- This topic has 0 ответов, 1 участник, and was last updated 13 years, 9 months назад by
.
-
Сообщения
-
Всплывающие окна порно-рекламного характера, появляются даже когда не запущен браузер. Антивирус — avast и специально установленный с сайта http://WWW.spyware-ru.com — Malwarebytes’ Anti-Malware.
Logfile of random’s system information tool 1.08 (written by random/random)
Run by Наталья at 2011-02-26 23:01:40
Microsoft Windows 7 Домашняя базовая
System drive C: has 40 GB (17%) free of 226 GB
Total RAM: 3070 MB (62% free)Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:02:21, on 26.02.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: NormalRunning processes:
C:UsersНатальяAppDataLocal{DC77E0CA-0E8A-E6ED-FB63-BAE52BA8F167}.exe
C:Program Files (x86)EgisTecMyWinLocker 3x86mwlDaemon.exe
C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program Files (x86)SamsungSamsung New PC StudioNPSAgent.exe
C:Program Files (x86)uTorrentuTorrent.exe
C:Program Files (x86)Windows LiveMessengermsnmsgr.exe
C:Program Files (x86)YandexPunto Switcherpunto.exe
C:Program Files (x86)NewTech InfosystemsAcer Backup ManagerBackupManagerTray.exe
C:Program Files (x86)EgisTec Egis Software UpdateEgisUpdate.exe
C:Program Files (x86)Launch ManagerLManager.exe
C:Program Files (x86)Acer Arcade DeluxeAcer Arcade DeluxeArcadeDeluxeAgent.exe
C:Program Files (x86)Acer Arcade DeluxePlayMoviePMVService.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program Files (x86)Mail.RuAgentmagent.exe
C:Program Files (x86)Mail.RuGuardGuardMailRu.exe
C:Program Files (x86)Mozilla Firefoxfirefox.exe
C:Program Files (x86)Mozilla Firefoxplugin-container.exe
C:UsersНатальяDownloadsRSIT.exe
C:Program Files (x86)trend microНаталья.exeR1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.ctel.ru/
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WindowsSysWOW64blank.htm
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program Files (x86)Mail.RuSputnikMailRuSputnik.dll
F2 — REG:system.ini: UserInit=userinit.exe,
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program Files (x86)Common FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: Search Helper — {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} — C:Program Files (x86)MicrosoftSearch Enhancement PackSearch HelperSEPsearchhelperie.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program Files (x86)Mail.RuSputnikMailRuSputnik.dll
O2 — BHO: Помощник по входу с помощью идентификатора Windows Live ID — {9030D464-4C02-4ABF-8ECC-5164760863C6} — C:Program Files (x86)Common FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 — BHO: AlterGeo Magic Scanner — {9BFBA68E-E21B-458E-AE12-FE85E903D2C1} — C:Program Files (x86)AlterGeoAlterGeo Magic Scanner2.8.8.615AlterGeo.BrowserPlugin.dll
O2 — BHO: Windows Live Messenger Companion Helper — {9FDDE16B-836F-4806-AB1F-1455CBEFF289} — C:Program Files (x86)Windows LiveCompanioncompanioncore.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_32.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program Files (x86)GoogleGoogleToolbarNotifier5.6.5612.1312swg.dll
O2 — BHO: Bing Bar BHO — {d2ce3e00-f94a-4740-988e-03dc2f38c34f} — C:Program Files (x86)MSN ToolbarPlatform6.3.2322.0npwinext.dll
O3 — Toolbar: Яндекс.Бар — {91397D20-1446-11D4-8AF4-0040CA1127B6} — C:Program Files (x86)YandexYandexBarIEyndbar.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_32.dll
O3 — Toolbar: MyPlayCity.Бар — {EDF7BDB3-F1D6-4b9f-8E93-742A4D9443FC} — C:Program Files (x86)MyPlayCityMyPlayCityBarIEMyPlayCityBar.dll
O3 — Toolbar: @C:Program Files (x86)MSN ToolbarPlatform6.3.2322.0npwinext.dll,-100 — {8dcb7100-df86-4384-8842-8fa844297b3f} — C:Program Files (x86)MSN ToolbarPlatform6.3.2322.0npwinext.dll
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program Files (x86)Mail.RuSputnikMailRuSputnik.dll
O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program Files (x86)AdobeReader 9.0ReaderReader_sl.exe»
O4 — HKLM..Run: [NortonOnlineBackupReminder] «C:Program Files (x86)SymantecNorton Online BackupActivationNobuActivation.exe» UNATTENDED
O4 — HKLM..Run: [BackupManagerTray] «C:Program Files (x86)NewTech InfosystemsAcer Backup ManagerBackupManagerTray.exe» -h -k
O4 — HKLM..Run: [EgisTecLiveUpdate] «C:Program Files (x86)EgisTec Egis Software UpdateEgisUpdate.exe»
O4 — HKLM..Run: [StartCCC] «C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe» MSRun
O4 — HKLM..Run: [LManager] C:Program Files (x86)Launch ManagerLManager.exe
O4 — HKLM..Run: [ArcadeDeluxeAgent] «C:Program Files (x86)Acer Arcade DeluxeAcer Arcade DeluxeArcadeDeluxeAgent.exe»
O4 — HKLM..Run: [PlayMovie] «C:Program Files (x86)Acer Arcade DeluxePlayMoviePMVService.exe»
O4 — HKLM..Run: [avast!] «C:Program FilesAlwil SoftwareAvast4ashDisp.exe»
O4 — HKLM..Run: [MAgent] C:Program Files (x86)Mail.RuAgentmagent.exe -LM
O4 — HKLM..Run: [Guard.Mail.ru.gui] «C:Program Files (x86)Mail.RuGuardGuardMailRu.exe» /gui
O4 — HKLM..Run: [Adobe ARM] «C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe»
O4 — HKLM..RunOnce: [AD Network] «C:UsersНатальяAppDataLocal{DC77E0CA-0E8A-E6ED-FB63-BAE52BA8F167}.exe» ?
O4 — HKCU..Run: [Global Registration] «C:Program Files (x86)AcerRegistrationGREG.exe» BOOT
O4 — HKCU..Run: [swg] «C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe»
O4 — HKCU..Run: [AutoStartNPSAgent] C:Program Files (x86)SamsungSamsung New PC StudioNPSAgent.exe
O4 — HKCU..Run: [uTorrent] «C:Program Files (x86)uTorrentuTorrent.exe»
O4 — HKCU..Run: [NevoDRM] «C:ИгрыNevoDRMNevoDRM.exe»
O4 — HKCU..Run: [msnmsgr] «C:Program Files (x86)Windows LiveMessengermsnmsgr.exe» /background
O4 — HKCU..Run: [PCHDPlayer] C:Program Files (x86)pchdPCHDPlayer.exe
O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-20..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User ‘NETWORK SERVICE’)
O4 — Startup: Punto Switcher.lnk = C:Program Files (x86)YandexPunto Switcherpunto.exe
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~2MICROS~3OFFICE11EXCEL.EXE/3000
O8 — Extra context menu item: E&xport to Microsoft Excel — res://C:PROGRA~2MICROS~3Office12EXCEL.EXE/3000
O8 — Extra context menu item: Google ВикиКомментарии… — res://C:Program Files (x86)GoogleGoogle ToolbarComponentGoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 — Extra button: @C:Program Files (x86)Windows LiveCompanioncompanionlang.dll,-600 — {0000036B-C524-4050-81A0-243669A86B9F} — C:Program Files (x86)Windows LiveCompanioncompanioncore.dll
O9 — Extra button: @C:Program Files (x86)Windows LiveWriterWindowsLiveWriterShortcuts.dll,-1004 — {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} — C:Program Files (x86)Windows LiveWriterWriterBrowserExtension.dll
O9 — Extra ‘Tools’ menuitem: @C:Program Files (x86)Windows LiveWriterWindowsLiveWriterShortcuts.dll,-1003 — {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} — C:Program Files (x86)Windows LiveWriterWriterBrowserExtension.dll
O9 — Extra button: @C:WindowsWindowsMobileINetRepl.dll,-222 — {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} — C:WindowsWindowsMobileINetRepl.dll
O9 — Extra button: (no name) — {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} — C:WindowsWindowsMobileINetRepl.dll
O9 — Extra ‘Tools’ menuitem: @C:WindowsWindowsMobileINetRepl.dll,-223 — {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} — C:WindowsWindowsMobileINetRepl.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program Files (x86)Mail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program Files (x86)Mail.RuAgentmagent.exe
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~2MICROS~3OFFICE11REFIEBAR.DLL
O10 — Unknown file in Winsock LSP: c:program files (x86)common filesmicrosoft sharedwindows livewlidnsp.dll
O10 — Unknown file in Winsock LSP: c:program files (x86)common filesmicrosoft sharedwindows livewlidnsp.dll
O16 — DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) — http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx
O17 — HKLMSystemCCSServicesTcpip..{C71DF38E-64CC-4AE1-9281-B49E95E873B4}: NameServer = 217.20.80.40 212.96.192.1
O17 — HKLMSystemCCSServicesTcpip..{EAABF56F-AD66-498B-814E-81B1BA9E52EC}: NameServer = 217.20.80.40
O18 — Protocol: wlpg — {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} — C:Program Files (x86)Windows LivePhoto GalleryAlbumDownloadProtocolHandler.dll
O23 — Service: @%SystemRoot%system32Alg.exe,-112 (ALG) — Unknown owner — C:WindowsSystem32alg.exe (file missing)
O23 — Service: AMD External Events Utility — Unknown owner — C:Windowssystem32atiesrxx.exe (file missing)
O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 — Service: @%SystemRoot%system32efssvc.dll,-100 (EFS) — Unknown owner — C:WindowsSystem32lsass.exe (file missing)
O23 — Service: Acer ePower Service (ePowerSvc) — Acer Incorporated — C:Program FilesAcerAcer ePower ManagementePowerSvc.exe
O23 — Service: @%systemroot%system32fxsresm.dll,-118 (Fax) — Unknown owner — C:Windowssystem32fxssvc.exe (file missing)
O23 — Service: GRegService (Greg_Service) — Acer Incorporated — C:Program Files (x86)AcerRegistrationGregHSRW.exe
O23 — Service: Guard.Mail.ru — Unknown owner — C:Program Files (x86)Mail.RuGuardGuardMailRu.exe
O23 — Service: Служба Google Update (gupdate) (gupdate) — Google Inc. — C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program Files (x86)GoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: @keyiso.dll,-100 (KeyIso) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: @comres.dll,-2797 (MSDTC) — Unknown owner — C:WindowsSystem32msdtc.exe (file missing)
O23 — Service: MyWinLocker Service (MWLService) — Egis Technology Inc. — C:Program Files (x86)EgisTecMyWinLocker 3×86\MWLService.exe
O23 — Service: @%SystemRoot%System32netlogon.dll,-102 (Netlogon) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: NTI IScheduleSvc — NewTech Infosystems, Inc. — C:Program Files (x86)NewTech InfosystemsAcer Backup ManagerIScheduleSvc.exe
O23 — Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) — NewTech InfoSystems, Inc. — C:Program Files (x86)NewTech InfosystemsNTI Backup Now 5BackupSvc.exe
O23 — Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) — NewTech Infosystems, Inc. — C:Program Files (x86)NewTech InfosystemsNTI Backup Now 5SchedulerSvc.exe
O23 — Service: @%systemroot%system32psbase.dll,-300 (ProtectedStorage) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: @%systemroot%system32Locator.exe,-2 (RpcLocator) — Unknown owner — C:Windowssystem32locator.exe (file missing)
O23 — Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: ServiceLayer — Nokia. — C:Program Files (x86)PC Connectivity SolutionServiceLayer.exe
O23 — Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) — Unknown owner — C:WindowsSystem32snmptrap.exe (file missing)
O23 — Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) — Unknown owner — C:WindowsSystem32spoolsv.exe (file missing)
O23 — Service: @%SystemRoot%system32sppsvc.exe,-101 (sppsvc) — Unknown owner — C:Windowssystem32sppsvc.exe (file missing)
O23 — Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect) — Unknown owner — C:Windowssystem32UI0Detect.exe (file missing)
O23 — Service: Updater Service — Acer — C:Program FilesAcerAcer UpdaterUpdaterService.exe
O23 — Service: @%SystemRoot%system32vaultsvc.dll,-1003 (VaultSvc) — Unknown owner — C:Windowssystem32lsass.exe (file missing)
O23 — Service: @%SystemRoot%system32vds.exe,-100 (vds) — Unknown owner — C:WindowsSystem32vds.exe (file missing)
O23 — Service: @%systemroot%system32vssvc.exe,-102 (VSS) — Unknown owner — C:Windowssystem32vssvc.exe (file missing)
O23 — Service: @%systemroot%system32wbengine.exe,-104 (wbengine) — Unknown owner — C:Windowssystem32wbengine.exe (file missing)
O23 — Service: @%Systemroot%system32wbemwmiapsrv.exe,-110 (wmiApSrv) — Unknown owner — C:Windowssystem32wbemWmiApSrv.exe (file missing)
O23 — Service: @%PROGRAMFILES%Windows Media Playerwmpnetwk.exe,-101 (WMPNetworkSvc) — Unknown owner — C:Program Files (x86)Windows Media Playerwmpnetwk.exe (file missing)—
End of file — 14035 bytes======Scheduled tasks folder======
C:WindowstasksGoogleUpdateTaskMachineCore.job
C:WindowstasksGoogleUpdateTaskMachineUA.job======Registry dump======
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program Files (x86)Common FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-28 75128][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper — C:Program Files (x86)MicrosoftSearch Enhancement PackSearch HelperSEPsearchhelperie.dll [2010-09-22 191792][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — C:Program Files (x86)Mail.RuSputnikMailRuSputnik.dll [2010-12-15 1243320][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Помощник по входу с помощью идентификатора Windows Live ID — C:Program Files (x86)Common FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll [2010-09-21 439168][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9BFBA68E-E21B-458E-AE12-FE85E903D2C1}]
AlterGeoBHO Class — C:Program Files (x86)AlterGeoAlterGeo Magic Scanner2.8.8.615AlterGeo.BrowserPlugin.dll [2010-08-31 257384][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper — C:Program Files (x86)Windows LiveCompanioncompanioncore.dll [2010-09-23 393600][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_32.dll [2010-07-16 278192][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program Files (x86)GoogleGoogleToolbarNotifier5.6.5612.1312swg.dll [2010-10-21 842296][HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO — C:Program Files (x86)MSN ToolbarPlatform6.3.2322.0npwinext.dll [2010-09-22 612616][HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{91397D20-1446-11D4-8AF4-0040CA1127B6} — Яндекс.Бар — C:Program Files (x86)YandexYandexBarIEyndbar.dll [2009-07-24 5586208]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_32.dll [2010-07-16 278192]
{EDF7BDB3-F1D6-4b9f-8E93-742A4D9443FC} — MyPlayCity.Бар — C:Program Files (x86)MyPlayCityMyPlayCityBarIEMyPlayCityBar.dll [2010-08-11 10368000]
{8dcb7100-df86-4384-8842-8fa844297b3f} — @C:Program Files (x86)MSN ToolbarPlatform6.3.2322.0npwinext.dll,-100 — C:Program Files (x86)MSN ToolbarPlatform6.3.2322.0npwinext.dll [2010-09-22 612616]
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program Files (x86)Mail.RuSputnikMailRuSputnik.dll [2010-12-15 1243320][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«Adobe Reader Speed Launcher»=C:Program Files (x86)AdobeReader 9.0ReaderReader_sl.exe [2009-10-03 35696]
«NortonOnlineBackupReminder»=C:Program Files (x86)SymantecNorton Online BackupActivationNobuActivation.exe [2009-07-25 588648]
«BackupManagerTray»=C:Program Files (x86)NewTech InfosystemsAcer Backup ManagerBackupManagerTray.exe [2009-08-21 261888]
«EgisTecLiveUpdate»=C:Program Files (x86)EgisTec Egis Software UpdateEgisUpdate.exe [2009-08-05 199464]
«StartCCC»=C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe [2009-07-02 98304]
«LManager»=C:Program Files (x86)Launch ManagerLManager.exe [2009-08-28 1194504]
«ArcadeDeluxeAgent»=C:Program Files (x86)Acer Arcade DeluxeAcer Arcade DeluxeArcadeDeluxeAgent.exe [2009-11-25 419112]
«PlayMovie»=C:Program Files (x86)Acer Arcade DeluxePlayMoviePMVService.exe [2009-10-05 181480]
«NPSStartup»= []
«avast!»=C:Program FilesAlwil SoftwareAvast4ashDisp.exe [2009-11-25 81000]
«MAgent»=C:Program Files (x86)Mail.RuAgentmagent.exe [2010-12-15 12319424]
«Guard.Mail.ru.gui»=C:Program Files (x86)Mail.RuGuardGuardMailRu.exe [2010-12-26 1041088]
«Adobe ARM»=C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [2009-09-04 935288][HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunOnce]
«AD Network»=C:UsersНатальяAppDataLocal{DC77E0CA-0E8A-E6ED-FB63-BAE52BA8F167}.exe [2010-06-29 29696][HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Global Registration»=C:Program Files (x86)AcerRegistrationGREG.exe [2009-07-31 2844704]
«swg»=C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-09-04 39408]
«AutoStartNPSAgent»=C:Program Files (x86)SamsungSamsung New PC StudioNPSAgent.exe [2009-04-02 102400]
«uTorrent»=C:Program Files (x86)uTorrentuTorrent.exe [2010-12-18 395640]
«NevoDRM»=C:ИгрыNevoDRMNevoDRM.exe []
«msnmsgr»=C:Program Files (x86)Windows LiveMessengermsnmsgr.exe [2010-09-23 4240760]
«PCHDPlayer»=C:Program Files (x86)pchdPCHDPlayer.exe []C:UsersНатальяAppDataRoamingMicrosoftWindowsStart MenuProgramsStartup
Punto Switcher.lnk — C:Program Files (x86)YandexPunto Switcherpunto.exe[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WebCheck — {E6FB5E20-DE35-11CF-9C87-00AA005127ED}[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetcontrolsecurityproviders]
«SecurityProviders»=credssp.dll[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalmcmscsvc]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalMCODS]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkAFD]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkmcmscsvc]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkMCODS]
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkMpfService]
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«ConsentPromptBehaviorAdmin»=5
«ConsentPromptBehaviorUser»=3
«EnableUIADesktopToggle»=0
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoActiveDesktop»=1
«NoActiveDesktopChanges»=1
«ForceActiveDesktopOn»=0[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
======File associations======
.js — edit — C:WindowsSystem32Notepad.exe %1
.js — open — C:WindowsSystem32WScript.exe «%1» %*======List of files/folders created in the last 1 months======
2011-02-26 23:01:41 —-D—- C:Program Files (x86)trend micro
2011-02-26 23:01:40 —-D—- C:rsit
2011-02-26 22:33:31 —-A—- C:logit.txt
2011-02-26 21:22:42 —-D—- C:UsersНатальяAppDataRoamingMalwarebytes
2011-02-26 21:22:28 —-A—- C:WindowsSysWOW64driversmbamswissarmy.sys
2011-02-26 21:22:27 —-D—- C:ProgramDataMalwarebytes
2011-02-26 21:22:23 —-D—- C:Program Files (x86)Malwarebytes’ Anti-Malware
2011-02-26 21:10:04 —-A—- C:WindowsSysWOW64driversfbhcms.sys
2011-02-26 21:10:04 —-A—- C:fkshql.txt
2011-02-24 03:00:59 —-A—- C:WindowsSysWOW64wcncsvc.dll
2011-02-23 13:05:50 —-A—- C:WindowsSysWOW64XpsPrint.dll
2011-02-23 13:05:49 —-A—- C:WindowsSysWOW64XpsGdiConverter.dll
2011-02-15 23:17:11 —-A—- C:WindowsSysWOW64mshtml.dll
2011-02-15 23:17:02 —-A—- C:WindowsSysWOW64msfeeds.dll
2011-02-15 23:16:59 —-A—- C:WindowsSysWOW64iedkcs32.dll
2011-02-15 23:16:57 —-A—- C:WindowsSysWOW64mstime.dll
2011-02-15 23:16:56 —-A—- C:WindowsSysWOW64iertutil.dll
2011-02-15 23:16:55 —-A—- C:WindowsSysWOW64mshtmled.dll
2011-02-15 23:16:55 —-A—- C:WindowsSysWOW64msfeedsbs.dll
2011-02-15 23:16:55 —-A—- C:WindowsSysWOW64iepeers.dll
2011-02-15 23:16:54 —-A—- C:WindowsSysWOW64msfeedssync.exe
2011-02-15 23:16:54 —-A—- C:WindowsSysWOW64licmgr10.dll
2011-02-15 17:13:13 —-A—- C:WindowsSysWOW64ntdll.dll
2011-02-15 17:13:12 —-A—- C:WindowsSysWOW64ntoskrnl.exe
2011-02-15 17:13:11 —-A—- C:WindowsSysWOW64ntkrnlpa.exe
2011-02-15 15:26:29 —-A—- C:WindowsSysWOW64urlmon.dll
2011-02-15 15:26:29 —-A—- C:WindowsSysWOW64upnp.dll
2011-02-15 15:26:28 —-A—- C:WindowsSysWOW64msxml6.dll
2011-02-15 15:26:27 —-A—- C:WindowsSysWOW64wininet.dll
2011-02-15 15:26:27 —-A—- C:WindowsSysWOW64msxml3.dll
2011-02-15 15:26:26 —-A—- C:WindowsSysWOW64WebClnt.dll
2011-02-15 15:26:26 —-A—- C:WindowsSysWOW64ieframe.dll
2011-02-15 15:26:25 —-A—- C:WindowsSysWOW64wscapi.dll
2011-02-15 15:26:25 —-A—- C:WindowsSysWOW64winhttp.dll
2011-02-15 15:26:25 —-A—- C:WindowsSysWOW64slwga.dll
2011-02-15 15:26:25 —-A—- C:WindowsSysWOW64davclnt.dll
2011-02-15 15:04:41 —-A—- C:WindowsSysWOW64kerberos.dll
2011-02-15 14:14:08 —-A—- C:WindowsSysWOW64jscript.dll
2011-02-15 14:14:07 —-A—- C:WindowsSysWOW64vbscript.dll
2011-02-14 22:13:01 —-A—- C:WindowsSysWOW64atmlib.dll
2011-02-14 22:13:01 —-A—- C:WindowsSysWOW64atmfd.dll======List of files/folders modified in the last 1 months======
2011-02-26 23:02:21 —-D—- C:UsersНатальяAppDataRoaminguTorrent
2011-02-26 23:02:18 —-D—- C:WindowsTemp
2011-02-26 23:01:41 —-RD—- C:Program Files (x86)
2011-02-26 23:01:37 —-D—- C:Windowstracing
2011-02-26 21:22:28 —-D—- C:WindowsSysWOW64drivers
2011-02-26 21:22:27 —-HD—- C:ProgramData
2011-02-26 20:55:45 —-D—- C:Game
2011-02-26 19:26:46 —-D—- C:Program Files (x86)MyPlayCity.ru
2011-02-26 16:39:00 —-D—- C:Офис
2011-02-26 16:38:49 —-D—- C:WindowsSystem32
2011-02-25 23:44:34 —-SHD—- C:System Volume Information
2011-02-24 03:01:06 —-D—- C:WindowsSysWOW64
2011-02-24 03:01:02 —-D—- C:Windowswinsxs
2011-02-23 13:16:27 —-D—- C:Фильмы
2011-02-17 23:34:28 —-SHD—- C:WindowsInstaller
2011-02-17 21:22:12 —-D—- C:Program Files (x86)Internet Explorer
2011-02-15 23:15:12 —-D—- C:Program Files (x86)Mozilla Firefox
2011-02-11 22:58:29 —-D—- C:Windowsinf======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:Windowssystem32DRIVERSAtiPcie.sys []
R0 rdyboost;ReadyBoost; C:WindowsSystem32driversrdyboost.sys []
R1 aswRdr;aswRdr; C:WindowsSysWOW64driversaswRdr.sys []
R1 aswSP;avast! Self Protection; C:WindowsSysWOW64driversaswSP.sys []
R1 aswTdi;avast! Network Shield Support; C:WindowsSysWOW64driversaswTdi.sys []
R1 mwlPSDFilter;mwlPSDFilter; C:Windowssystem32DRIVERSmwlPSDFilter.sys []
R1 mwlPSDNServ;mwlPSDNServ; C:Windowssystem32DRIVERSmwlPSDNServ.sys []
R1 mwlPSDVDisk;mwlPSDVDisk; C:Windowssystem32DRIVERSmwlPSDVDisk.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:Windowssystem32DRIVERSvwififlt.sys []
R2 aswFsBlk;aswFsBlk; C:Windowssystem32DRIVERSaswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; C:Windowssystem32DRIVERSaswMonFlt.sys []
R2 mdmxsdk;mdmxsdk; C:Windowssystem32DRIVERSmdmxsdk.sys []
R2 XAudio;XAudio; C:Windowssystem32DRIVERSXAudio64.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:Windowssystem32DRIVERSathrx.sys []
R3 AtiHdmiService;ATI Service for HD Audio Codec; C:Windowssystem32driversAtiHdmi.sys []
R3 atikmdag;atikmdag; C:Windowssystem32DRIVERSatikmdag.sys []
R3 CAXHWAZL;CAXHWAZL; C:Windowssystem32DRIVERSCAXHWAZL.sys []
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:WindowsSysWOW64DriversDKbFltr.sys [2009-03-27 25608]
R3 HSF_DPV;HSF_DPV; C:Windowssystem32DRIVERSCAX_DPV.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:Windowssystem32driversRTKVHD64.sys []
R3 NTIDrvr;NTIDrvr; ??C:Windowssystem32driversNTIDrvr.sys []
R3 SynTP;Synaptics TouchPad Driver; C:Windowssystem32DRIVERSSynTP.sys []
R3 UBHelper;UBHelper; ??C:Windowssystem32driversUBHelper.sys []
R3 usbfilter;AMD USB Filter Driver; C:Windowssystem32DRIVERSusbfilter.sys []
R3 winachsf;winachsf; C:Windowssystem32DRIVERSCAX_CNXT.sys []
S0 tooc;tooc; C:Windowssystem32driversfbhcms.sys [2011-02-26 61440]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:Windowssystem32DRIVERSbcmwl664.sys []
S3 fssfltr;FssFltr; C:Windowssystem32DRIVERSfssfltr.sys []
S3 igfx;igfx; C:Windowssystem32DRIVERSigdkmd64.sys []
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet — NDIS 6.0; C:Windowssystem32DRIVERSk57nd60a.sys []
S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:Windowssystem32DRIVERSL1E62x64.sys []
S3 pciide;pciide; C:Windowssystem32DRIVERSpciide.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:WindowsSystem32DriversRtsUStor.sys [2009-09-02 225280]
S3 RtsUIR;Realtek IR Driver; C:Windowssystem32DRIVERSRts516xIR.sys []
S3 SrvHsfHDA;SrvHsfHDA; C:Windowssystem32DRIVERSVSTAZL6.SYS []
S3 SrvHsfV92;SrvHsfV92; C:Windowssystem32DRIVERSVSTDPV6.SYS []
S3 SrvHsfWinac;SrvHsfWinac; C:Windowssystem32DRIVERSVSTCNXT6.SYS []
S3 TFsExDisk;TFsExDisk; ??C:WindowsSystem32DriversTFsExDisk.sys [2009-03-31 16392]
S3 USBCCID;USB Smart Card Reader; C:Windowssystem32DRIVERSusbccid.sys []
S3 WinUsb;WinUsb драйвер; C:Windowssystem32DRIVERSWinUsb.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:Windowssystem32atiesrxx.exe []
R2 aswUpdSv;avast! iAVS4 Control Service; C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast4ashServ.exe [2009-11-25 138680]
R2 ePowerSvc;Acer ePower Service; C:Program FilesAcerAcer ePower ManagementePowerSvc.exe [2009-08-05 844320]
R2 Greg_Service;GRegService; C:Program Files (x86)AcerRegistrationGregHSRW.exe [2009-06-04 1150496]
R2 Guard.Mail.ru;Guard.Mail.ru; C:Program Files (x86)Mail.RuGuardGuardMailRu.exe [2010-12-26 1041088]
R2 HsfXAudioService;HsfXAudioService; C:Windowssystem32svchost.exe [2009-07-14 20992]
R2 MWLService;MyWinLocker Service; C:Program Files (x86)EgisTecMyWinLocker 3×86\MWLService.exe [2009-08-07 311592]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:Program Files (x86)NewTech InfosystemsAcer Backup ManagerIScheduleSvc.exe [2009-08-21 62720]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:Program Files (x86)NewTech InfosystemsNTI Backup Now 5SchedulerSvc.exe [2009-06-18 144640]
R2 RapiMgr;@%windir%WindowsMobilerapimgr.dll,-104; C:Windowssystem32svchost.exe [2009-07-14 20992]
R2 SeaPort;SeaPort; C:Program Files (x86)MicrosoftSearch Enhancement PackSeaPortSeaPort.exe [2010-09-22 249136]
R2 Updater Service;Updater Service; C:Program FilesAcerAcer UpdaterUpdaterService.exe [2009-07-04 240160]
R2 WcesComm;@%windir%WindowsMobilewcescomm.dll,-40079; C:Windowssystem32svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE [2010-09-21 2286976]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2009-11-25 352920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:WindowsMicrosoft.NETFramework64v4.0.30319mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Служба Google Update (gupdate); C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2010-03-14 135664]
S3 fsssvc;Windows Live Family Safety Service; C:Program Files (x86)Windows LiveFamily Safetyfsssvc.exe [2010-09-23 1493352]
S3 gusvc;Google Software Updater; C:Program Files (x86)GoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-09-04 182768]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:Program Files (x86)NewTech InfosystemsNTI Backup Now 5BackupSvc.exe [2009-06-18 50432]
S3 ose;Office Source Engine; C:Program Files (x86)Common FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-27 145184]
S3 ServiceLayer;ServiceLayer; C:Program Files (x86)PC Connectivity SolutionServiceLayer.exe [2008-04-07 430592]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:Program FilesWindows LiveMeshwlcrasvc.exe [2010-09-22 57184]
EOF
info.txt logfile of random’s system information tool 1.08 2011-02-26 23:02:23======Uninstall list======
—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{A450831D-25F6-4F42-9662-D000B25E0D82}Setup.exe» -uninstall
—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1engine6INTEL3~1Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{AA4BF92B-2AAF-11DA-9D78-000129760D75}Setup.exe» -uninstall
µTorrent—>»C:Program Files (x86)uTorrentuTorrent.exe» /UNINSTALL
2007 Microsoft Office Suite Service Pack 2 (SP2)—>msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Acer Arcade Deluxe—>»C:Program Files (x86)InstallShield Installation Information{2637C347-9DAD-11D6-9EA2-00055D0CA761}Setup.exe» /z-uninstall
Acer Arcade Deluxe—>»C:Program Files (x86)InstallShield Installation Information{2637C347-9DAD-11D6-9EA2-00055D0CA761}Setup.exe» /z-uninstall
Acer Backup Manager—>C:Program Files (x86)InstallShield Installation Information{72B776E5-4530-4C4B-9453-751DF87D9D93}setup.exe -runfromtemp -l0x0419
Acer ePower Management—>»C:Program Files (x86)InstallShield Installation Information{3DB0448D-AD82-4923-B305-D001E521A964}setup.exe» -runfromtemp -l0x419 -removeonly
Acer eRecovery Management—>»C:Program Files (x86)InstallShield Installation Information{7F811A54-5A09-4579-90E1-C93498E230D9}setup.exe» -runfromtemp -l0x419 -removeonly
Acer GameZone Console—>»C:Program Files (x86)Acer GameZoneGameConsoleunins000.exe»
Acer GridVista—>C:WindowsGVUni.exe GridV.UNI
Acer Registration—>C:Program Files (x86)AcerRegistrationUninstall.exe
Acer ScreenSaver—>C:Program Files (x86)AcerScreensaverUninstall.exe
Acer Updater—>»C:Program Files (x86)InstallShield Installation Information{EE171732-BEB4-4576-887D-CB62727F01CA}setup.exe» -runfromtemp -l0x419 -removeonly
Acrobat.com—>MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
AD Network—>»C:UsersНатальяAppDataLocal{DC77E0CA-0E8A-E6ED-FB63-BAE52BA8F167}.exe» <
Adobe AIR—>c:Program Files (x86)Common FilesAdobe AIRVersions1.0ResourcesAdobe AIR Updater.exe -arp:uninstall
Adobe AIR—>MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX—>C:WindowsSysWOW64MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WindowsSysWOW64MacromedFlashuninstall_plugin.exe
Adobe Reader 9.2 MUI—>MsiExec.exe /I{AC76BA86-7AD7-FFFF-7B44-A91000000001}
Alice Greenfingers—>»C:Program Files (x86)Acer GameZoneAlice GreenfingersUninstall.exe» «C:Program Files (x86)Acer GameZoneAlice Greenfingersinstall.log»
AlterGeo Magic Scanner—>MsiExec.exe /I{F142376D-C1CC-4F66-9AF2-BECEDC1B3A15}
AMD USB Filter Driver—>MsiExec.exe /X{82809116-D1EE-443C-AE31-F19E709DDF7A}
avast! Antivirus—>C:Program FilesAlwil SoftwareAvast4aswRunDll.exe «C:Program FilesAlwil SoftwareAvast4Setupsetiface.dll»,RunSetup
Backup Manager Basic—>C:Program Files (x86)InstallShield Installation Information{72B776E5-4530-4C4B-9453-751DF87D9D93}setup.exe -runfromtemp -l0x0409
Bing Bar Platform—>MsiExec.exe /I{65C0025A-2CDE-43C5-82D0-C7A56EF0DB39}
Catalyst Control Center — Branding—>MsiExec.exe /I{8B999A44-8314-493B-877E-A1DA5B54D9B8}
D3DX10—>MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Dairy Dash—>»C:Program Files (x86)Acer GameZoneDairy DashUninstall.exe» «C:Program Files (x86)Acer GameZoneDairy Dashinstall.log»
DivX 5.0.5 Pro Video Codec—>C:Windowssystem32rundll32.exe setupapi.dll,InstallHinfSection Remove_Mpeg_NT 132 C:WindowsINFdivx50.inf
Dream Day First Home—>»C:Program Files (x86)Acer GameZoneDream Day First HomeUninstall.exe» «C:Program Files (x86)Acer GameZoneDream Day First Homeinstall.log»
eSobi v2—>C:Program Files (x86)InstallShield Installation Information{15D967B5-A4BE-42AE-9E84-64CD062B25AA}setup.exe -runfromtemp -l0x0409
Google Toolbar for Internet Explorer—>»C:Program Files (x86)GoogleGoogle ToolbarComponentGoogleToolbarManager_223E2B8E7BAD9544.exe» /uninstall
Google Toolbar for Internet Explorer—>MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper—>MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Granny In Paradise—>»C:Program Files (x86)Acer GameZoneGranny In ParadiseUninstall.exe» «C:Program Files (x86)Acer GameZoneGranny In Paradiseinstall.log»
Guard.Mail.ru—>»C:Program Files (x86)Mail.RuGuardGuardMailRu.exe» /uninstall
Identity Card—>C:Program Files (x86)AcerIdentity CardUninstall.exe
Inca Ball Cave ScreenSaver—>C:Program Files (x86)IncaBall Screen Saveruninst.exe /uninstall
Junk Mail filter update—>MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
Launch Manager—>C:WindowsUNINST32.EXE LManager.UNI
Mail.Ru Агент 5.7 (сборка 3796, для всех пользователей)—>C:Program Files (x86)Mail.RuAgentmagentsetup.exe -uninstalllm
Mail.Ru Спутник 2.3.0.301—>»C:Program Files (x86)Mail.RuSputnikmailrusputnik.exe» uninstall
Malwarebytes’ Anti-Malware—>»C:Program Files (x86)Malwarebytes’ Anti-Malwareunins000.exe»
Merriam Websters Spell Jam—>»C:Program Files (x86)Acer GameZoneMerriam Websters Spell JamUninstall.exe» «C:Program Files (x86)Acer GameZoneMerriam Websters Spell Jaminstall.log»
Mesh Runtime—>MsiExec.exe /I{8C6D6116-B724-4810-8F2D-D047E6B7D68E}
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Microsoft Office 2003 — веб-компоненты—>MsiExec.exe /I{90A40419-6000-11D3-8CFE-0150048383C9}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-0015-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-0016-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-0018-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-0019-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-001A-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-001B-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-002A-0419-1000-0000000FF1CE} /uninstall {37317C49-30C4-412C-B0B9-D95090F330D8}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-0044-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-006E-0419-0000-0000000FF1CE} /uninstall {37317C49-30C4-412C-B0B9-D95090F330D8}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-00A1-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-00BA-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-0100-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-0101-0419-0000-0000000FF1CE} /uninstall {DCB382C1-7F1B-42B2-9D47-EDC4262E832F}
Microsoft Office Access MUI (Russian) 2007—>MsiExec.exe /X{90120000-0015-0419-0000-0000000FF1CE}
Microsoft Office Excel 2007 Help Обновление (KB963678)—>msiexec /package {90120000-0016-0419-0000-0000000FF1CE} /uninstall {420938DB-BF97-4664-BE29-0C68B4802C00}
Microsoft Office Excel MUI (Russian) 2007—>MsiExec.exe /X{90120000-0016-0419-0000-0000000FF1CE}
Microsoft Office Groove MUI (Russian) 2007—>MsiExec.exe /X{90120000-00BA-0419-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Russian) 2007—>MsiExec.exe /X{90120000-0044-0419-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 — Russian/русский—>»C:Program Files (x86)Common FilesMicrosoft SharedOFFICE12Office Setup Controllersetup.exe» /uninstall OMUI.RU-RU /dll OSETUP.DLL
Microsoft Office O MUI (Russian) 2007—>MsiExec.exe /X{90120000-0100-0419-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Russian) 2007—>MsiExec.exe /X{90120000-00A1-0419-0000-0000000FF1CE}
Microsoft Office Outlook 2007 Help Обновление (KB963677)—>msiexec /package {90120000-001A-0419-0000-0000000FF1CE} /uninstall {E9D6C0F9-9879-4FC4-8E13-BF0D3953E0E6}
Microsoft Office Outlook Connector—>MsiExec.exe /X{95140000-007A-0419-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Russian) 2007—>MsiExec.exe /X{90120000-001A-0419-0000-0000000FF1CE}
Microsoft Office Powerpoint 2007 Help Обновление (KB963669)—>msiexec /package {90120000-0018-0419-0000-0000000FF1CE} /uninstall {BD1C2AC7-63F3-4C75-8B44-DE3D700B3BC8}
Microsoft Office PowerPoint MUI (Russian) 2007—>MsiExec.exe /X{90120000-0018-0419-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (Russian)—>MsiExec.exe /X{95120000-00AF-0419-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007—>MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007—>MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Russian) 2007—>MsiExec.exe /X{90120000-001F-0419-0000-0000000FF1CE}
Microsoft Office Proof (Ukrainian) 2007—>MsiExec.exe /X{90120000-001F-0422-0000-0000000FF1CE}
Microsoft Office Proofing (Russian) 2007—>MsiExec.exe /X{90120000-002C-0419-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-001F-0419-0000-0000000FF1CE} /uninstall {57A92C5E-E76A-49CC-9EC2-A7B6CE1255EA}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-001F-0422-0000-0000000FF1CE} /uninstall {6F177D09-F21D-4F50-9436-353972D1D232}
Microsoft Office Publisher MUI (Russian) 2007—>MsiExec.exe /X{90120000-0019-0419-0000-0000000FF1CE}
Microsoft Office Shared MUI (Russian) 2007—>MsiExec.exe /X{90120000-006E-0419-0000-0000000FF1CE}
Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)—>msiexec /package {90120000-0017-0419-0000-0000000FF1CE} /uninstall {0B549FB9-3BA8-424D-AE73-613EAEEB22E2}
Microsoft Office SharePoint Designer MUI (Russian) 2007—>MsiExec.exe /X{90120000-0017-0419-0000-0000000FF1CE}
Microsoft Office Suite Activation Assistant—>MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
Microsoft Office Word 2007 Help Обновление (KB963665)—>msiexec /package {90120000-001B-0419-0000-0000000FF1CE} /uninstall {D3A002FB-0F62-4840-80AD-2D2C63F83449}
Microsoft Office Word MUI (Russian) 2007—>MsiExec.exe /X{90120000-001B-0419-0000-0000000FF1CE}
Microsoft Office X MUI (Russian) 2007—>MsiExec.exe /X{90120000-0101-0419-0000-0000000FF1CE}
Microsoft Office XP — веб-компоненты—>MsiExec.exe /I{90260419-6000-11D3-8CFE-0150048383C9}
Microsoft Search Enhancement Pack—>MsiExec.exe /X{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}
Microsoft Silverlight—>MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]—>MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 ATL Update kb973923 — x86 8.0.50727.4053—>MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Works—>MsiExec.exe /I{61A1EE13-2D43-46BC-A570-9E7E34634D45}
Mozilla Firefox (3.6.13)—>C:Program Files (x86)Mozilla Firefoxuninstallhelper.exe
MSVCRT_amd64—>MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT—>MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSXML 4.0 SP2 (KB954430)—>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)—>MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MyPlayCity.Бар 5.0 для Internet Explorer—>MsiExec.exe /X{5CA79B15-AA87-4C9C-95EB-5F1263DE132B}
MyWinLocker—>MsiExec.exe /X{68301905-2DEA-41CE-A4D4-E8B443B099BA}
NevoSoft Pharaoh Mystery (remove only)—>»C:ИгрыPharaoh Mysteryuninstall.exe»
Norton Online Backup—>MsiExec.exe /X{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}
NTI Backup Now 5—>C:Program Files (x86)InstallShield Installation Information{12EFA1A4-AC3B-443C-8143-237EDE760403}setup.exe -runfromtemp -l0x0409
NTI Media Maker 8—>C:Program Files (x86)InstallShield Installation Information{2413930C-8309-47A6-BC61-5EF27A4222BC}setup.exe -runfromtemp -l0x0409
PC Connectivity Solution—>MsiExec.exe /I{AC599724-5755-48C1-ABE7-ABB857652930}
Punto Switcher 3.1—>C:Program Files (x86)YandexPunto Switcheruninstall.exe
Realtek High Definition Audio Driver—>RunDll32 C:PROGRA~2COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program Files (x86)InstallShield Installation Information{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}Setup.exe» -removeonly
Realtek USB 2.0 Card Reader—>»C:Program Files (x86)InstallShield Installation Information{96AE7E41-E34E-47D0-AC07-1091A8127911}Setup.exe» -runfromtemp -l0x0009 -removeonly
Samsung New PC Studio—>»C:Program Files (x86)InstallShield Installation Information{F193FC0E-9E18-40FC-A974-509A1BDD240A}setup.exe» -runfromtemp -l0x0419 -removeonly
Samsung New PC Studio—>MsiExec.exe /X{F193FC0E-9E18-40FC-A974-509A1BDD240A}
SamsungConnectivityCableDriver—>MsiExec.exe /X{7E84FAC8-C518-40F9-9807-7455301D6D25}
Star Defender 4—>»C:Program Files (x86)Acer GameZoneStar Defender 4Uninstall.exe» «C:Program Files (x86)Acer GameZoneStar Defender 4install.log»
Welcome Center—>C:Program Files (x86)AcerWelcome CenterUninstall.exe
Windows Live Communications Platform—>MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live Installer—>MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Mail—>MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mesh—>MsiExec.exe /I{039480EE-6933-4845-88B8-77FD0C3D059D}
Windows Live Mesh—>MsiExec.exe /I{DECDCB7C-58CC-4865-91AF-627F9798FE48}
Windows Live Messenger Companion Core—>MsiExec.exe /I{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
Windows Live Messenger—>MsiExec.exe /X{6986737B-F286-40D1-87AF-938339DCF6AB}
Windows Live Messenger—>MsiExec.exe /X{EB4DF488-AAEF-406F-A341-CB2AAA315B90}
Windows Live Movie Maker—>MsiExec.exe /X{7465A996-0FCA-4D2D-A52C-F833B0829B5B}
Windows Live Movie Maker—>MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Photo Common—>MsiExec.exe /X{168E7302-890A-4138-9109-A225ACAF7AD1}
Windows Live Photo Common—>MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Gallery—>MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live PIMT Platform—>MsiExec.exe /I{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
Windows Live SOXE Definitions—>MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE—>MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live Sync—>MsiExec.exe /X{E911BE56-F8DB-48BB-B9AA-217F5096122F}
Windows Live UX Platform Language Pack—>MsiExec.exe /I{D8DAB025-C2CE-4821-8117-494E95ADA031}
Windows Live UX Platform—>MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources—>MsiExec.exe /X{7FF11E53-C002-4F40-8D68-6BE751E5DD62}
Windows Live Writer—>MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04}
Windows Live Writer—>MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
Windows Live Writer—>MsiExec.exe /X{CDC39BF2-9697-4959-B893-A2EE05EF6ACB}
Аквитания—>»C:Program Files (x86)MyPlayCity.ruАквитанияunins000.exe»
За 80 Дней Вокруг Света—>»C:Program Files (x86)MyPlayCity.ruЗа 80 Дней Вокруг Светаunins000.exe»
Забавные Птички—>»C:Program Files (x86)MyPlayCity.ruЗабавные Птичкиunins000.exe»
Илья Муромец и Соловей-разбойник — Ратное дело—>»C:Program Files (x86)MyPlayCity.ruИлья Муромец и Соловей-разбойник — Ратное делоunins000.exe»
Компаньон Messenger—>MsiExec.exe /I{3705D53F-BB01-4BEE-8585-289E71CAC4B4}
Основные компоненты Windows Live—>C:Program Files (x86)Windows LiveInstallerwlarp.exe
Основные компоненты Windows Live—>MsiExec.exe /I{E83DC314-C926-4214-AD58-147691D6FE9F}
Пакет обеспечения совместимости для выпуска 2007 системы Microsoft Office—>MsiExec.exe /X{90120000-0020-0419-0000-0000000FF1CE}
Панель Bing—>C:Program Files (x86)Bing Bar InstallerInstallManager.exe /UNINSTALL
Почта Windows Live—>MsiExec.exe /I{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}
Фотоальбом Windows Live—>MsiExec.exe /X{77F69CA1-E53D-4D77-8BA3-FA07606CC851}
Храм Инков—>»C:Program Files (x86)Храм Инковunins000.exe»
Элемент управления Windows Live Mesh ActiveX для удаленных подключений—>MsiExec.exe /I{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}
Яндекс.Бар 4.2 для Internet Explorer—>MsiExec.exe /X{6740F9E3-1353-47DD-9765-BA49FC4C3479}======System event log======
Computer Name: Наталья-ПК
Event Code: 7036
Message: Служба «Инструментарий управления Windows» перешла в состояние Остановлена.
Record Number: 41210
Source Name: Service Control Manager
Time Written: 20100608030141.894923-000
Event Type: Сведения
User:Computer Name: Наталья-ПК
Event Code: 7036
Message: Служба «Журнал событий Windows» перешла в состояние Остановлена.
Record Number: 41209
Source Name: Service Control Manager
Time Written: 20100608030141.707723-000
Event Type: Сведения
User:Computer Name: Наталья-ПК
Event Code: 7036
Message: Служба «NTI Backup Now 5 Scheduler Service» перешла в состояние Остановлена.
Record Number: 41208
Source Name: Service Control Manager
Time Written: 20100608030141.692123-000
Event Type: Сведения
User:Computer Name: Наталья-ПК
Event Code: 7036
Message: Служба «Служба загрузки изображений Windows (WIA)» перешла в состояние Остановлена.
Record Number: 41207
Source Name: Service Control Manager
Time Written: 20100608030141.692123-000
Event Type: Сведения
User:Computer Name: Наталья-ПК
Event Code: 7036
Message: Служба «Служба политики диагностики» перешла в состояние Остановлена.
Record Number: 41206
Source Name: Service Control Manager
Time Written: 20100608030141.582923-000
Event Type: Сведения
User:=====Application event log=====
Computer Name: WIN-DPPNMFP2Q1L
Event Code: 33
Message: Ошибка при создании контекста активации для «c:WindowsInstaller{61A1EE13-2D43-46BC-A570-9E7E34634D45}WksCal.exe». Не найдена зависимая сборка «msadctls,processorArchitecture=»x86″,type=»win32″,version=»1.0.1801.0″». Используйте sxstrace.exe для подробной диагностики.
Record Number: 507
Source Name: SideBySide
Time Written: 20091010123432.000000-000
Event Type: Ошибка
User:Computer Name: WIN-DPPNMFP2Q1L
Event Code: 33
Message: Ошибка при создании контекста активации для «c:WindowsInstaller{61A1EE13-2D43-46BC-A570-9E7E34634D45}wksss.exe». Не найдена зависимая сборка «msadctls,processorArchitecture=»x86″,type=»win32″,version=»1.0.1801.0″». Используйте sxstrace.exe для подробной диагностики.
Record Number: 506
Source Name: SideBySide
Time Written: 20091010123431.000000-000
Event Type: Ошибка
User:Computer Name: WIN-DPPNMFP2Q1L
Event Code: 33
Message: Ошибка при создании контекста активации для «c:WindowsInstaller{61A1EE13-2D43-46BC-A570-9E7E34634D45}WksWP.exe». Не найдена зависимая сборка «msadctls,processorArchitecture=»x86″,type=»win32″,version=»1.0.1801.0″». Используйте sxstrace.exe для подробной диагностики.
Record Number: 505
Source Name: SideBySide
Time Written: 20091010123431.000000-000
Event Type: Ошибка
User:Computer Name: WIN-DPPNMFP2Q1L
Event Code: 33
Message: Ошибка при создании контекста активации для «c:WindowsInstaller{61A1EE13-2D43-46BC-A570-9E7E34634D45}wksdb.exe». Не найдена зависимая сборка «msadctls,processorArchitecture=»x86″,type=»win32″,version=»1.0.1801.0″». Используйте sxstrace.exe для подробной диагностики.
Record Number: 504
Source Name: SideBySide
Time Written: 20091010123431.000000-000
Event Type: Ошибка
User:Computer Name: WIN-DPPNMFP2Q1L
Event Code: 33
Message: Ошибка при создании контекста активации для «c:WindowsInstaller{61A1EE13-2D43-46BC-A570-9E7E34634D45}WksCal.exe». Не найдена зависимая сборка «msadctls,processorArchitecture=»x86″,type=»win32″,version=»1.0.1801.0″». Используйте sxstrace.exe для подробной диагностики.
Record Number: 503
Source Name: SideBySide
Time Written: 20091010123431.000000-000
Event Type: Ошибка
User:=====Security event log=====
Computer Name: Наталья-ПК
Event Code: 4719
Message: Изменена политика аудита системы.Субъект:
Идентификатор безопасности: S-1-5-21-262726946-1624606168-1918936214-1000
Имя учетной записи: Наталья
Домен учетной записи: Наталья-ПК
Идентификатор входа: 0x1aedfИзменение политики аудита:
Категория: Вход/выход
Подкатегория: Основной режим IPsec
GUID подкатегории: {0CCE9218-69AE-11D9-BED3-505054503030}
Изменения: Успешно добавленные, Добавленные с ошибкой
Record Number: 20402
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110118174738.490439-000
Event Type: Аудит успеха
User:Computer Name: Наталья-ПК
Event Code: 4719
Message: Изменена политика аудита системы.Субъект:
Идентификатор безопасности: S-1-5-21-262726946-1624606168-1918936214-1000
Имя учетной записи: Наталья
Домен учетной записи: Наталья-ПК
Идентификатор входа: 0x1aedfИзменение политики аудита:
Категория: Вход/выход
Подкатегория: Блокировка учетной записи
GUID подкатегории: {0CCE9217-69AE-11D9-BED3-505054503030}
Изменения: Добавленные с ошибкой
Record Number: 20401
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110118174738.490439-000
Event Type: Аудит успеха
User:Computer Name: Наталья-ПК
Event Code: 4719
Message: Изменена политика аудита системы.Субъект:
Идентификатор безопасности: S-1-5-21-262726946-1624606168-1918936214-1000
Имя учетной записи: Наталья
Домен учетной записи: Наталья-ПК
Идентификатор входа: 0x1aedfИзменение политики аудита:
Категория: Вход/выход
Подкатегория: Выход из системы
GUID подкатегории: {0CCE9216-69AE-11D9-BED3-505054503030}
Изменения: Добавленные с ошибкой
Record Number: 20400
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110118174738.490439-000
Event Type: Аудит успеха
User:Computer Name: Наталья-ПК
Event Code: 4719
Message: Изменена политика аудита системы.Субъект:
Идентификатор безопасности: S-1-5-21-262726946-1624606168-1918936214-1000
Имя учетной записи: Наталья
Домен учетной записи: Наталья-ПК
Идентификатор входа: 0x1aedfИзменение политики аудита:
Категория: Вход/выход
Подкатегория: Вход в систему
GUID подкатегории: {0CCE9215-69AE-11D9-BED3-505054503030}
Изменения: Добавленные с ошибкой
Record Number: 20399
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110118174738.490439-000
Event Type: Аудит успеха
User:Computer Name: Наталья-ПК
Event Code: 1102
Message: Журнал аудита был очищен.
Субъект:
ИД безопасности: S-1-5-21-262726946-1624606168-1918936214-1000
Имя учетной записи: Наталья
Имя домена: Наталья-ПК
ИД входа: 0x1aedf
Record Number: 20398
Source Name: Microsoft-Windows-Eventlog
Time Written: 20110118174738.488439-000
Event Type: Аудит успеха
User:======Environment variables======
«ComSpec»=%SystemRoot%system32cmd.exe
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«Path»=C:Program FilesCommon FilesMicrosoft SharedWindows Live;C:Program Files (x86)Common FilesMicrosoft SharedWindows Live;C:Program Files (x86)PC Connectivity Solution;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;C:Program Files (x86)EgisTecMyWinLocker 3×86;C:Program Files (x86)EgisTecMyWinLocker 3×64;C:Program Files (x86)ATI TechnologiesATI.ACECore-Static;C:Program Files (x86)Windows LiveShared
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
«PROCESSOR_ARCHITECTURE»=AMD64
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«USERNAME»=SYSTEM
«windir»=%SystemRoot%
«PSModulePath»=%SystemRoot%system32WindowsPowerShellv1.0Modules
«NUMBER_OF_PROCESSORS»=2
«PROCESSOR_LEVEL»=17
«PROCESSOR_IDENTIFIER»=AMD64 Family 17 Model 3 Stepping 1, AuthenticAMD
«PROCESSOR_REVISION»=0301
«Pathtem»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0
«NTIPath»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;C:Program Files (x86)NewTech InfosystemsNTI Backup Now 5;
EOF
- Тема ‘Всплывающие окна порно-рекламного характера’ закрыта для новых сообщений.
