17 декабря сканирование ноута (1)
Logfile of random’s system information tool 1.06 (written by random/random)
Run by asus at 2009-12-17 11:32:58
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 62 GB (52%) free of 119 GB
Total RAM: 2814 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:33:55, on 17.12.2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18865)
Boot mode: Normal
Running processes:
C:Program FilesNorton Internet SecurityEngine16.7.2.11ccSvcHst.exe
C:Windowssystem32taskeng.exe
C:Windowssystem32Dwm.exe
C:Program FilesASUSASUS CopyProtectaspg.exe
C:Program filesP4GBatteryLife.exe
C:Windowssystem32taskeng.exe
C:WindowsExplorer.EXE
C:Program FilesASUSSmartLogonsensorsrv.exe
C:Program FilesASUSASUS Live UpdateALU.exe
C:Program FilesASUSATKOSD2ATKOSD2.exe
C:Program FilesVIAVIAudioiVDeckVDECK.EXE
C:Program FilesElantechETDCtrl.exe
C:Program FilesASUSASUS Data Security ManagerADSMTray.exe
C:Program FilesCommon FilesRealUpdate_OBrealsched.exe
C:Program FilesMail.RuAgentmagent.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.exe
C:Program FilesSRS LabsSRS Premium SoundSRSPremiumSoundBig_Small.exe
C:Program FilesAMP CalendarCalendar.exe
C:Program FilesSkypePhoneSkype.exe
C:Program FilesCommon FilesYandexYupdateyupdate.exe
C:Program FilesSoftware Informersoftinfo.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesFree Download Managerfdm.exe
D:MyProgramFilesSсreenshotCreator2.0scrnstcr.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesYandexPunto Switcherpunto.exe
C:Program FilesSkypePlugin ManagerskypePM.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Program FilesEsetnod32kui.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesGoogleGoogle ToolbarGoogleToolbarUser_32.exe
C:Windowssystem32MacromedFlashFlashUtil10c.exe
C:UsersasusDesktopRSIT.exe
C:Windowssystem32SearchFilterHost.exe
C:Program Filestrend microasus.exe
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://asus.msn.com
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.yandex.ru/
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.asus.com
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: Yahoo! Toolbar — {EF99BD32-C1FB-11D2-892F-0090271D4F88} — C:Program FilesYahoo!CompanionInstallscpnyt.dll
F2 — REG:system.ini: UserInit=C:Windowssystem32userinit.exe,C:UsersasusAppDataLocalTempdasF194.tmp,
O1 — Hosts: ::1 localhost
O2 — BHO: &Yahoo! Toolbar Helper — {02478D38-C3F9-4efb-9B51-7695ECA05670} — C:Program FilesYahoo!CompanionInstallscpnyt.dll
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 — BHO: ShowBarObj Class — {2863E737-DD3F-4280-9AF8-E9E79C16F312} — C:Program FilesSave Tube Video CompanySaveTubeVideoMinBHO.dll
O2 — BHO: Symantec NCO BHO — {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} — C:Program FilesNorton Internet SecurityEngine16.7.2.11coIEPlg.dll
O2 — BHO: Symantec Intrusion Prevention — {6D53EC84-6AAE-4787-AEEE-F4628F01010C} — C:Program FilesNorton Internet SecurityEngine16.7.2.11IPSBHO.DLL
O2 — BHO: Search Helper — {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} — C:Program FilesMicrosoftSearch Enhancement PackSearch HelperSEPsearchhelperie.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — c:program filesmail.rusputnikMailRuSputnik.dll
O2 — BHO: Помощник по входу в Windows Live — {9030D464-4C02-4ABF-8ECC-5164760863C6} — C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.4.4525.1752swg.dll
O2 — BHO: FDMIECookiesBHO Class — {CC59E0F9-7E43-44FA-9FAA-8377850BF205} — C:Program FilesFree Download Manageriefdm2.dll
O2 — BHO: Windows Live Toolbar Helper — {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} — C:Program FilesWindows LiveToolbarwltcore.dll
O3 — Toolbar: Norton Toolbar — {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} — C:Program FilesNorton Internet SecurityEngine16.7.2.11coIEPlg.dll
O3 — Toolbar: &Windows Live Toolbar — {21FA44EF-376D-4D53-9B0F-8A89D3229068} — C:Program FilesWindows LiveToolbarwltcore.dll
O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program FilesYandexYandexBarIEyndbar.dll
O3 — Toolbar: Translator — {FF284F5C-7CF9-4682-8701-D467C1DBB99F} — C:Program FilesPRMT6PRMTIEprmtie.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
O3 — Toolbar: Yahoo! Toolbar — {EF99BD32-C1FB-11D2-892F-0090271D4F88} — C:Program FilesYahoo!CompanionInstallscpnyt.dll
O3 — Toolbar: Save Tube Video — {F334C7B0-8774-4d5b-BD7A-4F448D03A1AE} — C:Program FilesSave Tube Video CompanySaveTubeVideoSaveTubeVideo.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O4 — HKLM..Run: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
O4 — HKLM..Run: [DisableS3S4] c:DisableS3S4.cmd
O4 — HKLM..Run: [UpdateLBPShortCut] «C:Program FilesCyberLinkLabelPrintMUITransferMUIStartMenu.exe» «C:Program FilesCyberLinkLabelPrint» UpdateWithCreateOnce «SoftwareCyberLinkLabelPrint2.5»
O4 — HKLM..Run: [UpdateP2GoShortCut] «C:Program FilesCyberLinkPower2GoMUITransferMUIStartMenu.exe» «C:Program FilesCyberLinkPower2Go» UpdateWithCreateOnce «SOFTWARECyberLinkPower2Go6.0»
O4 — HKLM..Run: [ATKOSD2] C:Program FilesASUSATKOSD2ATKOSD2.exe
O4 — HKLM..Run: [StartCCC] «C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe» MSRun
O4 — HKLM..Run: [HDAudDeck] C:Program FilesVIAVIAudioiVDeckVDeck.exe -r
O4 — HKLM..Run: [ETDWare] C:Program FilesElantechETDCtrl.exe
O4 — HKLM..Run: [Wireless Console 3] C:Program FilesASUSWireless Console 3wcourier.exe
O4 — HKLM..Run: [ADSMTray] C:Program FilesASUSASUS Data Security ManagerADSMTray.exe
O4 — HKLM..Run: [ACMON] C:Program FilesASUSSplendidACMON.exe
O4 — HKLM..Run: [NeroFilterCheck] C:Windowssystem32NeroCheck.exe
O4 — HKLM..Run: [TkBellExe] «C:Program FilesCommon FilesRealUpdate_OBrealsched.exe» -osboot
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [CorelDRAW Graphics Suite 11b] C:Program FilesCorelCorel Graphics 12LanguagesENProgramsRegistration.exe /title=»CorelDRAW Graphics Suite 12″ /date=120909 serial=DR12WTX-9999998-YSP lang=EN
O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 9.0ReaderReader_sl.exe»
O4 — HKLM..Run: [Adobe ARM] «C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe»
O4 — HKLM..Run: [nod32kui] «C:Program FilesEsetnod32kui.exe» /WAITSERVICE
O4 — HKCU..Run: [Звуковая карта SRS Premium Sound для ПК] «C:Program FilesSRS LabsSRS Premium SoundSRSPremiumSoundBig_Small.exe» /hideme
O4 — HKCU..Run: [AMP Calendar] C:Program FilesAMP CalendarCalendar.exe -quiet
O4 — HKCU..Run: [Skype] «C:Program FilesSkypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [Yupdate!] «C:Program FilesCommon FilesYandexYupdateyupdate.exe»
O4 — HKCU..Run: [Software Informer] «C:Program FilesSoftware Informersoftinfo.exe» -autorun
O4 — HKCU..Run: [NevoDRM] «C:ИгрыNevoDRMNevoDRM.exe»
O4 — HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
O4 — HKCU..Run: [Download Master] C:Program FilesDownload Masterdmaster.exe -autorun
O4 — HKCU..Run: [Free Download Manager] «C:Program FilesFree Download Managerfdm.exe» -autorun
O4 — HKCU..Run: [ScreenshotCreator] D:MyProgramFilesSсreenshotCreator2.0scrnstcr.exe
O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘NETWORK SERVICE’)
O4 — Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe
O4 — Global Startup: Punto Switcher.lnk = C:Program FilesPunto Switcherps.exe
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O8 — Extra context menu item: Google ВикиКомментарии… — res://C:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O8 — Extra context menu item: Закачать все с помощью FDM — file://C:Program FilesFree Download Managerdlall.htm
O8 — Extra context menu item: Закачать выбранное с помощью FDM — file://C:Program FilesFree Download Managerdlselected.htm
O8 — Extra context menu item: Закачать с помощью FDM — file://C:Program FilesFree Download Managerdllink.htm
O8 — Extra context menu item: Скачать видео с Free Download Manager — file://C:Program FilesFree Download Managerdlfvideo.htm
O9 — Extra button: Отправка в блог — {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} — C:Program FilesWindows LiveWriterWriterBrowserExtension.dll
O9 — Extra ‘Tools’ menuitem: &Отправка в блог Windows Live Writer — {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} — C:Program FilesWindows LiveWriterWriterBrowserExtension.dll
O9 — Extra button: (no name) — {5067A26B-1337-4436-8AFE-EE169C2DA79F} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {5067A26B-1337-4436-8AFE-EE169C2DA79F} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: (no name) — {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} — C:Program FilesPRMT6PRMTIEprmtie5.htm
O9 — Extra ‘Tools’ menuitem: Translate — {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} — C:Program FilesPRMT6PRMTIEprmtie5.htm
O9 — Extra button: (no name) — {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} — C:Program FilesPRMT6PRMTIEoptions.htm
O9 — Extra ‘Tools’ menuitem: Customize translation options — {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} — C:Program FilesPRMT6PRMTIEoptions.htm
O9 — Extra button: (no name) — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — (no file)
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O10 — Unknown file in Winsock LSP: c:usersasusappdataroamingmicrosoftwindowscookiesuserlib.dll
O13 — Gopher Prefix:
O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 — HKLMSystemCCSServicesTcpip..{146DEBF2-0386-4C4B-AC9B-16E62DA05064}: NameServer = 192.168.1.1,212.188.4.10
O17 — HKLMSystemCCSServicesTcpip..{5A683AB4-DD68-4C74-BD39-E26BC6B4D1DF}: NameServer = 192.168.1.1,212.188.4.10
O17 — HKLMSystemCCSServicesTcpip..{8B5A6964-06CF-4874-8D7D-BA0036DEB832}: NameServer = 192.168.1.1,212.188.4.10
O17 — HKLMSystemCS1ServicesTcpip..{146DEBF2-0386-4C4B-AC9B-16E62DA05064}: NameServer = 192.168.1.1,212.188.4.10
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O18 — Protocol: symres — {AA1061FE-6C41-421F-9344-69640C9732AB} — C:Program FilesNorton Internet SecurityEngine16.7.2.11coIEPlg.dll
O23 — Service: ADSM Service (ADSMService) — ASUSTek Computer Inc. — C:Program FilesASUSASUS Data Security ManagerADSMSrv.exe
O23 — Service: ASLDR Service (ASLDRService) — Unknown owner — C:Program FilesASUSATK HotkeyASLDRSrv.exe
O23 — Service: Ati External Event Utility — ATI Technologies Inc. — C:Windowssystem32Ati2evxx.exe
O23 — Service: ATKGFNEX Service (ATKGFNEXSrv) — Unknown owner — C:Program FilesATKGFNEXGFNEXSrv.exe
O23 — Service: Kaspersky Anti-Virus 6.0 (AVP) — Kaspersky Lab — C:Program FilesKaspersky LabKaspersky Anti-Virus 6.0avp.exe
O23 — Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) — Apple Computer, Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
O23 — Service: FLEXnet Licensing Service — Macrovision Europe Ltd. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: NOD32 Kernel Service (NOD32krn) — Eset — C:Program FilesEsetnod32krn.exe
O23 — Service: Norton Internet Security — Symantec Corporation — C:Program FilesNorton Internet SecurityEngine16.7.2.11ccSvcHst.exe
O23 — Service: Cyberlink RichVideo Service(CRVS) (RichVideo) — Unknown owner — C:Program FilesCyberlinkShared filesRichVideo.exe
O23 — Service: SRS Volume Sync Service (SRS_VolSync_Service) — SRS Labs, Inc. — C:Program FilesSRS LabsSRS Premium SoundSRS_VolSync.exe
—
End of file — 18279 bytes
======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper — C:Program FilesYahoo!CompanionInstallscpnyt.dll [2007-03-21 803864]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2009-08-04 1586472]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{2863E737-DD3F-4280-9AF8-E9E79C16F312}]
ShowBarObj Class — C:Program FilesSave Tube Video CompanySaveTubeVideoMinBHO.dll [2009-10-28 221184]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO — C:Program FilesNorton Internet SecurityEngine16.7.2.11coIEPlg.dll [2009-08-26 378736]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention — C:Program FilesNorton Internet SecurityEngine16.7.2.11IPSBHO.DLL [2009-08-26 107896]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper — C:Program FilesMicrosoftSearch Enhancement PackSearch HelperSEPsearchhelperie.dll [2009-05-19 137600]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — c:program filesmail.rusputnikMailRuSputnik.dll [2009-10-14 826032]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Помощник по входу в Windows Live — C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2009-11-24 263280]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.4.4525.1752swg.dll [2009-11-24 764912]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class — C:Program FilesFree Download Manageriefdm2.dll [2008-12-30 98304]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper — C:Program FilesWindows LiveToolbarwltcore.dll [2008-12-08 1067352]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} — Norton Toolbar — C:Program FilesNorton Internet SecurityEngine16.7.2.11coIEPlg.dll [2009-08-26 378736]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} — &Windows Live Toolbar — C:Program FilesWindows LiveToolbarwltcore.dll [2008-12-08 1067352]
{91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program FilesYandexYandexBarIEyndbar.dll [2008-05-12 1459464]
{FF284F5C-7CF9-4682-8701-D467C1DBB99F} — Translator — C:Program FilesPRMT6PRMTIEprmtie.dll [2005-01-12 434176]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — c:program filesmail.rusputnikMailRuSputnik.dll [2009-10-14 826032]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} — Yahoo! Toolbar — C:Program FilesYahoo!CompanionInstallscpnyt.dll [2007-03-21 803864]
{F334C7B0-8774-4d5b-BD7A-4F448D03A1AE} — Save Tube Video — C:Program FilesSave Tube Video CompanySaveTubeVideoSaveTubeVideo.dll [2009-10-28 692224]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2009-11-24 263280]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«Windows Defender»=C:Program FilesWindows DefenderMSASCui.exe [2008-01-21 1008184]
«DisableS3S4″=c:DisableS3S4.cmd []
«UpdateLBPShortCut»=C:Program FilesCyberLinkLabelPrintMUITransferMUIStartMenu.exe [2009-05-19 222504]
«UpdateP2GoShortCut»=C:Program FilesCyberLinkPower2GoMUITransferMUIStartMenu.exe [2008-12-03 218408]
«ATKOSD2″=C:Program FilesASUSATKOSD2ATKOSD2.exe [2008-09-02 8105984]
«StartCCC»=C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe [2009-03-18 61440]
«HDAudDeck»=C:Program FilesVIAVIAudioiVDeckVDeck.exe [2009-04-30 1392640]
«ETDWare»=C:Program FilesElantechETDCtrl.exe [2009-04-21 540576]
«Wireless Console 3″=C:Program FilesASUSWireless Console 3wcourier.exe [2009-02-06 1593344]
«ADSMTray»=C:Program FilesASUSASUS Data Security ManagerADSMTray.exe [2008-03-31 266240]
«ACMON»=C:Program FilesASUSSplendidACMON.exe [2008-09-30 851968]
«NeroFilterCheck»=C:Windowssystem32NeroCheck.exe [2001-07-09 155648]
«TkBellExe»=C:Program FilesCommon FilesRealUpdate_OBrealsched.exe [2009-10-13 198160]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2009-10-14 7975608]
«CorelDRAW Graphics Suite 11b»=C:Program FilesCorelCorel Graphics 12LanguagesENProgramsRegistration.exe /title=CorelDRAW Graphics Suite 12 /date=120909 serial=DR12WTX-9999998-YSP lang=EN []
«Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-10-03 35696]
«Adobe ARM»=C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe [2009-09-04 935288]
«nod32kui»=C:Program FilesEsetnod32kui.exe [2009-12-16 949376]
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Звуковая карта SRS Premium Sound для ПК»=C:Program FilesSRS LabsSRS Premium SoundSRSPremiumSoundBig_Small.exe [2009-04-07 3405048]
«AMP Calendar»=C:Program FilesAMP CalendarCalendar.exe [2005-08-17 750080]
«Skype»=C:Program FilesSkypePhoneSkype.exe [2009-10-09 25623336]
«Yupdate!»=C:Program FilesCommon FilesYandexYupdateyupdate.exe [2008-05-14 460040]
«Software Informer»=C:Program FilesSoftware Informersoftinfo.exe [2009-10-07 1949765]
«fsm»= []
«NevoDRM»=C:ИгрыNevoDRMNevoDRM.exe [2008-12-11 41984]
«Sidebar»=C:Program FilesWindows Sidebarsidebar.exe [2009-04-11 1233920]
«Download Master»=C:Program FilesDownload Masterdmaster.exe -autorun []
«Free Download Manager»=C:Program FilesFree Download Managerfdm.exe [2009-01-31 3399727]
«ScreenshotCreator»=D:MyProgramFilesSсreenshotCreator2.0scrnstcr.exe [2006-10-02 329728]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-10-03 35696]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAMP Calendar]
C:Program FilesAMP CalendarCalendar.exe [2005-08-17 750080]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregASUS Camera ScreenSaver]
C:WindowsAsScrProlog.exe [2009-08-18 47672]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregASUS Screen Saver Protector]
C:WindowsAsScrPro.exe [2009-08-18 3054136]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregATKMEDIA]
C:Program FilesASUSATK MediaDMedia.exe [2008-08-19 159744]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCLMLServer]
C:Program FilesCyberlinkPower2GoCLMLSvc.exe [2008-07-18 104936]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCloneCDElbyCDFL]
C:Program FilesElaborate BytesCloneCDElbyCheck.exe [2002-11-02 45056]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCloneCDTray]
C:Program FilesElaborate BytesCloneCDCloneCDTray.exe [2002-12-02 73728]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHControlUser]
C:Program FilesASUSATK HotkeyHControlUser.exe [2008-08-18 98304]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregPDVD8LanguageShortcut]
C:Program FilesASUSTekASUSDVD 8LanguageLanguage.exe [2009-04-15 50472]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregPunto Switcher]
C:Program FilesPunto Switcherps.exe HideIcon []
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRemoteControl8]
C:Program FilesASUSTekASUSDVD 8PDVD8Serv.exe [2009-04-15 91432]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregTkBellExe]
C:Program FilesCommon FilesRealUpdate_OBevntsvc.exe -osboot []
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregWinampAgent]
C:Program FilesWinampwinampa.exe [2003-12-13 33792]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregYupdate!]
C:Program FilesCommon FilesYandexYupdateyupdate.exe [2008-05-14 460040]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AMP Calendar.lnk]
C:PROGRA~1AMPCAL~1Calendar.exe [2005-08-17 750080]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk]
C:WindowsInstaller{567C654B-7FE9-4970-8323-56E8191D1941}_71A97E24F422AA49EDBF39.exe [2009-08-18 12862]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ps — Ярлык.lnk]
C:PROGRA~1PUNTOS~1ps.exe []
C:ProgramDataMicrosoftWindowsStart MenuProgramsStartup
Punto Switcher.lnk — C:Program FilesPunto Switcherps.exe
C:UsersasusAppDataRoamingMicrosoftWindowsStart MenuProgramsStartup
Punto Switcher.lnk — C:Program FilesYandexPunto Switcherpunto.exe
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa]
«notification packages»=scecli
C:Program FilesASUSASUS Data Security ManagerASPWDFLT
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalSymEFA.sys]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkSymEFA.sys]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfPf]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfRd]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfSvc]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfUsbccidDriver]
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«DisableTaskMgr»=1
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«EnableUIADesktopToggle»=0
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=149
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«BindDirectlyToPropertySetStorage»=
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
======File associations======
.js — edit — C:WindowsSystem32Notepad.exe %1
.js — open — C:WindowsSystem32WScript.exe «%1» %*
.txt — open — notepad %1
======List of files/folders created in the last 1 months======
2009-12-17 11:33:02 —-D—- C:Program Filestrend micro
2009-12-17 11:32:58 —-D—- C:rsit
2009-12-17 11:11:23 —-D—- C:Program FilesMozilla Firefox
2009-12-16 13:14:41 —-D—- C:UsersasusAppDataRoamingMalwarebytes
2009-12-16 13:14:18 —-D—- C:ProgramDataMalwarebytes
2009-12-16 13:14:17 —-D—- C:Program FilesMalwarebytes’ Anti-Malware
2009-12-16 11:44:06 —-A—- C:Windowssystem32imon.dll
2009-12-16 11:42:53 —-D—- C:Program FilesESET
2009-12-16 10:52:53 —-D—- C:ProgramDataKaspersky Lab
2009-12-16 10:52:53 —-D—- C:Program FilesKaspersky Lab
2009-12-16 10:52:22 —-SHD—- C:Config.Msi
2009-12-16 10:51:42 —-D—- C:KAV
2009-12-13 14:19:08 —-D—- C:Program FilesCorel
2009-12-12 21:35:37 —-A—- C:Windowssystem32httpapi.dll
2009-12-12 21:35:36 —-A—- C:Windowssystem32nshhttp.dll
2009-12-12 21:34:33 —-A—- C:Windowssystem32mshtml.dll
2009-12-12 21:34:32 —-A—- C:Windowssystem32ieframe.dll
2009-12-12 21:34:31 —-A—- C:Windowssystem32wininet.dll
2009-12-12 21:34:31 —-A—- C:Windowssystem32urlmon.dll
2009-12-12 21:34:31 —-A—- C:Windowssystem32iertutil.dll
2009-12-12 21:34:30 —-A—- C:Windowssystem32occache.dll
2009-12-12 21:34:30 —-A—- C:Windowssystem32msfeeds.dll
2009-12-12 21:34:30 —-A—- C:Windowssystem32iedkcs32.dll
2009-12-12 21:34:29 —-A—- C:Windowssystem32ieui.dll
2009-12-12 21:34:28 —-A—- C:Windowssystem32msfeedsbs.dll
2009-12-12 21:34:28 —-A—- C:Windowssystem32jsproxy.dll
2009-12-12 21:34:28 —-A—- C:Windowssystem32ieUnatt.exe
2009-12-12 21:34:28 —-A—- C:Windowssystem32iesysprep.dll
2009-12-12 21:34:28 —-A—- C:Windowssystem32iepeers.dll
2009-12-12 21:34:28 —-A—- C:Windowssystem32ie4uinit.exe
2009-12-12 21:34:27 —-A—- C:Windowssystem32msfeedssync.exe
2009-12-12 21:34:27 —-A—- C:Windowssystem32iesetup.dll
2009-12-12 21:34:26 —-A—- C:Windowssystem32iernonce.dll
2009-12-12 21:34:20 —-A—- C:Windowssystem32winhttp.dll
2009-12-12 21:31:54 —-A—- C:Windowssystem32rastls.dll
2009-12-11 11:02:30 —-A—- C:Windowssystem32dopdfmn6.dll
2009-12-11 11:02:30 —-A—- C:Windowssystem32dopdfmi6.dll
2009-12-11 11:02:27 —-D—- C:Program FilesSoftland
2009-12-05 13:11:43 —-D—- C:Program FilesMSECache
2009-11-25 22:30:51 —-D—- C:Program FilesMSXML 4.0
2009-11-24 22:26:48 —-A—- C:Windowssystem32tzres.dll
2009-11-24 22:25:42 —-A—- C:Windowssystem32msxml6.dll
2009-11-24 22:25:41 —-A—- C:Windowssystem32msxml3.dll
2009-11-24 22:13:12 —-D—- C:UsersasusAppDataRoamingCorel
2009-11-19 10:20:25 —-D—- C:Program FilesR-Studio
2009-11-19 10:17:40 —-D—- C:UsersasusAppDataRoamingThinstall
2009-11-19 09:36:45 —-A—- C:WindowsUnDeployV.exe
======List of files/folders modified in the last 1 months======
2009-12-17 11:33:53 —-D—- C:WindowsTemp
2009-12-17 11:33:09 —-D—- C:UsersasusAppDataRoamingFree Download Manager
2009-12-17 11:33:02 —-RD—- C:Program Files
2009-12-17 11:11:51 —-D—- C:UsersasusAppDataRoamingMozilla
2009-12-17 11:11:31 —-D—- C:UsersasusAppDataRoamingSkype
2009-12-17 10:15:23 —-D—- C:WindowsSystem32
2009-12-17 10:15:22 —-D—- C:Windowsinf
2009-12-17 10:15:22 —-A—- C:Windowssystem32PerfStringBackup.INI
2009-12-17 10:11:45 —-D—- C:UsersasusAppDataRoamingSoftware Informer
2009-12-17 10:11:44 —-D—- C:UsersasusAppDataRoamingskypePM
2009-12-17 10:10:05 —-A—- C:Windowssystem32acovcnt.exe
2009-12-16 13:18:57 —-SD—- C:WindowsDownloaded Program Files
2009-12-16 13:14:21 —-D—- C:Windowssystem32drivers
2009-12-16 13:14:18 —-HD—- C:ProgramData
2009-12-16 11:13:52 —-D—- C:WindowsMinidump
2009-12-16 11:13:41 —-D—- C:Windows
2009-12-16 11:12:11 —-SHD—- C:WindowsInstaller
2009-12-16 10:36:48 —-D—- C:Windowssystem32wbem
2009-12-16 10:34:59 —-D—- C:Program FilesCommon FilesDESIGNER
2009-12-16 10:34:59 —-D—- C:Program FilesCommon FilesAdobe
2009-12-16 10:34:59 —-D—- C:Program FilesCommon Files
2009-12-16 10:34:57 —-RD—- C:Downloads
2009-12-16 10:34:57 —-D—- C:Program FilesAdobe
2009-12-16 10:34:52 —-D—- C:Windowswinsxs
2009-12-16 10:34:52 —-D—- C:WindowsTasks
2009-12-16 10:34:51 —-RSD—- C:WindowsMedia
2009-12-16 10:34:51 —-D—- C:Windowssystem32spool
2009-12-16 10:34:51 —-D—- C:Windowssystem32ru-RU
2009-12-16 10:34:51 —-D—- C:Windowssystem32migration
2009-12-16 10:34:51 —-D—- C:Windowssystem32en-US
2009-12-16 10:34:51 —-D—- C:Windowssystem32CodeIntegrity
2009-12-16 10:34:51 —-D—- C:Windowssystem32catroot2
2009-12-16 10:34:51 —-D—- C:Windowsrescache
2009-12-16 10:34:50 —-D—- C:ProgramDataP4G
2009-12-16 10:34:50 —-D—- C:ProgramDataFLEXnet
2009-12-16 10:34:50 —-D—- C:Program FilesZET 9
2009-12-16 10:34:50 —-D—- C:Program FilesWindows Mail
2009-12-16 10:34:50 —-D—- C:Program FilesInternet Explorer
2009-12-16 10:34:49 —-D—- C:Windowsregistration
2009-12-16 10:27:24 —-SHD—- C:System Volume Information
2009-12-16 10:15:55 —-D—- C:Program FilesBejeweled 2 Deluxe
2009-12-13 15:14:28 —-RSD—- C:WindowsFonts
2009-12-13 14:18:29 —-D—- C:Program FilesCommon FilesInstallShield
2009-12-13 11:35:14 —-D—- C:WindowsPrefetch
2009-12-12 22:12:40 —-D—- C:Windowssystem32catroot
2009-12-02 10:14:57 —-D—- C:ProgramDataAdobe
2009-12-01 23:06:19 —-A—- C:Windowssystem32mrt.exe
2009-11-24 22:09:40 —-D—- C:Windowssystem32Tasks
2009-11-24 22:07:18 —-HD—- C:Program FilesInstallShield Installation Information
2009-11-24 22:05:30 —-D—- C:Program FilesCommon Filesmicrosoft shared
2009-11-22 00:59:42 —-D—- C:Windowssystem32WDI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 BHDrvx86;Symantec Heuristics Driver; C:WindowsSystem32DriversNIS1007020.00BBHDrvx86.sys [2009-08-26 259632]
R1 ccHP;Symantec Hash Provider; C:WindowsSystem32DriversNIS1007020.00BccHPx86.sys [2009-10-14 482432]
R1 eeCtrl;Symantec Eraser Control driver; ??C:Program FilesCommon FilesSymantec SharedEENGINEeeCtrl.sys [2009-10-12 371248]
R1 IDSVix86;IDSVix86; ??C:ProgramDataNorton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}NortonDefinitionsipsdefs20091211.001IDSvix86.sys [2009-10-29 343088]
R1 nod32drv;nod32drv; C:Windowssystem32driversnod32drv.sys [2009-12-16 15424]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:Windowssystem32driversNIS1007020.00BSRTSPX.SYS [2009-08-26 43696]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:Windowssystem32DRIVERSSymIMv.sys [2009-08-26 25648]
R1 SYMTDI;Symantec Network Dispatch Driver; C:WindowsSystem32DriversNIS1007020.00BSYMTDI.SYS [2009-08-26 217136]
R2 AMON;AMON; C:Windowssystem32driversamon.sys [2009-12-16 512096]
R2 ASMMAP;ASMMAP; ??C:Program FilesATKGFNEXASMMAP.sys [2007-07-24 13880]
R2 ElbyCDIO;ElbyCDIO Driver; C:WindowsSystem32DriversElbyCDIO.sys [2002-11-29 16320]
R3 amdkmdag;amdkmdag; C:Windowssystem32DRIVERSatipmdag.sys [2009-03-19 4386304]
R3 amdkmdap;amdkmdap; C:Windowssystem32DRIVERSatikmpag.sys [2009-03-19 93184]
R3 athr;Atheros Extensible Wireless LAN device driver; C:Windowssystem32DRIVERSathr.sys [2009-09-05 1183744]
R3 CmBatt;Драйвер батареи с ACPI-управлением (Microsoft); C:Windowssystem32DRIVERSCmBatt.sys [2008-01-21 14208]
R3 ElbyCDFL;ElbyCDFL; C:WindowsSystem32DriversElbyCDFL.sys [2002-11-28 15360]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; ??C:Program FilesCommon FilesSymantec SharedEENGINEEraserUtilRebootDrv.sys [2009-10-12 102448]
R3 ETD;ELAN PS/2 Port Input Device; C:Windowssystem32DRIVERSETD.sys [2009-04-21 90112]
R3 kbfiltr;Keyboard Filter; C:Windowssystem32DRIVERSkbfiltr.sys [2008-11-03 13880]
R3 MTsensor;ATK0100 ACPI UTILITY; C:Windowssystem32DRIVERSATKACPI.sys [2008-12-24 14392]
R3 RTL8169;Realtek 8169 NT Driver; C:Windowssystem32DRIVERSRtlh86.sys [2008-11-27 135680]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:Windowssystem32DRIVERSsnp2uvc.sys [2009-03-26 1799680]
R3 SRS_PremiumSound_Service;SRS Labs Premium Sound; C:Windowssystem32driverssrs_PremiumSound_i386.sys [2009-04-01 233128]
R3 SymEvent;SymEvent; ??C:Windowssystem32DriversSYMEVENT.SYS [2009-10-15 124976]
R3 SYMFW;Symantec Network Filter Driver; C:WindowsSystem32DriversNIS1007020.00BSYMFW.SYS [2009-08-26 89904]
R3 SYMNDISV;Symantec Network Filter Driver; C:WindowsSystem32DriversNIS1007020.00BSYMNDISV.SYS [2009-08-26 48688]
R3 usbfilter;AMD USB Filter Driver; C:Windowssystem32DRIVERSusbfilter.sys [2008-05-28 22072]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:Windowssystem32driversviahduaa.sys [2009-04-28 1019392]
S3 BthEnum;Драйвер блока запроса Bluetooth; C:Windowssystem32DRIVERSBthEnum.sys [2008-01-21 19456]
S3 BthPan;Устройства Bluetooth (личной сети); C:Windowssystem32DRIVERSbthpan.sys [2008-01-21 92160]
S3 BTHPORT;Драйвер порта Bluetooth; C:WindowsSystem32DriversBTHport.sys [2008-01-21 219648]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WindowsSystem32DriversBTHUSB.sys [2008-01-21 29184]
S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
S3 fssfltr;FssFltr; C:Windowssystem32DRIVERSfssfltr.sys [2008-12-08 55264]
S3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2006-11-02 235520]
S3 KLIF;KLIF; ??C:Windowssystem32driversKLIF.SYS [2009-12-16 174864]
S3 MBAMSwissArmy;MBAMSwissArmy; ??C:Windowssystem32driversmbamswissarmy.sys [2008-09-10 38528]
S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
S3 NAVENG;NAVENG; ??C:ProgramDataNorton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}NortonDefinitionsVirusDefs20091216.022NAVENG.SYS [2009-10-12 84912]
S3 NAVEX15;NAVEX15; ??C:ProgramDataNorton{0C55C096-0F1D-4F28-AAA2-85EF591126E7}NortonDefinitionsVirusDefs20091216.022NAVEX15.SYS [2009-10-12 1323568]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:Windowssystem32DRIVERSrfcomm.sys [2008-01-21 49664]
S3 smserial;smserial; C:Windowssystem32DRIVERSsmserial.sys [2006-11-02 1010560]
S3 SRTSP;Symantec Real Time Storage Protection; C:WindowsSystem32DriversNIS1007020.00BSRTSP.SYS [2009-08-26 308272]
S3 SYMDNS;SYMDNS; ??C:Windowssystem32driversNIS1000000.07DSYMDNS.SYS []
S3 SYMREDRV;SYMREDRV; ??C:Windowssystem32driversNIS1000000.07DSYMREDRV.SYS []
S3 TPM;TPM; C:Windowssystem32driverstpm.sys [2008-01-21 45624]
S3 USB_RNDIS;USB Remote NDIS Network Device Driver; C:Windowssystem32DRIVERSusb8023k.sys [2008-01-25 11136]
S3 usbvideo;USB-видеоустройство (WDM); C:WindowsSystem32Driversusbvideo.sys [2008-01-21 134016]
S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]
S4 sdbus;sdbus; C:Windowssystem32DRIVERSsdbus.sys [2008-01-21 88576]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32driverswmiacpi.sys [2008-01-21 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ADSMService;ADSM Service; C:Program FilesASUSASUS Data Security ManagerADSMSrv.exe [2008-03-31 225280]
R2 ASLDRService;ASLDR Service; C:Program FilesASUSATK HotkeyASLDRSrv.exe [2008-08-13 100920]
R2 Ati External Event Utility;Ati External Event Utility; C:Windowssystem32Ati2evxx.exe [2009-03-19 733184]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:Program FilesATKGFNEXGFNEXSrv.exe [2007-08-07 94208]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:Program FilesBonjourmDNSResponder.exe [2006-02-28 229376]
R2 BthServ;@%SystemRoot%System32bthserv.dll,-101; C:Windowssystem32svchost.exe [2008-01-21 21504]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-19 322120]
R2 NOD32krn;NOD32 Kernel Service; C:Program FilesEsetnod32krn.exe [2009-12-16 552064]
R2 Norton Internet Security;Norton Internet Security; C:Program FilesNorton Internet SecurityEngine16.7.2.11ccSvcHst.exe [2009-08-26 117640]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:Program FilesCyberlinkShared filesRichVideo.exe [2009-04-15 271760]
R2 SeaPort;SeaPort; C:Program FilesMicrosoftSearch Enhancement PackSeaPortSeaPort.exe [2009-05-19 240512]
R2 SRS_VolSync_Service;SRS Volume Sync Service; C:Program FilesSRS LabsSRS Premium SoundSRS_VolSync.exe [2009-04-07 70880]
S2 AVP;Kaspersky Anti-Virus 6.0; C:Program FilesKaspersky LabKaspersky Anti-Virus 6.0avp.exe [2006-11-08 155751]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2009-10-02 654848]
S3 FontCache;@%systemroot%system32FntCache.dll,-100; C:Windowssystem32svchost.exe [2008-01-21 21504]
S3 fsssvc;Семейная безопасность Windows Live; C:Program FilesWindows LiveFamily Safetyfsssvc.exe [2008-12-08 533344]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-10-14 182768]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
EOF
