[Ava Archer]

я сделала все по инструкции, как вы сказали
вот результаты:
Log

Logfile of random’s system information tool 1.08 (written by random/random)
Run by Admin at 2010-12-06 15:55:38
Microsoft Windows XP Professional Service Pack 3
System drive C: has 6 GB (4%) free of 153 GB
Total RAM: 2038 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:55:51, on 06.12.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
C:WINDOWSExplorer.EXE
C:WINDOWSsystem32igfxtray.exe
C:WINDOWSsystem32igfxsrvc.exe
C:WINDOWSsystem32hkcmd.exe
C:WINDOWSsystem32igfxpers.exe
C:Program FilesiTunesiTunesHelper.exe
C:Program FilesMail.RuGuardGuardMailRu.exe
C:WINDOWSFixCamera.exe
C:WINDOWSvsnpstd3.exe
C:WINDOWStsnpstd3.exe
C:WINDOWSsystem32rundll32.exe
C:Program FilesVIAVIAudioiHDADeckHDeck.exe
C:Program FilesCommon FilesACD SystemsRUDevDetect.exe
C:Program FilesVistaDriveIconVistaDrv.exe
C:Program FilesWindows LiveMessengermsnmsgr.exe
C:Program FilesQIP 2010qip.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesABBYY LingvoLvAgent.exe
C:Program FilesWIDCOMMПрограммное обеспечение BluetoothBTTray.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe
C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe
C:Program FilesMail.RuGuardGuardMailRu.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE
C:WINDOWSsystem32svchost.exe
C:Program FilesiPodbiniPodService.exe
C:WINDOWSsystem32wscntfy.exe
C:WINDOWSsystem32wbemwmiapsrv.exe
C:Program FilesWindows LiveContactswlcomm.exe
C:Documents and SettingsAdminРабочий столRSIT.exe
C:Program Filestrend microAdmin.exe

R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://ru.msn.com
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://search.qip.ru
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://ru.msn.com
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKCUSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = http://search.qip.ru/ie
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: QIPBHO Class — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — C:Documents and SettingsAdminApplication DataMicrosoftInternet Explorerqipsearchbar.dll
R3 — URLSearchHook: (no name) — — (no file)
R3 — URLSearchHook: FreeOnlineRadioPlayerRecorder Toolbar — {f999a48b-1950-4d81-9971-79018f807b4b} — C:Program FilesFreeOnlineRadioPlayerRecordertbFre2.dll
O2 — BHO: Conduit Engine — {30F9B915-B755-4826-820B-08FBA6BD249D} — C:Program FilesConduitEngineConduitEngine.dll
O2 — BHO: Java(tm) Plug-In SSV Helper — {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} — C:Program FilesJavajre6binssv.dll
O2 — BHO: Помощник по входу в Windows Live — {9030D464-4C02-4ABF-8ECC-5164760863C6} — C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 — BHO: AlterGeo Magic Scanner — {9BFBA68E-E21B-458E-AE12-FE85E903D2C1} — C:Program FilesAlterGeoAlterGeo Magic Scanner2.8.3.585AlterGeo.BrowserPlugin.dll
O2 — BHO: QIPBHO — {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} — C:Documents and SettingsAdminApplication DataMicrosoftInternet Explorerqipsearchbar.dll
O2 — BHO: SkypeIEPluginBHO — {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 — BHO: FreeOnlineRadioPlayerRecorder Toolbar — {f999a48b-1950-4d81-9971-79018f807b4b} — C:Program FilesFreeOnlineRadioPlayerRecordertbFre2.dll
O3 — Toolbar: FreeOnlineRadioPlayerRecorder Toolbar — {f999a48b-1950-4d81-9971-79018f807b4b} — C:Program FilesFreeOnlineRadioPlayerRecordertbFre2.dll
O4 — HKLM..Run: [IgfxTray] C:WINDOWSsystem32igfxtray.exe
O4 — HKLM..Run: [HotKeysCmds] C:WINDOWSsystem32hkcmd.exe
O4 — HKLM..Run: [Persistence] C:WINDOWSsystem32igfxpers.exe
O4 — HKLM..Run: [QuickTime Task] «C:Program FilesQuickTimeqttask.exe» -atboottime
O4 — HKLM..Run: [iTunesHelper] «C:Program FilesiTunesiTunesHelper.exe»
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [Guard.Mail.ru.gui] «C:Program FilesMail.RuGuardGuardMailRu.exe» /gui
O4 — HKLM..Run: [FixCamera] C:WINDOWSFixCamera.exe
O4 — HKLM..Run: [snpstd3] C:WINDOWSvsnpstd3.exe
O4 — HKLM..Run: [tsnpstd3] C:WINDOWStsnpstd3.exe
O4 — HKLM..Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 — HKLM..Run: [HDAudDeck] C:Program FilesVIAVIAudioiHDADeckHDeck.exe 1
O4 — HKLM..Run: [Device Detector] DevDetect.exe -autorun
O4 — HKCU..Run: [VistaIcon] C:Program FilesVistaDriveIconVistaDrv.exe
O4 — HKCU..Run: [msnmsgr] «C:Program FilesWindows LiveMessengermsnmsgr.exe» /background
O4 — HKCU..Run: [Google Update] «C:Documents and SettingsAdminLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe» /c
O4 — HKCU..Run: [Infium] «C:Program FilesQIP 2010qip.exe» /autorun
O4 — HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUSS-1-5-18..Run: [VistaIcon] C:Program FilesVistaDriveIconVistaDrv.exe (User ‘SYSTEM’)
O4 — HKUSS-1-5-18..RunOnce: [ZZZZ2_FirstLogonSetting] %SystemRoot%System32rundll32.exe advpack.dll,LaunchINFSection C:WINDOWSINFcustom.inf,NewUserFirstLogonInstall,0 (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — HKUS.DEFAULT..RunOnce: [ZZZZ2_FirstLogonSetting] %SystemRoot%System32rundll32.exe advpack.dll,LaunchINFSection C:WINDOWSINFcustom.inf,NewUserFirstLogonInstall,0 (User ‘Default user’)
O4 — Global Startup: ABBYY Lingvo 6.0 Launcher.lnk = C:Program FilesABBYY LingvoLvAgent.exe
O4 — Global Startup: BTTray.lnk = ?
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~1OFFICE11EXCEL.EXE/3000
O8 — Extra context menu item: Отправить через &Bluetooth — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbtsendto_ie_ctx.htm
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~1OFFICE11REFIEBAR.DLL
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra button: QIP Infium — {1EF681F7-A04B-4D6D-9012-A307CCA55610} — C:Program FilesQIP Infiuminfium.exe (HKCU)
O16 — DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) — http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1290522892843
O16 — DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) — http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 — DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) — http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 — DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} — http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 — HKLMSystemCCSServicesTcpip..{56381167-4116-496E-B871-FC3ED731C6F8}: NameServer = 62.213.7.190 62.213.0.12
O18 — Protocol: skype-ie-addon-data — {91774881-D725-4E58-B298-07617B9B86A8} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O22 — SharedTaskScheduler: Предзагрузчик Browseui — {438755C2-A8BA-11D1-B96B-00A0C90312E1} — C:WINDOWSsystem32browseui.dll
O22 — SharedTaskScheduler: Демон кэша категорий компонентов — {8C7461EF-2B13-11d2-BE35-3078302C2030} — C:WINDOWSsystem32browseui.dll
O23 — Service: Apple Mobile Device — Apple Inc. — C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe
O23 — Service: avast! Antivirus — AVAST Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Mail Scanner — AVAST Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Web Scanner — AVAST Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: Bluetooth Service (btwdins) — Broadcom Corporation. — C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: FLEXnet Licensing Service — Macrovision Europe Ltd. — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
O23 — Service: Guard.Mail.ru — Unknown owner — C:Program FilesMail.RuGuardGuardMailRu.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: Сервис iPod (iPod Service) — Apple Inc. — C:Program FilesiPodbiniPodService.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWSsystem32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Журналы и оповещения производительности (SysmonLog) — Корпорация Майкрософт — C:WINDOWSsystem32smlogsvc.exe
O23 — Service: Telnet (TlntSvr) — Корпорация Майкрософт — C:WINDOWSsystem32tlntsvr.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe

—
End of file — 11475 bytes

======Scheduled tasks folder======

C:WINDOWStasksAppleSoftwareUpdate.job
C:WINDOWStasksGoogleUpdateTaskUserS-1-5-21-1004336348-1454471165-1606980848-500Core.job
C:WINDOWStasksGoogleUpdateTaskUserS-1-5-21-1004336348-1454471165-1606980848-500UA.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine — C:Program FilesConduitEngineConduitEngine.dll [2010-10-18 3908192]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper — C:Program FilesJavajre6binssv.dll [2010-08-16 320920]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Помощник по входу в Windows Live — C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9BFBA68E-E21B-458E-AE12-FE85E903D2C1}]
AlterGeoBHO Class — C:Program FilesAlterGeoAlterGeo Magic Scanner2.8.3.585AlterGeo.BrowserPlugin.dll [2010-06-21 255632]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class — C:Documents and SettingsAdminApplication DataMicrosoftInternet Explorerqipsearchbar.dll [2010-08-02 149968]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2010-08-16 34816]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2010-08-16 73728]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{f999a48b-1950-4d81-9971-79018f807b4b}]
FreeOnlineRadioPlayerRecorder Toolbar — C:Program FilesFreeOnlineRadioPlayerRecordertbFre2.dll [2010-10-18 3908192]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{f999a48b-1950-4d81-9971-79018f807b4b} — FreeOnlineRadioPlayerRecorder Toolbar — C:Program FilesFreeOnlineRadioPlayerRecordertbFre2.dll [2010-10-18 3908192]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«IgfxTray»=C:WINDOWSsystem32igfxtray.exe [2007-12-19 135168]
«HotKeysCmds»=C:WINDOWSsystem32hkcmd.exe [2007-12-19 159744]
«Persistence»=C:WINDOWSsystem32igfxpers.exe [2007-12-19 131072]
«QuickTime Task»=C:Program FilesQuickTimeqttask.exe [2009-11-10 417792]
«iTunesHelper»=C:Program FilesiTunesiTunesHelper.exe [2009-11-12 141600]
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2010-08-17 12267712]
«Guard.Mail.ru.gui»=C:Program FilesMail.RuGuardGuardMailRu.exe [2010-08-17 973168]
«FixCamera»=C:WINDOWSFixCamera.exe [2007-02-10 20480]
«snpstd3″=C:WINDOWSvsnpstd3.exe [2006-09-19 827392]
«tsnpstd3″=C:WINDOWStsnpstd3.exe [2007-03-10 270336]
«BluetoothAuthenticationAgent»=bthprops.cpl,,BluetoothAuthenticationAgent []
«HDAudDeck»=C:Program FilesVIAVIAudioiHDADeckHDeck.exe [2009-05-14 33624064]
«Device Detector»=DevDetect.exe -autorun []

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«VistaIcon»=C:Program FilesVistaDriveIconVistaDrv.exe [2008-01-02 132096]
«msnmsgr»=C:Program FilesWindows LiveMessengermsnmsgr.exe [2010-04-16 3872080]
«Google Update»=C:Documents and SettingsAdminLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe [2010-09-11 136176]
«Infium»=C:Program FilesQIP 2010qip.exe [2010-04-30 5562832]
«ctfmon.exe»=C:WINDOWSsystem32ctfmon.exe [2008-12-25 30208]

C:Documents and SettingsAll UsersГлавное менюПрограммыАвтозагрузка
ABBYY Lingvo 6.0 Launcher.lnk — C:Program FilesABBYY LingvoLvAgent.exe
BTTray.lnk — C:Program FilesWIDCOMMПрограммное обеспечение BluetoothBTTray.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyigfxcui]
C:WINDOWSsystem32igfxdev.dll [2007-12-19 208896]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32wpdshserviceobj.dll [2008-03-02 133632]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=323
«NoSharedDocuments»=1
«NoSMConfigurePrograms»=1
«NoDriveAutoRun»=67108863
«NoDrives»=0

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveAutoRun»=67108863
«NoDriveTypeAutoRun»=323
«NoDrives»=0

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesWindows LiveMessengermsnmsgr.exe»=»C:Program FilesWindows LiveMessengermsnmsgr.exe:*:Enabled:Windows Live Messenger»
«C:Program FilesSkypePlugin ManagerskypePM.exe»=»C:Program FilesSkypePlugin ManagerskypePM.exe:*:Enabled:Skype Extras Manager»
«C:Program FilesQIP 2010qip.exe»=»C:Program FilesQIP 2010qip.exe:*:Enabled:QIP 2010»
«C:Program FilesuTorrentuTorrent.exe»=»C:Program FilesuTorrentuTorrent.exe:*:Enabled:µTorrent»
«C:Program FilesOperaopera.exe»=»C:Program FilesOperaopera.exe:*:Enabled:Opera Internet Browser»
«C:Program FilesMail.RuAgentmagent.exe»=»C:Program FilesMail.RuAgentmagent.exe:*:Enabled:Mail.Ru Агент»
«C:WINDOWSsystem32dpvsetup.exe»=»C:WINDOWSsystem32dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test»
«C:Program FilesQIP Infiuminfium.exe»=»C:Program FilesQIP Infiuminfium.exe:*:Enabled:QIP Infium»
«C:Program FilesSkypePhoneSkype.exe»=»C:Program FilesSkypePhoneSkype.exe:*:Enabled:Skype «

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesWindows LiveMessengermsnmsgr.exe»=»C:Program FilesWindows LiveMessengermsnmsgr.exe:*:Enabled:Windows Live Messenger»

======List of files/folders created in the last 1 months======

2010-12-06 15:55:39 —-D—- C:Program Filestrend micro
2010-12-06 15:55:38 —-D—- C:rsit
2010-12-04 17:11:30 —-SHD—- C:RECYCLER
2010-12-04 16:52:29 —-D—- C:WINDOWSie8updates
2010-12-04 16:51:23 —-A—- C:WINDOWSsystem32spupdsvc.exe
2010-12-04 16:49:53 —-HDC—- C:WINDOWSie8
2010-12-04 16:49:35 —-D—- C:Program FilesMicrosoft Silverlight
2010-12-04 16:47:43 —-HD—- C:WINDOWSmsdownld.tmp
2010-12-04 16:44:40 —-A—- C:WINDOWSsystem32MRT.exe
2010-12-04 16:28:38 —-D—- C:Documents and SettingsAll UsersApplication DataWindows Genuine Advantage
2010-12-04 04:23:31 —-HDC—- C:WINDOWS$NtUninstallKB2158563$
2010-12-04 04:23:27 —-D—- C:Program FilesMSXML 4.0
2010-12-04 04:23:17 —-HDC—- C:WINDOWS$NtUninstallKB982665$
2010-12-04 04:22:47 —-HDC—- C:WINDOWS$NtUninstallKB954154_WM11$
2010-12-04 04:22:41 —-HDC—- C:WINDOWS$NtUninstallKB923561$
2010-12-04 04:22:35 —-HDC—- C:WINDOWS$NtUninstallKB971961$
2010-12-04 04:22:29 —-HDC—- C:WINDOWS$NtUninstallKB975467$
2010-12-04 04:22:22 —-HDC—- C:WINDOWS$NtUninstallKB968389$
2010-12-04 04:22:12 —-N—- C:WINDOWSsystem32spmsg.dll
2010-12-04 04:22:10 —-HDC—- C:WINDOWS$NtUninstallKB2360937$
2010-12-04 04:22:10 —-HD—- C:WINDOWS$hf_mig$
2010-12-04 03:47:38 —-D—- C:WINDOWSsystem32SoftwareDistribution
2010-12-04 03:40:07 —-A—- C:ComboFix.txt
2010-12-04 03:34:00 —-A—- C:Boot.bak
2010-12-04 03:33:52 —-RASHD—- C:cmdcons
2010-12-04 03:32:06 —-A—- C:WINDOWSzip.exe
2010-12-04 03:32:06 —-A—- C:WINDOWSSWXCACLS.exe
2010-12-04 03:32:06 —-A—- C:WINDOWSSWSC.exe
2010-12-04 03:32:06 —-A—- C:WINDOWSSWREG.exe
2010-12-04 03:32:06 —-A—- C:WINDOWSsed.exe
2010-12-04 03:32:06 —-A—- C:WINDOWSPEV.exe
2010-12-04 03:32:06 —-A—- C:WINDOWSNIRCMD.exe
2010-12-04 03:32:06 —-A—- C:WINDOWSMBR.exe
2010-12-04 03:32:06 —-A—- C:WINDOWSgrep.exe
2010-12-04 03:31:59 —-D—- C:WINDOWSERDNT
2010-12-04 02:56:48 —-D—- C:Qoobox
2010-12-04 00:40:43 —-A—- C:WINDOWSsystem32drivers83733812.sys
2010-12-04 00:40:43 —-A—- C:WINDOWSsystem32drivers83733811.sys
2010-12-04 00:40:43 —-A—- C:WINDOWSsystem32drivers8373381.sys
2010-11-25 22:41:45 —-D—- C:Documents and SettingsAdminApplication DataACD Systems
2010-11-25 22:41:10 —-D—- C:Documents and SettingsAll UsersApplication DataACD Systems
2010-11-25 22:41:02 —-D—- C:Program FilesCommon FilesACD Systems
2010-11-25 22:41:02 —-D—- C:Program FilesACD Systems
2010-11-15 18:39:41 —-A—- C:WINDOWSsystem32ConduitEngine.tmp
2010-11-15 18:39:40 —-D—- C:Program FilesConduitEngine

======List of files/folders modified in the last 1 months======

2010-12-06 15:55:39 —-AD—- C:Program Files
2010-12-06 15:34:34 —-D—- C:WINDOWSTemp
2010-12-06 06:11:37 —-A—- C:WINDOWSSchedLgU.Txt
2010-12-06 03:49:15 —-D—- C:Documents and SettingsAdminApplication DataSkype
2010-12-06 00:36:07 —-D—- C:Documents and SettingsAdminApplication DataMessengerDiscovery 2
2010-12-06 00:07:49 —-D—- C:Documents and SettingsAdminApplication DataskypePM
2010-12-05 16:37:03 —-A—- C:WINDOWSwlingvo.ini
2010-12-05 03:40:06 —-D—- C:WINDOWSsystem32CatRoot2
2010-12-04 16:57:44 —-D—- C:WINDOWS
2010-12-04 16:56:29 —-D—- C:WINDOWSsystem32ru-ru
2010-12-04 16:56:29 —-AD—- C:WINDOWSsystem32
2010-12-04 16:56:28 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-12-04 16:56:28 —-HD—- C:WINDOWSinf
2010-12-04 16:56:28 —-D—- C:WINDOWSMedia
2010-12-04 16:56:28 —-D—- C:WINDOWSHelp
2010-12-04 16:56:28 —-D—- C:Program FilesInternet Explorer
2010-12-04 16:53:23 —-A—- C:WINDOWSimsins.BAK
2010-12-04 16:49:38 —-SHD—- C:WINDOWSInstaller
2010-12-04 16:44:43 —-D—- C:WINDOWSDebug
2010-12-04 15:42:19 —-D—- C:WINDOWSAppPatch
2010-12-04 04:23:28 —-D—- C:WINDOWSWinSxS
2010-12-04 04:23:11 —-RSD—- C:WINDOWSassembly
2010-12-04 04:22:24 —-D—- C:WINDOWSsystem32drivers
2010-12-04 03:38:20 —-A—- C:WINDOWSsystem.ini
2010-12-04 03:38:14 —-D—- C:WINDOWSsystem32driversetc
2010-12-04 03:37:53 —-AD—- C:Program FilesCommon Files
2010-12-04 03:34:00 —-RASH—- C:boot.ini
2010-12-04 03:03:34 —-SHD—- C:System Volume Information
2010-12-04 03:03:34 —-D—- C:WINDOWSsystem32Restore
2010-12-04 03:02:04 —-AD—- C:Documents and SettingsAll UsersApplication DataTEMP
2010-12-02 03:06:06 —-D—- C:Documents and SettingsAdminApplication DatauTorrent
2010-12-01 12:37:21 —-A—- C:WINDOWSwin.ini
2010-11-29 03:46:55 —-D—- C:WINDOWSNetwork Diagnostic
2010-11-23 17:35:10 —-D—- C:WINDOWSSoftwareDistribution
2010-11-23 17:35:09 —-SD—- C:WINDOWSDownloaded Program Files
2010-11-15 18:39:38 —-D—- C:Program FilesFreeOnlineRadioPlayerRecorder
2010-11-10 21:10:09 —-D—- C:Program FilesMozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 83733812;83733812 Boot Guard Driver; C:WINDOWSsystem32DRIVERS83733812.sys [2009-10-22 37392]
R0 sptd;sptd; C:WINDOWSSystem32Driverssptd.sys [2010-08-16 717296]
R1 83733811;83733811; C:WINDOWSsystem32DRIVERS83733811.sys [2009-09-25 128016]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2010-09-07 28880]
R1 aswSP;aswSP; C:WINDOWSsystem32driversaswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2010-09-07 46672]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2008-04-15 40704]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32driversaswFsBlk.sys [2010-09-07 17744]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2010-09-07 100176]
R2 BTSERIAL;Bluetooth Serial Driver; ??C:WINDOWSsystem32driversbtserial.sys []
R2 BTSLBCSP;Bluetooth Port Client Driver; ??C:WINDOWSsystem32driversbtslbcsp.sys []
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2008-10-11 62848]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2010-09-07 23376]
R3 BTKRNL;Нумератор шины Bluetooth; C:WINDOWSsystem32DRIVERSbtkrnl.sys [2004-11-29 1337850]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:WINDOWSsystem32DRIVERSGEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:WINDOWSsystem32DRIVERSHDAudBus.sys [2008-04-15 144384]
R3 ialm;ialm; C:WINDOWSsystem32DRIVERSigxpmp32.sys [2007-12-19 5854688]
R3 monfilt;monfilt; C:WINDOWSsystem32driversmonfilt.sys [2008-02-14 1389056]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtenicxp.sys [2008-10-31 117888]
R3 SNPSTD3;USB PC Camera (SNPSTD3); C:WINDOWSsystem32DRIVERSsnpstd3.sys [2007-03-26 10252544]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2008-04-15 20608]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:WINDOWSsystem32driversviahduaa.sys [2009-05-08 1358720]
S3 btaudio;Аудиоустройство Bluetooth; C:WINDOWSsystem32driversbtaudio.sys [2004-11-29 399616]
S3 BTDriver;Драйвер виртуальной связи Bluetooth; C:WINDOWSsystem32DRIVERSbtport.sys [2004-11-29 30299]
S3 BthEnum;Драйвер блока запроса Bluetooth; C:WINDOWSsystem32DRIVERSBthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:WINDOWSsystem32DRIVERSbthpan.sys [2008-04-13 101120]
S3 BTHPORT;Драйвер порта Bluetooth; C:WINDOWSSystem32DriversBTHport.sys [2008-12-25 272512]
S3 BTHUSB;Драйвер порта USB радиомодуля Bluetooth; C:WINDOWSSystem32DriversBTHUSB.sys [2008-04-13 18944]
S3 BTWDNDIS;Сервер доступа к локальной сети Bluetooth; C:WINDOWSsystem32DRIVERSbtwdndis.sys [2004-11-29 148040]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:WINDOWSSystem32Driversbtwusb.sys [2004-11-29 55320]
S3 catchme;catchme; ??C:DOCUME~1AdminLOCALS~1Tempcatchme.sys []
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2008-04-13 17024]
S3 HdAudAddService;VIA High Definition Audio Service; C:WINDOWSsystem32driversviahdb.sys [2007-08-17 203520]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2008-04-13 10880]
S3 RFCOMM;Устройство Bluetooth (протокол RFCOMM TDI); C:WINDOWSsystem32DRIVERSrfcomm.sys [2008-04-13 59136]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2008-04-13 15232]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2008-03-02 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2008-03-02 82944]
S4 dwshd;dwshd; C:WINDOWSsystem32driversdwshd.sys []
S4 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2008-04-15 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe [2009-08-28 144672]
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-09-07 40384]
R2 BthServ;Bluetooth Support Service; C:WINDOWSsystem32svchost.exe [2008-04-15 14336]
R2 btwdins;Bluetooth Service; C:Program FilesWIDCOMMПрограммное обеспечение Bluetoothbinbtwdins.exe [2004-11-29 254007]
R2 Guard.Mail.ru;Guard.Mail.ru; C:Program FilesMail.RuGuardGuardMailRu.exe [2010-08-17 973168]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2010-08-16 152984]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-19 322120]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-09-07 40384]
R3 iPod Service;Сервис iPod; C:Program FilesiPodbiniPodService.exe [2009-11-12 545568]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2007-10-24 70144]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe [2010-08-21 654848]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:Program FilesWindows Media Playerwmpnetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2008-04-15 14336]

---

EOF

---

INFO

info.txt logfile of random’s system information tool 1.08 2010-12-06 15:55:54

======Uninstall list======

—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
µTorrent—>»C:Program FilesuTorrentuTorrent.exe» /UNINSTALL
ABBYY Lingvo 6.0—>C:WINDOWSbitdeins.exe C:PROGRA~1ABBYYL~1bitdeins.ini
ACDSee Photo Manager 12—>MsiExec.exe /I{C08F8711-3110-4FF3-B589-5069C9E0AE2D}
Adobe Anchor Service CS3—>MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3—>MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Camera Raw 4.0—>MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps—>MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color — Photoshop Specific—>MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color Common Settings—>C:Program FilesCommon FilesAdobeInstallers6c8e2cb4fd241c55406016127a6ab2eSetup.exe
Adobe Color Common Settings—>MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
Adobe Color EU Extra Settings—>MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
Adobe Color JA Extra Settings—>MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
Adobe Color NA Recommended Settings—>MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5}
Adobe Default Language CS3—>MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashFlashUtil10k_ActiveX.exe -maintain activex
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Fonts All—>MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Linguistics CS3—>MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe PDF Library Files—>MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
Adobe Photoshop CS3—>C:Program FilesCommon FilesAdobeInstallers719d6f144d0c086a0dfa7ff76bb9ac1Setup.exe
Adobe Photoshop CS3—>MsiExec.exe /I{3D7E3EC9-46CF-4359-9289-39CE01DFB82F}
Adobe Setup—>MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
Adobe Setup—>MsiExec.exe /I{FF11004C-F42A-4A31-9BCF-7F5C8FDBE53C}
Adobe Type Support—>MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe Update Manager CS3—>MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client—>MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe WinSoft Linguistics Plugin—>MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3—>MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
AlterGeo Magic Scanner—>MsiExec.exe /I{15F62E9A-24C6-46CC-AEAA-8854120E5A25}
Apple Application Support—>MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Mobile Device Support—>MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update—>MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Auslogics BoostSpeed—>»C:Program FilesAuslogicsAuslogics BoostSpeedunins000.exe»
avast! Free Antivirus—>C:Program FilesAlwil SoftwareAvast5aswRunDll.exe «C:Program FilesAlwil SoftwareAvast5Setupsetiface.dll» RunSetup
Bonjour—>MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Free Video to MP3 WMA Converter 3.7.2.1—>»C:Program FilesFree Video to MP3 WMA Converterunins000.exe»
FreeOnlineRadioPlayerRecorder Toolbar—>C:PROGRA~1FREEON~1UNWISE.EXE /U C:PROGRA~1FREEON~1INSTALL.LOG
Guard.Mail.ru—>»C:Program FilesMail.RuGuardGuardMailRu.exe» /uninstall
Intel(R) Graphics Media Accelerator Driver—>C:WINDOWSsystem32igxpun.exe -uninstall
iTunes—>MsiExec.exe /I{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}
Java(TM) 6 Update 11—>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
K-Lite Mega Codec Pack 4.4.2—>»C:Program FilesK-Lite Codec Packunins000.exe»
Mail.Ru Агент 5.7 (сборка 3672, для всех пользователей)—>C:Program FilesMail.RuAgentmagentsetup.exe -uninstalllm
MessengerDiscovery 2.5.95—>»C:Program FilesMessengerDiscovery 2unins000.exe»
Microsoft .NET Framework 1.1 Russian Language Pack—>MsiExec.exe /X{2BB372D9-52B4-410A-BC1A-FEAB63181EEF}
Microsoft .NET Framework 1.1—>msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1—>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1—>MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Choice Guard—>MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Office — профессиональный выпуск версии 2003—>MsiExec.exe /I{90110419-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight—>MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729.4148—>MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Mozilla Firefox (3.6.11)—>C:Program FilesMozilla Firefoxuninstallhelper.exe
MSVCRT—>MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)—>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)—>MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Opera 10.63—>MsiExec.exe /X{2E190C8E-682A-409D-9329-539E24C9D1C1}
Paint.NET v 3.36—>rundll32.exe advpack.dll,LaunchINFSection PaintDN.inf,Uninstall
PDF Settings—>MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
QuickTime—>MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
Segoe UI—>MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Skype Toolbars—>MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A}
Skype™ 4.2—>MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
Trust Webcam 15082-02—>C:Program FilesInstallShield Installation Information{ECD03DA7-5952-406A-8156-5F0C93618D1F}setup.exe -runfromtemp -l0x0009 -removeonly
VIA Диспетчер устройств платформы—>C:PROGRA~1COMMON~1INSTAL~1Driver7INTEL3~1IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}
Vista Drive Icon—>rundll32.exe advpack.dll,LaunchINFSection C:WINDOWSINFVistaDrv.inf,Uninstall
WIDCOMM Bluetooth Software—>MsiExec.exe /X{3F4EC965-28EF-45C3-B063-04B25D4E9679}
Winamp—>C:Program FilesWinampUninstall.exe
Windows Internet Explorer 8—>»C:WINDOWSie8spuninstspuninst.exe»
Windows Live Communications Platform—>MsiExec.exe /I{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
Windows Live Messenger—>MsiExec.exe /X{18BFDC24-7E37-478C-9ADB-7E143C7A2BEE}
Архиватор WinRAR—>C:Program FilesWinRARuninstall.exe
Исправление для Windows XP (KB2158563)—>»C:WINDOWS$NtUninstallKB2158563$spuninstspuninst.exe»
Обновление безопасности для Windows Internet Explorer 8 (KB2360131)—>»C:WINDOWSie8updatesKB2360131-IE8spuninstspuninst.exe»
Обновление безопасности для Windows Internet Explorer 8 (KB982381)—>»C:WINDOWSie8updatesKB982381-IE8spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB2360937)—>»C:WINDOWS$NtUninstallKB2360937$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB923561)—>»C:WINDOWS$NtUninstallKB923561$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB971961)—>»C:WINDOWS$NtUninstallKB971961$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB975467)—>»C:WINDOWS$NtUninstallKB975467$spuninstspuninst.exe»
Обновление безопасности для Windows XP (KB982665)—>»C:WINDOWS$NtUninstallKB982665$spuninstspuninst.exe»
Обновление безопасности для проигрывателя Windows Media 11 — (KB954154)—>»C:WINDOWS$NtUninstallKB954154_WM11$spuninstspuninst.exe»
Обновление для Windows Internet Explorer 8 (KB2447568)—>»C:WINDOWSie8updatesKB2447568-IE8spuninstspuninst.exe»
Обновление для Windows XP (KB968389)—>»C:WINDOWS$NtUninstallKB968389$spuninstspuninst.exe»
Основные компоненты Windows Live—>C:Program FilesWindows LiveInstallerwlarp.exe
Основные компоненты Windows Live—>MsiExec.exe /I{772B1B81-03C5-43E5-85E0-4332A82EDADB}
Помощник по входу в Windows Live—>MsiExec.exe /I{518A8485-E038-4A8C-A76B-1C868D95F13E}
Средство передачи Windows Live—>MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}

======Security center information======

AV: Doctor Web Anti-Virus (outdated)
AV: avast! Antivirus

======System event log======

Computer Name: MICROSOF-96A1F0
Event Code: 7036
Message: Служба «Обозреватель компьютеров» перешла в состояние Остановлена.

Record Number: 7732
Source Name: Service Control Manager
Time Written: 20101122144349.000000+180
Event Type: информация
User:

Computer Name: MICROSOF-96A1F0
Event Code: 7036
Message: Служба «Диспетчер подключений удаленного доступа» перешла в состояние Работает.

Record Number: 7731
Source Name: Service Control Manager
Time Written: 20101122144349.000000+180
Event Type: информация
User:

Computer Name: MICROSOF-96A1F0
Event Code: 7036
Message: Служба «Служба шлюза уровня приложения» перешла в состояние Работает.

Record Number: 7730
Source Name: Service Control Manager
Time Written: 20101122144349.000000+180
Event Type: информация
User:

Computer Name: MICROSOF-96A1F0
Event Code: 7035
Message: Служба «Служба шлюза уровня приложения» успешно отправила управляющий элемент «запустить».

Record Number: 7729
Source Name: Service Control Manager
Time Written: 20101122144349.000000+180
Event Type: информация
User: NT AUTHORITYSYSTEM

Computer Name: MICROSOF-96A1F0
Event Code: 7036
Message: Служба «avast! Mail Scanner» перешла в состояние Работает.

Record Number: 7728
Source Name: Service Control Manager
Time Written: 20101122144349.000000+180
Event Type: информация
User:

=====Application event log=====

Computer Name: MICROSOF-96A1F0
Event Code: 1042
Message: Завершение транзакции установщика Windows: C:DOCUME~1AdminLOCALS~1TempRarSFX0payloadsAdobeDefaultLanguageCS3AllAdobeDefaultLanguageCS3All.msi. ИД клиентского процесса: 2968.

Record Number: 373
Source Name: MsiInstaller
Time Written: 20100821230226.000000+240
Event Type: информация
User: NT AUTHORITYSYSTEM

Computer Name: MICROSOF-96A1F0
Event Code: 1033
Message: Установщик Windows выполнил установку продукта. Продукт: Adobe Default Language CS3. Версия: 1.0. Язык: 0. Установка завершена с состоянием: 0.

Record Number: 372
Source Name: MsiInstaller
Time Written: 20100821230226.000000+240
Event Type: информация
User: MICROSOF-96A1F0Admin

Computer Name: MICROSOF-96A1F0
Event Code: 11707
Message: Product: Adobe Default Language CS3 — Installation operation completed successfully.

Record Number: 371
Source Name: MsiInstaller
Time Written: 20100821230226.000000+240
Event Type: информация
User: MICROSOF-96A1F0Admin

Computer Name: MICROSOF-96A1F0
Event Code: 1040
Message: Начата транзакция установщика Windows: C:DOCUME~1AdminLOCALS~1TempRarSFX0payloadsAdobeDefaultLanguageCS3AllAdobeDefaultLanguageCS3All.msi. ИД клиентского процесса: 2968.

Record Number: 370
Source Name: MsiInstaller
Time Written: 20100821230155.000000+240
Event Type: информация
User: MICROSOF-96A1F0Admin

Computer Name: MICROSOF-96A1F0
Event Code: 1042
Message: Завершение транзакции установщика Windows: C:DOCUME~1AdminLOCALS~1TempRarSFX0payloadsAdobeColorNA_RecommendedAllAdobeColorNA_RecommendedAll.msi. ИД клиентского процесса: 2968.

Record Number: 369
Source Name: MsiInstaller
Time Written: 20100821230150.000000+240
Event Type: информация
User: NT AUTHORITYSYSTEM

======Environment variables======

«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%system32wbem;C:Program FilesQuickTimeQTSystem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=6
«PROCESSOR_IDENTIFIER»=x86 Family 6 Model 15 Stepping 13, GenuineIntel
«PROCESSOR_REVISION»=0f0d
«NUMBER_OF_PROCESSORS»=2
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP
«CLASSPATH»=.;C:Program FilesJavajre6libextQTJava.zip
«QTJAVA»=C:Program FilesJavajre6libextQTJava.zip

---

EOF

---

[Автор]

Сообщения