Re: Re: Проблема значков общего диска и dvd дисковода

[andrei0390]

Следующий лог:
ComboFix 10-02-27.04 — 1 01.03.2010 23:46:59.3.1 — x86
Microsoft Windows XP Home Edition 5.1.2600.2.1251.7.1049.18.1023.665 [GMT 3:00]
Running from: c:documents and settings1Рабочий столComboFix.exe
Command switches used :: c:documents and settings1Рабочий столCFScript.txt
AV: avast! Antivirus *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Outpost Firewall Pro *enabled* {8A20CA2A-9E02-4A64-923B-0A38208EB7FD}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

---

Service_ewituirec

---

Service_kwbxlacv

((((((((((((((((((((((((( Files Created from 2010-02-01 to 2010-03-01 )))))))))))))))))))))))))))))))
.

2010-03-01 16:50 . 2010-03-01 16:51

---

dc-h—w- c:windowsie8
2010-02-28 13:16 . 2010-02-28 13:16

---

d

---

w- c:documents and settings1Application DataBinarySense
2010-02-28 13:16 . 2010-02-28 13:18

---

d

---

w- c:program filesCommon FilesBinarySense
2010-02-27 06:38 . 2010-02-27 06:38

---

d

---

w- c:documents and settings1Application DataMalwarebytes
2010-02-27 06:38 . 2010-01-07 13:07 38224 —-a-w- c:windowssystem32driversmbamswissarmy.sys
2010-02-27 06:38 . 2010-02-27 06:38

---

d

---

w- c:documents and settingsAll UsersApplication DataMalwarebytes
2010-02-27 06:38 . 2010-02-27 06:38

---

d

---

w- c:program filesMalwarebytes’ Anti-Malware
2010-02-27 06:38 . 2010-01-07 13:07 19160 —-a-w- c:windowssystem32driversmbam.sys
2010-02-22 20:10 . 2010-02-27 08:11

---

d

---

w- c:program filestrend micro
2010-02-22 20:10 . 2010-02-22 20:11

---

d

---

w- C:rsit
2010-02-21 09:20 . 2004-08-18 12:00 14336 -c—a-w- c:windowssystem32dllcachesvchost.exe
2010-02-21 09:20 . 2004-08-18 12:00 14336

---

w- c:windowssystem32svchost.exe
2010-02-21 08:28 . 2010-02-21 08:28

---

d

---

w- c:documents and settingsAll UsersApplication DataAlwil Software
2010-02-20 18:38 . 2010-02-11 18:42 46672 —-a-w- c:windowssystem32driversaswTdi.sys
2010-02-20 18:38 . 2010-02-11 18:39 23376 —-a-w- c:windowssystem32driversaswRdr.sys
2010-02-20 18:38 . 2010-02-11 18:38 28880 —-a-w- c:windowssystem32driversaavmker4.sys
2010-02-20 18:38 . 2010-02-11 18:53 38848 —-a-w- c:windowssystem32avastSS.scr
2010-02-20 18:38 . 2010-02-11 18:42 162512 —-a-w- c:windowssystem32driversaswSP.sys
2010-02-20 18:38 . 2010-02-11 18:38 100432 —-a-w- c:windowssystem32driversaswmon2.sys
2010-02-20 18:38 . 2010-02-11 18:38 94800 —-a-w- c:windowssystem32driversaswmon.sys
2010-02-20 18:38 . 2010-02-11 18:38 19024 —-a-w- c:windowssystem32driversaswFsBlk.sys
2010-02-20 18:38 . 2010-02-11 18:53 153184 —-a-w- c:windowssystem32aswBoot.exe
2010-02-19 15:54 . 2010-02-19 15:54

---

d

---

w- c:program filesSTDU Viewer
2010-02-19 15:54 . 2010-02-19 15:54

---

d

---

w- c:program filesCommon FilesSTDUtility
2010-02-12 14:03 . 2010-03-01 14:32

---

d

---

w- c:program filesCMS
2010-02-07 10:58 . 2010-02-07 10:58

---

d

---

w- c:documents and settings1Local SettingsApplication DataSymantec
2010-02-07 10:54 . 2010-02-20 18:30

---

d

---

w- c:program filesCommon FilesSymantec Shared

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-01 20:50 . 2006-02-19 23:51 89936 —-a-w- c:windowssystem32perfc019.dat
2010-03-01 20:50 . 2006-02-19 23:51 476888 —-a-w- c:windowssystem32perfh019.dat
2010-03-01 20:45 . 2007-08-27 19:38

---

d—a-w- c:documents and settingsAll UsersApplication DataTEMP
2010-03-01 20:35 . 2008-11-05 21:55

---

d

---

w- c:documents and settings1Application DatauTorrent
2010-02-28 13:19 . 2007-09-06 12:17

---

d

---

w- c:program filesHL-Server
2010-02-21 08:37 . 2008-02-03 13:56

---

d

---

w- c:program filesAlwil Software
2010-02-20 18:32 . 2009-08-30 19:37

---

d

---

w- c:documents and settingsAll UsersApplication DataSymantec
2010-02-07 10:26 . 2008-01-28 15:58

---

d

---

w- c:program filesDrWeb
2010-01-16 21:31 . 2008-07-25 18:31

---

d

---

w- c:program filesYandex
2010-01-16 18:10 . 2009-02-11 05:42

---

d

---

w- c:program filesuTorrent
2009-06-24 10:38 . 2007-06-11 07:54 41788 -c—a-w- c:program filesUninstall.exe
2008-05-21 09:33 . 2008-05-21 09:33 1890 —sha-w- c:windowssystem32KGyGaAvL.sys
.

((((((((((((((((((((((((((((( SnapShot@2010-02-27_21.10.29 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-02-20 07:09 . 2009-01-07 15:21 26144 c:windowssystem32spupdsvc.exe
— 2006-02-20 07:09 . 2009-01-07 14:21 26144 c:windowssystem32spupdsvc.exe
— 2008-02-04 17:12 . 2009-01-07 14:21 17440 c:windowssystem32spmsg.dll
+ 2008-02-04 17:12 . 2009-01-07 15:21 17440 c:windowssystem32spmsg.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 46592 c:windowssystem32pngfilt.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 46592 c:windowssystem32pngfilt.dll
+ 2006-02-19 23:51 . 2010-03-01 20:50 67138 c:windowssystem32perfc009.dat
— 2006-02-19 23:51 . 2010-02-27 20:14 67138 c:windowssystem32perfc009.dat
+ 2006-06-29 05:05 . 2009-01-07 15:20 23552 c:windowssystem32normaliz.dll
— 2006-06-29 05:05 . 2009-01-07 14:20 23552 c:windowssystem32normaliz.dll
— 2006-06-28 14:59 . 2009-01-07 14:20 24576 c:windowssystem32nlsdl.dll
+ 2006-06-28 14:59 . 2009-01-07 15:20 24576 c:windowssystem32nlsdl.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 48128 c:windowssystem32mshtmler.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 48128 c:windowssystem32mshtmler.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 66560 c:windowssystem32mshtmled.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 66560 c:windowssystem32mshtmled.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 45568 c:windowssystem32mshta.exe
+ 2006-02-19 23:51 . 2009-03-08 01:31 45568 c:windowssystem32mshta.exe
+ 2007-08-13 15:36 . 2009-03-08 01:31 13312 c:windowssystem32msfeedssync.exe
— 2007-08-13 15:36 . 2009-03-08 00:31 13312 c:windowssystem32msfeedssync.exe
— 2007-08-13 15:54 . 2009-03-08 00:31 55296 c:windowssystem32msfeedsbs.dll
+ 2007-08-13 15:54 . 2009-03-08 01:31 55296 c:windowssystem32msfeedsbs.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 43008 c:windowssystem32licmgr10.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 43008 c:windowssystem32licmgr10.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 25600 c:windowssystem32jsproxy.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 25600 c:windowssystem32jsproxy.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 94720 c:windowssystem32inseng.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 94720 c:windowssystem32inseng.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 34816 c:windowssystem32imgutil.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 34816 c:windowssystem32imgutil.dll
+ 2007-08-13 15:39 . 2009-03-08 01:32 36864 c:windowssystem32ieudinit.exe
— 2007-08-13 15:39 . 2009-03-08 00:32 36864 c:windowssystem32ieudinit.exe
— 2006-02-19 23:51 . 2009-03-08 00:32 71680 c:windowssystem32iesetup.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 71680 c:windowssystem32iesetup.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 55808 c:windowssystem32iernonce.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 55808 c:windowssystem32iernonce.dll
+ 2006-06-29 05:05 . 2009-01-07 15:20 26112 c:windowssystem32idndl.dll
— 2006-06-29 05:05 . 2009-01-07 14:20 26112 c:windowssystem32idndl.dll
— 2007-08-13 15:36 . 2009-03-08 00:31 59904 c:windowssystem32icardie.dll
+ 2007-08-13 15:36 . 2009-03-08 01:31 59904 c:windowssystem32icardie.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 46592 c:windowssystem32dllcachepngfilt.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 46592 c:windowssystem32dllcachepngfilt.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 48128 c:windowssystem32dllcachemshtmler.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 48128 c:windowssystem32dllcachemshtmler.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 66560 c:windowssystem32dllcachemshtmled.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 66560 c:windowssystem32dllcachemshtmled.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 45568 c:windowssystem32dllcachemshta.exe
+ 2006-02-19 23:51 . 2009-03-08 01:31 45568 c:windowssystem32dllcachemshta.exe
— 2007-12-22 16:27 . 2009-03-08 00:31 55296 c:windowssystem32dllcachemsfeedsbs.dll
+ 2007-12-22 16:27 . 2009-03-08 01:31 55296 c:windowssystem32dllcachemsfeedsbs.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 43008 c:windowssystem32dllcachelicmgr10.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 43008 c:windowssystem32dllcachelicmgr10.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 25600 c:windowssystem32dllcachejsproxy.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 25600 c:windowssystem32dllcachejsproxy.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 94720 c:windowssystem32dllcacheinseng.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 94720 c:windowssystem32dllcacheinseng.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 34816 c:windowssystem32dllcacheimgutil.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 34816 c:windowssystem32dllcacheimgutil.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 71680 c:windowssystem32dllcacheiesetup.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 71680 c:windowssystem32dllcacheiesetup.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 55808 c:windowssystem32dllcacheiernonce.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 55808 c:windowssystem32dllcacheiernonce.dll
+ 2007-12-22 16:27 . 2009-03-08 01:31 59904 c:windowssystem32dllcacheicardie.dll
— 2007-12-22 16:27 . 2009-03-08 00:31 59904 c:windowssystem32dllcacheicardie.dll
— 2006-02-20 06:53 . 2009-03-08 00:24 68608 c:windowssystem32dllcachehmmapi.dll
+ 2006-02-20 06:53 . 2009-03-08 01:24 68608 c:windowssystem32dllcachehmmapi.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 18944 c:windowssystem32dllcachecorpol.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 18944 c:windowssystem32dllcachecorpol.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 72704 c:windowssystem32dllcacheadmparse.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 72704 c:windowssystem32dllcacheadmparse.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 18944 c:windowssystem32corpol.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 18944 c:windowssystem32corpol.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 72704 c:windowssystem32admparse.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 72704 c:windowssystem32admparse.dll
+ 2010-02-28 13:16 . 2010-02-28 13:16 10134 c:windowsInstaller{306873F4-4417-441E-9620-4B0CB4ED7430}HDDlifeIcon2k.exe
— 2009-06-04 17:54 . 2009-03-08 16:34 58464 c:windowsie8spuninstiecustom.dll
+ 2010-03-01 16:50 . 2009-03-08 17:34 58464 c:windowsie8spuninstiecustom.dll
— 2009-06-04 17:53 . 2007-08-13 15:36 44544 c:windowsie8pngfilt.dll
+ 2010-03-01 16:50 . 2007-08-13 15:36 44544 c:windowsie8pngfilt.dll
— 2009-06-04 17:53 . 2007-08-13 15:01 48128 c:windowsie8mshtmler.dll
+ 2010-03-01 16:50 . 2007-08-13 15:01 48128 c:windowsie8mshtmler.dll
— 2009-06-04 17:53 . 2007-08-13 15:32 45568 c:windowsie8mshta.exe
+ 2010-03-01 16:50 . 2007-08-13 15:32 45568 c:windowsie8mshta.exe
+ 2010-03-01 16:50 . 2007-08-13 15:36 12288 c:windowsie8msfeedssync.exe
— 2009-06-04 17:53 . 2007-08-13 15:36 12288 c:windowsie8msfeedssync.exe
+ 2010-03-01 16:50 . 2007-10-10 23:53 52224 c:windowsie8msfeedsbs.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 52224 c:windowsie8msfeedsbs.dll
+ 2010-03-01 16:50 . 2007-08-13 15:44 40960 c:windowsie8licmgr10.dll
— 2009-06-04 17:53 . 2007-08-13 15:44 40960 c:windowsie8licmgr10.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 27648 c:windowsie8jsproxy.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 27648 c:windowsie8jsproxy.dll
+ 2010-03-01 16:50 . 2007-08-13 15:39 92672 c:windowsie8inseng.dll
— 2009-06-04 17:53 . 2007-08-13 15:39 92672 c:windowsie8inseng.dll
+ 2010-03-01 16:50 . 2007-08-13 15:36 36352 c:windowsie8imgutil.dll
— 2009-06-04 17:53 . 2007-08-13 15:36 36352 c:windowsie8imgutil.dll
— 2009-06-04 17:53 . 2007-08-13 15:39 55296 c:windowsie8iesetup.dll
+ 2010-03-01 16:50 . 2007-08-13 15:39 55296 c:windowsie8iesetup.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 44544 c:windowsie8iernonce.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 44544 c:windowsie8iernonce.dll
— 2009-06-04 17:53 . 2007-08-13 15:45 78336 c:windowsie8ieencode.dll
+ 2010-03-01 16:50 . 2007-08-13 15:45 78336 c:windowsie8ieencode.dll
+ 2010-03-01 16:50 . 2007-10-10 11:03 70656 c:windowsie8ie4uinit.exe
— 2009-06-04 17:53 . 2007-10-10 11:03 70656 c:windowsie8ie4uinit.exe
+ 2010-03-01 16:50 . 2007-10-10 23:53 63488 c:windowsie8icardie.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 63488 c:windowsie8icardie.dll
+ 2010-03-01 16:50 . 2007-08-13 15:18 60416 c:windowsie8hmmapi.dll
— 2009-06-04 17:53 . 2007-08-13 15:18 60416 c:windowsie8hmmapi.dll
— 2009-06-04 17:53 . 2007-08-13 15:42 17408 c:windowsie8corpol.dll
+ 2010-03-01 16:50 . 2007-08-13 15:42 17408 c:windowsie8corpol.dll
— 2009-06-04 17:53 . 2007-08-13 15:39 71680 c:windowsie8admparse.dll
+ 2010-03-01 16:50 . 2007-08-13 15:39 71680 c:windowsie8admparse.dll
— 2007-12-22 13:04 . 2009-01-07 14:21 121856 c:windowssystem32xmllite.dll
+ 2007-12-22 13:04 . 2009-01-07 15:21 121856 c:windowssystem32xmllite.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 914944 c:windowssystem32wininet.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 914944 c:windowssystem32wininet.dll
— 2007-08-13 15:45 . 2009-03-08 00:34 208384 c:windowssystem32WinFXDocObj.exe
+ 2007-08-13 15:45 . 2009-03-08 01:34 208384 c:windowssystem32WinFXDocObj.exe
— 2006-02-19 23:51 . 2009-03-08 00:34 236544 c:windowssystem32webcheck.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 236544 c:windowssystem32webcheck.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 420352 c:windowssystem32vbscript.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 420352 c:windowssystem32vbscript.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 105984 c:windowssystem32url.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 105984 c:windowssystem32url.dll
+ 2006-02-19 23:51 . 2010-03-01 20:50 410190 c:windowssystem32perfh009.dat
— 2006-02-19 23:51 . 2010-02-27 20:14 410190 c:windowssystem32perfh009.dat
+ 2006-02-19 23:51 . 2009-03-08 01:34 109568 c:windowssystem32occache.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 109568 c:windowssystem32occache.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 611840 c:windowssystem32mstime.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 611840 c:windowssystem32mstime.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 193536 c:windowssystem32msrating.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 193536 c:windowssystem32msrating.dll
— 2006-02-19 23:51 . 2009-03-08 00:22 156160 c:windowssystem32msls31.dll
+ 2006-02-19 23:51 . 2009-03-08 01:22 156160 c:windowssystem32msls31.dll
+ 2007-08-13 15:54 . 2009-03-08 01:32 594432 c:windowssystem32msfeeds.dll
— 2007-08-13 15:54 . 2009-03-08 00:32 594432 c:windowssystem32msfeeds.dll
+ 2009-01-07 14:20 . 2009-01-07 15:20 265720 c:windowssystem32msdbg2.dll
— 2009-01-07 14:20 . 2009-01-07 14:20 265720 c:windowssystem32msdbg2.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 726528 c:windowssystem32jscript.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 726528 c:windowssystem32jscript.dll
+ 2007-08-13 15:54 . 2009-03-08 01:22 164352 c:windowssystem32ieui.dll
— 2007-08-13 15:54 . 2009-03-08 00:22 164352 c:windowssystem32ieui.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 183808 c:windowssystem32iepeers.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 183808 c:windowssystem32iepeers.dll
+ 2006-02-19 23:51 . 2009-03-08 11:09 391536 c:windowssystem32iedkcs32.dll
— 2006-02-19 23:51 . 2009-03-08 10:09 391536 c:windowssystem32iedkcs32.dll
+ 2007-07-11 09:27 . 2009-03-08 01:11 445952 c:windowssystem32ieapfltr.dll
— 2007-07-11 09:27 . 2009-03-08 00:11 445952 c:windowssystem32ieapfltr.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 163840 c:windowssystem32ieakui.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 163840 c:windowssystem32ieakui.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 229376 c:windowssystem32ieaksie.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 229376 c:windowssystem32ieaksie.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 125952 c:windowssystem32ieakeng.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 125952 c:windowssystem32ieakeng.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 173056 c:windowssystem32ie4uinit.exe
+ 2006-02-19 23:51 . 2009-03-08 01:32 173056 c:windowssystem32ie4uinit.exe
— 2006-02-19 23:51 . 2009-03-08 00:31 216064 c:windowssystem32dxtrans.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 216064 c:windowssystem32dxtrans.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 348160 c:windowssystem32dxtmsft.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 348160 c:windowssystem32dxtmsft.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 914944 c:windowssystem32dllcachewininet.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 914944 c:windowssystem32dllcachewininet.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 236544 c:windowssystem32dllcachewebcheck.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 236544 c:windowssystem32dllcachewebcheck.dll
— 2006-02-20 06:53 . 2009-03-08 00:33 759296 c:windowssystem32dllcacheVGX.dll
+ 2006-02-20 06:53 . 2009-03-08 01:33 759296 c:windowssystem32dllcacheVGX.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 420352 c:windowssystem32dllcachevbscript.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 420352 c:windowssystem32dllcachevbscript.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 105984 c:windowssystem32dllcacheurl.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 105984 c:windowssystem32dllcacheurl.dll
+ 2009-01-07 15:20 . 2009-01-07 15:20 134144 c:windowssystem32dllcachesqmapi.dll
— 2009-01-07 14:20 . 2009-01-07 14:20 134144 c:windowssystem32dllcachesqmapi.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 109568 c:windowssystem32dllcacheoccache.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 109568 c:windowssystem32dllcacheoccache.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 611840 c:windowssystem32dllcachemstime.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 611840 c:windowssystem32dllcachemstime.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 193536 c:windowssystem32dllcachemsrating.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 193536 c:windowssystem32dllcachemsrating.dll
+ 2006-02-19 23:51 . 2009-03-08 01:22 156160 c:windowssystem32dllcachemsls31.dll
— 2006-02-19 23:51 . 2009-03-08 00:22 156160 c:windowssystem32dllcachemsls31.dll
— 2007-12-22 16:27 . 2009-03-08 00:32 594432 c:windowssystem32dllcachemsfeeds.dll
+ 2007-12-22 16:27 . 2009-03-08 01:32 594432 c:windowssystem32dllcachemsfeeds.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 726528 c:windowssystem32dllcachejscript.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 726528 c:windowssystem32dllcachejscript.dll
— 2006-02-20 06:53 . 2009-03-08 10:09 638816 c:windowssystem32dllcacheiexplore.exe
+ 2006-02-20 06:53 . 2009-03-08 11:09 638816 c:windowssystem32dllcacheiexplore.exe
+ 2006-02-19 23:51 . 2009-03-08 01:31 183808 c:windowssystem32dllcacheiepeers.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 183808 c:windowssystem32dllcacheiepeers.dll
+ 2006-02-19 23:51 . 2009-03-08 11:09 391536 c:windowssystem32dllcacheiedkcs32.dll
— 2006-02-19 23:51 . 2009-03-08 10:09 391536 c:windowssystem32dllcacheiedkcs32.dll
— 2007-12-22 16:27 . 2009-03-08 00:11 445952 c:windowssystem32dllcacheieapfltr.dll
+ 2007-12-22 16:27 . 2009-03-08 01:11 445952 c:windowssystem32dllcacheieapfltr.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 163840 c:windowssystem32dllcacheieakui.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 163840 c:windowssystem32dllcacheieakui.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 229376 c:windowssystem32dllcacheieaksie.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 229376 c:windowssystem32dllcacheieaksie.dll
— 2006-02-19 23:51 . 2009-03-08 00:33 125952 c:windowssystem32dllcacheieakeng.dll
+ 2006-02-19 23:51 . 2009-03-08 01:33 125952 c:windowssystem32dllcacheieakeng.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 173056 c:windowssystem32dllcacheie4uinit.exe
+ 2006-02-19 23:51 . 2009-03-08 01:32 173056 c:windowssystem32dllcacheie4uinit.exe
— 2006-02-19 23:51 . 2009-03-08 00:31 216064 c:windowssystem32dllcachedxtrans.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 216064 c:windowssystem32dllcachedxtrans.dll
— 2006-02-19 23:51 . 2009-03-08 00:31 348160 c:windowssystem32dllcachedxtmsft.dll
+ 2006-02-19 23:51 . 2009-03-08 01:31 348160 c:windowssystem32dllcachedxtmsft.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 128512 c:windowssystem32dllcacheadvpack.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 128512 c:windowssystem32dllcacheadvpack.dll
— 2006-02-19 23:51 . 2009-03-08 00:32 128512 c:windowssystem32advpack.dll
+ 2006-02-19 23:51 . 2009-03-08 01:32 128512 c:windowssystem32advpack.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 824832 c:windowsie8wininet.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 824832 c:windowsie8wininet.dll
— 2009-06-04 17:53 . 2007-08-13 15:45 206336 c:windowsie8winfxdocobj.exe
+ 2010-03-01 16:50 . 2007-08-13 15:45 206336 c:windowsie8winfxdocobj.exe
— 2009-06-04 17:53 . 2007-10-10 23:53 232960 c:windowsie8webcheck.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 232960 c:windowsie8webcheck.dll
— 2009-06-04 17:53 . 2007-07-12 23:32 765952 c:windowsie8vgx.dll
+ 2010-03-01 16:50 . 2007-07-12 23:32 765952 c:windowsie8vgx.dll
— 2009-06-04 17:53 . 2007-08-13 15:54 413696 c:windowsie8vbscript.dll
+ 2010-03-01 16:50 . 2007-08-13 15:54 413696 c:windowsie8vbscript.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 105984 c:windowsie8url.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 105984 c:windowsie8url.dll
— 2009-06-04 17:54 . 2009-01-07 14:21 390688 c:windowsie8spuninstupdspapi.dll
+ 2010-03-01 16:50 . 2009-01-07 15:21 390688 c:windowsie8spuninstupdspapi.dll
+ 2010-03-01 16:50 . 2009-01-07 15:21 232992 c:windowsie8spuninstspuninst.exe
— 2009-06-04 17:54 . 2009-01-07 14:21 232992 c:windowsie8spuninstspuninst.exe
— 2009-06-04 17:53 . 2006-09-06 14:43 214752 c:windowsie8spuninst.exe
+ 2010-03-01 16:50 . 2006-09-06 14:43 214752 c:windowsie8spuninst.exe
— 2009-06-04 17:53 . 2007-10-10 23:53 102400 c:windowsie8occache.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 102400 c:windowsie8occache.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 671232 c:windowsie8mstime.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 671232 c:windowsie8mstime.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 193024 c:windowsie8msrating.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 193024 c:windowsie8msrating.dll
— 2009-06-04 17:53 . 2007-08-13 15:54 156160 c:windowsie8msls31.dll
+ 2010-03-01 16:50 . 2007-08-13 15:54 156160 c:windowsie8msls31.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 478208 c:windowsie8mshtmled.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 478208 c:windowsie8mshtmled.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 459264 c:windowsie8msfeeds.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 459264 c:windowsie8msfeeds.dll
— 2009-06-04 17:53 . 2007-08-13 15:38 491520 c:windowsie8jscript.dll
+ 2010-03-01 16:50 . 2007-08-13 15:38 491520 c:windowsie8jscript.dll
+ 2010-03-01 16:50 . 2007-10-10 11:03 625152 c:windowsie8iexplore.exe
— 2009-06-04 17:53 . 2007-10-10 11:03 625152 c:windowsie8iexplore.exe
+ 2010-03-01 16:50 . 2007-08-13 15:54 180736 c:windowsie8ieui.dll
— 2009-06-04 17:53 . 2007-08-13 15:54 180736 c:windowsie8ieui.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 267776 c:windowsie8iertutil.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 267776 c:windowsie8iertutil.dll
+ 2010-03-01 16:50 . 2007-08-13 15:54 287744 c:windowsie8ieproxy.dll
— 2009-06-04 17:53 . 2007-08-13 15:54 287744 c:windowsie8ieproxy.dll
— 2009-06-04 17:53 . 2007-08-13 15:54 191488 c:windowsie8iepeers.dll
+ 2010-03-01 16:50 . 2007-08-13 15:54 191488 c:windowsie8iepeers.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 384512 c:windowsie8iedkcs32.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 384512 c:windowsie8iedkcs32.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 383488 c:windowsie8ieapfltr.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 383488 c:windowsie8ieapfltr.dll
— 2009-06-04 17:53 . 2007-10-10 05:46 161792 c:windowsie8ieakui.dll
+ 2010-03-01 16:50 . 2007-10-10 05:46 161792 c:windowsie8ieakui.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 230400 c:windowsie8ieaksie.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 230400 c:windowsie8ieaksie.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 153088 c:windowsie8ieakeng.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 153088 c:windowsie8ieakeng.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 214528 c:windowsie8dxtrans.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 214528 c:windowsie8dxtrans.dll
— 2009-06-04 17:53 . 2007-08-13 15:35 346624 c:windowsie8dxtmsft.dll
+ 2010-03-01 16:50 . 2007-08-13 15:35 346624 c:windowsie8dxtmsft.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 124928 c:windowsie8advpack.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 124928 c:windowsie8advpack.dll
— 2006-02-19 23:51 . 2009-03-08 00:34 1206784 c:windowssystem32urlmon.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 1206784 c:windowssystem32urlmon.dll
+ 2006-02-19 23:51 . 2009-03-08 01:41 5937152 c:windowssystem32mshtml.dll
— 2006-02-19 23:51 . 2009-03-08 00:41 5937152 c:windowssystem32mshtml.dll
— 2007-08-13 15:34 . 2009-03-08 00:32 1985024 c:windowssystem32iertutil.dll
+ 2007-08-13 15:34 . 2009-03-08 01:32 1985024 c:windowssystem32iertutil.dll
+ 2007-02-12 13:10 . 2009-02-06 18:07 3698584 c:windowssystem32ieapfltr.dat
— 2007-02-12 13:10 . 2009-02-06 17:07 3698584 c:windowssystem32ieapfltr.dat
— 2006-02-19 23:51 . 2009-03-08 00:34 1206784 c:windowssystem32dllcacheurlmon.dll
+ 2006-02-19 23:51 . 2009-03-08 01:34 1206784 c:windowssystem32dllcacheurlmon.dll
+ 2006-02-19 23:51 . 2009-03-08 01:41 5937152 c:windowssystem32dllcachemshtml.dll
— 2006-02-19 23:51 . 2009-03-08 00:41 5937152 c:windowssystem32dllcachemshtml.dll
+ 2007-12-22 16:27 . 2009-03-08 01:32 1985024 c:windowssystem32dllcacheiertutil.dll
— 2007-12-22 16:27 . 2009-03-08 00:32 1985024 c:windowssystem32dllcacheiertutil.dll
+ 2007-12-22 16:27 . 2009-02-06 18:07 3698584 c:windowssystem32dllcacheieapfltr.dat
— 2007-12-22 16:27 . 2009-02-06 17:07 3698584 c:windowssystem32dllcacheieapfltr.dat
— 2009-06-04 17:53 . 2007-10-10 23:53 1159680 c:windowsie8urlmon.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 1159680 c:windowsie8urlmon.dll
+ 2010-03-01 16:50 . 2007-10-31 01:57 3590656 c:windowsie8mshtml.dll
— 2009-06-04 17:53 . 2007-10-31 01:57 3590656 c:windowsie8mshtml.dll
+ 2010-03-01 16:50 . 2007-10-10 23:53 6065664 c:windowsie8ieframe.dll
— 2009-06-04 17:53 . 2007-10-10 23:53 6065664 c:windowsie8ieframe.dll
+ 2010-03-01 16:50 . 2007-07-01 03:31 2455488 c:windowsie8ieapfltr.dat
— 2009-06-04 17:53 . 2007-07-01 03:31 2455488 c:windowsie8ieapfltr.dat
— 2007-08-13 15:54 . 2009-03-08 00:39 11063808 c:windowssystem32ieframe.dll
+ 2007-08-13 15:54 . 2009-03-08 01:39 11063808 c:windowssystem32ieframe.dll
— 2007-12-22 16:27 . 2009-03-08 00:39 11063808 c:windowssystem32dllcacheieframe.dll
+ 2007-12-22 16:27 . 2009-03-08 01:39 11063808 c:windowssystem32dllcacheieframe.dll
.
— Snapshot reset to current date —
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
«{91397D20-1446-11D4-8AF4-0040CA1127B6}»= «c:program filesYandexYandexBarIEyndbar.dll» [2009-07-24 5586208]

[HKEY_CLASSES_ROOTclsid{91397d20-1446-11d4-8af4-0040ca1127b6}]
[HKEY_CLASSES_ROOTYandex.Toolbar.1]
[HKEY_CLASSES_ROOTTypeLib{91397D13-1446-11D4-8AF4-0040CA1127B6}]
[HKEY_CLASSES_ROOTYandex.Toolbar]

[HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerToolbarWebbrowser]
«{91397D20-1446-11D4-8AF4-0040CA1127B6}»= «c:program filesYandexYandexBarIEyndbar.dll» [2009-07-24 5586208]

[HKEY_CLASSES_ROOTclsid{91397d20-1446-11d4-8af4-0040ca1127b6}]
[HKEY_CLASSES_ROOTYandex.Toolbar.1]
[HKEY_CLASSES_ROOTTypeLib{91397D13-1446-11D4-8AF4-0040CA1127B6}]
[HKEY_CLASSES_ROOTYandex.Toolbar]

[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
«Yupdate!»=»c:program filesCommon FilesYandexYupdateyupdate.exe» [2008-05-30 460040]
«swg»=»c:program filesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe» [2009-06-06 39408]
«uTorrent»=»c:program filesuTorrentuTorrent.exe» [2009-11-20 289072]
«Tutor.exe»=»c:program filesABBYY Lingvo 12Tutor.exe» [2007-07-05 992544]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
«Ярлык для страницы свойств High Definition Audio»=»HDAShCut.exe» [2005-01-07 61952]
«SoundMan»=»SOUNDMAN.EXE» [2005-08-01 90112]
«AlcWzrd»=»ALCWZRD.EXE» [2005-08-01 2803712]
«InstantOn»=»c:program filesCyberLinkPowerCinema Linuxion_install.exe» [2005-05-11 93640]
«Easy-PrintToolBox»=»c:program filesCanonEasy-PrintToolBoxBJPSMAIN.EXE» [2004-01-14 409600]
«GrooveMonitor»=»c:program filesMicrosoft OfficeOffice12GrooveMonitor.exe» [2008-10-25 31072]
«RemoteControl»=»c:program filesCyberLinkPowerDVDPDVDServ.exe» [2006-12-06 69216]
«LanguageShortcut»=»c:program filesCyberLinkPowerDVDLanguageLanguage.exe» [2006-12-05 54832]
«VisualTaskTips»=»c:program filesVisualTaskTipsVisualTaskTips.exe» [2006-07-31 36864]
«SMSERIAL»=»sm56hlpr.exe» [2005-08-01 544768]
«OrderReminder»=»c:program filesHewlett-PackardOrderReminderOrderReminder.exe» [2006-07-30 98304]
«SunJavaUpdateSched»=»c:program filesJavajre1.6.0binjusched.exe» [2008-05-21 77824]
«StartCCC»=»c:program filesATI TechnologiesATI.ACECore-StaticCLIStart.exe» [2006-11-10 90112]
«FLSDeviceControlPanel»=»c:windowssystem32FLSDEVCP.EXE» [2008-10-03 91696]
«Lingvo Launcher»=»c:program filesABBYY Lingvo 12Lvagent.exe» [2007-07-05 193824]
«Adobe Reader Speed Launcher»=»c:program filesAdobeReader 9.0ReaderReader_sl.exe» [2009-02-27 35696]
«NeroFilterCheck»=»c:windowssystem32NeroCheck.exe» [2006-01-12 155648]
«avast5″=»c:progra~1ALWILS~1Avast5avastUI.exe» [2010-02-11 2756488]

[HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=»c:windowssystem32CTFMON.EXE» [2004-08-18 15360]

c:documents and settings1ѓ« ў­®Ґ ¬Ґ­оЏа®Ја ¬¬лЂўв®§ Јаг§Є 
Adobe Gamma.lnk — c:program filesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe [2007-8-27 113664]

c:documents and settingsAll Usersѓ« ў­®Ґ ¬Ґ­оЏа®Ја ¬¬лЂўв®§ Јаг§Є 
Adobe Gamma Loader.lnk — c:program filesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe [2007-8-27 113664]
Ѓлбвал© § ЇгбЄ AutoCAD.lnk — c:program filesCommon FilesAutodesk Sharedacstart16.exe [2004-2-25 10872]

[HKLM~startupfolderC:^Documents and Settings^1^Главное меню^Программы^Автозагрузка^Mobipocket Web Companion.lnk]
path=c:documents and settings1Главное менюПрограммыАвтозагрузкаMobipocket Web Companion.lnk
backup=c:windowspssMobipocket Web Companion.lnkStartup

[HKLM~startupfolderC:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^ATI CATALYST System Tray.lnk]
path=c:documents and settingsAll UsersГлавное менюПрограммыАвтозагрузкаATI CATALYST System Tray.lnk
backup=c:windowspssATI CATALYST System Tray.lnkCommon Startup

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobeUpdater]
2007-04-04 11:41 970752 —-a-w- c:program filesCommon FilesAdobeUpdaterAdobeUpdater.exe

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDAEMON Tools]
2006-11-12 10:48 157592 —-a-w- c:program filesDAEMON Toolsdaemon.exe

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDownload Master]
2008-07-25 12:42 3286016 —-a-w- c:program filesDownload Masterdmaster.exe

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregH/PC Connection Agent]
2006-11-13 13:21 1289000 —-a-w- c:program filesMicrosoft ActiveSyncwcescomm.exe

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregLingvo Launcher]
2007-07-05 20:10 193824 —-a-w- c:program filesABBYY Lingvo 12LvAgent.exe

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregTaskSwitchXP]
2006-08-04 22:29 62976 —-a-w- c:program filesTaskSwitchXPTaskSwitchXP.exe

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregTutor.exe]
2007-07-05 20:15 992544 —-a-w- c:program filesABBYY Lingvo 12Tutor.exe

[HKLM~servicessharedaccessparametersfirewallpolicystandardprofile]
«EnableFirewall»= 0 (0x0)

[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileAuthorizedApplicationsList]
«%windir%\system32\sessmgr.exe»=
«c:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE»=
«c:\Program Files\Microsoft Office\Office12\GROOVE.EXE»=
«c:\Program Files\Microsoft Office\Office12\ONENOTE.EXE»=
«c:\Program Files\QIP\qip.exe»=
«c:\Program Files\Graphisoft\ArchiCAD 11\ArchiCAD.exe»=
«c:\Program Files\ICQ6\ICQ.exe»=
«c:program filesMicrosoft ActiveSyncrapimgr.exe»= c:program filesMicrosoft ActiveSyncrapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
«c:program filesMicrosoft ActiveSyncwcescomm.exe»= c:program filesMicrosoft ActiveSyncwcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
«c:program filesMicrosoft ActiveSyncWCESMgr.exe»= c:program filesMicrosoft ActiveSyncWCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
«c:\Program Files\uTorrent\utorrent.exe»=
«c:\Program Files\Skype\Phone\Skype.exe»=

[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileGloballyOpenPortsList]
«26675:TCP»= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
«6262:TCP»= 6262:TCP:ukbxiq

R0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);c:windowssystem32driverssfdrv01a.sys [05.07.2006 15:46 63352]
R0 sfsync05;FrontLine Synchronization Driver (v5);c:windowssystem32driverssfsync05.sys [11.08.2006 19:09 59776]
R1 aswSP;aswSP;c:windowssystem32driversaswSP.sys [20.02.2010 21:38 162512]
R1 dk2drv;DK2 WindowsNT Driver;c:windowssystem32driversdk2drv.sys [03.10.2008 12:24 49720]
R2 aswFsBlk;aswFsBlk;c:windowssystem32driversaswFsBlk.sys [20.02.2010 21:38 19024]
R2 FLE5WNNT;FLE-5 WindowsNT Driver;c:windowssystem32driversfle5wnnt.sys [03.10.2008 12:25 33404]
R2 FLSIFACE;FLSIface;c:windowssystem32driversflsiface.sys [03.10.2008 12:25 13440]
R2 FLSPAR;FLSPar;c:windowssystem32driversflspar.sys [03.10.2008 12:25 16314]
R2 FLSSER;FLSSer;c:windowssystem32driversflsser.sys [03.10.2008 12:25 8344]
R2 FLSVCOM;FLSVCom;c:windowssystem32driversflsvcom.sys [03.10.2008 12:25 34080]
R2 NVKEYNT;NVKEYNT;c:windowssystem32driversNVKEYNT.SYS [18.08.2007 19:15 68672]
S0 sptd;sptd;c:windowssystem32driverssptd.sys [26.08.2007 18:34 646392]
S2 HDDlife HDD Access service;HDDlife HDD Access service;c:program filesCommon FilesBinarySensehldasvc.exe [16.02.2010 14:51 824640]
S2 sfrem02;FrontLine Drivers Auto Removal (v2);c:windowssystem32sfrem02.exe svc —> c:windowssystem32sfrem02.exe svc [?]
S3 MBLAUDRV;Mobiola Audio Service;c:windowssystem32driversBTCamAudioDrv.sys [28.07.2008 1:35 13312]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:windowssystem32driversnmwcdnsu.sys [01.09.2008 8:51 138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:windowssystem32driversnmwcdnsuc.sys [01.09.2008 8:51 8320]
S3 SE31bus;Sony Ericsson Device 049 Driver driver (WDM);c:windowssystem32driversSE31bus.sys [22.08.2007 20:18 61600]
S3 SE31mdfl;Sony Ericsson Device 049 USB WMC Modem Filter;c:windowssystem32driversSE31mdfl.sys [22.08.2007 20:19 9360]
S3 SE31mdm;Sony Ericsson Device 049 USB WMC Modem Driver;c:windowssystem32driversSE31mdm.sys [22.08.2007 20:19 97184]
S3 SE31mgmt;Sony Ericsson Device 049 USB WMC Device Management Drivers (WDM);c:windowssystem32driversSE31mgmt.sys [22.08.2007 20:19 88688]
S3 se31nd5;Sony Ericsson Device 049 USB Ethernet Emulation SEMC49 (NDIS);c:windowssystem32driversse31nd5.sys [22.08.2007 20:20 18704]
S3 SE31obex;Sony Ericsson Device 049 USB WMC OBEX Interface;c:windowssystem32driversSE31obex.sys [22.08.2007 20:19 86560]
S3 se31unic;Sony Ericsson Device 049 USB Ethernet Emulation SEMC49 (WDM);c:windowssystem32driversse31unic.sys [22.08.2007 20:19 90800]
.
Contents of the ‘Scheduled Tasks’ folder

2010-03-01 c:windowsTasksUser_Feed_Synchronization-{30C1D3C3-2B0A-4223-8762-B7FE6CC5D4BC}.job
— c:windowssystem32msfeedssync.exe [2007-08-13 01:31]
.
.

---

Supplementary Scan

---

.
uStart Page = hxxp://www.yandex.ru/?clid=40316
uInternet Settings,ProxyOverride =
IE: c:program filesWIDCOMMBluetooth Softwarebtsendto_ie_ctx.htm
IE: &Экспорт в Microsoft Excel — c:progra~1MICROS~3Office12EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List — c:program filesCanonEasy-WebPrintResource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print — c:program filesCanonEasy-WebPrintResource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview — c:program filesCanonEasy-WebPrintResource.dll/RC_Preview.html
IE: Easy-WebPrint Print — c:program filesCanonEasy-WebPrintResource.dll/RC_Print.html
IE: Закачать ВСЕ при помощи Download Master — c:program filesDownload Masterdmieall.htm
IE: Закачать при помощи Download Master — c:program filesDownload Masterdmie.htm
IE: Поиск@Mail.Ru — c:program filesMail.RuSputnikMailRuSputnik.dll/282
IE: Словари@Mail.Ru — c:program filesMail.RuSputnikMailRuSputnik.dll/283
IE: {{7A2EFD41-E6B3-11D2-89E3-00E0292EE574} — c:program filesPRMT78PRMTIEprmtie5.htm
IE: {{8DAE90AD-4583-4977-9DD4-4360F7A45C74} — c:program filesDownload Masterdmaster.exe
Trusted Zone: 195.16.50.18
Trusted Zone: 85.21.242.18
Trusted Zone: mtbank.co.ru
Trusted Zone: mybank.comwww
TCP: {46D91171-DDD5-4B72-A07E-796D5069C3CD} = 217.150.34.129,217.150.35.129
TCP: {8CD7EE6C-34C8-4184-8F19-F3BF2556ADC6} = 192.168.1.1
Handler: hddlife — {BD758015-47D9-477A-8873-4B688A2BC0E2} — c:program filesCommon FilesBinarySensehlAPP.dll
DPF: {075DE2F2-4573-4056-8E93-70CABB68C5A2} — hxxp://6160.meritlilin.com.tw/v6160.cab
DPF: {2AF0C7B1-9389-11D8-869A-0020ED529CEE} — hxxp://194.85.132.130/HTTPFile.cab
DPF: {7D0FDBB3-B42D-11D2-8977-0060080BBFF8} — hxxps://www.bankline.ru/servlets/ibc?File=12570842.cab
DPF: {A90CDED7-0D8F-49CE-87B3-5D4BE4C36407} — hxxps://www.bankline.ru/servlets/ibc?File=1676743.CAB
DPF: {C6DBEB23-7475-11D2-8968-0060080BBFF8} — hxxps://www.bankline.ru/servlets/ibc?File=12570838.CAB
DPF: {EE479A40-C128-40DD-93DA-000556AF9607} — hxxp://87.245.181.50:9012/CtrWeb.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista — rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-01 23:56
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes …

scanning hidden autostart entries …

scanning hidden files …

scan completed successfully
hidden files: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe catchme.sys CLASSPNP.SYS disk.sys >>UNKNOWN [0x86F929D8]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
DriverDisk -> CLASSPNP.SYS @ 0xf757ffc3
DriverACPI -> ACPI.sys @ 0xf73f2cb8
Driveratapi -> 0x86de0c28
DriveriaStor -> iaStor.sys @ 0xf72bab58
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x80578262
DeviceHarddisk0DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x80578262
NDIS: Realtek RTL8169/8110 Family Gigabit Ethernet NIC -> SendCompleteHandler -> NDIS.sys @ 0xf7165ba0
PacketIndicateHandler -> NDIS.sys @ 0xf7172b21
SendHandler -> NDIS.sys @ 0xf715087b
Warning: possible MBR rootkit infection !
user & kernel MBR OK

**************************************************************************
.

---

DLLs Loaded Under Running Processes

---

— — — — — — — > ‘winlogon.exe'(784)
c:windowssystem32Ati2evxx.dll
.
Completion time: 2010-03-02 00:00:06
ComboFix-quarantined-files.txt 2010-03-01 21:00
ComboFix2.txt 2010-02-27 21:14

Pre-Run: 13 711 544 320 байт свободно
Post-Run: 13 670 993 920 байт свободно

— — End Of File — — 0A8221FE1AC7945D0886D74EC401E83F