info.txt logfile of random's system information tool 1.09 2012-01-13 11:43:22

======Uninstall list======

"Свои деньги" версия 2.3.0.4-->"C:\Program Files\OwnMoney\unins000.exe"
-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
-->MsiExec /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
2ГИС 3.0.9.4-->MsiExec.exe /X{1AD75BC7-E8DD-4C96-8F72-82B8F9C40C61}
7-Zip 9.10 beta-->"C:\Program Files\7-Zip\Uninstall.exe"
A4tech USB Mouse Quality Testing Program V5.0-->MsiExec.exe /I{361693F2-A153-4359-A4CB-A1B9FF2AA5E6}
Adobe Flash Player 10 ActiveX-->MsiExec.exe /X{B7B3E9B3-FB14-4927-894B-E9124509AF5A}
Babylon toolbar on IE-->"C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.31.2\uninstall.exe"
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
Cool & Quiet-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}\Setup.exe" -l0x9 
Corel Graphics - Windows Shell Extension-->c:\Program Files\Common Files\Corel\Shared\Shell Extension\ShellUninst.exe -ProductCode {B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD} -arp
Corel Graphics - Windows Shell Extension-->MsiExec.exe /X{B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD}
CorelDRAW Graphics Suite X5 - IPM-->MsiExec.exe /I{DE6CBC04-8673-4DBA-BA81-07F1639CEB5F}
CorelDRAW Graphics Suite X5 - WT-->MsiExec.exe /I{9244E956-5939-4B88-930C-0699D4AB2B95}
CorelDRAW(R) Graphics Suite X5-->C:\Program Files\Corel\CorelDRAW Graphics Suite X5\Setup\SetupARP.exe /arp
EasyBoost-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1150\INTEL3~1\IDriver.exe /M{41910260-4532-4734-8181-3E8AFDBB05D7} /l1033 
EPSON Copy Utility 3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\SETUP.EXE" -l0x19 -UnInstall
EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3D78F2A2-C893-4ABD-B5FE-AD7011837755}\SETUP.EXE" -l0x19 UNINST
EPSON Print CD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FF477885-5EA8-40D0-ADF3-D4C1B86FAEA4}\SETUP.EXE" -l0x19 -SYSTEM
EPSON Printer Software-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
Firebird 2.1.3.18185 (Win32)-->"C:\Program Files\Firebird\Firebird_2_1\unins000.exe"
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HiJackThis-->MsiExec.exe /X{45A66726-69BC-466B-A7A4-12FCBA4883D7}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall  /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)-->C:\WINDOWS\system32\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall  /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)-->C:\WINDOWS\system32\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall  /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)-->C:\WINDOWS\system32\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall  /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)-->C:\WINDOWS\system32\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall  /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)-->C:\WINDOWS\system32\msiexec.exe /package {AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB} /uninstall  /qb+ REBOOTPROMPT=""
HP Imaging Device Functions 13.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart Essential 3.5-->C:\Program Files\HP\Digital Imaging\PhotosmartEssential\hpzscr01.exe -datfile hpqbud13.dat -forcereboot
HP Scanjet G4000 Series-->C:\Program Files\HP\Digital Imaging\{10297E58-2DFE-478B-9A1D-4B14E4E79CDF}\setup\hpzscr01.exe -datfile hpgscr37.dat
HP Solution Center 13.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat -forcereboot
HP Update-->MsiExec.exe /X{7059BDA7-E1DB-442C-B7A1-6144596720A4}
iOfficeWorks 7.80-->C:\Program Files\A4Tech\Mouse\Uninst32.exe
K-Lite Codec Pack 6.3.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
MegaFon Internet-->C:\Program Files\MegaFon Internet\uninst.exe
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft .NET Framework 4 Client Profile-->C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft .NET Framework 4 Extended-->C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended
Microsoft .NET Framework 4 Extended-->MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702}
Microsoft Office Excel Viewer-->MsiExec.exe /I{95120000-003F-0419-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (Russian)-->MsiExec.exe /X{95120000-00AF-0419-0000-0000000FF1CE}
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{90850419-6000-11D3-8CFE-0150048383C9}
Microsoft Visual Studio Tools for Applications 2.0 - ENU-->MsiExec.exe /X{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}
Microsoft Visual Studio Tools for Applications 2.0 Runtime-->MsiExec.exe /X{299C0434-4F4E-341F-A916-4E07AEB35E79}
MKey v0.9.7.2-->"C:\Program Files\MKey\unins000.exe"
MSI to redistribute MS VS2005 CRT libraries-->MsiExec.exe /I{A8D93648-9F7F-407D-915C-62044644C3DA}
MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
NVIDIA ForceWare Network Access Manager-->"C:\Program Files\InstallShield Installation Information\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\setup.exe" -runfromtemp -l0x0419 -removeonly
NVIDIA ForceWare Network Access Manager-->MsiExec.exe /I{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
NVIDIA Graphics Driver 270.80-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA PhysX-->MsiExec.exe /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
OCR Software by I.R.I.S. 13.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
OpenOffice.org 3.2-->MsiExec.exe /I{DD533DFE-EB4C-489D-A8F7-45AF68891C82}
PC Probe II-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}\setup.exe" -l0x9 
Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe"
Punto Switcher 2.5-->C:\Program Files\Punto Switcher\uninstall.exe
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -l0x19  -removeonly
Resetters, версия 2.16-->"C:\Program Files\Resetters\unins000.exe"
WinDjView 1.0.3-->C:\Program Files\WinDjView\uninstall.exe
Windows Driver Package - Hewlett-Packard Image  (12/14/2009 13.0.0.61)-->C:\PROGRA~1\DIFX\25C232B9F73C1237\DPInst32.exe /u C:\WINDOWS\system32\DRVSTORE\hpxpg400_AFD9766589E46AA59C5ED4A91C4D20B27029BE0A\hpxpg400.inf
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray-->"C:\WINDOWS\$NtUninstallKB952011$\spuninst\spuninst.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
XnView 1.98-->"C:\Program Files\XnView\unins000.exe"
Yahoo! Companion-->rundll32.exe C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\YCOMP5~1.DLL,DllCommand ui
Антивирус Касперского 2010-->MsiExec.exe /I{943B6738-4801-4982-90EC-0442EF7AEB16}
Антивирус Касперского 2010-->MsiExec.exe /I{943B6738-4801-4982-90EC-0442EF7AEB16}
Данные 2ГИС г.Самара 01.03.2011-->MsiExec.exe /X{804AB378-A09E-4000-B1FB-55D7D8A234CC}
Налогоплательщик ЮЛ-->MsiExec.exe /I{61964629-3EB2-40B1-A5D1-A7039A2B4E8C}
Печать НД с PDF417 3.0.29 (пакет)-->MsiExec.exe /I{A4E80017-9520-4839-BA9F-3526730C27E3}

======Security center information======

AV: Антивирус Касперского (disabled) (outdated)

======System event log======

Computer Name: PHENOM
Event Code: 20
Message: Printer Driver EPSON Stylus Photo R270 Series for Windows NT x86 Version-3 was added or updated. Files:- E_FMAIBNP.DLL, E_FUICBNP.DLL, E_FVIFBNP.VIF, E_QI091E.CHM, E_FDSPBNP.DLL, E_FJBCBNP.DLL, E_FCONBNP.DLL, E_FPRMBNP.PRM, E_FOKABNP.DLL, E_FAUDBNP.DLL, E_FBSRBNP.EXE, E_FUIRBNP.DLL, E_FUI1BNP.DLL, E_FCF0BNP.CFG, E_FGRCBNP.DLL, E_FPRUBNP.DLL, E_FPREBNP.EXE, EPSET32.DLL, E_DP1BNE.DAT, E_FHM0BNP.DLL, E_FMW0BNP.DLL, E_FHT0BNP.DLL, E_FSR0BNP.DLL, E_FBR0BNP.DLL, E_FHBRBNP.DLL, E_FHUTBNP.DLL, E_FHUTBNP.EXE, E_FHSRBNP.DLL, E_FBA6BNP.DLL, E_FBL6BNP.DLL, E_FBIDBNP.LMD, E_FBAPBNP.DLL, EBAPI4.DLL, EBPBIDI.DLL, EPUPDATE.EXE, EPUPDATE.DAT, E_FARNBNP.EXE, E_FASKBNP.DLL, E_FAMTBNP.EXE, E_FAMDBNP.EXE, E_FAIRBNP.DLL, E_FAPRBNP.DLL, E_FATIBNP.EXE, E_FABRBNP.DLL, E_FASRBNP.DLL, E_FBCSBNP.EXE, E_FAIFBNP.DAT, E_S30RP1.EXE, E_QIAL2E.CHM.

Record Number: 4087
Source Name: Print
Time Written: 20120104133121.000000+240
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: PHENOM
Event Code: 29
Message: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible. 
No attempt to contact a source will be made for 119 minutes.
NtpClient has no source of accurate time. 

Record Number: 4086
Source Name: W32Time
Time Written: 20120104132648.000000+240
Event Type: error
User: 

Computer Name: PHENOM
Event Code: 17
Message: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 120
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)

Record Number: 4085
Source Name: W32Time
Time Written: 20120104132648.000000+240
Event Type: error
User: 

Computer Name: PHENOM
Event Code: 20
Message: Printer Driver EPSON Stylus Photo RX610 Series for Windows NT x86 Version-3 was added or updated. Files:- E_FMAICLP.DLL, E_FUICCLP.DLL, E_FVIFCLP.VIF, E_QI121E.CHM, E_FDSPCLP.DLL, E_FJBCCLP.DLL, E_FCONCLP.DLL, E_FPRMCLP.PRM, E_FOKACLP.DLL, E_FAUDCLP.DLL, E_FUIRCLP.DLL, E_FUI1CLP.DLL, E_FUIPCLP.DLL, E_FCF0CLP.CFG, E_FGRCCLP.DLL, E_FPRUCLP.DLL, E_FPRECLP.EXE, E_FPI1CLP.DAT, EPSET32.DLL, E_FHM0CLP.DLL, E_FMW0CLP.DLL, E_FHT0CLP.DLL, E_FSR0CLP.DLL, E_FBR0CLP.DLL, E_FHBRCLP.DLL, E_FHUTCLP.DLL, E_FHUTCLP.EXE, E_FHSRCLP.DLL, E_FBA6CLP.DLL, E_FBL6CLP.DLL, E_FBIDCLP.LMD, E_FBAPCLP.DLL, EBAPI4.DLL, EBPBIDI.DLL, EPUPDATE.EXE, EPUPDATE.DAT, E_FARNCLP.EXE, E_FASKCLP.DLL, E_FAMTCLP.EXE, E_FAIRCLP.DLL, E_FAPRCLP.DLL, E_FATICLP.EXE, E_FABRCLP.DLL, E_FASRCLP.DLL, E_FBCSCLP.EXE, E_FAIFCLP.DAT, E_FGEPCLP.DLL, E_FASOCLP.DLL, E_S40RP7.EXE, E_QIAL2E.CHM, E_DUPA20.EXE, E_DUPA2E.DLL.

Record Number: 4084
Source Name: Print
Time Written: 20120104132346.000000+240
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: PHENOM
Event Code: 20
Message: Printer Driver EPSON Stylus Photo RX610 Series for Windows NT x86 Version-3 was added or updated. Files:- E_FMAICLP.DLL, E_FUICCLP.DLL, E_FVIFCLP.VIF, E_QI121E.CHM, E_FDSPCLP.DLL, E_FJBCCLP.DLL, E_FCONCLP.DLL, E_FPRMCLP.PRM, E_FOKACLP.DLL, E_FAUDCLP.DLL, E_FUIRCLP.DLL, E_FUI1CLP.DLL, E_FUIPCLP.DLL, E_FCF0CLP.CFG, E_FGRCCLP.DLL, E_FPRUCLP.DLL, E_FPRECLP.EXE, E_FPI1CLP.DAT, EPSET32.DLL, E_FHM0CLP.DLL, E_FMW0CLP.DLL, E_FHT0CLP.DLL, E_FSR0CLP.DLL, E_FBR0CLP.DLL, E_FHBRCLP.DLL, E_FHUTCLP.DLL, E_FHUTCLP.EXE, E_FHSRCLP.DLL, E_FBA6CLP.DLL, E_FBL6CLP.DLL, E_FBIDCLP.LMD, E_FBAPCLP.DLL, EBAPI4.DLL, EBPBIDI.DLL, EPUPDATE.EXE, EPUPDATE.DAT, E_FARNCLP.EXE, E_FASKCLP.DLL, E_FAMTCLP.EXE, E_FAIRCLP.DLL, E_FAPRCLP.DLL, E_FATICLP.EXE, E_FABRCLP.DLL, E_FASRCLP.DLL, E_FBCSCLP.EXE, E_FAIFCLP.DAT, E_FGEPCLP.DLL, E_FASOCLP.DLL, E_S40RP7.EXE, E_QIAL2E.CHM, E_DUPA20.EXE, E_DUPA2E.DLL.

Record Number: 4083
Source Name: Print
Time Written: 20120104132339.000000+240
Event Type: warning
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: PHENOM
Event Code: 5603
Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property.  This provider will be run using the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.  Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality.

Record Number: 18
Source Name: WinMgmt
Time Written: 20020124162432.000000+240
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: PHENOM
Event Code: 5603
Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property.  This provider will be run using the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.  Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality.

Record Number: 17
Source Name: WinMgmt
Time Written: 20020124162432.000000+240
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: PHENOM
Event Code: 63
Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 13
Source Name: WinMgmt
Time Written: 20020124162257.000000+240
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: PHENOM
Event Code: 63
Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 12
Source Name: WinMgmt
Time Written: 20020124162257.000000+240
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: PHENOM
Event Code: 63
Message: A provider, HiPerfCooker_v1, has been registered in the WMI namespace, Root\WMI, to use the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 11
Source Name: WinMgmt
Time Written: 20020124162257.000000+240
Event Type: warning
User: NT AUTHORITY\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=16
"PROCESSOR_IDENTIFIER"=x86 Family 16 Model 4 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=0402
"NUMBER_OF_PROCESSORS"=4
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------