выскакивает неубирающаяся реклама поверх окон

[mat]

Выскакивает по центру экрана. Окно не передвигается и не отключается. Для дэзакцивации требует отослать смс. Мой антивирь web ничего не находит, spybot тоже не помог. С плагинами браузера( у меня опера) реклама общего вроде не имеет) Заранее спасибо за помощь.
Логи rsit’a :
log.txt
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Acer at 2009-12-21 18:00:26
Microsoft® Windows Vista™ Ultimate Service Pack 1
System drive C: has 51 GB (24%) free of 215 GB
Total RAM: 2813 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:01:58, on 21.12.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:Windowssystem32taskeng.exe
C:Windowssystem32Dwm.exe
C:Windowsexplorer.exe
C:Program FilesFingerprint SensorATSwpNav.exe
C:WindowsSystem32rundll32.exe
C:Program FilesDrWebspiderui.exe
C:Program FilesUSB Safely RemoveUSBSafelyRemove.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesSpybot — Search & DestroyTeaTimer.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesTotal CommanderTotalcmd.exe
C:Program FilesOperaopera.exe
C:WindowsSystem32mobsync.exe
C:DownloadsRSIT.exe
C:Program Filestrend microAcer.exe

R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.bsplayer-search.com/startpage
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
F2 — REG:system.ini: Shell=explorer.exe rundll32.exe
O1 — Hosts: 210.51.166.249 odnoklasniki.ru
O1 — Hosts: 210.51.166.249 http://www.odnoklasniki.ru
O1 — Hosts: 210.51.166.249 vkontakte.ru
O1 — Hosts: 210.51.166.249 odnoklassniki.ru
O1 — Hosts: 210.51.166.249 http://www.odnoklassniki.ru
O1 — Hosts: 210.51.166.249 http://www.vkontakte.ru
O1 — Hosts: 210.51.166.249 http://www.vkontakte.ru
O2 — BHO: AskBar BHO — {201f27d4-3704-41d6-89c1-aa35e39143ed} — C:Program FilesAskBarDisbarbinaskBar.dll
O2 — BHO: flashget urlcatch — {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} — C:Program FilesFlashGetjccatch.dll
O2 — BHO: Spybot-S&D IE Protection — {53707962-6F74-2D53-2644-206D7942484F} — C:PROGRA~1SPYBOT~1SDHelper.dll
O2 — BHO: Доступ к платному контенту FieryAds v2.0.2 — {6D125299-C2A9-4DBC-BEC3-6F7124E39A41} — C:UsersAcerAppDataRoamingFieryAdsFieryAds.dll
O2 — BHO: TBSB03223 — {B4806C1A-FE8A-4008-9DA3-8CEDB6E82C10} — C:Program FilesWebMoney Advisorwmadvisor.dll
O2 — BHO: Microsoft Web Test Recorder 9.0 Helper — {E31CE47F-C268-41ba-897B-B415E613947D} — C:Program FilesMicrosoft Visual Studio 9.0Common7IDEPrivateAssembliesMicrosoft.VisualStudio.QualityTools.RecorderBarBHO90.dll
O2 — BHO: FlashGet GetFlash Class — {F156768E-81EF-470C-9057-481BA8380DBA} — C:Program FilesFlashGetgetflash.dll
O3 — Toolbar: Ask Toolbar — {3041d03e-fd4b-44e0-b742-2d9b88305f98} — C:Program FilesAskBarDisbarbinaskBar.dll
O3 — Toolbar: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O3 — Toolbar: BS.Player ControlBar — {2C688203-7EB3-4327-9995-1CB417BA23F9} — C:Program FilesBS.Player ControlBarBSToolbar.dll
O4 — HKLM..Run: [ATSwpNav] «C:Program FilesFingerprint SensorATSwpNav.exe» -run
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:Windowssystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:Windowssystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [SpIDerNT] C:PROGRA~1DrWebspiderui.exe /agent
O4 — HKLM..Run: [SpIDerMail] «C:Program FilesDrWebspiderml.exe»
O4 — HKCU..Run: [USB Safely Remove] C:Program FilesUSB Safely RemoveUSBSafelyRemove.exe /startup
O4 — HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
O4 — HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot — Search & DestroyTeaTimer.exe
O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘NETWORK SERVICE’)
O8 — Extra context menu item: &Закачать все при помощи FlashGet — C:Program FilesFlashGetjc_all.htm
O8 — Extra context menu item: &Закачать при помощи FlashGet — C:Program FilesFlashGetjc_link.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MIF269~1OFFICE11EXCEL.EXE/3000
O9 — Extra button: Quick-Launching Area — {10954C80-4F0F-11d3-B17C-00C0DFE39736} — C:Program FilesAcerAcer Bio ProtectionPwdBank.exe
O9 — Extra ‘Tools’ menuitem: Quick-Launching Area — {10954C80-4F0F-11d3-B17C-00C0DFE39736} — C:Program FilesAcerAcer Bio ProtectionPwdBank.exe
O9 — Extra button: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O9 — Extra ‘Tools’ menuitem: WebMoney Advisor — {3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — C:Program FilesWebMoney Advisorwmadvisor.dll
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MIF269~1OFFICE11REFIEBAR.DLL
O9 — Extra button: FlashGet — {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} — C:Program FilesFlashGetFlashGet.exe
O9 — Extra ‘Tools’ menuitem: FlashGet — {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} — C:Program FilesFlashGetFlashGet.exe
O9 — Extra button: (no name) — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1SPYBOT~1SDHelper.dll
O9 — Extra ‘Tools’ menuitem: Spybot — Search & Destroy Configuration — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1SPYBOT~1SDHelper.dll
O13 — Gopher Prefix:
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: Acronis Scheduler2 Service (AcrSch2Svc) — Acronis — C:Program FilesCommon FilesAcronisSchedule2schedul2.exe
O23 — Service: Autodesk Licensing Service — Autodesk — C:Program FilesCommon FilesAutodesk SharedServiceAdskScSrv.exe
O23 — Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) — Apple Computer, Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
O23 — Service: FLEXnet Licensing Service — Acresso Software Inc. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: iGroupTec Service (IGBASVC) — Unknown owner — C:Program FilesAcerAcer Bio ProtectionBASVC.exe
O23 — Service: Lookout Citadel Server (LkCitadelServer) — National Instruments, Inc. — C:Windowssystem32lkcitdl.exe
O23 — Service: National Instruments PSP Server Locator (lkClassAds) — National Instruments, Inc. — C:Windowssystem32lkads.exe
O23 — Service: National Instruments Time Synchronization (lkTimeSync) — National Instruments, Inc. — C:Windowssystem32lktsrv.exe
O23 — Service: Nero BackItUp Scheduler 3 — Nero AG — C:Program FilesNeroNero8Nero BackItUpNBService.exe
O23 — Service: National Instruments Domain Service (NIDomainService) — National Instruments, Inc. — C:Program FilesNational InstrumentsSharedSecuritynidmsrv.exe
O23 — Service: NI Service Locator (niSvcLoc) — National Instruments Corp. — C:Windowssystem32nisvcloc.exe
O23 — Service: NMIndexingService — Nero AG — C:Program FilesCommon FilesNeroLibNMIndexingService.exe
O23 — Service: NVIDIA Display Driver Service (nvsvc) — NVIDIA Corporation — C:Windowssystem32nvvsvc.exe
O23 — Service: SBSD Security Center Service (SBSDWSCService) — Safer Networking Ltd. — C:Program FilesSpybot — Search & DestroySDWinSec.exe
O23 — Service: SpIDer Guard for Windows (SPIDERNT) — Doctor Web, Ltd. — C:PROGRA~1DrWebspidernt.exe
O23 — Service: StarWind AE Service (StarWindServiceAE) — Rocket Division Software — C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindServiceAE.exe
O23 — Service: USB Safely Remove Assistant (USBSafelyRemoveService) — Unknown owner — C:Program FilesUSB Safely RemoveUSBSRService.exe
O23 — Service: @%systemroot%system32SearchIndexer.exe,-103 (WSearch) — Корпорация Майкрософт — C:Windowssystem32SearchIndexer.exe

—
End of file — 8940 bytes

======Scheduled tasks folder======

C:WindowstasksDr.Web automatic update.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO — C:Program FilesAskBarDisbarbinaskBar.dll [2008-11-18 333192]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl — C:Program FilesFlashGetjccatch.dll [2007-08-06 94308]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection — C:PROGRA~1SPYBOT~1SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{6D125299-C2A9-4DBC-BEC3-6F7124E39A41}]
Доступ к платному контенту FieryAds v2.0.2 — C:UsersAcerAppDataRoamingFieryAdsFieryAds.dll [2009-12-19 668672]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{B4806C1A-FE8A-4008-9DA3-8CEDB6E82C10}]
TBSB03223 Class — C:Program FilesWebMoney Advisorwmadvisor.dll [2008-09-05 2409472]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E31CE47F-C268-41ba-897B-B415E613947D}]
Microsoft Web Test Recorder 9.0 Helper — C:Program FilesMicrosoft Visual Studio 9.0Common7IDEPrivateAssembliesMicrosoft.VisualStudio.QualityTools.RecorderBarBHO90.dll [2007-11-08 64088]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class — C:Program FilesFlashGetgetflash.dll [2007-05-18 163840]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} — Ask Toolbar — C:Program FilesAskBarDisbarbinaskBar.dll [2008-11-18 333192]
{3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840} — WebMoney Advisor — C:Program FilesWebMoney Advisorwmadvisor.dll [2008-09-05 2409472]
{2C688203-7EB3-4327-9995-1CB417BA23F9} — BS.Player ControlBar — C:Program FilesBS.Player ControlBarBSToolbar.dll [2008-08-13 757192]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«ATSwpNav»=C:Program FilesFingerprint SensorATSwpNav.exe [2008-05-30 1163264]
«NvCplDaemon»=C:Windowssystem32NvCpl.dll [2008-04-03 13535776]
«NvMediaCenter»=C:Windowssystem32NvMcTray.dll [2008-04-03 92704]
«SpIDerNT»=C:PROGRA~1DrWebspiderui.exe [2007-10-01 214552]
«SpIDerMail»=C:Program FilesDrWebspiderml.exe [2007-09-19 361712]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«USB Safely Remove»=C:Program FilesUSB Safely RemoveUSBSafelyRemove.exe [2008-12-15 1100048]
«Sidebar»=C:Program FilesWindows Sidebarsidebar.exe [2008-01-21 1233920]
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe [2009-01-26 2144088]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAcronis Scheduler2 Service]
C:Program FilesCommon FilesAcronisSchedule2schedhlp.exe [2008-12-18 165144]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAcronisTimounterMonitor]
C:Program FilesAcronisTrueImageHomeTimounterMonitor.exe [2008-12-18 962160]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAlcoholAutomount]
C:Program FilesAlcohol SoftAlcohol 120axcmd.exe [2008-11-23 203720]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregBgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:Program FilesCommon FilesNeroLibNMBgMonitor.exe [2007-10-23 202024]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCamSpace]
[]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDAEMON Tools]
C:Program FilesDAEMON Toolsdaemon.exe [2006-11-12 157592]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDaemonTools_WhenUSave_Installer]
[]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregDevice Detector]
DevDetect.exe -autorun []

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregFlashget]
C:Program FilesFlashGetflashget.exe [2007-09-25 2007088]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNBKeyScan]
C:Program FilesNeroNero8Nero BackItUpNBKeyScan.exe [2007-09-20 1836328]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
C:Program FilesCommon FilesNeroLibNeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregPLFSetL]
C:WindowsPLFSetL.exe [2007-07-05 94208]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregRtHDVCpl]
C:Program FilesRealtekAudioHDARtHDVCpl.exe [2008-10-31 6609440]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSkype]
C:Program FilesSkypePhoneSkype.exe [2008-12-20 24260392]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregTrueImageMonitor.exe]
C:Program FilesAcronisTrueImageHomeTrueImageMonitor.exe [2008-12-18 4390712]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregVitaKeyPdtWzd]
C:Program FilesAcerAcer Bio ProtectionPdtWzd.exe [2008-10-16 3679744]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregWindows Defender]
C:Program FilesWindows DefenderMSASCui.exe [2008-01-21 1008184]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregwmagent.exe]
C:Program FilesWebMoney Agentwmagent.exe [2009-10-19 210400]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa]
«notification packages»=C:Program FilesAcerAcer Bio ProtectionPwdFilter

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«EnableLUA»=0
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«EnableUIADesktopToggle»=0

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]

======File associations======

.scr — open — «C:Windowssystem32notepad.exe» «%1»
.scr — install —
.scr — config —

======List of files/folders created in the last 1 months======

2009-12-21 18:00:27 —-D—- C:Program Filestrend micro
2009-12-21 18:00:26 —-D—- C:rsit
2009-12-21 00:18:57 —-A—- C:logit.txt
2009-12-20 23:48:01 —-D—- C:ProgramDataSpybot — Search & Destroy
2009-12-20 23:48:01 —-D—- C:Program FilesSpybot — Search & Destroy
2009-12-20 22:51:11 —-D—- C:Program FilesMozilla Firefox
2009-12-19 21:58:48 —-D—- C:UsersAcerAppDataRoaminguTorrent
2009-12-19 17:00:14 —-D—- C:UsersAcerAppDataRoamingFieryAds
2009-12-19 17:00:14 —-D—- C:UsersAcerAppDataRoamingCMedia
2009-12-15 23:05:49 —-A—- C:Windowssystem32rund.dll
2009-12-01 12:15:51 —-SHD—- C:Windowsftpcache
2009-11-27 22:30:12 —-D—- C:Program FilesuTorrent
2009-11-27 13:05:02 —-D—- C:ProgramData2DBoy

======List of files/folders modified in the last 1 months======

2009-12-21 18:00:51 —-D—- C:WindowsPrefetch
2009-12-21 18:00:42 —-D—- C:WindowsTemp
2009-12-21 18:00:27 —-RD—- C:Program Files
2009-12-21 17:56:15 —-D—- C:Downloads
2009-12-21 17:27:15 —-D—- C:WindowsSystem32
2009-12-21 17:27:14 —-D—- C:Windowsinf
2009-12-21 17:27:14 —-A—- C:Windowssystem32PerfStringBackup.INI
2009-12-21 17:11:25 —-D—- C:Program FilesDrWeb
2009-12-20 23:48:01 —-HD—- C:ProgramData
2009-12-20 23:20:58 —-D—- C:WindowsMinidump
2009-12-20 23:20:50 —-D—- C:Windows
2009-12-20 22:51:47 —-D—- C:Program FilesDaemonTools_WhenUSave_Installer
2009-12-20 22:51:40 —-D—- C:UsersAcerAppDataRoamingMozilla
2009-12-20 21:13:33 —-D—- C:Program FilesTotal Commander
2009-12-20 20:30:30 —-D—- C:UsersAcerAppDataRoamingAIMP
2009-12-20 16:08:28 —-D—- C:Program FilesXP Tweaker
2009-12-20 15:39:24 —-D—- C:Program FilesCamSpace
2009-12-20 12:57:43 —-A—- C:WindowsNeroDigital.ini
2009-12-19 23:40:25 —-D—- C:WindowsAddowl
2009-12-19 22:54:34 —-SHD—- C:System Volume Information
2009-12-19 17:42:13 —-D—- C:Program FilesFlashGet
2009-12-18 22:52:21 —-D—- C:UsersAcerAppDataRoamingSkype
2009-12-18 22:49:54 —-D—- C:UsersAcerAppDataRoamingskypePM
2009-12-18 16:59:38 —-D—- C:Windowssystem32catroot2
2009-12-18 00:24:29 —-D—- C:WindowsLhsp
2009-12-10 23:59:30 —-D—- C:UsersAcerAppDataRoamingBSplayer
2009-12-09 18:33:23 —-AD—- C:ProgramDataTEMP
2009-12-09 18:17:02 —-D—- C:UsersAcerAppDataRoamingWebMoney
2009-12-09 13:36:43 —-SD—- C:UsersAcerAppDataRoamingMicrosoft
2009-12-03 17:37:07 —-D—- C:Fraps
2009-12-03 15:33:48 —-SHD—- C:WindowsInstaller
2009-12-01 18:44:07 —-D—- C:ProgramDataMicrosoft Help
2009-12-01 00:05:52 —-D—- C:Program FilesWinRAR
2009-12-01 00:05:06 —-D—- C:Program FilesDAEMON Tools
2009-11-29 16:20:41 —-D—- C:Windowssystem32drivers
2009-11-27 15:44:14 —-D—- C:ProgramDataScreaming Bee
2009-11-27 15:39:19 —-D—- C:UsersAcerAppDataRoamingScreaming Bee

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 CSC;Offline Files Driver; C:Windowssystem32driverscsc.sys [2008-01-21 350720]
R2 cvintdrv;cvintdrv; C:Windowssystem32driverscvintdrv.sys [2005-06-10 7140]
R2 int15;int15; ??C:Windowssystem32driversint15.sys [2008-10-16 69632]
R2 SPIDER;SpIDer Guard File System Monitor; ??C:PROGRA~1DrWebspider.sys [2007-10-01 308600]
R2 tifsfilter;Acronis True Image FS Filter; C:Windowssystem32DRIVERStifsfilt.sys [2009-08-30 44704]
R3 athr;Atheros Extensible Wireless LAN device driver; C:Windowssystem32DRIVERSathr.sys [2008-11-04 952320]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:Windowssystem32DRIVERSATSwpDrv.sys [2008-05-30 146944]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet — NDIS 6.0; C:Windowssystem32DRIVERSb57nd60x.sys [2008-09-29 223232]
R3 CmBatt;Драйвер батареи с ACPI-управлением (Microsoft); C:Windowssystem32DRIVERSCmBatt.sys [2008-01-21 14208]
R3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2006-11-02 235520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:Windowssystem32driversRTKVHDA.sys [2008-10-31 2231456]
R3 nvlddmkm;nvlddmkm; C:Windowssystem32DRIVERSnvlddmkm.sys [2008-04-03 7444672]
R3 nvsmu;nvsmu; C:Windowssystem32DRIVERSnvsmu.sys [2008-08-24 15872]
R3 SCREAMINGBDRIVER;Screaming Bee Audio; C:Windowssystem32driversScreamingBAudio.sys [2009-03-27 23064]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:Windowssystem32DRIVERSsnp2uvc.sys [2007-10-01 1769984]
R3 tenCapture;tenCapture; C:Windowssystem32DRIVERStenCapture.sys [2007-04-21 9344]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32DRIVERSwmiacpi.sys [2008-01-21 11264]
S3 atm3lxju;atm3lxju; C:Windowssystem32driversatm3lxju.sys []
S3 aw1znv6i;aw1znv6i; C:Windowssystem32driversaw1znv6i.sys []
S3 BthEnum;Драйвер блока запроса Bluetooth; C:Windowssystem32DRIVERSBthEnum.sys [2008-01-21 19456]
S3 BthPan;Устройства Bluetooth (личной сети); C:Windowssystem32DRIVERSbthpan.sys [2008-01-21 92160]
S3 BTHPORT;Драйвер порта Bluetooth; C:WindowsSystem32DriversBTHport.sys [2008-09-12 220160]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WindowsSystem32DriversBTHUSB.sys [2008-09-12 29184]
S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
S3 GarenaPEngine;GarenaPEngine; ??C:UsersAcerAppDataLocalTempHCE4BC7.tmp [2009-12-19 25616]
S3 JMCR;JMCR; C:Windowssystem32DRIVERSjmcr.sys [2008-12-29 109920]
S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:Windowssystem32DRIVERSrfcomm.sys [2008-01-21 49664]
S3 sdbus;sdbus; C:Windowssystem32DRIVERSsdbus.sys [2008-01-21 88576]
S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:Windowssystem32DRIVERSSE27bus.sys [2006-05-15 61600]
S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:Windowssystem32DRIVERSSE27mdfl.sys [2006-05-15 9360]
S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:Windowssystem32DRIVERSSE27mdm.sys [2006-05-15 97184]
S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:Windowssystem32DRIVERSSE27mgmt.sys [2006-05-15 88688]
S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:Windowssystem32DRIVERSse27nd5.sys [2006-05-15 18704]
S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:Windowssystem32DRIVERSSE27obex.sys [2006-05-15 86560]
S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:Windowssystem32DRIVERSse27unic.sys [2006-05-15 90800]
S3 usbvideo;USB-видеоустройство (WDM); C:WindowsSystem32Driversusbvideo.sys [2008-01-21 134016]
S3 WpdUsb;WpdUsb; C:Windowssystem32DRIVERSwpdusb.sys [2008-01-21 39936]
S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcrSch2Svc;Acronis Scheduler2 Service; C:Program FilesCommon FilesAcronisSchedule2schedul2.exe [2008-12-18 554264]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:Program FilesBonjourmDNSResponder.exe [2006-02-28 229376]
R2 BthServ;@%SystemRoot%System32bthserv.dll,-101; C:Windowssystem32svchost.exe [2008-01-21 21504]
R2 CscService;@%systemroot%system32cscsvc.dll,-200; C:WindowsSystem32svchost.exe [2008-01-21 21504]
R2 IGBASVC;iGroupTec Service; C:Program FilesAcerAcer Bio ProtectionBASVC.exe [2008-10-16 3602432]
R2 LkCitadelServer;Lookout Citadel Server; C:Windowssystem32lkcitdl.exe [2005-08-25 688190]
R2 lkClassAds;National Instruments PSP Server Locator; C:Windowssystem32lkads.exe [2005-10-11 45056]
R2 lkTimeSync;National Instruments Time Synchronization; C:Windowssystem32lktsrv.exe [2005-10-11 53248]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGmdm.exe [2006-10-26 335872]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnsqlservr.exe [2007-02-10 29178224]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:Program FilesNeroNero8Nero BackItUpNBService.exe [2007-09-20 853288]
R2 NIDomainService;National Instruments Domain Service; C:Program FilesNational InstrumentsSharedSecuritynidmsrv.exe [2005-10-11 204800]
R2 niSvcLoc;NI Service Locator; C:Windowssystem32nisvcloc.exe [2005-10-10 49152]
R2 nvsvc;NVIDIA Display Driver Service; C:Windowssystem32nvvsvc.exe [2008-04-03 118784]
R2 SBSDWSCService;SBSD Security Center Service; C:Program FilesSpybot — Search & DestroySDWinSec.exe [2009-01-26 1153368]
R2 SPIDERNT;SpIDer Guard for Windows; C:PROGRA~1DrWebspidernt.exe [2007-10-01 218648]
R2 SQLWriter;SQL Server VSS Writer; c:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe [2007-02-10 89968]
R2 USBSafelyRemoveService;USB Safely Remove Assistant; C:Program FilesUSB Safely RemoveUSBSRService.exe [2008-12-15 208144]
S2 StarWindServiceAE;StarWind AE Service; C:Program FilesAlcohol SoftAlcohol 120StarWindStarWindServiceAE.exe [2007-05-28 275968]
S3 AppMgmt;@appmgmts.dll,-3250; C:Windowssystem32svchost.exe [2008-01-21 21504]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:Program FilesCommon FilesAutodesk SharedServiceAdskScSrv.exe [2009-09-02 85096]
S3 Fax;@%systemroot%system32fxsresm.dll,-118; C:Windowssystem32fxssvc.exe [2008-01-21 523776]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2009-10-18 655624]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]
S3 NMIndexingService;NMIndexingService; C:Program FilesCommon FilesNeroLibNMIndexingService.exe [2007-10-23 382248]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 UmRdpService;@%SystemRoot%system32umrdp.dll,-1000; C:WindowsSystem32svchost.exe [2008-01-21 21504]
S3 wbengine;@%systemroot%system32wbengine.exe,-104; C:Windowssystem32wbengine.exe [2008-01-21 917504]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:Program FilesMicrosoft SQL Server90Sharedsqladhlp90.exe [2005-10-14 45272]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:Program FilesMicrosoft Visual Studio 9.0Common7IDERemote Debuggerx86msvsmon.exe [2007-11-07 3004416]
S4 SQLBrowser;SQL Server Browser; c:Program FilesMicrosoft SQL Server90Sharedsqlbrowser.exe [2007-02-10 242544]

---

EOF

---

info.txt

info.txt logfile of random’s system information tool 1.06 2009-12-21 18:02:02

======Uninstall list======

—>C:Program FilesNeroNero8\nerouninstallUNNERO.exe /UNINSTALL
—>C:WindowsUNNeroBackItUp.exe /UNINSTALL
—>C:WindowsUNNeroMediaHome.exe /UNINSTALL
—>C:WindowsUNNeroShowTime.exe /UNINSTALL
—>C:WindowsUNNeroVision.exe /UNINSTALL
—>C:WindowsUNRecode.exe /UNINSTALL
—>msiexec /package {90120000-0015-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-0016-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-0018-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-0019-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-001A-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-001B-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-001F-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-001F-0422-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-0044-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-006E-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-00A1-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
—>msiexec /package {90120000-00BA-0419-0000-0000000FF1CE} /uninstall {0A213585-8750-470F-B8D1-D022DB103AAF}
µTorrent—>»C:Program FilesuTorrentuTorrent.exe» /UNINSTALL
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-0015-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-0016-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-0018-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-0019-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-001A-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-001B-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-001F-0419-0000-0000000FF1CE} /uninstall {D7CE14BC-96D9-41C5-822D-F5B1C2C35AA2}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-001F-0422-0000-0000000FF1CE} /uninstall {DC154E48-5278-423A-80A1-B93247E38A1A}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-0044-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-006E-0419-0000-0000000FF1CE} /uninstall {23653CA5-BFB5-4B52-B2DA-045D7ABEB874}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-00A1-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
2007 Microsoft Office Suite Service Pack 1 (SP1)—>msiexec /package {90120000-00BA-0419-0000-0000000FF1CE} /uninstall {1AD50F4A-04F7-4944-BD47-4421532548F5}
ACDSee 10 Photo Manager—>MsiExec.exe /I{119E769A-C45B-47E1-A43C-14581D6058F9}
Acer Bio Protection—>»C:Program FilesInstallShield Installation Information{9428A68A-9B43-473D-9771-FDA1D15B4C0D}setup.exe» -runfromtemp -l0x0419 -removeonly
Acer Bio Protection—>MsiExec.exe /X{9428A68A-9B43-473D-9771-FDA1D15B4C0D}
Acer Crystal Eye Webcam 2.0.9.1—>C:Program FilesInstallShield Installation Information{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}setup.exe -runfromtemp -l0x0009 -removeonly
Acer Crystal Eye webcam Ver:1.1.63.707—>C:Program FilesInstallShield Installation Information{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}setup.exe -runfromtemp -l0x0009 -removeonly
Acer Crystal Eye Webcam Video Class Camera —>C:Program FilesInstallShield Installation Information{399C37FB-08AF-493B-BFED-20FBD85EDF7F}setup.exe -runfromtemp -l0x0019 -removeonly -u
Acronis RecoveryExpert—>C:Program FilesAcronisRecoveryExpertMediaBuilder.exe -uninstall
Acronis True Image Home—>MsiExec.exe /X{37C8899D-FD70-481F-94AA-1F1B08765E22}
Adobe AIR—>C:Program FilesCommon FilesAdobe AIRVersions1.0ResourcesAdobe AIR Updater.exe -arp:uninstall
Adobe AIR—>MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
Adobe Anchor Service CS3—>MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3—>MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3—>MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting—>MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Camera Raw 4.0—>MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps CS4—>MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}
Adobe Color — Photoshop Specific—>MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color EU Recommended Settings—>MsiExec.exe /I{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}
Adobe Color JA Extra Settings—>MsiExec.exe /I{D92B72E2-C854-4738-8ED6-4C3661CC17AE}
Adobe Color NA Extra Settings—>MsiExec.exe /I{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}
Adobe Default Language CS4—>MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}
Adobe Device Central CS3—>MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe ExtendScript Toolkit 2—>MsiExec.exe /I{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}
Adobe Flash Player 10 Plugin—>C:Windowssystem32MacromedFlashuninstall_plugin.exe
Adobe Fonts All—>MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
Adobe Help Viewer CS3—>MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Linguistics CS3—>MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe Media Player—>msiexec /qb /x {39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Adobe Media Player—>MsiExec.exe /I{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Adobe PDF Library Files CS4—>MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}
Adobe Photoshop CS3—>C:Program FilesCommon FilesAdobeInstallersd5fe1f44895aadff2baacf24fe1402Setup.exe
Adobe Photoshop CS3—>MsiExec.exe /I{FD0399AC-A38B-4D4B-8164-D7B73AC24030}
Adobe Setup—>MsiExec.exe /I{30981FCD-4150-4AB4-BAC5-75C9E914347D}
Adobe Stock Photos CS3—>MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support CS4—>MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
Adobe Update Manager CS3—>MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client—>MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe WinSoft Linguistics Plugin—>MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3—>MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
AdobeColorCommonSetRGB—>MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
AIMP2—>C:Program FilesAIMP2Uninstall.exe
Ask Toolbar—>»C:Program FilesAskBarDisunins000.exe»
AuthenTec Fingerprint Sensor Minimum Install—>MsiExec.exe /X{31A5ED9F-E07B-4F6E-8179-27325BAAC502}
AutoCAD 2008 — Русский—>C:Program FilesAutoCAD 2008SetupSetup.exe /P {5783F2D7-6001-0419-0002-0060B0CE6BBA} /M ACAD
Babo Violent 2.09—>»E:ИгрыBabo Violent 2unins000.exe»
BDE_ENT—>MsiExec.exe /I{E966F0CC-76B3-11D3-945B-00C04FB1760A}
BS.Player ControlBar—>C:Program FilesBS.Player ControlBaruninst.exe
BS.Player FREE—>»C:Program FilesWebtehBSplayeruninstall.exe»
CityInfo 2.7—>»C:Program FilesCityInfounins000.exe»
Defraggler 1.4.98—>rundll32.exe advpack.dll,LaunchINFSection C:WindowsINFDefraggler.inf,Uninstall
Dr.Web—>C:Program FilesInstallShield Installation Information{BBE2F69C-4338-11D7-8F0C-00A0244F4E2D}setup.exe -runfromtemp -l0x0019 -removeonly
Electronics Workbench V5.12—>C:Windowsiun3405.exe C:Program FilesEWB512
EVEREST Ultimate Edition—>rundll32.exe advpack.dll,LaunchINFSection Everest.inf,Uninstall
EVEREST Ultimate—>rundll32.exe advpack.dll,LaunchINFSection C:WindowsINFEverest4.inf,Uninstall
EWB Shared Components—>MsiExec.exe /X{07FB1A47-5D14-47A2-BC3C-A3481ABBB957}
FlashGet 1.9.6.1073—>C:Program FilesFlashGetuninst.exe
Foxit Reader—>C:Program FilesFoxit SoftwareFoxit ReaderUninstall.exe
Fraps (remove only)—>»C:Frapsuninstall.exe»
HijackThis 2.0.2—>»C:Program Filestrend microHijackThis.exe» /uninstall
JMicron Flash Media Controller Driver—>»C:Program FilesJMicronJMCR_DIRsetup.exe» delpkg
KMPlayer 2.9.4.1433—>»C:Program FilesKMPlayerunins000.exe»
L&H TTS3000 Deutsch—>RunDll32 advpack.dll,LaunchINFSection C:WindowsINFLHTTSGED.inf, Uninstall
L&H TTS3000 Espaсol—>RunDll32 advpack.dll,LaunchINFSection C:WindowsINFLHTTSSPE.inf, Uninstall
L&H TTS3000 Franзais—>RunDll32 advpack.dll,LaunchINFSection C:WindowsINFLHTTSFRF.inf, Uninstall
L&H TTS3000 Italiano—>RunDll32 advpack.dll,LaunchINFSection C:WindowsINFLHTTSITI.inf, Uninstall
L&H TTS3000 Russian—>RunDll32 advpack.dll,LaunchINFSection C:WindowsINFLHTTSRUR.inf, Uninstall
Lernout & Hauspie TruVoice American English TTS Engine—>RunDll32 advpack.dll,LaunchINFSection C:WindowsINFtv_enua.inf, Uninstall
Light Alloy 4.3.306—>»C:Program FilesLight Alloyunins000.exe»
Mathcad 14 Help—>MsiExec.exe /I{205ACCD7-5342-4694-91F3-3A99E4FD5AA6}
Mathcad 14 Resource Center—>MsiExec.exe /I{EBD38AE9-D52D-448D-9DB4-4D5F66E1DAFC}
Mathcad 14—>MsiExec.exe /I{E666A69B-A76D-43D5-AF28-4B2150A6EDE2}
Microsoft .NET Framework 3.5—>C:WindowsMicrosoft.NETFrameworkv3.5Microsoft .NET Framework 3.5setup.exe
Microsoft .NET Framework 3.5—>MsiExec.exe /I{2FC099BD-AC9B-33EB-809C-D332E1B27C40}
Microsoft Device Emulator version 3.0 — ENU—>MsiExec.exe /X{B32E7732-B2FB-3FD0-81AC-6025B1104C66}
Microsoft Document Explorer 2008—>C:Program FilesCommon FilesMicrosoft SharedHelp 9Microsoft Document Explorer 2008install.exe
Microsoft Document Explorer 2008—>MsiExec.exe /X{6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D}
Microsoft Games for Windows — LIVE Redistributable—>MsiExec.exe /X{2E660A2A-A55F-43CD-9F73-CAD7382EEB78}
Microsoft Games for Windows — LIVE—>MsiExec.exe /X{F112F66E-25CA-42DD-983C-6118EB38F606}
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Microsoft Office Access MUI (Russian) 2007—>MsiExec.exe /X{90120000-0015-0419-0000-0000000FF1CE}
Microsoft Office Enterprise 2007—>»C:Program FilesCommon FilesMicrosoft SharedOFFICE12Office Setup Controllersetup.exe» /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007—>MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Russian) 2007—>MsiExec.exe /X{90120000-0016-0419-0000-0000000FF1CE}
Microsoft Office FrontPage 2003—>MsiExec.exe /I{90170419-6000-11D3-8CFE-0150048383C9}
Microsoft Office Groove MUI (Russian) 2007—>MsiExec.exe /X{90120000-00BA-0419-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Russian) 2007—>MsiExec.exe /X{90120000-0044-0419-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Russian) 2007—>MsiExec.exe /X{90120000-00A1-0419-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Russian) 2007—>MsiExec.exe /X{90120000-001A-0419-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Russian) 2007—>MsiExec.exe /X{90120000-0018-0419-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007—>MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007—>MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Russian) 2007—>MsiExec.exe /X{90120000-001F-0419-0000-0000000FF1CE}
Microsoft Office Proof (Ukrainian) 2007—>MsiExec.exe /X{90120000-001F-0422-0000-0000000FF1CE}
Microsoft Office Proofing (Russian) 2007—>MsiExec.exe /X{90120000-002C-0419-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Russian) 2007—>MsiExec.exe /X{90120000-0019-0419-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007—>MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (Russian) 2007—>MsiExec.exe /X{90120000-006E-0419-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007—>MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Visual Web Developer 2007—>MsiExec.exe /X{90120000-0021-0000-0000-0000000FF1CE}
Microsoft Office Visual Web Developer MUI (English) 2007—>MsiExec.exe /X{90120000-0021-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (Russian) 2007—>MsiExec.exe /X{90120000-001B-0419-0000-0000000FF1CE}
Microsoft SQL Server 2005 Express Edition (SQLEXPRESS)—>MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}
Microsoft SQL Server 2005 Tools Express Edition—>MsiExec.exe /I{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}
Microsoft SQL Server 2005—>»c:Program FilesMicrosoft SQL Server90Setup BootstrapARPWrapper.exe» /Remove
Microsoft SQL Server Compact 3.5 Design Tools ENU—>MsiExec.exe /X{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}
Microsoft SQL Server Compact 3.5 ENU—>MsiExec.exe /I{BCC899FE-2DAA-460C-A5FB-60291E73D9C3}
Microsoft SQL Server Compact 3.5 for Devices ENU—>MsiExec.exe /I{241F2BF7-69EB-42A4-9156-96B2426C7504}
Microsoft SQL Server Native Client—>MsiExec.exe /I{F9B3DD02-B0B3-42E9-8650-030DFF0D133D}
Microsoft SQL Server Setup Support Files (English)—>MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}
Microsoft SQL Server VSS Writer—>MsiExec.exe /I{E9F44C98-B8B6-480F-AF7B-E42A0A46F4E3}
Microsoft Visual J# 2.0 Redistributable Package—>C:WindowsMicrosoft.NETFrameworkv2.0.50727Microsoft Visual J# 2.0 Redistributable Packageinstall.exe
Microsoft Visual Studio 2005 Tools for Office Runtime—>MsiExec.exe /X{388E4B09-3E71-4649-8921-F44A3A2954A7}
Microsoft Visual Studio Team System 2008 Team Suite — ENU—>C:Program FilesMicrosoft Visual Studio 9.0Microsoft Visual Studio Team System 2008 Team Suite — ENUsetup.exe
Microsoft Visual Studio Web Authoring Component—>»C:Program FilesCommon FilesMicrosoft SharedOFFICE12Office Setup Controllersetup.exe» /uninstall VISUALWEBDEVELOPER /dll OSETUP.DLL
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools—>MsiExec.exe /X{05EC21B8-4593-3037-A781-A6B5AFFCB19D}
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries—>MsiExec.exe /X{842FAF7C-50EF-4463-9B8F-6222E1384D7D}
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense—>MsiExec.exe /X{64c5b887-b5ee-42b8-8596-78905a6b5f1f}
Microsoft Windows SDK for Visual Studio 2008 Tools—>MsiExec.exe /X{CAA376AF-0DE8-4FCA-942E-C6AC579B94B3}
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools—>MsiExec.exe /X{B268E9A1-04A9-40D0-9866-846BE2B74BA7}
MorphVOX Pro—>MsiExec.exe /I{62DAB694-358E-4C6F-82BF-26DA64B297A6}
Mozilla Firefox (3.0.5)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
MSDN Library for Visual Studio 2008 — ENU—>C:Program FilesMSDNMSDN9.0MSDN Library for Visual Studio 2008 — ENUsetup.exe
MSDN Library for Visual Studio 2008 — ENU—>MsiExec.exe /X{3A762A82-618D-3CAA-B847-D074ABFA0B2E}
Multisim 9—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime101Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{DCDD061F-3797-42C1-96E4-4B897C73E2B4}setup.exe» -l0x9 -removeonly
National Instruments Software—>»C:Program FilesNational InstrumentsSharedNIUninstalleruninst.exe»
Nero 8—>MsiExec.exe /X{76308844-456A-4D76-99CA-511F0DED1049}
neroxml—>MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NI EULA Depot—>MsiExec.exe /I{60FC2242-9CF5-4264-B02A-A4A86447F560}
NI MDF Support—>MsiExec.exe /I{28C59BDD-55F3-4454-BF17-37AC537F894B}
Notepad++—>C:Program FilesNotepad++uninstall.exe
NVIDIA Drivers—>C:Windowssystem32NVUNINST.EXE UninstallGUI
Opera 9.63—>MsiExec.exe /X{1BC4026B-1957-4514-9058-2B542557F143}
PDF Settings—>MsiExec.exe /I{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}
Plugins for Opera—>»C:Program FilesDUHALABPluginunins000.exe»
PROMT Expert 8 Giant Try-Buy—>MsiExec.exe /I{A4F761F7-FBC8-49BF-BC37-15550C3EAA85}
Rave Reports 7.6.0 BE—>»C:Program FilesCodeGearRAD Studio6.0RaveReportsunins000.exe»
Realtek High Definition Audio Driver—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}Setup.exe» -removeonly
S.T.A.L.K.E.R. — Shadow of Chernobyl—>»E:ИгрыS.T.A.L.K.E.R. — Shadow of Chernobylunins000.exe»
Skype™ Beta 4.0—>MsiExec.exe /X{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}
SpeedSim—>E:ИгрыSpeedSimuninst.exe
Spybot — Search & Destroy—>»C:Program FilesSpybot — Search & Destroyunins000.exe»
SSIII Solo Ultratus 1.2—>E:ИгрымелочьSwords and sandalsSSIII Solo Ultratusuninst.exe
STDU Viewer—>»C:Program FilesSTDU Viewerunins000.exe»
Total Commander 7.04 PowerPack—>»C:Program FilesTotal Commanderuninstall.exe»
Unlocker 1.8.7—>C:Program FilesUnlockeruninst.exe
USB Safely Remove 4.0—>»C:Program FilesUSB Safely Removeunins000.exe»
VC Runtimes MSI—>MsiExec.exe /X{FF29527A-44CD-3422-945E-981A13584000}
VCRedistSetup—>MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
Vista Codec Package—>MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual Studio Tools for the Office system 3.0 Runtime—>C:Program FilesCommon FilesMicrosoft SharedVSTO9.0Visual Studio Tools for the Office system 3.0 Runtimeinstall.exe
Visual Studio Tools for the Office system 3.0 Runtime—>MsiExec.exe /X{8FB53850-246A-3507-8ADE-0060093FFEA6}
WebMoney Advisor—>regsvr32 /u /s «C:Program FilesWebMoney Advisorwmadvisor.dll»
WebMoney Agent—>C:Program FilesWebMoney Agentuninst_wmagent.exe
WebMoney Keeper Classic 3.8.0.0—>»C:Program FilesWebMoneyUninstall.exe» «C:Program FilesWebMoneyinstall.log» -u
WinDjView 0.5—>rundll32.exe advpack.dll,LaunchINFSection WinDjView.inf,Uninstall
Windows Mobile 5.0 SDK R2 for Pocket PC—>MsiExec.exe /I{6C9F6D23-E9AD-43C9-B43A-011562AAF876}
Windows Mobile 5.0 SDK R2 for Smartphone—>MsiExec.exe /I{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}
Архиватор WinRAR—>C:Program FilesWinRARuninstall.exe
Белазар v.5.1—>»C:Program FilesBelazarunins000.exe»
еда выполнения Visual Studio 2005 Tools for Office, второй выпуск—>c:Program FilesCommon FilesMicrosoft SharedVSTO8.0Microsoft Visual Studio 2005 Tools for Office Runtimeinstall.exe

======Hosts File======

210.51.166.249 odnoklasniki.ru
210.51.166.249 http://www.odnoklasniki.ru
210.51.166.249 vkontakte.ru
210.51.166.249 odnoklassniki.ru
210.51.166.249 http://www.odnoklassniki.ru
210.51.166.249 http://www.vkontakte.ru
210.51.166.249 http://www.vkontakte.ru

======Security center information======

AV: Doctor Web Anti-Virus
AS: Spybot — Search and Destroy
AS: Windows Defender

======System event log======

Computer Name: Acer-ПК
Event Code: 15
Message: Broadcom NetXtreme Gigabit Ethernet: Driver initialized successfully.
Record Number: 4843
Source Name: b57nd60x
Time Written: 20090902130656.302901-000
Event Type: Сведения
User:

Computer Name: Acer-ПК
Event Code: 6008
Message: Предыдущее завершение работы системы в 23:25:23 на 01.09.2009 было неожиданным.
Record Number: 4844
Source Name: EventLog
Time Written: 20090902130716.000000-000
Event Type: Ошибка
User:

Computer Name: Acer-ПК
Event Code: 6009
Message: Microsoft (R) Windows (R) 6.00. 6001 Service Pack 1 Multiprocessor Free.
Record Number: 4845
Source Name: EventLog
Time Written: 20090902130716.000000-000
Event Type: Сведения
User:

Computer Name: Acer-ПК
Event Code: 6005
Message: Запущена служба журнала событий.
Record Number: 4846
Source Name: EventLog
Time Written: 20090902130716.000000-000
Event Type: Сведения
User:

Computer Name: Acer-ПК
Event Code: 6013
Message: Время работоспособного состояния 36 сек.
Record Number: 4847
Source Name: EventLog
Time Written: 20090902130716.000000-000
Event Type: Сведения
User:

=====Application event log=====

Computer Name: matrix
Event Code: 1001
Message: Счетчики производительности для службы WmiApRpl (WmiApRpl) успешно удалены. Данные записи содержат новые значения разделов системного реестра Last Counter и Last Help.
Record Number: 20367
Source Name: Microsoft-Windows-LoadPerf
Time Written: 20091221152714.000000-000
Event Type: Сведения
User:

Computer Name: matrix
Event Code: 1000
Message: Cчетчики производительности для службы WmiApRpl (WmiApRpl) загружены успешно. Данные в секции данных содержат новые значения индексов, назначенные этой службе.
Record Number: 20368
Source Name: Microsoft-Windows-LoadPerf
Time Written: 20091221152715.000000-000
Event Type: Сведения
User:

Computer Name: matrix
Event Code: 1903
Message:
Record Number: 20369
Source Name: HHCTRL
Time Written: 20091221153101.000000-000
Event Type: Сведения
User:

Computer Name: matrix
Event Code: 1000
Message: Сбойное приложение DrWeb32W.Exe, версия 4.44.1.10260, штамп времени 0x47220672, сбойный модуль CMedia.dll, версия 1.3.0.465, штамп времени 0x4b2cdf41, код исключения 0xc0000096, смещение ошибки 0x000196dd, ИД процесса 0xe8c, время запуска приложения 0x01ca82534872a903.
Record Number: 20370
Source Name: Application Error
Time Written: 20091221153624.000000-000
Event Type: Ошибка
User:

Computer Name: matrix
Event Code: 1903
Message:
Record Number: 20371
Source Name: HHCTRL
Time Written: 20091221160100.000000-000
Event Type: Сведения
User:

=====Security event log=====

Computer Name: matrix
Event Code: 5038
Message: Средство проверки целостности кода обнаружило, что хэш образа файла недопустим. Файл может быть поврежден после его несанкционированного изменения, или недопустимый хэш может указывать на потенциальную ошибку дискового устройства.

Имя файла: DeviceHarddiskVolume3WindowsSystem32driverstcpip.sys
Record Number: 12916
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091221160157.913081-000
Event Type: Сбой аудита
User:

Computer Name: matrix
Event Code: 5038
Message: Средство проверки целостности кода обнаружило, что хэш образа файла недопустим. Файл может быть поврежден после его несанкционированного изменения, или недопустимый хэш может указывать на потенциальную ошибку дискового устройства.

Имя файла: DeviceHarddiskVolume3WindowsSystem32driverstcpip.sys
Record Number: 12917
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091221160157.937081-000
Event Type: Сбой аудита
User:

Computer Name: matrix
Event Code: 5038
Message: Средство проверки целостности кода обнаружило, что хэш образа файла недопустим. Файл может быть поврежден после его несанкционированного изменения, или недопустимый хэш может указывать на потенциальную ошибку дискового устройства.

Имя файла: DeviceHarddiskVolume3WindowsSystem32driverstcpip.sys
Record Number: 12918
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091221160157.960081-000
Event Type: Сбой аудита
User:

Computer Name: matrix
Event Code: 5038
Message: Средство проверки целостности кода обнаружило, что хэш образа файла недопустим. Файл может быть поврежден после его несанкционированного изменения, или недопустимый хэш может указывать на потенциальную ошибку дискового устройства.

Имя файла: DeviceHarddiskVolume3WindowsSystem32driverstcpip.sys
Record Number: 12919
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091221160157.983081-000
Event Type: Сбой аудита
User:

Computer Name: matrix
Event Code: 5038
Message: Средство проверки целостности кода обнаружило, что хэш образа файла недопустим. Файл может быть поврежден после его несанкционированного изменения, или недопустимый хэш может указывать на потенциальную ошибку дискового устройства.

Имя файла: DeviceHarddiskVolume3WindowsSystem32driverstcpip.sys
Record Number: 12920
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091221160158.007081-000
Event Type: Сбой аудита
User:

======Environment variables======

«ComSpec»=%SystemRoot%system32cmd.exe
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«Path»=C:Program FilesCodeGearRAD Studio6.0bin;C:UsersPublicDocumentsRAD Studio6.0Bpl;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;c:Program FilesMicrosoft SQL Server90Toolsbinn
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
«PROCESSOR_ARCHITECTURE»=x86
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«USERNAME»=SYSTEM
«windir»=%SystemRoot%
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 23 Stepping 10, GenuineIntel
«PROCESSOR_REVISION»=170a
«NUMBER_OF_PROCESSORS»=2
«TRACE_FORMAT_SEARCH_PATH»=\NTREL202.ntdev.corp.microsoft.com4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0TraceFormat
«DFSTRACINGON»=FALSE
«VS90COMNTOOLS»=C:Program FilesMicrosoft Visual Studio 9.0Common7Tools
«CG_BOOST_ROOT»=C:Program FilesCodeGearRAD Studio6.0includeboost_1_35
«KMP_DUPLICATE_LIB_OK»=TRUE
«MKL_SERIAL»=YES

---

EOF

---

[Admin]

Здравствуйте, добро пожаловать на Spyware-ru форум.

Запустите HijackThis, для этого кликните Пуск, Выполнить, введите

C:Program Filestrend microAcer.exe

и нажмите Enter.
Откроется главное меню программы HijackThis.
Кликните по кнопке Do a system scan only.
Далее отметьте галочкой (слева) следующие строки, если они присутствуют:

F2 - REG:system.ini: Shell=explorer.exe rundll32.exe

O1 - Hosts: 210.51.166.249 odnoklasniki.ru

O1 - Hosts: 210.51.166.249 www.odnoklasniki.ru

O1 - Hosts: 210.51.166.249 vkontakte.ru

O1 - Hosts: 210.51.166.249 odnoklassniki.ru

O1 - Hosts: 210.51.166.249 www.odnoklassniki.ru

O1 - Hosts: 210.51.166.249 www.vkontakte.ru

O1 - Hosts: 210.51.166.249 www.vkontakte.ru

Закройте все запущенные программы (включая InternetExplorer) и окна Windows.
Кликните по кнопке Fix checked и подтвердите свои действия выбрав YES.
Перезагрузите компьютер.

Выполните эту инструкцию: Как удалить AdSubscribe (CMedia, AdRouter, AdRiver).

В свой ответ вставьте свежий RSIT лог.

[Автор]

Сообщения