Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Running processes:
- C:\Windows\system32\taskhost.exe
- C:\Windows\system32\Dwm.exe
- C:\Windows\system32\taskeng.exe
- C:\Windows\Explorer.EXE
- C:\Program Files\AnVir Task Manager\anvir.exe
- C:\Program Files\AnVir Task Manager\anvirlauncher.exe
- C:\Users\Admin\AppData\Roaming\QipGuard\QipGuard.exe
- C:\Program Files\QIP 2012\qip.exe
- C:\Program Files\AnVir Task Manager\OpenHardwareMonitor\OpenHardwareMonitor.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Program Files\Google\Chrome\Application\chrome.exe
- C:\Windows\system32\taskmgr.exe
- C:\Program Files\Hijackthis\HijackThis.exe
- R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
- R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yandex.ua/?win=264&clid=2256492-12
- R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
- R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
- R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
- R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
- R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
- R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
- R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
- O4 - HKCU\..\Run: [QIP Internet Guardian] C:\Users\Admin\AppData\Roaming\QipGuard\QipGuard.exe /p
- O4 - HKCU\..\Run: [uTorrent] "C:\Users\Admin\AppData\Roaming\uTorrent\updates\3.4.9_43085.exe" /MINIMIZED
- O4 - HKCU\..\Run: [Infium] "C:\Program Files\QIP 2012\qip.exe" /autorun
- O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
- O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
- O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
- O11 - Options group: [INTERNATIONAL] International
- O13 - Gopher Prefix:
- O23 - Service: Служба Оновлення Google (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /svc (file missing)
- O23 - Service: Служба Оновлення Google (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc (file missing)
- O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
- O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
- O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe (file missing)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
