Лог утилиты random's system information tool 1.08 (автор: random/random)
Run by радуга at 2011-08-28 10:30:28
Microsoft Windows 7 Максимальная  
Системный раздел C: размер 1 GB (2%) Свободно 70 GB
Total RAM: 2046 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:30:30, on 28.08.2011
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16839)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\ProgramData\VKSaver\VKSaver.exe
C:\Program Files\2gis\3.0\2GISTrayNotifier.exe
C:\Program Files\Mail.Ru\Agent\magent.exe
C:\Program Files\Download Master\dmaster.exe
C:\Program Files\Golden FTP Server\GFTP.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
C:\Program Files\Vtune\TBPANEL.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\ICQ7.5\ICQ.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\TMonitor.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Yandex\Punto Switcher\punto.exe
C:\Program Files\Tiny Utilities\Vitrite\Vitrite.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Users\радуга\AppData\Local\Bromium\Application\chrome.exe
C:\Program Files\Google\Google Earth\plugin\geplugin.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\радуга\Desktop\avz4\avz.exe
C:\Windows\explorer.exe
C:\Users\радуга\Downloads\Программы\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\радуга\Downloads\Программы\радуга.exe
C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mail.ru/cnt/8179
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yandex
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: Спутник@Mail.Ru - {09900DE8-1DCA-443F-9243-26FF581438AF} - (no file)
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\WebMoney Advisor\tbhelper.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Windows\apppatch\cgwxptg.exe,
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\IE\4.3\dealioToolbarIE.dll
O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O2 - BHO: Kinoshek.NET - {154852b3-fd25-417f-ab7c-7e613c4468b1} - C:\Program Files\Kinoshek.NET\prxtbKin0.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Conduit Engine  - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O2 - BHO: QipLI - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\радуга\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll
O2 - BHO: Спутник@Mail.Ru - {8984B388-A5BB-4DF7-B274-77B879E179DB} - c:\program files\mail.ru\sputnik\MailRuSputnik.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: IE 4.x-6.x BHO for Download Master - {9961627E-4059-41B4-8E0E-A7D6B3854ADF} - C:\PROGRA~1\DOWNLO~1\dmiehlp.dll
O2 - BHO: AlterGeo Magic Scanner - {9BFBA68E-E21B-458E-AE12-FE85E903D2C1} - C:\Program Files\AlterGeo\AlterGeo Magic Scanner\3.3.2.779\AlterGeo.BrowserPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: MyPlayCityRU Toolbar - {dfbeb35b-444d-4f25-8d7d-eb2683c206ec} - C:\Program Files\MyPlayCityRU\tbMyP0.dll (file missing)
O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O2 - BHO: TBSB03374 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\WebMoney Advisor\tbcore3.dll
O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\IE\4.3\dealioToolbarIE.dll
O3 - Toolbar: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O3 - Toolbar: Kinoshek.NET Toolbar - {154852b3-fd25-417f-ab7c-7e613c4468b1} - C:\Program Files\Kinoshek.NET\prxtbKin0.dll
O3 - Toolbar: BigSeekPro Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\BigSeekPro Toolbar\tbcore3.dll (file missing)
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: HyperCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HyperCam Toolbar\tbcore3.dll
O3 - Toolbar: WebMoney Advisor - {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} - C:\Program Files\WebMoney Advisor\tbcore3.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll
O3 - Toolbar: Яндекс.Бар - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll
O3 - Toolbar: MyPlayCityRU Toolbar - {dfbeb35b-444d-4f25-8d7d-eb2683c206ec} - C:\Program Files\MyPlayCityRU\tbMyP0.dll (file missing)
O3 - Toolbar: MyPlayCity.Бар - {EDF7BDB3-F1D6-4b9f-8E93-742A4D9443FC} - C:\Program Files\MyPlayCity\MyPlayCityBarIE\MyPlayCityBar.dll
O3 - Toolbar: Conduit Engine  - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll
O3 - Toolbar: Спутник@Mail.Ru - {09900DE8-1DCA-443F-9243-26FF581438AF} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [VKSaver] C:\ProgramData\VKSaver\VKSaver.exe
O4 - HKLM\..\Run: [2Gis Update Notifier] "C:\Program Files\2gis\3.0\2GISTrayNotifier.exe" -delayed_start
O4 - HKLM\..\Run: [MAgent] C:\Program Files\Mail.Ru\Agent\MAgent.exe -LM
O4 - HKCU\..\Run: [Download Master] C:\Program Files\Download Master\dmaster.exe -autorun
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [GoldenFTPserver] "C:\Program Files\Golden FTP Server\GFTP.exe"
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Sony Ericsson PC Companion] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [TBPanel] C:\Program Files\Vtune\TBPanel.exe /A
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Infium] "C:\Program Files\QIP 2010\qip.exe" /autorun
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.5\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: chkntfs.exe
O4 - Startup: igfxtray.exe
O4 - Startup: Mobiola Web Camera for UIQ 3.lnk = C:\Program Files\Mobiola Web Camera for UIQ 3\BtCam.exe
O4 - Startup: Mobiola Webcamera for Windows Mobile.lnk = L:\Mobiola Web Camera for S60\webcam.exe
O4 - Startup: Punto Switcher.lnk = C:\Program Files\Yandex\Punto Switcher\punto.exe
O4 - Startup: Vitrite.lnk = C:\Program Files\Tiny Utilities\Vitrite\Vitrite.exe
O8 - Extra context menu item: &Отправить в OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O8 - Extra context menu item: Закачать ВСЕ при помощи Download Master - C:\Program Files\Download Master\dmieall.htm
O8 - Extra context menu item: Закачать при помощи Download Master - C:\Program Files\Download Master\dmie.htm
O8 - Extra context menu item: Перевести с помощью ABBYY Lingvo x&3 - res://C:\Program Files\ABBYY Lingvo x3\Lingvo.exe/3000
O8 - Extra context menu item: Передать на удаленную закачку DM - C:\Program Files\Download Master\remdown.htm
O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra 'Tools' menuitem: &Настройки Gears - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra button: Отправить в OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Отправить в OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: WebMoney Advisor - {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} - C:\Program Files\WebMoney Advisor\tbcore3.dll
O9 - Extra 'Tools' menuitem: WebMoney Advisor - {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} - C:\Program Files\WebMoney Advisor\tbcore3.dll
O9 - Extra button: Mail.Ru Агент - {7558B7E5-7B26-4201-BEDB-00D5FF534523} - C:\Program Files\Mail.Ru\Agent\magent.exe
O9 - Extra 'Tools' menuitem: Mail.Ru Агент - {7558B7E5-7B26-4201-BEDB-00D5FF534523} - C:\Program Files\Mail.Ru\Agent\magent.exe
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: &Связанные заметки OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Связанные заметки OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Download Master - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - C:\Program Files\Download Master\dmaster.exe
O9 - Extra 'Tools' menuitem: &Download Master - {8DAE90AD-4583-4977-9DD4-4360F7A45C74} - C:\Program Files\Download Master\dmaster.exe
O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra button: QIP Infium - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP Infium\infium.exe (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{85F35B48-63E6-42F1-9D44-DFED5DAB950C}: NameServer = 91.144.152.3 91.144.154.3
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: WLCONTROL.DLL C:\PROGRA~1\GOOGLE\GOOGLE~4\GO36F4~1.DLL C:\PROGRA~2\VKSaver\vksaver3.dll
O23 - Service: 2GIS UpdateService (2GISUpdateService) - ООО ДубльГИС - C:\Program Files\2gis\3.0\2GISUpdateService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Служба Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

--
End of file - 13488 bytes

======Папка назначеных зданий======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Снимок реестра======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Dealio Toolbar - C:\Program Files\Dealio Toolbar\IE\4.3\dealioToolbarIE.dll [2011-01-28 726016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 297808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{154852b3-fd25-417f-ab7c-7e613c4468b1}]
Kinoshek.NET Toolbar - C:\Program Files\Kinoshek.NET\prxtbKin0.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-07-17 279944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine  - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6B5863A0-C43F-4C0A-982B-CC0E9125783F}]
QipLI Class - C:\Users\радуга\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2009-12-31 4220816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
DVDVideoSoftTB Toolbar - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll [2011-01-17 175912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class - c:\program files\mail.ru\sputnik\MailRuSputnik.dll [2011-07-10 1551056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
IE 4.x-6.x BHO for Download Master - C:\PROGRA~1\DOWNLO~1\dmiehlp.dll [2011-03-25 165184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9BFBA68E-E21B-458E-AE12-FE85E903D2C1}]
AlterGeoBHO Class - C:\Program Files\AlterGeo\AlterGeo Magic Scanner\3.3.2.779\AlterGeo.BrowserPlugin.dll [2011-06-08 282656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2009-12-30 561040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-02 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dfbeb35b-444d-4f25-8d7d-eb2683c206ec}]
MyPlayCityRU Toolbar - C:\Program Files\MyPlayCityRU\tbMyP0.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53}]
Google Gears Helper - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll [2010-02-23 2121728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
WebMoney Advisor - BHO Helper - C:\Program Files\WebMoney Advisor\tbcore3.dll [2010-02-24 2559608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Dealio Toolbar - C:\Program Files\Dealio Toolbar\IE\4.3\dealioToolbarIE.dll [2011-01-28 726016]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 297808]
{154852b3-fd25-417f-ab7c-7e613c4468b1} - Kinoshek.NET Toolbar - C:\Program Files\Kinoshek.NET\prxtbKin0.dll [2011-01-17 175912]
{1BB22D38-A411-4B13-A746-C2A4F4EC7344} - BigSeekPro Toolbar - C:\Program Files\BigSeekPro Toolbar\tbcore3.dll []
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-07-17 279944]
{338B4DFE-2E2C-4338-9E41-E176D497299E} - HyperCam Toolbar - C:\Program Files\HyperCam Toolbar\tbcore3.dll [2010-02-16 2495488]
{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} - WebMoney Advisor - C:\Program Files\WebMoney Advisor\tbcore3.dll [2010-02-24 2559608]
{872b5b88-9db5-4310-bdd0-ac189557e5f5} - DVDVideoSoftTB Toolbar - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll [2011-01-17 175912]
{91397D20-1446-11D4-8AF4-0040CA1127B6} - Яндекс.Бар - C:\Program Files\Yandex\YandexBarIE\yndbar.dll [2010-10-07 10971976]
{dfbeb35b-444d-4f25-8d7d-eb2683c206ec} - MyPlayCityRU Toolbar - C:\Program Files\MyPlayCityRU\tbMyP0.dll []
{EDF7BDB3-F1D6-4b9f-8E93-742A4D9443FC} - MyPlayCity.Бар - C:\Program Files\MyPlayCity\MyPlayCityBarIE\MyPlayCityBar.dll [2010-08-11 10368000]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine  - C:\Program Files\ConduitEngine\prxConduitEngine.dll [2011-01-17 175912]
{09900DE8-1DCA-443F-9243-26FF581438AF} - 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-12-25 8129056]
"VKSaver"=C:\ProgramData\VKSaver\VKSaver.exe [2011-05-15 224768]
"2Gis Update Notifier"=C:\Program Files\2gis\3.0\2GISTrayNotifier.exe [2011-05-31 4581208]
"MAgent"=C:\Program Files\Mail.Ru\Agent\MAgent.exe [2011-07-23 13233856]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Download Master"=C:\Program Files\Download Master\dmaster.exe [2011-08-04 3912768]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-09-04 3342336]
"GoldenFTPserver"=C:\Program Files\Golden FTP Server\GFTP.exe [2009-07-25 1710592]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-05-14 1479680]
"Sony Ericsson PC Companion"=C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2010-11-16 422912]
"TBPanel"=C:\Program Files\Vtune\TBPanel.exe [2009-10-05 2158592]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"Infium"=C:\Program Files\QIP 2010\qip.exe [2011-07-18 6812032]
"ICQ"=C:\Program Files\ICQ7.5\ICQ.exe [2011-08-01 124480]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-06-15 15141768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\2Gis Update Notifier]
C:\Program Files\2gis\3.0\2GISTrayNotifier.exe [2011-05-31 4581208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2009-12-31 91520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCU]
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [2009-08-04 346320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-11-18 30192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Guard.Mail.ru.gui]
C:\Program Files\Mail.Ru\Guard\GuardMailRu.exe [2011-07-23 1307856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2010-04-28 142120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lingvo Launcher]
C:\Program Files\ABBYY Lingvo x3\LvAgent.exe /STARTUP []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2010-03-30 1820040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MAgent]
C:\Program Files\Mail.Ru\Agent\MAgent.exe [2011-07-23 13233856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
C:\Program Files\Picasa2\PicasaMediaDetector.exe [2007-02-21 366400]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2010-03-17 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe [2011-01-28 526336]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\srtserv]
C:\ProgramData\srtserv\обои.exe [2010-12-19 648704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\System: PPFSYS.EXE Don`t remove it!]
C:\Windows\system32\ppfsys.exe [2004-06-01 122880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files\Unlocker\UnlockerAssistant.exe [2008-05-02 15872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VKSaver]
C:\ProgramData\VKSaver\VKSaver.exe [2011-05-15 224768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wmagent.exe]
C:\Program Files\WebMoney Agent\wmagent.exe [2009-10-19 210400]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Virtual Router Manager.lnk]
C:\Windows\Installer\{8DB05F7E-1F7A-4CC0-882F-375B97F04CD4}\_E6D9769DD20AF384865041.exe [2011-01-26 22486]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Wireless Connection Manager.lnk]
C:\PROGRA~1\D-Link\DWA-13~1\WIRELE~1.EXE [2009-09-10 505152]

C:\Users\радуга\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
chkntfs.exe
igfxtray.exe
Mobiola Web Camera for UIQ 3.lnk - C:\Program Files\Mobiola Web Camera for UIQ 3\BtCam.exe
Mobiola Webcamera for Windows Mobile.lnk - L:\Mobiola Web Camera for S60\webcam.exe
Punto Switcher.lnk - C:\Program Files\Yandex\Punto Switcher\punto.exe
Vitrite.lnk - C:\Program Files\Tiny Utilities\Vitrite\Vitrite.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="WLCONTROL.DLL C:\PROGRA~1\GOOGLE\GOOGLE~4\GO36F4~1.DLL C:\PROGRA~2\VKSaver\vksaver3.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2009-12-31 4220816]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"ConsentPromptBehaviorAdmin"=0
"EnableLUA"=0
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoLogoff"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"D:\The Sims 3\game\bin\Sims3Launcher.exe"="D:\The Sims 3\game\bin\Sims3Launcher.exe:127.0.0.1/255.255.255.255:Enabled:Sims3Launcher.exe"
"D:\The Sims 3\game\bin\TS3.exe"="D:\The Sims 3\game\bin\TS3.exe:127.0.0.1/255.255.255.255:Enabled:TS3.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======Ассоциации файлов======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======Список файлов и папок, созданных за последние 3 месяца======

2011-08-28 10:17:54 ----ASH---- C:\pagefile.sys
2011-08-27 23:06:17 ----RD---- C:\Users\радуга\AppData\Roaming\24C5CD0
2011-08-27 19:57:16 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-08-27 19:57:12 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-08-26 20:47:10 ----A---- C:\Windows\system32\drivers\netio.sys
2011-08-26 20:34:52 ----A---- C:\Windows\system32\MRT.exe
2011-08-26 20:33:40 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-08-26 20:33:33 ----A---- C:\Windows\system32\drivers\ks.sys
2011-08-26 20:33:25 ----A---- C:\Windows\system32\wcncsvc.dll
2011-08-26 20:31:36 ----A---- C:\Windows\system32\prevhost.exe
2011-08-26 20:31:35 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-08-26 20:31:22 ----A---- C:\Windows\system32\mf.dll
2011-08-26 20:31:22 ----A---- C:\Windows\system32\d3d10warp.dll
2011-08-26 20:31:21 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-08-26 20:31:21 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-08-26 20:31:21 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-08-26 20:31:21 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-08-26 20:31:21 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-08-26 20:31:19 ----A---- C:\Windows\system32\msdri.dll
2011-08-26 20:31:18 ----A---- C:\Windows\system32\psisdecd.dll
2011-08-26 20:31:15 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-08-26 20:31:15 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-08-26 20:31:15 ----A---- C:\Windows\system32\drivers\srv.sys
2011-08-26 20:31:14 ----A---- C:\Windows\system32\drivers\afd.sys
2011-08-26 20:31:11 ----A---- C:\Windows\system32\tzres.dll
2011-08-26 20:31:05 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-08-26 20:31:04 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-08-26 20:31:04 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-08-26 20:31:02 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-08-26 20:31:02 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-08-26 20:31:00 ----A---- C:\Windows\system32\upnp.dll
2011-08-26 20:30:59 ----A---- C:\Windows\system32\wscsvc.dll
2011-08-26 20:30:59 ----A---- C:\Windows\system32\wscapi.dll
2011-08-26 20:30:59 ----A---- C:\Windows\system32\winhttp.dll
2011-08-26 20:30:59 ----A---- C:\Windows\system32\WebClnt.dll
2011-08-26 20:30:59 ----A---- C:\Windows\system32\slwga.dll
2011-08-26 20:30:59 ----A---- C:\Windows\system32\msxml6.dll
2011-08-26 20:30:59 ----A---- C:\Windows\system32\msxml3.dll
2011-08-26 20:30:59 ----A---- C:\Windows\system32\davclnt.dll
2011-08-26 20:30:57 ----A---- C:\Windows\system32\KernelBase.dll
2011-08-26 20:30:57 ----A---- C:\Windows\system32\kernel32.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-08-26 20:30:56 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-08-26 20:30:56 ----A---- C:\Windows\system32\winsrv.dll
2011-08-26 20:30:56 ----A---- C:\Windows\system32\conhost.exe
2011-08-26 20:30:53 ----A---- C:\Windows\system32\tquery.dll
2011-08-26 20:30:53 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2011-08-26 20:30:53 ----A---- C:\Windows\system32\SearchIndexer.exe
2011-08-26 20:30:53 ----A---- C:\Windows\system32\SearchFilterHost.exe
2011-08-26 20:30:53 ----A---- C:\Windows\system32\mssvp.dll
2011-08-26 20:30:53 ----A---- C:\Windows\system32\mssrch.dll
2011-08-26 20:30:53 ----A---- C:\Windows\system32\mssphtb.dll
2011-08-26 20:30:53 ----A---- C:\Windows\system32\mssph.dll
2011-08-26 20:30:53 ----A---- C:\Windows\system32\msscntrs.dll
2011-08-26 20:30:51 ----A---- C:\Windows\system32\FntCache.dll
2011-08-26 20:30:51 ----A---- C:\Windows\system32\DWrite.dll
2011-08-26 20:30:51 ----A---- C:\Windows\system32\d2d1.dll
2011-08-26 20:30:50 ----A---- C:\Windows\system32\vbscript.dll
2011-08-26 20:30:50 ----A---- C:\Windows\system32\jscript.dll
2011-08-26 20:30:47 ----A---- C:\Windows\system32\XpsPrint.dll
2011-08-26 20:30:45 ----A---- C:\Windows\system32\mfc42u.dll
2011-08-26 20:30:45 ----A---- C:\Windows\system32\mfc42.dll
2011-08-26 20:30:44 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-08-26 20:30:44 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-08-26 20:30:44 ----A---- C:\Windows\system32\secproc_isv.dll
2011-08-26 20:30:44 ----A---- C:\Windows\system32\secproc.dll
2011-08-26 20:30:44 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-08-26 20:30:44 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-08-26 20:30:44 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-08-26 20:30:44 ----A---- C:\Windows\system32\RMActivate.exe
2011-08-26 20:30:43 ----A---- C:\Windows\explorer.exe
2011-08-26 20:30:41 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-08-26 20:30:39 ----A---- C:\Windows\system32\win32k.sys
2011-08-26 20:30:36 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-08-26 20:30:35 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-08-26 20:30:35 ----A---- C:\Windows\system32\dnsapi.dll
2011-08-26 20:30:34 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-08-26 20:30:33 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-08-26 20:30:33 ----A---- C:\Windows\system32\atmlib.dll
2011-08-26 20:30:33 ----A---- C:\Windows\system32\atmfd.dll
2011-08-26 20:30:31 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-08-26 20:30:31 ----A---- C:\Windows\system32\oleaut32.dll
2011-08-26 20:30:30 ----A---- C:\Windows\system32\d3d10_1.dll
2011-08-26 20:30:29 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-08-26 20:30:27 ----A---- C:\Windows\system32\xmllite.dll
2011-08-26 20:27:56 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-08-26 20:27:35 ----A---- C:\Windows\system32\mshtml.dll
2011-08-26 20:27:34 ----A---- C:\Windows\system32\iertutil.dll
2011-08-26 20:27:33 ----A---- C:\Windows\system32\urlmon.dll
2011-08-26 20:27:33 ----A---- C:\Windows\system32\ieframe.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\wininet.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\url.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\mstime.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\mshtmled.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\msfeedssync.exe
2011-08-26 20:27:32 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\msfeeds.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\licmgr10.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\jsproxy.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\ieui.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\iepeers.dll
2011-08-26 20:27:32 ----A---- C:\Windows\system32\iedkcs32.dll
2011-08-26 20:27:26 ----A---- C:\Windows\system32\odbctrac.dll
2011-08-26 20:27:26 ----A---- C:\Windows\system32\odbcjt32.dll
2011-08-26 20:27:26 ----A---- C:\Windows\system32\odbccu32.dll
2011-08-26 20:27:26 ----A---- C:\Windows\system32\odbccr32.dll
2011-08-26 20:27:26 ----A---- C:\Windows\system32\odbccp32.dll
2011-08-26 20:26:27 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-08-26 20:26:26 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-08-26 20:26:26 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-08-26 20:26:26 ----A---- C:\Windows\system32\cdd.dll
2011-08-26 20:26:06 ----A---- C:\Windows\system32\poqexec.exe
2011-08-26 20:25:41 ----A---- C:\Windows\system32\inetcomm.dll
2011-08-20 12:45:53 ----RD---- C:\Users\радуга\AppData\Roaming\24C5B62
2011-08-19 12:10:50 ----D---- C:\Users\радуга\AppData\Roaming\MicroST
2011-08-19 12:10:24 ----D---- C:\Users\радуга\AppData\Roaming\KYL
2011-08-18 20:05:54 ----A---- C:\Windows\KernelBase.dll
2011-08-17 10:20:06 ----D---- C:\Users\радуга\AppData\Roaming\24c5a0a
2011-07-25 22:29:33 ----D---- C:\Program Files\ICQ7.5
2011-07-25 22:27:17 ----D---- C:\Program Files\QIP 2010
2011-07-23 15:46:39 ----D---- C:\Users\радуга\AppData\Roaming\Mra
2011-07-23 15:45:49 ----D---- C:\Program Files\AlterGeo
2011-07-08 12:06:44 ----D---- C:\Users\радуга\AppData\Roaming\Publish Providers
2011-07-08 11:42:38 ----D---- C:\ProgramData\Sony
2011-07-07 23:36:42 ----D---- C:\Users\радуга\AppData\Roaming\go
2011-07-07 23:36:40 ----D---- C:\ProgramData\Easybits GO
2011-06-21 15:08:40 ----D---- C:\Users\радуга\AppData\Roaming\mkvtoolnix
2011-06-21 15:08:25 ----D---- C:\Program Files\MKVtoolnix
2011-06-13 13:58:59 ----D---- C:\Program Files\Rovio
2011-06-12 17:00:25 ----D---- C:\Users\радуга\AppData\Roaming\AVCWare
2011-06-12 16:57:27 ----D---- C:\Program Files\AVCWare
2011-06-04 11:45:29 ----D---- C:\ProgramData\Skype Extras

======Список файлов и папок, измененных за последние 3 месяца======

2011-08-28 10:30:28 ----D---- C:\rsit
2011-08-28 10:25:14 ----D---- C:\Windows\Temp
2011-08-28 10:24:33 ----D---- C:\Windows\AppPatch
2011-08-28 10:22:05 ----D---- C:\Windows\system32\config
2011-08-28 10:20:19 ----D---- C:\Windows\Prefetch
2011-08-28 10:20:13 ----D---- C:\Users\радуга\AppData\Roaming\Skype
2011-08-28 10:19:27 ----AD---- C:\ProgramData\TEMP
2011-08-27 21:58:26 ----D---- C:\Windows\system32\drivers
2011-08-27 21:29:27 ----D---- C:\Windows\System32
2011-08-27 21:29:27 ----D---- C:\Windows\inf
2011-08-27 21:29:27 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-08-27 20:57:50 ----SHD---- C:\System Volume Information
2011-08-27 19:57:16 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-08-27 19:39:17 ----D---- C:\ProgramData\srtserv
2011-08-27 19:22:55 ----SHD---- C:\Windows\Installer
2011-08-27 19:22:54 ----SHD---- C:\Config.Msi
2011-08-27 14:19:23 ----D---- C:\Windows\Microsoft.NET
2011-08-27 14:19:00 ----RSD---- C:\Windows\assembly
2011-08-26 21:27:35 ----D---- C:\Windows\winsxs
2011-08-26 21:15:46 ----D---- C:\Windows
2011-08-26 21:14:32 ----D---- C:\Program Files\Microsoft Silverlight
2011-08-26 21:12:32 ----RSD---- C:\Windows\Fonts
2011-08-26 21:12:32 ----D---- C:\Windows\system32\ru-RU
2011-08-26 21:12:32 ----D---- C:\Windows\system32\en-US
2011-08-26 21:12:32 ----D---- C:\Windows\ehome
2011-08-26 21:12:31 ----D---- C:\Windows\system32\migration
2011-08-26 21:12:31 ----D---- C:\Program Files\Internet Explorer
2011-08-26 21:12:30 ----D---- C:\Windows\system32\DriverStore
2011-08-26 21:11:59 ----D---- C:\Users\радуга\AppData\Roaming\uTorrent
2011-08-26 20:50:08 ----D---- C:\Windows\system32\catroot
2011-08-26 20:47:29 ----SD---- C:\ProgramData\Microsoft
2011-08-26 20:41:46 ----A---- C:\Windows\system32\MRT.INI
2011-08-26 20:34:54 ----D---- C:\Windows\debug
2011-08-26 20:34:06 ----D---- C:\ProgramData\Microsoft Help
2011-08-26 20:33:35 ----D---- C:\Windows\system32\catroot2
2011-08-26 20:33:03 ----D---- C:\Program Files\NVIDIA Corporation
2011-08-26 19:53:41 ----D---- C:\ProgramData\DAEMON Tools Lite
2011-08-23 12:33:12 ----D---- C:\Program Files\Download Master
2011-08-21 21:04:58 ----D---- C:\ProgramData\Zoom Player
2011-08-21 11:49:50 ----D---- C:\Program Files\Opera2
2011-08-20 23:14:30 ----D---- C:\Users\радуга\AppData\Roaming\ICQ
2011-08-19 14:17:05 ----D---- C:\Windows\system32\Tasks
2011-08-19 14:17:03 ----D---- C:\Windows\Tasks
2011-08-19 14:14:07 ----D---- C:\Program Files\Google
2011-08-19 14:14:06 ----D---- C:\ProgramData\Google
2011-08-18 21:55:09 ----D---- C:\Windows\system32\LogFiles
2011-08-17 20:26:48 ----D---- C:\Users\радуга\AppData\Roaming\Yandex
2011-08-17 12:42:38 ----D---- C:\Program Files\Mozilla Firefox
2011-08-17 10:20:20 ----D---- C:\Program Files\Opera
2011-08-08 20:20:08 ----A---- C:\Windows\SignSIS.EXE
2011-07-25 22:30:11 ----RD---- C:\Program Files
2011-07-25 22:30:11 ----HD---- C:\Program Files\InstallShield Installation Information
2011-07-25 22:30:07 ----D---- C:\ProgramData\ICQ
2011-07-25 22:26:00 ----D---- C:\Program Files\QIP
2011-07-25 22:25:53 ----D---- C:\Program Files\QIP Infium
2011-07-23 15:46:39 ----D---- C:\Program Files\Mail.Ru
2011-07-14 12:36:17 ----SD---- C:\Users\радуга\AppData\Roaming\Microsoft
2011-07-10 22:44:52 ----RD---- C:\Program Files\Skype
2011-07-10 22:44:51 ----D---- C:\ProgramData\Skype
2011-07-10 22:44:44 ----D---- C:\Program Files\Common Files
2011-07-10 18:38:14 ----D---- C:\Users\радуга\AppData\Roaming\Mail.Ru
2011-07-08 12:59:03 ----D---- C:\Program Files\Sony
2011-07-08 12:51:02 ----D---- C:\Users\радуга\AppData\Roaming\Sony
2011-07-08 11:42:38 ----HD---- C:\ProgramData
2011-07-07 17:48:05 ----D---- C:\Users\радуга\AppData\Roaming\skypePM
2011-06-16 23:46:32 ----D---- C:\Windows\system32\NDF
2011-06-16 22:12:05 ----D---- C:\Users\радуга\AppData\Roaming\Download Master
2011-06-16 12:58:32 ----D---- C:\Program Files\MyPlayCity.ru
2011-06-16 12:58:03 ----D---- C:\Program Files\VKMusic 3
2011-06-13 13:59:53 ----D---- C:\Users\радуга\AppData\Roaming\Rovio
2011-06-11 22:12:02 ----D---- C:\Windows\Minidump
2011-06-09 22:31:41 ----D---- C:\Users\радуга\AppData\Roaming\vlc
2011-06-09 22:31:35 ----D---- C:\Users\радуга\AppData\Roaming\dvdcss
2011-06-02 14:44:35 ----D---- C:\ProgramData\Codemasters
2011-06-02 14:40:43 ----D---- C:\Program Files\OpenAL

======Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено)======

R0 PxHelp20;PxHelp20; C:\Windows\system32\Drivers\PxHelp20.sys [2006-11-02 36624]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 appdrv01;Application Driver (01); C:\Windows\System32\Drivers\appdrv01.sys [2010-01-08 2997872]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-04-05 218688]
R1 XPROTECTOR;XPROTECTOR; \??\C:\Windows\system32\drivers\Oreans.sys [2010-04-24 41888]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2008-01-24 41984]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys [2007-03-16 12256]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-12-25 2981024]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x86.sys [2009-07-14 50688]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2010-12-28 27632]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-11-01 691696]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTCAMDRV;Mobiola Web Camera driver; C:\Windows\system32\DRIVERS\BTCamDrv.sys [2006-11-01 219264]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2011-05-21 17488]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2010-12-28 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2010-12-28 25512]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-04-23 25280]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 tap0801;TAP-Win32 Adapter V8; C:\Windows\system32\DRIVERS\tap0801.sys [2006-04-12 23552]
S3 usbscan;Драйвер USB-сканера; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbser;Sony Ericsson USB Serial Port; C:\Windows\system32\DRIVERS\usbser.sys [2009-07-14 27648]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

======Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 TeamViewer6;TeamViewer 6; C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2011-04-15 2280312]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-08-25 133104]
S3 2GISUpdateService;2GIS UpdateService; C:\Program Files\2gis\3.0\2GISUpdateService.exe [2011-05-31 874328]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Служба Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-08-25 133104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-01-02 182768]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2009-12-31 30935416]
S3 ose;Office  Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2009-12-29 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2009-12-29 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-03-16 1343400]
S4 ABBYY.Licensing.Lingvo.Desktop.14.0;Сервис лицензирования ABBYY Lingvo x3; C:\Program Files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe [2009-07-06 816392]
S4 appdrvrem01;Application Driver Auto Removal Service (01); C:\Windows\System32\appdrvrem01.exe [2010-01-08 316816]
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
S4 Application Updater;Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [2011-01-28 387072]
S4 BCUService;Browser Configuration Utility Service; C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
S4 Bonjour Service;Служба Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376]
S4 ES lite Service;ES lite Service for program management.; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [2009-03-02 68136]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-06-20 655624]
S4 G6FTPServer;Gene6 FTP Server; C:\Program Files\Gene6 FTP Server\G6FTPSERVER.EXE [2007-10-22 470016]
S4 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-11-18 30192]
S4 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1107336]
S4 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2009-06-09 222968]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 iPod Service;Сервис iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-04-28 545576]
S4 MySQL;MySQL; C:\AppServ\mysql\bin\mysqld-nt.exe [2004-10-25 3485696]
S4 NoIPDUCService;NoIPDUCService; C:\Program Files\No-IP\DUC20.exe [2009-10-17 1172992]
S4 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-04-03 129640]
S4 ScrambyServer;Scramby Server; C:\Program Files\RapidSolution\Scramby\ScrambyServer.exe [2007-09-14 344064]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S4 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2010-10-26 155344]
S4 TBFTPSyncService;TurboFTP Sync Service; C:\Program Files\TurboFTP\tftpsvc.exe [2010-05-03 1454080]
S4 Virtual Router;VirtualRouterService; C:\Program Files\Virtual Router\VirtualRouterService.exe [2009-11-18 12288]
S4 WlanWpsSvc;WlanWpsSvc; C:\Program Files\D-Link\DWA-131 revA\WlanWpsSvc.exe [2008-06-26 167936]

-----------------EOF-----------------