[ju61]

info.txt logfile of random’s system information tool 1.06 2010-01-27 21:03:53

======Uninstall list======

—>»C:Documents and SettingsAll Users.WINDOWSApplication Data{26009715-9383-403E-996E-D70BE8109C3D}setup.exe» REMOVE=TRUE MODIFY=FALSE
—>C:Program FilesNeroNero 7nerouninstallUNNERO.exe /UNINSTALL
—>C:WINDOWSNuNInst.exe /UNINSTALL
—>msiexec /package {90120000-0012-0000-0000-0000000FF1CE} /uninstall {744C859F-C225-48A9-A524-4DED432F36C7}
—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{1A99CB37-AEB0-492F-A85A-8A2536D22393}setup.exe» -l0x9
—>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:WINDOWSINFPCHealth.inf
18 Wheels Of Steel Extreme Trucker—>»F:games18 Wheels Of Steel Extreme Truckerunins000.exe»
7-Zip 4.57—>»C:Program Files7-ZipUninstall.exe»
Adobe Flash Player 10 ActiveX—>C:WINDOWSsystem32MacromedFlashuninstall_activeX.exe
Adobe Flash Player 10 Plugin—>C:WINDOWSsystem32MacromedFlashuninstall_plugin.exe
Adobe Flash Player 9 ActiveX—>C:WINDOWSsystem32MacromedFlashFlashUtil9b.exe -uninstallDelete
Adobe Reader 9.1 — Russian—>MsiExec.exe /I{AC76BA86-7AD7-1049-7B44-A91000000001}
Advanced SystemCare 3—>»C:Program FilesIObitAdvanced SystemCare 3unins000.exe»
Apple Application Support—>MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Software Update—>MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Ask Toolbar—>MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Auslogics BoostSpeed—>»C:Program FilesAuslogicsAuslogics BoostSpeedunins000.exe»
avast! Antivirus—>C:Program FilesAlwil SoftwareAvast4aswRunDll.exe «C:Program FilesAlwil SoftwareAvast4Setupsetiface.dll»,RunSetup
BitComet 1.07—>C:Program FilesBitCometuninst.exe
Bonjour—>MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
CCleaner—>»C:Program FilesCCleaneruninst.exe»
Creative Media Lite—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime91Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{1A99CB37-AEB0-492F-A85A-8A2536D22393}setup.exe» -l0x9 /remove
Creative MuVo T200 User’s Guide—>»C:Program FilesCreativeCreative MuVo T200UGRemove.exe» /Product_Name:MuVoT200UG
Creative Software Update—>C:Documents and SettingsAll Users.WINDOWSApplication Data{26009715-9383-403E-996E-D70BE8109C3D}setup.exe
CrystalDiskInfo 3.1.0—>»C:Program FilesCrystalDiskInfounins000.exe»
Digalo 2000 Russian—>C:WINDOWSIsUninst.exe -f»C:Program FilesDigaloDigalo 2000 RussianUninst.isu»
Driver Genius Professional Edition—>»C:Program FilesDriver-SoftDriverGeniusunins000.exe»
DVDStyler v1.7.4-1—>»C:Program FilesDVDStylerunins000.exe»
Foxit Reader—>C:Program FilesFoxit SoftwareFoxit ReaderUninstall.exe
free-downloads.net Toolbar—>C:PROGRA~1free-downloads.netUNWISE.EXE C:PROGRA~1free-downloads.netINSTALL.LOG
GOM Player—>»C:Program FilesGRETECHGomPlayerUninstall.exe»
Google Toolbar for Internet Explorer—>»C:Program FilesGoogleGoogle ToolbarComponentGoogleToolbarManager_9DE96A29E721D90A.exe» /uninstall
Google Toolbar for Internet Explorer—>MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Планета Земля—>MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
Haihaisoft Universal Player—>C:Program FilesHaihaisoft Universal PlayerUninstall.exe
HijackThis 2.0.2—>»C:Program Filestrend microHijackThis.exe» /uninstall
Hotfix для Microsoft .NET Framework 2.0 (КБ916002)—>C:WINDOWSsystem32msiexec.exe /promptrestart /uninstall {577B5AF9-0523-4841-8B07-969A165632FA} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
HP Image Zone 4.2—>C:Program FilesHPDigital Imaginguninstallhpzscr01.exe -datfile hpqscr01.dat
HP PSC & OfficeJet 4.2—>»C:Program FilesHPDigital Imaging{A1062847-0846-427A-92A1-BB8251A91E91}setuphpzscr01.exe» -datfile hposcr04.dat
HP Software Update—>MsiExec.exe /X{457791C5-D702-4143-A7B2-2744BE9573F2}
InterVideo WinDVD Creator 2—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1engine6INTEL3~1ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{2FCE4FC5-6930-40E7-A4F1-F862207424EF}setup.exe»
IObitCom Toolbar—>C:PROGRA~1IObitComUNWISE.EXE /U C:PROGRA~1IObitComINSTALL.LOG
Java(TM) 6 Update 13—>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Keyboard Driver—>C:Program FilesInstallShield Installation Information{DFCDD1CE-6D49-49B8-BFB7-93391D22776B}setup.exe -runfromtemp -l0x0409
kikin plugin (DVDStyler Edition) 1.11—>C:Program Fileskikinuninst.exe
kikin plugin (DVDStyler Edition) 1.14—>C:Program Fileskikinuninst.exe
K-Lite Mega Codec Pack 3.7.5—>»C:Program FilesHaihaisoft Universal PlayerCodecunins000.exe»
Logitech Webcam Software—>MsiExec.exe /I{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}
Microsoft .NET Framework 1.1 Hotfix (KB886903)—>»C:WINDOWSMicrosoft.NETFrameworkv1.1.4322Updateshotfix.exe» «»
Microsoft .NET Framework 1.1 Russian Language Pack—>MsiExec.exe /X{2BB372D9-52B4-410A-BC1A-FEAB63181EEF}
Microsoft .NET Framework 1.1—>msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Language Pack — RUS—>MsiExec.exe /X{F4D0F248-2BF7-4912-814E-4FD751923838}
Microsoft .NET Framework 2.0—>MsiExec.exe /X{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Microsoft .NET Framework 3.0 Russian Language Pack—>C:WINDOWSMicrosoft.NETFrameworkv3.0Microsoft .NET Framework 3.0 Russian Language Packsetup.exe
Microsoft .NET Framework 3.0 Russian Language Pack—>MsiExec.exe /X{855B04CC-4F7A-4FBB-B7BA-D965D23F7AD5}
Microsoft .NET Framework 3.0—>C:WINDOWSMicrosoft.NETFrameworkv3.0Microsoft .NET Framework 3.0setup.exe
Microsoft .NET Framework 3.0—>MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Office Excel MUI (Russian) 2007—>MsiExec.exe /X{90120000-0016-0419-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Russian) 2007—>MsiExec.exe /X{90120000-001A-0419-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Russian) 2007—>MsiExec.exe /X{90120000-0018-0419-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007—>MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007—>MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Russian) 2007—>MsiExec.exe /X{90120000-001F-0419-0000-0000000FF1CE}
Microsoft Office Proof (Ukrainian) 2007—>MsiExec.exe /X{90120000-001F-0422-0000-0000000FF1CE}
Microsoft Office Proofing (Russian) 2007—>MsiExec.exe /X{90120000-002C-0419-0000-0000000FF1CE}
Microsoft Office Shared MUI (Russian) 2007—>MsiExec.exe /X{90120000-006E-0419-0000-0000000FF1CE}
Microsoft Office Standard 2007—>MsiExec.exe /X{90120000-0012-0000-0000-0000000FF1CE}
Microsoft Office Word MUI (Russian) 2007—>MsiExec.exe /X{90120000-001B-0419-0000-0000000FF1CE}
Microsoft Office Стандартный 2007—>»C:Program FilesCommon FilesMicrosoft SharedOFFICE12Office Setup Controllersetup.exe» /uninstall STANDARD /dll OSETUP.DLL
Microsoft Visual C++ 2005 Redistributable—>MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable — x86 9.0.30729.17—>MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
MSXML 4.0 SP2 (KB927978)—>MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 6.0 Parser (KB927977)—>MsiExec.exe /I{CDC55141-E531-44A6-AB13-1AF4B7157D46}
Nero 7—>MsiExec.exe /I{70AB1576-7883-2313-C650-7A71270B1049}
NVIDIA Drivers—>C:WINDOWSsystem32nvudisp.exe UninstallGUI
Opera 9.61—>MsiExec.exe /X{92271486-E286-4CF1-AE6D-F889F83CBF84}
PowerISO—>»C:Program FilesPowerISOuninstall.exe»
Realtek AC’97 Audio—>RunDll32 C:PROGRA~1COMMON~1INSTAL~1PROFES~1RunTime1150Intel32Ctor.dll,LaunchSetup «C:Program FilesInstallShield Installation Information{FB08F381-6533-4108-B7DD-039E11FBC27E}setup.exe» -l0x19 -removeonly
REALTEK GbE & FE Ethernet PCI NIC Driver—>C:Program FilesInstallShield Installation Information{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}setup.exe -runfromtemp -removeonly
Security Update для Microsoft .NET Framework 2.0 (КБ917283)—>C:WINDOWSsystem32msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Security Update для Microsoft .NET Framework 2.0 (КБ922770)—>C:WINDOWSsystem32msiexec.exe /promptrestart /uninstall {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Skype™ 3.8—>MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
Sothink FLV Player—>»C:Program FilesSourceTecSothink FLV Playerunins000.exe»
Spybot — Search & Destroy—>»C:Program FilesSpybot — Search & Destroyunins000.exe»
Steering Wheel Drivers V4.1—>MsiExec.exe /I{2D38F57A-B141-4E24-A377-2ED35B57F0DE}
StrongDC++ 2.21—>C:Program FilesStrongDC++Uninstall.exe
The KMPlayer (remove only)—>»C:Program FilesThe KMPlayeruninstall.exe»
Ultra Mobile 3GP Video Converter 1.7.2—>»C:Program FilesUltra Mobile 3GP Video Converterunins000.exe»
VLC media player 0.9.4—>C:Program FilesVideoLANVLCuninstall.exe
Winamp Toolbar for Firefox—>»C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataMozillaFirefoxProfilesla500nrl.defaultextensions{0b38152b-1b20-484d-a11f-5e04a9b0661f}uninstall.exe»
Winamp Toolbar for Internet Explorer—>»C:Program FilesWinamp Toolbaruninstall.exe»
Windows Communication Foundation—>MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Internet Explorer 7—>»C:WINDOWSie7spuninstspuninst.exe»
Windows Media Format 11 runtime—>»C:Program FilesWindows Media Playerwmsetsdk.exe» /UninstallAll
Windows Presentation Foundation Language Pack (RUS)—>MsiExec.exe /X{D83A3DFC-8528-4E31-93DC-0A41C477109C}
Windows Presentation Foundation—>MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation RU Language Pack—>MsiExec.exe /I{1C7ADED3-C371-40DF-A69D-FE0EA73DC394}
Windows Workflow Foundation—>MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Коллекция Морхухн 1—>»C:Gamesфайлы игрКоллекция Морхухн 1unins000.exe»
Пакет драйвера Logitech Webcam Software—>»C:Program FilesCommon FilesLogiShrdLogiDriverStorelvdrivers12.10.1110LgDrvInst.exe» -remove -instdir»C:Program FilesCommon FilesLogiShrdLogiDriverStorelvdrivers» -enumdelay=200 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey»lvdrivers_12.10″ /clone_wait /hide_progress
Пакет обновления 2 для клиента управления правами Windows с поддержкой прежних версий—>MsiExec.exe /X{EC905264-BCFE-423B-9C42-C3A106266790}
Пакет обновления 2 для клиента управления правами Windows—>MsiExec.exe /X{9350CD11-D3F0-4B6D-B18F-74E968D5770A}
Проигрыватель Windows Media 11—>»C:Program FilesWindows Media PlayerSetup_wm.exe» /Uninstall

======Hosts File======

127.0.0.1 localhost
0.0.0.0 um00.eset.com
0.0.0.0 um01.eset.com
0.0.0.0 um02.eset.com
0.0.0.0 um03.eset.com
0.0.0.0 um04.eset.com
0.0.0.0 um05.eset.com
0.0.0.0 um06.eset.com
0.0.0.0 um07.eset.com
0.0.0.0 um08.eset.com

======Security center information======

AV: avast! antivirus 4.8.1368 [VPS 100127-0]

======System event log======

Computer Name: USER-ECEEA47CDB
Event Code: 7023
Message: Служба «HID Input Service» завершена из-за ошибки
Не удается найти указанный файл.

Record Number: 5
Source Name: Service Control Manager
Time Written: 20100102163456.000000+120
Event Type: ошибка
User:

Computer Name: USER-ECEEA47CDB
Event Code: 6005
Message: Запущена служба журнала событий.

Record Number: 4
Source Name: EventLog
Time Written: 20100102163439.000000+120
Event Type: информация
User:

Computer Name: USER-ECEEA47CDB
Event Code: 6009
Message: Microsoft (R) Windows 2000 (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.

Record Number: 3
Source Name: EventLog
Time Written: 20100102163439.000000+120
Event Type: информация
User:

Computer Name: USER-ECEEA47CDB
Event Code: 6006
Message: Служба журнала событий остановлена.

Record Number: 2
Source Name: EventLog
Time Written: 20100102163330.000000+120
Event Type: информация
User:

Computer Name: USER-ECEEA47CDB
Event Code: 4202
Message: Система обнаружила, что сетевой адаптер DEVICETCPIP_{C06E03B6-21D7-406F-8587-180B1638F807} был отключен от сети, и сетевая
конфигурация этого адаптера была освобождена. Если сетевой адаптер не был
отключен, то возможно, что он неисправен. Чтобы получить обновленные
драйверы, обратитесь к вендору.

Record Number: 1
Source Name: Tcpip
Time Written: 20100102153303.000000+120
Event Type: информация
User:

=====Application event log=====

Computer Name: USER-ECEEA47CDB
Event Code: 1001
Message: User profile hive cleanup service version 1.6.30.0 started successfully.

Record Number: 5
Source Name: UPHClean
Time Written: 20100102163454.000000+120
Event Type: информация
User:

Computer Name: USER-ECEEA47CDB
Event Code: 1
Message:
Record Number: 4
Source Name: Bonjour Service
Time Written: 20100102163449.000000+120
Event Type: информация
User:

Computer Name: USER-ECEEA47CDB
Event Code: 105
Message: The service was started.

Record Number: 3
Source Name: Creative Service for CDROM Access
Time Written: 20100102163448.000000+120
Event Type: информация
User:

Computer Name: USER-ECEEA47CDB
Event Code: 1010
Message: User profile hive cleanup service stopped successfully.

Record Number: 2
Source Name: UPHClean
Time Written: 20100102163328.000000+120
Event Type: информация
User:

Computer Name: USER-ECEEA47CDB
Event Code: 1401
Message: The following handles in user profile hive USER-ECEEA47CDBAdmin (S-1-5-21-1935655697-1177238915-682003330-500) have been remapped because they were preventing the profile from unloading successfully:

svchost.exe (1296)
HKCUSoftwareMicrosoftWindows NTCurrentVersionNetworkLocation Awareness (0x3d8)

Record Number: 1
Source Name: UPHClean
Time Written: 20100102163327.000000+120
Event Type: информация
User: USER-ECEEA47CDBAdmin

======Environment variables======

«ComSpec»=%SystemRoot%system32cmd.exe
«Path»=%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem
«windir»=%SystemRoot%
«FP_NO_HOST_CHECK»=NO
«OS»=Windows_NT
«PROCESSOR_ARCHITECTURE»=x86
«PROCESSOR_LEVEL»=15
«PROCESSOR_IDENTIFIER»=x86 Family 15 Model 2 Stepping 9, GenuineIntel
«PROCESSOR_REVISION»=0209
«NUMBER_OF_PROCESSORS»=1
«PATHEXT»=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
«TEMP»=%SystemRoot%TEMP
«TMP»=%SystemRoot%TEMP

---

EOF

---

[ju61]

Добрый вечер. Я её найти не мог. Потом просто снял задачу и всё. Скачал RSIT, но она мне выдала только один лог.
Logfile of random’s system information tool 1.08 (written by random/random)
Run by Administrator at 2010-11-25 08:56:07
Microsoft Windows XP Professional Service Pack 3
System drive C: has 17 GB (45%) free of 38 GB
Total RAM: 1535 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:58:46, on 25.11.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:WINDOWS.0System32smss.exe
C:WINDOWS.0system32winlogon.exe
C:WINDOWS.0system32services.exe
C:WINDOWS.0system32lsass.exe
C:WINDOWS.0system32svchost.exe
C:WINDOWS.0System32svchost.exe
C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
C:WINDOWS.0Explorer.EXE
C:PROGRA~1ALWILS~1Avast5avastUI.exe
C:WINDOWS.0system32ctfmon.exe
C:Program FilesBitCometBitComet.exe
C:Program FilesskypePhoneSkype.exe
C:PROGRA~1DUMETE~1DUMeter.exe
C:WINDOWS.0system32spoolsv.exe
C:Program FilesskypePlugin ManagerskypePM.exe
C:Program FilesDU MeterDUMeterSvc.exe
C:WINDOWS.0system32nvsvc32.exe
C:Program FilesOperaopera.exe
C:WINDOWS.0system32wuauclt.exe
C:WINDOWS.0system32svchost.exe
C:DocumentsAdministratorРабочий столRSIT.exe
C:Program Filestrend microAdministrator.exe

R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.smaxi.net
R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.smaxi.net
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.smaxi.net
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
F2 — REG:system.ini: UserInit=C:WINDOWS.0system32ezShellStart.exe
O1 — Hosts file is located at: C:WINDOWS.0System32driversetc from reset hostshosts
O1 — Hosts: ::1 localhost
O2 — BHO: BitComet ClickCapture — {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll
O2 — BHO: Спутник@Mail.Ru — {8984B388-A5BB-4DF7-B274-77B879E179DB} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O2 — BHO: Ask Search Assistant BHO — {9CB65201-89C4-402c-BA80-02D8C59F9B1D} — (no file)
O2 — BHO: Ask Toolbar BHO — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O2 — BHO: Ask Toolbar BHO — {FE063DB1-4EC0-403e-8DD8-394C54984B2C} — (no file)
O3 — Toolbar: Ask Toolbar — {FE063DB9-4EC0-403e-8DD8-394C54984B2C} — (no file)
O3 — Toolbar: Nero Toolbar — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O3 — Toolbar: (no name) — {91397D20-1446-11D4-8AF4-0040CA1127B6} — (no file)
O3 — Toolbar: Спутник@Mail.Ru — {09900DE8-1DCA-443F-9243-26FF581438AF} — C:Program FilesMail.RuSputnikMailRuSputnik.dll
O4 — HKLM..Run: [avast5] C:PROGRA~1ALWILS~1Avast5avastUI.exe /nogui
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWS.0system32NvCpl.dll,NvStartup
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWS.0system32ctfmon.exe
O4 — HKCU..Run: [BitComet] «C:Program FilesBitCometBitComet.exe» /tray
O4 — HKCU..Run: [Skype] «C:Program Filesskype\PhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [DU Meter] C:Program FilesDU MeterDUMeter.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWS.0system32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [VistaIcon] C:Program FilesVistaDriveIconVistaDrv.exe (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWS.0system32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-20..RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWS.0system32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUSS-1-5-18..RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWS.0system32CTFMON.EXE (User ‘Default user’)
O4 — HKUS.DEFAULT..RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User ‘Default user’)
O8 — Extra context menu item: &З&агрузить &с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 — Extra context menu item: &З&агрузить все видео файлы с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 — Extra context menu item: &З&агрузить все с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: BitComet — {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} — res://C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll/206 (file missing)
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWS.0Network Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWS.0Network Diagnosticxpnetdiag.exe
O16 — DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} — http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSkype4COM.dll (file missing)
O22 — SharedTaskScheduler: Предзагрузчик Browseui — {438755C2-A8BA-11D1-B96B-00A0C90312E1} — C:WINDOWS.0system32browseui.dll
O22 — SharedTaskScheduler: Демон кэша категорий компонентов — {8C7461EF-2B13-11d2-BE35-3078302C2030} — C:WINDOWS.0system32browseui.dll
O23 — Service: avast! Antivirus — AVAST Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Mail Scanner — AVAST Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Web Scanner — AVAST Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: DU Meter Service (DUMeterSvc) — Hagel Technologies Ltd. — C:Program FilesDU MeterDUMeterSvc.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWS.0system32services.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWS.0system32imapi.exe
O23 — Service: NBService — Nero AG — C:Program FilesNeroNero 7Nero BackItUpNBService.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWS.0system32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWS.0system32services.exe
O23 — Service: Диспетчер сеанса справки для удаленного рабочего стола (RDSessMgr) — Корпорация Майкрософт — C:WINDOWS.0system32sessmgr.exe
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWS.0System32SCardSvr.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWS.0System32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWS.0system32wbemwmiapsrv.exe

—
End of file — 7680 bytes

======Scheduled tasks folder======

C:WINDOWS.0tasksAWC AutoSweep.job
C:WINDOWS.0tasksAWC Update.job
C:WINDOWS.0tasksScheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll [2008-08-11 656696]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{8984B388-A5BB-4DF7-B274-77B879E179DB}]
MailRuBHO Class — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2010-09-28 1145016]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9CB65201-89C4-402c-BA80-02D8C59F9B1D}]
Ask Search Assistant BHO

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{D4027C7F-154A-4066-A1AD-4243D8127440}]
Nero Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2010-06-10 1233288]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
Ask Toolbar BHO

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{FE063DB9-4EC0-403e-8DD8-394C54984B2C} —
{D4027C7F-154A-4066-A1AD-4243D8127440} — Nero Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2010-06-10 1233288]
{91397D20-1446-11D4-8AF4-0040CA1127B6}
{09900DE8-1DCA-443F-9243-26FF581438AF} — Спутник@Mail.Ru — C:Program FilesMail.RuSputnikMailRuSputnik.dll [2010-09-28 1145016]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«avast5″=C:PROGRA~1ALWILS~1Avast5avastUI.exe [2010-09-07 2838912]
«NvCplDaemon»=C:WINDOWS.0system32NvCpl.dll [2006-10-22 7700480]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWS.0system32ctfmon.exe [2008-04-14 25088]
«BitComet»=C:Program FilesBitCometBitComet.exe [2008-12-03 2514744]
«Skype»=C:Program Filesskype\PhoneSkype.exe [2010-09-02 13351304]
«DU Meter»=C:Program FilesDU MeterDUMeter.exe [2010-08-31 2941984]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdvanced SystemCare 3]
C:Program FilesIObitAdvanced SystemCare 3AWC.exe [2009-06-22 2331984]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCmaudio]
RunDll32 cmicnfg.cpl,CMICtrlWnd []

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvCplDaemon]
C:WINDOWS.0system32NvCpl.dll [2006-10-22 7700480]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNvMediaCenter]
C:WINDOWS.0system32NvMcTray.dll [2006-10-22 86016]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregnwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregReset_Hosts]
C:Program FilesReset_hostsReset hosts.exe [2010-07-20 281072]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSoundMan]
C:WINDOWS.0SOUNDMAN.EXE [2009-11-13 577536]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregVistaIcon]
C:Program FilesVistaDriveIconVistaDrv.exe [2008-01-02 132096]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWS.0system32WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{E54729E8-BB3D-4270-9D49-7389EA579090}»=C:WINDOWS.0system32EZUPBH~1.DLL [2010-11-04 51656]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«HonorAutoRunSetting»=1
«NoResolveSearch»=1

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«C:Program FilesOperaopera.exe»=»C:Program FilesOperaopera.exe:*:Enabled:Opera Internet Browser»
«C:Program FilesMail.RuSputnikSputnikFlashPlayer.exe»=»C:Program FilesMail.RuSputnikSputnikFlashPlayer.exe:*:Enabled:Sputnik@Mail.Ru flash player»
«C:Program FilesMail.RuSputnikSputnikHelper.exe»=»C:Program FilesMail.RuSputnikSputnikHelper.exe:*:Enabled:Sputnik@Mail.Ru helper object»
«C:Program FilesskypePlugin ManagerskypePM.exe»=»C:Program FilesskypePlugin ManagerskypePM.exe:*:Enabled:Skype Extras Manager»
«C:Program FilesRelevantKnowledgerlvknlg.exe»=»C:Program FilesRelevantKnowledgerlvknlg.exe:*:Enabled:rlvknlg.exe»
«C:Program FilesskypePhoneSkype.exe»=»C:Program FilesskypePhoneSkype.exe:*:Enabled:Skype «

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»

======List of files/folders created in the last 1 months======

2010-11-25 08:53:34 —-D—- C:Program Filestrend micro
2010-11-25 08:35:08 —-D—- C:WINDOWS.0LastGood
2010-11-23 11:37:19 —-D—- C:Program FilesXPC Tools
2010-11-23 09:11:09 —-D—- C:Program FilesCarambis
2010-11-22 16:47:15 —-D—- C:DocumentsAll UsersApplication DataHagel Technologies
2010-11-22 16:47:13 —-D—- C:Program FilesDU Meter
2010-11-22 00:20:30 —-HDC—- C:WINDOWS.0$NtUninstallKB961118$
2010-11-20 23:53:13 —-D—- C:DocumentsAll UsersApplication DataAcronis
2010-11-20 23:42:55 —-A—- C:WINDOWS.0system32driverssnapman.sys
2010-11-20 23:42:19 —-D—- C:Program FilesAcronis
2010-11-20 13:19:51 —-D—- C:WINDOWS.0system32XPSViewer
2010-11-20 13:19:48 —-D—- C:Program FilesMSBuild
2010-11-20 13:17:52 —-N—- C:WINDOWS.0system32xpsshhdr.dll
2010-11-20 13:17:52 —-N—- C:WINDOWS.0system32prntvpt.dll
2010-11-20 13:17:51 —-N—- C:WINDOWS.0system32xpssvcs.dll
2010-11-20 13:17:50 —-D—- C:bac592728c604f48423414
2010-11-20 13:17:50 —-D—- bac592728c604f48423414
2010-11-20 13:11:04 —-D—- C:ce41841e8116c8ec7557dc941201a8
2010-11-20 13:11:04 —-D—- ce41841e8116c8ec7557dc941201a8
2010-11-20 11:11:45 —-A—- C:WINDOWS.0system32XCEEDZIP.DLL
2010-11-20 11:11:45 —-A—- C:WINDOWS.0system32XceedCry.dll
2010-11-20 11:11:43 —-D—- C:Program FilesDriver Magician
2010-11-19 18:45:36 —-D—- C:Program FilesPaint.NET
2010-11-19 18:41:43 —-D—- C:WINDOWS.0system32en-US
2010-11-19 18:40:50 —-RSD—- C:WINDOWS.0assembly
2010-11-19 18:40:07 —-D—- C:WINDOWS.0Microsoft.NET
2010-11-19 18:38:38 —-RHD—- C:AHCache
2010-11-19 18:38:38 —-RHD—- AHCache
2010-11-17 16:01:11 —-A—- C:fraglist.txt
2010-11-17 16:01:11 —-A—- fraglist.txt
2010-11-16 23:41:00 —-A—- C:WINDOWS.0system32wiaaut.dll
2010-11-13 17:13:26 —-RD—- C:Program FilesDeviceDoctor-Portable
2010-11-13 17:01:35 —-D—- C:DocumentsAdministratorApplication DataDeviceDoctorSoftware
2010-11-07 11:58:34 —-D—- C:DocumentsAll UsersApplication DataNVIDIA
2010-11-04 14:01:11 —-A—- C:WINDOWS.0system32ezsvc7x.dll
2010-11-04 14:01:11 —-A—- C:WINDOWS.0system32ezsvc7.dll
2010-11-04 14:00:48 —-A—- C:WINDOWS.0system32ezUninst.exe
2010-11-04 14:00:47 —-A—- C:WINDOWS.0system32ezUPBHook.dll
2010-11-04 14:00:47 —-A—- C:WINDOWS.0system32ezShellStart.exe
2010-11-04 14:00:47 —-A—- C:WINDOWS.0system32ezSetup.exe
2010-11-04 14:00:47 —-A—- C:WINDOWS.0system32ezMAPIHelper.exe
2010-11-04 13:59:45 —-D—- C:Program FilesEasyBits For Kids
2010-11-03 13:36:18 —-D—- C:Program Files7-Zip
2010-11-01 18:26:52 —-D—- C:DocumentsAll UsersApplication DataDFX
2010-11-01 18:26:45 —-D—- C:Program FilesDFX
2010-10-28 18:57:45 —-D—- C:DocumentsAdministratorApplication DataCarambis
2010-10-28 17:47:40 —-D—- C:Program FilesCCleaner
2010-10-27 17:23:36 —-A—- C:WINDOWS.0avisplitter.ini
2010-10-27 17:23:28 —-A—- C:WINDOWS.0system32yv12vfw.dll
2010-10-27 17:23:28 —-A—- C:WINDOWS.0system32xvidcore.dll
2010-10-27 17:23:27 —-A—- C:WINDOWS.0system32xvidvfw.dll
2010-10-27 17:23:27 —-A—- C:WINDOWS.0system32ff_vfw.dll.manifest
2010-10-27 17:23:27 —-A—- C:WINDOWS.0system32ff_vfw.dll

======List of files/folders modified in the last 1 months======

2010-11-25 08:58:35 —-D—- C:WINDOWS.0Temp
2010-11-25 08:57:42 —-D—- C:Program FilesBitComet
2010-11-25 08:53:48 —-D—- C:WINDOWS.0Prefetch
2010-11-25 08:53:34 —-RD—- C:Program Files
2010-11-25 08:53:34 —-RD—- Program Files
2010-11-25 08:43:37 —-D—- C:WINDOWS.0system32CatRoot
2010-11-25 08:43:05 —-HD—- C:WINDOWS.0inf
2010-11-25 08:43:05 —-D—- C:WINDOWS.0
2010-11-25 08:43:05 —-D—- WINDOWS.0
2010-11-25 08:35:07 —-D—- C:WINDOWS.0system32CatRoot2
2010-11-25 08:33:43 —-D—- C:DocumentsAdministratorApplication DataSkype
2010-11-25 08:33:06 —-D—- C:DocumentsAdministratorApplication DataskypePM
2010-11-24 23:09:43 —-A—- C:WINDOWS.0SchedLgU.Txt
2010-11-24 09:32:25 —-D—- C:WINDOWS.0system32driversetc
2010-11-24 09:31:11 —-D—- C:WINDOWS.0system32driversetc from reset hosts
2010-11-23 22:37:58 —-D—- C:WINDOWS.0system32drivers
2010-11-23 17:49:30 —-SHD—- C:WINDOWS.0Installer
2010-11-23 17:49:30 —-D—- C:WINDOWS.0system32appmgmt
2010-11-23 17:49:29 —-D—- C:WINDOWS.0WinSxS
2010-11-23 17:48:50 —-SHD—- C:Config.Msi
2010-11-23 17:48:50 —-SHD—- Config.Msi
2010-11-23 17:48:42 —-D—- C:WINDOWS.0system32
2010-11-23 14:24:16 —-SHD—- C:WINDOWS.0CSC
2010-11-23 11:37:34 —-A—- C:WINDOWS.0system32BASSMOD.dll
2010-11-23 09:11:08 —-HD—- C:Program FilesInstallShield Installation Information
2010-11-22 00:20:36 —-D—- C:WINDOWS.0system32dllcache
2010-11-22 00:18:49 —-A—- C:WINDOWS.0system32PerfStringBackup.INI
2010-11-21 21:17:05 —-D—- C:DocumentsAdministratorApplication DataMedia Player Classic
2010-11-21 21:17:00 —-D—- C:WINDOWS.0Debug
2010-11-20 14:04:10 —-A—- C:WINDOWS.0NeroDigital.ini
2010-11-20 13:19:42 —-RSD—- C:WINDOWS.0Fonts
2010-11-20 13:18:15 —-D—- C:WINDOWS.0system32spool
2010-11-19 20:10:39 —-D—- C:Program FilesKMPlayer
2010-11-19 18:43:19 —-D—- C:WINDOWS.0system32ru-ru
2010-11-19 18:43:03 —-D—- C:WINDOWS.0system32mui
2010-11-18 09:33:07 —-D—- C:WINDOWS.0Network Diagnostic
2010-11-15 21:28:40 —-D—- C:DocumentsAdministratorApplication DataAudacity
2010-11-11 11:35:51 —-A—- C:WINDOWS.0system32MRT.exe
2010-11-07 16:03:10 —-D—- C:WINDOWS.0system32ReinstallBackups
2010-11-07 00:38:11 —-SD—- C:WINDOWS.0Tasks
2010-11-06 21:01:18 —-D—- C:WINDOWS.0system
2010-11-05 20:18:42 —-D—- C:Program FilesWindows Media Player
2010-11-05 20:18:42 —-AD—- C:Program Filesbin
2010-11-04 20:15:14 —-A—- C:WINDOWS.0DjVuPro.INI
2010-10-27 17:23:50 —-D—- C:Program FilesK-Lite Codec Pack

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Intel — фильтр шины AGP; C:WINDOWS.0system32DRIVERSagp440.sys [2008-04-13 42368]
R0 snapman;Acronis Snapshots Manager; C:WINDOWS.0system32DRIVERSsnapman.sys [2010-11-21 114048]
R0 sptd;sptd; C:WINDOWS.0System32Driverssptd.sys [2010-09-02 691696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWS.0system32driversAavmker4.sys [2010-09-07 28880]
R1 aswSP;aswSP; C:WINDOWS.0system32driversaswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:WINDOWS.0system32driversaswTdi.sys [2010-09-07 46672]
R1 intelppm;Драйвер Intel процессора; C:WINDOWS.0system32DRIVERSintelppm.sys [2008-04-14 40704]
R2 aswFsBlk;aswFsBlk; C:WINDOWS.0system32driversaswFsBlk.sys [2010-09-07 17744]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWS.0system32driversaswMon2.sys [2010-09-07 100176]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWS.0system32driversALCXWDM.SYS [2008-09-24 4122368]
R3 aswRdr;aswRdr; C:WINDOWS.0system32driversaswRdr.sys [2010-09-07 23376]
R3 DUMeterDrv;Hagel Technologies DU Meter traffic accounting driver; ??C:Program FilesDU MeterDUM_XP32.SYS []
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWS.0system32DRIVERShidusb.sys [2008-04-13 10368]
R3 mouhid;Драйвер мыши HID; C:WINDOWS.0system32DRIVERSmouhid.sys [2001-10-19 12160]
R3 nv;nv; C:WINDOWS.0system32DRIVERSnv4_mini.sys [2006-10-22 3994624]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet адаптер, драйвер для NT; C:WINDOWS.0system32DRIVERSRTL8139.SYS [2008-04-13 20992]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWS.0system32DRIVERSusbuhci.sys [2008-04-13 20608]
S3 agfstkc8;agfstkc8; C:WINDOWS.0system32driversagfstkc8.sys []
S3 CCDECODE;Closed Caption декодер; C:WINDOWS.0system32DRIVERSCCDECODE.sys [2008-04-13 17024]
S3 cmuda;C-Media WDM Audio Interface; C:WINDOWS.0system32driverscmuda.sys [2006-06-09 1373120]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWS.0system32driversMSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWS.0system32DRIVERSNABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWS.0system32DRIVERSNdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:WINDOWS.0system32DRIVERSSLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:WINDOWS.0system32DRIVERSStreamIP.sys [2008-04-13 15232]
S3 usbaudio;Аудио драйвер USB (WDM); C:WINDOWS.0system32driversusbaudio.sys [2008-04-13 60032]
S3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWS.0system32DRIVERSusbccgp.sys [2008-04-13 32128]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWS.0system32DRIVERSUSBSTOR.SYS [2008-04-13 26368]
S3 usbvideo;USB-видеоустройство (WDM); C:WINDOWS.0System32Driversusbvideo.sys [2008-04-13 121984]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWS.0system32DRIVERSWSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWS.0system32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWS.0system32DRIVERSwudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-09-07 40384]
R2 DUMeterSvc;DU Meter Service; C:Program FilesDU MeterDUMeterSvc.exe [2010-08-31 1411616]
R2 ezSharedSvc;Easybits Shared Services for Windows; C:WINDOWS.0system32svchost.exe [2008-04-14 14336]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWS.0system32nvsvc32.exe [2006-10-22 159810]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-09-07 40384]
S3 aspnet_state;ASP.NET State Service; C:WINDOWS.0Microsoft.NETFrameworkv2.0.50727aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWS.0Microsoft.NETFrameworkv2.0.50727mscorsvw.exe [2008-07-30 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:WINDOWS.0Microsoft.NETFrameworkv3.0WPFPresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:WINDOWS.0Microsoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:Program FilesNeroNero 7Nero BackItUpNBService.exe [2006-08-08 208896]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWS.0system32svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Служба общего доступа к портам Net.Tcp; c:WINDOWS.0Microsoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2008-07-29 132096]

---

EOF

---

[ju61]

GERBER, Спасибо за ответ, будем пробовать.

[ju61]

Добрый день. Ерунда какая-то. Не нашёл комп этого файла. Посмотрел на втором компе- там сразу нашёл, а на этом нет.

[ju61]

Добрый вечер. Не получается выполнить данную операцию. В конце сканирования RSIT— выскакивает окошко с надписью Отказано в доступе.

[ju61]

Logfile of random’s system information tool 1.06 (written by random/random)
Run by Admin at 2010-01-31 20:19:07
Microsoft Windows XP Professional Service Pack 2
System drive C: has 16 GB (42%) free of 38 GB
Total RAM: 1279 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:19:51, on 31.01.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:Program FilesBonjourmDNSResponder.exe
C:WINDOWSsystem32CTsvcCDA.exe
C:WINDOWSnotepad.exe
C:Program FilesCreativeShared FilesCTDevSrv.exe
C:Program FilesNeroNero 7InCDInCDsrv.exe
C:Program FilesJavajre6binjqs.exe
C:WINDOWSSOUNDMAN.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesKeyboard DriverStartAutorun.exe
C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe
C:Program FilesAlwil SoftwareAvast5avastUI.exe
C:Program FilesKeyboard DriverKMConfig.exe
C:Program FilesKeyboard DriverKMWDSrv.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
C:Program FilesBitCometBitComet.exe
C:PROGRA~1skypePhoneSkype.exe
C:Program FilesSpybot — Search & DestroyTeaTimer.exe
C:WINDOWSCommonBinWinCinemaMgr.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesKeyboard DriverKMProcess.exe
C:WINDOWSsystem32uphclean.exe
C:Program FilesCommon FilesLogishrdLQCVFXCOCIManager.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesskypePlugin ManagerskypePM.exe
C:Program FilesOpera AC 3.5.1opera.exe
C:Documents and SettingsAdmin.USER-ECEEA47CDBРабочий столRSIT.exe
C:Program Filestrend microAdmin.exe

R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSPCHealthHelpCtrSystempanelsblank.htm
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
R3 — URLSearchHook: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
R3 — URLSearchHook: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
O2 — BHO: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O2 — BHO: BitComet ClickCapture — {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll
O2 — BHO: Spybot-S&D IE Protection — {53707962-6F74-2D53-2644-206D7942484F} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll
O2 — BHO: Google Dictionary Compression sdch — {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O2 — BHO: Ask Toolbar BHO — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: kikin Plugin — {E601996F-E400-41CA-804B-CD6373A7EEE2} — C:Program Fileskikinie_kikin.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 — BHO: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O3 — Toolbar: PandoraTV Toolbar — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O3 — Toolbar: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [BigDog305] C:WINDOWSVM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [KMCONFIG] C:Program FilesKeyboard DriverStartAutorun.exe KMConfig.exe
O4 — HKLM..Run: [LogitechQuickCamRibbon] «C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe» /hide
O4 — HKLM..Run: [avast5] «C:Program FilesAlwil SoftwareAvast5avastUI.exe» /nogui
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [BitComet] «C:Program FilesBitCometBitComet.exe» /tray
O4 — HKCU..Run: [Skype] «C:PROGRA~1skypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot — Search & DestroyTeaTimer.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [LinkDel] linkdel.cmd (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — S-1-5-18 Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘SYSTEM’)
O4 — .DEFAULT Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘Default user’)
O4 — Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe
O4 — Global Startup: InterVideo WinCinema Manager.lnk = C:WINDOWSCommonBinWinCinemaMgr.exe
O8 — Extra context menu item: &Winamp Search — C:Documents and SettingsAll Users.WINDOWSApplication DataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
O8 — Extra context menu item: &З&агрузить &с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 — Extra context menu item: &З&агрузить все видео файлы с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 — Extra context menu item: &З&агрузить все с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O9 — Extra button: (no name) — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra ‘Tools’ menuitem: My kikin — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: BitComet — {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} — res://C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll/206 (file missing)
O9 — Extra button: (no name) — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra ‘Tools’ menuitem: Spybot — Search & Destroy Configuration — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O10 — Unknown file in Winsock LSP: c:windowssystem32nwprovau.dll
O16 — DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) — http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O18 — Filter: x-sdch — {B1759355-3EEC-4C1E-B0F1-B719FE26E377} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: Bonjour Service — Apple Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: Creative Service for CDROM Access — Creative Technology Ltd — C:WINDOWSsystem32CTsvcCDA.exe
O23 — Service: CT Device Query service (CTDevice_Srv) — Creative Technology Ltd — C:Program FilesCreativeShared FilesCTDevSrv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: InCD Helper (InCDsrv) — Nero AG — C:Program FilesNeroNero 7InCDInCDsrv.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: Keyboard And Mouse Communication Service (KMWDSERVICE) — UASSOFT.COM — C:Program FilesKeyboard DriverKMWDSrv.exe
O23 — Service: Process Monitor (LVPrcSrv) — Logitech Inc. — C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Pml Driver HPZ12 — HP — C:WINDOWSsystem32HPZipm12.exe
O23 — Service: SageTV — Realtek Semiconductor Corporation — (no file)
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe

—
End of file — 11909 bytes

======Scheduled tasks folder======

C:WINDOWStasksMicrosoft_Hardware_Launch_IPoint_exe.job
C:WINDOWStasksScheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll [2008-08-11 656696]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection — C:PROGRA~1Spybot — Search & DestroySDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll [2009-09-23 762864]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll [2009-04-27 470512]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-03-09 35840]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E601996F-E400-41CA-804B-CD6373A7EEE2}]
kikin Plugin — C:Program Fileskikinie_kikin.dll [2009-11-06 642752]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-11-13 73728]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{ecdee021-0d17-467f-a1ff-c7a115230949}]
free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]
{D4027C7F-154A-4066-A1AD-4243D8127440} — PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]
{ecdee021-0d17-467f-a1ff-c7a115230949} — free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} — IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2009-11-13 7700480]
«nwiz»=nwiz.exe /install []
«BigDog305″=C:WINDOWSVM305_STI.EXE [2005-11-03 61440]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2007-04-16 577536]
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]
«KMCONFIG»=C:Program FilesKeyboard DriverStartAutorun.exe [2008-05-30 212992]
«LogitechQuickCamRibbon»=C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe [2009-10-14 2793304]
«avast5″=C:Program FilesAlwil SoftwareAvast5avastUI.exe [2010-01-29 2757512]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]
«BitComet»=C:Program FilesBitCometBitComet.exe [2008-12-03 2514744]
«Skype»=C:PROGRA~1skypePhoneSkype.exe [2008-11-07 21633320]
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe [2009-03-05 2260480]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-02-27 35696]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCTZDetec.exe]
C:Program FilesCreativeCreative Media LiteCTZDetec.exe [2009-11-13 368640]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHP Software Update]
C:Program FilesHPHP Software UpdateHPWuSchd2.exe [2004-02-12 49152]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregInCD]
C:Program FilesNeroNero 7InCDInCDldr.exe [2006-06-05 27136]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregIntelliPoint]
C:Program FilesMicrosoft IntelliPointipoint.exe [2009-01-07 1468296]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
C:Program FilesCommon FilesAheadLibNeroCheck.exe [2009-11-13 155648]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSoftAuto.exe]
C:Program FilesCreativeSoftware Update 3SoftAuto.exe [2009-11-13 405504]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSunJavaUpdateSched]
C:Program FilesJavajre6binjusched.exe [2009-03-09 148888]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregswg]
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-02-23 39408]

C:Documents and SettingsAll Users.WINDOWSГлавное менюПрограммыАвтозагрузка
InterVideo WinCinema Manager.lnk — C:WINDOWSCommonBinWinCinemaMgr.exe

C:Documents and SettingsAdmin.USER-ECEEA47CDBГлавное менюПрограммыАвтозагрузка
Logitech . Регистрация Продукта.lnk — C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm.sys]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoResolveTrack»=
«NoResolveSearch»=

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesskypePhoneSkype.exe»=»C:Program FilesskypePhoneSkype.exe:*:Enabled:Skype»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5c569344-744a-11dd-b4fe-000129239d09}]
shellopencommand — rundll32.exe .desktop.dll,InstallM

======List of files/folders created in the last 1 months======

2010-01-28 18:58:06 —-A—- C:WINDOWSsystem32aswBoot.exe
2010-01-28 18:52:45 —-A—- C:Program Filessetup_av_free_rus.exe
2010-01-28 18:31:20 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataAlwil Software
2010-01-27 21:00:44 —-D—- C:Program Filestrend micro
2010-01-27 21:00:20 —-D—- C:rsit
2010-01-23 19:48:46 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataLeadertech
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32LVUI2.dll
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32lvcodec2.dll
2010-01-23 19:47:46 —-A—- C:WINDOWSsystem32LVUI2RC.dll
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvcoinst.ini
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvci12101110.dll
2010-01-23 19:45:11 —-D—- C:Program FilesCommon FilesLogiShrd
2010-01-23 19:45:09 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataLogiShrd
2010-01-23 19:45:06 —-D—- C:Program FilesLogitech
2010-01-23 19:11:44 —-A—- C:Program Filesccsetup227.exe
2010-01-23 17:36:51 —-A—- C:WINDOWSwininit.ini
2010-01-20 12:11:06 —-D—- C:Program FilesCommon Fileswm
2010-01-04 22:21:22 —-D—- C:Program FilesSpybot — Search & Destroy
2010-01-04 22:21:22 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataSpybot — Search & Destroy
2010-01-04 22:05:26 —-A—- C:Program Filesspybotsd162.exe

======List of files/folders modified in the last 1 months======

2010-01-31 20:19:15 —-D—- C:WINDOWSPrefetch
2010-01-31 20:16:45 —-D—- C:WINDOWSTemp
2010-01-31 20:16:21 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataSkype
2010-01-31 20:15:30 —-D—- C:WINDOWSsystem32drivers
2010-01-31 20:05:42 —-D—- C:Program FilesCommon Files
2010-01-31 20:05:42 —-AD—- C:WINDOWSsystem32
2010-01-31 20:02:41 —-D—- C:Program FilesBitComet
2010-01-31 20:01:17 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataskypePM
2010-01-31 19:58:31 —-A—- C:WINDOWSSchedLgU.Txt
2010-01-31 19:58:29 —-D—- C:WINDOWSsystem32CatRoot2
2010-01-30 21:50:02 —-AD—- C:WINDOWS
2010-01-28 18:58:36 —-SHD—- C:WINDOWSInstaller
2010-01-28 18:58:36 —-SHD—- C:Config.Msi
2010-01-28 18:58:35 —-D—- C:WINDOWSWinSxS
2010-01-28 18:52:45 —-RD—- C:Program Files
2010-01-28 18:43:19 —-D—- C:Program FilesAlwil Software
2010-01-27 10:02:15 —-AHD—- C:WINDOWSinf
2010-01-25 17:31:43 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataMedia Player Classic
2010-01-24 13:04:17 —-D—- C:WINDOWSsystem32config
2010-01-23 19:48:14 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-01-23 19:48:09 —-D—- C:WINDOWStwain_32
2010-01-23 19:47:59 —-D—- C:WINDOWSsystem32ReinstallBackups
2010-01-23 19:47:46 —-DC—- C:WINDOWSsystem32DRVSTORE
2010-01-08 20:03:34 —-D—- C:WINDOWSsecurity
2010-01-08 20:03:34 —-D—- C:WINDOWSrepair
2010-01-08 20:03:34 —-D—- C:WINDOWSLogs
2010-01-08 20:03:34 —-D—- C:Program FilesWinamp Toolbar
2010-01-08 20:03:34 —-D—- C:Program Filesfree-downloads.net
2010-01-08 20:03:34 —-D—- C:Program FilesFirebird
2010-01-08 20:03:34 —-D—- C:CA_LIC
2010-01-08 20:03:33 —-D—- C:Program FilesWindows Media Player
2010-01-08 20:03:33 —-D—- C:Program FilesMicrosoft Office
2010-01-05 19:05:28 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataIObit
2010-01-04 18:35:41 —-A—- C:WINDOWSDjVuPro.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2010-01-28 28240]
R1 aswSP;aswSP; C:WINDOWSsystem32driversaswSP.sys [2010-01-28 163280]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2010-01-28 46672]
R1 InCDPass;InCDPass; C:WINDOWSsystem32driversInCDPass.sys [2006-04-05 29568]
R1 incdrm;InCD Reader; C:WINDOWSsystem32driversInCDRm.sys [2006-04-05 33792]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2006-12-22 40448]
R1 SCDEmu;SCDEmu; C:WINDOWSsystem32driversSCDEmu.sys [2007-08-07 33052]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32driversaswFsBlk.sys [2010-01-28 19024]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2010-01-28 100432]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2008-09-24 4122368]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2010-01-28 23376]
R3 FilterService;UVC Filter Service; C:WINDOWSsystem32DRIVERSlvuvcflt.sys [2009-10-07 23832]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:WINDOWSsystem32DRIVERSLVPr2Mon.sys [2009-10-07 25752]
R3 LVRS;Logitech RightSound Filter Driver; C:WINDOWSsystem32DRIVERSlvrs.sys [2009-10-07 266008]
R3 LVUVC;Logitech Webcam 200(UVC); C:WINDOWSsystem32DRIVERSlvuvc.sys [2009-10-07 6756632]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:WINDOWSsystem32DRIVERSpoint32.sys [2009-01-07 27784]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtnicxp.sys [2009-03-25 130432]
R3 usbaudio;Аудио драйвер USB (WDM); C:WINDOWSsystem32driversusbaudio.sys [2004-08-03 59264]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2006-10-23 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2006-10-23 59264]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2006-10-23 20608]
R4 InCDfs;InCD File System; C:WINDOWSsystem32driversInCDFs.sys [2006-04-05 102016]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-17 14848]
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-03 17024]
S3 DynCal;Dynamic Calibration Service; C:WINDOWSsystem32driversDyncal.sys [2006-04-22 8704]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:WINDOWSsystem32DRIVERSHPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:WINDOWSsystem32DRIVERSHPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:WINDOWSsystem32DRIVERSHPZius12.sys [2004-06-21 21744]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:WINDOWSsystem32DRIVERSk750bus.sys [2006-03-13 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSk750mdfl.sys [2006-03-13 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSk750mdm.sys [2006-03-13 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSk750mgmt.sys [2006-03-13 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSk750obex.sys [2006-03-13 79488]
S3 KMWDFilter;KMWDFilter; ??C:WINDOWSSystem32DriversKMWDFilter.SYS []
S3 lvpopflt;Logitech POP Suppression Filter; C:WINDOWSsystem32DRIVERSlvpopflt.sys [2009-10-07 114712]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-03 10880]
S3 nm;Драйвер сетевого монитора; C:WINDOWSsystem32DRIVERSNMnt.sys [2004-08-18 40320]
S3 pcouffin;VSO Software pcouffin; C:WINDOWSSystem32Driverspcouffin.sys [2008-12-23 47360]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:WINDOWSsystem32DRIVERSse44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse44mdm.sys [2006-11-30 97088]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:WINDOWSsystem32DRIVERSse59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:WINDOWSsystem32DRIVERSse59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:WINDOWSsystem32DRIVERSse59unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-03 15360]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2005-07-30 121856]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM); C:WINDOWSsystem32DRIVERSw300bus.sys [2006-03-13 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSw300mdfl.sys [2006-03-13 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSw300mdm.sys [2006-03-13 96352]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSw300mgmt.sys [2006-03-13 87824]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSw300obex.sys [2006-03-13 85696]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S3 ZSMC0305;VIMICRO USB PC Camera V; C:WINDOWSSystem32DriversusbVM305.sys [2005-11-03 390379]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
R2 Bonjour Service;Bonjour Service; C:Program FilesBonjourmDNSResponder.exe [2008-12-12 238888]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:WINDOWSsystem32CTsvcCDA.exe [1999-12-13 44032]
R2 CTDevice_Srv;CT Device Query service; C:Program FilesCreativeShared FilesCTDevSrv.exe [2007-04-02 61440]
R2 InCDsrv;InCD Helper; C:Program FilesNeroNero 7InCDInCDsrv.exe [2006-04-05 791040]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-03-09 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:Program FilesKeyboard DriverKMWDSrv.exe [2008-06-23 208896]
R2 LVPrcSrv;Process Monitor; C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe [2009-10-07 154136]
R2 UPHClean;User Profile Hive Cleanup; C:WINDOWSsystem32uphclean.exe [2006-01-16 241725]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
S2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2009-11-13 36864]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-06-21 182768]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2009-11-13 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2009-11-13 741376]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:WINDOWSsystem32HPZipm12.exe [2009-11-13 65536]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2009-11-13 122880]

---

EOF

---

[ju61]

All processes killed
========== FILES ==========
C:WINDOWSsystem32mz2kJba.exe moved successfully.
C:WINDOWSsystem32j5n4huL.exe moved successfully.
C:WINDOWSsystem32ViU06H2.exe moved successfully.
C:WINDOWSsystem32o87k8qa.exe moved successfully.
C:WINDOWSsystem32EFJ0RVC.exe moved successfully.
C:Program FilesCommon Fileskeylog.txt moved successfully.
C:WINDOWSsystem32stu2.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Admin.USER-ECEEA47CDB
->Temp folder emptied: 23078183 bytes
->Temporary Internet Files folder emptied: 213746 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Apple Safari cache emptied: 17870671 bytes
->Opera cache emptied: 48856224 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.USER-542F7927A5
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: ADMIN~1~USE

User: All Users

User: All Users.WINDOWS

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User.WINDOWS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Kate

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService.NT AUTHORITY.000
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: NetworkService.NT AUTHORITY
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: NetworkService.NT AUTHORITY.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Opera cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%System32 .tmp files removed: 0 bytes
%systemroot%System32dllcache .tmp files removed: 0 bytes
%systemroot%System32drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 125464 bytes
%systemroot%system32configsystemprofileLocal SettingsTemp folder emptied: 0 bytes
%systemroot%system32configsystemprofileLocal SettingsTemporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 8520553 bytes

Total Files Cleaned = 94,00 mb

OTM by OldTimer — Version 3.1.7.1 log created on 01312010_200536

Files moved on Reboot…
C:WINDOWStemp_avast5_Webshlock.txt moved successfully.

Registry entries deleted on Reboot…

[ju61]

Logfile of random’s system information tool 1.06 (written by random/random)
Run by Admin at 2010-01-30 15:59:35
Microsoft Windows XP Professional Service Pack 2
System drive C: has 16 GB (42%) free of 38 GB
Total RAM: 1279 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:00:19, on 30.01.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:WINDOWSSOUNDMAN.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesKeyboard DriverStartAutorun.exe
C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe
C:Program FilesAlwil SoftwareAvast5avastUI.exe
C:Program FilesKeyboard DriverKMConfig.exe
C:Program FilesBonjourmDNSResponder.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesBitCometBitComet.exe
C:PROGRA~1skypePhoneSkype.exe
C:Program FilesSpybot — Search & DestroyTeaTimer.exe
C:WINDOWSsystem32CTsvcCDA.exe
C:Program FilesCreativeShared FilesCTDevSrv.exe
C:Program FilesNeroNero 7InCDInCDsrv.exe
C:WINDOWSCommonBinWinCinemaMgr.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesKeyboard DriverKMWDSrv.exe
C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
C:Program FilesKeyboard DriverKMProcess.exe
C:Program FilesCommon FilesLogishrdLQCVFXCOCIManager.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32uphclean.exe
C:Program FilesskypePlugin ManagerskypePM.exe
C:WINDOWSsystem32wuauclt.exe
C:Documents and SettingsAdmin.USER-ECEEA47CDBРабочий столRSIT.exe
C:Program Filestrend microAdmin.exe

R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSPCHealthHelpCtrSystempanelsblank.htm
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
R3 — URLSearchHook: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
R3 — URLSearchHook: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
F2 — REG:system.ini: UserInit=userinit.exe
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
O2 — BHO: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O2 — BHO: BitComet ClickCapture — {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll
O2 — BHO: Spybot-S&D IE Protection — {53707962-6F74-2D53-2644-206D7942484F} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll
O2 — BHO: Google Dictionary Compression sdch — {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O2 — BHO: Ask Toolbar BHO — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: kikin Plugin — {E601996F-E400-41CA-804B-CD6373A7EEE2} — C:Program Fileskikinie_kikin.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 — BHO: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O3 — Toolbar: PandoraTV Toolbar — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O3 — Toolbar: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [BigDog305] C:WINDOWSVM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [KMCONFIG] C:Program FilesKeyboard DriverStartAutorun.exe KMConfig.exe
O4 — HKLM..Run: [LogitechQuickCamRibbon] «C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe» /hide
O4 — HKLM..Run: [avast5] «C:Program FilesAlwil SoftwareAvast5avastUI.exe» /nogui
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [BitComet] «C:Program FilesBitCometBitComet.exe» /tray
O4 — HKCU..Run: [Skype] «C:PROGRA~1skypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot — Search & DestroyTeaTimer.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [LinkDel] linkdel.cmd (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — S-1-5-18 Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘SYSTEM’)
O4 — .DEFAULT Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘Default user’)
O4 — Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe
O4 — Global Startup: InterVideo WinCinema Manager.lnk = C:WINDOWSCommonBinWinCinemaMgr.exe
O8 — Extra context menu item: &Winamp Search — C:Documents and SettingsAll Users.WINDOWSApplication DataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
O8 — Extra context menu item: &З&агрузить &с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 — Extra context menu item: &З&агрузить все видео файлы с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 — Extra context menu item: &З&агрузить все с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O9 — Extra button: (no name) — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra ‘Tools’ menuitem: My kikin — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: BitComet — {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} — res://C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll/206 (file missing)
O9 — Extra button: (no name) — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra ‘Tools’ menuitem: Spybot — Search & Destroy Configuration — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O10 — Unknown file in Winsock LSP: c:windowssystem32nwprovau.dll
O16 — DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) — http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O18 — Filter: x-sdch — {B1759355-3EEC-4C1E-B0F1-B719FE26E377} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast5AvastSvc.exe
O23 — Service: Bonjour Service — Apple Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: Creative Service for CDROM Access — Creative Technology Ltd — C:WINDOWSsystem32CTsvcCDA.exe
O23 — Service: CT Device Query service (CTDevice_Srv) — Creative Technology Ltd — C:Program FilesCreativeShared FilesCTDevSrv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: InCD Helper (InCDsrv) — Nero AG — C:Program FilesNeroNero 7InCDInCDsrv.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: Keyboard And Mouse Communication Service (KMWDSERVICE) — UASSOFT.COM — C:Program FilesKeyboard DriverKMWDSrv.exe
O23 — Service: Process Monitor (LVPrcSrv) — Logitech Inc. — C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Pml Driver HPZ12 — HP — C:WINDOWSsystem32HPZipm12.exe
O23 — Service: SageTV — Realtek Semiconductor Corporation — (no file)
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe

—
End of file — 11886 bytes

======Scheduled tasks folder======

C:WINDOWStasksMicrosoft_Hardware_Launch_IPoint_exe.job
C:WINDOWStasksScheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll [2008-08-11 656696]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection — C:PROGRA~1Spybot — Search & DestroySDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll [2009-09-23 762864]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll [2009-04-27 470512]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-03-09 35840]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E601996F-E400-41CA-804B-CD6373A7EEE2}]
kikin Plugin — C:Program Fileskikinie_kikin.dll [2009-11-06 642752]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-11-13 73728]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{ecdee021-0d17-467f-a1ff-c7a115230949}]
free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]
{D4027C7F-154A-4066-A1AD-4243D8127440} — PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]
{ecdee021-0d17-467f-a1ff-c7a115230949} — free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} — IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2009-11-13 7700480]
«nwiz»=nwiz.exe /install []
«BigDog305″=C:WINDOWSVM305_STI.EXE [2005-11-03 61440]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2007-04-16 577536]
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]
«KMCONFIG»=C:Program FilesKeyboard DriverStartAutorun.exe [2008-05-30 212992]
«LogitechQuickCamRibbon»=C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe [2009-10-14 2793304]
«avast5″=C:Program FilesAlwil SoftwareAvast5avastUI.exe [2010-01-29 2757512]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]
«BitComet»=C:Program FilesBitCometBitComet.exe [2008-12-03 2514744]
«Skype»=C:PROGRA~1skypePhoneSkype.exe [2008-11-07 21633320]
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe [2009-03-05 2260480]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-02-27 35696]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCTZDetec.exe]
C:Program FilesCreativeCreative Media LiteCTZDetec.exe [2009-11-13 368640]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHP Software Update]
C:Program FilesHPHP Software UpdateHPWuSchd2.exe [2004-02-12 49152]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregInCD]
C:Program FilesNeroNero 7InCDInCDldr.exe [2006-06-05 27136]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregIntelliPoint]
C:Program FilesMicrosoft IntelliPointipoint.exe [2009-01-07 1468296]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
C:Program FilesCommon FilesAheadLibNeroCheck.exe [2009-11-13 155648]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSoftAuto.exe]
C:Program FilesCreativeSoftware Update 3SoftAuto.exe [2009-11-13 405504]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSunJavaUpdateSched]
C:Program FilesJavajre6binjusched.exe [2009-03-09 148888]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregswg]
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-02-23 39408]

C:Documents and SettingsAll Users.WINDOWSГлавное менюПрограммыАвтозагрузка
InterVideo WinCinema Manager.lnk — C:WINDOWSCommonBinWinCinemaMgr.exe

C:Documents and SettingsAdmin.USER-ECEEA47CDBГлавное менюПрограммыАвтозагрузка
Logitech . Регистрация Продукта.lnk — C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm.sys]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoResolveTrack»=
«NoResolveSearch»=

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesskypePhoneSkype.exe»=»C:Program FilesskypePhoneSkype.exe:*:Enabled:Skype»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5c569344-744a-11dd-b4fe-000129239d09}]
shellopencommand — rundll32.exe .desktop.dll,InstallM

======List of files/folders created in the last 1 months======

2010-01-28 18:58:06 —-A—- C:WINDOWSsystem32aswBoot.exe
2010-01-28 18:52:45 —-A—- C:Program Filessetup_av_free_rus.exe
2010-01-28 18:31:20 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataAlwil Software
2010-01-27 21:00:44 —-D—- C:Program Filestrend micro
2010-01-27 21:00:20 —-D—- C:rsit
2010-01-23 19:48:46 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataLeadertech
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32LVUI2.dll
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32lvcodec2.dll
2010-01-23 19:47:46 —-A—- C:WINDOWSsystem32LVUI2RC.dll
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvcoinst.ini
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvci12101110.dll
2010-01-23 19:45:11 —-D—- C:Program FilesCommon FilesLogiShrd
2010-01-23 19:45:09 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataLogiShrd
2010-01-23 19:45:06 —-D—- C:Program FilesLogitech
2010-01-23 19:11:44 —-A—- C:Program Filesccsetup227.exe
2010-01-23 17:36:51 —-A—- C:WINDOWSwininit.ini
2010-01-23 17:18:47 —-A—- C:WINDOWSsystem32mz2kJba.exe
2010-01-21 18:54:26 —-A—- C:WINDOWSsystem32j5n4huL.exe
2010-01-21 18:53:06 —-A—- C:WINDOWSsystem32ViU06H2.exe
2010-01-20 15:13:19 —-A—- C:WINDOWSsystem32o87k8qa.exe
2010-01-20 15:13:01 —-A—- C:WINDOWSsystem32EFJ0RVC.exe
2010-01-20 12:11:06 —-D—- C:Program FilesCommon Fileswm
2010-01-20 12:11:06 —-A—- C:Program FilesCommon Fileskeylog.txt
2010-01-04 22:21:22 —-D—- C:Program FilesSpybot — Search & Destroy
2010-01-04 22:21:22 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataSpybot — Search & Destroy
2010-01-04 22:05:26 —-A—- C:Program Filesspybotsd162.exe
2010-01-01 18:43:07 —-A—- C:WINDOWSsystem32stu2.exe

======List of files/folders modified in the last 1 months======

2010-01-30 15:56:22 —-D—- C:WINDOWSTemp
2010-01-30 15:55:29 —-D—- C:WINDOWSsystem32drivers
2010-01-30 15:53:21 —-A—- C:WINDOWSSchedLgU.Txt
2010-01-30 15:53:20 —-D—- C:WINDOWSsystem32CatRoot2
2010-01-30 15:52:22 —-D—- C:Program FilesBitComet
2010-01-30 15:48:04 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataSkype
2010-01-30 14:48:25 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataskypePM
2010-01-30 14:47:57 —-AD—- C:WINDOWS
2010-01-29 22:12:56 —-D—- C:WINDOWSPrefetch
2010-01-29 20:22:03 —-AD—- C:WINDOWSsystem32
2010-01-28 18:58:36 —-SHD—- C:WINDOWSInstaller
2010-01-28 18:58:36 —-SHD—- C:Config.Msi
2010-01-28 18:58:35 —-D—- C:WINDOWSWinSxS
2010-01-28 18:52:45 —-RD—- C:Program Files
2010-01-28 18:43:19 —-D—- C:Program FilesAlwil Software
2010-01-27 10:02:15 —-AHD—- C:WINDOWSinf
2010-01-25 17:31:43 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataMedia Player Classic
2010-01-24 13:04:17 —-D—- C:WINDOWSsystem32config
2010-01-23 19:48:14 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-01-23 19:48:09 —-D—- C:WINDOWStwain_32
2010-01-23 19:47:59 —-D—- C:WINDOWSsystem32ReinstallBackups
2010-01-23 19:47:46 —-DC—- C:WINDOWSsystem32DRVSTORE
2010-01-23 19:45:11 —-D—- C:Program FilesCommon Files
2010-01-08 20:03:34 —-D—- C:WINDOWSsecurity
2010-01-08 20:03:34 —-D—- C:WINDOWSrepair
2010-01-08 20:03:34 —-D—- C:WINDOWSLogs
2010-01-08 20:03:34 —-D—- C:Program FilesWinamp Toolbar
2010-01-08 20:03:34 —-D—- C:Program Filesfree-downloads.net
2010-01-08 20:03:34 —-D—- C:Program FilesFirebird
2010-01-08 20:03:34 —-D—- C:CA_LIC
2010-01-08 20:03:33 —-D—- C:Program FilesWindows Media Player
2010-01-08 20:03:33 —-D—- C:Program FilesMicrosoft Office
2010-01-05 19:05:28 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataIObit
2010-01-04 18:35:41 —-A—- C:WINDOWSDjVuPro.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2010-01-28 28240]
R1 aswSP;aswSP; C:WINDOWSsystem32driversaswSP.sys [2010-01-28 163280]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2010-01-28 46672]
R1 InCDPass;InCDPass; C:WINDOWSsystem32driversInCDPass.sys [2006-04-05 29568]
R1 incdrm;InCD Reader; C:WINDOWSsystem32driversInCDRm.sys [2006-04-05 33792]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2006-12-22 40448]
R1 SCDEmu;SCDEmu; C:WINDOWSsystem32driversSCDEmu.sys [2007-08-07 33052]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32driversaswFsBlk.sys [2010-01-28 19024]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2010-01-28 100432]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2008-09-24 4122368]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2010-01-28 23376]
R3 FilterService;UVC Filter Service; C:WINDOWSsystem32DRIVERSlvuvcflt.sys [2009-10-07 23832]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:WINDOWSsystem32DRIVERSLVPr2Mon.sys [2009-10-07 25752]
R3 LVRS;Logitech RightSound Filter Driver; C:WINDOWSsystem32DRIVERSlvrs.sys [2009-10-07 266008]
R3 LVUVC;Logitech Webcam 200(UVC); C:WINDOWSsystem32DRIVERSlvuvc.sys [2009-10-07 6756632]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:WINDOWSsystem32DRIVERSpoint32.sys [2009-01-07 27784]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtnicxp.sys [2009-03-25 130432]
R3 usbaudio;Аудио драйвер USB (WDM); C:WINDOWSsystem32driversusbaudio.sys [2004-08-03 59264]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2006-10-23 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2006-10-23 59264]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2006-10-23 20608]
R4 InCDfs;InCD File System; C:WINDOWSsystem32driversInCDFs.sys [2006-04-05 102016]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-17 14848]
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-03 17024]
S3 DynCal;Dynamic Calibration Service; C:WINDOWSsystem32driversDyncal.sys [2006-04-22 8704]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:WINDOWSsystem32DRIVERSHPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:WINDOWSsystem32DRIVERSHPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:WINDOWSsystem32DRIVERSHPZius12.sys [2004-06-21 21744]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:WINDOWSsystem32DRIVERSk750bus.sys [2006-03-13 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSk750mdfl.sys [2006-03-13 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSk750mdm.sys [2006-03-13 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSk750mgmt.sys [2006-03-13 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSk750obex.sys [2006-03-13 79488]
S3 KMWDFilter;KMWDFilter; ??C:WINDOWSSystem32DriversKMWDFilter.SYS []
S3 lvpopflt;Logitech POP Suppression Filter; C:WINDOWSsystem32DRIVERSlvpopflt.sys [2009-10-07 114712]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-03 10880]
S3 nm;Драйвер сетевого монитора; C:WINDOWSsystem32DRIVERSNMnt.sys [2004-08-18 40320]
S3 pcouffin;VSO Software pcouffin; C:WINDOWSSystem32Driverspcouffin.sys [2008-12-23 47360]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:WINDOWSsystem32DRIVERSse44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse44mdm.sys [2006-11-30 97088]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:WINDOWSsystem32DRIVERSse59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:WINDOWSsystem32DRIVERSse59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:WINDOWSsystem32DRIVERSse59unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-03 15360]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2005-07-30 121856]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM); C:WINDOWSsystem32DRIVERSw300bus.sys [2006-03-13 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSw300mdfl.sys [2006-03-13 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSw300mdm.sys [2006-03-13 96352]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSw300mgmt.sys [2006-03-13 87824]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSw300obex.sys [2006-03-13 85696]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S3 ZSMC0305;VIMICRO USB PC Camera V; C:WINDOWSSystem32DriversusbVM305.sys [2005-11-03 390379]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
R2 Bonjour Service;Bonjour Service; C:Program FilesBonjourmDNSResponder.exe [2008-12-12 238888]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:WINDOWSsystem32CTsvcCDA.exe [1999-12-13 44032]
R2 CTDevice_Srv;CT Device Query service; C:Program FilesCreativeShared FilesCTDevSrv.exe [2007-04-02 61440]
R2 InCDsrv;InCD Helper; C:Program FilesNeroNero 7InCDInCDsrv.exe [2006-04-05 791040]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-03-09 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:Program FilesKeyboard DriverKMWDSrv.exe [2008-06-23 208896]
R2 LVPrcSrv;Process Monitor; C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe [2009-10-07 154136]
R2 UPHClean;User Profile Hive Cleanup; C:WINDOWSsystem32uphclean.exe [2006-01-16 241725]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast5AvastSvc.exe [2010-01-29 40384]
S2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2009-11-13 36864]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-06-21 182768]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2009-11-13 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2009-11-13 741376]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:WINDOWSsystem32HPZipm12.exe [2009-11-13 65536]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2009-11-13 122880]

---

EOF

---

[ju61]

У меня почему-то выдало только один лог.

Logfile of random’s system information tool 1.06 (written by random/random)
Run by Admin at 2010-01-27 22:14:33
Microsoft Windows XP Professional Service Pack 2
System drive C: has 16 GB (43%) free of 38 GB
Total RAM: 1279 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:15:10, on 27.01.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
C:Program FilesAlwil SoftwareAvast4ashServ.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSexplorer.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:WINDOWSSOUNDMAN.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesKeyboard DriverStartAutorun.exe
C:Program FilesKeyboard DriverKMConfig.exe
C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe
C:WINDOWSsystem32ctfmon.exe
C:PROGRA~1skypePhoneSkype.exe
C:Program FilesSpybot — Search & DestroyTeaTimer.exe
C:WINDOWSCommonBinWinCinemaMgr.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesCommon FilesLogishrdLQCVFXCOCIManager.exe
C:Program FilesKeyboard DriverKMProcess.exe
C:Program FilesBonjourmDNSResponder.exe
C:WINDOWSsystem32CTsvcCDA.exe
C:Program FilesCreativeShared FilesCTDevSrv.exe
C:Program FilesNeroNero 7InCDInCDsrv.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesKeyboard DriverKMWDSrv.exe
C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
C:WINDOWSsystem32nvsvc32.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32uphclean.exe
C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
C:Program FilesOpera AC 3.5.1opera.exe
C:Program FilesskypePlugin ManagerskypePM.exe
C:Documents and SettingsAdmin.USER-ECEEA47CDBРабочий столRSIT.exe
C:Program Filestrend microAdmin.exe

R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSPCHealthHelpCtrSystempanelsblank.htm
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 — HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Ссылки
R3 — URLSearchHook: Winamp Search Class — {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} — C:Program FilesWinamp Toolbarwinamptb.dll
R3 — URLSearchHook: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
R3 — URLSearchHook: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
F2 — REG:system.ini: Shell=explorer.exe rundll32.exe aqlb.hjo lhoweid
O2 — BHO: AcroIEHelperStub — {18DF081C-E8AD-4283-A596-FA578C2EBDC3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll
O2 — BHO: Winamp Toolbar Loader — {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} — C:Program FilesWinamp Toolbarwinamptb.dll
O2 — BHO: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O2 — BHO: BitComet ClickCapture — {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll
O2 — BHO: Spybot-S&D IE Protection — {53707962-6F74-2D53-2644-206D7942484F} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4d91-8333-CF10577473F7} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll
O2 — BHO: Google Dictionary Compression sdch — {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O2 — BHO: Ask Toolbar BHO — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O2 — BHO: Java(tm) Plug-In 2 SSV Helper — {DBC80044-A445-435b-BC74-9C25C1C588A9} — C:Program FilesJavajre6binjp2ssv.dll
O2 — BHO: kikin Plugin — {E601996F-E400-41CA-804B-CD6373A7EEE2} — C:Program Fileskikinie_kikin.dll
O2 — BHO: JQSIEStartDetectorImpl — {E7E6F031-17CE-4C07-BC86-EABFE594F69C} — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll
O2 — BHO: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: Winamp Toolbar — {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — C:Program FilesWinamp Toolbarwinamptb.dll
O3 — Toolbar: Google Toolbar — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll
O3 — Toolbar: PandoraTV Toolbar — {D4027C7F-154A-4066-A1AD-4243D8127440} — C:Program FilesAsk.comGenericAskToolbar.dll
O3 — Toolbar: free-downloads.net Toolbar — {ecdee021-0d17-467f-a1ff-c7a115230949} — C:Program Filesfree-downloads.nettbfre0.dll
O3 — Toolbar: IObitCom Toolbar — {31c7d459-9cc3-44f2-9dca-fc11795309b4} — C:Program FilesIObitComtbIObi.dll
O4 — HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 — HKLM..Run: [nwiz] nwiz.exe /install
O4 — HKLM..Run: [BigDog305] C:WINDOWSVM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 — HKLM..Run: [avast!] «C:Program FilesAlwil SoftwareAvast4ashDisp.exe»
O4 — HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 — HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 — HKLM..Run: [KMCONFIG] C:Program FilesKeyboard DriverStartAutorun.exe KMConfig.exe
O4 — HKLM..Run: [LogitechQuickCamRibbon] «C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe» /hide
O4 — HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe
O4 — HKCU..Run: [BitComet] «C:Program FilesBitCometBitComet.exe» /tray
O4 — HKCU..Run: [Skype] «C:PROGRA~1skypePhoneSkype.exe» /nosplash /minimized
O4 — HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot — Search & DestroyTeaTimer.exe
O4 — HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [LinkDel] linkdel.cmd (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘SYSTEM’)
O4 — HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User ‘Default user’)
O4 — S-1-5-18 Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘SYSTEM’)
O4 — .DEFAULT Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe (User ‘Default user’)
O4 — Startup: Logitech . Регистрация Продукта.lnk = C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe
O4 — Global Startup: InterVideo WinCinema Manager.lnk = C:WINDOWSCommonBinWinCinemaMgr.exe
O8 — Extra context menu item: &Winamp Search — C:Documents and SettingsAll Users.WINDOWSApplication DataWinamp ToolbarieToolbarresourcesen-USlocalsearch.html
O8 — Extra context menu item: &З&агрузить &с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 — Extra context menu item: &З&агрузить все видео файлы с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 — Extra context menu item: &З&агрузить все с помощью BitComet — res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2Office12EXCEL.EXE/3000
O9 — Extra button: (no name) — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra ‘Tools’ menuitem: My kikin — {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} — C:Program Fileskikinie_kikin.dll
O9 — Extra button: Research — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2Office12REFIEBAR.DLL
O9 — Extra button: BitComet — {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} — res://C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll/206 (file missing)
O9 — Extra button: (no name) — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra ‘Tools’ menuitem: Spybot — Search & Destroy Configuration — {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} — C:PROGRA~1Spybot — Search & DestroySDHelper.dll
O9 — Extra button: (no name) — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 — Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 — {e2e2dd38-d088-4134-82b7-f2ba38496583} — C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O10 — Unknown file in Winsock LSP: c:windowssystem32nwprovau.dll
O16 — DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) — http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O18 — Filter: x-sdch — {B1759355-3EEC-4C1E-B0F1-B719FE26E377} — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll
O23 — Service: avast! iAVS4 Control Service (aswUpdSv) — ALWIL Software — C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 — Service: avast! Antivirus — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 — Service: avast! Mail Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 — Service: avast! Web Scanner — ALWIL Software — C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 — Service: Bonjour Service — Apple Inc. — C:Program FilesBonjourmDNSResponder.exe
O23 — Service: Creative Service for CDROM Access — Creative Technology Ltd — C:WINDOWSsystem32CTsvcCDA.exe
O23 — Service: CT Device Query service (CTDevice_Srv) — Creative Technology Ltd — C:Program FilesCreativeShared FilesCTDevSrv.exe
O23 — Service: Журнал событий (Eventlog) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Google Software Updater (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Служба COM записи компакт-дисков IMAPI (ImapiService) — Корпорация Майкрософт — C:WINDOWSsystem32imapi.exe
O23 — Service: InCD Helper (InCDsrv) — Nero AG — C:Program FilesNeroNero 7InCDInCDsrv.exe
O23 — Service: Java Quick Starter (JavaQuickStarterService) — Sun Microsystems, Inc. — C:Program FilesJavajre6binjqs.exe
O23 — Service: Keyboard And Mouse Communication Service (KMWDSERVICE) — UASSOFT.COM — C:Program FilesKeyboard DriverKMWDSrv.exe
O23 — Service: Process Monitor (LVPrcSrv) — Logitech Inc. — C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
O23 — Service: NVIDIA Display Driver Service (NVSvc) — NVIDIA Corporation — C:WINDOWSsystem32nvsvc32.exe
O23 — Service: Plug and Play (PlugPlay) — Корпорация Майкрософт — C:WINDOWSsystem32services.exe
O23 — Service: Pml Driver HPZ12 — HP — C:WINDOWSsystem32HPZipm12.exe
O23 — Service: SageTV — Realtek Semiconductor Corporation — (no file)
O23 — Service: Смарт-карты (SCardSvr) — Корпорация Майкрософт — C:WINDOWSSystem32SCardSvr.exe
O23 — Service: Теневое копирование тома (VSS) — Корпорация Майкрософт — C:WINDOWSSystem32vssvc.exe
O23 — Service: Адаптер производительности WMI (WmiApSrv) — Корпорация Майкрософт — C:WINDOWSsystem32wbemwmiapsrv.exe

—
End of file — 12226 bytes

======Scheduled tasks folder======

C:WINDOWStasksMicrosoft_Hardware_Launch_IPoint_exe.job
C:WINDOWStasksScheduled Update for Ask Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{31c7d459-9cc3-44f2-9dca-fc11795309b4}]
IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper — C:Program FilesBitComettoolsBitCometBHO_1.2.8.7.dll [2008-08-11 656696]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection — C:PROGRA~1Spybot — Search & DestroySDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier5.3.4501.1418swg.dll [2009-09-23 762864]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch — C:Program FilesGoogleGoogle ToolbarComponentfastsearch_A8904FB862BD9564.dll [2009-04-27 470512]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper — C:Program FilesJavajre6binjp2ssv.dll [2009-03-09 35840]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E601996F-E400-41CA-804B-CD6373A7EEE2}]
kikin Plugin — C:Program Fileskikinie_kikin.dll [2009-11-06 642752]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll [2009-11-13 73728]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{ecdee021-0d17-467f-a1ff-c7a115230949}]
free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} — Winamp Toolbar — C:Program FilesWinamp Toolbarwinamptb.dll [2008-07-16 1266992]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — Google Toolbar — C:Program FilesGoogleGoogle ToolbarGoogleToolbar.dll [2009-06-21 259696]
{D4027C7F-154A-4066-A1AD-4243D8127440} — PandoraTV Toolbar — C:Program FilesAsk.comGenericAskToolbar.dll [2009-07-10 1174920]
{ecdee021-0d17-467f-a1ff-c7a115230949} — free-downloads.net Toolbar — C:Program Filesfree-downloads.nettbfre0.dll [2008-02-14 1555480]
{31c7d459-9cc3-44f2-9dca-fc11795309b4} — IObitCom Toolbar — C:Program FilesIObitComtbIObi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=C:WINDOWSsystem32NvCpl.dll [2009-11-13 7700480]
«nwiz»=nwiz.exe /install []
«BigDog305″=C:WINDOWSVM305_STI.EXE [2005-11-03 61440]
«avast!»=C:Program FilesAlwil SoftwareAvast4ashDisp.exe [2009-11-25 81000]
«SoundMan»=C:WINDOWSSOUNDMAN.EXE [2007-04-16 577536]
«NvMediaCenter»=C:WINDOWSsystem32NvMcTray.dll [2006-10-22 86016]
«KMCONFIG»=C:Program FilesKeyboard DriverStartAutorun.exe [2008-05-30 212992]
«LogitechQuickCamRibbon»=C:Program FilesLogitechLogitech WebCam SoftwareLWS.exe [2009-10-14 2793304]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=C:WINDOWSsystem32ctfmon.exe [2004-08-18 15360]
«BitComet»=C:Program FilesBitCometBitComet.exe [2008-12-03 2514744]
«Skype»=C:PROGRA~1skypePhoneSkype.exe [2008-11-07 21633320]
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe [2009-03-05 2260480]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregAdobe Reader Speed Launcher]
C:Program FilesAdobeReader 9.0ReaderReader_sl.exe [2009-02-27 35696]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregCTZDetec.exe]
C:Program FilesCreativeCreative Media LiteCTZDetec.exe [2009-11-13 368640]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregHP Software Update]
C:Program FilesHPHP Software UpdateHPWuSchd2.exe [2004-02-12 49152]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregInCD]
C:Program FilesNeroNero 7InCDInCDldr.exe [2006-06-05 27136]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregIntelliPoint]
C:Program FilesMicrosoft IntelliPointipoint.exe [2009-01-07 1468296]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregNeroFilterCheck]
C:Program FilesCommon FilesAheadLibNeroCheck.exe [2009-11-13 155648]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSoftAuto.exe]
C:Program FilesCreativeSoftware Update 3SoftAuto.exe [2009-11-13 405504]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregSunJavaUpdateSched]
C:Program FilesJavajre6binjusched.exe [2009-03-09 148888]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftshared toolsmsconfigstartupregswg]
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [2009-02-23 39408]

C:Documents and SettingsAll Users.WINDOWSГлавное менюПрограммыАвтозагрузка
InterVideo WinCinema Manager.lnk — C:WINDOWSCommonBinWinCinemaMgr.exe

C:Documents and SettingsAdmin.USER-ECEEA47CDBГлавное менюПрограммыАвтозагрузка
Logitech . Регистрация Продукта.lnk — C:Program FilesLogitechLogitech WebCam SoftwareeReg.exe

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WPDShServiceObj — {AAA288BA-9A4C-45B0-95D7-94D524869DB5} — C:WINDOWSsystem32WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworknm.sys]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«InstallVisualStyle»=C:WINDOWSResourcesThemesRoyaleRoyale.msstyles
«InstallTheme»=C:WINDOWSResourcesThemesRoyale.theme

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoDriveTypeAutoRun»=145

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesexplorer]
«NoResolveTrack»=
«NoResolveSearch»=

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»
«C:Program FilesBonjourmDNSResponder.exe»=»C:Program FilesBonjourmDNSResponder.exe:*:Enabled:Bonjour»
«C:Program FilesskypePhoneSkype.exe»=»C:Program FilesskypePhoneSkype.exe:*:Enabled:Skype»

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]
«%windir%system32sessmgr.exe»=»%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019»
«%windir%Network Diagnosticxpnetdiag.exe»=»%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000»

[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionexplorermountpoints2{5c569344-744a-11dd-b4fe-000129239d09}]
shellopencommand — rundll32.exe .desktop.dll,InstallM

======List of files/folders created in the last 1 months======

2010-01-27 21:00:44 —-D—- C:Program Filestrend micro
2010-01-27 21:00:20 —-D—- C:rsit
2010-01-23 19:48:46 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataLeadertech
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32LVUI2.dll
2010-01-23 19:47:47 —-A—- C:WINDOWSsystem32lvcodec2.dll
2010-01-23 19:47:46 —-A—- C:WINDOWSsystem32LVUI2RC.dll
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvcoinst.ini
2010-01-23 19:47:15 —-A—- C:WINDOWSsystem32lvci12101110.dll
2010-01-23 19:45:11 —-D—- C:Program FilesCommon FilesLogiShrd
2010-01-23 19:45:09 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataLogiShrd
2010-01-23 19:45:06 —-D—- C:Program FilesLogitech
2010-01-23 19:11:44 —-A—- C:Program Filesccsetup227.exe
2010-01-23 17:36:51 —-A—- C:WINDOWSwininit.ini
2010-01-23 17:18:47 —-A—- C:WINDOWSsystem32mz2kJba.exe
2010-01-23 17:18:36 —-A—- C:WINDOWSsystem32gzzB9Wc.exe
2010-01-23 15:47:09 —-A—- C:WINDOWSsystem32NpT5qwO.exe
2010-01-23 15:46:56 —-A—- C:WINDOWSsystem32iRWCwgx.exe
2010-01-21 18:54:26 —-A—- C:WINDOWSsystem32j5n4huL.exe
2010-01-21 18:53:06 —-A—- C:WINDOWSsystem32ViU06H2.exe
2010-01-20 15:13:19 —-A—- C:WINDOWSsystem32o87k8qa.exe
2010-01-20 15:13:01 —-A—- C:WINDOWSsystem32EFJ0RVC.exe
2010-01-20 12:11:06 —-D—- C:Program FilesCommon Fileswm
2010-01-20 12:11:06 —-A—- C:Program FilesCommon Fileskeylog.txt
2010-01-20 12:11:04 —-A—- C:WINDOWSsystem32xu5fTf8.exe
2010-01-04 22:21:22 —-D—- C:Program FilesSpybot — Search & Destroy
2010-01-04 22:21:22 —-D—- C:Documents and SettingsAll Users.WINDOWSApplication DataSpybot — Search & Destroy
2010-01-04 22:05:26 —-A—- C:Program Filesspybotsd162.exe
2010-01-01 18:43:07 —-A—- C:WINDOWSsystem32stu2.exe

======List of files/folders modified in the last 1 months======

2010-01-27 21:31:59 —-D—- C:WINDOWSPrefetch
2010-01-27 21:29:48 —-D—- C:WINDOWSTemp
2010-01-27 21:29:42 —-D—- C:Program FilesBitComet
2010-01-27 21:29:17 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataSkype
2010-01-27 21:29:09 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataskypePM
2010-01-27 21:28:13 —-D—- C:WINDOWSsystem32drivers
2010-01-27 21:25:14 —-D—- C:WINDOWSsystem32CatRoot2
2010-01-27 21:25:09 —-AD—- C:WINDOWS
2010-01-27 21:23:14 —-A—- C:WINDOWSSchedLgU.Txt
2010-01-27 21:00:44 —-RD—- C:Program Files
2010-01-27 11:15:18 —-AD—- C:WINDOWSsystem32
2010-01-27 10:02:15 —-AHD—- C:WINDOWSinf
2010-01-27 10:00:06 —-SHD—- C:WINDOWSInstaller
2010-01-27 10:00:06 —-SHD—- C:Config.Msi
2010-01-25 17:31:43 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataMedia Player Classic
2010-01-24 13:04:17 —-D—- C:WINDOWSsystem32config
2010-01-23 19:48:14 —-RSHDC—- C:WINDOWSsystem32dllcache
2010-01-23 19:48:09 —-D—- C:WINDOWStwain_32
2010-01-23 19:47:59 —-D—- C:WINDOWSsystem32ReinstallBackups
2010-01-23 19:47:46 —-DC—- C:WINDOWSsystem32DRVSTORE
2010-01-23 19:45:11 —-D—- C:Program FilesCommon Files
2010-01-20 12:09:51 —-A—- C:WINDOWSsystem32userinit.exe
2010-01-08 20:03:34 —-D—- C:WINDOWSsecurity
2010-01-08 20:03:34 —-D—- C:WINDOWSrepair
2010-01-08 20:03:34 —-D—- C:WINDOWSLogs
2010-01-08 20:03:34 —-D—- C:Program FilesWinamp Toolbar
2010-01-08 20:03:34 —-D—- C:Program Filesfree-downloads.net
2010-01-08 20:03:34 —-D—- C:Program FilesFirebird
2010-01-08 20:03:34 —-D—- C:CA_LIC
2010-01-08 20:03:33 —-D—- C:Program FilesWindows Media Player
2010-01-08 20:03:33 —-D—- C:Program FilesMicrosoft Office
2010-01-07 20:34:44 —-D—- C:WINDOWSWinSxS
2010-01-05 19:05:28 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication DataIObit
2010-01-04 18:35:41 —-A—- C:WINDOWSDjVuPro.INI
2009-12-28 19:15:33 —-D—- C:Documents and SettingsAdmin.USER-ECEEA47CDBApplication Datadvdcss

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:WINDOWSsystem32driversAavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:WINDOWSsystem32driversaswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:WINDOWSsystem32driversaswTdi.sys [2009-11-25 48560]
R1 InCDPass;InCDPass; C:WINDOWSsystem32driversInCDPass.sys [2006-04-05 29568]
R1 incdrm;InCD Reader; C:WINDOWSsystem32driversInCDRm.sys [2006-04-05 33792]
R1 intelppm;Драйвер Intel процессора; C:WINDOWSsystem32DRIVERSintelppm.sys [2006-12-22 40448]
R1 SCDEmu;SCDEmu; C:WINDOWSsystem32driversSCDEmu.sys [2007-08-07 33052]
R1 WS2IFSL;Среда Windows Socket 2.0 поддержки поставщиков не-IFS служб; C:WINDOWSSystem32driversws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:WINDOWSsystem32DRIVERSaswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:WINDOWSsystem32driversaswMon2.sys [2009-09-15 94160]
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:WINDOWSsystem32DRIVERSrspndr.sys [2006-12-04 62336]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:WINDOWSsystem32driversALCXWDM.SYS [2008-09-24 4122368]
R3 aswRdr;aswRdr; C:WINDOWSsystem32driversaswRdr.sys [2009-11-25 23120]
R3 FilterService;UVC Filter Service; C:WINDOWSsystem32DRIVERSlvuvcflt.sys [2009-10-07 23832]
R3 HidUsb;Драйвер класса HID Microsoft; C:WINDOWSsystem32DRIVERShidusb.sys [2001-08-17 9600]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:WINDOWSsystem32DRIVERSLVPr2Mon.sys [2009-10-07 25752]
R3 LVRS;Logitech RightSound Filter Driver; C:WINDOWSsystem32DRIVERSlvrs.sys [2009-10-07 266008]
R3 LVUVC;Logitech Webcam 200(UVC); C:WINDOWSsystem32DRIVERSlvuvc.sys [2009-10-07 6756632]
R3 mouhid;Драйвер мыши HID; C:WINDOWSsystem32DRIVERSmouhid.sys [2001-10-19 12160]
R3 nv;nv; C:WINDOWSsystem32DRIVERSnv4_mini.sys [2006-10-22 3994624]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:WINDOWSsystem32DRIVERSpoint32.sys [2009-01-07 27784]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:WINDOWSsystem32DRIVERSRtnicxp.sys [2009-03-25 130432]
R3 usbaudio;Аудио драйвер USB (WDM); C:WINDOWSsystem32driversusbaudio.sys [2004-08-03 59264]
R3 usbccgp;Драйвер универсального родительского устройства USB (Microsoft); C:WINDOWSsystem32DRIVERSusbccgp.sys [2004-08-03 31616]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:WINDOWSsystem32DRIVERSusbehci.sys [2006-10-23 30208]
R3 usbhub;USB2 концентратор; C:WINDOWSsystem32DRIVERSusbhub.sys [2006-10-23 59264]
R3 usbuhci;Драйвер минипорта Microsoft USB универсального хост-контроллера; C:WINDOWSsystem32DRIVERSusbuhci.sys [2006-10-23 20608]
R4 InCDfs;InCD File System; C:WINDOWSsystem32driversInCDFs.sys [2006-04-05 102016]
S1 kbdhid;Драйвер клавиатуры HID; C:WINDOWSsystem32DRIVERSkbdhid.sys [2004-08-17 14848]
S3 CCDECODE;Closed Caption декодер; C:WINDOWSsystem32DRIVERSCCDECODE.sys [2004-08-03 17024]
S3 DynCal;Dynamic Calibration Service; C:WINDOWSsystem32driversDyncal.sys [2006-04-22 8704]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:WINDOWSsystem32DRIVERSHPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:WINDOWSsystem32DRIVERSHPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:WINDOWSsystem32DRIVERSHPZius12.sys [2004-06-21 21744]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:WINDOWSsystem32DRIVERSk750bus.sys [2006-03-13 55216]
S3 k750mdfl;Sony Ericsson 750 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSk750mdfl.sys [2006-03-13 6576]
S3 k750mdm;Sony Ericsson 750 USB WMC Modem Drivers; C:WINDOWSsystem32DRIVERSk750mdm.sys [2006-03-13 89872]
S3 k750mgmt;Sony Ericsson 750 USB WMC Device Management Drivers; C:WINDOWSsystem32DRIVERSk750mgmt.sys [2006-03-13 81728]
S3 k750obex;Sony Ericsson 750 USB WMC OBEX Interface Drivers; C:WINDOWSsystem32DRIVERSk750obex.sys [2006-03-13 79488]
S3 KMWDFilter;KMWDFilter; ??C:WINDOWSSystem32DriversKMWDFilter.SYS []
S3 lvpopflt;Logitech POP Suppression Filter; C:WINDOWSsystem32DRIVERSlvpopflt.sys [2009-10-07 114712]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:WINDOWSsystem32driversMSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI кодек; C:WINDOWSsystem32DRIVERSNABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft видео или ТВ подключение; C:WINDOWSsystem32DRIVERSNdisIP.sys [2004-08-03 10880]
S3 nm;Драйвер сетевого монитора; C:WINDOWSsystem32DRIVERSNMnt.sys [2004-08-18 40320]
S3 pcouffin;VSO Software pcouffin; C:WINDOWSSystem32Driverspcouffin.sys [2008-12-23 47360]
S3 se44bus;Sony Ericsson Device 068 driver (WDM); C:WINDOWSsystem32DRIVERSse44bus.sys [2006-11-30 61536]
S3 se44mdfl;Sony Ericsson Device 068 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse44mdfl.sys [2006-11-30 9360]
S3 se44mdm;Sony Ericsson Device 068 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse44mdm.sys [2006-11-30 97088]
S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:WINDOWSsystem32DRIVERSse59bus.sys [2006-09-05 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSse59mdfl.sys [2006-09-05 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSse59mdm.sys [2006-09-05 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSse59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:WINDOWSsystem32DRIVERSse59nd5.sys [2006-09-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSse59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:WINDOWSsystem32DRIVERSse59unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:WINDOWSsystem32DRIVERSSLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:WINDOWSsystem32DRIVERSStreamIP.sys [2004-08-03 15360]
S3 usbprint;Класс принтеров Microsoft USB; C:WINDOWSsystem32DRIVERSusbprint.sys [2004-08-03 25856]
S3 usbscan;Драйвер USB-сканера; C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
S3 usbvideo;USB Video Device (WDM); C:WINDOWSSystem32Driversusbvideo.sys [2005-07-30 121856]
S3 w300bus;Sony Ericsson W300 Driver driver (WDM); C:WINDOWSsystem32DRIVERSw300bus.sys [2006-03-13 60800]
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter; C:WINDOWSsystem32DRIVERSw300mdfl.sys [2006-03-13 9264]
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver; C:WINDOWSsystem32DRIVERSw300mdm.sys [2006-03-13 96352]
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM); C:WINDOWSsystem32DRIVERSw300mgmt.sys [2006-03-13 87824]
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface; C:WINDOWSsystem32DRIVERSw300obex.sys [2006-03-13 85696]
S3 WSTCODEC;World Standard Teletext кодек; C:WINDOWSsystem32DRIVERSWSTCODEC.SYS [2004-08-03 19328]
S3 WudfPf;Windows Driver Foundation — User-mode Driver Framework Platform Driver; C:WINDOWSsystem32DRIVERSWudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation — User-mode Driver Framework Reflector; C:WINDOWSsystem32DRIVERSwudfrd.sys [2006-09-28 82944]
S3 ZSMC0305;VIMICRO USB PC Camera V; C:WINDOWSSystem32DriversusbVM305.sys [2005-11-03 390379]
S4 IntelIde;IntelIde; C:WINDOWSsystem32driversIntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:Program FilesAlwil SoftwareAvast4ashServ.exe [2009-11-25 138680]
R2 Bonjour Service;Bonjour Service; C:Program FilesBonjourmDNSResponder.exe [2008-12-12 238888]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:WINDOWSsystem32CTsvcCDA.exe [1999-12-13 44032]
R2 CTDevice_Srv;CT Device Query service; C:Program FilesCreativeShared FilesCTDevSrv.exe [2007-04-02 61440]
R2 InCDsrv;InCD Helper; C:Program FilesNeroNero 7InCDInCDsrv.exe [2006-04-05 791040]
R2 JavaQuickStarterService;Java Quick Starter; C:Program FilesJavajre6binjqs.exe [2009-03-09 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:Program FilesKeyboard DriverKMWDSrv.exe [2008-06-23 208896]
R2 LVPrcSrv;Process Monitor; C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe [2009-10-07 154136]
R2 NVSvc;NVIDIA Display Driver Service; C:WINDOWSsystem32nvsvc32.exe [2006-10-22 159810]
R2 UPHClean;User Profile Hive Cleanup; C:WINDOWSsystem32uphclean.exe [2006-01-16 241725]
R3 avast! Mail Scanner;avast! Mail Scanner; C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:Program FilesAlwil SoftwareAvast4ashWebSv.exe [2009-11-25 352920]
S3 aspnet_state;ASP.NET State Service; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:WINDOWSMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe [2009-11-13 36864]
S3 gusvc;Google Software Updater; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2009-06-21 182768]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2009-11-13 69632]
S3 idsvc;Windows CardSpace; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe [2009-11-13 741376]
S3 odserv;Microsoft Office Diagnostics Service; C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:WINDOWSsystem32HPZipm12.exe [2009-11-13 65536]
S3 WMPNetworkSvc;Служба общих сетевых ресурсов проигрывателя Windows Media; C:Program FilesWindows Media PlayerWMPNetwk.exe [2006-11-02 914944]
S3 WudfSvc;Windows Driver Foundation — User-mode Driver Framework; C:WINDOWSsystem32svchost.exe [2004-08-18 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe [2009-11-13 122880]

---

EOF

---

[ju61]

Valeri, Большое спасибо за ответ.

[ju61]

Valeri,???????????????????????????????????????

[ju61]

Два блокнота.

[ju61]

Проблема повторилась.Знакомый прислал два лога, но первый очень длинный- не лезит. Пополам можно разделить в два сообщения?

[ju61]

Valeri, большое спасибо за ответы, будем экспериментировать. 😀

[ju61]

Большое спасибо. Сейчас запускается нормально, но несколько раз во время работы включался на перезагрузку. Только операция проходит не до конца. Выскакивает таблица и выключить комп можно только принудительно. А после включения ярлыки на рабочем столе начинают скакать, и собираются с левой стороны экрана. 🙄

[Автор]

Сообщения