API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 3rd, 2015
639
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 20.49 KB | None | 0 0
raw download clone embed print report
  1. ComboFix 15-05-31.01 - DA 03.06.2015 9:26.1.2 - x64
  2. Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1033.18.4060.1591 [GMT 2:00]
  3. Spuštěný z: c:\users\DA\Downloads\ComboFix.exe
  4. SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  5. .
  6. .
  7. ((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
  8. .
  9. .
  10. c:\programdata\13779793581324565943
  11. c:\programdata\13779793581324565943\5a63c367cf05d41b6783536430c4ea14.ini
  12. .
  13. .
  14. ((((((((((((((((((((((((( Soubory vytvořené od 2015-05-03 do 2015-06-03 )))))))))))))))))))))))))))))))
  15. .
  16. .
  17. 2015-06-03 07:40 . 2015-06-03 07:40 -------- d-----w- c:\users\Default\AppData\Local\temp
  18. 2015-06-03 07:19 . 2015-06-03 07:19 -------- d-----w- c:\program files\AVAST Software
  19. 2015-06-03 07:18 . 2015-06-03 07:18 -------- d-----w- c:\programdata\AVAST Software
  20. 2015-06-03 07:04 . 2015-06-03 07:10 -------- d-----w- c:\program files (x86)\TeamViewer
  21. 2015-06-03 06:57 . 2015-06-03 06:57 -------- d-----w- c:\programdata\TXQMPC
  22. 2015-06-03 06:43 . 2015-06-03 06:43 28984 ----a-w- c:\windows\SysWow64\drivers\TS888x64.sys
  23. 2015-06-02 16:47 . 2015-06-02 16:47 -------- d-----w- c:\program files\VideoLAN
  24. 2015-06-02 16:47 . 2015-06-02 16:47 -------- d-----w- c:\program files (x86)\Seznam.cz
  25. 2015-06-02 16:44 . 2015-06-02 16:44 -------- d-----w- c:\programdata\{afee18e0-b37b-d501-afee-e18e0b376382}
  26. 2015-06-02 16:42 . 2015-06-02 16:41 99640 ----a-w- c:\windows\system32\drivers\TAOAccelerator64.sys
  27. 2015-06-02 16:42 . 2015-06-02 16:42 -------- d-----w- c:\program files\Common Files\Tencent
  28. 2015-06-02 16:42 . 2015-06-02 16:41 38200 ----a-w- c:\windows\system32\drivers\TSSKX64.sys
  29. 2015-06-02 16:42 . 2015-06-02 16:41 174392 ----a-w- c:\windows\system32\drivers\TAOKernel64.sys
  30. 2015-06-02 16:42 . 2015-06-02 16:41 87864 ----a-w- c:\windows\system32\drivers\TFsFltX64.sys
  31. 2015-06-02 16:42 . 2015-06-02 16:42 -------- d-----w- c:\program files (x86)\Common Files\Tencent
  32. 2015-06-02 16:42 . 2015-06-02 16:42 -------- d-----w- c:\windows\SysWow64\32CD~1
  33. 2015-06-02 16:41 . 2015-06-02 16:41 -------- d-----w- c:\program files (x86)\Tencent
  34. 2015-06-02 16:40 . 2015-06-03 06:57 -------- d-----w- c:\programdata\Tencent
  35. 2015-06-02 16:35 . 2015-06-03 07:11 -------- d-----w- c:\program files (x86)\Rising
  36. 2015-06-02 16:35 . 2015-06-02 16:35 -------- d-----w- c:\programdata\Rising
  37. 2015-06-02 16:34 . 2015-06-02 16:34 -------- d-----w- c:\program files (x86)\Application Assistance
  38. 2015-06-02 07:17 . 2015-05-03 03:16 12214312 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7A4C932-3431-4656-96DE-6C7861AF2E35}\mpengine.dll
  39. 2015-05-20 11:59 . 2015-05-20 11:59 -------- d-----w- c:\windows\Migration
  40. 2015-05-19 12:55 . 2015-05-19 12:55 -------- d-----w- c:\programdata\IVI Foundation
  41. 2015-05-19 12:55 . 2015-05-19 12:55 -------- d-----w- c:\program files (x86)\IVI Foundation
  42. 2015-05-19 12:54 . 2015-05-19 12:54 -------- d-----w- c:\program files (x86)\LEGO Software
  43. 2015-05-19 12:52 . 2015-05-19 12:52 -------- d-----w- c:\program files\Microsoft Silverlight
  44. 2015-05-19 12:52 . 2015-05-19 12:52 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
  45. 2015-05-19 12:51 . 2015-05-19 12:51 -------- d-----w- c:\programdata\LEGO MINDSTORMS EV3
  46. 2015-05-19 12:51 . 2015-05-19 12:54 -------- d-----w- c:\program files (x86)\National Instruments
  47. 2015-05-19 12:44 . 2015-05-19 12:55 -------- d-----w- c:\programdata\National Instruments
  48. 2015-05-19 12:42 . 2015-05-19 12:42 -------- d-----w- c:\programdata\PACE Anti-Piracy
  49. 2015-05-19 12:42 . 2015-05-19 12:42 -------- d-----w- c:\program files\Common Files\PACE Anti-Piracy
  50. 2015-05-18 20:38 . 2015-05-18 20:38 -------- d-----w- c:\program files (x86)\Common Files\Sonic Shared
  51. 2015-05-18 20:38 . 2015-05-18 20:38 -------- d-----w- c:\program files (x86)\Common Files\PX Storage Engine
  52. 2015-05-18 20:38 . 2012-06-22 01:01 56336 ------w- c:\windows\system32\drivers\PxHlpa64.sys
  53. 2015-05-18 20:38 . 2012-04-24 01:01 11376 ------w- c:\windows\system32\drivers\cdralw2k.sys
  54. 2015-05-18 20:38 . 2012-04-24 01:01 10864 ------w- c:\windows\system32\drivers\cdr4_xp.sys
  55. 2015-05-18 20:38 . 2015-05-18 20:38 -------- d-----w- c:\program files (x86)\My Company Name
  56. 2015-05-18 20:16 . 2015-05-29 07:42 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
  57. 2015-05-18 20:13 . 2015-05-29 07:41 -------- d-----w- c:\program files\Adobe
  58. 2015-05-18 20:13 . 2015-05-29 07:41 -------- d-----w- c:\program files\Common Files\Adobe
  59. 2015-05-18 20:04 . 2015-05-29 07:38 -------- d-----w- c:\program files (x86)\Common Files\Adobe
  60. 2015-05-18 08:05 . 2015-05-18 08:05 -------- d-----w- c:\program files\WinRAR
  61. 2015-05-18 06:42 . 2015-05-18 06:42 -------- d-----w- c:\program files (x86)\Microsoft.NET
  62. 2015-05-17 12:49 . 2015-05-17 12:49 -------- d-----w- c:\program files\MPC-HC
  63. 2015-05-17 12:46 . 2015-05-18 20:46 -------- d-----w- c:\program files (x86)\Gyazo
  64. 2015-05-15 07:35 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
  65. 2015-05-15 07:35 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
  66. 2015-05-14 10:08 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
  67. 2015-05-14 10:06 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
  68. 2015-05-14 10:06 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
  69. 2015-05-14 09:52 . 2015-04-20 03:17 1647104 ----a-w- c:\windows\system32\DWrite.dll
  70. 2015-05-14 09:52 . 2015-04-20 03:17 1179136 ----a-w- c:\windows\system32\FntCache.dll
  71. 2015-05-14 09:52 . 2015-04-20 02:56 1250816 ----a-w- c:\windows\SysWow64\DWrite.dll
  72. 2015-05-14 09:52 . 2015-04-20 02:11 3204608 ----a-w- c:\windows\system32\win32k.sys
  73. 2015-05-14 09:52 . 2015-02-03 03:31 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
  74. 2015-05-14 09:52 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
  75. 2015-05-14 09:51 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
  76. 2015-05-14 09:51 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
  77. 2015-05-14 09:39 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
  78. 2015-05-14 09:39 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
  79. 2015-05-14 05:40 . 2015-05-20 11:59 -------- d-s---w- c:\windows\SysWow64\GWX
  80. 2015-05-14 05:40 . 2015-05-20 11:59 -------- d-s---w- c:\windows\system32\GWX
  81. 2015-05-14 05:40 . 2015-05-14 05:40 -------- d-s---w- c:\windows\system32\CompatTel
  82. 2015-05-14 05:40 . 2015-05-14 05:40 -------- d-----w- c:\windows\system32\appraiser
  83. 2015-05-14 05:40 . 2015-05-14 05:40 -------- d-----w- c:\windows\SysWow64\Wat
  84. 2015-05-14 05:40 . 2015-05-14 05:40 -------- d-----w- c:\windows\system32\Wat
  85. 2015-05-13 21:35 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
  86. 2015-05-13 21:18 . 2015-05-13 21:18 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
  87. 2015-05-13 09:59 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
  88. 2015-05-13 08:59 . 2015-05-24 09:38 -------- d-----w- c:\program files (x86)\Common Files\Steam
  89. 2015-05-13 08:58 . 2015-06-02 10:15 -------- d-----w- c:\program files (x86)\Steam
  90. 2015-05-13 08:50 . 2015-05-15 07:45 -------- d-----w- c:\windows\system32\MRT
  91. 2015-05-13 08:08 . 2015-04-27 19:23 113664 ----a-w- c:\windows\system32\sechost.dll
  92. 2015-05-13 08:07 . 2015-05-13 08:07 -------- d-----w- c:\users\Default\AppData\Roaming\hpqLog
  93. 2015-05-13 08:07 . 2015-01-29 03:19 2543104 ----a-w- c:\windows\system32\wpdshext.dll
  94. 2015-05-13 08:07 . 2015-01-29 03:02 2311168 ----a-w- c:\windows\SysWow64\wpdshext.dll
  95. 2015-05-13 08:07 . 2015-02-18 07:06 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
  96. 2015-05-13 08:07 . 2015-02-18 07:04 142336 ----a-w- c:\windows\system32\poqexec.exe
  97. 2015-05-13 07:54 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
  98. 2015-05-13 07:54 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
  99. 2015-05-13 07:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
  100. 2015-05-13 07:44 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
  101. 2015-05-13 07:44 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
  102. 2015-05-13 07:44 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
  103. 2015-05-13 07:44 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
  104. 2015-05-13 07:44 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
  105. 2015-05-13 07:44 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
  106. 2015-05-13 07:44 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
  107. 2015-05-13 07:44 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
  108. 2015-05-11 11:41 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
  109. 2015-05-11 11:41 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll
  110. 2015-05-11 11:41 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll
  111. 2015-05-11 11:41 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll
  112. 2015-05-11 11:36 . 2012-01-04 10:44 509952 ----a-w- c:\windows\system32\ntshrui.dll
  113. 2015-05-11 11:35 . 2014-12-19 03:06 210432 ----a-w- c:\windows\system32\profsvc.dll
  114. 2015-05-11 11:34 . 2014-03-26 14:44 2002432 ----a-w- c:\windows\system32\msxml6.dll
  115. 2015-05-11 11:33 . 2011-03-11 05:33 1164288 ----a-w- c:\windows\SysWow64\mfc42u.dll
  116. 2015-05-11 11:32 . 2015-01-30 23:56 459336 ----a-w- c:\windows\system32\drivers\cng.sys
  117. 2015-05-11 11:31 . 2011-08-17 05:26 613888 ----a-w- c:\windows\system32\psisdecd.dll
  118. 2015-05-11 11:30 . 2011-05-24 11:42 404480 ----a-w- c:\windows\system32\umpnpmgr.dll
  119. 2015-05-11 11:29 . 2013-01-24 06:01 223752 ----a-w- c:\windows\system32\drivers\fvevol.sys
  120. 2015-05-11 11:28 . 2013-10-12 02:30 830464 ----a-w- c:\windows\system32\nshwfp.dll
  121. 2015-05-11 11:28 . 2013-10-12 02:29 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
  122. 2015-05-11 11:28 . 2013-10-12 02:29 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
  123. 2015-05-11 11:28 . 2013-10-12 02:03 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
  124. 2015-05-11 11:28 . 2013-10-12 02:01 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
  125. 2015-05-11 11:28 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
  126. 2015-05-11 11:22 . 2014-07-14 02:02 1216000 ----a-w- c:\windows\system32\rpcrt4.dll
  127. 2015-05-11 11:22 . 2014-07-14 01:40 664064 ----a-w- c:\windows\SysWow64\rpcrt4.dll
  128. 2015-05-11 11:21 . 2015-05-11 11:21 -------- d-----w- c:\program files (x86)\Common Files\Skype
  129. 2015-05-11 11:21 . 2015-05-11 11:21 -------- d-----r- c:\program files (x86)\Skype
  130. 2015-05-11 11:21 . 2015-05-11 11:21 -------- d-----w- c:\programdata\Skype
  131. 2015-05-11 11:10 . 2015-05-15 08:30 -------- d-----w- c:\program files (x86)\Hearthstone
  132. 2015-05-11 09:33 . 2015-05-26 08:48 -------- d-----w- c:\program files (x86)\Battle.net
  133. 2015-05-11 09:33 . 2015-05-11 09:33 -------- d-----w- c:\programdata\Blizzard Entertainment
  134. 2015-05-11 09:31 . 2015-05-11 09:31 -------- d-----w- c:\programdata\Battle.net
  135. 2015-05-10 22:21 . 2015-05-10 12:31 -------- d-----w- c:\windows\Panther
  136. 2015-05-10 12:50 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
  137. 2015-05-10 12:50 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
  138. 2015-05-10 12:50 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
  139. 2015-05-10 12:39 . 2015-05-29 07:40 -------- d-sh--w- c:\windows\Installer
  140. 2015-05-10 12:34 . 2015-05-10 12:35 -------- d-----w- c:\program files (x86)\Google
  141. 2015-05-10 12:31 . 2015-05-12 10:15 -------- d-----w- c:\users\DA
  142. .
  143. .
  144. (((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
  145. .
  146. 2015-05-13 21:28 . 2015-05-13 21:28 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
  147. 2015-05-13 21:28 . 2015-05-13 21:28 243200 ----a-w- c:\windows\system32\webcheck.dll
  148. 2015-04-27 19:23 . 2015-05-13 08:08 113664 ----a-w- c:\windows\system32\sechost.dll
  149. 2015-04-27 19:05 . 2015-05-13 08:08 92160 ----a-w- c:\windows\SysWow64\sechost.dll
  150. 2015-04-27 19:04 . 2015-05-13 08:08 44032 ----a-w- c:\windows\apppatch\acwow64.dll
  151. .
  152. .
  153. (((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
  154. .
  155. .
  156. *Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
  157. REGEDIT4
  158. .
  159. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  160. "GoogleChromeAutoLaunch_B5A4C73C671180A1D0A588AFF712C66D"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2015-05-22 813896]
  161. "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-04-17 31283328]
  162. "Gyazo"="c:\program files (x86)\Gyazo\GyStation.exe" [2015-04-30 3095840]
  163. "Spotify Web Helper"="c:\users\DA\AppData\Roaming\Spotify\SpotifyWebHelper.exe" [2015-06-01 2021944]
  164. "Spotify"="c:\users\DA\AppData\Roaming\Spotify\Spotify.exe" [2015-06-01 7323192]
  165. .
  166. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
  167. "QlbCtrl.exe"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-11-11 287800]
  168. "AdobeCEPServiceManager"="c:\program files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" [2013-03-13 1039248]
  169. "InstallValidator.exe.FA87EC44_C38F_4148_93A1_FF4A64A2B707"="c:\program files (x86)\National Instruments\Shared\NIUninstaller\InstallValidator.exe" [2013-11-21 265608]
  170. "AppHelper"="c:\program files (x86)\Application Assistance\AppHelper.exe" [2015-06-02 172032]
  171. "QQPCTray"="c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCTray.exe" [2015-06-02 355296]
  172. .
  173. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
  174. "ConsentPromptBehaviorAdmin"= 0 (0x0)
  175. "ConsentPromptBehaviorUser"= 3 (0x3)
  176. "EnableLUA"= 0 (0x0)
  177. "EnableUIADesktopToggle"= 0 (0x0)
  178. "PromptOnSecureDesktop"= 0 (0x0)
  179. .
  180. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP]
  181. @="service"
  182. .
  183. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
  184. @="Driver"
  185. .
  186. R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
  187. R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
  188. R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
  189. R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
  190. S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
  191. S1 QMUdisk;tencent QMUdisk;c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\QMUdisk64.sys;c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\QMUdisk64.sys [x]
  192. S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
  193. S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
  194. S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
  195. S2 QQPCRTP;QQPCMgr RTP Service;c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCRtp.exe;c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQPCRtp.exe [x]
  196. S2 QQSysMonX64;QQSysMonX64;c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQSysMonX64.sys;c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\QQSysMonX64.sys [x]
  197. S2 RsMgrSvc;Rsd Service;c:\program files (x86)\Rising\RSD\RsMgrSvc.exe;c:\program files (x86)\Rising\RSD\RsMgrSvc.exe [x]
  198. S3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [x]
  199. S3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y60x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1y60x64.sys [x]
  200. S3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys;c:\windows\SYSNATIVE\DRIVERS\NETw5s64.sys [x]
  201. S3 RICOH SmartCard Reader;RICOH SmartCard Reader;c:\windows\system32\DRIVERS\rismcx64.sys;c:\windows\SYSNATIVE\DRIVERS\rismcx64.sys [x]
  202. .
  203. .
  204. --- Ostatní služby/ovladače v paměti ---
  205. .
  206. *NewlyCreated* - LOVVXAEX
  207. *NewlyCreated* - TS888X64
  208. *Deregistered* - lovvxaex
  209. .
  210. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
  211. 2015-05-26 07:45 986440 ----a-w- c:\program files (x86)\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe
  212. .
  213. Obsah adresáře 'Naplánované úlohy'
  214. .
  215. 2015-06-03 c:\windows\Tasks\Bidaily Synchronize Task[d492].job
  216. - c:\programdata\{afee18e0-b37b-d501-afee-e18e0b376382}\download.exe [2014-06-02 16:44]
  217. .
  218. 2015-06-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  219. - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-10 12:34]
  220. .
  221. 2015-06-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  222. - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-10 12:34]
  223. .
  224. .
  225. --------- X64 Entries -----------
  226. .
  227. .
  228. [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}]
  229. 2015-06-02 16:41 414560 ----a-w- c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\TSWebMon64.dat
  230. .
  231. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\.QMDeskTopGCIcon]
  232. @="{B7667919-3765-4815-A66D-98A09BE662D6}"
  233. [HKEY_CLASSES_ROOT\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6}]
  234. 2015-06-02 16:41 452448 ----a-w- c:\program files (x86)\Tencent\QQPCMgr\10.9.16349.225\QMGCShellExt64.dll
  235. .
  236. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  237. "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-03-21 472992]
  238. .
  239. ------- Doplňkový sken -------
  240. .
  241. uLocal Page = c:\windows\system32\blank.htm
  242. uStart Page = hxxp://www.hao123.com/?tn=98115343_hao_pg
  243. mStart Page = hxxp://www.hao123.com/?tn=98115343_hao_pg
  244. mLocal Page = c:\windows\SysWOW64\blank.htm
  245. TCP: DhcpNameServer = 192.168.2.100 192.168.2.170
  246. .
  247. - - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
  248. .
  249. Wow6432Node-HKLM-Run-NetworkSaver - c:\windows\TEMP\371837.exe
  250. Wow6432Node-HKLM-Run-RSDTRAY - c:\program files (x86)\Rising\RSD\popwndexe.exe
  251. AddRemove-{75F9BF4A-AF67-A478-A37B-31D73186D3F3} - c:\program files (x86)\PPriCCeeLess\xPrUbv2oMCs5GA.exe
  252. .
  253. .
  254. .
  255. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  256. " QQPCTray"="\"c:\\Program Files (x86)\\Tencent\\QQPCMgr\\10.9.16349.225\\QQPCTray.exe\" /regrun"
  257. .
  258. --------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
  259. .
  260. [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
  261. @Denied: (2) (LocalSystem)
  262. "Progid"="ChromeHTML"
  263. .
  264. [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
  265. @Denied: (2) (LocalSystem)
  266. "Progid"="ChromeHTML"
  267. .
  268. [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
  269. @Denied: (2) (LocalSystem)
  270. "Progid"="ChromeHTML"
  271. .
  272. [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
  273. @Denied: (2) (LocalSystem)
  274. "Progid"="ChromeHTML"
  275. .
  276. [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
  277. @Denied: (2) (LocalSystem)
  278. "Progid"="ChromeHTML"
  279. .
  280. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
  281. "Version"=hex:bf,09,3a,98,ef,7e,7a,69,f2,53,7c,15,86,e4,9f,3e,6c,d4,f8,4d,49,
  282. 24,b1,6a,fa,3c,00,ed,d6,21,28,ba,aa,0a,3e,0d,71,df,79,7c,9f,92,4c,81,ab,f6,\
  283. .
  284. [HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
  285. "Version"=hex:bf,09,3a,98,ef,7e,7a,69,f2,53,7c,15,86,e4,9f,3e,6c,d4,f8,4d,49,
  286. 24,b1,6a,fa,3c,00,ed,d6,21,28,ba,aa,0a,3e,0d,71,df,79,7c,9f,92,4c,81,ab,f6,\
  287. .
  288. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
  289. @Denied: (A) (Users)
  290. @Denied: (A) (Everyone)
  291. @Allowed: (B 1 2 3 4 5) (S-1-5-20)
  292. "BlindDial"=dword:00000000
  293. "MSCurrentCountry"=dword:000000b5
  294. .
  295. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
  296. @Denied: (Full) (Everyone)
  297. .
  298. Celkový čas: 2015-06-03 09:47:37
  299. ComboFix-quarantined-files.txt 2015-06-03 07:47
  300. .
  301. Před spuštěním: 68 628 713 472 bytes free
  302. Po spuštění: 68 786 102 272 bytes free
  303. .
  304. - - End Of File - - FA7AD729795B5253564EFB57BC2ED81F
  305. A36C5E4F47E84449FF07ED3517B43A31
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!