Созданные ответы форума
-
Сообщения
-
info.txt — лог утилиты random’s system information tool 1.09 2013-04-03 11:03:11
======Список установленных программ======
—>C:ProgramData{3006A797-CDFA-44FC-98EF-155579E2CDBF}FM8 Setup PC.exe
—>C:ProgramData{78F6A1FC-ADDE-4028-A231-7B924CE455BD}Kontakt 5 Setup PC.exe
—>C:ProgramData{95B4F0ED-951F-4D36-B068-5EC1C4C19C14}Service Center Setup PC.exe
—>C:ProgramData{E26B3878-7CEC-469C-B449-5CAA336DF8CD}Massive Setup PC.exe
—>MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
µTorrent—>»C:Program Files (x86)uTorrentuTorrent.exeuTorrent.exe» /UNINSTALL
Adobe Audition 3.0—>msiexec /I {53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}
Adobe Flash Player 11 ActiveX—>C:WindowsSysWOW64MacromedFlashFlashUtil32_11_6_602_180_ActiveX.exe -maintain activex
Adobe Flash Player 11 Plugin—>C:WindowsSysWOW64MacromedFlashFlashUtil32_11_6_602_180_Plugin.exe -maintain plugin
Adobe Reader X (10.1.6) — Russian—>MsiExec.exe /I{AC76BA86-7AD7-1049-7B44-AA1000000001}
AIMP v3.00 Build 881 Beta 2—>»C:Program Files (x86)AIMP3unins000.exe»
Aiseesoft Total Media Converter 5.2.30—>»C:Program Files (x86)Aiseesoft StudioAiseesoft Total Media Converterunins000.exe»
Aliens vs. Predator—>»C:Program Files (x86)Steamsteam.exe» steam://uninstall/10680
Antares Auto-Tune Evo VST—>MsiExec.exe /X{FFF74EC9-1FF4-4456-99E3-4F05129F4FAB}
Apple Software Update—>MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
ArcSoft TotalMedia Theatre 5—>»C:Program Files (x86)InstallShield Installation Information{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}setup.exe» -runfromtemp -l0x0419 -removeonly
ArcSoft TotalMedia Theatre 5—>C:Program Files (x86)InstallShield Installation Information{9A2CE5D4-0A1E-42EB-9CE0-ABD5DD79E94E}setup.exe
Ashampoo Burning Studio 10 v.10.0.15—>»C:Program Files (x86)AshampooAshampoo Burning Studio 10unins000.exe»
ASIO4ALL—>C:Program Files (x86)ASIO4ALL v2uninstall.exe
ASUS AI Recovery—>MsiExec.exe /I{38253529-D97D-4901-AE53-5CC9736D3A2E}
ASUS FancyStart—>MsiExec.exe /I{2B81872B-A054-48DA-BE3B-FA5C164C303A}
ASUS K3 Series ScreenSaver—>C:WindowsASUS K3 Series ScreenSaver Uninstaller.exe
ASUS LifeFrame3—>MsiExec.exe /I{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
ASUS Live Update—>MsiExec.exe /X{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}
ASUS SmartLogon—>MsiExec.exe /I{64452561-169F-4A36-A2FF-B5E118EC65F5}
ASUS Splendid Video Enhancement Technology—>MsiExec.exe /I{0969AF05-4FF6-4C00-9406-43599238DE0D}
ASUS Virtual Camera—>MsiExec.exe /I{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
ASUS WebStorage—>C:Program Files (x86)ASUSASUS WebStorageuninst.exe
AsusVibe2.0—>C:Program Files (x86)AsusAsusVibeunins000.exe
ATK Package—>MsiExec.exe /I{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
avast! Pro Antivirus—>C:Program FilesAVAST SoftwareAvastaswRunDll.exe «C:Program FilesAVAST SoftwareAvastSetupsetiface.dll» RunSetup
Band-in-a-Box Server—>»C:bbBBHelperunins000.exe»
Bing Bar—>MsiExec.exe /X{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}
Bookworm Deluxe—>C:Program Files (x86)AsusGame ParkBookworm DeluxeUninstall.exe
Bounce Metronome (remove only)—>»c:ProgramsBounce Metronomeuninst.exe»
BrowserProtect—>»C:ProgramDataBrowserProtect2.6.1125.80{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}uninstall.exe» /Uninstall /{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} /su=6b3d36eeded46d25 /um
Canon Easy-WebPrint EX—>»C:Program Files (x86)CanonEasy-WebPrint EXMaint.exe» /UninstallRemove C:Program Files (x86)CanonEasy-WebPrint EXuninst.ini
Canon Inkjet Printer/Scanner/Fax Extended Survey Program—>C:Program Files (x86)CanonIJPLMSETUP.EXE -R
Canon iP2700 series — регистрация пользователя—>C:Program Files (x86)CanonIJEREGiP2700 seriesUNINST.EXE
Canon Utilities Easy-PhotoPrint EX—>C:Program Files (x86)CanonEasy-PhotoPrint EXuninst.exe Uninst.ini uinstrsc.dll
Canon Utilities My Printer—>C:Program FilesCanonMyPrinteruninst.exe uninst.ini uinstrsc.dll
Canon Utilities Solution Menu—>C:Program Files (x86)CanonSolutionMenuuninst.exe uninst.ini uinstrsc.dll
Collab—>C:Program Files (x86)Image-LineCollabuninstall.exe
Cooking Dash—>C:Program Files (x86)AsusGame ParkCooking DashUninstall.exe
CoyoteWT 1.1—>»C:Program Files (x86)CoyoteCoyoteWTunins000.exe»
CyberLink LabelPrint—>»C:Program Files (x86)InstallShield Installation Information{C59C179C-668D-49A9-B6EA-0121CCFC1243}Setup.exe» /z-uninstall
CyberLink LabelPrint—>»C:Program Files (x86)InstallShield Installation Information{C59C179C-668D-49A9-B6EA-0121CCFC1243}Setup.exe» /z-uninstall
CyberLink Power2Go—>»C:Program Files (x86)InstallShield Installation Information{40BF1E83-20EB-11D8-97C5-0009C5020658}Setup.exe» /z-uninstall
CyberLink Power2Go—>»C:Program Files (x86)InstallShield Installation Information{40BF1E83-20EB-11D8-97C5-0009C5020658}Setup.exe» /z-uninstall
CyberLink PowerDVD 10—>»C:Program Files (x86)InstallShield Installation Information{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}setup.exe» /z-uninstall
CyberLink PowerDVD 10—>»C:Program Files (x86)InstallShield Installation Information{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}setup.exe» /z-uninstall
D3DX10—>MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
DAEMON Tools Lite—>C:Program Files (x86)DAEMON Tools Liteuninst.exe
Delta Chrome Toolbar—>»C:UsersAsusAppDataRoamingBabSolutionSharedGUninstaller.exe» -key «Delta Chrome Toolbar» -rmkey -ask
Delta toolbar —>»C:Program Files (x86)Deltadelta1.8.10.0GUninstaller.exe» -uprtc /tbGen= -key «delta»
DVD Audio Extractor 7.1.1—>»C:Program Files (x86)DVD Audio Extractorunins000.exe»
EA SPORTS online 2007—>C:Program Files (x86)EA SPORTSEA SPORTS onlineEASOUNInstaller.exe
Easy CD-DA Extractor 16—>»C:Program FilesEasy CD-DA Extractor 16uninstall.exe» «/U:C:Program FilesEasy CD-DA Extractor 16irunin.xml»
Exact Audio Copy 1.0beta3—>C:Program Files (x86)Exact Audio Copyuninst.exe
FL Studio 8—>C:Program Files (x86)Image-LineFL Studio 8uninstall.exe
Flash Saver—>C:PROGRA~2FLASHS~1UNWISE.EXE C:PROGRA~2FLASHS~1INSTALL.LOG
Freenet—>C:Program Files (x86)Freenetbinfreenetuninstaller.exe
Game Park Console—>»C:Program Files (x86)AsusGame ParkGameConsoleunins000.exe»
Google Chrome—>»C:Program Files (x86)GoogleChromeApplication26.0.1410.43Installersetup.exe» —uninstall —multi-install —chrome —system-level
Google Toolbar for Internet Explorer—>»C:Program Files (x86)GoogleGoogle ToolbarComponentGoogleToolbarManager_E582EA556D8DE101.exe» /uninstall
Google Toolbar for Internet Explorer—>MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper—>MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Governor of Poker—>C:Program Files (x86)AsusGame ParkGovernor of PokerUninstall.exe
GPL Ghostscript 8.60—>C:Program Files (x86)gsuninstgs.exe «C:Program Files (x86)gsgs8.60uninstal.txt»
GPL Ghostscript Fonts—>C:Program Files (x86)gsuninstgs.exe «C:Program Files (x86)gsfontsuninstal.txt»
Guard.Mail.ru—>»C:Program Files (x86)Mail.RuGuardGuardMailRu.exe» /uninstall
Hotel Dash Suite Success—>C:Program Files (x86)AsusGame ParkHotel Dash Suite SuccessUninstall.exe
HP Update—>MsiExec.exe /X{7059BDA7-E1DB-442C-B7A1-6144596720A4}
IL Download Manager—>C:Program Files (x86)Image-LineDownloaderuninstall.exe
ImTOO Blu Ray Ripper—>C:Program Files (x86)ImTOOBlu Ray RipperUninstall.exe
Intel PROSet Wireless—>Intel PROSet Wireless
Intel(R) Control Center—>C:Program Files (x86)IntelIntel Control CenteruninstallerSetupICC.exe -uninstall -force -confirm
Intel(R) Processor Graphics—>C:Program Files (x86)IntelIntel(R) Processor GraphicsUninstallsetup.exe -uninstall
iSendSMS 2.2—>»C:Program Files (x86)iSendSMSunins000.exe»
Java(TM) 6 Update 16—>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016FF}
Jewel Quest 3—>C:Program Files (x86)AsusGame ParkJewel Quest 3Uninstall.exe
Junk Mail filter update—>MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
K-Lite Mega Codec Pack 9.6.9—>»C:Program Files (x86)K-Lite Codec Packunins000.exe»
ListeningSingingTeacher—>MsiExec.exe /I{B7BDEE5E-9B92-4149-9678-EA780002B37C}
Luxor 3—>C:Program Files (x86)AsusGame ParkLuxor 3Uninstall.exe
Maestro—>C:PROGRA~2OLDFIE~1MaestroUNWISE.EXE C:PROGRA~2OLDFIE~1MaestroINSTALL.LOG
Magic MP3 Tagger 2.2.6—>»C:Program Files (x86)Magic MP3 Taggerunins000.exe»
Mahjongg dimensions—>C:Program Files (x86)AsusGame ParkMahjongg dimensionsUninstall.exe
Mail.Ru Спутник 2.4.1.44—>C:Program Files (x86)Mail.RuSputnikMailRuSputnik.exe uninstall
Mesh Runtime—>MsiExec.exe /I{8C6D6116-B724-4810-8F2D-D047E6B7D68E}
Microsoft .NET Framework 1.1—>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Games for Windows — LIVE Redistributable—>MsiExec.exe /X{FD052FB9-FE90-4438-B355-15EDC89D8FB1}
Microsoft Office 2010—>MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}
Microsoft Office Starter 2010 — русский—>C:Program Files (x86)Common Filesmicrosoft sharedvirtualization handlercvhbs.exe /uninstall {90140011-0066-0419-0000-0000000FF1CE}
Microsoft Office нажми и работай 2010—>»C:PROGRA~2COMMON~1MICROS~1VIRTUA~1CVHBS.EXE» /removeall
Microsoft SQL Server 2005 Compact Edition [ENU]—>MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.21022—>MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729.4148—>MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729.6161—>MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729—>MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}
Microsoft Visual C++ 2010 x86 Redistributable — 10.0.40219—>MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft WSE 3.0 Runtime—>MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13}
mIRC—>C:Program Files (x86)mIRCuninstall.exe _?=C:Program Files (x86)mIRC
Mozilla Firefox 19.0.2 (x86 ru)—>C:Program Files (x86)Mozilla Firefoxuninstallhelper.exe
Mozilla Maintenance Service—>»C:Program Files (x86)Mozilla Maintenance Serviceuninstall.exe»
MSVC90_x86—>MsiExec.exe /I{AF111648-99A1-453E-81DD-80DBBF6DAD0D}
MSVCRT_amd64—>MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT—>MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSXML 4.0 SP2 (KB954430)—>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)—>MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MusicBrainz Picard—>C:Program Files (x86)MusicBrainz Picarduninst.exe
Native Instruments FM8—>»C:ProgramData{3006A797-CDFA-44FC-98EF-155579E2CDBF}FM8 Setup PC.exe» REMOVE=TRUE MODIFY=FALSE
Native Instruments Kontakt 5—>»C:ProgramData{78F6A1FC-ADDE-4028-A231-7B924CE455BD}Kontakt 5 Setup PC.exe» REMOVE=TRUE MODIFY=FALSE
Native Instruments Massive—>»C:ProgramData{E26B3878-7CEC-469C-B449-5CAA336DF8CD}Massive Setup PC.exe» REMOVE=TRUE MODIFY=FALSE
Native Instruments Service Center—>»C:ProgramData{95B4F0ED-951F-4D36-B068-5EC1C4C19C14}Service Center Setup PC.exe» REMOVE=TRUE MODIFY=FALSE
Neuratron PhotoScore Ultimate—>C:PROGRA~2NEURAT~1UNWISE.EXE C:PROGRA~2NEURAT~1INSTALL.LOG
Nokia Connectivity Cable Driver—>MsiExec.exe /I{A57025CC-5F2E-4D01-B387-06DB10500D43}
Nokia PC Suite—>C:ProgramDataInstallations{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}Nokia_PC_Suite_ALL.exe
Nokia PC Suite—>MsiExec.exe /I{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}
Nuance PDF Reader—>MsiExec.exe /X{B480904D-F73F-4673-B034-8A5F492C9184}
NVIDIA PhysX—>MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
Onyx Arranger 2.1 LE—>»C:Program Files (x86)Jasmine Music TechnologyOnyx Arranger 2.1 LEunins000.exe»
Onyx Arranger 2.1—>»C:Program Files (x86)Jasmine Music TechnologyOnyx Arranger 2.1unins000.exe»
OpenAL—>»C:Program Files (x86)OpenALOALINST.EXE» /U
Opera—>»C:Program Files (x86)Operauninstall.exe» «/U:C:Program Files (x86)OperaUninstalluninstall.xml»
Overture 4.1—>C:Windowsunvise32.exe C:Program Files (x86)GenieSoftOverture 4.1uninstal.log
PC Connectivity Solution—>MsiExec.exe /I{644F4910-E812-49AD-93EC-86828CB81A0D}
PG Music DirectX Plugins 2.0.0.0—>»C:Program Files (x86)PowerTracks DirectX Pluginsunins000.exe»
Picasa 3—>»C:Program Files (x86)GooglePicasa3Uninstall.exe»
Plants vs Zombies—>C:Program Files (x86)AsusGame ParkPlants vs ZombiesUninstall.exe
PoiZone—>C:Program Files (x86)Image-LinePoiZoneuninstall.exe
PutLockerDownloader—>C:Program Files (x86)PutLockerDownloader.comuninst.exe
QuickTime—>MsiExec.exe /I{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}
Rapture 1.2.2—>»C:Program FilesCakewalkRaptureunins000.exe»
RealCombos—>»C:bbuninstallunins003.exe»
Realtek Ethernet Controller Driver—>C:Program Files (x86)InstallShield Installation Information{8833FFB6-5B0C-4764-81AA-06DFEED9A476}SETUP.EXE -runfromtemp -removeonly
Realtek High Definition Audio Driver—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}setup.exe» -removeonly
Realtek USB 2.0 Reader Driver—>»C:Program Files (x86)InstallShield Installation Information{62BBB2F0-E220-4821-A564-730807D2C34D}setup.exe» -runfromtemp -removeonly
RME DIGICheck—>»C:Program Files (x86)RMEDigicheck5Uninstall.exe» «C:Program Files (x86)RMEDigicheck5install.log» -u
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {6AF6C62E-4E3D-33BF-A591-9E4D53BDF22F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {E59B2174-E924-311F-8549-AD714C14664D} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {DA36C2E5-6B34-3A6A-9C0A-7D1CC1C5A768} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {7B82A51A-768B-3A7B-ADFA-F777097A8079} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {E40184A4-4A61-3D2E-9035-CB6E1E610E07} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {4736E989-32D9-3B91-90D7-C68848E118CA} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {BA941BCD-BC45-3D64-AB89-0F737907515C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {F1696E2F-4803-362F-A756-65B363483FE6} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {C8B8456C-6A12-3725-95A8-1C9FBE1E3141} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheClientsetup.exe /uninstallpatch {8E6848A1-B790-34FE-921A-A5319258E254} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheExtendedsetup.exe /uninstallpatch {9D621E6E-E010-3C80-A055-135891134750} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheExtendedsetup.exe /uninstallpatch {E59B2174-E924-311F-8549-AD714C14664D} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheExtendedsetup.exe /uninstallpatch {BA941BCD-BC45-3D64-AB89-0F737907515C} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)—>c:WindowsMicrosoft.NETFramework64v4.0.30319SetupCacheExtendedsetup.exe /uninstallpatch {C8B8456C-6A12-3725-95A8-1C9FBE1E3141} /parameterfolder Extended
Shockwave—>C:WindowsSystem32MacromedSHOCKW~1UNWISE.EXE C:WindowsSystem32MacromedSHOCKW~1Install.log
Skype™ 5.5—>MsiExec.exe /X{F1CECE09-7CBE-4E98-B435-DA87CDA86167}
SONAR X2 Producer x64—>»C:Program FilesCakewalkSONAR X2 Producerunins000.exe»
Sonic Focus—>MsiExec.exe /I{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}
Sothink SWF Decompiler—>»C:Program Files (x86)SourceTecSothink SWF Decompilerunins000.exe»
Spectrasonics Omnisphere VSTi Plug-In version 1.5—>»C:Program Files (x86)VstPluginsSpectrasonicsOmnisphereunins000.exe»
Spectrasonics Stylus RMX Library version 1.0—>»C:ProgramDataSpectrasonicsSAGEStylus RMXunins000.exe»
Spectrasonics Stylus RMX VSTi Plug-In version 1.9—>»C:Program Files (x86)VstPluginsSpectrasonicsStylus RMXunins000.exe»
Spectrasonics Trilian Library version 1.0—>C:ProgramDataSpectrasonicsSTEAMTrilianunins000.exe
Spectrasonics Trilian VSTi Plug-In version 1.4—>»C:Program Files (x86)VstPluginsSpectrasonicsTrilianunins000.exe»
Steam—>MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Steinberg Cubase 5—>MsiExec.exe /I{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}
Steinberg Drum Loop Expansion 01—>MsiExec.exe /I{490BF87E-1F75-4453-BF55-9F540543A3CA}
Steinberg Groove Agent ONE Content—>MsiExec.exe /I{BD86F1AC-B594-46E4-85DC-1258AC9E2232}
Steinberg Groove Agent VSTi DXi v2.0—>»C:Program Files (x86)SteinbergGroove Agent 2Uninstallunins000.exe»
Steinberg HALionOne Additional Content Set 01—>MsiExec.exe /I{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}
Steinberg HALionOne Expression Set—>MsiExec.exe /I{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}
Steinberg HALionOne GM Drum Set—>MsiExec.exe /I{AC997F93-0757-4ED4-A701-F40C2D654D09}
Steinberg HALionOne GM Set—>MsiExec.exe /I{F057965A-D974-4C64-ADB1-4381CD4B8956}
Steinberg HALionOne Pro Set—>MsiExec.exe /I{D82CDA0D-C182-42C8-8FF2-5649C98D6003}
Steinberg HALionOne Studio Drum Set—>MsiExec.exe /I{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}
Steinberg HALionOne Studio Set—>MsiExec.exe /I{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}
Steinberg HALionOne—>MsiExec.exe /I{E70E7159-93B1-470D-9FBD-D8E9EF34B538}
Steinberg LoopMash Content—>MsiExec.exe /I{4D454CF8-12FD-464D-B57B-B46FE27B78BB}
Steinberg REVerence Content 01—>MsiExec.exe /I{532B917B-8235-4FA5-BE36-643A8BB053A5}
Studio Manager 64bit—>C:Program Files (x86)InstallShield Installation Information{4D149210-AC22-4B88-AC49-076F55300E49}setup.exe -runfromtemp -l0x0409
syncables desktop SE—>MsiExec.exe /X{341697D8-9923-445E-B42A-529E5A99CB7A}
ThunderSoft Flash to Video Converter (1.3.1.0)—>»C:Program Files (x86)ThunderSoftFlash to Video Converterunins000.exe»
Toxic Biohazard—>C:Program Files (x86)Image-LineToxic Biohazarduninstall.exe
Transcribe! 8.21—>»C:Program Files (x86)Transcribe!unins000.exe»
Tunatic—>»C:Windowslsb_un20.exe» /C=UC /N=Tunatic
uTorrent—>»C:Program Files (x86)uTorrentuninstall.exe» «/U:C:Program Files (x86)uTorrentUninstalluninstall.xml»
VLC media player 2.0.5—>C:Program Files (x86)VideoLANVLCuninstall.exe
Windows Live Communications Platform—>MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live Installer—>MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Mail—>MsiExec.exe /I{2303F9E7-6293-4A85-BC21-CA226FAD5CE4}
Windows Live Mail—>MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mesh—>MsiExec.exe /I{039480EE-6933-4845-88B8-77FD0C3D059D}
Windows Live Mesh—>MsiExec.exe /I{91BD94FE-ADCA-49CC-BE96-97D4BBC36FAF}
Windows Live Mesh—>MsiExec.exe /I{DECDCB7C-58CC-4865-91AF-627F9798FE48}
Windows Live Messenger—>MsiExec.exe /X{6986737B-F286-40D1-87AF-938339DCF6AB}
Windows Live Messenger—>MsiExec.exe /X{D57A002F-2B34-4E7B-A58B-0A4FBDA2E93F}
Windows Live Messenger—>MsiExec.exe /X{EB4DF488-AAEF-406F-A341-CB2AAA315B90}
Windows Live Movie Maker—>MsiExec.exe /X{7465A996-0FCA-4D2D-A52C-F833B0829B5B}
Windows Live Movie Maker—>MsiExec.exe /X{80651674-74AA-4155-AF2D-1339E628D187}
Windows Live Movie Maker—>MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Photo Common—>MsiExec.exe /X{168E7302-890A-4138-9109-A225ACAF7AD1}
Windows Live Photo Common—>MsiExec.exe /X{6AC57EEF-2733-4DE6-81BB-E78ACB964C22}
Windows Live Photo Common—>MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Gallery—>MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live PIMT Platform—>MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}
Windows Live SOXE Definitions—>MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE—>MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack—>MsiExec.exe /I{6A4ABCDC-0A49-4132-944E-01FBCCB3465C}
Windows Live UX Platform Language Pack—>MsiExec.exe /I{92280FD3-A119-41E6-A740-A62DBA4DFB53}
Windows Live UX Platform—>MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources—>MsiExec.exe /X{1B0545C4-620F-4661-A369-C4D113F24932}
Windows Live Writer Resources—>MsiExec.exe /X{7FF11E53-C002-4F40-8D68-6BE751E5DD62}
Windows Live Writer—>MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04}
Windows Live Writer—>MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
Windows Live Writer—>MsiExec.exe /X{CDC39BF2-9697-4959-B893-A2EE05EF6ACB}
Windows Live Writer—>MsiExec.exe /X{F28C98E9-BAC1-41FF-81F2-8885925CCB48}
WinFlash—>MsiExec.exe /X{8F21291E-0444-4B1D-B9F9-4370A73E346D}
Wireless Console 3—>MsiExec.exe /I{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}
World of Goo—>C:Program Files (x86)AsusGame ParkWorld of GooUninstall.exe
Yamaha Console File Converter—>MsiExec.exe /I{1AF51608-1F11-4479-B983-A3531452E268}
Yamaha DME-N Network Driver—>»C:Program Files (x86)InstallShield Installation Information{A0E2FB76-AF0C-4BC4-A646-399D14E3CB21}setup.exe» -runfromtemp -l0x0409 -removeonly
Yamaha LS9 Editor—>C:Program Files (x86)InstallShield Installation Information{95FCC2AB-5D4C-4E6A-BB96-3A80F20D536A}setup.exe -runfromtemp -l0x0409
Елемент керування Windows Live Mesh ActiveX для віддалених підключень—>MsiExec.exe /I{6756D5CA-3E31-4308-9BF0-79DFD1AF196E}
Коннект Менеджер—>C:Program Files (x86)Connect Manageruninst.exe
Они—>C:WindowsIsUn0419.exe -f»C:Program Files (x86)BukaOniUninst.isu»
Основи Windows Live—>MsiExec.exe /I{2C8FBAB0-4564-47B8-AC4B-9C7401B94BF2}
Основные компоненты Windows Live—>C:Program Files (x86)Windows LiveInstallerwlarp.exe
Основные компоненты Windows Live—>MsiExec.exe /I{E83DC314-C926-4214-AD58-147691D6FE9F}
Поддержка программ Apple—>MsiExec.exe /I{CCE825DB-347A-4004-A186-5F4A6FDD8547}
Почта Windows Live—>MsiExec.exe /I{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}
Фотоальбом Windows Live—>MsiExec.exe /X{77F69CA1-E53D-4D77-8BA3-FA07606CC851}
Фотоколекція Windows Live—>MsiExec.exe /X{C115A674-A398-49E5-9C6E-C0A541D3EA10}
Элемент управления Windows Live Mesh ActiveX для удаленных подключений—>MsiExec.exe /I{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}======Журнал событий «Система»======
Имя компьютера: Asus-ПК
Код события: 7036
Сообщение: Служба «Adobe Flash Player Update Service» перешла в состояние Остановлена.
Номер записи: 130926
Источник: Service Control Manager
Время записи: 20121115070900.199686-000
Тип события: Сведения
Пользователь:Имя компьютера: Asus-ПК
Код события: 7036
Сообщение: Служба «Adobe Flash Player Update Service» перешла в состояние Работает.
Номер записи: 130925
Источник: Service Control Manager
Время записи: 20121115070900.198686-000
Тип события: Сведения
Пользователь:Имя компьютера: Asus-ПК
Код события: 31004
Сообщение: Агенту DNS-прокси не удалось выделить 0 байтов памяти. Эта ошибка может означать, что системе не хватает виртуальной памяти, или что произошла внутренняя ошибка диспетчера памяти.
Номер записи: 130924
Источник: Microsoft-Windows-SharedAccess_NAT
Время записи: 20121115070649.000000-000
Тип события: Ошибка
Пользователь:Имя компьютера: Asus-ПК
Код события: 7036
Сообщение: Служба «Adobe Flash Player Update Service» перешла в состояние Остановлена.
Номер записи: 130923
Источник: Service Control Manager
Время записи: 20121115060900.221779-000
Тип события: Сведения
Пользователь:Имя компьютера: Asus-ПК
Код события: 7036
Сообщение: Служба «Adobe Flash Player Update Service» перешла в состояние Работает.
Номер записи: 130922
Источник: Service Control Manager
Время записи: 20121115060900.221779-000
Тип события: Сведения
Пользователь:=====Журнал событий «Приложения»=====
Имя компьютера: Asus-ПК
Код события: 0
Сообщение:
Номер записи: 8605
Источник: gupdate
Время записи: 20120507022111.000000-000
Тип события: Сведения
Пользователь:Имя компьютера: Asus-ПК
Код события: 0
Сообщение:
Номер записи: 8604
Источник: gupdate
Время записи: 20120507022100.000000-000
Тип события: Сведения
Пользователь:Имя компьютера: Asus-ПК
Код события: 1000
Сообщение: Cчетчики производительности для службы WmiApRpl (WmiApRpl) успешно загружены. Данные записи в секции данных содержат новые значения индексов, назначенные этой службе.
Номер записи: 8603
Источник: Microsoft-Windows-LoadPerf
Время записи: 20120507012612.884118-000
Тип события: Сведения
Пользователь: NT AUTHORITYсистемаИмя компьютера: Asus-ПК
Код события: 1001
Сообщение: Счетчики производительности для службы WmiApRpl (WmiApRpl) успешно удалены. Данные записи содержат новые значения записей реестра Last Counter и Last Help.
Номер записи: 8602
Источник: Microsoft-Windows-LoadPerf
Время записи: 20120507012612.784118-000
Тип события: Сведения
Пользователь: NT AUTHORITYсистемаИмя компьютера: Asus-ПК
Код события: 0
Сообщение:
Номер записи: 8601
Источник: gupdate
Время записи: 20120507012513.000000-000
Тип события: Сведения
Пользователь:=====Журнал событий «Безопасность»=====
Имя компьютера: Asus-ПК
Код события: 4672
Сообщение: Новому сеансу входа назначены специальные привилегии.Субъект:
ИД безопасности: S-1-5-20
Имя учетной записи: NETWORK SERVICE
Домен учетной записи: NT AUTHORITY
Код входа: 0x3e4Привилегии: SeAssignPrimaryTokenPrivilege
SeAuditPrivilege
SeImpersonatePrivilege
Номер записи: 17027
Источник: Microsoft-Windows-Security-Auditing
Время записи: 20120623205205.828433-000
Тип события: Аудит успеха
Пользователь:Имя компьютера: Asus-ПК
Код события: 4624
Сообщение: Вход с учетной записью выполнен успешно.Субъект:
ИД безопасности: S-1-5-18
Имя учетной записи: ASUS-ПК$
Домен учетной записи: WORKGROUP
Код входа: 0x3e7Тип входа: 5
Новый вход:
ИД безопасности: S-1-5-20
Имя учетной записи: NETWORK SERVICE
Домен учетной записи: NT AUTHORITY
Код входа: 0x3e4
GUID входа: {00000000-0000-0000-0000-000000000000}Сведения о процессе:
Идентификатор процесса: 0x270
Имя процесса: C:WindowsSystem32services.exeСведения о сети:
Имя рабочей станции:
Сетевой адрес источника: —
Порт источника: —Сведения о проверке подлинности:
Процесс входа: Advapi
Пакет проверки подлинности: Negotiate
Промежуточные службы: —
Имя пакета (только NTLM): —
Длина ключа: 0Данное событие возникает при создании сеанса входа. Оно создается в системе, вход в которую выполнен.
Поля «Субъект» указывают на учетную запись локальной системы, запросившую вход. Обычно это служба, например, служба «Сервер», или локальный процесс, такой как Winlogon.exe или Services.exe.
В поле «Тип входа» указан тип выполненного входа. Самыми распространенными являются типы 2 (интерактивный) и 3 (сетевой).
Поля «Новый вход» указывают на учетную запись, для которой создан новый сеанс входа, то есть на учетную запись, с которой выполнен вход.
В полях, которые относятся к сети, указан источник запроса на удаленный вход. Имя рабочей станции доступно не всегда, и в некоторых случаях это поле может оставаться незаполненным.
Поля сведений о проверке подлинности содержат подробные данные о конкретном запросе на вход.
— GUID входа — это уникальный идентификатор, который позволяет сопоставить данное событие с событием KDC.
— В поле «Промежуточные службы» указано, какие промежуточные службы участвовали в данном запросе на вход.
— Поле «Имя пакета» указывает на подпротокол, использованный с протоколами NTLM.
— Поле «Длина ключа» содержит длину созданного ключа сеанса. Это поле может иметь значение «0», если ключ сеанса не запрашивался.
Номер записи: 17026
Источник: Microsoft-Windows-Security-Auditing
Время записи: 20120623205205.828433-000
Тип события: Аудит успеха
Пользователь:Имя компьютера: Asus-ПК
Код события: 4672
Сообщение: Новому сеансу входа назначены специальные привилегии.Субъект:
ИД безопасности: S-1-5-18
Имя учетной записи: система
Домен учетной записи: NT AUTHORITY
Код входа: 0x3e7Привилегии: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Номер записи: 17025
Источник: Microsoft-Windows-Security-Auditing
Время записи: 20120623205205.500833-000
Тип события: Аудит успеха
Пользователь:Имя компьютера: Asus-ПК
Код события: 4624
Сообщение: Вход с учетной записью выполнен успешно.Субъект:
ИД безопасности: S-1-5-18
Имя учетной записи: ASUS-ПК$
Домен учетной записи: WORKGROUP
Код входа: 0x3e7Тип входа: 5
Новый вход:
ИД безопасности: S-1-5-18
Имя учетной записи: система
Домен учетной записи: NT AUTHORITY
Код входа: 0x3e7
GUID входа: {00000000-0000-0000-0000-000000000000}Сведения о процессе:
Идентификатор процесса: 0x270
Имя процесса: C:WindowsSystem32services.exeСведения о сети:
Имя рабочей станции:
Сетевой адрес источника: —
Порт источника: —Сведения о проверке подлинности:
Процесс входа: Advapi
Пакет проверки подлинности: Negotiate
Промежуточные службы: —
Имя пакета (только NTLM): —
Длина ключа: 0Данное событие возникает при создании сеанса входа. Оно создается в системе, вход в которую выполнен.
Поля «Субъект» указывают на учетную запись локальной системы, запросившую вход. Обычно это служба, например, служба «Сервер», или локальный процесс, такой как Winlogon.exe или Services.exe.
В поле «Тип входа» указан тип выполненного входа. Самыми распространенными являются типы 2 (интерактивный) и 3 (сетевой).
Поля «Новый вход» указывают на учетную запись, для которой создан новый сеанс входа, то есть на учетную запись, с которой выполнен вход.
В полях, которые относятся к сети, указан источник запроса на удаленный вход. Имя рабочей станции доступно не всегда, и в некоторых случаях это поле может оставаться незаполненным.
Поля сведений о проверке подлинности содержат подробные данные о конкретном запросе на вход.
— GUID входа — это уникальный идентификатор, который позволяет сопоставить данное событие с событием KDC.
— В поле «Промежуточные службы» указано, какие промежуточные службы участвовали в данном запросе на вход.
— Поле «Имя пакета» указывает на подпротокол, использованный с протоколами NTLM.
— Поле «Длина ключа» содержит длину созданного ключа сеанса. Это поле может иметь значение «0», если ключ сеанса не запрашивался.
Номер записи: 17024
Источник: Microsoft-Windows-Security-Auditing
Время записи: 20120623205205.500833-000
Тип события: Аудит успеха
Пользователь:Имя компьютера: Asus-ПК
Код события: 4902
Сообщение: Создана таблица политики аудита по пользователям.Число элементов: 0
Идентификатор политики: 0xa2b0
Номер записи: 17023
Источник: Microsoft-Windows-Security-Auditing
Время записи: 20120623205205.422833-000
Тип события: Аудит успеха
Пользователь:======переменные среды======
«ComSpec»=%SystemRoot%system32cmd.exe
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«Path»=C:Program Files (x86)PC Connectivity Solution;C:Program Files (x86)NVIDIA CorporationPhysXCommon;C:Program FilesCommon FilesMicrosoft SharedWindows Live;C:Program Files (x86)Common FilesMicrosoft SharedWindows Live;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;C:Program Files (x86)Windows LiveShared;;C:Program FilesIntelWiFibin;C:Program FilesCommon FilesIntelWirelessCommon;C:Program Files (x86)QuickTimeQTSystem
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
«PROCESSOR_ARCHITECTURE»=AMD64
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«USERNAME»=SYSTEM
«windir»=%SystemRoot%
«PSModulePath»=%SystemRoot%system32WindowsPowerShellv1.0Modules
«NUMBER_OF_PROCESSORS»=2
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
«PROCESSOR_REVISION»=2a07
«configsetroot»=%SystemRoot%ConfigSetRoot
«asl.log»=Destination=file
«CLASSPATH»=.;C:Program Files (x86)Javajre6libextQTJava.zip
«QTJAVA»=C:Program Files (x86)Javajre6libextQTJava.zip
EOF
Logfile of random’s system information tool 1.05 (written by random/random)
Run by Danila at 2010-02-09 19:59:26
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 1 GB (2%) free of 50 GB
Total RAM: 503 MB (34% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:59:36, on 09.02.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32spoolsv.exe
C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe
C:Program FilesCommon FilesLightScribeLSSrvc.exe
C:WINDOWSsystem32taskmgr.exe
C:WINDOWSAGRSMMSG.exe
C:WINDOWSsystem32igfxtray.exe
C:WINDOWSsystem32hkcmd.exe
C:WINDOWSsystem32igfxsrvc.exe
C:WINDOWSsystem32igfxpers.exe
C:Program FileshpqHP Wireless AssistantHP Wireless Assistant.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSSMINSTScheduler.exe
C:Program FilesAnalog DevicesCoresmax4pnp.exe
C:Program FilesCreativeSound Blaster Audigy 2DVDAudioCTDVDDET.EXE
C:Program FilesCreativeSound Blaster Audigy 2Surround MixerCTSysVol.exe
C:Program FilesCreativeSound Blaster Audigy 2PCMCIA Sound Blaster UtilityCTSBUtl.exe
C:Program FilesCreativeShared FilesModule LoaderDLLML.exe
C:PROGRA~1hpqSharedHPQTOA~1.EXE
C:WINDOWSCTHELPER.EXE
C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe
C:Program FilesCreativeSound Blaster Audigy 2PCMCIA Sound Blaster UtilityCTAPR.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesDAEMON Tools Litedaemon.exe
C:Program FilesInternet ExplorerIEXPLORE.EXE
C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtblfs.exe
C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe
C:Documents and SettingsDanilaDesktopRSIT.exe
C:Program FilesTrend MicroHijackThisDanila.exeR0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.hp.com
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://www.hp.com/
F2 — REG:system.ini: UserInit=C:WINDOWSsystem32userinit.exe,\?globalrootsystemrootsystem32ILWxp1E.exe,C:WINDOWSsystem32services.exe,
O2 — BHO: AcroIEHlprObj Class — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 — BHO: IEVkbdBHO — {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} — C:Program FilesKaspersky LabKaspersky Internet Security 2010ievkbd.dll
O2 — BHO: link filter bho — {E33CF602-D945-461A-83F0-819F76A199F8} — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll
O4 — HKLM..Run: [AGRSMMSG] AGRSMMSG.exe
O4 — HKLM..Run: [igfxtray] C:WINDOWSsystem32igfxtray.exe
O4 — HKLM..Run: [igfxhkcmd] C:WINDOWSsystem32hkcmd.exe
O4 — HKLM..Run: [igfxpers] C:WINDOWSsystem32igfxpers.exe
O4 — HKLM..Run: [hpWirelessAssistant] C:Program FileshpqHP Wireless AssistantHP Wireless Assistant.exe
O4 — HKLM..Run: [Cpqset] C:Program FilesHPQDefault Settingscpqset.exe
O4 — HKLM..Run: [Recguard] C:WINDOWSSminstRecguard.exe
O4 — HKLM..Run: [Reminder] C:WINDOWSCreatorRemind_XP.exe
O4 — HKLM..Run: [Scheduler] C:WINDOWSSMINSTScheduler.exe
O4 — HKLM..Run: [SoundMAXPnP] C:Program FilesAnalog DevicesCoresmax4pnp.exe
O4 — HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 — HKLM..Run: [CTDVDDET] «C:Program FilesCreativeSound Blaster Audigy 2DVDAudioCTDVDDET.EXE»
O4 — HKLM..Run: [CTSysVol] C:Program FilesCreativeSound Blaster Audigy 2Surround MixerCTSysVol.exe /r
O4 — HKLM..Run: [CTPCMCIASBUtility] C:Program FilesCreativeSound Blaster Audigy 2PCMCIA Sound Blaster UtilityCTSBUtl.exe
O4 — HKLM..Run: [AudioDrvEmulator] «C:Program FilesCreativeShared FilesModule LoaderDLLML.exe» -1 AudioDrvEmulator «C:Program FilesCreativeShared FilesModule LoaderAudio EmulatorAudDrvEm.dll»
O4 — HKLM..Run: [CTHelper] CTHELPER.EXE
O4 — HKLM..Run: [QuickTime Task] «C:Program FilesQuickTimeqttask.exe» -atboottime
O4 — HKLM..Run: [AVP] «C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe»
O4 — HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [DAEMON Tools Lite] «C:Program FilesDAEMON Tools Litedaemon.exe» -autorun
O4 — Global Startup: Adobe Reader Speed Launch.lnk = C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe
O8 — Extra context menu item: Добавить в Анти-Баннер — C:Program FilesKaspersky LabKaspersky Internet Security 2010ie_banner_deny.htm
O9 — Extra button: &Виртуальная клавиатура — {4248FE82-7FCB-46AC-B270-339F08212110} — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll
O9 — Extra button: (no name) — {5067A26B-1337-4436-8AFE-EE169C2DA79F} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {5067A26B-1337-4436-8AFE-EE169C2DA79F} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Проверка ссы&лок — {CCF151D8-D089-449F-A5A4-D9909053F20F} — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll
O9 — Extra button: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
O9 — Extra ‘Tools’ menuitem: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O14 — IERESET.INF: START_PAGE_URL=http://www.hp.com
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O20 — AppInit_DLLs: C:PROGRA~1KASPER~1KASPER~2mzvkbd3.dll
O23 — Service: Kaspersky Internet Security (AVP) — Kaspersky Lab — C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe
O23 — Service: LightScribeService Direct Disc Labeling Service (LightScribeService) — Hewlett-Packard Company — C:Program FilesCommon FilesLightScribeLSSrvc.exe
O23 — Service: PC Angel (PCA) — SoftThinks — C:WINDOWSSMINSTPCAngel.exe
O23 — Service: SureThing Labelflash service — MicroVision Development, Inc. — C:Program FilesCommon FilesSureThing Sharedstllssvr.exe—
End of file — 7042 bytes======Scheduled tasks folder======
C:WINDOWStasksAppleSoftwareUpdate.job
======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2005-09-24 63136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2009-08-04 1586472][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class — C:Program FilesKaspersky LabKaspersky Internet Security 2010ievkbd.dll [2009-10-20 68112][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll [2009-10-20 268816][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«AGRSMMSG»=C:WINDOWSAGRSMMSG.exe [2006-01-30 88203]
«igfxtray»=C:WINDOWSsystem32igfxtray.exe [2006-03-23 94208]
«igfxhkcmd»=C:WINDOWSsystem32hkcmd.exe [2006-03-23 77824]
«igfxpers»=C:WINDOWSsystem32igfxpers.exe [2006-03-23 118784]
«hpWirelessAssistant»=C:Program FileshpqHP Wireless AssistantHP Wireless Assistant.exe [2006-02-14 454656]
«Cpqset»=C:Program FilesHPQDefault Settingscpqset.exe [2006-01-26 172094]
«Recguard»=C:WINDOWSSminstRecguard.exe [2005-12-21 1187840]
«Reminder»=C:WINDOWSCreatorRemind_XP.exe [2006-03-10 806912]
«Scheduler»=C:WINDOWSSMINSTScheduler.exe [2006-02-16 892928]
«SoundMAXPnP»=C:Program FilesAnalog DevicesCoresmax4pnp.exe [2005-05-20 925696]
«NeroFilterCheck»=C:WINDOWSsystem32NeroCheck.exe [2006-01-12 155648]
«CTDVDDET»=C:Program FilesCreativeSound Blaster Audigy 2DVDAudioCTDVDDET.EXE [2003-06-18 45056]
«CTSysVol»=C:Program FilesCreativeSound Blaster Audigy 2Surround MixerCTSysVol.exe [2005-10-31 57344]
«CTPCMCIASBUtility»=C:Program FilesCreativeSound Blaster Audigy 2PCMCIA Sound Blaster UtilityCTSBUtl.exe [2005-09-05 147456]
«AudioDrvEmulator»=C:Program FilesCreativeShared FilesModule LoaderDLLML.exe [2005-11-04 49152]
«CTHelper»=C:WINDOWSCTHELPER.EXE [2005-12-08 16384]
«QuickTime Task»=C:Program FilesQuickTimeqttask.exe [2009-09-05 417792]
«AVP»=C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe [2009-10-20 340456][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2004-08-04 15360]
«DAEMON Tools Lite»=C:Program FilesDAEMON Tools Litedaemon.exe [2008-12-29 687560]C:Documents and SettingsAll UsersStart MenuProgramsStartup
Adobe Reader Speed Launch.lnk — C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows]
«AppInit_DLLS»=»C:PROGRA~1KASPER~1KASPER~2mzvkbd3.dll»[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyigfxcui]
C:WINDOWSsystem32igfxdev.dll [2006-03-23 139264][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyklogon]
C:WINDOWSsystem32klogon.dll [2009-10-20 219664][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=36
«NoDriveAutoRun»=FFFFFFFF[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:WINDOWSSMINSTScheduler.exe»=»C:WINDOWSSMINSTScheduler.exe:*:Enabled:Scheduler «
«C:Program FilesICQ6.5ICQ.exe»=»C:Program FilesICQ6.5ICQ.exe:*:Enabled:ICQ6»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«C:Program FilesSkypePlugin ManagerskypePM.exe»=»C:Program FilesSkypePlugin ManagerskypePM.exe:*:Enabled:Skype Extras Manager»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype»[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{8e7456b7-22d4-11de-a7c6-0014a5a92427}]
shellAutoRuncommand — H:USBNB.exe======List of files/folders created in the last 1 months======
2010-02-09 19:55:43 —-D—- C:rsit
2010-02-09 19:37:09 —-A—- C:WINDOWSsystem32bkigqkI.exe
2010-02-09 08:26:30 —-A—- C:WINDOWSsystem324ebUMne.exe
2010-02-09 07:47:18 —-A—- C:WINDOWSsystem3219TnCd3.exe
2010-02-09 07:46:56 —-D—- C:Program FilesCommon Fileswm
2010-02-09 07:46:56 —-A—- C:Program FilesCommon Fileskeylog.txt
2010-02-09 07:46:45 —-A—- C:WINDOWSsystem32ILWxp1E.exe
2010-01-19 02:51:59 —-SHD—- C:found.001======List of files/folders modified in the last 1 months======
2010-02-09 19:57:16 —-D—- C:WINDOWSTemp
2010-02-09 19:55:57 —-D—- C:WINDOWSPrefetch
2010-02-09 19:40:26 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab
2010-02-09 19:40:00 —-D—- C:WINDOWSSMINST
2010-02-09 19:37:28 —-D—- C:WINDOWSsystem32
2010-02-09 08:21:09 —-D—- C:WINDOWS
2010-02-09 08:18:58 —-SHD—- C:System Volume Information
2010-02-09 08:18:58 —-D—- C:WINDOWSsystem32Restore
2010-02-09 07:46:56 —-D—- C:Program FilesCommon Files
2010-02-08 22:47:20 —-D—- C:Program FilesMozilla Firefox
2010-02-08 00:08:54 —-D—- C:Program Filesfoobar2000
2010-02-07 23:21:57 —-D—- C:Documents and SettingsDanilaApplication DataSkype
2010-02-07 16:00:57 —-D—- C:Documents and SettingsDanilaApplication DataskypePM
2010-02-07 14:30:09 —-A—- C:WINDOWSNeroDigital.ini
2010-02-06 11:47:02 —-D—- C:Documents and SettingsDanilaApplication DatauTorrent======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Intel Processor Driver; C:WINDOWSsystem32DRIVERSintelppm.sys [2004-08-27 36096]
R1 kbdhid;Keyboard HID Driver; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-04 14848]
R1 kl1;Kl1; ??C:WINDOWSsystem32driverskl1.sys []
R1 KLIF;Kaspersky Lab Driver; C:WINDOWSsystem32DRIVERSklif.sys [2009-11-24 315408]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:WINDOWSsystem32DRIVERSwmiacpi.sys [2004-08-03 8832]
R2 Aspi32;Aspi32; C:WINDOWSsystem32driversAspi32.sys [2002-05-06 17005]
R2 PfModNT;PfModNT; ??C:WINDOWSsystem32driversPfModNT.sys []
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:WINDOWSsystem32driversADIHdAud.sys [2006-02-28 176128]
R3 AEAudioService;AEAudio Service; C:WINDOWSsystem32driversAEAudio.sys [2005-06-07 152960]
R3 AgereSoftModem;Agere Systems Soft Modem; C:WINDOWSsystem32DRIVERSAGRSM.sys [2006-01-30 1120352]
R3 Arp1394;1394 ARP Client Protocol; C:WINDOWSsystem32DRIVERSarp1394.sys [2004-08-04 60800]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:WINDOWSsystem32DRIVERSbcmwl5.sys [2006-01-19 424320]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller; C:WINDOWSsystem32DRIVERSbcm4sbxp.sys [2006-02-09 45312]
R3 CmBatt;Microsoft AC Adapter Driver; C:WINDOWSsystem32DRIVERSCmBatt.sys [2004-08-03 14080]
R3 ctac32k;Creative AC3 Software Decoder; C:WINDOWSsystem32driversctac32k.sys [2005-12-08 501760]
R3 ctaud2k;Creative Audio Driver (WDM); C:WINDOWSsystem32driversctaud2k.sys [2005-12-08 439296]
R3 ctmmfilt;Audio Filter Driver; C:WINDOWSsystem32driversctmmfilt.sys [2005-09-06 1365888]
R3 ctprxy2k;Creative Proxy Driver; C:WINDOWSsystem32driversctprxy2k.sys [2005-12-08 7168]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:WINDOWSsystem32driversctsfm2k.sys [2005-12-08 142336]
R3 CTUSFSYN;Creative SoundFont Synthesizer; C:WINDOWSsystem32driversctusfsyn.sys [2005-08-04 160896]
R3 emupia;E-mu Plug-in Architecture Driver; C:WINDOWSsystem32driversemupia2k.sys [2005-12-08 77824]
R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:WINDOWSsystem32driversha10kx2k.sys [2005-12-08 754176]
R3 hap17v2k;Creative P17V HAL Driver; C:WINDOWSsystem32drivershap17v2k.sys [2005-12-08 179712]
R3 HBtnKey;HBtnKey; C:WINDOWSsystem32DRIVERScpqbttn.sys [2005-09-19 9344]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2005-01-08 138752]
R3 ialm;ialm; C:WINDOWSsystem32DRIVERSialmnt5.sys [2006-03-23 1166972]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:WINDOWSsystem32DRIVERSklim5.sys [2009-09-14 32272]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:WINDOWSsystem32DRIVERSklmouflt.sys [2009-10-02 19472]
R3 NIC1394;1394 Net Driver; C:WINDOWSsystem32DRIVERSnic1394.sys [2004-08-04 61824]
R3 ossrv;Creative OS Services Driver; C:WINDOWSsystem32driversctoss2k.sys [2005-12-08 114688]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-04 26624]
R3 usbhub;Microsoft USB Standard Hub Driver; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-04 57600]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-04 20480]
S3 akrrstxw;akrrstxw; C:WINDOWSsystem32driversakrrstxw.sys []
S3 ATSWPDRV;AuthenTec TruePrint USB Driver (AES2500); C:WINDOWSsystem32DRIVERSATSwpDrv.sys [2006-03-30 130432]
S3 b57w2k;Broadcom NetLink (TM) Gigabit Ethernet; C:WINDOWSsystem32DRIVERSb57xp32.sys [2006-02-09 142720]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:WINDOWSSystem32Driversbtwusb.sys [2006-01-19 57096]
S3 ctdvda2k;Creative DVD-Audio Device Driver; C:WINDOWSsystem32driversctdvda2k.sys [2005-11-10 340704]
S3 eabfiltr;eabfiltr; C:WINDOWSsystem32DRIVERSeabfiltr.sys [2005-09-19 7808]
S3 eabusb;eabusb; C:WINDOWSsystem32DRIVERSeabusb.sys [2005-09-19 5760]
S3 hap16v2k;Creative P16V HAL Driver; C:WINDOWSsystem32drivershap16v2k.sys [2005-12-08 154112]
S3 HidUsb;Microsoft HID Class Driver; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
S3 mouhid;Mouse HID Driver; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-08-17 12160]
S3 Rasirda;WAN Miniport (IrDA); C:WINDOWSsystem32DRIVERSrasirda.sys [2001-08-17 19584]
S3 sdbus;sdbus; C:WINDOWSsystem32DRIVERSsdbus.sys [2005-12-21 76544]
S3 SMCIRDA;SMC IrCC Miniport Device Driver; C:WINDOWSsystem32DRIVERSsmcirda.sys [2001-08-17 35913]
S3 tifm21;tifm21; C:WINDOWSsystem32driverstifm21.sys []
S3 usbccgp;Microsoft USB Generic Parent Driver; C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
S3 USBSTOR;USB Mass Storage Driver; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:WINDOWSsystem32DRIVERSw39n51.sys [2006-01-19 1428096]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP;Kaspersky Internet Security; C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe [2009-10-20 340456]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:Program FilesCommon FilesLightScribeLSSrvc.exe [2005-12-19 73728]
R2 UMWdf;Windows User Mode Driver Framework; C:WINDOWSsystem32wdfmgr.exe [2004-10-11 38912]
S2 PCA;PC Angel; C:WINDOWSSMINSTPCAngel.exe [2006-01-12 294912]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver11Intel 32IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 SureThing Labelflash service;SureThing Labelflash service; C:Program FilesCommon FilesSureThing Sharedstllssvr.exe [2008-06-18 74384]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]
EOF
info.txt logfile of random’s system information tool 1.05 2010-02-09 19:56:38
======Uninstall list======
—>»C:Program FilesCreativeSound Blaster Audigy 2ProgramSETUP.EXE» /INF /S /U /W
—>C:WINDOWSIsUninst.exe -fC:WINDOWSorun32.isu
—>C:WINDOWSsystem32\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
—>C:WINDOWSsystem32\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
—>C:WINDOWSsystem32\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
—>MsiExec.exe /I{26DE0F0B-9CF1-4796-A1B5-01B912E35B46}
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{1EF644C7-1A0D-4B94-9AF5-AD04702094A4}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{1EF644C7-1A0D-4B94-9AF5-AD04702094A4}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{2670895A-4E6C-4450-B868-7B7DB80A3357}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{2670895A-4E6C-4450-B868-7B7DB80A3357}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{32B4B536-4443-42F0-9676-98373BE9114F}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{32B4B536-4443-42F0-9676-98373BE9114F}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{44267176-A318-447F-A62A-0A5FD608C34F}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{44267176-A318-447F-A62A-0A5FD608C34F}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{52338F65-A1C3-4CDC-B733-50051682B297}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{52338F65-A1C3-4CDC-B733-50051682B297}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{63A317D0-60A6-43FC-848A-9FE4A53B29CE}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{700932B3-A964-4878-82A2-96054622A1F7}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{700932B3-A964-4878-82A2-96054622A1F7}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{73919E2B-725C-4FAA-8473-45E063A3575F}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{73919E2B-725C-4FAA-8473-45E063A3575F}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{7B9AE66C-2A8F-4FB2-85D7-416AFFAE8408}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{7B9AE66C-2A8F-4FB2-85D7-416AFFAE8408}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{84F573D3-0F71-4768-978A-D35310E3FBA6}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{84F573D3-0F71-4768-978A-D35310E3FBA6}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{88B1984E-36F0-47B8-B8DC-728966807A9C}SETUP.EXE» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{BD6928A2-9F8F-4AA7-9A3A-FD4A271712EE}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{BD6928A2-9F8F-4AA7-9A3A-FD4A271712EE}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{C229589D-CC1A-43FF-9507-CDED3AB85325}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{C229589D-CC1A-43FF-9507-CDED3AB85325}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{C64409FA-42A7-49C6-837A-D2E5D813BD57}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{C64409FA-42A7-49C6-837A-D2E5D813BD57}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{CE038905-820E-4196-9ADE-CF806731021E}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{CE038905-820E-4196-9ADE-CF806731021E}setup.exe» -l0x9 /remove
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}setup.exe» -l0x9
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}setup.exe» -l0x9 /remove
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Reader 7.0.5—>MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70500000002}
Agere Systems HDA Modem—>agrsmdel
Ahead DVD Ripper 1.1.2—>»C:Program FilesAhead DVD Ripperunins000.exe»
Apple Application Support—>MsiExec.exe /I{0C34B801-6AEC-4667-B053-03A67E2D0415}
Apple Software Update—>MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Aspi setup—>»C:Program FilesAhead DVD Ripperunins001.exe»
CCleaner (remove only)—>»C:Program FilesCCleaneruninst.exe»
Creative Software AutoUpdate—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{88B1984E-36F0-47B8-B8DC-728966807A9C}SETUP.EXE» -l0x9 /remove
Creative System Information—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{63A317D0-60A6-43FC-848A-9FE4A53B29CE}setup.exe» -l0x9 /remove
DVD Audio Extractor 4.5.5—>»C:Program FilesDVD Audio Extractorunins000.exe»
Easy CD-DA Extractor 12—>»C:WINDOWSEasy CD-DA Extractor 12uninstall.exe» «/U:C:Program FilesEasy CD-DA Extractor 12irunin.xml»
eMule Plus 1.2d—>»C:Program FileseMuleunins000.exe»
Exact Audio Copy 0.99pb1—>C:Program FilesExact Audio Copyuninst.exe
foobar2000 0.9.6.9 (Complex Ideas)—>»C:Program Filesfoobar2000unins000.exe»
HijackThis 2.0.2—>»C:Program FilesTrend MicroHijackThisHijackThis.exe» /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)—>C:WINDOWSsystem32msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=»»
Hotfix for Windows XP (KB896243)—>»C:WINDOWS$NtUninstallKB896243$spuninstspuninst.exe»
Hotfix for Windows XP (KB896256)—>»C:WINDOWS$NtUninstallKB896256$spuninstspuninst.exe»
Hotfix for Windows XP (KB909095)—>»C:WINDOWS$NtUninstallKB909095$spuninstspuninst.exe»
Hotfix for Windows XP (KB912436)—>»C:WINDOWS$NtUninstallKB912436$spuninstspuninst.exe»
Hotfix for Windows XP (KB915326)—>»C:WINDOWS$NtUninstallKB915326$spuninstspuninst.exe»
HP Backup and Recovery Manager Installer—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1050Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}setup.exe» -l0x9 -uninst -removeonly
HP Wireless Assistant 2.00 E1—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime701Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}setup.exe» -l0x9 hpquninst
ICQ6.5—>»C:Program FilesInstallShield Installation Information{60DE4033-9503-48D1-A483-7846BD217CA9}setup.exe» -runfromtemp -l0x0009 -removeonly
Intel(R) Graphics Media Accelerator Driver—>RUNDLL32.EXE C:WINDOWSsystem32ialmrem.dll,UninstallW2KIGfx2ID PCIVEN_8086&DEV_27A6 PCIVEN_8086&DEV_27A2
Kaspersky Internet Security 2010—>MsiExec.exe /I{9D8B0949-7C47-476F-9F06-F900D3B078EA}
Kaspersky Internet Security 2010—>MsiExec.exe /I{9D8B0949-7C47-476F-9F06-F900D3B078EA}
K-Lite Codec Pack 3.01 Full—>»C:Program FilesK-Lite Codec Packunins000.exe»
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack — RUS—>MsiExec.exe /I{736D8DEB-66C6-3655-9D59-DF6493A81F77}
Microsoft .NET Framework 2.0 Service Pack 2—>MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack — RUS—>MsiExec.exe /I{6CF6A814-CE65-39FC-BBBC-6CB340A4028B}
Microsoft .NET Framework 3.0 Service Pack 2—>MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 — rus—>MsiExec.exe /I{2744791F-4E7C-32F5-AB40-AEC6A6C86DBF}
Microsoft .NET Framework 3.5 SP1—>C:WINDOWSMicrosoft.NETFrameworkv3.5Microsoft .NET Framework 3.5 SP1setup.exe
Microsoft .NET Framework 3.5 SP1—>MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Monkey’s Audio—>»C:Program FilesMonkey’s Audiounins000.exe»
Mozilla Firefox (3.5.7)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
MSXML 6.0 Parser (KB933579)—>MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Native Instruments Traktor DJ Studio v3.1.1.053—>C:PROGRA~1NATIVE~1TRAKTO~1UNWISE.EXE C:PROGRA~1NATIVE~1TRAKTO~1INSTALL.LOG
Nero 6 Ultra Edition—>C:Program FilesAheadnerouninstallUNNERO.exe /UNINSTALL
Nero Mega Plugin Pack—>MsiExec.exe /I{EF901A4B-A25A-4962-83C6-C6691D062ED9}
Nokia Connectivity Cable Driver—>C:PROGRA~1COMMON~1INSTAL~1Driver9INTEL3~1IDriver.exe /M{4AD35E01-9BA9-4F0C-B6B7-09C6C8F20D15} /l1049
Oni—>C:WINDOWSIsUninst.exe -fC:GamesOniUninst.isu
PROSONIQ Timefactory II—>C:WINDOWSuninst.exe -f»C:Program FilesPROSONIQ PRODUCTS SOFTWAREPROSONIQ Timefactory IIDeIsL1.isu» -c»C:Program FilesPROSONIQ PRODUCTS SOFTWAREPROSONIQ Timefactory II_ISREG32.DLL»
QuickTime—>MsiExec.exe /I{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}
Security Update for Windows Media Player (KB911564)—>»C:WINDOWS$NtUninstallKB911564$spuninstspuninst.exe»
Security Update for Windows Media Player 9 (KB911565)—>»C:WINDOWS$NtUninstallKB911565$spuninstspuninst.exe»
Security Update for Windows XP (KB893066)—>»C:WINDOWS$NtUninstallKB893066$spuninstspuninst.exe»
Security Update for Windows XP (KB896358)—>»C:WINDOWS$NtUninstallKB896358$spuninstspuninst.exe»
Security Update for Windows XP (KB896422)—>»C:WINDOWS$NtUninstallKB896422$spuninstspuninst.exe»
Security Update for Windows XP (KB896423)—>»C:WINDOWS$NtUninstallKB896423$spuninstspuninst.exe»
Security Update for Windows XP (KB901190)—>»C:WINDOWS$NtUninstallKB901190$spuninstspuninst.exe»
Security Update for Windows XP (KB901214)—>»C:WINDOWS$NtUninstallKB901214$spuninstspuninst.exe»
Security Update for Windows XP (KB903235)—>»C:WINDOWS$NtUninstallKB903235$spuninstspuninst.exe»
Security Update for Windows XP (KB904706)—>»C:WINDOWS$NtUninstallKB904706$spuninstspuninst.exe»
Security Update for Windows XP (KB908519)—>»C:WINDOWS$NtUninstallKB908519$spuninstspuninst.exe»
Security Update for Windows XP (KB911927)—>»C:WINDOWS$NtUninstallKB911927$spuninstspuninst.exe»
Security Update for Windows XP (KB912919)—>»C:WINDOWS$NtUninstallKB912919$spuninstspuninst.exe»
Security Update for Windows XP (KB913446)—>»C:WINDOWS$NtUninstallKB913446$spuninstspuninst.exe»
Skype web features—>MsiExec.exe /I{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}
Skype™ 4.1—>MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
Sonic Audio Module—>MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Sonic Copy Module—>MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
Sonic Data Module—>MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
Sony Sound Forge 8.0d—>MsiExec.exe /X{5636E517-8100-4E2A-B69E-2B16AFFA2360}
Sony Vegas Pro 8.0—>MsiExec.exe /X{7C9AD221-994C-45B2-B46D-26F5735158CF}
Sound Blaster Audigy 2—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{1B587B24-9BCF-4374-9B5B-E40F48A8720F}SETUP.EXE» -l0x9 /remove
SureThing CD Labeler Deluxe 5—>»C:Program FilesSureThing CD Labeler 5unins000.exe»
Tau Analyzer (remove only)—>»C:Program FilesTrue AudioTau AnalyzerTauAnalyzer-uninstall.exe»
Texas Instruments PCIxx21/x515/xx12 drivers.—>c:PROGRA~1COMMON~1INSTAL~1Driver9INTEL3~1IDriver.exe /M{48CF6549-B45D-4313-9927-EFCCC8A3493F} /l1033
Update for Windows XP (KB894391)—>»C:WINDOWS$NtUninstallKB894391$spuninstspuninst.exe»
Update for Windows XP (KB896727)—>»C:WINDOWS$NtUninstallKB896727$spuninstspuninst.exe»
VideoLAN VLC media player 0.8.6c—>C:Program FilesVideoLANVLCuninstall.exe
Vuze—>C:Program FilesVuzeuninstall.exe
Windows Imaging Component—>»C:WINDOWS$NtUninstallWIC$spuninstspuninst.exe»
Windows Installer 3.1 (KB893803)—>»C:WINDOWS$MSI31Uninstall_KB893803v2$spuninstspuninst.exe»
Windows Media Format Runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Windows Media Player 10—>»C:Program FilesWindows Media PlayerSetup_wm.exe» /Uninstall
Windows XP Hotfix — KB873333—>C:WINDOWS$NtUninstallKB873333$spuninstspuninst.exe
Windows XP Hotfix — KB883667—>C:WINDOWS$NtUninstallKB883667$spuninstspuninst.exe
Windows XP Hotfix — KB884575—>C:WINDOWS$NtUninstallKB884575$spuninstspuninst.exe
Windows XP Hotfix — KB885250—>C:WINDOWS$NtUninstallKB885250$spuninstspuninst.exe
Windows XP Hotfix — KB885464—>C:WINDOWS$NtUninstallKB885464$spuninstspuninst.exe
Windows XP Hotfix — KB885855—>C:WINDOWS$NtUninstallKB885855$spuninstspuninst.exe
Windows XP Hotfix — KB885884—>C:WINDOWS$NtUninstallKB885884$spuninstspuninst.exe
Windows XP Hotfix — KB886185—>C:WINDOWS$NtUninstallKB886185$spuninstspuninst.exe
Windows XP Hotfix — KB887472—>C:WINDOWS$NtUninstallKB887472$spuninstspuninst.exe
Windows XP Hotfix — KB888113—>C:WINDOWS$NtUninstallKB888113$spuninstspuninst.exe
Windows XP Hotfix — KB888239—>C:WINDOWS$NtUninstallKB888239$spuninstspuninst.exe
Windows XP Hotfix — KB888402—>C:WINDOWS$NtUninstallKB888402$spuninstspuninst.exe
Windows XP Hotfix — KB889673—>C:WINDOWS$NtUninstallKB889673$spuninstspuninst.exe
Windows XP Hotfix — KB891781—>C:WINDOWS$NtUninstallKB891781$spuninstspuninst.exe
Windows XP Hotfix — KB892559—>»C:WINDOWS$NtUninstallKB892559$spuninstspuninst.exe»
XML Paper Specification Shared Components Language Pack 1.0—>»C:WINDOWS$NtUninstallXPSEPSCLP$spuninstspuninst.exe»
Архиватор WinRAR—>C:Program FilesWinRARuninstall.exe
Языковой пакет Microsoft .NET Framework 3.5 SP1 — RUS—>C:WINDOWSMicrosoft.NETFrameworkv3.5Microsoft .NET Framework 3.5 Language Pack SP1 — russetup.exe======Security center information======
AV: Kaspersky Internet Security (outdated)
FW: Kaspersky Internet SecuritySystem event log
Computer Name: TIMEKEEPING
Event Code: 7035
Message: The Fast User Switching Compatibility service was successfully sent a start control.Record Number: 5
Source Name: Service Control Manager
Time Written: 20100113170843.000000+120
Event Type: information
User: NT AUTHORITYSYSTEMComputer Name: TIMEKEEPING
Event Code: 7036
Message: The Terminal Services service entered the running state.Record Number: 4
Source Name: Service Control Manager
Time Written: 20100113170843.000000+120
Event Type: information
User:Computer Name: TIMEKEEPING
Event Code: 9
Message: Broadcom 440x 10/100 Integrated Controller: Network controller configured for 100Mb full-duplex link.Record Number: 3
Source Name: bcm4sbxp
Time Written: 20100113170759.000000+120
Event Type: information
User:Computer Name: TIMEKEEPING
Event Code: 6005
Message: The Event log service was started.Record Number: 2
Source Name: EventLog
Time Written: 20100113170749.000000+120
Event Type: information
User:Computer Name: TIMEKEEPING
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Multiprocessor Free.Record Number: 1
Source Name: EventLog
Time Written: 20100113170749.000000+120
Event Type: information
User:Application event log
Computer Name: TIMEKEEPING
Event Code: 1002
Message: Hanging application Ahead DVD Ripper.exe, version 1.0.0.1, hang module hungapp, version 0.0.0.0, hang address 0x00000000.Record Number: 1497
Source Name: Application Hang
Time Written: 20091204105513.000000+120
Event Type: error
User:Computer Name: TIMEKEEPING
Event Code: 1000
Message: Faulting application ahead dvd ripper.exe, version 1.0.0.1, faulting module turbodll.dll, version 1.0.0.1, fault address 0x000059eb.Record Number: 1496
Source Name: Application Error
Time Written: 20091204105400.000000+120
Event Type: error
User:Computer Name: TIMEKEEPING
Event Code: 4
Message: The LightScribe Service started successfully.Record Number: 1495
Source Name: LightScribeService
Time Written: 20091204060727.000000+120
Event Type: information
User:Computer Name: TIMEKEEPING
Event Code: 4
Message: The LightScribe Service started successfully.Record Number: 1494
Source Name: LightScribeService
Time Written: 20091203201029.000000+120
Event Type: information
User:Computer Name: TIMEKEEPING
Event Code: 4
Message: The LightScribe Service started successfully.Record Number: 1493
Source Name: LightScribeService
Time Written: 20091203063106.000000+120
Event Type: information
User:======Environment variables======
«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;C:Program FilesQuickTimeQTSystem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 14 Stepping 8, GenuineIntel
«PROCESSOR_REVISION»=0e08
«NUMBER_OF_PROCESSORS»=1
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«SonicCentral»=C:Program FilesCommon FilesSonic SharedSonic Central
«CLASSPATH»=.;C:Program FilesQuickTimeQTSystemQTJava.zip
«QTJAVA»=C:Program FilesQuickTimeQTSystemQTJava.zip
EOF
Пока вроде ничего не выбрасывает… тьфу-тьфу-тьфу…
Большое человеческое спасибо за помощь!Logfile of random’s system information tool 1.05 (written by random/random)
Run by Satellite at 2008-12-27 17:17:17
Microsoft Windows XP Professional Service Pack 2
System drive C: has 87 GB (76%) free of 114 GB
Total RAM: 1022 MB (68% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:17:18, on 2008.12.27
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSsystem32agrsmsvc.exe
C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE
C:WINDOWSsystem32nvsvc32.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe
C:WINDOWSsystem32wscntfy.exe
C:WINDOWSsystem32WgaTray.exe
C:WINDOWSExplorer.EXE
C:WINDOWSnotepad.exe
C:WINDOWSsystem32wuauclt.exe
C:WINDOWSsystem32RUNDLL32.EXE
C:WINDOWSRTHDCPL.EXE
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:Program FilesCyberLinkPowerDVDPDVDServ.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesMessengermsmsgs.exe
C:Program FilesltmohLtmoh.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtMng.exe
C:Program FilesSynapticsSynTPSynToshiba.exe
C:Program FilesToshibaBluetooth Toshiba StackTosA2dp.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtHid.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtHsp.exe
C:Program FilesToshibaBluetooth Toshiba StackTosAVRC.exe
C:Program FilesToshibaBluetooth Toshiba StacktosOBEX.exe
C:Program FilesToshibaBluetooth Toshiba StacktosBtProc.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesInternet ExplorerIEXPLORE.EXE
C:Documents and SettingsSatelliteDesktopRSIT.exe
C:Program Filestrend microSatellite.exeR1 — HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://go.divx.com/divx/divx6/new/en?rcv=1&dist=divxdotcom
O2 — BHO: AcroIEHlprObj Class — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 — BHO: WormRadar.com IESiteBlocker.NavFilter — {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} — (no file)
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [RTHDCPL] RTHDCPL.EXE
O4 — HKLM..Run: [Alcmtr] ALCMTR.EXE
O4 — HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 — HKLM..Run: [syntpenh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 — HKLM..Run: [remotecontrol] «C:Program FilesCyberLinkPowerDVDPDVDServ.exe»
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [msmsgs] «C:Program FilesMessengermsmsgs.exe» /background
O4 — HKCU..Run: [ltmoh] C:Program FilesltmohLtmoh.exe
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Global Startup: Bluetooth Manager.lnk = ?
O8 — Extra context menu item: E&xport to Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O16 — DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) — http://go.microsoft.com/fwlink/?linkid=39204
O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: Agere Modem Call Progress Audio (AgereModemAudio) — Agere Systems — C:WINDOWSsystem32agrsmsvc.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: TOSHIBA Bluetooth Service — TOSHIBA CORPORATION — C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe—
End of file — 4530 bytes======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2004-12-14 63136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2008-05-30 1410344][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{3ca2f312-6f6e-4b53-a66e-4e65e497c8c0}]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2007-06-28 8466432]
«nwiz»=nwiz.exe /install []
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2007-06-28 81920]
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2007-07-05 16380416]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2005-05-03 69632]
«NeroFilterCheck»=C:WINDOWSsystem32NeroCheck.exe [2001-07-09 155648]
«syntpenh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2007-07-25 888832]
«remotecontrol»=C:Program FilesCyberLinkPowerDVDPDVDServ.exe [2003-10-31 32768][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-03 15360]
«msmsgs»=C:Program FilesMessengermsmsgs.exe [2004-10-13 1694208]
«ltmoh»=C:Program FilesltmohLtmoh.exe [2007-01-09 191552]C:Documents and SettingsAll UsersStart MenuProgramsStartup
Bluetooth Manager.lnk — C:Program FilesToshibaBluetooth Toshiba StackTosBtMng.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyWgaLogon]
C:WINDOWSsystem32WgaLogon.dll [2008-09-05 241704][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=36
«NoDriveAutoRun»=FFFFFFFF[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»======List of files/folders created in the last 1 months======
2008-12-26 00:02:50 —-D—- C:Documents and SettingsSatelliteApplication Datavlc
2008-12-26 00:01:19 —-D—- C:Program FilesVideoLAN
2008-12-25 16:10:37 —-D—- C:_OTMoveIt
2008-12-25 11:34:16 —-D—- C:WINDOWSsystem32LogFiles
2008-12-25 11:04:18 —-D—- C:Documents and SettingsAll UsersApplication DataAvg8
2008-12-25 10:45:40 —-D—- C:Program FilesAVG
2008-12-25 00:01:54 —-D—- C:rsit
2008-12-25 00:01:54 —-D—- C:Program Filestrend micro
2008-12-25 00:00:59 —-RASHD—- C:autorun.inf
2008-12-24 22:43:40 —-D—- C:WINDOWSpss
2008-12-24 22:06:57 —-HDC—- C:WINDOWS$NtUninstallKB952069_WM9$
2008-12-24 22:06:45 —-HDC—- C:WINDOWS$NtUninstallKB956841$
2008-12-24 22:04:33 —-D—- C:Program FilesCCleaner
2008-12-24 20:56:58 —-HDC—- C:WINDOWS$NtUninstallKB956803$
2008-12-24 20:56:52 —-HDC—- C:WINDOWS$NtUninstallKB955839$
2008-12-24 20:56:44 —-HDC—- C:WINDOWS$NtUninstallKB956391$
2008-12-24 20:56:37 —-HDC—- C:WINDOWS$NtUninstallKB957095$
2008-12-24 20:56:19 —-HDC—- C:WINDOWS$NtUninstallKB958215$
2008-12-24 20:56:08 —-HDC—- C:WINDOWS$NtUninstallKB954211$
2008-12-24 20:55:59 —-HDC—- C:WINDOWS$NtUninstallKB960714$
2008-12-24 20:55:52 —-HDC—- C:WINDOWS$NtUninstallKB957097$
2008-12-24 20:55:46 —-HDC—- C:WINDOWS$NtUninstallKB938464$
2008-12-24 20:55:39 —-HDC—- C:WINDOWS$NtUninstallKB954600$
2008-12-24 20:55:33 —-HDC—- C:WINDOWS$NtUninstallKB958644$
2008-12-24 20:55:25 —-HDC—- C:WINDOWS$NtUninstallKB955069$
2008-12-24 20:55:16 —-HDC—- C:WINDOWS$NtUninstallKB956802$
2008-12-24 20:39:38 —-D—- C:WINDOWSMinidump
2008-12-24 20:26:38 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab Setup Files
2008-12-24 20:26:10 —-D—- C:Documents and SettingsSatelliteApplication DataWinRAR
2008-12-24 20:25:43 —-D—- C:Program FilesWinRAR
2008-12-24 16:34:38 —-D—- C:Program FileseMule======List of files/folders modified in the last 1 months======
2008-12-27 17:15:47 —-D—- C:WINDOWSTemp
2008-12-27 17:14:10 —-D—- C:WINDOWS
2008-12-27 17:12:45 —-A—- C:WINDOWSSchedLgU.Txt
2008-12-27 17:12:26 —-D—- C:WINDOWSsystem32
2008-12-26 18:18:13 —-A—- C:WINDOWSNeroDigital.ini
2008-12-26 12:31:54 —-D—- C:WINDOWSsystem32Macromed
2008-12-26 00:01:19 —-RD—- C:Program Files
2008-12-25 23:32:47 —-SD—- C:WINDOWSDownloaded Program Files
2008-12-25 23:32:46 —-HD—- C:WINDOWSinf
2008-12-25 23:32:44 —-D—- C:WINDOWSsystem32CatRoot2
2008-12-25 20:13:10 —-D—- C:WINDOWSsystem32drivers
2008-12-25 20:12:51 —-D—- C:Program FilesInternet Explorer
2008-12-25 11:13:48 —-SHD—- C:WINDOWSInstaller
2008-12-25 10:45:34 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2008-12-25 10:45:33 —-D—- C:WINDOWSWinSxS
2008-12-25 09:14:37 —-D—- C:WINDOWSPrefetch
2008-12-25 02:48:07 —-D—- C:WINDOWSsystem32CatRoot_bak
2008-12-25 02:48:07 —-D—- C:WINDOWSsystem32CatRoot
2008-12-24 23:02:25 —-SH—- C:boot.ini
2008-12-24 23:02:25 —-A—- C:WINDOWSwin.ini
2008-12-24 23:02:25 —-A—- C:WINDOWSsystem.ini
2008-12-24 22:22:46 —-D—- C:Documents and Settings
2008-12-24 22:07:00 —-RSHDC—- C:WINDOWSsystem32dllcache
2008-12-24 22:06:19 —-HD—- C:WINDOWS$hf_mig$
2008-12-24 22:05:00 —-D—- C:WINDOWSDebug
2008-12-24 21:28:32 —-D—- C:WINDOWSsystem32NtmsData
2008-12-24 21:24:02 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2008-12-24 19:35:01 —-D—- C:WINDOWSHelp
2008-12-24 18:41:21 —-D—- C:Program FilesOutlook Express
2008-12-24 18:41:03 —-D—- C:Documents and SettingsSatelliteApplication DataAdobe
2008-12-24 14:40:28 —-SD—- C:Documents and SettingsSatelliteApplication DataMicrosoft
2008-12-23 09:43:58 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2008-12-12 19:33:23 —-A—- C:WINDOWSsystem32mshtml.dll
2008-12-09 15:24:38 —-A—- C:WINDOWSsystem32MRT.exe======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Intel Processor Driver; C:WINDOWSsystem32DRIVERSintelppm.sys [2004-08-03 36096]
R1 Tosrfcom;Bluetooth RFCOMM; C:WINDOWSSystem32Driverstosrfcom.sys [2005-08-01 64896]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:WINDOWSsystem32DRIVERSAGRSM.sys [2006-11-28 1161888]
R3 Arp1394;1394 ARP Client Protocol; C:WINDOWSsystem32DRIVERSarp1394.sys [2004-08-04 60800]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:WINDOWSsystem32DRIVERSCmBatt.sys [2004-08-04 14080]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2005-01-07 138752]
R3 hidusb;Microsoft HID Class Driver; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-23 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2007-07-18 4547584]
R3 mouhid;Mouse HID Driver; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-08-23 12160]
R3 NETw4x32;Intel(R) Wireless WiFi Link Adapter Driver for Windows XP 32 Bit; C:WINDOWSsystem32DRIVERSNETw4x32.sys [2007-04-30 2206976]
R3 NIC1394;1394 Net Driver; C:WINDOWSsystem32DRIVERSnic1394.sys [2004-08-04 61824]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2007-06-28 6807328]
R3 sdbus;sdbus; C:WINDOWSsystem32DRIVERSsdbus.sys [2004-08-03 67584]
R3 SynTP;Synaptics TouchPad Driver; C:WINDOWSsystem32DRIVERSSynTP.sys [2007-07-25 209312]
R3 tifm21;tifm21; C:WINDOWSsystem32driverstifm21.sys [2007-01-24 290304]
R3 tosporte;Bluetooth COM Port; C:WINDOWSsystem32DRIVERStosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:WINDOWSsystem32DRIVERStosrfbd.sys [2007-04-24 113920]
R3 tosrfbnp;Bluetooth RFBNEP; C:WINDOWSSystem32Driverstosrfbnp.sys [2006-11-20 36480]
R3 tosrfec;Bluetooth ACPI; C:WINDOWSsystem32DRIVERStosrfec.sys [2006-10-23 9216]
R3 Tosrfhid;Bluetooth RFHID; C:WINDOWSsystem32DRIVERSTosrfhid.sys [2007-03-01 73728]
R3 tosrfusb;Bluetooth USB Controller; C:WINDOWSsystem32DRIVERStosrfusb.sys [2007-04-24 41856]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-03 26624]
R3 usbhub;USB2 Enabled Hub; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-03 57600]
R3 USBSTOR;USB Mass Storage Driver; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-03 20480]
R3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2004-08-04 78464]
S3 CCDECODE;Closed Caption Decoder; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-04 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:WINDOWSsystem32driversMSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-04 10880]
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtenicxp.sys [2006-07-21 82432]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-04 15360]
S3 tosrfnds;Bluetooth Personal Area Network; C:WINDOWSsystem32DRIVERStosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:WINDOWSsystem32driverstosrfsnd.sys [2007-01-22 53376]
S3 WSTCODEC;World Standard Teletext Codec; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-04 19328]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:WINDOWSsystem32agrsmsvc.exe [2006-10-05 9216]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-19 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2007-06-28 155716]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe [2007-02-25 125048]
R2 UMWdf;Windows User Mode Driver Framework; C:WINDOWSsystem32wdfmgr.exe [2005-01-28 38912]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
EOF
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== SERVICES/DRIVERS ==========
Service CbEvtSvc stopped successfully.
Service CbEvtSvc deleted successfully.
========== FILES ==========
C:WINDOWSSystem32CbEvtSvc.exe moved successfully.
========== COMMANDS ==========
User’s Temp folder emptied.
User’s Temporary Internet Files folder emptied.
User’s Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Temp folders emptied.
Explorer started successfullyOTMoveIt3 by OldTimer — Version 1.0.7.2 log created on 12272008_171226
Files moved on Reboot…
File move failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be moved on reboot.с установленным AVG, при попытке RSIT просканировать компьютер зависает… вообще этот ноутбук какой-то странный… 🙂
Logfile of random’s system information tool 1.05 (written by random/random)
Run by Satellite at 2008-12-27 16:03:38
Microsoft Windows XP Professional Service Pack 2
System drive C: has 87 GB (76%) free of 114 GB
Total RAM: 1022 MB (70% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:03:38, on 2008.12.27
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSsystem32agrsmsvc.exe
C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE
C:WINDOWSsystem32nvsvc32.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe
C:WINDOWSsystem32wscntfy.exe
C:WINDOWSsystem32WgaTray.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:WINDOWSRTHDCPL.EXE
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:Program FilesCyberLinkPowerDVDPDVDServ.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesMessengermsmsgs.exe
C:Program FilesltmohLtmoh.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtMng.exe
C:Program FilesSynapticsSynTPSynToshiba.exe
C:Program FilesToshibaBluetooth Toshiba StackTosA2dp.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtHid.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtHsp.exe
C:Program FilesToshibaBluetooth Toshiba StackTosAVRC.exe
C:Program FilesToshibaBluetooth Toshiba StacktosOBEX.exe
C:Program FilesToshibaBluetooth Toshiba StacktosBtProc.exe
C:WINDOWSsystem32wuauclt.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesInternet ExplorerIEXPLORE.EXE
C:Documents and SettingsSatelliteDesktopRSIT.exe
C:Program Filestrend microSatellite.exeR1 — HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://go.divx.com/divx/divx6/new/en?rcv=1&dist=divxdotcom
O2 — BHO: AcroIEHlprObj Class — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 — BHO: WormRadar.com IESiteBlocker.NavFilter — {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} — (no file)
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [RTHDCPL] RTHDCPL.EXE
O4 — HKLM..Run: [Alcmtr] ALCMTR.EXE
O4 — HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 — HKLM..Run: [syntpenh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 — HKLM..Run: [remotecontrol] «C:Program FilesCyberLinkPowerDVDPDVDServ.exe»
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [msmsgs] «C:Program FilesMessengermsmsgs.exe» /background
O4 — HKCU..Run: [ltmoh] C:Program FilesltmohLtmoh.exe
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Global Startup: Bluetooth Manager.lnk = ?
O8 — Extra context menu item: E&xport to Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O16 — DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) — http://go.microsoft.com/fwlink/?linkid=39204
O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: Agere Modem Call Progress Audio (AgereModemAudio) — Agere Systems — C:WINDOWSsystem32agrsmsvc.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: TOSHIBA Bluetooth Service — TOSHIBA CORPORATION — C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe—
End of file — 4506 bytes======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2004-12-14 63136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2008-05-30 1410344][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{3ca2f312-6f6e-4b53-a66e-4e65e497c8c0}]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2007-06-28 8466432]
«nwiz»=nwiz.exe /install []
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2007-06-28 81920]
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2007-07-05 16380416]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2005-05-03 69632]
«NeroFilterCheck»=C:WINDOWSsystem32NeroCheck.exe [2001-07-09 155648]
«syntpenh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2007-07-25 888832]
«remotecontrol»=C:Program FilesCyberLinkPowerDVDPDVDServ.exe [2003-10-31 32768][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-03 15360]
«msmsgs»=C:Program FilesMessengermsmsgs.exe [2004-10-13 1694208]
«ltmoh»=C:Program FilesltmohLtmoh.exe [2007-01-09 191552]C:Documents and SettingsAll UsersStart MenuProgramsStartup
Bluetooth Manager.lnk — C:Program FilesToshibaBluetooth Toshiba StackTosBtMng.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyWgaLogon]
C:WINDOWSsystem32WgaLogon.dll [2008-09-05 241704][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=36
«NoDriveAutoRun»=FFFFFFFF[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»======List of files/folders created in the last 1 months======
2008-12-26 00:02:50 —-D—- C:Documents and SettingsSatelliteApplication Datavlc
2008-12-26 00:01:19 —-D—- C:Program FilesVideoLAN
2008-12-25 16:10:37 —-D—- C:_OTMoveIt
2008-12-25 11:34:16 —-D—- C:WINDOWSsystem32LogFiles
2008-12-25 11:04:18 —-D—- C:Documents and SettingsAll UsersApplication DataAvg8
2008-12-25 10:45:40 —-D—- C:Program FilesAVG
2008-12-25 00:01:54 —-D—- C:rsit
2008-12-25 00:01:54 —-D—- C:Program Filestrend micro
2008-12-25 00:00:59 —-RASHD—- C:autorun.inf
2008-12-24 22:43:40 —-D—- C:WINDOWSpss
2008-12-24 22:06:57 —-HDC—- C:WINDOWS$NtUninstallKB952069_WM9$
2008-12-24 22:06:45 —-HDC—- C:WINDOWS$NtUninstallKB956841$
2008-12-24 22:04:33 —-D—- C:Program FilesCCleaner
2008-12-24 20:56:58 —-HDC—- C:WINDOWS$NtUninstallKB956803$
2008-12-24 20:56:52 —-HDC—- C:WINDOWS$NtUninstallKB955839$
2008-12-24 20:56:44 —-HDC—- C:WINDOWS$NtUninstallKB956391$
2008-12-24 20:56:37 —-HDC—- C:WINDOWS$NtUninstallKB957095$
2008-12-24 20:56:19 —-HDC—- C:WINDOWS$NtUninstallKB958215$
2008-12-24 20:56:08 —-HDC—- C:WINDOWS$NtUninstallKB954211$
2008-12-24 20:55:59 —-HDC—- C:WINDOWS$NtUninstallKB960714$
2008-12-24 20:55:52 —-HDC—- C:WINDOWS$NtUninstallKB957097$
2008-12-24 20:55:46 —-HDC—- C:WINDOWS$NtUninstallKB938464$
2008-12-24 20:55:39 —-HDC—- C:WINDOWS$NtUninstallKB954600$
2008-12-24 20:55:33 —-HDC—- C:WINDOWS$NtUninstallKB958644$
2008-12-24 20:55:25 —-HDC—- C:WINDOWS$NtUninstallKB955069$
2008-12-24 20:55:16 —-HDC—- C:WINDOWS$NtUninstallKB956802$
2008-12-24 20:39:38 —-D—- C:WINDOWSMinidump
2008-12-24 20:26:38 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab Setup Files
2008-12-24 20:26:10 —-D—- C:Documents and SettingsSatelliteApplication DataWinRAR
2008-12-24 20:25:43 —-D—- C:Program FilesWinRAR
2008-12-24 18:41:39 —-A—- C:WINDOWSsystem32CbEvtSvc.exe
2008-12-24 16:34:38 —-D—- C:Program FileseMule======List of files/folders modified in the last 1 months======
2008-12-27 15:59:39 —-D—- C:WINDOWSTemp
2008-12-27 15:57:57 —-A—- C:WINDOWSSchedLgU.Txt
2008-12-27 13:57:47 —-D—- C:WINDOWS
2008-12-26 18:18:13 —-A—- C:WINDOWSNeroDigital.ini
2008-12-26 12:31:54 —-D—- C:WINDOWSsystem32Macromed
2008-12-26 00:01:19 —-RD—- C:Program Files
2008-12-25 23:32:47 —-SD—- C:WINDOWSDownloaded Program Files
2008-12-25 23:32:46 —-HD—- C:WINDOWSinf
2008-12-25 23:32:44 —-D—- C:WINDOWSsystem32CatRoot2
2008-12-25 20:13:10 —-D—- C:WINDOWSsystem32drivers
2008-12-25 20:12:56 —-D—- C:WINDOWSsystem32
2008-12-25 20:12:51 —-D—- C:Program FilesInternet Explorer
2008-12-25 11:13:48 —-SHD—- C:WINDOWSInstaller
2008-12-25 10:45:34 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2008-12-25 10:45:33 —-D—- C:WINDOWSWinSxS
2008-12-25 09:14:37 —-D—- C:WINDOWSPrefetch
2008-12-25 02:48:07 —-D—- C:WINDOWSsystem32CatRoot_bak
2008-12-25 02:48:07 —-D—- C:WINDOWSsystem32CatRoot
2008-12-24 23:02:25 —-SH—- C:boot.ini
2008-12-24 23:02:25 —-A—- C:WINDOWSwin.ini
2008-12-24 23:02:25 —-A—- C:WINDOWSsystem.ini
2008-12-24 22:22:46 —-D—- C:Documents and Settings
2008-12-24 22:07:00 —-RSHDC—- C:WINDOWSsystem32dllcache
2008-12-24 22:06:19 —-HD—- C:WINDOWS$hf_mig$
2008-12-24 22:05:00 —-D—- C:WINDOWSDebug
2008-12-24 21:28:32 —-D—- C:WINDOWSsystem32NtmsData
2008-12-24 21:24:02 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2008-12-24 19:35:01 —-D—- C:WINDOWSHelp
2008-12-24 18:41:21 —-D—- C:Program FilesOutlook Express
2008-12-24 18:41:03 —-D—- C:Documents and SettingsSatelliteApplication DataAdobe
2008-12-24 14:40:28 —-SD—- C:Documents and SettingsSatelliteApplication DataMicrosoft
2008-12-23 09:43:58 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2008-12-12 19:33:23 —-A—- C:WINDOWSsystem32mshtml.dll
2008-12-09 15:24:38 —-A—- C:WINDOWSsystem32MRT.exe======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Intel Processor Driver; C:WINDOWSsystem32DRIVERSintelppm.sys [2004-08-03 36096]
R1 Tosrfcom;Bluetooth RFCOMM; C:WINDOWSSystem32Driverstosrfcom.sys [2005-08-01 64896]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:WINDOWSsystem32DRIVERSAGRSM.sys [2006-11-28 1161888]
R3 Arp1394;1394 ARP Client Protocol; C:WINDOWSsystem32DRIVERSarp1394.sys [2004-08-04 60800]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:WINDOWSsystem32DRIVERSCmBatt.sys [2004-08-04 14080]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2005-01-07 138752]
R3 hidusb;Microsoft HID Class Driver; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-23 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2007-07-18 4547584]
R3 mouhid;Mouse HID Driver; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-08-23 12160]
R3 NETw4x32;Intel(R) Wireless WiFi Link Adapter Driver for Windows XP 32 Bit; C:WINDOWSsystem32DRIVERSNETw4x32.sys [2007-04-30 2206976]
R3 NIC1394;1394 Net Driver; C:WINDOWSsystem32DRIVERSnic1394.sys [2004-08-04 61824]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2007-06-28 6807328]
R3 sdbus;sdbus; C:WINDOWSsystem32DRIVERSsdbus.sys [2004-08-03 67584]
R3 SynTP;Synaptics TouchPad Driver; C:WINDOWSsystem32DRIVERSSynTP.sys [2007-07-25 209312]
R3 tifm21;tifm21; C:WINDOWSsystem32driverstifm21.sys [2007-01-24 290304]
R3 tosporte;Bluetooth COM Port; C:WINDOWSsystem32DRIVERStosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:WINDOWSsystem32DRIVERStosrfbd.sys [2007-04-24 113920]
R3 tosrfbnp;Bluetooth RFBNEP; C:WINDOWSSystem32Driverstosrfbnp.sys [2006-11-20 36480]
R3 tosrfec;Bluetooth ACPI; C:WINDOWSsystem32DRIVERStosrfec.sys [2006-10-23 9216]
R3 Tosrfhid;Bluetooth RFHID; C:WINDOWSsystem32DRIVERSTosrfhid.sys [2007-03-01 73728]
R3 tosrfusb;Bluetooth USB Controller; C:WINDOWSsystem32DRIVERStosrfusb.sys [2007-04-24 41856]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-03 26624]
R3 usbhub;USB2 Enabled Hub; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-03 57600]
R3 USBSTOR;USB Mass Storage Driver; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-03 20480]
R3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2004-08-04 78464]
S3 CCDECODE;Closed Caption Decoder; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-04 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:WINDOWSsystem32driversMSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-04 10880]
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtenicxp.sys [2006-07-21 82432]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-04 15360]
S3 tosrfnds;Bluetooth Personal Area Network; C:WINDOWSsystem32DRIVERStosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:WINDOWSsystem32driverstosrfsnd.sys [2007-01-22 53376]
S3 WSTCODEC;World Standard Teletext Codec; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-04 19328]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:WINDOWSsystem32agrsmsvc.exe [2006-10-05 9216]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-19 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2007-06-28 155716]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe [2007-02-25 125048]
R2 UMWdf;Windows User Mode Driver Framework; C:WINDOWSsystem32wdfmgr.exe [2005-01-28 38912]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S4 CbEvtSvc;CbEvtSvc; C:WINDOWSSystem32CbEvtSvc.exe [2008-12-24 61184]
EOF
ещё одна из explorer’а: «The instruction at «0x7c900659» referenced memory at «0x0279400». The memory could not be «read». Click on OK to terminate the program. Click on CANCEL to debug the program.»
в любом случае, огромное спасибо за оказываемую помощь!
я вообще с удивлением наблюдаю за Вашей работой на этом форуме… в наше время, когда тебе «бесплатно даже морду не набьют», когда постоянно то и дело сталкиваешься с человеческим безразличием и равнодушием, так удивительно было набрести на этот оазис содействия, участия и, что самое главное, стремления помочь всем без исключения… это просто невероятно! 🙂из мелочей: пропал звук во flash плеере (при просмотре видео с youtube, например), и explorer иногда выбрасывает «Internet Explorer cannot open the Internet site ‘адресс сайта’ operation aborted». Но это действительно мелочи, которые не так бросаются в глаза…
к сожалению, да… вообще, по-моему, вся эта канитель либо из-за конфликта оборудования, что вряд ли возможно так как установленные при сборке компоненты не менялись… либо программного обеспечения… дело в том, что сразу же после появления баннера, я попытался установить KIS 2009… до этого момента стоял AVG Free Edition, который KIS предложил удалить… и вроде бы всё шло хорошо, но после перезагрузки KIS не смог активировать защиту, похоже какая-то системная программа, которыми нашпигован этот ноутбук (кстати говоря, казённый… поэтому я не могу снести систему и поставить всё заново… мне дали его на ограниченное время, а тут такое, ужас… 😮 ) мешает активации защиты… я вообще удивляюсь сколько в нём всякой ерунды, которая только мешает, и о предназначении которой я могу только догадываться… (например постоянно выскакивает предупреждение от какой-то майкрософтской утилиты, именуемой Microsoft Genuine Advantage, которую я раньше в жизни не встречал… 😕 ) удалять из автозапуска что-либо боязно, как бы не сделать хуже…
примерно после удаления KIS и стала выскакивать эта злосчастная табличка… поначалу я особо не волновался т.к. думал что если исправить реестр проблема будет решена… а теперь… ужас, даже думать не хочется…
ещё, (возможно это бред) заметил, что при установке AVG обратно, вроде бы система «успокаивается», но это не было проверено временем, т.к. ни Hijackthis ни RSIT не хотят работать с AVG, и сейчас на компе просто пустота вместо анти-вируса…
словом, как Вы думаете, можно что-нибудь ещё предпринять для устранения этой проблемы..?Logfile of random’s system information tool 1.05 (written by random/random)
Run by Satellite at 2008-12-25 16:54:36
Microsoft Windows XP Professional Service Pack 2
System drive C: has 92 GB (80%) free of 114 GB
Total RAM: 1022 MB (71% free)Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:54:38, on 2008.12.25
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: NormalRunning processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSsystem32agrsmsvc.exe
C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE
C:WINDOWSsystem32nvsvc32.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe
C:WINDOWSsystem32WgaTray.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:WINDOWSRTHDCPL.EXE
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:Program FilesCyberLinkPowerDVDPDVDServ.exe
C:WINDOWSsystem32wscntfy.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesMessengermsmsgs.exe
C:Program FilesltmohLtmoh.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtMng.exe
C:Program FilesSynapticsSynTPSynToshiba.exe
C:Program FilesToshibaBluetooth Toshiba StackTosA2dp.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtHid.exe
C:Program FilesToshibaBluetooth Toshiba StackTosBtHsp.exe
C:Program FilesToshibaBluetooth Toshiba StackTosAVRC.exe
C:Program FilesToshibaBluetooth Toshiba StacktosOBEX.exe
C:Program FilesToshibaBluetooth Toshiba StacktosBtProc.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesInternet ExplorerIEXPLORE.EXE
C:Documents and SettingsSatelliteDesktopRSIT.exe
C:Program Filestrend microSatellite.exeR1 — HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://go.divx.com/divx/divx6/new/en?rcv=1&dist=divxdotcom
O2 — BHO: AcroIEHlprObj Class — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 — BHO: Skype add-on (mastermind) — {22BF413B-C6D2-4d91-82A9-A0F997BA588C} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O2 — BHO: WormRadar.com IESiteBlocker.NavFilter — {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} — C:Program FilesAVGAVG8avgssie.dll (file missing)
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [RTHDCPL] RTHDCPL.EXE
O4 — HKLM..Run: [Alcmtr] ALCMTR.EXE
O4 — HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 — HKLM..Run: [syntpenh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 — HKLM..Run: [remotecontrol] «C:Program FilesCyberLinkPowerDVDPDVDServ.exe»
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [Satellite] C:Documents and SettingsSatelliteSatellite.exe /i
O4 — HKCU..Run: [msmsgs] «C:Program FilesMessengermsmsgs.exe» /background
O4 — HKCU..Run: [ltmoh] C:Program FilesltmohLtmoh.exe
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — Global Startup: Bluetooth Manager.lnk = ?
O8 — Extra context menu item: E&xport to Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O9 — Extra button: Skype — {77BF5300-1474-4EC7-9980-D32B190E9B07} — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O9 — Extra ‘Tools’ menuitem: Windows Messenger — {FB5F1910-F110-11d2-BB9E-00C04F795683} — C:Program FilesMessengermsmsgs.exe
O16 — DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) — http://go.microsoft.com/fwlink/?linkid=39204
O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O23 — Service: Agere Modem Call Progress Audio (AgereModemAudio) — Agere Systems — C:WINDOWSsystem32agrsmsvc.exe
O23 — Service: CbEvtSvc — Unknown owner — C:WINDOWSSystem32CbEvtSvc.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: TOSHIBA Bluetooth Service — TOSHIBA CORPORATION — C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe—
End of file — 4676 bytes======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2004-12-14 63136][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2008-05-30 1410344][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{3ca2f312-6f6e-4b53-a66e-4e65e497c8c0}]
AVG Safe Search — C:Program FilesAVGAVG8avgssie.dll [][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2007-06-28 8466432]
«nwiz»=nwiz.exe /install []
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2007-06-28 81920]
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2007-07-05 16380416]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2005-05-03 69632]
«NeroFilterCheck»=C:WINDOWSsystem32NeroCheck.exe [2001-07-09 155648]
«syntpenh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2007-07-25 888832]
«remotecontrol»=C:Program FilesCyberLinkPowerDVDPDVDServ.exe [2003-10-31 32768][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-03 15360]
«Satellite»=C:Documents and SettingsSatelliteSatellite.exe /i []
«msmsgs»=C:Program FilesMessengermsmsgs.exe [2004-10-13 1694208]
«ltmoh»=C:Program FilesltmohLtmoh.exe [2007-01-09 191552]C:Documents and SettingsAll UsersStart MenuProgramsStartup
Bluetooth Manager.lnk — C:Program FilesToshibaBluetooth Toshiba StackTosBtMng.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyWgaLogon]
C:WINDOWSsystem32WgaLogon.dll [2008-09-05 241704][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=36
«NoDriveAutoRun»=FFFFFFFF[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»======List of files/folders created in the last 1 months======
2008-12-25 16:10:37 —-D—- C:_OTMoveIt
2008-12-25 11:34:16 —-D—- C:WINDOWSsystem32LogFiles
2008-12-25 11:04:18 —-D—- C:Documents and SettingsAll UsersApplication DataAvg8
2008-12-25 10:45:40 —-D—- C:Program FilesAVG
2008-12-25 00:01:54 —-D—- C:rsit
2008-12-25 00:01:54 —-D—- C:Program Filestrend micro
2008-12-25 00:00:59 —-RASHD—- C:autorun.inf
2008-12-24 22:43:40 —-D—- C:WINDOWSpss
2008-12-24 22:06:57 —-HDC—- C:WINDOWS$NtUninstallKB952069_WM9$
2008-12-24 22:06:45 —-HDC—- C:WINDOWS$NtUninstallKB956841$
2008-12-24 22:04:33 —-D—- C:Program FilesCCleaner
2008-12-24 20:56:58 —-HDC—- C:WINDOWS$NtUninstallKB956803$
2008-12-24 20:56:52 —-HDC—- C:WINDOWS$NtUninstallKB955839$
2008-12-24 20:56:44 —-HDC—- C:WINDOWS$NtUninstallKB956391$
2008-12-24 20:56:37 —-HDC—- C:WINDOWS$NtUninstallKB957095$
2008-12-24 20:56:19 —-HDC—- C:WINDOWS$NtUninstallKB958215$
2008-12-24 20:56:08 —-HDC—- C:WINDOWS$NtUninstallKB954211$
2008-12-24 20:55:59 —-HDC—- C:WINDOWS$NtUninstallKB960714$
2008-12-24 20:55:52 —-HDC—- C:WINDOWS$NtUninstallKB957097$
2008-12-24 20:55:46 —-HDC—- C:WINDOWS$NtUninstallKB938464$
2008-12-24 20:55:39 —-HDC—- C:WINDOWS$NtUninstallKB954600$
2008-12-24 20:55:33 —-HDC—- C:WINDOWS$NtUninstallKB958644$
2008-12-24 20:55:25 —-HDC—- C:WINDOWS$NtUninstallKB955069$
2008-12-24 20:55:16 —-HDC—- C:WINDOWS$NtUninstallKB956802$
2008-12-24 20:39:38 —-D—- C:WINDOWSMinidump
2008-12-24 20:26:38 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab Setup Files
2008-12-24 20:26:10 —-D—- C:Documents and SettingsSatelliteApplication DataWinRAR
2008-12-24 20:25:43 —-D—- C:Program FilesWinRAR
2008-12-24 16:34:38 —-D—- C:Program FileseMule======List of files/folders modified in the last 1 months======
2008-12-25 16:42:29 —-D—- C:WINDOWSTemp
2008-12-25 16:42:23 —-D—- C:WINDOWS
2008-12-25 16:39:51 —-HD—- C:WINDOWSinf
2008-12-25 16:37:23 —-A—- C:WINDOWSSchedLgU.Txt
2008-12-25 16:10:44 —-D—- C:WINDOWSsystem32
2008-12-25 15:24:09 —-A—- C:WINDOWSNeroDigital.ini
2008-12-25 14:14:14 —-D—- C:WINDOWSsystem32drivers
2008-12-25 14:13:27 —-D—- C:WINDOWSsystem32CatRoot2
2008-12-25 11:13:48 —-SHD—- C:WINDOWSInstaller
2008-12-25 10:47:32 —-RD—- C:Program Files
2008-12-25 10:45:34 —-D—- C:Program FilesCommon FilesMicrosoft Shared
2008-12-25 10:45:33 —-D—- C:WINDOWSWinSxS
2008-12-25 09:14:37 —-D—- C:WINDOWSPrefetch
2008-12-25 02:48:07 —-D—- C:WINDOWSsystem32CatRoot_bak
2008-12-25 02:48:07 —-D—- C:WINDOWSsystem32CatRoot
2008-12-24 23:02:25 —-SH—- C:boot.ini
2008-12-24 23:02:25 —-A—- C:WINDOWSwin.ini
2008-12-24 23:02:25 —-A—- C:WINDOWSsystem.ini
2008-12-24 22:22:46 —-D—- C:Documents and Settings
2008-12-24 22:07:00 —-RSHDC—- C:WINDOWSsystem32dllcache
2008-12-24 22:06:19 —-HD—- C:WINDOWS$hf_mig$
2008-12-24 22:05:00 —-D—- C:WINDOWSDebug
2008-12-24 21:28:32 —-D—- C:WINDOWSsystem32NtmsData
2008-12-24 21:24:02 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2008-12-24 20:56:27 —-D—- C:Program FilesInternet Explorer
2008-12-24 19:35:01 —-D—- C:WINDOWSHelp
2008-12-24 18:41:21 —-D—- C:Program FilesOutlook Express
2008-12-24 18:41:03 —-D—- C:Documents and SettingsSatelliteApplication DataAdobe
2008-12-24 14:40:28 —-SD—- C:Documents and SettingsSatelliteApplication DataMicrosoft
2008-12-23 09:43:58 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2008-12-12 19:33:23 —-A—- C:WINDOWSsystem32mshtml.dll
2008-12-09 15:24:38 —-A—- C:WINDOWSsystem32MRT.exe======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Intel Processor Driver; C:WINDOWSsystem32DRIVERSintelppm.sys [2004-08-03 36096]
R1 Tosrfcom;Bluetooth RFCOMM; C:WINDOWSSystem32Driverstosrfcom.sys [2005-08-01 64896]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:WINDOWSsystem32DRIVERSAGRSM.sys [2006-11-28 1161888]
R3 Arp1394;1394 ARP Client Protocol; C:WINDOWSsystem32DRIVERSarp1394.sys [2004-08-04 60800]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:WINDOWSsystem32DRIVERSCmBatt.sys [2004-08-04 14080]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2005-01-07 138752]
R3 hidusb;Microsoft HID Class Driver; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-23 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2007-07-18 4547584]
R3 mouhid;Mouse HID Driver; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-08-23 12160]
R3 NETw4x32;Intel(R) Wireless WiFi Link Adapter Driver for Windows XP 32 Bit; C:WINDOWSsystem32DRIVERSNETw4x32.sys [2007-04-30 2206976]
R3 NIC1394;1394 Net Driver; C:WINDOWSsystem32DRIVERSnic1394.sys [2004-08-04 61824]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2007-06-28 6807328]
R3 sdbus;sdbus; C:WINDOWSsystem32DRIVERSsdbus.sys [2004-08-03 67584]
R3 SynTP;Synaptics TouchPad Driver; C:WINDOWSsystem32DRIVERSSynTP.sys [2007-07-25 209312]
R3 tifm21;tifm21; C:WINDOWSsystem32driverstifm21.sys [2007-01-24 290304]
R3 tosporte;Bluetooth COM Port; C:WINDOWSsystem32DRIVERStosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:WINDOWSsystem32DRIVERStosrfbd.sys [2007-04-24 113920]
R3 tosrfbnp;Bluetooth RFBNEP; C:WINDOWSSystem32Driverstosrfbnp.sys [2006-11-20 36480]
R3 tosrfec;Bluetooth ACPI; C:WINDOWSsystem32DRIVERStosrfec.sys [2006-10-23 9216]
R3 Tosrfhid;Bluetooth RFHID; C:WINDOWSsystem32DRIVERSTosrfhid.sys [2007-03-01 73728]
R3 tosrfusb;Bluetooth USB Controller; C:WINDOWSsystem32DRIVERStosrfusb.sys [2007-04-24 41856]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbehci.sys [2004-08-03 26624]
R3 usbhub;USB2 Enabled Hub; C:WINDOWSsystem32DRIVERSusbhub.sys [2004-08-03 57600]
R3 USBSTOR;USB Mass Storage Driver; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:WINDOWSsystem32DRIVERSusbuhci.sys [2004-08-03 20480]
R3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2004-08-04 78464]
S3 CCDECODE;Closed Caption Decoder; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-04 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:WINDOWSsystem32driversMSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-04 10880]
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtenicxp.sys [2006-07-21 82432]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-04 15360]
S3 tosrfnds;Bluetooth Personal Area Network; C:WINDOWSsystem32DRIVERStosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:WINDOWSsystem32driverstosrfsnd.sys [2007-01-22 53376]
S3 WSTCODEC;World Standard Teletext Codec; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-04 19328]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:WINDOWSsystem32agrsmsvc.exe [2006-10-05 9216]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-19 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2007-06-28 155716]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe [2007-02-25 125048]
R2 UMWdf;Windows User Mode Driver Framework; C:WINDOWSsystem32wdfmgr.exe [2005-01-28 38912]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
EOF
попробовал снова (чтобы переписать сообщение об ошибке), но на этот раз ошибок не было… (в первый раз, не закрывал окна explorer’a, может дело в этом… 🙄 ) после перезагрузки выбросилось знакомое окошко принудительного завершения работы о котором я говорил выше…
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== SERVICES/DRIVERS ==========
Unable to stop service nicsk32 .
Unable to stop service EverestDriver .
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifycrypt\ not found.
HKEY_LOCAL_MACHINEsystemcurrentcontrolsetcontrolsecurityproviders\»SecurityProviders»|»msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll» /E : value set successfully!
Registry value HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist\C:WINDOWSsystem32userinit.exe not found.
========== FILES ==========
File/Folder C:WINDOWSsystem32mmmenqen.dll not found.
File/Folder C:WINDOWSsystem32mmmayiay.dll not found.
File/Folder C:WINDOWSsystem32wincreate.exe not found.
File/Folder C:WINDOWSsystem32mmmgqjgq.dll not found.
File/Folder C:WINDOWSsystem32mmmbajba.dll not found.
File/Folder C:WINDOWSsystem32mmmfwhfw.dll not found.
File/Folder C:WINDOWSsystem32mmmjytjy.dll not found.
File/Folder C:WINDOWSsystem32mmmbyhby.dll not found.
File/Folder C:WINDOWSsystem32mmmptgpt.dll not found.
File/Folder C:WINDOWSsystem32mmmnoxno.dll not found.
File/Folder C:WINDOWSsystem32mmmhtvht.dll not found.
File/Folder C:WINDOWSsystem32mmmzdlzd.dll not found.
File/Folder C:WINDOWSsystem32mmmltwlt.dll not found.
File/Folder C:WINDOWSsystem32digeste.dll not found.
File/Folder C:WINDOWSsystem32mmmtatta.dll not found.
File/Folder C:WINDOWSsystem32mmmtfntf.dll not found.
File/Folder C:WINDOWSsystem32mmmsjfsj.dll not found.
File/Folder C:WINDOWSsystem32shell31.dll not found.
C:Documents and SettingsAll UsersApplication Datapdalib.dll unregistered successfully.
C:Documents and SettingsAll UsersApplication Datapdalib.dll moved successfully.
File/Folder C:WINDOWSsystem32driversnicsk32.sys not found.
File/Folder C:WINDOWSsystem32crypts.dll not found.
========== COMMANDS ==========
User’s Temp folder emptied.
User’s Temporary Internet Files folder emptied.
User’s Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Temp folders emptied.
Explorer started successfullyOTMoveIt3 by OldTimer — Version 1.0.7.2 log created on 12252008_163549
Files moved on Reboot…
File move failed. C:Documents and SettingsLocalServiceLocal SettingsTemporary Internet FilesContent.IE5index.dat scheduled to be moved on reboot.в процессе выполнения программа выдала окошко о нелегальности операции (не сообразил переписать сообщение 😥 )… после этого с экрана исчезли все иконки, кроме окна программы, которая эээ… перестала подавать признаки активности… нажав exit и «запустив» desktop получил новое окошко: Windows cannot find ‘/idlist,:0:1668,C:Documents’. Make shure you typed the name correctly, and then try again. To search for a file, click the Start… (лог выведен не был, комп не перезагружался)
да, иногда при загрузке Windows выскакивает окошко с примерно следующим содержанием:
System shut down.
This system is shutting down. Please save all work in progress and log off.
The shut down was initiate by NT AUTHORITYSYSTEM
и таймер с отсчётом 50 секунд. После чего следует перезагрузка системы. Но так происходит не всегда.нашёл… 🙂
info.txt logfile of random’s system information tool 1.05 2008-12-25 00:02:05
======Uninstall list======
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
AC3Filter (remove only)—>C:Program FilesAC3Filteruninstall.exe
Adobe Flash Player ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Reader 7.0—>MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70000000000}
Bluetooth Stack for Windows by Toshiba—>MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
CCleaner (remove only)—>»C:Program FilesCCleaneruninst.exe»
DivX Codec—>C:Program FilesDivXDivXCodecUninstall.exe /CODEC
High Definition Audio Driver Package — KB888111—>»C:WINDOWS$NtUninstallKB888111WXPSP2$spuninstspuninst.exe»
HijackThis 2.0.2—>»C:Program Filestrend microHijackThis.exe» /uninstall
Hotfix for Windows XP (KB935448)—>»C:WINDOWS$NtUninstallKB935448$spuninstspuninst.exe»
Hotfix for Windows XP (KB952287)—>»C:WINDOWS$NtUninstallKB952287$spuninstspuninst.exe»
Microsoft Office Professional Edition 2003—>MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9}
Nero 6 Ultra Edition—>C:Program FilesAheadnerouninstallUNNERO.exe /UNINSTALL
Nero Digital—>C:WINDOWSUNNeroVision.exe /UNINSTALL
NVIDIA Drivers—>C:WINDOWSsystem32nvudisp.exe UninstallGUI
PowerDVD—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}Setup.exe» -uninstall
Realtek High Definition Audio Driver—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}Setup.exe» -l0x9 -removeonly
Security Update for Windows Media Player (KB952069)—>»C:WINDOWS$NtUninstallKB952069_WM9$spuninstspuninst.exe»
Security Update for Windows Media Player 10 (KB936782)—>»C:WINDOWS$NtUninstallKB936782_WMP10$spuninstspuninst.exe»
Security Update for Windows Media Player 6.4 (KB925398)—>»C:WINDOWS$NtUninstallKB925398_WMP64$spuninstspuninst.exe»
Security Update for Windows XP (KB911562)—>»C:WINDOWS$NtUninstallKB911562$spuninstspuninst.exe»
Security Update for Windows XP (KB913580)—>»C:WINDOWS$NtUninstallKB913580$spuninstspuninst.exe»
Security Update for Windows XP (KB914388)—>»C:WINDOWS$NtUninstallKB914388$spuninstspuninst.exe»
Security Update for Windows XP (KB914389)—>»C:WINDOWS$NtUninstallKB914389$spuninstspuninst.exe»
Security Update for Windows XP (KB917344)—>»C:WINDOWS$NtUninstallKB917344$spuninstspuninst.exe»
Security Update for Windows XP (KB917953)—>»C:WINDOWS$NtUninstallKB917953$spuninstspuninst.exe»
Security Update for Windows XP (KB918118)—>»C:WINDOWS$NtUninstallKB918118$spuninstspuninst.exe»
Security Update for Windows XP (KB918439)—>»C:WINDOWS$NtUninstallKB918439$spuninstspuninst.exe»
Security Update for Windows XP (KB919007)—>»C:WINDOWS$NtUninstallKB919007$spuninstspuninst.exe»
Security Update for Windows XP (KB920213)—>»C:WINDOWS$NtUninstallKB920213$spuninstspuninst.exe»
Security Update for Windows XP (KB920685)—>»C:WINDOWS$NtUninstallKB920685$spuninstspuninst.exe»
Security Update for Windows XP (KB921503)—>»C:WINDOWS$NtUninstallKB921503$spuninstspuninst.exe»
Security Update for Windows XP (KB922819)—>»C:WINDOWS$NtUninstallKB922819$spuninstspuninst.exe»
Security Update for Windows XP (KB923191)—>»C:WINDOWS$NtUninstallKB923191$spuninstspuninst.exe»
Security Update for Windows XP (KB923414)—>»C:WINDOWS$NtUninstallKB923414$spuninstspuninst.exe»
Security Update for Windows XP (KB923689)—>»C:WINDOWS$NtUninstallKB923689$spuninstspuninst.exe»
Security Update for Windows XP (KB923789)—>C:WINDOWSsystem32MacroMedFlashgenuinst.exe C:WINDOWSsystem32MacroMedFlashKB923789.inf
Security Update for Windows XP (KB923980)—>»C:WINDOWS$NtUninstallKB923980$spuninstspuninst.exe»
Security Update for Windows XP (KB924270)—>»C:WINDOWS$NtUninstallKB924270$spuninstspuninst.exe»
Security Update for Windows XP (KB924496)—>»C:WINDOWS$NtUninstallKB924496$spuninstspuninst.exe»
Security Update for Windows XP (KB924667)—>»C:WINDOWS$NtUninstallKB924667$spuninstspuninst.exe»
Security Update for Windows XP (KB925902)—>»C:WINDOWS$NtUninstallKB925902$spuninstspuninst.exe»
Security Update for Windows XP (KB926255)—>»C:WINDOWS$NtUninstallKB926255$spuninstspuninst.exe»
Security Update for Windows XP (KB926436)—>»C:WINDOWS$NtUninstallKB926436$spuninstspuninst.exe»
Security Update for Windows XP (KB927779)—>»C:WINDOWS$NtUninstallKB927779$spuninstspuninst.exe»
Security Update for Windows XP (KB927802)—>»C:WINDOWS$NtUninstallKB927802$spuninstspuninst.exe»
Security Update for Windows XP (KB928255)—>»C:WINDOWS$NtUninstallKB928255$spuninstspuninst.exe»
Security Update for Windows XP (KB928843)—>»C:WINDOWS$NtUninstallKB928843$spuninstspuninst.exe»
Security Update for Windows XP (KB929123)—>»C:WINDOWS$NtUninstallKB929123$spuninstspuninst.exe»
Security Update for Windows XP (KB930178)—>»C:WINDOWS$NtUninstallKB930178$spuninstspuninst.exe»
Security Update for Windows XP (KB931261)—>»C:WINDOWS$NtUninstallKB931261$spuninstspuninst.exe»
Security Update for Windows XP (KB931784)—>»C:WINDOWS$NtUninstallKB931784$spuninstspuninst.exe»
Security Update for Windows XP (KB932168)—>»C:WINDOWS$NtUninstallKB932168$spuninstspuninst.exe»
Security Update for Windows XP (KB933729)—>»C:WINDOWS$NtUninstallKB933729$spuninstspuninst.exe»
Security Update for Windows XP (KB935839)—>»C:WINDOWS$NtUninstallKB935839$spuninstspuninst.exe»
Security Update for Windows XP (KB935840)—>»C:WINDOWS$NtUninstallKB935840$spuninstspuninst.exe»
Security Update for Windows XP (KB936021)—>»C:WINDOWS$NtUninstallKB936021$spuninstspuninst.exe»
Security Update for Windows XP (KB937894)—>»C:WINDOWS$NtUninstallKB937894$spuninstspuninst.exe»
Security Update for Windows XP (KB938127)—>»C:WINDOWS$NtUninstallKB938127$spuninstspuninst.exe»
Security Update for Windows XP (KB938464)—>»C:WINDOWS$NtUninstallKB938464$spuninstspuninst.exe»
Security Update for Windows XP (KB938829)—>»C:WINDOWS$NtUninstallKB938829$spuninstspuninst.exe»
Security Update for Windows XP (KB939653)—>»C:WINDOWS$NtUninstallKB939653$spuninstspuninst.exe»
Security Update for Windows XP (KB941202)—>»C:WINDOWS$NtUninstallKB941202$spuninstspuninst.exe»
Security Update for Windows XP (KB941568)—>»C:WINDOWS$NtUninstallKB941568$spuninstspuninst.exe»
Security Update for Windows XP (KB941569)—>»C:WINDOWS$NtUninstallKB941569$spuninstspuninst.exe»
Security Update for Windows XP (KB941644)—>»C:WINDOWS$NtUninstallKB941644$spuninstspuninst.exe»
Security Update for Windows XP (KB942615)—>»C:WINDOWS$NtUninstallKB942615$spuninstspuninst.exe»
Security Update for Windows XP (KB943055)—>»C:WINDOWS$NtUninstallKB943055$spuninstspuninst.exe»
Security Update for Windows XP (KB943460)—>»C:WINDOWS$NtUninstallKB943460$spuninstspuninst.exe»
Security Update for Windows XP (KB943485)—>»C:WINDOWS$NtUninstallKB943485$spuninstspuninst.exe»
Security Update for Windows XP (KB944338)—>»C:WINDOWS$NtUninstallKB944338$spuninstspuninst.exe»
Security Update for Windows XP (KB944533)—>»C:WINDOWS$NtUninstallKB944533$spuninstspuninst.exe»
Security Update for Windows XP (KB944653)—>»C:WINDOWS$NtUninstallKB944653$spuninstspuninst.exe»
Security Update for Windows XP (KB945553)—>»C:WINDOWS$NtUninstallKB945553$spuninstspuninst.exe»
Security Update for Windows XP (KB946026)—>»C:WINDOWS$NtUninstallKB946026$spuninstspuninst.exe»
Security Update for Windows XP (KB946648)—>»C:WINDOWS$NtUninstallKB946648$spuninstspuninst.exe»
Security Update for Windows XP (KB948881)—>»C:WINDOWS$NtUninstallKB948881$spuninstspuninst.exe»
Security Update for Windows XP (KB950749)—>»C:WINDOWS$NtUninstallKB950749$spuninstspuninst.exe»
Security Update for Windows XP (KB950759)—>»C:WINDOWS$NtUninstallKB950759$spuninstspuninst.exe»
Security Update for Windows XP (KB950760)—>»C:WINDOWS$NtUninstallKB950760$spuninstspuninst.exe»
Security Update for Windows XP (KB950762)—>»C:WINDOWS$NtUninstallKB950762$spuninstspuninst.exe»
Security Update for Windows XP (KB950974)—>»C:WINDOWS$NtUninstallKB950974$spuninstspuninst.exe»
Security Update for Windows XP (KB951066)—>»C:WINDOWS$NtUninstallKB951066$spuninstspuninst.exe»
Security Update for Windows XP (KB951376-v2)—>»C:WINDOWS$NtUninstallKB951376-v2$spuninstspuninst.exe»
Security Update for Windows XP (KB951698)—>»C:WINDOWS$NtUninstallKB951698$spuninstspuninst.exe»
Security Update for Windows XP (KB951748)—>»C:WINDOWS$NtUninstallKB951748$spuninstspuninst.exe»
Security Update for Windows XP (KB952954)—>»C:WINDOWS$NtUninstallKB952954$spuninstspuninst.exe»
Security Update for Windows XP (KB953838)—>»C:WINDOWS$NtUninstallKB953838$spuninstspuninst.exe»
Security Update for Windows XP (KB953839)—>»C:WINDOWS$NtUninstallKB953839$spuninstspuninst.exe»
Security Update for Windows XP (KB954211)—>»C:WINDOWS$NtUninstallKB954211$spuninstspuninst.exe»
Security Update for Windows XP (KB954600)—>»C:WINDOWS$NtUninstallKB954600$spuninstspuninst.exe»
Security Update for Windows XP (KB955069)—>»C:WINDOWS$NtUninstallKB955069$spuninstspuninst.exe»
Security Update for Windows XP (KB956391)—>»C:WINDOWS$NtUninstallKB956391$spuninstspuninst.exe»
Security Update for Windows XP (KB956802)—>»C:WINDOWS$NtUninstallKB956802$spuninstspuninst.exe»
Security Update for Windows XP (KB956803)—>»C:WINDOWS$NtUninstallKB956803$spuninstspuninst.exe»
Security Update for Windows XP (KB956841)—>»C:WINDOWS$NtUninstallKB956841$spuninstspuninst.exe»
Security Update for Windows XP (KB957095)—>»C:WINDOWS$NtUninstallKB957095$spuninstspuninst.exe»
Security Update for Windows XP (KB957097)—>»C:WINDOWS$NtUninstallKB957097$spuninstspuninst.exe»
Security Update for Windows XP (KB958215)—>»C:WINDOWS$NtUninstallKB958215$spuninstspuninst.exe»
Security Update for Windows XP (KB958644)—>»C:WINDOWS$NtUninstallKB958644$spuninstspuninst.exe»
Security Update for Windows XP (KB960714)—>»C:WINDOWS$NtUninstallKB960714$spuninstspuninst.exe»
Synaptics Pointing Device Driver—>rundll32.exe «C:Program FilesSynapticsSynTPSynISDLL.dll»,standAloneUninstall
Skype™ 3.8—>MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
Texas Instruments PCIxx21/x515/xx12 drivers.—>C:Program FilesInstallShield Installation Information{DB780B85-B4B5-4864-A49C-9B706B169C93}setup.exe -runfromtemp -l0x0409
TOSHIBA Software Modem—>Tosmreg -U
Total Commander (Remove or Repair)—>C:Program Filestotalcmdtcuninst.exe
Update for Windows XP (KB900485)—>»C:WINDOWS$NtUninstallKB900485$spuninstspuninst.exe»
Update for Windows XP (KB910437)—>»C:WINDOWS$NtUninstallKB910437$spuninstspuninst.exe»
Update for Windows XP (KB911280)—>»C:WINDOWS$NtUninstallKB911280$spuninstspuninst.exe»
Update for Windows XP (KB916595)—>»C:WINDOWS$NtUninstallKB916595$spuninstspuninst.exe»
Update for Windows XP (KB920872)—>»C:WINDOWS$NtUninstallKB920872$spuninstspuninst.exe»
Update for Windows XP (KB922582)—>»C:WINDOWS$NtUninstallKB922582$spuninstspuninst.exe»
Update for Windows XP (KB927891)—>»C:WINDOWS$NtUninstallKB927891$spuninstspuninst.exe»
Update for Windows XP (KB930916)—>»C:WINDOWS$NtUninstallKB930916$spuninstspuninst.exe»
Update for Windows XP (KB933360)—>»C:WINDOWS$NtUninstallKB933360$spuninstspuninst.exe»
Update for Windows XP (KB936357)—>»C:WINDOWS$NtUninstallKB936357$spuninstspuninst.exe»
Update for Windows XP (KB938828)—>»C:WINDOWS$NtUninstallKB938828$spuninstspuninst.exe»
Update for Windows XP (KB942763)—>»C:WINDOWS$NtUninstallKB942763$spuninstspuninst.exe»
Update for Windows XP (KB942840)—>»C:WINDOWS$NtUninstallKB942840$spuninstspuninst.exe»
Update for Windows XP (KB946627)—>»C:WINDOWS$NtUninstallKB946627$spuninstspuninst.exe»
Update for Windows XP (KB951072-v2)—>»C:WINDOWS$NtUninstallKB951072-v2$spuninstspuninst.exe»
Update for Windows XP (KB955839)—>»C:WINDOWS$NtUninstallKB955839$spuninstspuninst.exe»
Windows Driver Package — Intel (NETw4x32) net (04/30/2007 11.1.1.11)—>C:PROGRA~1DIFXD6ACC4BE676423A2B130B78A4B627FC457D98997DPInst32.EXE /u C:WINDOWSsystem32DRVSTOREnetw4x32_B8E7181C5675973E1CF9EA17CB3EB24902DDC2D9netw4x32.inf
Windows Driver Package — Intel (w29n51) net (04/04/2007 9.0.4.36)—>C:PROGRA~1DIFXD6ACC4BE676423A2B130B78A4B627FC457D98997DPInst32.EXE /u C:WINDOWSsystem32DRVSTOREw29n51_02092897E25039DF89C96EBB4841ACF0590117AEw29n51.inf
Windows Driver Package — Intel net (04/30/2007 11.1.1.11)—>C:PROGRA~1DIFXD6ACC4BE676423A2B130B78A4B627FC457D98997DPInst32.EXE /u C:WINDOWSsystem32DRVSTOREnetw4k32_322EBC0DF0BD0D017FD344D7D1F0EC0A0F5AB45Anetw4k32.inf
Windows Driver Package — Intel net (04/30/2007 11.1.1.11)—>C:PROGRA~1DIFXD6ACC4BE676423A2B130B78A4B627FC457D98997DPInst32.EXE /u C:WINDOWSsystem32DRVSTOREnetw4x64_3FDB2100688236429B1308C609051803854732B5netw4x64.inf
Windows Media Format Runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Windows Media Player 10—>»C:Program FilesWindows Media PlayerSetup_wm.exe» /Uninstall
Windows XP Hotfix — KB887472—>C:WINDOWS$NtUninstallKB887472$spuninstspuninst.exeSystem event log
Computer Name: KOMP
Event Code: 7035
Message: The IMAPI CD-Burning COM Service service was successfully sent a start control.Record Number: 892
Source Name: Service Control Manager
Time Written: 20071107150301.000000+120
Event Type: information
User: NT AUTHORITYSYSTEMComputer Name: KOMP
Event Code: 7036
Message: The Windows Image Acquisition (WIA) service entered the running state.Record Number: 891
Source Name: Service Control Manager
Time Written: 20071107150140.000000+120
Event Type: information
User:Computer Name: KOMP
Event Code: 4202
Message: The system detected that network adapter Intel(R) Wireless WiFi Link 4965AGN was disconnected from the network,
and the adapter’s network configuration has been released. If the network
adapter was not disconnected, this may indicate that it has malfunctioned.
Please contact your vendor for updated drivers.Record Number: 890
Source Name: Tcpip
Time Written: 20071107150123.000000+120
Event Type: information
User:Computer Name: KOMP
Event Code: 7036
Message: The service entered the Intel(R) Wireless WiFi Link 4965AGN state.Record Number: 889
Source Name: NETw4x32
Time Written: 20071107150118.000000+120
Event Type: information
User:Computer Name: KOMP
Event Code: 7036
Message: The IMAPI CD-Burning COM Service service entered the stopped state.Record Number: 888
Source Name: Service Control Manager
Time Written: 20071107131707.000000+120
Event Type: information
User:Application event log
Computer Name: KOMP
Event Code: 4104
Message: The Microsoft Distributed Transaction Coordinator service was successfully installed.
Record Number: 5
Source Name: MSDTC
Time Written: 20071018084538.000000+180
Event Type: information
User:Computer Name: KOMP
Event Code: 1000
Message: Performance counters for the MSDTC (MSDTC) service were loaded successfully.
The Record Data contains the new index values assigned
to this service.Record Number: 4
Source Name: LoadPerf
Time Written: 20071018084534.000000+180
Event Type: information
User:Computer Name: KOMP
Event Code: 1000
Message: Performance counters for the TermService (Terminal Services) service were loaded successfully.
The Record Data contains the new index values assigned
to this service.Record Number: 3
Source Name: LoadPerf
Time Written: 20071018084531.000000+180
Event Type: information
User:Computer Name: KOMP
Event Code: 1000
Message: Performance counters for the RemoteAccess (Routing and Remote Access) service were loaded successfully.
The Record Data contains the new index values assigned
to this service.Record Number: 2
Source Name: LoadPerf
Time Written: 20071018084415.000000+180
Event Type: information
User:Computer Name: KOMP
Event Code: 1000
Message: Performance counters for the RSVP (QoS RSVP) service were loaded successfully.
The Record Data contains the new index values assigned
to this service.Record Number: 1
Source Name: LoadPerf
Time Written: 20071018084343.000000+180
Event Type: information
User:======Environment variables======
«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 14 Stepping 12, GenuineIntel
«PROCESSOR_REVISION»=0e0c
«NUMBER_OF_PROCESSORS»=2
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
EOF
