ComboFix 14-11-18.01 - Maciej 2014-11-22  12:21:36.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1250.48.1045.18.3996.1575 [GMT 1:00]
Uruchomiony z: c:\users\Maciej\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\SecureW2
c:\program files (x86)\SecureW2\Uninstall.exe
c:\programdata\Microsoft\Windows\Start Menu\Programs\SecureW2
c:\programdata\Microsoft\Windows\Start Menu\Programs\SecureW2\TTLS Manager.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\SecureW2\Uninstall.lnk
c:\users\Maciej\AppData\Local\TempDIR
c:\users\Maciej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SecureW2
c:\windows\msdownld.tmp
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2014-10-22 do 2014-11-22  )))))))))))))))))))))))))))))))
.
.
2014-11-22 11:29 . 2014-11-22 11:29	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-11-22 11:28 . 2014-11-22 11:28	75888	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{C647FF09-F1E0-4544-84EF-1C4AEA5320C7}\offreg.dll
2014-11-22 10:35 . 2014-11-22 10:35	0	----a-w-	C:\backup.reg
2014-11-22 10:35 . 2014-11-22 10:35	61440	----a-w-	c:\windows\SysWow64\drivers\djfkmx.sys
2014-11-22 10:26 . 2014-11-22 10:26	--------	d-----w-	c:\users\Maciej\AppData\Local\Macromedia
2014-11-22 10:23 . 2014-11-22 10:24	--------	d-----w-	c:\users\Maciej\AppData\Local\Mozilla
2014-11-22 10:23 . 2014-11-22 10:23	--------	d-----w-	c:\program files (x86)\Mozilla Maintenance Service
2014-11-21 19:30 . 2014-11-22 11:16	129752	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-11-21 19:30 . 2014-11-21 19:30	--------	d-----w-	c:\program files (x86)\Malwarebytes Anti-Malware
2014-11-21 19:30 . 2014-11-21 19:30	--------	d-----w-	c:\programdata\Malwarebytes
2014-11-21 19:30 . 2014-10-01 10:11	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2014-11-21 19:30 . 2014-10-01 10:11	93400	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2014-11-21 19:30 . 2014-10-01 10:11	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
2014-11-20 20:40 . 2014-11-20 20:40	--------	d-----w-	c:\programdata\Sony Mobile
2014-11-20 20:40 . 2014-11-20 20:40	--------	d-----w-	c:\program files (x86)\Sony Mobile
2014-11-20 20:29 . 2014-11-20 20:29	--------	d-----w-	c:\programdata\Sony
2014-11-19 05:15 . 2014-11-11 03:45	729600	----a-w-	c:\windows\system32\kerberos.dll
2014-11-19 05:15 . 2014-11-11 03:35	690688	----a-w-	c:\windows\system32\adtschema.dll
2014-11-19 05:15 . 2014-11-11 03:21	551424	----a-w-	c:\windows\SysWow64\kerberos.dll
2014-11-19 05:15 . 2014-11-11 03:13	690688	----a-w-	c:\windows\SysWow64\adtschema.dll
2014-11-19 05:15 . 2014-11-11 03:08	241152	----a-w-	c:\windows\system32\pku2u.dll
2014-11-19 05:15 . 2014-11-11 02:44	186880	----a-w-	c:\windows\SysWow64\pku2u.dll
2014-11-19 05:15 . 2014-11-11 03:45	463872	----a-w-	c:\windows\system32\certcli.dll
2014-11-19 05:15 . 2014-11-11 03:21	342528	----a-w-	c:\windows\SysWow64\certcli.dll
2014-11-18 20:46 . 2014-11-19 07:02	--------	d-----w-	c:\program files\Speccy
2014-11-18 20:45 . 2014-11-18 20:46	--------	d-----w-	c:\program files\Recuva
2014-11-18 20:44 . 2014-11-18 20:45	--------	d-----w-	c:\program files\Defraggler
2014-11-18 20:43 . 2014-11-18 20:44	--------	d-----w-	c:\program files\CCleaner
2014-11-17 18:04 . 2011-05-11 11:21	126520	----a-w-	c:\windows\system32\HPSIsvc.exe
2014-11-16 15:35 . 2002-02-15 12:38	647872	----a-w-	c:\windows\SysWow64\mscomct2.ocx
2014-11-16 15:33 . 2000-05-29 19:32	148992	----a-w-	c:\windows\SysWow64\mllink5.dll
2014-11-16 15:11 . 2014-11-16 15:46	--------	d---a-w-	C:\MATLAB6p5
2014-11-16 14:58 . 1999-01-25 10:30	170768	----a-w-	c:\windows\SysWow64\jit.dll
2014-11-16 14:58 . 1999-01-25 09:08	46352	----a-w-	c:\windows\setdebug.exe
2014-11-16 14:58 . 1999-01-25 09:05	139536	----a-w-	c:\windows\SysWow64\javaee.dll
2014-11-16 14:58 . 1999-01-25 08:47	7315	----a-w-	c:\windows\SysWow64\javasup.vxd
2014-11-16 14:58 . 1999-01-25 08:11	313856	----a-w-	c:\windows\SysWow64\dx3j.dll
2014-11-16 14:58 . 2014-11-16 14:58	--------	d-----w-	c:\windows\Java
2014-11-15 14:32 . 2013-10-08 17:21	67664	----a-w-	c:\windows\system32\vsocklib.dll
2014-11-15 14:32 . 2013-10-08 17:21	63568	----a-w-	c:\windows\SysWow64\vsocklib.dll
2014-11-15 14:32 . 2013-10-08 17:21	73296	----a-w-	c:\windows\system32\drivers\vsock.sys
2014-11-15 14:32 . 2014-10-29 14:01	64728	----a-w-	c:\windows\system32\drivers\vmx86.sys
2014-11-15 14:32 . 2014-10-29 14:00	33496	----a-w-	c:\windows\system32\drivers\VMkbd.sys
2014-11-15 14:31 . 2014-10-29 14:01	359128	----a-w-	c:\windows\SysWow64\vmnetdhcp.exe
2014-11-15 14:31 . 2014-10-29 14:01	437976	----a-w-	c:\windows\SysWow64\vmnat.exe
2014-11-15 14:31 . 2014-10-29 14:01	31448	----a-w-	c:\windows\system32\drivers\vmnetuserif.sys
2014-11-15 14:31 . 2014-10-29 14:01	931032	----a-w-	c:\windows\system32\vnetlib64.dll
2014-11-15 14:31 . 2014-02-27 17:40	54464	----a-w-	c:\windows\system32\drivers\hcmon.sys
2014-11-15 14:30 . 2014-02-27 17:40	38720	----a-w-	c:\windows\system32\drivers\vmusb.sys
2014-11-15 14:30 . 2014-11-15 14:30	--------	d-----w-	c:\program files\Common Files\VMware
2014-11-15 14:30 . 2014-11-15 14:30	--------	d-----w-	c:\program files (x86)\VMware
2014-11-15 14:30 . 2014-11-15 14:30	--------	d-----w-	c:\program files (x86)\Common Files\VMware
2014-11-15 06:48 . 2014-11-16 10:28	--------	d-----w-	c:\users\Maciej\AppData\Local\VMware
2014-11-15 06:48 . 2014-11-16 09:54	--------	d-----w-	c:\users\Maciej\AppData\Roaming\VMware
2014-11-12 05:56 . 2014-11-06 03:50	666624	----a-w-	c:\program files\Internet Explorer\DiagnosticsHub.DataWarehouse.dll
2014-11-12 05:55 . 2014-08-21 06:43	1882624	----a-w-	c:\windows\system32\msxml3.dll
2014-11-12 05:54 . 2014-10-18 02:05	861696	----a-w-	c:\windows\system32\oleaut32.dll
2014-11-12 05:54 . 2014-10-18 01:33	571904	----a-w-	c:\windows\SysWow64\oleaut32.dll
2014-11-10 16:49 . 2014-11-22 11:15	--------	d-----w-	c:\programdata\VMware
2014-11-09 19:39 . 2014-11-09 19:39	--------	d-----w-	c:\program files (x86)\PlayReady
2014-11-07 16:44 . 2014-11-09 19:41	--------	d-----w-	c:\programdata\ipla
2014-11-07 16:44 . 2014-11-09 19:35	--------	d-----w-	c:\users\Maciej\AppData\Roaming\ipla
2014-11-06 18:31 . 2014-11-07 16:44	--------	d-----w-	c:\programdata\RDRM
2014-11-06 18:30 . 2014-11-06 18:31	--------	d-----w-	c:\program files (x86)\ipla
2014-11-06 18:30 . 2014-11-06 18:30	1700352	----a-w-	c:\windows\SysWow64\gdiplus.dll
2014-11-01 18:11 . 2014-11-01 18:11	--------	d-----w-	c:\users\Maciej\AppData\Roaming\PTC
2014-11-01 18:11 . 2014-11-01 18:11	--------	d-----w-	c:\users\Maciej\AppData\Local\Mathsoft
2014-11-01 18:08 . 2014-11-01 18:08	--------	d-----w-	c:\programdata\PTC
2014-11-01 18:08 . 2014-11-01 18:08	--------	d-----w-	c:\program files (x86)\PTC
2014-11-01 18:06 . 2008-04-07 04:38	24416	----a-r-	c:\windows\system32\AdobePDFUI.dll
2014-11-01 18:04 . 2014-11-01 18:04	--------	d-----w-	c:\users\Maciej\AppData\Roaming\Mathsoft
2014-11-01 18:00 . 2014-11-01 18:00	--------	d-----w-	c:\program files (x86)\Mathcad
2014-11-01 15:09 . 2014-11-01 15:09	--------	d-----w-	c:\program files\Tracker Software
2014-10-30 20:37 . 2014-10-30 20:37	--------	d-----w-	c:\users\Maciej\AppData\Roaming\Subversion
2014-10-30 20:36 . 2014-10-30 20:36	--------	d-----w-	c:\users\Maciej\AppData\Roaming\Altium
2014-10-30 20:36 . 2014-10-30 20:36	--------	d-----w-	c:\users\Maciej\AppData\Local\Altium
2014-10-30 20:29 . 2013-12-15 10:25	1180976738	----a-w-	c:\programdata\_ProgramData2.exe
2014-10-30 20:26 . 2014-11-19 19:10	--------	d-----w-	c:\programdata\Altium
2014-10-30 20:18 . 2014-10-30 20:18	--------	d-----w-	c:\program files (x86)\Common Files\TeighaX 3.09
2014-10-30 19:03 . 2014-10-30 19:03	--------	d-----w-	c:\users\Maciej\.gstreamer-0.10
2014-10-30 19:03 . 2014-10-30 20:08	--------	d-----w-	c:\users\Maciej\AppData\Local\ChomikBox
2014-10-29 14:00 . 2014-10-29 14:00	80464	----a-w-	c:\windows\system32\vmnetbridge.dll
2014-10-29 14:00 . 2014-10-29 14:00	49232	----a-w-	c:\windows\system32\vnetinst.dll
2014-10-29 14:00 . 2014-10-29 14:00	46160	----a-w-	c:\windows\system32\drivers\vmnetbridge.sys
2014-10-29 14:00 . 2014-10-29 14:00	24656	----a-w-	c:\windows\system32\drivers\vmnet.sys
2014-10-29 14:00 . 2014-10-29 14:00	20560	----a-w-	c:\windows\system32\drivers\vmnetadapter.sys
2014-10-26 19:25 . 2009-09-04 16:29	235344	----a-w-	c:\windows\SysWow64\d3dx11_42.dll
2014-10-26 19:24 . 2006-09-28 15:05	3977496	----a-w-	c:\windows\system32\d3dx9_31.dll
2014-10-26 12:45 . 2014-10-26 12:45	--------	d-----w-	c:\users\Maciej\AppData\Local\Diagnostics
2014-10-25 10:58 . 2014-10-25 10:58	--------	d-----w-	c:\users\Default\AppData\Roaming\TuneUp Software
2014-10-23 20:22 . 2014-10-23 20:22	--------	d-----w-	c:\programdata\Installations
2014-10-23 11:33 . 2014-10-23 11:33	3151552	----a-w-	c:\program files\Common Files\Microsoft Shared\OFFICE15\1045\MSOINTL.DLL
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-11-18 22:22 . 2014-08-14 18:52	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-11-18 22:22 . 2014-08-14 18:52	701616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-11-12 16:22 . 2014-07-11 07:17	103374192	----a-w-	c:\windows\system32\MRT.exe
2014-10-10 08:02 . 2014-10-10 08:02	283064	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2014-09-25 02:08 . 2014-10-01 04:50	371712	----a-w-	c:\windows\system32\qdvd.dll
2014-09-25 01:40 . 2014-10-01 04:50	519680	----a-w-	c:\windows\SysWow64\qdvd.dll
2014-09-16 08:49 . 2014-09-16 08:50	111016	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2014-09-09 22:11 . 2014-09-24 05:04	2048	----a-w-	c:\windows\system32\tzres.dll
2014-09-09 21:47 . 2014-09-24 05:04	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2014-09-05 17:35 . 2014-09-05 17:35	18960	----a-w-	c:\windows\system32\drivers\LNonPnP.sys
2014-09-05 02:11 . 2014-10-17 04:17	6584320	----a-w-	c:\windows\system32\mstscax.dll
2014-09-05 01:52 . 2014-10-17 04:17	5703168	----a-w-	c:\windows\SysWow64\mstscax.dll
2014-09-04 05:23 . 2014-10-17 04:18	424448	----a-w-	c:\windows\system32\rastls.dll
2014-09-04 05:04 . 2014-10-17 04:18	372736	----a-w-	c:\windows\SysWow64\rastls.dll
2014-08-29 02:07 . 2014-10-17 04:18	3179520	----a-w-	c:\windows\system32\rdpcorets.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-10-14 22:31	1729752	----a-w-	c:\program files (x86)\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-10-14 22:31	1729752	----a-w-	c:\program files (x86)\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-10-14 22:31	1729752	----a-w-	c:\program files (x86)\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2014-10-15 468192]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-04-03 291608]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R0 gqos;gqos;c:\windows\system32\drivers\djfkmx.sys;c:\windows\SYSNATIVE\drivers\djfkmx.sys [x]
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys;c:\windows\SYSNATIVE\DRIVERS\vmci.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys;c:\windows\SYSNATIVE\Drivers\mvusbews.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TplinkUDSTcpBus;TplinkUDSTcpBus;c:\windows\system32\drivers\TplinkUDSTcpBus.sys;c:\windows\SYSNATIVE\drivers\TplinkUDSTcpBus.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe;c:\program files\Sony\VAIO Power Management\SPMService.exe [x]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 workfolderssvc;Foldery robocze;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R4 NIApplicationWebServer64;NI Application Web Server (64-bit);c:\program files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe;c:\program files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [x]
S0 iusb3hcs;Sterownik przełącznika kontrolera hosta Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 vsock;vSockets Driver;c:\windows\system32\drivers\vsock.sys;c:\windows\SYSNATIVE\drivers\vsock.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe;c:\windows\SYSNATIVE\HPSIsvc.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 NIApplicationWebServer;NI Application Web Server;c:\program files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe;c:\program files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [x]
S2 nimDNSResponder;NI mDNS Responder Service;c:\program files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe;c:\program files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [x]
S2 NISystemWebServer;NI System Web Server;c:\program files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe;c:\program files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [x]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [x]
S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe;c:\program files\Sony\VAIO Smart Network\VSNService.exe [x]
S3 iusb3hub;Sterownik koncentratora Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Sterownik kontrolera hosta Intel(R) USB 3.0 eXtensible;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys;c:\windows\SYSNATIVE\DRIVERS\LEqdUsb.Sys [x]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys;c:\windows\SYSNATIVE\DRIVERS\LHidEqd.Sys [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys;c:\windows\SYSNATIVE\DRIVERS\SFEP.sys [x]
S3 TPLINKUDSMBus;TPLINKUDSMBus;c:\windows\system32\drivers\TplinkUDSMBus.sys;c:\windows\SYSNATIVE\drivers\TplinkUDSMBus.sys [x]
.
.
Zawartość folderu 'Zaplanowane zadania'
.
2014-11-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-14 22:22]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-10-14 22:27	2334928	----a-w-	c:\program files\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-10-14 22:27	2334928	----a-w-	c:\program files\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-10-14 22:27	2334928	----a-w-	c:\program files\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2014-01-29 171992]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2014-01-29 399832]
"Persistence"="c:\windows\system32\igfxpers.exe" [2014-01-29 442328]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2012-04-03 1156712]
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&ksportuj do programu Microsoft Excel - c:\program files\MICROS~1\Office15\EXCEL.EXE/3000
IE: Wyślij &do programu OneNote - c:\program files\MICROS~1\Office15\ONBttnIE.dll/105
LSP: %windir%\system32\vsocklib.dll
TCP: DhcpNameServer = 192.168.2.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Maciej\AppData\Roaming\Mozilla\Firefox\Profiles\zu2ltp92.default\
FF - prefs.js: browser.startup.homepage - place:sort=8&maxResults=10
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
AddRemove-SecureW2 EAP Suite - c:\program files (x86)\SecureW2\Uninstall.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_223_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_223_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_223_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_223_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_223.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_223.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_223.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_223.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2014-11-22  12:31:12
ComboFix-quarantined-files.txt  2014-11-22 11:31
.
Przed: 198 781 046 784 bajtów wolnych
Po: 198 302 420 992 bajtów wolnych
.
- - End Of File - - 5F53F86C6695456FF1C705E8F8CC23A7