Не загружается в безопасном режиме

[kedr]

Здравствуйте! Не загружается в безопасном режиме.Не смог перейти на страничку скачивания Rsit.
Logfile of random’s system information tool 1.06 (written by random/random)
Run by User at 2010-03-16 13:54:42
Microsoft Windows XP Professional Service Pack 3
System drive C: has 4 GB (14%) free of 30 GB
Total RAM: 1023 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:55:05, on 16.03.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesIntelWirelessBinEvtEng.exe
C:Program FilesIntelWirelessBinS24EvMon.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesCommon FilesEPSONEBAPIeEBSVC.exe
C:Program Files2gisUpdateClientWin32UpdateClientService.exe
C:Program FilesCommon FilesAcronisSchedule2schedul2.exe
C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe
C:Program FilesIntelWirelessBinRegSrvc.exe
C:PROGRA~1DrWebspidernt.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32WgaTray.exe
C:WINDOWSExplorer.EXE
C:WINDOWSATK0100HControl.exe
C:WINDOWSRTHDCPL.EXE
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WINDOWSATK0100ATKOSD.exe
C:Program FilesWireless Console 2wcourier.exe
C:Program FilesIntelWirelessbinZCfgSvc.exe
C:Program FilesIntelWirelessBinifrmewrk.exe
C:Program FilesIntelWirelessBinEOUWiz.exe
C:Program FilesAcronisTrueImageTrueImageMonitor.exe
C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe
C:Program FilesDrWebSpIDerAgent.exe
C:Program FilesDrWebspiderml.exe
C:PROGRA~1DrWebspiderui.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesuTorrentuTorrent.exe
C:PROGRA~1IntelWirelessBinDot1XCfg.exe
C:Documents and SettingsUserLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe
C:Program FilesHide Folders XP 2hfxp.exe
C:Program FilesSUPERAntiSpywareSUPERAntiSpyware.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtMng.exe
C:Program FilesYandexPunto Switcherpunto.exe
C:Program FilesToshibaBluetooth Toshiba StackTosA2dp.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtHid.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtBty.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtHsp.exe
C:Program FilesToshibaBluetooth Toshiba StacktosOBEX.exe
C:Program FilesToshibaBluetooth Toshiba StacktosBtProc.exe
C:Program FilesStarterStarter.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Program FilesDownload Masterdmaster.exe
C:Program FilesSkypePhoneSkype.exe
C:Documents and SettingsUserDesktopRSIT.exe
C:Program Filestrend microUser.exe

R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://search.qip.ru
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://search.qip.ru
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.qip.ru/ie
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://search.qip.ru
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKCUSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = http://search.qip.ru/ie
R1 — HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = Root: HKCU; Subkey: SoftwareMicrosoftInternet ExplorerSearchUrl; ValueType: string; ValueName: ‘; ValueData: ‘; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 — HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://cracking.accessroot.com/
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyServer = 192.168.1.200:3128
R3 — URLSearchHook: QIPBHO Class — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — C:Documents and SettingsUserApplication DataMicrosoftInternet Explorerqipsearchbar.dll
R3 — URLSearchHook: (no name) — — (no file)
F2 — REG:system.ini: UserInit=C:WINDOWSsystem32userinit.exe,C:WINDOWSsystem32de1ec5a4.exe,\?globalrootsystemroot,
O2 — BHO: AcroIEHlprObj Class — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 — BHO: Easy Photo Print — {9421DD08-935F-4701-A9CA-22DF90AC4EA6} — C:Program FilesEpson SoftwareEasy Photo PrintEPTBL.dll
O2 — BHO: IE 4.x-6.x BHO for Download Master — {9961627E-4059-41B4-8E0E-A7D6B3854ADF} — C:PROGRA~1DOWNLO~1dmiehlp.dll
O2 — BHO: QIPBHO — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — C:Documents and SettingsUserApplication DataMicrosoftInternet Explorerqipsearchbar.dll
O2 — BHO: TBSB03223 — {B4806C1A-FE8A-4008-9DA3-8CEDB6E82C10} — C:Program FilesWebMoney Advisorwmadvisor.dll
O2 — BHO: EpsonToolBandKicker Class — {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} — C:Program FilesEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 — Toolbar: DM Bar — {0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — C:Program FilesDownload Masterdmbar.dll
O3 — Toolbar: EPSON Web-To-Page — {EE5D279F-081B-4404-994D-C6B60AAEBA6D} — C:Program FilesEPSONEPSON Web-To-PageEPSON Web-To-Page.dll
O3 — Toolbar: Easy Photo Print — {9421DD08-935F-4701-A9CA-22DF90AC4EA6} — C:Program FilesEpson SoftwareEasy Photo PrintEPTBL.dll
O3 — Toolbar: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O4 — HKLM..Run: [HControl] C:WINDOWSATK0100HControl.exe
O4 — HKLM..Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 — HKLM..Run: [RTHDCPL] RTHDCPL.EXE
O4 — HKLM..Run: [Alcmtr] ALCMTR.EXE
O4 — HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 — HKLM..Run: [Wireless Console 2] C:Program FilesWireless Console 2wcourier.exe
O4 — HKLM..Run: [IntelZeroConfig] «C:Program FilesIntelWirelessbinZCfgSvc.exe»
O4 — HKLM..Run: [IntelWireless] «C:Program FilesIntelWirelessBinifrmewrk.exe» /tf Intel PROSet/Wireless
O4 — HKLM..Run: [EOUApp] «C:Program FilesIntelWirelessBinEOUWiz.exe»
O4 — HKLM..Run: [Acronis True Image Monitor] «C:Program FilesAcronisTrueImageTrueImageMonitor.exe»
O4 — HKLM..Run: [Acronis Scheduler2 Service] «C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe»
O4 — HKLM..Run: [SpIDerAgent] «C:Program FilesDrWebSpIDerAgent.exe»
O4 — HKLM..Run: [SpIDerMail] «C:Program FilesDrWebspiderml.exe»
O4 — HKLM..Run: [SpIDerNT] C:PROGRA~1DrWebspiderui.exe /agent
O4 — HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [uTorrent] «C:Program FilesuTorrentuTorrent.exe»
O4 — HKCU..Run: [Google Update] «C:Documents and SettingsUserLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe» /c
O4 — HKCU..Run: [hfxp] «C:Program FilesHide Folders XP 2hfxp.exe» /s
O4 — HKCU..Run: [SUPERAntiSpyware] C:Program FilesSUPERAntiSpywareSUPERAntiSpyware.exe
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSSystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSSystem32CTFMON.EXE (User ‘Default user’)
O4 — Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe
O4 — Startup: setup_9.0.0.722_13.03.2010_04-43.lnk = C:Documents and SettingsUserDesktopVirus Removal Toolsetup_9.0.0.722_13.03.2010_04-43startup.exe
O4 — Startup: Starter.lnk = C:Program FilesStarterStarter.exe
O4 — Global Startup: Bluetooth Manager.lnk = ?
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O8 — Extra context menu item: Закачать ВСЕ при помощи Download Master — C:Program FilesDownload Masterdmieall.htm
O8 — Extra context menu item: Закачать при помощи Download Master — C:Program FilesDownload Masterdmie.htm
O9 — Extra button: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O9 — Extra ‘Tools’ menuitem: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O9 — Extra button: (no name) — {5067A26B-1337-4436-8AFE-EE169C2DA79F} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {5067A26B-1337-4436-8AFE-EE169C2DA79F} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra ‘Tools’ menuitem: &Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O16 — DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) — http://go.microsoft.com/fwlink/?linkid=39204
O16 — DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) — http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1256056888156
O16 — DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} — http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O20 — Winlogon Notify: !SASWinLogon — C:Program FilesSUPERAntiSpywareSASWINLO.dll
O23 — Service: 2GIS UpdateClientService — ДубльГИС — C:Program Files2gisUpdateClientWin32UpdateClientService.exe
O23 — Service: Acronis Scheduler2 Service (AcrSch2Svc) — Acronis — C:Program FilesCommon FilesAcronisSchedule2schedul2.exe
O23 — Service: Ati HotKey Poller — ATI Technologies Inc. — C:WINDOWSsystem32Ati2evxx.exe
O23 — Service: Autodesk Licensing Service — Autodesk — C:Program FilesCommon FilesAutodesk SharedServiceAdskScSrv.exe
O23 — Service: Dr.Web Scanning Engine (DrWebEngine) (DrWebEngine) — Doctor Web, Ltd. — C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe
O23 — Service: EpsonBidirectionalService — SEIKO EPSON CORPORATION — C:Program FilesCommon FilesEPSONEBAPIeEBSVC.exe
O23 — Service: Intel(R) PROSet/Wireless Event Log (EvtEng) — Intel Corporation — C:Program FilesIntelWirelessBinEvtEng.exe
O23 — Service: NBService — Nero AG — C:Program FilesNeroNero 7Nero BackItUpNBService.exe
O23 — Service: NMIndexingService — Nero AG — C:Program FilesCommon FilesAheadLibNMIndexingService.exe
O23 — Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) — Intel Corporation — C:Program FilesIntelWirelessBinRegSrvc.exe
O23 — Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) — Intel Corporation — C:Program FilesIntelWirelessBinS24EvMon.exe
O23 — Service: SpIDer Guard for Windows (SPIDERNT) — Doctor Web, Ltd. — C:PROGRA~1DrWebspidernt.exe

—
End of file — 12098 bytes

======Scheduled tasks folder======

C:WINDOWStasksDr.Web Daily scan.job
C:WINDOWStasksDr.Web Update.job
C:WINDOWStasksGoogleUpdateTaskMachineCore.job
C:WINDOWStasksGoogleUpdateTaskUserS-1-5-21-1177238915-562591055-725345543-1003Core1ca5b22a8bea504.job
C:WINDOWStasksGoogleUpdateTaskUserS-1-5-21-1177238915-562591055-725345543-1003UA.job
C:WINDOWStasksWise Registry Cleaner 4.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2005-09-24 63136]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2009-07-15 1586472]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print — C:Program FilesEpson SoftwareEasy Photo PrintEPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
IE 4.x-6.x BHO for Download Master — C:PROGRA~1DOWNLO~1dmiehlp.dll [2007-07-20 152064]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class — C:Documents and SettingsUserApplication DataMicrosoftInternet Explorerqipsearchbar.dll [2009-10-05 150768]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{B4806C1A-FE8A-4008-9DA3-8CEDB6E82C10}]
TBSB03223 Class — C:Program FilesWebMoney Advisorwmadvisor.dll [2008-09-05 2409472]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class — C:Program FilesEPSONEPSON Web-To-PageEPSON Web-To-Page.dll [2005-02-21 368640]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{0E1230F8-EA50-42A9-983C-D22ABC2EED3C} — DM Bar — C:Program FilesDownload Masterdmbar.dll [2007-11-26 180224]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} — EPSON Web-To-Page — C:Program FilesEPSONEPSON Web-To-PageEPSON Web-To-Page.dll [2005-02-21 368640]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} — Easy Photo Print — C:Program FilesEpson SoftwareEasy Photo PrintEPTBL.dll [2008-04-02 266240]

{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — WebMoney Advisor — C:Program FilesWebMoney Advisorwmadvisor.dll [2008-09-05 2409472]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«HControl»=C:WINDOWSATK0100HControl.exe [2005-11-10 102400]
«High Definition Audio Property Page Shortcut»=C:WINDOWSsystem32HDAShCut.exe [2005-01-07 61952]
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2005-09-06 14850560]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2005-05-03 69632]
«SynTPEnh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2005-10-21 761945]
«Wireless Console 2″=C:Program FilesWireless Console 2wcourier.exe [2005-10-17 987136]
«IntelZeroConfig»=C:Program FilesIntelWirelessbinZCfgSvc.exe [2005-12-28 667718]
«IntelWireless»=C:Program FilesIntelWirelessBinifrmewrk.exe [2005-12-28 602182]
«EOUApp»=C:Program FilesIntelWirelessBinEOUWiz.exe [2005-12-28 569413]
«Acronis True Image Monitor»=C:Program FilesAcronisTrueImageTrueImageMonitor.exe [2008-09-10 426081]
«Acronis Scheduler2 Service»=C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe [2008-09-10 61440]
«SpIDerAgent»=C:Program FilesDrWebSpIDerAgent.exe [2010-02-15 447728]
«SpIDerMail»=C:Program FilesDrWebspiderml.exe [2009-06-30 644336]
«SpIDerNT»=C:PROGRA~1DrWebspiderui.exe [2009-08-17 231840]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2008-04-14 15360]
«uTorrent»=C:Program FilesuTorrentuTorrent.exe [2009-11-23 289072]
«Google Update»=C:Documents and SettingsUserLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe [2009-07-28 133104]
«hfxp»=C:Program FilesHide Folders XP 2hfxp.exe [2007-06-21 94096]
«SUPERAntiSpyware»=C:Program FilesSUPERAntiSpywareSUPERAntiSpyware.exe [2010-02-18 2012912]

C:Documents and SettingsAll UsersStart MenuProgramsStartup
Bluetooth Manager.lnk — C:Program FilesToshibaBluetooth Toshiba StackTosBtMng.exe

C:Documents and SettingsUserStart MenuProgramsStartup
Punto Switcher.lnk — C:Program FilesYandexPunto Switcherpunto.exe
setup_9.0.0.722_13.03.2010_04-43.lnk — C:Documents and SettingsUserDesktopVirus Removal Toolsetup_9.0.0.722_13.03.2010_04-43startup.exe
Starter.lnk — C:Program FilesStarterStarter.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotify!SASWinLogon]
C:Program FilesSUPERAntiSpywareSASWINLO.dll [2009-09-03 548352]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyAtiExtEvent]
C:WINDOWSsystem32Ati2evxx.dll [2005-12-20 48128]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyWgaLogon]
C:WINDOWSsystem32WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}»=C:Program FilesSUPERAntiSpywareSASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalEmu18.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalJry06.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalScl66.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWdf01000.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWinyi07.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkEmu18.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkJry06.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkScl66.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkUploadMgr]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWdf01000.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWinyi07.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetwork{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=B1000000

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=
«NoDriveTypeAutoRun»=

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«C:Program FilesTotal CommanderTotalcmd.exe»=»C:Program FilesTotal CommanderTotalcmd.exe:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows»
«C:Program FilesCyberLinkPowerDVD9PowerDVD CinemaPowerDVDCinema.exe»=»C:Program FilesCyberLinkPowerDVD9PowerDVD CinemaPowerDVDCinema.exe:*:Enabled:CyberLink PowerDVD 9.0»
«C:Program FilesCyberLinkPowerDVD9PowerDVD9.exe»=»C:Program FilesCyberLinkPowerDVD9PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:WINDOWSsystem32sessmgr.exe»=»C:WINDOWSsystem32sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019»
«C:Program FilesSony EricssonUpdate ServiceUpdate Service.exe»=»C:Program FilesSony EricssonUpdate ServiceUpdate Service.exe:*:Enabled:Update Service»
«C:Program FilesSharemanShareman.exe»=»C:Program FilesSharemanShareman.exe:*:Enabled:Shareman»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesCyberLinkPowerDVD9PowerDVD9.exe»=»C:Program FilesCyberLinkPowerDVD9PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»

======List of files/folders created in the last 1 months======

2010-03-16 13:54:43 —-D—- C:Program Filestrend micro
2010-03-16 13:54:42 —-D—- C:rsit
2010-03-13 17:55:42 —-A—- C:SAFEBOOT_REPAIR.TXT
2010-03-12 00:34:30 —-HDC—- C:WINDOWS$NtUninstallKB975561$
2010-03-11 21:48:32 —-D—- C:Program FilesCommon Fileswm
2010-03-09 00:54:02 —-D—- C:Program FilesSUPERAntiSpyware
2010-03-09 00:51:17 —-D—- C:Program FilesCommon FilesWise Installation Wizard
2010-03-09 00:23:39 —-D—- C:Documents and SettingsUserApplication DataURSoft
2010-03-09 00:23:31 —-D—- C:Program FilesYour Uninstaller 2008
2010-03-08 23:30:40 —-D—- C:Program FilesDROPCLOCK
2010-02-25 19:10:05 —-D—- C:Program FilesUniblue
2010-02-25 19:04:05 —-HDC—- C:Documents and SettingsAll UsersApplication Data{D5ABFFAD-D592-4F98-B02B-587125B4801F}
2010-02-25 00:00:16 —-HDC—- C:WINDOWS$NtUninstallKB979306$
2010-02-24 18:49:15 —-D—- C:Program FilesNorton Utilities 14
2010-02-24 18:49:14 —-AD—- C:Documents and SettingsAll UsersApplication DataTEMP
2010-02-20 21:08:21 —-D—- C:Program FilesLavalys
2010-02-17 22:54:30 —-A—- C:WINDOWSPROTOCOL.INI
2010-02-17 22:54:18 —-D—- C:Program FilesSeaTools Enterprise
2010-02-17 22:42:35 —-A—- C:WINDOWSuninst.exe

======List of files/folders modified in the last 1 months======

2010-03-16 13:54:54 —-D—- C:Documents and SettingsUserApplication DatauTorrent
2010-03-16 13:54:45 —-D—- C:WINDOWSTemp
2010-03-16 13:54:43 —-RD—- C:Program Files
2010-03-16 13:51:08 —-D—- C:Documents and SettingsUserApplication DataSkype
2010-03-16 13:27:01 —-D—- C:WINDOWS
2010-03-16 13:05:05 —-D—- C:Downloads
2010-03-16 12:40:21 —-D—- C:шара обмен
2010-03-16 00:37:50 —-A—- C:WINDOWSwinamp.ini
2010-03-15 21:04:21 —-D—- C:WINDOWSsystem32CatRoot2
2010-03-15 10:39:53 —-SHD—- C:WINDOWSInstaller
2010-03-15 10:14:51 —-D—- C:WINDOWSsystem32Lang
2010-03-14 22:15:40 —-SHD—- C:RECYCLER
2010-03-14 22:15:39 —-SHD—- C:System Volume Information
2010-03-13 22:09:49 —-D—- C:Program FilesDrWeb
2010-03-13 19:56:44 —-S—- C:boot.ini
2010-03-13 19:56:43 —-A—- C:WINDOWSwin.ini
2010-03-13 19:56:43 —-A—- C:WINDOWSsystem.ini
2010-03-13 19:40:23 —-D—- C:WINDOWSsystem32Restore
2010-03-13 19:37:38 —-HD—- C:WINDOWSinf
2010-03-13 18:10:10 —-D—- C:WINDOWSsystem32drivers
2010-03-13 14:53:57 —-SD—- C:WINDOWSTasks
2010-03-13 14:53:56 —-D—- C:WINDOWSPrefetch
2010-03-13 14:39:20 —-SHD—- C:WINDOWSCSC
2010-03-13 14:23:17 —-D—- C:WINDOWSsystem32
2010-03-13 12:21:17 —-HDC—- C:WINDOWS$NtUninstallKB932168$
2010-03-13 12:18:33 —-D—- C:Program FilesCommon Files
2010-03-13 11:56:19 —-D—- C:Program FilesWebMoney
2010-03-12 09:36:41 —-D—- C:Documents and SettingsAll UsersApplication Datafirebird
2010-03-12 00:34:37 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-03-12 00:34:36 —-D—- C:Program FilesMovie Maker
2010-03-12 00:34:20 —-HD—- C:WINDOWS$hf_mig$
2010-03-11 16:03:25 —-D—- C:Torrent
2010-03-11 14:30:09 —-D—- C:Documents and SettingsAll UsersApplication DataDriverScanner
2010-03-09 18:31:07 —-D—- C:canon
2010-03-09 00:54:02 —-D—- C:Documents and SettingsUserApplication DataSUPERAntiSpyware.com
2010-03-08 23:27:20 —-D—- C:Program FilesQIP Infium
2010-03-08 23:27:12 —-D—- C:Program FilesQIP
2010-03-08 23:26:46 —-D—- C:Program FilesMiranda IM
2010-03-08 12:47:22 —-D—- C:Program FilesMozilla Firefox
2010-03-03 18:23:01 —-D—- C:Program FilesStarter
2010-03-03 16:42:39 —-D—- C:Documents and SettingsUserApplication DataThe Bat!
2010-03-02 23:44:11 —-A—- C:WINDOWSsystem32Gerz Clock.ini
2010-03-02 23:44:11 —-A—- C:WINDOWSsystem32Gerz Clock.dll
2010-03-02 19:15:44 —-D—- C:flechka
2010-03-02 12:30:12 —-A—- C:WINDOWSsystem32MRT.exe
2010-02-25 00:01:14 —-A—- C:WINDOWSimsins.BAK
2010-02-25 00:00:56 —-D—- C:WINDOWSie8updates
2010-02-22 21:20:24 —-A—- C:WINDOWSNeroDigital.ini
2010-02-21 00:26:13 —-D—- C:dlya
2010-02-21 00:25:22 —-D—- C:foto ot
2010-02-19 15:39:27 —-D—- C:СКАНЕР
2010-02-19 00:56:57 —-D—- C:Program FilesThe Bat!
2010-02-17 17:43:32 —-AD—- C:Program FilesNorton Utilities_Original
2010-02-17 00:53:05 —-D—- C:WINDOWSsystem32ReinstallBackups

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Intel Processor Driver; C:WINDOWSSystem32DRIVERSintelppm.sys [2008-04-14 36352]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; ??C:Program FilesUltraISOdriversISODrive.sys []
R1 SASDIFSV;SASDIFSV; ??C:Program FilesSUPERAntiSpywareSASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; ??C:Program FilesSUPERAntiSpywareSASKUTIL.SYS []
R1 Tcpip6;Microsoft IPv6 Protocol Driver; C:WINDOWSsystem32DRIVERStcpip6.sys [2008-06-20 225856]
R1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:WINDOWSSystem32Driverstosrfcom.sys [2005-08-01 64896]
R1 uze1nzaz;AVZ-RK Kernel Driver; ??C:WINDOWSsystem32Driversuze1nzaz.sys []
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2001-08-23 12032]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/08/24 15:28:11]; ??C:Program FilesCyberLinkPowerDVD900.fcl []
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.9.0; C:WINDOWSsystem32DRIVERSAegisP.sys [2008-04-23 21275]
R2 ElbyCDIO;ElbyCDIO Driver; C:WINDOWSSystem32DriversElbyCDIO.sys [2005-04-21 10624]
R2 rimsptsk;rimsptsk; C:WINDOWSsystem32DRIVERSrimsptsk.sys [2006-12-20 43520]
R2 s24trans;WLAN Transport; C:WINDOWSsystem32DRIVERSs24trans.sys [2005-12-28 13568]
R2 SPIDER;SpIDer Guard File System Monitor; ??C:PROGRA~1DrWebspider.sys []
R2 tifsfilter;Acronis TrueImage FS Filter; C:WINDOWSsystem32DRIVERStifsfilt.sys [2008-09-10 28768]
R3 AnyDVD;AnyDVD; C:WINDOWSSystem32DriversAnyDVD.sys [2005-06-02 19200]
R3 ati2mtag;ati2mtag; C:WINDOWSsystem32DRIVERSati2mtag.sys [2005-12-20 1419264]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:WINDOWSSystem32DRIVERSCmBatt.sys [2008-04-14 13952]
R3 ElbyCDFL;ElbyCDFL; C:WINDOWSSystem32DriversElbyCDFL.sys [2005-05-03 27392]
R3 ElbyDelay;ElbyDelay; C:WINDOWSSystem32DriversElbyDelay.sys [2005-04-12 4608]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2005-09-08 3959808]
R3 mouhid;Mouse HID Driver; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-08-17 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:WINDOWSsystem32DRIVERSATKACPI.sys [2005-02-17 5632]
R3 pfc;Padus ASPI Shell; C:WINDOWSsystem32driverspfc.sys [2008-07-28 10368]
R3 risdptsk;risdptsk; C:WINDOWSsystem32DRIVERSrisdptsk.sys [2006-12-20 38912]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:WINDOWSSystem32DriversRootMdm.sys [2001-08-23 5888]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtenicxp.sys [2005-11-16 78976]
R3 SASENUM;SASENUM; ??C:Program FilesSUPERAntiSpywareSASENUM.SYS []
R3 smserial;smserial; C:WINDOWSsystem32DRIVERSsmserial.sys [2005-05-27 839724]
R3 SynMini;USB2.0 1.3M Web Cam; C:WINDOWSSystem32DriversSynMini.sys [2005-10-03 720470]
R3 SynScan;USB2.0 1.3M Web Cam Still Image; C:WINDOWSSystem32DriversSynScan.sys [2005-10-03 8278]
R3 SynTP;Synaptics TouchPad Driver; C:WINDOWSsystem32DRIVERSSynTP.sys [2005-10-21 191936]
R3 toshidpt;TOSHIBA Bluetooth HID port driver; C:WINDOWSsystem32driversToshidpt.sys [2005-07-11 3712]
R3 tosporte;Bluetooth Port Driver from Toshiba; C:WINDOWSsystem32DRIVERStosporte.sys [2005-11-24 47104]
R3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:WINDOWSSystem32Driverstosrfbd.sys [2005-11-22 108800]
R3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:WINDOWSSystem32Driverstosrfbnp.sys [2005-09-15 36480]
R3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:WINDOWSsystem32DRIVERSTosrfhid.sys [2005-12-01 62848]
R3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:WINDOWSsystem32DRIVERStosrfnds.sys [2005-01-06 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:WINDOWSSystem32Driverstosrfusb.sys [2005-11-15 36736]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:WINDOWSsystem32DRIVERStunmp.sys [2008-04-14 12288]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 Enabled Hub; C:WINDOWSSystem32DRIVERSusbhub.sys [2008-04-14 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:WINDOWSSystem32DRIVERSusbuhci.sys [2008-04-14 20608]
R3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:WINDOWSsystem32DRIVERSw39n51.sys [2005-12-04 1428096]
R4 sr;System Restore Filter Driver; C:WINDOWSSystem32DRIVERSsr.sys [2008-04-14 73472]
S3 A5AGU;D-Link USB Wireless Network Adapter Service; C:WINDOWSsystem32DRIVERSA5AGU.sys [2008-06-13 386784]
S3 adusbmdm6501;AnyDATA CDMA USB Modem Driver (PID 6501); C:WINDOWSsystem32DRIVERSadusbmdm65.sys [2005-05-02 64896]
S3 adusbser6501;AnyDATA CDMA USB Serial Port (PID 6501); C:WINDOWSsystem32DRIVERSadusbser65.sys [2005-05-02 64896]
S3 Arp1394;1394 ARP Client Protocol; C:WINDOWSSystem32DRIVERSarp1394.sys [2008-04-14 60800]
S3 CCDECODE;Closed Caption Decoder; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2008-04-14 17024]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; ??C:Program FilesLavalysEVEREST Ultimate Editionkerneld.wnt []
S3 ggflt;SEMC USB Flash Driver Filter; C:WINDOWSsystem32DRIVERSggflt.sys [2009-12-12 13224]
S3 ggsemc;SEMC USB Flash Driver; C:WINDOWSsystem32DRIVERSggsemc.sys [2009-12-12 25512]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:WINDOWSsystem32driversHdAudio.sys [2005-01-07 145920]
S3 HidUsb;Microsoft HID Class Driver; C:WINDOWSsystem32DRIVERShidusb.sys [2008-04-14 10368]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:WINDOWSsystem32driversMSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:WINDOWSsystem32DRIVERSNdisIP.sys [2008-04-14 10880]
S3 NIC1394;1394 Net Driver; C:WINDOWSSystem32DRIVERSnic1394.sys [2008-04-14 61824]
S3 pcouffin;VSO Software pcouffin; C:WINDOWSSystem32Driverspcouffin.sys [2008-08-08 47360]
S3 s116bus;Sony Ericsson Device 116 driver (WDM); C:WINDOWSsystem32DRIVERSs116bus.sys [2007-04-03 83336]
S3 sdbus;sdbus; C:WINDOWSSystem32DRIVERSsdbus.sys [2008-04-14 79232]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2008-04-14 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:WINDOWSsystem32DRIVERSSONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2008-04-14 15232]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:WINDOWSsystem32driversTosRfSnd.sys [2005-11-11 52864]
S3 usbaudio;USB Audio Driver (WDM); C:WINDOWSsystem32driversusbaudio.sys [2008-04-14 60032]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:WINDOWSsystem32DRIVERSusbccgp.sys [2008-04-14 32128]
S3 usbscan;USB Scanner Driver; C:WINDOWSsystem32DRIVERSusbscan.sys [2008-04-14 15104]
S3 USBSTOR;USB Mass Storage Driver; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-14 26368]
S3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2008-04-14 121984]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:WINDOWSSystem32Driverswdf01000.sys [2008-03-27 503008]
S3 WSTCODEC;World Standard Teletext Codec; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2008-04-14 19200]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 2GIS UpdateClientService;2GIS UpdateClientService; C:Program Files2gisUpdateClientWin32UpdateClientService.exe [2008-09-17 1134592]
R2 6to4;IPv6 Helper Service; C:WINDOWSsystem32svchost.exe [2008-04-14 14336]
R2 AcrSch2Svc;Acronis Scheduler2 Service; C:Program FilesCommon FilesAcronisSchedule2schedul2.exe [2008-09-10 151552]
R2 Ati HotKey Poller;Ati HotKey Poller; C:WINDOWSsystem32Ati2evxx.exe [2005-12-20 405504]
R2 DrWebEngine;Dr.Web Scanning Engine (DrWebEngine); C:Program FilesCommon FilesDoctor WebScanning Enginedwengine.exe [2009-09-22 869688]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:Program FilesCommon FilesEPSONEBAPIeEBSVC.exe [2006-12-19 94208]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:Program FilesIntelWirelessBinEvtEng.exe [2005-12-28 114753]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:Program FilesIntelWirelessBinRegSrvc.exe [2005-12-28 217164]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:Program FilesIntelWirelessBinS24EvMon.exe [2005-12-28 540745]
R2 SPIDERNT;SpIDer Guard for Windows; C:PROGRA~1DrWebspidernt.exe [2009-08-17 231328]
R2 UMWdf;Windows User Mode Driver Framework; C:WINDOWSsystem32wdfmgr.exe [2004-08-11 38912]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:Program FilesCommon FilesAutodesk SharedServiceAdskScSrv.exe [2009-12-18 77944]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:Program FilesNeroNero 7Nero BackItUpNBService.exe [2007-06-29 800040]
S3 NMIndexingService;NMIndexingService; C:Program FilesCommon FilesAheadLibNMIndexingService.exe [2007-06-27 279848]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S4 CCALib8;Canon Camera Access Library 8; C:Program FilesCanonCALCALMAIN.exe [2005-09-30 96341]
S4 gupdate1c9e854de436368;Служба Google Update (gupdate1c9e854de436368); C:Program FilesGoogleUpdateGoogleUpdate.exe [2009-06-08 133104]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]

---

EOF

---

info.txt logfile of random’s system information tool 1.06 2010-03-16 13:55:10

======Uninstall list======

—>C:Program FilesEconomyuninstall.exe
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime701Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{DD4F051C-1A2B-4A91-B187-B093C597418C}setup.exe» -l0x19 anything
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
DROPCLOCK 1.0.1—>»C:Program FilesDROPCLOCKunins000.exe»
EVEREST Ultimate Edition v5.02—>»C:Program FilesLavalysEVEREST Ultimate Editionunins000.exe»
Eye Corrector—>C:Program FilesEye Correctoruninstall.exe
Hide Folders XP 2.8.7 for Windows XP/Vista—>C:Program FilesHide Folders XP 2hfxpcp.exe /u
HijackThis 2.0.2—>»C:Program Filestrend microHijackThis.exe» /uninstall
Hotfix for Windows XP (KB979306)—>»C:WINDOWS$NtUninstallKB979306$spuninstspuninst.exe»
Mozilla Firefox (3.6)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime701Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{59F6A514-9813-47A3-948C-8A155460CC2A}setup.exe» -l0x19 anything
Security Update for Windows Internet Explorer 8 (KB978207)—>»C:WINDOWSie8updatesKB978207-IE8spuninstspuninst.exe»
Security Update for Windows XP (KB971468)—>»C:WINDOWS$NtUninstallKB971468$spuninstspuninst.exe»
Security Update for Windows XP (KB975560)—>»C:WINDOWS$NtUninstallKB975560$spuninstspuninst.exe»
Security Update for Windows XP (KB975561)—>»C:WINDOWS$NtUninstallKB975561$spuninstspuninst.exe»
Security Update for Windows XP (KB975713)—>»C:WINDOWS$NtUninstallKB975713$spuninstspuninst.exe»
Security Update for Windows XP (KB977165)—>»C:WINDOWS$NtUninstallKB977165$spuninstspuninst.exe»
Security Update for Windows XP (KB977914)—>»C:WINDOWS$NtUninstallKB977914$spuninstspuninst.exe»
Security Update for Windows XP (KB978037)—>»C:WINDOWS$NtUninstallKB978037$spuninstspuninst.exe»
Security Update for Windows XP (KB978251)—>»C:WINDOWS$NtUninstallKB978251$spuninstspuninst.exe»
Security Update for Windows XP (KB978262)—>»C:WINDOWS$NtUninstallKB978262$spuninstspuninst.exe»
Security Update for Windows XP (KB978706)—>»C:WINDOWS$NtUninstallKB978706$spuninstspuninst.exe»
SUPERAntiSpyware Free Edition—>MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
The Bat! Professional v4.0.38—>MsiExec.exe /I{207E4051-D715-4DFB-AD24-81C7EF3B49DB}
Update for Windows Internet Explorer 8 (KB976662)—>»C:WINDOWSie8updatesKB976662-IE8spuninstspuninst.exe»
Windows Internet Explorer 8 Multilingual User Interface (MUI)—>»C:WINDOWSie8updatesIE8-MUIspuninstspuninst.exe»
Your Uninstaller! 2008 Version 6.0—>»C:Program FilesYour Uninstaller 2008unins000.exe»
Данные ДубльГИС г.Екатеринбург 01.03.2010—>MsiExec.exe /X{53A18262-03F1-4D33-8C65-A0A7C7513A93}
Данные ДубльГИС г.Иркутск 01.03.2010—>MsiExec.exe /X{77005955-18D5-4E05-ADC8-EA58A9D7CA7C}
Данные ДубльГИС г.Кемерово 01.03.2010—>MsiExec.exe /X{F1726536-15FD-4DB9-B053-7EBBD1FD5BC0}
Данные ДубльГИС г.Красноярск 01.03.2010—>MsiExec.exe /X{501DB48B-1153-4BF5-865C-611519283890}
Данные ДубльГИС г.Новосибирск 01.03.2010—>MsiExec.exe /X{09F72A90-7B1C-4E42-9E34-4A684EF2DB03}
Данные ДубльГИС г.Челябинск 01.03.2010—>MsiExec.exe /X{9B5770F7-A4B9-4405-8834-7F51A34BA5F0}
ДубльГИС 3.0.6.4—>MsiExec.exe /X{751DAFAF-980F-4745-AF49-547623DD1CB7}

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: Doctor Web Anti-Virus

======System event log======

Computer Name: ASUSA6J
Event Code: 7036
Message: Служба «Network Location Awareness (NLA)» перешла в состояние Работает.

Record Number: 24522
Source Name: Service Control Manager
Time Written: 20100113104842.000000+420
Event Type: информация
User:

Computer Name: ASUSA6J
Event Code: 7035
Message: Служба «Network Location Awareness (NLA)» успешно отправила управляющий элемент «запустить».

Record Number: 24521
Source Name: Service Control Manager
Time Written: 20100113104842.000000+420
Event Type: информация
User: NT AUTHORITYSYSTEM

Computer Name: ASUSA6J
Event Code: 3100
Message: Запущен драйвер Microsoft IPv6 Developer Edition.

Record Number: 24520
Source Name: Tcpip6
Time Written: 20100113104840.000000+420
Event Type: информация
User:

Computer Name: ASUSA6J
Event Code: 1
Message: Doctor Web self protection enabled

Record Number: 24519
Source Name: DwProt
Time Written: 20100113104840.000000+420
Event Type: информация
User:

Computer Name: ASUSA6J
Event Code: 6005
Message: Запущена служба журнала событий.

Record Number: 24518
Source Name: EventLog
Time Written: 20100113104837.000000+420
Event Type: информация
User:

=====Application event log=====

Computer Name: ASUSA6J
Event Code: 13
Message:
Record Number: 602
Source Name: SPIDERNT
Time Written: 20100124215956.000000+420
Event Type: информация
User:

Computer Name: ASUSA6J
Event Code: 0
Message:
Record Number: 601
Source Name: RegSrvc
Time Written: 20100124215956.000000+420
Event Type: информация
User:

Computer Name: ASUSA6J
Event Code: 146
Message: Shiled Lite has NOT been loaded
Record Number: 600
Source Name: Dr.Web Engine
Time Written: 20100124215956.000000+420
Event Type: информация
User:

Computer Name: ASUSA6J
Event Code: 0
Message:
Record Number: 599
Source Name: EvtEng
Time Written: 20100124215954.000000+420
Event Type: информация
User:

Computer Name: ASUSA6J
Event Code: 1903
Message:
Record Number: 598
Source Name: HHCTRL
Time Written: 20100124215701.000000+420
Event Type: информация
User:

======Environment variables======

«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;C:Program FilesATI TechnologiesATI.ACECore-Static;C:Program FilesCommon FilesAutodesk Shared
«windir»=%SystemRoot%
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 14 Stepping 8, GenuineIntel
«PROCESSOR_REVISION»=0e08
«NUMBER_OF_PROCESSORS»=2
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«FP_NO_HOST_CHECK»=NO

---

EOF

---

[Автор]

Сообщения