Re: Re: Появляющиеся порно банеры на открытых веб-страницах

1 сентября, 2009 в 4:54 пп #25491

Participant

Темы:1
Сообщений:14

☆

Logfile of random’s system information tool 1.06 (written by random/random)
Run by ваня at 2009-09-01 20:33:32
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 105 GB (69%) free of 152 GB
Total RAM: 3069 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:34:19, on 01.09.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal

Running processes:
C:Windowssystem32taskeng.exe
C:Windowssystem32Dwm.exe
C:WindowsExplorer.EXE
C:Program FilesJavajre1.6.0_06binjusched.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:Program FilesToshibaBluetooth Toshiba StackItSecMng.exe
C:Program FilesToshibaConfigFreeNDSTray.exe
C:Program FilesToshibaToshiba Online Product InformationTOPI.exe
C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe
C:Program FilesGoogleGoogle EULAGoogleEULALauncher.exe
C:Program FilesToshiba TEMPROToshiba.Tempo.UI.TrayApplication.exe
C:WindowsRtHDVCpl.exe
C:Program FilesCamera Assistant Software for Toshibatraybar.exe
C:Program FilesToshibaPower SaverTPwrMain.exe
C:Program FilesToshibaSmoothViewSmoothView.exe
C:Program FilesToshibaFlashCardsTCrdMain.exe
C:Program FilesToshibaRegistrationToshibaRegistration.exe
C:Program FilesMail.RuAgentmagent.exe
C:Program FilesHPHP UTbinhppusg.exe
E:винампWinampwinampa.exe
C:Program FilesWindows Media Playerwmpnscfg.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesToshibaTOSCDSPDTOSCDSPD.exe
C:Program FilesDownload Masterdmaster.exe
C:Program FilesICQ6.5ICQ.exe
C:Program FilesCommon FilesNeroLibNMIndexStoreSvr.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.exe
C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Program FilesToshibaConfigFreeCFSwMgr.exe
C:Program FilesSynapticsSynTPSynTPHelper.exe
C:Program FilesInternet Exploreriexplore.exe
C:Windowssystem32MacromedFlashFlashUtil10b.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesKaspersky LabKaspersky Anti-Virus 2009avp.exe
C:UsersваняDesktopRSIT.exe
C:Windowssystem32SearchFilterHost.exe
C:Program Filestrend microваня.exe

R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.mail.ru/
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://mail.ru
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
R3 — URLSearchHook: (no name) — {83821C2B-32A8-4DD7-B6D4-44309A78E668} — C:Program FilesMail.RuAgentMradllnewmrasearch.dll
O2 — BHO: Adobe PDF Reader Link Helper — {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll
O2 — BHO: IEVkbdBHO — {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} — C:Program FilesKaspersky LabKaspersky Anti-Virus 2009ievkbd.dll
O2 — BHO: SSVHelper Class — {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} — C:Program FilesJavajre1.6.0_06binssv.dll
O2 — BHO: IE 4.x-6.x BHO for Download Master — {9961627E-4059-41B4-8E0E-A7D6B3854ADF} — C:PROGRA~1DOWNLO~1dmiehlp.dll
O2 — BHO: Google Toolbar Helper — {AA58ED58-01DD-4D91-8333-CF10577473F7} — C:UsersваняGooglegoogletoolbar1.dll
O2 — BHO: Google Toolbar Notifier BHO — {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} — C:Program FilesGoogleGoogleToolbarNotifier3.1.415.1646swg.dll
O3 — Toolbar: &Google — {2318C2B1-4965-11d4-9B18-009027A5CD4F} — c:program filesgooglegoogletoolbar1.dll
O4 — HKLM..Run: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
O4 — HKLM..Run: [SunJavaUpdateSched] «C:Program FilesJavajre1.6.0_06binjusched.exe»
O4 — HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 — HKLM..Run: [ITSecMng] %ProgramFiles%TOSHIBABluetooth Toshiba StackItSecMng.exe /START
O4 — HKLM..Run: [NDSTray.exe] NDSTray.exe
O4 — HKLM..Run: [cfFncEnabler.exe] cfFncEnabler.exe
O4 — HKLM..Run: [Adobe Reader Speed Launcher] «C:Program FilesAdobeReader 8.0ReaderReader_sl.exe»
O4 — HKLM..Run: [topi] C:Program FilesTOSHIBAToshiba Online Product Informationtopi.exe -startup
O4 — HKLM..Run: [Google Desktop Search] «C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe» /startup
O4 — HKLM..Run: [Google EULA Launcher] c:Program FilesGoogleGoogle EULAGoogleEULALauncher.exe IE PA
O4 — HKLM..Run: [Toshiba TEMPO] C:Program FilesToshiba TEMPROToshiba.Tempo.UI.TrayApplication.exe
O4 — HKLM..Run: [StartCCC] «C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe»
O4 — HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 — HKLM..Run: [Skytel] Skytel.exe
O4 — HKLM..Run: [Camera Assistant Software] «C:Program FilesCamera Assistant Software for Toshibatraybar.exe» /start
O4 — HKLM..Run: [TPwrMain] %ProgramFiles%TOSHIBAPower SaverTPwrMain.EXE
O4 — HKLM..Run: [SmoothView] %ProgramFiles%ToshibaSmoothViewSmoothView.exe
O4 — HKLM..Run: [00TCrdMain] %ProgramFiles%TOSHIBAFlashCardsTCrdMain.exe
O4 — HKLM..Run: [Toshiba Registration] C:Program FilesToshibaRegistrationToshibaRegistration.exe
O4 — HKLM..Run: [jswtrayutil] «C:Program FilesJumpstartjswtrayutil.exe»
O4 — HKLM..Run: [MAgent] C:Program FilesMail.RuAgentMAgent.exe -LM
O4 — HKLM..Run: [HPUsageTracking] «C:Program FilesHPHP UTbinhppusg.exe» «C:Program FilesHPHP UT»
O4 — HKLM..Run: [NBKeyScan] «C:Program FilesNeroNero8Nero BackItUpNBKeyScan.exe»
O4 — HKLM..Run: [AVP] «C:Program FilesKaspersky LabKaspersky Anti-Virus 2009avp.exe»
O4 — HKLM..Run: [WinampAgent] E:винампWinampwinampa.exe
O4 — HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe
O4 — HKCU..Run: [TOSCDSPD] TOSCDSPD.EXE
O4 — HKCU..Run: [WMPNSCFG] C:Program FilesWindows Media PlayerWMPNSCFG.exe
O4 — HKCU..Run: [Download Master] C:Program FilesDownload Masterdmaster.exe -autorun
O4 — HKCU..Run: [ICQ] «C:Program FilesICQ6.5ICQ.exe» silent
O4 — HKCU..Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] «C:Program FilesCommon FilesNeroLibNMIndexStoreSvr.exe» ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /detectMem (User ‘NETWORK SERVICE’)
O4 — .DEFAULT User Startup: TRDCReminder.lnk = C:Program FilesToshibaTRDCReminderTRDCReminder.exe (User ‘Default user’)
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O8 — Extra context menu item: Закачать ВСЕ при помощи Download Master — C:Program FilesDownload Masterdmieall.htm
O8 — Extra context menu item: Закачать при помощи Download Master — C:Program FilesDownload Masterdmie.htm
O8 — Extra context menu item: Передать на удаленную закачку DM — C:Program FilesDownload Masterremdown.htm
O9 — Extra button: (no name) — {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — C:Program FilesJavajre1.6.0_06binssv.dll
O9 — Extra ‘Tools’ menuitem: Sun Java Console — {08B0E5C0-4FCB-11CF-AAA5-00401C608501} — C:Program FilesJavajre1.6.0_06binssv.dll
O9 — Extra button: Статистика защиты веб-трафика — {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} — C:Program FilesKaspersky LabKaspersky Anti-Virus 2009SCIEPlgn.dll
O9 — Extra button: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra ‘Tools’ menuitem: Mail.Ru Агент — {7558B7E5-7B26-4201-BEDB-00D5FF534523} — C:Program FilesMail.RuAgentmagent.exe
O9 — Extra button: eBay — {76577871-04EC-495E-A12B-91F7C3600AFA} — http://www.webtip.ch/cgi-bin/toshiba/tracker_url2.pl?RU (file missing)
O9 — Extra button: Amazon.co.uk — {8A918C1D-E123-4E36-B562-5C1519E434CE} — http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home (file missing)
O9 — Extra button: Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra ‘Tools’ menuitem: &Download Master — {8DAE90AD-4583-4977-9DD4-4360F7A45C74} — C:Program FilesDownload Masterdmaster.exe
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
O9 — Extra ‘Tools’ menuitem: ICQ6 — {E59EB121-F339-4851-A3BA-FE49C35617C2} — C:Program FilesICQ6.5ICQ.exe
O13 — Gopher Prefix:
O16 — DPF: {463ED66E-431B-11D2-ADB0-0080C83DA4EB} (AcceptWM Class) — https://w3s.webmoney.ru/WMAcceptor.dll
O16 — DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) — http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 — HKLMSystemCCSServicesTcpip..{A4C6E1F5-2711-4145-AE9D-8BC5FA9E5D93}: NameServer = 80.254.111.254
O20 — AppInit_DLLs: C:PROGRA~1GoogleGOOGLE~2GOEC62~1.DLL,C:PROGRA~1KASPER~1KASPER~1mzvkbd.dll,C:PROGRA~1KASPER~1KASPER~1mzvkbd3.dll
O23 — Service: Ati External Event Utility — ATI Technologies Inc. — C:Windowssystem32Ati2evxx.exe
O23 — Service: Kaspersky Anti-Virus (AVP) — Kaspersky Lab — C:Program FilesKaspersky LabKaspersky Anti-Virus 2009avp.exe
O23 — Service: ConfigFree Service — TOSHIBA CORPORATION — C:Program FilesTOSHIBAConfigFreeCFSvcs.exe
O23 — Service: @dfsrres.dll,-101 (DFSR) — Корпорация Майкрософт — C:Windowssystem32DFSR.exe
O23 — Service: Диспетчер Google Desktop 5.7.802.22438 (GoogleDesktopManager-022208-143751) — Google — C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe
O23 — Service: Google Updater Service (gusvc) — Google — C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 — Service: InstallDriver Table Manager (IDriverT) — Macrovision Corporation — C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe
O23 — Service: Jumpstart Wifi Protected Setup (jswpsapi) — Atheros Communications, Inc. — C:Program FilesJumpstartjswpsapi.exe
O23 — Service: Nero BackItUp Scheduler 3 — Nero AG — C:Program FilesNeroNero8Nero BackItUpNBService.exe
O23 — Service: NMIndexingService — Nero AG — C:Program FilesCommon FilesNeroLibNMIndexingService.exe
O23 — Service: PLFlash DeviceIoControl Service — Prolific Technology Inc. — C:Windowssystem32IoctlSvc.exe
O23 — Service: SmartFaceVWatchSrv — Toshiba — C:Program FilesToshibaSmartFaceVSmartFaceVWatchSrv.exe
O23 — Service: Notebook Performance Tuning Service (TempoMonitoringService) — Toshiba Europe GmbH — C:Program FilesToshiba TEMPROTempoSVC.exe
O23 — Service: TOSHIBA Navi Support Service (TNaviSrv) — TOSHIBA Corporation — C:Program FilesToshibaTOSHIBA DVD PLAYERTNaviSrv.exe
O23 — Service: TOSHIBA Optical Disc Drive Service (TODDSrv) — TOSHIBA Corporation — C:Windowssystem32TODDSrv.exe
O23 — Service: TOSHIBA Power Saver (TosCoSrv) — TOSHIBA Corporation — C:Program FilesToshibaPower SaverTosCoSrv.exe
O23 — Service: TOSHIBA Bluetooth Service — TOSHIBA CORPORATION — c:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe
O23 — Service: TOSHIBA SMART Log Service — TOSHIBA Corporation — C:Program FilesTOSHIBASMARTLogServiceTosIPCSrv.exe
O23 — Service: Ulead Burning Helper (UleadBurningHelper) — Ulead Systems, Inc. — C:Program FilesCommon FilesUlead SystemsDVDULCDRSvr.exe

—
End of file — 11912 bytes

======Scheduled tasks folder======

C:WindowstasksUser_Feed_Synchronization-{BE5429A0-D76F-42DF-A378-7308D735D703}.job

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper — C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class — C:Program FilesKaspersky LabKaspersky Anti-Virus 2009ievkbd.dll [2008-11-11 62728]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class — C:Program FilesJavajre1.6.0_06binssv.dll [2008-03-25 509328]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9961627E-4059-41B4-8E0E-A7D6B3854ADF}]
IE 4.x-6.x BHO for Download Master — C:PROGRA~1DOWNLO~1dmiehlp.dll [2009-04-16 158208]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AA58ED58-01DD-4D91-8333-CF10577473F7}]
&Google — C:UsersваняGooglegoogletoolbar1.dll [2009-08-31 65536]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO — C:Program FilesGoogleGoogleToolbarNotifier3.1.415.1646swg.dll [2008-07-02 736240]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} — &Google — c:program filesgooglegoogletoolbar1.dll [2008-07-02 2427968]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«Windows Defender»=C:Program FilesWindows DefenderMSASCui.exe [2008-01-21 1008184]
«SunJavaUpdateSched»=C:Program FilesJavajre1.6.0_06binjusched.exe [2008-03-25 144784]
«SynTPEnh»=C:Program FilesSynapticsSynTPSynTPEnh.exe [2007-12-06 1029416]
«ITSecMng»=C:Program FilesTOSHIBABluetooth Toshiba StackItSecMng.exe [2007-09-28 75136]
«NDSTray.exe»=NDSTray.exe []
«cfFncEnabler.exe»=cfFncEnabler.exe []
«Adobe Reader Speed Launcher»=C:Program FilesAdobeReader 8.0ReaderReader_sl.exe [2008-01-11 39792]
«topi»=C:Program FilesTOSHIBAToshiba Online Product Informationtopi.exe [2007-07-10 581632]
«Google Desktop Search»=C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe [2008-07-02 29744]
«Google EULA Launcher»=c:Program FilesGoogleGoogle EULAGoogleEULALauncher.exe [2008-05-28 20480]
«Toshiba TEMPO»=C:Program FilesToshiba TEMPROToshiba.Tempo.UI.TrayApplication.exe [2008-04-24 103824]
«StartCCC»=C:Program FilesATI TechnologiesATI.ACECore-StaticCLIStart.exe [2008-01-21 61440]
«RtHDVCpl»=C:WindowsRtHDVCpl.exe [2008-04-08 6037504]
«Skytel»=C:WindowsSkytel.exe [2007-11-20 1826816]
«Camera Assistant Software»=C:Program FilesCamera Assistant Software for Toshibatraybar.exe [2008-09-26 417792]
«TPwrMain»=C:Program FilesTOSHIBAPower SaverTPwrMain.EXE [2008-01-17 431456]
«SmoothView»=C:Program FilesToshibaSmoothViewSmoothView.exe [2008-01-25 509816]
«00TCrdMain»=C:Program FilesTOSHIBAFlashCardsTCrdMain.exe [2008-03-19 716800]
«Toshiba Registration»=C:Program FilesToshibaRegistrationToshibaRegistration.exe [2008-01-11 574864]
«jswtrayutil»=C:Program FilesJumpstartjswtrayutil.exe []
«MAgent»=C:Program FilesMail.RuAgentMAgent.exe [2009-07-09 7975608]
«»= []
«HPUsageTracking»=C:Program FilesHPHP UTbinhppusg.exe [2007-11-02 36864]
«NBKeyScan»=C:Program FilesNeroNero8Nero BackItUpNBKeyScan.exe [2008-06-08 2221352]
«AVP»=C:Program FilesKaspersky LabKaspersky Anti-Virus 2009avp.exe [2009-08-27 208616]
«WinampAgent»=E:винампWinampwinampa.exe [2009-07-01 37888]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Sidebar»=C:Program FilesWindows Sidebarsidebar.exe [2008-01-21 1233920]
«TOSCDSPD»=TOSCDSPD.EXE []
«WMPNSCFG»=C:Program FilesWindows Media PlayerWMPNSCFG.exe [2008-01-21 202240]
«Download Master»=C:Program FilesDownload Masterdmaster.exe [2009-08-05 3777536]
«ICQ»=C:Program FilesICQ6.5ICQ.exe [2009-03-01 172792]
«IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}»=C:Program FilesCommon FilesNeroLibNMIndexStoreSvr.exe [2008-06-24 1840424]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows]
«AppInit_DLLS»=»C:PROGRA~1GoogleGOOGLE~2GOEC62~1.DLL,C:PROGRA~1KASPER~1KASPER~1mzvkbd.dll,C:PROGRA~1KASPER~1KASPER~1mzvkbd3.dll»

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyigfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyklogon]
C:Windowssystem32klogon.dll [2008-11-11 218376]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1
«EnableUIADesktopToggle»=0

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]

======File associations======

.js — edit — C:WindowsSystem32Notepad.exe %1
.js — open — C:WindowsSystem32WScript.exe «%1» %*

======List of files/folders created in the last 1 months======

2009-09-01 20:33:32 —-D—- C:rsit
2009-09-01 20:33:32 —-D—- C:Program Filestrend micro
2009-09-01 16:43:13 —-HD—- C:Program FilesRS
2009-09-01 16:43:13 —-HD—- C:Program FilesCommon Files{7445f2b0-cf99-11dd-ad8b-0800200c9a66}
2009-08-31 16:43:51 —-D—- C:UsersваняAppDataRoamingWebMoney
2009-08-31 16:08:20 —-AD—- C:ProgramDataTEMP
2009-08-29 12:27:05 —-D—- C:Program FilesMSXML 4.0
2009-08-29 00:13:39 —-D—- C:Program FilesCommon FilesPX Storage Engine
2009-08-28 16:21:56 —-D—- C:UsersваняAppDataRoaminguTorrent
2009-08-28 12:14:30 —-A—- C:Windowssystem32tzres.dll
2009-08-27 18:58:15 —-D—- C:ProgramDataKaspersky Lab
2009-08-27 18:58:15 —-D—- C:Program FilesKaspersky Lab
2009-08-27 18:57:25 —-D—- C:ProgramDataKaspersky Lab Setup Files
2009-08-27 18:46:17 —-D—- C:UsersваняAppDataRoamingOpera
2009-08-27 18:46:08 —-D—- C:Program FilesOpera
2009-08-27 18:41:57 —-D—- C:UsersваняAppDataRoamingNero
2009-08-27 18:41:36 —-A—- C:Windowssystem32MsiExec.exe.log
2009-08-27 18:39:18 —-D—- C:ProgramDataNero
2009-08-27 18:39:18 —-D—- C:Program FilesNero
2009-08-27 18:39:18 —-D—- C:Program FilesCommon FilesNero
2009-08-27 18:37:44 —-A—- C:Windowssystem32d3dx9_30.dll
2009-08-27 18:37:43 —-A—- C:Windowssystem32d3dx9_28.dll
2009-08-27 00:50:04 —-D—- C:ProgramDataHewlett-Packard
2009-08-26 16:29:03 —-D—- C:ProgramDataVirtualFarm
2009-08-26 14:06:11 —-A—- C:WindowsReadiris.ini
2009-08-26 14:05:05 —-D—- C:Program FilesReadiris Pro 11 HP
2009-08-26 13:50:40 —-A—- C:Windowssystem32Ltwvc15u.dll
2009-08-26 13:50:40 —-A—- C:Windowssystem32ltpnt15u.dll
2009-08-26 13:50:40 —-A—- C:Windowssystem32ltpdg15u.dll
2009-08-26 13:50:40 —-A—- C:Windowssystem32ltcry15u.dll
2009-08-26 13:50:40 —-A—- C:Windowssystem32ltclr15u.dll
2009-08-26 13:50:40 —-A—- C:Windowssystem32Lfbmp15u.dll
2009-08-26 13:50:39 —-A—- C:Windowssystem32ltkrn15u.dll
2009-08-26 13:50:39 —-A—- C:Windowssystem32Ltimgutl15u.dll
2009-08-26 13:50:39 —-A—- C:Windowssystem32ltimgsfx15u.dll
2009-08-26 13:50:39 —-A—- C:Windowssystem32ltimgopt15u.dll
2009-08-26 13:50:39 —-A—- C:Windowssystem32ltimgefx15u.dll
2009-08-26 13:50:39 —-A—- C:Windowssystem32ltimgcor15u.dll
2009-08-26 13:50:38 —-A—- C:Windowssystem32ltimgclr15u.dll
2009-08-26 13:50:38 —-A—- C:Windowssystem32ltfil15u.dll
2009-08-26 13:50:38 —-A—- C:Windowssystem32ltefx15u.dll
2009-08-26 13:50:38 —-A—- C:Windowssystem32LTDIS15u.dll
2009-08-26 13:50:38 —-A—- C:Windowssystem32LTCON15u.dll
2009-08-26 13:50:37 —-A—- C:Windowssystem32agmcrdrv.dll
2009-08-26 13:49:13 —-A—- C:Windowssystem32ZTAG.dll
2009-08-26 13:49:13 —-A—- C:Windowssystem32ZSM1120.exe
2009-08-26 13:49:12 —-A—- C:Windowssystem32ZSPOOL.dll
2009-08-26 13:49:11 —-A—- C:Windowssystem32ZLM1120.dll
2009-08-26 13:49:10 —-A—- C:Windowssystem32ZIMF.DLL
2009-08-26 13:49:09 —-A—- C:Windowssystem32hpsfs.dll
2009-08-26 13:49:09 —-A—- C:Windowssystem32HPMCoSetup.dll
2009-08-26 13:49:09 —-A—- C:WindowsM1120GLB.js
2009-08-26 13:49:09 —-A—- C:WindowsM1120BTN.js
2009-08-26 13:47:14 —-RA—- C:Windowsbrprs.exe
2009-08-26 13:47:11 —-D—- C:ProgramDataHP
2009-08-26 13:47:11 —-D—- C:Program FilesHP
2009-08-26 13:47:00 —-D—- C:UsersваняAppDataRoamingHP
2009-08-25 22:30:36 —-D—- C:ProgramDataFriday’s games
2009-08-24 20:10:38 —-D—- C:ProgramDataPlayrix Entertainment
2009-08-23 15:46:31 —-D—- C:ProgramDataМодный Дом
2009-08-23 14:31:47 —-D—- C:ProgramDataSandlot Games
2009-08-23 13:23:06 —-D—- C:ProgramDataAlawar Stargaze
2009-08-22 13:24:22 —-A—- C:Windowssystem32mshtml.dll
2009-08-22 13:24:22 —-A—- C:Windowssystem32ieframe.dll
2009-08-22 13:24:21 —-A—- C:Windowssystem32wininet.dll
2009-08-22 13:24:21 —-A—- C:Windowssystem32urlmon.dll
2009-08-22 13:24:21 —-A—- C:Windowssystem32occache.dll
2009-08-22 13:24:21 —-A—- C:Windowssystem32msfeeds.dll
2009-08-22 13:24:21 —-A—- C:Windowssystem32iertutil.dll
2009-08-22 13:24:21 —-A—- C:Windowssystem32iedkcs32.dll
2009-08-22 13:24:18 —-A—- C:Windowssystem32msfeedssync.exe
2009-08-22 13:24:18 —-A—- C:Windowssystem32msfeedsbs.dll
2009-08-22 13:24:18 —-A—- C:Windowssystem32jsproxy.dll
2009-08-22 13:24:18 —-A—- C:Windowssystem32ieUnatt.exe
2009-08-22 13:24:18 —-A—- C:Windowssystem32ieui.dll
2009-08-22 13:24:18 —-A—- C:Windowssystem32iesysprep.dll
2009-08-22 13:24:18 —-A—- C:Windowssystem32iesetup.dll
2009-08-22 13:24:18 —-A—- C:Windowssystem32iepeers.dll
2009-08-22 13:24:18 —-A—- C:Windowssystem32ie4uinit.exe
2009-08-22 13:24:16 —-A—- C:Windowssystem32iernonce.dll
2009-08-22 01:15:33 —-D—- C:UsersваняAppDataRoamingWinRAR
2009-08-22 01:14:19 —-D—- C:Program FilesWinRAR
2009-08-21 18:51:03 —-A—- C:Windowssystem32msls31.dll
2009-08-21 18:51:03 —-A—- C:Windowssystem32mshtmler.dll
2009-08-21 18:51:03 —-A—- C:Windowssystem32mshtmled.dll
2009-08-21 18:51:03 —-A—- C:Windowssystem32icardie.dll
2009-08-21 18:51:03 —-A—- C:Windowssystem32corpol.dll
2009-08-21 18:51:03 —-A—- C:Windowssystem32admparse.dll
2009-08-21 18:51:02 —-A—- C:Windowssystem32imgutil.dll
2009-08-21 18:51:02 —-A—- C:Windowssystem32ieakeng.dll
2009-08-21 18:51:02 —-A—- C:Windowssystem32dxtrans.dll
2009-08-21 18:51:02 —-A—- C:Windowssystem32dxtmsft.dll
2009-08-21 18:51:01 —-A—- C:Windowssystem32WinFXDocObj.exe
2009-08-21 18:51:01 —-A—- C:Windowssystem32wextract.exe
2009-08-21 18:51:01 —-A—- C:Windowssystem32webcheck.dll
2009-08-21 18:51:01 —-A—- C:Windowssystem32msrating.dll
2009-08-21 18:51:01 —-A—- C:Windowssystem32licmgr10.dll
2009-08-21 18:51:01 —-A—- C:Windowssystem32inseng.dll
2009-08-21 18:51:01 —-A—- C:Windowssystem32ieakui.dll
2009-08-21 18:51:01 —-A—- C:Windowssystem32ieaksie.dll
2009-08-21 18:51:00 —-A—- C:Windowssystem32vbscript.dll
2009-08-21 18:51:00 —-A—- C:Windowssystem32pngfilt.dll
2009-08-21 18:51:00 —-A—- C:Windowssystem32mstime.dll
2009-08-21 18:51:00 —-A—- C:Windowssystem32ieapfltr.dll
2009-08-21 18:51:00 —-A—- C:Windowssystem32advpack.dll
2009-08-21 18:50:59 —-A—- C:Windowssystem32url.dll
2009-08-21 18:50:59 —-A—- C:Windowssystem32jscript.dll
2009-08-21 18:50:58 —-A—- C:Windowssystem32SetIEInstalledDate.exe
2009-08-21 18:50:58 —-A—- C:Windowssystem32SetDepNx.exe
2009-08-21 18:50:58 —-A—- C:Windowssystem32RegisterIEPKEYs.exe
2009-08-21 18:50:58 —-A—- C:Windowssystem32PDMSetup.exe
2009-08-21 18:50:58 —-A—- C:Windowssystem32mshta.exe
2009-08-21 18:50:58 —-A—- C:Windowssystem32iexpress.exe
2009-08-21 18:49:54 —-A—- C:Windowssystem32wdigest.dll
2009-08-21 18:49:54 —-A—- C:Windowssystem32msv1_0.dll
2009-08-21 18:49:54 —-A—- C:Windowssystem32lsasrv.dll
2009-08-21 18:49:54 —-A—- C:Windowssystem32kerberos.dll
2009-08-21 18:49:52 —-A—- C:Windowssystem32schannel.dll
2009-08-21 18:49:49 —-A—- C:Windowssystem32lsass.exe
2009-08-21 18:49:48 —-A—- C:Windowssystem32secur32.dll
2009-08-21 15:38:00 —-D—- C:UsersваняAppDataRoamingSahmon Games
2009-08-20 22:47:48 —-D—- C:ProgramDataFenomen Games
2009-08-20 16:32:19 —-D—- C:UsersваняAppDataRoamingPlayFirst
2009-08-20 15:15:00 —-D—- C:ProgramDataMeridian93
2009-08-20 15:14:30 —-D—- C:UsersваняAppDataRoamingMeridian93
2009-08-20 13:54:33 —-D—- C:UsersваняAppDataRoamingGaijin Ent
2009-08-20 12:52:24 —-D—- C:ProgramDataFarmFrenzy3
2009-08-20 11:42:24 —-D—- C:Program FilesAlawar.ru
2009-08-20 11:20:01 —-D—- C:UsersваняAppDataRoamingDownload Master
2009-08-20 11:19:36 —-D—- C:Program FilesDownload Master
2009-08-19 23:38:05 —-D—- C:UsersваняAppDataRoamingBeachPartyCraze
2009-08-19 22:33:13 —-D—- C:ProgramData7 Artifacts
2009-08-19 20:20:53 —-D—- C:ProgramDataАлекс Гордон
2009-08-19 19:20:39 —-D—- C:UsersваняAppDataRoamingSprillBermudeRus
2009-08-19 19:19:58 —-D—- C:Игры
2009-08-19 18:09:42 —-D—- C:UsersваняAppDataRoamingSuper-Cow
2009-08-19 17:38:18 —-D—- C:ProgramDataIntenium
2009-08-19 16:42:28 —-D—- C:ProgramDataAWEM
2009-08-19 12:17:32 —-D—- C:ProgramDataFreshGames
2009-08-19 11:16:38 —-D—- C:ProgramDataBilbo
2009-08-17 07:57:42 —-A—- C:Windowssystem32infocardapi.dll
2009-08-17 07:57:40 —-A—- C:Windowssystem32PresentationCFFRasterizerNative_v0300.dll
2009-08-17 07:57:39 —-A—- C:Windowssystem32PresentationHostProxy.dll
2009-08-17 07:57:39 —-A—- C:Windowssystem32icardres.dll
2009-08-17 07:57:39 —-A—- C:Windowssystem32icardagt.exe
2009-08-17 07:57:38 —-A—- C:Windowssystem32PresentationNative_v0300.dll
2009-08-17 07:57:35 —-A—- C:Windowssystem32PresentationHost.exe
2009-08-17 07:53:15 —-A—- C:Windowssystem32dfshim.dll
2009-08-17 07:53:12 —-A—- C:Windowssystem32mscoree.dll
2009-08-17 07:53:10 —-A—- C:Windowssystem32netfxperf.dll
2009-08-17 07:52:53 —-A—- C:Windowssystem32mscorier.dll
2009-08-17 07:52:48 —-A—- C:Windowssystem32mscories.dll
2009-08-17 01:32:48 —-A—- C:Windowssystem32EncDec.dll
2009-08-17 01:32:42 —-A—- C:Windowssystem32psisdecd.dll
2009-08-17 01:03:34 —-A—- C:Windowssystem32NlsLexicons0007.dll
2009-08-17 01:03:31 —-A—- C:Windowssystem32NlsLexicons0009.dll
2009-08-17 01:03:19 —-A—- C:Windowssystem32NaturalLanguage6.dll
2009-08-16 14:26:53 —-A—- C:Windowssystem32msshooks.dll
2009-08-16 14:26:53 —-A—- C:Windowssystem32msscb.dll
2009-08-16 14:26:51 —-A—- C:Windowssystem32thawbrkr.dll
2009-08-16 14:26:51 —-A—- C:Windowssystem32SearchFilterHost.exe
2009-08-16 14:26:51 —-A—- C:Windowssystem32propsys.dll
2009-08-16 14:26:51 —-A—- C:Windowssystem32propdefs.dll
2009-08-16 14:26:51 —-A—- C:Windowssystem32msstrc.dll
2009-08-16 14:26:51 —-A—- C:Windowssystem32mssprxy.dll
2009-08-16 14:26:51 —-A—- C:Windowssystem32mssitlb.dll
2009-08-16 14:26:51 —-A—- C:Windowssystem32msshsq.dll
2009-08-16 14:26:51 —-A—- C:Windowssystem32korwbrkr.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32xmlfilter.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32wsepno.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32srchadmin.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32rtffilt.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32offfilt.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32nlhtml.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32msscntrs.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32mimefilt.dll
2009-08-16 14:26:50 —-A—- C:Windowssystem32chsbrkr.dll
2009-08-16 14:26:49 —-A—- C:Windowssystem32tquery.dll
2009-08-16 14:26:49 —-A—- C:Windowssystem32SearchProtocolHost.exe
2009-08-16 14:26:49 —-A—- C:Windowssystem32SearchIndexer.exe
2009-08-16 14:26:49 —-A—- C:Windowssystem32mssvp.dll
2009-08-16 14:26:49 —-A—- C:Windowssystem32mssrch.dll
2009-08-16 14:26:49 —-A—- C:Windowssystem32mssphtb.dll
2009-08-16 14:26:49 —-A—- C:Windowssystem32mssph.dll
2009-08-16 14:26:49 —-A—- C:Windowssystem32chtbrkr.dll
2009-08-15 17:15:59 —-A—- C:Windowssystem32rpcss.dll
2009-08-15 17:15:59 —-A—- C:Windowssystem32ntoskrnl.exe
2009-08-15 17:15:59 —-A—- C:Windowssystem32ntkrnlpa.exe
2009-08-15 17:15:56 —-A—- C:Windowssystem32printfilterpipelinesvc.exe
2009-08-15 17:15:56 —-A—- C:Windowssystem32printfilterpipelineprxy.dll
2009-08-15 17:15:54 —-A—- C:Windowssystem32sdohlp.dll
2009-08-15 17:15:54 —-A—- C:Windowssystem32iasrecst.dll
2009-08-15 17:15:54 —-A—- C:Windowssystem32iasdatastore.dll
2009-08-15 17:15:53 —-A—- C:Windowssystem32iashost.exe
2009-08-15 17:15:53 —-A—- C:Windowssystem32iasads.dll
2009-08-15 17:14:36 —-A—- C:Windowssystem32kernel32.dll
2009-08-15 17:14:33 —-A—- C:Windowssystem32apilogen.dll
2009-08-15 17:14:33 —-A—- C:Windowssystem32amxread.dll
2009-08-15 17:14:22 —-A—- C:Windowssystem32IPSECSVC.DLL
2009-08-15 17:14:15 —-A—- C:Windowssystem32PortableDeviceApi.dll
2009-08-15 17:13:04 —-A—- C:Windowssystem32xolehlp.dll
2009-08-15 17:13:04 —-A—- C:Windowssystem32msdtcprx.dll
2009-08-15 17:12:58 —-A—- C:Windowssystem32Apphlpdm.dll
2009-08-15 17:12:55 —-A—- C:Windowssystem32GameUXLegacyGDFs.dll
2009-08-15 17:05:25 —-A—- C:Windowssystem32t2embed.dll
2009-08-15 17:05:25 —-A—- C:Windowssystem32fontsub.dll
2009-08-15 17:05:25 —-A—- C:Windowssystem32atmfd.dll
2009-08-15 17:05:24 —-A—- C:Windowssystem32dciman32.dll
2009-08-15 17:05:11 —-A—- C:Windowssystem32pacerprf.dll
2009-08-15 17:05:06 —-A—- C:Windowssystem32winhttp.dll
2009-08-15 17:05:04 —-A—- C:Windowssystem32atl.dll
2009-08-15 17:05:02 —-A—- C:Windowssystem32gdi32.dll
2009-08-15 17:04:51 —-A—- C:Windowssystem32wkssvc.dll
2009-08-15 17:04:47 —-A—- C:Windowssystem32mstscax.dll
2009-08-15 17:04:25 —-A—- C:Windowssystem32es.dll
2009-08-15 17:03:16 —-A—- C:Windowssystem32wmpeffects.dll
2009-08-15 17:03:14 —-A—- C:Windowssystem32msxml3.dll
2009-08-15 17:03:10 —-A—- C:Windowssystem32netapi32.dll
2009-08-15 17:00:44 —-A—- C:Windowssystem32shell32.dll
2009-08-15 17:00:13 —-A—- C:Windowssystem32localspl.dll
2009-08-15 17:00:11 —-A—- C:Windowssystem32avifil32.dll
2009-08-15 17:00:06 —-A—- C:Windowsexplorer.exe
2009-08-15 16:59:50 —-A—- C:Windowssystem32WindowsCodecsExt.dll
2009-08-15 16:59:50 —-A—- C:Windowssystem32WindowsCodecs.dll
2009-08-15 16:59:50 —-A—- C:Windowssystem32PhotoMetadataHandler.dll
2009-08-15 16:57:40 —-A—- C:Windowssystem32wersvc.dll
2009-08-15 16:57:40 —-A—- C:Windowssystem32Faultrep.dll
2009-08-15 16:57:38 —-A—- C:Windowssystem32win32spl.dll
2009-08-15 16:57:36 —-A—- C:Windowssystem32emdmgmt.dll
2009-08-15 16:57:36 —-A—- C:Windowssystem32dataclen.dll
2009-08-15 16:57:36 —-A—- C:Windowssystem32cdd.dll
2009-08-15 16:57:31 —-A—- C:Windowssystem32wmp.dll
2009-08-15 16:57:30 —-A—- C:Windowssystem32wmpdxm.dll
2009-08-15 16:57:27 —-A—- C:Windowssystem32spwmp.dll
2009-08-15 16:57:25 —-A—- C:Windowssystem32dxmasf.dll
2009-08-15 16:57:22 —-A—- C:Windowssystem32wmploc.DLL
2009-08-15 16:55:57 —-A—- C:Windowssystem32mf.dll
2009-08-15 16:55:56 —-A—- C:Windowssystem32WMVCORE.DLL
2009-08-15 16:55:54 —-A—- C:Windowssystem32WMNetMgr.dll
2009-08-15 16:55:53 —-A—- C:Windowssystem32logagent.exe
2009-08-15 16:55:24 —-A—- C:Windowssystem32wshext.dll
2009-08-15 16:55:24 —-A—- C:Windowssystem32wscript.exe
2009-08-15 16:55:24 —-A—- C:Windowssystem32scrrun.dll
2009-08-15 16:55:24 —-A—- C:Windowssystem32scrobj.dll
2009-08-15 16:55:24 —-A—- C:Windowssystem32cscript.exe
2009-08-15 16:55:21 —-A—- C:Windowssystem32inetcomm.dll
2009-08-15 16:50:50 —-A—- C:Windowssystem32connect.dll
2009-08-15 16:50:49 —-A—- C:Windowssystem32rpcrt4.dll
2009-08-15 16:50:27 —-A—- C:Windowssystem32msxml6.dll
2009-08-15 16:28:20 —-A—- C:Windowssystem32wups2.dll
2009-08-15 16:28:20 —-A—- C:Windowssystem32wucltux.dll
2009-08-15 16:28:20 —-A—- C:Windowssystem32wuaueng.dll
2009-08-15 16:28:20 —-A—- C:Windowssystem32wuauclt.exe
2009-08-15 16:28:09 —-A—- C:Windowssystem32wups.dll
2009-08-15 16:28:09 —-A—- C:Windowssystem32wudriver.dll
2009-08-15 16:28:09 —-A—- C:Windowssystem32wuapi.dll
2009-08-15 16:27:59 —-A—- C:Windowssystem32wuwebv.dll
2009-08-15 16:27:59 —-A—- C:Windowssystem32wuapp.exe
2009-08-12 22:14:41 —-D—- C:UsersваняAppDataRoamingSprillRichiRus
2009-08-12 20:07:19 —-D—- C:ProgramDataAlawarWrapper
2009-08-12 20:05:35 —-D—- C:Program FilesGames.Mail.Ru

======List of files/folders modified in the last 1 months======

2009-09-01 20:34:14 —-D—- C:WindowsPrefetch
2009-09-01 20:33:45 —-D—- C:WindowsTemp
2009-09-01 20:33:32 —-RD—- C:Program Files
2009-09-01 19:10:12 —-A—- C:WindowsBRWMARK.INI
2009-09-01 19:03:27 —-SHD—- C:System Volume Information
2009-09-01 16:43:21 —-AD—- C:WindowsSystem32
2009-09-01 16:43:13 —-D—- C:Program FilesCommon Files
2009-09-01 10:44:08 —-D—- C:Windowsinf
2009-09-01 10:44:08 —-A—- C:Windowssystem32PerfStringBackup.INI
2009-08-31 16:49:57 —-SD—- C:WindowsDownloaded Program Files
2009-08-31 16:08:20 —-HD—- C:ProgramData
2009-08-29 12:27:15 —-SHD—- C:WindowsInstaller
2009-08-29 12:27:15 —-D—- C:Windowswinsxs
2009-08-29 12:27:00 —-D—- C:Windows
2009-08-28 19:58:42 —-SD—- C:UsersваняAppDataRoamingMicrosoft
2009-08-28 17:38:26 —-D—- C:UsersваняAppDataRoamingICQ
2009-08-28 12:53:27 —-D—- C:Windowsrescache
2009-08-28 12:36:07 —-D—- C:Windowssystem32ru-RU
2009-08-28 12:36:06 —-D—- C:Windowssystem32drivers
2009-08-28 12:15:33 —-D—- C:Windowssystem32catroot
2009-08-28 12:14:10 —-D—- C:Program FilesInternet Explorer
2009-08-27 19:05:07 —-D—- C:Windowssystem32catroot2
2009-08-27 18:52:27 —-D—- C:ProgramDataMcAfee
2009-08-27 18:50:42 —-D—- C:WindowsTasks
2009-08-27 18:41:09 —-RSD—- C:Windowsassembly
2009-08-27 18:39:15 —-D—- C:WindowsCursors
2009-08-26 14:06:40 —-A—- C:Windowswin.ini
2009-08-26 13:52:19 —-D—- C:Windowstwain_32
2009-08-26 13:48:05 —-RSD—- C:WindowsFonts
2009-08-25 13:14:17 —-D—- C:Windowssystem32WDI
2009-08-23 10:03:42 —-D—- C:Windowssystem32migration
2009-08-22 08:21:15 —-D—- C:WindowsDebug
2009-08-21 19:30:42 —-D—- C:Windowssystem32Tasks
2009-08-21 19:04:03 —-D—- C:Windowssystem32en-US
2009-08-21 19:04:03 —-D—- C:WindowsPolicyDefinitions
2009-08-17 10:25:07 —-D—- C:WindowsMicrosoft.NET
2009-08-17 08:44:12 —-D—- C:Windowsehome
2009-08-17 08:44:03 —-D—- C:Windowssystem32XPSViewer
2009-08-17 08:44:03 —-D—- C:Windowssystem32wbem
2009-08-16 15:07:46 —-D—- C:WindowsAppPatch
2009-08-16 15:07:38 —-D—- C:Windowssystem32manifeststore
2009-08-16 15:07:33 —-D—- C:Program FilesWindows Media Player
2009-08-16 15:07:32 —-D—- C:Program FilesWindows Mail
2009-08-16 14:23:13 —-HD—- C:Windowsmsdownld.tmp
2009-08-16 14:20:15 —-D—- C:WindowsSoftwareDistribution
2009-08-10 18:26:44 —-D—- C:Windowssystem32NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 kl1;kl1; C:Windowssystem32DRIVERSkl1.sys [2008-07-21 121872]
R1 KLIF;Kaspersky Lab Driver; C:Windowssystem32DRIVERSklif.sys [2009-08-27 239120]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:Windowssystem32DRIVERSklim6.sys [2008-07-09 20496]
R2 rimmptsk;rimmptsk; C:Windowssystem32DRIVERSrimmptsk.sys [2008-02-15 46592]
R2 rimsptsk;rimsptsk; C:Windowssystem32DRIVERSrimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:Windowssystem32DRIVERSrixdptsk.sys [2007-07-30 38400]
R3 athr;Atheros Extensible Wireless LAN device driver; C:Windowssystem32DRIVERSathr.sys [2008-04-18 909824]
R3 atikmdag;atikmdag; C:Windowssystem32DRIVERSatikmdag.sys [2008-04-08 3548672]
R3 CmBatt;Драйвер батареи с ACPI-управлением (Microsoft); C:Windowssystem32DRIVERSCmBatt.sys [2008-01-21 14208]
R3 FwLnk;FwLnk Driver; C:Windowssystem32DRIVERSFwLnk.sys [2006-11-20 7168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:Windowssystem32driversRTKVHDA.sys [2008-04-09 2095512]
R3 RTL8169;Realtek 8169 NT Driver; C:Windowssystem32DRIVERSRtlh86.sys [2008-04-15 118784]
R3 sdbus;sdbus; C:Windowssystem32DRIVERSsdbus.sys [2008-01-21 88576]
R3 SynTP;Synaptics TouchPad Driver; C:Windowssystem32DRIVERSSynTP.sys [2007-12-06 196400]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:Windowssystem32DRIVERStdcmdpst.sys [2006-10-18 16128]
R3 tosrfec;Bluetooth ACPI; C:Windowssystem32DRIVERStosrfec.sys [2006-10-23 9216]
R3 usbscan;Драйвер USB-сканера; C:Windowssystem32DRIVERSusbscan.sys [2008-01-21 35328]
R3 usbvideo;Chicony USB 2.0 Camera; C:WindowsSystem32Driversusbvideo.sys [2008-01-21 134016]
R3 UVCFTR;UVCFTR; C:WindowsSystem32DriversUVCFTR_S.SYS [2008-07-15 17960]
S3 AgereSoftModem;Программный модем Agere Systems; C:Windowssystem32DRIVERSAGRSM.sys [2006-11-02 983552]
S3 drmkaud;Звуковой дешифратор DRM ядра системы; C:Windowssystem32driversdrmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Драйвер функции UAA для службы High Definition Audio (Microsoft), версия 1.1; C:Windowssystem32driversHdAudio.sys [2006-11-02 235520]
S3 igfx;igfx; C:Windowssystem32DRIVERSigdkmd32.sys []
S3 MSKSSRV;Представитель служб потоков Microsoft; C:Windowssystem32driversMSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Посредник синхронизации потоков Microsoft; C:Windowssystem32driversMSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Представитель диспетчера качества потоков Microsoft; C:Windowssystem32driversMSPQM.sys [2008-01-21 5504]
S3 MSTEE;Преобразователь потоков Tee/Sink-to-Sink Microsoft; C:Windowssystem32driversMSTEE.sys [2008-01-21 6016]
S3 Tosrfcom;Tosrfcom; C:Windowssystem32driversTosrfcom.sys []
S3 WUDFRd;WUDFRd; C:Windowssystem32DRIVERSWUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:Windowssystem32driverserrdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:Windowssystem32driversmegasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:Windowssystem32driverswmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati External Event Utility;Ati External Event Utility; C:Windowssystem32Ati2evxx.exe [2008-04-07 667648]
R2 AVP;Kaspersky Anti-Virus; C:Program FilesKaspersky LabKaspersky Anti-Virus 2009avp.exe [2009-08-27 208616]
R2 ConfigFree Service;ConfigFree Service; C:Program FilesTOSHIBAConfigFreeCFSvcs.exe [2008-04-17 40960]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-19 322120]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:Program FilesNeroNero8Nero BackItUpNBService.exe [2008-06-08 877864]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:Windowssystem32IoctlSvc.exe [2006-12-19 81920]
R2 TempoMonitoringService;Notebook Performance Tuning Service ; C:Program FilesToshiba TEMPROTempoSVC.exe [2008-04-24 99720]
R2 TNaviSrv;TOSHIBA Navi Support Service; C:Program FilesToshibaTOSHIBA DVD PLAYERTNaviSrv.exe [2008-07-18 83312]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:Windowssystem32TODDSrv.exe [2007-11-21 129632]
R2 TosCoSrv;TOSHIBA Power Saver; C:Program FilesToshibaPower SaverTosCoSrv.exe [2008-01-17 431456]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe [2008-04-11 124264]
R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service; C:Program FilesTOSHIBASMARTLogServiceTosIPCSrv.exe [2007-12-03 126976]
R2 UleadBurningHelper;Ulead Burning Helper; C:Program FilesCommon FilesUlead SystemsDVDULCDRSvr.exe [2006-08-23 49152]
R3 NMIndexingService;NMIndexingService; C:Program FilesCommon FilesNeroLibNMIndexingService.exe [2008-06-24 537896]
R3 SmartFaceVWatchSrv;SmartFaceVWatchSrv; C:Program FilesToshibaSmartFaceVSmartFaceVWatchSrv.exe [2008-08-25 77824]
S3 GoogleDesktopManager-022208-143751;Диспетчер Google Desktop 5.7.802.22438; C:Program FilesGoogleGoogle Desktop SearchGoogleDesktop.exe [2008-07-02 29744]
S3 gusvc;Google Updater Service; C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe [2008-07-02 138168]
S3 IDriverT;InstallDriver Table Manager; C:Program FilesCommon FilesInstallShieldDriver1150Intel 32IDriverT.exe [2005-11-14 69632]
S3 jswpsapi;Jumpstart Wifi Protected Setup; C:Program FilesJumpstartjswpsapi.exe [2008-04-16 954368]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]