Лог утилиты random's system information tool 1.09 (автор: random/random)
Run by 1 at 2013-06-29 12:38:18
Microsoft Windows 7 Ultimate Compact  Service Pack 1
Системный раздел C: размер 721 GB (76%) Свободно 954 GB
Total RAM: 3582 MB (34% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:38:19, on 29.06.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\taskhost.exe
C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.171\deploy\LoLLauncher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.30\deploy\LolClient.exe
C:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.0.235\deploy\League of Legends.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\1\Desktop\RSIT\RSIT.exe
C:\Program Files\trend micro\1.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://webalta.ru/search
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://webalta.ru/search
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://webalta.ru/search
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://webalta.ru/search
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Даниил\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1782976293-2713431667-436400039-1005\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun (User 'Артемий')
O4 - HKUS\S-1-5-21-1782976293-2713431667-436400039-1006\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1782976293-2713431667-436400039-1006\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: &Отправить в OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: &Экспорт в Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Добавить к существующему PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Добавить содержимое по ссылке в существующий файл PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Преобразовать в Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Преобразовать содержимое по ссылке в PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O9 - Extra button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: 2GIS UpdateService (2GISUpdateService) - ООО ДубльГИС - C:\Program Files\2gis\3.0\2GISUpdateService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Application Driver Auto Removal Service (01) (appdrvrem01) - Protection Technology - C:\Windows\System32\appdrvrem01.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O23 - Service: Служба Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Служба Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Служба политики провайдера безопасности аккаунта (Thorn) - GGS - C:\Users\1\AppData\Local\THORN\Thorn.exe
O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

--
End of file - 7934 bytes

======Папка назначеных зданий======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\1\AppData\Roaming\Mozilla\Firefox\Profiles\6oan2b9o.default

"web2pdfextension@web2pdf.adobedotcom"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
"url_advisor@kaspersky.com"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
"virtual_keyboard@kaspersky.com"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
"content_blocker@kaspersky.com"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
"anti_banner@kaspersky.com"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
"online_banking@kaspersky.com"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.15.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.15.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@raidcall.en/RCplugin]
"Description"=Raidcall plugin
"Path"=C:\Users\Даниил\AppData\Roaming\raidcall\plugins\nprcplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll

C:\Program Files\Mozilla Firefox\extensions\
{2A4702A6-63E6-46E4-BEF3-E2769B6774A0}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
mailru.xml
ozonru.xml
priceru.xml
wikipedia-ru.xml
yandex-slovari.xml
yandex.xml

======Снимок реестра======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files\Evernote\Evernote\EvernoteIE.dll [2013-05-22 587104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2013-02-28 356376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BitTorrent"=C:\Users\Даниил\AppData\Roaming\BitTorrent\BitTorrent.exe [2013-05-19 1125456]
"DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTAgent.exe [2012-04-26 3111744]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MediaGet2]
C:\Users\1\AppData\Local\MediaGet2\mediaget.exe [2013-05-21 10797288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\urlspace]
C:\Users\1\Desktop\jingling.exe -h []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcodec2.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux7"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"msacm.vorbis"=vorbis.acm
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux9"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.HFYU"=huffyuv.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======Ассоциации файлов======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======Список файлов и папок, созданных за последние 3 месяца======

2013-06-29 12:36:05 ----D---- C:\rsit
2013-06-29 12:36:05 ----D---- C:\Program Files\trend micro
2013-06-29 08:31:55 ----SHD---- C:\Windows\system32\AI_RecycleBin
2013-06-29 08:31:55 ----D---- C:\Riot Games
2013-06-29 08:31:28 ----D---- C:\Users\1\AppData\Roaming\Riot Games
2013-06-07 20:02:02 ----D---- C:\ProgramData\Elcomsoft Password Recovery
2013-06-07 20:02:02 ----D---- C:\Program Files\Elcomsoft Password Recovery
2013-06-07 20:02:02 ----D---- C:\Program Files\Elcomsoft
2013-06-05 19:59:43 ----D---- C:\Program Files\Evernote
2013-05-31 21:40:18 ----A---- C:\Windows\system32\drivers\pfc.sys
2013-05-31 21:40:17 ----D---- C:\Program Files\Padus
2013-05-31 21:25:26 ----D---- C:\ProgramData\Ashampoo
2013-05-31 21:25:24 ----D---- C:\Program Files\Ashampoo
2013-05-31 20:55:39 ----D---- C:\ProgramData\LightScribe
2013-05-31 20:54:27 ----D---- C:\Program Files\Common Files\Nero
2013-05-31 20:54:22 ----D---- C:\Program Files\Nero
2013-05-31 20:54:05 ----D---- C:\ProgramData\Nero
2013-05-31 20:53:26 ----D---- C:\Program Files\Common Files\LightScribe
2013-05-30 20:07:24 ----D---- C:\Video
2013-05-30 20:06:23 ----D---- C:\Program Files\MakeMKV
2013-05-25 14:00:53 ----D---- C:\Users\1\AppData\Roaming\GarenaPlus
2013-05-24 19:22:44 ----A---- C:\Windows\system32\ir16_32.dat
2013-05-23 18:31:30 ----D---- C:\ProgramData\GarenaMessenger
2013-05-21 20:21:18 ----D---- C:\Users\1\AppData\Roaming\Media Get LLC
2013-05-19 13:04:14 ----D---- C:\KeyToLife
2013-05-17 20:35:36 ----D---- C:\Program Files\R.G. Mechanics
2013-05-16 23:10:38 ----AC---- C:\Windows\system32\jscript.dll
2013-05-16 23:10:38 ----A---- C:\Windows\system32\jscript9.dll
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\urlmon.dll
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\msfeeds.dll
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\jsproxy.dll
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\ieui.dll
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\iesysprep.dll
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\iesetup.dll
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\iernonce.dll
2013-05-16 23:10:37 ----AC---- C:\Windows\system32\ie4uinit.exe
2013-05-16 23:10:36 ----AC---- C:\Windows\system32\iertutil.dll
2013-05-16 23:10:35 ----AC---- C:\Windows\system32\wininet.dll
2013-05-16 23:10:35 ----AC---- C:\Windows\system32\ieframe.dll
2013-05-16 23:10:33 ----AC---- C:\Windows\system32\mshtml.dll
2013-05-16 14:09:40 ----AC---- C:\Windows\system32\win32k.sys
2013-05-16 14:09:39 ----AC---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-16 14:09:39 ----AC---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-16 14:09:36 ----AC---- C:\Windows\system32\shell32.dll
2013-05-16 14:09:33 ----AC---- C:\Windows\system32\consent.exe
2013-05-16 14:09:33 ----AC---- C:\Windows\system32\authui.dll
2013-05-16 14:09:32 ----AC---- C:\Windows\system32\shdocvw.dll
2013-05-16 14:09:32 ----AC---- C:\Windows\system32\appinfo.dll
2013-05-16 00:22:04 ----D---- C:\Program Files\Hewlett-Packard
2013-05-16 00:18:21 ----D---- C:\ProgramData\Hewlett-Packard
2013-05-16 00:18:16 ----A---- C:\Windows\HPMProp.INI
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hppccompio.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpmtp130.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpmpw081.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpmpm081.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpmnque.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpmnndps.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpmml130.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpmlm121.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpmja130.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpcpn130.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\hpcjpm.dll
2013-05-16 00:18:10 ----A---- C:\Windows\system32\fxcompchannel.dll
2013-05-16 00:17:23 ----D---- C:\HP Universal Print Driver
2013-05-07 14:37:04 ----D---- C:\Users\1\AppData\Roaming\Spiritsoft
2013-05-03 23:00:53 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-05-03 13:25:04 ----D---- C:\Users\1\AppData\Roaming\ForetellTarot
2013-05-03 13:25:04 ----D---- C:\Program Files\VDA Group
2013-05-03 13:24:32 ----D---- C:\Windows\Downloaded Installations
2013-05-03 13:13:25 ----D---- C:\Users\1\AppData\Roaming\Mozilla
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\wextract.exe
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\webcheck.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\vbscript.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\url.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\SetIEInstalledDate.exe
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\pngfilt.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\occache.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\msrating.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\msls31.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\mshtmler.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\mshtmled.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\mshta.exe
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\msfeedssync.exe
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\msfeedsbs.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\licmgr10.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\inseng.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\imgutil.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\iexpress.exe
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\ieUnatt.exe
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\iepeers.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\iedkcs32.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\ieapfltr.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\ieapfltr.dat
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\IEAdvpack.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\icardie.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\dxtrans.dll
2013-04-30 23:17:42 ----AC---- C:\Windows\system32\dxtmsft.dll
2013-04-30 23:17:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-04-30 23:17:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-04-30 23:17:42 ----A---- C:\Windows\system32\elshyph.dll
2013-04-28 16:35:42 ----D---- C:\toolbarImages
2013-04-28 13:24:50 ----A---- C:\Windows\system32\Безопасные платежи.lnk
2013-04-28 10:54:14 ----D---- C:\Mozilla
2013-04-28 10:53:09 ----A---- C:\GDIPFONTCACHEV1.DAT
2013-04-28 10:52:41 ----D---- C:\DAEMON Tools Pro
2013-04-24 10:30:50 ----AC---- C:\Windows\system32\drivers\ntfs.sys
2013-04-18 20:22:11 ----D---- C:\Program Files\Teleport Pro
2013-04-18 19:54:46 ----D---- C:\Program Files\StarCraft II
2013-04-17 17:56:10 ----D---- C:\Program Files\Total Commander
2013-04-15 17:49:44 ----D---- C:\Program Files\AGEIA Technologies
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvopencl.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvoglv32.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvinit.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvhdap32.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvdispgenco3231422.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvdispco3231422.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvcuvid.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvcuda.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\nvcompiler.dll
2013-04-15 17:47:58 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-04-15 17:47:58 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2013-04-15 17:46:47 ----D---- C:\NVIDIA
2013-04-12 23:26:45 ----D---- C:\Program Files\Mozilla Firefox
2013-04-10 23:12:08 ----D---- C:\Dev-Cpp
2013-04-10 22:35:36 ----D---- C:\Program Files\WinDjView
2013-04-10 22:33:28 ----D---- C:\Program Files\Microsoft SQL Server
2013-04-10 22:32:42 ----D---- C:\Program Files\Microsoft Silverlight
2013-04-10 22:30:50 ----D---- C:\Windows\symbols
2013-04-10 22:30:49 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2013-04-10 22:30:49 ----D---- C:\Program Files\Microsoft SDKs
2013-04-10 22:30:49 ----D---- C:\Program Files\Microsoft Help Viewer
2013-04-10 22:30:49 ----D---- C:\Program Files\Common Files\Merge Modules
2013-04-10 21:54:37 ----AC---- C:\Windows\system32\smss.exe
2013-04-10 21:54:37 ----AC---- C:\Windows\system32\ntoskrnl.exe
2013-04-10 21:54:37 ----AC---- C:\Windows\system32\ntkrnlpa.exe
2013-04-10 21:54:37 ----AC---- C:\Windows\system32\csrsrv.dll
2013-04-10 21:54:35 ----AC---- C:\Windows\system32\mstscax.dll
2013-04-10 21:54:34 ----AC---- C:\Windows\system32\tsgqec.dll
2013-04-10 21:54:34 ----AC---- C:\Windows\system32\aaclient.dll
2013-04-06 14:59:01 ----D---- C:\Program Files\Common Files\Skype

======Список файлов и папок, измененных за последние 3 месяца======

2013-06-29 12:38:18 ----D---- C:\Temp
2013-06-29 12:36:05 ----RD---- C:\Program Files
2013-06-29 12:35:50 ----D---- C:\Windows\system32\drivers
2013-06-29 10:39:40 ----D---- C:\Windows\temp
2013-06-29 10:12:59 ----D---- C:\ProgramData\Kaspersky Lab
2013-06-29 10:12:18 ----D---- C:\ProgramData\NVIDIA
2013-06-29 09:07:27 ----D---- C:\Windows\system32\config
2013-06-29 09:06:48 ----D---- C:\Users\1\AppData\Roaming\Skype
2013-06-29 08:44:53 ----D---- C:\Program Files\Steam
2013-06-29 08:38:02 ----D---- C:\Windows\system32\drivers\etc
2013-06-29 08:31:56 ----SHD---- C:\Windows\Installer
2013-06-29 08:31:56 ----D---- C:\Windows\Tasks
2013-06-29 08:31:55 ----D---- C:\Windows\System32
2013-06-28 23:16:47 ----SD---- C:\Users\1\AppData\Roaming\Microsoft
2013-06-28 21:54:02 ----D---- C:\Windows\inf
2013-06-28 21:54:02 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2013-06-28 21:09:46 ----D---- C:\Program Files\Common Files\Steam
2013-06-26 10:22:36 ----D---- C:\Windows\system32\catroot2
2013-06-23 13:20:03 ----SD---- C:\ProgramData\Microsoft
2013-06-13 21:17:13 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-06-12 23:53:12 ----D---- C:\Windows\system32\catroot
2013-06-12 23:51:45 ----D---- C:\Windows\winsxs
2013-06-07 20:37:05 ----D---- C:\Program Files\Sigil
2013-06-07 20:02:02 ----HD---- C:\ProgramData
2013-06-04 23:04:40 ----D---- C:\Program Files\Google
2013-06-02 01:11:04 ----D---- C:\Windows\Prefetch
2013-05-31 22:51:02 ----D---- C:\Users\1\AppData\Roaming\DAEMON Tools Pro
2013-05-31 20:54:27 ----D---- C:\Program Files\Common Files
2013-05-30 20:48:06 ----D---- C:\Windows\rescache
2013-05-30 20:44:39 ----D---- C:\Users\1\AppData\Roaming\ACD Systems
2013-05-26 17:13:34 ----RD---- C:\Users
2013-05-26 12:22:34 ----HD---- C:\Program Files\InstallShield Installation Information
2013-05-26 12:03:35 ----D---- C:\ProgramData\PMB Files
2013-05-25 16:35:47 ----D---- C:\ProgramData\Skype
2013-05-25 16:35:46 ----RD---- C:\Program Files\Skype
2013-05-21 20:21:18 ----D---- C:\ProgramData\Media Get LLC
2013-05-21 19:19:06 ----D---- C:\Games
2013-05-21 18:31:13 ----D---- C:\Windows
2013-05-21 18:31:02 ----RSD---- C:\Windows\assembly
2013-05-20 23:52:39 ----D---- C:\Windows\Microsoft.NET
2013-05-17 21:03:00 ----D---- C:\Users\1\AppData\Roaming\NVIDIA
2013-05-16 23:17:04 ----D---- C:\Windows\Panther
2013-05-16 23:15:01 ----D---- C:\Program Files\Internet Explorer
2013-05-16 23:15:00 ----D---- C:\Windows\system32\ru-RU
2013-05-16 23:07:43 ----A---- C:\Windows\system32\MRT.exe
2013-05-16 00:18:50 ----D---- C:\Windows\system32\DriverStore
2013-05-15 21:56:24 ----D---- C:\Windows\system32\NDF
2013-05-12 19:39:44 ----D---- C:\ProgramData\RELOADED
2013-05-12 18:58:30 ----D---- C:\Windows\Logs
2013-05-11 10:46:07 ----SHD---- C:\System Volume Information
2013-05-10 20:29:07 ----D---- C:\Windows\system32\Tasks
2013-05-03 23:01:09 ----D---- C:\Windows\system32\LogFiles
2013-05-03 13:47:34 ----D---- C:\Program Files\Opera
2013-05-03 13:14:45 ----D---- C:\Users\1\AppData\Roaming\Opera
2013-05-02 02:06:08 ----C---- C:\Windows\system32\MpSigStub.exe
2013-05-01 12:43:34 ----D---- C:\Windows\system32\migration
2013-05-01 12:43:34 ----D---- C:\Windows\PolicyDefinitions
2013-05-01 12:43:33 ----D---- C:\Windows\system32\en-US
2013-04-29 21:36:04 ----SHD---- C:\$RECYCLE.BIN
2013-04-28 11:16:58 ----D---- C:\ProgramData\Microsoft Help
2013-04-23 14:36:30 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2013-04-21 14:20:09 ----D---- C:\ProgramData\Blizzard Entertainment
2013-04-21 13:59:27 ----D---- C:\Users\1\AppData\Roaming\BitTorrent
2013-04-18 19:58:25 ----D---- C:\Windows\system32\directx
2013-04-18 19:58:19 ----HD---- C:\Windows\msdownld.tmp
2013-04-15 17:49:55 ----D---- C:\Program Files\NVIDIA Corporation
2013-04-14 22:35:42 ----D---- C:\ProgramData\Adobe
2013-04-14 10:08:08 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-04-11 19:53:58 ----D---- C:\Program Files\Origin
2013-04-11 19:53:57 ----D---- C:\ProgramData\Origin
2013-04-11 19:53:56 ----D---- C:\ProgramData\Electronic Arts
2013-04-10 22:31:11 ----D---- C:\Program Files\Common Files\microsoft shared
2013-04-10 22:30:49 ----D---- C:\Program Files\MSBuild
2013-04-03 18:37:20 ----D---- C:\Windows\pss
2013-04-03 18:36:24 ----D---- C:\Program Files\CCleaner

======Список драйверов (тип запуска: R=Запущен, S=остановлен, 0=Загрузочный, 1=Системный, 2=Автоматически, 3=Вручную, 4=Отключено)======

R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2012-06-19 136024]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2011-11-03 45968]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 173440]
R1 appdrv01;Application Driver (01); C:\Windows\System32\Drivers\appdrv01.sys [2012-10-08 2279808]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-09-22 242240]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2013-04-23 594528]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2012-08-02 24408]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2013-06-19 44000]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2013-04-23 145040]
R1 uzm2odgy;AVZ-RK Kernel Driver; \??\C:\Windows\system32\Drivers\uzm2odgy.sys [2013-06-29 11264]
R3 AVerBDA6x;AVerBDA6x service; C:\Windows\system32\DRIVERS\AVerBDA716x.sys [2009-06-05 1151104]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2013-02-28 25944]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2013-02-28 25944]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2012-12-19 154040]
R3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pfc.sys [2004-04-17 10368]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD - драйвер фильтра шины AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 62464]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 16384]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 LVRS;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs.sys [2012-01-18 312096]
S3 LVUVC;Logitech Webcam Pro 9000(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2012-01-18 4332960]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2011-08-17 23168]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2011-08-17 137472]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 5632]
S3 sisagp;SIS - фильтр шины AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 28032]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2011-08-17 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2011-08-17 8192]
S3 usbUDisc;usbUDisc; C:\Windows\system32\DRIVERS\USBDrv.sys [2013-01-11 13824]
S3 viaagp;VIA - фильтр шины AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 драйвер процессора; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 35968]

======Список служб (тип запуска: R=Запущена, S=остановлена, 0=Загрузочная, 1=Системная, 2=Автоматически, 3=Вручную, 4=Отключено)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 634144]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-12-22 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R2 Thorn;Служба политики провайдера безопасности аккаунта; C:\Users\1\AppData\Local\THORN\Thorn.exe [2013-01-16 36680]
R2 UMVPFSrv;UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-01-18 450848]
S2 appdrvrem01;Application Driver Auto Removal Service (01); C:\Windows\System32\appdrvrem01.exe [2012-10-08 318632]
S2 AVP;Kaspersky Anti-Virus Service; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2013-02-28 356376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Служба Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-14 116648]
S2 ir16_32;Intel Indeo(N) service; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 KBDMAI;Virtual keyboard 32-bit service; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 2GISUpdateService;2GIS UpdateService; C:\Program Files\2gis\3.0\2GISUpdateService.exe [2013-05-31 3804480]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-13 256904]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Служба состояний ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Служба Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-14 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-12 115608]
S3 ose;Office  Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2013-06-07 543656]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-18 1343400]
S4 CscService;Автономные файлы; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------