Re: Re: Ребята, помогите!

[VolkOla]

Ну ладно, я нуб так чтоль
Logfile of random’s system information tool 1.08 (written by random/random)
Run by Аня at 2010-10-12 23:36:40
Microsoft Windows 7 Максимальная
System drive C: has 73 GB (74%) free of 100 GB
Total RAM: 3071 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:36:51, on 12.10.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskhost.exe
C:WindowsExplorer.EXE
C:Program FilesUSBDiskSecurityUSBGuard.exe
C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe
C:Program FilesSkypePhoneSkype.exe
C:Program FilesSkypePlugin ManagerskypePM.exe
C:Program FilesWindows NTAccessoriesWORDPAD.EXE
C:Program FilesOperaopera.exe
C:Windowssystem32taskhost.exe
C:UsersАняDownloadsRSIT.exe
C:Program Filestrend microАня.exe

R1 — HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT1700389
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 — HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 — HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
R0 — HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
R0 — HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
R3 — URLSearchHook: IsoBuster Toolbar — {266fcdca-7bb3-4da7-b3bf-f845dea2ebd6} — C:Program FilesIsoBustertbIsoB.dll
O2 — BHO: IsoBuster Toolbar — {266fcdca-7bb3-4da7-b3bf-f845dea2ebd6} — C:Program FilesIsoBustertbIsoB.dll
O2 — BHO: IEVkbdBHO — {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} — C:Program FilesKaspersky LabKaspersky Internet Security 2010ievkbd.dll
O2 — BHO: SkypeIEPluginBHO — {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O2 — BHO: link filter bho — {E33CF602-D945-461A-83F0-819F76A199F8} — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll
O3 — Toolbar: IsoBuster Toolbar — {266fcdca-7bb3-4da7-b3bf-f845dea2ebd6} — C:Program FilesIsoBustertbIsoB.dll
O4 — HKLM..Run: [USB Antivirus] C:Program FilesUSBDiskSecurityUSBGuard.exe
O4 — HKLM..Run: [AVP] «C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe»
O4 — HKCU..Run: [Skype] «C:Program FilesSkypePhoneSkype.exe» /nosplash /minimized
O4 — HKUSS-1-5-19..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-19..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User ‘LOCAL SERVICE’)
O4 — HKUSS-1-5-20..Run: [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun (User ‘NETWORK SERVICE’)
O4 — HKUSS-1-5-20..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (User ‘NETWORK SERVICE’)
O8 — Extra context menu item: &Экспорт в Microsoft Excel — res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000
O8 — Extra context menu item: Добавить в Анти-Баннер — C:Program FilesKaspersky LabKaspersky Internet Security 2010ie_banner_deny.htm
O9 — Extra button: &Виртуальная клавиатура — {4248FE82-7FCB-46AC-B270-339F08212110} — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll
O9 — Extra button: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra ‘Tools’ menuitem: Skype add-on for Internet Explorer — {898EA8C8-E7FF-479B-8935-AEC46303B9E5} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O9 — Extra button: Справочные материалы — {92780B25-18CC-41C8-B9BE-3C9C571A8263} — C:PROGRA~1MICROS~2OFFICE11REFIEBAR.DLL
O9 — Extra button: Проверка ссы&лок — {CCF151D8-D089-449F-A5A4-D9909053F20F} — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll
O17 — HKLMSystemCCSServicesTcpip..{0C742989-4B47-4618-974D-15C080691A39}: NameServer = 85.95.165.60 85.95.164.60
O17 — HKLMSystemCS1ServicesTcpip..{0C742989-4B47-4618-974D-15C080691A39}: NameServer = 85.95.165.60 85.95.164.60
O17 — HKLMSystemCS2ServicesTcpip..{0C742989-4B47-4618-974D-15C080691A39}: NameServer = 85.95.165.60 85.95.164.60
O18 — Protocol: skype-ie-addon-data — {91774881-D725-4E58-B298-07617B9B86A8} — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll
O18 — Protocol: skype4com — {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} — C:PROGRA~1COMMON~1SkypeSKYPE4~1.DLL
O20 — AppInit_DLLs: C:PROGRA~1KASPER~1KASPER~1mzvkbd3.dll,C:PROGRA~1KASPER~1KASPER~1kloehk.dll
O23 — Service: Kaspersky Internet Security (AVP) — Kaspersky Lab — C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe
O23 — Service: NVIDIA Display Driver Service (nvsvc) — NVIDIA Corporation — C:Windowssystem32nvvsvc.exe

—
End of file — 5128 bytes

======Registry dump======

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{266fcdca-7bb3-4da7-b3bf-f845dea2ebd6}]
IsoBuster Toolbar — C:Program FilesIsoBustertbIsoB.dll [2010-04-15 2515552]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class — C:Program FilesKaspersky LabKaspersky Internet Security 2010ievkbd.dll [2009-10-20 68112]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer — C:Program FilesSkypeToolbarsInternet Explorerskypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class — C:Program FilesKaspersky LabKaspersky Internet Security 2010klwtbbho.dll [2009-10-20 268816]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
{266fcdca-7bb3-4da7-b3bf-f845dea2ebd6} — IsoBuster Toolbar — C:Program FilesIsoBustertbIsoB.dll [2010-04-15 2515552]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun]
«USB Antivirus»=C:Program FilesUSBDiskSecurityUSBGuard.exe [2009-09-17 811008]
«AVP»=C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe [2010-10-10 340520]

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun]
«Skype»=C:Program FilesSkypePhoneSkype.exe [2010-09-02 13351304]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows]
«AppInit_DLLs»=»C:PROGRA~1KASPER~1KASPER~1mzvkbd3.dll,C:PROGRA~1KASPER~1KASPER~1kloehk.dll»

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonNotifyklogon]
C:Windowssystem32klogon.dll [2009-10-20 219664]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad]
WebCheck — {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetcontrolsecurityproviders]
«SecurityProviders»=credssp.dll

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootnetworkAFD]

[HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem]
«ConsentPromptBehaviorAdmin»=5
«ConsentPromptBehaviorUser»=3
«EnableUIADesktopToggle»=0
«dontdisplaylastusername»=0
«legalnoticecaption»=
«legalnoticetext»=
«shutdownwithoutlogon»=1
«undockwithoutlogon»=1

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist]

[HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist]

======File associations======

.js — edit — C:WindowsSystem32Notepad.exe %1
.js — open — C:WindowsSystem32WScript.exe «%1» %*

======List of files/folders created in the last 1 months======

2010-10-12 22:37:32 —-D—- C:Program Filestrend micro
2010-10-12 22:37:31 —-D—- C:rsit
2010-10-12 21:51:28 —-D—- C:UsersАняAppDataRoamingUbisoft
2010-10-12 21:51:28 —-D—- C:ProgramDataUbisoft
2010-10-12 21:46:42 —-A—- C:Windowssystem32d3dx10_40.dll
2010-10-12 21:46:42 —-A—- C:Windowssystem32D3DCompiler_40.dll
2010-10-12 21:46:41 —-A—- C:Windowssystem32D3DX9_40.dll
2010-10-12 21:32:23 —-D—- C:Program FilesUbisoft
2010-10-12 11:03:14 —-D—- C:ProgramDataNVIDIA
2010-10-11 21:37:43 —-D—- C:Program FilesIsoBuster
2010-10-11 21:37:43 —-D—- C:Program FilesConduit
2010-10-11 21:37:41 —-A—- C:setup.ini
2010-10-11 21:37:40 —-D—- C:Program FilesSmart Projects
2010-10-11 21:22:51 —-D—- C:ProgramDataNVIDIA Corporation
2010-10-11 21:22:46 —-D—- C:Program FilesNVIDIA Corporation
2010-10-11 03:14:59 —-D—- C:WindowsPanther
2010-10-10 20:32:57 —-D—- C:ProgramDataKaspersky Lab
2010-10-10 20:32:57 —-D—- C:Program FilesKaspersky Lab
2010-10-10 20:32:51 —-A—- C:Windowssystem32driversklif.sys
2010-10-10 20:26:42 —-D—- C:UsersАняAppDataRoamingskypePM
2010-10-10 20:25:19 —-D—- C:UsersАняAppDataRoamingSkype
2010-10-10 20:22:00 —-D—- C:Program FilesCommon FilesSkype
2010-10-10 20:21:59 —-RD—- C:Program FilesSkype
2010-10-10 20:21:58 —-D—- C:ProgramDataSkype
2010-10-10 20:13:53 —-A—- C:Windowssystem32XAudio2_7.dll
2010-10-10 20:13:53 —-A—- C:Windowssystem32XAPOFX1_5.dll
2010-10-10 20:13:53 —-A—- C:Windowssystem32xactengine3_7.dll
2010-10-10 20:13:53 —-A—- C:Windowssystem32D3DX9_43.dll
2010-10-10 20:13:53 —-A—- C:Windowssystem32d3dx11_43.dll
2010-10-10 20:13:53 —-A—- C:Windowssystem32d3dx10_43.dll
2010-10-10 20:13:53 —-A—- C:Windowssystem32d3dcsx_43.dll
2010-10-10 20:13:53 —-A—- C:Windowssystem32D3DCompiler_43.dll
2010-10-10 20:13:52 —-A—- C:Windowssystem32XAudio2_6.dll
2010-10-10 20:13:52 —-A—- C:Windowssystem32XAudio2_5.dll
2010-10-10 20:13:52 —-A—- C:Windowssystem32XAPOFX1_4.dll
2010-10-10 20:13:52 —-A—- C:Windowssystem32xactengine3_6.dll
2010-10-10 20:13:52 —-A—- C:Windowssystem32xactengine3_5.dll
2010-10-10 20:13:52 —-A—- C:Windowssystem32X3DAudio1_7.dll
2010-10-10 20:13:52 —-A—- C:Windowssystem32D3DCompiler_42.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32XAudio2_4.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32XAPOFX1_3.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32xactengine3_4.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32X3DAudio1_6.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32D3DX9_42.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32D3DX9_41.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32d3dx11_42.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32d3dx10_42.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32d3dx10_41.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32d3dcsx_42.dll
2010-10-10 20:13:51 —-A—- C:Windowssystem32D3DCompiler_41.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32XAudio2_3.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32XAudio2_2.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32XAPOFX1_2.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32XAPOFX1_1.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32xactengine3_3.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32xactengine3_2.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32X3DAudio1_5.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32D3DX9_39.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32d3dx10_39.dll
2010-10-10 20:13:50 —-A—- C:Windowssystem32D3DCompiler_39.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32XAudio2_1.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32XAudio2_0.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32XAPOFX1_0.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32xactengine3_1.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32xactengine3_0.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32X3DAudio1_4.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32X3DAudio1_3.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32D3DX9_38.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32D3DX9_37.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32d3dx10_38.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32d3dx10_37.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32D3DCompiler_38.dll
2010-10-10 20:13:49 —-A—- C:Windowssystem32D3DCompiler_37.dll
2010-10-10 20:13:48 —-A—- C:Windowssystem32xactengine2_10.dll
2010-10-10 20:13:48 —-A—- C:Windowssystem32X3DAudio1_2.dll
2010-10-10 20:13:48 —-A—- C:Windowssystem32d3dx9_36.dll
2010-10-10 20:13:48 —-A—- C:Windowssystem32d3dx10_36.dll
2010-10-10 20:13:48 —-A—- C:Windowssystem32D3DCompiler_36.dll
2010-10-10 20:06:48 —-A—- C:Windowssystem32msv1_0.dll
2010-10-10 20:06:08 —-A—- C:Windowssystem32PresentationHostProxy.dll
2010-10-10 20:06:08 —-A—- C:Windowssystem32PresentationHost.exe
2010-10-10 20:06:08 —-A—- C:Windowssystem32netfxperf.dll
2010-10-10 20:06:08 —-A—- C:Windowssystem32mscoree.dll
2010-10-10 20:06:08 —-A—- C:Windowssystem32dfshim.dll
2010-10-10 20:03:05 —-A—- C:Windowssystem32driversks.sys
2010-10-10 20:02:39 —-A—- C:Windowssystem32wmp.dll
2010-10-10 20:02:38 —-A—- C:Windowssystem32winresume.exe
2010-10-10 20:02:38 —-A—- C:Windowssystem32winload.exe
2010-10-10 20:02:38 —-A—- C:Windowssystem32driversdxgkrnl.sys
2010-10-10 20:02:38 —-A—- C:Windowssystem32CertEnroll.dll
2010-10-10 20:02:37 —-A—- C:Windowssystem32wmploc.DLL
2010-10-10 20:01:31 —-A—- C:Windowssystem32psisdecd.dll
2010-10-10 20:01:31 —-A—- C:Windowssystem32msdri.dll
2010-10-10 20:01:31 —-A—- C:Windowssystem32CPFilters.dll
2010-10-10 20:01:13 —-A—- C:Windowssystem32lsasrv.dll
2010-10-10 20:01:13 —-A—- C:Windowssystem32driversksecpkg.sys
2010-10-10 20:00:44 —-A—- C:Windowssystem32mshtml.dll
2010-10-10 20:00:44 —-A—- C:Windowssystem32ieframe.dll
2010-10-10 20:00:43 —-A—- C:Windowssystem32wininet.dll
2010-10-10 20:00:43 —-A—- C:Windowssystem32urlmon.dll
2010-10-10 20:00:43 —-A—- C:Windowssystem32mstime.dll
2010-10-10 20:00:43 —-A—- C:Windowssystem32msfeedssync.exe
2010-10-10 20:00:43 —-A—- C:Windowssystem32msfeedsbs.dll
2010-10-10 20:00:43 —-A—- C:Windowssystem32jsproxy.dll
2010-10-10 20:00:43 —-A—- C:Windowssystem32ieui.dll
2010-10-10 20:00:43 —-A—- C:Windowssystem32iepeers.dll
2010-10-10 20:00:43 —-A—- C:Windowssystem32iedkcs32.dll
2010-10-10 20:00:18 —-A—- C:Windowssystem32tzres.dll
2010-10-10 20:00:15 —-A—- C:Windowssystem32winlogon.exe
2010-10-10 20:00:15 —-A—- C:Windowssystem32spoolsv.exe
2010-10-10 20:00:15 —-A—- C:Windowsexplorer.exe
2010-10-10 20:00:14 —-A—- C:Windowssystem32ntoskrnl.exe
2010-10-10 20:00:14 —-A—- C:Windowssystem32ntkrnlpa.exe
2010-10-10 20:00:14 —-A—- C:Windowssystem32kernel32.dll
2010-10-10 20:00:13 —-A—- C:Windowssystem32apphelp.dll
2010-10-10 20:00:11 —-A—- C:Windowssystem32jscript.dll
2010-10-10 20:00:11 —-A—- C:Windowssystem32driverstcpip.sys
2010-10-10 20:00:11 —-A—- C:Windowssystem32driverssrvnet.sys
2010-10-10 20:00:11 —-A—- C:Windowssystem32driverssrv2.sys
2010-10-10 20:00:11 —-A—- C:Windowssystem32driverssrv.sys
2010-10-10 20:00:10 —-A—- C:Windowssystem32quartz.dll
2010-10-10 20:00:10 —-A—- C:Windowssystem32msxml3.dll
2010-10-10 20:00:10 —-A—- C:Windowssystem32msasn1.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32tsbyuv.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32ntdll.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32msyuv.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32msvidc32.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32msrle32.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32mciavi32.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32iyuv_32.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32inetcomm.dll
2010-10-10 20:00:09 —-A—- C:Windowssystem32avifil32.dll
2010-10-10 20:00:08 —-A—- C:Windowssystem32t2embed.dll
2010-10-10 20:00:08 —-A—- C:Windowssystem32rtutils.dll
2010-10-10 20:00:08 —-A—- C:Windowssystem32ir32_32.dll
2010-10-10 20:00:08 —-A—- C:Windowssystem32iccvid.dll
2010-10-10 20:00:08 —-A—- C:Windowssystem32driversfvevol.sys
2010-10-10 20:00:07 —-A—- C:Windowssystem32asycfilt.dll
2010-10-10 19:59:48 —-A—- C:Windowssystem32shell32.dll
2010-10-10 19:59:47 —-A—- C:Windowssystem32driversmrxsmb20.sys
2010-10-10 19:59:47 —-A—- C:Windowssystem32driversmrxsmb10.sys
2010-10-10 19:59:47 —-A—- C:Windowssystem32driversmrxsmb.sys
2010-10-10 19:59:46 —-A—- C:Windowssystem32fontsub.dll
2010-10-10 19:59:46 —-A—- C:Windowssystem32driversusbhub.sys
2010-10-10 19:59:46 —-A—- C:Windowssystem32driversusbehci.sys
2010-10-10 19:59:46 —-A—- C:Windowssystem32atmlib.dll
2010-10-10 19:59:46 —-A—- C:Windowssystem32atmfd.dll
2010-10-10 19:59:45 —-A—- C:Windowssystem32vbscript.dll
2010-10-10 19:59:17 —-A—- C:Windowssystem32schannel.dll
2010-10-10 19:58:19 —-A—- C:Windowssystem32win32k.sys
2010-10-10 19:35:04 —-N—- C:Windowssystem32MpSigStub.exe
2010-10-10 19:34:22 —-D—- C:UsersАняAppDataRoamingMacromedia
2010-10-10 19:34:22 —-D—- C:UsersАняAppDataRoamingAdobe
2010-10-10 19:32:52 —-D—- C:Windowssystem32directx
2010-10-10 19:30:42 —-D—- C:Windowssystem32Macromed
2010-10-10 19:12:26 —-D—- C:UsersАняAppDataRoamingWinRAR
2010-10-10 18:57:23 —-D—- C:UsersАняAppDataRoamingOpera
2010-10-10 18:57:19 —-D—- C:Program FilesOpera
2010-10-10 18:51:14 —-A—- C:Windowssystem32cabview.dll
2010-10-10 18:51:13 —-A—- C:Windowssystem32wintrust.dll
2010-10-10 15:59:02 —-A—- C:Windowssystem32driverslirsgt.sys
2010-10-10 15:59:02 —-A—- C:Windowssystem32driversatksgt.sys
2010-10-10 15:58:26 —-A—- C:Windowssystem32xactengine2_9.dll
2010-10-10 15:58:26 —-A—- C:Windowssystem32d3dx9_35.dll
2010-10-10 15:58:26 —-A—- C:Windowssystem32d3dx10_35.dll
2010-10-10 15:58:26 —-A—- C:Windowssystem32D3DCompiler_35.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32xinput1_3.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32xactengine2_8.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32xactengine2_7.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32d3dx9_34.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32d3dx9_33.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32d3dx10_34.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32d3dx10_33.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32D3DCompiler_34.dll
2010-10-10 15:58:25 —-A—- C:Windowssystem32D3DCompiler_33.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32xinput1_2.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32xinput1_1.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32xactengine2_6.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32xactengine2_5.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32xactengine2_4.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32xactengine2_3.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32xactengine2_2.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32xactengine2_1.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32x3daudio1_1.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32d3dx9_32.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32d3dx9_31.dll
2010-10-10 15:58:24 —-A—- C:Windowssystem32d3dx10.dll
2010-10-10 15:58:22 —-A—- C:Windowssystem32xactengine2_0.dll
2010-10-10 15:58:22 —-A—- C:Windowssystem32x3daudio1_0.dll
2010-10-10 15:58:22 —-A—- C:Windowssystem32d3dx9_30.dll
2010-10-10 15:58:22 —-A—- C:Windowssystem32d3dx9_29.dll
2010-10-10 15:58:22 —-A—- C:Windowssystem32d3dx9_28.dll
2010-10-10 15:58:21 —-A—- C:Windowssystem32d3dx9_27.dll
2010-10-10 15:58:21 —-A—- C:Windowssystem32d3dx9_26.dll
2010-10-10 15:58:21 —-A—- C:Windowssystem32d3dx9_25.dll
2010-10-10 15:58:21 —-A—- C:Windowssystem32d3dx9_24.dll
2010-10-10 15:50:39 —-HD—- C:Program FilesInstallShield Installation Information
2010-10-10 15:46:42 —-D—- C:ProgramDataZbshareware Lab
2010-10-10 15:46:42 —-D—- C:Program FilesUSBDiskSecurity
2010-10-10 15:36:27 —-A—- C:Windowssystem32rmoc3260.dll
2010-10-10 15:36:27 —-A—- C:Windowssystem32pndx5032.dll
2010-10-10 15:36:27 —-A—- C:Windowssystem32pndx5016.dll
2010-10-10 15:36:27 —-A—- C:Windowssystem32pncrt.dll
2010-10-10 15:36:26 —-A—- C:Windowssystem32unrar.dll
2010-10-10 15:36:26 —-A—- C:Windowsavisplitter.ini
2010-10-10 15:36:25 —-A—- C:Windowssystem32yv12vfw.dll
2010-10-10 15:36:25 —-A—- C:Windowssystem32xvidvfw.dll
2010-10-10 15:36:25 —-A—- C:Windowssystem32xvidcore.dll
2010-10-10 15:36:25 —-A—- C:Windowssystem32qt-dx331.dll
2010-10-10 15:36:25 —-A—- C:Windowssystem32dpl100.dll
2010-10-10 15:36:24 —-A—- C:Windowssystem32pthreadGC2.dll
2010-10-10 15:36:24 —-A—- C:Windowssystem32ff_vfw.dll.manifest
2010-10-10 15:36:24 —-A—- C:Windowssystem32ff_vfw.dll
2010-10-10 15:36:24 —-A—- C:Windowssystem32divx.dll
2010-10-10 15:36:23 —-D—- C:Program FilesK-Lite Codec Pack
2010-10-10 15:36:23 —-A—- C:Windowssystem32msvcr71.dll
2010-10-10 15:36:23 —-A—- C:Windowssystem32msvcp71.dll
2010-10-10 15:35:06 —-D—- C:Program FilesCCleaner
2010-10-10 15:34:01 —-A—- C:WindowsODBC.INI
2010-10-10 15:33:59 —-A—- C:Windowssystem32mdimon.dll
2010-10-10 15:33:27 —-D—- C:Program FilesMicrosoft Works
2010-10-10 15:33:27 —-D—- C:Program FilesCommon FilesDESIGNER
2010-10-10 15:33:25 —-D—- C:Program FilesMicrosoft Visual Studio
2010-10-10 15:33:24 —-D—- C:WindowsPCHEALTH
2010-10-10 15:33:24 —-D—- C:Program FilesMicrosoft.NET
2010-10-10 15:33:24 —-D—- C:Program FilesMicrosoft Office
2010-10-10 15:33:03 —-SHD—- C:WindowsInstaller
2010-10-10 15:30:31 —-A—- C:Windowssystem32PerfStringBackup.INI
2010-10-10 15:30:23 —-D—- C:Program FilesUnlocker
2010-10-10 15:29:29 —-D—- C:Program FilesUltraISO
2010-10-10 15:29:29 —-D—- C:Program FilesCommon FilesEZB Systems
2010-10-10 15:28:48 —-D—- C:UsersАняAppDataRoamingWinamp
2010-10-10 15:28:48 —-D—- C:Program FilesWinamp
2010-10-10 15:28:17 —-D—- C:Program FilesWinRAR
2010-10-10 15:27:58 —-D—- C:Program Files7-Zip
2010-10-10 15:22:25 —-D—- C:UsersАняAppDataRoamingIdentities
2010-10-10 15:22:18 —-SD—- C:UsersАняAppDataRoamingMicrosoft
2010-10-10 15:22:18 —-D—- C:UsersАняAppDataRoamingMedia Center Programs
2010-10-10 15:20:56 —-SHD—- C:Recovery
2010-10-10 15:20:56 —-SHD—- C:ProgramDataШаблоны
2010-10-10 15:20:56 —-SHD—- C:ProgramDataРабочий стол
2010-10-10 15:20:56 —-SHD—- C:ProgramDataИзбранное
2010-10-10 15:20:56 —-SHD—- C:ProgramDataДокументы
2010-10-10 15:20:56 —-SHD—- C:ProgramDataГлавное меню
2010-10-10 15:18:52 —-D—- C:WindowsSoftwareDistribution
2010-10-10 15:16:11 —-D—- C:WindowsPrefetch
2010-10-10 15:15:51 —-SHD—- C:System Volume Information
2010-10-10 15:15:51 —-ASH—- C:pagefile.sys
2010-10-10 15:15:51 —-ASH—- C:hiberfil.sys

======List of files/folders modified in the last 1 months======

2010-10-12 23:36:49 —-D—- C:WindowsTemp
2010-10-12 22:37:32 —-RD—- C:Program Files
2010-10-12 22:16:21 —-D—- C:WindowsSystem32
2010-10-12 22:16:21 —-D—- C:Windowsinf
2010-10-12 21:57:31 —-D—- C:Windowssystem32config
2010-10-12 21:51:28 —-HD—- C:ProgramData
2010-10-12 21:47:24 —-D—- C:Windowswinsxs
2010-10-12 21:46:30 —-RSD—- C:Windowsassembly
2010-10-12 11:04:03 —-D—- C:Windows
2010-10-11 21:23:20 —-D—- C:WindowsHelp
2010-10-11 21:22:48 —-D—- C:Windowssystem32drivers
2010-10-11 21:22:43 —-D—- C:Windowssystem32DriverStore
2010-10-11 21:22:43 —-D—- C:Windowssystem32catroot2
2010-10-11 21:22:43 —-D—- C:Windowssystem32catroot
2010-10-11 20:55:34 —-D—- C:Windowsdebug
2010-10-11 20:36:53 —-D—- C:Windowssystem32Tasks
2010-10-11 16:29:16 —-D—- C:WindowsMicrosoft.NET
2010-10-11 03:14:36 —-D—- C:WindowsSetup
2010-10-10 23:27:59 —-D—- C:Windowssystem32ru-RU
2010-10-10 23:27:59 —-D—- C:Windowssystem32en-US
2010-10-10 23:27:59 —-D—- C:Program FilesWindows Mail
2010-10-10 23:27:58 —-D—- C:WindowsAppPatch
2010-10-10 23:27:58 —-D—- C:Program FilesWindows Media Player
2010-10-10 23:27:57 —-D—- C:Windowssystem32Boot
2010-10-10 23:27:57 —-D—- C:Windowsehome
2010-10-10 23:27:56 —-D—- C:Windowssystem32migration
2010-10-10 23:27:56 —-D—- C:Program FilesInternet Explorer
2010-10-10 20:22:00 —-D—- C:Program FilesCommon Files
2010-10-10 19:32:51 —-D—- C:WindowsLogs
2010-10-10 18:42:42 —-D—- C:Windowssystem32wdi
2010-10-10 18:42:34 —-SD—- C:ProgramDataMicrosoft
2010-10-10 15:58:45 —-D—- C:Program FilesCommon Filesmicrosoft shared
2010-10-10 15:33:48 —-A—- C:Windowswin.ini
2010-10-10 15:33:35 —-RSD—- C:WindowsFonts
2010-10-10 15:33:34 —-D—- C:WindowsIME
2010-10-10 15:33:33 —-D—- C:WindowsShellNew
2010-10-10 15:33:24 —-D—- C:Windowssystem32CodeIntegrity
2010-10-10 15:33:24 —-D—- C:Program FilesCommon FilesSystem
2010-10-10 15:33:17 —-D—- C:Windowssystem
2010-10-10 15:33:03 —-D—- C:Windowssystem32restore
2010-10-10 15:27:44 —-D—- C:Windowssystem32wbem
2010-10-10 15:22:24 —-SHD—- C:$Recycle.Bin
2010-10-10 15:22:18 —-RD—- C:Users
2010-10-10 15:21:35 —-D—- C:Windowsrescache
2010-10-10 15:20:56 —-D—- C:Program FilesWindows NT
2010-10-10 15:18:13 —-D—- C:Windowssystem32sysprep
2010-10-10 15:17:25 —-D—- C:Windowssystem32driversUMDF
2010-10-10 15:16:25 —-D—- C:WindowsCSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 klbg;Kaspersky Lab Boot Guard Driver; C:Windowssystem32driversklbg.sys [2009-10-14 36880]
R0 pciide;pciide; C:Windowssystem32DRIVERSpciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:WindowsSystem32driversrdyboost.sys [2009-07-14 173648]
R1 CSC;@%systemroot%system32cscsvc.dll,-202; C:Windowssystem32driverscsc.sys [2009-07-14 387584]
R1 kl1;kl1; C:Windowssystem32DRIVERSkl1.sys [2009-09-01 128016]
R1 KLIF;Kaspersky Lab Driver; C:Windowssystem32DRIVERSklif.sys [2010-10-10 311312]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:Windowssystem32DRIVERSklim6.sys [2009-09-14 21520]
R2 atksgt;atksgt; C:Windowssystem32DRIVERSatksgt.sys [2010-10-10 281760]
R2 lirsgt;lirsgt; C:Windowssystem32DRIVERSlirsgt.sys [2010-10-10 25888]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:Windowssystem32DRIVERSklmouflt.sys [2009-10-02 19472]
R3 NVENETFD;Драйвер сетевого контроллера NVIDIA nForce; C:Windowssystem32DRIVERSnvm62x32.sys [2009-07-14 347264]
S2 Parvdm;Parvdm; C:Windowssystem32DRIVERSparvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:Windowssystem32DRIVERSdjsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:Windowssystem32DRIVERSamdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet — NDIS 6.0; C:Windowssystem32DRIVERSb57nd60x.sys [2009-07-14 229888]
S3 RDPDR;Terminal Server Device Redirector Driver; C:WindowsSystem32driversrdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:Windowssystem32DRIVERSvms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:Windowssystem32DRIVERSsisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:Windowssystem32DRIVERSstorvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:Windowssystem32DRIVERSviaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:Windowssystem32DRIVERSviac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%system32vmbusres.dll,-1000; C:Windowssystem32DRIVERSvmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:Windowssystem32DRIVERSVMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVP;Kaspersky Internet Security; C:Program FilesKaspersky LabKaspersky Internet Security 2010avp.exe [2010-10-10 340520]
R2 CscService;@%systemroot%system32cscsvc.dll,-200; C:WindowsSystem32svchost.exe [2009-07-14 20992]
R2 MDM;Machine Debug Manager; C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE [2003-06-19 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:Windowssystem32nvvsvc.exe [2010-07-09 129640]
R3 AppMgmt;@appmgmts.dll,-3250; C:Windowssystem32svchost.exe [2009-07-14 20992]
S3 ose;Office Source Engine; C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%system32peerdistsvc.dll,-9000; C:WindowsSystem32svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%system32umrdp.dll,-1000; C:WindowsSystem32svchost.exe [2009-07-14 20992]

---

EOF

---