Logfile of random’s system information tool 1.06 (written by random/random)
Run by Jane at 2010-02-01 22:03:29
Microsoft Windows XP Professional Service Pack 3
System drive C: has 61 GB (61%) free of 100 GB
Total RAM: 2030 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:03:32, on 01.02.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16981)
Boot mode: Normal
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:WINDOWSRTHDCPL.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesASUSGamerOSDGamerOSD.exe
C:Program FilesCyberLinkPowerDVD8PDVD8Serv.exe
C:Program FilesCyberlinkShared Filesbrs.exe
C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe
C:Program FilesHPHP Software UpdateHPWuSchd2.exe
C:Program Files2gisUpdateClientWin32UpdateClientService.exe
C:Program FilesCommon FilesABBYYFineReader9.00LicensingPENetworkLicenseServer.exe
C:Program FilesAskBarDisbarbinAskService.exe
C:Program FilesAskBarDisbarbinASKUpgrade.exe
C:WINDOWSATKKBService.exe
C:Program FilesBonjourmDNSResponder.exe
C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe
C:Program FilesPicasa2PicasaMediaDetector.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesDrWebSpIDerAgent.exe
C:Program FilesCDBurnerXPNMSAccessU.exe
C:Program FilesDrWebspiderml.exe
C:PROGRA~1DrWebspiderui.exe
C:Program FilesJavajre6binjusched.exe
C:Program FilesAdobeReader 9.0ReaderReader_sl.exe
C:WINDOWSsystem32nvsvc32.exe
C:Program FilesAdobeAdobe Photoshop Lightroom 1.3apdproxy.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesCommon FilesAheadLibNMBgMonitor.exe
c:Program FilesCommon FilesProtexisLicense ServicePsiService_2.exe
C:PROGRA~1DrWebspidernt.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesCommon FilesAheadLibNMIndexStoreSvr.exe
C:Program FilesHPDigital Imagingbinhpqtra08.exe
C:Program FilesYandexPunto Switcherpunto.exe
C:Program FilesSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe
C:Program FilesHPDigital Imagingbinhpqimzone.exe
C:WINDOWSsystem32wbemwmiapsrv.exe
C:Program FilesOperaopera.exe
C:Program FilesHPDigital ImagingbinhpqSTE08.exe
C:Documents and SettingsJaneРабочий столRSIT.exe
C:Program Filestrend microJane.exe
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://search.qip.ru
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://search.qip.ru
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.yandex.ru?clid=41279
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://search.qip.ru/search?query=%s&from=IE
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: AskBar BHO — {201f27d4-3704-41d6-89c1-aa35e39143ed} — C:Program FilesAskBarDisbarbinaskBar.dll
O2 — BHO: Groove GFS Browser Helper — {72853161-30C5-4D22-B7F9-0BBC1D38A37E} — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — c:program filesmail.rusputnikMailRuSputnik.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program FilesYandexYandexBarIEyndbar.dll
O3 — Toolbar: Rambler-Ассистент — {468CD8A9-7C25-45FA-969E-3D925C689DC4} — C:Program FilesRambler AssistantramblertoolbarU0.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
O3 — Toolbar: Ask Toolbar — {3041d03e-fd4b-44e0-b742-2d9b88305f98} — C:Program FilesAskBarDisbarbinaskBar.dll
O4 — HKLM..Run: [IMJPMIG8.1] «C:WINDOWSIMEimjp8_1IMJPMIG.EXE» /Spoil /RemAdvDef /Migration32
O4 — HKLM..Run: [PHIME2002ASync] C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE /SYNC
O4 — HKLM..Run: [PHIME2002A] C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE /IMEName
O4 — HKLM..Run: [RTHDCPL] RTHDCPL.EXE
O4 — HKLM..Run: [SkyTel] SkyTel.EXE
O4 — HKLM..Run: [Alcmtr] ALCMTR.EXE
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [ASUSGamerOSD] C:Program FilesASUSGamerOSDGamerOSD.exe
O4 — HKLM..Run: [RemoteControl8] «C:Program FilesCyberLinkPowerDVD8PDVD8Serv.exe»
O4 — HKLM..Run: [PDVD8LanguageShortcut] «C:Program FilesCyberLinkPowerDVD8LanguageLanguage.exe»
O4 — HKLM..Run: [BDRegion] C:Program FilesCyberlinkShared Filesbrs.exe
O4 — HKLM..Run: [GrooveMonitor] «C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe»
O4 — HKLM..Run: [HP Software Update] C:Program FilesHPHP Software UpdateHPWuSchd2.exe
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentmagent.exe -LM
O4 — HKLM..Run: [Picasa Media Detector] C:Program FilesPicasa2PicasaMediaDetector.exe
O4 — HKLM..Run: [SpIDerAgent] «C:Program FilesDrWebSpIDerAgent.exe»
O4 — HKLM..Run: [SpIDerMail] «C:Program FilesDrWebspiderml.exe»
O4 — HKLM..Run: [SpIDerNT] C:PROGRA~1DrWebspiderui.exe /agent
O4 — HKLM..Run: [SunJavaUpdateSched] «C:Program FilesJavajre6binjusched.exe»
O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 9.0ReaderReader_sl.exe»
O4 — HKLM..Run: [Adobe ARM] «C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe»
O4 — HKLM..Run: [Adobe Photo Downloader] «C:Program FilesAdobeAdobe Photoshop Lightroom 1.3apdproxy.exe»
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] «C:Program FilesCommon FilesAheadLibNMBgMonitor.exe»
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — S-1-5-18 Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe (User ‘SYSTEM’)
O4 — S-1-5-18 Startup: Инструмент проверки носителя Picture Motion Browser.lnk = C:Program FilesSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe (User ‘SYSTEM’)
O4 — .DEFAULT Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe (User ‘Default user’)
O4 — .DEFAULT Startup: Инструмент проверки носителя Picture Motion Browser.lnk = C:Program FilesSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe (User ‘Default user’)
O4 — Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe
O4 — Startup: Инструмент проверки носителя Picture Motion Browser.lnk = C:Program FilesSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe
O4 — Global Startup: HP Digital Imaging Monitor.lnk = C:Program FilesHPDigital Imagingbinhpqtra08.exe
O4 — Global Startup: Быстрый запуск HP Photosmart Premier.lnk = C:Program FilesHPDigital Imagingbinhpqthb08.exe
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O8 — Extra context menu item: Добавить в Rambler-Закладки — res://C:Program FilesRambler AssistantramblertoolbarU0.dll/zakladki.htm
O8 — Extra context menu item: Найти с помощью Рамблера — res://C:Program FilesRambler AssistantramblertoolbarU0.dll/search.htm
O8 — Extra context menu item: Перевести с помощью словарей Рамблера — res://C:Program FilesRambler AssistantramblertoolbarU0.dll/dic.htm
O8 — Extra context menu item: Поиск@Mail.Ru — res://c:program filesmail.rusputnikMailRuSputnik.dll/282
O8 — Extra context menu item: Словари@Mail.Ru — res://c:program filesmail.rusputnikMailRuSputnik.dll/283
O9 — Extra button: Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra ‘Tools’ menuitem: &Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
O9 — Extra ‘Tools’ menuitem: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O18 — Protocol: grooveLocalGWS — {88FED34C-F0CA-4636-A375-3CB6248B04CD} — C:Program FilesMicrosoft OfficeOffice12GrooveSystemServices.dll
O18 — Protocol: solores — {8FA1F4E9-444B-48BF-98CD-B8ECA88E6BA5} — C:PROGRA~1Solo9SoloRes.dll
O23 — Service: 2GIS UpdateClientService — ДубльГИС — C:Program Files2gisUpdateClientWin32UpdateClientService.exe
O23 — Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) — ABBYY (BIT Software) — C:Program FilesCommon FilesABBYYFineReader9.00LicensingPENetworkLicenseServer.exe
O23 — Service: ASKService — Unknown owner — C:Program FilesAskBarDisbarbinAskService.exe
O23 — Service: ASKUpgrade — Unknown owner — C:Program FilesAskBarDisbarbinASKUpgrade.exe
O23 — Service: ATK Keyboard Service (ATKKeyboardService) — ASUSTeK COMPUTER INC. — C:WINDOWSATKKBService.exe
O23 — Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) — Apple Computer, Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: Dr.Web Scanning Engine (DrWebEngine) (DrWebEngine) — Doctor Web, Ltd. — C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: FLEXnet Licensing Service — Macrovision Europe Ltd. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
O23 — Service: Google Updater Service (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: HP Port Resolver — Hewlett-Packard Company — C:WINDOWSsystem32spooldriversw32x863HPBPRO.EXE
O23 — Service: HP Status Server — Hewlett-Packard Company — C:WINDOWSsystem32spooldriversw32x863HPBOID.EXE
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: NBService — Nero AG — C:Program FilesNeroNero 7Nero BackItUpNBService.exe
O23 — Service: NMSAccessU — Unknown owner — C:Program FilesCDBurnerXPNMSAccessU.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Pml Driver HPZ12 — HP — C:WINDOWSsystem32HPZipm12.exe
O23 — Service: Protexis Licensing V2 (PSI_SVC_2) — Protexis Inc. — c:Program FilesCommon FilesProtexisLicense ServicePsiService_2.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: SpIDer Guard for Windows (SPIDERNT) — Doctor Web, Ltd. — C:PROGRA~1DrWebspidernt.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe
—
End of file — 14271 bytes
======Scheduled tasks folder======
C:WINDOWStasksDr.Web Daily scan.job
C:WINDOWStasksDr.Web Update.job
C:WINDOWStasksOGALogon.job
======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO — C:Program FilesAskBarDisbarbinaskBar.dll [2008-12-09 333192]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper — C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — c:program filesmail.rusputnikMailRuSputnik.dll [2009-03-31 680624]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-10-11 73728]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program FilesYandexYandexBarIEyndbar.dll [2009-07-24 5586208]
{468CD8A9-7C25-45FA-969E-3D925C689DC4} — Rambler-Ассистент — C:Program FilesRambler AssistantramblertoolbarU0.dll [2009-01-23 849392]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — c:program filesmail.rusputnikMailRuSputnik.dll [2009-03-31 680624]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} — Ask Toolbar — C:Program FilesAskBarDisbarbinaskBar.dll [2008-12-09 333192]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«IMJPMIG8.1″=C:WINDOWSIMEimjp8_1IMJPMIG.EXE [2008-04-15 208952]
«PHIME2002ASync»=C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE [2008-04-15 455168]
«PHIME2002A»=C:WINDOWSsystem32IMETINTLGNTTINTSETP.EXE [2008-04-15 455168]
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2007-04-01 16125440]
«SkyTel»=C:WINDOWSSkyTel.EXE [2007-04-01 2879488]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2007-04-01 69632]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2007-05-11 8429568]
«nwiz»=nwiz.exe /install []
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2007-05-11 81920]
«ASUSGamerOSD»=C:Program FilesASUSGamerOSDGamerOSD.exe [2007-06-01 380928]
«RemoteControl8″=C:Program FilesCyberLinkPowerDVD8PDVD8Serv.exe [2008-03-20 83240]
«PDVD8LanguageShortcut»=C:Program FilesCyberLinkPowerDVD8LanguageLanguage.exe [2007-12-14 50472]
«BDRegion»=C:Program FilesCyberlinkShared Filesbrs.exe [2008-05-19 91432]
«GrooveMonitor»=C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2008-10-25 31072]
«HP Software Update»=C:Program FilesHPHP Software UpdateHPWuSchd2.exe [2007-05-08 54840]
«MAgent»=C:Program FilesMail.RuAgentmagent.exe [2009-03-31 6210744]
«Picasa Media Detector»=C:Program FilesPicasa2PicasaMediaDetector.exe [2006-07-25 249926]
«SpIDerAgent»=C:Program FilesDrWebSpIDerAgent.exe [2009-11-18 447728]
«SpIDerMail»=C:Program FilesDrWebspiderml.exe [2009-06-30 644336]
«SpIDerNT»=C:PROGRA~1DrWebspiderui.exe [2009-09-03 231840]
«»= []
«SunJavaUpdateSched»=C:Program FilesJavajre6binjusched.exe [2009-10-11 149280]
«Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-10-03 35696]
«Adobe ARM»=C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe [2009-09-04 935288]
«Adobe Photo Downloader»=C:Program FilesAdobeAdobe Photoshop Lightroom 1.3apdproxy.exe [2007-12-04 61440]
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2008-04-15 15360]
«BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}»=C:Program FilesCommon FilesAheadLibNMBgMonitor.exe [2006-11-16 139264]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAnti Trojan Elite]
C:Program FilesAnti Trojan EliteTJEnder.exe :NO []
[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
C:Program FilesCommon FilesAheadLibNeroCheck.exe [2006-01-12 155648]
C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
HP Digital Imaging Monitor.lnk — C:Program FilesHPDigital Imagingbinhpqtra08.exe
Быстрый запуск HP Photosmart Premier.lnk — C:Program FilesHPDigital Imagingbinhpqthb08.exe
C:Documents and SettingsJaneГлавное менюПрограммыАвтозагрузка
Punto Switcher.lnk — C:Program FilesYandexPunto Switcherpunto.exe
Инструмент проверки носителя Picture Motion Browser.lnk — C:Program FilesSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesPeersPeers.exe»=»C:Program FilesPeersPeers.exe:*:Enabled:Peers»
«C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE»=»C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook»
«C:Program FilesMicrosoft OfficeOffice12GROOVE.EXE»=»C:Program FilesMicrosoft OfficeOffice12GROOVE.EXE:*:Enabled:Microsoft Office Groove»
«C:Program FilesMicrosoft OfficeOffice12ONENOTE.EXE»=»C:Program FilesMicrosoft OfficeOffice12ONENOTE.EXE:*:Enabled:Microsoft Office OneNote»
«C:Program FilesMail.RuAgentmagent.exe»=»C:Program FilesMail.RuAgentmagent.exe:*:Enabled:Mail.Ru Агент»
«C:Program FilesVideoLANVLCvlc.exe»=»C:Program FilesVideoLANVLCvlc.exe:*:Enabled:VLC media player»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesHPDigital Imagingbinhpqtra08.exe»=»C:Program FilesHPDigital Imagingbinhpqtra08.exe:*:Enabled:hpqtra08.exe»
«C:Program FilesHPDigital Imagingbinhpqste08.exe»=»C:Program FilesHPDigital Imagingbinhpqste08.exe:*:Enabled:hpqste08.exe»
«C:Program FilesHPDigital Imagingbinhpofxm08.exe»=»C:Program FilesHPDigital Imagingbinhpofxm08.exe:*:Enabled:hpofxm08.exe»
«C:Program FilesHPDigital Imagingbinhposfx08.exe»=»C:Program FilesHPDigital Imagingbinhposfx08.exe:*:Enabled:hposfx08.exe»
«C:Program FilesHPDigital Imagingbinhposid01.exe»=»C:Program FilesHPDigital Imagingbinhposid01.exe:*:Enabled:hposid01.exe»
«C:Program FilesHPDigital Imagingbinhpqscnvw.exe»=»C:Program FilesHPDigital Imagingbinhpqscnvw.exe:*:Enabled:hpqscnvw.exe»
«C:Program FilesHPDigital Imagingbinhpqkygrp.exe»=»C:Program FilesHPDigital Imagingbinhpqkygrp.exe:*:Enabled:hpqkygrp.exe»
«C:Program FilesHPDigital ImagingbinhpqCopy.exe»=»C:Program FilesHPDigital ImagingbinhpqCopy.exe:*:Enabled:hpqcopy.exe»
«C:Program FilesHPDigital Imagingbinhpfccopy.exe»=»C:Program FilesHPDigital Imagingbinhpfccopy.exe:*:Enabled:hpfccopy.exe»
«C:Program FilesHPDigital Imagingbinhpzwiz01.exe»=»C:Program FilesHPDigital Imagingbinhpzwiz01.exe:*:Enabled:hpzwiz01.exe»
«C:Program FilesHPDigital ImagingUnloadHpqPhUnl.exe»=»C:Program FilesHPDigital ImagingUnloadHpqPhUnl.exe:*:Enabled:hpqphunl.exe»
«C:Program FilesHPDigital ImagingUnloadHpqDIA.exe»=»C:Program FilesHPDigital ImagingUnloadHpqDIA.exe:*:Enabled:hpqdia.exe»
«C:Program FilesHPDigital Imagingbinhpoews01.exe»=»C:Program FilesHPDigital Imagingbinhpoews01.exe:*:Enabled:hpoews01.exe»
«C:Program FilesHPDigital Imagingbinhpqnrs08.exe»=»C:Program FilesHPDigital Imagingbinhpqnrs08.exe:*:Enabled:hpqnrs08.exe»
«C:Program FilesOperaopera.exe»=»C:Program FilesOperaopera.exe:*:Enabled:Opera Internet Browser»
«C:Program FilesICQ6.5ICQ.exe»=»C:Program FilesICQ6.5ICQ.exe:*:Enabled:ICQ6»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«C:Program FilesVuzeAzureus.exe»=»C:Program FilesVuzeAzureus.exe:*:Enabled:Azureus»
«C:Program FilesBitTornadobtdownloadgui.exe»=»C:Program FilesBitTornadobtdownloadgui.exe:*:Enabled:btdownloadgui»
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5158faa6-cb5e-11de-911e-0019d1852674}]
shellAutoRuncommand — F:DriverFileszerX.exe
shellopencommand — F:DriverFileszerX.exe
======List of files/folders created in the last 1 months======
2010-02-01 21:55:56 —-D—- C:_OTM
2010-01-26 20:11:39 —-N—- C:WINDOWSsystem32pxafs.dll
2010-01-26 14:43:35 —-D—- C:Program Filestrend micro
2010-01-26 14:43:34 —-D—- C:rsit
2010-01-25 20:24:44 —-D—- C:Documents and SettingsJaneApplication DataFastStone
2010-01-25 20:24:35 —-D—- C:Program FilesFastStone Image Viewer
2010-01-25 20:12:51 —-D—- C:Program FilesNCH Software
2010-01-25 19:54:14 —-A—- C:WINDOWSsystem32BASSMOD.dll
2010-01-25 19:53:38 —-A—- C:WINDOWSsystem32LFVPG14N.DLL
2010-01-25 19:53:38 —-A—- C:WINDOWSsystem32lfvec14N.dll
2010-01-25 19:53:38 —-A—- C:WINDOWSsystem32LFSVG14N.DLL
2010-01-25 19:53:38 —-A—- C:WINDOWSsystem32LFSHP14N.DLL
2010-01-25 19:53:38 —-A—- C:WINDOWSsystem32LFPCT14N.DLL
2010-01-25 19:53:38 —-A—- C:WINDOWSsystem32LFGBR14N.DLL
2010-01-25 19:53:37 —-A—- C:WINDOWSsystem32LTDLGUTL14N.DLL
2010-01-25 19:53:37 —-A—- C:WINDOWSsystem32LTDLGKRN14N.DLL
2010-01-25 19:53:37 —-A—- C:WINDOWSsystem32LFDWG14N.DLL
2010-01-25 19:53:37 —-A—- C:WINDOWSsystem32LFDWF14N.DLL
2010-01-25 19:53:37 —-A—- C:WINDOWSsystem32LFDRW14N.DLL
2010-01-25 19:53:37 —-A—- C:WINDOWSsystem32LFDGN14N.DLL
2010-01-25 19:53:37 —-A—- C:WINDOWSsystem32LFCMX14N.DLL
2010-01-25 19:53:37 —-A—- C:WINDOWSsystem32LFCGM14N.DLL
2010-01-25 19:53:36 —-A—- C:WINDOWSsystem32LVDLG14N.DLL
2010-01-25 19:53:36 —-A—- C:WINDOWSsystem32lttmb14N.dll
2010-01-25 19:53:36 —-A—- C:WINDOWSsystem32LTTLB14N.dll
2010-01-25 19:53:36 —-A—- C:WINDOWSsystem32LTDLGFILE14N.DLL
2010-01-25 19:53:36 —-A—- C:WINDOWSsystem32LTDLGCTRL14N.DLL
2010-01-25 19:53:36 —-A—- C:WINDOWSsystem32LTDLGCOM14N.DLL
2010-01-25 19:53:36 —-A—- C:WINDOWSsystem32LTDLGCLR14N.DLL
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32ltlst14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lftga14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32LFSMP14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lfsid14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lfsgi14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lfsct14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lfRTF14n.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lfRaw14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lfras14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lfpsd14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lflmb14N.dll
2010-01-25 19:53:35 —-A—- C:WINDOWSsystem32lflma14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32LFPNM14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32Lfpng14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32lfpcx14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32lfPCL14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32lfpcd14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32lfmsp14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32lfmac14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32lfkodak.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32lfjbg14N.dll
2010-01-25 19:53:34 —-A—- C:WINDOWSsystem32LFJ2K14N.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lfiff14N.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lfica14N.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lfgif14N.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lffpx7.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lffpx14N.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lfflc14N.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32LFFAX14n.DLL
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lfeps14N.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lfdxf14N.dll
2010-01-25 19:53:33 —-A—- C:WINDOWSsystem32lfCUT14N.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32LFCMW14N.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32LFCMP14n.DLL
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32lfclp14N.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32lfcal14N.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32lfbmp14N.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32lfawd14N.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32lfAFP14N.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32Awview32.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32Awresx32.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32Awdenc32.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32Awdcxc32.dll
2010-01-25 19:53:32 —-A—- C:WINDOWSsystem32Awcodc32.dll
2010-01-25 19:53:31 —-A—- C:WINDOWSsystem32LTCLR14N.dll
2010-01-25 19:53:31 —-A—- C:WINDOWSsystem32lfxwd14N.dll
2010-01-25 19:53:31 —-A—- C:WINDOWSsystem32lfXpm14N.dll
2010-01-25 19:53:31 —-A—- C:WINDOWSsystem32lfXbm14N.dll
2010-01-25 19:53:31 —-A—- C:WINDOWSsystem32lfwpg14N.dll
2010-01-25 19:53:31 —-A—- C:WINDOWSsystem32Lfwmf14N.dll
2010-01-25 19:53:31 —-A—- C:WINDOWSsystem32lfwfx14N.dll
2010-01-25 19:53:31 —-A—- C:WINDOWSsystem32LFTIF14n.DLL
2010-01-25 19:53:30 —-A—- C:WINDOWSsystem32LTKRN14n.DLL
2010-01-25 19:53:30 —-A—- C:WINDOWSsystem32LTIMG14n.DLL
2010-01-25 19:53:30 —-A—- C:WINDOWSsystem32LTFIL14n.DLL
2010-01-25 19:53:30 —-A—- C:WINDOWSsystem32LTEFX14n.DLL
2010-01-25 19:53:30 —-A—- C:WINDOWSsystem32LTDIS14n.DLL
2010-01-25 19:53:29 —-A—- C:WINDOWSsystem32Pcdlib32.dll
2010-01-25 19:53:29 —-A—- C:WINDOWSsystem32Lvkrn14N.dll
2010-01-25 19:53:29 —-A—- C:WINDOWSsystem32libgfle190.dll
2010-01-25 19:53:29 —-A—- C:WINDOWSsystem32libgfl190.dll
2010-01-25 19:53:29 —-A—- C:WINDOWSsystem32GflAx190.dll
2010-01-25 19:03:24 —-D—- C:Documents and SettingsAll UsersApplication DataACD Systems
2010-01-25 19:03:14 —-D—- C:Program FilesACD Systems
2010-01-23 11:19:03 —-D—- C:Documents and SettingsJaneApplication DataHelp
2010-01-22 17:00:15 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab Setup Files
2010-01-21 18:51:37 —-D—- C:Documents and SettingsJaneApplication DataRawTherapeeAlpha
2010-01-21 18:49:17 —-D—- C:Documents and SettingsJaneApplication DataACD Systems
2010-01-21 18:48:29 —-D—- C:Program FilesCommon FilesACD Systems
2010-01-21 09:45:03 —-A—- C:WINDOWSntbtlog.txt
2010-01-21 09:23:43 —-D—- C:Program FilesCommon FilesCanon
2010-01-21 09:08:11 —-D—- C:Documents and SettingsAll UsersApplication DataPhase One
2010-01-14 10:14:18 —-HDC—- C:WINDOWS$NtUninstallKB955759$
2010-01-14 10:14:05 —-HDC—- C:WINDOWS$NtUninstallKB972270$
======List of files/folders modified in the last 1 months======
2010-02-01 22:01:47 —-D—- C:WINDOWSTemp
2010-02-01 22:01:45 —-D—- C:WINDOWS
2010-02-01 22:01:40 —-D—- C:WINDOWSsystem32CatRoot2
2010-02-01 21:58:31 —-D—- C:WINDOWSsystem32
2010-02-01 16:12:10 —-D—- C:Program FilesDrWeb
2010-02-01 16:12:05 —-A—- C:WINDOWSSchedLgU.Txt
2010-01-30 21:43:22 —-D—- C:WINDOWSPrefetch
2010-01-29 12:55:43 —-D—- C:Program FilesAIMP2
2010-01-29 10:26:30 —-A—- C:WINDOWSNeroDigital.ini
2010-01-26 21:33:06 —-D—- C:Documents and SettingsJaneApplication Datadvdcss
2010-01-26 20:18:20 —-D—- C:Documents and SettingsJaneApplication DataAdobe
2010-01-26 20:17:30 —-D—- C:Documents and SettingsAll UsersApplication DataAdobe
2010-01-26 20:15:57 —-D—- C:Program FilesAdobe
2010-01-26 20:15:47 —-RD—- C:Program Files
2010-01-26 20:11:41 —-SHD—- C:WINDOWSInstaller
2010-01-26 20:11:40 —-HD—- C:Config.Msi
2010-01-26 14:43:37 —-D—- C:WINDOWSsystem32drivers
2010-01-25 19:05:10 —-D—- C:WINDOWSsystem32CatRoot
2010-01-25 19:03:23 —-D—- C:WINDOWSWinSxS
2010-01-25 19:00:59 —-HD—- C:WINDOWSinf
2010-01-22 13:50:20 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-01-22 13:50:14 —-D—- C:WINDOWSsystem32ru-ru
2010-01-22 13:50:14 —-D—- C:Program FilesInternet Explorer
2010-01-22 09:11:02 —-HD—- C:WINDOWS$hf_mig$
2010-01-21 18:48:29 —-D—- C:Program FilesCommon Files
2010-01-21 11:35:52 —-D—- C:Program FilesFieryAds
2010-01-14 10:28:30 —-D—- C:WINDOWSAppPatch
2010-01-14 10:14:54 —-D—- C:Documents and SettingsAll UsersApplication DataMicrosoft Help
2010-01-14 10:14:29 —-A—- C:WINDOWSimsins.BAK
2010-01-09 00:05:36 —-D—- C:Documents and SettingsJaneApplication DataAzureus
2010-01-06 11:34:01 —-RSD—- C:WINDOWSassembly
2010-01-06 11:32:16 —-RSD—- C:WINDOWSFonts
2010-01-06 11:32:10 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2010-01-06 11:31:37 —-D—- C:Program FilesMicrosoft Works
2010-01-06 11:30:24 —-A—- C:WINDOWSwin.ini
2010-01-06 11:30:22 —-D—- C:Program FilesCommon FilesSystem
2010-01-05 15:58:03 —-A—- C:WINDOWSsystem32wininet.dll
2010-01-05 15:58:03 —-A—- C:WINDOWSsystem32webcheck.dll
2010-01-05 15:58:03 —-A—- C:WINDOWSsystem32urlmon.dll
2010-01-05 15:58:03 —-A—- C:WINDOWSsystem32url.dll
2010-01-05 15:58:02 —-N—- C:WINDOWSsystem32occache.dll
2010-01-05 15:58:02 —-N—- C:WINDOWSsystem32mstime.dll
2010-01-05 15:58:02 —-N—- C:WINDOWSsystem32msrating.dll
2010-01-05 15:58:02 —-N—- C:WINDOWSsystem32mshtmled.dll
2010-01-05 15:58:02 —-A—- C:WINDOWSsystem32pngfilt.dll
2010-01-05 15:58:02 —-A—- C:WINDOWSsystem32mshtml.dll
2010-01-05 15:58:01 —-A—- C:WINDOWSsystem32msfeedsbs.dll
2010-01-05 15:58:01 —-A—- C:WINDOWSsystem32msfeeds.dll
2010-01-05 15:58:00 —-N—- C:WINDOWSsystem32jsproxy.dll
2010-01-05 15:58:00 —-N—- C:WINDOWSsystem32iernonce.dll
2010-01-05 15:58:00 —-A—- C:WINDOWSsystem32iertutil.dll
2010-01-05 15:58:00 —-A—- C:WINDOWSsystem32iepeers.dll
2010-01-05 15:58:00 —-A—- C:WINDOWSsystem32ieframe.dll
2010-01-05 15:57:59 —-N—- C:WINDOWSsystem32iedkcs32.dll
2010-01-05 15:57:59 —-A—- C:WINDOWSsystem32ieencode.dll
2010-01-05 15:57:58 —-N—- C:WINDOWSsystem32ieaksie.dll
2010-01-05 15:57:58 —-N—- C:WINDOWSsystem32ieakeng.dll
2010-01-05 15:57:58 —-N—- C:WINDOWSsystem32extmgr.dll
2010-01-05 15:57:58 —-A—- C:WINDOWSsystem32ieapfltr.dll
2010-01-05 15:57:58 —-A—- C:WINDOWSsystem32icardie.dll
2010-01-05 15:57:58 —-A—- C:WINDOWSsystem32dxtrans.dll
2010-01-05 15:57:58 —-A—- C:WINDOWSsystem32dxtmsft.dll
2010-01-05 15:57:58 —-A—- C:WINDOWSsystem32corpol.dll
2010-01-05 15:57:58 —-A—- C:WINDOWSsystem32advpack.dll
2010-01-05 06:17:46 —-A—- C:WINDOWSsystem32MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 asuskbnt;Enhanced Display Driver Helper Service; C:WINDOWSsystem32driversatkkbnt.sys [2007-05-31 11136]
R1 EIO;EIO; ??C:WINDOWSsystem32driversEIO.sys []
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-15 40704]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2008-04-15 12032]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; ??C:Program FilesCyberLinkPowerDVD800.fcl []
R2 SPIDER;SpIDer Guard File System Monitor; ??C:PROGRA~1DrWebspider.sys []
R3 Arp1394;Протокол клиента 1394 ARP; C:WINDOWSsystem32DRIVERSarp1394.sys [2008-04-15 60800]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:WINDOWSsystem32driversasusgsb.sys [2007-05-31 12416]
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:WINDOWSsystem32DRIVERSe1e5132.sys [2007-04-01 254872]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2008-04-15 144384]
R3 HECI;Intel(R) Management Engine Interface; C:WINDOWSsystem32DRIVERSHECI.sys [2007-03-13 44672]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2007-04-01 4484608]
R3 NIC1394;Сетевой драйвер 1394; C:WINDOWSsystem32DRIVERSnic1394.sys [2008-04-15 61824]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2007-05-11 6738432]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2008-04-14 59520]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-14 20608]
R3 Video3D;ASUS Video3D Service; C:WINDOWSSystem32DriversVideo3D32.sys [2007-05-31 10752]
S3 ATE_PROCMON;ATE_PROCMON; ??C:Program FilesAnti Trojan EliteATEPMon.sys []
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2008-04-14 17024]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:WINDOWSsystem32DRIVERSHPZid412.sys [2006-04-13 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:WINDOWSsystem32DRIVERSHPZipr12.sys [2006-04-13 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:WINDOWSsystem32DRIVERSHPZius12.sys [2006-04-13 21568]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2008-04-14 10880]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2008-04-14 15232]
S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2008-04-14 32128]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2008-04-14 25856]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2008-04-14 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-14 26368]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 2GIS UpdateClientService;2GIS UpdateClientService; C:Program Files2gisUpdateClientWin32UpdateClientService.exe [2008-09-17 1134592]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:Program FilesCommon FilesABBYYFineReader9.00LicensingPENetworkLicenseServer.exe [2009-02-01 660768]
R2 ASKService;ASKService; C:Program FilesAskBarDisbarbinAskService.exe [2008-12-09 464264]
R2 ASKUpgrade;ASKUpgrade; C:Program FilesAskBarDisbarbinASKUpgrade.exe [2008-12-09 234888]
R2 ATKKeyboardService;ATK Keyboard Service; C:WINDOWSATKKBService.exe [2007-05-31 258560]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:Program FilesBonjourmDNSResponder.exe [2006-02-28 229376]
R2 DrWebEngine;Dr.Web Scanning Engine (DrWebEngine); C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe [2009-09-29 869688]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-10-11 153376]
R2 NMSAccessU;NMSAccessU; C:Program FilesCDBurnerXPNMSAccessU.exe [2008-10-20 71096]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2007-05-11 163908]
R2 PSI_SVC_2;Protexis Licensing V2; c:Program FilesCommon FilesProtexisLicense ServicePsiService_2.exe [2007-07-24 185632]
R2 SPIDERNT;SpIDer Guard for Windows; C:PROGRA~1DrWebspidernt.exe [2009-09-03 231328]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:WINDOWSsystem32HPZipm12.exe [2007-08-09 73728]
S3 aspnet_state;Служба состояний ASP.NET; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2009-01-14 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2008-11-21 136120]
S3 HP Port Resolver;HP Port Resolver; C:WINDOWSsystem32spooldriversw32x863HPBPRO.EXE [2005-05-20 81920]
S3 HP Status Server;HP Status Server; C:WINDOWSsystem32spooldriversw32x863HPBOID.EXE [2004-10-16 73728]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2008-10-25 65888]
S3 NBService;NBService; C:Program FilesNeroNero 7Nero BackItUpNBService.exe [2006-11-10 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2008-04-15 14336]
S4 NetTcpPortSharing;Служба общего доступа к портам Net.Tcp; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]
EOF
