окно на весь рабочий стол поверх всех окон

[Ludmila_mart]

Logfile of random’s system information tool 1.06 (written by random/random)
Run by HP-Compaq at 2010-01-18 19:35:14
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 23 GB (45%) free of 50 GB
Total RAM: 3038 MB (72% free)

HijackThis download failed

======Scheduled tasks folder======

C:WindowstasksUser_Feed_Synchronization-{69810C9B-1579-4500-B74B-B302BEC77590}.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper — C:PROGRA~1MICROS~3Office12GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Помощник по входу в Windows Live — C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class — C:UsersHP-CompaqAppDataRoamingMicrosoftInternet Explorerqipsearchbar.dll [2009-07-14 150768]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-12-21 41760]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} — ICQToolBar — C:Program FilesICQ6ToolbarICQToolBar.dll [2009-06-01 962808]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«Windows Defender»=C:Program FilesWindows DefenderMSASCui.exe [2008-01-21 1008184]
«UCam_Menu»=C:Program FilesCyberLinkYouCamMUITransferMUIStartMenu.exe [2008-12-03 218408]
«WirelessAssistant»=C:Program FilesHewlett-PackardHP Wireless AssistantHPWAMain.exe [2009-07-23 498744]
«QlbCtrl.exe»=C:Program FilesHewlett-PackardHP Quick Launch ButtonsQlbCtrl.exe [2009-04-23 206392]
«SunJavaUpdateSched»=C:Program FilesJavajre6binjusched.exe [2009-12-21 149280]
«QuickTime Task»=C:Program FilesQuickTimeQTTask.exe [2007-10-19 286720]
«SysTrayApp»=C:Program FilesIDTWDMsttray.exe [2009-02-23 483420]
«NvCplDaemon»=C:Windowssystem32NvCpl.dll [2009-01-15 13605408]
«NvMediaCenter»=C:Windowssystem32NvMcTray.dll [2009-01-15 92704]
«ISUSScheduler»=C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe [2005-08-11 81920]
«egui»=C:Program FilesESETESET NOD32 Antivirusegui.exe [2009-05-14 2029640]
«GrooveMonitor»=C:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2006-10-27 31016]
«Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-10-03 35696]
«Adobe ARM»=C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe [2009-09-04 935288]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Sidebar»=C:Program FilesWindows Sidebarsidebar.exe [2009-04-11 1233920]
«LightScribe Control Panel»=C:Program FilesCommon FilesLightScribeLightScribeControlPanel.exe [2009-06-17 2363392]
«msnmsgr»=C:Program FilesWindows LiveMessengermsnmsgr.exe [2009-07-26 3883840]
«ISUSPM Startup»=C:Program FilesCommon FilesInstallShieldUpdateServiceISUSPM.exe [2005-08-11 249856]
«ICQ»=C:Program FilesICQ6.5ICQ.exe [2009-11-16 172792]

C:ProgramDataMicrosoftWindowsStart MenuProgramsStartup
Network Server.lnk — C:Program FilesWIBUKEYServerWkSvMgr.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:PROGRA~1MICROS~3Office12GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWdf01000.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWdf01000.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfPf]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfRd]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfSvc]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWudfUsbccidDriver]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«DisableTaskMgr»=1

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«EnableUIADesktopToggle»=0

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«BindDirectlyToPropertySetStorage»=

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8d5955ea-d992-11de-b400-00269e1981d8}]
shellAutoRuncommand — G:AutoRun.exe

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8d595600-d992-11de-b400-00269e1981d8}]
shellAutoRuncommand — H:AutoRun.exe

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{d7580082-b419-11de-bf60-00269e1981d8}]
shellAutoRuncommand — G:AutoRun.exe

======File associations======

.js — edit — C:WindowsSystem32Notepad.exe %1
.js — open — C:WindowsSystem32WScript.exe «%1» %*

======List of files/folders created in the last 1 months======

2010-01-18 19:35:15 —-D—- C:Program Filestrend micro
2010-01-18 19:35:14 —-D—- C:rsit
2010-01-18 17:48:47 —-A—- C:Windowsntbtlog.txt
2010-01-18 15:26:29 —-D—- C:UsersHP-CompaqAppDataRoamingCrayon Physics Deluxe
2009-12-23 07:35:20 —-D—- C:UsersHP-CompaqAppDataRoamingApp Launcher Gadget
2009-12-21 19:56:43 —-A—- C:Windowssystem32deploytk.dll

======List of files/folders modified in the last 1 months======

2010-01-18 19:35:15 —-RD—- C:Program Files
2010-01-18 19:35:14 —-D—- C:WindowsTemp
2010-01-18 19:34:11 —-HD—- C:ProgramData
2010-01-18 19:34:11 —-A—- C:ProgramDataHPWALog.txt
2010-01-18 17:49:21 —-D—- C:Windowssystem32catroot2
2010-01-18 17:48:47 —-D—- C:Windows
2010-01-18 17:33:34 —-D—- C:Windowssystem32Macromed
2010-01-18 17:27:01 —-D—- C:WindowsPrefetch
2010-01-18 17:13:43 —-D—- C:WindowsSystem32
2010-01-18 17:13:38 —-A—- C:Windowssystem32PerfStringBackup.INI
2010-01-18 17:13:37 —-D—- C:Windowsinf
2010-01-18 15:20:59 —-D—- C:UsersHP-CompaqAppDataRoamingWildfire
2010-01-17 18:34:33 —-D—- C:Windowssystem32catroot
2010-01-17 18:34:28 —-D—- C:Windowswinsxs
2010-01-17 16:52:41 —-D—- C:UsersHP-CompaqAppDataRoamingICQ
2010-01-10 13:12:40 —-D—- C:Program FilesICQ6.5
2009-12-29 21:59:22 —-D—- C:Program FilesQIP
2009-12-23 07:33:52 —-SHD—- C:WindowsInstaller
2009-12-22 21:41:57 —-SD—- C:UsersHP-CompaqAppDataRoamingMicrosoft
2009-12-21 19:56:33 —-A—- C:Windowssystem32javaws.exe
2009-12-21 19:56:33 —-A—- C:Windowssystem32javaw.exe
2009-12-21 19:56:33 —-A—- C:Windowssystem32java.exe
2009-12-21 19:56:30 —-D—- C:Program FilesJava

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:Windowssystem32DRIVERSehdrv.sys [2009-05-14 107256]
R2 eamon;eamon; C:Windowssystem32DRIVERSeamon.sys [2009-05-14 114472]
R2 epfwwfpr;epfwwfpr; C:Windowssystem32DRIVERSepfwwfpr.sys [2009-05-14 93312]
R2 WIBUKEY;WIBU-KEY Kernel Driver; C:WindowsSYSTEM32DRIVERSWibuKey.sys [2006-11-22 72704]
R3 athr;Atheros Extensible Wireless LAN device driver; C:Windowssystem32DRIVERSathr.sys [2008-12-20 1093120]
R3 CmBatt;Драйвер батареи с ACPI-управлением (Microsoft); C:Windowssystem32DRIVERSCmBatt.sys [2008-01-21 14208]
R3 HpqKbFiltr;HpqKbFilter Driver; C:Windowssystem32DRIVERSHpqKbFiltr.sys [2007-06-18 16768]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:Windowssystem32driversnvhda32v.sys [2008-09-24 45600]
R3 nvlddmkm;nvlddmkm; C:Windowssystem32DRIVERSnvlddmkm.sys [2009-01-15 7543200]
R3 RTL8169;Realtek 8169 NT Driver; C:Windowssystem32DRIVERSRtlh86.sys [2008-12-23 138240]
R3 STHDA;IDT High Definition Audio CODEC; C:Windowssystem32DRIVERSstwrt.sys [2009-02-23 394240]
R3 usbvideo;USB-видеоустройство (WDM); C:WindowsSystem32Driversusbvideo.sys [2008-01-21 134016]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32DRIVERSwmiacpi.sys [2008-01-21 11264]
R3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:Windowssystem32DRIVERSewusbmdm.sys [2008-12-13 102784]
S3 hwusbfake;Huawei DataCard USB Fake; C:Windowssystem32DRIVERSewusbfake.sys [2008-12-30 103040]
S3 iscFlash;iscFlash; ??C:SwSetupsp45111iscflash.sys [2009-06-16 13312]
S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
S3 RTSTOR;Realtek USB 2.0 Card Reader; C:Windowssystem32driversRTSTOR.SYS [2008-12-29 60416]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:Windowssystem32DRIVERSZTEusbmdm6k.sys [2008-05-05 104960]
S3 ZTEusbnmea;ZTE NMEA Port; C:Windowssystem32DRIVERSZTEusbnmea.sys [2008-05-05 104960]
S3 ZTEusbser6k;ZTE Diagnostic Port; C:Windowssystem32DRIVERSZTEusbser6k.sys [2008-05-05 104960]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:WindowsSystem32DriverStoreFileRepositorystwrt.inf_b9d13b43aestsrv.exe [2009-02-12 81920]
R2 ekrn;ESET Service; C:Program FilesESETESET NOD32 Antivirusekrn.exe [2009-05-14 731840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:Program FilesCommon FilesLightScribeLSSrvc.exe [2009-06-17 73728]
R2 nvsvc;NVIDIA Display Driver Service; C:Windowssystem32nvvsvc.exe [2009-01-15 203296]
R2 STacSV;Audio Service; C:WindowsSystem32DriverStoreFileRepositorystwrt.inf_b9d13b43STacSV.exe [2009-02-23 254034]
R3 Com4QLBEx;Com4QLBEx; C:Program FilesHewlett-PackardHP Quick Launch ButtonsCom4QLBEx.exe [2009-04-23 239160]
R3 hpqwmiex;hpqwmiex; C:Program FilesHewlett-PackardSharedhpqwmiex.exe [2009-04-30 229944]
S3 EhttpSrv;ESET HTTP Server; C:Program FilesESETESET NOD32 AntivirusEHttpSrv.exe [2009-05-14 20680]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]

---

EOF

---

[Admin]

Здравствуйте, добро пожаловать на Spyware-ru форум.

Необходима дополнительная проверка.
Скачайте программу Combofix. Закройте все открытые окна и запустите эту программу.
После выполнения будет создан лог файл, пожалуйста вставьте его в ваш ответ.

[Автор]

Сообщения