Лог утилиты random's system information tool 1.09 (автор: random/random) Run by bear at 2013-09-02 11:05:48 Microsoft Windows 7 Максимальная Service Pack 1 Системный раздел C: размер 2 GB (4%) Свободно 61 GB Total RAM: 8055 MB (76% free) HijackThis download failed ======Список процессов====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs winlogon.exe C:\Windows\system32\vcsFPService.exe C:\Windows\system32\nvvsvc.exe -session -first C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe 29053216 \??\C:\Windows\system32\conhost.exe "-2043995848325286604927128584289027846931502645-17087645472137641386-1635921947 C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\ABBYY\Lingvo\15.0\Licensing\NetworkLicenseServer.exe" -service "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files\Bonjour\mDNSResponder.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe" "C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe" "C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe" "C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\InstallFilterService.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe" "C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe" C:\Windows\SysWOW64\nlssrv32.exe "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\Speaking Clock Deluxe\SpClDlx.exe" "C:\Program Files (x86)\The Bat!\thebat.exe" /minimize "C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe" "C:\Program Files (x86)\ComfortClipboard\CClipboard.exe" "C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe" CClipboardCm.exe C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} C:\Windows\system32\svchost.exe -k WindowsMobile "C:\Program Files (x86)\Total Commander\Totalcmd.exe" "C:\Users\bear\AppData\Local\Chromium\Application\chrome.exe" "C:\Users\bear\AppData\Local\Chromium\Application\chrome.exe" --type=renderer --lang=ru --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Instant/HiddenControlA/Prefetch/ContentPrefetchPrerender1/PrerenderFromOmniboxHeuristic/ConservativeAlgorithm/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwnd16/SpdyImpact/npn_with_spdy/WarmSocketImpact/warm_socket/ --extension-process --channel=2728.00635780.2138014508 /prefetch:3 "C:\Users\bear\AppData\Local\Chromium\Application\chrome.exe" --type=renderer --lang=ru --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Instant/HiddenControlA/Prefetch/ContentPrefetchPrerender1/PrerenderFromOmniboxHeuristic/ConservativeAlgorithm/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwnd16/SpdyImpact/npn_with_spdy/WarmSocketImpact/warm_socket/ --extension-process --channel=2728.006358C0.1326990869 /prefetch:3 "C:\Users\bear\AppData\Local\Chromium\Application\chrome.exe" --type=renderer --lang=ru --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Instant/HiddenControlA/Prefetch/ContentPrefetchPrerender1/PrerenderFromOmniboxHeuristic/ConservativeAlgorithm/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwnd16/SpdyImpact/npn_with_spdy/WarmSocketImpact/warm_socket/ --extension-process --channel=2728.00635A00.826425367 /prefetch:3 "C:\Users\bear\AppData\Local\Chromium\Application\chrome.exe" --type=renderer --lang=ru --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/DnsParallelism/parallel_default/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/Instant/HiddenControlA/Prefetch/ContentPrefetchPrerender1/PrerenderFromOmniboxHeuristic/ConservativeAlgorithm/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwnd16/SpdyImpact/npn_with_spdy/WarmSocketImpact/warm_socket/ --channel=2728.08326780.165363988 /prefetch:3 C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe "C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-895b4836-e712-415c-b5a8-cf4ce04a14d4 -SystemEventPortName:HostProcess-832032e0-5d42-4cd8-b352-c0eddc768bac -IoCancelEventPortName:HostProcess-cb5c8b9b-3459-4ac3-b063-36e4f694caa9 -NonStateChangingEventPortName:HostProcess-b2035aa2-ad82-4b56-854d-672d1613a0d8 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0c54157d-753b-4cee-9ba2-6e178729115e "E:\RSITx64.exe" ======Папка назначеных зданий====== C:\Windows\tasks\GoogleUpdateTaskMachineCore1ce7b9e85d16be5.job C:\Windows\tasks\GoogleUpdateTaskMachineCore1ce7eaadf8f414f.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3607424515-601792473-801017220-1000Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3607424515-601792473-801017220-1000UA1ce7d5523dae93.job =========Mozilla firefox========= ProfilePath - C:\Users\bear\AppData\Roaming\Mozilla\Firefox\Profiles\72aenet2.default prefs.js - "browser.search.useDBForOrder" - true prefs.js - "browser.startup.homepage" - "www.top-page.ru/?from=pdd" prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.8, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.1, virtualKeyboard@kaspersky.ru:11.0.2.579, KavAntiBanner@Kaspersky.ru:11.0.2.579, linkfilter@kaspersky.ru:11.0.2.579, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13" prefs.js - "keyword.URL" - "http://go.mail.ru/search?fr=fftb&q=" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 11.8.800.94 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=] "Description"=Плагин Детектора iTunes "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0] "Description"= "Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] "Description"= "Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.9.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Windows\SysWOW64\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] "Description"=Microsoft SharePoint Plug-in for Firefox "Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] "Description"=Google Update "Path"=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] "Description"= "Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8] "Description"=VLC Multimedia Plugin "Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat] "Description"=Handles PDFs in-place in Firefox "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 11.8.800.94 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] "Description"= "Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.9.2] "Description"=Java™ Deployment Toolkit "Path"=C:\Windows\system32\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE] "Description"= "Path"=disabled [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0] "Description"=Office Authorization plug-in for NPAPI browsers "Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] "Description"= "Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll C:\Program Files (x86)\Mozilla Firefox\extensions\ {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} {972ce4c6-7e08-4474-a285-3208198ce6fd} C:\Program Files (x86)\Mozilla Firefox\components\ binary.manifest browsercomps.dll dhAddToBlackListProcessor.js dhConvConfHandler.js dhConvertMgr.js dhCopyUrlProcessor.js dhCore.js dhDOMHook.js dhDownloadConvertProcessor.js dhDownloadMgr.js dhDownloadProcessor.js dhDumpProcessor.js dhFlashgotDownloadProcessor.js dhIContextItem.xpt dhIConversionListener.xpt dhIConvertMgr.xpt dhICore.xpt dhIDOMHook.xpt dhIDownloadListener.xpt dhIDownloadMgr.xpt dhIMediaListMgr.xpt dhIMP3Tunes.xpt dhIPreProcessor.xpt dhIProbe.xpt dhIProbeMouseListener.xpt dhIProcessor.xpt dhISmartNamer.xpt dhISocialShare.xpt dhITwitter.xpt dhIUtilService.xpt dhIYoutubeTool.xpt dhIYTHQChecker.xpt dhIYTHQCheckerListener.xpt dhIYTInfo.xpt dhIYTLinkFinder.xpt dhLicenseHandler.js dhMedialinkProbe.js dhMediaListMgr.js dhMP3Tunes.js dhMP3TunesLockerProcessor.js dhMP3TunesMobileProcessor.js dhNetworkProbe.js dhQuickDownloadProcessor.js dhSafeModeHandler.js dhSecretHelperProcessor.js dhSmartNamer.js dhSocialShareProcessor.js dhUtilService.js dhYoutubeLinksContextItem.js dhYoutubeProbe.js dhYTInfo.js nsIQTScriptablePlugin.xpt C:\Program Files (x86)\Mozilla Firefox\plugins\ nppdf32.dll nppdf32.RUS npPDFXCviewNPPlugin.dll npqtplugin.dll npqtplugin2.dll npqtplugin3.dll npqtplugin4.dll npqtplugin5.dll npqtplugin6.dll npqtplugin7.dll QuickTimePlugin.class C:\Program Files (x86)\Mozilla Firefox\searchplugins\ google.xml mailru.xml ozonru.xml priceru.xml wikipedia-ru.xml yandex-slovari.xml yandex.xml C:\Users\bear\AppData\Roaming\Mozilla\Firefox\Profiles\72aenet2.default\extensions\ dmbarff@westbyte.com dmmm@westbyte.com dmpluginff@westbyte.com dmremote@westbyte.com {b9db16a4-6edc-47ec-a1f4-b86292ed211d} {e4a8a97b-f2ed-450b-b12d-ee082ba24781} C:\Users\bear\AppData\Roaming\Mozilla\Firefox\Profiles\72aenet2.default\plugins\ npdm.dll C:\Users\bear\AppData\Roaming\Mozilla\Firefox\Profiles\72aenet2.default\searchplugins\ yandex.ru-134929.xml ybqs-yandex.xml ======Снимок реестра====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-19 537576] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}] MailRuBHO Class [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2012-08-13 5749952] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-19 193512] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-11-18 449512] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9961627E-4059-41B4-8E0E-A7D6B3854ADF}] IE 4.x-6.x BHO for Download Master - C:\PROGRA~2\DOWNLO~1\dmiehlp.dll [2013-06-20 168224] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-08-13 4120256] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-11-18 155384] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7D2CB77-6E2D-4C1F-B485-D50506B9FA6B}] WebMoneyAdvisorBHO - C:\Program Files (x86)\WebMoney Advisor\2.2.4\wmadvisor.dll [2011-07-20 288224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {09900DE8-1DCA-443F-9243-26FF581438AF} - [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {405DFEAE-1D2F-4649-BE08-C92313C3E1CE} - WebMoney Advisor - C:\Program Files (x86)\WebMoney Advisor\2.2.4\wmadvisor.dll [2011-07-20 288224] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-10 2176296] "egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-12-21 6326448] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Speaking Clock Deluxe"=C:\Program Files (x86)\Speaking Clock Deluxe\SpClDlx.exe [2009-06-30 2350592] "напоминалочка 2"=D:\Memory\напоминалочка 2.txt [2013-05-11 642] "AdobeBridge"= [] "thebat_startup"=C:\Program Files (x86)\The Bat!\thebat.exe [2013-06-24 14437992] "Google Update"=C:\Users\bear\AppData\Local\Google\Update\GoogleUpdate.exe /c [] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "CClipboard"=C:\Program Files (x86)\ComfortClipboard\CClipboard.exe [2010-06-14 2906952] ""= [] "AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-06-25 1073352] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup Network Server.lnk - C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe напоминалочка 3.lnk - D:\Memory\напоминалочка 3.txt напоминалочка.txt - Ярлык.lnk - D:\Memory\напоминалочка.txt Орехи.txt - Ярлык.lnk - D:\Notes\Орехи.txt [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux2"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux3"=wdmaud.drv "wave4"=wdmaud.drv "midi4"=wdmaud.drv "mixer4"=wdmaud.drv "aux4"=wdmaud.drv "MSVideo8"=VfWWDM32.dll "wave5"=wdmaud.drv "midi5"=wdmaud.drv "mixer5"=wdmaud.drv "wave6"=wdmaud.drv "midi6"=wdmaud.drv "mixer6"=wdmaud.drv "wave7"=wdmaud.drv "midi7"=wdmaud.drv "mixer7"=wdmaud.drv "wave8"=wdmaud.drv "midi8"=wdmaud.drv "mixer8"=wdmaud.drv "aux5"=wdmaud.drv "wave9"=wdmaud.drv "midi9"=wdmaud.drv "mixer9"=wdmaud.drv "aux6"=wdmaud.drv "aux7"=wdmaud.drv "aux8"=wdmaud.drv "vidc.pDAD"=prodad-codec.dll ======Ассоциации файлов====== .js - edit - C:\Windows\SysWow64\Notepad.exe %1 .js - open - C:\Windows\SysWow64\WScript.exe "%1" %* ======Список файлов и папок, созданных за последние 1 месяц====== 2013-09-02 10:58:15 ----D---- C:\rsit 2013-09-02 10:58:15 ----D---- C:\Program Files\trend micro 2013-09-02 05:12:50 ----D---- C:\ProgramData\Logs 2013-09-02 05:12:05 ----D---- C:\Program Files (x86)\mp3DirectCut 2013-09-01 10:33:26 ----ASH---- C:\pagefile.sys 2013-09-01 06:31:09 ----D---- C:\symbols 2013-09-01 06:30:29 ----D---- C:\Windows\Standalone System Sweeper 2013-08-29 12:14:06 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2013-08-29 12:14:04 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-08-29 12:14:04 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-08-29 12:14:04 ----A---- C:\Windows\SYSWOW64\msls31.dll 2013-08-29 12:14:04 ----A---- C:\Windows\SYSWOW64\elshyph.dll 2013-08-29 12:14:04 ----A---- C:\Windows\system32\elshyph.dll 2013-08-29 12:14:03 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-08-29 12:14:03 ----A---- C:\Windows\SYSWOW64\msrating.dll 2013-08-29 12:14:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-08-29 12:14:03 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\wextract.exe 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\webcheck.dll 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\pngfilt.dll 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\inseng.dll 2013-08-29 12:14:02 ----A---- C:\Windows\SYSWOW64\iexpress.exe 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\occache.dll 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\mshta.exe 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\imgutil.dll 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2013-08-29 12:14:01 ----A---- C:\Windows\SYSWOW64\iepeers.dll 2013-08-29 12:14:00 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe 2013-08-29 12:14:00 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll 2013-08-29 12:13:59 ----A---- C:\Windows\SYSWOW64\mshtmler.dll 2013-08-29 12:13:59 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-08-29 12:13:59 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-08-29 12:13:58 ----A---- C:\Windows\SYSWOW64\url.dll 2013-08-29 12:13:58 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-08-29 12:13:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-08-29 12:13:58 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2013-08-29 12:13:58 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2013-08-29 12:13:58 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat 2013-08-29 12:13:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2013-08-29 12:13:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2013-08-29 12:13:57 ----A---- C:\Windows\SYSWOW64\licmgr10.dll 2013-08-29 12:13:57 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-08-29 12:13:57 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-08-29 12:13:57 ----A---- C:\Windows\SYSWOW64\icardie.dll 2013-08-29 12:13:56 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-08-29 12:13:56 ----A---- C:\Windows\system32\msrating.dll 2013-08-29 12:13:56 ----A---- C:\Windows\system32\iertutil.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\wininet.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\urlmon.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\msls31.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\jsproxy.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\iernonce.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\ieapfltr.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\ieapfltr.dat 2013-08-29 12:13:55 ----A---- C:\Windows\system32\ie4uinit.exe 2013-08-29 12:13:55 ----A---- C:\Windows\system32\icardie.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\dxtrans.dll 2013-08-29 12:13:55 ----A---- C:\Windows\system32\dxtmsft.dll 2013-08-29 12:13:54 ----A---- C:\Windows\system32\url.dll 2013-08-29 12:13:54 ----A---- C:\Windows\system32\mshtmlmedia.dll 2013-08-29 12:13:54 ----A---- C:\Windows\system32\iesetup.dll 2013-08-29 12:13:54 ----A---- C:\Windows\system32\iedkcs32.dll 2013-08-29 12:13:53 ----A---- C:\Windows\system32\wextract.exe 2013-08-29 12:13:53 ----A---- C:\Windows\system32\webcheck.dll 2013-08-29 12:13:53 ----A---- C:\Windows\system32\mshtmled.dll 2013-08-29 12:13:53 ----A---- C:\Windows\system32\licmgr10.dll 2013-08-29 12:13:53 ----A---- C:\Windows\system32\inseng.dll 2013-08-29 12:13:52 ----A---- C:\Windows\system32\vbscript.dll 2013-08-29 12:13:52 ----A---- C:\Windows\system32\pngfilt.dll 2013-08-29 12:13:52 ----A---- C:\Windows\system32\occache.dll 2013-08-29 12:13:52 ----A---- C:\Windows\system32\mshtml.dll 2013-08-29 12:13:52 ----A---- C:\Windows\system32\mshta.exe 2013-08-29 12:13:52 ----A---- C:\Windows\system32\msfeeds.dll 2013-08-29 12:13:52 ----A---- C:\Windows\system32\iexpress.exe 2013-08-29 12:13:52 ----A---- C:\Windows\system32\ieUnatt.exe 2013-08-29 12:13:51 ----A---- C:\Windows\system32\SetIEInstalledDate.exe 2013-08-29 12:13:51 ----A---- C:\Windows\system32\mshtmler.dll 2013-08-29 12:13:51 ----A---- C:\Windows\system32\msfeedssync.exe 2013-08-29 12:13:51 ----A---- C:\Windows\system32\msfeedsbs.dll 2013-08-29 12:13:51 ----A---- C:\Windows\system32\jscript9.dll 2013-08-29 12:13:51 ----A---- C:\Windows\system32\jscript.dll 2013-08-29 12:13:51 ----A---- C:\Windows\system32\imgutil.dll 2013-08-29 12:13:51 ----A---- C:\Windows\system32\iesysprep.dll 2013-08-29 12:13:51 ----A---- C:\Windows\system32\iepeers.dll 2013-08-29 12:13:51 ----A---- C:\Windows\system32\IEAdvpack.dll 2013-08-29 12:13:50 ----A---- C:\Windows\system32\ieui.dll 2013-08-29 12:13:50 ----A---- C:\Windows\system32\ieframe.dll 2013-08-29 12:12:39 ----A---- C:\Windows\system32\wow64win.dll 2013-08-29 12:12:39 ----A---- C:\Windows\system32\wow64cpu.dll 2013-08-29 12:12:39 ----A---- C:\Windows\system32\wow64.dll 2013-08-29 12:12:39 ----A---- C:\Windows\system32\winsrv.dll 2013-08-29 12:12:39 ----A---- C:\Windows\system32\ntvdm64.dll 2013-08-29 12:12:39 ----A---- C:\Windows\system32\KernelBase.dll 2013-08-29 12:12:39 ----A---- C:\Windows\system32\kernel32.dll 2013-08-29 12:12:39 ----A---- C:\Windows\system32\conhost.exe 2013-08-29 12:12:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-08-29 12:12:38 ----A---- C:\Windows\SYSWOW64\wow32.dll 2013-08-29 12:12:38 ----A---- C:\Windows\SYSWOW64\user.exe 2013-08-29 12:12:38 ----A---- C:\Windows\SYSWOW64\setup16.exe 2013-08-29 12:12:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2013-08-29 12:12:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll 2013-08-29 12:12:38 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2013-08-29 12:12:38 ----A---- C:\Windows\SYSWOW64\instnm.exe 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-08-29 12:12:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-08-29 12:12:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-08-29 12:12:35 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-08-29 12:12:35 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-08-29 12:12:35 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-08-29 12:12:35 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-08-29 12:12:35 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-08-29 12:12:35 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-08-29 12:12:35 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-08-29 12:12:35 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-08-29 12:12:34 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-08-29 12:12:34 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-08-29 12:12:34 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-08-29 12:12:34 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-08-29 12:12:34 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-08-29 12:12:34 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-08-29 12:12:34 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-08-29 12:11:38 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2013-08-29 12:11:38 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2013-08-29 12:11:38 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2013-08-29 12:11:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2013-08-29 12:11:00 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll 2013-08-29 12:11:00 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll 2013-08-29 12:11:00 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll 2013-08-29 12:11:00 ----A---- C:\Windows\system32\XpsPrint.dll 2013-08-29 12:11:00 ----A---- C:\Windows\system32\XpsGdiConverter.dll 2013-08-29 12:11:00 ----A---- C:\Windows\system32\WMPhoto.dll 2013-08-29 12:11:00 ----A---- C:\Windows\system32\msmpeg2vdec.dll 2013-08-29 12:10:59 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll 2013-08-29 12:10:59 ----A---- C:\Windows\SYSWOW64\DWrite.dll 2013-08-29 12:10:59 ----A---- C:\Windows\system32\dxgi.dll 2013-08-29 12:10:59 ----A---- C:\Windows\system32\d3d10warp.dll 2013-08-29 12:10:59 ----A---- C:\Windows\system32\d2d1.dll 2013-08-29 12:10:58 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll 2013-08-29 12:10:58 ----A---- C:\Windows\SYSWOW64\d3d10core.dll 2013-08-29 12:10:58 ----A---- C:\Windows\SYSWOW64\d3d10.dll 2013-08-29 12:10:58 ----A---- C:\Windows\system32\FntCache.dll 2013-08-29 12:10:58 ----A---- C:\Windows\system32\DWrite.dll 2013-08-29 12:10:57 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll 2013-08-29 12:10:56 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll 2013-08-29 12:10:56 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll 2013-08-29 12:10:56 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll 2013-08-29 12:10:56 ----A---- C:\Windows\system32\WindowsCodecsExt.dll 2013-08-29 12:10:56 ----A---- C:\Windows\system32\d3d10core.dll 2013-08-29 12:10:56 ----A---- C:\Windows\system32\d3d10.dll 2013-08-29 12:10:55 ----A---- C:\Windows\SYSWOW64\dxgi.dll 2013-08-29 12:10:55 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll 2013-08-29 12:10:55 ----A---- C:\Windows\SYSWOW64\d2d1.dll 2013-08-29 12:10:55 ----A---- C:\Windows\system32\WindowsCodecs.dll 2013-08-29 12:10:55 ----A---- C:\Windows\system32\d3d10level9.dll 2013-08-29 12:10:55 ----A---- C:\Windows\system32\d3d10_1core.dll 2013-08-29 12:10:55 ----A---- C:\Windows\system32\d3d10_1.dll 2013-08-29 12:10:54 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll 2013-08-29 12:10:54 ----A---- C:\Windows\system32\UIAnimation.dll 2013-08-28 16:18:51 ----D---- C:\Windows\system32\MRT 2013-08-28 15:20:51 ----A---- C:\Windows\system32\taskhost.exe 2013-08-28 15:20:34 ----A---- C:\Windows\system32\d3d11.dll 2013-08-28 15:20:33 ----A---- C:\Windows\SYSWOW64\d3d11.dll 2013-08-27 05:52:24 ----D---- C:\ProgramData\DipTrace 2013-08-27 05:52:24 ----D---- C:\Program Files (x86)\DipTrace 2013-08-26 06:35:02 ----D---- C:\Program Files (x86)\sPlan 4.0 2013-08-22 07:36:44 ----A---- C:\Windows\system32\wups2.dll 2013-08-22 07:36:44 ----A---- C:\Windows\system32\wucltux.dll 2013-08-22 07:36:44 ----A---- C:\Windows\system32\wuaueng.dll 2013-08-22 07:36:44 ----A---- C:\Windows\system32\wuauclt.exe 2013-08-22 07:36:24 ----A---- C:\Windows\system32\wups.dll 2013-08-22 07:36:24 ----A---- C:\Windows\system32\wudriver.dll 2013-08-22 07:36:24 ----A---- C:\Windows\system32\wuapi.dll 2013-08-22 07:36:08 ----A---- C:\Windows\system32\wuwebv.dll 2013-08-22 07:36:08 ----A---- C:\Windows\system32\wuapp.exe ======Список файлов и папок, измененных за последние 1 месяц====== 2013-09-02 10:58:15 ----RD---- C:\Program Files 2013-09-02 09:56:06 ----D---- C:\Windows\Temp 2013-09-02 09:49:04 ----D---- C:\Windows\tracing 2013-09-02 09:39:57 ----D---- C:\Windows\System32 2013-09-02 09:39:57 ----D---- C:\Windows\inf 2013-09-02 09:39:57 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-09-02 09:33:50 ----D---- C:\Windows\system32\drivers 2013-09-02 09:20:21 ----D---- C:\Windows\system32\NDF 2013-09-02 09:19:18 ----D---- C:\Users\bear\AppData\Roaming\The Bat! 2013-09-02 09:19:04 ----A---- C:\Windows\SYSWOW64\log.txt 2013-09-02 08:42:49 ----D---- C:\ProgramData 2013-09-02 06:36:24 ----D---- C:\Program Files (x86) 2013-09-02 06:35:39 ----D---- C:\Windows\system32\config 2013-09-02 06:35:26 ----D---- C:\Windows\winsxs 2013-09-02 06:33:52 ----SHD---- C:\Windows\Installer 2013-09-02 06:33:46 ----SHD---- C:\System Volume Information 2013-09-02 06:14:19 ----AD---- C:\Windows 2013-09-02 06:14:17 ----D---- C:\Windows\system32\DriverStore 2013-09-02 05:43:17 ----SHD---- C:\Config.Msi 2013-09-02 05:28:58 ----D---- C:\Users\bear\AppData\Roaming\AIMP3 2013-09-02 04:35:06 ----D---- C:\Windows\SysWOW64 2013-09-01 23:18:38 ----D---- C:\Users\bear\AppData\Roaming\vlc 2013-09-01 17:36:02 ----D---- C:\eset_update 2013-09-01 17:24:22 ----D---- C:\Windows\SYSWOW64\en-US 2013-09-01 17:24:22 ----D---- C:\Windows\system32\en-US 2013-09-01 17:24:18 ----D---- C:\Windows\Microsoft.NET 2013-09-01 17:24:04 ----D---- C:\Windows\Prefetch 2013-09-01 08:26:50 ----D---- C:\Windows\rescache 2013-09-01 07:40:13 ----D---- C:\Windows\system32\catroot2 2013-09-01 06:43:05 ----D---- C:\Windows\system32\catroot 2013-08-29 21:38:28 ----D---- C:\Program Files (x86)\Total Commander 2013-08-29 21:38:25 ----D---- C:\Windows\Tasks 2013-08-29 21:38:25 ----D---- C:\Windows\system32\wfp 2013-08-29 21:38:25 ----D---- C:\Windows\system32\wbem 2013-08-29 15:32:11 ----D---- C:\Program Files (x86)\Acronis 2013-08-29 13:35:35 ----D---- C:\Windows\system32\Tasks 2013-08-29 13:34:06 ----D---- C:\Windows\Panther 2013-08-29 13:31:32 ----D---- C:\Windows\SYSWOW64\ru-RU 2013-08-29 13:31:32 ----D---- C:\Windows\system32\ru-RU 2013-08-29 13:31:32 ----D---- C:\Program Files\Internet Explorer 2013-08-29 13:31:32 ----D---- C:\Program Files (x86)\Internet Explorer 2013-08-29 13:31:26 ----D---- C:\Windows\SYSWOW64\migration 2013-08-29 13:31:25 ----D---- C:\Windows\system32\migration 2013-08-29 13:31:25 ----D---- C:\Windows\PolicyDefinitions 2013-08-29 13:31:22 ----RSD---- C:\Windows\Fonts 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\zh-TW 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\zh-HK 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\zh-CN 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\tr-TR 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\sv-SE 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\pt-PT 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\pt-BR 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\pl-PL 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\ko-KR 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\ja-JP 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\it-IT 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\hu-HU 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\fr-FR 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\fi-FI 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\es-ES 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\el-GR 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\de-DE 2013-08-29 13:31:21 ----D---- C:\Windows\SYSWOW64\cs-CZ 2013-08-29 13:31:21 ----D---- C:\Windows\AppPatch 2013-08-29 13:31:20 ----D---- C:\Windows\SYSWOW64\nb-NO 2013-08-29 13:31:20 ----D---- C:\Windows\SYSWOW64\da-DK 2013-08-29 13:31:20 ----D---- C:\Windows\system32\zh-TW 2013-08-29 13:31:20 ----D---- C:\Windows\system32\zh-HK 2013-08-29 13:31:20 ----D---- C:\Windows\system32\zh-CN 2013-08-29 13:31:20 ----D---- C:\Windows\system32\tr-TR 2013-08-29 13:31:20 ----D---- C:\Windows\system32\sv-SE 2013-08-29 13:31:20 ----D---- C:\Windows\system32\pt-PT 2013-08-29 13:31:20 ----D---- C:\Windows\system32\pt-BR 2013-08-29 13:31:20 ----D---- C:\Windows\system32\pl-PL 2013-08-29 13:31:20 ----D---- C:\Windows\system32\nl-NL 2013-08-29 13:31:20 ----D---- C:\Windows\system32\ko-KR 2013-08-29 13:31:20 ----D---- C:\Windows\system32\ja-JP 2013-08-29 13:31:20 ----D---- C:\Windows\system32\it-IT 2013-08-29 13:31:20 ----D---- C:\Windows\system32\hu-HU 2013-08-29 13:31:20 ----D---- C:\Windows\system32\fr-FR 2013-08-29 13:31:20 ----D---- C:\Windows\system32\fi-FI 2013-08-29 13:31:20 ----D---- C:\Windows\system32\es-ES 2013-08-29 13:31:20 ----D---- C:\Windows\system32\el-GR 2013-08-29 13:31:20 ----D---- C:\Windows\system32\de-DE 2013-08-29 13:31:20 ----D---- C:\Windows\system32\cs-CZ 2013-08-29 13:31:19 ----D---- C:\Windows\system32\nb-NO 2013-08-29 13:31:19 ----D---- C:\Windows\system32\da-DK 2013-08-29 12:20:01 ----D---- C:\Windows\Logs 2013-08-29 11:23:09 ----D---- C:\Users\bear\AppData\Roaming\uTorrent 2013-08-28 16:18:50 ----D---- C:\Windows\debug 2013-08-28 15:41:35 ----D---- C:\Program Files (x86)\KMPlayer 2013-08-28 11:07:36 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-08-27 08:44:47 ----D---- C:\Temp 2013-08-21 20:09:22 ----D---- C:\Windows\ehome 2013-08-21 19:53:49 ----D---- C:\Windows\SoftwareDistribution 2013-08-06 18:14:34 ----D---- C:\Program Files (x86)\Download Master 2013-08-06 16:21:05 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2013-08-06 08:47:38 ----D---- C:\Program Files (x86)\Mozilla Firefox 2013-08-05 16:14:32 ----A---- C:\Windows\system32\MRT.exe ======Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено)====== R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-01-10 57904] R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-12-03 560184] R0 stdflt;Disk Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdfltn.sys [2010-01-18 21040] R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-05-16 105624] R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552] R1 cdrblock;cdrblock; C:\Windows\system32\DRIVERS\cdrblock.sys [2012-05-11 37704] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560] R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-01-10 213416] R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-01-10 150616] R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-01-10 59440] R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2007-11-07 104912] R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys [2011-01-19 21992] R2 DigiNet;Digidesign Ethernet Support; C:\Windows\system32\DRIVERS\diginet.sys [2012-09-11 23384] R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-01-10 190232] R2 rimspci;rimspci; C:\Windows\system32\DRIVERS\rimspe64.sys [2009-07-02 60416] R2 risdpcie;risdpcie; C:\Windows\system32\DRIVERS\risdpe64.sys [2009-07-01 80896] R2 rixdpcie;rixdpcie; C:\Windows\system32\DRIVERS\rixdpe64.sys [2009-07-04 55808] R3 Acceler;Accelerometer Service; C:\Windows\system32\DRIVERS\Accelern.sys [2010-01-18 26160] R3 BCM43XX;Драйвер платы DW WLAN Card; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-08-01 3058168] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-10 1380400] R3 vpcbus;Служба шины Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2010-03-24 187904] S2 aksdf;aksdf; \??\C:\Windows\system32\drivers\aksdf.sys [2009-09-21 71040] S2 hardlock;hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2009-03-13 318464] S2 multikey;Virtual USB MultiKey; C:\Windows\system32\DRIVERS\multikey.sys [2012-07-15 76040] S3 61883;Устройство 61883; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288] S3 akshasp;SafeNet Inc. HASP Key; C:\Windows\system32\DRIVERS\akshasp.sys [2009-03-13 53760] S3 akshhl;SafeNet Inc. Sentinel HASP Key; C:\Windows\system32\DRIVERS\akshhl.sys [2007-07-23 56960] S3 aksusb;SafeNet Inc. USB Key; C:\Windows\system32\DRIVERS\aksusb.sys [2009-03-13 25344] S3 Avc;Устройство AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768] S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664] S3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2011-01-16 22520] S3 BthEnum;Драйвер блока запроса Bluetooth; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984] S3 BthPan;Устройства Bluetooth (личной сети); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784] S3 BTHPORT;Драйвер порта Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960] S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384] S3 btwaudio;Аудиоустройствоî Bluetooth; C:\Windows\system32\drivers\btwaudio.sys [2009-10-02 98344] S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-08-28 132648] S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104] S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-08-28 21160] S3 DrvSnSht;DrvSnSht; \??\C:\Program Files (x86)\R-Drive Image\DrvSnSht64.sys [2010-06-01 132432] S3 GdmFilt;GCT USB Mass Storage Filter Service; C:\Windows\system32\DRIVERS\GdmFilt.sys [2008-11-04 7680] S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856] S3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro37.sys [2013-06-27 32000] S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440] S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448] S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2012-03-26 22528] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pfc.sys [] S3 PTDMBus;PANTECH USB Modem Composite Device Driver ; C:\Windows\system32\DRIVERS\PTDMBus.sys [2009-11-03 69264] S3 PTDMMdm;PANTECH USB Modem Drivers ; C:\Windows\system32\DRIVERS\PTDMMdm.sys [2009-11-03 177040] S3 PTDMVsp;PANTECH USB Modem Serial Port ; C:\Windows\system32\DRIVERS\PTDMVsp.sys [2009-11-03 177040] S3 PTDMWFLT;PTDMWWAN Filter Driver; C:\Windows\system32\DRIVERS\PTDMWFLT.sys [2009-11-03 14992] S3 PTDMWWAN;PANTECH USB Modem WWAN Driver; C:\Windows\system32\DRIVERS\PTDMWWAN.sys [2009-11-03 142864] S3 PTUMWBus;PANTECH USB Modem V2 Composite Device Driver; C:\Windows\system32\DRIVERS\PTUMWBus.sys [2009-10-27 71056] S3 PTUMWCSP;PANTECH USB Modem V2 Connection Port; C:\Windows\system32\DRIVERS\PTUMWCSP.sys [2009-10-27 173456] S3 PTUMWFLT;PTUMWNET Filter Driver; C:\Windows\system32\DRIVERS\PTUMWFLT.sys [2009-10-27 12688] S3 PTUMWMdm;PANTECH USB Modem V2 Modem Driver; C:\Windows\system32\DRIVERS\PTUMWMdm.sys [2009-10-27 173456] S3 PTUMWNET;PANTECH USB Modem V2 WWAN Driver; C:\Windows\system32\DRIVERS\PTUMWNET.sys [2009-10-27 144912] S3 PTUMWNSP;PANTECH USB Modem V2 NMEA Port; C:\Windows\system32\DRIVERS\PTUMWNSP.sys [2009-10-27 173456] S3 PTUMWVsp;PANTECH USB Modem V2 Diagnostic Port; C:\Windows\system32\DRIVERS\PTUMWVsp.sys [2009-10-27 173456] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992] S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800] S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720] S3 R-ImageDisk;R-ImageDisk; \??\C:\Program Files (x86)\R-Drive Image\R-ImageDisk64.sys [2010-10-16 187600] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656] S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688] S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-12-03 16392] S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-07-09 52736] S3 usbscan;Драйвер USB-сканера; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760] S4 aksfridge;Sentinel HASP Fridge; C:\Windows\system32\DRIVERS\aksfridge.sys [2009-08-20 130816] ======Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено)====== R2 ABBYY.Licensing.Lingvo.Desktop.15.0;Сервис лицензирования ABBYY Lingvo x5; C:\Program Files (x86)\Common Files\ABBYY\Lingvo\15.0\Licensing\NetworkLicenseServer.exe [2011-05-17 816904] R2 Bonjour Service;Служба Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-10-20 873248] R2 cbVSCService11;Cobian Backup 11 — инициатор теневого копирования; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [2013-03-07 67584] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2012-12-21 1333424] R2 InstallFilterService;FF Install Filter Service; C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\InstallFilterService.exe [2010-01-10 60928] R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824] R2 mi-raysat_3dsmax2014_64;mental ray Satellite for Autodesk 3ds Max 2014 64-bit; C:\Program Files\Autodesk\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [2011-09-15 86016] R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\nlssrv32.exe [2010-10-04 63488] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-02-19 392296] R2 OS Selector;Активатор Acronis OS Selector; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-07-01 2153336] R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-05-18 2938880] R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136] R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-06-03 1932592] S2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 gupdate;Служба Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-07-12 136176] S2 hasplms;Sentinel HASP License Manager; C:\Windows\system32\hasplms.exe [2009-12-16 3750400] S2 OODefragAgent;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2011-11-17 3273552] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-06-03 162408] S3 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe [] S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2012-01-06 72704] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136] S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376] S3 bgsvcgen;B's Recorder GOLD Library General Service; C:\Windows\SysWOW64\bgsvcgen.exe [2011-03-09 145504] S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-03-24 13080] S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-07-05 1471352] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-03-15 654848] S3 gupdatem;Служба Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-07-12 136176] S3 iPod Service;Сервис iPod; C:\Program Files\iPod\bin\iPodService.exe [2012-09-10 936848] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-06 115608] S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136] S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136] S3 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920] S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000] -----------------EOF-----------------