Лог утилиты random's system information tool 1.09 (автор: random/random)
Run by Администратор at 2011-09-19 13:38:50
Microsoft Windows 7 Максимальная  Service Pack 1
Системный раздел C: размер 32 GB (66%) Свободно 48 GB
Total RAM: 1787 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:40:05, on 19.09.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Program Files\Lenovo\Energy Management\utility.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Yandex\Punto Switcher\punto.exe
C:\Users\Администратор\Desktop\RSIT.exe
C:\Program Files\trend micro\Администратор.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.4free.in.ua/index.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yandex.ru/?clid=21994
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer предоставлен: www.4free.in.ua
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: Яндекс.Бар - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\YandexBarIE\yndbar.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3 
O4 - HKLM\..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: BWMeter.lnk = C:\Program Files\BWMeter\BWMeter.exe
O4 - Startup: Punto Switcher.lnk = C:\Program Files\Yandex\Punto Switcher\punto.exe
O8 - Extra context menu item: &Отправить в OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O9 - Extra button: Отправить в OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Отправить в OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: &Связанные заметки OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Связанные заметки OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: BWMeter Connections Service (BWMeterConSvc) - Unknown owner - C:\Program Files\BWMeter\BWMeterConSvc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: MotoHelper Service (MotoHelper) - Unknown owner - C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe

--
End of file - 5363 bytes

======Снимок реестра======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{91397D20-1446-11D4-8AF4-0040CA1127B6} - Яндекс.Бар - C:\Program Files\Yandex\YandexBarIE\yndbar.dll [2009-04-15 3699488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-01-14 2219184]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-05-20 9177632]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [2010-05-20 1423904]
"EnergyUtility"=C:\Program Files\Lenovo\Energy Management\utility.exe [2010-04-12 4204448]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2011-08-31 449608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1174016]

C:\Users\Администратор\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
BWMeter.lnk - C:\Program Files\BWMeter\BWMeter.exe
Punto Switcher.lnk - C:\Program Files\Yandex\Punto Switcher\punto.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=0
"EnableInstallerDetection"=0
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceClassicControlPanel"=1
"NoSMConfigurePrograms"=1
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Windows\system\wmiaspvr.exe"="C:\Windows\system\wmiaspvr.exe:*:Enabled:Обозреватель компьютеров"
"C:\Windows\system\WindowsUpdater.exe"="C:\Windows\system\WindowsUpdater.exe:*:Enabled:Windows XP Update"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======Ассоциации файлов======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======Список файлов и папок, созданных за последние 3 месяца======

2011-09-19 13:32:47 ----D---- C:\Program Files\trend micro
2011-09-19 13:32:46 ----D---- C:\rsit
2011-09-18 19:12:49 ----D---- C:\Users\Администратор\AppData\Roaming\Malwarebytes
2011-09-18 19:12:44 ----D---- C:\ProgramData\Malwarebytes
2011-09-18 19:12:40 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-09-18 19:12:40 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-09-18 16:51:25 ----A---- C:\Windows\system32\drivers\vdi5nzu2.sys
2011-09-17 22:28:15 ----SHD---- C:\Config.Msi
2011-09-17 13:43:04 ----A---- C:\Windows\system32\fsutil.exe
2011-09-17 13:43:04 ----A---- C:\Windows\system32\esent.dll
2011-09-17 13:43:04 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-09-17 13:43:03 ----A---- C:\Windows\system32\drivers\storport.sys
2011-09-17 13:43:03 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-09-17 13:43:03 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-09-17 13:43:02 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-09-17 13:43:02 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-09-17 13:43:02 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-09-17 13:43:02 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-09-17 13:38:21 ----A---- C:\Windows\explorer.exe
2011-09-17 13:34:19 ----A---- C:\Windows\system32\FntCache.dll
2011-09-17 13:34:19 ----A---- C:\Windows\system32\DWrite.dll
2011-09-17 13:34:19 ----A---- C:\Windows\system32\d2d1.dll
2011-09-17 13:30:15 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-09-17 13:11:30 ----D---- C:\Windows\system32\Wat
2011-09-15 16:22:27 ----D---- C:\temp
2011-09-14 00:11:00 ----D---- C:\ProgramData\TamoSoft
2011-09-14 00:10:49 ----D---- C:\Program Files\CommViewWiFi
2011-09-13 20:05:11 ----A---- C:\Windows\system32\prevhost.exe
2011-09-13 20:05:10 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2011-09-13 20:05:10 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-09-13 20:05:10 ----A---- C:\Windows\system32\drivers\usbohci.sys
2011-09-13 20:05:10 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-09-13 20:05:10 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-09-13 20:05:10 ----A---- C:\Windows\system32\drivers\usbd.sys
2011-09-13 20:05:10 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-09-13 20:04:39 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-09-13 20:00:36 ----A---- C:\Windows\system32\d3d10_1.dll
2011-09-13 20:00:31 ----A---- C:\Windows\system32\xmllite.dll
2011-09-13 20:00:21 ----A---- C:\Windows\system32\XpsPrint.dll
2011-09-13 20:00:03 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-09-12 22:31:20 ----RD---- C:\Program Files\Skype
2011-09-12 01:57:38 ----D---- C:\Program Files\uTorrent
2011-09-12 01:55:05 ----D---- C:\Users\Администратор\AppData\Roaming\uTorrent
2011-09-12 01:26:24 ----D---- C:\ProgramData\Yandex
2011-09-12 00:42:29 ----A---- C:\Windows\system32\tzres.dll
2011-09-12 00:40:59 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2011-09-12 00:40:59 ----A---- C:\Windows\system32\drivers\bthport.sys
2011-08-30 12:55:30 ----A---- C:\Windows\system32\MRT.exe
2011-08-30 12:54:08 ----D---- C:\Program Files\MSXML 4.0
2011-08-30 12:53:32 ----A---- C:\Windows\system32\poqexec.exe
2011-08-30 12:53:29 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-08-30 12:53:29 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-08-30 12:53:29 ----A---- C:\Windows\system32\dnsapi.dll
2011-08-30 12:53:17 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-08-30 12:53:10 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-08-30 12:53:08 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-08-30 12:53:06 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-08-30 12:53:06 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-08-30 12:53:06 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-08-30 12:53:06 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-08-30 12:53:06 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-08-30 12:53:06 ----A---- C:\Windows\system32\winsrv.dll
2011-08-30 12:53:06 ----A---- C:\Windows\system32\KernelBase.dll
2011-08-30 12:53:06 ----A---- C:\Windows\system32\kernel32.dll
2011-08-30 12:53:06 ----A---- C:\Windows\system32\conhost.exe
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-08-30 12:53:05 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-08-30 12:53:03 ----A---- C:\Windows\system32\sbe.dll
2011-08-30 12:53:03 ----A---- C:\Windows\system32\EncDec.dll
2011-08-30 12:53:03 ----A---- C:\Windows\system32\CPFilters.dll
2011-08-30 12:52:59 ----A---- C:\Windows\system32\mshtml.dll
2011-08-30 12:52:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-08-30 12:52:55 ----A---- C:\Windows\system32\drivers\afd.sys
2011-08-30 12:52:54 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-08-30 12:52:54 ----A---- C:\Windows\system32\drivers\srv.sys
2011-08-30 12:52:53 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-08-30 12:52:52 ----A---- C:\Windows\system32\fontsub.dll
2011-08-30 12:52:52 ----A---- C:\Windows\system32\atmlib.dll
2011-08-30 12:52:52 ----A---- C:\Windows\system32\atmfd.dll
2011-08-30 12:52:51 ----A---- C:\Windows\system32\mfc42u.dll
2011-08-30 12:52:51 ----A---- C:\Windows\system32\mfc42.dll
2011-08-30 12:52:49 ----A---- C:\Windows\system32\vbscript.dll
2011-08-30 12:52:49 ----A---- C:\Windows\system32\jscript.dll
2011-08-30 12:52:48 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-08-30 12:52:47 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-08-30 12:52:47 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-08-30 12:52:46 ----A---- C:\Windows\system32\inetcomm.dll
2011-08-30 12:52:45 ----A---- C:\Windows\system32\odbcjt32.dll
2011-08-30 12:52:45 ----A---- C:\Windows\system32\odbccu32.dll
2011-08-30 12:52:45 ----A---- C:\Windows\system32\odbccr32.dll
2011-08-30 12:52:45 ----A---- C:\Windows\system32\odbccp32.dll
2011-08-30 12:52:44 ----A---- C:\Windows\system32\odbctrac.dll
2011-08-30 12:52:43 ----A---- C:\Windows\system32\oleaut32.dll
2011-08-30 12:52:41 ----A---- C:\Windows\system32\kerberos.dll
2011-08-30 12:52:40 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-08-30 12:52:36 ----A---- C:\Windows\system32\win32k.sys
2011-07-19 16:09:57 ----D---- C:\Program Files\LizardTech
2011-06-22 10:10:52 ----A---- C:\Windows\easycapturethumb.ini
2011-06-22 10:07:26 ----A---- C:\Windows\system32\Скачать драйвера для веб камеры - Genius, Creative, Asus, Logitech, A4Tech, Microsoft, Media-Tech, Trust, Canyon, SAMSUNG , Sonix, Kreolz, Maxell, MSI, eMPIA, SpeedLink, Q-Tec, Syntek, Ham.htm.lnk

======Список файлов и папок, измененных за последние 3 месяца======

2011-09-19 13:39:33 ----D---- C:\Windows\inf
2011-09-19 13:39:33 ----AD---- C:\Windows\System32
2011-09-19 13:39:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-09-19 13:38:51 ----D---- C:\Windows\Temp
2011-09-19 13:32:47 ----RD---- C:\Program Files
2011-09-19 13:21:51 ----D---- C:\Windows\system32\drivers
2011-09-19 13:17:26 ----D---- C:\Windows\SchCache
2011-09-19 13:15:26 ----D---- C:\Windows\system
2011-09-19 12:11:37 ----D---- C:\Windows\Prefetch
2011-09-19 00:39:10 ----D---- C:\Users\Администратор\AppData\Roaming\Skype
2011-09-18 19:12:44 ----HD---- C:\ProgramData
2011-09-18 18:42:43 ----D---- C:\Windows\system32\config
2011-09-18 18:42:39 ----D---- C:\Windows\winsxs
2011-09-18 18:25:00 ----D---- C:\Windows\rescache
2011-09-18 16:43:27 ----D---- C:\Windows\system32\catroot2
2011-09-18 11:18:49 ----SHD---- C:\System Volume Information
2011-09-18 10:51:07 ----D---- C:\Windows\Tasks
2011-09-18 10:51:07 ----D---- C:\Windows\system32\wfp
2011-09-18 10:51:07 ----D---- C:\Windows
2011-09-18 10:51:06 ----D---- C:\Windows\system32\wbem
2011-09-18 10:50:21 ----D---- C:\Windows\system32\DriverStore
2011-09-18 10:50:20 ----SHD---- C:\Windows\Installer
2011-09-18 10:50:17 ----D---- C:\Program Files\CCleaner
2011-09-18 10:50:16 ----D---- C:\Windows\registration
2011-09-18 10:50:06 ----D---- C:\ProgramData\Skype
2011-09-17 22:28:31 ----D---- C:\Program Files\Common Files
2011-09-17 22:26:54 ----D---- C:\Windows\system32\appmgmt
2011-09-17 16:35:14 ----D---- C:\Windows\Logs
2011-09-17 13:53:44 ----RSD---- C:\Windows\Fonts
2011-09-17 13:53:44 ----D---- C:\Windows\system32\ru-RU
2011-09-17 13:53:44 ----D---- C:\Windows\system32\en-US
2011-09-17 13:23:08 ----D---- C:\Windows\AppPatch
2011-09-17 13:11:28 ----D---- C:\Windows\system32\catroot
2011-09-17 13:05:42 ----SD---- C:\Users\Администратор\AppData\Roaming\Microsoft
2011-09-17 12:52:52 ----D---- C:\Windows\system32\NDF
2011-09-15 11:50:45 ----AD---- C:\ProgramData\Temp
2011-09-15 11:50:40 ----D---- C:\Windows\debug
2011-09-15 11:36:36 ----D---- C:\Users\Администратор\AppData\Roaming\Auslogics
2011-09-13 00:19:57 ----D---- C:\Program Files\Google
2011-09-12 22:31:23 ----D---- C:\Windows\system32\Tasks
2011-09-12 01:26:24 ----D---- C:\Users\Администратор\AppData\Roaming\Yandex
2011-09-12 01:26:22 ----D---- C:\Program Files\Yandex
2011-09-10 21:24:25 ----D---- C:\Windows\system32\LogFiles
2011-09-06 17:55:18 ----D---- C:\Windows\system32\wdi
2011-09-02 17:34:20 ----SD---- C:\ProgramData\Microsoft
2011-08-30 17:10:29 ----D---- C:\Windows\Microsoft.NET
2011-08-30 17:10:14 ----RSD---- C:\Windows\assembly
2011-08-30 12:56:59 ----D---- C:\Windows\SoftwareDistribution
2011-08-20 19:22:32 ----D---- C:\Program Files\Opera
2011-08-16 13:13:03 ----HD---- C:\Windows\system32\GroupPolicy
2011-08-04 08:52:00 ----D---- C:\Windows\ModemLogs
2011-08-01 20:42:09 ----D---- C:\Program Files\KMPlayer
2011-07-19 16:09:57 ----HD---- C:\Program Files\InstallShield Installation Information
2011-07-19 16:09:24 ----D---- C:\Program Files\Common Files\InstallShield
2011-07-14 17:49:42 ----D---- C:\Windows\Lhsp
2011-07-14 17:36:02 ----D---- C:\Windows\Speech
2011-07-14 17:35:59 ----D---- C:\Windows\msagent
2011-07-14 17:35:59 ----D---- C:\Windows\Help

======Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2010-05-17 14392]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX86.sys [2010-01-15 32352]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-05-07 443448]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 388096]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
R1 TsLwWfF;WiFi Capture Driver; C:\Windows\system32\DRIVERS\TsLwWfF.sys [2011-05-12 22632]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 95384]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2010-01-20 23136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-05-17 5340160]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-05-17 152064]
R3 BCM43XX;Драйвер сетевого адаптера Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2010-02-02 2707448]
R3 dsnpfdMP;dsnpfdMP; C:\Windows\system32\DRIVERS\dsnpfd.sys [2011-05-09 28552]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-05-20 3084256]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2010-05-17 66600]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 22216]
R3 motmodem;Motorola USB CDC ACM Driver; C:\Windows\system32\DRIVERS\motmodem.sys [2010-09-29 24064]
R3 slabbus;CP210x USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\slabbus.sys [2004-12-16 55312]
R3 slabser;CP210x USB to UART Bridge Controller Drivers; C:\Windows\system32\DRIVERS\slabser.sys [2004-12-16 89808]
R3 usbsmi;Lenovo EasyCamera; C:\Windows\system32\DRIVERS\SMIksdrv.sys [2009-10-26 171776]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthAvrcp;Профиль Bluetooth AVRCP; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
S3 BthEnum;Служба перечислителя Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Устройства Bluetooth (личной сети); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Драйвер порта Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 62464]
S3 dsnpfd;Dsnpfd Service; C:\Windows\system32\DRIVERS\dsnpfd.sys [2011-05-09 28552]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 15872]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-05-17 189984]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-21 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 112640]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 17920]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-08-06 128104]
S3 wsvd;wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [2009-07-21 81704]

======Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-05-17 172032]
R2 BWMeterConSvc;BWMeter Connections Service; C:\Program Files\BWMeter\BWMeterConSvc.exe [2011-05-09 62464]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-14 810144]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
R2 MotoHelper;MotoHelper Service; C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe [2010-12-03 218432]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-01-14 33584]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 ose;Office  Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-17 1343400]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------