﻿Лог утилиты random's system information tool 1.12(автор: random/random)
Run by Leda-11 at 2016-04-01 10:43:25
Microsoft Windows XP Professional Service Pack 3
Системный раздел C: размер 24 GB (40%) Свободно 61 GB
Total RAM: 3327 MB (67% free)
X86

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:43:27, on 01.04.2016
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe
C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Ext2Fsd\Ext2Mgr.exe
C:\WINDOWS\system32\fsproflt.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\WINDOWS\system32\hasplms.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\TeamViewer_Service.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\Program Files\TeamViewer\tv_w32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\alg.exe
C:\Documents and Settings\Leda-11\Рабочий стол\Новая папка\AutoLogger\AVZ\avz.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\Leda-11\Рабочий стол\Новая папка\AutoLogger\RSIT\RSIT.exe
C:\Prog\Trend Micro\HiJackThis\Leda-11_RSIT.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yandex.ru/?win=186&clid=1985535-207
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: (no name) - {D5FEC983-01DB-414A-9456-AF95AC9ED7B5} - (no file)
O3 - Toolbar: Элементы Яндекса - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files\Yandex\Elements\bartabhost.dll (file missing)
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [ZZ_CustomSetting] %SystemRoot%\System32\rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\custom.inf,CustomInstall,0 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [ZZ_CustomSetting] %SystemRoot%\System32\rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\custom.inf,CustomInstall,0 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [ZZ_CustomSetting] %SystemRoot%\System32\rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\custom.inf,CustomInstall,0 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [ZZ_CustomSetting] %SystemRoot%\System32\rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\custom.inf,CustomInstall,0 (User 'Default user')
O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O16 - DPF: {093500E9-F79F-4C52-A9B5-D8C7E4B3023E} (ParallelGraphics Installer Class) - file:///C:/WINDOWS/TEMP/o3d14BB.tmp.cab
O16 - DPF: {113E52A8-A790-4B13-B5F8-B17BD5617707} (rg_call) - https://biz.smpbank.ru/CODE/3.17.9.1000/cr_call.cab
O16 - DPF: {34E60EF0-8825-4AD8-ABED-ADC2F358F2C9} - https://biz.smpbank.ru/CODE/3.17.9.1000/bsssl.cab
O16 - DPF: {3FD2F333-7E4B-43AC-BB2A-CC0410654160} (rg_msp2) - https://bk.smpbank.ru:1743/CODE/3.17.7.930/cr_msp2.cab
O16 - DPF: {810B649C-CEAE-4AC9-BF26-81341B49E913} (ParallelGraphics PlanEditor Control) - file:///C:/WINDOWS/TEMP/o3d14B2.tmp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{4CF5CAAC-9785-43C2-A642-C2789F9C0686}: NameServer = 192.168.255.1,192.168.0.1
O20 - AppInit_DLLs: C:\DOCUME~1\ALLUSE~1\APPLIC~1\VKSaver\vksaver3.dll
O22 - SharedTaskScheduler: Предзагрузчик Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Демон кэша категорий компонентов - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: D_Link_DWA-125 Service (D_Link_DWA-125) - Wireless Service - C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe
O23 - Service: D_Link_DWA-125_WPS Service (D_Link_DWA-125_WPS) - Unknown owner - C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Журнал событий (Eventlog) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: Ext2 Volume Manger (Ext2Mgr) - Ext2Fsd Group (www.ext2fsd.com) - C:\Program Files\Ext2Fsd\Ext2Mgr.exe
O23 - Service: FSPro Filter Service (fsproflt) - FSPro Labs - C:\WINDOWS\system32\fsproflt.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HASP License Manager (hasplms) - Aladdin Knowledge Systems Ltd. - C:\WINDOWS\system32\hasplms.exe
O23 - Service: Служба COM записи компакт-дисков IMAPI (ImapiService) - Корпорация Майкрософт - C:\WINDOWS\system32\imapi.exe
O23 - Service: NetMeeting Remote Desktop Sharing (mnmsrvc) - Корпорация Майкрософт - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Plug and Play (PlugPlay) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) - Корпорация Майкрософт - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Realtek DHCP Service (RTLDHCPService) - Unknown owner - C:\Program Files\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe (file missing)
O23 - Service: Samsung UPD Service2 - Samsung Electronics - C:\WINDOWS\system32\SUPDSvc2.exe
O23 - Service: Смарт-карты (SCardSvr) - Корпорация Майкрософт - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: Журналы и оповещения производительности (SysmonLog) - Корпорация Майкрософт - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
O23 - Service: Теневое копирование тома (VSS) - Корпорация Майкрософт - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Адаптер производительности WMI (WmiApSrv) - Корпорация Майкрософт - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--
End of file - 9634 bytes

======Папка назначеных зданий======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe 
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-1708537768-682003330-1006Core.job - C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-1708537768-682003330-1006UA.job - C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Обновление Браузера Яндекс .job - C:\Documents and Settings\Leda-11\Local Settings\Application Data\Yandex\YandexBrowser\Application\browser.exe  --background-update
C:\WINDOWS\tasks\Обновление Браузера Яндекс.job - C:\Documents and Settings\Leda-11\Local Settings\Application Data\Yandex\YandexBrowser\Application\browser.exe  --background-update

=========Google Chrome=========

C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Google Презентации 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb  Магазин 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Документы Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Диск Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0  
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension cfhdojbkjhnklbpkdaibdccddilifddb 1 Adblock Plus 1.11
Extension cgeioekfllobphkgcgebndcbliicnckg 1 Отправить SMS и MMS 1.0.3
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Google Search 0.0.0.60
Extension dnhpdliibojhegemfjheidglijccjfmc 1 hotword helper 0.0.2.0
Extension eemcgdkfndhakfknompkggombfjjjeno  Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg  Settings 0.2
Extension fdcgdnkidjaadafnichfpabhfomcebme 0 ZenMate VPN - Best Cyber Security & Unblock 5.4.9
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Google Таблицы 1.1
Extension gdknicmnhbaajdglbinpahhapghpakch 0 Домашняя страница Mail.Ru 1.0.5
Extension gehngeifmelphpllncobkmimphfkckne 0 Стартовая — Яндекс 1.2.6.0
Extension gfdkimpbcpahaombhbimeihdjnejgicl  Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Google Документы офлайн 1.4
Extension jedelkhanefmcnpappfhachbpnlhomai 0 Поиск Mail.Ru 1.0.7
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.31
Extension meffiamonaniekghongncpepaaecfoki 1 Mail.ru Checker 3.3.6
Extension mfehgcgbbipciphmccgaenjidiccnmng  Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf  Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension nbpagnldghgfoolbancepceaanlmhfmd 1 Hotword triggering 0.0.1.4
Extension neajdppkdcdipfabeoofebfddakdcjhd  Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.2.0
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Платежная система Интернет-магазина Chrome 0.1.2.0
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh 1 Google Now 1.2.0.1
Extension pchfckkccldkbclgdepkaonamkignanh 2 Визуальные закладки 2.21.3
Extension pfmgfdlgomnbgkofeojodiodmgpgmkac 1 Экономия трафика 2.0.1
Extension pganlglbhgfjfgopijbhemcpbehjnpia 0 Визуальные Закладки Mail.Ru 1.303
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Homepage: http://mail.ru/cnt/10445?gp=profitraf7
default_search_provider.search_url: 
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
Homepage: 
default_search_provider.search_url: 

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gdknicmnhbaajdglbinpahhapghpakch]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gehngeifmelphpllncobkmimphfkckne]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jedelkhanefmcnpappfhachbpnlhomai]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pganlglbhgfjfgopijbhemcpbehjnpia]
"Path"=


======Снимок реестра======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\Yandex]
"URL"=http://yandex.ru/yandsearch?clid=135294&text={searchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414A-9456-AF95AC9ED7B5}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{91397D20-1446-11D4-8AF4-0040CA1127B6} - Элементы Яндекса - C:\Program Files\Yandex\Elements\bartabhost.dll []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360]
"KiesPDLR.exe"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]
 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
ALCMTR.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apworks]
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Apworks\C76501C0.exe [2016-03-31 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2015-10-19 6564776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Client Server Runtime Subsystem]
C:\Documents and Settings\All Users\Application Data\Windows\csrss.exe [2016-03-31 1975808]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CSRSS]
C:\Documents and Settings\All Users\Application Data\Drivers\csrss.exe [2016-03-31 887296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\D-Link D-Link DWA-125]
C:\Program Files\D-Link\DWA-125 revA\AirNCFG.exe [2013-03-19 1083696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\D-Link DWA-125 WZCSLDR2]
C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe [2012-07-17 122880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Ultra Agent]
C:\Program Files\DAEMON Tools Ultra\DTAgent.exe -autorun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\egui]
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-01-14 2219184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2015-08-29 144200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Iksoft]
regsvr32.exe C:\Documents and Settings\Leda-11\Local Settings\Application Data\Iksoft\lxfzudmq.dll []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2013-05-15 2255184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MailRuUpdater]
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Mail.Ru\MailRuUpdater.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Praetorian]
C:\Documents and Settings\Leda-11\Local Settings\Application Data\Yandex\Updater\praetorian.exe [2012-01-11 1534976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
RTHDCPL.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe /minimized /regrun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Documents and Settings\Leda-11\Application Data\uTorrent\uTorrent.exe  /MINIMIZED []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VKSaver]
C:\Documents and Settings\All Users\Application Data\VKSaver\VKSaver.exe [2013-02-03 224768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\DOCUME~1\ALLUSE~1\APPLIC~1\VKSaver\vksaver3.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
Ati2evxx.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\fsproflt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\fsproflt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.Theme

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\1cv81\bin\1cv8.exe"="C:\Program Files\1cv81\bin\1cv8.exe:*:Enabled:1cv8"
"C:\Documents and Settings\Admin\Рабочий стол\Crisisatdaportal_EG_SUBS_avi-downloader.exe"="C:\Documents and Settings\Admin\Рабочий стол\Crisisatdaportal_EG_SUBS_avi-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\sane\bin\xsane.exe"="C:\sane\bin\xsane.exe:*:Enabled:xsane"
"C:\WINDOWS\system32\hasplms.exe"="C:\WINDOWS\system32\hasplms.exe:*:Enabled:HASP LLM"
"C:\Documents and Settings\Leda-11\Мои документы\Загрузки\FWdownloader.exe"="C:\Documents and Settings\Leda-11\Мои документы\Загрузки\FWdownloader.exe:*:Enabled:nloader Application"
"D:\Games\World_of_Tanks\WOTLauncher.exe"="D:\Games\World_of_Tanks\WOTLauncher.exe:*:Enabled:World of Tanks Launcher"
"D:\Program Files\CyberTank\CyberTank.exe"="D:\Program Files\CyberTank\CyberTank.exe:*:Enabled:CyberTank"
"D:\Games\World_of_Tanks\WorldOfTanks.exe"="D:\Games\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe"="C:\Documents and Settings\Leda-11\Local Settings\Application Data\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"G:\Games\World_of_Tanks\WoTLauncher.exe"="G:\Games\World_of_Tanks\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"G:\Games\World_of_Tanks\WorldOfTanks.exe"="G:\Games\World_of_Tanks\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\Program Files\CyberTank\CyberTank.exe"="C:\Program Files\CyberTank\CyberTank.exe:*:Enabled:CyberTank"
"G:\Program Files\CyberTank\CyberTank.exe"="G:\Program Files\CyberTank\CyberTank.exe:*:Enabled:CyberTank"
"G:\Games\World_of_Tanks\dniwebot\guiBot.exe"="G:\Games\World_of_Tanks\dniwebot\guiBot.exe:*:Enabled:Gui Bot"
"G:\Games\World_of_Tanks\dniwebot\DNIWEbot.exe"="G:\Games\World_of_Tanks\dniwebot\DNIWEbot.exe:*:Enabled:DNIWEbot"
"C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"F:\Games\WoTLauncher.exe"="F:\Games\WoTLauncher.exe:*:Enabled:World of Tanks Launcher"
"F:\Games\WorldOfTanks.exe"="F:\Games\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\Documents and Settings\Leda-11\Local Settings\Application Data\Yandex\YandexBrowser\Application\browser.exe"="C:\Documents and Settings\Leda-11\Local Settings\Application Data\Yandex\YandexBrowser\Application\browser.exe:*:Enabled:Yandex"
"C:\Program Files\TeamViewer\TeamViewer.exe"="C:\Program Files\TeamViewer\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe"="C:\Program Files\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe:*:Enabled:RTLDHCP"
"C:\WINDOWS\system32\SUPDSvc2.exe"="C:\WINDOWS\system32\SUPDSvc2.exe:*:Enabled:Samsung UPD Service2"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}]
"StubPath"=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{73FA19D0-2D75-11D2-995D-00C04F98BBC9}]
"StubPath"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.ac3acm"=ac3acm.acm
"divxdec"=divxdec.ax
"xvid"=xvid.ax
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.DIVX"=divx.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll

======Ассоциации файлов======

.scr - open - "C:\WINDOWS\system32\notepad.exe" "%1"
.scr - install - 
.scr - config - 

======Список файлов и папок, созданных за последние 3 месяца======

2016-04-01 09:58:11 ----A---- C:\WINDOWS\system32\drivers\utm0odg3.sys
2016-03-31 16:24:47 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-31 15:41:03 ----SHD---- C:\Documents and Settings\All Users\Application Data\Drivers
2016-03-31 14:29:10 ----A---- C:\README9.txt
2016-03-31 14:29:10 ----A---- C:\README8.txt
2016-03-31 14:29:10 ----A---- C:\README7.txt
2016-03-31 14:29:10 ----A---- C:\README6.txt
2016-03-31 14:29:10 ----A---- C:\README5.txt
2016-03-31 14:29:10 ----A---- C:\README4.txt
2016-03-31 14:29:10 ----A---- C:\README3.txt
2016-03-31 14:29:10 ----A---- C:\README2.txt
2016-03-31 14:29:10 ----A---- C:\README10.txt
2016-03-31 14:29:10 ----A---- C:\README1.txt
2016-03-31 14:28:26 ----SHD---- C:\Documents and Settings\All Users\Application Data\Windows
2016-03-24 12:25:25 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe
2016-02-29 15:30:35 ----D---- C:\Program Files\Mozilla Firefox
2016-02-06 12:17:28 ----A---- C:\WINDOWS\system32\spd__l.dll
2016-02-06 12:17:28 ----A---- C:\WINDOWS\system32\spd__ci.exe
2016-02-06 12:17:28 ----A---- C:\WINDOWS\system32\spd__ci.dll
2016-02-06 11:01:44 ----A---- C:\WINDOWS\system32\UPDIO2.dll
2016-02-06 11:01:44 ----A---- C:\WINDOWS\system32\SUPDSvcA2.dll
2016-02-06 11:01:44 ----A---- C:\WINDOWS\system32\SUPDSvc2.exe
2016-02-06 11:01:44 ----A---- C:\WINDOWS\system32\SUPDRun.exe
2016-02-06 11:01:44 ----A---- C:\WINDOWS\system32\spdpsl.dll
2016-02-06 11:01:44 ----A---- C:\WINDOWS\system32\spdpsci.exe
2016-02-06 11:01:44 ----A---- C:\WINDOWS\system32\spdpsci.dll
2016-02-06 11:01:43 ----N---- C:\WINDOWS\TotalUninstaller.exe
2016-02-06 11:01:43 ----N---- C:\WINDOWS\gdiplus.dll
2016-02-02 13:33:18 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2016-02-02 13:33:15 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2016-01-25 13:34:09 ----A---- C:\WINDOWS\system32\drivers\rt2870.sys
2016-01-25 13:34:07 ----D---- C:\Documents and Settings\All Users\Application Data\Mediatek Driver
2016-01-25 13:06:47 ----A---- C:\WINDOWS\system32\drivers\AegisP.sys
2016-01-25 13:03:22 ----D---- C:\WINDOWS\system32\RtlGina
2016-01-25 13:03:22 ----A---- C:\WINDOWS\SwUSB.exe
2016-01-25 13:03:21 ----A---- C:\WINDOWS\system32\ISSRemoveSP.exe

======Список файлов и папок, измененных за последние 3 месяца======

2016-04-01 10:43:26 ----D---- C:\WINDOWS\Temp
2016-04-01 10:13:37 ----D---- C:\Program Files\Opus
2016-04-01 10:02:32 ----D---- C:\WINDOWS\system32\CatRoot2
2016-04-01 09:59:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2016-04-01 09:58:11 ----D---- C:\WINDOWS\system32\drivers
2016-04-01 09:50:32 ----D---- C:\Documents and Settings\Leda-11\Application Data\WinRAR
2016-03-31 16:43:07 ----D---- C:\WINDOWS\Prefetch
2016-03-31 16:34:25 ----D---- C:\WINDOWS\system32
2016-03-31 16:34:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-31 16:25:20 ----SHD---- C:\WINDOWS
2016-03-31 16:23:51 ----RSH---- C:\boot.ini
2016-03-31 16:23:51 ----A---- C:\WINDOWS\win.ini
2016-03-31 16:23:51 ----A---- C:\WINDOWS\system.ini
2016-03-31 16:04:07 ----SHD---- C:\System Volume Information
2016-03-31 16:04:07 ----D---- C:\WINDOWS\system32\Restore
2016-03-31 15:58:37 ----SHD---- C:\WINDOWS\Installer
2016-03-31 15:40:14 ----D---- C:\1Cv77
2016-03-31 15:39:41 ----HD---- C:\ASUS.BAK
2016-03-31 15:39:39 ----D---- C:\ConsUserData
2016-03-31 15:37:18 ----HD---- C:\Documents and Settings\All Users\Application Data\Common Files
2016-03-31 15:37:18 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
2016-03-31 15:37:18 ----D---- C:\Documents and Settings\All Users\Application Data\CyberTank
2016-03-31 15:37:14 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2016-03-31 15:37:13 ----D---- C:\Documents and Settings\All Users\Application Data\LogMeIn
2016-03-31 15:37:07 ----D---- C:\Documents and Settings\All Users\Application Data\VKSaver
2016-03-31 15:37:07 ----D---- C:\Documents and Settings\All Users\Application Data\SSScanAppDataDir
2016-03-31 15:37:07 ----D---- C:\Documents and Settings\All Users\Application Data\nloader
2016-03-31 15:37:07 ----D---- C:\Documents and Settings\All Users\Application Data\MSScanAppDataDir
2016-03-31 15:36:57 ----D---- C:\Documents and Settings\Leda-11\Application Data\DAEMON Tools Lite
2016-03-31 15:35:50 ----D---- C:\Documents and Settings\Leda-11\Application Data\nloader
2016-03-31 15:35:50 ----D---- C:\Documents and Settings\Leda-11\Application Data\MxBoost
2016-03-31 15:35:49 ----D---- C:\Documents and Settings\Leda-11\Application Data\Skype
2016-03-31 15:35:49 ----D---- C:\Documents and Settings\Leda-11\Application Data\Samsung
2016-03-31 15:35:49 ----D---- C:\Documents and Settings\Leda-11\Application Data\QIP.Online
2016-03-31 15:35:34 ----D---- C:\Documents and Settings\Leda-11\Application Data\TeamViewer
2016-03-31 15:35:28 ----D---- C:\Documents and Settings\Leda-11\Application Data\Yandex
2016-03-31 15:35:28 ----D---- C:\Documents and Settings\Leda-11\Application Data\WebMoney
2016-03-31 15:35:28 ----D---- C:\Documents and Settings\Leda-11\Application Data\.oit
2016-03-31 15:26:54 ----D---- C:\Np2008w
2016-03-31 15:26:54 ----D---- C:\Logs
2016-03-31 15:26:39 ----D---- C:\sane
2016-03-31 15:26:27 ----D---- C:\Unified_Android_ToolKit
2016-03-30 10:24:58 ----D---- C:\Program Files\TeamViewer
2016-03-24 12:25:28 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-03-19 11:50:47 ----D---- C:\Program Files\NCSoft
2016-03-19 11:48:34 ----SHD---- C:\Program Files
2016-03-19 11:16:59 ----HD---- C:\Program Files\InstallShield Installation Information
2016-03-19 11:16:55 ----D---- C:\Program Files\SAMSUNG
2016-03-19 11:14:22 ----D---- C:\Program Files\Yandex
2016-03-19 11:14:21 ----D---- C:\Documents and Settings\All Users\Application Data\Yandex
2016-03-17 11:45:40 ----D---- C:\WINDOWS\Network Diagnostic
2016-03-12 08:48:59 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-02-24 14:50:01 ----SD---- C:\WINDOWS\Tasks
2016-02-18 11:14:36 ----D---- C:\Program Files\EasyCeiling
2016-02-09 09:52:58 ----D---- C:\Documents and Settings\All Users\Application Data\Samsung
2016-02-09 09:08:26 ----RSD---- C:\WINDOWS\assembly
2016-02-09 09:05:19 ----D---- C:\WINDOWS\Microsoft.NET
2016-02-06 12:19:53 ----HD---- C:\WINDOWS\inf
2016-02-03 14:12:31 ----D---- C:\WINDOWS\system32\CatRoot
2016-02-02 13:33:29 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-01-22 09:23:44 ----RSD---- C:\WINDOWS\Fonts
2016-01-22 09:22:50 ----A---- C:\WINDOWS\system32\FirewallTest_log.txt

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
======Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено)======

R0 amdide;amdide; C:\WINDOWS\system32\DRIVERS\amdide.sys [2007-10-12 9096]
R0 FSProFilter;FSPro File Filter; C:\WINDOWS\System32\Drivers\FSPFltd.sys [2008-06-05 43792]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2008-10-15 114048]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2012-04-07 473656]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\WINDOWS\system32\DRIVERS\timntr.sys [2008-10-15 395744]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-19 36864]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2010-12-21 94872]
R1 Ext2Fsd;Linux ext2 file system driver; C:\WINDOWS\system32\drivers\Ext2Fsd.sys [2011-07-09 686360]
R1 VD_FileDisk;VD_FileDisk; C:\WINDOWS\system32\drivers\VD_FileDisk.sys [2006-01-13 15872]
R1 WmiAcpi;Интерфейс управления для ACPI Microsoft Windows; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2016-01-25 21361]
R2 aksfridge;aksfridge; \??\C:\WINDOWS\system32\drivers\aksfridge.sys []
R2 ANPD;ANPD Service; \??\C:\WINDOWS\system32\ANPD.sys []
R2 Consult;Consult; C:\WINDOWS\system32\drivers\Consult.sys [1997-02-04 3008]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-12-21 141264]
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 Haspnt;Haspnt; \??\C:\WINDOWS\system32\drivers\Haspnt.sys []
R2 hl_mull;hl_mull; C:\WINDOWS\System32\drivers\hl_mull.SYS [2011-09-19 67712]
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2008-10-15 39264]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-02-26 2863616]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2007-11-14 84992]
R3 dtultrascsibus;DAEMON Tools Ultra Virtual SCSI Bus; C:\WINDOWS\system32\DRIVERS\dtultrascsibus.sys [2014-12-29 25104]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384]
R3 HidUsb;Драйвер класса HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-03-26 4713472]
R3 mouhid;Драйвер мыши HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-19 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2006-02-26 5810]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-03-27 130816]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-22 32384]
R3 usbprint;Класс принтеров Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Драйвер USB-сканера; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 USBSTOR;Драйвер запоминающих устройств для USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 utm0odg3;AVZ Kernel Driver; \??\C:\WINDOWS\system32\Drivers\utm0odg3.sys []
R3 vusbbus;Virtual Usb Bus Enumerator; C:\WINDOWS\system32\DRIVERS\vusbbus.sys [2005-09-22 11520]
S1 kbdhid;Драйвер клавиатуры HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys []
S2 haspflt;haspflt; \??\C:\WINDOWS\System32\Drivers\haspflt.sys []
S3 akshasp;Aladdin HASP Key; C:\WINDOWS\system32\DRIVERS\akshasp.sys [2006-11-22 327168]
S3 aksusb;Aladdin USB Key; C:\WINDOWS\system32\DRIVERS\aksusb.sys [2006-11-22 100096]
S3 bcm;WiMAX Network Adapter; C:\WINDOWS\system32\DRIVERS\drxvi314.sys [2010-10-20 331264]
S3 bcmbusctr;WiMAX Bus Driver; C:\WINDOWS\system32\DRIVERS\BcmBusCtr.sys [2010-10-20 48512]
S3 Bridge;MAC-мост; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-15 71552]
S3 BridgeMP;Минипорт MAC-моста; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-15 71552]
S3 BT_8x8;BT_8x8; \??\C:\WINDOWS\system32\BT_8x8.SYS []
S3 C7xxUSB;Samsung CMC7xx USB Network Driver; C:\WINDOWS\system32\DRIVERS\C7xUSBX3.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-01-08 99296]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys [2013-12-30 20032]
S3 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys []
S3 ModemLTE;Yota LTE Modem Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-15 12800]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt2870.sys [2014-07-04 2811536]
S3 RT73;D-Link USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\Dr71WU.sys [2008-01-15 459520]
S3 rtl8185;G-302 v3 802.11g Wireless PCI Adapter Driver; C:\WINDOWS\system32\DRIVERS\rtl8185.sys [2008-06-06 308864]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-01-08 191200]
S3 StillCam;Драйвер цифровой фотокамеры для посл. порта; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-10-19 6912]
S3 usb_rndisx;Адаптер USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 usbser;USB Serial emulation modem driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WinUSB;SAMSUNG Android USB Driver; C:\WINDOWS\system32\DRIVERS\WinUSB.sys [2006-11-02 39368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2006-10-16 230944]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-02-26 520192]
R2 D_Link_DWA-125;D_Link_DWA-125 Service; C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe [2012-07-17 126976]
R2 D_Link_DWA-125_WPS;D_Link_DWA-125_WPS Service; C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe [2010-07-12 53248]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-14 810144]
R2 Ext2Mgr;Ext2 Volume Manger; C:\Program Files\Ext2Fsd\Ext2Mgr.exe [2011-02-05 1211536]
R2 fsproflt;FSPro Filter Service; C:\WINDOWS\system32\fsproflt.exe [2009-05-03 73392]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2013-05-15 1435984]
R2 hasplms;HASP License Manager; C:\WINDOWS\system32\hasplms.exe [2009-04-21 2869760]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2016-01-08 754784]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; %SystemRoot%\system32\svchost.exe -k WudfServiceGroup;"ServiceDll"=%SystemRoot%\System32\WUDFSvc.dll
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 RTLDHCPService;Realtek DHCP Service; C:\Program Files\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-24 269504]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2008-12-14 85096]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-01-14 33584]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-29 146888]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Samsung UPD Service2;Samsung UPD Service2; C:\WINDOWS\system32\SUPDSvc2.exe [2012-04-06 129536]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------
