- This topic has 26 ответов, 3 участника, and was last updated 16 years, 3 months назад by
.
-
Сообщения
-
Здравствуйте.
При загрузке обозревателя всплывает окно с собщением типа удалить только отправить смс… и тд. Сканировала антивирусом ни чего не видно .
В одно сообщение не влазит два файла LOG и info поэтому двумя сообщениями:
log:
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Irina at 2009-04-05 16:28:09
Microsoft Windows XP Professional Service Pack 3
System drive C: has 9 GB (30%) free of 30 GB
Total RAM: 511 MB (13% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:29:05, on 05.04.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:Program FilesEsetnod32kui.exe
C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe
C:WINDOWSCTHELPER.EXE
C:WINDOWSsystem32TaskSwitch.exe
C:Program FilesFlashGetflashget.exe
C:Program FilesWebMoney Agentwmagent.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesChameleon ClockChamClock.exe
C:Program FilesNokiaNokia PC Suite 7PCSuite.exe
C:Program FilesSkypePhoneSkype.exe
C:Program FilesWindows Media PlayerWMPNSCFG.exe
C:Program FilesApexDC-SMODApexDC.exe
C:Program Files2gisUpdateClientWin32UpdateClientService.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesEsetnod32krn.exe
C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesPC Connectivity SolutionServiceLayer.exe
C:Program FilesSkypePlugin ManagerskypePM.exe
C:Program FilesPC Connectivity SolutionTransportsNclUSBSrv.exe
C:Program FilesPC Connectivity SolutionTransportsNclRSSrv.exe
C:Program FilesInternet Exploreriexplore.exe
C:Documents and SettingsIrinaРабочий столRSIT.exe
C:Program Filestrend microIrina.exeR1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.mail.ru
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 — BHO: (no name) — {259F616C-A300-44F5-B04A-ED001A26C85C} — (no file)
O2 — BHO: flashget urlcatch — {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} — C:Program FilesFlashGetjccatch.dll
O2 — BHO: ucxvbquP — {37D24D2C-060A-4F10-A69E-93DFCC20453E} — C:Documents and SettingsAll UsersApplication Dataucxvbqu.dll
O2 — BHO: boitsquP — {4B7B8BCE-7E00-450D-BFBF-4F49F21BE610} — C:Documents and SettingsAll UsersApplication Databoitsqu.dll
O2 — BHO: ConnectionServices module — {6D7B211A-88EA-490c-BAB9-3600D8D7C503} — C:Program FilesConnectionServicesConnectionServices.dll (file missing)
O2 — BHO: SSVHelper Class — {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} — C:Program FilesJavajre1.5.0_06binssv.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — c:program filesmail.rusputnikMailRuSputnik.dll
O2 — BHO: mpnlibP — {A449340F-A80D-49BD-A931-45AC4DB33881} — C:Documents and SettingsAll UsersApplication Datampnlib.dll (file missing)
O2 — BHO: TBSB03223 — {B4806C1A-FE8A-4008-9DA3-8CEDB6E82C10} — C:Program FilesWebMoney Advisorwmadvisor.dll
O2 — BHO: vjwjsquP — {C4A9BDD1-CD85-4398-A370-C2C53E1C70EA} — C:Documents and SettingsAll UsersApplication Datavjwjsqu.dll
O2 — BHO: FlashGet GetFlash Class — {F156768E-81EF-470C-9057-481BA8380DBA} — C:Program FilesFlashGetgetflash.dll
O2 — BHO: (no name) — {FFFC57DB-1DE3-4303-B24D-CEE6DCDD3D86} — C:PROGRA~1MYCENT~1InfoBarMYCENT~1.DLL (file missing)
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
O3 — Toolbar: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O4 — HKLM..Run: [nod32kui] «C:Program FilesEsetnod32kui.exe» /WAITSERVICE
O4 — HKLM..Run: [ISUSPM Startup] «C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe» -startup
O4 — HKLM..Run: [NeroFilterCheck] C:Program FilesCommon FilesAheadLibNeroCheck.exe
O4 — HKLM..Run: [ISUSScheduler] «C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe» -start
O4 — HKLM..Run: [CTxfiHlp] CTXFIHLP.EXE
O4 — HKLM..Run: [CTHelper] CTHELPER.EXE
O4 — HKLM..Run: [CoolSwitch] C:WINDOWSsystem32TaskSwitch.exe
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [QuickTime Task] «C:Program FilesQuickTimeqttask.exe» -atboottime
O4 — HKLM..Run: [Flashget] C:Program FilesFlashGetflashget.exe /min
O4 — HKLM..Run: [wmagent.exe] «C:Program FilesWebMoney Agentwmagent.exe»
O4 — HKLM..Run: [NevoDRM] «C:Игры от NevoSoftNevoDRMNevoDRM.exe»
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [HomeAlarm] C:Program FilesChameleon ClockChamClock.exe
O4 — HKCU..Run: [MSMSGS] «C:Program FilesMessengermsmsgs.exe» /background
O4 — HKCU..Run: [PC Suite Tray] «C:Program FilesNokiaNokia PC Suite 7PCSuite.exe» -onlytray
O4 — HKCU..Run: [Skype] «C:Program FilesSkypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [WMPNSCFG] C:Program FilesWindows Media PlayerWMPNSCFG.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Startup: ApexDC++.lnk = C:Program FilesApexDC-SMODApexDC.exe
O4 — Global Startup: Acrobat Assistant.lnk = C:Program FilesAdobeAcrobat 6.0DistillrACROTRAY.EXE
O4 — Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe
O8 — Extra context menu item: &Закачать все при помощи FlashGet — C:Program FilesFlashGetjc_all.htm
O8 — Extra context menu item: &Закачать при помощи FlashGet — C:Program FilesFlashGetjc_link.htm
O8 — Extra context menu item: Поиск@Mail.Ru — res://c:program filesmail.rusputnikMailRuSputnik.dll/282
O8 — Extra context menu item: Словари@Mail.Ru — res://c:program filesmail.rusputnikMailRuSputnik.dll/283
O9 — Extra button: (no name) — {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — C:Program FilesJavajre1.5.0_06binssv.dll
O9 — Extra ‘Tools’ menuitem: Sun Java Console — {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — C:Program FilesJavajre1.5.0_06binssv.dll
O9 — Extra button: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O9 — Extra ‘Tools’ menuitem: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~3OFFICE11REFIEBAR.DLL
O9 — Extra button: FlashGet — {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} — C:Program FilesFlashGetFlashGet.exe
O9 — Extra ‘Tools’ menuitem: FlashGet — {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} — C:Program FilesFlashGetFlashGet.exe
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra button: (no name) — SolidConverterPDF — (no file) (HKCU)
O16 — DPF: {5D2CF9D0-113A-476B-986F-288B54571614} (DevalVR Control) — http://www.devalvr.com/instalacion/plugin/devalvrplugin.php
O16 — DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) — http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1237919490203
O16 — DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) — http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1237919029046
O16 — DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) — http://my.foto.mail.ru/ImageUploader4.cab
O16 — DPF: {D27CDB6E-AE6D-0000-0000-000000000000} — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: 2GIS UpdateClientService — ДубльГИС — C:Program Files2gisUpdateClientWin32UpdateClientService.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: mental ray 3.5 Satellite (32-bit) (mi-raysat_3dsmax9_32) — Unknown owner — C:Program FilesAutodesk3ds Max 9mentalraysatelliteraysat_3dsmax9_32server.exe (file missing)
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: Intel NCS NetService (NetSvc) — Intel(R) Corporation — c:Program FilesIntelNCSSyncNetSvc.exe
O23 — Service: NOD32 Kernel Service (NOD32krn) — Eset — C:Program FilesEsetnod32krn.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: ServiceLayer — Nokia. — C:Program FilesPC Connectivity SolutionServiceLayer.exe
O23 — Service: StarWind iSCSI Service (StarWindService) — Rocket Division Software — C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 12064 bytes======Scheduled tasks folder======
C:WINDOWStasksUser_Feed_Synchronization-{E7C1825F-D74F-4E25-A0C1-7F6005B7ADF2}.job
======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2009-03-16 1088296][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{259F616C-A300-44F5-B04A-ED001A26C85C}]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl — C:Program FilesFlashGetjccatch.dll [2007-04-24 69632][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{37D24D2C-060A-4F10-A69E-93DFCC20453E}]
Realtime Video Extension — C:Documents and SettingsAll UsersApplication Dataucxvbqu.dll [2009-04-05 565248][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{4B7B8BCE-7E00-450D-BFBF-4F49F21BE610}]
HQ Media Helper — C:Documents and SettingsAll UsersApplication Databoitsqu.dll [2009-04-05 566272][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{6D7B211A-88EA-490c-BAB9-3600D8D7C503}]
ConnectionServices Class — C:Program FilesConnectionServicesConnectionServices.dll [][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class — C:Program FilesJavajre1.5.0_06binssv.dll [2005-11-10 184423][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — c:program filesmail.rusputnikMailRuSputnik.dll [2009-04-02 680624][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A449340F-A80D-49BD-A931-45AC4DB33881}]
WV Media Feeder — C:Documents and SettingsAll UsersApplication Datampnlib.dll [][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{B4806C1A-FE8A-4008-9DA3-8CEDB6E82C10}]
TBSB03223 Class — C:Program FilesWebMoney Advisorwmadvisor.dll [2008-09-05 2409472][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C4A9BDD1-CD85-4398-A370-C2C53E1C70EA}]
Streaming Video Extension — C:Documents and SettingsAll UsersApplication Datavjwjsqu.dll [2009-04-05 569856][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class — C:Program FilesFlashGetgetflash.dll [2007-04-13 135168][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{FFFC57DB-1DE3-4303-B24D-CEE6DCDD3D86}]
C:PROGRA~1MYCENT~1InfoBarMYCENT~1.DLL [][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — c:program filesmail.rusputnikMailRuSputnik.dll [2009-04-02 680624]
{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — WebMoney Advisor — C:Program FilesWebMoney Advisorwmadvisor.dll [2008-09-05 2409472][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«nod32kui»=C:Program FilesEsetnod32kui.exe [2007-07-20 949376]
«ISUSPM Startup»=C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe [2005-08-11 249856]
«NeroFilterCheck»=C:Program FilesCommon FilesAheadLibNeroCheck.exe [2007-03-01 153136]
«ISUSScheduler»=C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe [2005-08-11 81920]
«CTxfiHlp»=C:WINDOWSsystem32CTXFIHLP.EXE [2006-08-11 18944]
«CTHelper»=C:WINDOWSCTHELPER.EXE [2006-08-11 17920]
«CoolSwitch»=C:WINDOWSsystem32TaskSwitch.exe [2005-12-22 45632]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2009-04-02 6210744]
«QuickTime Task»=C:Program FilesQuickTimeqttask.exe [2008-02-08 98304]
«Flashget»=C:Program FilesFlashGetflashget.exe [2007-04-28 1974378]
«wmagent.exe»=C:Program FilesWebMoney Agentwmagent.exe [2008-10-01 209376]
«NevoDRM»=C:Игры от NevoSoftNevoDRMNevoDRM.exe [2008-12-11 41984][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2008-04-15 15360]
«HomeAlarm»=C:Program FilesChameleon ClockChamClock.exe [2006-02-11 868864]
«MSMSGS»=C:Program FilesMessengermsmsgs.exe [2008-04-15 1695232]
«PC Suite Tray»=C:Program FilesNokiaNokia PC Suite 7PCSuite.exe [2008-12-03 1205760]
«Skype»=C:Program FilesSkypePhoneSkype.exe [2009-03-27 24103720]
«WMPNSCFG»=C:Program FilesWindows Media PlayerWMPNSCFG.exe [2006-11-03 204288][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCVD]
C:Program FilesCVDCVD.exe [2006-04-23 193536][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregeMuleAutoStart]
C:Program FileseMuleemule.exe -AutoStart [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregFlashget]
C:Program FilesFlashGetflashget.exe [2007-04-28 1974378][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregLingvo Launcher]
C:Program FilesABBYY Lingvo 12Lvagent.exe /STARTUP [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMAgent]
C:Program FilesMail.RuAgentMAgent.exe [2009-04-02 6210744][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMSMSGS]
C:Program FilesMessengermsmsgs.exe [2008-04-15 1695232][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregQuickTime Task]
C:Program FilesQuickTimeqttask.exe [2008-02-08 98304][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSony Ericsson PC Suite]
C:Program FilesSony EricssonMobile2Application LauncherApplication Launcher.exe [2007-03-28 593920][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^Irina^Главное меню^Программы^Автозагрузка^ApexDC++.lnk]
C:PROGRA~1APEXDC~1ApexDC.exe [2008-06-09 2967552][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^Irina^Главное меню^Программы^Автозагрузка^WireNote.lnk]
C:Program FilesWiredPlaneWireNoteWireNote.exe []C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
Acrobat Assistant.lnk — C:Program FilesAdobeAcrobat 6.0DistillrACROTRAY.EXE
Adobe Gamma Loader.lnk — C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exeC:Documents and SettingsIrinaГлавное менюПрограммыАвтозагрузка
ApexDC++.lnk — C:Program FilesApexDC-SMODApexDC.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWdf01000.sys]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWdf01000.sys]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesAutodesk3ds Max 93dsmax.exe»=»C:Program FilesAutodesk3ds Max 93dsmax.exe:*:Enabled:Autodesk 3ds Max 9 32-bit»
«C:Program FilesAutodeskBackburnermonitor.exe»=»C:Program FilesAutodeskBackburnermonitor.exe:*:Enabled:backburner 2.3 monitor»
«C:Program FilesAutodeskBackburnermanager.exe»=»C:Program FilesAutodeskBackburnermanager.exe:*:Enabled:backburner 2.3 manager»
«C:Program FilesAutodeskBackburnerserver.exe»=»C:Program FilesAutodeskBackburnerserver.exe:*:Enabled:backburner 2.3 server»
«C:Program FilesFlashGetflashget.exe»=»C:Program FilesFlashGetflashget.exe:*:Enabled:Flashget»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesMessengermsmsgs.exe»=»C:Program FilesMessengermsmsgs.exe:*:Enabled:Windows Messenger»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«C:Program FilesApexDC-SMODApexDC.exe»=»C:Program FilesApexDC-SMODApexDC.exe:*:Disabled:ApexDC++»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{b5d58eee-204c-11de-b2de-0007e97d8779}]
shellAutoRuncommand — H:
shellopencommand — rundll32.exe .\cqgentr.dll,InstallS======List of files/folders created in the last 1 months======
2009-04-05 16:28:12 —-D—- C:Program Filestrend micro
2009-04-05 16:28:09 —-D—- C:rsit
2009-04-05 13:59:00 —-A—- C:Documents and SettingsAll UsersApplication Datavjwjsqu.dll
2009-04-05 13:59:00 —-A—- C:Documents and SettingsAll UsersApplication Databoitsqu.dll
2009-04-05 13:53:49 —-A—- C:Documents and SettingsAll UsersApplication Dataucxvbqu.dll
2009-04-04 19:39:17 —-HDC—- C:WINDOWS$NtUninstallKB951978$
2009-04-04 19:39:03 —-HDC—- C:WINDOWS$NtUninstallKB954459$
2009-04-03 13:19:14 —-D—- C:WINDOWS__SkypeIEToolbar_Cache
2009-04-03 13:19:11 —-D—- C:WINDOWS{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}
2009-04-03 13:09:05 —-D—- C:WINDOWSPrefetch
2009-04-03 13:04:24 —-HDC—- C:WINDOWS$NtUninstallKB967715$
2009-04-03 13:04:07 —-HDC—- C:WINDOWS$NtUninstallKB960225$
2009-04-03 13:03:54 —-HDC—- C:WINDOWS$NtUninstallKB958690$
2009-04-03 13:03:42 —-HDC—- C:WINDOWS$NtUninstallKB958687$
2009-04-03 13:03:28 —-HDC—- C:WINDOWS$NtUninstallKB958644$
2009-04-03 13:03:05 —-HDC—- C:WINDOWS$NtUninstallKB957097$
2009-04-03 12:59:34 —-HDC—- C:WINDOWS$NtUninstallKB956841$
2009-04-03 12:57:35 —-HDC—- C:WINDOWS$NtUninstallKB956803$
2009-04-03 12:53:59 —-HDC—- C:WINDOWS$NtUninstallKB956802$
2009-04-03 12:51:39 —-HDC—- C:WINDOWS$NtUninstallKB955069$
2009-04-03 12:50:01 —-HDC—- C:WINDOWS$NtUninstallKB954600$
2009-04-03 12:46:56 —-HDC—- C:WINDOWS$NtUninstallKB952954$
2009-04-03 12:44:52 —-HDC—- C:WINDOWS$NtUninstallKB952287$
2009-04-03 12:42:33 —-HDC—- C:WINDOWS$NtUninstallKB951748$
2009-04-03 12:39:48 —-HDC—- C:WINDOWS$NtUninstallKB951698$
2009-04-03 12:36:16 —-HDC—- C:WINDOWS$NtUninstallKB951376-v2$
2009-04-03 12:32:23 —-HDC—- C:WINDOWS$NtUninstallKB951066$
2009-04-03 12:28:22 —-HDC—- C:WINDOWS$NtUninstallKB950974$
2009-04-03 12:24:38 —-HDC—- C:WINDOWS$NtUninstallKB950762$
2009-04-03 12:20:55 —-HDC—- C:WINDOWS$NtUninstallKB946648$
2009-04-03 12:17:01 —-HDC—- C:WINDOWS$NtUninstallKB938464-v2$
2009-04-03 12:02:00 —-D—- C:WINDOWSl2schemas
2009-04-03 12:01:56 —-D—- C:WINDOWSsystem32bits
2009-04-03 11:52:55 —-D—- C:WINDOWSServicePackFiles
2009-04-03 11:49:39 —-D—- C:WINDOWSnetwork diagnostic
2009-04-03 11:42:18 —-HDC—- C:WINDOWS$NtServicePackUninstall$
2009-04-02 16:05:51 —-D—- C:Documents and SettingsIrinaApplication DataWebMoney
2009-04-02 16:03:47 —-D—- C:Program FilesWebMoney Advisor
2009-04-02 16:03:27 —-D—- C:Program FilesWebMoney Agent
2009-04-02 16:03:21 —-AD—- C:Documents and SettingsAll UsersApplication DataTEMP
2009-04-02 16:02:44 —-D—- C:Program FilesWebMoney
2009-04-02 15:16:49 —-A—- C:WINDOWSUpdateClientUI.INI
2009-04-02 01:53:12 —-HDC—- C:WINDOWS$NtUninstallKB952954_0$
2009-04-02 01:53:02 —-HDC—- C:WINDOWS$NtUninstallKB955839$
2009-04-02 01:51:42 —-HDC—- C:WINDOWS$NtUninstallKB950974_0$
2009-04-02 01:51:32 —-HDC—- C:WINDOWS$NtUninstallKB951698_0$
2009-04-02 01:50:50 —-HDC—- C:WINDOWS$NtUninstallKB960225_0$
2009-04-02 01:50:37 —-HDC—- C:WINDOWS$NtUninstallKB967715_0$
2009-04-02 01:49:29 —-HDC—- C:WINDOWS$NtUninstallKB958690_0$
2009-04-01 18:14:07 —-N—- C:WINDOWSsystem32wlanapi.dll
2009-04-01 18:13:58 —-N—- C:WINDOWSsystem32verclsid.exe
2009-04-01 18:13:51 —-N—- C:WINDOWSsystem32tspkg.dll
2009-04-01 18:13:51 —-N—- C:WINDOWSsystem32tsgqec.dll
2009-04-01 18:13:37 —-N—- C:WINDOWSsystem32spupdwxp.exe
2009-04-01 18:13:36 —-A—- C:WINDOWSsystem32spdwnwxp.exe
2009-04-01 18:13:33 —-N—- C:WINDOWSsystem32slserv.exe
2009-04-01 18:13:32 —-N—- C:WINDOWSsystem32slrundll.exe
2009-04-01 18:13:32 —-N—- C:WINDOWSsystem32slgen.dll
2009-04-01 18:13:32 —-N—- C:WINDOWSsystem32slextspk.dll
2009-04-01 18:13:32 —-N—- C:WINDOWSsystem32slcoinst.dll
2009-04-01 18:13:32 —-N—- C:WINDOWSslrundll.exe
2009-04-01 18:13:25 —-N—- C:WINDOWSsystem32setupn.exe
2009-04-01 18:13:22 —-N—- C:WINDOWSsystem32s3gnb.dll
2009-04-01 18:13:20 —-N—- C:WINDOWSsystem32rhttpaa.dll
2009-04-01 18:13:18 —-N—- C:WINDOWSsystem32rasqec.dll
2009-04-01 18:13:17 —-N—- C:WINDOWSsystem32qutil.dll
2009-04-01 18:13:15 —-N—- C:WINDOWSsystem32qcliprov.dll
2009-04-01 18:13:15 —-N—- C:WINDOWSsystem32qagentrt.dll
2009-04-01 18:13:15 —-N—- C:WINDOWSsystem32qagent.dll
2009-04-01 18:13:09 —-N—- C:WINDOWSsystem32onex.dll
2009-04-01 18:13:05 —-N—- C:WINDOWSsystem32nv4_disp.dll
2009-04-01 18:12:56 —-N—- C:WINDOWSsystem32napstat.exe
2009-04-01 18:12:55 —-N—- C:WINDOWSsystem32napmontr.dll
2009-04-01 18:12:55 —-N—- C:WINDOWSsystem32napipsec.dll
2009-04-01 18:12:55 —-N—- C:WINDOWSsystem32mtxparhd.dll
2009-04-01 18:12:50 —-N—- C:WINDOWSsystem32msshavmsg.dll
2009-04-01 18:12:50 —-N—- C:WINDOWSsystem32mssha.dll
2009-04-01 18:12:24 —-N—- C:WINDOWSsystem32mdmxsdk.dll
2009-04-01 18:12:03 —-N—- C:WINDOWSsystem32l2gpstore.dll
2009-04-01 18:12:02 —-N—- C:WINDOWSsystem32kmsvc.dll
2009-04-01 18:12:01 —-N—- C:WINDOWSsystem32kbdpash.dll
2009-04-01 18:12:01 —-N—- C:WINDOWSsystem32kbdnepr.dll
2009-04-01 18:12:01 —-N—- C:WINDOWSsystem32kbdiultn.dll
2009-04-01 18:12:00 —-N—- C:WINDOWSsystem32kbdbhc.dll
2009-04-01 18:11:54 —-N—- C:WINDOWSsystem32smtpapi.dll
2009-04-01 18:11:53 —-N—- C:WINDOWSsystem32rwnh.dll
2009-04-01 18:11:47 —-N—- C:WINDOWSsystem32comsdupd.exe
2009-04-01 18:11:38 —-N—- C:WINDOWSsystem32hsfcisp2.dll
2009-04-01 18:11:30 —-A—- C:WINDOWS�02984_.tmp
2009-04-01 18:11:29 —-N—- C:WINDOWSsystem32faxpatch.exe
2009-04-01 18:11:26 —-N—- C:WINDOWSsystem32eapsvc.dll
2009-04-01 18:11:26 —-N—- C:WINDOWSsystem32eapqec.dll
2009-04-01 18:11:26 —-N—- C:WINDOWSsystem32eappprxy.dll
2009-04-01 18:11:26 —-N—- C:WINDOWSsystem32eapphost.dll
2009-04-01 18:11:26 —-N—- C:WINDOWSsystem32eappgnui.dll
2009-04-01 18:11:26 —-N—- C:WINDOWSsystem32eappcfg.dll
2009-04-01 18:11:26 —-N—- C:WINDOWSsystem32eapp3hst.dll
2009-04-01 18:11:26 —-N—- C:WINDOWSsystem32eapolqec.dll
2009-04-01 18:11:21 —-N—- C:WINDOWSsystem32dot3ui.dll
2009-04-01 18:11:21 —-N—- C:WINDOWSsystem32dot3svc.dll
2009-04-01 18:11:21 —-N—- C:WINDOWSsystem32dot3msm.dll
2009-04-01 18:11:21 —-N—- C:WINDOWSsystem32dot3gpclnt.dll
2009-04-01 18:11:21 —-N—- C:WINDOWSsystem32dot3dlg.dll
2009-04-01 18:11:21 —-N—- C:WINDOWSsystem32dot3cfg.dll
2009-04-01 18:11:21 —-N—- C:WINDOWSsystem32dot3api.dll
2009-04-01 18:11:19 —-N—- C:WINDOWSsystem32dimsroam.dll
2009-04-01 18:11:19 —-N—- C:WINDOWSsystem32dimsntfy.dll
2009-04-01 18:11:19 —-N—- C:WINDOWSsystem32dhcpqec.dll
2009-04-01 18:11:15 —-N—- C:WINDOWSsystem32credssp.dll
2009-04-01 18:11:02 —-N—- C:WINDOWSsystem32bitsprx4.dll
2009-04-01 18:11:02 —-N—- C:WINDOWSsystem32azroles.dll
2009-04-01 18:11:00 —-N—- C:WINDOWSsystem32ativtmxx.dll
2009-04-01 18:10:59 —-N—- C:WINDOWSsystem32ati2dvaa.dll
2009-04-01 18:10:49 —-N—- C:WINDOWSsystem32aaclient.dll
2009-04-01 11:55:06 —-D—- C:Program FilesBarbie Beach Vacation
2009-03-30 03:09:55 —-HDC—- C:WINDOWS$NtUninstallKB951376-v2_0$
2009-03-30 03:09:48 —-HDC—- C:WINDOWS$NtUninstallKB946648_0$
2009-03-30 03:09:38 —-HDC—- C:WINDOWS$NtUninstallKB956803_0$
2009-03-30 03:05:45 —-HDC—- C:WINDOWS$NtUninstallKB956841_0$
2009-03-30 03:05:26 —-HDC—- C:WINDOWS$NtUninstallKB954156_WM9L$
2009-03-30 03:04:48 —-HDC—- C:WINDOWS$NtUninstallKB925720$
2009-03-30 03:03:09 —-HDC—- C:WINDOWS$NtUninstallKB951748_0$
2009-03-30 03:02:21 —-D—- C:WINDOWSie7updates
2009-03-30 03:01:50 —-HDC—- C:WINDOWS$NtUninstallKB956802_0$
2009-03-29 19:42:58 —-HDC—- C:WINDOWS$NtUninstallKB938464-v2_0$
2009-03-29 19:42:48 —-HDC—- C:WINDOWS$NtUninstallKB952069_WM9$
2009-03-29 19:42:34 —-HDC—- C:WINDOWS$NtUninstallKB941569$
2009-03-29 19:41:59 —-HDC—- C:WINDOWS$NtUninstallKB950762_0$
2009-03-29 19:41:48 —-HDC—- C:WINDOWS$NtUninstallKB957097_0$
2009-03-29 19:41:39 —-HDC—- C:WINDOWS$NtUninstallKB960715$
2009-03-29 19:41:29 —-HDC—- C:WINDOWS$NtUninstallKB958687_0$
2009-03-29 19:41:19 —-HDC—- C:WINDOWS$NtUninstallKB952287_0$
2009-03-29 19:41:10 —-HDC—- C:WINDOWS$NtUninstallKB929399$
2009-03-29 19:40:38 —-HDC—- C:WINDOWS$NtUninstallKB950760$
2009-03-29 19:40:30 —-HDC—- C:WINDOWS$NtUninstallKB939683$
2009-03-29 19:39:52 —-HDC—- C:WINDOWS$NtUninstallKB951066_0$
2009-03-29 19:38:37 —-HDC—- C:WINDOWS$NtUninstallKB959772_WM11$
2009-03-27 12:35:53 —-HDC—- C:WINDOWS$NtUninstallKB954600_0$
2009-03-27 12:35:11 —-HDC—- C:WINDOWS$NtUninstallKB958644_0$
2009-03-27 12:34:16 —-HDC—- C:WINDOWS$NtUninstallKB955069_0$
2009-03-27 12:33:45 —-D—- C:Program FilesMSXML 4.0
2009-03-27 12:32:19 —-HDC—- C:WINDOWS$NtUninstallKB954154_WM11$
2009-03-26 21:55:51 —-D—- C:Documents and SettingsIrinaApplication DataskypePM
2009-03-26 21:54:24 —-D—- C:Documents and SettingsIrinaApplication DataSkype
2009-03-26 21:54:08 —-D—- C:Program FilesCommon FilesSkype
2009-03-26 21:54:01 —-RD—- C:Program FilesSkype
2009-03-26 21:53:54 —-D—- C:Documents and SettingsAll UsersApplication DataSkype
2009-03-26 14:04:54 —-D—- C:Program FilesGPL MPEG Decoder
2009-03-25 23:55:47 —-A—- C:WINDOWSsystem32mucltui.dll.mui
2009-03-25 23:55:47 —-A—- C:WINDOWSsystem32mucltui.dll
2009-03-25 02:32:45 —-A—- C:WINDOWSsystem32wucltui.dll.mui
2009-03-25 02:32:45 —-A—- C:WINDOWSsystem32wuaueng.dll.mui
2009-03-25 02:32:42 —-D—- C:WINDOWSsystem32SoftwareDistribution
2009-03-25 02:32:42 —-A—- C:WINDOWSsystem32wuapi.dll.mui
2009-03-25 02:21:43 —-HDC—- C:WINDOWS$NtUninstallKB894391$======List of files/folders modified in the last 1 months======
2009-04-05 16:28:33 —-D—- C:Program FilesFlashGet
2009-04-05 16:28:12 —-D—- C:Program Files
2009-04-05 16:10:57 —-D—- C:WINDOWSTemp
2009-04-05 16:00:00 —-D—- C:Program FilesChameleon Clock
2009-04-05 15:34:42 —-D—- C:WINDOWS
2009-04-05 14:23:50 —-D—- C:WINDOWSsystem32CatRoot2
2009-04-05 14:20:26 —-A—- C:WINDOWSSchedLgU.Txt
2009-04-05 14:19:39 —-A—- C:WINDOWS{00000002-00000000-00000001-00001102-00000004-00531102}.BAK
2009-04-05 14:10:19 —-A—- C:WINDOWSNeroDigital.ini
2009-04-05 13:57:38 —-D—- C:Downloads
2009-04-04 19:39:22 —-HD—- C:WINDOWSinf
2009-04-04 19:39:20 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-04-04 19:39:19 —-D—- C:WINDOWSsystem32
2009-04-04 19:39:12 —-A—- C:WINDOWSimsins.BAK
2009-04-04 12:31:41 —-HD—- C:WINDOWS$hf_mig$
2009-04-03 20:43:46 —-D—- C:Program FilesGoogle
2009-04-03 13:27:25 —-A—- C:WINDOWSsystem32msmgr10.dll
2009-04-03 13:24:45 —-D—- C:Игры от NevoSoft
2009-04-03 13:24:06 —-SHD—- C:WINDOWSInstaller
2009-04-03 13:24:06 —-D—- C:Config.Msi
2009-04-03 13:23:58 —-D—- C:Python25
2009-04-03 13:20:49 —-D—- C:Program FilesBarbie(TM)
2009-04-03 13:20:18 —-D—- C:Documents and SettingsAll UsersApplication DataGoogle
2009-04-03 13:19:08 —-D—- C:WINDOWSsystem32drivers
2009-04-03 13:13:53 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-04-03 13:10:37 —-A—- C:WINDOWSOEWABLog.txt
2009-04-03 13:09:34 —-A—- C:WINDOWSsetuplog.txt
2009-04-03 13:08:28 —-D—- C:WINDOWSsystem32Setup
2009-04-03 13:08:27 —-D—- C:WINDOWSsystem32wbem
2009-04-03 13:08:27 —-D—- C:WINDOWSAppPatch
2009-04-03 13:08:26 —-RSD—- C:WINDOWSFonts
2009-04-03 13:04:30 —-D—- C:WINDOWSsystem32CatRoot
2009-04-03 12:21:01 —-D—- C:Program FilesMessenger
2009-04-03 12:20:55 —-D—- C:WINDOWSsecurity
2009-04-03 12:17:06 —-D—- C:WINDOWSWinSxS
2009-04-03 12:04:07 —-D—- C:WINDOWSehome
2009-04-03 12:04:00 —-D—- C:WINDOWSsystem32inetsrv
2009-04-03 12:03:56 —-D—- C:WINDOWSHelp
2009-04-03 12:03:55 —-D—- C:WINDOWSime
2009-04-03 12:02:09 —-D—- C:WINDOWSsystem32ru-ru
2009-04-03 12:02:07 —-D—- C:WINDOWSsystem32usmt
2009-04-03 12:01:59 —-D—- C:WINDOWSsystem32ru
2009-04-03 12:01:56 —-D—- C:WINDOWSPeerNet
2009-04-03 12:01:55 —-D—- C:Program FilesMovie Maker
2009-04-03 11:52:16 —-D—- C:WINDOWSsystem32Restore
2009-04-03 11:52:15 —-D—- C:WINDOWSsystem32npp
2009-04-03 11:52:14 —-D—- C:WINDOWSmsagent
2009-04-03 11:52:10 —-D—- C:WINDOWSsrchasst
2009-04-03 11:52:08 —-D—- C:Program FilesNetMeeting
2009-04-03 11:52:05 —-D—- C:WINDOWSsystem32Com
2009-04-03 11:52:02 —-D—- C:Program FilesWindows Media Player
2009-04-03 11:52:01 —-D—- C:Program FilesOutlook Express
2009-04-03 11:51:58 —-D—- C:Program FilesCommon FilesSystem
2009-04-03 11:51:39 —-D—- C:WINDOWSsystem32oobe
2009-04-03 11:51:36 —-D—- C:WINDOWSsystem
2009-04-03 11:46:02 —-D—- C:WINDOWSsystem32ReinstallBackups
2009-04-02 11:26:47 —-D—- C:Documents and SettingsIrinaApplication DataMra
2009-04-01 11:54:14 —-D—- C:Documents and SettingsAll UsersApplication DataBarbie Fashion Show
2009-03-31 01:09:43 —-D—- C:WINDOWSDebug
2009-03-30 03:02:35 —-D—- C:Program FilesInternet Explorer
2009-03-29 19:38:02 —-RSD—- C:WINDOWSassembly
2009-03-29 19:28:37 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2009-03-26 21:54:08 —-D—- C:Program FilesCommon Files
2009-03-25 02:33:37 —-D—- C:WINDOWSSoftwareDistribution
2009-03-25 02:31:37 —-SD—- C:WINDOWSDownloaded Program Files======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 eusk2par;EUTRON SmartKey Parallel Driver; ??C:WINDOWSsystem32Driverseusk2par.sys []
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-14 40704]
R1 nod32drv;nod32drv; C:WINDOWSsystem32driversnod32drv.sys [2007-07-20 15424]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2001-10-20 12032]
R2 AMON;AMON; C:WINDOWSsystem32driversamon.sys [2007-07-20 512096]
R3 Arp1394;Протокол клиента 1394 ARP; C:WINDOWSsystem32DRIVERSarp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:WINDOWSsystem32DRIVERSati2mtag.sys [2004-08-17 701440]
R3 ctac32k;Creative AC3 Software Decoder; C:WINDOWSsystem32driversctac32k.sys [2006-08-11 502272]
R3 ctaud2k;Creative Audio Driver (WDM); C:WINDOWSsystem32driversctaud2k.sys [2006-08-11 499584]
R3 ctprxy2k;Creative Proxy Driver; C:WINDOWSsystem32driversctprxy2k.sys [2006-08-11 7168]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:WINDOWSsystem32driversctsfm2k.sys [2006-08-11 143872]
R3 E100B;Intel(R) PRO Adapter Driver; C:WINDOWSsystem32DRIVERSe100b325.sys [2002-09-25 140800]
R3 emupia;E-mu Plug-in Architecture Driver; C:WINDOWSsystem32driversemupia2k.sys [2006-08-11 78336]
R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:WINDOWSsystem32driversha10kx2k.sys [2006-08-11 766976]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2008-04-14 10368]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 NIC1394;Сетевой драйвер 1394; C:WINDOWSsystem32DRIVERSnic1394.sys [2008-04-14 61824]
R3 ossrv;Creative OS Services Driver; C:WINDOWSsystem32driversctoss2k.sys [2006-08-11 116224]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:WINDOWSSystem32DriversRootMdm.sys [2001-10-20 5888]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2008-04-14 59520]
R3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-14 20608]
R3 vaxscsi;vaxscsi; C:WINDOWSSystem32Driversvaxscsi.sys [2008-03-05 223128]
S3 ctdvda2k;Creative DVD-Audio Device Driver; C:WINDOWSsystem32driversctdvda2k.sys [2005-11-10 340704]
S3 EL90XBC;3Com EtherLink XL 90XB/C, драйвер адаптера; C:WINDOWSsystem32DRIVERSel90xbc5.sys [2001-08-17 66591]
S3 eusk3usb;SmartKey 3 USB; C:WINDOWSSystem32Driverseusk3usb.sys [2004-11-18 45534]
S3 FETNDISB;D-Link PCI Fast Ethernet Adapter Driver Service; C:WINDOWSsystem32DRIVERSdlkfet5b.sys [2006-12-27 46080]
S3 hap16v2k;Creative P16V HAL Driver; C:WINDOWSsystem32drivershap16v2k.sys [2006-08-11 154112]
S3 hap17v2k;Creative P17V HAL Driver; C:WINDOWSsystem32drivershap17v2k.sys [2006-08-11 180224]
S3 NAL;Nal Service ; ??C:WINDOWSsystem32Driversiqvw32.sys []
S3 nmwcd;Nokia USB Phone Parent; C:WINDOWSsystem32driversccdcmb.sys [2008-09-15 17664]
S3 nmwcdc;Nokia USB Generic; C:WINDOWSsystem32driversccdcmbo.sys [2008-09-15 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:WINDOWSsystem32DRIVERSpccsmcfd.sys [2008-08-26 18816]
S3 se58bus;Sony Ericsson Device 088 driver (WDM); C:WINDOWSsystem32DRIVERSse58bus.sys [2006-09-05 61536]
S3 se58mdfl;Sony Ericsson Device 088 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse58mdfl.sys [2006-09-05 9360]
S3 se58mdm;Sony Ericsson Device 088 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse58mdm.sys [2006-09-05 97088]
S3 se58mgmt;Sony Ericsson Device 088 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse58mgmt.sys [2006-09-05 88624]
S3 se58nd5;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (NDIS); C:WINDOWSsystem32DRIVERSse58nd5.sys [2006-09-05 18704]
S3 se58obex;Sony Ericsson Device 088 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse58obex.sys [2006-09-05 86432]
S3 se58unic;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (WDM); C:WINDOWSsystem32DRIVERSse58unic.sys [2006-09-05 90800]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:WINDOWSsystem32DRIVERSse59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:WINDOWSsystem32DRIVERSse59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:WINDOWSsystem32DRIVERSse59unic.sys [2006-09-05 90800]
S3 upperdev;upperdev; C:WINDOWSsystem32DRIVERSusbser_lowerflt.sys [2008-09-15 8064]
S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2008-04-14 32128]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:WINDOWSsystem32driversusbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:WINDOWSsystem32DRIVERSusbser_lowerfltj.sys [2008-09-15 8064]
S3 w900bus;Sony Ericsson 900i driver (WDM); C:WINDOWSsystem32DRIVERSw900bus.sys [2006-03-13 58256]
S3 w900mdfl;Sony Ericsson 900i USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSw900mdfl.sys [2006-03-13 8336]
S3 w900mdm;Sony Ericsson 900i USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSw900mdm.sys [2006-03-13 94064]
S3 w900mgmt;Sony Ericsson 900i USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSw900mgmt.sys [2006-03-13 85504]
S3 w900obex;Sony Ericsson 900i USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSw900obex.sys [2006-03-13 83440]
S3 Wdf01000;Wdf01000; C:WINDOWSsystem32DRIVERSWdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:WINDOWSsystem32DRIVERSwpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-15 82688]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 2GIS UpdateClientService;2GIS UpdateClientService; C:Program Files2gisUpdateClientWin32UpdateClientService.exe [2008-09-17 1134592]
R2 NOD32krn;NOD32 Kernel Service; C:Program FilesEsetnod32krn.exe [2007-07-20 552064]
R2 StarWindService;StarWind iSCSI Service; C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe [2005-04-02 217600]
R2 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-03 914944]
R2 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2008-04-15 14336]
R3 ServiceLayer;ServiceLayer; C:Program FilesPC Connectivity SolutionServiceLayer.exe [2008-11-11 620544]
S2 mi-raysat_3dsmax9_32;mental ray 3.5 Satellite (32-bit); C:Program FilesAutodesk3ds Max 9mentalraysatelliteraysat_3dsmax9_32server.exe []
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2006-10-20 36864]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2006-10-30 741376]
S3 NetSvc;Intel NCS NetService; c:Program FilesIntelNCSSyncNetSvc.exe [2002-09-27 139264]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2006-10-30 122880]
EOF
Файл info тк в одно сообщение не прпустили более 6000 знаков.
info.txt logfile of random’s system information tool 1.06 2009-04-05 16:29:13======Uninstall list======
—>C:Program FilesNeroNero 7\nerouninstallUNNERO.exe /UNINSTALL
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{7B9AE66C-2A8F-4FB2-85D7-416AFFAE8408}setup.exe» -l0x9
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
Adobe Flash Player ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Illustrator CS3—>C:Program FilesCommon FilesAdobeInstallersbb19a93a1d59d63821f47098aed4192Setup.exe
Adobe Photoshop 7.0.1—>C:WINDOWSISUNINST.EXE -f»C:Program FilesAdobePhotoshop 7.0Uninst.isu» -c»C:Program FilesAdobePhotoshop 7.0Uninst.dll»
Adobe Setup—>MsiExec.exe /I{08AD734E-553D-476C-9BB9-CFE4DE078801}
Alcatech BPM Studio Professional v4.9.1—>C:PROGRA~1ALCATechBPM-ST~1UNWISE.EXE C:PROGRA~1ALCATechBPM-ST~1INSTALL.LOG
Ashampoo Burning Studio 7.21—>»C:Program FilesAshampooAshampoo Burning Studio 7unins000.exe»
Backburner—>MsiExec.exe /I{3D347E6D-5A03-4342-B5BA-6A771885F379}
Barbie Beach Vacation—>C:Program FilesBarbie Beach VacationUnInst.exe «C:Program FilesBarbie Beach Vacationinstall.log»
Chameleon Clock 3.6—>»C:Program FilesChameleon Clockunins000.exe»
ConnectionServices—>»C:Program FilesConnectionServicesUninstall.exe»
Creative Audio Console—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{7B9AE66C-2A8F-4FB2-85D7-416AFFAE8408}setup.exe» -l0x9 /remove
DevalVR for Internet Explorer (remove)—>C:Program FilesDevalVRinstalldevalvr.exe /u
D-Link PCI Fast Ethernet Adapter—>Rundll32.exe vuins32.dll,vuins32Ex $Rhine $D-Link
FlashGet 1.8.2.1004—>C:Program FilesFlashGetuninst.exe
GPL MPEG-1/2 DirectShow Decoder Filter—>MsiExec.exe /I{870815CA-6B60-47B6-88DD-A67F42D2F03E}
HijackThis 2.0.2—>»C:Program Filestrend microHijackThis.exe» /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)—>»C:WINDOWS$NtUninstallKB929399$spuninstspuninst.exe»
Indeo® software—>C:WINDOWSIsUninst.exe -f»D:Program FilesIntelIndeoUninst.isu»
Intel Application Accelerator—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{9984DF60-1C5B-11D3-ACA1-908A4FC10801}Setup.exe» -INTELUNINST
Intel(R) PRO Network Adapters and Drivers—>Prounstl.exe
Intel(R) PROSet—>MsiExec.exe /I{EF4EF65F-4D62-44D7-82C9-1AECCBA74C50}
InterVideo MP3 + DVD XPack—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{99755640-9633-11D5-AB3C-0050DAB311CC}setup.exe» REMOVEALL
J2SE Runtime Environment 5.0 Update 6—>MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
K-Lite Mega Codec Pack 2.2.0—>»C:Program FilesK-Lite Codec Packunins000.exe»
Mail.Ru Агент 5.4 (сборка 2647, для всех пользователей)—>C:Program FilesMail.RuAgentmagentsetup.exe -uninstalllm
Mail.Ru Спутник 2.0.1.90—>c:program filesmail.rusputnikSputnikInstaller.exe -uninstall
Microsoft .NET Framework 2.0 Language Pack — RUS—>C:WINDOWSMicrosoft.NETFrameworkv2.0.50727Microsoft .NET Framework 2.0 Language Pack — RUSinstall.exe
Microsoft .NET Framework 2.0—>C:WINDOWSMicrosoft.NETFrameworkv2.0.50727Microsoft .NET Framework 2.0install.exe
Microsoft .NET Framework 3.0—>c:WINDOWSMicrosoft.NETFrameworkv3.0Microsoft .NET Framework 3.0setup.exe
Microsoft .NET Framework 3.0—>MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Compression Client Pack 1.0 for Windows XP—>»C:WINDOWS$NtUninstallMSCompPackV1$spuninstspuninst.exe»
Microsoft Internationalized Domain Names Mitigation APIs—>»C:WINDOWS$NtServicePackUninstallIDNMitigationAPIs$spuninstspuninst.exe»
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5—>»C:WINDOWS$NtUninstallWdf01005$spuninstspuninst.exe»
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7—>»C:WINDOWS$NtUninstallWdf01007$spuninstspuninst.exe»
Microsoft National Language Support Downlevel APIs—>»C:WINDOWS$NtServicePackUninstallNLSDownlevelMapping$spuninstspuninst.exe»
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.5—>»C:WINDOWS$NtUninstallWudf01005$spuninstspuninst.exe»
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
MSVC80_x86—>MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSXML 4.0 SP2 (KB954430)—>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6 Service Pack 2 (KB954459)—>MsiExec.exe /I{1A528690-6A2D-4BC5-B143-8C4AE8D19D96}
Nero 7 Premium—>MsiExec.exe /X{99D328E0-51DE-465E-9307-B85CA9511049}
neroxml—>MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NevoSoft Turtix (remove only)—>»C:Игры от NevoSoftTurtixuninstall.exe»
NOD32 FiX—>»C:Program FilesEsetunins000.exe»
Nokia Connectivity Cable Driver—>MsiExec.exe /X{15AC0C5D-A6FB-4CE2-8CD0-28179EEB5625}
Nokia Flashing Cable Driver—>MsiExec.exe /X{D99C322D-C21B-40C7-AE71-EE51AA096B6E}
Nokia PC Suite—>C:Documents and SettingsAll UsersApplication DataInstallations{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}Nokia_PC_Suite_7_1_18_0_rus.exe
Nokia PC Suite—>MsiExec.exe /I{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}
Nokia Software Updater—>MsiExec.exe /X{59367F7E-D7C1-4629-8AEC-71AA24A68F31}
PC Connectivity Solution—>MsiExec.exe /I{D848D140-41C3-4A53-86D8-E866A100B4CD}
Power MP3 WMA Converter 2008, (ver 4.20)—>»C:Program FilesPower MP3 WMA Converterunins000.exe»
QuickTime—>C:WINDOWSunvise32qt.exe C:WINDOWSsystem32QuickTimeUninstall.log
Skype™ 4.0—>MsiExec.exe /X{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}
Sony Ericsson PC Suite—>MsiExec.exe /I{FE6397C1-CECA-4EC3-B064-42AED7676898}
Stupid Invaders—>C:WINDOWSIsUninst.exe -f»C:Program FilesXilamStupid InvadersUninst.isu»
Total Commander 7.01 Total Commander 7.01 PowerPack 1.20—>»C:Program FilesTotal Commanderuninstall.exe»
Update Manager—>MsiExec.exe /I{F428D0FB-765D-40EB-BDD8-A1E7F5C597FA}
WebMoney Advisor—>regsvr32 /u /s «C:Program FilesWebMoney Advisorwmadvisor.dll»
WebMoney Agent—>C:Program FilesWebMoney Agentuninst_wmagent.exe
WebMoney Keeper Classic 3.7.0.1—>»C:Program FilesWebMoneyUninstall.exe» «C:Program FilesWebMoneyinstall.log» -u
Windows Communication Foundation—>MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component—>»C:WINDOWS$NtUninstallWIC$spuninstspuninst.exe»
Windows Media Format 11 runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Windows Media Format 11 runtime—>»C:WINDOWS$NtUninstallWMFDist11$spuninstspuninst.exe»
Windows Media Player 11—>»C:WINDOWS$NtUninstallwmp11$spuninstspuninst.exe»
Windows Presentation Foundation—>MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation—>MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Service Pack 3—>»C:WINDOWS$NtServicePackUninstall$spuninstspuninst.exe»
Антивирусная система NOD32—>C:Program FilesEsetSetupsetup.exe /UNINSTALL
Архиватор WinRAR—>C:Program FilesWinRARuninstall.exe
Барби — Королева Льда—>C:Program FilesBarbieIce ShowUnInst.exe «C:Program FilesBarbieIce Showinstall.log»
Данные ДубльГИС г.Новосибирск 01.04.2009—>MsiExec.exe /X{886F7E6A-437A-4339-9DE9-E383E9B447F7}
ДубльГИС 3.0.4.2—>MsiExec.exe /X{EBF56A8E-3483-4704-98B8-7685891F8EA7}
Исправление для Windows XP (KB952287)—>»C:WINDOWS$NtUninstallKB952287$spuninstspuninst.exe»
Исправление для проигрывателя Windows Media 11 — (KB939683)—>»C:WINDOWS$NtUninstallKB939683$spuninstspuninst.exe»
Критическое обновление для проигрывателя Windows Media 11 — (KB959772)—>»C:WINDOWS$NtUninstallKB959772_WM11$spuninstspuninst.exe»
Магическая энциклопедия. Том 1—>C:Program FilesAlawar.ruМагическая энциклопедия. Том 1Uninstall.exe
Обновление безопасности для Windows Internet Explorer 7 (KB938127-v2)—>»C:WINDOWSie7updatesKB938127-v2-IE7spuninstspuninst.exe»
Обновление безопасности для Windows Internet Explorer 7 (KB961260)—>»C:WINDOWSie7updatesKB961260-IE7spuninstspuninst.exe»
Обновление безопасности для Windows XP — (KB941569)—>»C:WINDOWS$NtUninstallKB941569$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB938464-v2)—>»C:WINDOWS$NtUninstallKB938464-v2$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB946648)—>»C:WINDOWS$NtUninstallKB946648$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB950760)—>»C:WINDOWS$NtUninstallKB950760$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB950762)—>»C:WINDOWS$NtUninstallKB950762$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB950974)—>»C:WINDOWS$NtUninstallKB950974$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB951066)—>»C:WINDOWS$NtUninstallKB951066$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB951376-v2)—>»C:WINDOWS$NtUninstallKB951376-v2$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB951698)—>»C:WINDOWS$NtUninstallKB951698$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB951748)—>»C:WINDOWS$NtUninstallKB951748$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB952954)—>»C:WINDOWS$NtUninstallKB952954$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB954459)—>»C:WINDOWS$NtUninstallKB954459$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB954600)—>»C:WINDOWS$NtUninstallKB954600$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB955069)—>»C:WINDOWS$NtUninstallKB955069$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB956802)—>»C:WINDOWS$NtUninstallKB956802$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB956803)—>»C:WINDOWS$NtUninstallKB956803$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB956841)—>»C:WINDOWS$NtUninstallKB956841$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB957097)—>»C:WINDOWS$NtUninstallKB957097$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB958644)—>»C:WINDOWS$NtUninstallKB958644$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB958687)—>»C:WINDOWS$NtUninstallKB958687$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB958690)—>»C:WINDOWS$NtUninstallKB958690$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB960225)—>»C:WINDOWS$NtUninstallKB960225$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB960715)—>»C:WINDOWS$NtUninstallKB960715$spuninstspuninst.exe»
Обновление безопасности для кодировщика Windows Media — (KB954156)—>»C:WINDOWS$NtUninstallKB954156_WM9L$spuninstspuninst.exe»
Обновление безопасности для проигрывателя Windows Media — (KB952069)—>»C:WINDOWS$NtUninstallKB952069_WM9$spuninstspuninst.exe»
Обновление безопасности для проигрывателя Windows Media 11 — (KB954154)—>»C:WINDOWS$NtUninstallKB954154_WM11$spuninstspuninst.exe»
Обновление для Windows XP (KB951978)—>»C:WINDOWS$NtUninstallKB951978$spuninstspuninst.exe»
Обновление для Windows XP (KB955839)—>»C:WINDOWS$NtUninstallKB955839$spuninstspuninst.exe»
Обновление для Windows XP (KB967715)—>»C:WINDOWS$NtUninstallKB967715$spuninstspuninst.exe»
Пакет драйверов Windows — Nokia Modem (10/27/2008 3.9)—>C:PROGRA~1DIFX270581355A767BF1dpinst.exe /u C:WINDOWSsystem32DRVSTOREnokia_blue_79486EC6AA0D1732FB17E5167077C07ECAE1B870nokia_bluetooth.inf
Пакет драйверов Windows — Nokia Modem (10/27/2008 7.01.0.1)—>C:PROGRA~1DIFX270581355A767BF1dpinst.exe /u C:WINDOWSsystem32DRVSTOREnokbtmdm_247189AEBF39EB69A7C75429610DFED2F2EDC1B6nokbtmdm.inf
Пакет драйверов Windows — Nokia pccsmcfd (08/22/2008 7.0.0.0)—>C:PROGRA~1DIFX270581355A767BF1dpinst.exe /u C:WINDOWSsystem32DRVSTOREpccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294pccsmcfd.inf
Проигрыватель Windows Media 11—>»C:Program FilesWindows Media PlayerSetup_wm.exe» /Uninstall
СибСети — Hi-Net DC-P2P Pack—>C:PROGRA~1APEXDC~1UNWISE.EXE C:PROGRA~1APEXDC~1INSTALL.LOG
Снежок. Приключения в космосе—>C:Program FilesAlawar.ruСнежок. Приключения в космосеUninstall.exe
Центр обновлений ДубльГИС—>MsiExec.exe /X{2FB165EB-69C0-416D-9B4E-E805ABC8CB1F}======Security center information======
AV: Антивирусная система Eset NOD32 2.70
======System event log======
Computer Name: IRA
Event Code: 55
Message: Структура файловой системы на диск повреждена и не может использоваться.
Запустите программу CHKDSK на томе D:.Record Number: 5
Source Name: Ntfs
Time Written: 20090203144510.000000+420
Event Type: ошибка
User:Computer Name: IRA
Event Code: 55
Message: Структура файловой системы на диск повреждена и не может использоваться.
Запустите программу CHKDSK на томе D:.Record Number: 4
Source Name: Ntfs
Time Written: 20090203144510.000000+420
Event Type: ошибка
User:Computer Name: IRA
Event Code: 5
Message: Adapter Intel(R) PRO/100 VE Network Connection: Adapter Link UpRecord Number: 3
Source Name: E100B
Time Written: 20090203144509.000000+420
Event Type: информация
User:Computer Name: IRA
Event Code: 6005
Message: Запущена служба журнала событий.Record Number: 2
Source Name: EventLog
Time Written: 20090203144446.000000+420
Event Type: информация
User:Computer Name: IRA
Event Code: 6009
Message: Microsoft (R) Windows 2000 (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.Record Number: 1
Source Name: EventLog
Time Written: 20090203144446.000000+420
Event Type: информация
User:=====Application event log=====
Computer Name: IRA
Event Code: 11707
Message: Продукт: Данные ДубльГИС г.Новосибирск 01.02.2009 — Установка завершена успешно.Record Number: 5
Source Name: MsiInstaller
Time Written: 20090204000540.000000+420
Event Type: информация
User: NT AUTHORITYSYSTEMComputer Name: IRA
Event Code: 1015
Message: Сбой подключения к серверу. Ошибка: «0x800401F0»Record Number: 4
Source Name: MsiInstaller
Time Written: 20090204000441.000000+420
Event Type: предупреждение
User: NT AUTHORITYSYSTEMComputer Name: IRA
Event Code: 0
Message:
Record Number: 3
Source Name: ServiceLayer
Time Written: 20090203144544.000000+420
Event Type: информация
User:Computer Name: IRA
Event Code: 1800
Message: Служба центра обеспечения безопасности Windows запущена.Record Number: 2
Source Name: SecurityCenter
Time Written: 20090203144532.000000+420
Event Type: информация
User:Computer Name: IRA
Event Code: 0
Message:
Record Number: 1
Source Name: 2GIS UpdateClientService
Time Written: 20090203144456.000000+420
Event Type: информация
User:======Environment variables======
«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=C:Program FilesPC Connectivity Solution;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;C:Program FilesAutodeskBackburner;C:Program FilesCommon FilesAutodesk Shared;C:Program FilesCommon FilesTeleca Shared
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=15
«PROCESSOR_IDENTIFIER»=x86 Family 15 Model 2 Stepping 4, GenuineIntel
«PROCESSOR_REVISION»=0204
«NUMBER_OF_PROCESSORS»=1
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
EOF
Здравствуйте, добро пожаловать на Spyware-ru форум.
Скачайте OTMoveIt3 by OldTimer кликнув по этой ссылке.
Запустите OTMoveIt3 и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.:Processes
explorer.exe
:reg
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{37D24D2C-060A-4F10-A69E-93DFCC20453E}]
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{4B7B8BCE-7E00-450D-BFBF-4F49F21BE610}]
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{6D7B211A-88EA-490c-BAB9-3600D8D7C503}]
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A449340F-A80D-49BD-A931-45AC4DB33881}]
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C4A9BDD1-CD85-4398-A370-C2C53E1C70EA}]
[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{FFFC57DB-1DE3-4303-B24D-CEE6DCDD3D86}]
[-HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{b5d58eee-204c-11de-b2de-0007e97d8779}]
:files
C:Documents and SettingsAll UsersApplication Datavjwjsqu.dll
C:Documents and SettingsAll UsersApplication Databoitsqu.dll
C:Documents and SettingsAll UsersApplication Dataucxvbqu.dll
:Commands
[emptytemp]
[start explorer]
[Reboot]Проверьте вставленный скрипт, если слева перед директивами появились пробелы, то удалите их, скрипт должен выглядеть так же как в сообщении. Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
По-завершении работы программы должен будет показан лог. Если лог не будет показан, то его можно найти в папке C:_OTMoveItMovedFiles.Вставьте в ваше ответное сообщение содержимое этого лога. И ещё приложите свежий RSIT лог.
Спасибо огромноее!!! С порнобанером вроде все… Но комп продолжает работать оч оч очень!!!! медленно 😥 Я думала что это из-за этого банера и вирусов. Может подскажете что сделать… или виндоус переустановить???
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== REGISTRY ==========
Registry keyHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser
Helper Objects{37D24D2C-060A-4F10-A69E-93DFCC20453E}\ deleted successfully.
Registry keyHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser
Helper Objects{4B7B8BCE-7E00-450D-BFBF-4F49F21BE610}\ deleted successfully.
Registry keyHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser
Helper Objects{6D7B211A-88EA-490c-BAB9-3600D8D7C503}\ not found.
Registry keyHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser
Helper Objects{A449340F-A80D-49BD-A931-45AC4DB33881}\ deleted successfully.
Registry keyHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser
Helper Objects{C4A9BDD1-CD85-4398-A370-C2C53E1C70EA}\ deleted successfully.
Registry keyHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser
Helper Objects{FFFC57DB-1DE3-4303-B24D-CEE6DCDD3D86}\ not found.
Registry keyHKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoin
ts2{b5d58eee-204c-11de-b2de-0007e97d8779}\ deleted successfully.
========== FILES ==========
C:Documents and SettingsAll UsersApplication Datavjwjsqu.dll unregisteredsuccessfully.
C:Documents and SettingsAll UsersApplication Datavjwjsqu.dll movedsuccessfully.
C:Documents and SettingsAll UsersApplication Databoitsqu.dll unregisteredsuccessfully.
C:Documents and SettingsAll UsersApplication Databoitsqu.dll movedsuccessfully.
C:Documents and SettingsAll UsersApplication Dataucxvbqu.dll unregisteredsuccessfully.
C:Documents and SettingsAll UsersApplication Dataucxvbqu.dll movedsuccessfully.
========== COMMANDS ==========
File delete failed. C:DOCUME~1IrinaLOCALS~1TempNGLATempNokiaNokia SansWide v3.1.ttf scheduled to be deleted on reboot.
File delete failed. C:DOCUME~1IrinaLOCALS~1TempClamWin1.log scheduled tobe deleted on reboot.
File delete failed. C:DOCUME~1IrinaLOCALS~1TempNGLALog.txt scheduled tobe deleted on reboot.
File delete failed. C:DOCUME~1IrinaLOCALS~1Temp~DF52CB.tmp scheduled tobe deleted on reboot.
File delete failed. C:DOCUME~1IrinaLOCALS~1Temp~DF56EF.tmp scheduled tobe deleted on reboot.
User’s Temp folder emptied.
User’s Internet Explorer cache folder emptied.
File delete failed. C:Documents and SettingsIrinaLocal SettingsTemporaryInternet FilesContent.IE5M1K6LNOOviewtopic[1].htm scheduled to be deleted
on reboot.
File delete failed. C:Documents and SettingsIrinaLocal SettingsTemporaryInternet FilesContent.IE5index.dat scheduled to be deleted on reboot.
File delete failed. C:Documents and SettingsIrinaLocal SettingsTemporaryInternet FilesAntiPhishingB3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat scheduled
to be deleted on reboot.
User’s Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:Documents and SettingsLocalServiceLocalSettingsTemporary Internet FilesContent.IE5index.dat scheduled to be
deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfullyOTMoveIt3 by OldTimer — Version 1.0.10.0 log created on 04082009_163313
Files moved on Reboot…
C:DOCUME~1IrinaLOCALS~1TempNGLATempNokiaNokia Sans Wide v3.1.ttf movedsuccessfully.
C:DOCUME~1IrinaLOCALS~1TempClamWin1.log moved successfully.
C:DOCUME~1IrinaLOCALS~1TempNGLALog.txt moved successfully.
File C:DOCUME~1IrinaLOCALS~1Temp~DF52CB.tmp not found!
File C:DOCUME~1IrinaLOCALS~1Temp~DF56EF.tmp not found!
C:Documents and SettingsIrinaLocal SettingsTemporary InternetFilesContent.IE5M1K6LNOOviewtopic[1].htm moved successfully.
C:Documents and SettingsIrinaLocal SettingsTemporary InternetFilesAntiPhishingB3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat moved
successfully.
НОВЫЙ ЛОГ
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Irina at 2009-04-08 16:47:42
Microsoft Windows XP Professional Service Pack 3
System drive C: has 11 GB (36%) free of 30 GB
Total RAM: 511 MB (36% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:48:19, on 08.04.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSnotepad.exe
C:Program Files2gisUpdateClientWin32UpdateClientService.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesEsetnod32krn.exe
C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesEsetnod32kui.exe
C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe
C:WINDOWSCTHELPER.EXE
C:WINDOWSsystem32TaskSwitch.exe
C:Program FilesFlashGetflashget.exe
C:Program FilesWebMoney Agentwmagent.exe
C:Program FilesClamWinbinClamTray.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesChameleon ClockChamClock.exe
C:Program FilesNokiaNokia PC Suite 7PCSuite.exe
C:Program FilesWindows Media PlayerWMPNSCFG.exe
C:Program FilesSpybot — Search & DestroyTeaTimer.exe
C:Program FilesPC Connectivity SolutionServiceLayer.exe
C:Program FilesPC Connectivity SolutionTransportsNclUSBSrv.exe
C:Program FilesPC Connectivity SolutionTransportsNclRSSrv.exe
C:Program FilesInternet Exploreriexplore.exe
C:Documents and SettingsIrinaРабочий столRSIT.exe
C:Program Filestrend microIrina.exeR1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.mail.ru
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 — BHO: (no name) — {259F616C-A300-44F5-B04A-ED001A26C85C} — (no file)
O2 — BHO: flashget urlcatch — {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} — C:Program FilesFlashGetjccatch.dll
O2 — BHO: Spybot-S&D IE Protection — {53707962-6F74-2D53-2644-206D7942484F} — C:PROGRA~1SPYBOT~1SDHelper.dll
O2 — BHO: SSVHelper Class — {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} — C:Program FilesJavajre1.5.0_06binssv.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — c:program filesmail.rusputnikMailRuSputnik.dll
O2 — BHO: TBSB03223 — {B4806C1A-FE8A-4008-9DA3-8CEDB6E82C10} — C:Program FilesWebMoney Advisorwmadvisor.dll
O2 — BHO: FlashGet GetFlash Class — {F156768E-81EF-470C-9057-481BA8380DBA} — C:Program FilesFlashGetgetflash.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
O3 — Toolbar: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O4 — HKLM..Run: [nod32kui] «C:Program FilesEsetnod32kui.exe» /WAITSERVICE
O4 — HKLM..Run: [ISUSPM Startup] «C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe» -startup
O4 — HKLM..Run: [NeroFilterCheck] C:Program FilesCommon FilesAheadLibNeroCheck.exe
O4 — HKLM..Run: [ISUSScheduler] «C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe» -start
O4 — HKLM..Run: [CTxfiHlp] CTXFIHLP.EXE
O4 — HKLM..Run: [CTHelper] CTHELPER.EXE
O4 — HKLM..Run: [CoolSwitch] C:WINDOWSsystem32TaskSwitch.exe
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [QuickTime Task] «C:Program FilesQuickTimeqttask.exe» -atboottime
O4 — HKLM..Run: [Flashget] C:Program FilesFlashGetflashget.exe /min
O4 — HKLM..Run: [wmagent.exe] «C:Program FilesWebMoney Agentwmagent.exe»
O4 — HKLM..Run: [ClamWin] «C:Program FilesClamWinbinClamTray.exe» —logon
O4 — HKLM..Run: [NevoDRM] «C:Игры от NevoSoftNevoDRMNevoDRM.exe»
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [HomeAlarm] C:Program FilesChameleon ClockChamClock.exe
O4 — HKCU..Run: [MSMSGS] «C:Program FilesMessengermsmsgs.exe» /background
O4 — HKCU..Run: [PC Suite Tray] «C:Program FilesNokiaNokia PC Suite 7PCSuite.exe» -onlytray
O4 — HKCU..Run: [Skype] «C:Program FilesSkypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [WMPNSCFG] C:Program FilesWindows Media PlayerWMPNSCFG.exe
O4 — HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot — Search & DestroyTeaTimer.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Startup: ApexDC++.lnk = C:Program FilesApexDC-SMODApexDC.exe
O4 — Global Startup: Acrobat Assistant.lnk = C:Program FilesAdobeAcrobat 6.0DistillrACROTRAY.EXE
O4 — Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe
O8 — Extra context menu item: &Закачать все при помощи FlashGet — C:Program FilesFlashGetjc_all.htm
O8 — Extra context menu item: &Закачать при помощи FlashGet — C:Program FilesFlashGetjc_link.htm
O8 — Extra context menu item: Поиск@Mail.Ru — res://c:program filesmail.rusputnikMailRuSputnik.dll/282
O8 — Extra context menu item: Словари@Mail.Ru — res://c:program filesmail.rusputnikMailRuSputnik.dll/283
O9 — Extra button: (no name) — {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — C:Program FilesJavajre1.5.0_06binssv.dll
O9 — Extra ‘Tools’ menuitem: Sun Java Console — {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — C:Program FilesJavajre1.5.0_06binssv.dll
O9 — Extra button: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O9 — Extra ‘Tools’ menuitem: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~3OFFICE11REFIEBAR.DLL
O9 — Extra button: FlashGet — {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} — C:Program FilesFlashGetFlashGet.exe
O9 — Extra ‘Tools’ menuitem: FlashGet — {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} — C:Program FilesFlashGetFlashGet.exe
O9 — Extra button: (no name) — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1SPYBOT~1SDHelper.dll
O9 — Extra ‘Tools’ menuitem: Spybot — Search & Destroy Configuration — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1SPYBOT~1SDHelper.dll
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra button: (no name) — SolidConverterPDF — (no file) (HKCU)
O16 — DPF: {5D2CF9D0-113A-476B-986F-288B54571614} (DevalVR Control) — http://www.devalvr.com/instalacion/plugin/devalvrplugin.php
O16 — DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) — http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1237919490203
O16 — DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) — http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1237919029046
O16 — DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) — http://my.foto.mail.ru/ImageUploader4.cab
O16 — DPF: {D27CDB6E-AE6D-0000-0000-000000000000} — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: 2GIS UpdateClientService — ДубльГИС — C:Program Files2gisUpdateClientWin32UpdateClientService.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: mental ray 3.5 Satellite (32-bit) (mi-raysat_3dsmax9_32) — Unknown owner — C:Program FilesAutodesk3ds Max 9mentalraysatelliteraysat_3dsmax9_32server.exe (file missing)
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: Intel NCS NetService (NetSvc) — Intel(R) Corporation — c:Program FilesIntelNCSSyncNetSvc.exe
O23 — Service: NOD32 Kernel Service (NOD32krn) — Eset — C:Program FilesEsetnod32krn.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Spyware Doctor Auxiliary Service (sdAuxService) — PC Tools — C:Program FilesSpyware Doctorsvcntaux.exe
O23 — Service: Spyware Doctor Service (sdCoreService) — PC Tools — C:Program FilesSpyware Doctorswdsvc.exe
O23 — Service: ServiceLayer — Nokia. — C:Program FilesPC Connectivity SolutionServiceLayer.exe
O23 — Service: StarWind iSCSI Service (StarWindService) — Rocket Division Software — C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe—
End of file — 12007 bytes======Scheduled tasks folder======
C:WINDOWStasksUser_Feed_Synchronization-{E7C1825F-D74F-4E25-A0C1-7F6005B7ADF2}.job
======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2009-03-16 1088296][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{259F616C-A300-44F5-B04A-ED001A26C85C}]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl — C:Program FilesFlashGetjccatch.dll [2007-04-24 69632][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection — C:PROGRA~1SPYBOT~1SDHelper.dll [2009-01-26 1879896][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class — C:Program FilesJavajre1.5.0_06binssv.dll [2005-11-10 184423][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — c:program filesmail.rusputnikMailRuSputnik.dll [2009-04-02 680624][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{B4806C1A-FE8A-4008-9DA3-8CEDB6E82C10}]
TBSB03223 Class — C:Program FilesWebMoney Advisorwmadvisor.dll [2008-09-05 2409472][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class — C:Program FilesFlashGetgetflash.dll [2007-04-13 135168][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — c:program filesmail.rusputnikMailRuSputnik.dll [2009-04-02 680624]
{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — WebMoney Advisor — C:Program FilesWebMoney Advisorwmadvisor.dll [2008-09-05 2409472][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«nod32kui»=C:Program FilesEsetnod32kui.exe [2007-07-20 949376]
«ISUSPM Startup»=C:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe [2005-08-11 249856]
«NeroFilterCheck»=C:Program FilesCommon FilesAheadLibNeroCheck.exe [2007-03-01 153136]
«ISUSScheduler»=C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe [2005-08-11 81920]
«CTxfiHlp»=C:WINDOWSsystem32CTXFIHLP.EXE [2006-08-11 18944]
«CTHelper»=C:WINDOWSCTHELPER.EXE [2006-08-11 17920]
«CoolSwitch»=C:WINDOWSsystem32TaskSwitch.exe [2005-12-22 45632]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2009-04-02 6210744]
«QuickTime Task»=C:Program FilesQuickTimeqttask.exe [2008-02-08 98304]
«Flashget»=C:Program FilesFlashGetflashget.exe [2007-04-28 1974378]
«wmagent.exe»=C:Program FilesWebMoney Agentwmagent.exe [2008-10-01 209376]
«ClamWin»=C:Program FilesClamWinbinClamTray.exe [2008-01-20 77824]
«NevoDRM»=C:Игры от NevoSoftNevoDRMNevoDRM.exe [2008-12-11 41984][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2008-04-14 15360]
«HomeAlarm»=C:Program FilesChameleon ClockChamClock.exe [2006-02-11 868864]
«MSMSGS»=C:Program FilesMessengermsmsgs.exe [2008-04-14 1695232]
«PC Suite Tray»=C:Program FilesNokiaNokia PC Suite 7PCSuite.exe [2008-12-03 1205760]
«Skype»=C:Program FilesSkypePhoneSkype.exe [2009-03-27 24103720]
«WMPNSCFG»=C:Program FilesWindows Media PlayerWMPNSCFG.exe [2006-11-02 204288]
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe [2009-03-05 2260480][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCVD]
C:Program FilesCVDCVD.exe [2006-04-23 193536][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregeMuleAutoStart]
C:Program FileseMuleemule.exe -AutoStart [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregFlashget]
C:Program FilesFlashGetflashget.exe [2007-04-28 1974378][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregLingvo Launcher]
C:Program FilesABBYY Lingvo 12Lvagent.exe /STARTUP [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMAgent]
C:Program FilesMail.RuAgentMAgent.exe [2009-04-02 6210744][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMSMSGS]
C:Program FilesMessengermsmsgs.exe [2008-04-14 1695232][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregQuickTime Task]
C:Program FilesQuickTimeqttask.exe [2008-02-08 98304][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSony Ericsson PC Suite]
C:Program FilesSony EricssonMobile2Application LauncherApplication Launcher.exe [2007-03-28 593920][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^Irina^Главное меню^Программы^Автозагрузка^ApexDC++.lnk]
C:PROGRA~1APEXDC~1ApexDC.exe [2008-06-09 2967552][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^Irina^Главное меню^Программы^Автозагрузка^WireNote.lnk]
C:Program FilesWiredPlaneWireNoteWireNote.exe []C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
Acrobat Assistant.lnk — C:Program FilesAdobeAcrobat 6.0DistillrACROTRAY.EXE
Adobe Gamma Loader.lnk — C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exeC:Documents and SettingsIrinaГлавное менюПрограммыАвтозагрузка
ApexDC++.lnk — C:Program FilesApexDC-SMODApexDC.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalsdauxservice]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalsdcoreservice]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWdf01000.sys]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworksdauxservice]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworksdcoreservice]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWdf01000.sys]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesAutodesk3ds Max 93dsmax.exe»=»C:Program FilesAutodesk3ds Max 93dsmax.exe:*:Enabled:Autodesk 3ds Max 9 32-bit»
«C:Program FilesAutodeskBackburnermonitor.exe»=»C:Program FilesAutodeskBackburnermonitor.exe:*:Enabled:backburner 2.3 monitor»
«C:Program FilesAutodeskBackburnermanager.exe»=»C:Program FilesAutodeskBackburnermanager.exe:*:Enabled:backburner 2.3 manager»
«C:Program FilesAutodeskBackburnerserver.exe»=»C:Program FilesAutodeskBackburnerserver.exe:*:Enabled:backburner 2.3 server»
«C:Program FilesFlashGetflashget.exe»=»C:Program FilesFlashGetflashget.exe:*:Enabled:Flashget»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesMessengermsmsgs.exe»=»C:Program FilesMessengermsmsgs.exe:*:Enabled:Windows Messenger»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«C:Program FilesApexDC-SMODApexDC.exe»=»C:Program FilesApexDC-SMODApexDC.exe:*:Disabled:ApexDC++»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{e7c9ed20-fc4b-11dd-b2b5-0007e97d8779}]
shellAutoRuncommand — T:wdsync.exe======List of files/folders created in the last 1 months======
2009-04-08 16:33:13 —-D—- C:_OTMoveIt
2009-04-07 11:59:17 —-D—- C:Documents and SettingsIrinaApplication DataOpera
2009-04-07 11:58:45 —-D—- C:Program FilesOpera
2009-04-06 13:42:48 —-D—- C:Documents and SettingsIrinaApplication Data.clamwin
2009-04-06 13:42:20 —-D—- C:Program FilesClamWin
2009-04-05 23:33:19 —-D—- C:Program FilesSpyware Doctor
2009-04-05 23:33:19 —-D—- C:Documents and SettingsIrinaApplication DataPC Tools
2009-04-05 23:33:09 —-A—- C:WINDOWSsystem32msvcr80.dll
2009-04-05 16:54:05 —-D—- C:Documents and SettingsAll UsersApplication DataSpybot — Search & Destroy
2009-04-05 16:53:59 —-D—- C:Program FilesSpybot — Search & Destroy
2009-04-05 15:28:12 —-D—- C:Program Filestrend micro
2009-04-05 15:28:09 —-D—- C:rsit
2009-04-04 18:39:17 —-HDC—- C:WINDOWS$NtUninstallKB951978$
2009-04-04 18:39:03 —-HDC—- C:WINDOWS$NtUninstallKB954459$
2009-04-03 12:19:14 —-D—- C:WINDOWS__SkypeIEToolbar_Cache
2009-04-03 12:19:11 —-D—- C:WINDOWS{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840}
2009-04-03 12:09:05 —-D—- C:WINDOWSPrefetch
2009-04-03 12:04:24 —-HDC—- C:WINDOWS$NtUninstallKB967715$
2009-04-03 12:04:07 —-HDC—- C:WINDOWS$NtUninstallKB960225$
2009-04-03 12:03:54 —-HDC—- C:WINDOWS$NtUninstallKB958690$
2009-04-03 12:03:42 —-HDC—- C:WINDOWS$NtUninstallKB958687$
2009-04-03 12:03:28 —-HDC—- C:WINDOWS$NtUninstallKB958644$
2009-04-03 12:03:05 —-HDC—- C:WINDOWS$NtUninstallKB957097$
2009-04-03 11:59:34 —-HDC—- C:WINDOWS$NtUninstallKB956841$
2009-04-03 11:57:35 —-HDC—- C:WINDOWS$NtUninstallKB956803$
2009-04-03 11:53:59 —-HDC—- C:WINDOWS$NtUninstallKB956802$
2009-04-03 11:51:39 —-HDC—- C:WINDOWS$NtUninstallKB955069$
2009-04-03 11:50:01 —-HDC—- C:WINDOWS$NtUninstallKB954600$
2009-04-03 11:46:56 —-HDC—- C:WINDOWS$NtUninstallKB952954$
2009-04-03 11:44:52 —-HDC—- C:WINDOWS$NtUninstallKB952287$
2009-04-03 11:42:33 —-HDC—- C:WINDOWS$NtUninstallKB951748$
2009-04-03 11:39:48 —-HDC—- C:WINDOWS$NtUninstallKB951698$
2009-04-03 11:36:16 —-HDC—- C:WINDOWS$NtUninstallKB951376-v2$
2009-04-03 11:32:23 —-HDC—- C:WINDOWS$NtUninstallKB951066$
2009-04-03 11:28:22 —-HDC—- C:WINDOWS$NtUninstallKB950974$
2009-04-03 11:24:38 —-HDC—- C:WINDOWS$NtUninstallKB950762$
2009-04-03 11:20:55 —-HDC—- C:WINDOWS$NtUninstallKB946648$
2009-04-03 11:17:01 —-HDC—- C:WINDOWS$NtUninstallKB938464-v2$
2009-04-03 11:02:00 —-D—- C:WINDOWSl2schemas
2009-04-03 11:01:56 —-D—- C:WINDOWSsystem32bits
2009-04-03 10:52:55 —-D—- C:WINDOWSServicePackFiles
2009-04-03 10:49:39 —-D—- C:WINDOWSnetwork diagnostic
2009-04-03 10:42:18 —-HDC—- C:WINDOWS$NtServicePackUninstall$
2009-04-02 15:05:51 —-D—- C:Documents and SettingsIrinaApplication DataWebMoney
2009-04-02 15:03:47 —-D—- C:Program FilesWebMoney Advisor
2009-04-02 15:03:27 —-D—- C:Program FilesWebMoney Agent
2009-04-02 15:03:21 —-AD—- C:Documents and SettingsAll UsersApplication DataTEMP
2009-04-02 15:02:44 —-D—- C:Program FilesWebMoney
2009-04-02 14:16:49 —-A—- C:WINDOWSUpdateClientUI.INI
2009-04-02 00:53:12 —-HDC—- C:WINDOWS$NtUninstallKB952954_0$
2009-04-02 00:53:02 —-HDC—- C:WINDOWS$NtUninstallKB955839$
2009-04-02 00:51:42 —-HDC—- C:WINDOWS$NtUninstallKB950974_0$
2009-04-02 00:51:32 —-HDC—- C:WINDOWS$NtUninstallKB951698_0$
2009-04-02 00:50:50 —-HDC—- C:WINDOWS$NtUninstallKB960225_0$
2009-04-02 00:50:37 —-HDC—- C:WINDOWS$NtUninstallKB967715_0$
2009-04-02 00:49:29 —-HDC—- C:WINDOWS$NtUninstallKB958690_0$
2009-04-01 17:14:07 —-N—- C:WINDOWSsystem32wlanapi.dll
2009-04-01 17:13:58 —-N—- C:WINDOWSsystem32verclsid.exe
2009-04-01 17:13:51 —-N—- C:WINDOWSsystem32tspkg.dll
2009-04-01 17:13:51 —-N—- C:WINDOWSsystem32tsgqec.dll
2009-04-01 17:13:37 —-N—- C:WINDOWSsystem32spupdwxp.exe
2009-04-01 17:13:36 —-A—- C:WINDOWSsystem32spdwnwxp.exe
2009-04-01 17:13:33 —-N—- C:WINDOWSsystem32slserv.exe
2009-04-01 17:13:32 —-N—- C:WINDOWSsystem32slrundll.exe
2009-04-01 17:13:32 —-N—- C:WINDOWSsystem32slgen.dll
2009-04-01 17:13:32 —-N—- C:WINDOWSsystem32slextspk.dll
2009-04-01 17:13:32 —-N—- C:WINDOWSsystem32slcoinst.dll
2009-04-01 17:13:32 —-N—- C:WINDOWSslrundll.exe
2009-04-01 17:13:25 —-N—- C:WINDOWSsystem32setupn.exe
2009-04-01 17:13:22 —-N—- C:WINDOWSsystem32s3gnb.dll
2009-04-01 17:13:20 —-N—- C:WINDOWSsystem32rhttpaa.dll
2009-04-01 17:13:18 —-N—- C:WINDOWSsystem32rasqec.dll
2009-04-01 17:13:17 —-N—- C:WINDOWSsystem32qutil.dll
2009-04-01 17:13:15 —-N—- C:WINDOWSsystem32qcliprov.dll
2009-04-01 17:13:15 —-N—- C:WINDOWSsystem32qagentrt.dll
2009-04-01 17:13:15 —-N—- C:WINDOWSsystem32qagent.dll
2009-04-01 17:13:09 —-N—- C:WINDOWSsystem32onex.dll
2009-04-01 17:13:05 —-N—- C:WINDOWSsystem32nv4_disp.dll
2009-04-01 17:12:56 —-N—- C:WINDOWSsystem32napstat.exe
2009-04-01 17:12:55 —-N—- C:WINDOWSsystem32napmontr.dll
2009-04-01 17:12:55 —-N—- C:WINDOWSsystem32napipsec.dll
2009-04-01 17:12:55 —-N—- C:WINDOWSsystem32mtxparhd.dll
2009-04-01 17:12:50 —-N—- C:WINDOWSsystem32msshavmsg.dll
2009-04-01 17:12:50 —-N—- C:WINDOWSsystem32mssha.dll
2009-04-01 17:12:24 —-N—- C:WINDOWSsystem32mdmxsdk.dll
2009-04-01 17:12:03 —-N—- C:WINDOWSsystem32l2gpstore.dll
2009-04-01 17:12:02 —-N—- C:WINDOWSsystem32kmsvc.dll
2009-04-01 17:12:01 —-N—- C:WINDOWSsystem32kbdpash.dll
2009-04-01 17:12:01 —-N—- C:WINDOWSsystem32kbdnepr.dll
2009-04-01 17:12:01 —-N—- C:WINDOWSsystem32kbdiultn.dll
2009-04-01 17:12:00 —-N—- C:WINDOWSsystem32kbdbhc.dll
2009-04-01 17:11:54 —-N—- C:WINDOWSsystem32smtpapi.dll
2009-04-01 17:11:53 —-N—- C:WINDOWSsystem32rwnh.dll
2009-04-01 17:11:47 —-N—- C:WINDOWSsystem32comsdupd.exe
2009-04-01 17:11:38 —-N—- C:WINDOWSsystem32hsfcisp2.dll
2009-04-01 17:11:30 —-A—- C:WINDOWS02984_.tmp
2009-04-01 17:11:29 —-N—- C:WINDOWSsystem32faxpatch.exe
2009-04-01 17:11:26 —-N—- C:WINDOWSsystem32eapsvc.dll
2009-04-01 17:11:26 —-N—- C:WINDOWSsystem32eapqec.dll
2009-04-01 17:11:26 —-N—- C:WINDOWSsystem32eappprxy.dll
2009-04-01 17:11:26 —-N—- C:WINDOWSsystem32eapphost.dll
2009-04-01 17:11:26 —-N—- C:WINDOWSsystem32eappgnui.dll
2009-04-01 17:11:26 —-N—- C:WINDOWSsystem32eappcfg.dll
2009-04-01 17:11:26 —-N—- C:WINDOWSsystem32eapp3hst.dll
2009-04-01 17:11:26 —-N—- C:WINDOWSsystem32eapolqec.dll
2009-04-01 17:11:21 —-N—- C:WINDOWSsystem32dot3ui.dll
2009-04-01 17:11:21 —-N—- C:WINDOWSsystem32dot3svc.dll
2009-04-01 17:11:21 —-N—- C:WINDOWSsystem32dot3msm.dll
2009-04-01 17:11:21 —-N—- C:WINDOWSsystem32dot3gpclnt.dll
2009-04-01 17:11:21 —-N—- C:WINDOWSsystem32dot3dlg.dll
2009-04-01 17:11:21 —-N—- C:WINDOWSsystem32dot3cfg.dll
2009-04-01 17:11:21 —-N—- C:WINDOWSsystem32dot3api.dll
2009-04-01 17:11:19 —-N—- C:WINDOWSsystem32dimsroam.dll
2009-04-01 17:11:19 —-N—- C:WINDOWSsystem32dimsntfy.dll
2009-04-01 17:11:19 —-N—- C:WINDOWSsystem32dhcpqec.dll
2009-04-01 17:11:15 —-N—- C:WINDOWSsystem32credssp.dll
2009-04-01 17:11:02 —-N—- C:WINDOWSsystem32bitsprx4.dll
2009-04-01 17:11:02 —-N—- C:WINDOWSsystem32azroles.dll
2009-04-01 17:11:00 —-N—- C:WINDOWSsystem32ativtmxx.dll
2009-04-01 17:10:59 —-N—- C:WINDOWSsystem32ati2dvaa.dll
2009-04-01 17:10:49 —-N—- C:WINDOWSsystem32aaclient.dll
2009-04-01 10:55:06 —-D—- C:Program FilesBarbie Beach Vacation
2009-03-30 02:09:55 —-HDC—- C:WINDOWS$NtUninstallKB951376-v2_0$
2009-03-30 02:09:48 —-HDC—- C:WINDOWS$NtUninstallKB946648_0$
2009-03-30 02:09:38 —-HDC—- C:WINDOWS$NtUninstallKB956803_0$
2009-03-30 02:05:45 —-HDC—- C:WINDOWS$NtUninstallKB956841_0$
2009-03-30 02:05:26 —-HDC—- C:WINDOWS$NtUninstallKB954156_WM9L$
2009-03-30 02:04:48 —-HDC—- C:WINDOWS$NtUninstallKB925720$
2009-03-30 02:03:09 —-HDC—- C:WINDOWS$NtUninstallKB951748_0$
2009-03-30 02:02:21 —-D—- C:WINDOWSie7updates
2009-03-30 02:01:50 —-HDC—- C:WINDOWS$NtUninstallKB956802_0$
2009-03-29 18:42:58 —-HDC—- C:WINDOWS$NtUninstallKB938464-v2_0$
2009-03-29 18:42:48 —-HDC—- C:WINDOWS$NtUninstallKB952069_WM9$
2009-03-29 18:42:34 —-HDC—- C:WINDOWS$NtUninstallKB941569$
2009-03-29 18:41:59 —-HDC—- C:WINDOWS$NtUninstallKB950762_0$
2009-03-29 18:41:48 —-HDC—- C:WINDOWS$NtUninstallKB957097_0$
2009-03-29 18:41:39 —-HDC—- C:WINDOWS$NtUninstallKB960715$
2009-03-29 18:41:29 —-HDC—- C:WINDOWS$NtUninstallKB958687_0$
2009-03-29 18:41:19 —-HDC—- C:WINDOWS$NtUninstallKB952287_0$
2009-03-29 18:41:10 —-HDC—- C:WINDOWS$NtUninstallKB929399$
2009-03-29 18:40:38 —-HDC—- C:WINDOWS$NtUninstallKB950760$
2009-03-29 18:40:30 —-HDC—- C:WINDOWS$NtUninstallKB939683$
2009-03-29 18:39:52 —-HDC—- C:WINDOWS$NtUninstallKB951066_0$
2009-03-29 18:38:37 —-HDC—- C:WINDOWS$NtUninstallKB959772_WM11$
2009-03-27 11:35:53 —-HDC—- C:WINDOWS$NtUninstallKB954600_0$
2009-03-27 11:35:11 —-HDC—- C:WINDOWS$NtUninstallKB958644_0$
2009-03-27 11:34:16 —-HDC—- C:WINDOWS$NtUninstallKB955069_0$
2009-03-27 11:33:45 —-D—- C:Program FilesMSXML 4.0
2009-03-27 11:32:19 —-HDC—- C:WINDOWS$NtUninstallKB954154_WM11$
2009-03-26 20:55:51 —-D—- C:Documents and SettingsIrinaApplication DataskypePM
2009-03-26 20:54:24 —-D—- C:Documents and SettingsIrinaApplication DataSkype
2009-03-26 20:54:08 —-D—- C:Program FilesCommon FilesSkype
2009-03-26 20:54:01 —-RD—- C:Program FilesSkype
2009-03-26 20:53:54 —-D—- C:Documents and SettingsAll UsersApplication DataSkype
2009-03-26 13:04:54 —-D—- C:Program FilesGPL MPEG Decoder
2009-03-25 22:55:47 —-A—- C:WINDOWSsystem32mucltui.dll.mui
2009-03-25 22:55:47 —-A—- C:WINDOWSsystem32mucltui.dll
2009-03-25 01:32:45 —-A—- C:WINDOWSsystem32wucltui.dll.mui
2009-03-25 01:32:45 —-A—- C:WINDOWSsystem32wuaueng.dll.mui
2009-03-25 01:32:42 —-D—- C:WINDOWSsystem32SoftwareDistribution
2009-03-25 01:32:42 —-A—- C:WINDOWSsystem32wuapi.dll.mui
2009-03-25 01:21:43 —-HDC—- C:WINDOWS$NtUninstallKB894391$======List of files/folders modified in the last 1 months======
2009-04-08 16:47:53 —-D—- C:Program FilesFlashGet
2009-04-08 16:43:21 —-D—- C:WINDOWSTemp
2009-04-08 16:36:48 —-D—- C:Program FilesChameleon Clock
2009-04-08 16:36:21 —-D—- C:WINDOWSsystem32CatRoot2
2009-04-08 16:34:25 —-A—- C:WINDOWSSchedLgU.Txt
2009-04-08 16:33:58 —-A—- C:WINDOWS{00000002-00000000-00000001-00001102-00000004-00531102}.BAK
2009-04-08 16:29:40 —-D—- C:Downloads
2009-04-08 16:18:27 —-D—- C:WINDOWSsystem32drivers
2009-04-08 00:53:34 —-D—- C:Program Files
2009-04-07 11:59:13 —-SHD—- C:WINDOWSInstaller
2009-04-07 11:59:04 —-D—- C:Config.Msi
2009-04-07 11:45:28 —-D—- C:WINDOWS
2009-04-07 10:27:51 —-D—- C:Игры от NevoSoft
2009-04-07 00:45:31 —-D—- C:WINDOWSsystem32
2009-04-07 00:45:28 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-04-06 21:51:46 —-D—- C:WINDOWSsystem32LogFiles
2009-04-05 13:10:19 —-A—- C:WINDOWSNeroDigital.ini
2009-04-04 18:39:22 —-HD—- C:WINDOWSinf
2009-04-04 18:39:20 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-04-04 18:39:12 —-A—- C:WINDOWSimsins.BAK
2009-04-04 11:31:41 —-HD—- C:WINDOWS$hf_mig$
2009-04-03 19:43:46 —-D—- C:Program FilesGoogle
2009-04-03 12:27:25 —-A—- C:WINDOWSsystem32msmgr10.dll
2009-04-03 12:23:58 —-D—- C:Python25
2009-04-03 12:20:49 —-D—- C:Program FilesBarbie(TM)
2009-04-03 12:20:18 —-D—- C:Documents and SettingsAll UsersApplication DataGoogle
2009-04-03 12:10:37 —-A—- C:WINDOWSOEWABLog.txt
2009-04-03 12:09:34 —-A—- C:WINDOWSsetuplog.txt
2009-04-03 12:08:28 —-D—- C:WINDOWSsystem32Setup
2009-04-03 12:08:27 —-D—- C:WINDOWSsystem32wbem
2009-04-03 12:08:27 —-D—- C:WINDOWSAppPatch
2009-04-03 12:08:26 —-RSD—- C:WINDOWSFonts
2009-04-03 12:04:30 —-D—- C:WINDOWSsystem32CatRoot
2009-04-03 11:21:01 —-D—- C:Program FilesMessenger
2009-04-03 11:20:55 —-D—- C:WINDOWSsecurity
2009-04-03 11:17:06 —-D—- C:WINDOWSWinSxS
2009-04-03 11:04:07 —-D—- C:WINDOWSehome
2009-04-03 11:04:00 —-D—- C:WINDOWSsystem32inetsrv
2009-04-03 11:03:56 —-D—- C:WINDOWSHelp
2009-04-03 11:03:55 —-D—- C:WINDOWSime
2009-04-03 11:02:09 —-D—- C:WINDOWSsystem32ru-ru
2009-04-03 11:02:07 —-D—- C:WINDOWSsystem32usmt
2009-04-03 11:01:59 —-D—- C:WINDOWSsystem32ru
2009-04-03 11:01:56 —-D—- C:WINDOWSPeerNet
2009-04-03 11:01:55 —-D—- C:Program FilesMovie Maker
2009-04-03 10:52:16 —-D—- C:WINDOWSsystem32Restore
2009-04-03 10:52:15 —-D—- C:WINDOWSsystem32npp
2009-04-03 10:52:14 —-D—- C:WINDOWSmsagent
2009-04-03 10:52:10 —-D—- C:WINDOWSsrchasst
2009-04-03 10:52:08 —-D—- C:Program FilesNetMeeting
2009-04-03 10:52:05 —-D—- C:WINDOWSsystem32Com
2009-04-03 10:52:02 —-D—- C:Program FilesWindows Media Player
2009-04-03 10:52:01 —-D—- C:Program FilesOutlook Express
2009-04-03 10:51:58 —-D—- C:Program FilesCommon FilesSystem
2009-04-03 10:51:39 —-D—- C:WINDOWSsystem32oobe
2009-04-03 10:51:36 —-D—- C:WINDOWSsystem
2009-04-03 10:46:02 —-D—- C:WINDOWSsystem32ReinstallBackups
2009-04-02 10:26:47 —-D—- C:Documents and SettingsIrinaApplication DataMra
2009-04-01 10:54:14 —-D—- C:Documents and SettingsAll UsersApplication DataBarbie Fashion Show
2009-03-31 00:09:43 —-D—- C:WINDOWSDebug
2009-03-30 02:02:35 —-D—- C:Program FilesInternet Explorer
2009-03-29 18:38:02 —-RSD—- C:WINDOWSassembly
2009-03-29 18:28:37 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2009-03-26 20:54:08 —-D—- C:Program FilesCommon Files
2009-03-25 01:33:37 —-D—- C:WINDOWSSoftwareDistribution
2009-03-25 01:31:37 —-SD—- C:WINDOWSDownloaded Program Files======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 eusk2par;EUTRON SmartKey Parallel Driver; ??C:WINDOWSsystem32Driverseusk2par.sys []
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-14 40704]
R1 nod32drv;nod32drv; C:WINDOWSsystem32driversnod32drv.sys [2007-07-20 15424]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2001-10-20 12032]
R2 AMON;AMON; C:WINDOWSsystem32driversamon.sys [2007-07-20 512096]
R3 Arp1394;Протокол клиента 1394 ARP; C:WINDOWSsystem32DRIVERSarp1394.sys [2008-04-14 60800]
R3 ati2mtag;ati2mtag; C:WINDOWSsystem32DRIVERSati2mtag.sys [2004-08-17 701440]
R3 ctac32k;Creative AC3 Software Decoder; C:WINDOWSsystem32driversctac32k.sys [2006-08-11 502272]
R3 ctaud2k;Creative Audio Driver (WDM); C:WINDOWSsystem32driversctaud2k.sys [2006-08-11 499584]
R3 ctprxy2k;Creative Proxy Driver; C:WINDOWSsystem32driversctprxy2k.sys [2006-08-11 7168]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:WINDOWSsystem32driversctsfm2k.sys [2006-08-11 143872]
R3 E100B;Intel(R) PRO Adapter Driver; C:WINDOWSsystem32DRIVERSe100b325.sys [2002-09-25 140800]
R3 emupia;E-mu Plug-in Architecture Driver; C:WINDOWSsystem32driversemupia2k.sys [2006-08-11 78336]
R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:WINDOWSsystem32driversha10kx2k.sys [2006-08-11 766976]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2008-04-14 10368]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 NIC1394;Сетевой драйвер 1394; C:WINDOWSsystem32DRIVERSnic1394.sys [2008-04-14 61824]
R3 ossrv;Creative OS Services Driver; C:WINDOWSsystem32driversctoss2k.sys [2006-08-11 116224]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:WINDOWSSystem32DriversRootMdm.sys [2001-10-20 5888]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2008-04-14 59520]
R3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-14 20608]
R3 vaxscsi;vaxscsi; C:WINDOWSSystem32Driversvaxscsi.sys [2008-03-05 223128]
S3 ctdvda2k;Creative DVD-Audio Device Driver; C:WINDOWSsystem32driversctdvda2k.sys [2005-11-10 340704]
S3 EL90XBC;3Com EtherLink XL 90XB/C, драйвер адаптера; C:WINDOWSsystem32DRIVERSel90xbc5.sys [2001-08-17 66591]
S3 eusk3usb;SmartKey 3 USB; C:WINDOWSSystem32Driverseusk3usb.sys [2004-11-18 45534]
S3 FETNDISB;D-Link PCI Fast Ethernet Adapter Driver Service; C:WINDOWSsystem32DRIVERSdlkfet5b.sys [2006-12-27 46080]
S3 hap16v2k;Creative P16V HAL Driver; C:WINDOWSsystem32drivershap16v2k.sys [2006-08-11 154112]
S3 hap17v2k;Creative P17V HAL Driver; C:WINDOWSsystem32drivershap17v2k.sys [2006-08-11 180224]
S3 IKFileFlt;File Filter Driver; C:WINDOWSsystem32driversikfileflt.sys [2009-04-05 39248]
S3 IKFileSec;File Security Driver; C:WINDOWSsystem32driversikfilesec.sys [2009-04-05 52304]
S3 IkSysFlt;System Filter Driver; C:WINDOWSsystem32driversiksysflt.sys [2009-04-05 59984]
S3 IKSysSec;System Security Driver; C:WINDOWSsystem32driversiksyssec.sys [2009-04-05 83536]
S3 NAL;Nal Service ; ??C:WINDOWSsystem32Driversiqvw32.sys []
S3 nmwcd;Nokia USB Phone Parent; C:WINDOWSsystem32driversccdcmb.sys [2008-09-15 17664]
S3 nmwcdc;Nokia USB Generic; C:WINDOWSsystem32driversccdcmbo.sys [2008-09-15 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:WINDOWSsystem32DRIVERSpccsmcfd.sys [2008-08-26 18816]
S3 se58bus;Sony Ericsson Device 088 driver (WDM); C:WINDOWSsystem32DRIVERSse58bus.sys [2006-09-05 61536]
S3 se58mdfl;Sony Ericsson Device 088 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse58mdfl.sys [2006-09-05 9360]
S3 se58mdm;Sony Ericsson Device 088 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse58mdm.sys [2006-09-05 97088]
S3 se58mgmt;Sony Ericsson Device 088 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse58mgmt.sys [2006-09-05 88624]
S3 se58nd5;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (NDIS); C:WINDOWSsystem32DRIVERSse58nd5.sys [2006-09-05 18704]
S3 se58obex;Sony Ericsson Device 088 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse58obex.sys [2006-09-05 86432]
S3 se58unic;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (WDM); C:WINDOWSsystem32DRIVERSse58unic.sys [2006-09-05 90800]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:WINDOWSsystem32DRIVERSse59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:WINDOWSsystem32DRIVERSse59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:WINDOWSsystem32DRIVERSse59unic.sys [2006-09-05 90800]
S3 upperdev;upperdev; C:WINDOWSsystem32DRIVERSusbser_lowerflt.sys [2008-09-15 8064]
S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2008-04-14 32128]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2008-04-14 15104]
S3 usbser;USB Modem Driver; C:WINDOWSsystem32driversusbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:WINDOWSsystem32DRIVERSusbser_lowerfltj.sys [2008-09-15 8064]
S3 w900bus;Sony Ericsson 900i driver (WDM); C:WINDOWSsystem32DRIVERSw900bus.sys [2006-03-13 58256]
S3 w900mdfl;Sony Ericsson 900i USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSw900mdfl.sys [2006-03-13 8336]
S3 w900mdm;Sony Ericsson 900i USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSw900mdm.sys [2006-03-13 94064]
S3 w900mgmt;Sony Ericsson 900i USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSw900mgmt.sys [2006-03-13 85504]
S3 w900obex;Sony Ericsson 900i USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSw900obex.sys [2006-03-13 83440]
S3 Wdf01000;Wdf01000; C:WINDOWSsystem32DRIVERSWdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:WINDOWSsystem32DRIVERSwpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-15 82688]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 2GIS UpdateClientService;2GIS UpdateClientService; C:Program Files2gisUpdateClientWin32UpdateClientService.exe [2008-09-17 1134592]
R2 NOD32krn;NOD32 Kernel Service; C:Program FilesEsetnod32krn.exe [2007-07-20 552064]
R2 StarWindService;StarWind iSCSI Service; C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindService.exe [2005-04-02 217600]
R2 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
R2 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2008-04-14 14336]
R3 ServiceLayer;ServiceLayer; C:Program FilesPC Connectivity SolutionServiceLayer.exe [2008-11-11 620544]
S2 mi-raysat_3dsmax9_32;mental ray 3.5 Satellite (32-bit); C:Program FilesAutodesk3ds Max 9mentalraysatelliteraysat_3dsmax9_32server.exe []
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2006-10-20 36864]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2006-10-30 741376]
S3 NetSvc;Intel NCS NetService; c:Program FilesIntelNCSSyncNetSvc.exe [2002-09-27 139264]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S3 sdAuxService;Spyware Doctor Auxiliary Service; C:Program FilesSpyware Doctorsvcntaux.exe [2009-04-05 708176]
S3 sdCoreService;Spyware Doctor Service; C:Program FilesSpyware Doctorswdsvc.exe [2009-04-05 1302272]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2006-10-30 122880]
EOF
Скачайте программу Combofix. Закройте все открытые окна и запустите эту программу.
После выполнения будет создан лог файл, пожалуйста вставьте его в ваш ответ.Примечание: перед использованием Combofix обязательно установите Recovery console. Как это сделать будет описано на странице, ссылку на которую я привёл выше.
Здравствуйте. Выполнила все инструкции, но после того как я перетащила на значек комбофикса истановочный от виндовса он стал сразу сканировать и выдал следующий лог: log.txt
После перезагрузки запустила комбофикс еще раз и получила еще лог: log2.txt
Я конечно в этом ни чего не понимаю но мне кажеться логи разные.
Спасибо.
P.S.: комп тормозит страшно: панель пуска переодически не всплывае или наоборот, и двоится.. эксплоер тоже глучит текст выводится на экран с опозданием(когда печатаю)
окна реагируют медленно…в опере получше но тоже притормажевает…МРАК,,.Здраствуйте скачайте Anti-Malware , обновите выберите «Полное сканирование» — лог вставте сюда
Проверим ваш компьютер с помощью программы которая ищет руткиты.
Скачайте программу GMER кликнув по этой ссылке.
Распакуйте программу на ваш рабочий стол.
Отключите Интернет и все антивирусы.
Запустите программу.
В правой части программы, в небольшом окошке будут перечислены все ваши диски, пожалуйста выделите их галочками.
Кликните по кнопке Scan.
Когда сканирование закончится, кликните по кнопке Copy.
Запустите Блокнот (Пуск -> Выполнить, введите notepad и нажмите Enter).
Вставьте результаты сканирования в блокнот (CTRL + V). Сохраните получившийся файл на ваш рабочий стол.
Жду от вас содержимое этого файла.Здравствуйте.
Выкладываю файл.
Но в конце сканирования вылезло сообщение: файл gmer.exe поврежден сделайте chkdsk. 😯Проверьте ещё ваш компьютер используя Kaspersky Online Scanner, для этого кликните по этой ссылке.
Результаты сканирования вставьте в ваш ответ и приложите свежий Combofix лог.К сожелению при запуске Касперского онлайн сканера… мне пишет Запуск Java приложения прерван. Пожалуйста установите непрерывное соединенияе с интернетом…
Хотя я установила приложения Java когда первый раз пробывала и интернет у меня включен нормально …че делать подскажите пожалуйста,???
- Для ответа в этой теме необходимо авторизоваться.
