Вирус нагружает процесор 100%

[tally]

======Scheduled tasks folder======

C:WINDOWStasksScheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2008-06-12 75128]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2009-11-08 256112]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.4.4525.1752swg.dll [2009-11-08 764912]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_B7C5AC242193BB3E.dll [2009-11-08 458736]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-09-02 1175944]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll [2009-11-08 256112]
{D4027C7F-154A-4066-A1AD-4243D8127440} — Ask Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-09-02 1175944]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«ISUSPM Startup»=C:PROGRA~1COMMON~1INSTAL~1UPDATE~1ISUSPM.exe [2005-02-17 221184]
«ISUSScheduler»=C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe [2005-02-17 81920]
«GBTUpd»=C:Program FilesGIGABYTEGBTUpdPreRun.exe [2008-04-03 297480]
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2009-01-13 18084864]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2008-06-19 57344]
«Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2008-06-12 34672]
«StartCCC»=C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe [2008-08-30 61440]
«PAC207_Monitor»=C:WINDOWSPixArtPAC207Monitor.exe [2007-12-10 323584]
«Monitor»=C:WINDOWSPixArtPAC207Monitor.exe [2007-12-10 323584]
«NodLogin»=C:Program FilesESETESET NOD32 Antivirusnodlogin.exe /p []
«egui»=C:Program FilesESETESET Smart Securityegui.exe [2009-09-11 2054360]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2008-04-14 15360]
«KernelFaultCheck»=C:WINDOWSsystem32dumprep 0 -k []

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2008-04-14 15360]
«DAEMON Tools Lite»=C:Program FilesDAEMON Tools LiteDTLite.exe [2009-10-30 369200]
«uTorrent»=C:Program FilesuTorrentuTorrent.exe [2009-11-26 289584]
«swg»=C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-11-08 39408]
«Steam»=E:Program FilesSteamSteam.exe [2009-11-22 1217808]
«MSMSGS»=C:Program FilesMessengermsmsgs.exe [2008-04-14 1695232]
«Skype»=C:Program FilesSkype\PhoneSkype.exe [2009-10-09 25623336]

C:Documents and SettingsAll UsersStart MenuProgramsStartup
Windows Search.lnk — C:Program FilesWindows Desktop SearchWindowsSearch.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyAtiExtEvent]
C:WINDOWSsystem32Ati2evxx.dll [2009-01-13 155648]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyWgaLogon]
C:WINDOWSsystem32WgaLogon.dll [2009-03-11 239496]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-19 133632]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{56F9679E-7826-4C84-81F3-532071A8BCC5}»=C:Program FilesWindows Desktop SearchMSNLNamespaceMgr.dll [2009-05-25 304128]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesGigabyteGBTUpdRunUpd.exe»=»C:Program FilesGigabyteGBTUpdRunUpd.exe:*:Enabled:RunUpd»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesSteamSteam.exe»=»C:Program FilesSteamSteam.exe:*:Enabled:Steam»
«C:Program FilesSkypePlugin ManagerskypePM.exe»=»C:Program FilesSkypePlugin ManagerskypePM.exe:*:Enabled:Skype Extras Manager»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«C:Program FilesSteamsteamappsrmwk21counter-strikehl.exe»=»C:Program FilesSteamsteamappsrmwk21counter-strikehl.exe:*:Enabled:Half-Life Launcher»
«C:Program FilesRockstar GamesRockstar Games Social ClubRGSCLauncher.exe»=»C:Program FilesRockstar GamesRockstar Games Social ClubRGSCLauncher.exe:*:Enabled:Rockstar Games Social Club»
«C:Documents and SettingsUserMy DocumentsTeamViewer.exe»=»C:Documents and SettingsUserMy DocumentsTeamViewer.exe:*:Enabled:TeamViewer Remote Control Application»
«C:Program FilesNival OnlineПиратия Onlinepir_d.exe»=»C:Program FilesNival OnlineПиратия Onlinepir_d.exe:*:Enabled:Moliyo, Nival Online. Piratia.»
«C:gamescsshl2.exe»=»C:gamescsshl2.exe:*:Enabled:hl2»
«E:Program FilesSteamSteam.exe»=»E:Program FilesSteamSteam.exe:*:Enabled:Steam»
«E:Gameshldsstehlds.exe»=»E:Gameshldsstehlds.exe:*:Enabled:HLDS Launcher»
«C:Documents and SettingsUserDesktophldssshldshlds.exe»=»C:Documents and SettingsUserDesktophldssshldshlds.exe:*:Enabled:HLDS Launcher»
«C:Documents and SettingsUserDesktopHLDS_47-48_cs.telesweet.netHLDShlds.exe»=»C:Documents and SettingsUserDesktopHLDS_47-48_cs.telesweet.netHLDShlds.exe:*:Enabled:HLDS Launcher»
«E:Program FilesSteamsteamappsrmwk21counter-strikehl.exe»=»E:Program FilesSteamsteamappsrmwk21counter-strikehl.exe:*:Enabled:Half-Life Launcher»
«C:Documents and SettingsUserDesktopHLDS_47-48_cs.teleswe2et.netHLDShlds.exe»=»C:Documents and SettingsUserDesktopHLDS_47-48_cs.teleswe2et.netHLDShlds.exe:*:Enabled:HLDS Launcher»
«C:Program FilesPlay+SmileTexas Hold’em Poker 3D — Deluxe EditionPoker3d.exe»=»C:Program FilesPlay+SmileTexas Hold’em Poker 3D — Deluxe EditionPoker3d.exe:*:Enabled:Poker3d»
«C:WINDOWSsystem32dpvsetup.exe»=»C:WINDOWSsystem32dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test»
«C:WINDOWSsystem32rundll32.exe»=»C:WINDOWSsystem32rundll32.exe:*:Enabled:Run a DLL as an App»
«E:Program FilesEA GAMESBattlefield 2bf2_w32ded.exe»=»E:Program FilesEA GAMESBattlefield 2bf2_w32ded.exe:*:Enabled:bf2_w32ded»
«E:Program FilesActivisionCall of Duty 4 — Modern Warfareiw3mp.exe»=»E:Program FilesActivisionCall of Duty 4 — Modern Warfareiw3mp.exe:*:Enabled:Call of Duty(R) 4 — Modern Warfare(TM) «
«C:WINDOWSsystem32PnkBstrA.exe»=»C:WINDOWSsystem32PnkBstrA.exe:*:Enabled:PnkBstrA»
«C:WINDOWSsystem32PnkBstrB.exe»=»C:WINDOWSsystem32PnkBstrB.exe:*:Enabled:PnkBstrB»
«E:Program FilesSteamsteamappsrmwk21ricochethl.exe»=»E:Program FilesSteamsteamappsrmwk21ricochethl.exe:*:Enabled:Half-Life Launcher»
«C:WINDOWSsystem32wmispjr.exe»=»C:WINDOWSsystem32wmispjr.exe:*:Enabled:UPnP Firewall»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:WINDOWSsystem32wmispjr.exe»=»C:WINDOWSsystem32wmispjr.exe:*:Enabled:UPnP Firewall»

======List of files/folders created in the last 1 months======

2010-01-02 12:14:23 —-D—- C:Program Filestrend micro
2010-01-02 12:14:14 —-D—- C:rsit
2010-01-01 17:11:59 —-RSH—- C:WINDOWSsystem32wmispjr.exe
2010-01-01 17:11:41 —-HD—- C:WINDOWSPIF
2009-12-31 11:45:34 —-D—- C:Program FilesCommon FilesSkype
2009-12-31 11:45:33 —-RD—- C:Program FilesSkype
2009-12-30 19:18:57 —-D—- C:Program FilesAVG
2009-12-25 18:41:42 —-D—- C:Documents and SettingsUserApplication DataVentrilo
2009-12-25 18:41:18 —-D—- C:Program FilesVentrilo
2009-12-25 18:41:08 —-D—- C:Program FilesCommon FilesWise Installation Wizard
2009-12-19 19:36:38 —-D—- C:Program FilesEA Games
2009-12-19 14:37:39 —-A—- C:WINDOWSgame.ini
2009-12-19 14:28:43 —-SHD—- C:WINDOWSftpcache
2009-12-09 12:24:37 —-HDC—- C:WINDOWS$NtUninstallKB970430$
2009-12-09 12:24:23 —-HDC—- C:WINDOWS$NtUninstallKB974318$
2009-12-09 12:23:50 —-HDC—- C:WINDOWS$NtUninstallKB973904$
2009-12-09 12:23:46 —-HDC—- C:WINDOWS$NtUninstallKB974392$
2009-12-09 12:23:40 —-HDC—- C:WINDOWS$NtUninstallKB971737$
2009-12-07 10:56:57 —-HDC—- C:WINDOWS$NtUninstallKB954156_WM9L$
2009-12-06 17:06:37 —-D—- C:WINDOWSsystem32windows media
2009-12-06 17:06:31 —-HD—- C:WINDOWSmsdownld.tmp
2009-12-06 17:06:31 —-D—- C:WINDOWSRegisteredPackages
2009-12-06 17:06:26 —-D—- C:Program FilesWindows Media Components
2009-12-05 23:32:11 —-D—- C:Program FilesPlay+Smile
2009-12-05 23:01:46 —-D—- C:Program FilesCommon FileseSellerate
2009-12-05 20:58:22 —-A—- C:WINDOWSunvise32.exe
2009-12-05 20:53:35 —-AD—- C:Documents and SettingsAll UsersApplication DataTEMP
2009-12-05 20:42:06 —-HD—- C:Documents and SettingsUserApplication DataPublish Providers
2009-12-05 20:36:45 —-D—- C:Documents and SettingsUserApplication DataSony
2009-12-05 20:34:08 —-D—- C:Program FilesVstplugins
2009-12-05 19:27:10 —-D—- C:Documents and SettingsAll UsersApplication DataSony
2009-12-05 19:26:56 —-D—- C:Program FilesSony
2009-12-05 19:26:33 —-D—- C:Program FilesSony Setup
2009-12-03 19:30:39 —-D—- C:Program FilesTasker3.13

======List of files/folders modified in the last 1 months======

2010-01-02 12:14:26 —-D—- C:WINDOWSTemp
2010-01-02 12:14:23 —-RD—- C:Program Files
2010-01-02 11:53:40 —-SHD—- C:WINDOWSInstaller
2010-01-02 11:32:14 —-D—- C:WINDOWSsystem32
2010-01-02 11:32:14 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2010-01-02 10:48:34 —-A—- C:WINDOWSSchedLgU.Txt
2010-01-01 23:03:52 —-D—- C:WINDOWS
2010-01-01 23:03:51 —-D—- C:WINDOWSMinidump
2010-01-01 22:56:21 —-D—- C:WINDOWSsystem32DirectX
2010-01-01 19:49:51 —-D—- C:Documents and SettingsUserApplication DatauTorrent
2010-01-01 19:27:34 —-D—- C:WINDOWSsystem32drivers
2010-01-01 17:51:13 —-D—- C:Documents and SettingsUserApplication DataSlimBrowser
2010-01-01 17:13:42 —-HD—- C:Documents and SettingsUserApplication DataSkype
2010-01-01 17:10:48 —-D—- C:Documents and SettingsUserApplication DataskypePM
2010-01-01 17:08:52 —-HD—- C:Program FilesInstallShield Installation Information
2010-01-01 17:08:04 —-D—- C:Program FilesKak dostat vseh Antologia
2010-01-01 17:03:35 —-D—- C:Program FilesOGPlanet
2010-01-01 17:01:26 —-HD—- C:WINDOWSinf
2010-01-01 17:01:16 —-D—- C:WINDOWSsystem32CatRoot2
2010-01-01 17:00:58 —-D—- C:Program FilesESET
2009-12-31 22:45:02 —-RSHDC—- C:WINDOWSsystem32dllcache
2009-12-31 21:19:22 —-D—- C:Documents and Settings
2009-12-31 11:45:34 —-D—- C:Program FilesCommon Files
2009-12-31 11:45:33 —-D—- C:Documents and SettingsAll UsersApplication DataSkype
2009-12-30 19:12:17 —-D—- C:WINDOWSPrefetch
2009-12-25 18:47:53 —-SD—- C:Documents and SettingsUserApplication DataMicrosoft
2009-12-25 12:35:07 —-D—- C:Program FilesSlimBrowser
2009-12-24 21:08:44 —-SHD—- C:RECYCLER
2009-12-19 20:03:15 —-D—- C:WINDOWSsystem32LogFiles
2009-12-19 19:36:11 —-SD—- C:WINDOWSDownloaded Program Files
2009-12-10 19:33:00 —-D—- C:WINDOWSsystem32wbem
2009-12-09 12:24:26 —-A—- C:WINDOWSimsins.BAK
2009-12-09 12:24:04 —-D—- C:Program FilesInternet Explorer
2009-12-09 12:23:57 —-D—- C:WINDOWSie8updates
2009-12-09 12:23:55 —-HD—- C:WINDOWS$hf_mig$
2009-12-09 11:34:34 —-D—- C:WINDOWSsystem32Restore
2009-12-06 18:05:22 —-RSD—- C:WINDOWSFonts
2009-12-05 19:27:43 —-RSD—- C:WINDOWSassembly
2009-12-05 19:16:13 —-D—- C:games
2009-12-05 16:18:35 —-D—- C:Program FilesMozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:WINDOWSsystem32DRIVERSehdrv.sys [2009-09-11 108792]
R1 epfwtdi;epfwtdi; C:WINDOWSsystem32DRIVERSepfwtdi.sys [2009-09-11 55768]
R1 intelppm;Intel Processor Driver; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:WINDOWSsystem32DRIVERSkbdhid.sys [2008-04-13 14592]
R1 Tcpip6;Microsoft IPv6 Protocol Driver; C:WINDOWSsystem32DRIVERStcpip6.sys [2008-06-20 225856]
R2 eamon;eamon; C:WINDOWSsystem32DRIVERSeamon.sys [2009-09-11 116008]
R2 epfw;epfw; C:WINDOWSsystem32DRIVERSepfw.sys [2009-09-11 135048]
R3 ati2mtag;ati2mtag; C:WINDOWSsystem32DRIVERSati2mtag.sys [2009-01-13 3455488]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:WINDOWSsystem32driversAtiHdmi.sys [2008-10-31 93184]
R3 Epfwndis;Eset Personal Firewall; C:WINDOWSsystem32DRIVERSEpfwndis.sys [2009-06-19 33096]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class Driver; C:WINDOWSsystem32DRIVERShidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2009-01-20 5027840]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:WINDOWSsystem32DRIVERSl1c51x86.sys [2009-09-04 45056]
R3 mouhid;Mouse HID Driver; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-08-17 12160]
R3 PAC207;Trust 100K Series Webcam; C:WINDOWSsystem32DRIVERSPFC027.SYS [2008-02-13 618112]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:WINDOWSsystem32DRIVERStunmp.sys [2008-04-13 12288]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:WINDOWSsystem32DRIVERSusbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-13 20608]
S3 ajzw0gfw;ajzw0gfw; C:WINDOWSsystem32driversajzw0gfw.sys []
S3 CCDECODE;Closed Caption Decoder; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2008-04-13 17024]
S3 gdrv;gdrv; ??C:WINDOWSgdrv.sys []
S3 GMSIPCI;GMSIPCI; ??D:INSTALLGMSIPCI.SYS []
S3 MSICPL;MSICPL; ??D:install4MSICPL.sys []
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:WINDOWSsystem32driversMSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:WINDOWSsystem32DRIVERSNdisIP.sys [2008-04-13 10880]
S3 NTACCESS;NTACCESS; ??D:NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; ??D:NTGLM7X.sys []
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2008-04-13 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:WINDOWSsystem32DRIVERSSONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2008-04-13 15232]
S3 usbprint;Microsoft USB PRINTER Class; C:WINDOWSsystem32DRIVERSusbprint.sys [2008-04-13 25856]
S3 USBSTOR;USB Mass Storage Driver; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-29 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-29 82944]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;IPv6 Helper Service; C:WINDOWSsystem32svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:WINDOWSsystem32Ati2evxx.exe [2009-01-13 598016]
R2 ekrn;ESET Service; C:Program FilesESETESET Smart Securityekrn.exe [2009-09-11 735960]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-20 322120]
R2 WSearch;Windows Search; C:WINDOWSsystem32SearchIndexer.exe [2008-05-27 439808]
S2 ATI Smart;ATI Smart; C:WINDOWSsystem32ati2sgag.exe [2009-01-14 593920]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:Program FilesESETESET Smart SecurityEHttpSrv.exe [2009-09-11 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-30 46104]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-11-08 182768]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; c:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-30 881664]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-10-19 913408]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-30 132096]

---

EOF

---

info.txt logfile of random’s system information tool 1.06 2010-01-02 12:14:43

======Uninstall list======

—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
µTorrent—>»C:Program FilesuTorrentuTorrent.exe» /UNINSTALL
Acrobat.com—>C:Program FilesCommon FilesAdobe AIRVersions1.0Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
Acrobat.com—>MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Adobe AIR—>C:Program FilesCommon FilesAdobe AIRVersions1.0Adobe AIR Updater.exe -arp:uninstall
Adobe AIR—>MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Reader 9—>MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
Ask Toolbar—>MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver—>»C:Program FilesInstallShield Installation Information{3108C217-BE83-42E4-AE9E-A56A2A92E549}LSetup.Exe» -runfromtemp -l0x0009 -removeonly
ATI — Software Uninstall Utility—>C:Program FilesATI TechnologiesUninstallAllAtiCimUn.exe
ATI AVIVO Codecs—>MsiExec.exe /I{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}
ATI Catalyst Control Center—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{055EE59D-217B-43A7-ABFF-507B966405D8}setup.exe» -l0x0
ATI Display Driver—>rundll32 C:WINDOWSsystem32atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
ATI Parental Control & Encoder—>MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7}
Call of Duty(R) 4 — Modern Warfare(TM) 1.4 Patch—>C:Program FilesInstallShield Installation Information{3BD633E0-4BF8-4499-9149-88F0767D449C}setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 — Modern Warfare(TM)—>C:Program FilesInstallShield Installation Information{E48469CC-635E-4FD5-A122-1497C286D217}setup.exe -runfromtemp -l0x0419
CamStudio—>C:Program FilesCamStudiouninstall.exe
Canon iP3300 — регистрация пользователя—>C:Program FilesCanonIJEREGiP3300UNINST.EXE
Canon iP3300—>»C:WINDOWSsystem32CanonIJ Uninstaller Information{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP3300DelDrv.exe» /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP3300 /L0x0019
Catalyst Control Center — Branding—>MsiExec.exe /I{BAB571B0-FD74-44D2-AA40-7A94D6C95CDD}
Counter-Strike—>»E:Program FilesSteamsteam.exe» steam://uninstall/10
CreativEase DEMO for Sony Vegas—>C:PROGRA~1SonyVEGASP~1.0PixelanCREATI~1UNINST~1UNINST~1.EXE C:PROGRA~1SonyVEGASP~1.0PixelanCREATI~1UNINST~1Install.log
Dedicated Server—>»E:Program FilesSteamsteam.exe» steam://uninstall/5
DMIView B8.0717.01—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime110Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{3EE1008C-11A1-4F4F-8DB7-27573924DE78}setup.exe» -l0x9 -removeonly
GOM Player—>»C:Program FilesGRETECHGomPlayerUninstall.exe»
Google Toolbar for Internet Explorer—>»C:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarManager_E582EA556D8DE101.exe» /uninstall
Google Toolbar for Internet Explorer—>MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
GTA San Andreas—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1050Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}setup.exe» -l0x9 -removeonly
High Definition Audio Driver Package — KB888111—>»C:WINDOWS$NtUninstallKB888111WXPSP2$spuninstspuninst.exe»
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)—>C:WINDOWSsystem32msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=»»
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)—>C:WINDOWSsystem32msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=»»
Hotfix for Windows Media Format 11 SDK (KB929399)—>»C:WINDOWS$NtUninstallKB929399$spuninstspuninst.exe»
Hotfix for Windows Media Player 11 (KB939683)—>»C:WINDOWS$NtUninstallKB939683$spuninstspuninst.exe»
Hotfix for Windows XP (KB915800-v4)—>»C:WINDOWS$NtUninstallKB915800-v4$spuninstspuninst.exe»
Hotfix for Windows XP (KB952287)—>»C:WINDOWS$NtUninstallKB952287$spuninstspuninst.exe»
Hotfix for Windows XP (KB961118)—>»C:WINDOWS$NtUninstallKB961118$spuninstspuninst.exe»
Hotfix for Windows XP (KB970653-v3)—>»C:WINDOWS$NtUninstallKB970653-v3$spuninstspuninst.exe»
Hotfix for Windows XP (KB976098-v2)—>»C:WINDOWS$NtUninstallKB976098-v2$spuninstspuninst.exe»
Internet Cyclone 1.92—>»C:Program FilesInternet Cycloneunins000.exe»
K-Lite Codec Pack 5.4.0 (Full)—>»C:Program FilesK-Lite Codec Packunins000.exe»
Magic Bullet Editors 2.0 Vegas—>C:WINDOWSunvise32.exe c:program filessonyvegas pro 8.0Magic Bullet Editors 2.0 Vegasmbeditorsvegas.log
Microsoft .NET Framework 1.1 Security Update (KB953297)—>»C:WINDOWSMicrosoft.NETFrameworkv1.1.4322Updateshotfix.exe» «C:WINDOWSMicrosoft.NETFrameworkv1.1.4322UpdatesM953297M953297Uninstall.msp»
Microsoft .NET Framework 1.1—>msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1—>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2—>MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2—>MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1—>C:WINDOWSMicrosoft.NETFrameworkv3.5Microsoft .NET Framework 3.5 SP1setup.exe
Microsoft .NET Framework 3.5 SP1—>MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Base Smart Card Cryptographic Service Provider Package—>»C:WINDOWS$NtUninstallbasecsp$spuninstspuninst.exe»
Microsoft Compression Client Pack 1.0 for Windows XP—>»C:WINDOWS$NtUninstallMSCompPackV1$spuninstspuninst.exe»
Microsoft Games for Windows — LIVE Redistributable—>MsiExec.exe /X{2E660A2A-A55F-43CD-9F73-CAD7382EEB78}
Microsoft Games for Windows — LIVE—>MsiExec.exe /X{F112F66E-25CA-42DD-983C-6118EB38F606}
Microsoft Office Standard Edition 2003—>MsiExec.exe /I{90120409-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight—>MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.0—>»C:WINDOWS$NtUninstallWudf01000$spuninstspuninst.exe»
Microsoft Visual C++ 2005 ATL Update kb973923 — x86 8.0.50727.4053—>MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 ATL Update kb973924 — x86 9.0.30729.4148—>MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729.17—>MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mozilla Firefox (3.5.5)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
NewBlue Art Blends—>C:Program FilesSonyVegas Pro 8.0Uninstal.exe
NewBlue Art Effects—>C:Program FilesSonyVegas Pro 8.0Uninstal.exe
NewBlue Essentials—>C:Program FilesSonyVegas Pro 8.0Uninstall.exe
NewBlue Motion Blends—>C:Program FilesSonyVegas Pro 8.0Uninstal.exe
NewBlue Motion Effects—>C:Program FilesSonyVegas Pro 8.0Uninstal.exe
NewBlue Production Tools—>C:Program FilesSonyVegas Pro 8.0Uninstall.exe
Prototype—>»E:Program FilesActivisionPrototypeUninstallunins000.exe»
Realtek High Definition Audio Driver—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}Setup.exe» -l0x9 -removeonly
Ricochet—>»E:Program FilesSteamsteam.exe» steam://uninstall/60
Rockstar Games Social Club—>»C:Program FilesInstallShield Installation Information{08B3869E-D282-424C-9AFC-870E04A4BA14}setup.exe» -runfromtemp -l0x0009 -removeonly
Security Update for Windows Internet Explorer 8 (KB971961)—>»C:WINDOWSie8updatesKB971961-IE8spuninstspuninst.exe»
Security Update for Windows Internet Explorer 8 (KB974455)—>»C:WINDOWSie8updatesKB974455-IE8spuninstspuninst.exe»
Security Update for Windows Internet Explorer 8 (KB976325)—>»C:WINDOWSie8updatesKB976325-IE8spuninstspuninst.exe»
Security Update for Windows Media Encoder (KB954156)—>»C:WINDOWS$NtUninstallKB954156_WM9L$spuninstspuninst.exe»
Security Update for Windows Media Player (KB952069)—>»C:WINDOWS$NtUninstallKB952069_WM9$spuninstspuninst.exe»
Security Update for Windows Media Player (KB954155)—>»C:WINDOWS$NtUninstallKB954155_WM9$spuninstspuninst.exe»
Security Update for Windows Media Player (KB968816)—>»C:WINDOWS$NtUninstallKB968816_WM9$spuninstspuninst.exe»
Security Update for Windows Media Player (KB973540)—>»C:WINDOWS$NtUninstallKB973540_WM9$spuninstspuninst.exe»
Security Update for Windows Media Player 11 (KB954154)—>»C:WINDOWS$NtUninstallKB954154_WM11$spuninstspuninst.exe»
Security Update for Windows Search 4 — KB963093—>»C:WINDOWS$NtUninstallKB963093$spuninstspuninst.exe»
Security Update for Windows XP (KB923561)—>»C:WINDOWS$NtUninstallKB923561$spuninstspuninst.exe»
Security Update for Windows XP (KB923789)—>C:WINDOWSsystem32MacroMedFlashgenuinst.exe C:WINDOWSsystem32MacroMedFlashKB923789.inf
Security Update for Windows XP (KB941569)—>»C:WINDOWS$NtUninstallKB941569$spuninstspuninst.exe»
Security Update for Windows XP (KB946648)—>»C:WINDOWS$NtUninstallKB946648$spuninstspuninst.exe»
Security Update for Windows XP (KB950762)—>»C:WINDOWS$NtUninstallKB950762$spuninstspuninst.exe»
Security Update for Windows XP (KB950974)—>»C:WINDOWS$NtUninstallKB950974$spuninstspuninst.exe»
Security Update for Windows XP (KB951066)—>»C:WINDOWS$NtUninstallKB951066$spuninstspuninst.exe»
Security Update for Windows XP (KB951376-v2)—>»C:WINDOWS$NtUninstallKB951376-v2$spuninstspuninst.exe»
Security Update for Windows XP (KB951748)—>»C:WINDOWS$NtUninstallKB951748$spuninstspuninst.exe»
Security Update for Windows XP (KB952004)—>»C:WINDOWS$NtUninstallKB952004$spuninstspuninst.exe»
Security Update for Windows XP (KB952954)—>»C:WINDOWS$NtUninstallKB952954$spuninstspuninst.exe»
Security Update for Windows XP (KB954459)—>»C:WINDOWS$NtUninstallKB954459$spuninstspuninst.exe»
Security Update for Windows XP (KB955069)—>»C:WINDOWS$NtUninstallKB955069$spuninstspuninst.exe»
Security Update for Windows XP (KB956572)—>»C:WINDOWS$NtUninstallKB956572$spuninstspuninst.exe»
Security Update for Windows XP (KB956744)—>»C:WINDOWS$NtUninstallKB956744$spuninstspuninst.exe»
Security Update for Windows XP (KB956802)—>»C:WINDOWS$NtUninstallKB956802$spuninstspuninst.exe»
Security Update for Windows XP (KB956803)—>»C:WINDOWS$NtUninstallKB956803$spuninstspuninst.exe»
Security Update for Windows XP (KB956844)—>»C:WINDOWS$NtUninstallKB956844$spuninstspuninst.exe»
Security Update for Windows XP (KB957097)—>»C:WINDOWS$NtUninstallKB957097$spuninstspuninst.exe»
Security Update for Windows XP (KB958644)—>»C:WINDOWS$NtUninstallKB958644$spuninstspuninst.exe»
Security Update for Windows XP (KB958687)—>»C:WINDOWS$NtUninstallKB958687$spuninstspuninst.exe»
Security Update for Windows XP (KB958869)—>»C:WINDOWS$NtUninstallKB958869$spuninstspuninst.exe»
Security Update for Windows XP (KB959426)—>»C:WINDOWS$NtUninstallKB959426$spuninstspuninst.exe»
Security Update for Windows XP (KB960225)—>»C:WINDOWS$NtUninstallKB960225$spuninstspuninst.exe»
Security Update for Windows XP (KB960803)—>»C:WINDOWS$NtUninstallKB960803$spuninstspuninst.exe»
Security Update for Windows XP (KB960859)—>»C:WINDOWS$NtUninstallKB960859$spuninstspuninst.exe»
Security Update for Windows XP (KB961371-v2)—>»C:WINDOWS$NtUninstallKB961371-v2$spuninstspuninst.exe»
Security Update for Windows XP (KB961501)—>»C:WINDOWS$NtUninstallKB961501$spuninstspuninst.exe»
Security Update for Windows XP (KB968537)—>»C:WINDOWS$NtUninstallKB968537$spuninstspuninst.exe»
Security Update for Windows XP (KB969059)—>»C:WINDOWS$NtUninstallKB969059$spuninstspuninst.exe»
Security Update for Windows XP (KB969947)—>»C:WINDOWS$NtUninstallKB969947$spuninstspuninst.exe»
Security Update for Windows XP (KB970238)—>»C:WINDOWS$NtUninstallKB970238$spuninstspuninst.exe»
Security Update for Windows XP (KB970430)—>»C:WINDOWS$NtUninstallKB970430$spuninstspuninst.exe»
Security Update for Windows XP (KB971486)—>»C:WINDOWS$NtUninstallKB971486$spuninstspuninst.exe»
Security Update for Windows XP (KB971557)—>»C:WINDOWS$NtUninstallKB971557$spuninstspuninst.exe»
Security Update for Windows XP (KB971633)—>»C:WINDOWS$NtUninstallKB971633$spuninstspuninst.exe»
Security Update for Windows XP (KB971657)—>»C:WINDOWS$NtUninstallKB971657$spuninstspuninst.exe»
Security Update for Windows XP (KB971961)—>»C:WINDOWS$NtUninstallKB971961$spuninstspuninst.exe»
Security Update for Windows XP (KB973354)—>»C:WINDOWS$NtUninstallKB973354$spuninstspuninst.exe»
Security Update for Windows XP (KB973507)—>»C:WINDOWS$NtUninstallKB973507$spuninstspuninst.exe»
Security Update for Windows XP (KB973525)—>»C:WINDOWS$NtUninstallKB973525$spuninstspuninst.exe»
Security Update for Windows XP (KB973869)—>»C:WINDOWS$NtUninstallKB973869$spuninstspuninst.exe»
Security Update for Windows XP (KB973904)—>»C:WINDOWS$NtUninstallKB973904$spuninstspuninst.exe»
Security Update for Windows XP (KB974112)—>»C:WINDOWS$NtUninstallKB974112$spuninstspuninst.exe»
Security Update for Windows XP (KB974318)—>»C:WINDOWS$NtUninstallKB974318$spuninstspuninst.exe»
Security Update for Windows XP (KB974392)—>»C:WINDOWS$NtUninstallKB974392$spuninstspuninst.exe»
Security Update for Windows XP (KB974455)—>»C:WINDOWS$NtUninstallKB974455$spuninstspuninst.exe»
Security Update for Windows XP (KB974571)—>»C:WINDOWS$NtUninstallKB974571$spuninstspuninst.exe»
Security Update for Windows XP (KB975025)—>»C:WINDOWS$NtUninstallKB975025$spuninstspuninst.exe»
Security Update for Windows XP (KB975467)—>»C:WINDOWS$NtUninstallKB975467$spuninstspuninst.exe»
SilkRoad Online—>»E:Program FilesAstrum Online EntertainmentSilkRoad Onlineunins000.exe»
Skype™ 4.1—>MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
SlimBrowser (remove only)—>»C:Program FilesSlimBrowseruninst.exe»
Sony Noise Reduction Plug-In 2.0h—>MsiExec.exe /X{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}
Sony Sound Forge 9.0—>MsiExec.exe /X{4AEA9A23-D627-4699-8A0F-FC474308C2E6}
Sony Vegas Pro 8.0—>MsiExec.exe /X{B7E2A724-2774-4AC2-9F0A-B58C7319B6E6}
Star Wars: The Force Unleashed—>»E:Program FilesAspyrStar Wars The Force Unleashedunins000.exe»
Steam—>MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Tasker v3.13—>»C:Program FilesTasker3.13uninstall.exe»
Texas Hold’em Poker 3D — Deluxe Edition 1.0—>»C:Program FilesPlay+SmileTexas Hold’em Poker 3D — Deluxe Editionunins000.exe»
Trust 100K Series Webcam—>C:Program FilesInstallShield Installation Information{C679F9B9-C65D-4C65-BD6C-BF90B859E281}setup.exe -runfromtemp -l0x0009 -removeonly
Ultimate Ninja4Naruto Shippuden—>»E:Program FilesPS2_PCUltimate Ninja4Naruto Shippudenunins000.exe»
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)—>C:WINDOWSsystem32msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=»»
Update for Microsoft Windows (KB971513)—>»C:WINDOWS$NtUninstallKB971513$spuninstspuninst.exe»
Update for Windows Internet Explorer 8 (KB975364)—>»C:WINDOWSie8updatesKB975364-IE8spuninstspuninst.exe»
Update for Windows Internet Explorer 8 (KB976749)—>»C:WINDOWSie8updatesKB976749-IE8spuninstspuninst.exe»
Update for Windows XP (KB943729)—>»C:WINDOWS$NtUninstallKB943729$spuninstspuninst.exe»
Update for Windows XP (KB951978)—>»C:WINDOWS$NtUninstallKB951978$spuninstspuninst.exe»
Update for Windows XP (KB967715)—>»C:WINDOWS$NtUninstallKB967715$spuninstspuninst.exe»
Update for Windows XP (KB968389)—>»C:WINDOWS$NtUninstallKB968389$spuninstspuninst.exe»
Update for Windows XP (KB971737)—>»C:WINDOWS$NtUninstallKB971737$spuninstspuninst.exe»
Update for Windows XP (KB973687)—>»C:WINDOWS$NtUninstallKB973687$spuninstspuninst.exe»
Update for Windows XP (KB973815)—>»C:WINDOWS$NtUninstallKB973815$spuninstspuninst.exe»
Update Manager B08.1027.1—>C:PROGRA~1COMMON~1INSTAL~1Driver11INTEL3~1IDriver.exe /M{4E25C468-7745-4051-8B37-4A2C6635BA8B}
Ventrilo—>MsiExec.exe /I{789289CA-F73A-4A16-A331-54D498CE069F}
Windows Internet Explorer 8—>»C:WINDOWSie8spuninstspuninst.exe»
Windows Media Format 11 runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Windows Media Format 11 runtime—>»C:WINDOWS$NtUninstallWMFDist11$spuninstspuninst.exe»
Windows Media Player 11—>»C:Program FilesWindows Media PlayerSetup_wm.exe» /Uninstall
Windows Media Player 11—>»C:WINDOWS$NtUninstallwmp11$spuninstspuninst.exe»
Windows PowerShell(TM) 1.0 MUI pack—>»C:WINDOWS$NtUninstallKB926141$spuninstspuninst.exe»
Windows PowerShell(TM) 1.0—>»C:WINDOWS$NtUninstallKB926139-v2$spuninstspuninst.exe»
Windows Search 4.0—>»C:WINDOWS$NtUninstallKB940157$spuninstspuninst.exe»
Windows XP Service Pack 3—>»C:WINDOWS$NtServicePackUninstall$spuninstspuninst.exe»
WinRAR archiver—>C:Program FilesWinRARuninstall.exe
Кодировщик Windows Media 9 Series—>msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Кодировщик Windows Media 9 Series—>MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Легенда — Наследие Драконов (с графикой, с плагинами), Версия 2—>»C:Program FilesITTerritoryDragonsunins000.exe»
Пиратия Online 1.38.001—>»C:Program FilesNival OnlineПиратия Onlineunins000.exe»

======Hosts File======

209.85.129.99 msnfix.changelog.fr
209.85.129.99 http://www.incodesolutions.com
209.85.129.99 virusinfo.prevx.com
209.85.129.99 download.bleepingcomputer.com
209.85.129.99 http://www.dazhizhu.cn
209.85.129.99 foro.noticias3d.com
209.85.129.99 http://www.spybotupdates.com
209.85.129.99 club.myce.com
209.85.129.99 http://www.nabble.com
209.85.129.99 lurker.clamav.net

======Security center information======

AV: ESET Smart Security 4.0
FW: Персональный файервол ESET

======System event log======

Computer Name: DATORS
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 4652
Source Name: Tcpip
Time Written: 20091213100546.000000+120
Event Type: warning
User:

Computer Name: DATORS
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 4592
Source Name: Tcpip
Time Written: 20091211202026.000000+120
Event Type: warning
User:

Computer Name: DATORS
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 4587
Source Name: Tcpip
Time Written: 20091211141847.000000+120
Event Type: warning
User:

Computer Name: DATORS
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 4523
Source Name: Tcpip
Time Written: 20091210183218.000000+120
Event Type: warning
User:

Computer Name: DATORS
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 4459
Source Name: Tcpip
Time Written: 20091210133334.000000+120
Event Type: warning
User:

=====Application event log=====

Computer Name: DATORS
Event Code: 5603
Message: A provider, OffProv11, has been registered in the WMI namespace, RootMSAPPS11, but did not specify the HostingModel property. This provider will be run using the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality.

Record Number: 334
Source Name: WinMgmt
Time Written: 20091107022426.000000+120
Event Type: warning
User: NT AUTHORITYSYSTEM

Computer Name: DATORS
Event Code: 5603
Message: A provider, OffProv11, has been registered in the WMI namespace, RootMSAPPS11, but did not specify the HostingModel property. This provider will be run using the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality.

Record Number: 333
Source Name: WinMgmt
Time Written: 20091107022426.000000+120
Event Type: warning
User: NT AUTHORITYSYSTEM

Computer Name: DATORS
Event Code: 3024
Message: The update cannot be started because the content sources cannot be accessed. Fix the errors and try the update again.

Context: Application, SystemIndex Catalog

Record Number: 332
Source Name: Windows Search Service
Time Written: 20091107021143.000000+120
Event Type: error
User:

Computer Name: DATORS
Event Code: 3036
Message: The content source cannot be accessed.

Context: Application, SystemIndex Catalog

Details:
(0x81270005)

Record Number: 331
Source Name: Windows Search Service
Time Written: 20091107021143.000000+120
Event Type: warning
User:

Computer Name: DATORS
Event Code: 1020
Message: Updates to the IIS metabase were aborted because IIS is either not installed or is disabled on this machine. To configure ASP.NET to run in IIS, please install or enable IIS and re-register ASP.NET using aspnet_regiis.exe /i.

Record Number: 314
Source Name: ASP.NET 2.0.50727.0
Time Written: 20091106220550.000000+120
Event Type: warning
User:

======Environment variables======

«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;C:Program FilesATI TechnologiesATI.ACECore-Static;C:WINDOWSsystem32WindowsPowerShellv1.0
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 23 Stepping 10, GenuineIntel
«PROCESSOR_REVISION»=170a
«NUMBER_OF_PROCESSORS»=2
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.PSC1
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«RGSCLauncher»=C:Program FilesRockstar GamesRockstar Games Social Club
«RGSC»=C:Program FilesRockstar GamesRockstar Games Social Club1_0_0_0

---

EOF

---

Помогите избавится от вируса без переустановки винди,на админский акаунт зайти немогу.

[Admin]

Здравствуйте, добро пожаловать на Spyware-ru форум.

Вы вставили главный RSIT лог (log.txt) без верхней части.
Перезапустите программу и получившийся лог вставьте ваше следующее сообщение.

[Автор]

Сообщения