Logfile of random's system information tool 1.06 (written by random/random)
Run by Администратор at 2009-12-23 17:06:23
Microsoft Windows XP Professional Service Pack 3
System drive C: has 12 GB (57%) free of 20 GB
Total RAM: 3583 MB (90% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:06:43, on 23.12.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Opera\opera.exe
C:\WINDOWS\explorer.exe
C:\Program Files\AIMP2\AIMP2.exe
C:\WINDOWS\System32\svchost.exe
D:\Installs\Программы для Windows\RSIT.exe
C:\Program Files\trend micro\Администратор.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O17 - HKLM\System\CCS\Services\Tcpip\..\{5209C0EB-BC4A-4044-AE76-FCB63B2B6F2F}: NameServer = 109.86.2.2,109.86.2.21
O17 - HKLM\System\CS2\Services\Tcpip\..\{5209C0EB-BC4A-4044-AE76-FCB63B2B6F2F}: NameServer = 109.86.2.2,109.86.2.21
O17 - HKLM\System\CS3\Services\Tcpip\..\{5209C0EB-BC4A-4044-AE76-FCB63B2B6F2F}: NameServer = 109.86.2.2,109.86.2.21
O23 - Service: Журнал событий (Eventlog) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: Служба COM записи компакт-дисков IMAPI (ImapiService) - Корпорация Майкрософт - C:\WINDOWS\system32\imapi.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plug and Play (PlugPlay) - Корпорация Майкрософт - C:\WINDOWS\system32\services.exe
O23 - Service: Смарт-карты (SCardSvr) - Корпорация Майкрософт - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Журналы и оповещения производительности (SysmonLog) - Корпорация Майкрософт - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Теневое копирование тома (VSS) - Корпорация Майкрософт - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Адаптер производительности WMI (WmiApSrv) - Корпорация Майкрософт - C:\WINDOWS\system32\wbem\wmiapsrv.exe

--
End of file - 2397 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-05-11 8429568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2007-06-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoThumbnailCache"=1
"NoSMConfigurePrograms"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDriveAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 3 months======

2009-12-23 17:06:24 ----D---- C:\Program Files\trend micro
2009-12-23 17:06:23 ----D---- C:\rsit
2009-12-23 16:40:55 ----D---- C:\WINDOWS\temp
2009-12-23 16:40:53 ----A---- C:\ComboFix.txt
2009-12-23 16:32:52 ----A---- C:\WINDOWS\zip.exe
2009-12-23 16:32:52 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-12-23 16:32:52 ----A---- C:\WINDOWS\SWSC.exe
2009-12-23 16:32:52 ----A---- C:\WINDOWS\SWREG.exe
2009-12-23 16:32:52 ----A---- C:\WINDOWS\sed.exe
2009-12-23 16:32:52 ----A---- C:\WINDOWS\PEV.exe
2009-12-23 16:32:52 ----A---- C:\WINDOWS\NIRCMD.exe
2009-12-23 16:32:52 ----A---- C:\WINDOWS\MBR.exe
2009-12-23 16:32:52 ----A---- C:\WINDOWS\grep.exe
2009-12-23 16:32:49 ----D---- C:\WINDOWS\ERDNT
2009-12-23 16:31:35 ----D---- C:\Qoobox
2009-12-22 21:35:42 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2009-12-22 21:35:42 ----A---- C:\WINDOWS\system32\pndx5032.dll
2009-12-22 21:35:42 ----A---- C:\WINDOWS\system32\pndx5016.dll
2009-12-22 21:35:42 ----A---- C:\WINDOWS\system32\pncrt.dll
2009-12-22 21:35:41 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2009-12-22 21:35:41 ----A---- C:\WINDOWS\system32\unrar.dll
2009-12-22 21:35:41 ----A---- C:\WINDOWS\avisplitter.ini
2009-12-22 21:35:40 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2009-12-22 21:35:40 ----A---- C:\WINDOWS\system32\xvidcore.dll
2009-12-22 21:35:40 ----A---- C:\WINDOWS\system32\qt-dx331.dll
2009-12-22 21:35:40 ----A---- C:\WINDOWS\system32\dpl100.dll
2009-12-22 21:35:40 ----A---- C:\WINDOWS\system32\divx.dll
2009-12-22 21:35:39 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2009-12-22 21:35:39 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2009-12-22 21:35:38 ----D---- C:\Program Files\K-Lite Codec Pack
2009-12-22 21:35:07 ----D---- C:\Documents and Settings\Администратор\Application Data\Media Player Classic
2009-12-22 21:32:43 ----A---- C:\WINDOWS\system32\XceedZip.dll
2009-12-22 21:32:41 ----D---- C:\Program Files\Driver-Soft
2009-12-22 20:31:15 ----A---- C:\WINDOWS\system32\Ms16.exe
2009-12-22 20:31:15 ----A---- C:\WINDOWS\system32\mini.exe
2009-12-22 20:07:41 ----D---- C:\Documents and Settings\Администратор\Application Data\ESET
2009-12-22 20:06:45 ----D---- C:\Documents and Settings\All Users\Application Data\ESET
2009-12-22 16:45:29 ----D---- C:\Documents and Settings\Администратор\Application Data\Malwarebytes
2009-12-22 16:45:25 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-12-22 16:45:25 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-12-22 13:42:48 ----D---- C:\Program Files\IEToolbar404
2009-12-22 13:42:33 ----D---- C:\WINDOWS\Sun
2009-12-22 13:42:33 ----D---- C:\Documents and Settings\Администратор\Application Data\Sun
2009-12-22 00:30:01 ----A---- C:\WINDOWS\ntbtlog.txt
2009-12-22 00:11:44 ----A---- C:\WINDOWS\system32\ccda_v8.exe
2009-12-22 00:11:32 ----A---- C:\WINDOWS\nigzss.txt
2009-12-21 23:25:37 ----D---- C:\Program Files\TrendMicro
2009-12-21 22:55:21 ----D---- C:\Program Files\Common Files\INCA Shared
2009-12-21 21:58:52 ----D---- C:\Documents and Settings\Администратор\Application Data\Mozilla
2009-12-21 21:37:46 ----D---- C:\Program Files\FlylinkDC++
2009-12-21 19:45:27 ----A---- C:\WINDOWS\system32\h323log.txt
2009-12-21 19:44:47 ----D---- C:\WINDOWS\system32\RTCOM
2009-12-21 19:44:46 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-12-21 19:44:20 ----D---- C:\WINDOWS\nview
2009-12-21 19:44:20 ----D---- C:\WINDOWS\NV2761428.TMP
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nwiz.exe
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrszht.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrstr.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrssv.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrssl.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrssk.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsru.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrspt.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrspl.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsno.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsko.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsja.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsit.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrshu.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrshe.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrses.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrseng.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsel.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsde.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsda.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrscs.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwrsar.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwimg.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvuninst.exe
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvshell.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrstr.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrssv.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrssl.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrssk.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrspt.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrspl.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsno.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrshu.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrshe.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsel.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsda.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrscs.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvrsar.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nview.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvexpbar.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvdspsch.exe
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvcpluir.dll
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvcolor.exe
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\nvappbar.exe
2009-12-21 19:44:20 ----A---- C:\WINDOWS\system32\keystone.exe
2009-12-21 19:43:56 ----A---- C:\WINDOWS\system32\nvunrm.exe
2009-12-21 19:43:11 ----A---- C:\WINDOWS\system32\usbui.dll
2009-12-21 19:41:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-12-21 19:41:27 ----SHD---- C:\WINDOWS\Installer
2009-12-21 19:41:27 ----D---- C:\Program Files\Common Files\ODBC
2009-12-21 19:41:27 ----A---- C:\WINDOWS\ODBCINST.INI
2009-12-21 19:41:23 ----D---- C:\Program Files\Common Files\SpeechEngines
2009-12-21 19:41:22 ----RD---- C:\Program Files
2009-12-21 19:41:22 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-12-21 19:41:22 ----D---- C:\Program Files\Common Files
2009-12-21 19:41:19 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-12-21 19:41:19 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-12-21 19:41:19 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-12-21 19:41:17 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-12-21 19:41:17 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-12-21 19:41:17 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-12-21 19:41:17 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-12-21 19:41:17 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-12-21 19:41:16 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-12-21 19:41:16 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-12-21 19:41:15 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-12-21 19:41:15 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-12-21 19:41:15 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-12-21 19:41:15 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-12-21 19:41:15 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-12-21 19:41:13 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-12-21 19:41:12 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-12-21 19:41:12 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-12-21 19:41:12 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-12-21 19:41:12 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdycc.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbduzb.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdur.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdtat.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdmon.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdkyr.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdkaz.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdbu.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdblr.dll
2009-12-21 19:41:09 ----A---- C:\WINDOWS\system32\kbdaze.dll
2009-12-21 19:41:07 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-12-21 19:41:07 ----A---- C:\WINDOWS\system32\irclass.dll
2009-12-21 19:41:07 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-12-21 19:41:07 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-12-21 19:41:07 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-12-21 19:41:04 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-12-21 19:41:04 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-12-21 19:41:04 ----A---- C:\WINDOWS\system32\batt.dll
2009-12-21 19:41:03 ----A---- C:\WINDOWS\NOTEPAD.EXE
2009-12-21 19:41:02 ----A---- C:\WINDOWS\system32\storprop.dll
2009-12-21 19:40:55 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-12-21 19:39:10 ----RA---- C:\WINDOWS\SET8.tmp
2009-12-21 19:39:07 ----RA---- C:\WINDOWS\SET4.tmp
2009-12-21 19:39:06 ----RA---- C:\WINDOWS\SET3.tmp
2009-12-21 19:39:01 ----D---- C:\WINDOWS\system32\CatRoot2
2009-12-21 19:39:01 ----D---- C:\WINDOWS\system32\CatRoot
2009-12-21 19:38:56 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-12-21 19:38:34 ----A---- C:\WINDOWS\setuplog.txt
2009-12-21 19:38:15 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2009-12-21 19:38:15 ----A---- C:\WINDOWS\SkyTel.exe
2009-12-21 19:38:15 ----A---- C:\WINDOWS\RtlUpd.exe
2009-12-21 19:38:14 ----A---- C:\WINDOWS\RTLCPL.EXE
2009-12-21 19:38:14 ----A---- C:\WINDOWS\RTHDCPL.EXE
2009-12-21 19:38:14 ----A---- C:\WINDOWS\MicCal.exe
2009-12-21 19:38:14 ----A---- C:\WINDOWS\ALCWZRD.EXE
2009-12-21 19:38:14 ----A---- C:\WINDOWS\ALCMTR.EXE
2009-12-21 19:37:59 ----RA---- C:\WINDOWS\system32\nvconrm.dll
2009-12-21 19:37:59 ----RA---- C:\WINDOWS\system32\fdco1ins.dll
2009-12-21 19:37:59 ----RA---- C:\WINDOWS\system32\fdco1.dll
2009-12-21 19:37:59 ----RA---- C:\WINDOWS\system32\bdco1ins.dll
2009-12-21 19:37:59 ----RA---- C:\WINDOWS\system32\bdco1.dll
2009-12-21 19:37:53 ----A---- C:\WINDOWS\system32\nvwssr.dll
2009-12-21 19:37:52 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-12-21 19:37:51 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-12-21 19:37:50 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
2009-12-21 19:37:50 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-12-21 19:37:48 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-12-21 19:37:48 ----A---- C:\WINDOWS\system32\nvnt4cpl.dll
2009-12-21 19:37:45 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
2009-12-21 19:37:45 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-12-21 19:37:45 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-12-21 19:37:45 ----A---- C:\WINDOWS\system32\nvmccssr.dll
2009-12-21 19:37:45 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-12-21 19:37:45 ----A---- C:\WINDOWS\system32\nvmccs.dll
2009-12-21 19:37:44 ----A---- C:\WINDOWS\system32\nvgamesr.dll
2009-12-21 19:37:44 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-12-21 19:37:44 ----A---- C:\WINDOWS\system32\nvdispsr.dll
2009-12-21 19:37:44 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-12-21 19:37:44 ----A---- C:\WINDOWS\system32\nvcuda.dll
2009-12-21 19:37:39 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-12-21 19:37:39 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-12-21 19:37:39 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-12-21 19:37:39 ----A---- C:\WINDOWS\system32\nvapi.dll
2009-12-21 19:37:38 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-12-21 19:37:38 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-12-21 19:36:35 ----D---- C:\Documents and Settings
2009-12-21 19:36:34 ----SHD---- C:\System Volume Information
2009-12-21 19:35:54 ----RSH---- C:\boot.ini
2009-12-21 19:31:34 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-12-21 19:31:34 ----RSD---- C:\WINDOWS\Fonts
2009-12-21 19:31:34 ----HD---- C:\WINDOWS\inf
2009-12-21 19:31:34 ----D---- C:\WINDOWS\WinSxS
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Web
2009-12-21 19:31:34 ----D---- C:\WINDOWS\twain_32
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\wins
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\wbem
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\usmt
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\spool
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\ShellExt
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\Setup
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\ru-ru
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\ru
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\ras
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\oobe
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\npp
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\mui
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\inetsrv
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\IME
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\icsxml
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\ias
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\export
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\drivers
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\dhcp
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\config
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\3com_dmi
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\3076
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\2052
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1054
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1049
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1042
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1041
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1037
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1033
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1031
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1028
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32\1025
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system32
2009-12-21 19:31:34 ----D---- C:\WINDOWS\system
2009-12-21 19:31:34 ----D---- C:\WINDOWS\security
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Resources
2009-12-21 19:31:34 ----D---- C:\WINDOWS\repair
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Provisioning
2009-12-21 19:31:34 ----D---- C:\WINDOWS\PeerNet
2009-12-21 19:31:34 ----D---- C:\WINDOWS\pchealth
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Network Diagnostic
2009-12-21 19:31:34 ----D---- C:\WINDOWS\mui
2009-12-21 19:31:34 ----D---- C:\WINDOWS\msapps
2009-12-21 19:31:34 ----D---- C:\WINDOWS\msagent
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Media
2009-12-21 19:31:34 ----D---- C:\WINDOWS\L2Schemas
2009-12-21 19:31:34 ----D---- C:\WINDOWS\java
2009-12-21 19:31:34 ----D---- C:\WINDOWS\ime
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Help
2009-12-21 19:31:34 ----D---- C:\WINDOWS\ehome
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Driver Cache
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Debug
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Cursors
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Connection Wizard
2009-12-21 19:31:34 ----D---- C:\WINDOWS\Config
2009-12-21 19:31:34 ----D---- C:\WINDOWS\AppPatch
2009-12-21 19:31:34 ----D---- C:\WINDOWS\addins
2009-12-21 19:31:34 ----D---- C:\WINDOWS
2009-12-21 18:38:29 ----A---- C:\WINDOWS\vncutil.exe
2009-12-21 18:38:26 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2009-12-21 18:38:26 ----A---- C:\WINDOWS\RtkAudioService.exe
2009-12-21 18:22:24 ----D---- C:\Documents and Settings\Администратор\Application Data\Macromedia
2009-12-21 18:22:24 ----D---- C:\Documents and Settings\Администратор\Application Data\Adobe
2009-12-21 17:50:12 ----A---- C:\WINDOWS\mtstack.INI
2009-12-21 17:48:04 ----D---- C:\WINDOWS\OCCACHE
2009-12-21 17:48:03 ----A---- C:\WINDOWS\system32\HLP95EN.DLL
2009-12-21 17:48:01 ----A---- C:\WINDOWS\fsivba.dll
2009-12-21 17:47:58 ----D---- C:\Program Files\Common Files\Autodesk Shared
2009-12-21 17:47:58 ----A---- C:\WINDOWS\system32\TEXTUREW.DLL
2009-12-21 17:47:58 ----A---- C:\WINDOWS\system32\MTLW.DLL
2009-12-21 17:47:58 ----A---- C:\WINDOWS\system32\HEIDIW.DLL
2009-12-21 17:47:58 ----A---- C:\WINDOWS\system32\DLLONGW.DLL
2009-12-21 17:47:57 ----A---- C:\WINDOWS\system32\WHIPTKW.DLL
2009-12-21 17:47:57 ----A---- C:\WINDOWS\system32\REGACAD.DLL
2009-12-21 17:47:57 ----A---- C:\WINDOWS\system32\MTSTACK.EXE
2009-12-21 17:47:57 ----A---- C:\WINDOWS\system32\HDIMON.DLL
2009-12-21 17:47:57 ----A---- C:\WINDOWS\system32\ADRESC.DLL
2009-12-21 17:47:57 ----A---- C:\WINDOWS\system32\ACADFICN.DLL
2009-12-21 17:47:31 ----D---- C:\Program Files\ACAD2000
2009-12-21 17:46:56 ----A---- C:\WINDOWS\uninst.exe
2009-12-21 17:38:13 ----D---- C:\Program Files\AIMP2
2009-12-21 17:37:12 ----A---- C:\WINDOWS\system32\LANGS30.DLL
2009-12-21 17:37:12 ----A---- C:\WINDOWS\system32\DELPHIMM.DLL
2009-12-21 17:37:11 ----D---- C:\Program Files\Magic Gooddy
2009-12-21 17:35:51 ----D---- C:\Documents and Settings\Администратор\Application Data\Opera
2009-12-21 17:35:25 ----D---- C:\Program Files\RocketDock
2009-12-21 17:35:08 ----D---- C:\Program Files\WinRAR
2009-12-21 17:35:08 ----D---- C:\Documents and Settings\Администратор\Application Data\WinRAR
2009-12-21 17:34:59 ----D---- C:\Program Files\Total Commander
2009-12-21 17:34:48 ----D---- C:\Program Files\Opera
2009-12-21 17:34:31 ----D---- C:\Program Files\Mozilla Firefox
2009-12-21 17:34:14 ----D---- C:\Documents and Settings\Администратор\Application Data\Nokia
2009-12-21 17:34:13 ----D---- C:\Documents and Settings\Администратор\Application Data\PC Suite
2009-12-21 17:34:13 ----D---- C:\Documents and Settings\All Users\Application Data\PC Suite
2009-12-21 17:30:51 ----D---- C:\Program Files\Common Files\PCSuite
2009-12-21 17:30:50 ----D---- C:\Program Files\Common Files\Nokia
2009-12-21 17:30:45 ----D---- C:\Program Files\DIFX
2009-12-21 17:30:41 ----D---- C:\Program Files\PC Connectivity Solution
2009-12-21 17:30:36 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-21 17:30:35 ----D---- C:\Program Files\Nokia
2009-12-21 17:30:35 ----A---- C:\WINDOWS\system32\nmwcdcls.dll
2009-12-21 17:30:12 ----A---- C:\WINDOWS\ODBC.INI
2009-12-21 17:30:09 ----A---- C:\WINDOWS\system32\mdimon.dll
2009-12-21 17:30:03 ----D---- C:\Documents and Settings\All Users\Application Data\Installations
2009-12-21 17:29:47 ----D---- C:\Program Files\VKLife
2009-12-21 17:29:13 ----D---- C:\Program Files\Common Files\DESIGNER
2009-12-21 17:28:42 ----D---- C:\WINDOWS\SHELLNEW
2009-12-21 17:28:38 ----D---- C:\Program Files\Microsoft.NET
2009-12-21 17:28:38 ----D---- C:\Program Files\Microsoft Office
2009-12-21 17:14:00 ----N---- C:\WINDOWS\system32\nvuide.exe
2009-12-21 17:11:38 ----R---- C:\WINDOWS\system32\ChCfg.exe
2009-12-21 17:07:59 ----D---- C:\Program Files\Realtek
2009-12-21 17:07:57 ----A---- C:\WINDOWS\RtlExUpd.dll
2009-12-21 17:07:26 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-12-21 17:07:24 ----HD---- C:\Program Files\InstallShield Installation Information
2009-12-21 17:07:24 ----D---- C:\Program Files\AMD
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l2052.dll
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l1046.dll
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l1042.dll
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l1041.dll
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l1040.dll
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l1036.dll
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l1034.dll
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l1031.dll
2009-12-21 17:03:38 ----RA---- C:\WINDOWS\system32\fdco_l1028.dll
2009-12-21 17:03:33 ----D---- C:\WINDOWS\NV15281452.TMP
2009-12-21 17:02:59 ----RA---- C:\WINDOWS\system32\nvusmb.exe
2009-12-21 17:02:53 ----D---- C:\Program Files\Common Files\InstallShield
2009-12-21 17:02:28 ----D---- C:\Program Files\Yahoo!
2009-12-21 17:00:51 ----D---- C:\WINDOWS\system32\Lang
2009-12-21 17:00:31 ----D---- C:\Documents and Settings\Администратор\Application Data\Identities
2009-12-21 17:00:31 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-12-21 17:00:18 ----HD---- C:\Program Files\Uninstall Information
2009-12-21 16:59:17 ----RD---- C:\WINDOWS\OemDrv
2009-12-21 16:59:12 ----ASH---- C:\Documents and Settings\Администратор\Application Data\desktop.ini
2009-12-21 16:59:11 ----SD---- C:\Documents and Settings\Администратор\Application Data\Microsoft
2009-12-21 16:57:37 ----D---- C:\WINDOWS\Prefetch
2009-12-21 16:57:36 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-12-21 16:54:38 ----D---- C:\WINDOWS\system32\xircom
2009-12-21 16:54:38 ----D---- C:\Program Files\xerox
2009-12-21 16:54:38 ----D---- C:\Program Files\microsoft frontpage
2009-12-21 16:54:24 ----D---- C:\Program Files\VistaDriveIcon
2009-12-21 16:54:23 ----A---- C:\WINDOWS\system32\hidcon.exe
2009-12-21 16:54:23 ----A---- C:\WINDOWS\Finish.exe
2009-12-21 16:54:22 ----A---- C:\WINDOWS\system32\OEMINFO.INI
2009-12-21 16:54:14 ----SD---- C:\WINDOWS\system32\Microsoft
2009-12-21 16:54:14 ----A---- C:\WINDOWS\system32\javaws.exe
2009-12-21 16:54:14 ----A---- C:\WINDOWS\system32\javaw.exe
2009-12-21 16:54:14 ----A---- C:\WINDOWS\system32\java.exe
2009-12-21 16:53:59 ----D---- C:\Program Files\Java
2009-12-21 16:53:59 ----D---- C:\Program Files\Common Files\Java
2009-12-21 16:53:07 ----RSD---- C:\WINDOWS\assembly
2009-12-21 16:53:07 ----D---- C:\WINDOWS\Microsoft.NET
2009-12-21 16:53:06 ----D---- C:\WINDOWS\system32\URTTemp
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\wnaspi32.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\Vbrun300.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\vbrun200.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\Vb40032.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\Vb40016.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\ssleay32.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\msvcrt10.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\msvcr71.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\msvcr70.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\msvcp71.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MSVCP70.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\msvci70.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MSSTKPRP.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\msstdfmt.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71u.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71KOR.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71JPN.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71ITA.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71FRA.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71ESP.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71ENU.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71DEU.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71CHT.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71CHS.DLL
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\MFC71.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70u.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70kor.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70jpn.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70ita.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70fra.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70esp.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70enu.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70deu.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70cht.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70chs.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\mfc70.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\libssl32.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\libeay32.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\atl71.dll
2009-12-21 16:52:49 ----A---- C:\WINDOWS\system32\atl70.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\x3daudio1_2.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2009-12-21 16:52:46 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2009-12-21 16:52:45 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-12-21 16:52:45 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2009-12-21 16:52:45 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-12-21 16:52:45 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\d3dcompiler_36.dll
2009-12-21 16:52:44 ----A---- C:\WINDOWS\system32\d3dcompiler_35.dll
2009-12-21 16:52:43 ----A---- C:\WINDOWS\system32\d3dcompiler_34.dll
2009-12-21 16:52:43 ----A---- C:\WINDOWS\system32\d3dcompiler_33.dll
2009-12-21 16:52:18 ----A---- C:\WINDOWS\control.ini
2009-12-21 16:52:18 ----A---- C:\AUTOEXEC.BAT
2009-12-21 16:52:09 ----A---- C:\WINDOWS\OEWABLog.txt
2009-12-21 16:52:04 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-12-21 16:51:04 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-12-21 16:51:00 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-12-21 16:50:54 ----HD---- C:\Program Files\WindowsUpdate
2009-12-21 16:50:50 ----D---- C:\Program Files\Online Services
2009-12-21 16:50:34 ----D---- C:\WINDOWS\system32\DirectX
2009-12-21 16:50:25 ----A---- C:\WINDOWS\system32\atrace.dll
2009-12-21 16:50:24 ----A---- C:\WINDOWS\system32\desktop.ini
2009-12-21 16:50:24 ----A---- C:\WINDOWS\desktop.ini
2009-12-21 16:50:11 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-12-21 16:50:09 ----D---- C:\Program Files\Common Files\Services
2009-12-21 16:50:09 ----A---- C:\WINDOWS\system32\acctres.dll
2009-12-21 16:50:05 ----SD---- C:\WINDOWS\Tasks
2009-12-21 16:50:05 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-12-21 16:50:04 ----D---- C:\Program Files\Common Files\MSSoap
2009-12-21 16:50:00 ----D---- C:\WINDOWS\srchasst
2009-12-21 16:49:59 ----D---- C:\WINDOWS\system32\Macromed
2009-12-21 16:49:56 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-12-21 16:49:56 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-12-21 16:49:56 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-12-21 16:49:55 ----A---- C:\WINDOWS\system32\wups.dll
2009-12-21 16:49:55 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-12-21 16:49:55 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-12-21 16:49:55 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-12-21 16:49:55 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-12-21 16:49:55 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-12-21 16:49:54 ----N---- C:\WINDOWS\system32\qmgr.dll
2009-12-21 16:49:54 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-12-21 16:49:54 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2009-12-21 16:49:54 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-12-21 16:49:54 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-12-21 16:49:50 ----D---- C:\Program Files\Movie Maker
2009-12-21 16:49:29 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-12-21 16:49:29 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-12-21 16:49:29 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-12-21 16:49:29 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-12-21 16:49:24 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-12-21 16:49:24 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-12-21 16:49:23 ----N---- C:\WINDOWS\system32\srsvc.dll
2009-12-21 16:49:23 ----D---- C:\WINDOWS\system32\Restore
2009-12-21 16:49:23 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-12-21 16:49:23 ----A---- C:\WINDOWS\system32\srclient.dll
2009-12-21 16:49:22 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-12-21 16:49:22 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-12-21 16:49:22 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-12-21 16:49:22 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-12-21 16:49:22 ----A---- C:\WINDOWS\system32\ils.dll
2009-12-21 16:49:21 ----A---- C:\WINDOWS\system32\msconf.dll
2009-12-21 16:49:18 ----D---- C:\Program Files\NetMeeting
2009-12-21 16:49:18 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-12-21 16:49:18 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-12-21 16:49:16 ----A---- C:\WINDOWS\system32\inetres.dll
2009-12-21 16:49:16 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-12-21 16:49:14 ----N---- C:\WINDOWS\system32\schedsvc.dll
2009-12-21 16:49:14 ----D---- C:\Program Files\Outlook Express
2009-12-21 16:49:14 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-12-21 16:49:13 ----A---- C:\WINDOWS\system32\mstask.dll
2009-12-21 16:49:13 ----A---- C:\WINDOWS\system32\isign32.dll
2009-12-21 16:49:13 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-12-21 16:49:13 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-12-21 16:49:13 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-12-21 16:49:06 ----D---- C:\Program Files\Common Files\System
2009-12-21 16:48:33 ----D---- C:\Program Files\ComPlus Applications
2009-12-21 16:48:31 ----A---- C:\WINDOWS\vbaddin.ini
2009-12-21 16:48:31 ----A---- C:\WINDOWS\vb.ini
2009-12-21 16:48:25 ----D---- C:\WINDOWS\Registration
2009-12-21 16:48:07 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-12-21 16:48:07 ----RD---- C:\WINDOWS\Offline Web Pages
2009-12-21 16:48:07 ----A---- C:\WINDOWS\system32\winfxdocobj.exe
2009-12-21 16:48:06 ----D---- C:\WINDOWS\wbem
2009-12-21 16:48:06 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2009-12-21 16:48:06 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2009-12-21 16:48:04 ----A---- C:\WINDOWS\system32\ieframe.dll.mui
2009-12-21 16:48:03 ----D---- C:\Program Files\Internet Explorer
2009-12-21 16:48:03 ----A---- C:\WINDOWS\system32\advpack.dll.mui
2009-12-21 16:48:00 ----D---- C:\WINDOWS\system32\Cplicons
2009-12-21 16:47:56 ----D---- C:\Program Files\System
2009-12-21 16:47:50 ----D---- C:\Program Files\Windows Media Player
2009-12-21 16:47:50 ----D---- C:\Program Files\Windows Media Connect 2
2009-12-21 16:47:49 ----D---- C:\WINDOWS\system32\PreInstall
2009-12-21 16:47:48 ----D---- C:\WINDOWS\SoftwareDistribution
2009-12-21 16:47:48 ----A---- C:\WINDOWS\system32\muweb.dll
2009-12-21 16:47:47 ----A---- C:\WINDOWS\system32\write.exe
2009-12-21 16:47:47 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2009-12-21 16:47:40 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-12-21 16:47:40 ----A---- C:\WINDOWS\system32\hticons.dll
2009-12-21 16:47:39 ----A---- C:\WINDOWS\system32\winchat.exe
2009-12-21 16:47:39 ----A---- C:\WINDOWS\system32\avwav.dll
2009-12-21 16:47:39 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-12-21 16:47:39 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-12-21 16:47:33 ----A---- C:\WINDOWS\system32\getuname.dll
2009-12-21 16:47:32 ----A---- C:\WINDOWS\system32\charmap.exe
2009-12-21 16:47:32 ----A---- C:\WINDOWS\system32\calc.exe
2009-12-21 16:47:31 ----A---- C:\WINDOWS\system32\winmine.exe
2009-12-21 16:47:31 ----A---- C:\WINDOWS\system32\sol.exe
2009-12-21 16:47:30 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-12-21 16:47:30 ----A---- C:\WINDOWS\system32\tskill.exe
2009-12-21 16:47:30 ----A---- C:\WINDOWS\system32\reset.exe
2009-12-21 16:47:30 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-12-21 16:47:30 ----A---- C:\WINDOWS\system32\freecell.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\tscon.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\shadow.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\regini.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-12-21 16:47:29 ----A---- C:\WINDOWS\system32\msg.exe
2009-12-21 16:47:28 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-12-21 16:47:28 ----A---- C:\WINDOWS\system32\logoff.exe
2009-12-21 16:47:28 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-12-21 16:47:22 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-12-21 16:47:21 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-12-21 16:47:20 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-12-21 16:47:20 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-12-21 16:47:20 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-12-21 16:47:19 ----D---- C:\Program Files\Windows NT
2009-12-21 16:47:19 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-12-21 16:47:19 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-12-21 16:47:18 ----A---- C:\WINDOWS\system32\spider.exe
2009-12-21 16:47:17 ----A---- C:\WINDOWS\system32\tsgqec.dll
2009-12-21 16:47:17 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-12-21 16:47:17 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2009-12-21 16:47:17 ----A---- C:\WINDOWS\system32\aaclient.dll
2009-12-21 16:47:16 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-12-21 16:47:16 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-12-21 16:47:15 ----N---- C:\WINDOWS\system32\termsrv.dll
2009-12-21 16:47:15 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-12-21 16:47:15 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-12-21 16:47:15 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-12-21 16:47:15 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-12-21 16:47:15 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-12-21 16:47:15 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-12-21 16:47:15 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-12-21 16:47:14 ----D---- C:\WINDOWS\system32\MsDtc
2009-12-21 16:47:14 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-12-21 16:47:14 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-12-21 16:47:14 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-12-21 16:47:14 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-12-21 16:47:14 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-12-21 16:47:14 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-12-21 16:47:13 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-12-21 16:47:13 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-12-21 16:47:13 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-12-21 16:47:13 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-12-21 16:47:13 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-12-21 16:47:12 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-12-21 16:47:12 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-12-21 16:47:11 ----D---- C:\WINDOWS\system32\Com
2009-12-21 16:47:11 ----A---- C:\WINDOWS\system32\stclient.dll
2009-12-21 16:47:11 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-12-21 16:47:11 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-12-21 16:47:11 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-12-21 16:47:11 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-12-21 16:47:11 ----A---- C:\WINDOWS\system32\colbact.dll
2009-12-21 16:47:11 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-12-21 16:47:10 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-12-21 16:47:10 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-12-21 16:47:10 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-12-21 16:47:09 ----A---- C:\WINDOWS\system32\comuid.dll
2009-12-21 16:47:09 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-12-21 16:47:09 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-12-21 16:47:09 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-12-21 16:47:02 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-12-21 16:47:02 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-12-21 16:47:02 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-12-21 16:47:01 ----A---- C:\WINDOWS\system32\cmprops.dll

======List of files/folders modified in the last 3 months======

2009-12-23 16:39:15 ----A---- C:\WINDOWS\system.ini
2009-12-21 17:30:01 ----A---- C:\WINDOWS\win.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Драйвер AMD процессора; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 43008]
R1 uze5otcy;AVZ-RK Kernel Driver; \??\C:\WINDOWS\system32\Drivers\uze5otcy.sys []
R2 rspndr;Ответчик обнаружения топологии уровня связи; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2008-07-08 62848]
R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
R3 HDAudBus;Драйвер шины Microsoft UAA для High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-10-06 5922816]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-05-11 6738432]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-03-22 52736]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-03-22 18944]
R3 usbehci;Драйвер минипорта Microsoft USB 2.0 расширенного хост-контроллера; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-07-16 30336]
R3 usbhub;USB2 концентратор; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-15 59520]
R3 usbohci;Драйвер минипорта Microsoft USB открытого хост-контроллера; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-07-16 17152]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Arp1394;Протокол клиента 1394 ARP; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-07-16 60800]
S3 mbr;mbr; \??\C:\DOCUME~1\9335~1\LOCALS~1\Temp\mbr.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 NIC1394;Сетевой драйвер 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-07-16 61824]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 USBSTOR;Драйвер запоминающих устройств для USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-07-16 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2007-06-18 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2007-06-18 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-05-11 163908]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-15 14336]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\wmpnetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-06-02 637952]

-----------------EOF-----------------