Созданные ответы форума
-
Сообщения
-
Уважаемый Валерий, всё сделал, надежда только на вас, замучился уже, а переустанавливать систему не хочется..пресловутый Хайджек всё также не работает
ComboFix 09-12-29.06 — йцу 30.12.2009 22:05:30.2.2 — x86
Microsoft Windows XP Home Edition 5.1.2600.3.1251.7.1049.18.2047.1615 [GMT 3:00]
Running from: c:documents and settingsйцуРабочий столComboFix.exe
Command switches used :: c:documents and settingsйцуРабочий столWindowsXP-KB310994-SP2-Home-BootDisk-RUS.exe
AV: Doctor Web Anti-Virus *On-access scanning enabled* (Updated) {3454C8F1-ECBC-4180-A6F4-04632FBA762B}
AV: Microsoft Security Essentials *On-access scanning enabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
.
/wow section — STAGE 32A((((((((((((((((((((((((( Files Created from 2009-11-28 to 2009-12-30 )))))))))))))))))))))))))))))))
.2009-12-30 17:17 . 2009-11-02 17:42 195456
w- c:windowssystem32MpSigStub.exe
2009-12-30 17:12 . 2009-08-06 16:23 274288 —-a-w- c:windowssystem32mucltui.dll
2009-12-30 17:12 . 2009-12-30 17:12
d
w- c:program filesMicrosoft Security Essentials
2009-12-30 16:49 . 2009-12-30 16:49 7168 —-a-w- c:windowssystem32driversutiymzq1.sys
2009-12-30 16:44 . 2009-12-30 16:44
d-sh—w- c:documents and settingsАдминистраторIETldCache
2009-12-30 08:59 . 2009-10-22 09:54 37392 —-a-w- c:windowssystem32drivers59914302.sys
2009-12-30 08:59 . 2009-10-09 19:31 315408 —-a-w- c:windowssystem32drivers5991430.sys
2009-12-30 08:59 . 2009-09-25 13:59 128016 —-a-w- c:windowssystem32drivers59914301.sys
2009-12-29 21:42 . 2009-12-29 21:42 10 —-a-w- c:documents and settingsAll UsersApplication DataSecTaskManicn_8A9C1670A3F861244B7A7BFAFB422AA4.dll
2009-12-28 13:55 . 2009-12-28 14:12
d
w- c:documents and settingsAll UsersApplication DataSpybot — Search & Destroy
2009-12-28 13:55 . 2009-12-28 13:57
d
w- c:program filesSpybot — Search & Destroy
2009-12-28 13:00 . 2009-12-28 13:00
d
w- C:rsit
2009-12-28 12:35 . 2009-12-28 12:35 201 —-a-w- c:documents and settingsAll UsersApplication DataSecTaskManicn_BB11B0959FF7F4D49A8E8E61B58F3818.dll
2009-12-28 09:39 . 2009-12-28 14:15
d
w- c:program filesSecurity Task Manager
2009-12-28 09:03 . 2009-02-09 10:54 687616 —-a-w- c:documents and settingsAll UsersApplication DataSecTaskMan_entreelist.dll
2009-12-28 09:03 . 2009-02-09 10:54 718848 —-a-w- c:documents and settingsAll UsersApplication DataSecTaskMan_enviewlist.dll
2009-12-28 07:57 . 2009-12-28 08:20
d
w- c:program filesNeed For Speed.Shift.v 1.02
2009-12-25 16:08 . 2009-12-28 17:09
d
w- c:program filesArtMoney
2009-12-25 09:32 . 2009-12-25 09:32
d
w- c:documents and settingsAll UsersApplication DataFirefly Studios
2009-12-25 09:26 . 2009-12-25 09:26
d
w- c:program files1C
2009-12-23 16:54 . 2009-12-23 16:54
d
w- c:documents and settingsNetworkServiceLocal SettingsApplication DataGoogle
2009-12-23 16:49 . 2009-12-23 16:49
d
w- c:documents and settingsLocalServiceLocal SettingsApplication DataGoogle
2009-12-23 16:48 . 2009-12-23 16:51
d
w- c:program filesGoogle
2009-12-22 18:50 . 2009-11-21 16:03 471552 -c—-w- c:windowssystem32dllcacheaclayers.dll
2009-12-22 17:24 . 2009-12-22 17:24
d
w- c:program filesInCode Solutions
2009-12-22 13:23 . 2009-12-28 13:00
d
w- c:program filesTrend Micro
2009-12-22 12:56 . 2009-12-22 12:56
d
w- c:documents and settingsAll UsersApplication DataAgnitum
2009-12-21 14:32 . 2009-12-21 14:32
d
w- c:windowsInternet Logs
2009-12-21 14:07 . 2008-03-12 09:31 449184 —-a-w- c:windowssystem32driversSandBox.sys
2009-12-21 08:41 . 2009-12-28 09:30
d
w- c:program filesDrWeb
2009-12-21 08:41 . 2009-12-28 09:28
d
w- c:documents and settingsAll UsersApplication DataDoctor Web
2009-12-13 07:53 . 2009-12-13 07:53
d
w- c:program filesDAEMON Tools Lite
2009-12-13 07:34 . 2009-09-04 14:44 515416 —-a-w- c:windowssystem32XAudio2_5.dll
2009-12-13 07:34 . 2009-09-04 14:44 238936 —-a-w- c:windowssystem32xactengine3_5.dll
2009-12-13 07:34 . 2009-09-04 14:29 5501792 —-a-w- c:windowssystem32d3dcsx_42.dll
2009-12-13 07:34 . 2009-09-04 14:29 1974616 —-a-w- c:windowssystem32D3DCompiler_42.dll.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-30 19:09 . 2008-12-16 07:55 3809763360 —sha-w- c:windowssystem32driversfidbox.dat
2009-12-30 18:57 . 2008-12-16 07:55 11162276 —sha-w- c:windowssystem32driversfidbox.idx
2009-12-30 16:06 . 2006-03-02 12:00 84284 —-a-w- c:windowssystem32perfc019.dat
2009-12-30 16:06 . 2006-03-02 12:00 484670 —-a-w- c:windowssystem32perfh019.dat
2009-12-29 21:42 . 2009-12-28 09:02
d
w- c:documents and settingsAll UsersApplication DataSecTaskMan
2009-12-29 20:14 . 2008-06-25 10:59
d—h—w- c:program filesInstallShield Installation Information
2009-12-29 20:11 . 2008-07-21 20:55
d—a-w- c:documents and settingsAll UsersApplication DataTEMP
2009-12-28 17:25 . 2008-07-21 19:24
d
w- c:program filesQIP
2009-12-28 09:21 . 2008-12-04 12:59
d
w- c:program filesWindows Desktop Search
2009-12-28 09:19 . 2008-10-27 18:29
d
w- c:program filesCommon FilesApple
2009-12-23 16:54 . 2009-07-30 07:29
d
w- c:program filesMaxthon2
2009-12-22 19:11 . 2008-06-25 11:05
d
w- c:documents and settingsAll UsersApplication DataMicrosoft Help
2009-12-22 18:36 . 2008-06-25 10:49
d
w- c:program filesCommon FilesInstallShield
2009-12-22 11:48 . 2009-11-19 13:59
d
w- c:program filesModern Warfare 2
2009-12-22 11:36 . 2008-12-16 15:10 664 —-a-w- c:windowssystem32d3d9caps.dat
2009-12-21 08:57 . 2006-03-02 12:00 91520 —-a-w- c:windowssystem32driversndiswan.sys
2009-12-21 06:48 . 2009-12-21 06:48 20 —-a-w- c:documents and settingsLocalServiceApplication Datafvgqad.dat
2009-12-17 14:23 . 2008-09-01 16:47
d
w- c:program fileseMule
2009-12-17 07:40 . 2009-09-10 06:52
d
w- c:program filesHtmlReader
2009-12-13 17:44 . 2008-12-18 10:57 237568 —-a-w- c:windowssystem32rmc_rtspdl.dll
2009-12-13 17:44 . 2008-12-18 10:57 156672 —-a-w- c:windowssystem32rmc_fixasf.exe
2009-12-13 17:44 . 2008-12-18 10:13 323584 —-a-w- c:windowssystem32AUDIOGENIE2.DLL
2009-12-13 07:53 . 2008-12-20 12:33 691696 —-a-w- c:windowssystem32driverssptd.sys
2009-12-13 07:53 . 2009-09-07 17:01
d
w- c:documents and settingsAll UsersApplication DataDAEMON Tools Lite
2009-12-13 07:36 . 2009-03-06 18:14
d
w- c:program filesSega
2009-12-03 15:54 . 2009-01-12 16:46
d
w- c:program filesJava
2009-11-21 16:03 . 2006-03-02 12:00 471552 —-a-w- c:windowsAppPatchaclayers.dll
2009-11-01 10:58 . 2009-05-07 22:16 745088 —-a-w- c:documents and settingsLocalServiceLocal SettingsApplication DataFontCache3.0.0.0.dat
2009-10-29 07:43 . 2006-03-02 12:00 916480
w- c:windowssystem32wininet.dll
2009-10-21 12:45 . 2009-10-21 12:45 0 —-a-w- c:windowsPowerReg.dat
2009-10-21 05:40 . 2006-03-02 12:00 75776 —-a-w- c:windowssystem32strmfilt.dll
2009-10-21 05:40 . 2006-03-02 12:00 25088 —-a-w- c:windowssystem32httpapi.dll
2009-10-20 16:20 . 2006-03-02 12:00 265728 —-a-w- c:windowssystem32drivershttp.sys
2009-10-13 10:34 . 2006-03-02 12:00 270848 —-a-w- c:windowssystem32oakley.dll
2009-10-12 13:40 . 2006-03-02 12:00 79872 —-a-w- c:windowssystem32raschap.dll
2009-10-12 13:40 . 2006-03-02 12:00 150016 —-a-w- c:windowssystem32rastls.dll
2009-10-11 01:17 . 2009-09-13 20:59 411368 —-a-w- c:windowssystem32deploytk.dll
2009-10-08 11:57 . 2008-07-29 16:59 613376 —-a-w- c:windowssystem32uiautomationcore.dll
2009-10-08 11:57 . 2006-03-02 12:00 22528 —-a-w- c:windowssystem32oleaccrc.dll
2009-10-08 11:57 . 2006-03-02 12:00 220160 —-a-w- c:windowssystem32oleacc.dll
2008-12-16 08:17 . 2008-12-16 07:55 32 —sha-w- c:windowssystem32driversfidbox2.dat
.
Sigcheck
[7] 2008-04-14 . 4379CA978CB35BB2458156B2B6CB35DF . 1571840 . . [5.1.2600.5512] . . c:windowsServicePackFilesi386sfcfiles.dll
[7] 2006-03-02 . 01C8786B1DDB91D5D40044DED8864EDC . 1548288 . . [5.1.2600.2180] . . c:windows$NtServicePackUninstall$sfcfiles.dllc:windowsSystem32sfcfiles.dll … is missing !!
.
((((((((((((((((((((((((((((( SnapShot@2009-12-30_16.00.34 )))))))))))))))))))))))))))))))))))))))))
.
— 2006-03-02 12:00 . 2009-12-28 11:00 71196 c:windowssystem32perfc009.dat
+ 2006-03-02 12:00 . 2009-12-30 16:06 71196 c:windowssystem32perfc009.dat
+ 2009-12-30 17:12 . 2009-12-30 17:12 47104 c:windowsInstaller182ef0.msi
+ 2006-03-02 12:00 . 2009-12-30 16:06 441260 c:windowssystem32perfh009.dat
— 2006-03-02 12:00 . 2009-12-28 11:00 441260 c:windowssystem32perfh009.dat
+ 2009-06-18 15:48 . 2009-06-18 15:48 142832 c:windowssystem32driversMpFilter.sys
+ 2009-12-30 17:12 . 2009-12-30 17:12 259072 c:windowsInstaller182ee8.msi
+ 2009-12-30 17:12 . 2009-12-30 17:12 244736 c:windowsInstaller182ee3.msi
+ 2009-12-30 17:12 . 2009-12-30 17:12 301056 c:windowsInstaller182ede.msi
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
«DAEMON Tools Lite»=»c:program filesDAEMON Tools LiteDTLite.exe» [2009-10-30 369200][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=»c:windowssystem32NvCpl.dll» [2009-03-27 13684736]
«MSSE»=»c:program filesMicrosoft Security Essentialsmsseces.exe» [2009-11-12 1052496][HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=»c:windowssystem32CTFMON.EXE» [2008-04-14 15360][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalMsMpSvc]
@=»Service»[HKLM~startupfolderC:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^Adobe Reader Speed Launch.lnk]
path=c:documents and settingsAll UsersГлавное менюПрограммыАвтозагрузкаAdobe Reader Speed Launch.lnk
backup=c:windowspssAdobe Reader Speed Launch.lnkCommon Startup[HKLM~startupfolderC:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^Adobe Reader Synchronizer.lnk]
path=c:documents and settingsAll UsersГлавное менюПрограммыАвтозагрузкаAdobe Reader Synchronizer.lnk
backup=c:windowspssAdobe Reader Synchronizer.lnkCommon Startup[HKLM~startupfolderC:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^Windows Search.lnk]
path=c:documents and settingsAll UsersГлавное менюПрограммыАвтозагрузкаWindows Search.lnk
backup=c:windowspssWindows Search.lnkCommon Startup[HKLM~startupfolderC:^Documents and Settings^йцу^Главное меню^Программы^Автозагрузка^is-IL20V.lnk]
path=c:documents and settingsйцуГлавное менюПрограммыАвтозагрузкаis-IL20V.lnk
backup=c:windowspssis-IL20V.lnkStartup[HKLM~startupfolderC:^Documents and Settings^йцу^Главное меню^Программы^Автозагрузка^setup_9.0.0.722_29.12.2009_23-02.lnk]
path=c:documents and settingsйцуГлавное менюПрограммыАвтозагрузкаsetup_9.0.0.722_29.12.2009_23-02.lnk
backup=c:windowspsssetup_9.0.0.722_29.12.2009_23-02.lnkStartup[HKLM~startupfolderC:^Documents and Settings^йцу^Главное меню^Программы^Автозагрузка^siszyd32.exe]
path=c:documents and settingsйцуГлавное менюПрограммыАвтозагрузкаsiszyd32.exe
backup=c:windowspsssiszyd32.exeStartup[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMAgent]
2008-09-07 07:47 4412920 —-a-w- c:program filesMail.RuAgentmagent.exe[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMSMSGS]
2008-04-14 16:11 1695232 —sh—w- c:program filesMessengermsmsgs.exe[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRoboForm]
2009-05-04 07:39 144448 —-a-w- c:program filesSiber SystemsAI RoboFormrobotaskbaricon.exe[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregwmagent.exe]
2008-10-01 09:45 209376 —-a-w- c:program filesWebMoney Agentwmagent.exe[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregYupdate!]
2007-12-10 16:44 457992 —-a-w- c:program filesCommon FilesYandexYupdateyupdate.exe[HKLM~servicessharedaccessparametersfirewallpolicystandardprofile]
«EnableFirewall»= 0 (0x0)[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileAuthorizedApplicationsList]
«%windir%\system32\sessmgr.exe»=R0 59914302;59914302 Boot Guard Driver;c:windowssystem32drivers59914302.sys [30.12.2009 11:59 37392]
R1 59914301;59914301;c:windowssystem32drivers59914301.sys [30.12.2009 11:59 128016]
R1 is-45NDGdrv;is-45NDGdrv;c:windowssystem32drivers81964318.sys [16.12.2008 11:33 148496]
R1 is-IL20Vdrv;is-IL20Vdrv;c:windowssystem32drivers72241485.sys [16.12.2008 14:13 148496]
R1 SandBox;SandBox;c:windowssystem32driversSandBox.sys [21.12.2009 17:07 449184]
R1 setup_9.0.0.722_29.12.2009_23-02drv;setup_9.0.0.722_29.12.2009_23-02drv;c:windowssystem32drivers5991430.sys [30.12.2009 11:59 315408]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};c:program filesCyberLinkPowerDVD800.fcl [15.05.2008 11:07 61424]
R3 CnxEtP;Conexant AccessRunner USB ADSL LAN Adapter Filter Driver;c:windowssystem32driversCnxEtP.sys [21.07.2008 21:14 117388]
R3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver;c:windowssystem32driversCnxEtU.sys [21.07.2008 21:14 554948]
R3 CnxTgN;Conexant AccessRunner USB ADSL LAN Adapter Driver;c:windowssystem32driversCnxTgN.sys [21.07.2008 21:14 102822]
S0 sptd;sptd;c:windowssystem32driverssptd.sys [20.12.2008 15:33 691696]
S2 acssrv;Agnitum Client Security Service;c:progra~1AgnitumOUTPOS~1acs.exe —> c:progra~1AgnitumOUTPOS~1acs.exe [?]
S2 gupdate;Служба Google Update (gupdate);c:program filesGoogleUpdateGoogleUpdate.exe [23.12.2009 19:49 135664]
S3 afw;Agnitum firewall driver;c:windowssystem32DRIVERSafw.sys —> c:windowssystem32DRIVERSafw.sys [?]
S3 ASWFilt;ASWFilt;c:windowssystem32FiltASWFilt.dll —> c:windowssystem32FiltASWFilt.dll [?]
S3 utiymzq1;AVZ Kernel Driver;c:windowssystem32driversutiymzq1.sys [30.12.2009 19:49 7168]
S3 vaxscsi;vaxscsi;c:windowssystem32Driversvaxscsi.sys —> c:windowssystem32Driversvaxscsi.sys [?]
.
Contents of the ‘Scheduled Tasks’ folder2009-12-30 c:windowsTasksGoogleUpdateTaskMachineCore.job
— c:program filesGoogleUpdateGoogleUpdate.exe [2009-12-23 16:48]2009-12-30 c:windowsTasksGoogleUpdateTaskMachineUA.job
— c:program filesGoogleUpdateGoogleUpdate.exe [2009-12-23 16:48]
.
.
Supplementary Scan
.
uStart Page = hxxp://www.yandex.ru
uInternet Settings,ProxyOverride = local
IE: &Экспорт в Microsoft Excel — c:progra~1MICROS~2Office12EXCEL.EXE/3000
IE: Закачать &все при помощи ReGet Deluxe — c:program filesCommon FilesReGet SharedCC_All.htm
IE: Закачать ВСЕ при помощи Download Master
IE: Закачать при помощи Download Master
IE: Закачать при помощи Re&Get Deluxe — c:program filesCommon FilesReGet SharedCC_Link.htm
IE: Заполнить формы — file://c:program filesSiber SystemsAI RoboFormRoboFormComFillForms.html
IE: Настроить Меню — file://c:program filesSiber SystemsAI RoboFormRoboFormComCustomizeIEMenu.html
IE: Сохранить формы — file://c:program filesSiber SystemsAI RoboFormRoboFormComSavePass.html
IE: Тулбар RoboForm — file://c:program filesSiber SystemsAI RoboFormRoboFormComShowToolbar.html
Trusted Zone: microsoft.comupdate
DPF: Microsoft XML Parser for Java — file://c:windowsJavaclassesxmldso.cab
DPF: {463ED66E-431B-11D2-ADB0-0080C83DA4EB} — hxxps://w3s.webmoney.ru/WMAcceptor.dll
DPF: {CB199EB3-781E-40F7-A028-20DEA7FC005B} — hxxps://www.paymer.com/Contract/wmxmlsigner.cab
FF — ProfilePath — c:documents and settingsйцуApplication DataMozillaFirefoxProfilesflvf5pff.default
FF — prefs.js: browser.startup.homepage — hxxp://www.yandex.ru
FF — component: c:documents and settingsйцуApplication DataMozillaFirefoxProfilesflvf5pff.defaultextensions{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}componentsXpcomOpusConnector.dll
FF — plugin: c:program filesGoogleUpdate1.2.183.13npGoogleOneClick8.dll
FF — plugin: c:program filesK-Lite Codec PackRealbrowserpluginsnppl3260.dll
FF — plugin: c:program filesK-Lite Codec PackRealbrowserpluginsnprpjplug.dll
FF — plugin: c:program filesMicrosoftOffice LivenpOLW.dll
FF — plugin: c:program filesMozilla Firefoxpluginsnpdm.dll
FF — HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} — c:windowsMicrosoft.NETFrameworkv3.5Windows Presentation FoundationDotNetAssistantExtension
.**************************************************************************
scanning hidden processes …scanning hidden autostart entries …
scanning hidden files …
scan completed successfully
hidden files:**************************************************************************
.
Completion time: 2009-12-30 22:10:41
ComboFix-quarantined-files.txt 2009-12-30 19:10Pre-Run: 173 386 153 984 байт свободно
Post-Run: 173 369 098 240 байт свободноWindowsXP-KB310994-SP2-Home-BootDisk-RUS.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)WINDOWS
[operating systems]
c:cmdconsBOOTSECT.DAT=»Microsoft Windows Recovery Console» /cmdcons
multi(0)disk(0)rdisk(0)partition(1)WINDOWS=»Microsoft Windows XP Home Edition RU» /noexecute=optin /fastdetectCurrent=7 Default=7 Failed=6 LastKnownGood=8 Sets=1,2,3,4,5,6,7,8
— — End Of File — — 77B7A852391856F7AD80400B283F232Elog.txt
Logfile of random’s system information tool 1.06 (written by random/random)
Run by йцу at 2009-12-28 16:00:43
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 166 GB (54%) free of 305 GB
Total RAM: 2047 MB (78% free)======Scheduled tasks folder======
C:WINDOWStasksGoogleUpdateTaskMachineCore.job
C:WINDOWStasksGoogleUpdateTaskMachineUA.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{17939A30-18E2-471E-9D3A-56DD725F1215} — ReGet Bar — C:Program FilesReGet SoftwareReGet DeluxeIEBar.dll [2008-07-04 217088]
{724d43a0-0d85-11d4-9908-00400523e39a} — &RoboForm — C:Program FilesSiber SystemsAI RoboFormroboform.dll [2009-05-04 4903992][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2009-03-27 13684736]
«APVXDWIN»=C:Program FilesPanda SecurityPanda Antivirus Pro 2010APVXDWIN.EXE [2009-09-25 906496]
«SCANINICIO»=C:Program FilesPanda SecurityPanda Antivirus Pro 2010Inicio.exe [2009-08-12 56064][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2008-04-14 15360]
«DAEMON Tools Lite»=C:Program FilesDAEMON Tools LiteDTLite.exe [2009-10-30 369200][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAVP]
C:Program FilesKaspersky LabKaspersky Internet Security 2009avp.exe [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMAgent]
C:Program FilesMail.RuAgentMAgent.exe [2008-09-07 4412920][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregMSMSGS]
C:Program FilesMessengermsmsgs.exe [2008-04-14 1695232][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregQIP.Online]
C:Program FilesQIP.Onlineqiponline.exe auto_start [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRGSC]
C:Program FilesRockstar GamesRockstar Games Social ClubRGSCLauncher.exe /silent [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRoboForm]
C:Program FilesSiber SystemsAI RoboFormRoboTaskBarIcon.exe [2009-05-04 144448][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregwmagent.exe]
C:Program FilesWebMoney Agentwmagent.exe [2008-10-01 209376][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregYandexDesktopSearch]
C:Program FilesYandexDesktopyandesk.exe [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregYupdate!]
C:Program FilesCommon FilesYandexYupdateyupdate.exe [2007-12-10 457992][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^Adobe Reader Speed Launch.lnk]
C:PROGRA~1AdobeREADER~1.0ReaderREADER~1.EXE [2006-10-23 40048][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^Adobe Reader Synchronizer.lnk]
C:PROGRA~1AdobeREADER~1.0ReaderADOBEC~1.EXE [2006-10-22 734872][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^All Users^Главное меню^Программы^Автозагрузка^Windows Search.lnk]
C:PROGRA~1WI459E~1WINDOW~1.EXE /startup [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^йцу^Главное меню^Программы^Автозагрузка^is-IL20V.lnk]
C:Documents and SettingsйцуРабочий столVirus Removal Tool1is-IL20Vstartup.exe C:Documents and SettingsйцуРабочий столVirus Removal Tool1is-IL20Vis-IL20V.exe -gui -bl [][HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupfolderC:^Documents and Settings^йцу^Главное меню^Программы^Автозагрузка^siszyd32.exe]
C:Documents and SettingsйцуГлавное менюПрограммыАвтозагрузкаsiszyd32.exe [][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyavldr]
C:WINDOWSsystem32avldr.dll [2008-03-18 58672][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{16664848-0E00-11D2-8059-000000000000}»= []
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=C:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll [2009-02-12 2217848][HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalPskSvcRetail]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalVIDEO]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkVIDEO]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetwork{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{141cc06a-9bd0-11de-b864-00304f33a73c}]
shellAutoRuncommand — I:setup.exe[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{e20b11cd-ce92-11dd-b617-00304f33a73c}]
shellAutoRuncommand — I:setup.exe[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{e660eb5b-5766-11dd-b47b-00304f33a73c}]
shellAutoRuncommand — I:nba2k9setup.exe======File associations======
.ini — open — C:WINDOWSSYSTEM32NOTEPAD.EXE %1
.js — open — C:PROGRA~1PANDAS~1PANDAA~1PavScrip.exe «%1» %*
.txt — open — C:WINDOWSSYSTEM32NOTEPAD.EXE %1
.vbs — open — C:PROGRA~1PANDAS~1PANDAA~1PavScrip.exe «%1» %*======List of files/folders created in the last 1 months======
2009-12-28 16:00:15 —-D—- C:rsit
2009-12-28 13:59:20 —-A—- C:WINDOWSsystem32HHActiveX.dll
2009-12-28 13:59:17 —-A—- C:WINDOWSsystem32TpUtil.dll
2009-12-28 13:59:17 —-A—- C:WINDOWSsystem32SYSTOOLS.DLL
2009-12-28 13:59:17 —-A—- C:WINDOWSsystem32PavLspHook.dll
2009-12-28 13:59:16 —-D—- C:WINDOWSsystem32PAV
2009-12-28 13:59:16 —-D—- C:Program FilesPanda Security
2009-12-28 13:59:16 —-D—- C:Documents and SettingsйцуApplication DataPanda Security
2009-12-28 13:59:16 —-D—- C:Documents and SettingsAll UsersApplication DataPanda Security
2009-12-28 13:59:16 —-A—- C:WINDOWSsystem32PavSHook.dll
2009-12-28 13:59:16 —-A—- C:WINDOWSsystem32pavipc.dll
2009-12-28 13:59:16 —-A—- C:WINDOWSsystem32avldr.dll
2009-12-28 13:57:59 —-D—- C:Program FilesCommon FilesPanda Security
2009-12-28 12:39:28 —-D—- C:Program FilesSecurity Task Manager
2009-12-28 12:02:44 —-D—- C:Documents and SettingsAll UsersApplication DataSecTaskMan
2009-12-28 10:57:26 —-D—- C:Program FilesNeed For Speed.Shift.v 1.02
2009-12-25 19:08:17 —-D—- C:Program FilesArtMoney
2009-12-25 12:32:39 —-D—- C:Documents and SettingsAll UsersApplication DataFirefly Studios
2009-12-25 12:26:09 —-D—- C:Program Files1C
2009-12-23 19:51:40 —-D—- C:Documents and SettingsйцуApplication DataGoogle
2009-12-23 19:48:57 —-D—- C:Program FilesGoogle
2009-12-22 22:00:06 —-HDC—- C:WINDOWS$NtUninstallKB973904$
2009-12-22 21:59:55 —-HDC—- C:WINDOWS$NtUninstallKB955759$
2009-12-22 21:59:45 —-HDC—- C:WINDOWS$NtUninstallKB974392$
2009-12-22 21:59:35 —-HDC—- C:WINDOWS$NtUninstallKB974318$
2009-12-22 21:59:25 —-HDC—- C:WINDOWS$NtUninstallKB971737$
2009-12-22 21:59:15 —-HDC—- C:WINDOWS$NtUninstallKB970430$
2009-12-22 21:59:07 —-HDC—- C:WINDOWS$NtUninstallKB976098-v2$
2009-12-22 21:58:48 —-HDC—- C:WINDOWS$NtUninstallKB973687$
2009-12-22 20:24:10 —-D—- C:Program FilesInCode Solutions
2009-12-22 17:23:12 —-D—- C:123
2009-12-22 16:23:09 —-D—- C:Program FilesTrend Micro
2009-12-22 16:05:09 —-A—- C:123.txt
2009-12-22 15:56:15 —-D—- C:Documents and SettingsAll UsersApplication DataAgnitum
2009-12-22 14:24:31 —-D—- C:WINDOWSTEMP
2009-12-21 17:32:30 —-D—- C:WINDOWSInternet Logs
2009-12-21 16:22:42 —-D—- C:Avenger
2009-12-21 16:22:42 —-A—- C:avenger.txt
2009-12-21 11:41:35 —-D—- C:Program FilesDrWeb
2009-12-21 11:41:35 —-D—- C:Documents and SettingsAll UsersApplication DataDoctor Web
2009-12-21 09:48:30 —-A—- C:WINDOWSsystem32fjhdyfhsn.bat
2009-12-13 10:53:34 —-D—- C:Program FilesDAEMON Tools Lite
2009-12-13 10:34:01 —-A—- C:WINDOWSsystem32XAudio2_5.dll
2009-12-13 10:34:01 —-A—- C:WINDOWSsystem32xactengine3_5.dll
2009-12-13 10:34:00 —-A—- C:WINDOWSsystem32d3dcsx_42.dll
2009-12-13 10:34:00 —-A—- C:WINDOWSsystem32D3DCompiler_42.dll
2009-12-13 10:33:59 —-A—- C:WINDOWSsystem32D3DX9_42.dll
2009-12-13 10:33:59 —-A—- C:WINDOWSsystem32d3dx11_42.dll
2009-12-13 10:33:59 —-A—- C:WINDOWSsystem32d3dx10_42.dll
2009-12-13 10:33:59 —-A—- C:WINDOWSsystem32d3dx10_41.dll
2009-12-13 10:33:59 —-A—- C:WINDOWSsystem32D3DCompiler_41.dll
2009-12-13 10:33:58 —-A—- C:WINDOWSsystem32XAudio2_4.dll
2009-12-13 10:33:58 —-A—- C:WINDOWSsystem32XAPOFX1_3.dll
2009-12-13 10:33:58 —-A—- C:WINDOWSsystem32xactengine3_4.dll
2009-12-13 10:33:58 —-A—- C:WINDOWSsystem32D3DX9_41.dll
2009-12-13 10:33:57 —-A—- C:WINDOWSsystem32X3DAudio1_6.dll
2009-12-13 10:33:57 —-A—- C:WINDOWSsystem32D3DX9_40.dll
2009-12-13 10:33:57 —-A—- C:WINDOWSsystem32d3dx10_40.dll
2009-12-13 10:33:57 —-A—- C:WINDOWSsystem32D3DCompiler_40.dll
2009-12-13 10:33:56 —-A—- C:WINDOWSsystem32XAudio2_3.dll
2009-12-13 10:33:56 —-A—- C:WINDOWSsystem32XAudio2_2.dll
2009-12-13 10:33:56 —-A—- C:WINDOWSsystem32XAPOFX1_2.dll
2009-12-13 10:33:56 —-A—- C:WINDOWSsystem32XAPOFX1_1.dll
2009-12-13 10:33:56 —-A—- C:WINDOWSsystem32xactengine3_3.dll
2009-12-13 10:33:56 —-A—- C:WINDOWSsystem32X3DAudio1_5.dll
2009-12-13 10:33:55 —-A—- C:WINDOWSsystem32xactengine3_2.dll
2009-12-13 10:33:55 —-A—- C:WINDOWSsystem32d3dx10_39.dll
2009-12-13 10:33:55 —-A—- C:WINDOWSsystem32D3DCompiler_39.dll
2009-12-13 10:33:54 —-A—- C:WINDOWSsystem32D3DX9_39.dll
2009-12-13 10:32:35 —-HD—- C:WINDOWSmsdownld.tmp======List of files/folders modified in the last 1 months======
2009-12-28 16:00:19 —-D—- C:WINDOWSPrefetch
2009-12-28 15:46:49 —-RD—- C:Program Files
2009-12-28 15:36:53 —-D—- C:Program FilesMozilla Firefox
2009-12-28 15:33:55 —-D—- C:WINDOWSsystem32CatRoot2
2009-12-28 15:33:04 —-D—- C:WINDOWSsystem32drivers
2009-12-28 15:30:47 —-D—- C:WINDOWSsystem32
2009-12-28 15:29:05 —-A—- C:WINDOWSSchedLgU.Txt
2009-12-28 14:39:42 —-D—- C:Program FilesCommon Files
2009-12-28 14:32:28 —-D—- C:WINDOWS
2009-12-28 14:26:59 —-A—- C:WINDOWSntbtlog.txt
2009-12-28 14:11:44 —-SHD—- C:WINDOWSInstaller
2009-12-28 14:00:42 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-12-28 14:00:34 —-A—- C:WINDOWSwin.ini
2009-12-28 13:59:35 —-HD—- C:WINDOWSinf
2009-12-28 13:59:16 —-HD—- C:Program FilesInstallShield Installation Information
2009-12-28 13:57:41 —-D—- C:Documents and SettingsйцуApplication DataReGet Software
2009-12-28 13:48:35 —-AD—- C:Documents and SettingsAll UsersApplication DataTEMP
2009-12-28 12:28:44 —-SD—- C:WINDOWSTasks
2009-12-28 12:21:42 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2009-12-28 12:21:36 —-D—- C:WINDOWSsystem32wbem
2009-12-28 12:21:36 —-D—- C:Program FilesWindows Desktop Search
2009-12-28 12:19:43 —-DC—- C:WINDOWSsystem32DRVSTORE
2009-12-28 12:19:42 —-D—- C:Program FilesCommon FilesApple
2009-12-28 10:43:45 —-D—- C:Documents and SettingsйцуApplication DataMxBoost
2009-12-26 22:11:19 —-D—- C:WINDOWSLhsp
2009-12-24 22:41:01 —-D—- C:Documents and SettingsйцуApplication DatauTorrent
2009-12-23 19:54:33 —-D—- C:Program FilesMaxthon2
2009-12-23 16:43:00 —-SD—- C:Documents and SettingsйцуApplication DataMicrosoft
2009-12-23 11:16:10 —-D—- C:WINDOWSspeech
2009-12-22 22:11:28 —-D—- C:Documents and SettingsAll UsersApplication DataMicrosoft Help
2009-12-22 22:03:33 —-D—- C:WINDOWSAppPatch
2009-12-22 22:01:55 —-RSD—- C:WINDOWSassembly
2009-12-22 22:00:14 —-A—- C:WINDOWSimsins.BAK
2009-12-22 22:00:05 —-HD—- C:WINDOWS$hf_mig$
2009-12-22 21:59:58 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-12-22 21:59:05 —-D—- C:WINDOWSWinSxS
2009-12-22 21:58:30 —-D—- C:Program FilesInternet Explorer
2009-12-22 21:58:21 —-D—- C:WINDOWSie8updates
2009-12-22 21:58:11 —-HDC—- C:WINDOWSie8
2009-12-22 21:58:05 —-D—- C:WINDOWSsystem32CatRoot
2009-12-22 21:56:01 —-D—- C:WINDOWSsystem32ru-ru
2009-12-22 21:46:40 —-SD—- C:WINDOWSDownloaded Program Files
2009-12-22 21:36:03 —-D—- C:Program FilesCommon FilesInstallShield
2009-12-22 21:36:00 —-D—- C:WTK22
2009-12-22 21:01:25 —-D—- C:WINDOWSsystem32TVUAx
2009-12-22 21:00:11 —-D—- C:WINDOWSsystem32Tools
2009-12-22 14:48:57 —-D—- C:Program FilesModern Warfare 2
2009-12-22 14:47:53 —-D—- C:SATA D
2009-12-22 14:46:13 —-A—- C:WINDOWSavisplitter.INI
2009-12-22 14:09:42 —-D—- C:WINDOWSHelp
2009-12-21 17:07:28 —-D—- C:WINDOWSsystem32config
2009-12-21 10:41:13 —-RASH—- C:boot.ini
2009-12-21 10:41:13 —-A—- C:WINDOWSsystem.ini
2009-12-17 17:23:01 —-D—- C:Program FileseMule
2009-12-17 10:40:55 —-D—- C:Program FilesHtmlReader
2009-12-16 00:17:03 —-D—- C:Documents and SettingsйцуApplication DataWebMoney
2009-12-13 20:44:24 —-A—- C:WINDOWSsystem32rmc_rtspdl.dll
2009-12-13 20:44:24 —-A—- C:WINDOWSsystem32rmc_fixasf.exe
2009-12-13 20:44:17 —-A—- C:WINDOWSsystem32AUDIOGENIE2.DLL
2009-12-13 10:55:52 —-D—- C:Documents and SettingsйцуApplication DataDAEMON Tools Lite
2009-12-13 10:53:22 —-D—- C:Documents and SettingsAll UsersApplication DataDAEMON Tools Lite
2009-12-13 10:46:18 —-D—- C:WINDOWSsystem32DirectX
2009-12-13 10:36:20 —-D—- C:Program FilesSega
2009-12-03 18:54:16 —-D—- C:Program FilesJava
2009-12-01 23:06:19 —-A—- C:WINDOWSsystem32MRT.exe======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-14 40704]
R1 is-45NDGdrv;is-45NDGdrv; C:WINDOWSsystem32DRIVERS81964318.sys [2008-07-08 148496]
R1 is-IL20Vdrv;is-IL20Vdrv; C:WINDOWSsystem32DRIVERS72241485.sys [2008-07-08 148496]
R1 kbdhid;Keyboard HID Driver; C:WINDOWSsystem32DRIVERSkbdhid.sys [2008-04-14 14720]
R1 SandBox;SandBox; C:WINDOWSsystem32DRIVERSSandBox.sys [2008-03-12 449184]
R1 ShldDrv;Panda File Shield Driver; C:WINDOWSSystem32DRIVERSShlDrv51.sys [2008-03-04 41144]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2006-03-02 12032]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; ??C:Program FilesCyberLinkPowerDVD800.fcl []
R2 PAVDRV;pavdrv; C:WINDOWSsystem32DRIVERSpavdrv51.sys [2008-04-28 84024]
R2 PavProc;Panda Process Protection Driver; ??C:WINDOWSsystem32DRIVERSPavProc.sys []
R3 AvFlt;Antivirus Filter Driver; C:WINDOWSsystem32driversav5flt.sys []
R3 CnxEtP;Conexant AccessRunner USB ADSL LAN Adapter Filter Driver; C:WINDOWSsystem32DRIVERSCnxEtP.sys [2002-08-19 117388]
R3 CnxEtU;Conexant AccessRunner USB ADSL Interface Device Driver; C:WINDOWSsystem32DRIVERSCnxEtU.sys [2002-08-19 554948]
R3 CnxTgN;Conexant AccessRunner USB ADSL LAN Adapter Driver; C:WINDOWSsystem32DRIVERSCnxTgN.sys [2002-08-22 102822]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2008-04-17 4707328]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2009-03-27 6280416]
R3 PavSRK.sys;PavSRK.sys; ??C:WINDOWSsystem32PavSRK.sys []
R3 PavTPK.sys;PavTPK.sys; ??C:WINDOWSsystem32PavTPK.sys []
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2008-04-13 32128]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2008-04-13 59520]
R3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-13 20608]
S2 lirsgt;lirsgt; C:WINDOWSsystem32DRIVERSlirsgt.sys []
S3 afw;Agnitum firewall driver; C:WINDOWSsystem32DRIVERSafw.sys []
S3 aqotvfom;aqotvfom; C:WINDOWSsystem32driversaqotvfom.sys []
S3 ASWFilt;ASWFilt; C:WINDOWSsystem32FiltASWFilt.dll []
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:WINDOWSsystem32DRIVERSNVENETFD.sys [2006-11-27 58368]
S3 nvnetbus;NVIDIA Network Bus Enumerator; C:WINDOWSsystem32DRIVERSnvnetbus.sys [2006-11-27 19968]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:WINDOWSsystem32DRIVERSpccsmcfd.sys [2007-09-17 21632]
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtenicxp.sys [2008-01-04 105856]
S3 upperdev;upperdev; C:WINDOWSsystem32DRIVERSusbser_lowerflt.sys []
S3 usbohci;Драйвер минипорта Microsoft USB открытого хост-контроллера; C:WINDOWSsystem32DRIVERSusbohci.sys [2008-04-13 17152]
S3 vaxscsi;vaxscsi; C:WINDOWSSystem32Driversvaxscsi.sys []
S3 Wdf01000;Wdf01000; C:WINDOWSsystem32DRIVERSWdf01000.sys [2006-11-02 492000]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S4 dwshd;dwshd; C:WINDOWSSystem32driversdwshd.sys []
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []
S4 sfc;sfc; C:WINDOWSsystem32driverssfc.sys []
S4 sr;Драйвер фильтра восстановления системы; C:WINDOWSsystem32DRIVERSsr.sys [2008-04-14 73472]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Gwmsrv;Panda Goodware Cache Manager; C:WINDOWSsystem32svchost -k Panda []
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2009-03-27 163908]
R2 Panda Software Controller;Panda Software Controller; C:Program FilesPanda SecurityPanda Antivirus Pro 2010PsCtrls.exe [2009-08-10 173312]
R2 PAVFNSVR;Panda Function Service; C:Program FilesPanda SecurityPanda Antivirus Pro 2010PavFnSvr.exe [2009-08-10 169216]
R2 PavPrSrv;Panda Process Protection Service; C:Program FilesCommon FilesPanda SecurityPavShldpavprsrv.exe [2008-02-04 62768]
R2 PAVSRV;Panda On-Access Anti-Malware Service; C:Program FilesPanda SecurityPanda Antivirus Pro 2010pavsrv51.exe [2009-09-17 291584]
R2 PSIMSVC;Panda IManager Service; C:Program FilesPanda SecurityPanda Antivirus Pro 2010PsImSvc.exe [2008-06-19 108288]
R2 PskSvcRetail;Panda PSK service; C:Program FilesPanda SecurityPanda Antivirus Pro 2010PskSvc.exe [2009-08-25 28928]
R2 TPSrv;Panda TPSrv; C:Program FilesPanda SecurityPanda Antivirus Pro 2010TPSrv.exe [2009-04-17 157440]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE [2009-03-30 1533808]
S2 acssrv;Agnitum Client Security Service; C:PROGRA~1AgnitumOUTPOS~1acs.exe []
S2 gupdate;Служба Google Update (gupdate); C:Program FilesGoogleUpdateGoogleUpdate.exe [2009-12-23 135664]
S3 aspnet_state;Служба состояний ASP.NET; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE []
S3 ServiceLayer;ServiceLayer; C:Program FilesPC Connectivity SolutionServiceLayer.exe [2008-04-07 430592]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]
EOF
