проблема при загрузке компа

[Аноним]

Здравствуйте у меня при запуске выскакивает надпись :Нет файла afmvw3pb.sys
Как мне его восстановить или посоветуйте как убрать эту проблему

[Admin]

Здравствуйте, добро пожаловать на Spyware-ru форум.

Скачайте сканер RSIT кликнув по этой ссылке и сохраните файл на вашем рабочем столе.

* Дважды кликните по скачанному файлу.
* Если у вас есть файрвал (firewall) и он покажет, что программа RSIT пытается выйти в Интернет, то разрешите ей.
* Кликните по кнопке Continue.
* Когда программа закончит работу, будут показаны два лога (log.txt и info.txt).

Вставьте оба RSIT лога в ваш ответ. Каждый лог в отдельное сообщение.

[Аноним]

Немогу зайти по ссылке выскакивает:Forbidden

You don’t have permission to access /random/RSIT.exe on this server.

[Аноним]

log.txt:Logfile of random’s system information tool 1.06 (written by random/random)
Run by Admin at 2009-09-21 20:58:31
Microsoft Windows XP Professional Service Pack 2
System drive C: has 17 GB (46%) free of 38 GB
Total RAM: 1023 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:59:08, on 21.09.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
C:Program FilesAlwil SoftwareAvast4ashServ.exe
C:WINDOWSsystem32spoolsv.exe
C:program filespunto switcherps.exe
C:program filesVolumeControlvolume.exe
C:Program FilesMail.RuAgentMAgent.exe
D:Program FilesAdobePhotoshopElementsFileAgent.exe
C:WINDOWSvsnpstd.exe
D:Program FilesUnlockerUnlockerAssistant.exe
C:WINDOWSsystem32rundll32.exe
D:Program FilesQuickTimeqttask.exe
C:WINDOWSSOUNDMAN.EXE
C:PROGRA~1ALWILS~1Avast4ashDisp.exe
C:WINDOWSsystem32HotFixQ0306270.exe
C:Program FilesICQ6ToolbarICQ Service.exe
C:WINDOWSsystem32nvsvc32.exe
C:Program FilesRapidSolutionScrambyScrambyServer.exe
C:Program FilesGoogleGoogle Talkgoogletalk.exe
D:PROGRA~1wcescomm.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesCommon FilesAheadLibNMBgMonitor.exe
D:Program FilesYandexOnlineonline.exe
D:Program FilesAlcohol SoftAlcohol 120StarWindStarWindServiceAE.exe
D:PROGRA~1rapimgr.exe
C:Program FilesNokiaNokia PC Suite 7PCSuite.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32uphclean.exe
D:Program FilesVirtual CD v9Systemvc9secs.exe
C:Program FilesREALTEK RTL8185 Wireless LAN Driver and UtilityRtWLan.exe
C:Program FilesAVerTVQuickTV.exe
D:Program FilesYandexOnlineyachatyachat.exe
C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
C:Program FilesCommon FilesAheadLibNMIndexingService.exe
C:Program FilesCommon FilesAheadLibNMIndexStoreSvr.exe
C:Program FilesPC Connectivity SolutionServiceLayer.exe
C:Program FilesPC Connectivity SolutionTransportsNclUSBSrv.exe
C:Program FilesPC Connectivity SolutionTransportsNclRSSrv.exe
C:Program FilesPC Connectivity SolutionTransportsNclMSBTSrv.exe
C:WINDOWSexplorer.exe
D:Program FilesuTorrent.exe
D:Program FilesGRETECHGomPlayerGOM.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Documents and SettingsAdminРабочий столRandoms System Information Tool (RSIT).exe
C:Program Filestrend microAdmin.exe

R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page =
R1 — HKLMSoftwareMicrosoftInternet ExplorerSearch,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&gc=1&q=
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R1 — HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedirect?o=101699&gct=&gc=1&q=%s
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
R3 — URLSearchHook: (no name) — — (no file)
R3 — URLSearchHook: ICQToolBar — {855F3B16-6D32-4fe6-8A56-BBB695989046} — C:Program FilesICQ6ToolbarICQToolBar.dll
R3 — URLSearchHook: DefaultSearchHook Class — {C94E154B-1459-4A47-966B-4B843BEFC7DB} — C:Program FilesAskSearchbinDefaultSearch.dll
R3 — URLSearchHook: (no name) — {9CB65206-89C4-402c-BA80-02D8C59F9B1D} — C:Program FilesAskTBarSrchAstt1.binA5SRCHAS.DLL
R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
O2 — BHO: AskBar BHO — {201f27d4-3704-41d6-89c1-aa35e39143ed} — C:Program FilesAskBarDisbarbinaskBar.dll
O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
O2 — BHO: flashget urlcatch — {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} — D:Program FilesFlashGetjccatch.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — c:program filesmail.rusputnikMailRuSputnik.dll
O2 — BHO: Ask Search Assistant BHO — {9CB65201-89C4-402c-BA80-02D8C59F9B1D} — C:Program FilesAskTBarSrchAstt1.binA5SRCHAS.DLL
O2 — BHO: ooVoo Toolbar — {A1FB2F9A-D35E-11DD-8935-E46A56D89593} — C:Program Filesoovootboovoodx.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.2.4204.1700swg.dll
O2 — BHO: Google Dictionary Compression sdch — {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_B7C5AC242193BB3E.dll
O2 — BHO: FlashGet GetFlash Class — {F156768E-81EF-470C-9057-481BA8380DBA} — D:Program FilesFlashGetgetflash.dll
O2 — BHO: Ask Toolbar BHO — {FE063DB1-4EC0-403e-8DD8-394C54984B2C} — C:Program FilesAskTBarbar1.binASKTBAR.DLL
O3 — Toolbar: ICQToolBar — {855F3B16-6D32-4fe6-8A56-BBB695989046} — C:Program FilesICQ6ToolbarICQToolBar.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — c:program filesmail.rusputnikMailRuSputnik.dll
O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program FilesYandexYandexBarIEyndbar.dll
O3 — Toolbar: Foxit Toolbar — {3041d03e-fd4b-44e0-b742-2d9b88305f98} — C:Program FilesAskBarDisbarbinaskBar.dll
O3 — Toolbar: Ask Toolbar — {FE063DB9-4EC0-403e-8DD8-394C54984B2C} — C:Program FilesAskTBarbar1.binASKTBAR.DLL
O3 — Toolbar: Easy-WebPrint — {327C2873-E90D-4c37-AA9D-10AC9BABA46C} — C:Program FilesCanonEasy-WebPrintToolband.dll
O3 — Toolbar: Яндекс.Поиск — {893AE660-AE80-4dd0-9959-24D2337C04E8} — D:Program FilesYandexOnlineyndminibar.dll
O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll
O3 — Toolbar: ooVoo Toolbar — {A1FB2F9A-D35E-11DD-8935-E46A56D89593} — C:Program Filesoovootboovoodx.dll
O4 — HKLM..Run: [Punto Switcher] C:program filespunto switcherps.exe
O4 — HKLM..Run: [VolumeControl] C:program filesVolumeControlvolume.exe
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [snpstd] C:WINDOWSvsnpstd.exe
O4 — HKLM..Run: [UnlockerAssistant] «D:Program FilesUnlockerUnlockerAssistant.exe»
O4 — HKLM..Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 — HKLM..Run: [Easy-PrintToolBox] C:Program FilesCanonEasy-PrintToolBoxBJPSMAIN.EXE /logon
O4 — HKLM..Run: [QuickTime Task] «D:Program FilesQuickTimeqttask.exe» -atboottime
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [NeroFilterCheck] C:Program FilesCommon FilesAheadLibNeroCheck.exe
O4 — HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 — HKLM..Run: [UStorag] c:program filesu-storage tool2.9ustorage.exe sys_auto_run C:Program FilesU-Storage Tool2.9
O4 — HKLM..Run: [PLFFAP] C:WINDOWSsystem32HotFixQ0306270.exe
O4 — HKCU..Run: [googletalk] «C:Program FilesGoogleGoogle Talkgoogletalk.exe» /autostart
O4 — HKCU..Run: [H/PC Connection Agent] «D:PROGRA~1wcescomm.exe»
O4 — HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] «C:Program FilesCommon FilesAheadLibNMBgMonitor.exe»
O4 — HKCU..Run: [YandexOnline] «D:Program FilesYandexOnlineonline.exe» -AutoStart
O4 — HKCU..Run: [PC Suite Tray] «C:Program FilesNokiaNokia PC Suite 7PCSuite.exe» -onlytray
O4 — HKCU..Run: [AlcoholAutomount] «D:Program FilesAlcohol SoftAlcohol 120axcmd.exe» /automount
O4 — HKCU..Run: [amva] C:WINDOWSsystem32amvo.exe
O4 — HKCU..Run: [uTorrent] «D:Program FilesuTorrent.exe»
O4 — HKUSS-1-5-19..Run: [LinkDel] linkdel.cmd (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [LinkDel] linkdel.cmd (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [LinkDel] linkdel.cmd (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [LinkDel] linkdel.cmd (User ‘Default user’)
O4 — Startup: Punto Switcher.lnk = C:Program FilesYandexPunto Switcherpunto.exe
O4 — Startup: QuickTV.lnk = C:Program FilesAVerTVQuickTV.exe
O4 — Global Startup: REALTEK RTL8185 Wireless LAN Utility.lnk = ?
O8 — Extra context menu item: &Winamp Search — C:Documents and SettingsAll UsersApplication DataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
O8 — Extra context menu item: &Закачать все при помощи FlashGet — D:Program FilesFlashGetjc_all.htm
O8 — Extra context menu item: &Закачать при помощи FlashGet — D:Program FilesFlashGetjc_link.htm
O8 — Extra context menu item: &Перевести — C:Program FilesArsenal CompanySOCRAT InternetHTMLWSocrat.js
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O8 — Extra context menu item: Easy-WebPrint Add To Print List — res://C:Program FilesCanonEasy-WebPrintResource.dll/RC_AddToList.html
O8 — Extra context menu item: Easy-WebPrint High Speed Print — res://C:Program FilesCanonEasy-WebPrintResource.dll/RC_HSPrint.html
O8 — Extra context menu item: Easy-WebPrint Preview — res://C:Program FilesCanonEasy-WebPrintResource.dll/RC_Preview.html
O8 — Extra context menu item: Easy-WebPrint Print — res://C:Program FilesCanonEasy-WebPrintResource.dll/RC_Print.html
O8 — Extra context menu item: Поиск@Mail.Ru — res://c:program filesmail.rusputnikMailRuSputnik.dll/282
O8 — Extra context menu item: Словари@Mail.Ru — res://c:program filesmail.rusputnikMailRuSputnik.dll/283
O9 — Extra button: (no name) — DctMapping — (no file)
O9 — Extra button: СОКРАТ Интернет 3.0 — {17FA5CD6-5737-45c2-B194-74C8A4A7F7E7} — C:Program FilesArsenal CompanySOCRAT InternetSocratInternet.dll
O9 — Extra button: Create Mobile Favorite — {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} — D:PROGRA~1INetRepl.dll
O9 — Extra button: (no name) — {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} — D:PROGRA~1INetRepl.dll
O9 — Extra ‘Tools’ menuitem: Добавить в избранное мобильного устройства… — {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} — D:PROGRA~1INetRepl.dll
O9 — Extra button: (no name) — {53F6FCCD-9E22-4d71-86EA-6E43136192AB} — (no file)
O9 — Extra button: Настройки СОКРАТ Интернет 3.0 — {71F65890-5ED6-11d4-9665-00E02962D81A} — C:Program FilesArsenal CompanySOCRAT InternetSocratInternetT.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: (no name) — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — (no file)
O9 — Extra button: (no name) — {925DAB62-F9AC-4221-806A-057BFB1014AA} — (no file)
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: FlashGet — {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} — D:Program FilesFlashGetFlashGet.exe
O9 — Extra ‘Tools’ menuitem: FlashGet — {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} — D:Program FilesFlashGetFlashGet.exe
O9 — Extra button: Перевести страницу — {DFDC8970-FD66-4385-B8C0-835A4AA1DA00} — C:Program FilesArsenal CompanySOCRAT InternetSocratInternet.dll
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
O9 — Extra ‘Tools’ menuitem: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
O12 — Plugin for .spop: C:Program FilesInternet ExplorerPluginsNPDocBox.dll
O17 — HKLMSystemCCSServicesTcpip..{F37FD190-9F2F-443C-93E5-2D5BEB555B27}: NameServer = 212.1.224.34 212.1.230.111
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O20 — AppInit_DLLs: C:WINDOWSsystem32vksaver.dll
O23 — Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) — Unknown owner — D:Program FilesAdobePhotoshopElementsFileAgent.exe
O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: FLEXnet Licensing Service — Macrovision Europe Ltd. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: ICQ Service — Unknown owner — C:Program FilesICQ6ToolbarICQ Service.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — C:WINDOWSsystem32mnmsrvc.exe
O23 — Service: NBService — Nero AG — C:Program FilesNeroNero 7Nero BackItUpNBService.exe
O23 — Service: NMIndexingService — Nero AG — C:Program FilesCommon FilesAheadLibNMIndexingService.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: SiSoftware Deployment Agent Service (SandraAgentSrv) — SiSoftware — D:Program FilesSiSoftwareSiSoftware Sandra Pro Business 2009.SP1RpcAgentSrv.exe
O23 — Service: Scramby Server (ScrambyServer) — RapidSolution Software AG — C:Program FilesRapidSolutionScrambyScrambyServer.exe
O23 — Service: ServiceLayer — Nokia. — C:Program FilesPC Connectivity SolutionServiceLayer.exe
O23 — Service: StarWind AE Service (StarWindServiceAE) — Rocket Division Software — D:Program FilesAlcohol SoftAlcohol 120StarWindStarWindServiceAE.exe
O23 — Service: Virtual CD v9 Management Service (VC9SecS) — H+H Software GmbH — D:Program FilesVirtual CD v9Systemvc9secs.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Webcam Corp. Service Starter — Unknown owner — D:Program FilesWebcamWebcam123dogsvc.exe (file missing)
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe

—
End of file — 16051 bytes

======Scheduled tasks folder======

C:WINDOWStasksPCConfidential.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO — C:Program FilesAskBarDisbarbinaskBar.dll [2008-11-18 333192]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2009-02-20 1262888]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl — D:Program FilesFlashGetjccatch.dll [2007-08-06 94308]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — c:program filesmail.rusputnikMailRuSputnik.dll [2009-07-27 826032]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9CB65201-89C4-402c-BA80-02D8C59F9B1D}]
Ask Search Assistant BHO — C:Program FilesAskTBarSrchAstt1.binA5SRCHAS.DLL [2009-04-26 57344]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A1FB2F9A-D35E-11DD-8935-E46A56D89593}]
ooVoo Toolbar — C:Program Filesoovootboovoodx.dll [2009-05-08 86016]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2009-09-10 256112]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.2.4204.1700swg.dll [2009-09-10 761840]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_B7C5AC242193BB3E.dll [2009-09-10 458736]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class — D:Program FilesFlashGetgetflash.dll [2007-05-18 163840]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
Ask Toolbar BHO — C:Program FilesAskTBarbar1.binASKTBAR.DLL [2009-04-26 245760]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} — ICQToolBar — C:Program FilesICQ6ToolbarICQToolBar.dll [2008-06-12 958712]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — c:program filesmail.rusputnikMailRuSputnik.dll [2009-07-27 826032]
{91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program FilesYandexYandexBarIEyndbar.dll [2009-07-24 5586208]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} — Foxit Toolbar — C:Program FilesAskBarDisbarbinaskBar.dll [2008-11-18 333192]
{FE063DB9-4EC0-403e-8DD8-394C54984B2C} — Ask Toolbar — C:Program FilesAskTBarbar1.binASKTBAR.DLL [2009-04-26 245760]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} — Easy-WebPrint — C:Program FilesCanonEasy-WebPrintToolband.dll [2004-04-16 405504]
{893AE660-AE80-4dd0-9959-24D2337C04E8} — Яндекс.Поиск — D:Program FilesYandexOnlineyndminibar.dll [2009-07-16 210728]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2009-02-20 1262888]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2009-09-10 256112]
{A1FB2F9A-D35E-11DD-8935-E46A56D89593} — ooVoo Toolbar — C:Program Filesoovootboovoodx.dll [2009-05-08 86016]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«Punto Switcher»=C:program filespunto switcherps.exe [2004-11-14 205824]
«VolumeControl»=C:program filesVolumeControlvolume.exe [2003-09-16 36864]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2006-10-22 7700480]
«nwiz»=nwiz.exe /install []
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2009-07-27 7975608]
«snpstd»=C:WINDOWSvsnpstd.exe [2004-06-17 40960]
«UnlockerAssistant»=D:Program FilesUnlockerUnlockerAssistant.exe [2008-05-02 15872]
«BluetoothAuthenticationAgent»=bthprops.cpl,,BluetoothAuthenticationAgent []
«Easy-PrintToolBox»=C:Program FilesCanonEasy-PrintToolBoxBJPSMAIN.EXE [2004-01-14 409600]
«QuickTime Task»=D:Program FilesQuickTimeqttask.exe [2009-05-14 282624]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2006-11-17 577536]
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]
«NeroFilterCheck»=C:Program FilesCommon FilesAheadLibNeroCheck.exe [2007-03-01 153136]
«avast!»=C:PROGRA~1ALWILS~1Avast4ashDisp.exe [2009-08-17 81000]
«UStorag»=c:program filesu-storage tool2.9ustorage.exe sys_auto_run C:Program FilesU-Storage Tool2.9 []
«PLFFAP»=C:WINDOWSsystem32HotFixQ0306270.exe [2003-08-05 45056]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«googletalk»=C:Program FilesGoogleGoogle Talkgoogletalk.exe [2007-11-21 3293184]
«H/PC Connection Agent»=D:PROGRA~1wcescomm.exe [2006-11-13 1289000]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]
«BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}»=C:Program FilesCommon FilesAheadLibNMBgMonitor.exe [2007-06-27 152872]
«YandexOnline»=D:Program FilesYandexOnlineonline.exe [2009-09-03 2267912]
«PC Suite Tray»=C:Program FilesNokiaNokia PC Suite 7PCSuite.exe [2009-06-25 1414144]
«AlcoholAutomount»=D:Program FilesAlcohol SoftAlcohol 120axcmd.exe [2008-11-23 203720]
«EA3.exe»= []
«amva»=C:WINDOWSsystem32amvo.exe []
«uTorrent»=D:Program FilesuTorrent.exe [2009-07-19 288048]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregoovoo.exe]
C:Program FilesooVoooovoo.exe /minimized []

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupreguTorrent]
C:Program FilesuTorrentuTorrent.exe [2009-07-13 288048]

C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
REALTEK RTL8185 Wireless LAN Utility.lnk — C:Program FilesREALTEK RTL8185 Wireless LAN Driver and UtilityRtWLan.exe

C:Documents and SettingsAdminГлавное менюПрограммыАвтозагрузка
Punto Switcher.lnk — C:Program FilesYandexPunto Switcherpunto.exe
QuickTV.lnk — C:Program FilesAVerTVQuickTV.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows]
«AppInit_DLLS»=»C:WINDOWSsystem32vksaver.dll»

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWdf01000.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWdf01000.sys]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme
«SynchronousMachineGroupPolicy»=0
«SynchronousUserGroupPolicy»=0

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145
«ForceClassicControlPanel»=1
«NoSMConfigurePrograms»=1
«NoSMHelp»=1
«NoDrives»=262144

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«D:Program Filesrapimgr.exe»=»D:Program Filesrapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager»
«D:Program Fileswcescomm.exe»=»D:Program Fileswcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager»
«D:Program FilesWCESMgr.exe»=»D:Program FilesWCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application»
«C:Documents and SettingsAdminРабочий столutorrent 1.8.2.exe»=»C:Documents and SettingsAdminРабочий столutorrent 1.8.2.exe:*:Enabled:µTorrent»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«D:Program FilesuTorrent.exe»=»D:Program FilesuTorrent.exe:*:Enabled:µTorrent»
«C:Documents and SettingsAdminРабочий столutorrent(2).exe»=»C:Documents and SettingsAdminРабочий столutorrent(2).exe:*:Enabled:µTorrent»
«C:Program FilesWinamp RemotebinOrb.exe»=»C:Program FilesWinamp RemotebinOrb.exe:*:Enabled:Orb»
«C:Program FilesWinamp RemotebinOrbTray.exe»=»C:Program FilesWinamp RemotebinOrbTray.exe:*:Enabled:OrbTray»
«C:Program FilesWinamp RemotebinOrbStreamerClient.exe»=»C:Program FilesWinamp RemotebinOrbStreamerClient.exe:*:Enabled:Orb Stream Client»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«D:Program Filesrapimgr.exe»=»D:Program Filesrapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager»
«D:Program Fileswcescomm.exe»=»D:Program Fileswcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager»
«D:Program FilesWCESMgr.exe»=»D:Program FilesWCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application»

======List of files/folders created in the last 1 months======

2009-09-21 20:58:33 —-D—- C:Program Filestrend micro
2009-09-21 20:58:31 —-D—- C:rsit
2009-09-20 16:33:31 —-D—- C:$WIN_NT$.~BT
2009-09-20 16:33:06 —-D—- C:WINDOWSsetupupd
2009-09-20 15:46:07 —-RASH—- C:BOOT.BAK
2009-09-18 10:11:25 —-D—- C:Program FilesProlific
2009-09-18 10:11:25 —-A—- C:WINDOWSsystem32HotFixQ0306270.exe
2009-09-16 18:12:16 —-D—- C:Program FilesThomson
2009-09-15 15:56:39 —-A—- C:WINDOWSsystem32GkSui18.EXE
2009-09-14 16:54:21 —-D—- C:Program FilesBabylonXtra
2009-09-14 16:54:21 —-D—- C:Documents and SettingsAll UsersApplication DataBabAPi
2009-09-12 02:17:32 —-D—- C:Program FilesinKline Global
2009-09-11 20:37:22 —-D—- C:WINDOWSpss
2009-09-11 15:04:32 —-D—- C:Program FilesFreshDevices
2009-09-11 15:02:24 —-D—- C:Documents and SettingsAdminApplication DataEmailNotifier
2009-09-11 13:55:14 —-D—- C:Documents and SettingsAdminApplication DataooVoo Details
2009-09-11 13:55:06 —-D—- C:Documents and SettingsAll UsersApplication DataEmailNotifier
2009-09-11 13:55:04 —-D—- C:Documents and SettingsAdminApplication Dataoovootb
2009-09-11 13:55:02 —-D—- C:Program Filesoovootb
2009-09-02 10:25:08 —-D—- C:Program FilesXilisoft
2009-09-02 10:24:41 —-A—- C:WINDOWSsystem32WNASPI32.DLL
2009-09-02 10:24:39 —-A—- C:temp.txt
2009-09-02 07:10:18 —-D—- C:META-INF
2009-09-02 07:10:18 —-D—- C:br
2009-08-29 16:11:41 —-A—- C:WINDOWSsystem32ptpusb.dll
2009-08-29 16:11:40 —-A—- C:WINDOWSsystem32ptpusd.dll
2009-08-25 04:57:27 —-A—- C:WINDOWSwinamp.ini
2009-08-25 04:02:15 —-SHD—- C:Config.Msi

======List of files/folders modified in the last 1 months======

2009-09-21 20:58:42 —-D—- C:WINDOWSTemp
2009-09-21 20:58:33 —-RD—- C:Program Files
2009-09-21 20:57:56 —-D—- C:Documents and SettingsAdminApplication DatauTorrent
2009-09-21 19:59:50 —-D—- C:Program FilesMozilla Firefox
2009-09-21 18:58:52 —-D—- C:Documents and SettingsAdminApplication DataYaChatData
2009-09-21 18:58:39 —-A—- C:WINDOWSRTacDbg.txt
2009-09-21 18:58:37 —-AD—- C:WINDOWS
2009-09-21 18:58:33 —-A—- C:WINDOWSAVerTV.ini
2009-09-21 18:58:19 —-D—- C:WINDOWSsystem32drivers
2009-09-21 01:51:37 —-A—- C:WINDOWSSchedLgU.Txt
2009-09-20 18:50:50 —-D—- C:Documents and SettingsAdminApplication DataSkype
2009-09-20 17:42:06 —-D—- C:Documents and SettingsAdminApplication DataskypePM
2009-09-20 16:59:24 —-D—- C:WINDOWSsystem32config
2009-09-20 16:59:00 —-D—- C:WINDOWSsystem32wbem
2009-09-20 16:59:00 —-D—- C:WINDOWSRegistration
2009-09-20 16:58:33 —-D—- C:WINDOWSsystem32Restore
2009-09-20 16:55:04 —-SHD—- C:System Volume Information
2009-09-20 16:34:19 —-D—- C:WINDOWSsystem32CatRoot2
2009-09-20 16:33:54 —-RASH—- C:boot.ini
2009-09-20 16:33:31 —-A—- C:WINDOWSUPGRADE.TXT
2009-09-20 16:33:29 —-D—- C:WINDOWSsetup.pss
2009-09-18 10:18:05 —-HD—- C:WINDOWSinf
2009-09-18 10:17:56 —-HD—- C:Program FilesInstallShield Installation Information
2009-09-18 10:11:25 —-AD—- C:WINDOWSsystem32
2009-09-15 06:55:22 —-A—- C:WINDOWSNeroDigital.ini
2009-09-14 12:30:55 —-D—- C:Documents and SettingsAdminApplication DataYandex
2009-09-13 17:25:18 —-D—- C:Program FilesEverest
2009-09-13 09:54:44 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2009-09-12 14:04:24 —-SHD—- C:RECYCLER
2009-09-11 20:38:35 —-N—- C:WINDOWSwin.ini
2009-09-11 20:38:35 —-N—- C:WINDOWSsystem.ini
2009-09-10 10:11:43 —-SHD—- C:WINDOWSInstaller
2009-09-02 16:43:25 —-D—- C:Documents and SettingsAdminApplication Datadvdcss
2009-09-02 09:26:21 —-SD—- C:Documents and SettingsAdminApplication DataMicrosoft
2009-09-02 09:26:17 —-D—- C:Documents and SettingsAll UsersApplication DataMicrosoft Help
2009-09-02 08:47:45 —-AD—- C:Documents and SettingsAll UsersApplication DataTEMP
2009-09-02 07:17:02 —-A—- C:textfile.txt
2009-09-02 07:17:02 —-A—- C:props.ini
2009-08-26 20:09:12 —-D—- C:Documents and SettingsAdminApplication DataAIMP
2009-08-22 18:57:25 —-D—- C:Documents and SettingsAdminApplication DataPC Suite

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:WINDOWSsystem32driversaswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2009-08-17 51376]
R1 NVKEYNT;NVKEYNT; ??C:WINDOWSsystem32DRIVERSNVKEYNT.SYS []
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.2.0; C:WINDOWSsystem32DRIVERSAegisP.sys [2009-04-26 21419]
R2 Aspi32;Aspi32; C:WINDOWSSystem32driversaspi32.sys [2008-12-11 16512]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32DRIVERSaswFsBlk.sys [2009-08-17 20560]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2009-08-17 94160]
R2 GiA_Guardant;GiA Guardant Emulator (v2.4); ??C:WINDOWSsystem32driversGiA_Guardant.sys []
R2 mdmxsdk;mdmxsdk; C:WINDOWSsystem32DRIVERSmdmxsdk.sys [2004-08-04 11868]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2006-12-29 4026112]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2009-08-17 23152]
R3 Cap7134;Cap7134 Capture; C:WINDOWSsystem32DRIVERSCap7134.sys [2003-10-01 353856]
R3 FETNDISB;D-Link DFE-530TX PCI Fast Ethernet Adapter Driver Service; C:WINDOWSsystem32DRIVERSdlkfet5b.sys [2003-04-02 41984]
R3 HSF_DP;HSF_DP; C:WINDOWSsystem32DRIVERSHSFDPSP2.sys [2004-08-04 1041536]
R3 HSFHWBS2;HSFHWBS2; C:WINDOWSsystem32DRIVERSHSFBS2S2.sys [2004-08-04 220032]
R3 MODEMCSA;Устройство фильтрации потока Unimodem; C:WINDOWSsystem32driversMODEMCSA.sys [2001-08-18 16128]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
R3 pfc;Padus ASPI Shell; C:WINDOWSsystem32driverspfc.sys [2004-04-01 10368]
R3 PhTVTune;Cap7134 TVTuner; C:WINDOWSsystem32DRIVERSPhTVTune.sys [2003-09-25 25216]
R3 PLFF;USB Flash Disk Driver; C:WINDOWSSystem32DRIVERSplff.sys [2003-08-04 7040]
R3 scramby;Scramby Microphone; C:WINDOWSsystem32driversscramby.sys [2007-02-13 25896]
R3 scramby_out;Scramby Output; C:WINDOWSsystem32driversscramby_out.sys [2007-08-08 23840]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-18 57600]
R3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-18 20480]
R3 winachsf;winachsf; C:WINDOWSsystem32DRIVERSHSFCXTS2.sys [2004-08-04 685056]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-18 14848]
S1 SysTool;SysTool Overclocking Utility; C:WINDOWSsystem32DRIVERSSysTool.sys [2006-11-10 24064]
S3 an0obdu8;an0obdu8; C:WINDOWSsystem32driversan0obdu8.sys []
S3 APLMp50;APLMp50 NDIS Protocol Driver; C:WINDOWSSystem32DriversAPLMp50.sys [2006-11-29 28224]
S3 BthEnum;Драйвер блока запроса Bluetooth; C:WINDOWSsystem32DRIVERSBthEnum.sys [2004-08-18 17024]
S3 BTHMODEM;Драйвер связи для модема Bluetooth; C:WINDOWSsystem32DRIVERSbthmodem.sys [2004-08-18 38016]
S3 BthPan;Bluetooth Device (Personal Area Network); C:WINDOWSsystem32DRIVERSbthpan.sys [2004-08-18 100992]
S3 BTHPORT;Драйвер порта Bluetooth; C:WINDOWSSystem32DriversBTHport.sys [2004-08-18 274688]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WINDOWSSystem32DriversBTHUSB.sys [2004-08-18 18944]
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-03 17024]
S3 FETND5BV;VIA Rhine-Family Fast Ethernet Adapter Driver Service; C:WINDOWSsystem32DRIVERSfetnd5bv.sys [2006-02-26 42496]
S3 HH9Help.sys;HH9Help.sys; ??C:WINDOWSsystem32driversHH9Help.sys []
S3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2004-08-18 9600]
S3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2007-07-11 12160]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2007-07-11 10880]
S3 nm;Драйвер сетевого монитора; C:WINDOWSsystem32DRIVERSNMnt.sys [2004-08-18 40320]
S3 nmwcd;Nokia USB Phone Parent; C:WINDOWSsystem32driversccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:WINDOWSsystem32driversccdcmbo.sys [2009-02-09 22016]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:WINDOWSsystem32driversnmwcdnsu.sys [2009-03-19 136704]
S3 NTIDrvr;NTIDrvr; ??D:Program Filesmuvee TechnologiesmuveeNow 2.2mvBurnerDllNTIDrvr.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:WINDOWSsystem32DRIVERSpccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:WINDOWSsystem32DRIVERSrfcomm.sys [2004-08-18 59648]
S3 rtl8185;Realtek RTL8185 54M Wireless LAN Network Adapter Driver; C:WINDOWSsystem32DRIVERSrtl8185.sys [2006-08-24 302848]
S3 SANDRA;SANDRA; ??D:Program FilesSiSoftwareSiSoftware Sandra Pro Business 2009.SP1WNt500x86Sandra.sys []
S3 SjyPkt;SjyPkt; ??C:WINDOWSSystem32DriversSjyPkt.sys []
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-18 11136]
S3 snpstd;D-Link CIF Webcam; C:WINDOWSsystem32DRIVERSsnpstd.sys [2004-06-17 299776]
S3 SPLITCAM;Splitcam, WDM Camera Stream Splitter; C:WINDOWSsystem32DRIVERSsplitcam.sys []
S3 StMp3Rec;Player Recovery Device Control Driver; C:WINDOWSSystem32DriversStMp3Rec.sys [2006-06-29 71368]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-18 15360]
S3 upperdev;upperdev; C:WINDOWSsystem32DRIVERSusbser_lowerflt.sys [2009-02-09 7808]
S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
S3 usbser;USB Modem Driver; C:WINDOWSsystem32driversusbser.sys [2007-07-11 25600]
S3 UsbserFilt;UsbserFilt; C:WINDOWSsystem32DRIVERSusbser_lowerfltj.sys [2009-02-09 7808]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-18 26496]
S3 usbvideo;USB-видеоустройство (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2004-08-03 78464]
S3 USTOR;U-Storage Controller; C:WINDOWSsystem32DRIVERSUStork.sys [2004-08-17 20218]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:WINDOWSsystem32DRIVERSwceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:WINDOWSSystem32Driverswdf01000.sys [2008-03-27 503008]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-03 19328]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2008-01-18 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor6.0;Adobe Active File Monitor V6; D:Program FilesAdobePhotoshopElementsFileAgent.exe [2007-09-11 124832]
R2 aswUpdSv;avast! iAVS4 Control Service; C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast4ashServ.exe [2009-08-17 138680]
R2 BthServ;Bluetooth Support Service; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
R2 ICQ Service;ICQ Service; C:Program FilesICQ6ToolbarICQ Service.exe [2008-06-10 222456]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
R2 ScrambyServer;Scramby Server; C:Program FilesRapidSolutionScrambyScrambyServer.exe [2007-09-25 140025]
R2 StarWindServiceAE;StarWind AE Service; D:Program FilesAlcohol SoftAlcohol 120StarWindStarWindServiceAE.exe [2007-05-28 275968]
R2 UPHClean;User Profile Hive Cleanup; C:WINDOWSsystem32uphclean.exe [2006-01-16 241725]
R2 VC9SecS;Virtual CD v9 Management Service; D:Program FilesVirtual CD v9Systemvc9secs.exe [2007-12-03 132416]
R2 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2009-08-17 352920]
R3 NMIndexingService;NMIndexingService; C:Program FilesCommon FilesAheadLibNMIndexingService.exe [2007-06-27 279848]
R3 ServiceLayer;ServiceLayer; C:Program FilesPC Connectivity SolutionServiceLayer.exe [2009-06-02 637952]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2009-04-26 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2006-10-20 36864]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-04-29 182768]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2006-10-30 741376]
S3 NBService;NBService; C:Program FilesNeroNero 7Nero BackItUpNBService.exe [2007-06-29 800040]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; D:Program FilesSiSoftwareSiSoftware Sandra Pro Business 2009.SP1RpcAgentSrv.exe [2008-11-03 98488]
S3 Webcam Corp. Service Starter;Webcam Corp. Service Starter; D:Program FilesWebcamWebcam123dogsvc.exe []
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2006-10-30 122880]

---

EOF

---

[Аноним]

info.txt:info.txt logfile of random’s system information tool 1.06 2009-09-21 20:59:24

======Uninstall list======

—>C:Program FilesNeroNero 7\nerouninstallUNNERO.exe /UNINSTALL
—>C:WINDOWSUNNeroBackItUp.exe /UNINSTALL
—>C:WINDOWSUNNeroMediaHome.exe /UNINSTALL
—>C:WINDOWSUNNeroShowTime.exe /UNINSTALL
—>C:WINDOWSUNNeroVision.exe /UNINSTALL
—>C:WINDOWSUNRecode.exe /UNINSTALL
—>msiexec /package {90120000-0012-0000-0000-0000000FF1CE} /uninstall {744C859F-C225-48A9-A524-4DED432F36C7}
—>msiexec /package {90120000-0015-0000-0000-0000000FF1CE} /uninstall {10B5F4EF-C4DC-47AF-913B-EAF05C69C852}
—>msiexec /package {90120000-0051-0000-0000-0000000FF1CE} /uninstall {5C395839-FBA5-49C5-923A-787665D5E128}
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{93FB8045-ACA1-4AA5-A00A-2B65A801EA36}Setup.exe» -l0x9
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
50 FREE MP3s +1 Free Audiobook!—>»D:Program FilesWinampeMusicUninst-eMusic-promotion.exe»
Adobe Acrobat 4.0, 5.0—>C:WINDOWSISUNINST.EXE -f»C:Program FilesCommon FilesAdobeAcrobat 5.0NTUninst.isu» -c»C:Program FilesCommon FilesAdobeAcrobat 5.0NTUninst.dll»
Adobe AIR—>c:Program FilesCommon FilesAdobe AIRVersions1.0ResourcesAdobe AIR Updater.exe -arp:uninstall
Adobe AIR—>MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Photoshop Elements 6.0—>msiexec /I {F54AC413-D2C6-4A24-B324-370C223C6250}
AIMP2—>D:Program FilesAIMP2Uninstall.exe
ArcSoft PhotoStudio 5.5—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{85309D89-7BE9-4094-BB17-24999C6118FC}Setup.exe» -l0x9
Ask Toolbar—>rundll32 C:PROGRA~1AskTBarbar1.binAskTBar.dll,O
avast! Antivirus—>C:Program FilesAlwil SoftwareAvast4aswRunDll.exe «C:Program FilesAlwil SoftwareAvast4Setupsetiface.dll»,RunSetup
AVerTV—>C:PROGRA~1COMMON~1INSTAL~1Driver7INTEL3~1IDriver.exe /M{8DF56C91-281F-4C15-B954-F45FDC919568} /l1049
BenVista PhotoZoom Pro 2.3.2—>D:Program FilesPhotoZoom Pro 2Uninstall.exe
Canon CanoScan Toolbox 4.9—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}Setup.exe» -l0x9 anything
Canon PhotoRecord—>MsiExec.exe /X{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}
Canon PIXMA iP3000—>C:WINDOWSsystem32CNMCP61.exe «-PRINTERNAMECanon PIXMA iP3000» «-HELPERDLLC:BJPrinterCNMWINDOWSCanon PIXMA iP3000 InstallerInst2cnmis.dll» «-RCDLLC:BJPrinterCNMWINDOWSCanon PIXMA iP3000 InstallerInst2cnmi0419.dll»
Canon ScanGear Starter—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{18A5DFF2-8A95-49F3-873F-743CB5549F3D}SETUP.EXE» -l0x9 anything
Canon Utilities Easy-PhotoPrint—>C:Program FilesCanonEasy-PhotoPrintuninst.exe C:Program FilesCanonEasy-PhotoPrintuninst.ini
Canon Utilities Easy-PrintToolBox—>C:WINDOWSBJPSUNST.EXE
CCleaner (remove only)—>»D:Program FilesCCleaneruninst.exe»
CD-LabelPrint—>»C:Program FilesCanonCD-LabelPrintUninstal.exe» Canon.CDLabelPrint.Application
Color Efex Pro 3.0 Complete—>D:Program FilesAdobePlug-InsNik SoftwareColor Efex Pro 3.0 Completeuninstall.exe
CommFort 4.10—>»D:Program FilesCommFortunins000.exe»
DFE-530TX Driver—>C:PROGRA~1COMMON~1INSTAL~1Driver7INTEL3~1IDriver.exe /M{F2BB456F-C07B-4EDE-975F-4D6DED19750A}
D-Link CIF Webcam—>C:WINDOWSCleanDev.exe C:WINDOWSDC2110.txt
Easy-WebPrint—>C:WINDOWSIsUninst.exe -f»C:Program FilesCanonEasy-WebPrintUninst.isu»
eJay 360 Xtreme — Deinstallation—>D:eJayXtremedeinstal.exe
Everest—>C:Program FilesEverestUninstall.exe
Exiland Assistant 3.0—>»D:Program FilesExiland Assistant 3.0unins000.exe»
EZ_Recover—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime701Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{C9437F35-C821-4287-95E3-92F890A727D0}Setup.exe» -l0x9
Fizz Monitor—>D:Program FilesFizz MonitorUninstall.exe Fizz Monitor
FlashGet 1.9.6.1073—>D:Program FilesFlashGetuninst.exe
Foxit Reader—>C:Program FilesFoxit SoftwareFoxit ReaderUninstall.exe
Foxit Toolbar—>»C:Program FilesAskBarDisunins000.exe»
GOM Player—>»D:Program FilesGRETECHGomPlayerUninstall.exe»
Google Talk (remove only)—>»C:Program FilesGoogleGoogle Talkuninstall.exe»
Google Toolbar for Internet Explorer—>»C:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarManager_E582EA556D8DE101.exe» /uninstall
Google Toolbar for Internet Explorer—>MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Guardant driver—>»C:WINDOWSsystem32rundll32.exe» grddrv32.dll,GD_UninstallDriver 1
HijackThis 2.0.2—>»C:Program Filestrend microHijackThis.exe» /uninstall
Hotfix для Microsoft .NET Framework 2.0 (КБ916002)—>C:WINDOWSsystem32msiexec.exe /promptrestart /uninstall {577B5AF9-0523-4841-8B07-969A165632FA} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
ICQ Toolbar—>C:Program FilesICQ6ToolbarICQUnToolbar.exe
ICQ6.5—>»C:Program FilesInstallShield Installation Information{60DE4033-9503-48D1-A483-7846BD217CA9}setup.exe» -runfromtemp -l0x0009 -removeonly
ImTOO 3GP Video Converter—>D:Program FilesImTOO3GP Video Converter 3Uninstall.exe
ImTOO MP4 Video Converter—>C:Program FilesImTOOMP4 Video Converter 3Uninstall.exe
InterVideo FilterSDK—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{A15ED800-19FF-11D5-AF7F-0050BA1191E9}setup.exe» REMOVEALL
Java Books Maker v.1.0.3—>D:Program FilesJavaBooksMakeruninstall.exe
K-Lite Mega Codec Pack 4.8.5—>»D:Program FilesK-Lite Codec Packunins000.exe»
Lyra Digital Audio Player(PDP95 Series)—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime701Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{3C141A56-E3D6-4DC4-836B-C39BC50A3D6F}setup.exe» -l0x9
Mail.Ru Агент 5.5 (сборка 2842, для всех пользователей)—>C:Program FilesMail.RuAgentmagentsetup.exe -uninstalllm
Mail.Ru Спутник 2.1.0.4—>c:program filesmail.rusputnikSputnikInstaller.exe -uninstall
Microsoft .NET Framework 1.1 Hotfix (KB886903)—>»C:WINDOWSMicrosoft.NETFrameworkv1.1.4322Updateshotfix.exe» «»
Microsoft .NET Framework 1.1 Russian Language Pack—>MsiExec.exe /X{2BB372D9-52B4-410A-BC1A-FEAB63181EEF}
Microsoft .NET Framework 1.1—>msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1—>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Language Pack — RUS—>MsiExec.exe /X{F4D0F248-2BF7-4912-814E-4FD751923838}
Microsoft .NET Framework 2.0—>MsiExec.exe /X{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Microsoft .NET Framework 3.0 Russian Language Pack—>C:WINDOWSMicrosoft.NETFrameworkv3.0Microsoft .NET Framework 3.0 Russian Language Packsetup.exe
Microsoft .NET Framework 3.0 Russian Language Pack—>MsiExec.exe /X{855B04CC-4F7A-4FBB-B7BA-D965D23F7AD5}
Microsoft .NET Framework 3.0—>C:WINDOWSMicrosoft.NETFrameworkv3.0Microsoft .NET Framework 3.0setup.exe
Microsoft .NET Framework 3.0—>MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft ActiveSync—>MsiExec.exe /I{99052DB7-9592-4522-A558-5417BBAD48EE}
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7—>»C:WINDOWS$NtUninstallWdf01007$spuninstspuninst.exe»
Microsoft Office Access 2007—>»C:Program FilesCommon FilesMicrosoft SharedOFFICE12Office Setup Controllersetup.exe» /uninstall ACCESS /dll OSETUP.DLL
Microsoft Office Access 2007—>MsiExec.exe /X{90120000-0015-0000-0000-0000000FF1CE}
Microsoft Office Access MUI (Russian) 2007—>MsiExec.exe /X{90120000-0015-0419-0000-0000000FF1CE}
Microsoft Office Excel MUI (Russian) 2007—>MsiExec.exe /X{90120000-0016-0419-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Russian) 2007—>MsiExec.exe /X{90120000-001A-0419-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Russian) 2007—>MsiExec.exe /X{90120000-0018-0419-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007—>MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007—>MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Russian) 2007—>MsiExec.exe /X{90120000-001F-0419-0000-0000000FF1CE}
Microsoft Office Proof (Ukrainian) 2007—>MsiExec.exe /X{90120000-001F-0422-0000-0000000FF1CE}
Microsoft Office Proofing (Russian) 2007—>MsiExec.exe /X{90120000-002C-0419-0000-0000000FF1CE}
Microsoft Office Shared MUI (Russian) 2007—>MsiExec.exe /X{90120000-006E-0419-0000-0000000FF1CE}
Microsoft Office Standard 2007—>MsiExec.exe /X{90120000-0012-0000-0000-0000000FF1CE}
Microsoft Office Visio MUI (Russian) 2007—>MsiExec.exe /X{90120000-0054-0419-0000-0000000FF1CE}
Microsoft Office Visio Professional 2007—>MsiExec.exe /X{90120000-0051-0000-0000-0000000FF1CE}
Microsoft Office Visio Профессиональный 2007—>»C:Program FilesCommon FilesMicrosoft SharedOFFICE12Office Setup Controllersetup.exe» /uninstall VISPRO /dll OSETUP.DLL
Microsoft Office Word MUI (Russian) 2007—>MsiExec.exe /X{90120000-001B-0419-0000-0000000FF1CE}
Microsoft Office Стандартный 2007—>»C:Program FilesCommon FilesMicrosoft SharedOFFICE12Office Setup Controllersetup.exe» /uninstall STANDARD /dll OSETUP.DLL
Microsoft User-Mode Driver Framework Feature Pack 1.7—>»C:WINDOWS$NtUninstallWudf01007$spuninstspuninst.exe»
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mozilla Firefox (3.5.2)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
MSVC80_x86—>MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSXML 4.0 SP2 (KB927978)—>MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 6.0 Parser (KB927977)—>MsiExec.exe /I{CDC55141-E531-44A6-AB13-1AF4B7157D46}
muveeNow 2.2—>C:Program FilesInstallShield Installation Information{92DF7EB7-E523-4625-9909-D32642A31FF4}setup.exe -runfromtemp -l0x0019 -removeonly
Nero 7 Premium—>MsiExec.exe /X{847CAE64-4CD2-4B2D-AF00-978FF5431049}
neroxml—>MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nokia Connectivity Cable Driver—>MsiExec.exe /I{52D02A2B-03D2-4E34-A358-DC5D951FD296}
Nokia PC Suite—>C:Documents and SettingsAll UsersApplication DataInstallations{3D39E775-DDDA-4327-B747-0BDC5F191331}Nokia_PC_Suite_7_1_30_9_rus.exe
Nokia PC Suite—>MsiExec.exe /I{3D39E775-DDDA-4327-B747-0BDC5F191331}
NVIDIA Drivers—>C:WINDOWSsystem32nvudisp.exe UninstallGUI
ooVoo Toolbar (Remove Toolbar Only)—>C:Program Filesoovootbuninstall.exe
ooVoo—>»C:Program FilesInstallShield Installation Information{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}setup.exe» -runfromtemp -l0x0019 -removeonly
Opera 9.64—>MsiExec.exe /X{E1BBBAC5-2857-4155-82A6-54492CE88620}
PC Connectivity Solution—>MsiExec.exe /I{0C973594-7DDF-4BD0-84ED-3517F7622037}
PentaChat—>»D:Program FilesPentaChatUninstall PentaChatUninstall PentaChat.exe»
Planet Earth 3D Screensaver 1.1—>»D:Program FilesAstro Gemini SoftwarePlanet Earth 3D Screensaverunins000.exe»
pMetro 1.28—>»D:Program FilespMetrounins000.exe»
Punto Switcher 3.1—>C:Program FilesYandexPunto Switcheruninstall.exe
QuickTime—>C:PROGRA~1COMMON~1INSTAL~1Driver11INTEL3~1IDriver.exe /M{C21D5524-A970-42FA-AC8A-59B8C7CDCA31} /l1033
Realtek AC’97 Audio—>Alcrmv.exe -r -m
REALTEK RTL8185 Wireless LAN Driver and Utility—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{B41F5ED6-4D67-4FAA-B787-D5DF1DD0EC80}SETUP.EXE» -l0x19 REMOVE
Scramby—>MsiExec.exe /I{C4143A65-E7D7-4E1C-9403-8485355C3C24}
Security Update для Microsoft .NET Framework 2.0 (КБ917283)—>C:WINDOWSsystem32msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Security Update для Microsoft .NET Framework 2.0 (КБ922770)—>C:WINDOWSsystem32msiexec.exe /promptrestart /uninstall {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
SiSoftware Sandra Pro Business 2009.SP1—>»D:Program FilesSiSoftwareSiSoftware Sandra Pro Business 2009.SP1unins000.exe»
Skype™ 3.8—>MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
Skype™ for Windows Mobile 2.5—>»D:Program FilesSkype for Windows Mobileunins000.exe»
Streamripper (Remove only)—>D:Program FilesStreamripperUninstall.exe
Uninstall Tool 2.3.2—>»C:Program FilesUninstall Toolunins000.exe»
Unlocker 1.8.7—>D:Program FilesUnlockeruninst.exe
VIA Rhine-Family Fast Ethernet Adapter—>Rundll32.exe vuins32.dll,vuins32Ex $Rhine $VIA
VideoLAN VLC media player 0.8.6—>D:Program FilesVideoLANVLCuninstall.exe
ViewSonic Monitor Drivers—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{B4FEA924-630D-11D4-B78E-005004566E4D}Setup.exe» -l0x9
Virtual CD v9—>C:Program FilesInstallShield Installation Information{98A64C75-BFD6-4212-8746-8BADC7ABA79E}setup.exe -runfromtemp -l0x0009 -removeonly
VKSaver—>»C:Program FilesVKSaveruninstall.exe»
Winamp Toolbar—>»C:Program FilesWinamp Toolbaruninstall.exe»
Winamp—>»D:Program FilesWinampUninstWA.exe»
WinDjView 0.5—>»C:Program FilesWinDjViewunins000.exe»
Windows Communication Foundation—>MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Media Format 11 runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Windows Media Format 11 runtime—>»C:WINDOWS$NtUninstallWMFDist11$spuninstspuninst.exe»
Windows Media Player 11—>»C:WINDOWS$NtUninstallwmp11$spuninstspuninst.exe»
Windows Presentation Foundation Language Pack (RUS)—>MsiExec.exe /X{D83A3DFC-8528-4E31-93DC-0A41C477109C}
Windows Presentation Foundation—>MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation RU Language Pack—>MsiExec.exe /I{1C7ADED3-C371-40DF-A69D-FE0EA73DC394}
Windows Workflow Foundation—>MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
World of Warcraft WoLTK—>»C:Program FilesInstallShield Installation Information{0EBABD7C-2B5F-4700-9D77-31DA6248FFE0}setup.exe» -runfromtemp -l0x0019 -removeonly
World of Warcraft—>C:Program FilesCommon FilesBlizzard EntertainmentWrath of the Lich KingUninstall.exe
Xilisoft DVD Ripper Ultimate—>D:Program FilesXilisoftDVD Ripper Ultimate 5Uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0—>»C:WINDOWS$NtUninstallXPSEPSCLP$spuninstspuninst.exe»
YouSendIt Express—>C:Program FilesInstallShield Installation Information{1193600A-134F-40F9-9F71-FEF54C93C629}setup.exe -runfromtemp -l0x0409
ZSMC USB PC Camera (ZS0211)—>C:Program FilesInstallShield Installation Information{44D02D8B-FFB3-4245-8D26-68D10B4C4023}setup.exe -runfromtemp -l0x0019 -removeonly
Архиватор WinRAR—>C:Program FilesWinRARuninstall.exe
Аура—>D:Program FilesAurauninstall.exe
Виртуальный водитель 1.0—>»D:Program FilesВиртуальный водительunins000.exe»
Мусорщик 3.2—>»C:Program FilesFClearunins000.exe»
Обновление безопасности для Windows XP (KB923789)—>C:WINDOWSsystem32MacroMedFlashgenuinst.exe C:WINDOWSsystem32MacroMedFlashKB923789.inf
Пакет драйверов Windows — Nokia Modem (06/01/2009 4.1)—>C:PROGRA~1DIFX270581355A767BF1dpinst.exe /u C:WINDOWSsystem32DRVSTOREnokia_blue_C08496D7A0050438DFE13C55799AE2D4157A8E7Anokia_bluetooth.inf
Пакет драйверов Windows — Nokia Modem (06/01/2009 7.01.0.3)—>C:PROGRA~1DIFX270581355A767BF1dpinst.exe /u C:WINDOWSsystem32DRVSTOREnokbtmdm_9C48E34C57B7D4AAE5FFF5FB9B476B538394FD30nokbtmdm.inf
Пакет драйверов Windows — Nokia pccsmcfd (08/22/2008 7.0.0.0)—>C:PROGRA~1DIFXB4723E9A0713E5B1dpinst.exe /u C:WINDOWSsystem32DRVSTOREpccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294pccsmcfd.inf
Пакет обеспечения совместимости для выпуска 2007 системы Microsoft Office—>MsiExec.exe /X{90120000-0020-0419-0000-0000000FF1CE}
Пакет обновления 2 для клиента управления правами Windows с поддержкой прежних версий—>MsiExec.exe /X{EC905264-BCFE-423B-9C42-C3A106266790}
Пакет обновления 2 для клиента управления правами Windows—>MsiExec.exe /X{9350CD11-D3F0-4B6D-B18F-74E968D5770A}
Проигрыватель Windows Media 11—>»C:Program FilesWindows Media PlayerSetup_wm.exe» /Uninstall
СОКРАТ Интернет 3.0 Полиглот—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{A1CE8874-17FC-4646-81F5-BA704330CD72}setup.exe»
Сократ Персональный 4.1—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{9CD789E2-B7CE-11D5-B7E9-00A0C9449F99}setup.exe»
Тормозилки—>C:PROGRA~1COMMON~1INSTAL~1Driver9INTEL3~1IDriver.exe /M{C3DE1EB0-C8B3-42DC-AA33-427CD802EC57}
Я.Онлайн 2.9.4—>»D:Program FilesYandexOnlineunins000.exe»
Яндекс.Бар 4.2 для Internet Explorer—>MsiExec.exe /X{6740F9E3-1353-47DD-9765-BA49FC4C3479}

======Security center information======

AV: avast! antivirus 4.8.1351 [VPS 090920-0]

======System event log======

Computer Name: BORDUR
Event Code: 20159
Message: Подключение пользователя «30227900» к «nbn», выполненное с помощью устройства «PPPoE8-0», было прервано.

Record Number: 9499
Source Name: RemoteAccess
Time Written: 20090819123447.000000+240
Event Type: информация
User:

Computer Name: BORDUR
Event Code: 20158
Message: Успешно выполнено подключение пользователя «30227900»к «nbn», с помощью устройства «PPPoE8-0».

Record Number: 9498
Source Name: RemoteAccess
Time Written: 20090819123243.000000+240
Event Type: информация
User:

Computer Name: BORDUR
Event Code: 7036
Message: Служба «ServiceLayer» перешла в состояние Работает.

Record Number: 9497
Source Name: Service Control Manager
Time Written: 20090819123206.000000+240
Event Type: информация
User:

Computer Name: BORDUR
Event Code: 7036
Message: Служба «Служба COM записи компакт-дисков IMAPI» перешла в состояние Остановлена.

Record Number: 9496
Source Name: Service Control Manager
Time Written: 20090819123205.000000+240
Event Type: информация
User:

Computer Name: BORDUR
Event Code: 7035
Message: Служба «ServiceLayer» успешно отправила управляющий элемент «запустить».

Record Number: 9495
Source Name: Service Control Manager
Time Written: 20090819123205.000000+240
Event Type: информация
User: NT AUTHORITYSYSTEM

=====Application event log=====

Computer Name: BORDUR
Event Code: 2
Message: OpenFileMapping _VCD_V9_MemSection_ failed, 2

Record Number: 5
Source Name: Virtual CD v9 Management Service
Time Written: 20090912003941.000000+240
Event Type: ошибка
User: NT AUTHORITYSYSTEM

Computer Name: BORDUR
Event Code: 1001
Message: User profile hive cleanup service version 1.6.30.0 started successfully.

Record Number: 4
Source Name: UPHClean
Time Written: 20090912003939.000000+240
Event Type: информация
User:

Computer Name: BORDUR
Event Code: 0
Message:
Record Number: 3
Source Name: ScrambyServer
Time Written: 20090912003939.000000+240
Event Type: информация
User:

Computer Name: BORDUR
Event Code: 0
Message:
Record Number: 2
Source Name: ICQ Service
Time Written: 20090912003934.000000+240
Event Type: информация
User:

Computer Name: BORDUR
Event Code: 2570
Message: Adobe Active File Monitor Service has Started.

Record Number: 1
Source Name: Adobe Active File Monitor 6.0
Time Written: 20090912003932.000000+240
Event Type:
User:

======Environment variables======

«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=C:Program FilesPC Connectivity Solution;%SystemRoot%system32;%SystemRoot%;%SystemRoot%system32WBEM;D:Program FilesQuickTimeQTSystem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=15
«PROCESSOR_IDENTIFIER»=x86 Family 15 Model 1 Stepping 2, GenuineIntel
«PROCESSOR_REVISION»=0102
«NUMBER_OF_PROCESSORS»=1
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«DEVMGR_SHOW_DETAILS»=1
«DEVMGR_SHOW_NONPRESENT_DEVICES»=1
«SAN_DIR»=D:Program FilesSiSoftwareSiSoftware Sandra Pro Business 2009.SP1
«CLASSPATH»=.;D:Program FilesQuickTimeQTSystemQTJava.zip
«QTJAVA»=D:Program FilesQuickTimeQTSystemQTJava.zip

---

EOF

---

[Admin]

Выполним дополнительную проверку.
Скачайте программу Combofix. Закройте все открытые окна и запустите эту программу.
После выполнения будет создан лог файл, пожалуйста вставьте его в ваш ответ.

Примечание: перед использованием Combofix обязательно установите Recovery console. Как это сделать будет описано на странице, ссылку на которую я привёл выше.

[Автор]

Сообщения