Я скачала OTMoveIt3. Вставила скрипт. Комп что-то долго думал и запросил перезагрузку. После неё появился вот такой лог-файл:
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== SERVICES/DRIVERS ==========
ServiceDriver ati64si not found.
ServiceDriver ati64si not found.
ServiceDriver securentm not found.
ServiceDriver securentm not found.
ServiceDriver a3cxy7rk not found.
ServiceDriver a3cxy7rk not found.
ServiceDriver alaspxx1 not found.
ServiceDriver alaspxx1 not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{B8F88615-A49E-4443-A26F-E97379BE1B1A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{FFFC57DB-1DE3-4303-B24D-CEE6DCDD3D86}\ deleted successfully.
Registry value HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun\Root deleted successfully.
Registry value HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun\ deleted successfully.
Registry value HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun\antispy not found.
Registry key HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^Root^Главное меню^Программы^Автозагрузка^Rapid Antivirus.lnk\ deleted successfully.
========== FILES ==========
File/Folder C:WINDOWSsystem32driversati64si.sys not found.
File/Folder C:WINDOWSsystem32driverssecurentm.sys not found.
File/Folder C:WINDOWSsystem32driversa3cxy7rk.sys not found.
File/Folder C:WINDOWSsystem32driversalaspxx1.sys not found.
File/Folder C:Program FilesRapid Antivirus not found.
File/Folder C:Documents and SettingsRootafjosxchlqvafjosxdhmq.exe not found.
========== COMMANDS ==========
File delete failed. C:Tempetilqs_1BvDloYfHXVHgUR0CPrM scheduled to be deleted on reboot.
User’s Temp folder emptied.
User’s Internet Explorer cache folder emptied.
File delete failed. C:Documents and SettingsRootLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
User’s Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:WINDOWStempPerflib_Perfdata_708.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultCache_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultCache_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultCache_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultCache_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaulturlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultXUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer — Version 1.0.11.0 log created on 04152009_201429
Files moved on Reboot…
File C:Tempetilqs_1BvDloYfHXVHgUR0CPrM not found!
File C:WINDOWStempPerflib_Perfdata_708.dat not found!
C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultCache_CACHE_001_ moved successfully.
C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultCache_CACHE_002_ moved successfully.
C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultCache_CACHE_003_ moved successfully.
C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultCache_CACHE_MAP_ moved successfully.
C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaulturlclassifier3.sqlite moved successfully.
C:Documents and SettingsRootLocal SettingsApplication DataMozillaFirefoxProfiles5nvn18m3.defaultXUL.mfl moved successfully.
А вот лог после проверки RSIT:
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Root at 2009-04-15 20:21:46
Microsoft Windows XP Professional Service Pack 3
System drive C: has 953 MB (5%) free of 20 GB
Total RAM: 1023 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:21:57, on 15.04.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:WINDOWSSOUNDMAN.EXE
C:Program FilesSafHouseDUTrafficDUTraffic.exe
C:Program FilesJavajre6binjusched.exe
C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe
C:Program FilesWinampwinampa.exe
C:PROGRA~1AVGAVG8avgtray.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesAdobeReader 8.0ReaderReader_sl.exe
C:Program FilesPunto Switcherps.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesPRMT8PRMTEDEDLauncher.exe
C:Program FilesMessengermsmsgs.exe
C:Program FilesDAEMON Tools Litedaemon.exe
C:Игры от NevoSoftNevoDRMrun.exe
C:PROGRA~1AVGAVG8avgwdsvc.exe
F:Program FileseSMSeMMSOEBinTMTray.exe
C:Program FilesWindows Desktop SearchWindowsSearch.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE
C:WINDOWSsystem32nvsvc32.exe
C:WINDOWSsystem32PnkBstrA.exe
C:WINDOWSsystem32PnkBstrB.exe
C:Program FilesPRMT8PRMTEDprmedsvr.exe
C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32SearchIndexer.exe
C:PROGRA~1AVGAVG8avgrsx.exe
C:PROGRA~1AVGAVG8avgnsx.exe
C:WINDOWSsystem32SearchProtocolHost.exe
C:WINDOWSsystem32wuauclt.exe
C:WINDOWSsystem32wuauclt.exe
C:Documents and SettingsRootРабочий столRSIT.exe
C:Program Filestrend microRoot.exe
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.yandex.ru/?clid=44290
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.yandex.ru/?clid=44290
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Windows Internet Explorer предоставлен: Яндекс
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 — BHO: WormRadar.com IESiteBlocker.NavFilter — {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} — C:Program FilesAVGAVG8avgssie.dll
O2 — BHO: Java(tm) Plug-In SSV Helper — {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} — C:Program FilesJavajre6binssv.dll
O2 — BHO: AVG Security Toolbar — {A057A204-BACC-4D26-9990-79A187E2698E} — C:PROGRA~1AVGAVG8AVGTOO~1.DLL
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O3 — Toolbar: PROMT — {892E81F6-EC63-4d13-8422-835A7A05D6EB} — C:Program FilesPRMT8PRMTIEprmtie.dll
O3 — Toolbar: AVG Security Toolbar — {A057A204-BACC-4D26-9990-79A187E2698E} — C:PROGRA~1AVGAVG8AVGTOO~1.DLL
O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program FilesYandexYandexBarIEyndbar.dll
O3 — Toolbar: eSMS+eMMS — {D7B4D56E-FAB7-11DA-A843-0013D4B31400} — F:Program FileseSMSeMMSIEPluginBintmIEToolbar.dll
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [Safonov DuTraffic] C:Program FilesSafHouseDUTrafficDUTraffic.exe
O4 — HKLM..Run: [SunJavaUpdateSched] «C:Program FilesJavajre6binjusched.exe»
O4 — HKLM..Run: [ISUSPM] «C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe» -scheduler
O4 — HKLM..Run: [WinampAgent] C:Program FilesWinampwinampa.exe
O4 — HKLM..Run: [TkBellExe] «realsched.exe» -osboot
O4 — HKLM..Run: [AVG8_TRAY] C:PROGRA~1AVGAVG8avgtray.exe
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 8.0ReaderReader_sl.exe»
O4 — HKLM..Run: [NevoDRM] «C:Игры от NevoSoftNevoDRMNevoDRM.exe»
O4 — HKCU..Run: [Punto Switcher] C:Program FilesPunto Switcherps.exe
O4 — HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [EDLauncher] C:Program FilesPRMT8PRMTEDEDLauncher.exe
O4 — HKCU..Run: [MSMSGS] «C:Program FilesMessengermsmsgs.exe» /background
O4 — HKCU..Run: [DAEMON Tools Lite] «C:Program FilesDAEMON Tools Litedaemon.exe» -autorun
O4 — HKCU..Run: [Skype] «C:Program FilesSkypePhoneSkype.exe» /nosplash /minimized
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-20..RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [] C:Documents and SettingsLocalService.exe /i (User ‘SYSTEM’)
O4 — HKUSS-1-5-18..RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [] C:Documents and SettingsLocalService.exe /i (User ‘Default user’)
O4 — HKUS.DEFAULT..RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User ‘Default user’)
O4 — Global Startup: TMTray.lnk = F:Program FileseSMSeMMSOEBinTMTray.exe
O4 — Global Startup: Windows Search.lnk = C:Program FilesWindows Desktop SearchWindowsSearch.exe
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O8 — Extra context menu item: Online-словари — C:Program FilesPRMT8PRMTIEoda.htm
O8 — Extra context menu item: Автоматически определить шаблон тематики — C:Program FilesPRMT8PRMTIEaot.htm
O8 — Extra context menu item: Відправити як MMS — file://F:Program FileseSMSeMMSMMSForwardbinredirect.html
O8 — Extra context menu item: Настроить параметры перевода — C:Program FilesPRMT8PRMTIEoptions.htm
O8 — Extra context menu item: Незнакомые слова — C:Program FilesPRMT8PRMTIEinfopanel.htm
O8 — Extra context menu item: Открыть словарную статью — C:Program FilesPRMT8PRMTIEaddentry.htm
O8 — Extra context menu item: Перевести — C:Program FilesPRMT8PRMTIEtranslat.htm
O8 — Extra context menu item: Перевести страницу — C:Program FilesPRMT8PRMTIEpage.htm
O8 — Extra context menu item: Поиск в Интернете — C:Program FilesPRMT8PRMTIEsearch.htm
O9 — Extra button: (no name) — {4034D172-4C52-49de-A6A1-E75F8F591FEC} — C:Program FilesPRMT8PRMTIEoptions.htm
O9 — Extra ‘Tools’ menuitem: Настроить параметры перевода — {4034D172-4C52-49de-A6A1-E75F8F591FEC} — C:Program FilesPRMT8PRMTIEoptions.htm
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: (no name) — {A2DA13D5-AC77-43b7-963B-40445EBCB8E0} — C:Program FilesPRMT8PRMTIEprmtie5.htm
O9 — Extra ‘Tools’ menuitem: Перевести — {A2DA13D5-AC77-43b7-963B-40445EBCB8E0} — C:Program FilesPRMT8PRMTIEprmtie5.htm
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O16 — DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) — http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5036.cab
O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 — Protocol: linkscanner — {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} — C:Program FilesAVGAVG8avgpp.dll
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O20 — Winlogon Notify: avgrsstarter — C:WINDOWSSYSTEM32avgrsstx.dll
O23 — Service: AVG Free8 WatchDog (avg8wd) — AVG Technologies CZ, s.r.o. — C:PROGRA~1AVGAVG8avgwdsvc.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: getPlus(R) Helper — Unknown owner — C:Program FilesNOSbingetPlus_HelperSvc.exe (file missing)
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: PnkBstrA — Unknown owner — C:WINDOWSsystem32PnkBstrA.exe
O23 — Service: PnkBstrB — Unknown owner — C:WINDOWSsystem32PnkBstrB.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: StarWind iSCSI Service (StarWindService) — Rocket Division Software — C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe
—
End of file — 11073 bytes
======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search — C:Program FilesAVGAVG8avgssie.dll [2009-02-03 1078552]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper — C:Program FilesJavajre6binssv.dll [2009-03-03 320920]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar — C:PROGRA~1AVGAVG8AVGTOO~1.DLL [2009-02-03 1968920]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-03-03 34816]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-03-03 73728]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{892E81F6-EC63-4d13-8422-835A7A05D6EB} — PROMT — C:Program FilesPRMT8PRMTIEprmtie.dll [2007-03-21 749568]
{A057A204-BACC-4D26-9990-79A187E2698E} — AVG Security Toolbar — C:PROGRA~1AVGAVG8AVGTOO~1.DLL [2009-02-03 1968920]
{91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program FilesYandexYandexBarIEyndbar.dll [2009-03-24 3697952]
{D7B4D56E-FAB7-11DA-A843-0013D4B31400} — eSMS+eMMS — F:Program FileseSMSeMMSIEPluginBintmIEToolbar.dll [2008-06-30 1225352]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2004-11-15 77824]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2008-12-03 13680640]
«nwiz»=nwiz.exe /install []
«Safonov DuTraffic»=C:Program FilesSafHouseDUTrafficDUTraffic.exe [2004-10-02 1393664]
«SunJavaUpdateSched»=C:Program FilesJavajre6binjusched.exe [2009-03-03 136600]
«ISUSPM»=C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe [2006-05-16 213936]
«WinampAgent»=C:Program FilesWinampwinampa.exe [2006-09-26 35328]
«TkBellExe»=realsched.exe -osboot []
«AVG8_TRAY»=C:PROGRA~1AVGAVG8avgtray.exe [2009-02-03 1601304]
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2008-12-03 86016]
«Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [2008-01-11 39792]
«NevoDRM»=C:Игры от NevoSoftNevoDRMNevoDRM.exe [2008-12-11 41984]
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Punto Switcher»=C:Program FilesPunto Switcherps.exe [2004-11-13 205824]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2008-04-14 15360]
«EDLauncher»=C:Program FilesPRMT8PRMTEDEDLauncher.exe [2007-03-14 118784]
«MSMSGS»=C:Program FilesMessengermsmsgs.exe [2008-04-14 1695232]
«DAEMON Tools Lite»=C:Program FilesDAEMON Tools Litedaemon.exe [2008-04-01 486856]
«Skype»=C:Program FilesSkypePhoneSkype.exe /nosplash /minimized []
C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
TMTray.lnk — F:Program FileseSMSeMMSOEBinTMTray.exe
Windows Search.lnk — C:Program FilesWindows Desktop SearchWindowsSearch.exe
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyavgrsstarter]
C:WINDOWSsystem32avgrsstx.dll [2009-02-03 10520]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyWgaLogon]
C:WINDOWSsystem32WgaLogon.dll [2008-09-06 267304]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{56F9679E-7826-4C84-81F3-532071A8BCC5}»=C:Program FilesWindows Desktop SearchMSNLNamespaceMgr.dll [2008-05-26 304128]
«{E1B51DF9-6548-4673-AE63-4EFA313E5907}»=F:Program FileseSMSeMMSOEBinTMShell.dll [2008-06-30 176128]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=255
«NoSMMyPictures»=1
«NoSMConfigurePrograms»=1
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«D:GamesCOD2_HWCoD2MP_s.exe»=»D:GamesCOD2_HWCoD2MP_s.exe:*:Enabled:CoD2MP_s»
«D:GamesVOLODAMedal Of Honor Russian VersionMohaa.exe»=»D:GamesVOLODAMedal Of Honor Russian VersionMohaa.exe:*:Enabled:Medal of Honor Allied Assault»
«D:MOHPAmohpa_server.exe»=»D:MOHPAmohpa_server.exe:*:Enabled:Medal of Honor Pacific Assault(tm)»
«C:WINDOWSsystem32PnkBstrA.exe»=»C:WINDOWSsystem32PnkBstrA.exe:*:Enabled:PnkBstrA»
«C:WINDOWSsystem32PnkBstrB.exe»=»C:WINDOWSsystem32PnkBstrB.exe:*:Enabled:PnkBstrB»
«D:Program FilesCOL-4iw3mp.exe»=»D:Program FilesCOL-4iw3mp.exe:*:Enabled:Call of Duty(R) 4 — Modern Warfare(TM)»
«C:Program FilesGrisoftAVG7avginet.exe»=»C:Program FilesGrisoftAVG7avginet.exe:*:Enabled:avginet.exe»
«C:Program FilesGrisoftAVG7avgamsvr.exe»=»C:Program FilesGrisoftAVG7avgamsvr.exe:*:Enabled:avgamsvr.exe»
«C:Program FilesGrisoftAVG7avgcc.exe»=»C:Program FilesGrisoftAVG7avgcc.exe:*:Enabled:avgcc.exe»
«C:Program FilesGrisoftAVG7avgemc.exe»=»C:Program FilesGrisoftAVG7avgemc.exe:*:Enabled:avgemc.exe»
«D:GamesFEAR_BFFEARServer.exe»=»D:GamesFEAR_BFFEARServer.exe:*:Enabled:F.E.A.R. — Stand-Alone Server»
«F:Program FilesBlackSite Area 51BinariesBlackSite.exe»=»F:Program FilesBlackSite Area 51BinariesBlackSite.exe:*:Disabled:BlackSite»
«D:GamesBlackSite Area 51BinariesBlackSite.exe»=»D:GamesBlackSite Area 51BinariesBlackSite.exe:*:Enabled:BlackSite»
«D:Program FilesMOHPAmohpa.exe»=»D:Program FilesMOHPAmohpa.exe:*:Disabled:Medal of Honor Pacific Assault(tm)»
«F:Program FilesTUROKBinariesTurokGame.exe»=»F:Program FilesTUROKBinariesTurokGame.exe:*:Disabled:Turok»
«C:Program FilesMessengermsmsgs.exe»=»C:Program FilesMessengermsmsgs.exe:*:Enabled:Windows Messenger»
«C:Program FilesuTorrent [tfile.ru]utorrent.exe»=»C:Program FilesuTorrent [tfile.ru]utorrent.exe:*:Enabled:µTorrent»
«F:CD-5CoDWaWmp.exe»=»F:CD-5CoDWaWmp.exe:*:Enabled:Call of Duty(R) — World at War(TM)»
«F:CD-5CoDWaW.exe»=»F:CD-5CoDWaW.exe:*:Enabled:Call of Duty(R) — World at War(TM)»
«F:Program Files3Soldier Of Fortune — Paybacksof3.exe»=»F:Program Files3Soldier Of Fortune — Paybacksof3.exe:*:Enabled:sof3»
«F:Program FilesCall of Duty — World at WarCoDWaW.exe»=»F:Program FilesCall of Duty — World at WarCoDWaW.exe:*:Disabled:Call of Duty(R): World at War Campaign/Coop»
«F:Program FilesCall of Duty — World at WarCoDWaWmp.exe»=»F:Program FilesCall of Duty — World at WarCoDWaWmp.exe:*:Enabled:Call of Duty(R): World at War Multiplayer»
«F:Program Files4Call Of Duty — World At WarCoDWaW.exe»=»F:Program Files4Call Of Duty — World At WarCoDWaW.exe:*:Enabled:Call of Duty(R): World at War Campaign/Coop»
«F:Call of Duty — World at WarCoDWaW.exe»=»F:Call of Duty — World at WarCoDWaW.exe:*:Enabled:Call of Duty(R): World at War Campaign/Coop»
«C:Program FilesAVGAVG8avgupd.exe»=»C:Program FilesAVGAVG8avgupd.exe:*:Enabled:avgupd.exe»
«C:Program FilesAVGAVG8avgnsx.exe»=»C:Program FilesAVGAVG8avgnsx.exe:*:Enabled:avgnsx.exe»
«D:GamesCall of Duty — World at WarCoDWaW.exe»=»D:GamesCall of Duty — World at WarCoDWaW.exe:*:Enabled:Call of Duty(R): World at War Campaign/Coop»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype»
«C:TempBN3.tmp»=»C:TempBN3.tmp:*:Enabled:ENABLE»
«C:TempanvFB.tmp»=»C:TempanvFB.tmp:*:Enabled:ENABLE»
«C:Program FilesInternet Exploreriexplore.exe»=»C:Program FilesInternet Exploreriexplore.exe:*:Enabled:ENABLE»
«C:TempBNA.tmp»=»C:TempBNA.tmp:*:Enabled:ENABLE»
«C:TempBNC.tmp»=»C:TempBNC.tmp:*:Enabled:ENABLE»
«C:Program FilesArtweaver 0.5Artweaver.exe»=»C:Program FilesArtweaver 0.5Artweaver.exe:*:Enabled:ENABLE»
«C:WINDOWSpchealthhelpctrbinariesmsconfig.exe»=»C:WINDOWSpchealthhelpctrbinariesmsconfig.exe:*:Enabled:ENABLE»
«C:WINDOWSregedit.exe»=»C:WINDOWSregedit.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insscript-fu.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insscript-fu.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insblur-gauss-selective.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insblur-gauss-selective.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insnoise-randomize.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insnoise-randomize.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-inssharpen.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-inssharpen.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-inswind.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-inswind.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insdisplace.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insdisplace.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insblur-motion.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insblur-motion.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-inspixelize.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-inspixelize.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insfile-jpeg.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insfile-jpeg.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insnoise-rgb.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insnoise-rgb.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insnoise-spread.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insnoise-spread.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insthreshold-alpha.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insthreshold-alpha.exe:*:Enabled:ENABLE»
«C:Program FilesGIMP-2.0libgimp2.0plug-insblur-gauss.exe»=»C:Program FilesGIMP-2.0libgimp2.0plug-insblur-gauss.exe:*:Enabled:ENABLE»
«C:Program FilesTotal CommanderTotalcmd.exe»=»C:Program FilesTotal CommanderTotalcmd.exe:*:Enabled:ENABLE»
«D:Program FilesBattlestrikeBattlestrike.exe»=»D:Program FilesBattlestrikeBattlestrike.exe:*:Enabled:ENABLE»
«D:Program FilesРЕМБО II — ВЬЕТНАМBin32FarCry.exe»=»D:Program FilesРЕМБО II — ВЬЕТНАМBin32FarCry.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32msfeedssync.exe»=»C:WINDOWSsystem32msfeedssync.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32spider.exe»=»C:WINDOWSsystem32spider.exe:*:Enabled:ENABLE»
«C:Program FilesWindows Media Playerwmplayer.exe»=»C:Program FilesWindows Media Playerwmplayer.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32winmine.exe»=»C:WINDOWSsystem32winmine.exe:*:Enabled:ENABLE»
«F:Program FilesWinampWinamp.exe»=»F:Program FilesWinampWinamp.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32notepad.exe»=»C:WINDOWSsystem32notepad.exe:*:Enabled:ENABLE»
«C:Program FilesMozilla Firefoxfirefox.exe»=»C:Program FilesMozilla Firefoxfirefox.exe:*:Enabled:ENABLE»
«C:WINDOWSSOUNDMAN.EXE»=»C:WINDOWSSOUNDMAN.EXE:*:Enabled:ENABLE»
«C:Program FilesSafHouseDUTrafficDUTraffic.exe»=»C:Program FilesSafHouseDUTrafficDUTraffic.exe:*:Enabled:ENABLE»
«C:Program FilesJavajre6binjusched.exe»=»C:Program FilesJavajre6binjusched.exe:*:Enabled:ENABLE»
«C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe»=»C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe:*:Enabled:ENABLE»
«C:Program FilesWinampwinampa.exe»=»C:Program FilesWinampwinampa.exe:*:Enabled:ENABLE»
«C:Program FilesAVGAVG8avgtray.exe»=»C:Program FilesAVGAVG8avgtray.exe:*:Enabled:ENABLE»
«C:Program FilesPunto Switcherps.exe»=»C:Program FilesPunto Switcherps.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32ctfmon.exe»=»C:WINDOWSsystem32ctfmon.exe:*:Enabled:ENABLE»
«C:Program FilesPRMT8PRMTEDEDLauncher.exe»=»C:Program FilesPRMT8PRMTEDEDLauncher.exe:*:Enabled:ENABLE»
«C:Program FilesDAEMON Tools Litedaemon.exe»=»C:Program FilesDAEMON Tools Litedaemon.exe:*:Enabled:ENABLE»
«F:Program FileseSMSeMMSOEBinTMTray.exe»=»F:Program FileseSMSeMMSOEBinTMTray.exe:*:Enabled:ENABLE»
«C:Program FilesPRMT8PRMTEDprmedsvr.exe»=»C:Program FilesPRMT8PRMTEDprmedsvr.exe:*:Enabled:ENABLE»
«C:Игры от NevoSoftNevoDRMrun.exe»=»C:Игры от NevoSoftNevoDRMrun.exe:*:Enabled:ENABLE»
«C:Program FilesWindows Desktop SearchWindowsSearch.exe»=»C:Program FilesWindows Desktop SearchWindowsSearch.exe:*:Enabled:ENABLE»
«C:TempBN24.tmp»=»C:TempBN24.tmp:*:Enabled:ENABLE»
«C:TempanvC6.tmp»=»C:TempanvC6.tmp:*:Enabled:ENABLE»
«C:TempBN2B.tmp»=»C:TempBN2B.tmp:*:Enabled:ENABLE»
«C:Program FilesAVGAVG8avgcsrvx.exe»=»C:Program FilesAVGAVG8avgcsrvx.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32rundll32.exe»=»C:WINDOWSsystem32rundll32.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32netsh.exe»=»C:WINDOWSsystem32netsh.exe:*:Enabled:ENABLE»
«C:Program FilesCommon FilesInstallShieldUpdateServiceagent.exe»=»C:Program FilesCommon FilesInstallShieldUpdateServiceagent.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32taskmgr.exe»=»C:WINDOWSsystem32taskmgr.exe:*:Enabled:ENABLE»
«C:WINDOWSsystem32SearchProtocolHost.exe»=»C:WINDOWSsystem32SearchProtocolHost.exe:*:Enabled:ENABLE»
«C:WINDOWSExplorer.EXE»=»C:WINDOWSExplorer.EXE:*:Enabled:ENABLE»
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
======List of files/folders created in the last 1 months======
8200-05-08 14:25:16 —-A—- C:WINDOWSIE4 Error Log.txt
8200-05-08 13:50:30 —-A—- C:WINDOWSWSIMFARM.INI
2009-04-15 20:14:29 —-D—- C:_OTMoveIt
2009-04-14 16:56:29 —-D—- C:Documents and SettingsRootApplication Dataanv1E
2009-04-14 16:49:26 —-D—- C:Documents and SettingsRootApplication DataanvB
2009-04-14 16:29:17 —-D—- C:Documents and SettingsRootApplication Dataanv62
2009-04-14 16:24:49 —-D—- C:Documents and SettingsRootApplication DataanvB0
2009-04-13 21:20:45 —-D—- C:Documents and SettingsRootApplication Dataanv5D
2009-04-13 21:05:32 —-D—- C:Documents and SettingsRootApplication DataanvC6
2009-04-13 21:01:37 —-DC—- C:Program Filestrend micro
2009-04-13 21:01:37 —-D—- C:rsit
2009-04-13 20:06:50 —-D—- C:Documents and SettingsRootApplication DataMalwarebytes
2009-04-13 20:06:43 —-DC—- C:Program FilesMalwarebytes’ Anti-Malware
2009-04-13 20:06:43 —-DC—- C:Documents and SettingsAll UsersApplication DataMalwarebytes
2009-04-13 19:52:22 —-D—- C:Documents and SettingsRootApplication DataanvB4
2009-04-13 18:25:03 —-D—- C:Documents and SettingsRootApplication DataanvA7
2009-04-12 23:21:26 —-D—- C:Documents and SettingsRootApplication Dataanv23
2009-04-12 12:35:02 —-D—- C:Documents and SettingsRootApplication DataanvA5
2009-04-12 12:30:12 —-D—- C:Documents and SettingsRootApplication DataanvB5
2009-04-12 12:20:15 —-D—- C:Documents and SettingsRootApplication Dataanv6C
2009-04-12 12:15:52 —-D—- C:Documents and SettingsRootApplication DataanvA0
2009-04-12 12:05:03 —-D—- C:Documents and SettingsRootApplication DataanvD5
2009-04-11 16:56:51 —-D—- C:WINDOWSpss
2009-04-11 15:26:07 —-D—- C:Documents and SettingsRootApplication Dataanv12
2009-04-11 15:11:51 —-D—- C:Documents and SettingsRootApplication Dataanv66
2009-04-11 13:39:06 —-D—- C:Documents and SettingsRootApplication DataanvFB
2009-04-11 11:12:52 —-D—- C:Documents and SettingsRootApplication DataanvAF
2009-04-10 23:31:57 —-D—- C:Documents and SettingsRootApplication Dataanv80
2009-04-03 18:28:29 —-D—- C:Сервіси Яндекса
2009-04-03 18:21:07 —-HD—- C:WINDOWSmsdownld.tmp
2009-04-03 18:19:19 —-HDC—- C:WINDOWSie8
2009-04-02 17:20:12 —-A—- C:FONTLOG.TXT
2009-03-23 21:52:45 —-D—- C:Documents and SettingsRootApplication DataGearbox Software
2009-03-20 19:01:45 —-DC—- C:Program FilesArtweaver 0.5
2009-03-19 19:01:51 —-DC—- C:Program FilesСтудия Эффектов
2009-03-18 23:32:09 —-DC—- C:Program FilesGoogle
======List of files/folders modified in the last 1 months======
2009-04-15 20:20:24 —-D—- C:WINDOWSTemp
2009-04-15 20:19:40 —-DC—- C:Temp
2009-04-15 20:17:29 —-A—- C:WINDOWSSchedLgU.Txt
2009-04-15 17:41:24 —-DC—- C:Program FilesMozilla Firefox
2009-04-15 16:10:53 —-ASH—- C:boot.ini
2009-04-15 16:10:53 —-A—- C:WINDOWSwin.ini
2009-04-15 16:10:53 —-A—- C:WINDOWSsystem.ini
2009-04-14 21:34:04 —-D—- C:WINDOWSPrefetch
2009-04-14 21:15:32 —-D—- C:WINDOWSsystem32CatRoot2
2009-04-14 17:17:25 —-D—- C:WINDOWSsystem32drivers
2009-04-14 17:17:25 —-D—- C:WINDOWSsystem32
2009-04-14 17:16:12 —-RDC—- C:Program Files
2009-04-14 17:03:23 —-HD—- C:$AVG8.VAULT$
2009-04-13 20:20:14 —-D—- C:WINDOWS
2009-04-13 19:18:05 —-HDC—- C:Program FilesInstallShield Installation Information
2009-04-13 19:07:45 —-D—- C:Documents and SettingsRootApplication DatauTorrent
2009-04-13 18:38:10 —-SHD—- C:WINDOWSInstaller
2009-04-13 17:31:55 —-HD—- C:BJPrinter
2009-04-12 20:56:15 —-SD—- C:WINDOWSTasks
2009-04-12 17:27:43 —-DC—- C:Documents and SettingsAll UsersApplication Dataavg8
2009-04-11 18:46:24 —-D—- C:Documents and SettingsRootApplication Datagtk-2.0
2009-04-11 11:51:08 —-D—- C:WINDOWSnetwork diagnostic
2009-04-03 18:23:05 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-04-03 18:23:05 —-HD—- C:WINDOWSinf
2009-04-03 18:23:05 —-DC—- C:Program FilesInternet Explorer
2009-04-03 18:23:05 —-D—- C:WINDOWSsystem32ru-ru
2009-04-03 18:23:05 —-D—- C:WINDOWSMedia
2009-04-03 18:23:05 —-D—- C:WINDOWSHelp
2009-04-02 20:16:33 —-SDC—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2009-03-29 16:25:08 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-03-19 17:13:22 —-DC—- C:Program FilesGIMP-2.0
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:WINDOWSSystem32Driversavgldx86.sys [2009-02-03 325128]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:WINDOWSSystem32Driversavgmfx86.sys [2009-02-03 27656]
R1 AvgTdiX;AVG Free8 Network Redirector; C:WINDOWSSystem32Driversavgtdix.sys [2009-02-03 107272]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-14 40704]
R2 atksgt;atksgt; C:WINDOWSsystem32DRIVERSatksgt.sys [2008-05-21 278728]
R2 irda;ИК-протокол IrDA; C:WINDOWSsystem32DRIVERSirda.sys [2008-04-13 88192]
R2 lirsgt;lirsgt; C:WINDOWSsystem32DRIVERSlirsgt.sys [2008-05-21 25416]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2004-11-17 2297664]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2008-12-03 6209536]
R3 Rasirda;Минипорт WAN (IrDA); C:WINDOWSsystem32DRIVERSrasirda.sys [2001-08-17 19584]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet адаптер, драйвер для NT; C:WINDOWSsystem32DRIVERSRTL8139.SYS [2004-08-03 20992]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2008-04-13 59520]
R3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2008-04-13 15104]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-13 20608]
S2 cnmpar21;C; ??C:BJPrinterCNMWINDOWSCanon PIXMA iP1500 InstallerInst2cnmpar21.sys []
S3 amal77vc;amal77vc; C:WINDOWSsystem32driversamal77vc.sys []
S3 an36s297;an36s297; C:WINDOWSsystem32driversan36s297.sys []
S3 E100B;Intel(R) PRO Adapter Driver; C:WINDOWSsystem32DRIVERSe100b325.sys [2003-03-04 145408]
S3 MA-620;Mobile Action MA-660 USB Infrared Adapter; C:WINDOWSsystem32DRIVERSMA-620.sys [2003-03-25 27136]
S3 MODEMCSA;Устройство фильтрации потока Unimodem; C:WINDOWSsystem32driversMODEMCSA.sys [2001-08-17 16128]
S3 MSIRCOMM;Microsoft IR Communications Driver; C:WINDOWSsystem32DRIVERSMSIRCOMM.sys [2008-04-13 22016]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2008-04-13 25856]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S4 sr;Драйвер фильтра восстановления системы; C:WINDOWSsystem32DRIVERSsr.sys [2008-04-14 73472]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avg8wd;AVG Free8 WatchDog; C:PROGRA~1AVGAVG8avgwdsvc.exe [2009-02-03 298264]
R2 Irmon;Монитор инфракрасной связи; C:WINDOWSsystem32svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-03-03 152984]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-19 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2008-12-03 163908]
R2 PnkBstrA;PnkBstrA; C:WINDOWSsystem32PnkBstrA.exe [2009-02-03 66872]
R2 PnkBstrB;PnkBstrB; C:WINDOWSsystem32PnkBstrB.exe [2009-02-18 107832]
R2 StarWindService;StarWind iSCSI Service; C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe [2005-04-02 217600]
R2 WSearch;Windows Search; C:WINDOWSsystem32SearchIndexer.exe [2008-05-26 439808]
S3 aspnet_state;Служба состояний ASP.NET; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 getPlus(R) Helper;getPlus(R) Helper; C:Program FilesNOSbingetPlus_HelperSvc.exe []
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]
EOF
