Вот что у меня получилось:
ComboFix 08-09-28.05 — Admin 2008-09-30 14:44:17.3 — NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1251.1.1049.18.2820 [GMT 4:00]
Running from: D:ЗагрузкиComboFix.exe
Command switches used :: C:Documents and SettingsAdminРабочий столCFScript.txt
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
FILE ::
C:WINDOWSsystem32mfmlib.dll
.
((((((((((((((((((((((((( Files Created from 2008-08-28 to 2008-09-30 )))))))))))))))))))))))))))))))
.
2008-09-28 10:42 . 2008-09-28 10:42
C:Program FilesTrend Micro
2008-09-26 20:23 . 2008-09-26 20:23 304,160 —a
C:PA207.DAT
2008-09-25 19:29 . 2008-09-25 19:29
C:Program FilesReflexiveArcade
2008-09-25 19:29 . 2008-09-25 20:05
C:Documents and SettingsAdminApplication DataWildfire
2008-09-25 19:29 . 2008-09-25 19:29 4,096 —a
C:WINDOWSd3dx.dat
2008-09-25 18:56 . 2008-09-25 18:56
C:WINDOWSPixArt
2008-09-25 18:56 . 2008-09-25 18:56
C:Program FilesCommon FilesPAC207
2008-09-25 18:56 . 2007-10-25 18:31 616,064 —a
C:WINDOWSsystem32driversPFC027.SYS
2008-09-25 18:56 . 2007-05-17 15:50 129,024 —a
C:WINDOWSsystem32SP207.AX
2008-09-25 18:56 . 2008-04-23 14:05 47,616 —a
C:WINDOWSsystem32Remove.exe
2008-09-25 18:56 . 2007-11-02 11:07 6,656 —a
C:WINDOWSsystem32CoInst_071102.dll
2008-09-25 18:56 . 2007-06-29 11:07 566 —a
C:WINDOWSsystem32SP207.ini
2008-09-25 18:56 . 2008-05-13 15:27 405 —a
C:WINDOWSsystem32Remover.ini
2008-09-24 20:10 . 2008-09-24 20:10
C:WINDOWSAlbum
2008-09-24 20:10 . 2008-09-25 18:56
C:Program FilesKYE
2008-09-24 20:10 . 2005-01-28 14:15 7,064 —a
C:WINDOWSsystem32WMVCORE.lib
2008-09-22 21:31 . 2008-09-22 21:31
C:Program FilesoovooToolbar
2008-09-22 21:31 . 2008-09-22 21:31
C:Documents and SettingsAdminApplication DataoovooToolbar
2008-09-22 21:25 . 2008-09-22 21:25
C:Program FilesCCleaner
2008-09-22 21:09 . 2008-09-22 21:31
C:Program FilesooVoo
2008-09-22 21:09 . 2008-09-22 21:09
C:Documents and SettingsAdminApplication DataooVoo Details
2008-09-22 19:35 . 2008-09-22 19:35
C:Program FilesSun
2008-09-22 19:34 . 2008-09-22 19:34 410,976 —a
C:WINDOWSsystem32deploytk.dll
2008-09-22 10:59 . 2008-09-22 10:59 259 —a
C:WINDOWSeurope.ini
2008-09-21 18:10 . 2008-09-21 18:10
2008-09-21 17:57 . 2008-09-21 17:58
2008-09-21 12:53 . 2008-09-21 12:53
C:Documents and SettingsAdminApplication DataPCF-VLC
2008-09-20 19:28 . 2008-09-20 19:28
C:Documents and SettingsAdminApplication DataSamsung
2008-09-20 19:12 . 2008-09-20 19:12
C:WINDOWSsystem32Samsung PC Studio Codecs
2008-09-20 19:12 . 2006-03-21 15:49 2,729,472 —a
C:WINDOWSsystem32fun_avcodec.dll
2008-09-20 19:12 . 2006-04-18 16:32 684,032 —a
C:WINDOWSsystem32fun_mp4_enc.dll
2008-09-20 19:12 . 2006-04-25 16:29 675,840 —a
C:WINDOWSsystem32FunDecFilter.ax
2008-09-20 19:12 . 2006-04-25 16:30 532,480 —a
C:WINDOWSsystem32FunEncFilter.ax
2008-09-20 19:12 . 2006-04-24 13:46 77,824 —a
C:WINDOWSsystem32fun_mp4_dec.dll
2008-09-20 19:12 . 2005-08-28 20:51 766 —a
C:WINDOWSsystem32Uninstall.ico
2008-09-20 19:10 . 2008-09-20 19:10
C:WINDOWSsystem32Samsung_USB_Drivers
2008-09-20 19:10 . 2008-09-20 19:10
C:Program FilesSamsung
2008-09-20 19:10 . 2005-08-30 01:49 94,000 —a
C:WINDOWSsystem32driversssm_mdm.sys
2008-09-20 19:10 . 2005-08-30 01:47 58,320 —a
C:WINDOWSsystem32driversssm_bus.sys
2008-09-20 19:10 . 2005-08-13 05:06 22,486 -ra
C:WINDOWSsystem32UnInstall_Driver.ico
2008-09-20 19:10 . 2005-08-30 01:49 8,336 —a
C:WINDOWSsystem32driversssm_mdfl.sys
2008-09-20 19:10 . 2005-08-30 01:49 6,176 —a
C:WINDOWSsystem32driversssm_cmnt.sys
2008-09-20 19:10 . 2005-08-30 01:49 6,176 —a
C:WINDOWSsystem32driversssm_cm.sys
2008-09-20 19:10 . 2005-08-30 01:47 5,840 —a
C:WINDOWSsystem32driversssm_whnt.sys
2008-09-20 19:10 . 2005-08-30 01:47 5,840 —a
C:WINDOWSsystem32driversssm_wh.sys
2008-09-20 11:35 . 2008-09-20 11:35
C:Program FilesParticipatory Culture Foundation
2008-09-20 11:35 . 2008-09-20 11:35
C:Documents and SettingsAdminApplication DataParticipatory Culture Foundation
2008-09-19 18:36 . 2008-09-19 18:36
C:WINDOWSSun
2008-09-14 10:47 . 2008-09-14 10:47
C:Documents and SettingsAdminApplication DataNero
2008-09-09 22:41 . 2008-09-09 22:43
C:WINDOWS$hf_mig$
2008-09-09 22:41 . 2008-06-12 11:28 26,144 —a
C:WINDOWSsystem32spupdsvc.exe
2008-09-09 22:32 . 2008-08-22 03:10 11,985,408 —a—c— C:WINDOWSsystem32dllcacheieframe.dll
2008-09-09 22:32 . 2008-07-29 22:58 3,670,112 —a—c— C:WINDOWSsystem32dllcacheieapfltr.dat
2008-09-09 22:32 . 2008-08-22 03:06 1,778,688 —a—c— C:WINDOWSsystem32dllcacheiertutil.dll
2008-09-09 22:32 . 2008-09-08 20:27 1,294,336 —a—c— C:WINDOWSsystem32dllcacheieframe.dll.mui
2008-09-09 22:32 . 2008-08-22 03:05 580,608 —a—c— C:WINDOWSsystem32dllcachemsfeeds.dll
2008-09-09 22:32 . 2008-08-22 02:42 443,392 —a—c— C:WINDOWSsystem32dllcacheieapfltr.dll
2008-09-09 22:32 . 2008-08-22 03:05 61,952 —a—c— C:WINDOWSsystem32dllcacheicardie.dll
2008-09-09 22:32 . 2008-08-22 03:05 53,760 —a—c— C:WINDOWSsystem32dllcachemsfeedsbs.dll
2008-09-09 22:32 . 2008-06-23 12:23 13,824
c— C:WINDOWSsystem32dllcacheieudinit.exe
2008-09-01 20:21 . 2008-09-01 20:21
C:Documents and SettingsAdminApplication DataMeridian93
2008-08-25 20:52 . 2008-08-25 20:52
C:Documents and SettingsAdminApplication DataDownload Master
2008-08-24 08:49 . 2008-09-30 14:24
C:Documents and SettingsAdminApplication DataskypePM
2008-08-24 08:49 . 2008-08-24 08:49 32 —a
C:Documents and SettingsAll UsersApplication Dataezsid.dat
2008-08-22 03:05 . 2008-08-22 03:05 48,640
C:WINDOWSsystem32PrivacIE.dll
2008-08-21 12:50 . 2008-08-21 13:09
C:Documents and SettingsAdminApplication DataHamachi
2008-08-21 12:50 . 2008-08-21 12:50 25,280 —a
C:WINDOWSsystem32drivershamachi.sys
2008-08-20 19:06 . 2008-08-20 19:06
C:Program FilesGoogle
2008-08-18 20:27 . 2008-08-18 20:27
C:Documents and SettingsAdminApplication DataNetSpeakerphone
2008-08-17 17:28 . 2008-08-17 17:28
C:Documents and SettingsAdminApplication DataApple Computer
2008-08-14 18:02 . 2008-08-14 18:02
C:Documents and SettingsAdminContacts
2008-08-13 19:34 . 2008-08-24 08:30
C:Documents and SettingsAdminApplication DataICQ
2008-08-13 19:33 . 2008-08-24 08:35
C:Program FilesICQ6
2008-08-13 19:33 . 2008-08-13 19:33
C:Documents and SettingsAdminApplication DataInstallShield
2008-08-13 19:32 . 2008-08-13 19:32
C:Program FilesQuickTime
2008-08-13 19:32 . 2008-08-13 19:32
C:Program FilesApple Software Update
2008-08-13 19:32 . 2008-08-13 19:32
C:Documents and SettingsAll UsersApplication DataApple Computer
2008-08-13 19:32 . 2008-08-13 19:32
C:Documents and SettingsAll UsersApplication DataApple
2008-08-13 19:31 . 2008-08-13 19:31
C:Program FilesMail.Ru
2008-08-13 19:31 . 2008-08-13 19:32
C:Documents and SettingsAdminApplication DataMra
2008-08-13 19:31 . 2008-08-13 19:31
C:Documents and SettingsAdminApplication DataMail.Ru
2008-08-13 19:30 . 2008-08-13 19:30
C:Temp
2008-08-13 19:29 . 2008-08-13 19:34
C:Program FilesICQLite
2008-08-13 19:29 . 2008-08-13 19:29
C:Documents and SettingsAdminApplication DataICQLite
2008-08-13 10:33 . 2008-08-13 10:33
C:Documents and SettingsAdminApplication DataGracebyte Software
2008-08-13 10:27 . 2008-08-13 10:27
C:Documents and SettingsAll UsersApplication DatanView_Profiles
2008-08-12 19:53 . 2008-08-12 19:53
C:Program FilesMSN Messenger
2008-08-12 19:51 . 2008-08-12 19:51
C:Program FilesWindows Live
2008-08-12 19:51 . 2008-08-12 19:51
2008-08-12 19:51 . 2008-08-12 19:51
C:Documents and SettingsAll UsersApplication DataWLInstaller
2008-08-12 19:50 . 2008-08-12 19:50
C:Program FilesSkype
2008-08-12 19:50 . 2008-08-12 19:50
C:Program FilesCommon FilesSkype
2008-08-12 19:50 . 2008-08-12 19:50
C:Documents and SettingsAll UsersApplication DataSkype
2008-08-12 19:50 . 2008-09-30 14:43
C:Documents and SettingsAdminApplication DataSkype
2008-08-12 19:47 . 2005-12-09 05:03 71,168 —a
C:WINDOWSsystem32E_FLBBEP.DLL
2008-08-12 19:47 . 2005-04-11 05:01 62,976 —a
C:WINDOWSsystem32E_FD4BBEP.DLL
2008-08-12 19:47 . 2004-09-11 00:12 49,152 —a
C:WINDOWSsystem32E_DCINST.DLL
2008-08-12 19:46 . 2008-08-12 19:46
C:Program FilesuTorrent
2008-08-12 19:45 . 2008-09-21 09:18
C:Documents and SettingsAdminApplication DatauTorrent
2008-08-12 10:36 . 2008-08-12 19:47
C:Program Filesepson
2008-08-12 10:35 . 2008-08-12 10:35 25 —a
C:WINDOWSCDE CX3900ERUK.ini
2008-08-12 10:34 . 2008-05-20 19:42 25,856 —a
C:WINDOWSsystem32driversusbprint.sys
2008-08-12 10:34 . 2008-05-20 19:42 25,856 —a—c— C:WINDOWSsystem32dllcacheusbprint.sys
2008-08-12 10:33 . 2005-02-25 00:00 46,080 —a
C:WINDOWSsystem32escimgd.dll
2008-08-12 10:33 . 2005-02-25 00:00 29,696 —a
C:WINDOWSsystem32escwiad.dll
2008-08-12 10:33 . 2005-02-25 00:00 22,016 —a
C:WINDOWSsystem32esccmd.dll
2008-08-12 10:33 . 2008-05-20 19:42 15,104 —a
C:WINDOWSsystem32driversusbscan.sys
2008-08-12 10:33 . 2008-05-20 19:42 15,104 —a—c— C:WINDOWSsystem32dllcacheusbscan.sys
2008-08-12 10:25 . 2008-09-25 17:32
C:Program FilesCommon FilesLogitech
2008-08-12 10:24 . 1998-10-29 17:45 306,688 —a
C:WINDOWSIsUninst.exe
2008-08-12 10:24 . 2008-09-25 17:31 520 —a
C:WINDOWS_delis32.ini
2008-08-12 10:20 . 2008-05-20 19:42 60,032 —a
C:WINDOWSsystem32driversUSBAUDIO.sys
2008-08-12 10:20 . 2008-05-20 19:42 60,032 —a—c— C:WINDOWSsystem32dllcacheusbaudio.sys
2008-08-11 21:06 . 2008-08-11 21:06
C:Documents and SettingsAdminApplication DataMedia Player Classic
2008-08-11 20:38 . 2008-09-22 21:25
C:Downloads
2008-08-11 20:20 . 2008-08-11 20:20
C:Documents and SettingsLocalServiceИзбранное
2008-08-11 20:17 . 2008-05-20 19:42 91,648 —a
C:WINDOWSsystem32kswdmcap.ax
2008-08-11 20:09 . 2008-08-11 20:09
C:Program FilesA4Tech
2008-08-11 20:07 . 2001-10-19 20:33 12,160 —a
C:WINDOWSsystem32driversmouhid.sys
2008-08-11 20:07 . 2001-10-19 20:33 12,160 —a—c— C:WINDOWSsystem32dllcachemouhid.sys
2008-08-11 20:05 . 2008-05-20 19:42 10,368 —a
C:WINDOWSsystem32drivershidusb.sys
2008-08-11 20:05 . 2008-05-20 19:42 10,368 —a—c— C:WINDOWSsystem32dllcachehidusb.sys
2008-08-11 12:14 . 2008-08-11 12:14
C:WINDOWSsystem32LogFiles
2008-08-11 12:13 . 2008-08-11 12:13
C:Program FilesKaspersky Lab
2008-08-11 12:13 . 2008-09-30 14:23
C:Documents and SettingsAll UsersApplication DataKaspersky Lab
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-22 15:34
d
w C:Program FilesJava
2008-08-21 23:08 878,592 —-a-w C:WINDOWSsystem32wininet.dll
2008-08-21 23:08 43,008 —-a-w C:WINDOWSsystem32licmgr10.dll
2008-08-21 23:07 18,944 —-a-w C:WINDOWSsystem32corpol.dll
2008-08-21 23:06 72,704 —-a-w C:WINDOWSsystem32admparse.dll
2008-08-21 23:06 71,680 —-a-w C:WINDOWSsystem32iesetup.dll
2008-08-21 23:06 434,176 —-a-w C:WINDOWSsystem32vbscript.dll
2008-08-21 23:05 48,128 —-a-w C:WINDOWSsystem32mshtmler.dll
2008-08-21 23:05 35,840 —-a-w C:WINDOWSsystem32imgutil.dll
2008-08-21 23:04 45,568 —-a-w C:WINDOWSsystem32mshta.exe
2008-08-21 22:57 156,160 —-a-w C:WINDOWSsystem32msls31.dll
2008-08-11 08:55 112,144 —-a-w C:WINDOWSsystem32driverskl1.sys
2008-08-09 11:04
d
w C:Program FilesMicrosoft Works
2008-08-09 11:04
d
w C:Documents and SettingsAll UsersApplication DataMicrosoft Help
2008-08-09 10:28
d
w C:Program FilesMicrosoft.NET
2008-08-09 10:26
d
w C:Program FilesPunto Switcher
2008-08-09 10:26
d
w C:Program FilesFoxit Reader
2008-08-09 10:21 717,296 —-a-w C:WINDOWSsystem32driverssptd.sys
2008-08-09 10:21
d
w C:Program FilesVistaDriveIcon
2008-08-09 10:21
d
w C:Program Filesmicrosoft frontpage
2008-08-09 10:21
d
w C:Program FilesCommon FilesJava
2008-08-09 10:19
d—a-w C:Program FilesAmlMaple
2008-08-09 10:16
d
w C:Program FilesWindows Media Connect 2
2008-08-09 10:16
d
w C:Program FilesPaint.NET
2008-06-12 07:27 26,112 —-a-w C:WINDOWSsystem32idndl.dll
2008-06-12 07:27 24,576 —-a-w C:WINDOWSsystem32nlsdl.dll
2008-06-12 07:27 23,552 —-a-w C:WINDOWSsystem32normaliz.dll
2006-06-24 06:48 32,768 —-a-r C:WINDOWSinfUpdateUSB.exe
.
Sigcheck
2008-05-20 19:54 579072 23b7d3f3f5ec8feea75ec381c71cbd5e C:WINDOWSsystem32user32.dll
2008-05-20 19:52 361344 030dc4d48cc2b894fee2f390d8e66ad5 C:WINDOWSsystem32driverstcpip.sys
2008-05-20 19:53 1721344 dc5d73a9809b66026231a9d49de6987f C:WINDOWSexplorer.exe
2008-05-20 19:53 30208 ae0db25ee10900c73d923ad5880564cf C:WINDOWSsystem32ctfmon.exe
2008-05-20 19:55 80216 5f38b1b965527c6f5c30dedab0ab0550 C:WINDOWSsystem32wuauclt.exe
.
((((((((((((((((((((((((((((( snapshot@2008-09-30_14.42.29.46 )))))))))))))))))))))))))))))))))))))))))
.
— 2008-09-30 10:41:55 31,085,856 —sha-w C:WINDOWSsystem32driversfidbox.dat
+ 2008-09-30 10:44:51 31,116,320 —sha-w C:WINDOWSsystem32driversfidbox.dat
— 2008-09-30 10:42:06 635,424 —sha-w C:WINDOWSsystem32driversfidbox2.dat
+ 2008-09-30 10:44:54 637,472 —sha-w C:WINDOWSsystem32driversfidbox2.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE~Browser Helper Objects{A057A204-BACC-4D26-8087-36EE87E26986}]
2008-07-29 23:56 1987544 —a
C:PROGRA~1OOVOOT~1OOVOOT~1.DLL
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
«{A057A204-BACC-4D26-8087-36EE87E26986}»= «C:PROGRA~1OOVOOT~1OOVOOT~1.DLL» [2008-07-29 1987544]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
«{A057A204-BACC-4D26-8087-36EE87E26986}»= «C:PROGRA~1OOVOOT~1OOVOOT~1.DLL» [2008-07-29 1987544]
[HKEY_CLASSES_ROOTclsid{a057a204-bacc-4d26-8087-36ee87e26986}]
[HKEY_CLASSES_ROOToovooToolbar.OOVOOTOOLBAR]
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
«VistaIcon»=»C:Program FilesVistaDriveIconVistaDrv.exe» [2008-01-02 132096]
«Punto Switcher»=»C:Program FilesPunto Switcherps.exe» [2007-11-14 201728]
«ctfmon.exe»=»C:WINDOWSsystem32ctfmon.exe» [2008-05-20 30208]
«Google Update»=»C:Documents and SettingsAdminLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe» [2008-09-21 133104]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
«NvCplDaemon»=»C:WINDOWSsystem32NvCpl.dll» [2007-12-05 8523776]
«NvMediaCenter»=»C:WINDOWSsystem32NvMcTray.dll» [2007-12-05 81920]
«AmlMaple»=»C:Program FilesAmlMapleAmlMaple.exe» [2008-04-25 91648]
«Six Engine»=»C:Program FilesASUSEPU-6 EngineSixEngine.exe» [2008-06-03 5964800]
«WheelMouse»=»C:Program FilesA4TechMouseAmoumain.exe» [2006-12-26 196608]
«QuickTime Task»=»C:Program FilesQuickTimeqttask.exe» [2007-06-29 286720]
«BMISR»=»C:Program FilesKYEWebMateBM.exe» [2008-02-19 229376]
«PAC207_Monitor»=»C:WINDOWSPixArtPAC207Monitor.exe» [2006-11-03 319488]
«Monitor»=»C:WINDOWSPixArtPAC207Monitor.exe» [2006-11-03 319488]
«nwiz»=»nwiz.exe» [2007-12-05 C:WINDOWSsystem32nwiz.exe]
«RTHDCPL»=»RTHDCPL.EXE» [2008-04-10 C:WINDOWSRTHDCPL.EXE]
[HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=»C:WINDOWSsystem32CTFMON.EXE» [2008-05-20 30208]
«VistaIcon»=»C:Program FilesVistaDriveIconVistaDrv.exe» [2008-01-02 132096]
[HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRunOnce]
«IE7_011″=»shell32» [X]
«ZZZZ2_FirstLogonSetting»=»advpack.dll» [2008-08-22 C:WINDOWSsystem32advpack.dll]
«IE7_012″=»advpack.dll» [2008-08-22 C:WINDOWSsystem32advpack.dll]
[HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionpoliciesexplorer]
«NoSMConfigurePrograms»= 1 (0x1)
[HKEY_USERS.defaultsoftwaremicrosoftwindowscurrentversionpoliciesexplorer]
«NoSMConfigurePrograms»= 1 (0x1)
[HKEY_LOCAL_MACHINEsoftwaremicrosoftwindows ntcurrentversiondrivers32]
«VIDC.YV12″= yv12vfw.dll
[HKEY_LOCAL_MACHINEsoftwaremicrosoftsecurity center]
«FirewallOverride»=dword:00000001
«UpdatesDisableNotify»=dword:00000001
«UpdatesOverride»=dword:00000001
«AntiVirusDisableNotify»=dword:00000001
«AntiVirusOverride»=dword:00000001
[HKEY_LOCAL_MACHINEsoftwaremicrosoftsecurity centerMonitoringKasperskyAntiVirus]
«DisableMonitoring»=dword:00000001
[HKLM~servicessharedaccessparametersfirewallpolicystandardprofile]
«EnableFirewall»= 0 (0x0)
[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileAuthorizedApplicationsList]
«%windir%\Network Diagnostic\xpnetdiag.exe»=
«%windir%\system32\sessmgr.exe»=
«C:\Program Files\MSN Messenger\msnmsgr.exe»=
«C:\Program Files\MSN Messenger\livecall.exe»=
«C:\Program Files\uTorrent\uTorrent.exe»=
«C:\Program Files\Skype\Phone\Skype.exe»=
[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileGloballyOpenPortsList]
«443:TCP»= 443:TCP:*:Disabled:ooVoo TCP порт443
«443:UDP»= 443:UDP:*:Disabled:ooVoo UDP порт443
«37674:TCP»= 37674:TCP:*:Disabled:ooVoo TCP порт37674
«37674:UDP»= 37674:UDP:*:Disabled:ooVoo UDP порт37674
«37675:UDP»= 37675:UDP:*:Disabled:ooVoo UDP порт37675
R0 mv61xx;mv61xx;C:WINDOWSsystem32DRIVERSmv61xx.sys [2008-06-10 150568]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:WINDOWSsystem32DRIVERSklim5.sys [2007-04-04 24344]
R3 L1e;Miniport Driver for Atheros AR8121/AR8113 PCI-E Ethernet Controller;C:WINDOWSsystem32DRIVERSl1e51x86.sys [2008-02-02 36864]
R3 PAC207;e-Messenger 112;C:WINDOWSsystem32DRIVERSPFC027.SYS [2007-10-25 616064]
.
Contents of the ‘Scheduled Tasks’ folder
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista — rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-30 14:44:59
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes …
scanning hidden autostart entries …
scanning hidden files …
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-09-30 14:45:27
ComboFix-quarantined-files.txt 2008-09-30 10:45:20
ComboFix2.txt 2008-09-30 10:42:51
ComboFix3.txt 2008-09-26 17:42:08
Pre-Run: 28 602 806 272 байт свободно
Post-Run: 28,591,665,152 байт свободно
272
