ComboFix 14-10-29.01 - Misiek 2014-11-06  13:58:55.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1250.48.1045.18.4095.2565 [GMT 1:00]
Uruchomiony z: c:\users\Misiek\Desktop\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\CostMin
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Gość\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Gość\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Gość\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Gość\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Gość\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Gość\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Gość\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Gość\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Gość\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Gość\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Gość\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Gość\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Gość\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Gość\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Gość\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Gość\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Gość\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Gość\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Gość\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Gość\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Gość\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Gość\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Gość\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Gość\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Gość\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Misiek\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Misiek\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Misiek\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Misiek\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Misiek\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Misiek\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Misiek\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Misiek\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Misiek\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Misiek\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Misiek\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Misiek\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Misiek\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Misiek\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Misiek\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Misiek\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Misiek\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Misiek\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
c:\users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\Misiek\AppData\Local\lollipop
c:\users\Misiek\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid
c:\users\Misiek\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\background.html
c:\users\Misiek\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\content.js
c:\users\Misiek\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\lsdb.js
c:\users\Misiek\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\manifest.json
c:\users\Misiek\AppData\Local\Torch\User Data\Default\Extensions\hbdoaoilkjhjhchcoafaigbpmidaedid\2.2\XcsVyvyvw.js
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2014-10-06 do 2014-11-06  )))))))))))))))))))))))))))))))
.
.
2014-11-06 13:03 . 2014-11-06 13:03	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-11-06 10:46 . 2014-11-06 10:46	--------	d-----w-	c:\users\Misiek\AppData\Local\FLT
2014-11-06 10:46 . 2014-11-06 10:46	--------	d-----w-	c:\users\Misiek\AppData\Local\EA Games
2014-11-06 10:43 . 2014-11-06 10:43	--------	d-----w-	c:\programdata\RELOADED
2014-11-06 10:37 . 2014-11-06 10:37	--------	d-----w-	c:\users\Misiek\AppData\Local\Risen3
2014-11-06 10:23 . 2014-11-06 10:23	--------	d-----w-	c:\users\Misiek\AppData\Local\Daedalic Entertainment
2014-11-06 10:12 . 2014-11-06 10:12	--------	d-----w-	c:\windows\system32\appmgmt
2014-11-06 10:08 . 2014-01-09 10:06	661448	----a-w-	c:\windows\system32\msvcp110.dll
2014-11-06 10:08 . 2012-06-13 11:18	858176	----a-w-	c:\windows\system32\msvcr110.dll
2014-11-06 10:06 . 2014-11-06 10:06	--------	d-----w-	c:\users\Misiek\AppData\Roaming\dll-files.com
2014-11-06 10:06 . 2014-11-06 10:06	--------	d-----w-	c:\program files (x86)\Dll-Files.com Fixer
2014-11-06 10:01 . 2014-11-06 10:01	4421192	----a-w-	c:\windows\SysWow64\mfc110.dll
2014-11-06 10:00 . 2014-11-06 10:00	--------	d-----w-	c:\programdata\Logs
2014-11-06 10:00 . 2014-06-10 11:27	19392	----a-w-	c:\windows\system32\roboot64.exe
2014-11-06 09:49 . 2014-11-06 09:49	--------	d-----w-	c:\users\Misiek\AppData\Roaming\Steam
2014-11-06 08:05 . 2010-05-26 10:41	511328	----a-w-	c:\windows\system32\d3dx10_43.dll
2014-11-06 08:05 . 2010-05-26 10:41	470880	----a-w-	c:\windows\SysWow64\d3dx10_43.dll
2014-11-06 08:05 . 2010-05-26 10:41	276832	----a-w-	c:\windows\system32\d3dx11_43.dll
2014-11-06 08:05 . 2010-05-26 10:41	248672	----a-w-	c:\windows\SysWow64\d3dx11_43.dll
2014-11-06 08:05 . 2010-05-26 10:41	1998168	----a-w-	c:\windows\SysWow64\D3DX9_43.dll
2014-11-06 08:05 . 2010-05-26 10:41	2401112	----a-w-	c:\windows\system32\D3DX9_43.dll
2014-11-06 08:04 . 2014-11-06 08:04	--------	d-----w-	c:\users\Misiek\AppData\Local\NVIDIA Corporation
2014-11-06 08:04 . 2014-10-04 06:35	2197680	----a-w-	c:\windows\SysWow64\nvspcap.dll
2014-11-06 08:04 . 2014-10-04 06:35	1291280	----a-w-	c:\windows\SysWow64\nvspbridge.dll
2014-11-06 08:04 . 2014-10-04 06:34	2800296	----a-w-	c:\windows\system32\nvspcap64.dll
2014-11-06 08:04 . 2014-10-04 06:34	1715224	----a-w-	c:\windows\system32\nvspbridge64.dll
2014-11-06 08:04 . 2014-10-30 00:56	614728	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2014-11-06 06:58 . 2014-11-06 06:59	--------	d-----w-	c:\program files (x86)\Google
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-30 08:56 . 2014-04-27 12:16	1538880	----a-w-	c:\windows\system32\nvhdagenco6420103.dll
2014-10-30 04:53 . 2014-04-27 12:28	73872	----a-w-	c:\windows\system32\OpenCL.dll
2014-10-30 04:53 . 2014-04-27 12:28	60744	----a-w-	c:\windows\SysWow64\OpenCL.dll
2014-10-30 04:53 . 2014-04-27 12:16	987008	----a-w-	c:\windows\system32\nvumdshimx.dll
2014-10-30 04:53 . 2014-04-27 12:16	3237528	----a-w-	c:\windows\system32\nvapi64.dll
2014-10-30 04:53 . 2014-04-27 12:16	20966504	----a-w-	c:\windows\system32\nvwgf2umx.dll
2014-10-30 04:53 . 2014-04-27 12:16	18497600	----a-w-	c:\windows\SysWow64\nvwgf2um.dll
2014-10-30 04:53 . 2014-04-27 12:16	16886168	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2014-10-30 02:10 . 2014-04-27 12:28	3533632	----a-w-	c:\windows\system32\nvsvc64.dll
2014-10-30 02:10 . 2014-04-27 12:28	6880968	----a-w-	c:\windows\system32\nvcpl.dll
2014-10-30 02:10 . 2014-04-27 12:28	935232	----a-w-	c:\windows\system32\nvvsvc.exe
2014-10-30 02:10 . 2014-04-27 12:28	61640	----a-w-	c:\windows\system32\nvshext.dll
2014-10-30 02:10 . 2014-04-27 12:28	2558792	----a-w-	c:\windows\system32\nvsvcr.dll
2014-10-30 02:10 . 2014-04-27 12:28	385352	----a-w-	c:\windows\system32\nvmctray.dll
2014-10-27 00:34 . 2014-04-27 12:28	4066553	----a-w-	c:\windows\system32\nvcoproc.bin
2014-09-04 19:14 . 2014-04-27 12:16	34976	----a-w-	c:\windows\system32\nvaudcap64v.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 AtcL001;Sterownik miniportu NDIS dla kontrolera Gigabit Ethernet Atheros L1;c:\windows\system32\DRIVERS\l160x64.sys;c:\windows\SYSNATIVE\DRIVERS\l160x64.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-11-06 06:59	1089352	----a-w-	c:\program files (x86)\Google\Chrome\Application\38.0.2125.111\Installer\chrmstp.exe
.
Zawartość folderu 'Zaplanowane zadania'
.
2014-11-06 c:\windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-11-06 11:27]
.
2014-11-06 c:\windows\Tasks\DLL-Files.Com Fixer_Updates.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-11-06 11:27]
.
2014-11-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-11-06 06:58]
.
2014-11-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-11-06 06:58]
.
.
--------- X64 Entries -----------
.
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 194.204.152.34 194.204.159.1
FF - ProfilePath - c:\users\Misiek\AppData\Roaming\Mozilla\Firefox\Profiles\y8w66tl4.default-1400066265692\
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2014-11-06  14:05:08
ComboFix-quarantined-files.txt  2014-11-06 13:05
.
Przed: 183 935 315 968 bajtów wolnych
Po: 183 464 091 648 bajtów wolnych
.
- - End Of File - - D924F31A972B5245CCE6A4DED656CCA6
A36C5E4F47E84449FF07ED3517B43A31