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataLeadertech
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32LVUI2.dll
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32lvcodec2.dll
2010-01-23 19:47:46 —-A—- C:WINDOWSsystem32LVUI2RC.dll
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvcoinst.ini
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvci12101110.dll
2010-01-23 19:45:11 —-D—- C:Program FilesCommon FilesLogiShrd
2010-01-23 19:45:09 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataLogiShrd
2010-01-23 19:45:06 —-D—- C:Program FilesLogitech
2010-01-23 19:11:44 —-A—- C:Program Filesccsetup227.exe
2010-01-23 17:36:51 —-A—- C:WINDOWSwininit.ini
2010-01-23 17:18:47 —-A—- C:WINDOWSsystem32mz2kJba.exe
2010-01-23 17:18:36 —-A—- C:WINDOWSsystem32gzzB9Wc.exe
2010-01-23 15:47:09 —-A—- C:WINDOWSsystem32NpT5qwO.exe
2010-01-23 15:46:56 —-A—- C:WINDOWSsystem32iRWCwgx.exe
2010-01-21 18:54:26 —-A—- C:WINDOWSsystem32j5n4huL.exe
2010-01-21 18:53:06 —-A—- C:WINDOWSsystem32ViU06H2.exe
2010-01-20 15:13:19 —-A—- C:WINDOWSsystem32o87k8qa.exe
2010-01-20 15:13:01 —-A—- C:WINDOWSsystem32EFJ0RVC.exe
2010-01-20 12:11:06 —-D—- C:Program FilesCommon Fileswm
2010-01-20 12:11:06 —-A—- C:Program FilesCommon Fileskeylog.txt
2010-01-20 12:11:04 —-A—- C:WINDOWSsystem32xu5fTf8.exe
2010-01-04 22:21:22 —-D—- C:Program FilesSpybot — Search & Destroy
2010-01-04 22:21:22 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataSpybot — Search & Destroy
2010-01-04 22:05:26 —-A—- C:Program Filesspybotsd162.exe
2010-01-01 18:43:07 —-A—- C:WINDOWSsystem32stu2.exe======List of files/folders modified in the last 1 months======
2010-01-27 21:31:59 —-D—- C:WINDOWSPrefetch
2010-01-27 21:29:48 —-D—- C:WINDOWSTemp
2010-01-27 21:29:42 —-D—- C:Program FilesBitComet
2010-01-27 21:29:17 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataSkype
2010-01-27 21:29:09 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataskypePM
2010-01-27 21:28:13 —-D—- C:WINDOWSsystem32drivers
2010-01-27 21:25:14 —-D—- C:WINDOWSsystem32CatRoot2
2010-01-27 21:25:09 —-AD—- C:WINDOWS
2010-01-27 21:23:14 —-A—- C:WINDOWSSchedLgU.Txt
2010-01-27 21:00:44 —-RD—- C:Program Files
2010-01-27 11:15:18 —-AD—- C:WINDOWSsystem32
2010-01-27 10:02:15 —-AHD—- C:WINDOWSinf
2010-01-27 10:00:06 —-SHD—- C:WINDOWSInstaller
2010-01-27 10:00:06 —-SHD—- C:Config.Msi
2010-01-25 17:31:43 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataMedia Player Classic
2010-01-24 13:04:17 —-D—- C:WINDOWSsystem32config
2010-01-23 19:48:14 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-01-23 19:48:09 —-D—- C:WINDOWStwain_32
2010-01-23 19:47:59 —-D—- C:WINDOWSsystem32ReinstallBackups
2010-01-23 19:47:46 —-DC—- C:WINDOWSsystem32DRVSTORE
2010-01-23 19:45:11 —-D—- C:Program FilesCommon Files
2010-01-20 12:09:51 —-A—- C:WINDOWSsystem32userinit.exe
2010-01-08 20:03:34 —-D—- C:WINDOWSsecurity
2010-01-08 20:03:34 —-D—- C:WINDOWSrepair
2010-01-08 20:03:34 —-D—- C:WINDOWSLogs
2010-01-08 20:03:34 —-D—- C:Program FilesWinamp Toolbar
2010-01-08 20:03:34 —-D—- C:Program Filesfree-downloads.net
2010-01-08 20:03:34 —-D—- C:Program FilesFirebird
2010-01-08 20:03:34 —-D—- C:CA_LIC
2010-01-08 20:03:33 —-D—- C:Program FilesWindows Media Player
2010-01-08 20:03:33 —-D—- C:Program FilesMicrosoft Office
2010-01-07 20:34:44 —-D—- C:WINDOWSWinSxS
2010-01-05 19:05:28 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataIObit
2010-01-04 18:35:41 —-A—- C:WINDOWSDjVuPro.INI
2009-12-28 19:15:33 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication Datadvdcss======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:WINDOWSsystem32driversaswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2009-11-25 48560]
R1 InCDPass;InCDPass; C:WINDOWSsystem32driversInCDPass.sys [2006-04-05 29568]
R1 incdrm;InCD Reader; C:WINDOWSsystem32driversInCDRm.sys [2006-04-05 33792]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2006-12-22 40448]
R1 SCDEmu;SCDEmu; C:WINDOWSsystem32driversSCDEmu.sys [2007-08-07 33052]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32DRIVERSaswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2009-09-15 94160]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2008-09-24 4122368]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2009-11-25 23120]
R3 FilterService;UVC Filter Service; C:WINDOWSsystem32DRIVERSlvuvcflt.sys [2009-10-07 23832]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:WINDOWSsystem32DRIVERSLVPr2Mon.sys [2009-10-07 25752]
R3 LVRS;Logitech RightSound Filter Driver; C:WINDOWSsystem32DRIVERSlvrs.sys [2009-10-07 266008]
R3 LVUVC;Logitech Webcam 200(UVC); C:WINDOWSsystem32DRIVERSlvuvc.sys [2009-10-07 6756632]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:WINDOWSsystem32DRIVERSpoint32.sys [2009-01-07 27784]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtnicxp.sys [2009-03-25 130432]
R3 usbaudio;Аудио драйвер USB (WDM); C:WINDOWSsystem32driversusbaudio.sys [2004-08-03 59264]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2006-10-23 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2006-10-23 59264]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2006-10-23 20608]
R4 InCDfs;InCD File System; C:WINDOWSsystem32driversInCDFs.sys [2006-04-05 102016]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-17 14848]
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-03 17024]
S3 DynCal;Dynamic Calibration Service; C:WINDOWSsystem32driversDyncal.sys [2006-04-22 8704]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:WINDOWSsystem32DRIVERSHPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:WINDOWSsystem32DRIVERSHPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:WINDOWSsystem32DRIVERSHPZius12.sys [2004-06-21 21744]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:WINDOWSsystem32DRIVERSk750bus.sys [2006-03-13 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSk750mdfl.sys [2006-03-13 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSk750mdm.sys [2006-03-13 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSk750mgmt.sys [2006-03-13 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSk750obex.sys [2006-03-13 79488]
S3 KMWDFilter;KMWDFilter; ??C:WINDOWSSystem32DriversKMWDFilter.SYS []
S3 lvpopflt;Logitech POP Suppression Filter; C:WINDOWSsystem32DRIVERSlvpopflt.sys [2009-10-07 114712]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-03 10880]
S3 nm;Драйвер сетевого монитора; C:WINDOWSsystem32DRIVERSNMnt.sys [2004-08-18 40320]
S3 pcouffin;VSO Software pcouffin; C:WINDOWSSystem32Driverspcouffin.sys [2008-12-23 47360]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:WINDOWSsystem32DRIVERSse44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse44mdm.sys [2006-11-30 97088]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:WINDOWSsystem32DRIVERSse59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:WINDOWSsystem32DRIVERSse59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:WINDOWSsystem32DRIVERSse59unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-03 15360]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2005-07-30 121856]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM); C:WINDOWSsystem32DRIVERSw300bus.sys [2006-03-13 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSw300mdfl.sys [2006-03-13 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSw300mdm.sys [2006-03-13 96352]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSw300mgmt.sys [2006-03-13 87824]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSw300obex.sys [2006-03-13 85696]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S3 ZSMC0305;VIMICRO USB PC Camera V; C:WINDOWSSystem32DriversusbVM305.sys [2005-11-03 390379]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast4ashServ.exe [2009-11-25 138680]
R2 Bonjour Service;Bonjour Service; C:Program FilesBonjourmDNSResponder.exe [2008-12-12 238888]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:WINDOWSsystem32CTsvcCDA.exe [1999-12-13 44032]
R2 CTDevice_Srv;CT Device Query service; C:Program FilesCreativeShared FilesCTDevSrv.exe [2007-04-02 61440]
R2 InCDsrv;InCD Helper; C:Program FilesNeroNero 7InCDInCDsrv.exe [2006-04-05 791040]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-03-09 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:Program FilesKeyboard DriverKMWDSrv.exe [2008-06-23 208896]
R2 LVPrcSrv;Process Monitor; C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe [2009-10-07 154136]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
R2 UPHClean;User Profile Hive Cleanup; C:WINDOWSsystem32uphclean.exe [2006-01-16 241725]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2009-11-25 352920]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2009-11-13 36864]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-06-21 182768]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2009-11-13 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2009-11-13 741376]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:WINDOWSsystem32HPZipm12.exe [2009-11-13 65536]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2009-11-13 122880]
EOF
Так и есть. Компьютер заражён несколькими троянами.
Запустите HijackThis, для этого кликните Пуск, Выполнить, введите
C:Program Filestrend microAdmin.exeи нажмите Enter.
Откроется главное меню программы HijackThis.
Кликните по кнопке Do a system scan only.
Далее отметьте галочкой (слева) следующие строки, если они присутствуют:F2 - REG:system.ini: Shell=explorer.exe rundll32.exe aqlb.hjo lhoweidЗакройте все запущенные программы (включая InternetExplorer) и окна Windows.
Кликните по кнопке Fix checked и подтвердите свои действия выбрав YES.
Перезагрузите компьютер.В своё следующее сообщение вставьте свежий RSIT лог.
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Admin at 2010-01-30 15:59:35
Microsoft Windows XP Professional Service Pack 2
System drive C: has 16 GB (42%) free of 38 GB
Total RAM: 1279 MB (51% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:00:19, on 30.01.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:WINDOWSSOUNDMAN.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesKeyboard DriverStartAutorun.exe
C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe
C:Program FilesAlwil SoftwareAvast5avastUI.exe
C:Program FilesKeyboard DriverKMConfig.exe
C:Program FilesBonjourmDNSResponder.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesBitCometBitComet.exe
C:PROGRA~1skypePhoneSkype.exe
C:Program FilesSpybot — Search & DestroyTeaTimer.exe
C:WINDOWSsystem32CTsvcCDA.exe
C:Program FilesCreativeShared FilesCTDevSrv.exe
C:Program FilesNeroNero 7InCDInCDsrv.exe
C:WINDOWSCommonBinWinCinemaMgr.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesKeyboard DriverKMWDSrv.exe
C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
C:Program FilesKeyboard DriverKMProcess.exe
C:Program FilesCommon FilesLogishrdLQCVFXCOCIManager.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32uphclean.exe
C:Program FilesskypePlugin ManagerskypePM.exe
C:WINDOWSsystem32wuauclt.exe
C:Documents and SettingsAdmin.USER-ECEEA47CDBРабочий столRSIT.exe
C:Program Filestrend microAdmin.exeR1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSPCHealthHelpCtrSystempanelsblank.htm
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
R3 — URLSearchHook: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
R3 — URLSearchHook: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
F2 — REG:system.ini: UserInit=userinit.exe
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
O2 — BHO: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O2 — BHO: BitComet ClickCapture — {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll
O2 — BHO: Spybot-S&D IE Protection — {53707962-6F74-2D53-2644-206D7942484F} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll
O2 — BHO: Google Dictionary Compression sdch — {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O2 — BHO: Ask Toolbar BHO — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: kikin Plugin — {E601996F-E400-41CA-804B-CD6373A7EEE2} — C:Program Fileskikinie_kikin.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 — BHO: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O3 — Toolbar: PandoraTV Toolbar — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O3 — Toolbar: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [BigDog305] C:WINDOWSVM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [KMCONFIG] C:Program FilesKeyboard DriverStartAutorun.exe KMConfig.exe
O4 — HKLM..Run: [LogitechQuickCamRibbon] «C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe» /hide
O4 — HKLM..Run: [avast5] «C:Program FilesAlwil SoftwareAvast5avastUI.exe» /nogui
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [BitComet] «C:Program FilesBitCometBitComet.exe» /tray
O4 — HKCU..Run: [Skype] «C:PROGRA~1skypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot — Search & DestroyTeaTimer.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [LinkDel] linkdel.cmd (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — S-1-5-18 Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘SYSTEM’)
O4 — .DEFAULT Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘Default user’)
O4 — Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe
O4 — Global Startup: InterVideo WinCinema Manager.lnk = C:WINDOWSCommonBinWinCinemaMgr.exe
O8 — Extra context menu item: &Winamp Search — C:Documents and SettingsAll Users.WINDOWSApplication DataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
O8 — Extra context menu item: &З&агрузить &с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 — Extra context menu item: &З&агрузить все видео файлы с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 — Extra context menu item: &З&агрузить все с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O9 — Extra button: (no name) — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra ‘Tools’ menuitem: My kikin — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: BitComet — {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} — res://C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll/206 (file missing)
O9 — Extra button: (no name) — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra ‘Tools’ menuitem: Spybot — Search & Destroy Configuration — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O10 — Unknown file in Winsock LSP: c:windowssystem32nwprovau.dll
O16 — DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) — http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O18 — Filter: x-sdch — {B1759355-3EEC-4C1E-B0F1-B719FE26E377} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: Bonjour Service — Apple Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: Creative Service for CDROM Access — Creative Technology Ltd — C:WINDOWSsystem32CTsvcCDA.exe
O23 — Service: CT Device Query service (CTDevice_Srv) — Creative Technology Ltd — C:Program FilesCreativeShared FilesCTDevSrv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: InCD Helper (InCDsrv) — Nero AG — C:Program FilesNeroNero 7InCDInCDsrv.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: Keyboard And Mouse Communication Service (KMWDSERVICE) — UASSOFT.COM — C:Program FilesKeyboard DriverKMWDSrv.exe
O23 — Service: Process Monitor (LVPrcSrv) — Logitech Inc. — C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Pml Driver HPZ12 — HP — C:WINDOWSsystem32HPZipm12.exe
O23 — Service: SageTV — Realtek Semiconductor Corporation — (no file)
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 11886 bytes======Scheduled tasks folder======
C:WINDOWStasksMicrosoft_Hardware_Launch_IPoint_exe.job
C:WINDOWStasksScheduled Update for Ask Toolbar.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll [2008-08-11 656696][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection — C:PROGRA~1Spybot — Search & DestroySDHelper.dll [2009-01-26 1879896][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll [2009-09-23 762864][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll [2009-04-27 470512][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-03-09 35840][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E601996F-E400-41CA-804B-CD6373A7EEE2}]
kikin Plugin — C:Program Fileskikinie_kikin.dll [2009-11-06 642752][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-11-13 73728][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{ecdee021-0d17-467f-a1ff-c7a115230949}]
free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]
{D4027C7F-154A-4066-A1AD-4243D8127440} — PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]
{ecdee021-0d17-467f-a1ff-c7a115230949} — free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} — IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2009-11-13 7700480]
«nwiz»=nwiz.exe /install []
«BigDog305″=C:WINDOWSVM305_STI.EXE [2005-11-03 61440]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2007-04-16 577536]
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]
«KMCONFIG»=C:Program FilesKeyboard DriverStartAutorun.exe [2008-05-30 212992]
«LogitechQuickCamRibbon»=C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe [2009-10-14 2793304]
«avast5″=C:Program FilesAlwil SoftwareAvast5avastUI.exe [2010-01-29 2757512][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]
«BitComet»=C:Program FilesBitCometBitComet.exe [2008-12-03 2514744]
«Skype»=C:PROGRA~1skypePhoneSkype.exe [2008-11-07 21633320]
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe [2009-03-05 2260480][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-02-27 35696][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCTZDetec.exe]
C:Program FilesCreativeCreative Media LiteCTZDetec.exe [2009-11-13 368640][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHP Software Update]
C:Program FilesHPHP Software UpdateHPWuSchd2.exe [2004-02-12 49152][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregInCD]
C:Program FilesNeroNero 7InCDInCDldr.exe [2006-06-05 27136][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregIntelliPoint]
C:Program FilesMicrosoft IntelliPointipoint.exe [2009-01-07 1468296][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
C:Program FilesCommon FilesAheadLibNeroCheck.exe [2009-11-13 155648][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSoftAuto.exe]
C:Program FilesCreativeSoftware Update 3SoftAuto.exe [2009-11-13 405504][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSunJavaUpdateSched]
C:Program FilesJavajre6binjusched.exe [2009-03-09 148888][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregswg]
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-02-23 39408]C:Documents and SettingsAll Users.WINDOWSГлавное менюПрограммыАвтозагрузка
InterVideo WinCinema Manager.lnk — C:WINDOWSCommonBinWinCinemaMgr.exeC:Documents and SettingsAdmin.USER-ECEEA47CDBГлавное менюПрограммыАвтозагрузка
Logitech . Регистрация Продукта.lnk — C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm.sys]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoResolveTrack»=
«NoResolveSearch»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesskypePhoneSkype.exe»=»C:Program FilesskypePhoneSkype.exe:*:Enabled:Skype»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5c569344-744a-11dd-b4fe-000129239d09}]
shellopencommand — rundll32.exe .desktop.dll,InstallM======List of files/folders created in the last 1 months======
2010-01-28 18:58:06 —-A—- C:WINDOWSsystem32aswBoot.exe
2010-01-28 18:52:45 —-A—- C:Program Filessetup_av_free_rus.exe
2010-01-28 18:31:20 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataAlwil Software
2010-01-27 21:00:44 —-D—- C:Program Filestrend micro
2010-01-27 21:00:20 —-D—- C:rsit
2010-01-23 19:48:46 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataLeadertech
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32LVUI2.dll
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32lvcodec2.dll
2010-01-23 19:47:46 —-A—- C:WINDOWSsystem32LVUI2RC.dll
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvcoinst.ini
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvci12101110.dll
2010-01-23 19:45:11 —-D—- C:Program FilesCommon FilesLogiShrd
2010-01-23 19:45:09 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataLogiShrd
2010-01-23 19:45:06 —-D—- C:Program FilesLogitech
2010-01-23 19:11:44 —-A—- C:Program Filesccsetup227.exe
2010-01-23 17:36:51 —-A—- C:WINDOWSwininit.ini
2010-01-23 17:18:47 —-A—- C:WINDOWSsystem32mz2kJba.exe
2010-01-21 18:54:26 —-A—- C:WINDOWSsystem32j5n4huL.exe
2010-01-21 18:53:06 —-A—- C:WINDOWSsystem32ViU06H2.exe
2010-01-20 15:13:19 —-A—- C:WINDOWSsystem32o87k8qa.exe
2010-01-20 15:13:01 —-A—- C:WINDOWSsystem32EFJ0RVC.exe
2010-01-20 12:11:06 —-D—- C:Program FilesCommon Fileswm
2010-01-20 12:11:06 —-A—- C:Program FilesCommon Fileskeylog.txt
2010-01-04 22:21:22 —-D—- C:Program FilesSpybot — Search & Destroy
2010-01-04 22:21:22 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataSpybot — Search & Destroy
2010-01-04 22:05:26 —-A—- C:Program Filesspybotsd162.exe
2010-01-01 18:43:07 —-A—- C:WINDOWSsystem32stu2.exe======List of files/folders modified in the last 1 months======
2010-01-30 15:56:22 —-D—- C:WINDOWSTemp
2010-01-30 15:55:29 —-D—- C:WINDOWSsystem32drivers
2010-01-30 15:53:21 —-A—- C:WINDOWSSchedLgU.Txt
2010-01-30 15:53:20 —-D—- C:WINDOWSsystem32CatRoot2
2010-01-30 15:52:22 —-D—- C:Program FilesBitComet
2010-01-30 15:48:04 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataSkype
2010-01-30 14:48:25 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataskypePM
2010-01-30 14:47:57 —-AD—- C:WINDOWS
2010-01-29 22:12:56 —-D—- C:WINDOWSPrefetch
2010-01-29 20:22:03 —-AD—- C:WINDOWSsystem32
2010-01-28 18:58:36 —-SHD—- C:WINDOWSInstaller
2010-01-28 18:58:36 —-SHD—- C:Config.Msi
2010-01-28 18:58:35 —-D—- C:WINDOWSWinSxS
2010-01-28 18:52:45 —-RD—- C:Program Files
2010-01-28 18:43:19 —-D—- C:Program FilesAlwil Software
2010-01-27 10:02:15 —-AHD—- C:WINDOWSinf
2010-01-25 17:31:43 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataMedia Player Classic
2010-01-24 13:04:17 —-D—- C:WINDOWSsystem32config
2010-01-23 19:48:14 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-01-23 19:48:09 —-D—- C:WINDOWStwain_32
2010-01-23 19:47:59 —-D—- C:WINDOWSsystem32ReinstallBackups
2010-01-23 19:47:46 —-DC—- C:WINDOWSsystem32DRVSTORE
2010-01-23 19:45:11 —-D—- C:Program FilesCommon Files
2010-01-08 20:03:34 —-D—- C:WINDOWSsecurity
2010-01-08 20:03:34 —-D—- C:WINDOWSrepair
2010-01-08 20:03:34 —-D—- C:WINDOWSLogs
2010-01-08 20:03:34 —-D—- C:Program FilesWinamp Toolbar
2010-01-08 20:03:34 —-D—- C:Program Filesfree-downloads.net
2010-01-08 20:03:34 —-D—- C:Program FilesFirebird
2010-01-08 20:03:34 —-D—- C:CA_LIC
2010-01-08 20:03:33 —-D—- C:Program FilesWindows Media Player
2010-01-08 20:03:33 —-D—- C:Program FilesMicrosoft Office
2010-01-05 19:05:28 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataIObit
2010-01-04 18:35:41 —-A—- C:WINDOWSDjVuPro.INI======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2010-01-28 28240]
R1 aswSP;aswSP; C:WINDOWSsystem32driversaswSP.sys [2010-01-28 163280]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2010-01-28 46672]
R1 InCDPass;InCDPass; C:WINDOWSsystem32driversInCDPass.sys [2006-04-05 29568]
R1 incdrm;InCD Reader; C:WINDOWSsystem32driversInCDRm.sys [2006-04-05 33792]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2006-12-22 40448]
R1 SCDEmu;SCDEmu; C:WINDOWSsystem32driversSCDEmu.sys [2007-08-07 33052]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32driversaswFsBlk.sys [2010-01-28 19024]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2010-01-28 100432]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2008-09-24 4122368]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2010-01-28 23376]
R3 FilterService;UVC Filter Service; C:WINDOWSsystem32DRIVERSlvuvcflt.sys [2009-10-07 23832]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:WINDOWSsystem32DRIVERSLVPr2Mon.sys [2009-10-07 25752]
R3 LVRS;Logitech RightSound Filter Driver; C:WINDOWSsystem32DRIVERSlvrs.sys [2009-10-07 266008]
R3 LVUVC;Logitech Webcam 200(UVC); C:WINDOWSsystem32DRIVERSlvuvc.sys [2009-10-07 6756632]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:WINDOWSsystem32DRIVERSpoint32.sys [2009-01-07 27784]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtnicxp.sys [2009-03-25 130432]
R3 usbaudio;Аудио драйвер USB (WDM); C:WINDOWSsystem32driversusbaudio.sys [2004-08-03 59264]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2006-10-23 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2006-10-23 59264]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2006-10-23 20608]
R4 InCDfs;InCD File System; C:WINDOWSsystem32driversInCDFs.sys [2006-04-05 102016]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-17 14848]
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-03 17024]
S3 DynCal;Dynamic Calibration Service; C:WINDOWSsystem32driversDyncal.sys [2006-04-22 8704]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:WINDOWSsystem32DRIVERSHPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:WINDOWSsystem32DRIVERSHPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:WINDOWSsystem32DRIVERSHPZius12.sys [2004-06-21 21744]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:WINDOWSsystem32DRIVERSk750bus.sys [2006-03-13 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSk750mdfl.sys [2006-03-13 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSk750mdm.sys [2006-03-13 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSk750mgmt.sys [2006-03-13 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSk750obex.sys [2006-03-13 79488]
S3 KMWDFilter;KMWDFilter; ??C:WINDOWSSystem32DriversKMWDFilter.SYS []
S3 lvpopflt;Logitech POP Suppression Filter; C:WINDOWSsystem32DRIVERSlvpopflt.sys [2009-10-07 114712]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-03 10880]
S3 nm;Драйвер сетевого монитора; C:WINDOWSsystem32DRIVERSNMnt.sys [2004-08-18 40320]
S3 pcouffin;VSO Software pcouffin; C:WINDOWSSystem32Driverspcouffin.sys [2008-12-23 47360]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:WINDOWSsystem32DRIVERSse44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse44mdm.sys [2006-11-30 97088]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:WINDOWSsystem32DRIVERSse59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:WINDOWSsystem32DRIVERSse59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:WINDOWSsystem32DRIVERSse59unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-03 15360]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2005-07-30 121856]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM); C:WINDOWSsystem32DRIVERSw300bus.sys [2006-03-13 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSw300mdfl.sys [2006-03-13 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSw300mdm.sys [2006-03-13 96352]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSw300mgmt.sys [2006-03-13 87824]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSw300obex.sys [2006-03-13 85696]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S3 ZSMC0305;VIMICRO USB PC Camera V; C:WINDOWSSystem32DriversusbVM305.sys [2005-11-03 390379]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
R2 Bonjour Service;Bonjour Service; C:Program FilesBonjourmDNSResponder.exe [2008-12-12 238888]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:WINDOWSsystem32CTsvcCDA.exe [1999-12-13 44032]
R2 CTDevice_Srv;CT Device Query service; C:Program FilesCreativeShared FilesCTDevSrv.exe [2007-04-02 61440]
R2 InCDsrv;InCD Helper; C:Program FilesNeroNero 7InCDInCDsrv.exe [2006-04-05 791040]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-03-09 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:Program FilesKeyboard DriverKMWDSrv.exe [2008-06-23 208896]
R2 LVPrcSrv;Process Monitor; C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe [2009-10-07 154136]
R2 UPHClean;User Profile Hive Cleanup; C:WINDOWSsystem32uphclean.exe [2006-01-16 241725]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
S2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2009-11-13 36864]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-06-21 182768]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2009-11-13 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2009-11-13 741376]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:WINDOWSsystem32HPZipm12.exe [2009-11-13 65536]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2009-11-13 122880]
EOF
Запустите HijackThis.
Кликните по кнопке Do a system scan only.
Далее отметьте галочкой (слева) следующие строки, если они присутствуют:F2 - REG:system.ini: UserInit=userinit.exeЗакройте все запущенные программы (включая InternetExplorer) и окна Windows.
Кликните по кнопке Fix checked и подтвердите свои действия выбрав YES.
Перезагрузите компьютер.Скачайте OTM by OldTimer кликнув по этой ссылке.
Запустите OTM и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.:files
C:WINDOWSsystem32mz2kJba.exe
C:WINDOWSsystem32j5n4huL.exe
C:WINDOWSsystem32ViU06H2.exe
C:WINDOWSsystem32o87k8qa.exe
C:WINDOWSsystem32EFJ0RVC.exe
C:Program FilesCommon Fileskeylog.txt
C:WINDOWSsystem32stu2.exe
:Commands
[emptytemp]
[Reboot]Проверьте вставленный скрипт, если слева перед директивами появились пробелы, то удалите их, скрипт должен выглядеть так же как в сообщении. Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
По-завершении работы программы должен будет показан лог. Если лог не будет показан, то его можно найти в папке C:_OTMMovedFiles.Вставьте в ваше ответное сообщение содержимое этого лога. И приложите свежий RSIT лог.
All processes killed
========== FILES ==========
C:WINDOWSsystem32mz2kJba.exe moved successfully.
C:WINDOWSsystem32j5n4huL.exe moved successfully.
C:WINDOWSsystem32ViU06H2.exe moved successfully.
C:WINDOWSsystem32o87k8qa.exe moved successfully.
C:WINDOWSsystem32EFJ0RVC.exe moved successfully.
C:Program FilesCommon Fileskeylog.txt moved successfully.
C:WINDOWSsystem32stu2.exe moved successfully.
========== COMMANDS ==========[EMPTYTEMP]
User: Admin
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: Admin.USER-ECEEA47CDB
->Temp folder emptied: 23078183 bytes
->Temporary Internet Files folder emptied: 213746 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Apple Safari cache emptied: 17870671 bytes
->Opera cache emptied: 48856224 bytesUser: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: Administrator.USER-542F7927A5
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: ADMIN~1~USE
User: All Users
User: All Users.WINDOWS
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: Default User.WINDOWS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: Kate
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: LocalService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: LocalService.NT AUTHORITY.000
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytesUser: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: NetworkService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: NetworkService.NT AUTHORITY.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytesUser: User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Opera cache emptied: 0 bytes%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%System32 .tmp files removed: 0 bytes
%systemroot%System32dllcache .tmp files removed: 0 bytes
%systemroot%System32drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 125464 bytes
%systemroot%system32configsystemprofileLocal SettingsTemp folder emptied: 0 bytes
%systemroot%system32configsystemprofileLocal SettingsTemporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 8520553 bytesTotal Files Cleaned = 94,00 mb
OTM by OldTimer — Version 3.1.7.1 log created on 01312010_200536
Files moved on Reboot…
C:WINDOWStemp_avast5_Webshlock.txt moved successfully.Registry entries deleted on Reboot…
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Admin at 2010-01-31 20:19:07
Microsoft Windows XP Professional Service Pack 2
System drive C: has 16 GB (42%) free of 38 GB
Total RAM: 1279 MB (49% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:19:51, on 31.01.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:Program FilesBonjourmDNSResponder.exe
C:WINDOWSsystem32CTsvcCDA.exe
C:WINDOWSnotepad.exe
C:Program FilesCreativeShared FilesCTDevSrv.exe
C:Program FilesNeroNero 7InCDInCDsrv.exe
C:Program FilesJavajre6binjqs.exe
C:WINDOWSSOUNDMAN.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesKeyboard DriverStartAutorun.exe
C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe
C:Program FilesAlwil SoftwareAvast5avastUI.exe
C:Program FilesKeyboard DriverKMConfig.exe
C:Program FilesKeyboard DriverKMWDSrv.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
C:Program FilesBitCometBitComet.exe
C:PROGRA~1skypePhoneSkype.exe
C:Program FilesSpybot — Search & DestroyTeaTimer.exe
C:WINDOWSCommonBinWinCinemaMgr.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesKeyboard DriverKMProcess.exe
C:WINDOWSsystem32uphclean.exe
C:Program FilesCommon FilesLogishrdLQCVFXCOCIManager.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesskypePlugin ManagerskypePM.exe
C:Program FilesOpera AC 3.5.1opera.exe
C:Documents and SettingsAdmin.USER-ECEEA47CDBРабочий столRSIT.exe
C:Program Filestrend microAdmin.exeR1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSPCHealthHelpCtrSystempanelsblank.htm
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
R3 — URLSearchHook: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
R3 — URLSearchHook: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
O2 — BHO: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O2 — BHO: BitComet ClickCapture — {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll
O2 — BHO: Spybot-S&D IE Protection — {53707962-6F74-2D53-2644-206D7942484F} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll
O2 — BHO: Google Dictionary Compression sdch — {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O2 — BHO: Ask Toolbar BHO — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: kikin Plugin — {E601996F-E400-41CA-804B-CD6373A7EEE2} — C:Program Fileskikinie_kikin.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 — BHO: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O3 — Toolbar: PandoraTV Toolbar — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O3 — Toolbar: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [BigDog305] C:WINDOWSVM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [KMCONFIG] C:Program FilesKeyboard DriverStartAutorun.exe KMConfig.exe
O4 — HKLM..Run: [LogitechQuickCamRibbon] «C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe» /hide
O4 — HKLM..Run: [avast5] «C:Program FilesAlwil SoftwareAvast5avastUI.exe» /nogui
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [BitComet] «C:Program FilesBitCometBitComet.exe» /tray
O4 — HKCU..Run: [Skype] «C:PROGRA~1skypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot — Search & DestroyTeaTimer.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [LinkDel] linkdel.cmd (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — S-1-5-18 Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘SYSTEM’)
O4 — .DEFAULT Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘Default user’)
O4 — Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe
O4 — Global Startup: InterVideo WinCinema Manager.lnk = C:WINDOWSCommonBinWinCinemaMgr.exe
O8 — Extra context menu item: &Winamp Search — C:Documents and SettingsAll Users.WINDOWSApplication DataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
O8 — Extra context menu item: &З&агрузить &с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 — Extra context menu item: &З&агрузить все видео файлы с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 — Extra context menu item: &З&агрузить все с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O9 — Extra button: (no name) — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra ‘Tools’ menuitem: My kikin — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: BitComet — {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} — res://C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll/206 (file missing)
O9 — Extra button: (no name) — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra ‘Tools’ menuitem: Spybot — Search & Destroy Configuration — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O10 — Unknown file in Winsock LSP: c:windowssystem32nwprovau.dll
O16 — DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) — http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O18 — Filter: x-sdch — {B1759355-3EEC-4C1E-B0F1-B719FE26E377} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: Bonjour Service — Apple Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: Creative Service for CDROM Access — Creative Technology Ltd — C:WINDOWSsystem32CTsvcCDA.exe
O23 — Service: CT Device Query service (CTDevice_Srv) — Creative Technology Ltd — C:Program FilesCreativeShared FilesCTDevSrv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: InCD Helper (InCDsrv) — Nero AG — C:Program FilesNeroNero 7InCDInCDsrv.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: Keyboard And Mouse Communication Service (KMWDSERVICE) — UASSOFT.COM — C:Program FilesKeyboard DriverKMWDSrv.exe
O23 — Service: Process Monitor (LVPrcSrv) — Logitech Inc. — C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Pml Driver HPZ12 — HP — C:WINDOWSsystem32HPZipm12.exe
O23 — Service: SageTV — Realtek Semiconductor Corporation — (no file)
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 11909 bytes======Scheduled tasks folder======
C:WINDOWStasksMicrosoft_Hardware_Launch_IPoint_exe.job
C:WINDOWStasksScheduled Update for Ask Toolbar.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll [2008-08-11 656696][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection — C:PROGRA~1Spybot — Search & DestroySDHelper.dll [2009-01-26 1879896][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll [2009-09-23 762864][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll [2009-04-27 470512][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-03-09 35840][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E601996F-E400-41CA-804B-CD6373A7EEE2}]
kikin Plugin — C:Program Fileskikinie_kikin.dll [2009-11-06 642752][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-11-13 73728][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{ecdee021-0d17-467f-a1ff-c7a115230949}]
free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]
{D4027C7F-154A-4066-A1AD-4243D8127440} — PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]
{ecdee021-0d17-467f-a1ff-c7a115230949} — free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} — IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2009-11-13 7700480]
«nwiz»=nwiz.exe /install []
«BigDog305″=C:WINDOWSVM305_STI.EXE [2005-11-03 61440]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2007-04-16 577536]
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]
«KMCONFIG»=C:Program FilesKeyboard DriverStartAutorun.exe [2008-05-30 212992]
«LogitechQuickCamRibbon»=C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe [2009-10-14 2793304]
«avast5″=C:Program FilesAlwil SoftwareAvast5avastUI.exe [2010-01-29 2757512][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]
«BitComet»=C:Program FilesBitCometBitComet.exe [2008-12-03 2514744]
«Skype»=C:PROGRA~1skypePhoneSkype.exe [2008-11-07 21633320]
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe [2009-03-05 2260480][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-02-27 35696][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCTZDetec.exe]
C:Program FilesCreativeCreative Media LiteCTZDetec.exe [2009-11-13 368640][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHP Software Update]
C:Program FilesHPHP Software UpdateHPWuSchd2.exe [2004-02-12 49152][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregInCD]
C:Program FilesNeroNero 7InCDInCDldr.exe [2006-06-05 27136][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregIntelliPoint]
C:Program FilesMicrosoft IntelliPointipoint.exe [2009-01-07 1468296][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
C:Program FilesCommon FilesAheadLibNeroCheck.exe [2009-11-13 155648][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSoftAuto.exe]
C:Program FilesCreativeSoftware Update 3SoftAuto.exe [2009-11-13 405504][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSunJavaUpdateSched]
C:Program FilesJavajre6binjusched.exe [2009-03-09 148888][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregswg]
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-02-23 39408]C:Documents and SettingsAll Users.WINDOWSГлавное менюПрограммыАвтозагрузка
InterVideo WinCinema Manager.lnk — C:WINDOWSCommonBinWinCinemaMgr.exeC:Documents and SettingsAdmin.USER-ECEEA47CDBГлавное менюПрограммыАвтозагрузка
Logitech . Регистрация Продукта.lnk — C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm.sys]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoResolveTrack»=
«NoResolveSearch»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesskypePhoneSkype.exe»=»C:Program FilesskypePhoneSkype.exe:*:Enabled:Skype»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5c569344-744a-11dd-b4fe-000129239d09}]
shellopencommand — rundll32.exe .desktop.dll,InstallM======List of files/folders created in the last 1 months======
2010-01-28 18:58:06 —-A—- C:WINDOWSsystem32aswBoot.exe
2010-01-28 18:52:45 —-A—- C:Program Filessetup_av_free_rus.exe
2010-01-28 18:31:20 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataAlwil Software
2010-01-27 21:00:44 —-D—- C:Program Filestrend micro
2010-01-27 21:00:20 —-D—- C:rsit
2010-01-23 19:48:46 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataLeadertech
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32LVUI2.dll
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32lvcodec2.dll
2010-01-23 19:47:46 —-A—- C:WINDOWSsystem32LVUI2RC.dll
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvcoinst.ini
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvci12101110.dll
2010-01-23 19:45:11 —-D—- C:Program FilesCommon FilesLogiShrd
2010-01-23 19:45:09 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataLogiShrd
2010-01-23 19:45:06 —-D—- C:Program FilesLogitech
2010-01-23 19:11:44 —-A—- C:Program Filesccsetup227.exe
2010-01-23 17:36:51 —-A—- C:WINDOWSwininit.ini
2010-01-20 12:11:06 —-D—- C:Program FilesCommon Fileswm
2010-01-04 22:21:22 —-D—- C:Program FilesSpybot — Search & Destroy
2010-01-04 22:21:22 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataSpybot — Search & Destroy
2010-01-04 22:05:26 —-A—- C:Program Filesspybotsd162.exe======List of files/folders modified in the last 1 months======
2010-01-31 20:19:15 —-D—- C:WINDOWSPrefetch
2010-01-31 20:16:45 —-D—- C:WINDOWSTemp
2010-01-31 20:16:21 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataSkype
2010-01-31 20:15:30 —-D—- C:WINDOWSsystem32drivers
2010-01-31 20:05:42 —-D—- C:Program FilesCommon Files
2010-01-31 20:05:42 —-AD—- C:WINDOWSsystem32
2010-01-31 20:02:41 —-D—- C:Program FilesBitComet
2010-01-31 20:01:17 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataskypePM
2010-01-31 19:58:31 —-A—- C:WINDOWSSchedLgU.Txt
2010-01-31 19:58:29 —-D—- C:WINDOWSsystem32CatRoot2
2010-01-30 21:50:02 —-AD—- C:WINDOWS
2010-01-28 18:58:36 —-SHD—- C:WINDOWSInstaller
2010-01-28 18:58:36 —-SHD—- C:Config.Msi
2010-01-28 18:58:35 —-D—- C:WINDOWSWinSxS
2010-01-28 18:52:45 —-RD—- C:Program Files
2010-01-28 18:43:19 —-D—- C:Program FilesAlwil Software
2010-01-27 10:02:15 —-AHD—- C:WINDOWSinf
2010-01-25 17:31:43 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataMedia Player Classic
2010-01-24 13:04:17 —-D—- C:WINDOWSsystem32config
2010-01-23 19:48:14 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-01-23 19:48:09 —-D—- C:WINDOWStwain_32
2010-01-23 19:47:59 —-D—- C:WINDOWSsystem32ReinstallBackups
2010-01-23 19:47:46 —-DC—- C:WINDOWSsystem32DRVSTORE
2010-01-08 20:03:34 —-D—- C:WINDOWSsecurity
2010-01-08 20:03:34 —-D—- C:WINDOWSrepair
2010-01-08 20:03:34 —-D—- C:WINDOWSLogs
2010-01-08 20:03:34 —-D—- C:Program FilesWinamp Toolbar
2010-01-08 20:03:34 —-D—- C:Program Filesfree-downloads.net
2010-01-08 20:03:34 —-D—- C:Program FilesFirebird
2010-01-08 20:03:34 —-D—- C:CA_LIC
2010-01-08 20:03:33 —-D—- C:Program FilesWindows Media Player
2010-01-08 20:03:33 —-D—- C:Program FilesMicrosoft Office
2010-01-05 19:05:28 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataIObit
2010-01-04 18:35:41 —-A—- C:WINDOWSDjVuPro.INI======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2010-01-28 28240]
R1 aswSP;aswSP; C:WINDOWSsystem32driversaswSP.sys [2010-01-28 163280]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2010-01-28 46672]
R1 InCDPass;InCDPass; C:WINDOWSsystem32driversInCDPass.sys [2006-04-05 29568]
R1 incdrm;InCD Reader; C:WINDOWSsystem32driversInCDRm.sys [2006-04-05 33792]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2006-12-22 40448]
R1 SCDEmu;SCDEmu; C:WINDOWSsystem32driversSCDEmu.sys [2007-08-07 33052]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32driversaswFsBlk.sys [2010-01-28 19024]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2010-01-28 100432]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2008-09-24 4122368]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2010-01-28 23376]
R3 FilterService;UVC Filter Service; C:WINDOWSsystem32DRIVERSlvuvcflt.sys [2009-10-07 23832]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:WINDOWSsystem32DRIVERSLVPr2Mon.sys [2009-10-07 25752]
R3 LVRS;Logitech RightSound Filter Driver; C:WINDOWSsystem32DRIVERSlvrs.sys [2009-10-07 266008]
R3 LVUVC;Logitech Webcam 200(UVC); C:WINDOWSsystem32DRIVERSlvuvc.sys [2009-10-07 6756632]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:WINDOWSsystem32DRIVERSpoint32.sys [2009-01-07 27784]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtnicxp.sys [2009-03-25 130432]
R3 usbaudio;Аудио драйвер USB (WDM); C:WINDOWSsystem32driversusbaudio.sys [2004-08-03 59264]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2006-10-23 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2006-10-23 59264]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2006-10-23 20608]
R4 InCDfs;InCD File System; C:WINDOWSsystem32driversInCDFs.sys [2006-04-05 102016]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-17 14848]
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-03 17024]
S3 DynCal;Dynamic Calibration Service; C:WINDOWSsystem32driversDyncal.sys [2006-04-22 8704]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:WINDOWSsystem32DRIVERSHPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:WINDOWSsystem32DRIVERSHPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:WINDOWSsystem32DRIVERSHPZius12.sys [2004-06-21 21744]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:WINDOWSsystem32DRIVERSk750bus.sys [2006-03-13 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSk750mdfl.sys [2006-03-13 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSk750mdm.sys [2006-03-13 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSk750mgmt.sys [2006-03-13 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSk750obex.sys [2006-03-13 79488]
S3 KMWDFilter;KMWDFilter; ??C:WINDOWSSystem32DriversKMWDFilter.SYS []
S3 lvpopflt;Logitech POP Suppression Filter; C:WINDOWSsystem32DRIVERSlvpopflt.sys [2009-10-07 114712]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-03 10880]
S3 nm;Драйвер сетевого монитора; C:WINDOWSsystem32DRIVERSNMnt.sys [2004-08-18 40320]
S3 pcouffin;VSO Software pcouffin; C:WINDOWSSystem32Driverspcouffin.sys [2008-12-23 47360]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:WINDOWSsystem32DRIVERSse44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse44mdm.sys [2006-11-30 97088]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:WINDOWSsystem32DRIVERSse59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:WINDOWSsystem32DRIVERSse59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:WINDOWSsystem32DRIVERSse59unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-03 15360]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2005-07-30 121856]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM); C:WINDOWSsystem32DRIVERSw300bus.sys [2006-03-13 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSw300mdfl.sys [2006-03-13 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSw300mdm.sys [2006-03-13 96352]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSw300mgmt.sys [2006-03-13 87824]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSw300obex.sys [2006-03-13 85696]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S3 ZSMC0305;VIMICRO USB PC Camera V; C:WINDOWSSystem32DriversusbVM305.sys [2005-11-03 390379]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
R2 Bonjour Service;Bonjour Service; C:Program FilesBonjourmDNSResponder.exe [2008-12-12 238888]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:WINDOWSsystem32CTsvcCDA.exe [1999-12-13 44032]
R2 CTDevice_Srv;CT Device Query service; C:Program FilesCreativeShared FilesCTDevSrv.exe [2007-04-02 61440]
R2 InCDsrv;InCD Helper; C:Program FilesNeroNero 7InCDInCDsrv.exe [2006-04-05 791040]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-03-09 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:Program FilesKeyboard DriverKMWDSrv.exe [2008-06-23 208896]
R2 LVPrcSrv;Process Monitor; C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe [2009-10-07 154136]
R2 UPHClean;User Profile Hive Cleanup; C:WINDOWSsystem32uphclean.exe [2006-01-16 241725]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
S2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2009-11-13 36864]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-06-21 182768]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2009-11-13 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2009-11-13 741376]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:WINDOWSsystem32HPZipm12.exe [2009-11-13 65536]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2009-11-13 122880]
EOF
- Для ответа в этой теме необходимо авторизоваться.
