API tools faq
paste
Advertisement
Guest User

ComboFix

a guest
Mar 19th, 2015
466
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 37.97 KB | None | 0 0
raw download clone embed print report
  1. ComboFix 15-03-14.03 - Admin 2015-03-19 21:17:40.2.4 - x64
  2. Microsoft Windows 7 Ultimate 6.1.7601.1.1250.48.1045.18.4060.2051 [GMT 1:00]
  3. Uruchomiony z: c:\users\Admin\Desktop\Programy\ComboFix.exe
  4. AV: Ad-Aware Antivirus *Disabled/Outdated* {D87B6541-12A1-DAEA-0033-9B8057AAB996}
  5. AV: COMODO Antivirus *Enabled/Updated* {F0BC89B2-8937-0933-021B-B17D981F2A71}
  6. FW: Ad-Aware Firewall *Disabled* {E040E464-58CE-DBB2-2B6C-32B5A979FEED}
  7. FW: COMODO Firewall *Enabled* {C8870897-C358-086B-2944-184866CC6D0A}
  8. SP: Ad-Aware Antivirus *Disabled/Outdated* {631A84A5-349B-D564-3A83-A0F22C2DF32B}
  9. SP: Comodo Defense+ *Enabled/Updated* {4BDD6856-AF0D-06BD-38AB-8A0FE39860CC}
  10. SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
  11. SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
  12. SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  13. .
  14. .
  15. ((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
  16. .
  17. .
  18. C:\END
  19. C:\Install.exe
  20. c:\users\Admin\AppData\Local\.#
  21. .
  22. .
  23. ((((((((((((((((((((((((( Pliki utworzone od 2015-02-19 do 2015-03-19 )))))))))))))))))))))))))))))))
  24. .
  25. .
  26. 2015-03-19 20:28 . 2015-03-19 20:28 -------- d-----w- c:\users\Default\AppData\Local\temp
  27. 2015-03-18 19:08 . 2015-03-18 19:08 922704 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
  28. 2015-03-18 19:07 . 2015-03-18 19:07 128592 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
  29. 2015-03-16 16:35 . 2015-03-18 19:08 204264 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
  30. 2015-03-16 16:35 . 2015-03-18 19:08 156360 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
  31. 2015-03-16 16:35 . 2015-03-18 19:08 141440 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
  32. 2015-03-16 07:35 . 2015-03-16 07:35 -------- d-----w- c:\users\Admin\.android
  33. 2015-03-13 20:15 . 2015-03-13 20:21 -------- d-----w- c:\program files (x86)\ABBYY FineReader 12
  34. 2015-03-13 19:52 . 2015-03-13 20:15 -------- d-----w- c:\users\Admin\AppData\Local\ABBYY
  35. 2015-03-13 12:44 . 2015-03-13 12:46 -------- d-----w- c:\users\Admin\AppData\Local\AOL
  36. 2015-03-13 12:35 . 2015-03-13 12:36 -------- d-----w- c:\users\Admin\AppData\Local\CyberGhost
  37. 2015-03-11 22:06 . 2015-03-11 22:06 -------- d-----w- c:\users\Admin\Tracing
  38. 2015-03-10 20:24 . 2015-03-10 20:24 -------- d-----w- c:\users\Admin\AppData\Local\Colossal Order
  39. 2015-03-09 21:48 . 2015-03-09 21:48 -------- d-----w- c:\programdata\McAfee
  40. 2015-03-08 18:57 . 2015-03-08 18:57 -------- d-----w- c:\program files (x86)\Common Files\Java
  41. 2015-03-08 17:18 . 2015-03-08 17:18 970912 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr120.dll
  42. 2015-03-08 17:18 . 2015-03-08 17:18 455328 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp120.dll
  43. 2015-03-08 17:18 . 2015-03-08 17:18 3466856 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dcompiler_47.dll
  44. 2015-03-08 17:18 . 2015-03-08 17:18 169584 ----a-w- c:\program files (x86)\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll
  45. 2015-03-05 15:28 . 2015-03-05 15:28 -------- d-----w- c:\windows\SysWow64\xlive
  46. 2015-03-05 15:28 . 2015-03-05 15:28 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
  47. 2015-03-05 12:03 . 2015-03-05 12:03 -------- d-----w- c:\program files (x86)\Origin Games
  48. 2015-03-05 11:48 . 2015-03-13 09:33 -------- d-----w- c:\users\Admin\AppData\Roaming\Origin
  49. 2015-02-27 22:20 . 2015-03-08 22:47 -------- d-----w- c:\users\Admin\AppData\Local\Game Dev Tycoon - Steam
  50. 2015-02-27 22:20 . 2015-02-27 22:20 -------- d-----w- C:\2-click run
  51. 2015-02-24 16:53 . 2015-03-08 15:00 -------- d-----w- c:\program files (x86)\GUMB6AB.tmp
  52. 2015-02-21 17:18 . 2015-02-21 17:18 -------- d-----w- c:\users\Admin\AppData\Local\Steam
  53. 2015-02-20 20:49 . 2015-02-20 23:44 -------- d-----w- c:\program files (x86)\DOS Manager
  54. .
  55. .
  56. .
  57. (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
  58. .
  59. 2015-03-19 20:32 . 2015-01-14 12:03 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
  60. 2015-03-19 18:30 . 2015-01-11 16:01 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
  61. 2015-03-09 21:48 . 2013-10-27 06:36 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
  62. 2015-03-09 21:48 . 2013-10-27 06:36 701616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
  63. 2015-03-08 18:56 . 2014-12-20 16:00 98216 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
  64. 2015-03-05 15:28 . 2010-04-27 13:45 72856 ----a-w- c:\windows\SysWow64\xliveinstallhost.exe
  65. 2015-02-22 11:53 . 2009-07-14 00:35 262144 ----a-w- c:\windows\system32\WSDScDrv.dll
  66. 2015-02-22 11:53 . 2009-07-14 00:35 25088 ----a-w- c:\windows\system32\drivers\WSDScan.sys
  67. 2015-02-22 11:53 . 2009-07-14 00:39 23040 ----a-w- c:\windows\system32\drivers\WSDPrint.sys
  68. 2015-02-08 10:29 . 2013-10-30 19:40 935056 ----a-w- c:\windows\system32\nvvsvc.exe
  69. 2015-02-08 10:27 . 2015-02-08 10:27 994712 ----a-w- c:\windows\system32\nvumdshimx.dll
  70. 2015-02-08 10:27 . 2015-02-08 10:27 969360 ----a-w- c:\windows\system32\NvIFR64.dll
  71. 2015-02-08 10:27 . 2015-02-08 10:27 942736 ----a-w- c:\windows\system32\NvFBC64.dll
  72. 2015-02-08 10:27 . 2015-02-08 10:27 353040 ----a-w- c:\windows\system32\nvoglshim64.dll
  73. 2015-02-08 10:27 . 2014-03-29 11:16 3298816 ----a-w- c:\windows\system32\nvapi64.dll
  74. 2015-02-08 10:27 . 2015-02-08 10:27 929424 ----a-w- c:\windows\SysWow64\NvIFR.dll
  75. 2015-02-08 10:27 . 2015-02-08 10:27 305320 ----a-w- c:\windows\SysWow64\nvoglshim32.dll
  76. 2015-02-08 10:27 . 2015-02-08 10:27 25459856 ----a-w- c:\windows\system32\nvcompiler.dll
  77. 2015-02-08 10:27 . 2015-01-18 12:48 2902456 ----a-w- c:\windows\SysWow64\nvapi.dll
  78. 2015-02-08 10:27 . 2015-02-08 10:27 877488 ----a-w- c:\windows\SysWow64\nvumdshim.dll
  79. 2015-02-08 10:27 . 2015-02-08 10:27 13295552 ----a-w- c:\windows\system32\nvopencl.dll
  80. 2015-02-08 10:27 . 2015-02-08 10:27 10774544 ----a-w- c:\windows\SysWow64\nvopencl.dll
  81. 2015-02-08 10:27 . 2015-02-08 10:27 906384 ----a-w- c:\windows\SysWow64\NvFBC.dll
  82. 2015-02-08 10:27 . 2015-02-08 10:27 1895240 ----a-w- c:\windows\system32\nvdispco6434725.dll
  83. 2015-02-08 10:27 . 2013-10-30 19:40 18566296 ----a-w- c:\windows\system32\nvwgf2umx.dll
  84. 2015-02-08 10:27 . 2015-02-08 10:27 10274448 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
  85. 2015-02-08 10:27 . 2015-02-08 10:27 3607184 ----a-w- c:\windows\system32\nvcuvid.dll
  86. 2015-02-08 10:27 . 2015-02-08 10:27 3245712 ----a-w- c:\windows\SysWow64\nvcuvid.dll
  87. 2015-02-08 10:27 . 2015-02-08 10:27 32102544 ----a-w- c:\windows\system32\nvoglv64.dll
  88. 2015-02-08 10:27 . 2015-02-08 10:27 24765584 ----a-w- c:\windows\SysWow64\nvoglv32.dll
  89. 2015-02-08 10:27 . 2015-02-08 10:27 177624 ----a-w- c:\windows\system32\nvinitx.dll
  90. 2015-02-08 10:27 . 2015-02-08 10:27 17250776 ----a-w- c:\windows\system32\nvd3dumx.dll
  91. 2015-02-08 10:27 . 2015-02-08 10:27 1556808 ----a-w- c:\windows\system32\nvdispgenco6434725.dll
  92. 2015-02-08 10:27 . 2015-02-08 10:27 13210248 ----a-w- c:\windows\system32\nvcuda.dll
  93. 2015-02-08 10:27 . 2015-02-08 10:27 10714488 ----a-w- c:\windows\SysWow64\nvcuda.dll
  94. 2015-02-08 10:27 . 2015-02-08 10:27 20465296 ----a-w- c:\windows\SysWow64\nvcompiler.dll
  95. 2015-02-08 10:27 . 2015-01-18 12:48 14115944 ----a-w- c:\windows\SysWow64\nvd3dum.dll
  96. 2015-02-08 10:27 . 2014-12-20 15:51 16009120 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
  97. 2015-02-08 10:27 . 2015-02-08 10:27 164568 ----a-w- c:\windows\SysWow64\nvinit.dll
  98. 2015-02-08 10:27 . 2015-02-08 10:26 203672 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
  99. 2015-02-08 09:42 . 2015-02-08 09:41 203672 ----a-w- c:\windows\system32\drivers\ssudserd.sys
  100. 2015-02-07 21:43 . 2015-02-07 21:44 320424 ----a-w- c:\windows\system32\javaws.exe
  101. 2015-02-07 21:43 . 2015-02-07 21:43 189352 ----a-w- c:\windows\system32\javaw.exe
  102. 2015-02-07 21:43 . 2015-02-07 21:43 189352 ----a-w- c:\windows\system32\java.exe
  103. 2015-02-07 21:43 . 2015-02-07 21:43 111016 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
  104. 2015-02-07 10:36 . 2013-11-04 08:22 27424 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
  105. 2015-02-04 18:29 . 2014-12-06 14:37 199648 ----a-w- c:\programdata\Microsoft\VBExpress\10.0\1033\ResourceCache.dll
  106. 2015-01-30 12:27 . 2014-12-08 23:20 104608 ----a-w- c:\windows\system32\drivers\inspect.sys
  107. 2015-01-30 12:27 . 2013-11-14 10:38 792648 ----a-w- c:\windows\system32\drivers\cmdguard.sys
  108. 2015-01-30 12:27 . 2013-09-24 09:54 45880 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
  109. 2015-01-30 12:27 . 2013-09-24 09:54 20184 ----a-w- c:\windows\system32\drivers\cmderd.sys
  110. 2015-01-30 12:27 . 2013-11-14 10:38 40736 ----a-w- c:\windows\system32\cmdcsr.dll
  111. 2015-01-30 12:27 . 2013-09-24 09:53 481576 ----a-w- c:\windows\system32\guard64.dll
  112. 2015-01-30 12:27 . 2013-09-24 09:53 386768 ----a-w- c:\windows\SysWow64\guard32.dll
  113. 2015-01-30 12:27 . 2013-09-24 09:53 354520 ----a-w- c:\windows\system32\cmdvrt64.dll
  114. 2015-01-30 12:27 . 2013-09-24 09:53 45784 ----a-w- c:\windows\system32\cmdkbd64.dll
  115. 2015-01-30 12:27 . 2013-09-24 09:53 286424 ----a-w- c:\windows\SysWow64\cmdvrt32.dll
  116. 2015-01-30 12:27 . 2013-09-24 09:53 40664 ----a-w- c:\windows\SysWow64\cmdkbd32.dll
  117. 2015-01-25 11:33 . 2014-10-09 09:09 389240 ----a-w- c:\windows\system32\drivers\Trufos.sys
  118. 2015-01-25 00:18 . 2015-01-25 00:18 21040 ----a-w- c:\windows\system32\sdnclean64.exe
  119. 2015-01-24 19:37 . 2015-01-24 19:37 79064 ----a-w- c:\windows\system32\drivers\frmbgijv.sys
  120. 2015-01-19 13:30 . 2015-01-19 13:30 48392 ----a-w- c:\windows\SysWow64\certsentry.dll
  121. 2015-01-19 13:30 . 2014-02-01 20:01 57096 ----a-w- c:\windows\system32\certsentry.dll
  122. 2015-01-18 13:00 . 2015-01-18 13:00 5404888 ----a-w- c:\programdata\cis446F.exe
  123. 2015-01-18 12:48 . 2015-01-18 12:48 1895056 ----a-w- c:\windows\system32\nvdispco6434709.dll
  124. 2015-01-18 12:48 . 2015-01-18 12:48 1556624 ----a-w- c:\windows\system32\nvdispgenco6434709.dll
  125. 2015-01-18 12:46 . 2015-01-18 12:46 1540240 ----a-w- c:\windows\system32\nvhdagenco64.dll
  126. 2015-01-18 12:46 . 2015-01-18 12:46 30536 ----a-w- c:\windows\system32\nvhdap64.dll
  127. 2015-01-18 12:46 . 2015-01-18 12:46 195728 ----a-w- c:\windows\system32\drivers\nvhda64v.sys
  128. 2015-01-18 12:46 . 2015-01-18 12:46 103448 ----a-w- c:\windows\system32\drivers\ssudbus.sys
  129. 2015-01-17 10:20 . 2013-10-27 18:07 21184 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
  130. 2015-01-17 10:20 . 2014-02-14 07:57 128288 ----a-w- c:\windows\system32\IObitSmartDefragExtension.dll
  131. 2015-01-15 20:38 . 2015-01-15 20:38 44744 ----a-w- c:\windows\system32\drivers\hssdrv6.sys
  132. 2015-01-15 20:30 . 2012-08-01 18:13 38632 ----a-w- c:\windows\system32\drivers\taphss.sys
  133. 2015-01-14 12:01 . 2015-01-14 12:01 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
  134. 2015-01-14 12:01 . 2015-01-14 12:01 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
  135. 2015-01-14 12:01 . 2015-01-14 12:01 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
  136. 2015-01-09 23:30 . 2013-10-30 19:40 6860432 ----a-w- c:\windows\system32\nvcpl.dll
  137. 2015-01-09 23:30 . 2013-10-30 19:40 3517256 ----a-w- c:\windows\system32\nvsvc64.dll
  138. 2015-01-09 23:29 . 2013-10-30 19:40 2558608 ----a-w- c:\windows\system32\nvsvcr.dll
  139. 2015-01-09 23:29 . 2013-10-30 19:40 62608 ----a-w- c:\windows\system32\nvshext.dll
  140. 2015-01-09 23:29 . 2013-10-30 19:40 385352 ----a-w- c:\windows\system32\nvmctray.dll
  141. 2015-01-09 19:47 . 2013-10-30 19:40 4173527 ----a-w- c:\windows\system32\nvcoproc.bin
  142. 2015-01-02 17:55 . 2015-01-02 17:55 260184 ----a-w- c:\windows\system32\unrar64.dll
  143. 2015-01-02 17:55 . 2015-01-02 17:55 218712 ----a-w- c:\windows\SysWow64\unrar.dll
  144. 2014-12-29 10:21 . 2014-12-29 10:21 26528 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
  145. 2014-12-23 22:52 . 2009-03-18 16:35 33856 ---ha-w- c:\windows\system32\drivers\hamachi.sys
  146. 2014-12-22 11:11 . 2014-12-22 11:07 21656 ----a-w- c:\windows\system32\drivers\evolve.sys
  147. 2014-12-20 16:04 . 2014-12-20 16:04 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
  148. 2014-12-20 16:04 . 2014-12-20 16:04 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
  149. 2014-12-20 16:04 . 2014-12-20 16:04 221184 ----a-w- c:\windows\system32\UIAnimation.dll
  150. 2014-12-20 16:04 . 2014-12-20 16:04 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
  151. 2014-12-20 16:04 . 2014-12-20 16:04 465920 ----a-w- c:\windows\system32\WMPhoto.dll
  152. 2014-12-20 16:04 . 2014-12-20 16:04 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
  153. 2014-12-20 16:03 . 2014-12-20 16:03 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
  154. 2014-12-20 16:03 . 2014-12-20 16:03 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
  155. 2014-12-20 16:03 . 2014-12-20 16:03 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
  156. 2014-12-20 16:03 . 2014-12-20 16:03 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
  157. 2014-12-20 16:03 . 2014-12-20 16:03 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
  158. 2014-12-20 16:03 . 2014-12-20 16:03 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
  159. .
  160. .
  161. ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
  162. .
  163. .
  164. *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
  165. REGEDIT4
  166. .
  167. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  168. "CMD"="start http://zenigameblinger.org && exit" [X]
  169. .
  170. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
  171. "Super-Charger"="c:\program files (x86)\MSI\Super-Charger\Super-Charger.exe" [2012-07-27 495616]
  172. "Bonus.SSR.FR12"="c:\program files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe" [2015-03-13 1472312]
  173. .
  174. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
  175. "ConsentPromptBehaviorAdmin"= 5 (0x5)
  176. "ConsentPromptBehaviorUser"= 3 (0x3)
  177. "EnableUIADesktopToggle"= 0 (0x0)
  178. .
  179. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
  180. "LoadAppInit_DLLs"=1 (0x1)
  181. .
  182. [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
  183. "79.110.88.84,255.255.255.255,192.168.1.100,1"=""
  184. .
  185. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
  186. @=""
  187. .
  188. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
  189. @=""
  190. .
  191. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
  192. @=""
  193. .
  194. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
  195. @=""
  196. .
  197. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
  198. @="Service"
  199. .
  200. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
  201. "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
  202. "HP Software Update"=c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe
  203. .
  204. R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x]
  205. R1 AIP;AIP;c:\windows\system32\drivers\aip.sys;c:\windows\SYSNATIVE\drivers\aip.sys [x]
  206. R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
  207. R2 KMService;KMService;c:\windows\system32\srvany.exe;c:\windows\SYSNATIVE\srvany.exe [x]
  208. R3 ATP;Comodo Unite Miniport Driver;c:\windows\system32\DRIVERS\cmdatp.sys;c:\windows\SYSNATIVE\DRIVERS\cmdatp.sys [x]
  209. R3 BRDriver64_1_3_3_E02B25FC;BRDriver64_1_3_3_E02B25FC; [x]
  210. R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [x]
  211. R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
  212. R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
  213. R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
  214. R3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver;c:\windows\system32\DRIVERS\evolve.sys;c:\windows\SYSNATIVE\DRIVERS\evolve.sys [x]
  215. R3 hitmanpro37;HitmanPro 3.7 Support Driver;c:\windows\system32\drivers\hitmanpro37.sys;c:\windows\SYSNATIVE\drivers\hitmanpro37.sys [x]
  216. R3 MSICDSetup;MSICDSetup;e:\cdriver64.sys;e:\CDriver64.sys [x]
  217. R3 NTIOLib_1_0_3;NTIOLib_1_0_3;c:\program files (x86)\MSI\Super-Charger\NTIOLib_X64.sys;c:\program files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [x]
  218. R3 NTIOLib_1_0_C;NTIOLib_1_0_C;e:\ntiolib_x64.sys;e:\NTIOLib_X64.sys [x]
  219. R3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
  220. R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
  221. R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
  222. R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
  223. R3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssudserd.sys [x]
  224. R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
  225. R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
  226. R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
  227. R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
  228. R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
  229. R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
  230. R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
  231. R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
  232. R3 WinRing0_1_2_0;WinRing0_1_2_0; [x]
  233. R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);c:\windows\system32\drivers\WPRO_41_2001.sys;c:\windows\SYSNATIVE\drivers\WPRO_41_2001.sys [x]
  234. R3 WSDScan;Obsługa skanowania WSD za pośrednictwem bloku pamięci górnej;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
  235. R3 xhunter1;xhunter1; [x]
  236. R4 AdvancedSystemCareService8;Advanced SystemCare Service 8;c:\program files (x86)\IObit\Advanced SystemCare 8\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [x]
  237. R4 CGVPNCliService;CyberGhost 5 Client Service;d:\programy\CyberGhost 5\Service.exe;d:\programy\CyberGhost 5\Service.exe [x]
  238. R4 CLPSLauncher;COMODO LPS Launcher;c:\program files (x86)\Common Files\COMODO\launcher_service.exe;c:\program files (x86)\Common Files\COMODO\launcher_service.exe [x]
  239. R4 DragonUpdater;COMODO Dragon Update Service;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe [x]
  240. R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
  241. R4 GeekBuddyRSP;GeekBuddyRSP Server;c:\program files (x86)\Common Files\COMODO\GeekBuddyRSP.exe;c:\program files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [x]
  242. R4 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
  243. R4 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
  244. R4 ISCTAgent;ISCT Always Updated Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [x]
  245. R4 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
  246. R4 LavasoftAdAwareService11;Ad-Aware Service 11;d:\programy\Ad-Aware\Ad-Aware Antivirus\11.5.202.7299\AdAwareService.exe;d:\programy\Ad-Aware\Ad-Aware Antivirus\11.5.202.7299\AdAwareService.exe [x]
  247. R4 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
  248. R4 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super-Charger\ChargeService.exe;c:\program files (x86)\MSI\Super-Charger\ChargeService.exe [x]
  249. R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [x]
  250. R4 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
  251. R4 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
  252. R4 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
  253. R4 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
  254. R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys;c:\windows\SYSNATIVE\DRIVERS\RsFx0103.sys [x]
  255. R4 RzKLService;RzKLService;d:\programy\Razer Game Booster\RzKLService.exe;d:\programy\Razer Game Booster\RzKLService.exe [x]
  256. R4 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
  257. R4 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
  258. R4 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
  259. R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
  260. R4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE;c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [x]
  261. R4 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
  262. R4 TeamViewer9;TeamViewer 9;d:\programy\TeamViewer\TeamViewer_Service.exe;d:\programy\TeamViewer\TeamViewer_Service.exe [x]
  263. R4 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.6;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
  264. R4 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
  265. S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
  266. S1 CFRMD;CFRMD;c:\windows\system32\DRIVERS\CFRMD.sys;c:\windows\SYSNATIVE\DRIVERS\CFRMD.sys [x]
  267. S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys;c:\windows\SYSNATIVE\DRIVERS\cmderd.sys [x]
  268. S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys;c:\windows\SYSNATIVE\DRIVERS\cmdguard.sys [x]
  269. S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys;c:\windows\SYSNATIVE\DRIVERS\cmdhlp.sys [x]
  270. S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
  271. S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys;c:\windows\SYSNATIVE\DRIVERS\hssdrv6.sys [x]
  272. S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
  273. S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
  274. S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
  275. S2 ABBYY.Licensing.FineReader.Professional.12.0;ABBYY FineReader 12 PE Licensing Service;c:\program files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe;c:\program files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [x]
  276. S2 MBAMScheduler;MBAMScheduler;d:\programy\Malwarebytes Anti-Malware\mbamscheduler.exe;d:\programy\Malwarebytes Anti-Malware\mbamscheduler.exe [x]
  277. S2 MBAMService;MBAMService;d:\programy\Malwarebytes Anti-Malware\mbamservice.exe;d:\programy\Malwarebytes Anti-Malware\mbamservice.exe [x]
  278. S2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
  279. S2 rzpnk;rzpnk;c:\windows\system32\drivers\rzpnk.sys;c:\windows\SYSNATIVE\drivers\rzpnk.sys [x]
  280. S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
  281. S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys;c:\windows\SYSNATIVE\DRIVERS\ikbevent.sys [x]
  282. S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys;c:\windows\SYSNATIVE\DRIVERS\imsevent.sys [x]
  283. S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]
  284. S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
  285. S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
  286. S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
  287. S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
  288. S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
  289. S3 RZMAELSTROMVADService;Razer Surround Audio Enhancer Service;c:\windows\system32\drivers\RzMaelstromVAD.sys;c:\windows\SYSNATIVE\drivers\RzMaelstromVAD.sys [x]
  290. S3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
  291. S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
  292. S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
  293. .
  294. .
  295. --- Inne Usługi/Sterowniki w Pamięci ---
  296. .
  297. *NewlyCreated* - MBAMSWISSARMY
  298. .
  299. Zawartość folderu 'Zaplanowane zadania'
  300. .
  301. 2015-03-10 c:\windows\Tasks\Adobe Flash Player Updater.job
  302. - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-27 21:48]
  303. .
  304. 2015-03-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  305. - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-12-19 17:00]
  306. .
  307. 2015-03-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  308. - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-12-19 17:00]
  309. .
  310. .
  311. --------- X64 Entries -----------
  312. .
  313. .
  314. [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
  315. 2015-02-07 10:36 2471744 ----a-w- d:\programy\IObit Uninstaller\UninstallExplorer64.dll
  316. .
  317. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  318. "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-12-14 7205592]
  319. "COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cistray.exe" [2015-02-04 1297624]
  320. .
  321. [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
  322. "79.110.88.84,255.255.255.255,192.168.1.100,1"=""
  323. .
  324. ------- Skan uzupełniający -------
  325. .
  326. uLocal Page = c:\windows\system32\blank.htm
  327. uStart Page = about:blank
  328. mDefault_Search_URL = www.google.com
  329. mDefault_Page_URL = about:blank
  330. mStart Page = about:blank
  331. mLocal Page = c:\windows\SysWOW64\blank.htm
  332. IE: E&ksportuj do programu Microsoft Excel - d:\programy\OFFICE~1\Office15\EXCEL.EXE/3000
  333. IE: Wyślij &do programu OneNote - d:\programy\OFFICE~1\Office15\ONBttnIE.dll/105
  334. TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
  335. TCP: Interfaces\{9A3C7687-D8BC-4DC6-ADBF-23A8036621EB}: NameServer = 208.67.222.222,208.67.220.220
  336. .
  337. .
  338. ------- Skojarzenia plików -------
  339. .
  340. .txt=
  341. .
  342. - - - - USUNIĘTO PUSTE WPISY - - - -
  343. .
  344. Toolbar-10 - (no file)
  345. Notify-SDWinLogon - SDWinLogon.dll
  346. HKLM_Wow6432Node-ActiveSetup-{8A69D345-D564-463c-AFF1-A69D9E530F96} - 40.0.2214.115\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --multi-install --chrome
  347. AddRemove-SimCity_R.G. Mechanics_is1 - c:\users\Admin\AppData\Roaming\SimCity\Uninstall\unins000.exe
  348. .
  349. .
  350. .
  351. --------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
  352. .
  353. [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
  354. @Denied: (2) (LocalSystem)
  355. "{72853161-30C5-4D22-B7F9-0BBC1D38A37E}"=hex:51,66,7a,6c,4c,1d,38,12,0f,32,96,
  356. 76,f7,7e,4c,08,c8,ef,48,fc,18,66,e7,6a
  357. "{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
  358. b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
  359. "{2A541AE1-5BF6-4665-A8A3-CFA9672E4291}"=hex:51,66,7a,6c,4c,1d,38,12,8f,19,47,
  360. 2e,c4,15,0b,03,d7,b5,8c,e9,62,70,06,85
  361. .
  362. [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
  363. @Denied: (2) (LocalSystem)
  364. "Timestamp"=hex:72,1e,66,8a,c0,42,d0,01
  365. .
  366. [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
  367. @Denied: (2) (LocalSystem)
  368. "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
  369. d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,8b,dc,21,08,05,98,bc,41,a7,e5,9f,\
  370. "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
  371. d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,8b,dc,21,08,05,98,bc,41,a7,e5,9f,\
  372. .
  373. [HKEY_USERS\S-1-5-21-266233627-488781306-3198835773-1000\Software\SecuROM\License information*]
  374. "datasecu"=hex:c7,5a,8a,0a,2a,96,16,3f,86,9c,ee,2d,01,b9,c7,da,af,f6,36,0d,de,
  375. 3e,a3,10,9e,1c,53,5f,40,94,1e,68,dd,ef,bc,a6,41,0b,37,f0,a7,90,1c,42,69,ef,\
  376. "rkeysecu"=hex:cc,a2,4a,0a,16,ba,62,df,7d,10,04,52,54,3a,b6,e3
  377. .
  378. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
  379. @Denied: (A 2) (Everyone)
  380. @="FlashBroker"
  381. "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_257_ActiveX.exe,-101"
  382. .
  383. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
  384. "Enabled"=dword:00000001
  385. .
  386. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
  387. @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_257_ActiveX.exe"
  388. .
  389. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
  390. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  391. .
  392. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
  393. @Denied: (A 2) (Everyone)
  394. @="IFlashBroker6"
  395. .
  396. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
  397. @="{00020424-0000-0000-C000-000000000046}"
  398. .
  399. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
  400. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  401. "Version"="1.0"
  402. .
  403. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
  404. @Denied: (A 2) (Everyone)
  405. @="FlashBroker"
  406. "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_257_ActiveX.exe,-101"
  407. .
  408. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
  409. "Enabled"=dword:00000001
  410. .
  411. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
  412. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_257_ActiveX.exe"
  413. .
  414. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
  415. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  416. .
  417. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
  418. @Denied: (A 2) (Everyone)
  419. @="Shockwave Flash Object"
  420. .
  421. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
  422. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_257.ocx"
  423. "ThreadingModel"="Apartment"
  424. .
  425. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
  426. @="0"
  427. .
  428. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
  429. @="ShockwaveFlash.ShockwaveFlash.16"
  430. .
  431. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
  432. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_257.ocx, 1"
  433. .
  434. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
  435. @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
  436. .
  437. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
  438. @="1.0"
  439. .
  440. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
  441. @="ShockwaveFlash.ShockwaveFlash"
  442. .
  443. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
  444. @Denied: (A 2) (Everyone)
  445. @="Macromedia Flash Factory Object"
  446. .
  447. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
  448. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_257.ocx"
  449. "ThreadingModel"="Apartment"
  450. .
  451. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
  452. @="FlashFactory.FlashFactory.1"
  453. .
  454. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
  455. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_257.ocx, 1"
  456. .
  457. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
  458. @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
  459. .
  460. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
  461. @="1.0"
  462. .
  463. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
  464. @="FlashFactory.FlashFactory"
  465. .
  466. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
  467. @Denied: (A 2) (Everyone)
  468. @="IFlashBroker6"
  469. .
  470. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
  471. @="{00020424-0000-0000-C000-000000000046}"
  472. .
  473. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
  474. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  475. "Version"="1.0"
  476. .
  477. [HKEY_LOCAL_MACHINE\SOFTWARE\COMODO\CIS\Installer\Sym_Cam\CIS]
  478. "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  479. 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
  480. .
  481. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
  482. @Denied: (A) (Everyone)
  483. "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
  484. .
  485. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
  486. @Denied: (A) (Everyone)
  487. .
  488. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
  489. "Key"="ActionsPane3"
  490. "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
  491. .
  492. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
  493. @Denied: (A) (Users)
  494. @Denied: (A) (Everyone)
  495. @Allowed: (B 1 2 3 4 5) (S-1-5-20)
  496. "BlindDial"=dword:00000000
  497. .
  498. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
  499. @Denied: (Full) (Everyone)
  500. .
  501. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Configurations]
  502. "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  503. 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
  504. .
  505. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Data]
  506. "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  507. 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
  508. .
  509. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Options]
  510. "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  511. 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
  512. .
  513. [HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Cam]
  514. "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  515. 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
  516. .
  517. [HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro]
  518. "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  519. 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
  520. .
  521. ------------------------ Pozostałe uruchomione procesy ------------------------
  522. .
  523. d:\programy\Malwarebytes Anti-Malware\mbam.exe
  524. .
  525. **************************************************************************
  526. .
  527. Czas ukończenia: 2015-03-19 21:41:35 - komputer został uruchomiony ponownie
  528. ComboFix-quarantined-files.txt 2015-03-19 20:41
  529. ComboFix2.txt 2015-01-18 12:40
  530. .
  531. Przed: 16 424 828 928 bajtów wolnych
  532. Po: 16 096 780 288 bajtów wolnych
  533. .
  534. - - End Of File - - DF20F961A0F5EC9487E2AF1E2BEA01B7
  535. A36C5E4F47E84449FF07ED3517B43A31
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!