ЕвгенC Опубликовано 12 ноября, 2014 Share Опубликовано 12 ноября, 2014 Здравствуйте. Скачивал с сайта игруху и прицепился вирус Baidu,пишет иероглифами...антивирус Касперский его не видит даже на максимуме...при удалении удаляется,но после перезагрузки системы вновь устанавливает сам себя.Лог прилагаю. CollectionLog-2014.11.13-00.10.zip Ссылка на комментарий Поделиться на другие сайты More sharing options...
mike 1 Опубликовано 12 ноября, 2014 Share Опубликовано 12 ноября, 2014 Пофиксите следующие строчки в HiJackThis (некоторые строки могут отсутствовать). R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://yamdex.net/?searchid=1&l10n=ru&fromsearch=1&imsid=43175e6d2ebbbd55bc6e4fdc6440e2f3&text={searchTerms} R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://yamdex.net/?searchid=1&l10n=ru&fromsearch=1&imsid=43175e6d2ebbbd55bc6e4fdc6440e2f3&text={searchTerms} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT1750559 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://yamdex.net/?searchid=1&l10n=ru&fromsearch=1&imsid=43175e6d2ebbbd55bc6e4fdc6440e2f3&text= R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://yamdex.net/?searchid=1&l10n=ru&fromsearch=1&imsid=43175e6d2ebbbd55bc6e4fdc6440e2f3&text= R3 - URLSearchHook: (no name) - {0633EE93-D776-472f-A0FF-E1416B8B2E3D} - (no file) O2 - BHO: Спутник@Mail.Ru - {8984B388-A5BB-4DF7-B274-77B879E179DB} - (no file) O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe O4 - HKCU\..\Run: [pcket_x86] C:\Program Files (x86)\BaiduEx\uninit.exe O4 - HKCU\..\Run: [pcket_x64] C:\Program Files\BaiduEx\uninit.exe O13 - DefaultPrefix: http://yamdex.net/?searchid=1&l10n=ru&fromsearch=1&imsid=43175e6d2ebbbd55bc6e4fdc6440e2f3&text= Скачайте ComboFix здесь и сохраните в корень диска С. 1. Внимание! Обязательно закройте все браузеры, временно выключите антивирус, firewall и другое защитное программное обеспечение. Не запускайте других программ во время работы Combofix. Combofix может отключить интернет через некоторое время после запуска, не переподключайте интернет пока Combofix не завершит работу. Если интернет не появился после окончания работы Combofix, перезагрузите компьютер. Во время работы Combofix не нажимайте кнопки мыши, это может стать причиной зависания Combofix. 2. Запустите combofix.exe, когда процесс завершится, скопируйте текст из C:\ComboFix.txt и вставьте в следующее сообщение или запакуйте файл C:\ComboFix.txt и прикрепите к сообщению. Примечание: В случае, если ComboFix не запускается, переименуйте combofix.exe. Например: temp.exe Подробнее в "ComboFix. Руководство по применению." Ссылка на комментарий Поделиться на другие сайты More sharing options...
ЕвгенC Опубликовано 13 ноября, 2014 Автор Share Опубликовано 13 ноября, 2014 Добрый день...всё сделал,вот результат: Лог: ComboFix 14-11-12.01 - Евгений 13.11.2014 16:57:55.1.4 - x64Microsoft Windows 7 Максимальная 6.1.7600.0.1251.7.1049.18.8173.6190 [GMT 7:00]Running from: C:\ComboFix.exeAV: Антивирус Касперского *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}SP: Антивирус Касперского *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}* Created a new restore point* Resident AV is active...((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))..c:\windows\PFRO.logc:\windows\SysWow64\SET161A.tmpc:\windows\SysWow64\SET1AA2.tmpc:\windows\TEMP\sdk8\Cache\avengine.dll.cf76373cb9a583c9603a47377e180985c:\windows\TEMP\sdk8\Cache\kavbase.kdl.7aa539a1cbbfb4baa644b9866f4bcf4bc:\windows\TEMP\sdk8\Cache\kavsys.kdl.3cbce9162519ae9d590238cb927fbb55c:\windows\TEMP\sdk8\Cache\kjim.kdl.515c9bc6da1b5b7f42860347f720ee10c:\windows\TEMP\sdk8\Cache\klavemu.kdl.b6b6dd223ad2aad28374217a028b59b0c:\windows\TEMP\sdk8\Cache\qscan.kdl.94c366b442c3accc919782ce5f0d7fd0..((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))..-------\Legacy_BD0001-------\Legacy_BD0002-------\Service_bd0001-------\Service_bd0002..((((((((((((((((((((((((( Files Created from 2014-10-13 to 2014-11-13 )))))))))))))))))))))))))))))))..2014-11-13 10:35 . 2014-11-13 10:35 -------- d-----w- c:\users\Default\AppData\Local\temp2014-11-13 09:10 . 2014-09-22 07:34 103240 ----a-w- c:\windows\system32\drivers\BDDefense.sys2014-11-13 09:10 . 2014-09-23 07:16 52040 ----a-w- c:\windows\system32\drivers\BDMWrench_x64.sys2014-11-13 07:46 . 2014-06-19 03:40 109384 ----a-w- c:\windows\system32\drivers\BDMNetMon.sys2014-11-13 07:45 . 2014-09-10 03:30 65864 ----a-w- c:\windows\system32\drivers\bd0003.sys2014-11-13 07:45 . 2014-09-25 08:13 141128 ----a-w- c:\windows\system32\drivers\BDArKit.sys2014-11-13 07:45 . 2014-09-17 02:37 190280 ----a-w- c:\windows\system32\drivers\bd0002.sys2014-11-13 07:45 . 2014-09-17 02:37 174416 ----a-w- c:\windows\system32\drivers\bd0001.sys2014-11-12 16:48 . 2014-11-12 16:48 -------- d-----w- c:\users\Евгений\AppData\Local\Conduit2014-11-12 16:48 . 2014-11-12 16:48 7168 ----a-w- c:\windows\SysWow64\drivers\ute5ntey.sys2014-11-12 10:46 . 2014-09-10 12:41 174416 ----a-w- c:\windows\system32\drivers\bd0001_1.sys2014-11-10 20:17 . 2014-11-10 20:17 -------- d-----w- c:\users\Евгений\AppData\Local\Baidu2014-11-09 15:03 . 2014-11-09 16:38 -------- d-----w- c:\programdata\Package Cache2014-11-09 15:02 . 2014-11-13 09:36 144712 ----a-w- c:\windows\SysWow64\drivers\BDArKit.sys2014-11-09 13:54 . 2014-10-30 00:56 614728 ----a-w- c:\windows\SysWow64\nvStreaming.exe2014-11-09 11:33 . 2014-11-09 11:34 -------- d-----w- c:\users\12014-11-08 20:24 . 2014-11-08 20:24 -------- d-----w-ppData c:\users\APPDAT~12014-11-08 19:12 . 2014-11-08 21:47 -------- d-----w- c:\users\Евгений\AppData\Roaming\Shareman2014-11-08 19:12 . 2014-11-08 21:47 -------- d-----w- c:\program files (x86)\Shareman2014-11-08 11:54 . 2014-11-08 11:54 -------- d-----w- c:\programdata\Kaspersky SDK2014-11-06 19:46 . 2014-11-06 19:46 141640 ----a-w- c:\windows\SysWow64\drivers\BDArKit(1).sys2014-11-06 19:46 . 2014-11-13 07:45 520 ----a-w- c:\windows\SysWow64\an.bat2014-11-06 19:45 . 2014-11-13 07:45 520 ----a-w- c:\windows\SysWow64\sd.bat2014-11-06 19:05 . 2014-11-13 07:50 181072 ----a-w- c:\windows\SysWow64\drivers\bd0001.sys2014-11-06 18:59 . 2014-11-10 20:17 -------- d-----w- c:\users\Евгений\AppData\Roaming\Baidu2014-11-06 18:58 . 2014-11-13 07:45 -------- d-----w- c:\programdata\Baidu2014-11-06 18:58 . 2014-11-06 18:58 -------- d-----w- c:\program files (x86)\Common Files\Baidu2014-11-06 18:57 . 2014-11-13 07:46 -------- d-----w- c:\program files (x86)\Baidu2014-11-06 18:57 . 2014-11-06 18:57 -------- d-----w- c:\users\Евгений\AppData\Local\MailRu2014-11-06 18:56 . 2014-11-06 19:15 -------- d-----w- c:\users\Евгений\AppData\Roaming\eTranslator2014-10-27 19:18 . 2014-10-29 07:37 -------- d-----w- c:\program files (x86)\RaidCall.RU2014-10-16 06:55 . 2014-10-17 06:49 -------- d-----w- c:\users\Евгений\AppData\Local\Adobe...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2014-11-12 11:21 . 2012-05-18 11:42 701104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2014-11-12 11:21 . 2012-05-01 12:46 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2014-10-30 04:53 . 2014-03-17 17:37 987008 ----a-w- c:\windows\system32\nvumdshimx.dll2014-10-30 04:53 . 2014-03-17 16:41 2849224 ----a-w- c:\windows\SysWow64\nvapi.dll2014-10-30 04:53 . 2014-02-21 17:10 73872 ----a-w- c:\windows\system32\OpenCL.dll2014-10-30 04:53 . 2014-02-21 17:10 60744 ----a-w- c:\windows\SysWow64\OpenCL.dll2014-10-30 04:53 . 2014-02-21 17:03 20966504 ----a-w- c:\windows\system32\nvwgf2umx.dll2014-10-30 04:53 . 2014-02-21 17:03 3237528 ----a-w- c:\windows\system32\nvapi64.dll2014-10-30 04:53 . 2014-02-21 17:03 16886168 ----a-w- c:\windows\SysWow64\nvd3dum.dll2014-10-30 02:10 . 2014-02-21 17:10 6880968 ----a-w- c:\windows\system32\nvcpl.dll2014-10-30 02:10 . 2014-02-21 17:10 3533632 ----a-w- c:\windows\system32\nvsvc64.dll2014-10-30 02:10 . 2014-02-21 17:10 935232 ----a-w- c:\windows\system32\nvvsvc.exe2014-10-30 02:10 . 2014-02-21 17:10 61640 ----a-w- c:\windows\system32\nvshext.dll2014-10-30 02:10 . 2014-02-21 17:10 2558792 ----a-w- c:\windows\system32\nvsvcr.dll2014-10-30 02:10 . 2014-02-21 17:10 385352 ----a-w- c:\windows\system32\nvmctray.dll2014-10-27 00:34 . 2014-04-08 15:36 4066553 ----a-w- c:\windows\system32\nvcoproc.bin2014-10-04 06:42 . 2014-06-04 17:19 1291280 ----a-w- c:\windows\SysWow64\nvspbridge.dll2014-10-04 06:42 . 2014-03-17 16:44 2197680 ----a-w- c:\windows\SysWow64\nvspcap.dll2014-10-04 06:41 . 2014-06-04 17:19 1715224 ----a-w- c:\windows\system32\nvspbridge64.dll2014-10-04 06:41 . 2014-03-17 16:44 2800296 ----a-w- c:\windows\system32\nvspcap64.dll2014-09-17 04:51 . 2014-10-07 16:02 31520 ----a-w- c:\windows\system32\nvhdap64.dll2014-09-17 04:51 . 2014-10-07 16:02 197408 ----a-w- c:\windows\system32\drivers\nvhda64v.sys2014-09-17 04:51 . 2014-04-08 15:57 1538880 ----a-w- c:\windows\system32\nvhdagenco6420103.dll2014-09-13 23:48 . 2014-10-07 16:02 1876296 ----a-w- c:\windows\system32\nvdispco6434411.dll2014-09-13 23:48 . 2014-10-07 16:02 1539272 ----a-w- c:\windows\system32\nvdispgenco6434411.dll2014-09-13 23:48 . 2014-03-17 17:37 984424 ----a-w- c:\windows\system32\SET122C.tmp2014-09-13 23:48 . 2014-02-21 17:03 20589536 ----a-w- c:\windows\system32\SET145F.tmp2014-09-13 23:48 . 2014-02-21 17:03 3223120 ----a-w- c:\windows\system32\SET1EB.tmp2014-09-04 19:14 . 2014-10-07 15:59 38048 ----a-w- c:\windows\system32\drivers\nvvad64v.sys2014-09-04 19:14 . 2014-10-07 15:59 32416 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll2014-09-04 19:14 . 2014-02-21 17:03 34976 ----a-w- c:\windows\system32\nvaudcap64v.dll..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shownREGEDIT4.[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{15DEE173-1BE9-4424-81E0-58A87076E9B1}]2014-09-16 10:58 366984 ----a-w- c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\WebMonBHO.dll.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"BaiduClient"="c:\users\Евгений\AppData\Local\Baidu\Baidu\1.3.1.157\Baidu.exe" [2014-11-05 297352].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"2Gis Update Notifier"="c:\program files (x86)\2gis\3.0\2GISTrayNotifier.exe" [2014-09-30 4582936]"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-08-21 959176]"ACSW15EN"="c:\program files (x86)\ACD Systems\ACDSee\15.0\ACDSee15InTouch2.exe" [2012-12-17 1135304]"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe" [2013-10-09 356128]"baidusdTray"="c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdTray.exe" [2014-09-28 2157064]"BaiduAnTray"="c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnTray.exe" [2014-10-09 2091528].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 0 (0x0)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableLUA"= 0 (0x0)"EnableUIADesktopToggle"= 0 (0x0)"PromptOnSecureDesktop"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]"DisableMonitoring"=dword:00000001.R1 BDAntiExp;BDAntiExp;c:\windows\system32\DRIVERS\BDAntiExp.sys;c:\windows\SYSNATIVE\DRIVERS\BDAntiExp.sys [x]R1 BDEnhanceBoost;BDEnhanceBoost;c:\windows\system32\drivers\BDEnhanceBoost.sys;c:\windows\SYSNATIVE\drivers\BDEnhanceBoost.sys [x]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R3 2GISUpdateService;2GIS UpdateService;c:\program files (x86)\2gis\3.0\2GISUpdateService.exe;c:\program files (x86)\2gis\3.0\2GISUpdateService.exe [x]R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe [x]R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys;c:\windows\SYSNATIVE\Drivers\mvusbews.sys [x]R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys;c:\program files (x86)\MSI Afterburner\RTCore64.sys [x]R3 ute5ntey;AVZ Kernel Driver;c:\windows\system32\Drivers\ute5ntey.sys;c:\windows\SYSNATIVE\Drivers\ute5ntey.sys [x]S1 bd0001;bd0001;c:\windows\system32\DRIVERS\bd0001.sys;c:\windows\SYSNATIVE\DRIVERS\bd0001.sys [x]S1 bd0002;bd0002;c:\windows\system32\DRIVERS\bd0002.sys;c:\windows\SYSNATIVE\DRIVERS\bd0002.sys [x]S1 bd0003;bd0003;c:\windows\system32\DRIVERS\bd0003.sys;c:\windows\SYSNATIVE\DRIVERS\bd0003.sys [x]S1 BDMWrench_x64;BDMWrench_x64;c:\windows\system32\DRIVERS\BDMWrench_x64.sys;c:\windows\SYSNATIVE\DRIVERS\BDMWrench_x64.sys [x]S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]S2 BaiduHips;BaiduHips;c:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHips.exe;c:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHips.exe [x]S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe [x]S2 BDArKit;BDArKit;c:\windows\system32\DRIVERS\BDArKit.sys;c:\windows\SYSNATIVE\DRIVERS\BDArKit.sys [x]S2 BDDefense;BDDefense;c:\windows\system32\drivers\BDDefense.sys;c:\windows\SYSNATIVE\drivers\BDDefense.sys [x]S2 BDKVRTP;BDKVRTP Service;c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdSvc.exe;c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdSvc.exe [x]S2 BDMNetMon;BDMNetMon;c:\windows\system32\DRIVERS\BDMNetMon.sys;c:\windows\SYSNATIVE\DRIVERS\BDMNetMon.sys [x]S2 BDMRTP;BDMRTP Service;c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnSvc.exe;c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnSvc.exe [x]S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys;c:\windows\SYSNATIVE\drivers\dokan.sys [x]S2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [x]S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe;c:\windows\SYSNATIVE\HPSIsvc.exe [x]S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]S3 RTL8023x64;Драйвер Realtek 10/100 NIC Family NDIS x64;c:\windows\system32\DRIVERS\Rtnic64.sys;c:\windows\SYSNATIVE\DRIVERS\Rtnic64.sys [x]S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]..--- Other Services/Drivers In Memory ---.*NewlyCreated* - BD0001*NewlyCreated* - BD0002.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]iissvcs REG_MULTI_SZ w3svc wasapphost REG_MULTI_SZ apphostsvc.Contents of the 'Scheduled Tasks' folder.2014-11-13 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-18 11:21]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-28 11905128]"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-10-04 2463552]"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-10-04 2800296]"baidusdTray"="c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\baidusdTray.exe" [2014-09-28 2157064]"baiduAnTray"="c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\baiduAnTray.exe" [2014-10-09 2091528].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmmLocal Page = c:\windows\SysWOW64\blank.htmIE: &Экспорт в Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000IE: Закачать ВСЕ при помощи Download Master - c:\program files (x86)\Download Master\dmieall.htmIE: Закачать при помощи Download Master - c:\program files (x86)\Download Master\dmie.htmTCP: DhcpNameServer = 192.168.0.1.- - - - ORPHANS REMOVED - - - -.BHO-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - c:\users\Евгений\AppData\LocalLow\BS_Player\prxtbBS_0.dllToolbar-{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - c:\users\Евгений\AppData\LocalLow\BS_Player\prxtbBS_0.dllWow6432Node-HKCU-Run-amigo - c:\users\Евгений\AppData\Local\Amigo\Application\amigo.exeWebBrowser-{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} - (no file)AddRemove-Battlefield 4.Deluxe Edition.v 1.0.104788_is1 - g:\games\Бателфилд 4\Игра\Battlefield 4.Deluxe Edition.v 1.0.104788\Uninstall\unins000.exe...--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).------------------------ Other Running Processes ------------------------.c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exec:\users\c:\program files (x86)\2gis\3.0\2GISTrayNotifier.exec:\users\c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe.**************************************************************************.Completion time: 2014-11-13 17:55:18 - machine was rebootedComboFix-quarantined-files.txt 2014-11-13 10:55.Pre-Run: 118 348 328 960 байт свободноPost-Run: 117 950 377 984 байт свободно.- - End Of File - - 88906DB387B98231F44FB244367985A4A36C5E4F47E84449FF07ED3517B43A31 Сообщение от модератора Mark D. Pearlstone Добавлен спойлер. Ссылка на комментарий Поделиться на другие сайты More sharing options...
mike 1 Опубликовано 13 ноября, 2014 Share Опубликовано 13 ноября, 2014 Скопируйте текст ниже в Блокнот и сохраните как файл с названием CFScript.txt в корень диска С. KillAll:: File:: c:\windows\system32\drivers\BDDefense.sys c:\windows\system32\drivers\BDMWrench_x64.sys c:\windows\system32\drivers\BDMNetMon.sys c:\windows\system32\drivers\bd0003.sys c:\windows\system32\drivers\bd0002.sys c:\windows\system32\drivers\bd0001.sys c:\windows\system32\drivers\BDArKit.sys c:\windows\system32\drivers\bd0001_1.sys c:\windows\SysWow64\drivers\BDArKit(1).sys c:\windows\SysWow64\an.bat c:\windows\SysWow64\sd.bat c:\windows\SysWow64\drivers\bd0001.sys c:\windows\system32\DRIVERS\BDAntiExp.sys c:\windows\system32\drivers\BDEnhanceBoost.sys Driver:: BDAntiExp BDEnhanceBoost bd0001 bd0002 bd0003 BDMWrench_x64 BaiduHips BDArKit BDDefense BDKVRTP BDMNetMon BDMRTP Folder:: c:\users\Евгений\AppData\Local\Conduit c:\users\Евгений\AppData\Local\Baidu c:\users\Евгений\AppData\Roaming\Baidu c:\programdata\Baidu c:\program files (x86)\Common Files\Baidu c:\program files (x86)\Baidu c:\users\Евгений\AppData\Roaming\eTranslator Registry:: [-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{15DEE173-1BE9-4424-81E0-58A87076E9B1}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BaiduClient"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "baidusdTray"=- "BaiduAnTray"=- FileLook:: DirLook:: Reboot:: После сохранения переместите CFScript.txt на пиктограмму ComboFix.exe. Когда сохранится новый отчет ComboFix.txt, прикрепите его к сообщению. Ссылка на комментарий Поделиться на другие сайты More sharing options...
ЕвгенC Опубликовано 13 ноября, 2014 Автор Share Опубликовано 13 ноября, 2014 готово! Лог: ComboFix 14-11-12.01 - Евгений 13.11.2014 19:00:12.2.4 - x64Microsoft Windows 7 Максимальная 6.1.7600.0.1251.7.1049.18.8173.6624 [GMT 7:00]Running from: C:\ComboFix.exeCommand switches used :: C:\CFScript.txt.txtAV: Антивирус Касперского *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}SP: Антивирус Касперского *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.FILE ::"c:\windows\system32\drivers\bd0001.sys""c:\windows\system32\drivers\bd0001_1.sys""c:\windows\system32\drivers\bd0002.sys""c:\windows\system32\drivers\bd0003.sys""c:\windows\system32\DRIVERS\BDAntiExp.sys""c:\windows\system32\drivers\BDArKit.sys""c:\windows\system32\drivers\BDDefense.sys""c:\windows\system32\drivers\BDEnhanceBoost.sys""c:\windows\system32\drivers\BDMNetMon.sys""c:\windows\system32\drivers\BDMWrench_x64.sys""c:\windows\SysWow64\an.bat""c:\windows\SysWow64\drivers\bd0001.sys""c:\windows\SysWow64\drivers\BDArKit(1).sys""c:\windows\SysWow64\sd.bat"..((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))..c:\windows\system32\drivers\bd0001.sysc:\windows\system32\drivers\bd0001_1.sysc:\windows\system32\drivers\bd0002.sysc:\windows\system32\drivers\bd0003.sysc:\windows\system32\drivers\BDArKit.sysc:\windows\system32\drivers\BDDefense.sysc:\windows\system32\drivers\BDMNetMon.sysc:\windows\system32\drivers\BDMWrench_x64.sysc:\windows\SysWow64\an.batc:\windows\SysWow64\drivers\bd0001.sysc:\windows\SysWow64\drivers\BDArKit(1).sysc:\windows\SysWow64\sd.batc:\windows\TEMP\sdk8\Cache\avengine.dll.cf76373cb9a583c9603a47377e180985c:\windows\TEMP\sdk8\Cache\kavbase.kdl.7aa539a1cbbfb4baa644b9866f4bcf4bc:\windows\TEMP\sdk8\Cache\kavsys.kdl.3cbce9162519ae9d590238cb927fbb55c:\windows\TEMP\sdk8\Cache\kjim.kdl.515c9bc6da1b5b7f42860347f720ee10c:\windows\TEMP\sdk8\Cache\klavemu.kdl.b6b6dd223ad2aad28374217a028b59b0c:\windows\TEMP\sdk8\Cache\qscan.kdl.94c366b442c3accc919782ce5f0d7fd0..((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))..-------\Legacy_BD0001-------\Legacy_BD0002-------\Legacy_BD0003-------\Legacy_BDARKIT-------\Legacy_BDDEFENSE-------\Legacy_BDMNETMON-------\Legacy_BDMWRENCH_X64-------\Service_BaiduHips-------\Service_bd0001-------\Service_bd0002-------\Service_bd0003-------\Service_BDAntiExp-------\Service_BDArKit-------\Service_BDDefense-------\Service_BDEnhanceBoost-------\Service_BDKVRTP-------\Service_BDMNetMon-------\Service_BDMRTP-------\Service_BDMWrench_x64..((((((((((((((((((((((((( Files Created from 2014-10-13 to 2014-11-13 )))))))))))))))))))))))))))))))..2014-11-13 12:40 . 2014-11-13 12:40 -------- d-----w- c:\users\Default\AppData\Local\temp2014-11-13 12:40 . 2014-11-13 12:40 -------- d-----w- c:\users\…ўЈҐЁ©\AppData\Local\temp2014-11-13 07:45 . 2014-09-10 12:41 174416 ----a-w- c:\windows\system32\drivers\bd0001.sys_2014-11-12 16:48 . 2014-11-12 16:48 -------- d-----w- c:\users\Евгений\AppData\Local\Conduit2014-11-12 16:48 . 2014-11-12 16:48 7168 ----a-w- c:\windows\SysWow64\drivers\ute5ntey.sys2014-11-10 20:17 . 2014-11-10 20:17 -------- d-----w- c:\users\Евгений\AppData\Local\Baidu2014-11-09 15:03 . 2014-11-09 16:38 -------- d-----w- c:\programdata\Package Cache2014-11-09 15:02 . 2014-11-13 09:36 144712 ----a-w- c:\windows\SysWow64\drivers\BDArKit.sys2014-11-09 13:54 . 2014-10-30 00:56 614728 ----a-w- c:\windows\SysWow64\nvStreaming.exe2014-11-09 11:33 . 2014-11-09 11:34 -------- d-----w- c:\users\12014-11-08 20:24 . 2014-11-13 10:55 -------- d-----w-ppData c:\users\APPDAT~12014-11-08 19:12 . 2014-11-08 21:47 -------- d-----w- c:\users\Евгений\AppData\Roaming\Shareman2014-11-08 19:12 . 2014-11-08 21:47 -------- d-----w- c:\program files (x86)\Shareman2014-11-08 11:54 . 2014-11-08 11:54 -------- d-----w- c:\programdata\Kaspersky SDK2014-11-06 18:59 . 2014-11-10 20:17 -------- d-----w- c:\users\Евгений\AppData\Roaming\Baidu2014-11-06 18:58 . 2014-11-13 07:45 -------- d-----w- c:\programdata\Baidu2014-11-06 18:58 . 2014-11-06 18:58 -------- d-----w- c:\program files (x86)\Common Files\Baidu2014-11-06 18:57 . 2014-11-13 07:46 -------- d-----w- c:\program files (x86)\Baidu2014-11-06 18:57 . 2014-11-06 18:57 -------- d-----w- c:\users\Евгений\AppData\Local\MailRu2014-11-06 18:56 . 2014-11-06 19:15 -------- d-----w- c:\users\Евгений\AppData\Roaming\eTranslator2014-10-27 19:18 . 2014-10-29 07:37 -------- d-----w- c:\program files (x86)\RaidCall.RU2014-10-16 06:55 . 2014-10-17 06:49 -------- d-----w- c:\users\Евгений\AppData\Local\Adobe...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2014-11-13 09:36 . 2014-11-13 12:44 144712 ----a-w- c:\windows\system32\drivers\BDArKit.SYS2014-11-12 11:21 . 2012-05-18 11:42 701104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2014-11-12 11:21 . 2012-05-01 12:46 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2014-10-30 04:53 . 2014-03-17 17:37 987008 ----a-w- c:\windows\system32\nvumdshimx.dll2014-10-30 04:53 . 2014-03-17 16:41 2849224 ----a-w- c:\windows\SysWow64\nvapi.dll2014-10-30 04:53 . 2014-02-21 17:10 73872 ----a-w- c:\windows\system32\OpenCL.dll2014-10-30 04:53 . 2014-02-21 17:10 60744 ----a-w- c:\windows\SysWow64\OpenCL.dll2014-10-30 04:53 . 2014-02-21 17:03 20966504 ----a-w- c:\windows\system32\nvwgf2umx.dll2014-10-30 04:53 . 2014-02-21 17:03 3237528 ----a-w- c:\windows\system32\nvapi64.dll2014-10-30 04:53 . 2014-02-21 17:03 16886168 ----a-w- c:\windows\SysWow64\nvd3dum.dll2014-10-30 02:10 . 2014-02-21 17:10 6880968 ----a-w- c:\windows\system32\nvcpl.dll2014-10-30 02:10 . 2014-02-21 17:10 3533632 ----a-w- c:\windows\system32\nvsvc64.dll2014-10-30 02:10 . 2014-02-21 17:10 935232 ----a-w- c:\windows\system32\nvvsvc.exe2014-10-30 02:10 . 2014-02-21 17:10 61640 ----a-w- c:\windows\system32\nvshext.dll2014-10-30 02:10 . 2014-02-21 17:10 2558792 ----a-w- c:\windows\system32\nvsvcr.dll2014-10-30 02:10 . 2014-02-21 17:10 385352 ----a-w- c:\windows\system32\nvmctray.dll2014-10-27 00:34 . 2014-04-08 15:36 4066553 ----a-w- c:\windows\system32\nvcoproc.bin2014-10-04 06:42 . 2014-06-04 17:19 1291280 ----a-w- c:\windows\SysWow64\nvspbridge.dll2014-10-04 06:42 . 2014-03-17 16:44 2197680 ----a-w- c:\windows\SysWow64\nvspcap.dll2014-10-04 06:41 . 2014-06-04 17:19 1715224 ----a-w- c:\windows\system32\nvspbridge64.dll2014-10-04 06:41 . 2014-03-17 16:44 2800296 ----a-w- c:\windows\system32\nvspcap64.dll2014-09-23 07:16 . 2014-11-13 12:44 52040 ----a-w- c:\windows\system32\drivers\BDMWrench_x64.sys2014-09-17 04:51 . 2014-10-07 16:02 31520 ----a-w- c:\windows\system32\nvhdap64.dll2014-09-17 04:51 . 2014-10-07 16:02 197408 ----a-w- c:\windows\system32\drivers\nvhda64v.sys2014-09-17 04:51 . 2014-04-08 15:57 1538880 ----a-w- c:\windows\system32\nvhdagenco6420103.dll2014-09-13 23:48 . 2014-10-07 16:02 1876296 ----a-w- c:\windows\system32\nvdispco6434411.dll2014-09-13 23:48 . 2014-10-07 16:02 1539272 ----a-w- c:\windows\system32\nvdispgenco6434411.dll2014-09-13 23:48 . 2014-03-17 17:37 984424 ----a-w- c:\windows\system32\SET122C.tmp2014-09-13 23:48 . 2014-02-21 17:03 20589536 ----a-w- c:\windows\system32\SET145F.tmp2014-09-13 23:48 . 2014-02-21 17:03 3223120 ----a-w- c:\windows\system32\SET1EB.tmp2014-09-04 19:14 . 2014-10-07 15:59 38048 ----a-w- c:\windows\system32\drivers\nvvad64v.sys2014-09-04 19:14 . 2014-10-07 15:59 32416 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll2014-09-04 19:14 . 2014-02-21 17:03 34976 ----a-w- c:\windows\system32\nvaudcap64v.dll..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shownREGEDIT4.[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{15DEE173-1BE9-4424-81E0-58A87076E9B1}]2014-09-16 10:58 366984 ----a-w- c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\WebMonBHO.dll.[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]c:\users\Евгений\AppData\LocalLow\BS_Player\prxtbBS_0.dll [bU].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]"{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}"= "c:\users\Евгений\AppData\LocalLow\BS_Player\prxtbBS_0.dll" [bU].[HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"2Gis Update Notifier"="c:\program files (x86)\2gis\3.0\2GISTrayNotifier.exe" [2014-09-30 4582936]"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-08-21 959176]"ACSW15EN"="c:\program files (x86)\ACD Systems\ACDSee\15.0\ACDSee15InTouch2.exe" [2012-12-17 1135304]"BaiduAnTray"="c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnTray.exe" [2014-10-09 2091528].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 0 (0x0)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableLUA"= 0 (0x0)"EnableUIADesktopToggle"= 0 (0x0)"PromptOnSecureDesktop"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]"DisableMonitoring"=dword:00000001.R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R3 2GISUpdateService;2GIS UpdateService;c:\program files (x86)\2gis\3.0\2GISUpdateService.exe;c:\program files (x86)\2gis\3.0\2GISUpdateService.exe [x]R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe [x]R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys;c:\windows\SYSNATIVE\Drivers\mvusbews.sys [x]R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys;c:\program files (x86)\MSI Afterburner\RTCore64.sys [x]R3 ute5ntey;AVZ Kernel Driver;c:\windows\system32\Drivers\ute5ntey.sys;c:\windows\SYSNATIVE\Drivers\ute5ntey.sys [x]S1 BDMWrench_x64;BDMWrench_x64;c:\windows\system32\DRIVERS\BDMWrench_x64.sys;c:\windows\SYSNATIVE\DRIVERS\BDMWrench_x64.sys [x]S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe [x]S2 BDArKit;BAIDU Ark Kit Service;c:\windows\System32\Drivers\BDArKit.SYS;c:\windows\SYSNATIVE\Drivers\BDArKit.SYS [x]S2 BDMRTP;BDMRTP Service;c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnSvc.exe;c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnSvc.exe [x]S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys;c:\windows\SYSNATIVE\drivers\dokan.sys [x]S2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [x]S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe;c:\windows\SYSNATIVE\HPSIsvc.exe [x]S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]S3 RTL8023x64;Драйвер Realtek 10/100 NIC Family NDIS x64;c:\windows\system32\DRIVERS\Rtnic64.sys;c:\windows\SYSNATIVE\DRIVERS\Rtnic64.sys [x]S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]..--- Other Services/Drivers In Memory ---.*NewlyCreated* - BDARKIT*NewlyCreated* - BDMWRENCH_X64.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]iissvcs REG_MULTI_SZ w3svc wasapphost REG_MULTI_SZ apphostsvc.Contents of the 'Scheduled Tasks' folder.2014-11-13 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-18 11:21]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-28 11905128]"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-10-04 2463552]"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-10-04 2800296]"baidusdTray"="c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\baidusdTray.exe" [2014-09-28 2157064]"baiduAnTray"="c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\baiduAnTray.exe" [2014-10-09 2091528].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmmLocal Page = c:\windows\SysWOW64\blank.htmIE: &Экспорт в Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000IE: Закачать ВСЕ при помощи Download Master - c:\program files (x86)\Download Master\dmieall.htmIE: Закачать при помощи Download Master - c:\program files (x86)\Download Master\dmie.htmTCP: DhcpNameServer = 192.168.0.1.- - - - ORPHANS REMOVED - - - -.AddRemove-Battlefield 4.Deluxe Edition.v 1.0.104788_is1 - g:\games\Бателфилд 4\Игра\Battlefield 4.Deluxe Edition.v 1.0.104788\Uninstall\unins000.exe...--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).------------------------ Other Running Processes ------------------------.c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exec:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHips.exe.**************************************************************************.Completion time: 2014-11-13 19:45:48 - machine was rebootedComboFix-quarantined-files.txt 2014-11-13 12:45ComboFix2.txt 2014-11-13 10:55.Pre-Run: 118 029 910 016 байт свободноPost-Run: 117 708 668 928 байт свободно.- - End Of File - - CF1EAF168B017F8E7F0B6A1A348025B7A36C5E4F47E84449FF07ED3517B43A31 Сообщение от модератора Mark D. Pearlstone Добавлен спойлер. Ссылка на комментарий Поделиться на другие сайты More sharing options...
mike 1 Опубликовано 13 ноября, 2014 Share Опубликовано 13 ноября, 2014 (изменено) Скопируйте текст ниже в Блокнот и сохраните как файл с названием CFScript.txt в корень диска С. KillAll:: File:: c:\windows\system32\drivers\bd0001.sys_ c:\windows\SysWow64\drivers\BDArKit.sys Driver:: BDMWrench_x64 BDArKit BDMRTP Folder:: c:\users\Евгений\AppData\Local\Conduit c:\users\Евгений\AppData\Local\Baidu c:\users\Евгений\AppData\Roaming\Baidu c:\programdata\Baidu c:\program files (x86)\Common Files\Baidu c:\program files (x86)\Baidu c:\users\Евгений\AppData\Roaming\eTranslator Registry:: [-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{15DEE173-1BE9-4424-81E0-58A87076E9B1}] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "BaiduAnTray"=- FileLook:: DirLook:: Reboot:: После сохранения переместите CFScript.txt на пиктограмму ComboFix.exe. Когда сохранится новый отчет ComboFix.txt, прикрепите его к сообщению. Изменено 13 ноября, 2014 пользователем mike 1 Ссылка на комментарий Поделиться на другие сайты More sharing options...
ЕвгенC Опубликовано 13 ноября, 2014 Автор Share Опубликовано 13 ноября, 2014 сделал Лог: ComboFix 14-11-12.01 - Евгений 13.11.2014 21:23:01.3.4 - x64Microsoft Windows 7 Максимальная 6.1.7600.0.1251.7.1049.18.8173.5023 [GMT 7:00]Running from: C:\ComboFix.exeCommand switches used :: C:\CFScript.txt.txtAV: Антивирус Касперского *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}SP: Антивирус Касперского *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.FILE ::"c:\windows\system32\drivers\bd0001.sys""c:\windows\system32\drivers\bd0001_1.sys""c:\windows\system32\drivers\bd0002.sys""c:\windows\system32\drivers\bd0003.sys""c:\windows\system32\DRIVERS\BDAntiExp.sys""c:\windows\system32\drivers\BDArKit.sys""c:\windows\system32\drivers\BDDefense.sys""c:\windows\system32\drivers\BDEnhanceBoost.sys""c:\windows\system32\drivers\BDMNetMon.sys""c:\windows\system32\drivers\BDMWrench_x64.sys""c:\windows\SysWow64\an.bat""c:\windows\SysWow64\drivers\bd0001.sys""c:\windows\SysWow64\drivers\BDArKit(1).sys""c:\windows\SysWow64\sd.bat"..((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))..c:\program files (x86)\Baiduc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BaiduAnUpdate_1_1.exec:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDLogicUtils_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDMBase_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDMFrameWork_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDMMsg_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDMNet_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDMReport_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDMSkin_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDMStringUtils_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDMTinyXml_1_1.dllc:\program files (x86)\Baidu\BaiduAn\2.3.0.2225\BDSWShellExt64_1_1.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\ad.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Baidu_Setup.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnBugRpt.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnPatcher.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnSvc.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnTray.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BaiduAnUpdate.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDAFileHelper.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDALeakfixer.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDASoftmgr.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDASWDeskGuide.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDASWHelper.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDASWUpdateTip.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDDriverFixer.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDLogicUtils.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\BDAVCache.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\BDKitUtils.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\BDKitUtils.dll.O1c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\BDMAVCached.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\BDMAVEng.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\BDMRepBase.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\BDMRepMgr.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\bduf.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\blacksign.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\ccesign.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\CompatibilityChecker.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\kav_compatible.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\scan_mgr_config.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\systemfile.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\TrustAndIso.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\bdmantivirus\virus_type.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMCommon.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMDbSqlite.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMDownload.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMFrameWork.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMMainFrame.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMNet.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMPatchAgent.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMReport.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMScriptVM.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMSkin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMSWDeepClean.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMSWNestCore.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMSWNetComm.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMSWParseDetect.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMUpdate.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDMWindowsLib.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDNetMisc.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDSWShellExt.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\BDSWShellExt64.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\DriverManager.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\drivers\BDEnhanceBoost.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\drivers\BDMNetMon.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\drivers\BDMWrench_x64.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\EnhanceBoost.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\BDMNetMonMgrDll.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\BDMProcessRunningTime.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\BDMSOLiveAccDataMgr.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\BDMSOLiveAccEngine.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\BDMSOLiveAccStrategyMgr.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOCleanerCheckItem.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOCleanerConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOCleanerPreScan.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOCleanerScript.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOGarbageCleanerConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOGarbageConfig.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOHomePageCleanerConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOPluginCleanerConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SORegCleanerConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SORegCleanerScript.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOSilentCleanerConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOTraceCleanerConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SOTraceConfig.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\StartupDict.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SysAccLiveStrategy.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SYSAccMgrDll.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SYSAccMgrDll.dll.O1c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SYSCleaner.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSOManager\SysOptDict.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSWManager\homepage.inic:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSWManager\sw_acc.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSWManager\sw_appassext.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSWManager\sw_class_filter.dbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSWManager\sw_extlist.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSWManager\sw_property.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSWManager\sw_repairproperty.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSWManager\SWCatalogDataItem.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\BDMCloudEng.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\PluginManager.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\pluginUnit.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\SysFixer.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\SysFixerConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\SysFixerLuaScript.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\SysFixerPreOptimizeConfig.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\SysFixerPreOptimizeXMLScript.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FTSysFixer\SysFixerXMLScript.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\FZLTHYS-GB18030(20120913).ttfc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\GameNoDisturb.inic:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\GCCallbackBind.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\GCCommunicate.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\GCScriptBind.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsClient.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\ad.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BaiduHips.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BaiduHipsBugRpt.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BaiduHipsBusiness.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BaiduHipsCore.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BaiduHipsIU.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BaiduHipsUpdate.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BaiduPrevUIn.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\bd0001.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\bd0002.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDConfig.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDDriverFixer.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDLogicUtils.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\bdmantivirus\BDKitUtils.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMAVCached.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMAVEng.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMBase.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMDownload.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMFrameWork.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMLog.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMMsg.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMNet.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMPatchAgent.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMReport.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMStringUtils.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMTinyXml.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDMUpdate.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\BDPerflog.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\blacksign.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\cache_config.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\DriverManager.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\drivers\x64\bd0001.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\drivers\x64\bd0002.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\drivers\x64\BDArKit.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\drivers\x64\BDDefense_x64.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\drivers\x86\bd0001.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\drivers\x86\bd0002.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\drivers\x86\BDArKit.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\drivers\x86\BDDefense.sysc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\hips_customer.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\hips_product.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\hips_self_enc.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\InstallCfg.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\NetService.inic:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\patch.7zc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\patch\placeholder_tmpc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\policy.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\systemfile.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\TrustAndIso.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\hipsengine\wverify.datc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\libcurl.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\libeay32.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\licenses\BaiduAnSWPlugin.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\licenses\directui license.txtc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\licenses\duilib license.txtc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\licenses\libcurllicense.txtc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\licenses\openssllicense.txtc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\NetService.inic:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\PluginManager\PluginConfig.dbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\PluginManager\preliminary.dbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDADesktopSearch\BDADesktopSearch.exec:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDADesktopSearch\minibaidu.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDADesktopSearch\PluginSetup.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMCoolyPlugins\BDMSOAccCoolyPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmkvscanplugin\BDMKVScanPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmmainframeplugins\{F5E93978-539C-476B-9A7B-B6C32025A557}.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmmainframeplugins\BDMSafePlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmmainframeplugins\PluginSetup.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMPatcherPlugins\BDMConnect.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMPatcherPlugins\BDMPatcher.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMSafePlugins\BDActiveDefensePlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMSafePlugins\BDMKVMainPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMSafePlugins\BDMPatcherPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMSafePlugins\BDMSysFixerPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMSOManagerPlugins\BDMSOAcceleratorPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\BDMSOManagerPlugins\BDMSOCleanerPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmsusplugins\BDMNetMonSusPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmsusplugins\BDMSOAccSusPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmswmanagerplugins\BDASoftMgrCoolyPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmswmanagerplugins\BDMSWManagerView.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmswmanagerplugins\BDSoftMgrModule.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmtaskbarplugins\BDMToolBox.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmtaskbarplugins\BDMUserCenter.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmtrayplugins\BDMAccount.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmtrayplugins\BDMSmartTip.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmtrayplugins\BDMSOAccTrayPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmtrayplugins\BDMSOCleanerTrayPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmtrayplugins\BDMSusPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\bdmtrayplugins\BDMTrayTipsPlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\extends\LocalPluginInfo.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\GlobalPluginInfo.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\HotPlugin.bnrc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\HotPlugins.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\LocalPluginInfo.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\NotInstalledPlugin.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\RTPPlugins\BDMSOAccServicePlugin.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\RTPPlugins\BDMSOAccServicePlugin.dll.O1c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\plugins\RTPPlugins\HipsClient.dllc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\policy_baiduan.xmlc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\BDMSetting.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\BDMTray\TrayPlugin.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\BDMUpdate.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\CommonRes.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\KVCommonRes.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\SafePlugin.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\SmartTips.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\SOManager.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\SusPlugin.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\SWManager.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\SysAccelerator.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Default\Unknownfile.rdbc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\SWIcon\softmgr_remind.icoc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_minute_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_0_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_1_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_2_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_3_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_4_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_5_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_6_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_7_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_8_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_9_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_num_blank_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\Skins\Tips\win8_1_second_speed.pngc:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\SysRepLib.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ac_app_cat.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ac_assembler.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ac_facade.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ac_facade.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ac_file_categorizer.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ac_integrity_control.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ac_meta.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ac_process_monitor.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\acassembler.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ad.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\am_facade.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\am_meta.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\app_core_legacy.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\app_core_legacy.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\app_core_meta.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\app_core_meta.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\arj.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\attestation_task.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\avs.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BAIDU2013.keyc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdBugRpt.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdRepair.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdSvc.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdTray.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdUpdate.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BaiduSdUProxy64.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BAV\BavCommon.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BAV\BavEngine.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BAV\BavFrame.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BAV\BavScanH.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BAV\BavScanM.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BAV\BavScanS.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BAV\BavScanV.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDConfig.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDDriverFixer.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDKVDeskBand.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDKVDeskBand64.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDKVDownloadProtect.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDKVDownloadProtect_x64.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDKVMainFrame.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDKVRecomm.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDKVWsc_1.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDLogicUtils.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDLogicUtils_1_1.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\BDKitUtils.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\BDMAVCached.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\BDMAVEng.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\BDMPerfMon.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\BDMRepBase.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\BDMRepMgr.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\BDUDiskGuard.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\bduf.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\blacksign.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\cache_config.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\ccesign.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\CompatibilityChecker.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kav_verify.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\KavUpdate.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\app_core_legacy.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\appinfo.klic:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\BAIDU2013.keyc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\kl.pbvc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\msvcp100.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\msvcr100.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\oper.pbvc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\service.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\service.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\storage.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\storage.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\transport.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\transport.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\update_adaptor.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\update_adaptor.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\update_adaptor.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\update_sync.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\update_sync.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\kavupdate\UpdSdk.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\monitor_config.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\scan_mgr_config.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\systemfile.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\TrustAndIso.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\virus_type.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmantivirus\wverify.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMAVE.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMDbSqlite.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMDownload.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMEvents.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMFrameWork.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMFrameWork_1.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMNet.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMPatchAgent.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMReport.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMReport_1.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMScriptVM.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMSDWrench.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMSkin.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmsysrepair\BDMSRCore.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmsysrepair\BDMSREng.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\bdmsysrepair\BSRLib.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMUpdate.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDMWindowsLib.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDPerflog.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDShellExt.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDShellExt64.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\BDShellExt64_1_1.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\CAB.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\cf_anti_malware_facade.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\cf_config.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\cf_facade.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\cf_prague_adapter.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\cf_response_provider.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Cleanup64.regc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\content_filtering.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\crpthlpr.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\CryptoStaticProvider.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\DataFormats-en.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\DesktopToast.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\deterministic_anti_phishing_service.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\dmap.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\dns_client.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\DriverManager.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\dtreg.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\eka_meta.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ekasyswatch.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\excludemanager.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\filesystem_services.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\format_recognizer.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\FsDrvPlg.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\fssync.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\FTSysFixer\SysFixerConfig.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\FTSysFixer\SysFixerLuaScript.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\FTSysFixer\SysFixerXMLScript.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\GameNoDisturb.inic:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\GCCallbackBind.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\GCCommunicate.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\GCScriptBind.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\HashMD5.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsClient.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BaiduHips.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BaiduHipsBugRpt.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BaiduHipsIU.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BaiduHipsUpdate.exec:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\bd0001.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\bd0002.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDConfig.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDDriverFixer.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDLogicUtils.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMAVCached.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMAVEng.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMBase.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMDownload.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMFrameWork.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMLog.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMMsg.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMNet.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMPatchAgent.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMReport.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMStringUtils.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMTinyXml.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDMUpdate.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\BDPerflog.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\blacksign.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\cache_config.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\DriverManager.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\drivers\x64\bd0001.sysc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\drivers\x64\bd0002.sysc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\drivers\x86\bd0001.sysc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\drivers\x86\bd0002.sysc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\hips_customer.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\hips_product.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\hips_self_enc.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\InstallCfg.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\NetService.inic:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\patch.7zc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\patch\placeholder_tmpc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\smr.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\systemfile.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\TrustAndIso.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\hipsengine\wverify.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ichecker.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\iexplore.exe.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Inflate.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\instrumental.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\instrumental_meta.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\integrity_control.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\kas_cpconvert.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\kas_engine.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\kas_filtration.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\kas_loader.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\kas_product.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\kave8.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\kavess.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\key_value_storage.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\KL_libeay32.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\KL_ssleay32.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\klifpp_meta.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\kpcengine.2.2.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ksn_client.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ksn_facade.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ksn_meta.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ksn_statistics.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ksnhelper.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\KVFixerConfigMgr.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\lha.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\licenses\directui license.txtc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\licenses\duilib license.txtc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\minizip.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\msoe.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\msvcp100.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\msvcr100.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\NetService.inic:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\network_services.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\nfio.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\packed_io.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\params.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\persistent_queue.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\persistent_storage.kvdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkv\BDKVVirusPlugins.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkv\KVMainframePluginContainerConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvrtpplugins\FileMon.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvrtpplugins\fm.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvrtpplugins\HIPSClient.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvrtpplugins\PrivacyProtect.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvrtpplugins\RtpContainerConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvtrayplugins\BDDownLoadProtectPlugin.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvtrayplugins\BDKVRmvDevPlugin.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvtrayplugins\BDKVTrayTipsPlugin.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvtrayplugins\TrayPluginContainerConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\bdkvtrayplugins\UserDetectionPlugin.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\Cooly_PluginConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\coolyplugins\CoolyContainerConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\KVMainframe_PluginConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\KVRtp_PluginConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\KVTray_PluginConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\Repair_PluginConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\repairplugins\baidusdRepair.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins\repairplugins\RepairPluginContainerConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\plugins_config.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\prloader.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\processmonitor.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\procmon.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\prseqio.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\PullUpConfig.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\qb.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\queue.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\rar.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\regmap.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\report.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ReportDB.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\sax_xml_parser.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\schedule.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\service.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\settings_storage.kvdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\BDKVConfig.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\BDKVQuarantine.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\BDKVTray\TrayPlugin.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\BDKVUpdate.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\KVCommonRes.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\SearchProtection.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\TrayDldProtect.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\TrayPlugin.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\Skins\Default\TrayPullUpWS.rdbc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\storage.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\swpragueplugin.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\system_services.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\thpimpl.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\threats_disinfection.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ThreatsManager.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\timer.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\tm.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ToastImage.pngc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\ToastLogo.icoc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\traffic_processing.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\traffic_processing_product_facade.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\transport.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\transport.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\transport_provider.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\UniArc.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\update_adaptor.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\update_adaptor.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\update_adaptor.xmlc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\update_subscription.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\update_subscription.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\update_sync.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\update_sync.esmc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\url_processing.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\vulnerability_status_provider.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\webnetstat.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\DllInject.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\DllInject_1.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\putips_wording.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\user_trusted_list.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\WebMonBHO.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\WebMonHook.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\WebSafe.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\WebSafePlugin.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\white_list.datc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\WinLibHlpr.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\winreg.pplc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\expsrv.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\mfc42.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\msvbvm50.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\msvbvm60.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\msvcp100.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\msvcp60.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\msvcp80.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\msvcr100.dllc:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\x86\msvcr80.dllc:\program files (x86)\Common Files\Baiduc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BaiduHips.exe.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BaiduHipsIU.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\bd0002.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDConfig.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDDriverFixer.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDLogicUtils.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDMBase.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDMFrameWork.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDMNet.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDMReport.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDMStringUtils.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733.bak\BDMTinyXml.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\ad.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHips.exec:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHips.exe.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHipsBugRpt.exec:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHipsBusiness.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHipsCore.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHipsIU.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHipsIU.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduHipsUpdate.exec:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BaiduPrevUIn.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\bd0001.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\bd0002.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDConfig.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDConfig.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDDriverFixer.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDDriverFixer.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDLogicUtils.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDLogicUtils.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\bdmantivirus\BDKitUtils.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMAVCached.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMAVEng.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMBase.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMBase.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMDownload.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMFrameWork.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMFrameWork.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMLog.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMMsg.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMNet.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMNet.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMPatchAgent.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMReport.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMReport.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMStringUtils.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMStringUtils.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMTinyXml.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMTinyXml.dll.bakc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDMUpdate.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\BDPerflog.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\blacksign.datc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\cache_config.datc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\DriverManager.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\drivers\bd0001.sysc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\drivers\bd0002.sysc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\drivers\BDArKit.sysc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\drivers\BDDefense_x64.sysc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\hips_customer.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\hips_product.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\hips_self_enc.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\InstallCfg.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\NetService.inic:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch.7zc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduAn_HipsClient_2.1.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduAn_HipsClient_2.1.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduAn_HipsClient_2.3.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduAn_HipsClient_2.3.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduAn_PreU_2.1.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduAn_PreU_2.3.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduSd_HipsClient_1.8.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduSd_HipsClient_1.8.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\BaiduSd_PreU_1.8.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\patch\placeholder_tmpc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\Policy.xmlc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\smr.datc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\systemfile.datc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\TrustAndIso.dllc:\program files (x86)\Common Files\Baidu\BaiduHips\1.1.0.733\wverify.datc:\program files (x86)\Common Files\Baidu\BDDownload\108\7z.dllc:\program files (x86)\Common Files\Baidu\BDDownload\108\bdcomproxy.dllc:\program files (x86)\Common Files\Baidu\BDDownload\108\bddownloader.exec:\program files (x86)\Common Files\Baidu\BDDownload\108\dl.dllc:\programdata\Baiduc:\programdata\Baidu\BaiduAn\000031.logc:\programdata\Baidu\BaiduAn\BaiduAnCache.rptcc:\programdata\Baidu\BaiduAn\BDMFixer\BDMFixer1.dbc:\programdata\Baidu\BaiduAn\BDMSOCleaner\SOGarbageConfig.xmlc:\programdata\Baidu\BaiduAn\BDMSOCleaner\SOTraceConfig.xmlc:\programdata\Baidu\BaiduAn\Config\1000.datc:\programdata\Baidu\BaiduAn\Config\10004.datc:\programdata\Baidu\BaiduAn\Config\10005.datc:\programdata\Baidu\BaiduAn\Config\4401.datc:\programdata\Baidu\BaiduAn\Config\4402.datc:\programdata\Baidu\BaiduAn\Config\4501.datc:\programdata\Baidu\BaiduAn\Config\4700.datc:\programdata\Baidu\BaiduAn\Config\4800.datc:\programdata\Baidu\BaiduAn\Config\6001.datc:\programdata\Baidu\BaiduAn\Config\6005.datc:\programdata\Baidu\BaiduAn\Config\7000.datc:\programdata\Baidu\BaiduAn\Config\8001.datc:\programdata\Baidu\BaiduAn\Config\805.datc:\programdata\Baidu\BaiduAn\Config\810.datc:\programdata\Baidu\BaiduAn\Config\812.datc:\programdata\Baidu\BaiduAn\Config\8500.datc:\programdata\Baidu\BaiduAn\Config\900.datc:\programdata\Baidu\BaiduAn\Config\config.inic:\programdata\Baidu\BaiduAn\CURRENTc:\programdata\Baidu\BaiduAn\FileUpdate\2\404\Download.datac:\programdata\Baidu\BaiduAn\FTSOManager\BDMProcRunTimeData.xmlc:\programdata\Baidu\BaiduAn\hipscache.dbc:\programdata\Baidu\BaiduAn\LOCKc:\programdata\Baidu\BaiduAn\LOGc:\programdata\Baidu\BaiduAn\LOG.oldc:\programdata\Baidu\BaiduAn\MANIFEST-000030c:\programdata\Baidu\BaiduAn\Patch\error.datc:\programdata\Baidu\BaiduAn\Patch\publish.dbc:\programdata\Baidu\BaiduAn\PluginPack\label\{0FFDA2B9-97ED-43B2-897C-83A6FD999936}.pngc:\programdata\Baidu\BaiduAn\PluginPack\label\{304BDAC9-DD6E-46E3-B02E-36AD0C3E0EE7}.pngc:\programdata\Baidu\BaiduAn\PluginPack\label\{72525F5A-5A83-4735-88B3-26EA0455A17D}.pngc:\programdata\Baidu\BaiduAn\PluginPack\label\{BEA8B3A8-049B-40EC-850D-B4F0847A3681}.pngc:\programdata\Baidu\BaiduAn\PluginPack\label\{EBF6F416-F556-4B74-9115-8949B33A91BC}.pngc:\programdata\Baidu\BaiduAn\PluginPack\label\{F5E93978-539C-476B-9A7B-B6C32025A557}.pngc:\programdata\Baidu\BaiduAn\PluginPack\UninstalledPlugins.xmlc:\programdata\Baidu\BaiduAn\SWManager\Cache\0026665292f1319c65d83191730df558.pngc:\programdata\Baidu\BaiduAn\SWManager\Cache\11c08cfae87b973c074c6be664f84087.pngc:\programdata\Baidu\BaiduAn\SWManager\Cache\6e75927fb1fe5531468dae838226fd00.pngc:\programdata\Baidu\BaiduAn\SWManager\Cache\812c98517236c2c3f9128243412ed42d.pngc:\programdata\Baidu\BaiduAn\SWManager\Cache\82854523b0dc1dbd025679cabe47ab8b.pngc:\programdata\Baidu\BaiduAn\SWManager\Cache\8f4dacb7015649a3d303349a573e81a5.pngc:\programdata\Baidu\BaiduAn\SWManager\Cache\c9f78d1f10b04b9bf7d51ac230071016.pngc:\programdata\Baidu\BaiduAn\SWManager\Cache\e1bd8c794d318dc6788ec1043a7f5ee5.pngc:\programdata\Baidu\BaiduAn\SWManager\pathcache.datc:\programdata\Baidu\BaiduAn\SWManager\tasklist.datc:\programdata\Baidu\BaiduAn\SWManager\ultcache.datc:\programdata\Baidu\BaiduAn\SWManager\updateTips.datc:\programdata\Baidu\BaiduAn\white_list.dbc:\programdata\Baidu\BaiduHips\Config\810.datc:\programdata\Baidu\BaiduHips\hipscache.dbc:\programdata\Baidu\BaiduSd\2477385303_rpt.datc:\programdata\Baidu\BaiduSd\CachedDB_1\000017.logc:\programdata\Baidu\BaiduSd\CachedDB_1\000018.sstc:\programdata\Baidu\BaiduSd\CachedDB_1\CURRENTc:\programdata\Baidu\BaiduSd\CachedDB_1\LOCKc:\programdata\Baidu\BaiduSd\CachedDB_1\LOGc:\programdata\Baidu\BaiduSd\CachedDB_1\LOG.oldc:\programdata\Baidu\BaiduSd\CachedDB_1\MANIFEST-000015c:\programdata\Baidu\BaiduSd\Config\4402.datc:\programdata\Baidu\BaiduSd\Config\804.datc:\programdata\Baidu\BaiduSd\Config\805.datc:\programdata\Baidu\BaiduSd\Config\806.datc:\programdata\Baidu\BaiduSd\Config\809.datc:\programdata\Baidu\BaiduSd\Config\810.datc:\programdata\Baidu\BaiduSd\Config\811.datc:\programdata\Baidu\BaiduSd\Config\812.datc:\programdata\Baidu\BaiduSd\Config\860.datc:\programdata\Baidu\BaiduSd\Config\900.datc:\programdata\Baidu\BaiduSd\Config\901.datc:\programdata\Baidu\BaiduSd\Config\902.datc:\programdata\Baidu\BaiduSd\FileSignDB\000011.logc:\programdata\Baidu\BaiduSd\FileSignDB\CURRENTc:\programdata\Baidu\BaiduSd\FileSignDB\LOCKc:\programdata\Baidu\BaiduSd\FileSignDB\LOGc:\programdata\Baidu\BaiduSd\FileSignDB\LOG.oldc:\programdata\Baidu\BaiduSd\FileSignDB\MANIFEST-000010c:\programdata\Baidu\BaiduSd\IsolationDB.dbc:\programdata\Baidu\BaiduSd\kav\bases\apu\log0c:\programdata\Baidu\BaiduSd\kav\bases\bases.idc:\programdata\Baidu\BaiduSd\kav\bases\bl0001.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0003.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0007.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0008.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0010.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0011.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0015.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0017.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0018.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0021.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0022.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0023.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0025.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0029.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0031.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0032.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0033.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0034.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0035.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0036.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0037.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0038.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0039.datc:\programdata\Baidu\BaiduSd\kav\bases\bl0040.datc:\programdata\Baidu\BaiduSd\kav\bases\blst2-0607g.krgc:\programdata\Baidu\BaiduSd\kav\bases\blst2-0607g.pbvc:\programdata\Baidu\BaiduSd\kav\bases\blst2-0607g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\bsshlp.kdlc:\programdata\Baidu\BaiduSd\kav\bases\core-bin-0607g.pbvc:\programdata\Baidu\BaiduSd\kav\bases\kavsys.kdlc:\programdata\Baidu\BaiduSd\kav\bases\kdb-i386-0607g.krgc:\programdata\Baidu\BaiduSd\kav\bases\kdb-i386-0607g.pbvc:\programdata\Baidu\BaiduSd\kav\bases\kdb-i386-0607g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\kdb-i386-1211g.krgc:\programdata\Baidu\BaiduSd\kav\bases\kdb-i386-1211g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\kjim.kdcc:\programdata\Baidu\BaiduSd\kav\bases\kjim.kdlc:\programdata\Baidu\BaiduSd\kav\bases\kjim.mftc:\programdata\Baidu\BaiduSd\kav\bases\kl-0607g.pbvc:\programdata\Baidu\BaiduSd\kav\bases\klava\log0c:\programdata\Baidu\BaiduSd\kav\bases\klavasyswatch.dllc:\programdata\Baidu\BaiduSd\kav\bases\klifpp.xmsc:\programdata\Baidu\BaiduSd\kav\bases\klswapiproxy.kdlc:\programdata\Baidu\BaiduSd\kav\bases\mod-kdb-i386-0607g.krgc:\programdata\Baidu\BaiduSd\kav\bases\mod-kdb-i386-0607g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\pdm.kdlc:\programdata\Baidu\BaiduSd\kav\bases\pdm00.kdcc:\programdata\Baidu\BaiduSd\kav\bases\pdm01.kdcc:\programdata\Baidu\BaiduSd\kav\bases\pdmsafe.kdcc:\programdata\Baidu\BaiduSd\kav\bases\qscan-0607g.krgc:\programdata\Baidu\BaiduSd\kav\bases\qscan-0607g.pbvc:\programdata\Baidu\BaiduSd\kav\bases\qscan-0607g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\qscan.esmc:\programdata\Baidu\BaiduSd\kav\bases\qscan.kdcc:\programdata\Baidu\BaiduSd\kav\bases\qscan.kdlc:\programdata\Baidu\BaiduSd\kav\bases\qscan.mftc:\programdata\Baidu\BaiduSd\kav\bases\sco-0607g.krgc:\programdata\Baidu\BaiduSd\kav\bases\sco-0607g.pbvc:\programdata\Baidu\BaiduSd\kav\bases\sco-0607g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\Stat\kdb.sttc:\programdata\Baidu\BaiduSd\kav\bases\Stat\sw2.sttc:\programdata\Baidu\BaiduSd\kav\bases\statcfg.xmlc:\programdata\Baidu\BaiduSd\kav\bases\sw2-0607g.krgc:\programdata\Baidu\BaiduSd\kav\bases\sw2-0607g.pbvc:\programdata\Baidu\BaiduSd\kav\bases\sw2-0607g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\sw2.esmc:\programdata\Baidu\BaiduSd\kav\bases\sw2.mftc:\programdata\Baidu\BaiduSd\kav\bases\sw2.xmsc:\programdata\Baidu\BaiduSd\kav\bases\sync.locc:\programdata\Baidu\BaiduSd\kav\bases\sys_critical_obj.dllc:\programdata\Baidu\BaiduSd\kav\bases\sys_critical_obj.esmc:\programdata\Baidu\BaiduSd\kav\bases\u0607g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\upd-0607g.krgc:\programdata\Baidu\BaiduSd\kav\bases\upd-0607g.pbvc:\programdata\Baidu\BaiduSd\kav\bases\upd-0607g.xmlc:\programdata\Baidu\BaiduSd\kav\bases\updcfg.xmlc:\programdata\Baidu\BaiduSd\kav\bases\verdicts.inic:\programdata\Baidu\BaiduSd\kav\bases\wmuf\log0c:\programdata\Baidu\BaiduSd\kavsdktemp\firstupdate.zipc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch10\hipsClient(1).xmlc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch10\hipsClient(2).xmlc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch10\hipsClient(3).xmlc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch10\hipsClient.xmlc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch19\SysFixerConfig.datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch19\SysFixerLuaScript(1).datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch19\SysFixerLuaScript(2).datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch19\SysFixerLuaScript(3).datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch19\SysFixerLuaScript.datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch19\SysFixerXMLScript(1).datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch19\SysFixerXMLScript(2).datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch19\SysFixerXMLScript.datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch5\putips_wording(1).datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch5\putips_wording(2).datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch5\putips_wording(3).datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch5\putips_wording.datc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch8\hipsClient(1).xmlc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch8\hipsClient(2).xmlc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch8\hipsClient(3).xmlc:\programdata\Baidu\BaiduSd\ModuleUpdate\Download\Patch8\hipsClient.xmlc:\programdata\Baidu\BaiduSd\privacy.dbc:\programdata\Baidu\BaiduSd\white_list.dbc:\programdata\Baidu\BDDownload\bddl.bcac:\programdata\Baidu\BDDownload\bddlp.bcac:\programdata\Baidu\Common\Global.dbc:\programdata\Baidu\Desktop\Global.dbc:\programdata\Baidu\SDWS\tmpFiles\BDLogicUtils.dllc:\programdata\Baidu\SDWS\tmpFiles\BDMNet.dllc:\programdata\Baidu\SDWS\tmpFiles\BDMNetGetInfo.dllc:\programdata\Baidu\SDWS\tmpFiles\BDMReport.dllc:\windows\system32\drivers\bd0001.sysc:\windows\system32\drivers\bd0002.sysc:\windows\system32\drivers\bd0003.sysc:\windows\system32\drivers\BDArKit.sysc:\windows\system32\drivers\BDDefense.sysc:\windows\system32\drivers\BDMWrench_x64.sysc:\windows\TEMP\sdk8\Cache\avengine.dll.cf76373cb9a583c9603a47377e180985c:\windows\TEMP\sdk8\Cache\kavbase.kdl.7aa539a1cbbfb4baa644b9866f4bcf4bc:\windows\TEMP\sdk8\Cache\kavsys.kdl.3cbce9162519ae9d590238cb927fbb55c:\windows\TEMP\sdk8\Cache\kjim.kdl.515c9bc6da1b5b7f42860347f720ee10c:\windows\TEMP\sdk8\Cache\klavemu.kdl.b6b6dd223ad2aad28374217a028b59b0c:\windows\TEMP\sdk8\Cache\qscan.kdl.94c366b442c3accc919782ce5f0d7fd0c:\programdata\Baidu\BaiduAn\SWManager\?-?.lnk . . . . Failed to delete..((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))..-------\Legacy_BD0001-------\Legacy_BD0002-------\Legacy_BD0003-------\Legacy_BDARKIT-------\Legacy_BDDEFENSE-------\Legacy_BDMWRENCH_X64-------\Service_BaiduHips-------\Service_bd0001-------\Service_bd0002-------\Service_bd0003-------\Service_BDArKit-------\Service_BDDefense-------\Service_BDKVRTP-------\Service_BDMRTP..((((((((((((((((((((((((( Files Created from 2014-10-13 to 2014-11-13 )))))))))))))))))))))))))))))))..2014-11-13 16:04 . 2014-11-13 16:04 -------- d-----w- c:\users\Default\AppData\Local\temp2014-11-13 16:04 . 2014-11-13 16:04 -------- d-----w- c:\users\…ўЈҐЁ©\AppData\Local\temp2014-11-13 07:45 . 2014-09-10 12:41 174416 ----a-w- c:\windows\system32\drivers\bd0001.sys_2014-11-12 16:48 . 2014-11-12 16:48 -------- d-----w- c:\users\Евгений\AppData\Local\Conduit2014-11-12 16:48 . 2014-11-12 16:48 7168 ----a-w- c:\windows\SysWow64\drivers\ute5ntey.sys2014-11-10 20:17 . 2014-11-10 20:17 -------- d-----w- c:\users\Евгений\AppData\Local\Baidu2014-11-09 15:03 . 2014-11-09 16:38 -------- d-----w- c:\programdata\Package Cache2014-11-09 13:54 . 2014-10-30 00:56 614728 ----a-w- c:\windows\SysWow64\nvStreaming.exe2014-11-09 11:33 . 2014-11-09 11:34 -------- d-----w- c:\users\12014-11-08 20:24 . 2014-11-13 10:55 -------- d-----w-ppData c:\users\APPDAT~12014-11-08 19:12 . 2014-11-08 21:47 -------- d-----w- c:\users\Евгений\AppData\Roaming\Shareman2014-11-08 19:12 . 2014-11-08 21:47 -------- d-----w- c:\program files (x86)\Shareman2014-11-08 11:54 . 2014-11-08 11:54 -------- d-----w- c:\programdata\Kaspersky SDK2014-11-06 18:59 . 2014-11-10 20:17 -------- d-----w- c:\users\Евгений\AppData\Roaming\Baidu2014-11-06 18:57 . 2014-11-13 07:49 -------- d-----w- c:\program files (x86)\BaiduEx2014-11-06 18:57 . 2014-11-06 18:57 -------- d-----w- c:\users\Евгений\AppData\Local\MailRu2014-11-06 18:56 . 2014-11-06 19:15 -------- d-----w- c:\users\Евгений\AppData\Roaming\eTranslator2014-10-27 19:18 . 2014-10-29 07:37 -------- d-----w- c:\program files (x86)\RaidCall.RU2014-10-16 06:55 . 2014-10-17 06:49 -------- d-----w- c:\users\Евгений\AppData\Local\Adobe...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2014-11-12 11:21 . 2012-05-18 11:42 701104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2014-11-12 11:21 . 2012-05-01 12:46 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2014-10-30 04:53 . 2014-03-17 17:37 987008 ----a-w- c:\windows\system32\nvumdshimx.dll2014-10-30 04:53 . 2014-03-17 16:41 2849224 ----a-w- c:\windows\SysWow64\nvapi.dll2014-10-30 04:53 . 2014-02-21 17:10 73872 ----a-w- c:\windows\system32\OpenCL.dll2014-10-30 04:53 . 2014-02-21 17:10 60744 ----a-w- c:\windows\SysWow64\OpenCL.dll2014-10-30 04:53 . 2014-02-21 17:03 20966504 ----a-w- c:\windows\system32\nvwgf2umx.dll2014-10-30 04:53 . 2014-02-21 17:03 3237528 ----a-w- c:\windows\system32\nvapi64.dll2014-10-30 04:53 . 2014-02-21 17:03 16886168 ----a-w- c:\windows\SysWow64\nvd3dum.dll2014-10-30 02:10 . 2014-02-21 17:10 6880968 ----a-w- c:\windows\system32\nvcpl.dll2014-10-30 02:10 . 2014-02-21 17:10 3533632 ----a-w- c:\windows\system32\nvsvc64.dll2014-10-30 02:10 . 2014-02-21 17:10 935232 ----a-w- c:\windows\system32\nvvsvc.exe2014-10-30 02:10 . 2014-02-21 17:10 61640 ----a-w- c:\windows\system32\nvshext.dll2014-10-30 02:10 . 2014-02-21 17:10 2558792 ----a-w- c:\windows\system32\nvsvcr.dll2014-10-30 02:10 . 2014-02-21 17:10 385352 ----a-w- c:\windows\system32\nvmctray.dll2014-10-27 00:34 . 2014-04-08 15:36 4066553 ----a-w- c:\windows\system32\nvcoproc.bin2014-10-04 06:42 . 2014-06-04 17:19 1291280 ----a-w- c:\windows\SysWow64\nvspbridge.dll2014-10-04 06:42 . 2014-03-17 16:44 2197680 ----a-w- c:\windows\SysWow64\nvspcap.dll2014-10-04 06:41 . 2014-06-04 17:19 1715224 ----a-w- c:\windows\system32\nvspbridge64.dll2014-10-04 06:41 . 2014-03-17 16:44 2800296 ----a-w- c:\windows\system32\nvspcap64.dll2014-09-17 04:51 . 2014-10-07 16:02 31520 ----a-w- c:\windows\system32\nvhdap64.dll2014-09-17 04:51 . 2014-10-07 16:02 197408 ----a-w- c:\windows\system32\drivers\nvhda64v.sys2014-09-17 04:51 . 2014-04-08 15:57 1538880 ----a-w- c:\windows\system32\nvhdagenco6420103.dll2014-09-13 23:48 . 2014-10-07 16:02 1876296 ----a-w- c:\windows\system32\nvdispco6434411.dll2014-09-13 23:48 . 2014-10-07 16:02 1539272 ----a-w- c:\windows\system32\nvdispgenco6434411.dll2014-09-13 23:48 . 2014-03-17 17:37 984424 ----a-w- c:\windows\system32\SET122C.tmp2014-09-13 23:48 . 2014-02-21 17:03 20589536 ----a-w- c:\windows\system32\SET145F.tmp2014-09-13 23:48 . 2014-02-21 17:03 3223120 ----a-w- c:\windows\system32\SET1EB.tmp2014-09-04 19:14 . 2014-10-07 15:59 38048 ----a-w- c:\windows\system32\drivers\nvvad64v.sys2014-09-04 19:14 . 2014-10-07 15:59 32416 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll2014-09-04 19:14 . 2014-02-21 17:03 34976 ----a-w- c:\windows\system32\nvaudcap64v.dll..((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shownREGEDIT4.[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]c:\users\Евгений\AppData\LocalLow\BS_Player\prxtbBS_0.dll [bU].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]"{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}"= "c:\users\Евгений\AppData\LocalLow\BS_Player\prxtbBS_0.dll" [bU].[HKEY_CLASSES_ROOT\clsid\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"2Gis Update Notifier"="c:\program files (x86)\2gis\3.0\2GISTrayNotifier.exe" [2014-09-30 4582936]"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-08-21 959176]"ACSW15EN"="c:\program files (x86)\ACD Systems\ACDSee\15.0\ACDSee15InTouch2.exe" [2012-12-17 1135304].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 0 (0x0)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableLUA"= 0 (0x0)"EnableUIADesktopToggle"= 0 (0x0)"PromptOnSecureDesktop"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]"DisableMonitoring"=dword:00000001.R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R3 2GISUpdateService;2GIS UpdateService;c:\program files (x86)\2gis\3.0\2GISUpdateService.exe;c:\program files (x86)\2gis\3.0\2GISUpdateService.exe [x]R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe [x]R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys;c:\windows\SYSNATIVE\Drivers\mvusbews.sys [x]R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys;c:\program files (x86)\MSI Afterburner\RTCore64.sys [x]R3 ute5ntey;AVZ Kernel Driver;c:\windows\system32\Drivers\ute5ntey.sys;c:\windows\SYSNATIVE\Drivers\ute5ntey.sys [x]S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe [x]S2 Dokan;Dokan;c:\windows\system32\drivers\dokan.sys;c:\windows\SYSNATIVE\drivers\dokan.sys [x]S2 DokanMounter;DokanMounter;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe;c:\program files (x86)\Dokan\DokanLibrary\mounter.exe [x]S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe;c:\windows\SYSNATIVE\HPSIsvc.exe [x]S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]S3 RTL8023x64;Драйвер Realtek 10/100 NIC Family NDIS x64;c:\windows\system32\DRIVERS\Rtnic64.sys;c:\windows\SYSNATIVE\DRIVERS\Rtnic64.sys [x]S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]..[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]iissvcs REG_MULTI_SZ w3svc wasapphost REG_MULTI_SZ apphostsvc.Contents of the 'Scheduled Tasks' folder.2014-11-13 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-18 11:21]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-28 11905128]"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-10-04 2463552]"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-10-04 2800296].------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmmLocal Page = c:\windows\SysWOW64\blank.htmIE: &Экспорт в Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000IE: Закачать ВСЕ при помощи Download Master - c:\program files (x86)\Download Master\dmieall.htmIE: Закачать при помощи Download Master - c:\program files (x86)\Download Master\dmie.htmTCP: DhcpNameServer = 192.168.0.1.- - - - ORPHANS REMOVED - - - -.BHO-{15DEE173-1BE9-4424-81E0-58A87076E9B1} - c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\websafe\WebMonBHO.dllHKLM-Run-baidusdTray - c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\baidusdTray.exeHKLM-Run-baiduAnTray - c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\baiduAnTray.exeAddRemove-Battlefield 4.Deluxe Edition.v 1.0.104788_is1 - g:\games\Бателфилд 4\Игра\Battlefield 4.Deluxe Edition.v 1.0.104788\Uninstall\unins000.exeAddRemove-? - c:\program files (x86)\Baidu\BaiduAn\3.0.0.3971\uninst.exeAddRemove-? - c:\program files (x86)\Baidu\BaiduSd\2.1.0.3086\uninst.exe...--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).------------------------ Other Running Processes ------------------------.c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe.**************************************************************************.Completion time: 2014-11-13 23:10:36 - machine was rebootedComboFix-quarantined-files.txt 2014-11-13 16:10ComboFix2.txt 2014-11-13 12:45ComboFix3.txt 2014-11-13 10:55.Pre-Run: 117 773 385 728 байт свободноPost-Run: 117 691 297 792 байт свободно.- - End Of File - - 72D9B6557BD84D8C7D873A8154C69E22A36C5E4F47E84449FF07ED3517B43A31 Сообщение от модератора Mark D. Pearlstone Прячьте лог под спойлер. Ссылка на комментарий Поделиться на другие сайты More sharing options...
mike 1 Опубликовано 13 ноября, 2014 Share Опубликовано 13 ноября, 2014 Скачайте AdwCleaner (by Xplode) и сохраните его на Рабочем столе. Запустите его (в ОС Windows Vista/Seven необходимо запускать через правую кн. мыши от имени администратора), нажмите кнопку "Scan" и дождитесь окончания сканирования. Когда сканирование будет завершено, отчет будет сохранен в следующем расположении: C:\AdwCleaner\AdwCleaner[R0].txt. Прикрепите отчет к своему следующему сообщению. Подробнее читайте в этом руководстве. Ссылка на комментарий Поделиться на другие сайты More sharing options...
ЕвгенC Опубликовано 13 ноября, 2014 Автор Share Опубликовано 13 ноября, 2014 готово Лог: # AdwCleaner v4.101 - Отчёт создан 14/11/2014 at 00:05:46# Обновлено 09/11/2014 by Xplode# Database : 2014-11-12.2 [Live]# Операционная система : Windows 7 Ultimate (64 bits)# Имя пользователя : Евгений - ЕВГЕНИЙ-ПК# Запущено из : C:\Users\Евгений\Desktop\adwcleaner_4.101.exe# Настройки : Сканировать***** [ Службы ] ********** [ Файлы / Папки ] *****Папка Найдено : C:\Program Files (x86)\BS_PlayerПапка Найдено : C:\Program Files (x86)\ConduitПапка Найдено : C:\Program Files (x86)\Mail.RuПапка Найдено : C:\Program Files (x86)\MobogenieПапка Найдено : C:\Users\1\AppData\Roaming\baiduПапка Найдено : C:\Users\Public\Documents\baiduПапка Найдено : C:\Users\Евгений\AppData\Local\baiduПапка Найдено : C:\Users\Евгений\AppData\Local\ConduitПапка Найдено : C:\Users\Евгений\AppData\Local\genienextПапка Найдено : C:\Users\Евгений\AppData\Local\Mail.RuПапка Найдено : C:\Users\Евгений\AppData\Local\MailRuПапка Найдено : C:\Users\Евгений\AppData\Local\MobogenieПапка Найдено : C:\Users\Евгений\AppData\Roaming\baiduПапка Найдено : C:\Users\Евгений\AppData\Roaming\etranslatorПапка Найдено : C:\Users\Евгений\AppData\Roaming\newnext.meПапка Найдено : C:\Users\Евгений\Documents\MobogenieПапка Найдено : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\baidu***** [ задачи ] ********** [ Ярлыки ] ********** [ Реестр ] *****Значение Найдено : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]Значение Найдено : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]Ключ Найдено : HKCU\Software\AppDataLow\Software\ConduitКлюч Найдено : HKCU\Software\ConduitКлюч Найдено : HKCU\Software\IMКлюч Найдено : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}Ключ Найдено : [x64] HKCU\Software\ConduitКлюч Найдено : [x64] HKCU\Software\IMКлюч Найдено : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}Ключ Найдено : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}Ключ Найдено : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}Ключ Найдено : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}Ключ Найдено : HKLM\SOFTWARE\Classes\CLSID\{7044CE4B-FE34-4DD1-A0FA-157E1E179ECA}Ключ Найдено : HKLM\SOFTWARE\Classes\CLSID\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}Ключ Найдено : HKLM\SOFTWARE\Classes\Interface\{7044CE4B-FE34-4DD1-A0FA-157E1E179ECA}Ключ Найдено : HKLM\SOFTWARE\Classes\TypeLib\{DA624F8F-98BF-4B03-AD11-A12D07119E81}Ключ Найдено : HKLM\SOFTWARE\ConduitКлюч Найдено : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}Ключ Найдено : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAddКлюч Найдено : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}Ключ Найдено : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}Ключ Найдено : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BS_Player ToolbarКлюч Найдено : [x64] HKLM\SOFTWARE\Classes\Interface\{7044CE4B-FE34-4DD1-A0FA-157E1E179ECA}Ключ Найдено : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094***** [ Браузеры ] *****-\\ Internet Explorer v8.0.7600.16385*************************AdwCleaner[R0].txt - [3607 octets] - [14/11/2014 00:05:46]########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3667 octets] ########## Ссылка на комментарий Поделиться на другие сайты More sharing options...
mike 1 Опубликовано 13 ноября, 2014 Share Опубликовано 13 ноября, 2014 Удалите в AdwCleaner всё, кроме папок с названиями программ которыми вы пользуетесь (если ничем из перечисленного в логе не пользуетесь, то удалите всё). Отчет после удаления прикрепите. Ссылка на комментарий Поделиться на другие сайты More sharing options...
ЕвгенC Опубликовано 13 ноября, 2014 Автор Share Опубликовано 13 ноября, 2014 есть контакт... : # AdwCleaner v4.101 - Отчёт создан 14/11/2014 at 01:48:06# Обновлено 09/11/2014 by Xplode# Database : 2014-11-12.2 [Live]# Операционная система : Windows 7 Ultimate (64 bits)# Имя пользователя : Евгений - ЕВГЕНИЙ-ПК# Запущено из : C:\Users\Евгений\Desktop\adwcleaner_4.101.exe# Настройки : Очистить***** [ Службы ] ********** [ Файлы / Папки ] *****[x] Не Удалён : C:\Program Files (x86)\BS_Player[!] Папка Удалён : C:\Program Files (x86)\Conduit[!] Папка Удалён : C:\Program Files (x86)\Mail.Ru[!] Папка Удалён : C:\Program Files (x86)\Mobogenie[!] Папка Удалён : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\baidu[!] Папка Удалён : C:\Users\1\AppData\Roaming\baidu[!] Папка Удалён : C:\Users\Public\Documents\baidu[!] Папка Удалён : C:\Users\Евгений\AppData\Local\baidu[!] Папка Удалён : C:\Users\Евгений\AppData\Local\Conduit[!] Папка Удалён : C:\Users\Евгений\AppData\Local\genienext[!] Папка Удалён : C:\Users\Евгений\AppData\Local\Mail.Ru[!] Папка Удалён : C:\Users\Евгений\AppData\Local\MailRu[!] Папка Удалён : C:\Users\Евгений\AppData\Local\Mobogenie[!] Папка Удалён : C:\Users\Евгений\AppData\Roaming\baidu[!] Папка Удалён : C:\Users\Евгений\AppData\Roaming\newnext.me[!] Папка Удалён : C:\Users\Евгений\AppData\Roaming\etranslator[!] Папка Удалён : C:\Users\Евгений\Documents\Mobogenie***** [ задачи ] ********** [ Ярлыки ] ********** [ Реестр ] *****Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAddКлюч Удалёнa : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}Ключ Удалёнa : HKLM\SOFTWARE\Classes\CLSID\{7044CE4B-FE34-4DD1-A0FA-157E1E179ECA}Ключ Удалёнa : HKLM\SOFTWARE\Classes\CLSID\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}Ключ Удалёнa : HKLM\SOFTWARE\Classes\Interface\{7044CE4B-FE34-4DD1-A0FA-157E1E179ECA}Ключ Удалёнa : HKLM\SOFTWARE\Classes\TypeLib\{DA624F8F-98BF-4B03-AD11-A12D07119E81}Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}Значение Удалёнa : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]Значение Удалёнa : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]Ключ Удалёнa : [x64] HKLM\SOFTWARE\Classes\Interface\{7044CE4B-FE34-4DD1-A0FA-157E1E179ECA}Ключ Удалёнa : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}Ключ Удалёнa : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}Ключ Удалёнa : HKCU\Software\ConduitКлюч Удалёнa : HKCU\Software\IMКлюч Удалёнa : HKCU\Software\AppDataLow\Software\ConduitКлюч Удалёнa : HKLM\SOFTWARE\ConduitКлюч Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}Ключ Удалёнa : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BS_Player ToolbarКлюч Удалёнa : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094***** [ Браузеры ] *****-\\ Internet Explorer v8.0.7600.16385*************************AdwCleaner[R0].txt - [3775 octets] - [14/11/2014 00:05:46]AdwCleaner[s0].txt - [3415 octets] - [14/11/2014 01:48:06]########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [3475 octets] ########## Ссылка на комментарий Поделиться на другие сайты More sharing options...
Roman_Five Опубликовано 13 ноября, 2014 Share Опубликовано 13 ноября, 2014 повторите новый лог AdwCleaner для контроля. Ссылка на комментарий Поделиться на другие сайты More sharing options...
ЕвгенC Опубликовано 13 ноября, 2014 Автор Share Опубликовано 13 ноября, 2014 Вот отчет,что делать с оставшимися файлами? Просто удалить их? : # AdwCleaner v4.101 - Отчёт создан 14/11/2014 at 03:53:08# Обновлено 09/11/2014 by Xplode# Database : 2014-11-12.2 [Live]# Операционная система : Windows 7 Ultimate (64 bits)# Имя пользователя : Евгений - ЕВГЕНИЙ-ПК# Запущено из : C:\Users\Евгений\Desktop\adwcleaner_4.101.exe# Настройки : Сканировать***** [ Службы ] ********** [ Файлы / Папки ] *****Папка Найдено : C:\Program Files (x86)\BS_Player***** [ задачи ] ********** [ Ярлыки ] ********** [ Реестр ] ********** [ Браузеры ] *****-\\ Internet Explorer v8.0.7600.16385*************************AdwCleaner[R0].txt - [3775 octets] - [14/11/2014 00:05:46]AdwCleaner[R1].txt - [675 octets] - [14/11/2014 03:53:08]AdwCleaner[s0].txt - [3571 octets] - [14/11/2014 01:48:06]########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [794 octets] ########## Baidu поменял значки на рабочем столе и в панели управления(устаноки и удаления программ)....теперь можно просто удалить его оттуда? и с рабочего стола? Из установки и удаления программ удалил...там осталась только корочка)...при это сообщение,что удаление произошло ранее....на рабочем столе остались лишь ярлыки,которые я безболезненно удалил....больше нигде его не нашел...Спасибо огромное за помощ!!! Теперь мой комп девственно чист! Ссылка на комментарий Поделиться на другие сайты More sharing options...
mike 1 Опубликовано 13 ноября, 2014 Share Опубликовано 13 ноября, 2014 Скачивал с сайта игруху и прицепился вирус Baidu Можете в ЛС ссылку дать на эту игрушку? Ссылка на комментарий Поделиться на другие сайты More sharing options...
ЕвгенC Опубликовано 15 ноября, 2014 Автор Share Опубликовано 15 ноября, 2014 Добрый день...игра называется Battlefield 4 ...поисковик Google...сайт вылез вторым или третьим по счёту...к сожалению названия не помню,но попытаюсь найти....примерно помню как выглядел....историю очищаю каждый день,если подскажете где на опере ещё можно посмотреть посещаемые страницы,то посмотрю...С уважением Евгений. И, если позволите,вопрос....что такое этот Байду? Просто реклама чего то китайского или воровство данных пользователя? Не понял цель его,у меня он прописывался везде и торчал как бельмо...может и денег просил,каких нибудь китайских иен или что там у них,но не понятно,иероглифами...ответте пожалуйста или дайте ссылку. Заранее спасибо! Ссылка на комментарий Поделиться на другие сайты More sharing options...
Рекомендуемые сообщения
Пожалуйста, войдите, чтобы комментировать
Вы сможете оставить комментарий после входа в
Войти