API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 2nd, 2016
123
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.96 KB | None | 0 0
raw download clone embed print report
  1. Logfile of random's system information tool 1.10 (written by random/random)
  2. Run by Alpha at 2016-06-02 09:32:45
  3. Microsoft Windows 8
  4. System drive C: has 62 GB (20%) free of 307 GB
  5. Total RAM: 4094 MB (70% free)
  6.  
  7. Logfile of Trend Micro HijackThis v2.0.4
  8. Scan saved at 09:32:49, on 2016-06-02
  9. Platform: Unknown Windows (WinNT 6.02.1008)
  10. MSIE: Internet Explorer v10.0 (10.00.9200.17568)
  11. Boot mode: Normal
  12.  
  13. Running processes:
  14. D:\Mozilla Firefox 45.0.2\firefox.exe
  15. C:\Program Files\trend micro\Alpha.exe
  16.  
  17. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
  18. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
  19. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  20. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  21. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
  22. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
  23. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
  24. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
  25. R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
  26. O2 - BHO: (no name) - AutorunsDisabled - (no file)
  27. O4 - HKCU\..\Run: [CCleaner Monitoring] "D:\CCleaner 5.17.5590\CCleaner64.exe" /MONITOR
  28. O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
  29. O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
  30. O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
  31. O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
  32. O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  33. O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
  34. O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  35. O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
  36. O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  37. O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
  38. O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
  39. O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
  40. O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe
  41. O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
  42. O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  43. O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
  44. O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
  45. O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
  46. O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
  47. O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
  48.  
  49. --
  50. End of file - 3831 bytes
  51.  
  52. ======Listing Processes======
  53.  
  54.  
  55.  
  56. \SystemRoot\System32\smss.exe
  57. %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
  58. wininit.exe
  59. %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
  60. winlogon.exe
  61. C:\Windows\system32\services.exe
  62. C:\Windows\system32\lsass.exe
  63. C:\Windows\system32\svchost.exe -k DcomLaunch
  64. C:\Windows\system32\svchost.exe -k RPCSS
  65. C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
  66. C:\Windows\system32\svchost.exe -k netsvcs
  67. "dwm.exe"
  68. C:\Windows\system32\svchost.exe -k LocalService
  69. C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
  70. C:\Windows\system32\svchost.exe -k NetworkService
  71. C:\Windows\System32\spoolsv.exe
  72. C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
  73. taskhostex.exe
  74. dashost.exe {4b43d508-573d-436d-a116d3b224be9e7a}
  75. C:\Windows\slsvc.exe
  76. C:\Windows\PersonalizeEnabler.exe
  77. C:\Windows\system32\svchost.exe -k imgsvc
  78. "C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe"
  79. C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
  80. C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
  81. C:\Windows\system32\SearchIndexer.exe /Embedding
  82. "D:\CCleaner 5.17.5590\CCleaner.exe" /MONITOR /uac
  83. C:\Windows\explorer.exe
  84. "D:\Mozilla Firefox 45.0.2\firefox.exe"
  85. C:\Windows\system32\wbem\wmiprvse.exe
  86. "D:\TeamSpeak-Client-64bit-3-0-17-64-bit\ts3client_win64.exe"
  87.  
  88. "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Alpha\Desktop\Nowy dokument tekstowy.txt
  89. C:\Windows\servicing\TrustedInstaller.exe
  90. C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17516_none_6276a5b950d43361\TiWorker.exe -Embedding
  91. "C:\Users\Alpha\Downloads\RSITx64.exe"
  92. "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
  93. "C:\Windows\system32\SearchFilterHost.exe" 0 380 556 568 65536 564
  94. C:\Windows\system32\wbem\wmiprvse.exe
  95.  
  96. ======Scheduled tasks folder======
  97.  
  98. C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  99. C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
  100. C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
  101. C:\Windows\tasks\Uninstaller_SkipUac_Alpha.job - D:\IObit Uninstaller 5.3\IObitUninstaler.exe /UninstallExplorer
  102.  
  103. =========Mozilla firefox=========
  104.  
  105. ProfilePath - C:\Users\Alpha\AppData\Roaming\Mozilla\Firefox\Profiles\m4aaxh58.default
  106.  
  107. prefs.js - "browser.startup.homepage" - "google.pl"
  108.  
  109. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
  110. "Description"=Adobe® Flash® Player 21.0.0.242 Plugin
  111. "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
  112.  
  113. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
  114. "Description"=Java™ Deployment Toolkit
  115. "Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll
  116.  
  117. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
  118. "Description"=Oracle® Next Generation Java™ Plug-In
  119. "Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll
  120.  
  121. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
  122. "Description"=NVIDIA stereo images plugin for Mozilla browsers
  123. "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
  124.  
  125. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
  126. "Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
  127. "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
  128.  
  129. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
  130. "Description"=Google Update
  131. "Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
  132.  
  133. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
  134. "Description"=Google Update
  135. "Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
  136.  
  137.  
  138. [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
  139. "Description"=Adobe® Flash® Player 21.0.0.242 Plugin
  140. "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
  141.  
  142. [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.3]
  143. "Description"=VLC Multimedia Plugin
  144. "Path"=D:\VLC media player 2.2.3\npvlc.dll
  145.  
  146.  
  147. ======Registry dump======
  148.  
  149. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]
  150.  
  151. [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]
  152.  
  153. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  154. "CCleaner Monitoring"=D:\CCleaner 5.17.5590\CCleaner64.exe [2016-04-15 8698584]
  155.  
  156. [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
  157. d:\ccleaner 5.17.5590\ccleaner64.exe [2016-04-15 8698584]
  158.  
  159. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
  160. "PromptOnSecureDesktop"=0
  161. "ConsentPromptBehaviorAdmin"=0
  162.  
  163. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  164. "NoDrives"=0
  165.  
  166. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
  167. "NoDrives"=0
  168.  
  169. [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
  170.  
  171. [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
  172.  
  173. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
  174. "msacm.l3acm"=C:\Windows\System32\l3codeca.acm
  175. "vidc.yuy2"=msyuv.dll
  176. "vidc.i420"=iyuv_32.dll
  177. "msacm.msgsm610"=msgsm32.acm
  178. "msacm.msg711"=msg711.acm
  179. "vidc.yvyu"=msyuv.dll
  180. "vidc.yvu9"=tsbyuv.dll
  181. "wavemapper"=msacm32.drv
  182. "midimapper"=midimap.dll
  183. "vidc.uyvy"=msyuv.dll
  184. "vidc.iyuv"=iyuv_32.dll
  185. "vidc.mrle"=msrle32.dll
  186. "msacm.imaadpcm"=imaadp32.acm
  187. "msacm.msadpcm"=msadp32.acm
  188. "vidc.msvc"=msvidc32.dll
  189. "wave"=wdmaud.drv
  190. "midi"=wdmaud.drv
  191. "mixer"=wdmaud.drv
  192. "aux"=wdmaud.drv
  193. "wave1"=wdmaud.drv
  194. "midi1"=wdmaud.drv
  195. "mixer1"=wdmaud.drv
  196. "wave2"=wdmaud.drv
  197. "mixer2"=wdmaud.drv
  198. "VIDC.FICV"=ficvdec_x64.dll
  199. "wave3"=wdmaud.drv
  200. "midi2"=wdmaud.drv
  201. "mixer3"=wdmaud.drv
  202.  
  203. ======File associations======
  204.  
  205. .js - edit - C:\Windows\System32\Notepad.exe %1
  206.  
  207. ======List of files/folders created in the last 1 month======
  208.  
  209. 2016-06-02 09:32:45 ----D---- C:\rsit
  210. 2016-06-02 09:32:45 ----D---- C:\Program Files\trend micro
  211. 2016-06-02 09:24:43 ----D---- C:\Windows\temp
  212. 2016-06-02 09:24:42 ----A---- C:\ComboFix.txt
  213. 2016-06-02 09:21:39 ----SHD---- C:\$RECYCLE.BIN
  214. 2016-06-02 09:14:44 ----A---- C:\Windows\zip.exe
  215. 2016-06-02 09:14:44 ----A---- C:\Windows\SWXCACLS.exe
  216. 2016-06-02 09:14:44 ----A---- C:\Windows\SWSC.exe
  217. 2016-06-02 09:14:44 ----A---- C:\Windows\SWREG.exe
  218. 2016-06-02 09:14:44 ----A---- C:\Windows\sed.exe
  219. 2016-06-02 09:14:44 ----A---- C:\Windows\PEV.exe
  220. 2016-06-02 09:14:44 ----A---- C:\Windows\NIRCMD.exe
  221. 2016-06-02 09:14:44 ----A---- C:\Windows\MBR.exe
  222. 2016-06-02 09:14:44 ----A---- C:\Windows\grep.exe
  223. 2016-06-02 09:14:39 ----D---- C:\Qoobox
  224. 2016-06-02 09:14:29 ----D---- C:\Windows\erdnt
  225. 2016-06-01 13:49:35 ----A---- C:\Windows\system32\FNTCACHE.DAT
  226. 2016-05-31 20:50:40 ----D---- C:\Program Files (x86)\Mirillis
  227. 2016-05-31 16:19:50 ----D---- C:\Users\Alpha\AppData\Roaming\vlc
  228. 2016-05-26 19:11:41 ----D---- C:\Users\Alpha\AppData\Roaming\.minecraft
  229. 2016-05-26 14:41:19 ----A---- C:\Windows\SYSWOW64\CmdLineExt.dll
  230. 2016-05-24 16:25:57 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
  231. 2016-05-23 23:03:22 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
  232. 2016-05-23 23:03:22 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
  233. 2016-05-23 23:03:22 ----A---- C:\Windows\system32\nvspcap64.dll
  234. 2016-05-23 23:03:22 ----A---- C:\Windows\system32\nvspbridge64.dll
  235. 2016-05-23 23:02:44 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
  236. 2016-05-23 23:02:41 ----D---- C:\Program Files (x86)\NVIDIA Corporation
  237. 2016-05-17 21:42:27 ----D---- C:\Users\Alpha\AppData\Roaming\Skype
  238. 2016-05-17 21:42:17 ----RD---- C:\Program Files (x86)\Skype
  239. 2016-05-17 21:42:12 ----D---- C:\ProgramData\Skype
  240. 2016-05-16 11:35:35 ----D---- C:\Users\Alpha\AppData\Roaming\Audacity
  241. 2016-05-09 12:59:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
  242. 2016-05-09 12:59:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
  243. 2016-05-09 12:59:52 ----A---- C:\Windows\system32\XAudio2_7.dll
  244. 2016-05-09 12:59:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
  245. 2016-05-09 12:59:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
  246. 2016-05-09 12:59:51 ----A---- C:\Windows\system32\xactengine3_7.dll
  247. 2016-05-09 12:59:50 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
  248. 2016-05-09 12:59:50 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
  249. 2016-05-09 12:59:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
  250. 2016-05-09 12:59:50 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
  251. 2016-05-09 12:59:50 ----A---- C:\Windows\system32\XAudio2_6.dll
  252. 2016-05-09 12:59:50 ----A---- C:\Windows\system32\XAPOFX1_4.dll
  253. 2016-05-09 12:59:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
  254. 2016-05-09 12:59:50 ----A---- C:\Windows\system32\D3DCompiler_43.dll
  255. 2016-05-09 12:59:49 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
  256. 2016-05-09 12:59:49 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
  257. 2016-05-09 12:59:49 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
  258. 2016-05-09 12:59:49 ----A---- C:\Windows\system32\XAudio2_5.dll
  259. 2016-05-09 12:59:49 ----A---- C:\Windows\system32\xactengine3_6.dll
  260. 2016-05-09 12:59:49 ----A---- C:\Windows\system32\X3DAudio1_7.dll
  261. 2016-05-09 12:59:48 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
  262. 2016-05-09 12:59:48 ----A---- C:\Windows\system32\xactengine3_5.dll
  263. 2016-05-09 12:59:47 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
  264. 2016-05-09 12:59:47 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
  265. 2016-05-09 12:59:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
  266. 2016-05-09 12:59:47 ----A---- C:\Windows\system32\d3dx11_42.dll
  267. 2016-05-09 12:59:47 ----A---- C:\Windows\system32\d3dcsx_42.dll
  268. 2016-05-09 12:59:47 ----A---- C:\Windows\system32\D3DCompiler_42.dll
  269. 2016-05-09 12:59:46 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
  270. 2016-05-09 12:59:46 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
  271. 2016-05-09 12:59:46 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
  272. 2016-05-09 12:59:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
  273. 2016-05-09 12:59:46 ----A---- C:\Windows\system32\D3DX9_42.dll
  274. 2016-05-09 12:59:46 ----A---- C:\Windows\system32\d3dx10_42.dll
  275. 2016-05-09 12:59:46 ----A---- C:\Windows\system32\d3dx10_41.dll
  276. 2016-05-09 12:59:46 ----A---- C:\Windows\system32\D3DCompiler_41.dll
  277. 2016-05-09 12:59:45 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
  278. 2016-05-09 12:59:45 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
  279. 2016-05-09 12:59:45 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
  280. 2016-05-09 12:59:45 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
  281. 2016-05-09 12:59:45 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
  282. 2016-05-09 12:59:45 ----A---- C:\Windows\system32\XAudio2_4.dll
  283. 2016-05-09 12:59:45 ----A---- C:\Windows\system32\XAPOFX1_3.dll
  284. 2016-05-09 12:59:45 ----A---- C:\Windows\system32\xactengine3_4.dll
  285. 2016-05-09 12:59:45 ----A---- C:\Windows\system32\X3DAudio1_6.dll
  286. 2016-05-09 12:59:45 ----A---- C:\Windows\system32\D3DX9_41.dll
  287. 2016-05-09 12:59:44 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
  288. 2016-05-09 12:59:44 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
  289. 2016-05-09 12:59:44 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
  290. 2016-05-09 12:59:44 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
  291. 2016-05-09 12:59:44 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
  292. 2016-05-09 12:59:44 ----A---- C:\Windows\system32\XAudio2_3.dll
  293. 2016-05-09 12:59:44 ----A---- C:\Windows\system32\XAPOFX1_2.dll
  294. 2016-05-09 12:59:44 ----A---- C:\Windows\system32\D3DX9_40.dll
  295. 2016-05-09 12:59:44 ----A---- C:\Windows\system32\d3dx10_40.dll
  296. 2016-05-09 12:59:44 ----A---- C:\Windows\system32\D3DCompiler_40.dll
  297. 2016-05-09 12:59:43 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
  298. 2016-05-09 12:59:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
  299. 2016-05-09 12:59:43 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
  300. 2016-05-09 12:59:43 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
  301. 2016-05-09 12:59:43 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
  302. 2016-05-09 12:59:43 ----A---- C:\Windows\system32\XAudio2_2.dll
  303. 2016-05-09 12:59:43 ----A---- C:\Windows\system32\XAPOFX1_1.dll
  304. 2016-05-09 12:59:43 ----A---- C:\Windows\system32\xactengine3_3.dll
  305. 2016-05-09 12:59:43 ----A---- C:\Windows\system32\xactengine3_2.dll
  306. 2016-05-09 12:59:43 ----A---- C:\Windows\system32\X3DAudio1_5.dll
  307. 2016-05-09 12:59:42 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
  308. 2016-05-09 12:59:42 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
  309. 2016-05-09 12:59:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
  310. 2016-05-09 12:59:42 ----A---- C:\Windows\system32\D3DX9_39.dll
  311. 2016-05-09 12:59:42 ----A---- C:\Windows\system32\d3dx10_39.dll
  312. 2016-05-09 12:59:42 ----A---- C:\Windows\system32\D3DCompiler_39.dll
  313. 2016-05-09 12:59:41 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
  314. 2016-05-09 12:59:41 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
  315. 2016-05-09 12:59:41 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
  316. 2016-05-09 12:59:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
  317. 2016-05-09 12:59:41 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
  318. 2016-05-09 12:59:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
  319. 2016-05-09 12:59:41 ----A---- C:\Windows\system32\XAudio2_1.dll
  320. 2016-05-09 12:59:41 ----A---- C:\Windows\system32\XAPOFX1_0.dll
  321. 2016-05-09 12:59:41 ----A---- C:\Windows\system32\xactengine3_1.dll
  322. 2016-05-09 12:59:41 ----A---- C:\Windows\system32\X3DAudio1_4.dll
  323. 2016-05-09 12:59:41 ----A---- C:\Windows\system32\d3dx10_38.dll
  324. 2016-05-09 12:59:41 ----A---- C:\Windows\system32\D3DCompiler_38.dll
  325. 2016-05-09 12:59:40 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
  326. 2016-05-09 12:59:40 ----A---- C:\Windows\system32\D3DX9_38.dll
  327. 2016-05-09 12:58:05 ----D---- C:\Windows\SYSWOW64\directx
  328. 2016-05-09 00:00:32 ----D---- C:\Windows\Hearts of Iron 2 Platynowa Edycja
  329. 2016-05-07 14:50:32 ----D---- C:\Program Files\WinPcap
  330. 2016-05-07 14:50:25 ----D---- C:\ProgramData\Freemake
  331. 2016-05-07 14:44:40 ----D---- C:\Program Files (x86)\FreeCodecPack
  332. 2016-05-07 14:43:25 ----D---- C:\Users\Alpha\AppData\Roaming\DVDVideoSoft
  333. 2016-05-07 14:14:43 ----D---- C:\Program Files\CPUID
  334. 2016-05-06 20:18:05 ----A---- C:\Windows\SpeederXP.INI
  335.  
  336. ======List of files/folders modified in the last 1 month======
  337.  
  338. 2016-06-02 09:32:45 ----RD---- C:\Program Files
  339. 2016-06-02 09:26:15 ----D---- C:\Users\Alpha\AppData\Roaming\TS3Client
  340. 2016-06-02 09:25:48 ----RD---- C:\Windows\System32
  341. 2016-06-02 09:25:48 ----D---- C:\Windows\Inf
  342. 2016-06-02 09:25:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
  343. 2016-06-02 09:25:15 ----D---- C:\Windows\Prefetch
  344. 2016-06-02 09:24:44 ----D---- C:\Windows\system32\Drivers
  345. 2016-06-02 09:24:43 ----D---- C:\Windows
  346. 2016-06-02 09:21:36 ----A---- C:\Windows\system.ini
  347. 2016-06-02 09:21:32 ----D---- C:\Windows\system32\drivers\etc
  348. 2016-06-02 09:20:06 ----D---- C:\Windows\system32\config
  349. 2016-06-02 09:19:34 ----D---- C:\Windows\SysWOW64
  350. 2016-06-02 09:18:11 ----D---- C:\Windows\SYSWOW64\drivers
  351. 2016-06-02 09:18:11 ----D---- C:\Windows\apppatch
  352. 2016-06-02 09:18:10 ----D---- C:\Program Files (x86)\Common Files
  353. 2016-06-02 09:15:00 ----SHD---- C:\System Volume Information
  354. 2016-06-02 09:02:00 ----D---- C:\Windows\system32\sru
  355. 2016-06-01 22:34:36 ----D---- C:\Windows\Microsoft.NET
  356. 2016-06-01 22:03:19 ----D---- C:\Users\Alpha\AppData\Roaming\foobar2000
  357. 2016-06-01 21:05:37 ----D---- C:\Windows\Logs
  358. 2016-06-01 21:02:06 ----D---- C:\Windows\Tasks
  359. 2016-06-01 21:02:06 ----D---- C:\Windows\system32\Tasks
  360. 2016-06-01 19:50:23 ----RSD---- C:\Windows\Fonts
  361. 2016-05-31 20:50:40 ----RD---- C:\Program Files (x86)
  362. 2016-05-31 00:21:05 ----D---- C:\Windows\SoftwareDistribution
  363. 2016-05-30 19:57:51 ----D---- C:\Action!
  364. 2016-05-30 19:04:27 ----D---- C:\Users\Alpha\AppData\Roaming\TeamViewer
  365. 2016-05-24 14:45:20 ----D---- C:\ProgramData\NVIDIA
  366. 2016-05-23 23:04:49 ----D---- C:\ProgramData\NVIDIA Corporation
  367. 2016-05-23 23:03:23 ----D---- C:\Windows\system32\DriverStore
  368. 2016-05-23 23:03:23 ----D---- C:\Program Files\NVIDIA Corporation
  369. 2016-05-23 23:03:09 ----D---- C:\Windows\system32\catroot2
  370. 2016-05-17 21:43:34 ----SD---- C:\Users\Alpha\AppData\Roaming\Microsoft
  371. 2016-05-17 21:42:27 ----SHD---- C:\Windows\Installer
  372. 2016-05-17 21:42:12 ----D---- C:\ProgramData
  373. 2016-05-16 12:20:43 ----D---- C:\Users\Alpha\AppData\Roaming\Sony
  374. 2016-05-07 14:53:33 ----D---- C:\Program Files (x86)\Google
  375. 2016-05-04 15:04:35 ----D---- C:\Windows\system32\NDF
  376. 2016-05-04 14:10:36 ----D---- C:\ProgramData\IObit
  377.  
  378. ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
  379.  
  380. R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
  381. R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2016-01-29 12911160]
  382. R3 nvvad_WaveExtensible;@oem5.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2016-01-29 38032]
  383. R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Sterownik Realtek 8168 NT; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-02 589824]
  384. R3 VBAudioVACMME;@oem9.inf,%DeviceName% (WDM);VB-Audio Virtual Cable (WDM); C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys [2014-09-02 41192]
  385. S3 athur;@oem7.inf,%ATHR.Service.DispName%;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athurx.sys [2010-01-05 1847296]
  386. S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
  387. S3 dg_ssudbus;@oem11.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2016-04-25 129152]
  388. S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
  389. S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 65408]
  390. S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-01-29 19600]
  391. S3 tap0901;@oem10.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2014-11-05 27136]
  392. S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2012-07-26 57344]
  393. S3 WUDFWpdFs;WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
  394. S3 WUDFWpdMtp;WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
  395.  
  396. ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
  397.  
  398. R2 slsvc;Software Licensing Service; C:\Windows\slsvc.exe [2012-09-25 10240]
  399. R2 TeamViewer;TeamViewer 11; C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe [2016-05-12 7032080]
  400. S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-06 43616]
  401. S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12 269504]
  402. S4 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe []
  403. S4 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-01-29 1148560]
  404. S4 gupdate;Usługa Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-07 154440]
  405. S4 gupdatem;Usługa Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-07 154440]
  406. S4 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-01-15 2945312]
  407. S4 MBAMService;MBAMService; D:\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
  408. S4 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-01-29 1706128]
  409. S4 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2016-01-29 21833360]
  410. S4 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-01-29 932728]
  411. S4 OpenVPNService;OpenVPN Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2016-03-10 37504]
  412. S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
  413. S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2016-01-29 426040]
  414.  
  415. -----------------EOF-----------------
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!