OTViewIt.txt:
OTViewIt logfile created on: 24.12.2008 19:34:37 — Run
OTViewIt by OldTimer — Version 1.0.20.1 Folder = C:ProjectsASFCode — OBGMainASF.WebASF.Dictionary.Web.UIImagesnewDict
Windows Server 2003 Enterprise Edition Service Pack 2 (Version = 5.2.3790) — Type = NTServer
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000419 | Country: Russia | Language: RUS | Date Format: dd.MM.yyyy
1,99 Gb Total Physical Memory | 0,16 Gb Available Physical Memory | 7,81% Memory free
3,85 Gb Paging File | 1,83 Gb Available in Paging File | 47,59% Paging File free
Paging file location(s): C:pagefile.sys 2046 4092;
%SystemDrive% = C: | %SystemRoot% = C:WINDOWS | %ProgramFiles% = C:Program Files
Drive C: | 48,83 Gb Total Space | 4,01 Gb Free Space | 8,21% Space Free | Partition Type: NTFS
Drive D: | 100,22 Gb Total Space | 15,18 Gb Free Space | 15,15% Space Free | Partition Type: NTFS
Drive E: | 231,23 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 513,73 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 596,68 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 698,65 Gb Total Space | 291,20 Gb Free Space | 41,68% Space Free | Partition Type: NTFS
Computer Name: SALAMANDRA
Current User Name: gig
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Whitelist: On
File Age = 30 Days
========== Processes ==========
[2005.04.04 17:58:28 | 00,163,840 | —- | M] (Adobe Systems Incorporated) — C:Program FilesAdobeAdobe Version Cue CS2binVersionCueCS2.exe
[2006.02.28 11:42:38 | 00,229,376 | —- | M] (Apple Computer, Inc.) — C:Program FilesBonjourmDNSResponder.exe
[2003.05.07 12:21:00 | 01,413,184 | —- | M] (Cisco Systems, Inc.) — C:Program FilesCisco SystemsVPN Clientcvpnd.exe
[2002.07.30 10:36:00 | 00,032,768 | —- | M] (Symantec Corporation) — C:Program FilesSymantec_Client_SecuritySymantec AntiVirusDefWatch.exe
[2007.02.17 02:19:44 | 00,014,336 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32inetsrvinetinfo.exe
[2008.12.12 15:29:14 | 00,152,984 | —- | M] (Sun Microsystems, Inc.) — C:Program FilesJavajre6binjqs.exe
[2006.10.26 12:40:34 | 00,335,872 | —- | M] (Microsoft Corporation) — C:Program FilesCommon FilesMicrosoft SharedVS7Debugmdm.exe
[2008.08.05 16:58:50 | 00,205,840 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL Server90DTSBinnMsDtsSrvr.exe
[2006.08.28 01:53:48 | 00,092,952 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnmsftesql.exe
[2008.08.05 16:58:52 | 29,184,016 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.4MSSQLBinnsqlservr.exe
[2008.08.05 16:58:52 | 29,184,016 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnsqlservr.exe
[2008.08.05 16:58:50 | 14,894,608 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.2OLAPbinmsmdsrv.exe
[2002.07.30 10:40:44 | 00,573,440 | —- | M] (Symantec Corporation) — C:Program FilesSymantec_Client_SecuritySymantec AntiVirusRtvscan.exe
[2008.08.05 16:58:50 | 00,016,912 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.3Reporting ServicesReportServerbinReportingServicesService.exe
[2005.04.04 17:58:30 | 03,502,080 | —- | M] () — C:Program FilesAdobeAdobe Version Cue CS2datadatabasebinmysqld-nt.exe
[2007.02.10 04:29:56 | 00,089,968 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe
[2008.03.28 00:31:52 | 00,407,040 | —- | M] () — C:Program FilesTMeterTrafSvc.exe
[2005.12.15 20:42:10 | 00,217,088 | —- | M] (VMware, Inc.) — C:Program FilesVMwareVMware Workstationvmware-authd.exe
[2005.12.15 20:28:52 | 00,245,760 | —- | M] (VMware, Inc.) — C:Program FilesCommon FilesVMwareVMware Virtual Image Editingvmount2.exe
[2005.12.15 20:42:10 | 00,135,168 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32vmnat.exe
[2005.12.15 20:42:10 | 00,106,496 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32vmnetdhcp.exe
[2007.02.17 01:31:22 | 00,389,120 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32cmd.exe
[2006.07.19 13:57:00 | 00,020,480 | —- | M] (Microsoft) — C:TFSCustomPoliciesUpdatePolicies.exe
[2007.02.17 03:09:46 | 00,207,872 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32wbemwmiprvse.exe
[2006.08.14 21:39:00 | 00,098,304 | R— | M] (Intel Corporation) — C:WINDOWSsystem32igfxtray.exe
[2006.08.14 21:41:00 | 00,114,688 | R— | M] (Intel Corporation) — C:WINDOWSsystem32hkcmd.exe
[2006.08.14 21:38:00 | 00,094,208 | R— | M] (Intel Corporation) — C:WINDOWSsystem32igfxpers.exe
[2006.12.17 22:00:00 | 16,062,464 | R— | M] (Realtek Semiconductor Corp.) — C:WINDOWSRTHDCPL.exe
[2002.07.30 10:35:04 | 00,077,824 | —- | M] (Symantec Corporation) — C:Program FilesSymantec_Client_SecuritySymantec AntiVirusVPTray.exe
[2005.12.10 20:57:19 | 00,133,016 | —- | M] (DT Soft Ltd.) — C:Program FilesDAEMON Toolsdaemon.exe
[2007.08.24 07:00:48 | 00,033,648 | —- | M] (Microsoft Corporation) — D:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe
[2005.04.04 17:58:30 | 00,856,064 | —- | M] (Adobe Sytems Incorporated) — C:Program FilesAdobeAdobe Version Cue CS2ControlPanelVersionCueCS2Tray.exe
[2006.06.21 23:14:50 | 00,035,328 | —- | M] () — C:Program FilesWinampwinampa.exe
[2008.12.12 15:29:14 | 00,136,600 | —- | M] (Sun Microsystems, Inc.) — C:Program FilesJavajre6binjusched.exe
[2005.09.01 03:32:38 | 00,106,496 | —- | M] (ABBYY (BIT Software)) — C:Program FilesABBYY Lingvo 11 Six LanguagesLvAgent.exe
[2008.01.31 23:13:08 | 00,385,024 | —- | M] (Apple Inc.) — C:Program FilesQuickTimeQTTask.exe
[2008.02.07 23:28:18 | 00,221,184 | —- | M] () — C:Program FilesTMeterTrafMonitor.exe
[2005.08.11 15:30:30 | 00,081,920 | —- | M] (Macrovision Corporation) — C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe
[2006.10.22 22:24:02 | 00,620,152 | —- | M] (Adobe Systems Inc.) — D:Program FilesAdobeAcrobat 8.0Acrobatacrotray.exe
[2007.01.19 11:54:56 | 05,674,352 | —- | M] (Microsoft Corporation) — C:Program FilesMSN Messengermsnmsgr.exe
[2008.09.23 14:17:06 | 21,755,688 | R— | M] (Skype Technologies S.A.) — C:Program FilesSkypePhoneSkype.exe
[2008.09.03 10:40:04 | 00,133,104 | —- | M] (Google Inc.) — C:Documents and SettingsgigLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe
[2007.05.01 11:11:48 | 06,395,464 | —- | M] (TechSmith Corporation) — C:Program FilesTechSmithSnagIt 8SnagIt32.exe
[2007.05.01 11:12:10 | 00,058,952 | —- | M] (TechSmith Corporation) — C:Program FilesTechSmithSnagIt 8TscHelp.exe
[2007.05.01 11:12:10 | 00,075,336 | —- | M] (TechSmith Corporation) — C:Program FilesTechSmithSnagIt 8SnagPriv.exe
[2008.08.18 13:10:09 | 00,654,848 | —- | M] (Macrovision Europe Ltd.) — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
[2007.01.19 11:54:14 | 00,097,136 | —- | M] (Microsoft Corporation) — C:Program FilesMSN Messengerusnsvc.exe
[2008.09.23 14:17:08 | 00,076,744 | R— | M] (Skype Technologies) — C:Program FilesSkypePlugin ManagerskypePM.exe
[2007.02.17 01:30:40 | 00,009,728 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32cidaemon.exe
[2007.02.17 01:30:40 | 00,009,728 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32cidaemon.exe
[2008.05.21 03:37:24 | 12,844,576 | —- | M] (Microsoft Corporation) — D:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE
[2008.12.09 17:00:52 | 03,259,392 | —- | M] (The Author of QIP) — C:Program FilesQIPqip.exe
[2008.12.22 12:00:14 | 00,307,704 | —- | M] (Mozilla Corporation) — C:Program FilesMozilla Firefoxfirefox.exe
[2008.07.30 10:06:58 | 01,100,280 | —- | M] (Microsoft Corporation) — D:Program FilesMicrosoft Visual Studio 9.0Common7IDEdevenv.exe
[2007.02.17 01:30:40 | 00,009,728 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32cidaemon.exe
[2006.06.21 23:16:10 | 01,075,200 | —- | M] (Nullsoft) — C:Program FilesWinampwinamp.exe
[2007.02.17 03:00:02 | 00,155,648 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32sndvol32.exe
[2007.02.17 03:08:14 | 00,007,168 | —- | M] (Microsoft Corporation) — c:WINDOWSsystem32inetsrvw3wp.exe
[2003.04.08 21:51:36 | 00,840,192 | —- | M] (Eugene Roshal & FAR Group) — C:Program FilesFarFar.exe
[2007.02.17 02:57:48 | 00,034,816 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32rundll32.exe
[2008.12.03 19:59:02 | 01,265,296 | —- | M] (Malwarebytes Corporation) — C:Program FilesMalwarebytes’ Anti-Malwarembam.exe
[2008.12.24 19:34:28 | 00,423,424 | —- | M] (OldTimer Tools) — C:ProjectsASFCode — OBGMainASF.WebASF.Dictionary.Web.UIImagesnewDictOTViewIt.exe
========== (O23) Win32 Services ==========
[2007.09.26 19:19:28 | 00,072,704 | —- | M] (Adobe Systems) — C:Program FilesCommon FilesAdobe Systems SharedServiceAdobelmsvc.exe — (Adobe LM Service [On_Demand | Stopped])
[2005.04.04 17:58:28 | 00,163,840 | —- | M] (Adobe Systems Incorporated) — C:Program FilesAdobeAdobe Version Cue CS2binVersionCueCS2.exe — (Adobe Version Cue CS2 [Auto | Running])
[2007.03.20 15:41:24 | 00,153,792 | —- | M] (Adobe Systems Incorporated) — C:Program FilesCommon FilesAdobeAdobe Version Cue CS3ServerbinVersionCueCS3.exe — (Adobe Version Cue CS3 [On_Demand | Stopped])
[2008.07.25 11:16:40 | 00,034,312 | —- | M] (Microsoft Corporation) — C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_state.exe — (aspnet_state [On_Demand | Stopped])
[2006.02.28 11:42:38 | 00,229,376 | —- | M] (Apple Computer, Inc.) — C:Program FilesBonjourmDNSResponder.exe — (Bonjour Service [Auto | Running])
[2008.07.25 11:17:02 | 00,069,632 | —- | M] (Microsoft Corporation) — C:WINDOWSMicrosoft.NETFrameworkv2.0.50727mscorsvw.exe — (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
[2003.05.07 12:21:00 | 01,413,184 | —- | M] (Cisco Systems, Inc.) — C:Program FilesCisco SystemsVPN Clientcvpnd.exe — (CVPND [Auto | Running])
[2002.07.30 10:36:00 | 00,032,768 | —- | M] (Symantec Corporation) — C:Program FilesSymantec_Client_SecuritySymantec AntiVirusDefWatch.exe — (DefWatch [Auto | Running])
[2007.02.17 01:50:02 | 00,164,864 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32dfssvc.exe — (Dfs [On_Demand | Stopped])
[2008.08.18 13:10:09 | 00,654,848 | —- | M] (Macrovision Europe Ltd.) — C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe — (FLEXnet Licensing Service [On_Demand | Running])
[2008.07.29 21:10:04 | 00,046,104 | —- | M] (Microsoft Corporation) — C:WINDOWSMicrosoft.NETFrameworkv3.0WPFPresentationFontCache.exe — (FontCache3.0.0.0 [On_Demand | Stopped])
[2008.07.29 19:24:50 | 00,881,664 | —- | M] (Microsoft Corporation) — C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe — (idsvc [Unknown | Stopped])
[2007.02.17 02:19:44 | 00,014,336 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32inetsrvinetinfo.exe — (IISADMIN [Auto | Running])
[2007.02.17 02:20:52 | 00,040,448 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32ismserv.exe — (IsmServ [Disabled | Stopped])
[2008.12.12 15:29:14 | 00,152,984 | —- | M] (Sun Microsystems, Inc.) — C:Program FilesJavajre6binjqs.exe — (JavaQuickStarterService [Auto | Running])
[2007.02.17 23:30:26 | 00,094,720 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32llssrv.exe — (LicenseService [Disabled | Stopped])
[2006.10.26 12:40:34 | 00,335,872 | —- | M] (Microsoft Corporation) — C:Program FilesCommon FilesMicrosoft SharedVS7Debugmdm.exe — (MDM [Auto | Running])
[2007.08.24 06:59:20 | 00,068,464 | —- | M] (Microsoft Corporation) — D:Program FilesMicrosoft OfficeOffice12GrooveAuditService.exe — (Microsoft Office Groove Audit Service [On_Demand | Stopped])
[2008.08.05 16:58:50 | 00,205,840 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL Server90DTSBinnMsDtsSrvr.exe — (MsDtsServer [Auto | Running])
[2006.08.28 01:53:48 | 00,092,952 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnmsftesql.exe — (msftesql [Auto | Running])
[2008.08.05 16:58:52 | 29,184,016 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.4MSSQLBinnsqlservr.exe — (MSSQL$SQLEXPRESS [Auto | Running])
[2008.08.05 16:58:52 | 29,184,016 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnsqlservr.exe — (MSSQLSERVER [Auto | Running])
[2005.10.14 02:50:20 | 00,045,272 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL Server90Sharedsqladhlp90.exe — (MSSQLServerADHelper [Disabled | Stopped])
[2008.08.05 16:58:50 | 14,894,608 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.2OLAPbinmsmdsrv.exe — (MSSQLServerOLAPService [Auto | Running])
[2006.12.02 05:17:54 | 02,805,000 | —- | M] (Microsoft Corporation) — D:Program FilesMicrosoft Visual Studio 8Common7IDERemote Debuggerx86msvsmon.exe — (msvsmon80 [Disabled | Stopped])
[2008.07.29 13:10:46 | 03,201,024 | —- | M] (Microsoft Corporation) — D:Program FilesMicrosoft Visual Studio 9.0Common7IDERemote Debuggerx86msvsmon.exe — (msvsmon90 [Disabled | Stopped])
[2008.07.29 19:16:38 | 00,132,096 | —- | M] (Microsoft Corporation) — C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication FoundationSMSvcHost.exe — (NetTcpPortSharing [Disabled | Stopped])
[2002.07.30 10:40:44 | 00,573,440 | —- | M] (Symantec Corporation) — C:Program FilesSymantec_Client_SecuritySymantec AntiVirusRtvscan.exe — (Norton AntiVirus Server [Auto | Running])
[2007.02.17 02:41:50 | 00,792,064 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32ntfrs.exe — (NtFrs [On_Demand | Stopped])
[2007.08.24 03:19:12 | 00,443,776 | —- | M] (Microsoft Corporation) — C:Program FilesCommon FilesMicrosoft SharedOFFICE12ODSERV.EXE — (odserv [On_Demand | Stopped])
[2006.10.26 13:03:08 | 00,145,184 | —- | M] (Microsoft Corporation) — C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE — (ose [On_Demand | Stopped])
[2008.08.05 16:58:50 | 00,016,912 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.3Reporting ServicesReportServerbinReportingServicesService.exe — (ReportServer [Auto | Running])
[2007.02.17 02:55:56 | 00,067,072 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32rsopprov.exe — (RSoPProv [On_Demand | Stopped])
[2007.02.10 04:29:48 | 00,242,544 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL Server90Sharedsqlbrowser.exe — (SQLBrowser [Disabled | Stopped])
[2007.02.10 04:29:48 | 00,344,944 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL ServerMSSQL.1MSSQLBinnSQLAGENT90.EXE — (SQLSERVERAGENT [On_Demand | Stopped])
[2007.02.10 04:29:56 | 00,089,968 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe — (SQLWriter [Auto | Running])
[2008.03.28 00:31:52 | 00,407,040 | —- | M] () — C:Program FilesTMeterTrafSvc.exe — (TrafSvc [Auto | Running])
[2007.02.17 03:07:00 | 00,071,168 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32tssdis.exe — (Tssdis [Disabled | Stopped])
[2007.02.17 03:08:32 | 00,039,424 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32wdfmgr.exe — (UMWdf [On_Demand | Stopped])
[2007.01.19 11:54:14 | 00,097,136 | —- | M] (Microsoft Corporation) — C:Program FilesMSN Messengerusnsvc.exe — (usnjsvc [On_Demand | Running])
[2007.02.17 23:36:40 | 00,352,768 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32vds.exe — (vds [On_Demand | Stopped])
[2005.12.15 20:42:10 | 00,217,088 | —- | M] (VMware, Inc.) — C:Program FilesVMwareVMware Workstationvmware-authd.exe — (VMAuthdService [Auto | Running])
[2005.12.15 20:42:10 | 00,106,496 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32vmnetdhcp.exe — (VMnetDHCP [Auto | Running])
[2005.12.15 20:28:52 | 00,245,760 | —- | M] (VMware, Inc.) — C:Program FilesCommon FilesVMwareVMware Virtual Image Editingvmount2.exe — (vmount2 [Auto | Running])
[2005.12.15 20:42:10 | 00,135,168 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32vmnat.exe — (VMware NAT Service [Auto | Running])
========== Driver Services ==========
[2006.10.31 09:12:54 | 00,037,888 | R— | M] (Attansic Technology corporation.) — C:WINDOWSsystem32driversatl01_03.sys — (AtcL001 [On_Demand | Running])
[2008.12.22 11:56:41 | 00,017,920 | —- | M] () — C:WINDOWSsystem32clicker2.sys — (clicker2.sys [On_Demand | Stopped])
[2007.02.17 01:31:14 | 00,069,120 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32driversclusdisk.sys — (ClusDisk [Disabled | Stopped])
[2007.02.17 01:34:58 | 00,017,920 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32driverscrcdisk.sys — (crcdisk [Boot | Running])
[2003.05.07 12:22:16 | 00,268,874 | —- | M] (Cisco Systems, Inc.) — C:WINDOWSsystem32driversCVPNDRVA.sys — (CVPNDRVA [Auto | Running])
[2007.02.17 01:49:38 | 00,034,816 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32driversdfs.sys — (DfsDriver [Boot | Running])
[2002.10.17 13:22:50 | 00,138,916 | —- | M] (Deterministic Networks, Inc.) — C:WINDOWSsystem32driversdne2000.sys — (DNE [On_Demand | Running])
[2007.09.26 14:56:08 | 00,223,128 | —- | M] () — C:WINDOWSsystem32driversdtscsi.sys — (dtscsi [On_Demand | Running])
[2008.04.15 05:33:17 | 00,385,072 | —- | M] (Symantec Corporation) — C:Program FilesCommon FilesSymantec SharedEENGINEeeCtrl.sys — (eeCtrl [System | Running])
[2004.09.25 06:00:00 | 00,012,928 | —- | M] (Bo Brantén) — C:WINDOWSSystem32driversfiledisk.sys — (FileDisk [System | Running])
[2005.12.15 20:42:12 | 00,022,016 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32drivershcmon.sys — (hcmon [Auto | Running])
[2005.07.08 16:56:32 | 00,144,384 | —- | M] (Windows (R) Server 2003 DDK provider) — C:WINDOWSsystem32drivershdaudbus.sys — (HDAudBus [On_Demand | Running])
[2006.08.14 23:00:00 | 01,109,568 | R— | M] (Intel Corporation) — C:WINDOWSsystem32driversigxpmp32.sys — (ialm [On_Demand | Running])
[2006.12.20 22:00:00 | 04,405,248 | R— | M] (Realtek Semiconductor Corp.) — C:WINDOWSsystem32driversRtkHDAud.sys — (IntcAzAudAddService [On_Demand | Running])
[2004.08.13 08:56:20 | 00,005,810 | R— | M] () — C:WINDOWSsystem32driversASACPI.sys — (MTsensor [On_Demand | Running])
[2002.06.19 19:57:12 | 00,218,112 | —- | M] (Symantec Corporation) — C:Program FilesSymantec_Client_SecuritySymantec AntiVirusNavap.sys — (NAVAP [On_Demand | Running])
[2002.06.19 19:57:14 | 00,029,184 | —- | M] (Symantec Corporation) — C:Program FilesSymantec_Client_SecuritySymantec AntiVirusNavapel.sys — (NAVAPEL [Auto | Running])
[2008.12.23 21:35:02 | 00,089,104 | —- | M] (Symantec Corporation) — C:Program FilesCommon FilesSymantec SharedVirusDefs20081222.005NAVENG.SYS — (NAVENG [On_Demand | Running])
[2008.12.23 21:35:02 | 00,876,112 | —- | M] (Symantec Corporation) — C:Program FilesCommon FilesSymantec SharedVirusDefs20081222.005NAVEX15.SYS — (NAVEX15 [On_Demand | Running])
[2008.05.26 13:13:43 | 00,010,368 | —- | M] (Padus, Inc.) — C:WINDOWSsystem32driverspfc.sys — (pfc [On_Demand | Running])
[2007.02.17 02:54:52 | 00,020,480 | —- | M] (Parallel Technologies, Inc.) — C:WINDOWSsystem32driversptilink.sys — (Ptilink [On_Demand | Running])
[2006.05.17 02:23:54 | 00,046,080 | —- | M] (Sonic Solutions) — C:WINDOWSsystem32driversPxHelp20.sys — (PxHelp20 [Boot | Running])
[2007.11.13 15:32:23 | 00,020,480 | —- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) — C:WINDOWSsystem32driverssecdrv.sys — (Secdrv [On_Demand | Stopped])
[2007.09.26 14:54:46 | 00,643,072 | —- | M] () — C:WINDOWSsystem32driverssptd.sys — (sptd [Boot | Running])
[2007.09.26 14:53:37 | 00,073,224 | —- | M] (Symantec Corporation) — C:Program FilesSymantecSYMEVENT.SYS — (SymEvent [On_Demand | Running])
[2008.02.05 16:53:40 | 00,020,480 | —- | M] (Trafficreg Software) — C:WINDOWSsystem32driversTMETER.sys — (TMeter [On_Demand | Running])
[2007.02.17 03:07:52 | 00,024,064 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32driversvgapnp.sys — (vga [On_Demand | Stopped])
[2005.12.15 20:42:12 | 00,009,600 | R— | M] (VMware, Inc.) — C:WINDOWSsystem32driversvmnetadapter.sys — (VMnetAdapter [On_Demand | Running])
[2005.12.15 20:42:12 | 00,023,424 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32driversvmnetbridge.sys — (VMnetBridge [Auto | Running])
[2005.12.15 20:42:12 | 00,015,616 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32driversvmnetuserif.sys — (VMnetuserif [Auto | Running])
[2005.12.15 20:42:10 | 00,009,216 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32driversvmparport.sys — (VMparport [Auto | Running])
[2005.12.15 20:42:10 | 00,094,848 | —- | M] (VMware, Inc.) — C:WINDOWSsystem32driversvmx86.sys — (vmx86 [Auto | Running])
[2003.03.03 13:08:56 | 00,176,896 | —- | M] (Zone Labs Inc.) — C:WINDOWSsystem32vsdatant.sys — (vsdatant [On_Demand | Stopped])
[2006.12.02 02:10:00 | 00,048,128 | —- | M] (Microsoft Corporation) — D:Program FilesMicrosoft Visual Studio 8Team ToolsPerformance ToolsVSPerfDrv.sys — (VSPerfDrv [On_Demand | Stopped])
[2007.09.04 16:53:34 | 00,055,664 | —- | M] (Microsoft Corporation) — D:Program FilesMicrosoft Visual Studio 9.0Team ToolsPerformance ToolsVSPerfDrv90.sys — (VSPerfDrv90 [On_Demand | Stopped])
[2005.12.15 20:28:54 | 00,011,520 | —- | M] (VMware, Inc.) — C:Program FilesCommon FilesVMwareVMware Virtual Image Editingvstor2.sys — (vstor2 [Auto | Running])
[2007.02.17 03:09:26 | 00,169,984 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32driverswlbs.sys — (WLBS [On_Demand | Stopped])
[2007.02.17 03:11:38 | 00,014,848 | —- | M] (Microsoft Corporation) — C:WINDOWSsystem32driversws2ifsl.sys — (WS2IFSL [Disabled | Stopped])
========== (R ) Internet Explorer ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerMain]
«Default_Page_URL»=http://go.microsoft.com/fwlink/?LinkId=69157
«Default_Search_URL»=http://go.microsoft.com/fwlink/?LinkId=54896
«Default_Secondary_Page_URL»=
«Extensions Off Page»=about:NoAdd-ons
«Local Page»=%SystemRoot%system32blank.htm
«Search Page»=http://go.microsoft.com/fwlink/?LinkId=54896
«Security Risk Page»=about:SecurityRisk
«Start Page»=http://go.microsoft.com/fwlink/?LinkId=69157
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerSearch]
«CustomizeSearch»=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
«SearchAssistant»=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
[HKEY_CURRENT_USERSOFTWAREMicrosoftInternet ExplorerMain]
«Default_Page_URL»=res://shdoclc.dll/softAdmin.htm
«Local Page»=C:WINDOWSsystem32blank.htm
«Page_Transitions»=
«Search Page»=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
«Start Page»=res://shdoclc.dll/softAdmin.htm
[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet Settings]
«ProxyEnable» = 1
«ProxyOverride» = 192.168.0.*;msteam.local;*.msteam.local;localhost;
[HKEY_USERS.DEFAULTSOFTWAREMicrosoftInternet ExplorerMain]
[HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionInternet Settings]
«ProxyEnable» = 0
[HKEY_USERSS-1-5-18SOFTWAREMicrosoftInternet ExplorerMain]
[HKEY_USERSS-1-5-18SoftwareMicrosoftWindowsCurrentVersionInternet Settings]
«ProxyEnable» = 0
[HKEY_USERSS-1-5-19SOFTWAREMicrosoftInternet ExplorerMain]
[HKEY_USERSS-1-5-20SOFTWAREMicrosoftInternet ExplorerMain]
[HKEY_USERSS-1-5-20SoftwareMicrosoftWindowsCurrentVersionInternet Settings]
«ProxyEnable» = 0
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SOFTWAREMicrosoftInternet ExplorerMain]
«Default_Page_URL»=res://shdoclc.dll/softAdmin.htm
«Local Page»=C:WINDOWSsystem32blank.htm
«Page_Transitions»=
«Search Page»=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
«Start Page»=res://shdoclc.dll/softAdmin.htm
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SoftwareMicrosoftWindowsCurrentVersionInternet Settings]
«ProxyEnable» = 1
«ProxyOverride» = 192.168.0.*;msteam.local;*.msteam.local;localhost;
========== (O1) Hosts File ==========
HOSTS File = (734 bytes) — C:WINDOWSSystem32driversetcHosts
First 25 entries…
127.0.0.1 localhost
========== (O2) BHO’s ==========
[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects]
{00C6482D-C502-44C8-8409-FCE54AD9C208} (HKLM) — C:Program FilesTechSmithSnagIt 8SnagItBHO.dll (TechSmith Corporation)
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (HKLM) — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll (Adobe Systems Incorporated)
{53707962-6F74-2D53-2644-206D7942484F} (HKLM) — C:Program FilesSpybot — Search & DestroySDHelper.dll (Safer Networking Limited)
{62355041-605D-4469-84FD-5D66ED67A7E3} (HKLM) — D:Program FilesMicrosoft Visual Studio 8Common7IDEPrivateAssembliesMicrosoft.VisualStudio.QualityTools.RecorderBarBHO.dll (Microsoft Corporation)
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} (HKLM) — D:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll (Microsoft Corporation)
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (HKLM) — C:Program FilesJavajre6binssv.dll (Sun Microsystems, Inc.)
{7E853D72-626A-48EC-A868-BA8D5E23E045} (HKLM) — Reg Error: Key does not exist or could not be opened. File not found
{9030D464-4C02-4ABF-8ECC-5164760863C6} (HKLM) — C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll (Microsoft Corporation)
{A5366673-E8CA-11D3-9CD9-0090271D075B} (HKLM) — C:Program FilesFlashGetJccatch.dll (Amaze Soft)
{AE7CD045-E861-484f-8273-0445EE161910} (HKLM) — D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll (Adobe Systems Incorporated)
{DBC80044-A445-435b-BC74-9C25C1C588A9} (HKLM) — C:Program FilesJavajre6binjp2ssv.dll (Sun Microsystems, Inc.)
{E31CE47F-C268-41ba-897B-B415E613947D} (HKLM) — D:Program FilesMicrosoft Visual Studio 9.0Common7IDEPrivateAssembliesMicrosoft.VisualStudio.QualityTools.RecorderBarBHO90.dll (Microsoft Corporation)
{E7E6F031-17CE-4C07-BC86-EABFE594F69C} (HKLM) — C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll (Sun Microsystems, Inc.)
========== (O3) Toolbars ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolBar]
«{47833539-D0C5-4125-9FA8-0819E2EAAC93}» (HKLM) — D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll (Adobe Systems Incorporated)
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolBar]
«{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3}» (HKLM) — C:Program FilesTechSmithSnagIt 8SnagItIEAddin.dll (TechSmith Corporation)
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolBar]
«{E0E899AB-F487-11D5-8D29-0050BA6940E3}» (HKLM) — C:Program FilesFlashGetfgiebar.dll (Amaze Soft)
[HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerToolbarWebBrowser]
«{47833539-D0C5-4125-9FA8-0819E2EAAC93}» (HKLM) — D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll (Adobe Systems Incorporated)
[HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerToolbarWebBrowser]
«{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3}» (HKLM) — Reg Error: Key does not exist or could not be opened. File not found
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SoftwareMicrosoftInternet ExplorerToolbarWebBrowser]
«{47833539-D0C5-4125-9FA8-0819E2EAAC93}» (HKLM) — D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll (Adobe Systems Incorporated)
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SoftwareMicrosoftInternet ExplorerToolbarWebBrowser]
«{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3}» (HKLM) — Reg Error: Key does not exist or could not be opened. File not found
========== (O4) Run Keys ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
«»= File not found
«Acrobat Assistant 8.0″=»D:Program FilesAdobeAcrobat 8.0AcrobatAcrotray.exe» (Adobe Systems Inc.)
«Adobe Reader Speed Launcher»=»C:Program FilesAdobeReader 8.0ReaderReader_sl.exe» (Adobe Systems Incorporated)
«Adobe Version Cue CS2″=»C:Program FilesAdobeAdobe Version Cue CS2ControlPanelVersionCueCS2Tray.exe» (Adobe Sytems Incorporated)
«Adobe_ID0EYTHM»=C:PROGRA~1COMMON~1AdobeADOBEV~1ServerbinVERSIO~2.EXE (Adobe Systems Incorporated)
«Alcmtr»=ALCMTR.EXE (Realtek Semiconductor Corp.)
«DAEMON Tools»=»C:Program FilesDAEMON Toolsdaemon.exe» -lang 1033 (DT Soft Ltd.)
«GrooveMonitor»=»D:Program FilesMicrosoft OfficeOffice12GrooveMonitor.exe» (Microsoft Corporation)
«HotKeysCmds»=C:WINDOWSsystem32hkcmd.exe (Intel Corporation)
«IgfxTray»=C:WINDOWSsystem32igfxtray.exe (Intel Corporation)
«ISUSPM Startup»=»c:Program FilesCommon FilesInstallShieldUpdateServiceisuspm.exe» -startup (Macrovision Corporation)
«ISUSScheduler»=»C:Program FilesCommon FilesInstallShieldUpdateServiceissch.exe» -start (Macrovision Corporation)
«Lingvo Launcher»=»C:Program FilesABBYY Lingvo 11 Six LanguagesLvagent.exe» /STARTUP (ABBYY (BIT Software))
«LingvoTraining»=»C:Program FilesABBYY Lingvo 11 Six LanguagesTutor.exe» /ND /NW /AS (ABBYY (BIT Software))
«NevoDRM»=»C:Program FilesИгрыNevoDRMNevoDRM.exe» ()
«Persistence»=C:WINDOWSsystem32igfxpers.exe (Intel Corporation)
«QuickTime Task»=»C:Program FilesQuickTimeQTTask.exe» -atboottime (Apple Inc.)
«RTHDCPL»=RTHDCPL.EXE (Realtek Semiconductor Corp.)
«SkyTel»=SkyTel.EXE (Realtek Semiconductor Corp.)
«SunJavaUpdateSched»=»C:Program FilesJavajre6binjusched.exe» (Sun Microsystems, Inc.)
«TrafMonitor»=C:Program FilesTMetertrafmonitor.exe /logon /admin ()
«vptray»=C:PROGRA~1SYMANT~1SYMANT~1vptray.exe (Symantec Corporation)
«WinampAgent»=C:Program FilesWinampwinampa.exe ()
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
«Google Update»=»C:Documents and SettingsgigLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe» /c (Google Inc.)
«MsnMsgr»=»C:Program FilesMSN MessengerMsnMsgr.Exe» /background (Microsoft Corporation)
«Skype»=»C:Program FilesSkypePhoneSkype.exe» /nosplash /minimized (Skype Technologies S.A.)
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe (Safer Networking Limited)
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SOFTWAREMicrosoftWindowsCurrentVersionRun]
«Google Update»=»C:Documents and SettingsgigLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe» /c (Google Inc.)
«MsnMsgr»=»C:Program FilesMSN MessengerMsnMsgr.Exe» /background (Microsoft Corporation)
«Skype»=»C:Program FilesSkypePhoneSkype.exe» /nosplash /minimized (Skype Technologies S.A.)
«SpybotSD TeaTimer»=C:Program FilesSpybot — Search & DestroyTeaTimer.exe (Safer Networking Limited)
========== (O4) RunOnce Keys ==========
[HKEY_USERS.DEFAULTSOFTWAREMicrosoftWindowsCurrentVersionRunOnce]
«tscuninstall»=%systemroot%system32tscupgrd.exe (Microsoft Corporation)
[HKEY_USERSS-1-5-18SOFTWAREMicrosoftWindowsCurrentVersionRunOnce]
«tscuninstall»=%systemroot%system32tscupgrd.exe (Microsoft Corporation)
[HKEY_USERSS-1-5-19SOFTWAREMicrosoftWindowsCurrentVersionRunOnce]
«tscuninstall»=%systemroot%system32tscupgrd.exe (Microsoft Corporation)
[HKEY_USERSS-1-5-20SOFTWAREMicrosoftWindowsCurrentVersionRunOnce]
«tscuninstall»=%systemroot%system32tscupgrd.exe (Microsoft Corporation)
========== (O4) Startup Folders ==========
[2008.08.18 13:25:43 | 00,295,606 | R— | M] () — C:Documents and SettingsAll UsersStart MenuProgramsStartupAdobe Acrobat Speed Launcher.lnk = C:WINDOWSInstaller{AC76BA86-1033-0000-7760-000000000003}_SC_Acrobat.exe
[2006.10.22 23:01:50 | 00,734,872 | —- | M] () — C:Documents and SettingsAll UsersStart MenuProgramsStartupAdobe Acrobat Synchronizer.lnk = D:Program FilesAdobeAcrobat 8.0AcrobatAdobeCollabSync.exe
[2005.03.16 18:16:50 | 00,113,664 | —- | M] (Adobe Systems, Inc.) — C:Documents and SettingsAll UsersStart MenuProgramsStartupAdobe Gamma.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe
[2007.05.01 11:11:48 | 06,395,464 | —- | M] (TechSmith Corporation) — C:Documents and SettingsAll UsersStart MenuProgramsStartupSnagIt 8.lnk = C:Program FilesTechSmithSnagIt 8SnagIt32.exe
[2007.09.27 14:27:25 | 00,006,144 | R— | M] () — C:Documents and SettingsAll UsersStart MenuProgramsStartupVPN Client.lnk = C:WINDOWSInstaller{3E5562ED-69AB-4CEC-91E2-64E18EC5ACC6}Icon3E5562ED7.ico
========== (O6 & O7) Current Version Policies ==========
[HKEY_CURRENT_USERSoftwarepoliciesmicrosoftinternet explorerControl Panel]
«Proxy»=1
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566Softwarepoliciesmicrosoftinternet explorerControl Panel]
«Proxy»=1
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer]
«ShowSuperHidden»=1
«NoDriveTypeAutoRun»=95
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem]
«disablecad»=0
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«scforceoption»=0
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer]
«NoDriveTypeAutoRun»=149
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem]
«DisableRegistryTools»=0
[HKEY_USERS.DEFAULTSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer]
«NoDriveTypeAutoRun»=149
[HKEY_USERSS-1-5-18SOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer]
«NoDriveTypeAutoRun»=149
[HKEY_USERSS-1-5-19SOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer]
«NoDriveTypeAutoRun»=149
[HKEY_USERSS-1-5-20SOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer]
«NoDriveTypeAutoRun»=149
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer]
«NoDriveTypeAutoRun»=149
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem]
«DisableRegistryTools»=0
========== (O8) IE Context Menu Extensions ==========
[HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMenuExt]
Append to existing PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert link target to Adobe PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert link target to existing PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert selected links to Adobe PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert selected links to existing PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert selection to Adobe PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert selection to existing PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert to Adobe PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
E&xport to Microsoft Excel: D:Program FilesMicrosoft OfficeOffice12EXCEL.EXE [2008.10.18 18:30:22 | 17,931,616 | —- | M] (Microsoft Corporation)
Translate with ABBYY &Lingvo: C:Program FilesABBYY Lingvo 11 Six LanguagesLingvo.exe [2005.09.01 04:14:20 | 04,579,328 | —- | M] (ABBYY (BIT Software))
Закачать все при помощи FlashGet: C:Program FilesFlashGetjc_all.htm [2000.02.06 11:06:06 | 00,000,575 | —- | M] ()
Закачать при помощи FlashGet: C:Program FilesFlashGetjc_link.htm [2000.02.06 11:06:34 | 00,001,898 | —- | M] ()
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SoftwareMicrosoftInternet ExplorerMenuExt]
Append to existing PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert link target to Adobe PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert link target to existing PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert selected links to Adobe PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert selected links to existing PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert selection to Adobe PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert selection to existing PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
Convert to Adobe PDF: D:Program FilesAdobeAcrobat 8.0AcrobatAcroIEFavClient.dll [2006.10.22 22:20:26 | 00,321,120 | —- | M] (Adobe Systems Incorporated)
E&xport to Microsoft Excel: D:Program FilesMicrosoft OfficeOffice12EXCEL.EXE [2008.10.18 18:30:22 | 17,931,616 | —- | M] (Microsoft Corporation)
Translate with ABBYY &Lingvo: C:Program FilesABBYY Lingvo 11 Six LanguagesLingvo.exe [2005.09.01 04:14:20 | 04,579,328 | —- | M] (ABBYY (BIT Software))
Закачать все при помощи FlashGet: C:Program FilesFlashGetjc_all.htm [2000.02.06 11:06:06 | 00,000,575 | —- | M] ()
Закачать при помощи FlashGet: C:Program FilesFlashGetjc_link.htm [2000.02.06 11:06:34 | 00,001,898 | —- | M] ()
========== (O9) IE Extensions ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerExtensions]
{2670000A-7350-4f3c-8081-5663EE0C6C49}: Button: Send to OneNote — D:Program FilesMicrosoft OfficeOffice12ONBttnIE.dll [2007.12.13 01:20:58 | 00,606,288 | —- | M] (Microsoft Corporation)
{2670000A-7350-4f3c-8081-5663EE0C6C49}: Menu: S&end to OneNote — D:Program FilesMicrosoft OfficeOffice12ONBttnIE.dll [2007.12.13 01:20:58 | 00,606,288 | —- | M] (Microsoft Corporation)
{92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Research — D:Program FilesMicrosoft OfficeOffice12REFIEBAR.DLL [2006.10.26 19:12:22 | 00,040,424 | —- | M] (Microsoft Corporation)
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}: Button: FlashGet — %ProgramFiles%FlashGetflashget.exe [2002.05.27 11:51:22 | 01,179,648 | —- | M] (Amaze Soft)
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}: Menu: &FlashGet — %ProgramFiles%FlashGetflashget.exe [2002.05.27 11:51:22 | 01,179,648 | —- | M] (Amaze Soft)
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2}: Menu: Spybot — Search & Destroy Configuration — %ProgramFiles%Spybot — Search & DestroySDHelper.dll [2008.09.15 14:25:44 | 01,562,960 | RHS- | M] (Safer Networking Limited)
{E59EB121-F339-4851-A3BA-FE49C35617C2}: Button: ICQ6 — %ProgramFiles%ICQ6ICQ.exe [2008.09.01 21:08:21 | 00,173,304 | —- | M] (ICQ, Inc.)
{E59EB121-F339-4851-A3BA-FE49C35617C2}: Menu: ICQ6 — %ProgramFiles%ICQ6ICQ.exe [2008.09.01 21:08:21 | 00,173,304 | —- | M] (ICQ, Inc.)
{FA9B9510-9FCB-4ca0-818C-5D0987B47C4D}: Button: PokerStars.net — %ProgramFiles%PokerStars.NETPokerStarsUpdate.exe [2008.11.07 18:44:55 | 00,701,720 | —- | M] (PokerStars)
[HKEY_CURRENT_USERSOFTWAREMicrosoftInternet ExplorerExtensions]
CmdMapping\{2670000A-7350-4f3c-8081-5663EE0C6C49} [HKLM] -> D:Program FilesMicrosoft OfficeOffice12ONBttnIE.dll [Send to OneNote] -> [2007.12.13 01:20:58 | 00,606,288 | —- | M] (Microsoft Corporation)
CmdMapping\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> D:Program FilesMicrosoft OfficeOffice12REFIEBAR.DLL [Research] -> [2006.10.26 19:12:22 | 00,040,424 | —- | M] (Microsoft Corporation)
CmdMapping\{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} [HKLM] -> %ProgramFiles%FlashGetflashget.exe [FlashGet] -> [2002.05.27 11:51:22 | 01,179,648 | —- | M] (Amaze Soft)
CmdMapping\{E59EB121-F339-4851-A3BA-FE49C35617C2} [HKLM] -> %ProgramFiles%ICQ6ICQ.exe [ICQ6] -> [2008.09.01 21:08:21 | 00,173,304 | —- | M] (ICQ, Inc.)
CmdMapping\{FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} [HKLM] -> %ProgramFiles%PokerStars.NETPokerStarsUpdate.exe [PokerStars.net] -> [2008.11.07 18:44:55 | 00,701,720 | —- | M] (PokerStars)
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SOFTWAREMicrosoftInternet ExplorerExtensions]
CmdMapping\{2670000A-7350-4f3c-8081-5663EE0C6C49} [HKLM] -> D:Program FilesMicrosoft OfficeOffice12ONBttnIE.dll [Send to OneNote] -> [2007.12.13 01:20:58 | 00,606,288 | —- | M] (Microsoft Corporation)
CmdMapping\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> D:Program FilesMicrosoft OfficeOffice12REFIEBAR.DLL [Research] -> [2006.10.26 19:12:22 | 00,040,424 | —- | M] (Microsoft Corporation)
CmdMapping\{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} [HKLM] -> %ProgramFiles%FlashGetflashget.exe [FlashGet] -> [2002.05.27 11:51:22 | 01,179,648 | —- | M] (Amaze Soft)
CmdMapping\{E59EB121-F339-4851-A3BA-FE49C35617C2} [HKLM] -> %ProgramFiles%ICQ6ICQ.exe [ICQ6] -> [2008.09.01 21:08:21 | 00,173,304 | —- | M] (ICQ, Inc.)
CmdMapping\{FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} [HKLM] -> %ProgramFiles%PokerStars.NETPokerStarsUpdate.exe [PokerStars.net] -> [2008.11.07 18:44:55 | 00,701,720 | —- | M] (PokerStars)
========== (O12) Internet Explorer Plugins ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerPlugins]
PluginsPage: «» = http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s
PluginsPageFriendlyName: «» = Microsoft ActiveX Gallery
========== (O13) Default Prefixes ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionURLDefaultPrefix]
«»=http://
========== (O15) Trusted Sites ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionInternet SettingsZoneMapDomains]
1 domain(s) and sub-domain(s) not assigned to a zone.
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionInternet SettingsZoneMapDomains]
dinex.dkwww: http in My Computer
1 domain(s) and sub-domain(s) not assigned to a zone.
[HKEY_USERSS-1-5-21-3678828449-2864459046-1899228827-5566SOFTWAREMicrosoftWindowsCurrentVersionInternet SettingsZoneMapDomains]
dinex.dkwww: http in My Computer
1 domain(s) and sub-domain(s) not assigned to a zone.
========== (O16) DPF ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftCode Store DatabaseDistribution Units]
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3}: http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1207113857174 — MUWebControl Class
{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab — Java Plug-in 1.6.0_11
{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab — Java Plug-in 1.6.0_02
{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab — Java Plug-in 1.6.0_03
{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab — Java Plug-in 1.6.0_05
{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab — Java Plug-in 1.6.0_11
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab — Java Plug-in 1.6.0_11
{D27CDB6E-AE6D-11CF-96B8-444553540000}: http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab — Shockwave Flash Object
========== (O17) DNS Name Servers ==========
{09B89079-9E6A-4D18-B873-0F1152B49429} (Servers: | Description: )
{63CACF20-719E-4C91-A034-5EC6AA05B47E} (Servers: | Description: )
{C0DA178A-92AD-47E9-A7CD-DEC0312D3098} (Servers: | Description: Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller)
========== (O20) Winlogon Notify Settings ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotify]
igfxcui: «DllName» = igfxdev.dll — C:WINDOWSsystem32igfxdev.dll (Intel Corporation)
NavLogon: «DllName» = C:WINDOWSsystem32NavLogon.dll — C:WINDOWSsystem32NavLogon.dll ()
========== Shell Execute Hooks ==========
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks]
«{B5A7F190-DDA6-4420-B3BA-52453494E6CD}» (HKLM) — D:Program FilesMicrosoft OfficeOffice12GrooveShellExtensions.dll (Microsoft Corporation)
========== Safeboot Options ==========
«AlternateShell»=cmd.exe
========== CDRom AutoRun Settings ==========
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesCdrom]
«AutoRun» = 0
========== Autorun Files on Drives ==========
AUTOEXEC.BAT []
[2007.09.26 15:04:56 | 00,000,000 | —- | M] () — C:AUTOEXEC.BAT — [ NTFS ]
autorun.inf [[autorun] | label=Microsoft Expression Blend 2 | icon=Setup.exe,0 | open=Setup.exe | ]
[2008.04.21 09:36:50 | 00,000,081 | R— | M] () — E:autorun.inf — [ CDFS ]
AUTORUN.INF [[AutoRun] | open=setup.exe | icon=setup.exe,0 | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ]
[2001.08.24 00:00:00 | 00,000,110 | R— | M] () — F:AUTORUN.INF — [ CDFS ]
AUTORUN.INF [[AutoRun] | open=setup.exe | icon=setup.exe,0 | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ]
[2001.08.24 00:00:00 | 00,000,110 | R— | M] () — G:AUTORUN.INF — [ CDFS ]
========== MountPoints2 ==========
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{17d25e65-da06-11dc-9c02-005056c00008}ShellAutoRuncommand]
«»=F:
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{17d25e65-da06-11dc-9c02-005056c00008}ShellopenCommand]
«»=rundll32.exe .desktop.dll,InstallM
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{270c11ff-6cce-11dc-97b1-005056c00008}ShellAutoRuncommand]
«»=F:f.exe — File not found
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{270c11ff-6cce-11dc-97b1-005056c00008}ShellexploreCommand]
«»=F:f.exe — File not found
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExplorerMountPoints2{270c11ff-6cce-11dc-97b1-005056c00008}ShellopenCommand]
«»=F:f.exe — File not found
========== Files/Folders — Created Within 30 Days ==========
[2008.12.24 16:03:21 | 00,000,000 | —D | C] — C:Documents and SettingsgigDesktopЮрчик
[2008.12.24 14:53:03 | 00,000,000 | —D | C] — C:Documents and SettingsgigDesktopzooming
[2008.12.24 13:08:14 | 02,152,962 | —- | C] () — C:Documents and SettingsgigDesktopuntitled.bmp
[2008.12.23 19:02:16 | 00,000,939 | —- | C] () — C:Documents and SettingsgigDesktopSpybot — Search & Destroy.lnk
[2008.12.23 19:02:12 | 00,000,000 | —D | C] — C:Program FilesSpybot — Search & Destroy
[2008.12.23 19:02:12 | 00,000,000 | —D | C] — C:Documents and SettingsAll UsersApplication DataSpybot — Search & Destroy
[2008.12.23 18:59:30 | 15,083,520 | —- | C] (Safer Networking Limited ) — C:Documents and SettingsgigDesktopspybotsd160.exe
[2008.12.23 18:04:11 | 00,389,120 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32cmd.execf
[2008.12.23 18:04:05 | 00,000,000 | —D | C] — C:32788R22FWJFW
[2008.12.23 18:03:53 | 02,885,687 | —- | C] () — C:Documents and SettingsgigDesktopComboFix.exe
[2008.12.23 16:29:35 | 00,796,078 | —- | C] () — C:Documents and SettingsgigDesktopzooming.zip
[2008.12.23 14:37:50 | 00,001,740 | —- | C] () — C:Documents and SettingsgigDesktopHijackThis.lnk
[2008.12.23 14:17:17 | 00,000,000 | —D | C] — C:Documents and SettingsgigDesktopSecurity
[2008.12.22 18:03:01 | 00,012,319 | —- | C] () — C:Documents and SettingsgigDesktopSprotin credit card payment.docx
[2008.12.22 15:21:31 | 00,539,136 | —- | C] () — C:Documents and SettingsgigDesktopASF_2008_12_19_1.mpp
[2008.12.18 22:31:39 | 03,593,216 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32mshtml.dll
[2008.12.17 13:43:30 | 00,000,000 | —D | C] — C:Program FilesMultipleIEs
[2008.12.15 17:31:33 | 00,017,920 | —- | C] () — C:WINDOWSSystem32clicker2.sys
[2008.12.15 14:09:19 | 00,000,127 | —- | C] () — C:WINDOWSSystem32MRT.INI
[2008.12.12 18:49:11 | 00,000,000 | —D | C] — C:Documents and SettingsgigDesktopLaw
[2008.12.12 18:31:56 | 00,353,647 | —- | C] () — C:Documents and SettingsgigMy DocumentsПлюсы.docx
[2008.12.12 15:58:58 | 00,000,000 | —D | C] — C:rsit
[2008.12.12 15:58:44 | 00,305,705 | —- | C] () — C:Documents and SettingsgigDesktopRSIT.exe
[2008.12.12 13:58:50 | 00,000,000 | —D | C] — C:Documents and SettingsgigApplication DataMalwarebytes
[2008.12.12 13:58:47 | 00,015,504 | —- | C] (Malwarebytes Corporation) — C:WINDOWSSystem32driversmbam.sys
[2008.12.12 13:58:47 | 00,000,702 | —- | C] () — C:Documents and SettingsAll UsersDesktopMalwarebytes’ Anti-Malware.lnk
[2008.12.12 13:58:45 | 00,038,496 | —- | C] (Malwarebytes Corporation) — C:WINDOWSSystem32driversmbamswissarmy.sys
[2008.12.12 13:58:44 | 00,000,000 | —D | C] — C:Program FilesMalwarebytes’ Anti-Malware
[2008.12.12 13:58:44 | 00,000,000 | —D | C] — C:Documents and SettingsAll UsersApplication DataMalwarebytes
[2008.12.12 13:15:16 | 00,000,000 | —D | C] — C:Program FilesAdvanced FAR FTP Password Recovery
[2008.12.12 12:35:11 | 00,000,000 | —D | C] — C:Program FilesTrend Micro
[2008.12.12 12:35:03 | 00,812,344 | —- | C] (Trend Micro Inc.) — C:Documents and SettingsgigDesktopHJTInstall.exe
[2008.12.12 11:58:37 | 00,000,000 | —D | C] — C:Program FilesSoftLogica
[2008.12.10 18:27:51 | 00,459,264 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32msfeeds.dll
[2008.12.10 18:27:51 | 00,267,776 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32iertutil.dll
[2008.12.10 18:27:51 | 00,105,984 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32url.dll
[2008.12.10 18:27:51 | 00,105,984 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcacheurl.dll
[2008.12.10 18:27:51 | 00,052,224 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32msfeedsbs.dll
[2008.12.10 18:27:50 | 00,383,488 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32ieapfltr.dll
[2008.12.10 18:27:50 | 00,063,488 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32icardie.dll
[2008.12.10 18:27:49 | 00,124,928 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcacheadvpack.dll
[2008.12.10 18:27:49 | 00,124,928 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32advpack.dll
[2008.12.10 18:27:48 | 00,826,368 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32wininet.dll
[2008.12.10 18:27:48 | 00,826,368 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcachewininet.dll
[2008.12.10 18:27:47 | 01,160,192 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32urlmon.dll
[2008.12.10 18:27:47 | 01,160,192 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcacheurlmon.dll
[2008.12.10 18:27:43 | 06,066,176 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32ieframe.dll
[2008.12.10 18:27:41 | 03,593,216 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcachemshtml.dll
[2008.12.10 18:27:38 | 00,096,768 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcachelogagent.exe
[2008.12.10 18:27:37 | 00,990,208 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcachewmnetmgr.dll
[2008.12.10 18:27:35 | 02,330,624 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32wmvcore.dll
[2008.12.10 18:27:35 | 02,330,624 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcachewmvcore.dll
[2008.12.10 18:27:31 | 00,284,672 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32gdi32.dll
[2008.12.10 18:27:31 | 00,284,672 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcachegdi32.dll
[2008.12.10 18:27:30 | 00,247,326 | —- | C] (Microsoft Corporation) — C:WINDOWSSystem32dllcachestrmdll.dll
[2008.12.04 19:48:19 | 00,000,000 | —D | C] — C:Documents and SettingsgigLocal SettingsApplication Dataany
[2008.12.04 19:48:19 | 00,000,000 | —D | C] — C:Documents and SettingsgigApplication Dataany
[2008.12.03 14:56:48 | 00,524,288 | —- | C] () — C:Documents and SettingsgigDesktopASF_2008_12_03.mpp
[2008.12.02 12:24:45 | 00,009,600 | R— | C] (VMware, Inc.) — C:WINDOWSSystem32driversvmnetadapter.sys
[2008.12.02 12:24:45 | 00,005,120 | R— | C] (VMware, Inc.) — C:WINDOWSSystem32vnetinst.dll
[2008.12.02 12:24:43 | 00,135,168 | —- | C] (VMware, Inc.) — C:WINDOWSSystem32vmnat.exe
[2008.12.02 12:24:43 | 00,106,496 | —- | C] (VMware, Inc.) — C:WINDOWSSystem32vmnetdhcp.exe
[2008.12.02 12:24:43 | 00,015,616 | —- | C] (VMware, Inc.) — C:WINDOWSSystem32driversvmnetuserif.sys
[2008.12.02 12:24:41 | 00,010,240 | R— | C] (VMware, Inc.) — C:WINDOWSSystem32driversvmnet.sys
[2008.12.02 12:24:40 | 00,385,024 | —- | C] (VMware, Inc.) — C:WINDOWSSystem32vnetlib.dll
[2008.12.02 12:23:49 | 00,000,000 | —D | C] — C:Program FilesCommon FilesVMware
[2008.12.01 21:11:51 | 00,001,024 | —- | C] () — C:.rnd
[2008.12.01 21:10:40 | 00,000,000 | —D | C] — C:Program FilesVMware
[2008.12.01 20:42:47 | 00,000,000 | —D | C] — C:mnt
[2008.12.01 13:17:48 | 00,000,000 | —D | C] — C:Program Filesavz4
[2008.12.01 13:04:38 | 00,000,056 | -H— | C] () — C:WINDOWSSystem32ezsidmv.dat
[2008.12.01 13:04:11 | 00,000,000 | —D | C] — C:Documents and SettingsgigApplication DataskypePM
[2008.11.28 20:31:44 | 00,104,448 | —- | C] () — C:WINDOWSSystem32rdl9432.exe
[2008.11.28 20:28:37 | 00,000,000 | —D | C] — C:Documents and SettingsgigApplication DataScreenSeven
[2008.11.28 20:26:38 | 00,000,010 | —- | C] () — C:WINDOWSpopcinfo.dat
[2008.11.28 19:47:26 | 00,000,000 | —D | C] — C:Program FilesZuma Deluxe
[2008.11.28 19:47:14 | 00,000,000 | —D | C] — C:Program FilesReflexiveArcade
[2008.11.27 18:50:11 | 00,000,000 | —D | C] — C:Documents and SettingsgigLocal SettingsApplication DataPaint.NET
[2008.11.27 18:44:50 | 00,000,000 | —D | C] — C:Transfer
[2008.11.27 16:40:06 | 00,000,000 | —D | C] — C:Documents and SettingsgigMy DocumentsDownloads
[2008.11.27 15:14:14 | 00,000,000 | —D | C] — C:Documents and SettingsgigDesktopPublishingSupport.Input
