|
Crunk Boy
|
|
| 1 | |
Лечение вирусов20.12.2010, 23:15. Показов 4414. Ответов 1
Метки нет (Все метки)
лог rshit
info.txt logfile of random's system information tool 1.08 2010-12-20 22:13:53
======Uninstall list====== -->MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA} -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL 1.0-->"C:\Program Files\Mafia - Modern Mod\Mafia\unins000.exe" 7-Zip 4.65-->MsiExec.exe /I{23170F69-40C1-2701-0465-000001000000} Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB} Adobe Reader 9.4.1-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A94000000001} AIMP2-->C:\Program Files\AIMP2\Uninstall.exe Antares Auto-Tune Evo VST-->MsiExec.exe /X{FFF74EC9-1FF4-4456-99E3-4F05129F4FAB} Antares Autotune VST RTAS TDM v5.08-->"C:\Program Files\Antares Audio Technologies\unins000.exe" Apple Application Support-->MsiExec.exe /I{DAEAFD68-BB4A-4507-A241-C8804D2EA66D} Apple Mobile Device Support-->MsiExec.exe /I{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887} Apple Software Update-->MsiExec.exe /I{C41300B9-185D-475E-BFEC-39EF732F19B1} Bonjour-->MsiExec.exe /X{FF1C31AE-0CDC-40CE-AB85-406F8B70D643} CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Conduit Engine-->C:\Program Files\ConduitEngine\ConduitEngineUninstall.exe engine Counter-Strike Source-->"C:\Games\Counter-Strike Source\unins000.exe" Download Master version 5.6.6.1207-->"C:\Program Files\Download Master\unins000.exe" EA Download Manager UI-->msiexec /qb /x {E17141A6-211D-5854-61D9-69827A430D82} EA Download Manager UI-->MsiExec.exe /I{E17141A6-211D-5854-61D9-69827A430D82} EA Download Manager-->C:\Program Files\Electronic Arts\EADM\EADMUninstall.exe EAX Unified-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\EAX Unified\Uninst.isu" F1 2010-->MsiExec.exe /I{434D0831-3E0C-4D03-A5D4-5E1000008400} F1 2010-->MsiExec.exe /X{434D0831-3E0C-4D03-A5D4-5E1000008400} FIFA 10-->MsiExec.exe /X{11202615-E557-4ECF-9B86-F59C81E52909} Firebird 2.1.3.18185 (Win32)-->"C:\Program Files\Firebird\Firebird_2_1\unins000.exe" FL Studio 9-->C:\Program Files\Image-Line\FL Studio 9\uninstall.exe Foxit Reader 3.0 Build 1817-->C:\Program Files\Foxit Reader\Uninstall.exe Gta San Andreas Sunny Mod (2010)-->"D:\Gta San Andreas Sunny Mod\Uninstall\unins000.exe" GTA San Andreas-->"C:\Games\GTA San Andreas\unins000.exe" Guard.Mail.ru-->"C:\Program Files\Mail.Ru\Guard\GuardMailRu.exe" /uninstall Hardcore-->C:\Program Files\Image-Line\Hardcore\uninstall.exe Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" IL Download Manager-->C:\Program Files\Image-Line\Downloader\uninstall.exe Interlok driver setup x32-->MsiExec.exe /X{25613C10-27D2-410B-942B-D922D5C3A7BE} iPod Updater 2004-11-15-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{06E73C0B-7DE7-4F41-860B-587033B75BD9} /l1033 iTunes-->MsiExec.exe /I{2CE5A2E7-3437-4CE7-BCF4-85ED6EEFF9E4} Java(TM) 6 Update 16-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016FF} Kaspersky Internet Security 2010-->MsiExec.exe /I{9D8B0949-7C47-476F-9F06-F900D3B078EA} Kaspersky Internet Security 2010-->MsiExec.exe /I{9D8B0949-7C47-476F-9F06-F900D3B078EA} K-Lite Mega Codec Pack 5.1.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" Mafia - Modern Mod-->"C:\Program Files\Mafia - Modern Mod\unins000.exe" Mail.Ru Спутник 2.3.0.299-->"C:\Program Files\Mail.Ru\Sputnik\MailRuSputnik.exe" uninstall Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft .NET Framework 1.1 Russian Language Pack-->MsiExec.exe /X{2BB372D9-52B4-410A-BC1A-FEAB63181EEF} Microsoft .NET Framework 1.1 Security Update (KB2416447)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall .msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Language Pack - RUS-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - RUS\install.exe Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{FD052FB9-FE90-4438-B355-15EDC89D8FB1} Microsoft Office - профессиональный выпуск версии 2003-->MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7} Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E} Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13} Mozilla Firefox 3.5.3-->C:\Program Files\Mozilla Firefox\Uninstall.exe MSI to redistribute MS VS2005 CRT libraries-->MsiExec.exe /I{A8D93648-9F7F-407D-915C-62044644C3DA} MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44} MSXML 4.0 SP3 Parser-->MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94} MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08} Need For Speed Carbon-->"C:\Games\Need for Speed Carbon\unins000.exe" Need for Speed(TM) Hot Pursuit-->MsiExec.exe /X{83A606F5-BF6F-42ED-9F33-B9F74297CDED} Need for Speed™ ProStreet-->C:\Games\NFSPro\unwise.exe Need for Speed™ ProStreet-->C:\Games\NFSPro\UNWISE.EXE C:\Games\NFSPro\INSTALL.LOG Need for Speed™ SHIFT-->MsiExec.exe /X{BBF0A67B-5DBA-452F-9D2E-6F168BC226E4} Need for Speed™ Undercover-->MsiExec.exe /X{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88} Nero Lite_9.4.26_RU-Board Edition-->C:\Program Files\Nero\Nero9\uninst.exe NFS Most Wanted Porsche Cayenne Mod v1.00-->C:\Documents and Settings\Admin\Рабочий стол\need for speed most wanted\Uninstall.exe NFS MW Hot Pursuit Mod 2.00-->C:\Documents and Settings\Admin\Рабочий стол\need for speed most wanted\NFS MW Hot Pursuit Mod\Uninstall.exe NFS Underground 2 Samargil Remake 1.00-->C:\Program Files\NFS Underground 2 Samargil Remake\Uninstall.exe NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI NVIDIA PhysX-->MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA} OpenAL-->"C:\Program Files\OpenAL\OpenALwEAX.exe" /U Opera 11.00-->MsiExec.exe /X{1EE88B84-7BE5-4FB5-8DEA-B81D5409D62E} Orbit Downloader-->"C:\Program Files\Orbitdownloader\unins000.exe" Paint.NET v 3.36-->rundll32.exe advpack.dll,LaunchINFSection PaintDN.inf,Uninstall PoiZone-->C:\Program Files\Image-Line\PoiZone\uninstall.exe QIP 8095-->C:\Program Files\QIP\Uninstall.exe QuickStores-Toolbar 1.1.0-->"C:\Documents and Settings\Admin\Application Data\QuickStoresToolbar\unins000.exe" QuickTime-->MsiExec.exe /I{E7004147-2CCA-431C-AA05-2AB166B9785D} Rapture3D 2.4.4 Game-->"C:\Program Files\BRS\unins000.exe" Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetu p "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\SETUP.EXE" -l0x19 -removeonly Safari-->MsiExec.exe /I{20ACB2F8-3BCA-45A8-80A2-9D3CB5C25F43} Sawer-->C:\Program Files\Image-Line\Sawer\uninstall.exe Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT="" Skype-->C:\Program Files\Skype\Uninstall.exe Skype™ 5.0-->MsiExec.exe /X{E633D396-5188-4E9D-8F6B-BFB8BF3467E8} Split/Second-->"C:\Program Files\InstallShield Installation Information\{28526951-55EF-4901-A0CA-B9AC966D1DD1}\setup.exe" -runfromtemp -l0x0409 -removeonly Terrorist Takedown 3-->C:\Program Files\InstallShield Installation Information\{E8067903-638D-4F65-9010-D76AA6FA5DCE}\setup.exe -runfromtemp -l0x0019 -removeonly Test Drive Unlimited - Megapack-->"C:\Program Files\Test Drive Unlimited - Megapack\unins000.exe" Toxic Biohazard-->C:\Program Files\Image-Line\Toxic Biohazard\uninstall.exe UltraISO Premium V9.35-->"C:\Program Files\UltraISO\unins000.exe" Unlocker 1.9.0-->C:\Program Files\Unlocker\uninst.exe Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" uTorrent 1.8.4.16442-->C:\Program Files\uTorrent\Uninstall.exe Utubebario Toolbar-->C:\PROGRA~1\UTUBEB~1\UNWISE.EXE /U C:\PROGRA~1\UTUBEB~1\INSTALL.LOG Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG Vista Drive Icon-->rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\VistaDrv.inf,Uninstall Vista Games 1.3 XP-->C:\Program Files\Vista Games\uninst.exe VKLife 1.9.1-->"C:\VKLife\unins000.exe" VoiceOver Kit-->MsiExec.exe /I{FB26A501-6BA6-459B-89AA-9736730752FB} Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840} Yahoo! Companion-->rundll32.exe C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\YCOMP5~1.DLL,DllCommand ui Архиватор WinRAR-->C:\Program Files\WinRAR\uninstall.exe Восстановление английской версии программы-->C:\Program Files\Image-Line\FL Studio 9\UninstallRus.exe Пакет драйверов Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /d /u C:\WINDOWS\system32\DRVSTORE\amdk8_A8D26169E6EDA9205D39A3918FEA7EFFFE870B0A\amdk 8.inf Пакет обеспечения совместимости для выпуска 2007 системы Microsoft Office-->MsiExec.exe /X{90120000-0020-0419-0000-0000000FF1CE} ПДД. Учебное пособие для автошкол. Вождение-->"C:\Program Files\RG Packers\ПДД. Учебное пособие для автошкол. Вождение\unins000.exe" Сократ Персональный 4.1-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9CD789E2-B7CE-11D5-B7E9-00A0C9449F99}\setup.exe" Яндекс.Бар 5.0 для Internet Explorer-->MsiExec.exe /X{B1D8E65E-B8A2-48E4-90CF-34151C37EB45} ======Security center information====== AV: Kaspersky Internet Security (outdated) FW: Kaspersky Internet Security ======System event log====== Computer Name: MICROSOF-A1C66D Event Code: 7023 Message: Служба "Сервер" завершена из-за ошибки Не удается найти указанный файл. Record Number: 24221 Source Name: Service Control Manager Time Written: 20101211190337.000000+180 Event Type: error User: Computer Name: MICROSOF-A1C66D Event Code: 7009 Message: Таймаут (30000 мс) ожидания для подключения службы ICQ Service. Record Number: 24220 Source Name: Service Control Manager Time Written: 20101211190337.000000+180 Event Type: error User: Computer Name: MICROSOF-A1C66D Event Code: 8017 Message: Сбой при запуске обозревателя сети, так как зависимая служба 'LanmanServer' имеет недопустимое состояние 3. Состояние Значение 1 Служба остановлена 2 Ожидание запуска 3 Ожидание остановки 4 Выполнение 5 Ожидание возобновления 6 Ожидание приостановки 7 Приостановка Record Number: 24219 Source Name: BROWSER Time Written: 20101211190337.000000+180 Event Type: error User: Computer Name: MICROSOF-A1C66D Event Code: 3095 Message: Этот компьютер является членом рабочей группы, а не домена. В данном случае нет необходимости запускать службу Netlogon. Record Number: 24218 Source Name: NETLOGON Time Written: 20101211190336.000000+180 Event Type: error User: Computer Name: MICROSOF-A1C66D Event Code: 12 Message: Устройство 'mkdrv' (Root\LEGACY_MKDRV\0000) было отключено из системы без предварительной подготовки. Record Number: 24208 Source Name: PlugPlayManager Time Written: 20101211181303.000000+180 Event Type: error User: =====Application event log===== Computer Name: MICROSOF-A1C66D Event Code: 100 Message: 232: ERROR: read_msg errno 10054 (Удаленный хост принудительно разорвал существующее подключение.) Record Number: 3357 Source Name: Bonjour Service Time Written: 20101030192036.000000+240 Event Type: error User: Computer Name: MICROSOF-A1C66D Event Code: 1517 Message: Реестр пользователя MICROSOF-A1C66D\Admin был сохранен в то время, как приложение или служба продолжали использовать его во время выхода из системы. Используемая реестром пользователя память не была освобождена. Реестр будет выгружен, когда он не будет использоваться. Возможная причина - службы, выполняемые от имени пользователя. Попробуйте изменить настройку служб и задать их выполнение с учетными записями LocalService или NetworkService. Record Number: 3247 Source Name: Userenv Time Written: 20101026005809.000000+240 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: MICROSOF-A1C66D Event Code: 100 Message: 232: ERROR: read_msg errno 10054 (Удаленный хост принудительно разорвал существующее подключение.) Record Number: 3246 Source Name: Bonjour Service Time Written: 20101026005748.000000+240 Event Type: error User: Computer Name: MICROSOF-A1C66D Event Code: 100 Message: 232: ERROR: read_msg errno 10054 (Удаленный хост принудительно разорвал существующее подключение.) Record Number: 3068 Source Name: Bonjour Service Time Written: 20101019214311.000000+240 Event Type: error User: Computer Name: MICROSOF-A1C66D Event Code: 1524 Message: Windows не удалось выгрузить файл классов из реестра - он используется другими приложениями или службами. Файл будет выгружен когда он не будет использоваться. Record Number: 3055 Source Name: Userenv Time Written: 20101019000517.000000+240 Event Type: warning User: MICROSOF-A1C66D\Admin ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System3 2\Wbem;C:\Program Files\QuickTime\QTSystem\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=16 "PROCESSOR_IDENTIFIER"=x86 Family 16 Model 2 Stepping 3, AuthenticAMD "PROCESSOR_REVISION"=0203 "NUMBER_OF_PROCESSORS"=3 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "asl.log"=Destination=file;OnFirstLog=command,environment,parent "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip -----------------EOF----------------- Logfile of random's system information tool 1.08 (written by random/random) Run by Admin at 2010-12-20 22:13:49 Microsoft Windows XP Professional Service Pack 3 System drive C: has 10 GB (4%) free of 238 GB Total RAM: 2046 MB (76% free) HijackThis download failed ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}] Octh Class - C:\Program Files\Orbitdownloader\orbitcth.dll [2010-08-30 237644] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}] Yahoo! Companion BHO - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll [2005-04-13 327748] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}] QuickStores-Toolbar - C:\WINDOWS\system32\mscoree.dll [2009-11-07 297808] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-10-18 3908192] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58beca16-cae6-4b7a-a0e8-153d0cbba63a}] MovieBario Toolbar - C:\Program Files\Utubebario\tbUtu0.dll [2010-10-18 3908192] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll [2009-10-20 68112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}] MailRuBHO Class - C:\Program Files\Mail.Ru\Sputnik\MailRuSputnik.dll [2010-12-11 1243320] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9961627E-4059-41B4-8E0E-A7D6B3854ADF}] IE 4.x-6.x BHO for Download Master - C:\PROGRA~1\DOWNLO~1\dmiehlp.dll [2009-04-16 158208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-15 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll [2009-10-20 268816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-15 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {EF99BD32-C1FB-11D2-892F-0090271D4F88} - &Yahoo! Companion - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll [2005-04-13 327748] {91397D20-1446-11D4-8AF4-0040CA1127B6} - Яндекс.Бар - C:\Program Files\Yandex\YandexBarIE\yndbar.dll [2010-06-01 10336584] {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} - DM Bar - C:\Program Files\Download Master\dmbar.dll [2007-11-26 180224] {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Grab Pro - C:\Program Files\Orbitdownloader\GrabPro.dll [2010-08-30 684032] {58beca16-cae6-4b7a-a0e8-153d0cbba63a} - MovieBario Toolbar - C:\Program Files\Utubebario\tbUtu0.dll [2010-10-18 3908192] {30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-10-18 3908192] {09900DE8-1DCA-443F-9243-26FF581438AF} - Спутник@Mail.Ru - C:\Program Files\Mail.Ru\Sputnik\MailRuSputnik.dll [2010-12-11 1243320] {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - QuickStores-Toolbar - C:\WINDOWS\system32\mscoree.dll [2009-11-07 297808] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-08-17 86016] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-08-17 13877248] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-08-20 16384512] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2010-09-24 421160] "GameXL"=C:\Program Files\Game Accelerator\gamexl.exe [2005-01-18 92160] "AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2010-09-08 47904] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] "Guard.Mail.ru.gui"=C:\Program Files\Mail.Ru\Guard\GuardMailRu.exe [2010-12-11 1038016] "UnlockerAssistant"=C:\Program Files\Unlocker\UnlockerAssistant.exe [2010-07-04 17408] "AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-10-20 340456] "rundll32.exe"=ldr.dll,Infiltrate [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "VistaIcon"=C:\Program Files\VistaDriveIcon\VistaDrv.exe [2008-01-02 132096] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2009-09-13 30208] "Download Master"=C:\Program Files\Download Master\dmaster.exe [2010-06-04 3800384] "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696] "EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent [] "uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-09-25 328056] "RGSC"=C:\Program Files\Rockstar Games\Grand Theft Auto IV\Rockstar Games Social Club\RGSCLauncher.exe /silent [] "PCHDPlayer"=C:\Program Files\pchd\PCHDPlayer.exe [] C:\Documents and Settings\All Users\Главное меню\Программы\Автозагрузка Orbit.lnk - C:\Program Files\Orbitdownloader\orbitdm.exe C:\Documents and Settings\Admin\Главное меню\Программы\Автозагрузка Punto Switcher.lnk - C:\Program Files\Yandex\Punto Switcher\punto.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\K ASPER~1\kloehk.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] C:\WINDOWS\system32\klogon.dll [2009-10-20 219664] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectD elayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2008-05-18 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoSharedDocuments"=1 "NoSMConfigurePrograms"=1 "MemCheckBoxInRunDlg"=1 "NoStrCmpLogical"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 "NoChangeAnimation"=1 "NoStrCmpLogical"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\fir ewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2r es.dll,-22019" "C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\Disney Interactive Studios\Split Second\SplitSecond.exe"="C:\Program Files\Disney Interactive Studios\Split Second\SplitSecond.exe:*:Enabled:Split/Second" "C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe"="C:\Program Files\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe:*:Enabled:Battlefield: Bad Company™ 2" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Служба Bonjour" "C:\Program Files\Orbitdownloader\orbitdm.exe"="C:\Program Files\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit" "C:\Program Files\Orbitdownloader\orbitnet.exe"="C:\Program Files\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\Codemasters\F1 2010\F1_2010_game.exe"="C:\Program Files\Codemasters\F1 2010\F1_2010_game.exe:*:Enabled:F1 2010" "C:\Program Files\Rockstar Games\Grand Theft Auto IV\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club" "C:\Program Files\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe"="C:\Program Files\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit" "C:\Program Files\Mail.Ru\Sputnik\SputnikFlashPlayer.exe"="C:\Program Files\Mail.Ru\Sputnik\SputnikFlashPlayer.exe:*:Enabled:Sputnik@Mail.Ru flash player" "C:\Program Files\Mail.Ru\Sputnik\SputnikHelper.exe"="C:\Program Files\Mail.Ru\Sputnik\SputnikHelper.exe:*:Enabled:Sputnik@Mail.Ru helper object" "C:\Program Files\ICQLite\ICQ.exe"="C:\Program Files\ICQLite\ICQ.exe:*:Enabled:ICQ Lite" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\fir ewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2r es.dll,-22019" ======File associations====== .reg - open - "regedit.exe" "%1" ======List of files/folders created in the last 3 months====== 2010-12-20 22:13:49 ----D---- C:\rsit 2010-12-20 22:13:49 ----D---- C:\Program Files\trend micro 2010-12-20 22:09:03 ----D---- C:\Documents and Settings\Admin\Application Data\Help 2010-12-20 22:01:56 ----ASH---- C:\hiberfil.sys 2010-12-20 21:51:09 ----D---- C:\WINDOWS\pss 2010-12-20 15:56:50 ----A---- C:\WINDOWS\ksmt.sys 2010-12-18 19:30:53 ----A---- C:\WINDOWS\ntbtlog.txt 2010-12-18 17:50:18 ----D---- C:\TEMP 2010-12-18 17:50:17 ----A---- C:\WPI_Log.txt 2010-12-18 17:50:17 ----A---- C:\rb_config.js 2010-12-18 15:59:59 ----D---- C:\Program Files\Kaspersky Lab 2010-12-18 15:59:38 ----A---- C:\WINDOWS\system32\drivers\klif.sys 2010-12-18 15:58:43 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files 2010-12-18 15:55:00 ----D---- C:\WINDOWS\LastGood.Tmp 2010-12-12 19:31:59 ----D---- C:\Documents and Settings\Admin\Application Data\QuickStoresToolbar 2010-12-12 12:50:08 ----D---- C:\Program Files\Test Drive Unlimited - Megapack 2010-12-12 12:50:08 ----D---- C:\Documents and Settings\All Users\Application Data\Test Drive Unlimited 2010-12-12 12:50:08 ----D---- C:\Documents and Settings\Admin\Application Data\Test Drive Unlimited 2010-12-11 20:19:22 ----D---- C:\Downloads 2010-12-11 19:55:55 ----A---- C:\WINDOWS\system32\MRT.exe 2010-12-11 19:48:36 ----D---- C:\Program Files\MSXML 4.0 2010-12-11 19:05:35 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2010-12-11 19:01:21 ----D---- C:\Program Files\ICQ6Toolbar 2010-12-11 19:01:21 ----D---- C:\Documents and Settings\All Users\Application Data\ICQ 2010-12-11 19:01:19 ----D---- C:\Program Files\Common Files\ICQ 2010-12-11 19:01:05 ----D---- C:\Documents and Settings\Admin\Application Data\ICQ 2010-12-11 19:00:52 ----D---- C:\Program Files\ICQLite 2010-12-11 14:42:53 ----D---- C:\Program Files\Common Files\Skype 2010-12-11 14:27:14 ----D---- C:\Documents and Settings\Admin\Application Data\Malwarebytes 2010-12-11 14:27:00 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2010-12-11 14:26:59 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2010-12-11 14:26:55 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-12-11 14:26:55 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2010-12-11 00:27:44 ----D---- C:\Documents and Settings\Admin\Application Data\Opera 2010-12-11 00:27:38 ----D---- C:\Program Files\Opera 2010-11-30 18:15:58 ----D---- C:\Documents and Settings\Admin\Application Data\PriceGong 2010-11-21 21:46:21 ----A---- C:\WINDOWS\system32\ConduitEngine.tmp 2010-11-21 18:50:02 ----D---- C:\Program Files\Mail.Ru 2010-11-16 20:35:42 ----D---- C:\Documents and Settings\All Users\Application Data\EA Core 2010-11-16 20:32:55 ----D---- C:\Program Files\Common Files\Adobe AIR 2010-11-16 19:10:42 ----D---- C:\Documents and Settings\All Users\Application Data\Solidshield 2010-11-10 18:42:34 ----D---- C:\Documents and Settings\Admin\Application Data\TeamViewer 2010-10-30 10:46:39 ----D---- C:\Program Files\Common Files\Adobe 2010-10-25 20:25:50 ----A---- C:\5C8.tmp 2010-10-25 20:10:46 ----A---- C:\553.tmp 2010-10-25 16:19:49 ----D---- C:\WINDOWS\system32\xlive 2010-10-25 16:19:49 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE 2010-10-24 16:19:46 ----HD---- C:\WINDOWS\msdownld.tmp 2010-10-14 20:41:26 ----D---- C:\WINDOWS\DD1865F0AD7340FBB23E1822E02396FF.TMP 2010-10-12 19:27:18 ----D---- C:\Program Files\Conduit 2010-10-12 19:27:10 ----D---- C:\Program Files\ConduitEngine 2010-10-12 19:27:04 ----D---- C:\Program Files\Utubebario 2010-10-12 19:16:57 ----D---- C:\Program Files\Total Video Converter 2010-10-09 09:51:32 ----D---- C:\WINDOWS\Prefetch 2010-10-03 11:44:03 ----A---- C:\WINDOWS\system32\ptpusd.dll 2010-10-03 11:44:03 ----A---- C:\WINDOWS\system32\ptpusb.dll 2010-10-03 11:44:03 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys 2010-09-29 19:41:55 ----A---- C:\WINDOWS\system32\rapture3d_oal.dll 2010-09-29 19:41:55 ----A---- C:\WINDOWS\system32\mkl_blueripple.dll 2010-09-29 19:41:54 ----D---- C:\Program Files\BRS 2010-09-29 19:41:47 ----RA---- C:\WINDOWS\system32\tmp549.tmp 2010-09-29 19:41:47 ----RA---- C:\WINDOWS\system32\tmp548.tmp 2010-09-29 19:37:59 ----N---- C:\WINDOWS\system32\spmsg.dll 2010-09-29 19:24:17 ----D---- C:\Program Files\Codemasters 2010-09-28 19:56:49 ----D---- C:\Program Files\QuickTime 2010-09-28 19:39:48 ----D---- C:\Program Files\Safari 2010-09-25 21:34:36 ----D---- C:\Program Files\Game Accelerator 2010-09-24 00:55:11 ----A---- C:\WINDOWS\IE4 Error Log.txt 2010-09-23 23:16:15 ----D---- C:\Program Files\iPod 2010-09-23 23:16:12 ----D---- C:\Program Files\iTunes 2010-09-23 22:52:25 ----A---- C:\WINDOWS\system32\usbaaplrc.dll 2010-09-23 22:52:25 ----A---- C:\WINDOWS\system32\drivers\usbaapl.sys 2010-09-23 21:55:19 ----D---- C:\Program Files\EA Sports 2010-09-23 21:09:56 ----D---- C:\Program Files\Apple Software Update 2010-09-22 21:27:38 ----D---- C:\Documents and Settings\Admin\Application Data\ProgSense 2010-09-22 21:27:34 ----D---- C:\Documents and Settings\Admin\Application Data\GrabPro 2010-09-22 21:27:30 ----D---- C:\Program Files\Orbitdownloader 2010-09-22 21:27:29 ----D---- C:\Documents and Settings\Admin\Application Data\Orbit 2010-09-22 19:49:17 ----A---- C:\WINDOWS\system32\SkinMagic.dll 2010-09-22 19:49:17 ----A---- C:\WINDOWS\system32\devil.dll 2010-09-22 19:49:17 ----A---- C:\WINDOWS\system32\avisynth.dll 2010-09-22 19:49:16 ----D---- C:\WINDOWS\system32\avsplugin 2010-09-22 19:49:16 ----D---- C:\Program Files\Smallvideosoft ======List of files/folders modified in the last 3 months====== 2010-12-20 22:13:49 ----RD---- C:\Program Files 2010-12-20 22:12:44 ----D---- C:\Documents and Settings\Admin\Application Data\uTorrent 2010-12-20 22:06:14 ----AD---- C:\WINDOWS\system32 2010-12-20 22:06:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-12-20 22:02:34 ----D---- C:\WINDOWS\Temp 2010-12-20 22:02:30 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2010-12-20 22:00:48 ----RSH---- C:\boot.ini 2010-12-20 22:00:48 ----A---- C:\WINDOWS\win.ini 2010-12-20 22:00:48 ----A---- C:\WINDOWS\system.ini 2010-12-20 21:57:09 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-12-20 21:51:09 ----D---- C:\WINDOWS 2010-12-20 21:45:34 ----D---- C:\WINDOWS\system32\drivers 2010-12-20 21:38:49 ----SHD---- C:\System Volume Information 2010-12-20 21:38:49 ----D---- C:\WINDOWS\system32\Restore 2010-12-20 20:47:21 ----D---- C:\WINDOWS\system32\CatRoot2 2010-12-20 18:17:44 ----D---- C:\Documents and Settings\Admin\Application Data\Skype 2010-12-20 17:09:58 ----D---- C:\Program Files\Mozilla Firefox 2010-12-20 17:03:40 ----D---- C:\Documents and Settings\Admin\Application Data\skypePM 2010-12-20 15:56:50 ----D---- C:\WINDOWS\system32\drivers\etc 2010-12-18 22:51:15 ----D---- C:\Documents and Settings\Admin\Application Data\Apple Computer 2010-12-18 16:00:57 ----SHD---- C:\WINDOWS\Installer 2010-12-18 16:00:32 ----HD---- C:\WINDOWS\inf 2010-12-13 07:06:42 ----D---- C:\Program Files\Unlocker 2010-12-12 19:32:00 ----RSD---- C:\WINDOWS\assembly 2010-12-12 19:32:00 ----D---- C:\WINDOWS\WinSxS 2010-12-12 13:03:34 ----D---- C:\WINDOWS\system32\DirectX 2010-12-12 10:42:04 ----D---- C:\WINDOWS\Microsoft.NET 2010-12-11 20:21:06 ----SD---- C:\WINDOWS\Tasks 2010-12-11 20:03:31 ----AD---- C:\Program Files\Common Files\Microsoft Shared 2010-12-11 19:55:59 ----D---- C:\WINDOWS\Debug 2010-12-11 19:05:36 ----D---- C:\WINDOWS\Help 2010-12-11 19:01:19 ----D---- C:\Program Files\Common Files 2010-12-11 19:01:18 ----HD---- C:\Program Files\InstallShield Installation Information 2010-12-11 17:57:22 ----D---- C:\Documents and Settings\Admin\Application Data\Yandex 2010-12-11 17:51:27 ----D---- C:\WINDOWS\Driver Cache 2010-12-11 14:42:53 ----RD---- C:\Program Files\Skype 2010-12-11 14:42:48 ----D---- C:\Documents and Settings\All Users\Application Data\Skype 2010-11-22 19:07:56 ----D---- C:\Program Files\Internet Explorer 2010-11-16 20:33:15 ----D---- C:\Documents and Settings\All Users\Application Data\Electronic Arts 2010-11-16 20:32:59 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2010-11-16 20:32:59 ----D---- C:\Documents and Settings\Admin\Application Data\Adobe 2010-11-16 20:32:56 ----D---- C:\Program Files\Adobe 2010-11-16 19:51:24 ----D---- C:\Program Files\Electronic Arts 2010-11-10 19:37:03 ----D---- C:\Games 2010-11-10 17:34:58 ----RSD---- C:\WINDOWS\Fonts 2010-11-10 15:03:40 ----ASD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2010-11-06 10:55:24 ----D---- C:\WINDOWS\system32\drivers\UMDF 2010-10-28 16:56:44 ----D---- C:\VKLife 2010-10-24 17:09:10 ----D---- C:\Program Files\1C 2010-10-16 19:52:13 ----A---- C:\WINDOWS\system32\PnkBstrB.exe 2010-10-14 20:41:10 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2010-10-03 11:44:08 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-10-03 11:43:59 ----D---- C:\Documents and Settings\All Users\Application Data\Apple 2010-09-30 15:49:49 ----D---- C:\WINDOWS\system32\CatRoot 2010-09-29 19:41:47 ----A---- C:\WINDOWS\system32\wrap_oal.dll 2010-09-29 19:41:47 ----A---- C:\WINDOWS\system32\OpenAL32.dll 2010-09-29 19:38:40 ----D---- C:\WINDOWS\system32\XPSViewer 2010-09-29 19:38:37 ----D---- C:\WINDOWS\system32\en-us 2010-09-25 22:19:17 ----D---- C:\WINDOWS\Minidump 2010-09-25 19:38:26 ----D---- C:\Program Files\uTorrent 2010-09-24 02:25:07 ----D---- C:\Program Files\Common Files\InstallShield 2010-09-23 22:52:29 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-09-23 21:09:42 ----D---- C:\Program Files\Common Files\Apple ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 klbg;Kaspersky Lab Boot Guard Driver; C:\WINDOWS\system32\drivers\klbg.sys [2009-10-14 36880] R0 ohci1394;Texas Instruments OHCI-совместимый IEEE 1394 хост-контроллер; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-15 61696] R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2006-07-11 691696] R0 TPkd;TPkd; C:\WINDOWS\system32\drivers\TPkd.sys [2009-05-21 90472] R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-05-18 77568] R1 ISODrive;ISO CD-ROM Device Driver; \??\C:\Program Files\UltraISO\drivers\ISODrive.sys [] R1 kl1;Kl1; \??\C:\WINDOWS\system32\drivers\kl1.sys [] R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2010-12-18 315408] R1 mkdrv;mkdrv; \??\C:\WINDOWS\dasf.sys [] R1 WmiAcpi;Интерфейс управления для ACPI Microsoft Windows; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832] R2 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2009-01-28 133632] R2 rspndr;Ответчик обнаружения топологии уровня связи; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2008-10-11 62848] R3 Arp1394;Протокол клиента 1394 ARP; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2009-09-13 60800] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600] R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384] R3 hidusb;Драйвер класса HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-15 10368] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-28 4609024] R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2009-09-14 32272] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-10-02 19472] R3 mouhid;Драйвер мыши HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-09-13 12160] R3 NIC1394;Сетевой драйвер 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2009-09-13 61824] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-08-17 7729568] R3 rtl8185;Realtek RTL8185 54M Wireless LAN Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\rtl8185.sys [2008-03-21 308480] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-06-30 142592] R3 usbaudio;Аудио драйвер USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbvideo;USB-видеоустройство (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984] S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736] S3 apryft6z;apryft6z; C:\WINDOWS\system32\drivers\apryft6z.sys [] S3 CCDECODE;Closed Caption декодер; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys [] S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-02-03 26176] S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056] S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;NABTS/FEC VBI кодек; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Microsoft видео или ТВ подключение; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio.sys [2009-11-25 34384] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2010-04-19 41984] S3 usbscan;Драйвер USB-сканера; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 USBSTOR;Драйвер запоминающих устройств для USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-05-18 38528] S3 WSTCODEC;World Standard Teletext кодек; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-05-18 82944] S4 sfc;sfc; C:\WINDOWS\system32\drivers\sfc.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-08-13 144672] R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-10-20 340456] R2 Bonjour Service;Служба Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2010-07-27 345376] R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe [2009-07-22 81920] R2 Guard.Mail.ru;Guard.Mail.ru; C:\Program Files\Mail.Ru\Guard\GuardMailRu.exe [2010-12-11 1038016] R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120] R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-08-17 168004] R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-07-08 66872] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe [2009-07-22 2736128] R3 iPod Service;Сервис iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-09-24 820008] S2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 222456] S3 aspnet_state;Служба состояний ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:\Program Files\Windows Media Player\wmpnetwk.exe [2006-11-02 914944] S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-05-15 153376] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- |
|
(| 20.12.2010, 23:15 | |
|
Ответы с готовыми решениями:
1
Лечение вирусов Лечение от вирусов Лечение вирусов Лечение вирусов |
 392 / 306 / 5
Регистрация: 02.06.2010
Сообщений: 816
|
|
| 21.12.2010, 00:00 | 2 |
|
Здравствуйте!
Логи AVZ прикрепите.
0
|
|
| 21.12.2010, 00:00 | |
| 21.12.2010, 00:00 | |
|
Помогаю со студенческими работами здесь
2
Лечение вирусов Лечение вирусов Лечение вирусов лечение вирусов Лечение вирусов Лечение вирусов Искать еще темы с ответами Или воспользуйтесь поиском по форуму: |
|
Наверх