Wini Blue Soft не удаляется!

[Skazka]

Здравствуйте! 🙄

Спасите меня от WiniBlueSoft(а)! 😥
Он каждые 15 минут сообщает, что у меня 700 вирусов и требует себя купить. Каждые 30 минут сообщает, что кончилась память. Ооочень тормозит работу ноута. 🙁
И он не удаляется! Вообще НИКАК! 👿

Avast ничего не находит, как и куча других антивиров, которые я уже испробовала. Malwarebytes’ тоже ничего не находит. 😕

Очень прошу, посоветуйте, как избавиться от этой гадости???
Заранее благодарна!!! Очень-очень жду ответа! 😳

(RSIT логи добавляю ниже)

[Skazka]

Logfile of random’s system information tool 1.06 (written by random/random)
Run by User at 2009-05-09 19:04:08
Microsoft Windows XP Professional Service Pack 2
System drive D: has 9 GB (13%) free of 69 GB
Total RAM: 1023 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:04:30, on 09.05.2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
D:WINDOWSSystem32smss.exe
D:WINDOWSsystem32winlogon.exe
D:WINDOWSsystem32services.exe
D:WINDOWSsystem32lsass.exe
D:WINDOWSsystem32Ati2evxx.exe
D:WINDOWSsystem32svchost.exe
D:WINDOWSSystem32svchost.exe
D:WINDOWSsystem32svchost.exe
D:WINDOWSsystem32Ati2evxx.exe
D:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
D:Program FilesAlwil SoftwareAvast4ashServ.exe
D:WINDOWSsystem32spoolsv.exe
D:Program FilesWIDCOMMBluetooth Softwarebinbtwdins.exe
D:Program FilesICQ6ToolbarICQ Service.exe
D:Program FilesEsetnod32krn.exe
D:WINDOWSsystem32svchost.exe
D:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
D:Program FilesAlwil SoftwareAvast4ashWebSv.exe
D:WINDOWSExplorer.EXE
D:WINDOWSRTHDCPL.EXE
D:WINDOWSHcontrol.exe
D:Program FilesEsetnod32kui.exe
D:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe
D:Program FilesJavajre1.6.0_05binjusched.exe
D:Program FilesGoogleGmail Notifiergnotify.exe
D:Program FilesiTunesiTunesHelper.exe
D:PROGRA~1ALWILS~1Avast4ashDisp.exe
D:WINDOWSsystem32ctfmon.exe
D:Program FilesLClockLClock.exe
D:Program FilesVista Sidebarsidebar.exe
D:Program FilesViStartViStart.exe
D:Program FilesViOrbViOrb.exe
D:WINDOWSATKOSD.exe
D:Program FilesMessengermsmsgs.exe
D:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
D:Program FilesQIP Infiuminfium.exe
D:Program FilesiPodbiniPodService.exe
D:WINDOWSsystem32setup2.exe
D:Program FilesWIDCOMMBluetooth SoftwareBTTray.exe
D:Program FilesNokiaNokia PC Suite 7PCSuite.exe
D:Program FilesNokiaNokia PC Suite 7PcSync2.exe
D:PROGRA~1WIDCOMMBLUETO~1BTSTAC~1.EXE
D:Program FilesPC Connectivity SolutionServiceLayer.exe
D:Program FilesPC Connectivity SolutionTransportsNclUSBSrv.exe
D:Program FilesCommon FilesNokiaMPAPIMPAPI3s.exe
D:Program FilesPC Connectivity SolutionTransportsNclRSSrv.exe
D:Program FilesPC Connectivity SolutionTransportsNclBCBTSrv.exe
D:Program FilesMozilla Firefoxfirefox.exe
D:Documents and SettingsUserРабочий столRSIT.exe
D:Program FilesJavajre1.6.0_05binjucheck.exe
D:Program Filestrend microUser.exe

R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://start.icq.com/
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: (no name) — — (no file)
R3 — URLSearchHook: ICQToolBar — {855F3B16-6D32-4fe6-8A56-BBB695989046} — D:Program FilesICQ6ToolbarICQToolBar.dll
O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — D:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 — BHO: (no name) — {1392b8d2-5c05-419f-a8f6-b9f15a596612} — (no file)
O2 — BHO: Groove GFS Browser Helper — {72853161-30C5-4D22-B7F9-0BBC1D38A37E} — D:PROGRA~1MICROS~2Office12GRA8E1~1.DLL
O2 — BHO: SSVHelper Class — {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} — D:Program FilesJavajre1.6.0_05binssv.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — D:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — D:Program FilesGoogleGoogleToolbarNotifier5.1.1309.3572swg.dll
O2 — BHO: Google Dictionary Compression sdch — {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} — D:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O3 — Toolbar: Rambler-Ассистент — {468CD8A9-7C25-45FA-969E-3D925C689DC4} — D:Program FilesRambler AssistantramblertoolbarU5090.dll
O3 — Toolbar: StylerToolBar — {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} — D:Program FilesStylerTBStylerTB.dll
O3 — Toolbar: ICQToolBar — {855F3B16-6D32-4fe6-8A56-BBB695989046} — D:Program FilesICQ6ToolbarICQToolBar.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — D:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O4 — HKLM..Run: [RTHDCPL] RTHDCPL.EXE
O4 — HKLM..Run: [SkyTel] SkyTel.EXE
O4 — HKLM..Run: [Alcmtr] ALCMTR.EXE
O4 — HKLM..Run: [Hcontrol] D:WINDOWSHcontrol.exe
O4 — HKLM..Run: [nod32kui] «D:Program FilesEsetnod32kui.exe» /WAITSERVICE
O4 — HKLM..Run: [GrooveMonitor] «D:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe»
O4 — HKLM..Run: [SunJavaUpdateSched] «D:Program FilesJavajre1.6.0_05binjusched.exe»
O4 — HKLM..Run: [DurovVkon] «D:Documents and SettingsUserApplication DataVkontaktesvc.exe» -msg -kill
O4 — HKLM..Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] D:Program FilesGoogleGmail Notifiergnotify.exe
O4 — HKLM..Run: [NBKeyScan] «D:Program FilesNeroNero8Nero BackItUpNBKeyScan.exe»
O4 — HKLM..Run: [Adobe Reader Speed Launcher] «D:Program FilesAdobeReader 8.0ReaderReader_sl.exe»
O4 — HKLM..Run: [QuickTime Task] «D:Program FilesQuickTimeQTTask.exe» -atboottime
O4 — HKLM..Run: [iTunesHelper] «D:Program FilesiTunesiTunesHelper.exe»
O4 — HKLM..Run: [adstopper] D:Program FilesAdStoperAdStopperTrayApp.exe
O4 — HKLM..Run: [WiniBlueSoft] D:Program FilesWiniBlueSoft SoftwareWiniBlueSoftWiniBlueSoft.exe -min
O4 — HKLM..Run: [avast!] D:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 — HKCU..Run: [CTFMON.EXE] D:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [LClock] D:Program FilesLClockLClock.exe
O4 — HKCU..Run: [Vista Sidebar] D:Program FilesVista Sidebarsidebar.exe
O4 — HKCU..Run: [ViStart] D:Program FilesViStartViStart.exe
O4 — HKCU..Run: [ViOrb] D:Program FilesViOrbViOrb.exe
O4 — HKCU..Run: [QIP2005] D:Program FilesQIPqip.exe
O4 — HKCU..Run: [MSMSGS] «D:Program FilesMessengermsmsgs.exe» /background
O4 — HKCU..Run: [AtiTrayTools] «C:Program FilesDNA-driversDNA-ATiDriverDNA-ATI Tray Toolsatitray.exe»
O4 — HKCU..Run: [swg] D:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 — HKCU..Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] «D:Program FilesCommon FilesNeroLibNMIndexStoreSvr.exe» ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 — HKCU..Run: [QIP.Online] D:Program FilesQIP.Onlineqiponline.exe auto_start
O4 — HKCU..Run: [Infium] «D:Program FilesQIP Infiuminfium.exe» /autorun
O4 — HKCU..Run: [setup2.exe] D:WINDOWSsystem32setup2.exe
O4 — HKCU..Run: [PC Suite Tray] «D:Program FilesNokiaNokia PC Suite 7PCSuite.exe» -onlytray
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] D:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] D:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] D:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] D:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Startup: Adobe Gamma.lnk = D:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe
O4 — Global Startup: BTTray.lnk = ?
O8 — Extra context menu item: &Отправить на устройство Bluetooth… — D:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie_ctx.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O8 — Extra context menu item: Найти с помощью Рамблера — res://D:Program FilesRambler AssistantramblertoolbarU5090.dll/search.htm
O8 — Extra context menu item: Опубликовать в Дневнике — res://D:Program FilesRambler AssistantramblertoolbarU5090.dll/planet.htm
O8 — Extra context menu item: Перевести с помощью словарей Рамблера — res://D:Program FilesRambler AssistantramblertoolbarU5090.dll/dic.htm
O9 — Extra button: (no name) — {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — D:Program FilesJavajre1.6.0_05binssv.dll
O9 — Extra ‘Tools’ menuitem: Sun Java Console — {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — D:Program FilesJavajre1.6.0_05binssv.dll
O9 — Extra button: Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — D:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra ‘Tools’ menuitem: &Отправить в OneNote — {2670000A-7350-4f3c-8081-5663EE0C6C49} — D:PROGRA~1MICROS~2Office12ONBttnIE.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — D:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: @btrez.dll,-4015 — {CCA281CA-C863-46ef-9331-5C8D4460577F} — D:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie.htm
O9 — Extra ‘Tools’ menuitem: @btrez.dll,-12650 — {CCA281CA-C863-46ef-9331-5C8D4460577F} — D:Program FilesWIDCOMMBluetooth Softwarebtsendto_ie.htm
O9 — Extra button: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — D:Program FilesICQ6.5ICQ.exe
O9 — Extra ‘Tools’ menuitem: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — D:Program FilesICQ6.5ICQ.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — D:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — D:Program FilesMessengermsmsgs.exe
O18 — Protocol: grooveLocalGWS — {88FED34C-F0CA-4636-A375-3CB6248B04CD} — D:PROGRA~1MICROS~2Office12GR99D3~1.DLL
O18 — Filter: x-sdch — {B1759355-3EEC-4C1E-B0F1-B719FE26E377} — D:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O23 — Service: Adobe LM Service — Adobe Systems — D:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe
O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — D:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 — Service: Ati HotKey Poller — ATI Technologies Inc. — D:WINDOWSsystem32Ati2evxx.exe
O23 — Service: ATI Smart — Unknown owner — D:WINDOWSsystem32ati2sgag.exe
O23 — Service: avast! Antivirus — ALWIL Software — D:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — D:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 — Service: avast! Web Scanner — ALWIL Software — D:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 — Service: Bluetooth Service (btwdins) — Broadcom Corporation. — D:Program FilesWIDCOMMBluetooth Softwarebinbtwdins.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — D:WINDOWSsystem32services.exe
O23 — Service: Google Software Updater (gusvc) — Google — D:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: ICQ Service — Unknown owner — D:Program FilesICQ6ToolbarICQ Service.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — D:WINDOWSsystem32imapi.exe
O23 — Service: Сервис iPod (iPod Service) — Apple Inc. — D:Program FilesiPodbiniPodService.exe
O23 — Service: NetMeeting Remote Desktop Sharing (mnmsrvc) — Корпорация Майкрософт — D:WINDOWSsystem32mnmsrvc.exe
O23 — Service: NOD32 Kernel Service (NOD32krn) — Eset — D:Program FilesEsetnod32krn.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — D:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — D:WINDOWSsystem32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — D:WINDOWSSystem32SCardSvr.exe
O23 — Service: ServiceLayer — Nokia. — D:Program FilesPC Connectivity SolutionServiceLayer.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — D:WINDOWSsystem32smlogsvc.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — D:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — D:WINDOWSsystem32wbemwmiapsrv.exe

—
End of file — 11896 bytes

======Scheduled tasks folder======

D:WINDOWStasksAppleSoftwareUpdate.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper — D:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper — D:PROGRA~1MICROS~2Office12GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class — D:Program FilesJavajre1.6.0_05binssv.dll [2008-02-22 509328]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — D:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-05-04 259696]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — D:Program FilesGoogleGoogleToolbarNotifier5.1.1309.3572swg.dll [2009-04-17 668656]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — D:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll [2009-05-04 470512]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{468CD8A9-7C25-45FA-969E-3D925C689DC4} — Rambler-Ассистент — D:Program FilesRambler AssistantramblertoolbarU5090.dll [2007-07-30 804336]
{D2F8F919-690B-4EA2-9FA7-A203D1E04F75} — StylerToolBar — D:Program FilesStylerTBStylerTB.dll [2006-05-02 102400]
{855F3B16-6D32-4fe6-8A56-BBB695989046} — ICQToolBar — D:Program FilesICQ6ToolbarICQToolBar.dll [2008-06-12 958712]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — D:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-05-04 259696]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«RTHDCPL»=D:WINDOWSRTHDCPL.EXE [2007-11-06 16855552]
«SkyTel»=D:WINDOWSSkyTel.EXE [2007-10-11 1826816]
«Alcmtr»=D:WINDOWSALCMTR.EXE [2005-05-03 69632]
«Hcontrol»=D:WINDOWSHcontrol.exe [2002-04-22 53248]
«nod32kui»=D:Program FilesEsetnod32kui.exe [2008-03-29 949376]
«GrooveMonitor»=D:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe [2006-10-27 31016]
«SunJavaUpdateSched»=D:Program FilesJavajre1.6.0_05binjusched.exe [2008-02-22 144784]
«DurovVkon»=D:Documents and SettingsUserApplication DataVkontaktesvc.exe -msg -kill []
«{0228e555-4f9c-4e35-a3ec-b109a192b4c2}»=D:Program FilesGoogleGmail Notifiergnotify.exe [2005-07-16 479232]
«NBKeyScan»=D:Program FilesNeroNero8Nero BackItUpNBKeyScan.exe []
«Adobe Reader Speed Launcher»=D:Program FilesAdobeReader 8.0ReaderReader_sl.exe [2008-01-11 39792]
«QuickTime Task»=D:Program FilesQuickTimeQTTask.exe [2008-11-04 413696]
«iTunesHelper»=D:Program FilesiTunesiTunesHelper.exe [2008-11-20 290088]
«adstopper»=D:Program FilesAdStoperAdStopperTrayApp.exe []
«WiniBlueSoft»=D:Program FilesWiniBlueSoft SoftwareWiniBlueSoftWiniBlueSoft.exe -min []
«avast!»=D:PROGRA~1ALWILS~1Avast4ashDisp.exe [2009-02-06 81000]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=D:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]
«LClock»=D:Program FilesLClockLClock.exe [2004-09-20 65536]
«Vista Sidebar»=D:Program FilesVista Sidebarsidebar.exe [2007-11-20 524288]
«ViStart»=D:Program FilesViStartViStart.exe [2007-11-26 593920]
«ViOrb»=D:Program FilesViOrbViOrb.exe [2007-11-19 163840]
«QIP2005″=D:Program FilesQIPqip.exe []
«MSMSGS»=D:Program FilesMessengermsmsgs.exe [2004-08-17 1667584]
«AtiTrayTools»=C:Program FilesDNA-driversDNA-ATiDriverDNA-ATI Tray Toolsatitray.exe []
«swg»=D:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2008-10-10 68856]
«IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}»=D:Program FilesCommon FilesNeroLibNMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020 []
«QIP.Online»=D:Program FilesQIP.Onlineqiponline.exe auto_start []
«Infium»=D:Program FilesQIP Infiuminfium.exe [2009-03-25 5245440]
«setup2.exe»=D:WINDOWSsystem32setup2.exe [2009-05-08 1097216]
«PC Suite Tray»=D:Program FilesNokiaNokia PC Suite 7PCSuite.exe [2009-03-20 1312256]

D:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
BTTray.lnk — D:Program FilesWIDCOMMBluetooth SoftwareBTTray.exe

D:Documents and SettingsUserГлавное менюПрограммыАвтозагрузка
Adobe Gamma.lnk — D:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyAtiExtEvent]
D:WINDOWSsystem32Ati2evxx.dll [2007-05-25 118784]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — D:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}»=D:PROGRA~1MICROS~2Office12GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalmsliksurserv.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkmsliksurserv.sys]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«D:Program FilesMicrosoft OfficeOffice12GROOVE.EXE»=»D:Program FilesMicrosoft OfficeOffice12GROOVE.EXE:*:Enabled:Microsoft Office Groove»
«D:Program FilesMicrosoft OfficeOffice12ONENOTE.EXE»=»D:Program FilesMicrosoft OfficeOffice12ONENOTE.EXE:*:Enabled:Microsoft Office OneNote»
«D:Program FilesuTorrentuTorrent.exe»=»D:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«D:Program FilesICQ6.5ICQ.exe»=»D:Program FilesICQ6.5ICQ.exe:*:Enabled:ICQ6»
«D:Program FilesiTunesiTunes.exe»=»D:Program FilesiTunesiTunes.exe:*:Enabled:iTunes»
«D:Program FilesSonyMedia Manager for WALKMANMediaManager.exe»=»D:Program FilesSonyMedia Manager for WALKMANMediaManager.exe:*:Enabled:Media Manager for WALKMAN 1.2»
«D:Program FilesICQLiteICQ.exe»=»D:Program FilesICQLiteICQ.exe:*:Enabled:ICQ Lite»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»

======List of files/folders created in the last 1 months======

2009-12-19 04:21:39 —-A—- D:WINDOWS1d5cs9arse1568z.exe
2009-12-17 14:44:42 —-A—- D:WINDOWSsystem325941azdware8629.exe
2009-12-15 15:24:18 —-A—- D:WINDOWSsystem3265ezvir9051.dll
2009-12-12 01:46:40 —-A—- D:WINDOWSsystem32269235py5za.exe
2009-12-06 05:25:56 —-A—- D:WINDOWSsystem3223677sz52e9.dll
2009-12-04 11:03:52 —-A—- D:WINDOWSsystem326988downloa5erz003.dll
2009-11-27 23:36:19 —-A—- D:WINDOWSsystem327dz45hief1189.dll
2009-11-22 13:58:01 —-A—- D:WINDOWSsystem3228035n95-z-virus5c1.exe
2009-11-22 05:20:45 —-A—- D:WINDOWSsystem325595szeal9482.exe
2009-11-22 02:18:49 —-A—- D:WINDOWSsystem327955hazktool351.dll
2009-11-21 17:22:49 —-A—- D:WINDOWSsystem3222aczdd5are3093.exe
2009-11-20 02:22:25 —-A—- D:WINDOWSsystem327d99dzwnloade51229.dll
2009-11-15 04:52:36 —-A—- D:WINDOWS557bzparse1798.exe
2009-11-13 16:47:39 —-A—- D:WINDOWSsystem3220549spamb9t57z.dll
2009-11-13 07:06:57 —-A—- D:WINDOWSsystem3230397sp9715z.exe
2009-11-03 20:16:00 —-A—- D:WINDOWSsystem324698a5dwzre1345.dll
2009-11-03 15:11:21 —-A—- D:WINDOWS76ebz5wnlo9der3262.exe
2009-10-29 02:01:14 —-A—- D:WINDOWS232739ot-a-viruz563.exe
2009-10-28 11:57:49 —-A—- D:WINDOWSsystem327b5ath9ez2376.dll
2009-10-27 08:15:08 —-A—- D:WINDOWS24799not-a5viruz714.dll
2009-10-26 22:17:01 —-A—- D:WINDOWS247815zckt9ol691.exe
2009-10-18 02:54:24 —-A—- D:WINDOWSsystem3216160not9a-vizusfb5.dll
2009-10-17 07:22:51 —-A—- D:WINDOWS9165spzrse25145.exe
2009-10-13 08:26:51 —-A—- D:WINDOWS26391nzt-5-virus777.exe
2009-10-13 06:46:38 —-A—- D:WINDOWS13574not-a-zi9us25e.exe
2009-10-10 15:21:27 —-A—- D:WINDOWSsystem324db19d5wzre150.exe
2009-10-07 14:40:23 —-A—- D:WINDOWSz3321ha9kto5l299.dll
2009-09-28 07:33:15 —-A—- D:WINDOWSz1c6back5oor26579.dll
2009-09-24 00:55:24 —-A—- D:WINDOWS579ethr9az115525.dll
2009-09-22 21:06:19 —-A—- D:WINDOWSsystem32710zthr5at169199.exe
2009-09-21 14:38:30 —-A—- D:WINDOWS59acspywaze16929.dll
2009-09-21 08:53:57 —-A—- D:WINDOWSsystem3299865hackzool293.dll
2009-09-16 23:56:27 —-A—- D:WINDOWSsystem32599bbackdoorz960.dll
2009-09-15 13:07:21 —-A—- D:WINDOWS17817z5rm4779.exe
2009-09-08 02:12:41 —-A—- D:WINDOWS62f25ac9door220z.exe
2009-09-06 04:21:13 —-A—- D:WINDOWSsystem326z1dsteal5659.dll
2009-09-03 07:34:27 —-A—- D:WINDOWS7z55spa9se1864.dll
2009-09-01 21:24:32 —-A—- D:WINDOWSz57985pamb9t33d.exe
2009-08-29 01:46:19 —-A—- D:WINDOWSsystem3257769hrea529297z.exe
2009-08-26 23:23:59 —-A—- D:WINDOWS16955spazbot9b.exe
2009-08-26 12:30:23 —-A—- D:WINDOWSsystem3239eead5wz9e1958.dll
2009-08-25 06:59:39 —-A—- D:WINDOWS6815addwa9e12z55.dll
2009-08-22 12:14:44 —-A—- D:WINDOWSsystem3273z0thie92255.exe
2009-08-19 04:59:52 —-A—- D:WINDOWS5ze9addwar52752.exe
2009-08-19 03:57:20 —-A—- D:WINDOWSsystem322z112wor5290.exe
2009-08-18 03:00:57 —-A—- D:WINDOWSsystem3217570sp5m9ztcc.dll
2009-08-14 09:24:44 —-A—- D:WINDOWS15195zo5m79e.exe
2009-08-07 00:09:01 —-A—- D:WINDOWSsystem321721zs5y921.dll
2009-08-05 03:20:37 —-A—- D:WINDOWSsystem32z919st5al1276.dll
2009-08-03 01:37:11 —-A—- D:WINDOWS2435ztroj2b9.dll
2009-07-28 20:17:25 —-A—- D:WINDOWSsystem32117509a5ktozl48f.dll
2009-07-23 08:32:23 —-A—- D:WINDOWSsystem324z78threat142359.exe
2009-07-23 00:25:27 —-A—- D:WINDOWS6b75downzoad9r2485.exe
2009-07-22 14:25:29 —-A—- D:WINDOWS41e4th95at274z1.dll
2009-07-21 11:50:22 —-A—- D:WINDOWSz056spyw9re1715.dll
2009-07-19 23:00:42 —-A—- D:WINDOWS30962hackto5l25bz.dll
2009-07-12 08:59:09 —-A—- D:WINDOWSsystem3214900ha9ktoo5z32.dll
2009-07-11 01:03:34 —-A—- D:WINDOWS6539ha5ktzol8f.dll
2009-07-08 23:41:08 —-A—- D:WINDOWS3ae9a5d9aze3264.exe
2009-07-08 13:56:43 —-A—- D:WINDOWS264z5vir5s599.dll
2009-07-08 00:06:36 —-A—- D:WINDOWSf8bs9zal9825.exe
2009-07-05 07:29:57 —-A—- D:WINDOWSsystem32292dspyw9rez500.exe
2009-06-28 05:06:57 —-A—- D:WINDOWSsystem322zbethi9f592.exe
2009-06-27 15:29:19 —-A—- D:WINDOWS9beavir1z95.exe
2009-06-26 19:49:02 —-A—- D:WINDOWS1fc6th9ef3185z.dll
2009-06-23 19:20:46 —-A—- D:WINDOWSz7125worm629.exe
2009-06-22 23:43:32 —-A—- D:WINDOWSsystem321zf5v95498.dll
2009-06-16 05:56:43 —-A—- D:WINDOWS4254spamb9t258z.exe
2009-06-08 08:33:04 —-A—- D:WINDOWSsystem322148tr9z95.dll
2009-06-05 14:30:45 —-A—- D:WINDOWSsystem321c5spywarz1955.dll
2009-06-02 21:39:27 —-A—- D:WINDOWS21674zir9s1985.dll
2009-06-02 02:12:12 —-A—- D:WINDOWSsystem32z2487n5t-a-virus194.exe
2009-06-01 14:56:23 —-A—- D:WINDOWSsystem3221b6v5rz392.dll
2009-05-25 09:30:45 —-A—- D:WINDOWS7671n9t-a-vir5s43ez.exe
2009-05-24 04:41:04 —-A—- D:WINDOWSsystem325396virus20fz.exe
2009-05-23 02:15:41 —-A—- D:WINDOWSsystem327813not-a-zi5u92f6.exe
2009-05-21 20:03:42 —-A—- D:WINDOWS97566trzj514.exe
2009-05-18 08:30:39 —-A—- D:WINDOWS8108tzoj91c5.exe
2009-05-16 01:49:49 —-A—- D:WINDOWSsystem32z46troj95f5.dll
2009-05-13 18:42:19 —-A—- D:WINDOWSsystem3253aastezl359.exe
2009-05-12 01:16:46 —-A—- D:WINDOWSsystem3229bvirz558.dll
2009-05-09 19:04:09 —-D—- D:Program Filestrend micro
2009-05-09 19:04:08 —-D—- D:rsit
2009-05-09 17:42:22 —-D—- D:Program FilesCommon FilesPCSuite
2009-05-09 17:39:22 —-D—- D:Program FilesPC Connectivity Solution
2009-05-09 17:28:19 —-D—- D:Documents and SettingsAll UsersApplication DataSunbelt
2009-05-09 17:25:27 —-D—- D:Program FilesSunbelt Software
2009-05-09 17:11:04 —-AD—- D:Documents and SettingsAll UsersApplication DataTEMP
2009-05-09 17:05:59 —-D—- D:Documents and SettingsUserApplication DataGetRightToGo
2009-05-09 15:14:29 —-A—- D:WINDOWS3cf5zddw9re481.dll
2009-05-09 11:50:31 —-A—- D:WINDOWSz99evir757.dll
2009-05-09 01:11:21 —-A—- D:WINDOWSsystem32aswBoot.exe
2009-05-09 01:11:14 —-D—- D:Program FilesAlwil Software
2009-05-08 23:22:13 —-D—- D:Documents and SettingsUserApplication DataMalwarebytes
2009-05-08 23:22:08 —-D—- D:Documents and SettingsAll UsersApplication DataMalwarebytes
2009-05-08 23:22:07 —-D—- D:Program FilesMalwarebytes’ Anti-Malware
2009-05-08 17:40:56 —-A—- D:WINDOWSz15929roj455.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem32z0555virus4079.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem32f9bzddware5988.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem329b56tz5ef1700.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem3296949spzmbot1375.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem3284czddwa951719.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem3282995rzj43f.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem327f999zr1553.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem326557thr9atz450.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem325zdfspywar93052.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem325c10v9587z.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem325909spy12z9.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem32575a5p9ware2z53.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem325739vizu97fd5.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem32519zbackdoor1387.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem325139hzcktool5b7.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem324cd79zywa5e2499.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem3239595sz5mbot568.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem3229593hacktoolz63.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem3227a7backd9zr57.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem3221a5s5ywaze10379.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem32156f9hreatz17235.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem3214591spambot919z.dll
2009-05-08 17:40:56 —-A—- D:WINDOWSsystem321127z9py7095.exe
2009-05-08 17:40:56 —-A—- D:WINDOWSc49s5ywarez015.exe
2009-05-08 17:40:56 —-A—- D:WINDOWS7985spyw9re256z.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS73d5down5oa9er6z1.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS6639a5kdoor152z.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS5b95spyware772z.exe
2009-05-08 17:40:56 —-A—- D:WINDOWS5796not-a-v9r5z530.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS5427thief20z19.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS53zfbackdo5r2923.exe
2009-05-08 17:40:56 —-A—- D:WINDOWS53zdownloader24229.exe
2009-05-08 17:40:56 —-A—- D:WINDOWS51935spz509.exe
2009-05-08 17:40:56 —-A—- D:WINDOWS4d91bazkdo5r747.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS42aa9zarse515.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS4150spy9are2862z.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS399az5ief692.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS35295pyware21z2.exe
2009-05-08 17:40:56 —-A—- D:WINDOWS31729parse11z5.exe
2009-05-08 17:40:56 —-A—- D:WINDOWS2959v9rusz90.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS21zasparse3935.dll
2009-05-08 17:40:56 —-A—- D:WINDOWS14537notza-v5rus69b.exe
2009-05-08 17:40:55 —-A—- D:WINDOWSsystem32setup2.exe
2009-05-08 17:40:55 —-A—- D:WINDOWSsystem32bz19teal5034.exe
2009-05-08 17:40:55 —-A—- D:WINDOWSsystem326446bzckdoor5597.exe
2009-05-08 17:40:55 —-A—- D:WINDOWSsystem32165bstealz369.dll
2009-05-08 17:40:55 —-A—- D:WINDOWSsystem3212ca5hiefz69.exe
2009-05-08 17:40:55 —-A—- D:WINDOWS7d96threat3259z.dll
2009-05-08 17:40:55 —-A—- D:WINDOWS26991not-a-zir5s353.dll
2009-05-08 03:37:20 —-A—- D:WINDOWSsystem327953viru52z7.exe
2009-05-07 21:41:19 —-A—- D:WINDOWS8cz9ir3256.exe
2009-05-06 20:49:53 —-A—- D:WINDOWS5e7a9ow5loadzr624.dll
2009-05-02 02:03:57 —-A—- D:WINDOWS15509wozm4c95.dll
2009-05-01 18:34:00 —-A—- D:WINDOWS629athzef1105.dll
2009-04-28 19:59:14 —-A—- D:WINDOWSsystem322a4zvi59425.dll
2009-04-25 16:10:12 —-A—- D:WINDOWS90327z5oj77f.exe
2009-04-19 14:33:40 —-A—- D:WINDOWSsystem321555s9amboz3b2.exe
2009-04-18 10:08:19 —-A—- D:WINDOWSz1c7ste5l6139.dll
2009-04-18 02:00:10 —-A—- D:WINDOWSsystem325fa3thief120z9.exe
2009-04-17 08:47:22 —-A—- D:WINDOWSz9f7b5ckdoor716.exe
2009-04-16 09:00:03 —-A—- D:WINDOWS2e4ft59zf1976.exe

======List of files/folders modified in the last 1 months======

2009-05-09 19:04:09 —-AD—- D:Program Files
2009-05-09 19:03:57 —-D—- D:WINDOWSTemp
2009-05-09 19:02:15 —-D—- D:Program FilesMozilla Firefox
2009-05-09 18:59:44 —-HD—- D:WINDOWSinf
2009-05-09 18:59:23 —-D—- D:Program FilesViStart
2009-05-09 18:58:36 —-D—- D:WINDOWS
2009-05-09 18:57:44 —-D—- D:WINDOWSsystem32
2009-05-09 18:57:44 —-D—- D:Program FilesCommon Files
2009-05-09 18:56:24 —-A—- D:WINDOWSSchedLgU.Txt
2009-05-09 18:56:23 —-D—- D:WINDOWSsystem32CatRoot2
2009-05-09 17:54:25 —-SHD—- D:WINDOWSInstaller
2009-05-09 17:54:17 —-D—- D:Config.Msi
2009-05-09 17:54:15 —-D—- D:WINDOWSsystem32drivers
2009-05-09 17:53:18 —-D—- D:WINDOWSsystem32CatRoot
2009-05-09 17:52:30 —-D—- D:Program FilesCommon FilesNokia
2009-05-09 17:52:29 —-D—- D:Program FilesNokia
2009-05-09 17:42:51 —-DC—- D:WINDOWSsystem32DRVSTORE
2009-05-09 17:36:23 —-D—- D:Documents and SettingsAll UsersApplication DataInstallations
2009-05-09 17:27:49 —-D—- D:WINDOWSsystem32config
2009-05-09 17:12:00 —-AC—- D:WINDOWSsystem32PerfStringBackup.INI
2009-05-09 17:11:03 —-D—- D:WINDOWSPrefetch
2009-05-08 17:53:27 —-D—- D:Program FilesEA GAMES
2009-05-04 00:12:45 —-D—- D:Documents and SettingsUserApplication DataNokia
2009-04-19 01:04:39 —-D—- D:Documents and SettingsUserApplication DataAudacity

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; D:WINDOWSsystem32driversAavmker4.sys [2009-02-06 26944]
R1 aswSP;avast! Self Protection; D:WINDOWSsystem32driversaswSP.sys [2009-02-06 114768]
R1 aswTdi;avast! Network Shield Support; D:WINDOWSsystem32driversaswTdi.sys [2009-02-06 51376]
R1 intelppm;Драйвер Intel процессора; D:WINDOWSsystem32DRIVERSintelppm.sys [2004-08-18 40448]
R1 nod32drv;nod32drv; D:WINDOWSsystem32driversnod32drv.sys [2008-03-29 15424]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; D:WINDOWSSystem32driversws2ifsl.sys [2004-08-18 12032]
R2 AMON;AMON; D:WINDOWSsystem32driversamon.sys [2008-03-29 512096]
R2 aswFsBlk;aswFsBlk; D:WINDOWSsystem32DRIVERSaswFsBlk.sys [2009-02-06 20560]
R2 aswMon2;avast! Standard Shield Support; D:WINDOWSsystem32driversaswMon2.sys [2009-02-06 94032]
R2 rimmptsk;rimmptsk; D:WINDOWSsystem32DRIVERSrimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; D:WINDOWSsystem32DRIVERSrimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; D:WINDOWSsystem32DRIVERSrixdptsk.sys [2007-03-21 37376]
R3 aswRdr;aswRdr; D:WINDOWSsystem32driversaswRdr.sys [2009-02-06 23152]
R3 ati2mtag;ati2mtag; D:WINDOWSsystem32DRIVERSati2mtag.sys [2007-05-25 2164736]
R3 btaudio;Аудиоустройство Bluetooth; D:WINDOWSsystem32driversbtaudio.sys [2006-03-22 328237]
R3 BTDriver;Драйвер виртуальной связи Bluetooth; D:WINDOWSsystem32DRIVERSbtport.sys [2006-03-22 30427]
R3 BTKRNL;Нумератор шины Bluetooth; D:WINDOWSsystem32DRIVERSbtkrnl.sys [2006-03-22 851402]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; D:WINDOWSSystem32Driversbtwusb.sys [2006-03-22 65784]
R3 CmBatt;Драйвер AC-адаптера блока питания (Майкрософт); D:WINDOWSsystem32DRIVERSCmBatt.sys [2004-08-04 14080]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; D:WINDOWSsystem32DRIVERSGEARAspiWDM.sys [2008-04-17 15464]
R3 HdAudAddService;ATI Function Driver for High Definition Audio Service; D:WINDOWSsystem32driversAtiHdAud.sys [2006-12-28 84992]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; D:WINDOWSsystem32DRIVERSHDAudBus.sys [2005-01-07 138752]
R3 HidUsb;Драйвер класса HID Microsoft; D:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); D:WINDOWSsystem32driversRtkHDAud.sys [2007-11-14 4625408]
R3 mod7700;DiBcom DIB7700 based TV tuner device; D:WINDOWSSystem32Driversdvb7700all.sys [2007-04-19 428800]
R3 mouhid;Драйвер мыши HID; D:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; D:WINDOWSsystem32DRIVERSATKACPI.sys [2002-02-08 6004]
R3 NETw4x32;Драйвер адаптера Intel(R) Wireless WiFi Link для Windows XP 32 Bit; D:WINDOWSsystem32DRIVERSNETw4x32.sys [2007-09-26 2236032]
R3 sdbus;sdbus; D:WINDOWSsystem32DRIVERSsdbus.sys [2004-08-18 67584]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); D:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-18 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; D:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-04 26624]
R3 usbhub;USB2 концентратор; D:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-04 57600]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; D:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-04 20480]
R3 usbvideo;USB-видеоустройство (WDM); D:WINDOWSSystem32Driversusbvideo.sys [2004-08-04 78464]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; D:WINDOWSsystem32DRIVERSyk51x86.sys [2008-02-21 286336]
S1 atitray;atitray; 5C003F003F005C0043003A005C00500072006F006700720061006D002000460069006C00650073005C0044004E0041002D0064007200690076006500720073005C0044004E0041002D004100540069005C004400720069007600650072005C0041005400490020005400720061007900200054006F006F006C0073005C0061007400690074007200610079002E007300790073000000 []
S2 IcRecUsb;IC Recorder Driver; D:WINDOWSSystem32DriversIcRecUsb.sys [2001-10-01 17432]
S3 Arp1394;Протокол клиента 1394 ARP; D:WINDOWSsystem32DRIVERSarp1394.sys [2004-08-18 60800]
S3 CCDECODE;Closed Caption декодер; D:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-04 17024]
S3 MODEMCSA;Устройство фильтрации потока Unimodem; D:WINDOWSsystem32driversMODEMCSA.sys [2001-08-17 16128]
S3 MPE;BDA MPE фильтр; D:WINDOWSsystem32DRIVERSMPE.sys [2004-08-04 15360]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; D:WINDOWSsystem32driversMSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; D:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; D:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-04 10880]
S3 NIC1394;Сетевой драйвер 1394; D:WINDOWSsystem32DRIVERSnic1394.sys [2004-08-18 61824]
S3 pccsmcfd;PCCS Mode Change Filter Driver; D:WINDOWSsystem32DRIVERSpccsmcfd.sys [2008-08-26 18816]
S3 RTHDMIAzAudService;Service for HDMI; D:WINDOWSsystem32driversRtHDMI.sys []
S3 SLIP;BDA Slip De-Framer; D:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-04 11136]
S3 smserial;smserial; D:WINDOWSsystem32DRIVERSsmserial.sys []
S3 streamip;BDA IPSink; D:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-04 15360]
S3 upperdev;upperdev; D:WINDOWSsystem32DRIVERSusbser_lowerflt.sys []
S3 usbscan;Драйвер USB-сканера; D:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; D:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-04 26496]
S3 Wdf01000;Wdf01000; D:WINDOWSsystem32DRIVERSWdf01000.sys [2006-11-02 492000]
S3 WpdUsb;WpdUsb; D:WINDOWSsystem32DRIVERSwpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext кодек; D:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-04 19328]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; D:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-15 82688]
S4 IntelIde;IntelIde; D:WINDOWSsystem32driversIntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; D:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2009-02-06 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; D:WINDOWSsystem32Ati2evxx.exe [2007-05-25 479232]
R2 avast! Antivirus;avast! Antivirus; D:Program FilesAlwil SoftwareAvast4ashServ.exe [2009-02-06 138680]
R2 btwdins;Bluetooth Service; D:Program FilesWIDCOMMBluetooth Softwarebinbtwdins.exe [2006-03-22 266295]
R2 ICQ Service;ICQ Service; D:Program FilesICQ6ToolbarICQ Service.exe [2008-06-10 222456]
R2 NOD32krn;NOD32 Kernel Service; D:Program FilesEsetnod32krn.exe [2008-03-29 552064]
R2 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; D:WINDOWSsystem32svchost.exe [2004-08-18 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; D:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2009-02-06 254040]
R3 avast! Web Scanner;avast! Web Scanner; D:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2009-02-06 352920]
R3 iPod Service;Сервис iPod; D:Program FilesiPodbiniPodService.exe [2008-11-20 536872]
R3 ServiceLayer;ServiceLayer; D:Program FilesPC Connectivity SolutionServiceLayer.exe [2009-03-04 621056]
S2 ATI Smart;ATI Smart; D:WINDOWSsystem32ati2sgag.exe [2007-05-09 520192]
S3 Adobe LM Service;Adobe LM Service; D:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe [2008-05-09 72704]
S3 aspnet_state;ASP.NET State Service; D:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 gusvc;Google Software Updater; D:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-05-04 182768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; D:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; D:Program FilesWindows Media Playerwmpnetwk.exe [2006-10-18 913408]

---

EOF

---

[Skazka]

info.txt logfile of random’s system information tool 1.06 2009-05-09 19:04:33

======Uninstall list======

—>msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {926CC8AE-8414-43DF-8EB4-CF26D9C3C663}
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 D:WINDOWSINFPCHealth.inf
Ad-Aware SE Language Pack—>MsiExec.exe /I{892F2C46-D7F3-4E69-8929-4BCB2D77CD82}
Ad-Aware SE Personal—>D:PROGRA~1LavasoftAD-AWA~1UNWISE.EXE D:PROGRA~1LavasoftAD-AWA~1INSTALL.LOG
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)—>MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe AIR—>D:Program FilesCommon FilesAdobe AIRVersions1.0ResourcesAdobe AIR Updater.exe -arp:uninstall
Adobe AIR—>MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
Adobe Bridge 1.0—>MsiExec.exe /I{B74D4E10-6884-0000-0000-000000000103}
Adobe Common File Installer—>MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5B39}
Adobe Flash Player 10 Plugin—>D:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Flash Player 9 ActiveX—>D:WINDOWSsystem32MacromedFlashUninstFl.exe -q
Adobe Flash Player ActiveX—>D:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Help Center 1.0—>MsiExec.exe /I{E9787678-1033-0000-8E67-000000000001}
Adobe Media Player—>msiexec /qb /x {1EBB57D4-63FF-87CC-A0F0-D73982CF6008}
Adobe Media Player—>MsiExec.exe /I{1EBB57D4-63FF-87CC-A0F0-D73982CF6008}
Adobe Photoshop CS2—>msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D}
Adobe Reader 8.1.2—>MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
Adobe Shockwave Player—>D:WINDOWSsystem32AdobeSHOCKW~1UNWISE.EXE D:WINDOWSsystem32AdobeSHOCKW~1Install.log
Adobe Stock Photos 1.0—>MsiExec.exe /I{786C5747-1033-0000-B58E-000000000001}
Apple Software Update—>MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
ASUS ATK0100 ACPI UTILITY—>XPunin.exe
ATI — Software Uninstall Utility—>D:Program FilesATI TechnologiesUninstallAllAtiCimUn.exe
Audacity 1.3.3 (Unicode)—>»D:Program FilesAudacity 1.3 Beta (Unicode)unins000.exe»
avast! Antivirus—>D:Program FilesAlwil SoftwareAvast4aswRunDll.exe «D:Program FilesAlwil SoftwareAvast4Setupsetiface.dll»,RunSetup
DevalVR plugin for Netscape and compatible browsers—>D:Program FilesDevalVRinstallnpdevalvr.exe /u
DivX Codec—>D:Program FilesDivXDivXCodecUninstall.exe /CODEC
DivX Web Player—>D:Program FilesDivXDivXWebPlayerUninstall.exe /PLUGIN
DNA-ATi 5.1.7.5×32—>rundll32 D:WINDOWSsystem32atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
DNA-ATi Files Uninstall—>»D:Program FilesDNA-driversDNA-ATiUnistall.exe»
Dragon NaturallySpeaking Components—>D:WINDOWSIsUninst.exe -fD:WINDOWSSPEECHDRAGONUninst.isu
Google Gmail Notifier—>»D:Program FilesGoogleGmail NotifierUninstallGmail.exe»
Google Toolbar for Internet Explorer—>»D:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarManager_BDA1448D3D255554.exe» /uninstall
Google Toolbar for Internet Explorer—>MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
High Definition Audio Driver Package — KB888111—>»D:WINDOWS$NtUninstallKB888111WXPSP2$spuninstspuninst.exe»
HijackThis 2.0.2—>»D:Program Filestrend microHijackThis.exe» /uninstall
Hotfix for Windows XP (KB926239)—>»D:WINDOWS$NtUninstallKB926239$spuninstspuninst.exe»
ICQ Lite—>»D:Program FilesInstallShield Installation Information{6C13128C-1782-456F-84A4-017CECE259CA}setup.exe» -runfromtemp -l0x0009 -removeonly
ICQ Toolbar—>D:Program FilesICQ6ToolbarICQUnToolbar.exe
ICQ6.5—>»D:Program FilesInstallShield Installation Information{60DE4033-9503-48D1-A483-7846BD217CA9}setup.exe» -runfromtemp -l0x0009 -removeonly
IKEA Home Planner—>MsiExec.exe /I{A987FEC8-5616-49BD-BCA6-ACFFFE7403FE}
iTunes—>MsiExec.exe /I{318AB667-3230-41B5-A617-CB3BF748D371}
Java(TM) 6 Update 5—>MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
K-Lite Codec Pack 2.77 Full Beta 1—>»D:Program FilesK-Lite Codec Packunins000.exe»
Malwarebytes’ Anti-Malware—>»D:Program FilesMalwarebytes’ Anti-Malwareunins000.exe»
Media Manager for WALKMAN 1.2—>MsiExec.exe /X{5A6ED905-D19D-4954-8499-0DAF386460F7}
Microsoft .NET Framework 2.0—>D:WINDOWSMicrosoft.NETFrameworkv2.0.50727Microsoft .NET Framework 2.0install.exe
Microsoft Compression Client Pack 1.0 for Windows XP—>»D:WINDOWS$NtUninstallMSCompPackV1$spuninstspuninst.exe»
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5—>»D:WINDOWS$NtUninstallWdf01005$spuninstspuninst.exe»
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Microsoft Office Access MUI (Russian) 2007—>MsiExec.exe /X{90120000-0015-0419-0000-0000000FF1CE}
Microsoft Office Enterprise 2007—>»D:Program FilesCommon FilesMicrosoft SharedOFFICE12Office Setup Controllersetup.exe» /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007—>MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Russian) 2007—>MsiExec.exe /X{90120000-0016-0419-0000-0000000FF1CE}
Microsoft Office Groove MUI (Russian) 2007—>MsiExec.exe /X{90120000-00BA-0419-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Russian) 2007—>MsiExec.exe /X{90120000-0044-0419-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Russian) 2007—>MsiExec.exe /X{90120000-00A1-0419-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Russian) 2007—>MsiExec.exe /X{90120000-001A-0419-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Russian) 2007—>MsiExec.exe /X{90120000-0018-0419-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007—>MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007—>MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Russian) 2007—>MsiExec.exe /X{90120000-001F-0419-0000-0000000FF1CE}
Microsoft Office Proof (Ukrainian) 2007—>MsiExec.exe /X{90120000-001F-0422-0000-0000000FF1CE}
Microsoft Office Proofing (Russian) 2007—>MsiExec.exe /X{90120000-002C-0419-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Russian) 2007—>MsiExec.exe /X{90120000-0019-0419-0000-0000000FF1CE}
Microsoft Office Shared MUI (Russian) 2007—>MsiExec.exe /X{90120000-006E-0419-0000-0000000FF1CE}
Microsoft Office Word MUI (Russian) 2007—>MsiExec.exe /X{90120000-001B-0419-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.5—>»D:WINDOWS$NtUninstallWudf01005$spuninstspuninst.exe»
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mozilla Firefox (3.0.10)—>D:Program FilesMozilla Firefoxuninstallhelper.exe
MSVC80_x86—>MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
neroxml—>MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nokia Connectivity Cable Driver—>MsiExec.exe /I{82427977-8776-4087-90CA-9F65174D3C4D}
Nokia PC Suite—>D:Documents and SettingsAll UsersApplication DataInstallations{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}Nokia_PC_Suite_7_1_26_0_rus.exe
Nokia PC Suite—>MsiExec.exe /I{7694EC32-CB0E-4B35-9088-7B320CB1F4FE}
PC Connectivity Solution—>MsiExec.exe /I{B7CB0BF3-791E-44D3-9F04-786E36D51C9D}
QuickTime—>MsiExec.exe /I{F958CA02-BB40-4007-894B-258729456EE4}
Rambler-Ассистент—>»D:Program FilesRambler Assistantuninstall.exe»
Realtek High Definition Audio Driver—>RunDll32 D:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «D:Program FilesInstallShield Installation Information{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}Setup.exe» -l0x19 -removeonly
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01—>RunDll32 D:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime701Intel32Ctor.dll,LaunchSetup «D:Program FilesInstallShield Installation Information{59F6A514-9813-47A3-948C-8A155460CC2A}setup.exe» -l0x19 anything
The Sims™ 2 Deluxe—>D:Program FilesEA GAMESThe Sims 2 DeluxeEAUninstall.exe
VC80CRTRedist — 8.0.50727.762—>MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
Vista Transformation Pack 8.0—>D:WINDOWSsystem32viwc.exe
Voice Studio—>RunDll32 D:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «D:Program FilesInstallShield Installation Information{44CE6902-84EA-11D6-887E-00609721D519}setup.exe»
WIDCOMM Bluetooth Software—>MsiExec.exe /X{3F4EC965-28EF-45C3-B063-04B25D4E9679}
Windows Driver Package — Intel (NETw4x32) net (09/26/2007 11.5.0.32)—>D:PROGRA~1DIFXD6ACC4BE676423A2B130B78A4B627FC457D98997DPInst32.EXE /u D:WINDOWSsystem32DRVSTOREnetw4x32_B0AEEEEDA759744D7D2AC236F54CA6D4CFC0961Cnetw4x32.inf
Windows Driver Package — Intel (w29n51) net (07/25/2007 9.0.4.37)—>D:PROGRA~1DIFXD6ACC4BE676423A2B130B78A4B627FC457D98997DPInst32.EXE /u D:WINDOWSsystem32DRVSTOREw29n51_E99959A506B0423451BFDD2FE3C8B527B6AF45BDw29n51.inf
Windows Driver Package — Intel net (09/26/2007 11.5.0.32)—>D:PROGRA~1DIFXD6ACC4BE676423A2B130B78A4B627FC457D98997DPInst32.EXE /u D:WINDOWSsystem32DRVSTOREnetw4k32_4CD46BE21BE74C8D663C65B8DC2D7EEA091E50F5netw4k32.inf
Windows Installer 3.1 (KB893803)—>»D:WINDOWS$MSI31Uninstall_KB893803v2$spuninstspuninst.exe»
Windows Media Format 11 runtime—>»D:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Windows Media Format 11 runtime—>»D:WINDOWS$NtUninstallWMFDist11$spuninstspuninst.exe»
Windows Media Player 11—>»D:WINDOWS$NtUninstallwmp11$spuninstspuninst.exe»
Windows Media Player 9 Series Captions and Lyrics PowerToy—>RunDll32 advpack.dll,LaunchINFSection D:WINDOWSINFCaptionsptoy.inf,Uninstall
Windows Media Player Firefox Plugin—>MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Zune Desktop Theme—>MsiExec.exe /X{7E20EFE6-E604-48C6-8B39-BA4742F2CDB4}
Антивирусная система NOD32—>D:Program FilesEsetSetupsetup.exe /UNINSTALL
Архиватор WinRAR—>D:Program FilesWinRARuninstall.exe
Пакет драйверов Windows — Nokia Modem (02/23/2009 7.01.0.2)—>D:PROGRA~1DIFX270581355A767BF1dpinst.exe /u D:WINDOWSsystem32DRVSTOREnokbtmdm_171C10620CF14FA76859E310DF8C6CF642D81C73nokbtmdm.inf
Пакет драйверов Windows — Nokia Modem (02/24/2009 4.0)—>D:PROGRA~1DIFX270581355A767BF1dpinst.exe /u D:WINDOWSsystem32DRVSTOREnokia_blue_5929FEDBB724B17D4BCDD74361BD95262BE1608Bnokia_bluetooth.inf
Пакет драйверов Windows — Nokia Modem (03/05/2008 3.7)—>D:PROGRA~1DIFX270581355A767BF1dpinst.exe /u D:WINDOWSsystem32DRVSTOREnokia_blue_635B28EFCFA9395123BB1C251595CB16129E2560nokia_bluetooth.inf
Пакет драйверов Windows — Nokia Modem (03/13/2008 6.86.0.1)—>D:PROGRA~1DIFX270581355A767BF1dpinst.exe /u D:WINDOWSsystem32DRVSTOREnokbtmdm_28F2EAC406838DA65AFF6C6886FE9FE96AEF5186nokbtmdm.inf
Пакет драйверов Windows — Nokia Modem (05/22/2008 3.8)—>D:PROGRA~1DIFX270581355A767BF1dpinst.exe /u D:WINDOWSsystem32DRVSTOREnokia_blue_6F90B0F4A73A2F780A1010B5D6CB5DDFB098181Enokia_bluetooth.inf
Пакет драйверов Windows — Nokia Modem (05/22/2008 7.00.0.1)—>D:PROGRA~1DIFX270581355A767BF1dpinst.exe /u D:WINDOWSsystem32DRVSTOREnokbtmdm_E68D50F7E25BFE399D47C864C3B52557346242A9nokbtmdm.inf
Пакет драйверов Windows — Nokia pccsmcfd (08/22/2008 7.0.0.0)—>D:PROGRA~1DIFX270581355A767BF1dpinst.exe /u D:WINDOWSsystem32DRVSTOREpccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294pccsmcfd.inf
Пакет драйверов Windows — YUAN (mod7700) Media (04/19/2007 2.3.2.7)—>D:PROGRA~1DIFX7B44739871F4D539FA473F57A832EA4B6A59EF06DPInst.exe /d /u D:WINDOWSsystem32DRVSTOREdvb7700all_BD0AFDEE490AAAC9E13B3E18DDE757E82D819DB3dvb7700all.inf
Проигрыватель Windows Media 11—>»D:Program FilesWindows Media PlayerSetup_wm.exe» /Uninstall
Скрытые чудеса глубин—>D:Program FilesGames.Rambler.ruСкрытые чудеса глубинUninstall.exe

======Security center information======

AV: avast! antivirus 4.8.1335 [VPS 090508-0]
AV: Антивирусная система Eset NOD32 2.70 (outdated)

======System event log======

Computer Name: HOME
Event Code: 7036
Message: Служба «Google Updater Service» перешла в состояние Остановлена.

Record Number: 27738
Source Name: Service Control Manager
Time Written: 20090326084009.000000+180
Event Type: информация
User:

Computer Name: HOME
Event Code: 7036
Message: Служба «Служба COM записи компакт-дисков IMAPI» перешла в состояние Остановлена.

Record Number: 27737
Source Name: Service Control Manager
Time Written: 20090326083812.000000+180
Event Type: информация
User:

Computer Name: HOME
Event Code: 7036
Message: Служба «Google Updater Service» перешла в состояние Работает.

Record Number: 27736
Source Name: Service Control Manager
Time Written: 20090326083809.000000+180
Event Type: информация
User:

Computer Name: HOME
Event Code: 7035
Message: Служба «Google Updater Service» успешно отправила управляющий элемент «запустить».

Record Number: 27735
Source Name: Service Control Manager
Time Written: 20090326083809.000000+180
Event Type: информация
User: NT AUTHORITYSYSTEM

Computer Name: HOME
Event Code: 7036
Message: Служба «Служба COM записи компакт-дисков IMAPI» перешла в состояние Работает.

Record Number: 27734
Source Name: Service Control Manager
Time Written: 20090326083806.000000+180
Event Type: информация
User:

=====Application event log=====

Computer Name: HOME
Event Code: 101
Message: wuauclt (2536) Ядро базы данных остановлено.

Record Number: 3274
Source Name: ESENT
Time Written: 20081006201439.000000+240
Event Type: информация
User:

Computer Name: HOME
Event Code: 103
Message: wuaueng.dll (2536) SUS20ClientDataStore: Ядро базы данных остановило работу экземпляра (0).

Record Number: 3273
Source Name: ESENT
Time Written: 20081006201439.000000+240
Event Type: информация
User:

Computer Name: HOME
Event Code: 0
Message:
Record Number: 3272
Source Name: ServiceLayer
Time Written: 20081006200842.000000+240
Event Type: информация
User:

Computer Name: HOME
Event Code: 0
Message:
Record Number: 3271
Source Name: NMIndexingService
Time Written: 20081006200842.000000+240
Event Type: информация
User:

Computer Name: HOME
Event Code: 102
Message: wuaueng.dll (2536) SUS20ClientDataStore: Ядро базы данных запустило новый экземпляр (0).

Record Number: 3270
Source Name: ESENT
Time Written: 20081006200840.000000+240
Event Type: информация
User:

======Environment variables======

«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=D:Program FilesPC Connectivity Solution;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;D:Program FilesCommon FilesAdobeAGL;D:Program FilesQuickTimeQTSystem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 15 Stepping 13, GenuineIntel
«PROCESSOR_REVISION»=0f0d
«NUMBER_OF_PROCESSORS»=2
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«CLASSPATH»=.;D:Program FilesJavajre1.6.0_05libextQTJava.zip
«QTJAVA»=D:Program FilesJavajre1.6.0_05libextQTJava.zip

---

EOF

---

[Admin]

Здравствуйте, добро пожаловать на Spyware-ru форум.

Скачайте OTMoveIt3 by OldTimer кликнув по этой ссылке.
Запустите OTMoveIt3 и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.

:Processes

explorer.exe

setup2.exe



:services

msliksurserv.sys



:reg

[-HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{1392b8d2-5c05-419f-a8f6-b9f15a596612}]



[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]

"WiniBlueSoft"=-



[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]

"setup2.exe"=-



[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalmsliksurserv.sys]

[-HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkmsliksurserv.sys]



:files

D:Program FilesWiniBlueSoft Software

D:WINDOWSsystem32setup2.exe



:Commands

[emptytemp]

[start explorer]

[Reboot]

Проверьте вставленный скрипт, если слева перед директивами появились пробелы, то удалите их, скрипт должен выглядеть так же как в сообщении. Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
По-завершении работы программы должен будет показан лог. Если лог не будет показан, то его можно найти в папке C:_OTMoveItMovedFiles.

Вставьте в ваше ответное сообщение содержимое этого лога. И приложите свежий RSIT лог (только log.txt).

[Автор]

Сообщения