[Maxim.80]

еще такая проблема: у меня еще был заражен набук тем-же самым вирусом. Сейчас на обоих компах все нормально только набук стал очень долго грузится (стартовать) и когда я хочу сделать дефрагментацию он очень сильно подгружается и сделать дефраг не удаеться

[Maxim.80]

все сделал

ComboFix 09-01-21.04 — Max 2009-02-01 21:44:32.3 — NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1251.1.1049.18.767.471 [GMT 5:00]
Running from: c:documents and settingsMaxРабочий столComboFix.exe
Command switches used :: c:documents and settingsMaxРабочий столCFScript.txt
AV: Антивирусная система Eset NOD32 2.70 *On-access scanning enabled* (Updated)
FW: Outpost Firewall Pro *disabled*
* Created a new restore point
* Resident AV is active

.
— REDUCED FUNCTIONALITY MODE —
.

((((((((((((((((((((((((( Files Created from 2009-01-01 to 2009-02-01 )))))))))))))))))))))))))))))))
.

2009-01-30 02:56 . 2009-01-30 03:21 512 —a

---

C:drmHeader.bin
2009-01-28 18:11 . 2009-01-28 18:11 0 —a

---

c:windowscfgedit.INI
2009-01-28 14:52 . 2009-01-28 14:52 d

---

c:documents and settingsAll UsersApplication DataSandlot Games
2009-01-28 14:52 . 2009-01-28 14:52 4,096 —a

---

c:windowsd3dx.dat
2009-01-28 11:17 . 2009-01-28 11:17 d

---

c:documents and settingsAll UsersApplication DataFriends Games
2009-01-27 12:33 . 2009-01-27 12:33 d

---

c:documents and settingsMaxApplication DataApple Computer
2009-01-27 12:32 . 2009-01-27 12:32 d

---

c:program filesQuickTime
2009-01-27 12:32 . 2009-01-27 12:38 54,156 —ah

---

c:windowsQTFont.qfn
2009-01-27 12:32 . 2009-01-27 12:38 1,409 —a

---

c:windowsQTFont.for
2009-01-27 12:31 . 2009-01-27 12:31 d

---

c:program filesiTunes
2009-01-27 12:31 . 2009-01-27 12:31 d

---

c:documents and settingsAll UsersApplication DataApple Computer
2009-01-27 12:30 . 2009-01-27 12:30 d

---

c:program filesiPod
2009-01-27 12:30 . 2004-12-18 20:32 38,229

---

c:windowssystem32driversStMp3Rec.sys
2009-01-26 01:54 . 2009-01-26 02:00 d

---

c:program filesMSECache
2009-01-26 01:32 . 2006-10-26 19:56 32,592 —a

---

c:windowssystem32msonpmon.dll
2009-01-26 01:28 . 2009-01-26 01:28 d

---

c:program filesMicrosoft Works
2009-01-26 01:24 . 2009-01-26 01:24 d

---

c:program filesMicrosoft.NET
2009-01-26 01:21 . 2009-01-26 01:21 d

---

c:program filesMicrosoft Visual Studio 8
2009-01-26 01:21 . 2009-01-26 01:21 d

---

C:IDE
2009-01-26 01:19 . 2009-01-26 01:26 d

---

c:windowsSHELLNEW
2009-01-26 01:18 . 2009-01-27 01:34 d

---

c:documents and settingsAll UsersApplication DataMicrosoft Help
2009-01-26 01:17 . 2009-01-26 01:17 dr-h

---

C:MSOCache
2009-01-24 19:33 . 2009-01-24 19:33 d

---

c:program filesBethesda Softworks
2009-01-24 00:58 . 2009-01-24 00:58 d

---

c:program filesCreative
2009-01-24 00:43 . 2009-01-24 01:10 d

---

c:program filesMafia
2009-01-24 00:43 . 2003-04-16 17:49 233,472 -ra

---

c:windowssystem32MafiaSetup.exe
2009-01-23 20:31 . 2009-01-23 20:32 d

---

C:Build-a-lot 3 — Passport to Europe
2009-01-23 19:43 . 2009-01-23 19:43 30,208 —a

---

c:windowssystem32borlndmm.dll
2009-01-23 19:43 . 2009-01-28 17:54 830 —a

---

c:documents and settingsMaxApplication Datafieryads.dat
2009-01-23 19:42 . 2009-01-23 19:43 d

---

c:program filesFieryAds
2009-01-22 21:24 . 2009-01-22 21:24 d—h

---

c:windowsPIF
2009-01-17 20:37 . 2009-01-23 00:04 d

---

c:documents and settingsAll UsersApplication DataHipSoft
2009-01-17 20:00 . 2009-01-17 20:00 d

---

c:documents and settingsAll UsersApplication DataPlayrix Entertainment
2009-01-17 18:54 . 2009-01-28 18:31 d-a

---

c:documents and settingsAll UsersApplication DataTEMP
2009-01-17 18:53 . 2009-01-28 14:50 d

---

c:program filesOberon Media
2009-01-17 18:53 . 2009-01-17 18:53 d

---

c:program filesCommon FilesOberon Media
2009-01-16 18:33 . 2009-01-16 18:32 512,096 —a

---

c:windowssystem32driversamon.sys
2009-01-16 18:33 . 2009-01-16 18:32 298,104 —a

---

c:windowssystem32imon.dll
2009-01-16 18:33 . 2009-01-16 18:32 15,424 —a

---

c:windowssystem32driversnod32drv.sys
2009-01-16 17:44 . 2009-01-17 20:26 d

---

c:program filesESET
2009-01-16 17:31 . 2008-12-01 17:10 98,168 —a

---

c:windowssystem32driversdwprot.sys
2009-01-16 17:27 . 2009-01-16 17:59 d

---

c:program filesDrWeb
2009-01-16 17:27 . 2009-01-16 17:27 d

---

c:program filesCommon FilesDoctor Web
2009-01-16 17:27 . 2009-01-16 17:27 d

---

c:documents and settingsAll UsersApplication DataDoctor Web
2009-01-16 12:00 . 2001-03-26 04:41 245,760 —a

---

c:windowssystem32mp4sds32.ax
2009-01-15 20:49 . 2009-01-15 20:49 d

---

c:documents and settingsAll UsersApplication DataKaspersky Lab Setup Files
2009-01-14 23:45 . 2008-05-09 15:56 512,000

---

c— c:windowssystem32dllcachejscript.dll
2009-01-14 23:45 . 2008-05-09 15:56 430,080

---

c— c:windowssystem32dllcachevbscript.dll
2009-01-14 23:45 . 2008-05-09 15:56 180,224

---

c— c:windowssystem32dllcachescrobj.dll
2009-01-14 23:45 . 2008-05-09 15:56 172,032

---

c— c:windowssystem32dllcachescrrun.dll
2009-01-14 23:45 . 2008-05-08 16:24 155,648

---

c— c:windowssystem32dllcachewscript.exe
2009-01-14 23:45 . 2008-05-09 13:45 135,168

---

c— c:windowssystem32dllcachecscript.exe
2009-01-14 23:45 . 2008-05-09 15:56 90,112

---

c— c:windowssystem32dllcachewshext.dll
2009-01-14 15:13 . 2009-01-14 15:13 d

---

c:program filesPRMT6
2009-01-14 15:13 . 2009-01-14 15:13 d

---

c:program filesCommon FilesPROject MT
2009-01-14 15:13 . 2009-01-14 15:13 d

---

c:documents and settingsAll UsersApplication DataPROject MT
2009-01-14 02:54 . 2009-01-14 02:54 d

---

c:documents and settingsLocalServiceРабочий стол
2009-01-14 02:03 . 2008-09-10 06:15 1,307,648

---

c— c:windowssystem32dllcachemsxml6.dll
2009-01-14 02:03 . 2008-04-14 21:17 86,016

---

c— c:windowssystem32dllcachemsxml6r.dll
2009-01-14 01:53 . 2008-04-13 22:06 144,384

---

c:windowssystem32drivershdaudbus.sys
2009-01-14 01:53 . 2008-04-14 00:10 10,240

---

c:windowssystem32driverssffp_mmc.sys
2009-01-14 01:51 . 2006-12-29 00:31 19,569 —a

---

c:windows005728_.tmp
2009-01-14 00:55 . 2009-01-16 18:35 49 —a

---

c:windowstransp.gif
2009-01-13 20:13 . 2008-04-14 21:40 10,752

---

c:windowssystem32smtpapi.dll
2009-01-13 20:13 . 2008-04-14 21:40 9,728

---

c:windowssystem32rwnh.dll
2009-01-13 20:12 . 2004-07-17 11:40 19,528 —a

---

c:windows000001_.tmp
2009-01-13 16:23 . 2008-09-17 14:50 dr-h

---

c:documents and settingsАдминистраторSendTo
2009-01-13 16:23 . 2008-09-17 14:50 dr-h

---

c:documents and settingsАдминистраторSendTo
2009-01-13 16:23 . 2002-01-02 18:59 d—h

---

c:documents and settingsАдминистраторRecent
2009-01-13 16:23 . 2002-01-02 18:59 d—h

---

c:documents and settingsАдминистраторRecent
2009-01-13 16:23 . 2002-01-02 18:59 d—h

---

c:documents and settingsАдминистраторPrintHood
2009-01-13 16:23 . 2002-01-02 18:59 d—h

---

c:documents and settingsАдминистраторPrintHood
2009-01-13 16:23 . 2002-01-02 18:59 d—h

---

c:documents and settingsАдминистраторNetHood
2009-01-13 16:23 . 2002-01-02 18:59 d—h

---

c:documents and settingsАдминистраторNetHood
2009-01-13 16:23 . 2009-02-01 21:44 d—h

---

c:documents and settingsАдминистраторLocal Settings
2009-01-13 16:23 . 2009-02-01 21:44 d—h

---

c:documents and settingsАдминистраторLocal Settings
2009-01-13 16:23 . 2008-09-17 14:51 d—s—- c:documents and settingsАдминистраторCookies
2009-01-13 16:23 . 2008-09-17 14:51 d—s—- c:documents and settingsАдминистраторCookies
2009-01-13 16:23 . 2009-01-13 16:23 d—s—- c:documents and settingsАдминистраторApplication DataMicrosoft
2009-01-13 16:23 . 2002-01-02 18:59 dr-h

---

c:documents and settingsАдминистраторApplication Data
2009-01-13 16:23 . 2002-01-02 18:59 dr-h

---

c:documents and settingsАдминистраторApplication Data
2009-01-13 16:23 . 2002-01-02 18:59 d—h

---

c:documents and settingsАдминистраторШаблоны
2009-01-13 16:23 . 2002-01-02 18:59 d—h

---

c:documents and settingsАдминистраторШаблоны
2009-01-13 16:23 . 2002-01-02 18:59 d

---

c:documents and settingsАдминистраторРабочий стол
2009-01-13 16:23 . 2002-01-02 18:59 d

---

c:documents and settingsАдминистраторРабочий стол
2009-01-13 16:23 . 2002-01-02 18:59 d

---

c:documents and settingsАдминистраторМои документы
2009-01-13 16:23 . 2002-01-02 18:59 d

---

c:documents and settingsАдминистраторМои документы
2009-01-13 16:23 . 2002-01-02 18:59 dr

---

c:documents and settingsАдминистраторГлавное меню
2009-01-13 16:23 . 2002-01-02 18:59 dr

---

c:documents and settingsАдминистраторГлавное меню
2009-01-13 16:23 . 2002-01-02 18:59 d

---

c:documents and settingsАдминистраторИзбранное
2009-01-13 16:23 . 2002-01-02 18:59 d

---

c:documents and settingsАдминистраторИзбранное
2009-01-13 16:23 . 2009-01-13 16:23 d

---

c:documents and settingsАдминистратор
2009-01-13 16:23 . 2009-01-16 20:52 524,288 —ah

---

c:documents and settingsАдминистраторNTUSER.DAT
2009-01-13 16:23 . 2009-01-16 20:52 524,288 —ah

---

c:documents and settingsАдминистраторNTUSER.DAT
2009-01-07 17:11 . 2009-01-16 17:25 d

---

c:program filesBuka
2009-01-07 16:32 . 2008-10-07 13:33 201,157 —a

---

c:windowssystem32nvapps.nvb
2009-01-07 16:22 . 2009-02-01 21:41 195,534 —a

---

c:windowssystem32nvapps.xml
2009-01-07 16:21 . 2009-01-07 17:02 d

---

c:windowsnview
2009-01-07 00:00 . 2009-01-07 00:00 d

---

c:documents and settingsMaxShaders
2009-01-06 00:39 . 2009-01-06 00:55 d

---

c:documents and settingsMaxApplication DataFTPInfo
2009-01-05 03:04 . 2009-01-05 03:04 d

---

c:program filesFL
2009-01-04 14:58 . 2009-01-26 01:27 d

---

c:program filesMSBuild
2009-01-04 14:54 . 2009-01-04 14:54 d

---

c:windowssystem32XPSViewer
2009-01-04 14:53 . 2009-01-04 14:53 d

---

c:program filesReference Assemblies
2009-01-04 14:52 . 2006-06-29 13:07 14,048

---

c:windowssystem32spmsg2.dll
2009-01-04 14:09 . 2009-01-04 14:09 d

---

c:documents and settingsMaxApplication DataSony Setup
2009-01-01 15:25 . 2009-01-01 15:25 d

---

c:program filesNokia
2009-01-01 15:25 . 2009-01-01 15:25 d

---

c:program filesCommon FilesPCSuite
2009-01-01 15:25 . 2009-01-01 15:25 d

---

c:program filesCommon FilesNokia
2009-01-01 15:25 . 2008-09-15 07:29 1,112,288 —a

---

c:windowssystem32wdfcoinstaller01007.dll
2009-01-01 15:25 . 2008-09-15 07:56 659,968 —a

---

c:windowssystem32nmwcdcocls.dll
2009-01-01 15:25 . 2008-09-15 07:56 22,016 —a

---

c:windowssystem32driversccdcmbo.sys
2009-01-01 15:25 . 2008-09-15 07:56 17,664 —a

---

c:windowssystem32driversccdcmb.sys
2009-01-01 15:25 . 2008-09-15 07:56 8,064 —a

---

c:windowssystem32driversusbser_lowerfltj.sys
2009-01-01 15:25 . 2008-09-15 07:56 8,064 —a

---

c:windowssystem32driversusbser_lowerflt.sys
2009-01-01 14:40 . 2009-01-01 14:40 d—hs—- c:documents and settingsMaxPhone Browser

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-31 16:28

---

d

---

w c:program filesArtMoney
2009-01-22 15:33

---

d—h—w c:program filesInstallShield Installation Information
2009-01-13 23:52

---

d

---

w c:program filesDAEMON Tools
2009-01-13 21:45 96,384 —-a-w c:windowssystem32driverssptd5181.sys
2009-01-05 18:56

---

d

---

w c:documents and settingsMaxApplication DataICQ
2009-01-04 21:09

---

d

---

w c:program filesSony
2009-01-04 09:08

---

d

---

w c:program filesSony Setup
2009-01-01 10:36

---

d

---

w c:documents and settingsMaxApplication DataPC Suite
2009-01-01 10:24

---

d

---

w c:documents and settingsAll UsersApplication DataInstallations
2009-01-01 09:43

---

d

---

w c:documents and settingsMaxApplication DataNokia
2008-12-30 22:11

---

d

---

w c:program filesMSXML 4.0
2008-12-30 22:00

---

d

---

w c:program filesCommon FilesAdobe
2008-12-30 21:53

---

d

---

w c:documents and settingsMaxApplication DataAdobeUM
2008-12-30 20:40 0 —ha-w c:windowssystem32driversMsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2008-12-30 20:40 0 —ha-w c:windowssystem32driversMsft_Kernel_ccdcmb_01007.Wdf
2008-12-30 20:40

---

d

---

w c:documents and settingsAll UsersApplication DataPC Suite
2008-12-30 20:32

---

d

---

w c:program filesPC Connectivity Solution
2008-12-30 20:32

---

d

---

w c:program filesDIFX
2008-12-30 20:18

---

d

---

w c:documents and settingsAll UsersApplication DataNokia
2008-12-30 20:14

---

d

---

w c:program filesMSXML 6.0
2008-12-30 15:48

---

d

---

w c:documents and settingsMaxApplication Datakabauth
2008-12-25 10:48

---

d

---

w c:program filesSun
2008-12-25 10:47 410,984 —-a-w c:windowssystem32deploytk.dll
2008-12-25 10:47

---

d

---

w c:program filesJava
2008-12-24 14:35

---

d

---

w c:documents and settingsMaxApplication DataFLVPlayer4Free
2008-12-24 09:50

---

d

---

w c:program filesRegCure
2008-12-23 07:25

---

d

---

w c:program filesOblivion
2008-12-19 19:07 413,696 —-a-w c:windowssystem32wrap_oal.dll
2008-12-19 19:07 110,592 —-a-w c:windowssystem32OpenAL32.dll
2008-12-19 19:07

---

d

---

w c:program filesOpenAL
2008-12-19 17:53

---

d

---

w c:program filesOpera
2008-12-18 09:55

---

d

---

w c:program filesICQ6.5
2008-12-18 09:53

---

d

---

w c:program filesICQ6Toolbar
2008-12-18 09:53

---

d

---

w c:documents and settingsAll UsersApplication DataICQ
2008-12-18 09:13

---

d

---

w c:program filesWinPcap
2008-12-11 10:57 333,952 —-a-w c:windowssystem32driverssrv.sys
2008-11-17 16:34 323,072

---

w c:windowsMSVCRT.DLL
.

((((((((((((((((((((((((((((( snapshot@2009-01-30_23.40.44,15 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-02-01 16:41:14 16,384 —-atw c:windowstempPerflib_Perfdata_344.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=»c:windowssystem32ctfmon.exe» [2008-04-14 15360]
«KabAuth»=»c:documents and settingsMaxРабочий столkabauth.exe» [2009-01-16 764928]
«MSMSGS»=»c:program filesMessengermsmsgs.exe» [2008-04-14 1695232]
«PC Suite Tray»=»c:program filesNokiaNokia PC Suite 7PCSuite.exe» [2008-12-03 1205760]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
«SoundMAXPnP»=»c:program filesAnalog DevicesSoundMAXSMax4PNP.exe» [2003-05-29 790528]
«RemoteControl»=»c:program filesCyberLinkPowerDVDPDVDServ.exe» [2004-11-02 32768]
«DAEMON Tools»=»c:program filesDAEMON Toolsdaemon.exe» [2005-12-10 133016]
«SunJavaUpdateSched»=»c:program filesJavajre6binjusched.exe» [2008-12-25 136600]
«Adobe Reader Speed Launcher»=»c:program filesAdobeReader 9.0ReaderReader_sl.exe» [2008-06-12 34672]
«NvCplDaemon»=»c:windowssystem32NvCpl.dll» [2008-10-07 13574144]
«NvMediaCenter»=»c:windowssystem32NvMcTray.dll» [2008-10-07 86016]
«SpIDerAgent»=»c:program filesDrWebSpIDerAgent.exe» [BU]
«SpIDerMail»=»c:program filesDrWebspiderml.exe» [BU]
«SpIDerNT»=»c:progra~1DrWebspiderui.exe» [BU]
«nod32kui»=»c:program filesEsetnod32kui.exe» [2009-01-16 949376]
«GrooveMonitor»=»c:program filesMicrosoft OfficeOffice12GrooveMonitor.exe» [2006-10-27 31016]
«iTunesHelper»=»c:program filesiTunesiTunesHelper.exe» [2006-02-23 278528]
«QuickTime Task»=»c:program filesQuickTimeqttask.exe» [2009-01-27 155648]
«nwiz»=»nwiz.exe» [2008-10-07 c:windowssystem32nwiz.exe]

[HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRun]
«CTFMON.EXE»=»c:windowsSystem32CTFMON.EXE» [2008-04-14 15360]

[HKEY_LOCAL_MACHINEsoftwaremicrosoftwindows ntcurrentversionwinlogonnotifyWBSrv]
2005-12-20 22:57 176128 c:progra~1StardockOBJECT~1WINDOW~1WbSrv.dll

[HKEY_LOCAL_MACHINEsoftwaremicrosoftwindows ntcurrentversiondrivers32]
«vidc.3iv2″= 3ivxVfWCodec.dll
«VIDC.VP31″= vp31vfw.dll

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBootMinimalWdf01000.sys]
@=»Driver»

[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileAuthorizedApplicationsList]
«%windir%\system32\sessmgr.exe»=
«c:\Games\CS16\hl.exe»=
«c:\Program Files\ICQ6.5\ICQ.exe»=
«c:\Documents and Settings\Max\Рабочий стол\FlylinkDC++\FlylinkDC.exe»=
«c:\Program Files\Windows Media Player\wmplayer.exe»=
«c:\Program Files\Opera\opera.exe»=
«%windir%\Network Diagnostic\xpnetdiag.exe»=
«c:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE»=
«c:\Program Files\Microsoft Office\Office12\GROOVE.EXE»=
«c:\Program Files\Microsoft Office\Office12\ONENOTE.EXE»=
«c:\Program Files\iTunes\iTunes.exe»=

R0 DwProt;DrWeb Protection;c:windowssystem32driversdwprot.sys [2009-01-16 98168]
R1 nod32drv;nod32drv;c:windowssystem32driversnod32drv.sys [2009-01-16 15424]
R3 NPF;WinPcap Packet Driver (NPF);c:windowssystem32driversnpf.sys [2007-11-07 34064]
R4 DrWebEngine;Dr.Web ® Scanning Engine (DrWebEngine);c:program filesCommon FilesDoctor WebScanning Enginedwengine.exe [2008-10-17 869688]
S4 SandBox;Outpost Firewall Sandbox Driver;??c:program filesAgnitumOutpost FirewallkernelSandbox.SYS —> c:program filesAgnitumOutpost FirewallkernelSandbox.SYS [?]
S4 SPIDER;SpIDer Guard File System Monitor;??c:progra~1DrWebspider.sys —> c:progra~1DrWebspider.sys [?]
S4 SPIDERNT;SpIDer Guard for Windows;c:progra~1DrWebspidernt.exe —> c:progra~1DrWebspidernt.exe [?]
.
Contents of the ‘Scheduled Tasks’ folder

2009-02-01 c:windowsTasksRegCure Program Check.job
— c:program filesRegCureRegCure.exe [2008-11-27 23:55]

2009-01-10 c:windowsTasksRegCure.job
— c:program filesRegCureRegCure.exe [2008-11-27 23:55]
.
.

---

Supplementary Scan

---

.
uStart Page = hxxp://www.yandex.ru/?clid=40488
IE: &Экспорт в Microsoft Excel — c:progra~1MICROS~2Office12EXCEL.EXE/3000
IE: {{7A2EFD41-E6B3-11D2-89E3-00E0292EE574} — c:program filesPRMT6PRMTIEprmtie5.htm
IE: {{7A2EFD41-E6B3-11D2-89E3-00E0292EE575} — c:program filesPRMT6PRMTIEoptions.htm
LSP: c:windowssystem32imon.dll
TCP: {8714271C-2B56-4017-9FB9-6CFDF91A7EB0} = 87.224.213.1,87.224.197.1
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista — rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-01 21:45:06
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes …

scanning hidden autostart entries …

scanning hidden files …

scan completed successfully
hidden files: 0

**************************************************************************
.

---

LOCKED REGISTRY KEYS

---

[HKEY_USERSS-1-5-21-73586283-879983540-682003330-1003SoftwareMicrosoftSystemCertificatesAddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.

---

DLLs Loaded Under Running Processes

---

— — — — — — — > ‘winlogon.exe'(900)
c:progra~1StardockOBJECT~1WINDOW~1wbsrv.dll

— — — — — — — > ‘lsass.exe'(960)
c:windowssystem32imon.dll
c:program filesEsetpr_imon.dll
.
Completion time: 2009-02-01 21:46:48
ComboFix-quarantined-files.txt 2009-02-01 16:46:45
ComboFix2.txt 2009-01-30 18:41:34
ComboFix3.txt 2009-01-28 13:07:15

Pre-Run: 12 808 417 280 байт свободно
Post-Run: 12,797,435,904 байт свободно

Current=1 Default=1 Failed=0 LastKnownGood=5 Sets=1,2,3,4,5
275 — E O F — 2009-01-26 20:35:14

[Автор]

Сообщения