F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDO WS\system32\drivers\services.exe,C:\WINDOWS\system 32\ntos.exe,
O2 - BHO: Aero skin - {FFFFFFFF-85A3-452b-B7A8-759AD9B42162} - gwin32.dll (file missing)
O2 - BHO: Microsoft copyright - {FFFFFFFF-BBBB-4146-86FD-A722E8AB3489} - sockins32.dll (file missing)
O4 - HKLM\..\Run: [runservices] C:\WINDOWS\services.exe
O4 - HKLM\..\Run: [lphc9vej0e5nc] C:\WINDOWS\system32\lphc9vej0e5nc.exe
O4 - HKLM\..\Run: [[system]] C:\WINDOWS\system32\drivers\services.exe
O4 - HKLM\..\Run: [winlogon] C:\Documents and Settings\Администратор\svchost.exe
O4 - HKLM\..\Run: [C:\WINDOWS\system32\kdjvl.exe] C:\WINDOWS\system32\kdjvl.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [[system]] C:\WINDOWS\system32\drivers\services.exe
O4 - HKCU\..\Run: [winlogon] C:\Documents and Settings\Администратор\svchost.exe
O4 - HKUS\S-1-5-21-789336058-602609370-725345543-500\..\Run: [[system]] C:\WINDOWS\system32\drivers\services.exe (User '?')
O4 - HKUS\S-1-5-21-789336058-602609370-725345543-500\..\Run: [winlogon] C:\Documents and Settings\Администратор\svchost.exe (User '?')
O17 - HKLM\System\CCS\Services\Tcpip\..\{A478CEF4-BC11-4E7E-87E9-2FEFF106B3E9}: NameServer = 85.255.115.61,85.255.112.113
O17 - HKLM\System\CCS\Services\Tcpip\..\{E9018952-C005-45B8-929F-641F1B4A7680}: NameServer = 85.255.115.61,85.255.112.113
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.115.61 85.255.112.113
O21 - SSODL: WebProxy - {66186F05-BBBB-4a39-864F-72D84615C679} - sockins32.dll (file missing)