Закрыто ComboFix, в теме на форуме

Тема в разделе "Лечение компьютерных вирусов", создана пользователем СЕРГЕЙ009, 27 окт 2014.

Статус темы:
Закрыта.
  1. СЕРГЕЙ009
    Оффлайн

    СЕРГЕЙ009 Новый пользователь

    Сообщения:
    1
    Симпатии:
    0
    ComboFix 14-10-27.01 - сергей 27.10.2014 13:36:04.1.1 - x86
    Microsoft Windows 7 Домашняя базовая 6.1.7601.1.1251.7.1049.18.2560.1863 [GMT 3:00]
    Running from: c:\users\сергей\Downloads\ComboFix.exe
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\windows\PFRO.log
    .
    .
    ((((((((((((((((((((((((( Files Created from 2014-09-27 to 2014-10-27 )))))))))))))))))))))))))))))))
    .
    .
    2014-10-27 09:21 . 2013-06-06 04:52 26112 ----a-w- c:\windows\system32\lpk.dll
    2014-10-27 09:21 . 2013-06-06 04:51 70656 ----a-w- c:\windows\system32\fontsub.dll
    2014-10-27 09:21 . 2013-06-06 04:50 10240 ----a-w- c:\windows\system32\dciman32.dll
    2014-10-27 09:21 . 2013-06-06 03:01 295424 ----a-w- c:\windows\system32\atmfd.dll
    2014-10-27 09:21 . 2013-06-06 03:01 34304 ----a-w- c:\windows\system32\atmlib.dll
    2014-10-27 07:08 . 2014-10-27 07:08 69632 ----a-w- c:\windows\system32\smss.exe
    2014-10-27 07:08 . 2014-10-27 07:08 640512 ----a-w- c:\windows\system32\advapi32.dll
    2014-10-27 07:08 . 2014-10-27 07:08 619520 ----a-w- c:\windows\system32\tdh.dll
    2014-10-27 07:08 . 2014-10-27 07:08 3969472 ----a-w- c:\windows\system32\ntkrnlpa.exe
    2014-10-27 07:08 . 2014-10-27 07:08 3914176 ----a-w- c:\windows\system32\ntoskrnl.exe
    2014-10-27 07:08 . 2014-10-27 07:08 38912 ----a-w- c:\windows\system32\csrsrv.dll
    2014-10-27 07:08 . 2014-10-27 07:08 1289096 ----a-w- c:\windows\system32\ntdll.dll
    2014-10-27 03:21 . 2014-10-27 03:59 -------- d-----w- c:\windows\system32\MRT
    2014-10-27 02:54 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
    2014-10-27 02:54 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
    2014-10-27 02:54 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
    2014-10-27 02:54 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
    2014-10-27 02:54 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
    2014-10-27 02:54 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe
    2014-10-27 02:54 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll
    2014-10-27 02:45 . 2014-03-09 21:47 99480 ----a-w- c:\windows\system32\infocardapi.dll
    2014-10-27 02:45 . 2014-06-30 22:14 8856 ----a-w- c:\windows\system32\icardres.dll
    2014-10-27 02:44 . 2014-03-09 21:47 619672 ----a-w- c:\windows\system32\icardagt.exe
    2014-10-27 02:44 . 2014-06-06 06:16 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
    2014-10-27 02:38 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
    2014-10-27 02:38 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
    2014-10-27 02:38 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
    2014-10-27 02:38 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
    2014-10-27 01:32 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\system32\wmploc.DLL
    2014-10-27 01:32 . 2013-05-10 03:48 164864 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
    2014-10-26 21:33 . 2014-10-26 21:33 -------- d-----w- c:\programdata\Doctor Web
    2014-10-26 20:08 . 2014-10-26 20:08 -------- d-----w- c:\program files\OpenAL
    2014-10-26 20:08 . 2014-10-26 20:08 413696 ----a-w- c:\windows\system32\wrap_oal.dll
    2014-10-26 20:08 . 2014-10-26 20:08 110592 ----a-w- c:\windows\system32\OpenAL32.dll
    2014-10-26 19:06 . 2014-10-27 09:55 -------- d-----w- c:\programdata\ProductData
    2014-10-26 19:05 . 2014-10-26 19:05 -------- d-----w- c:\programdata\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
    2014-10-26 19:05 . 2014-10-27 09:55 -------- d-----w- c:\programdata\IObit
    2014-10-26 19:05 . 2014-10-26 19:05 -------- d-----w- c:\programdata\{1BA5A872-FC5B-4433-93E9-DD0C3EAE9F66}
    2014-10-26 19:05 . 2014-10-26 19:06 -------- d-----w- c:\program files\IObit
    2014-10-26 18:49 . 2014-10-26 18:49 -------- d-----w- c:\windows\system32\RTCOM
    2014-10-26 18:35 . 2014-10-27 09:00 -------- d-----w- c:\program files\Microsoft Silverlight
    2014-10-26 17:55 . 2014-04-12 02:15 136640 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
    2014-10-26 17:55 . 2013-07-04 12:16 369848 ----a-w- c:\windows\system32\drivers\cng.sys
    2014-10-26 17:55 . 2014-04-12 02:15 67520 ----a-w- c:\windows\system32\drivers\ksecdd.sys
    2014-10-26 17:55 . 2014-04-12 02:12 100352 ----a-w- c:\windows\system32\sspicli.dll
    2014-10-26 17:55 . 2014-04-12 02:11 22528 ----a-w- c:\windows\system32\lsass.exe
    2014-10-26 17:55 . 2014-04-12 02:12 15872 ----a-w- c:\windows\system32\sspisrv.dll
    2014-10-26 17:55 . 2014-04-12 02:12 22016 ----a-w- c:\windows\system32\secur32.dll
    2014-10-26 17:19 . 2014-02-04 02:07 149440 ----a-w- c:\windows\system32\drivers\storport.sys
    2014-10-26 17:19 . 2014-02-04 02:07 234432 ----a-w- c:\windows\system32\drivers\msiscsi.sys
    2014-10-26 17:19 . 2014-02-04 02:07 27072 ----a-w- c:\windows\system32\drivers\Diskdump.sys
    2014-10-26 17:19 . 2014-02-04 02:00 2048 ----a-w- c:\windows\system32\iologmsg.dll
    2014-10-26 17:18 . 2012-11-23 02:48 49152 ----a-w- c:\windows\system32\taskhost.exe
    2014-10-26 16:39 . 2012-10-03 16:42 175104 ----a-w- c:\windows\system32\netcorehc.dll
    2014-10-26 16:39 . 2012-10-03 16:42 156672 ----a-w- c:\windows\system32\ncsi.dll
    2014-10-26 16:39 . 2012-10-03 16:40 499712 ----a-w- c:\windows\system32\iphlpsvc.dll
    2014-10-26 16:39 . 2012-10-03 16:42 52224 ----a-w- c:\windows\system32\nlaapi.dll
    2014-10-26 16:39 . 2012-10-03 16:42 242176 ----a-w- c:\windows\system32\nlasvc.dll
    2014-10-26 16:39 . 2012-10-03 16:42 18944 ----a-w- c:\windows\system32\netevent.dll
    2014-10-26 16:39 . 2012-10-03 15:21 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
    2014-10-26 16:37 . 2012-05-05 07:46 400896 ----a-w- c:\windows\system32\srcore.dll
    2014-10-26 16:37 . 2014-06-18 01:52 399360 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
    2014-10-26 16:37 . 2014-06-18 01:51 646144 ----a-w- c:\windows\system32\osk.exe
    2014-10-26 16:37 . 2014-06-18 00:52 2350080 ----a-w- c:\windows\system32\win32k.sys
    2014-10-26 16:37 . 2012-07-04 21:14 41984 ----a-w- c:\windows\system32\browcli.dll
    2014-10-26 16:37 . 2012-07-04 21:14 102912 ----a-w- c:\windows\system32\browser.dll
    2014-10-26 16:37 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\system32\d3d11.dll
    2014-10-26 16:37 . 2014-01-24 02:18 1212352 ----a-w- c:\windows\system32\drivers\ntfs.sys
    2014-10-26 16:37 . 2013-07-25 08:57 1620992 ----a-w- c:\windows\system32\WMVDECOD.DLL
    2014-10-26 16:37 . 2013-10-04 01:49 81408 ----a-w- c:\windows\system32\drivers\drmk.sys
    2014-10-26 16:37 . 2013-10-04 01:17 177152 ----a-w- c:\windows\system32\drivers\portcls.sys
    2014-10-26 16:37 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\system32\quartz.dll
    2014-10-26 16:34 . 2014-06-06 09:44 509440 ----a-w- c:\windows\system32\qedit.dll
    2014-10-26 16:33 . 2014-08-01 11:35 793600 ----a-w- c:\windows\system32\TSWorkspace.dll
    2014-10-26 16:32 . 2014-04-05 02:25 1294272 ----a-w- c:\windows\system32\drivers\tcpip.sys
    2014-10-26 16:32 . 2014-04-05 02:24 187840 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
    2014-10-26 16:32 . 2013-11-26 11:11 240576 ----a-w- c:\windows\system32\drivers\netio.sys
    2014-10-26 16:32 . 2014-05-30 06:36 338944 ----a-w- c:\windows\system32\drivers\afd.sys
    2014-10-26 16:29 . 2014-06-18 22:23 81560 ----a-w- c:\windows\system32\mscories.dll
    2014-10-26 16:29 . 2014-06-18 22:23 156824 ----a-w- c:\windows\system32\mscorier.dll
    2014-10-26 16:29 . 2014-06-18 22:23 1131664 ----a-w- c:\windows\system32\dfshim.dll
    2014-10-26 16:20 . 2011-11-17 05:35 314880 ----a-w- c:\windows\system32\webio.dll
    2014-10-26 16:20 . 2013-07-04 11:57 205824 ----a-w- c:\windows\system32\WebClnt.dll
    2014-10-26 16:20 . 2013-07-04 11:51 81920 ----a-w- c:\windows\system32\davclnt.dll
    2014-10-26 16:20 . 2013-07-04 09:48 115712 ----a-w- c:\windows\system32\drivers\mrxdav.sys
    2014-10-26 16:19 . 2011-06-15 08:55 86016 ----a-w- c:\windows\system32\odbccu32.dll
    2014-10-26 16:19 . 2011-06-15 08:55 81920 ----a-w- c:\windows\system32\odbccr32.dll
    2014-10-26 16:19 . 2011-06-15 08:55 319488 ----a-w- c:\windows\system32\odbcjt32.dll
    2014-10-26 16:19 . 2011-06-15 08:55 163840 ----a-w- c:\windows\system32\odbctrac.dll
    2014-10-26 16:19 . 2011-06-15 08:55 122880 ----a-w- c:\windows\system32\odbccp32.dll
    2014-10-26 16:19 . 2011-06-15 08:54 94208 ----a-w- c:\program files\Common Files\System\Ole DB\msdaosp.dll
    2014-10-26 16:17 . 2012-03-17 07:27 56176 ----a-w- c:\windows\system32\drivers\partmgr.sys
    2014-10-26 16:17 . 2012-05-01 04:44 164352 ----a-w- c:\windows\system32\profsvc.dll
    2014-10-26 16:17 . 2012-09-25 22:47 78336 ----a-w- c:\windows\system32\synceng.dll
    2014-10-26 16:16 . 2013-08-05 01:56 133056 ----a-w- c:\windows\system32\drivers\ataport.sys
    2014-10-26 16:16 . 2013-10-12 02:03 656896 ----a-w- c:\windows\system32\nshwfp.dll
    2014-10-26 16:16 . 2013-10-12 02:01 679424 ----a-w- c:\windows\system32\IKEEXT.DLL
    2014-10-26 16:16 . 2013-10-12 02:01 216576 ----a-w- c:\windows\system32\FWPUCLNT.DLL
    2014-10-26 16:15 . 2012-05-14 04:33 769024 ----a-w- c:\windows\system32\localspl.dll
    2014-10-26 16:15 . 2012-01-04 08:58 442880 ----a-w- c:\windows\system32\ntshrui.dll
    2014-10-26 16:12 . 2012-10-09 17:40 44032 ----a-w- c:\windows\system32\dhcpcsvc6.dll
    2014-10-26 16:12 . 2012-10-09 17:40 193536 ----a-w- c:\windows\system32\dhcpcore6.dll
    2014-10-26 16:10 . 2013-10-05 19:57 1168384 ----a-w- c:\windows\system32\crypt32.dll
    2014-10-26 16:10 . 2013-07-09 04:46 140288 ----a-w- c:\windows\system32\cryptsvc.dll
    2014-10-26 16:09 . 2013-07-09 04:46 103936 ----a-w- c:\windows\system32\cryptnet.dll
    2014-10-26 16:08 . 2013-07-12 10:07 86016 ----a-w- c:\windows\system32\drivers\usbcir.sys
    2014-10-26 16:06 . 2014-09-18 01:32 2363904 ----a-w- c:\windows\system32\msi.dll
    2014-10-26 16:06 . 2014-06-03 09:30 101824 ----a-w- c:\windows\system32\consent.exe
    2014-10-26 16:06 . 2014-06-03 09:29 1805824 ----a-w- c:\windows\system32\authui.dll
    2014-10-26 16:06 . 2013-02-27 04:49 47104 ----a-w- c:\windows\system32\appinfo.dll
    2014-10-26 16:06 . 2014-06-03 09:29 337408 ----a-w- c:\windows\system32\msihnd.dll
    2014-10-26 16:05 . 2011-02-23 04:47 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
    2014-10-26 16:05 . 2011-02-23 04:47 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
    2014-10-26 16:05 . 2011-02-23 04:47 223232 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
    2014-10-26 16:05 . 2011-02-23 04:47 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
    2014-10-26 15:42 . 2011-10-15 05:38 534528 ----a-w- c:\windows\system32\EncDec.dll
    2014-10-26 15:34 . 2014-10-26 15:34 -------- d-----w- C:\cd2cf9021c87c6150f288d203da8
    2014-10-26 15:32 . 2011-03-11 05:33 1164288 ----a-w- c:\windows\system32\mfc42u.dll
    2014-10-26 15:32 . 2011-03-11 05:33 1137664 ----a-w- c:\windows\system32\mfc42.dll
    2014-10-26 15:20 . 2014-07-28 12:47 56056 ----a-w- c:\windows\system32\drivers\adgnetworktdi.sys
    2014-10-26 15:18 . 2014-10-26 15:18 288 ----a-w- c:\windows\system32\drivers\vwifikerneldrv.sys
    2014-10-26 15:18 . 2014-10-26 15:18 288 ----a-w- c:\windows\system32\d3dx9_11.dll.tmp
    2014-10-26 15:17 . 2014-10-27 10:50 -------- d-----w- c:\programdata\Adguard
    2014-10-26 15:17 . 2011-02-12 05:35 191488 ----a-w- c:\windows\system32\FXSCOVER.exe
    2014-10-26 15:15 . 2014-10-26 15:15 17903792 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{91397D20-1446-11D4-8AF4-0040CA1127B6}"= "c:\program files\Yandex\Elements\bartabhost.dll" [2014-08-27 306976]
    .
    [HKEY_CLASSES_ROOT\clsid\{91397d20-1446-11d4-8af4-0040ca1127b6}]
    [HKEY_CLASSES_ROOT\Yandex.Toolbar.1]
    [HKEY_CLASSES_ROOT\TypeLib\{91397D20-1446-11D4-8AF4-0040CA1127B6}]
    [HKEY_CLASSES_ROOT\Yandex.Toolbar]
    .
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
    "{91397D20-1446-11D4-8AF4-0040CA1127B6}"= "c:\program files\Yandex\Elements\bartabhost.dll" [2014-08-27 306976]
    .
    [HKEY_CLASSES_ROOT\clsid\{91397d20-1446-11d4-8af4-0040ca1127b6}]
    [HKEY_CLASSES_ROOT\Yandex.Toolbar.1]
    [HKEY_CLASSES_ROOT\TypeLib\{91397D20-1446-11D4-8AF4-0040CA1127B6}]
    [HKEY_CLASSES_ROOT\Yandex.Toolbar]
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Adguard"="d:\adguard\Adguard.exe" [2014-10-07 1985256]
    "amigo"="c:\users\сергей\AppData\Local\Amigo\Application\amigo.exe" [2014-10-15 1109544]
    "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-08-01 3673696]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvBackend"="c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-10-16 2462536]
    "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-13 11487848]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    R1 BAPIDRV;BAPIDRV;c:\windows\system32\DRIVERS\BAPIDRV.sys [x]
    R2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver;c:\program files\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys [x]
    R3 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-10-16 915784]
    R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-10-27 108032]
    R3 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [2014-05-04 2152736]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
    R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
    R3 WO_LiveService;Ashampoo LiveTuner Service;c:\program files\Ashampoo WinOptimizer 10\LiveTunerService.exe [x]
    S1 adgnetworktdi;adgnetworktdi;c:\windows\system32\drivers\adgnetworktdi.sys [2014-07-28 56056]
    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-10-26 243128]
    S2 Adguard Service;Adguard Service;d:\adguard\AdguardSvc.exe [2014-10-07 120040]
    S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files\IObit\Advanced SystemCare 7\ASCService.exe [2014-01-14 881952]
    S2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-10-16 1795912]
    S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-10-16 18044232]
    S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410768]
    S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-10-16 19272]
    S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2014-10-16 32928]
    S3 RTL8167;Драйвер Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
    .
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - WS2IFSL
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
    .
    Contents of the 'Scheduled Tasks' folder
    .
    .
    ------- Supplementary Scan -------
    .
    uStart Page = hxxp://http://www.trovi.com/?gd=&ctid=CT3329707&octid=EB_ORIGINAL_CTID&ISID=MD8807EB2-7FB2-40E9-8046-12B0E14E37CA&SearchSource=55&CUI=&UM=6&UP=SPEB650721-D645-4E49-BB23-749237B1DD2F&SSPV=
    TCP: DhcpNameServer = 192.168.100.1
    .
    - - - - ORPHANS REMOVED - - - -
    .
    AddRemove-IObitUninstall - c:\program files\IObit\IObit Uninstaller\UninstallDisplay.exe
    AddRemove-WindowsMangerProtect - c:\programdata\WindowsMangerProtect\ProtectWindowsManager.exe
    AddRemove-GetNowUpdater - c:\users\сергей\AppData\Local\GetNowUpdater\inst\Bootstrapper\GetNowUpdaterUninstall.exe
    .
    .
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_189_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_15_0_0_189_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker6"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ------------------------ Other Running Processes ------------------------
    .
    c:\windows\system32\nvvsvc.exe
    c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
    c:\windows\system32\nvvsvc.exe
    c:\windows\system32\taskhost.exe
    c:\windows\system32\conhost.exe
    c:\windows\system32\conhost.exe
    c:\windows\System32\rundll32.exe
    c:\windows\system32\conhost.exe
    c:\program files\NVIDIA Corporation\Display\nvtray.exe
    c:\program files\Windows Media Player\wmpnetwk.exe
    c:\users\c:\users\c:\users\c:\users\c:\users\c:\users\c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    c:\windows\system32\sppsvc.exe
    c:\users\\\?\c:\windows\system32\wbem\WMIADAP.EXE
    .
    **************************************************************************
    .
    Completion time: 2014-10-27 13:56:55 - machine was rebooted
    ComboFix-quarantined-files.txt 2014-10-27 10:56
    .
    Pre-Run: 117 243 351 040 байт свободно
    Post-Run: 116 842 389 504 байт свободно
    .
    - - End Of File - - 307F6A2639338A678C520C952F90DCBD
    A36C5E4F47E84449FF07ED3517B43A31
     
    Последнее редактирование модератором: 27 окт 2014
  2. akok
    Оффлайн

    akok Команда форума Администратор

    Сообщения:
    12.452
    Симпатии:
    13.952
    День добрый. Собственно вопрос зачем данный лог. Откуда он, и вообще причины его создания.
     
    Kиpилл нравится это.
Статус темы:
Закрыта.

Поделиться этой страницей