Лог утилиты random's system information tool 1.09 (автор: random/random) Run by Grigory at 2013-04-14 20:08:23 Microsoft Windows 7 Максимальная Service Pack 1 Системный раздел C: размер 87 GB (37%) Свободно 238 GB Total RAM: 4092 MB (49% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:08:32, on 14.04.2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16476) Boot mode: Normal Running processes: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\ProgramData\VKSaver\VKSaver.exe C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\22.0.1106.241\crash_service.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe C:\Users\Grigory\Desktop\avz4\avz.exe C:\Program Files\trend micro\Grigory.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;ftp=;https=; R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll O2 - BHO: Спутник@Mail.Ru - {8984B388-A5BB-4DF7-B274-77B879E179DB} - (no file) O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [VKSaver] C:\ProgramData\VKSaver\VKSaver.exe O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [SyncManPath] "C:\Users\Grigory\AppData\Roaming\Yandex\YandexDisk\YandexDisk.exe" -autostart O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (HKCU) O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\PROGRA~3\Mozilla\kbztnkd.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Служба Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing) O23 - Service: Сервис iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\STacSV64.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - Unknown owner - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9964 bytes ======Список процессов====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe winlogon.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\STacSV64.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\Hpservice.exe atieclxx C:\Windows\system32\svchost.exe -k NetworkService taskeng.exe {38AECCAD-0AD6-42E3-9B42-624B40844BD5} C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\ProgramData\VKSaver\VKSaver.exe -autoupdate C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe "C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" "taskhost.exe" "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE taskeng.exe {8A4F0980-73A8-4557-A28D-790E1FF5A98C} "C:\Program Files\Bonjour\mDNSResponder.exe" "C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe" "C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice "C:\Program Files\Synaptics\SynTP\SynTPHelper.exe" "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "C:\Users\Grigory\AppData\Roaming\Yandex\YandexDisk\YandexDisk.exe" -autostart "C:\ProgramData\VKSaver\VKSaver.exe" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow WLIDSvcM.exe 2232 C:\Windows\system32\SearchIndexer.exe /Embedding C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-34c9e5d9-0fdd-4da1-b114-0118b519dca7 -SystemEventPortName:HostProcess-be714c8f-7b60-42c5-b209-856992774f84 -IoCancelEventPortName:HostProcess-3bd4ec9f-eb8a-4003-9fb1-4414112943d7 -NonStateChangingEventPortName:HostProcess-06f32437-aa4d-482f-8da6-4755a19affd0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0941ba33-1091-4b48-b6f8-3910150669b8 -DeviceGroupId:WpdFsGroup "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\wbem\wmiprvse.exe crash_service.exe --max-reports=10 "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --extension-process --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.1.1342746887\711156619" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=gpu-process --channel="4000.2.1820194907\468612260" --user-id --reduce-gpu-sandbox --disable-image-transport-surface --gpu-vendor-id=0x1002 --gpu-device-id=0x9480 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.970.100.3000 --ignored=" --type=renderer " --user-id /prefetch:12 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --extension-process --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.3.1841738322\1714716968" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.4.477626420\1857968892" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.5.616812606\926872923" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.6.994298784\2118769302" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.7.1176901891\666351084" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.8.2056600502\1527766831" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.9.938238591\1374831684" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.10.1837807104\1952597866" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=renderer --lang=ru --force-fieldtrials=GlobalSdch/global_enable_sdch/Yandex.Browserver/inactive/ --user-id --disable-client-side-phishing-detection --brand-id=yandex --channel="4000.11.978281558\448397988" /prefetch:3 "C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --type=plugin --plugin-path="C:\Users\Grigory\AppData\Local\Yandex\YandexBrowser\Application\22.0.1106.241\plugins\npswf32_11_6_602_168.dll" --lang=ru --channel="4000.12.724865010\600720296" --user-id /prefetch:4 C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} "C:\Users\Grigory\Desktop\avz4\avz.exe" C:\Windows\system32\sppsvc.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492} C:\Windows\servicing\TrustedInstaller.exe "C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528 wmiadap.exe /F /T /R "C:\Users\Grigory\Downloads\RSITx64.exe" "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2202428514-2643567014-2360483248-10002_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2202428514-2643567014-2360483248-10002 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1" ======Папка назначеных зданий====== C:\Windows\tasks\Adobe Flash Player Updater.job ======Снимок реестра====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-09-24 329712] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-09-24 59376] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {32099AAC-C132-4136-9E9A-4E364A424E17} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-02-19 2057000] "egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-11-26 6325936] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2012-12-17 59872] "ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2012-12-17 59872] "SyncManPath"=C:\Users\Grigory\AppData\Roaming\Yandex\YandexDisk\YandexDisk.exe [2013-03-12 14781216] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-11-28 59280] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files (x86)\iTunes\iTunesHelper.exe [2012-12-12 152544] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-02-22 2363392] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files (x86)\QuickTime\QTTask.exe [2010-09-08 421888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2009-12-09 611896] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam] C:\Program Files (x86)\Steam\steam.exe [2012-12-05 1354736] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-09-17 254896] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SyncManPath] C:\Users\Grigory\AppData\Roaming\Yandex\YandexDisk\YandexDisk.exe [2013-03-12 14781216] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-02-19 2057000] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [2010-03-23 487424] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe /MINIMIZED [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VKSaver] C:\ProgramData\VKSaver\VKSaver.exe [2013-02-05 224768] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zona] C:\Program Files (x86)\Zona\Zona.exe [2013-02-02 630528] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-10-22 642216] "VKSaver"=C:\ProgramData\VKSaver\VKSaver.exe [2013-02-05 224768] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 "NoDriveTypeAutoRun"=60 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "VIDC.RTV1"=rtvcvfw64.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux"=wdmaud.drv ======Ассоциации файлов====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======Список файлов и папок, созданных за последние 1 месяц====== 2013-04-14 20:08:24 ----D---- C:\Program Files\trend micro 2013-04-14 20:08:23 ----D---- C:\rsit 2013-04-14 20:06:55 ----A---- C:\Windows\SYSWOW64\drivers\utg0nde4.sys 2013-04-14 20:06:13 ----A---- C:\Windows\SYSWOW64\drivers\uzg0nde4.sys 2013-04-14 19:54:37 ----A---- C:\Windows\SYSWOW64\drivers\vdg0nde4.sys 2013-04-12 06:06:37 ----A---- C:\Windows\ntbtlog.txt 2013-04-11 03:02:00 ----A---- C:\Windows\system32\mshtmled.dll 2013-04-11 03:01:59 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2013-04-11 03:01:59 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2013-04-11 03:01:59 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-04-11 03:01:58 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-04-11 03:01:58 ----A---- C:\Windows\SYSWOW64\url.dll 2013-04-11 03:01:58 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2013-04-11 03:01:58 ----A---- C:\Windows\system32\urlmon.dll 2013-04-11 03:01:58 ----A---- C:\Windows\system32\url.dll 2013-04-11 03:01:58 ----A---- C:\Windows\system32\ieUnatt.exe 2013-04-11 03:01:58 ----A---- C:\Windows\system32\ieui.dll 2013-04-11 03:01:57 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-04-11 03:01:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-04-11 03:01:57 ----A---- C:\Windows\system32\wininet.dll 2013-04-11 03:01:57 ----A---- C:\Windows\system32\msfeeds.dll 2013-04-11 03:01:57 ----A---- C:\Windows\system32\jscript9.dll 2013-04-11 03:01:56 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-04-11 03:01:56 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-04-11 03:01:56 ----A---- C:\Windows\system32\vbscript.dll 2013-04-11 03:01:56 ----A---- C:\Windows\system32\jsproxy.dll 2013-04-11 03:01:56 ----A---- C:\Windows\system32\jscript.dll 2013-04-11 03:01:55 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-04-11 03:01:55 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-04-11 03:01:55 ----A---- C:\Windows\system32\iertutil.dll 2013-04-11 03:01:53 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-04-11 03:01:53 ----A---- C:\Windows\system32\mshtml.dll 2013-04-11 03:01:51 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-04-11 03:01:51 ----A---- C:\Windows\system32\ieframe.dll 2013-04-10 18:22:16 ----A---- C:\Windows\SYSWOW64\mstscax.dll 2013-04-10 18:22:16 ----A---- C:\Windows\system32\mstscax.dll 2013-04-10 18:22:14 ----A---- C:\Windows\SYSWOW64\tsgqec.dll 2013-04-10 18:22:14 ----A---- C:\Windows\SYSWOW64\aaclient.dll 2013-04-10 18:22:14 ----A---- C:\Windows\system32\tsgqec.dll 2013-04-10 18:22:14 ----A---- C:\Windows\system32\aaclient.dll 2013-04-10 18:22:09 ----A---- C:\Windows\system32\win32k.sys 2013-04-10 18:22:08 ----A---- C:\Windows\system32\drivers\ntfs.sys 2013-04-10 18:22:07 ----A---- C:\Windows\system32\drivers\fvevol.sys 2013-04-10 18:22:02 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2013-04-10 18:22:02 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-04-10 18:22:01 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2013-04-10 18:22:00 ----A---- C:\Windows\SYSWOW64\apisetschema.dll 2013-04-10 18:22:00 ----A---- C:\Windows\system32\smss.exe 2013-04-10 18:22:00 ----A---- C:\Windows\system32\csrsrv.dll 2013-04-06 14:11:41 ----D---- C:\ProgramData\Mozilla 2013-04-01 15:01:52 ----A---- C:\Windows\system32\drivers\usb8023.sys ======Список файлов и папок, измененных за последние 1 месяц====== 2013-04-14 20:08:32 ----D---- C:\Windows\Prefetch 2013-04-14 20:08:25 ----D---- C:\Windows\Temp 2013-04-14 20:08:24 ----RD---- C:\Program Files 2013-04-14 20:07:54 ----D---- C:\Windows\system32\config 2013-04-14 20:06:55 ----D---- C:\Windows\SYSWOW64\drivers 2013-04-14 20:06:20 ----D---- C:\Windows 2013-04-14 20:04:01 ----SHD---- C:\$Recycle.Bin 2013-04-14 20:03:52 ----D---- C:\Windows\Tasks 2013-04-14 19:59:49 ----D---- C:\Windows\System32 2013-04-14 19:59:49 ----D---- C:\Windows\inf 2013-04-14 19:59:49 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-04-13 21:34:18 ----D---- C:\Users\Grigory\AppData\Roaming\Yandex 2013-04-13 21:09:01 ----D---- C:\Windows\system32\LogFiles 2013-04-11 15:02:26 ----D---- C:\Windows\Minidump 2013-04-11 15:02:26 ----D---- C:\Windows\debug 2013-04-11 03:22:51 ----D---- C:\Windows\winsxs 2013-04-11 03:20:35 ----D---- C:\Windows\SysWOW64 2013-04-11 03:20:34 ----D---- C:\Windows\SYSWOW64\migration 2013-04-11 03:20:34 ----D---- C:\Windows\system32\migration 2013-04-11 03:20:34 ----D---- C:\Windows\system32\drivers 2013-04-11 03:20:34 ----D---- C:\Program Files (x86)\Internet Explorer 2013-04-11 03:20:33 ----D---- C:\Program Files\Internet Explorer 2013-04-11 03:03:12 ----A---- C:\Windows\system32\MRT.exe 2013-04-11 03:02:18 ----D---- C:\Windows\system32\catroot2 2013-04-11 03:02:18 ----D---- C:\Windows\system32\catroot 2013-04-11 03:00:35 ----SHD---- C:\System Volume Information 2013-04-06 14:11:41 ----HD---- C:\ProgramData 2013-04-06 14:11:41 ----D---- C:\Windows\system32\Tasks 2013-04-02 03:15:58 ----D---- C:\Windows\system32\DriverStore ======Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено)====== R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2012-11-28 57904] R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 30008] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888] R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-09-10 834544] R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552] R1 cnnctfy2;Connectify LightWeight Filter; C:\Windows\system32\DRIVERS\cnnctfy2.sys [2011-11-07 31344] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560] R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2012-10-08 211344] R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2012-10-08 149592] R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2012-10-08 59440] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472] R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2012-10-08 189208] R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 41272] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-07-04 359936] R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-11-26 2811904] R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2009-06-29 70656] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-10-25 769168] R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-03-23 505344] R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-02-19 316464] S1 uzg0nde4;AVZ-RK Kernel Driver; \??\C:\Windows\system32\Drivers\uzg0nde4.sys [] S1 vdg0nde4;AVZ-BC Kernel Driver; \??\C:\Windows\system32\Drivers\vdg0nde4.sys [] S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136] S3 AODDriver;AODDriver; \??\C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver.sys [] S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944] S3 connctfy;Connectify Service; C:\Windows\system32\DRIVERS\connctfy.sys [] S3 connctfyMP;connctfyMP; C:\Windows\system32\DRIVERS\connctfy.sys [] S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-02-02 21712] S3 iscFlash;iscFlash; \??\C:\SwSetup\sp48896\iscflashx64.sys [] S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-07-20 140712] S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2011-08-02 22528] S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-11-09 19968] S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-11-09 27136] S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys [2012-11-09 12800] S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2012-11-09 171008] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992] S3 RivaTuner64;RivaTuner64; \??\C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [] S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys [] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688] S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392] S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [] S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-11-09 9216] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-09-28 53760] S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys [] S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768] S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-11-09 9216] S3 utg0nde4;AVZ Kernel Driver; \??\C:\Windows\system32\Drivers\utg0nde4.sys [] S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760] S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\Windows\System32\DRIVERS\vserial.sys [] S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 WinUsb;WinUsb драйвер; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984] ======Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено)====== R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe [2009-03-02 89600] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-07-04 238080] R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-10-22 361984] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184] R2 Bonjour Service;Служба Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2012-11-26 1329304] R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2009-07-08 30520] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-02-22 73728] R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\STacSV64.exe [2010-03-23 247808] R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944] S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-13 253656] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136] S3 iPod Service;Сервис iPod; C:\Program Files\iPod\bin\iPodService.exe [2012-12-12 641504] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136] S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-01-08 419624] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-08 1255736] -----------------EOF-----------------