При загрузке виндов на пустом поле только окно Мои документы

[Julka]

Пыталась скачать бесплатно nod32, выскочило окно с порнухой, попыталась закрыть, после чего выскочило окно с требованием прислать sms на номер…, чтобы разблокировать винды. закрыла, перезагрузилась. Теперь открывается только окно Мои документы. Кнопки Пуск нет. При попытке открыть диспетчер задач, пишет: Диспетчер задач отключен администратором.
Помогите, пожалуйста!

[Julka]

Logfile of random’s system information tool 1.08 (written by random/random)
Run by Юлия at 2010-04-08 20:56:12
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 8 GB (21%) free of 40 GB
Total RAM: 1023 MB (63% free)

HijackThis download failed

======Scheduled tasks folder======

C:WINDOWStasksAppleSoftwareUpdate.job
C:WINDOWStasksNorton Security Scan for Юлия.job
C:WINDOWStasksRegPowerClean.job
C:WINDOWStasksRPCReminder.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class — C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll [2004-12-14 63136]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) — C:Program FilesSkypeToolbarsInternet ExplorerSkypeIEPlugin.dll [2008-09-23 1088296]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class — C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll [2004-12-14 225280]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{CF272101-7F6E-4CF2-9453-B4C5D2FC32C0}]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-09-05 41760]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-09-05 73728]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} — Adobe PDF — C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll [2004-12-14 225280]
{855F3B16-6D32-4fe6-8A56-BBB695989046} — ICQToolBar — C:Program FilesICQ6ToolbarICQToolBar.dll [2008-06-12 958712]
{91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program FilesYandexYandexBarIEyndbar.dll [2010-02-16 8944968]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«RTHDCPL»=C:WINDOWSRTHDCPL.EXE [2007-10-25 16855552]
«SkyTel»=C:WINDOWSSkyTel.EXE [2007-10-11 1826816]
«Alcmtr»=C:WINDOWSALCMTR.EXE [2005-05-03 69632]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2007-09-17 8491008]
«nwiz»=nwiz.exe /install []
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2007-09-17 81920]
«Acrobat Assistant 7.0″=C:Program FilesAdobeAcrobat 7.0DistillrAcrotray.exe [2004-12-14 483328]
«»= []
«NeroFilterCheck»=C:Program FilesCommon FilesNeroLibNeroCheck.exe [2007-03-01 153136]
«NBKeyScan»=C:Program FilesNeroNero8Nero BackItUpNBKeyScan.exe [2007-12-03 2213160]
«SunJavaUpdateSched»=C:Program FilesJavajre6binjusched.exe [2009-09-05 149280]
«QuickTime Task»=C:Program FilesQuickTimeQTTask.exe [2010-02-15 417792]
«VKSaverUpdater»=C:Program FilesVKSaverVKSaverUpdater.exe [2010-03-06 56832]
«AdobeCS4ServiceManager»=C:Program FilesCommon FilesAdobeCS4ServiceManagerCS4ServiceManager.exe [2008-08-14 611712]
«egui»=C:Program FilesESETESET NOD32 Antivirusegui.exe [2010-04-07 2145000]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}»=C:Program FilesCommon FilesNeroLibNMIndexStoreSvr.exe [2007-12-13 1688872]
«SsAAD.exe»=C:PROGRA~1SonySONICS~1SsAAD.exe [2006-09-05 81920]
«PC Suite Tray»=C:Program FilesNokiaNokia PC Suite 7PCSuite.exe [2009-06-25 1414144]
«H/PC Connection Agent»=C:Program FilesMicrosoft ActiveSyncwcescomm.exe [2006-11-13 1289000]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2008-06-09 15360]
«ICQ»=C:Program FilesICQ7.0ICQ.exe [2010-06-08 133368]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRunOnce]
«Shockwave Updater»=C:WINDOWSsystem32AdobeSHOCKW~1SWHELP~1.EXE [2009-01-16 460216]

C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
Adobe Gamma.lnk — C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows]
«AppInit_DLLs»=»C:WINDOWSsystem32vksaver.dll»

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetcontrolsecurityproviders]
«SecurityProviders»=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digeste.dll, digiwet.dll

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWdf01000.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkWdf01000.sys]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetwork{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«DisableTaskMgr»=1

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=0

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«ForceClassicControlPanel»=1
«HonorAutoRunSetting»=1
«NoDriveTypeAutoRun»=28

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE»=»C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook»
«C:Program FilesInterVideoDVD7WinDVD.exe»=»C:Program FilesInterVideoDVD7WinDVD.exe:*:Enabled:WinDVD»
«C:Program FilesuTorrentutorrent.exe»=»C:Program FilesuTorrentutorrent.exe:*:Enabled:µTorrent»
«C:Program FilesICQ6ICQ.exe»=»C:Program FilesICQ6ICQ.exe:*:Enabled:ICQ6»
«C:Program FilesStrongDC++ InterZet EditionStrongDC.exe»=»C:Program FilesStrongDC++ InterZet EditionStrongDC.exe:*:Enabled:StrongDC++»
«C:Program FilesMacromediaFreeHand MXFreeHand MX.exe»=»C:Program FilesMacromediaFreeHand MXFreeHand MX.exe:*:Enabled:FreeHand MX»
«C:Program FilessinaSAPSAPlatform.exe»=»C:Program FilessinaSAPSAPlatform.exe:*:Enabled:SAPlatform.exe»
«C:Program FilesICQ6.5ICQ.exe»=»C:Program FilesICQ6.5ICQ.exe:*:Enabled:ICQ6»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype»
«C:Program FilesOpera 10 Betaopera.exe»=»C:Program FilesOpera 10 Betaopera.exe:*:Enabled:Opera Internet Browser»
«C:Program FilesMicrosoft ActiveSyncrapimgr.exe»=»C:Program FilesMicrosoft ActiveSyncrapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager»
«C:Program FilesMicrosoft ActiveSyncwcescomm.exe»=»C:Program FilesMicrosoft ActiveSyncwcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager»
«C:Program FilesMicrosoft ActiveSyncWCESMgr.exe»=»C:Program FilesMicrosoft ActiveSyncWCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application»
«C:WINDOWSsystem32PnkBstrA.exe»=»C:WINDOWSsystem32PnkBstrA.exe:*:Enabled:PnkBstrA»
«C:WINDOWSsystem32PnkBstrB.exe»=»C:WINDOWSsystem32PnkBstrB.exe:*:Enabled:PnkBstrB»
«C:Program FilesICQ7.0ICQ.exe»=»C:Program FilesICQ7.0ICQ.exe:*:Enabled:ICQ7»
«C:Program FilesICQ7.0aolload.exe»=»C:Program FilesICQ7.0aolload.exe:*:Enabled:aolload.exe»
«C:Program FilesSopCastadvSopAdver.exe»=»C:Program FilesSopCastadvSopAdver.exe:*:Enabled:SopCast Adver»
«C:Program FilesSopCastSopCast.exe»=»C:Program FilesSopCastSopCast.exe:*:Enabled:SopCast Main Application»
«C:Program FilesCommon FilesAdobeCS4ServiceManagerCS4ServiceManager.exe»=»C:Program FilesCommon FilesAdobeCS4ServiceManagerCS4ServiceManager.exe:*:Enabled:Adobe CSI CS4»
«C:Documents and SettingsЮлияМои документыЗагрузкиShareman.exe»=»C:Documents and SettingsЮлияМои документыЗагрузкиShareman.exe:*:Enabled:Shareman»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesMicrosoft ActiveSyncrapimgr.exe»=»C:Program FilesMicrosoft ActiveSyncrapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager»
«C:Program FilesMicrosoft ActiveSyncwcescomm.exe»=»C:Program FilesMicrosoft ActiveSyncwcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager»
«C:Program FilesMicrosoft ActiveSyncWCESMgr.exe»=»C:Program FilesMicrosoft ActiveSyncWCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application»
«C:Program FilesICQ7.0ICQ.exe»=»C:Program FilesICQ7.0ICQ.exe:*:Enabled:ICQ7»
«C:Program FilesICQ7.0aolload.exe»=»C:Program FilesICQ7.0aolload.exe:*:Enabled:aolload.exe»

======List of files/folders created in the last 1 months======

2010-08-07 17:55:02 —-D—- C:Program FilesESET
2010-08-07 17:55:02 —-D—- C:Documents and SettingsAll UsersApplication DataESET
2010-08-07 14:57:21 —-D—- C:Program FilesKaspersky Lab
2010-07-16 22:04:14 —-D—- C:Program FilesCCleaner
2010-07-15 03:39:04 —-HDC—- C:WINDOWS$NtUninstallKB2229593$
2010-07-07 00:01:15 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab
2010-07-06 23:57:55 —-D—- C:Documents and SettingsAll UsersApplication DataKaspersky Lab Setup Files
2010-07-06 22:14:40 —-D—- C:WINDOWS6FF543AB99B34120902C70A38314ABD8.TMP
2010-07-04 19:59:11 —-D—- C:Documents and SettingsЮлияApplication DataMxBoost
2010-07-04 19:58:09 —-D—- C:Program FilesMaxthon2
2010-07-03 23:50:49 —-D—- C:Program FilesOpera
2010-06-30 22:58:46 —-D—- C:Documents and SettingsЮлияApplication DataShareman
2010-06-29 23:47:20 —-A—- C:Program FilesCommon Fileskeylog.txt
2010-06-10 01:00:50 —-HDC—- C:WINDOWS$NtUninstallKB980218$
2010-06-10 01:00:44 —-HDC—- C:WINDOWS$NtUninstallKB980195$
2010-06-10 01:00:38 —-HDC—- C:WINDOWS$NtUninstallKB979559$
2010-06-10 00:57:05 —-HDC—- C:WINDOWS$NtUninstallKB978695_WM9$
2010-06-10 00:56:57 —-HDC—- C:WINDOWS$NtUninstallKB979482$
2010-06-10 00:56:49 —-HDC—- C:WINDOWS$NtUninstallKB975562$
2010-05-26 01:10:38 —-HDC—- C:WINDOWS$NtUninstallKB981793$
2010-05-15 00:18:12 —-D—- C:Documents and SettingsЮлияApplication DataePaperPress
2010-05-15 00:16:34 —-D—- C:Program FilesePaperPress
2010-05-12 20:07:10 —-HDC—- C:WINDOWS$NtUninstallKB978542$
2010-05-06 23:00:01 —-D—- C:Program FilesAdobe Media Player
2010-05-06 22:52:24 —-D—- C:Program FilesCommon FilesMacrovision Shared
2010-05-03 18:17:11 —-AC—- C:WINDOWSPtpick32.dll
2010-05-03 18:17:11 —-AC—- C:WINDOWSpfpick.dll
2010-05-03 18:17:11 —-AC—- C:WINDOWSKpsharp.dll
2010-05-03 18:17:11 —-AC—- C:WINDOWSKpscale.dll
2010-05-03 18:17:11 —-A—- C:WINDOWSsprof32.dll
2010-05-03 18:17:11 —-A—- C:WINDOWSKpsys32.dll
2010-05-03 18:17:11 —-A—- C:WINDOWSKpfp32.dll
2010-05-03 18:17:11 —-A—- C:WINDOWSKpcp32.dll
2010-05-03 18:17:11 —-A—- C:WINDOWSicccodes.dll
2010-05-03 18:17:10 —-A—- C:WINDOWSKpcms.ini
2010-05-03 18:16:46 —-AC—- C:WINDOWSsystem32Urlcache.dll
2010-05-03 18:16:46 —-AC—- C:WINDOWSSpwhpt.dll
2010-05-03 18:16:29 —-D—- C:WINDOWSsystem32Color
2010-05-03 18:16:29 —-D—- C:Kpcms
2010-04-27 22:57:45 —-D—- C:Documents and SettingsAll UsersApplication DataFLEXnet
2010-04-27 22:38:24 —-D—- C:Program FilesCommon FilesAdobe AIR
2010-04-24 20:01:52 —-D—- C:Program FilesuTorrent
2010-04-18 17:17:58 —-HDC—- C:WINDOWS$NtUninstallKB979683$
2010-04-18 17:17:47 —-HDC—- C:WINDOWS$NtUninstallKB980232$
2010-04-18 17:15:10 —-HDC—- C:WINDOWS$NtUninstallKB981349$
2010-04-18 17:14:59 —-HDC—- C:WINDOWS$NtUninstallKB978338$
2010-04-18 17:14:49 —-HDC—- C:WINDOWS$NtUninstallKB977816$
2010-04-14 00:30:17 —-HDC—- C:WINDOWS$NtUninstallKB978601$
2010-04-14 00:30:10 —-HDC—- C:WINDOWS$NtUninstallKB979309$
2010-04-08 20:56:12 —-D—- C:rsit
2010-04-08 20:56:12 —-D—- C:Program Filestrend micro
2010-04-08 20:39:20 —-A—- C:WINDOWSntbtlog.txt
2010-04-08 20:36:08 —-A—- C:SAFEBOOT_REPAIR.TXT
2010-04-07 21:08:08 —-A—- C:WINDOWSsystem32driversepfwtdir.sys
2010-04-07 21:07:08 —-A—- C:WINDOWSsystem32driversehdrv.sys
2010-04-07 21:03:44 —-A—- C:WINDOWSsystem32driverseamon.sys
2010-04-01 23:44:08 —-D—- C:Documents and SettingsAll UsersApplication DataYandex
2010-04-01 23:44:07 —-D—- C:Program FilesYandex
2010-04-01 23:44:00 —-D—- C:Program FilesVKSaver
2010-03-31 00:16:34 —-A—- C:WINDOWSsystem32PresentationHostProxy.dll
2010-03-31 00:10:40 —-A—- C:WINDOWSsystem32PresentationHost.exe
2010-03-21 17:44:00 —-D—- C:Documents and SettingsЮлияApplication DataCanneverbe Limited
2010-03-21 17:44:00 —-D—- C:Documents and SettingsAll UsersApplication DataCanneverbe Limited
2010-03-15 22:17:57 —-D—- C:Program FilesQuickTime
2010-03-15 22:17:54 —-D—- C:Documents and SettingsAll UsersApplication DataApple Computer
2010-03-14 23:14:32 —-A—- C:WINDOWSsystem32vksaver.dll
2010-03-11 18:10:13 —-HDC—- C:WINDOWS$NtUninstallKB977165-v2$
2010-03-11 18:10:04 —-HDC—- C:WINDOWS$NtUninstallKB975561$

======List of files/folders modified in the last 1 months======

2010-08-07 18:02:13 —-D—- C:WINDOWSsystem32CatRoot2
2010-08-07 17:55:55 —-SHD—- C:WINDOWSInstaller
2010-08-07 17:55:49 —-D—- C:WINDOWSsystem32drivers
2010-08-07 17:55:47 —-HD—- C:WINDOWSinf
2010-08-07 15:46:47 —-N—- C:WINDOWSSchedLgU.Txt
2010-08-06 00:53:26 —-D—- C:Documents and SettingsЮлияApplication DataICQ
2010-08-05 22:59:44 —-D—- C:Documents and SettingsЮлияApplication DataVso
2010-08-04 20:07:39 —-D—- C:WINDOWSsystem32Restore
2010-08-03 01:34:15 —-D—- C:Documents and SettingsЮлияApplication DatauTorrent
2010-07-26 20:49:18 —-D—- C:Program FilesMozilla Firefox
2010-07-19 01:19:14 —-A—- C:WINDOWSwin.ini
2010-07-16 22:04:46 —-D—- C:WINDOWSsystem32driversetc
2010-07-16 22:04:45 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-07-16 22:04:23 —-D—- C:WINDOWSWinSxS
2010-07-16 22:04:09 —-SHD—- C:RECYCLER
2010-07-15 03:38:42 —-D—- C:WINDOWS$hf_mig$
2010-07-14 21:48:02 —-D—- C:Documents and SettingsЮлияApplication DataYandex
2010-07-08 22:03:18 —-D—- C:WINDOWSMinidump
2010-07-06 22:09:18 —-AD—- C:Documents and SettingsAll UsersApplication DataTEMP
2010-07-05 00:20:22 —-A—- C:WINDOWSNeroDigital.ini
2010-07-04 00:38:08 —-SD—- C:WINDOWSTasks
2010-07-02 23:39:05 —-A—- C:WINDOWSsystem32MRT.exe
2010-07-01 01:41:50 —-D—- C:Program FilesCommon FilesNokia
2010-06-30 08:47:03 —-SHD—- C:System Volume Information
2010-06-29 23:47:24 —-D—- C:Program FilesCommon Files
2010-06-23 17:38:23 —-D—- C:WINDOWSMicrosoft.NET
2010-06-23 17:38:17 —-RSD—- C:WINDOWSassembly
2010-06-23 15:57:58 —-A—- C:WINDOWSsystem32PerfStringBackup.INI
2010-06-21 01:55:03 —-D—- C:WINDOWSHelp
2010-06-19 19:22:56 —-D—- C:Documents and SettingsAll UsersApplication DataMicrosoft Help
2010-06-15 09:10:56 —-D—- C:Program FilesMicrosoft Silverlight
2010-06-15 00:16:34 —-SD—- C:Documents and SettingsAll UsersApplication DataMicrosoft
2010-06-10 10:36:03 —-D—- C:Program FilesICQ7.0
2010-06-10 00:51:00 —-D—- C:WINDOWSsystem32ru-ru
2010-06-10 00:51:00 —-D—- C:Program FilesInternet Explorer
2010-05-14 00:55:21 —-SD—- C:Documents and SettingsЮлияApplication DataMicrosoft
2010-05-12 20:07:13 —-D—- C:Program FilesOutlook Express
2010-05-08 20:07:58 —-D—- C:Documents and SettingsЮлияApplication DataAdobe
2010-05-06 23:30:51 —-RSD—- C:WINDOWSFonts
2010-05-06 23:02:49 —-D—- C:Program FilesAdobe
2010-05-06 23:02:29 —-D—- C:Program FilesCommon FilesAdobe
2010-05-06 23:02:02 —-D—- C:Documents and SettingsAll UsersApplication DataAdobe
2010-05-04 21:19:28 —-A—- C:WINDOWSsystem32wininet.dll
2010-05-04 21:19:28 —-A—- C:WINDOWSsystem32webcheck.dll
2010-05-04 21:19:28 —-A—- C:WINDOWSsystem32urlmon.dll
2010-05-04 21:19:27 —-N—- C:WINDOWSsystem32occache.dll
2010-05-04 21:19:27 —-N—- C:WINDOWSsystem32mstime.dll
2010-05-04 21:19:27 —-N—- C:WINDOWSsystem32msrating.dll
2010-05-04 21:19:27 —-A—- C:WINDOWSsystem32url.dll
2010-05-04 21:19:27 —-A—- C:WINDOWSsystem32pngfilt.dll
2010-05-04 21:19:27 —-A—- C:WINDOWSsystem32mshtmled.dll
2010-05-04 21:19:27 —-A—- C:WINDOWSsystem32mshtml.dll
2010-05-04 21:19:26 —-N—- C:WINDOWSsystem32jsproxy.dll
2010-05-04 21:19:26 —-N—- C:WINDOWSsystem32iernonce.dll
2010-05-04 21:19:26 —-A—- C:WINDOWSsystem32msfeedsbs.dll
2010-05-04 21:19:26 —-A—- C:WINDOWSsystem32msfeeds.dll
2010-05-04 21:19:26 —-A—- C:WINDOWSsystem32iertutil.dll
2010-05-04 21:19:26 —-A—- C:WINDOWSsystem32iepeers.dll
2010-05-04 21:19:25 —-N—- C:WINDOWSsystem32iedkcs32.dll
2010-05-04 21:19:25 —-A—- C:WINDOWSsystem32ieframe.dll
2010-05-04 21:19:25 —-A—- C:WINDOWSsystem32ieencode.dll
2010-05-04 21:19:25 —-A—- C:WINDOWSsystem32ieapfltr.dll
2010-05-04 21:19:24 —-N—- C:WINDOWSsystem32ieaksie.dll
2010-05-04 21:19:24 —-N—- C:WINDOWSsystem32ieakeng.dll
2010-05-04 21:19:24 —-N—- C:WINDOWSsystem32extmgr.dll
2010-05-04 21:19:24 —-A—- C:WINDOWSsystem32icardie.dll
2010-05-04 21:19:24 —-A—- C:WINDOWSsystem32dxtrans.dll
2010-05-04 21:19:24 —-A—- C:WINDOWSsystem32dxtmsft.dll
2010-05-04 21:19:24 —-A—- C:WINDOWSsystem32corpol.dll
2010-05-04 21:19:24 —-A—- C:WINDOWSsystem32advpack.dll
2010-05-04 16:40:36 —-N—- C:WINDOWSsystem32ie4uinit.exe
2010-05-04 16:40:36 —-A—- C:WINDOWSsystem32ieudinit.exe
2010-05-03 20:50:24 —-D—- C:Program FilesFieryAds
2010-05-03 18:16:46 —-D—- C:WINDOWSSHELLNEW
2010-04-21 17:28:50 —-A—- C:WINDOWSsystem32tzchange.exe
2010-04-20 09:32:05 —-A—- C:WINDOWSsystem32atmfd.dll
2010-04-16 15:43:23 —-N—- C:WINDOWSsystem32ieakui.dll
2010-04-08 20:56:12 —-RD—- C:Program Files
2010-04-08 20:55:16 —-D—- C:WINDOWSTemp
2010-04-08 20:50:55 —-AD—- C:WINDOWS
2010-04-08 20:42:20 —-D—- C:Documents and Settings
2010-04-08 20:35:10 —-D—- C:WINDOWSPrefetch
2010-04-08 20:14:41 —-D—- C:WINDOWSDebug
2010-04-08 19:50:52 —-D—- C:WINDOWSsystem32
2010-04-06 04:52:46 —-A—- C:WINDOWSsystem32WMVCore.dll
2010-04-02 22:01:18 —-D—- C:WINDOWSsystem32LogFiles
2010-04-01 23:44:07 —-D—- C:Documents and SettingsЮлияApplication DataOpera
2010-03-30 15:16:00 —-D—- C:Program FilesICQ6Toolbar
2010-03-20 21:19:37 —-D—- C:Program FilesGamblerJ
2010-03-16 23:03:32 —-D—- C:PSFONTS
2010-03-11 18:10:06 —-D—- C:Program FilesMovie Maker
2010-03-09 15:11:20 —-A—- C:WINDOWSsystem32vbscript.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:WINDOWSSystem32DriversPxHelp20.sys [2005-04-25 20640]
R0 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2008-01-18 77696]
R1 ehdrv;ehdrv; C:WINDOWSsystem32DRIVERSehdrv.sys [2010-04-07 114984]
R1 epfwtdir;epfwtdir; C:WINDOWSsystem32DRIVERSepfwtdir.sys [2010-04-07 95872]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-06-09 40704]
R1 oreans32;oreans32; ??C:WINDOWSsystem32driversoreans32.sys []
R2 adfs;adfs; C:WINDOWSsystem32driversadfs.sys [2008-08-14 74720]
R2 eamon;eamon; C:WINDOWSsystem32DRIVERSeamon.sys [2010-04-07 139192]
R3 AtcL002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller; C:WINDOWSsystem32DRIVERSl251x86.sys [2007-10-17 30720]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2008-06-09 144384]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:WINDOWSsystem32driversRtkHDAud.sys [2007-11-01 4620288]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:WINDOWSsystem32DRIVERSASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2007-09-17 6853088]
R3 pcouffin;VSO Software pcouffin; C:WINDOWSSystem32Driverspcouffin.sys [2008-11-07 47360]
R3 usbstor;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-06-09 26368]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-14 20608]
S3 nmwcd;Nokia USB Phone Parent; C:WINDOWSsystem32driversccdcmb.sys [2009-02-09 17664]
S3 nmwcdc;Nokia USB Generic; C:WINDOWSsystem32driversccdcmbo.sys [2009-02-09 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:WINDOWSsystem32DRIVERSpccsmcfd.sys [2008-08-26 18816]
S3 StarOpen;StarOpen; C:WINDOWSsystem32driversStarOpen.sys []
S3 upperdev;upperdev; C:WINDOWSsystem32DRIVERSusbser_lowerflt.sys [2009-02-09 7808]
S3 usb_rndisx;Адаптер USB RNDIS; C:WINDOWSsystem32DRIVERSusb8023x.sys [2008-04-14 12800]
S3 usbser;USB Modem Driver; C:WINDOWSsystem32driversusbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:WINDOWSsystem32DRIVERSusbser_lowerfltj.sys [2009-02-09 7808]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:WINDOWSsystem32DRIVERSwceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:WINDOWSSystem32Driverswdf01000.sys [2008-03-27 503008]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2008-01-18 83328]
S4 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2008-06-09 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe [2009-06-05 144712]
R2 ASTSRV;Nalpeiron Licensing Service; C:WINDOWSsystem32ASTSRV.EXE [2008-05-19 57344]
R2 Bonjour Service;Bonjour Service; C:Program FilesBonjourmDNSResponder.exe [2008-12-12 238888]
R2 ekrn;ESET Service; C:Program FilesESETESET NOD32 Antivirusekrn.exe [2010-04-07 810120]
R2 ICQ Service;ICQ Service; C:Program FilesICQ6ToolbarICQ Service.exe [2008-06-10 222456]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-09-05 153376]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-20 322120]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:Program FilesNeroNero8Nero BackItUpNBService.exe [2007-12-03 869672]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2007-09-17 155716]
R2 PnkBstrA;PnkBstrA; C:WINDOWSsystem32PnkBstrA.exe [2009-11-19 66872]
R2 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2008-06-09 14336]
S3 Adobe LM Service;Adobe LM Service; C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe [2008-09-30 72704]
S3 aspnet_state;Служба состояний ASP.NET; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:Program FilesESETESET NOD32 AntivirusEHttpSrv.exe [2010-04-07 33560]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2010-05-06 655624]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 MSCSPTISRV;MSCSPTISRV; C:Program FilesCommon FilesSony SharedAVLibMSCSPTISRV.exe [2006-08-11 57344]
S3 NMIndexingService;NMIndexingService; C:Program FilesCommon FilesNeroLibNMIndexingService.exe [2007-12-13 447784]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 PACSPTISVR;PACSPTISVR; C:Program FilesCommon FilesSony SharedAVLibPACSPTISVR.exe [2006-08-11 57344]
S3 ServiceLayer;ServiceLayer; C:Program FilesPC Connectivity SolutionServiceLayer.exe [2009-06-02 637952]
S3 SPTISRV;Sony SPTI Service; C:Program FilesCommon FilesSony SharedAVLibSPTISRV.exe [2006-08-11 69632]
S3 SSScsiSV;SonicStage SCSI Service; C:Program FilesCommon FilesSony SharedAVLibSSScsiSV.exe [2006-09-05 69632]
S3 usprserv;User Privilege Service; C:WINDOWSSystem32svchost.exe [2008-06-09 14336]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S4 ATMsrvc;ATM Service; C:WINDOWSSystem32ATMsrvc.exe [2000-05-24 15360]
S4 NetTcpPortSharing;Служба общего доступа к портам Net.Tcp; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]

---

EOF

---

[Julka]

Помогите! Через Мои документы выхожу и на Мой компьютер, открываю программы, но не знаю, вдруг в какой-то момент все обрушится. надо работать, а боюсь…

[Admin]

Здравствуйте, добро пожаловать на Spyware-ru форум.

Скачайте OTM by OldTimer кликнув по этой ссылке.
Запустите OTM и в большое поле ввода (заголовок этого поля выделен желтым цветом) скопируйте следующий текст.

:services

usprserv



:reg

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRunOnce]

"Shockwave Updater"=-



[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetcontrolsecurityproviders]

"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"



[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]

"DisableTaskMgr"=0



:files

C:WINDOWStasksRegPowerClean.job

C:WINDOWStasksRPCReminder.job



:Commands

[emptytemp]

[Reboot]

Проверьте вставленный скрипт, если слева перед директивами появились пробелы, то удалите их, скрипт должен выглядеть так же как в сообщении. Кликните по кнопке MoveIt!. В процессе работы возможна перезагрузка компьютера.
По-завершении работы программы должен будет показан лог. Если лог не будет показан, то его можно найти в папке C:_OTMMovedFiles.

Вставьте в ваше ответное сообщение содержимое этого лога. И приложите свежий RSIT лог.

[Автор]

Сообщения