ComboFix 15-05-09.01 - Tomek 2015-05-13   6:50.2.2 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1250.48.1045.18.8190.6734 [GMT 2:00]
Uruchomiony z: c:\users\Tomek\Downloads\ComboFix.exe
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Utworzono nowy punkt przywracania
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\DEBUG.log
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2015-04-13 do 2015-05-13  )))))))))))))))))))))))))))))))
.
.
2015-05-13 04:55 . 2015-05-13 04:55	--------	d-----w-	c:\users\Default\AppData\Local\temp
2015-05-13 04:40 . 2015-05-13 04:40	280618	----a-w-	c:\windows\wmetamov.exe
2015-05-13 04:40 . 2015-05-13 04:40	--------	d-----w-	c:\programdata\abekelataheficij
2015-05-08 21:34 . 2015-05-08 21:34	--------	d-----w-	c:\users\Tomek\AppData\Roaming\MPC-HC
2015-05-08 21:33 . 2015-05-08 21:33	--------	d-----w-	c:\program files (x86)\K-Lite Codec Pack
2015-05-02 15:23 . 2015-05-02 15:23	--------	d-----w-	c:\users\Tomek\AppData\Roaming\OpenFM
2015-05-02 15:06 . 2015-05-13 04:45	--------	d-s---w-	c:\users\Tomek\GG dysk
2015-05-02 15:05 . 2015-05-13 04:21	--------	d-----w-	c:\users\Tomek\AppData\Roaming\GG
2015-05-02 15:05 . 2015-05-02 15:06	--------	d-----w-	c:\users\Tomek\AppData\Local\GG
2015-05-02 15:05 . 2015-05-08 12:31	--------	d-----w-	c:\users\Tomek\AppData\Local\OpenFM
2015-05-02 12:42 . 2015-05-02 12:42	--------	d-----w-	c:\program files (x86)\Digital Image Recovery
2015-05-02 12:41 . 2015-05-02 12:43	--------	d-----w-	c:\users\Tomek\AppData\Roaming\Opera Software
2015-05-02 12:41 . 2015-05-02 12:43	--------	d-----w-	c:\users\Tomek\AppData\Local\Opera Software
2015-05-02 12:40 . 2015-05-02 12:43	--------	d-----w-	c:\program files (x86)\Opera
2015-04-28 20:26 . 2015-04-28 20:26	--------	d-----w-	c:\users\Tomek\AppData\Local\ElevatedDiagnostics
2015-04-24 21:29 . 2015-04-24 21:29	--------	d-----w-	c:\users\Tomek\AppData\Local\Adobe
2015-04-24 20:37 . 2015-04-24 20:37	--------	d-----w-	c:\program files\EaseUS
2015-04-24 20:23 . 2015-04-24 20:23	--------	d-----w-	c:\program files (x86)\Recover Files
2015-04-23 21:00 . 2015-04-23 21:00	--------	d-----w-	c:\program files\LSoft Technologies
2015-04-23 20:44 . 2015-04-23 20:44	--------	d-----w-	c:\program files (x86)\AntiTwin
2015-04-23 19:05 . 2015-04-29 18:44	--------	d-----w-	c:\programdata\AVG Security Toolbar
2015-04-23 19:04 . 2015-04-29 18:51	--------	d-----w-	c:\program files (x86)\AVG Web TuneUp
2015-04-23 18:42 . 2015-04-24 19:49	--------	d-----w-	c:\program files\Recuva
2015-04-23 18:23 . 2015-04-23 18:23	--------	d-----w-	c:\program files (x86)\MiP Data Recovery
2015-04-23 14:07 . 2015-04-23 14:07	--------	d-----w-	c:\program files (x86)\LSoft Technologies
2015-04-22 14:20 . 2015-04-23 12:29	--------	d-----w-	c:\users\Tomek\AppData\Roaming\Winamp
2015-04-22 14:20 . 2015-04-22 14:20	--------	d-----w-	c:\program files (x86)\Winamp
2015-04-17 21:54 . 2015-05-12 12:13	--------	d-----w-	C:\FRST
2015-04-17 21:53 . 2015-04-17 21:53	--------	d-----w-	C:\RegBackup
2015-04-16 23:06 . 2015-04-16 23:06	--------	d-----w-	c:\windows\system32\log
2015-04-16 22:46 . 2015-04-16 22:46	--------	d-----w-	c:\program files (x86)\Common Files\Java
2015-04-16 22:37 . 2015-04-21 04:41	--------	d-----w-	c:\programdata\Malwarebytes
2015-04-16 22:37 . 2015-04-16 22:59	--------	d-----w-	c:\programdata\Malwarebytes' Anti-Malware (portable)
2015-04-15 23:11 . 2007-10-22 01:37	17928	----a-w-	c:\windows\SysWow64\X3DAudio1_2.dll
2015-04-15 22:45 . 2015-04-24 08:52	--------	d-----w-	c:\program files (x86)\Extensity
2015-04-15 22:25 . 2015-04-15 22:25	--------	d-----w-	c:\users\Tomek\AppData\Local\NeoSmart_Technologies
2015-04-15 22:23 . 2015-04-15 22:23	--------	d-----w-	c:\program files (x86)\NeoSmart Technologies
2015-04-15 04:49 . 2015-03-04 04:55	367552	----a-w-	c:\windows\system32\clfs.sys
2015-04-15 04:49 . 2015-03-04 04:41	79360	----a-w-	c:\windows\system32\clfsw32.dll
2015-04-15 04:49 . 2015-03-04 04:10	58880	----a-w-	c:\windows\SysWow64\clfsw32.dll
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-04-16 22:46 . 2015-03-28 00:19	98216	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-04-16 22:29 . 2015-03-18 22:39	20544	----a-w-	c:\windows\gdrv.sys
2015-04-15 21:10 . 2015-03-17 16:05	778416	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2015-04-15 21:10 . 2015-03-17 16:05	142512	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-04-15 09:44 . 2015-04-01 20:57	128913832	----a-w-	c:\windows\system32\MRT.exe
2015-03-30 22:06 . 2015-03-30 22:06	381608	----a-w-	c:\windows\system32\drivers\sptd.sys
2015-03-30 21:36 . 2015-03-30 21:35	30352	----a-w-	c:\windows\system32\drivers\dtlitescsibus.sys
2015-03-28 03:44 . 2015-04-03 13:22	1316000	----a-w-	c:\windows\SysWow64\nvspcap.dll
2015-03-28 03:44 . 2015-04-03 13:22	1316000	----a-w-	c:\windows\SysWow64\nvspbridge.dll
2015-03-28 03:43 . 2015-04-03 13:22	1756424	----a-w-	c:\windows\system32\nvspbridge64.dll
2015-03-28 03:43 . 2015-04-03 13:22	1570672	----a-w-	c:\windows\system32\nvspcap64.dll
2015-03-23 03:25 . 2015-04-09 19:14	726528	----a-w-	c:\windows\system32\generaltel.dll
2015-03-23 03:25 . 2015-04-09 19:14	769536	----a-w-	c:\windows\system32\invagent.dll
2015-03-23 03:24 . 2015-04-09 19:14	419840	----a-w-	c:\windows\system32\devinv.dll
2015-03-23 03:24 . 2015-04-09 19:14	957952	----a-w-	c:\windows\system32\appraiser.dll
2015-03-23 03:24 . 2015-04-09 19:14	30720	----a-w-	c:\windows\system32\acmigration.dll
2015-03-23 03:24 . 2015-04-09 19:14	227328	----a-w-	c:\windows\system32\aepdu.dll
2015-03-23 03:24 . 2015-04-09 19:14	192000	----a-w-	c:\windows\system32\aepic.dll
2015-03-23 03:17 . 2015-04-09 19:14	1111552	----a-w-	c:\windows\system32\aeinv.dll
2015-03-18 22:48 . 2015-03-18 22:48	525792	----a-w-	c:\windows\DIFxAPI.dll
2015-03-18 22:48 . 2015-03-18 22:48	315392	----a-w-	c:\windows\HideWin.exe
2015-03-17 19:05 . 2015-03-17 19:05	194048	----a-w-	c:\windows\SysWow64\elshyph.dll
2015-03-17 19:05 . 2015-03-17 19:05	645120	----a-w-	c:\windows\SysWow64\jsIntl.dll
2015-03-17 19:05 . 2015-03-17 19:05	235008	----a-w-	c:\windows\system32\elshyph.dll
2015-03-17 19:05 . 2015-03-17 19:05	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2015-03-17 19:05 . 2015-03-17 19:05	182272	----a-w-	c:\windows\SysWow64\msls31.dll
2015-03-17 19:05 . 2015-03-17 19:05	62464	----a-w-	c:\windows\SysWow64\tdc.ocx
2015-03-17 19:05 . 2015-03-17 19:05	24576	----a-w-	c:\windows\SysWow64\licmgr10.dll
2015-03-17 19:05 . 2015-03-17 19:05	74240	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2015-03-17 19:05 . 2015-03-17 19:05	36352	----a-w-	c:\windows\SysWow64\imgutil.dll
2015-03-17 19:05 . 2015-03-17 19:05	151552	----a-w-	c:\windows\SysWow64\iexpress.exe
2015-03-17 19:05 . 2015-03-17 19:05	139264	----a-w-	c:\windows\SysWow64\wextract.exe
2015-03-17 19:05 . 2015-03-17 19:05	13312	----a-w-	c:\windows\SysWow64\mshta.exe
2015-03-17 19:05 . 2015-03-17 19:05	111616	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2015-03-17 19:05 . 2015-03-17 19:05	942592	----a-w-	c:\windows\system32\jsIntl.dll
2015-03-17 19:05 . 2015-03-17 19:05	90112	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2015-03-17 19:05 . 2015-03-17 19:05	86016	----a-w-	c:\windows\SysWow64\iesysprep.dll
2015-03-17 19:05 . 2015-03-17 19:05	86016	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2015-03-17 19:05 . 2015-03-17 19:05	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2015-03-17 19:05 . 2015-03-17 19:05	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2015-03-17 19:05 . 2015-03-17 19:05	48640	----a-w-	c:\windows\system32\mshtmler.dll
2015-03-17 19:05 . 2015-03-17 19:05	247808	----a-w-	c:\windows\system32\msls31.dll
2015-03-17 19:05 . 2015-03-17 19:05	13312	----a-w-	c:\windows\system32\msfeedssync.exe
2015-03-17 19:05 . 2015-03-17 19:05	131072	----a-w-	c:\windows\system32\IEAdvpack.dll
2015-03-17 19:05 . 2015-03-17 19:05	105984	----a-w-	c:\windows\system32\iesysprep.dll
2015-03-17 19:05 . 2015-03-17 19:05	81408	----a-w-	c:\windows\system32\icardie.dll
2015-03-17 19:05 . 2015-03-17 19:05	77312	----a-w-	c:\windows\system32\tdc.ocx
2015-03-17 19:05 . 2015-03-17 19:05	616104	----a-w-	c:\windows\system32\ieapfltr.dat
2015-03-17 19:05 . 2015-03-17 19:05	235520	----a-w-	c:\windows\system32\url.dll
2015-03-17 19:05 . 2015-03-17 19:05	774144	----a-w-	c:\windows\system32\jscript.dll
2015-03-17 19:05 . 2015-03-17 19:05	62464	----a-w-	c:\windows\system32\pngfilt.dll
2015-03-17 19:05 . 2015-03-17 19:05	48128	----a-w-	c:\windows\system32\imgutil.dll
2015-03-17 19:05 . 2015-03-17 19:05	30208	----a-w-	c:\windows\system32\licmgr10.dll
2015-03-17 19:05 . 2015-03-17 19:05	243200	----a-w-	c:\windows\system32\webcheck.dll
2015-03-17 19:05 . 2015-03-17 19:05	167424	----a-w-	c:\windows\system32\iexpress.exe
2015-03-17 19:05 . 2015-03-17 19:05	147968	----a-w-	c:\windows\system32\occache.dll
2015-03-17 19:05 . 2015-03-17 19:05	143872	----a-w-	c:\windows\system32\wextract.exe
2015-03-17 19:05 . 2015-03-17 19:05	13824	----a-w-	c:\windows\system32\mshta.exe
2015-03-17 19:05 . 2015-03-17 19:05	135680	----a-w-	c:\windows\system32\iepeers.dll
2015-03-17 19:05 . 2015-03-17 19:05	101376	----a-w-	c:\windows\system32\inseng.dll
2015-03-17 18:56 . 2015-03-17 18:56	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	9728	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	522752	----a-w-	c:\windows\system32\XpsGdiConverter.dll
2015-03-17 18:56 . 2015-03-17 18:56	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	4096	---ha-w-	c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	364544	----a-w-	c:\windows\SysWow64\XpsGdiConverter.dll
2015-03-17 18:56 . 2015-03-17 18:56	363008	----a-w-	c:\windows\system32\dxgi.dll
2015-03-17 18:56 . 2015-03-17 18:56	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	3584	---ha-w-	c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	3072	---ha-w-	c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	3072	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	2560	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	2560	---ha-w-	c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	249856	----a-w-	c:\windows\SysWow64\d3d10_1core.dll
2015-03-17 18:56 . 2015-03-17 18:56	220160	----a-w-	c:\windows\SysWow64\d3d10core.dll
2015-03-17 18:56 . 2015-03-17 18:56	207872	----a-w-	c:\windows\SysWow64\WindowsCodecsExt.dll
2015-03-17 18:56 . 2015-03-17 18:56	1682432	----a-w-	c:\windows\system32\XpsPrint.dll
2015-03-17 18:56 . 2015-03-17 18:56	1643520	----a-w-	c:\windows\system32\DWrite.dll
2015-03-17 18:56 . 2015-03-17 18:56	161792	----a-w-	c:\windows\SysWow64\d3d10_1.dll
2015-03-17 18:56 . 2015-03-17 18:56	1247744	----a-w-	c:\windows\SysWow64\DWrite.dll
2015-03-17 18:56 . 2015-03-17 18:56	1175552	----a-w-	c:\windows\system32\FntCache.dll
2015-03-17 18:56 . 2015-03-17 18:56	1158144	----a-w-	c:\windows\SysWow64\XpsPrint.dll
2015-03-17 18:56 . 2015-03-17 18:56	1080832	----a-w-	c:\windows\SysWow64\d3d10.dll
2015-03-17 18:56 . 2015-03-17 18:56	10752	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	10752	---ha-w-	c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-03-17 18:56 . 2015-03-17 18:56	648192	----a-w-	c:\windows\system32\d3d10level9.dll
2015-03-17 18:56 . 2015-03-17 18:56	604160	----a-w-	c:\windows\SysWow64\d3d10level9.dll
2015-03-17 18:56 . 2015-03-17 18:56	333312	----a-w-	c:\windows\system32\d3d10_1core.dll
2015-03-17 18:56 . 2015-03-17 18:56	296960	----a-w-	c:\windows\system32\d3d10core.dll
2015-03-17 18:56 . 2015-03-17 18:56	293376	----a-w-	c:\windows\SysWow64\dxgi.dll
2015-03-17 18:56 . 2015-03-17 18:56	245248	----a-w-	c:\windows\system32\WindowsCodecsExt.dll
2015-03-17 18:56 . 2015-03-17 18:56	221184	----a-w-	c:\windows\system32\UIAnimation.dll
2015-03-17 18:56 . 2015-03-17 18:56	194560	----a-w-	c:\windows\system32\d3d10_1.dll
2015-03-17 18:56 . 2015-03-17 18:56	187392	----a-w-	c:\windows\SysWow64\UIAnimation.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2015-04-23 19:04	2424856	------w-	c:\program files (x86)\AVG Web TuneUp\4.1.0.411\AVG Web TuneUp.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-03-18 12:11	1729752	----a-w-	c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-03-18 12:11	1729752	----a-w-	c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-03-18 12:11	1729752	----a-w-	c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"EaseUS EPM tray"="e:\easeus partition master 10.2\bin\EpmNews.exe" [2014-11-18 2089056]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2015-04-10 335232]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R1 lwnfd_1_10_0_14;lwnfd_1_10_0_14;c:\windows\system32\drivers\lwnfd_1_10_0_14.sys;c:\windows\SYSNATIVE\drivers\lwnfd_1_10_0_14.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 Huawei E3372;Huawei E3372;c:\programdata\MobileBrServ\mbbservice.exe;c:\programdata\MobileBrServ\mbbservice.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys;c:\windows\SYSNATIVE\epmntdrv.sys [x]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys;c:\windows\SYSNATIVE\EuGdiDrv.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 xlkfs;xlkfs;c:\windows\system32\DRIVERS\xlkfs.sys;c:\windows\SYSNATIVE\DRIVERS\xlkfs.sys [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
.
.
Zawartość folderu 'Zaplanowane zadania'
.
2015-05-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-17 21:10]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-03-18 12:08	2334928	----a-w-	c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-03-18 12:08	2334928	----a-w-	c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-03-18 12:08	2334928	----a-w-	c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RAVCpl64.exe" [2008-06-27 6453760]
"Skytel"="Skytel.exe" [2008-06-25 1826816]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-03-28 2673296]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-03-28 1570672]
"etanidow"="c:\windows\wmetamov.exe" [2015-05-13 280618]
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: Wyślij &do programu OneNote - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.8.1 192.168.8.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\c922j86x.default-1430570694079\
FF - prefs.js: browser.startup.homepage - hxxp://www.wp.pl/
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2015-05-13  06:58:14
ComboFix-quarantined-files.txt  2015-05-13 04:58
.
Przed: 34 512 703 488 bajtów wolnych
Po: 34 449 969 152 bajtów wolnych
.
- - End Of File - - 1B948B74978342B922BCDC1CAA7EBE4E
A36C5E4F47E84449FF07ED3517B43A31