ComboFix 13-12-17.02 - Arcadius 2013-12-18 1:46.3.2 - x86 Microsoft Windows 7 Professional 6.1.7601.1.1250.48.1045.18.2037.954 [GMT 1:00] Uruchomiony z: c:\users\Arcadius\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F} SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((( Pliki utworzone od 2013-11-18 do 2013-12-18 ))))))))))))))))))))))))))))))) . . 2013-12-18 00:58 . 2013-12-18 00:58 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-12-17 20:13 . 2013-12-17 20:13 62576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{92DCE636-B3FD-4F84-8E73-F33E90439E61}\offreg.dll 2013-12-17 20:13 . 2013-12-17 20:13 40392 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{92DCE636-B3FD-4F84-8E73-F33E90439E61}\MpKsl71af96bb.sys 2013-12-17 20:11 . 2013-12-03 17:57 7760024 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{92DCE636-B3FD-4F84-8E73-F33E90439E61}\mpengine.dll 2013-12-17 12:13 . 2013-12-17 12:12 719224 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AECF6F64-2F44-403F-BD04-AB61F1C3EEA2}\gapaengine.dll 2013-12-17 12:13 . 2013-12-03 17:57 7760024 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2013-12-17 12:10 . 2013-12-17 12:10 -------- d-----w- c:\program files\Microsoft Security Client 2013-12-10 23:55 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\system32\wmploc.DLL 2013-12-10 23:55 . 2013-05-10 03:48 164864 ----a-w- c:\program files\Windows Media Player\wmplayer.exe 2013-12-10 23:51 . 2013-10-12 02:04 121856 ----a-w- c:\windows\system32\wshom.ocx 2013-12-10 23:51 . 2013-10-12 02:03 163840 ----a-w- c:\windows\system32\scrrun.dll 2013-12-10 23:51 . 2013-10-12 01:15 141824 ----a-w- c:\windows\system32\wscript.exe 2013-12-10 23:51 . 2013-10-12 01:15 126976 ----a-w- c:\windows\system32\cscript.exe 2013-12-10 23:51 . 2013-11-12 02:07 2048 ----a-w- c:\windows\system32\tzres.dll 2013-12-10 23:51 . 2013-10-30 01:27 2349056 ----a-w- c:\windows\system32\win32k.sys 2013-12-10 23:51 . 2013-10-19 01:36 159232 ----a-w- c:\windows\system32\imagehlp.dll 2013-12-10 23:51 . 2013-10-30 02:19 301568 ----a-w- c:\windows\system32\msieftp.dll 2013-12-10 23:51 . 2013-10-04 01:49 81408 ----a-w- c:\windows\system32\drivers\drmk.sys 2013-12-10 23:51 . 2013-10-04 01:17 177152 ----a-w- c:\windows\system32\drivers\portcls.sys 2013-12-10 23:50 . 2013-11-23 18:26 417792 ----a-w- c:\windows\system32\WMPhoto.dll 2013-12-10 17:49 . 2013-12-10 17:49 -------- d-----w- c:\program files\Ganymede 2013-12-10 13:39 . 2013-12-17 10:29 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2013-12-10 12:37 . 2013-12-10 12:49 -------- d-----w- c:\program files\jv16 PowerTools 2014 2013-12-09 12:00 . 2013-12-09 12:00 -------- d-----w- c:\windows\pl 2013-12-09 11:59 . 2013-12-09 11:59 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition 2013-12-09 11:57 . 2013-12-09 11:58 -------- d-----w- c:\program files\Windows Live 2013-12-09 11:51 . 2013-12-09 11:51 -------- d-----w- c:\program files\Microsoft SkyDrive 2013-12-09 11:49 . 2013-12-09 11:49 -------- d-----w- c:\programdata\Microsoft SkyDrive 2013-12-09 11:47 . 2013-12-09 11:47 -------- d-----w- c:\program files\Common Files\Windows Live 2013-12-08 22:38 . 2008-07-10 10:01 467984 ----a-w- c:\windows\system32\d3dx10_39.dll 2013-12-08 22:36 . 2013-12-08 22:37 -------- d--h--w- c:\windows\msdownld.tmp 2013-12-06 15:04 . 2013-12-06 15:04 -------- d-----w- c:\program files\MSECache 2013-12-06 13:07 . 2013-12-11 18:19 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-12-06 13:07 . 2013-12-11 18:19 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-12-05 22:12 . 2013-12-05 22:12 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help 2013-12-05 21:38 . 2013-12-06 08:49 -------- d-----w- c:\windows\AutoKMS 2013-12-05 21:04 . 2013-12-05 21:04 -------- d-----w- c:\windows\PCHEALTH 2013-12-05 20:59 . 2013-12-05 20:59 -------- d-----w- c:\program files\Microsoft Analysis Services 2013-12-05 20:58 . 2013-12-11 00:03 -------- d-----w- c:\programdata\Microsoft Help 2013-12-05 20:57 . 2013-12-05 20:57 -------- d-----r- C:\MSOCache 2013-12-05 19:07 . 2013-12-05 19:07 -------- d-----w- c:\program files\Common Files\Adobe 2013-12-05 17:12 . 2013-12-11 00:27 -------- d-----w- c:\programdata\Norton 2013-12-05 17:07 . 2013-12-05 17:07 -------- d-----w- c:\program files\CCleaner 2013-12-05 17:05 . 2013-12-13 11:35 -------- d-----w- C:\Downloads 2013-12-05 17:04 . 2013-12-05 17:05 -------- d-----w- c:\program files\BitComet 2013-12-05 17:02 . 2013-12-05 17:02 -------- d-----w- c:\program files\Common Files\Skype 2013-12-05 17:02 . 2013-12-05 17:02 -------- d-----r- c:\program files\Skype 2013-12-05 17:02 . 2013-12-05 17:03 -------- d-----w- c:\programdata\Skype 2013-12-05 16:51 . 2013-12-05 16:51 -------- d-----w- c:\program files\PowerISO 2013-12-05 16:33 . 2013-12-05 16:34 -------- d-----w- c:\program files\Google 2013-12-05 15:01 . 2012-05-04 09:59 514560 ----a-w- c:\windows\system32\qdvd.dll 2013-12-05 14:40 . 2013-12-05 14:40 -------- d-----w- c:\windows\Migration 2013-12-05 14:28 . 2013-09-04 01:14 76288 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2013-12-05 14:28 . 2013-09-04 01:14 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys 2013-12-05 14:28 . 2013-09-04 01:15 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys 2013-12-05 14:28 . 2013-09-04 01:14 284672 ----a-w- c:\windows\system32\drivers\usbport.sys 2013-12-05 14:28 . 2013-09-04 01:14 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys 2013-12-05 14:28 . 2013-09-04 01:14 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys 2013-12-05 14:28 . 2013-09-04 01:14 6016 ----a-w- c:\windows\system32\drivers\usbd.sys 2013-12-05 14:15 . 2012-02-11 05:37 317440 ----a-w- c:\windows\system32\spoolsv.exe 2013-12-05 14:15 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\explorer.exe 2013-12-05 14:15 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll 2013-12-05 11:34 . 2013-12-05 11:34 49152 ----a-w- c:\windows\system32\taskhost.exe 2013-12-05 11:30 . 2013-12-05 11:30 1505280 ----a-w- c:\windows\system32\d3d11.dll 2013-12-05 11:24 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe 2013-12-05 11:21 . 2013-08-01 11:03 729024 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2013-12-05 11:21 . 2013-04-10 05:18 218984 ----a-w- c:\windows\system32\drivers\dxgmms1.sys 2013-12-05 11:21 . 2013-04-10 05:03 936448 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll 2013-12-05 11:21 . 2013-05-10 03:20 24576 ----a-w- c:\windows\system32\cryptdlg.dll 2013-12-05 11:21 . 2013-09-14 00:48 338944 ----a-w- c:\windows\system32\drivers\afd.sys 2013-12-05 11:21 . 2013-09-08 02:07 1294272 ----a-w- c:\windows\system32\drivers\tcpip.sys 2013-12-05 11:21 . 2013-09-08 02:03 231424 ----a-w- c:\windows\system32\mswsock.dll 2013-12-05 11:21 . 2013-05-13 03:08 903168 ----a-w- c:\windows\system32\certutil.exe 2013-12-05 11:21 . 2013-05-13 03:08 43008 ----a-w- c:\windows\system32\certenc.dll 2013-12-05 11:19 . 2013-03-19 04:53 186368 ----a-w- c:\windows\system32\wwansvc.dll 2013-12-05 11:18 . 2013-06-25 22:56 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2013-12-05 11:18 . 2013-07-12 10:08 146816 ----a-w- c:\windows\system32\drivers\usbvideo.sys 2013-12-05 11:18 . 2013-07-12 10:07 86016 ----a-w- c:\windows\system32\drivers\usbcir.sys 2013-12-05 11:17 . 2013-05-27 04:57 680960 ----a-w- c:\program files\Windows Defender\MpSvc.dll 2013-12-05 11:17 . 2013-05-27 04:57 392704 ----a-w- c:\program files\Windows Defender\MpClient.dll 2013-12-05 11:17 . 2013-05-27 04:57 224768 ----a-w- c:\program files\Windows Defender\MpCommu.dll 2013-12-05 10:59 . 2013-06-15 03:38 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys 2013-12-05 10:56 . 2013-02-27 05:05 101720 ----a-w- c:\windows\system32\consent.exe 2013-12-05 10:56 . 2013-02-27 04:49 47104 ----a-w- c:\windows\system32\appinfo.dll 2013-12-05 09:18 . 2013-12-05 09:18 -------- d-----w- c:\windows\system32\SPReview 2013-12-05 09:17 . 2013-12-05 09:17 -------- d-----w- c:\windows\system32\EventProviders 2013-12-05 08:42 . 2010-11-05 01:58 1130824 ----a-w- c:\windows\system32\dfshim.dll 2013-12-05 08:42 . 2010-11-20 12:19 954752 ----a-w- c:\windows\system32\mfc40.dll 2013-12-05 08:42 . 2010-11-20 12:19 954288 ----a-w- c:\windows\system32\mfc40u.dll 2013-12-05 08:40 . 2010-11-20 12:21 1063936 ----a-w- c:\windows\system32\werconcpl.dll 2013-12-05 08:39 . 2010-11-20 12:20 4278272 ----a-w- c:\program files\DVD Maker\OmdProject.dll 2013-12-05 08:38 . 2010-11-20 12:21 21504 ----a-w- c:\windows\system32\rdprefdrvapi.dll 2013-12-05 08:37 . 2010-11-20 12:21 363008 ----a-w- c:\windows\system32\wbemcomn.dll 2013-12-05 08:37 . 2010-11-20 12:19 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll 2013-12-05 07:42 . 2013-12-05 10:30 -------- d-----w- c:\windows\system32\drivers\pl-PL 2013-12-05 07:42 . 2013-12-05 07:42 -------- d-----w- c:\windows\system32\XPSViewer 2013-12-05 07:42 . 2013-12-05 07:42 -------- d-----w- c:\windows\system32\drivers\UMDF\pl-PL 2013-12-05 07:42 . 2013-12-05 07:42 -------- d-----w- c:\windows\pl-PL 2013-12-05 07:42 . 2013-12-05 14:05 -------- d-----w- c:\windows\system32\wbem\pl-PL 2013-12-05 07:42 . 2013-12-05 07:42 -------- d-----w- c:\windows\system32\pl 2013-12-05 07:41 . 2013-12-05 07:41 3584 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\pl-PL\LXKPTPRC.DLL.mui 2013-12-05 07:39 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\system32\esent.dll 2013-12-05 07:39 . 2011-03-11 05:39 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys 2013-12-05 07:39 . 2011-03-11 05:39 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys 2013-12-05 07:39 . 2011-03-11 05:39 148864 ----a-w- c:\windows\system32\drivers\storport.sys 2013-12-05 07:39 . 2011-03-11 05:38 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys 2013-12-05 07:39 . 2011-03-11 05:38 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys 2013-12-05 07:39 . 2011-03-11 05:38 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys 2013-12-05 07:39 . 2011-03-11 05:31 74240 ----a-w- c:\windows\system32\fsutil.exe 2013-12-05 07:35 . 2013-12-05 07:35 -------- d-----w- c:\windows\NAPP_Dism_Log 2013-12-05 03:19 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2013-12-05 03:19 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll 2013-12-05 03:18 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys 2013-12-05 03:18 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys 2013-12-05 03:18 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll 2013-12-05 03:18 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll 2013-12-05 03:17 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe 2013-12-05 03:17 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll 2013-12-05 03:17 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll 2013-12-05 03:02 . 2013-12-11 00:01 -------- d-----w- c:\windows\system32\MRT 2013-12-05 02:59 . 2011-03-03 05:38 132608 ----a-w- c:\windows\system32\dnsrslvr.dll 2013-12-05 02:59 . 2011-03-03 05:36 28672 ----a-w- c:\windows\system32\dnscacheugc.exe 2013-12-05 02:59 . 2012-03-17 07:27 56176 ----a-w- c:\windows\system32\drivers\partmgr.sys 2013-12-05 02:55 . 2012-06-06 05:05 352256 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll 2013-12-05 02:55 . 2012-06-06 05:05 1019904 ----a-w- c:\program files\Common Files\System\ado\msado15.dll . . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-12-09 11:57 . 2012-07-17 13:37 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-12-05 10:20 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll 2013-12-05 07:41 . 2013-12-05 07:41 2560 ----a-w- c:\windows\system32\drivers\pl-PL\usbrpm.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 17408 ----a-w- c:\windows\system32\drivers\pl-PL\fvevol.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 2560 ----a-w- c:\windows\system32\drivers\UMDF\pl-PL\WpdMtpDr.dll.mui 2013-12-05 07:41 . 2013-12-05 07:41 2560 ----a-w- c:\windows\system32\drivers\pl-PL\qwavedrv.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 16896 ----a-w- c:\windows\system32\drivers\pl-PL\nwifi.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 9728 ----a-w- c:\windows\system32\drivers\pl-PL\battc.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 6656 ----a-w- c:\windows\system32\drivers\pl-PL\IPMIDrv.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 5632 ----a-w- c:\windows\system32\drivers\pl-PL\bcm4sbxp.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 5120 ----a-w- c:\windows\system32\drivers\pl-PL\e100b325.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 4096 ----a-w- c:\windows\system32\drivers\pl-PL\wacompen.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 4096 ----a-w- c:\windows\system32\drivers\pl-PL\tpm.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 3584 ----a-w- c:\windows\system32\drivers\pl-PL\parport.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 3584 ----a-w- c:\windows\system32\drivers\pl-PL\ataport.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 33280 ----a-w- c:\windows\system32\drivers\pl-PL\yk62x86.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 3072 ----a-w- c:\windows\system32\drivers\pl-PL\umbus.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 3072 ----a-w- c:\windows\system32\drivers\pl-PL\getn62.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 3072 ----a-w- c:\windows\system32\drivers\pl-PL\GAGP30KX.SYS.mui 2013-12-05 07:41 . 2013-12-05 07:41 26112 ----a-w- c:\windows\system32\drivers\pl-PL\volsnap.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 2560 ----a-w- c:\windows\system32\drivers\pl-PL\UAGP35.SYS.mui 2013-12-05 07:41 . 2013-12-05 07:41 2560 ----a-w- c:\windows\system32\drivers\pl-PL\parvdm.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 2560 ----a-w- c:\windows\system32\drivers\pl-PL\MTConfig.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 2560 ----a-w- c:\windows\system32\drivers\pl-PL\disk.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 25088 ----a-w- c:\windows\system32\drivers\pl-PL\usbport.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 22016 ----a-w- c:\windows\system32\drivers\pl-PL\e1y6032.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 22016 ----a-w- c:\windows\system32\drivers\pl-PL\e1e6032.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 20992 ----a-w- c:\windows\system32\drivers\pl-PL\viac7.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 20992 ----a-w- c:\windows\system32\drivers\pl-PL\processr.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 20992 ----a-w- c:\windows\system32\drivers\pl-PL\intelppm.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 20992 ----a-w- c:\windows\system32\drivers\pl-PL\amdppm.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 20992 ----a-w- c:\windows\system32\drivers\pl-PL\amdk8.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 2048 ----a-w- c:\windows\system32\drivers\pl-PL\wd.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 2048 ----a-w- c:\windows\system32\drivers\pl-PL\cdrom.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 2048 ----a-w- c:\windows\system32\drivers\pl-PL\amdide.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 18944 ----a-w- c:\windows\system32\drivers\pl-PL\E1G60I32.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 12800 ----a-w- c:\windows\system32\drivers\pl-PL\k57nd60x.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 12800 ----a-w- c:\windows\system32\drivers\pl-PL\b57nd60x.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 11776 ----a-w- c:\windows\system32\drivers\pl-PL\usbhub.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 11776 ----a-w- c:\windows\system32\drivers\pl-PL\e1q6032.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 11776 ----a-w- c:\windows\system32\drivers\pl-PL\e1k6032.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 10752 ----a-w- c:\windows\system32\drivers\pl-PL\serial.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 10752 ----a-w- c:\windows\system32\drivers\pl-PL\ltmdmnt.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 10752 ----a-w- c:\windows\system32\drivers\pl-PL\BrSerId.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 10752 ----a-w- c:\windows\system32\drivers\pl-PL\BrSerIb.sys.mui 2013-12-05 07:41 . 2013-12-05 07:41 10240 ----a-w- c:\windows\system32\drivers\pl-PL\acpi.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 8704 ----a-w- c:\windows\system32\drivers\pl-PL\pci.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 8192 ----a-w- c:\windows\system32\drivers\pl-PL\bthport.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 7168 ----a-w- c:\windows\system32\drivers\UMDF\pl-PL\WUDFUsbccidDriver.dll.mui 2013-12-05 07:40 . 2013-12-05 07:40 7168 ----a-w- c:\windows\system32\drivers\pl-PL\msdsm.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 5632 ----a-w- c:\windows\system32\drivers\pl-PL\sermouse.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 4608 ----a-w- c:\windows\system32\drivers\pl-PL\mouclass.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 4608 ----a-w- c:\windows\system32\drivers\pl-PL\kbdclass.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 4608 ----a-w- c:\windows\system32\drivers\pl-PL\bthpan.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 4096 ----a-w- c:\windows\system32\drivers\pl-PL\vhdmp.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 4096 ----a-w- c:\windows\system32\drivers\pl-PL\vdrvroot.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 4096 ----a-w- c:\windows\system32\drivers\pl-PL\pcmcia.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 4096 ----a-w- c:\windows\system32\drivers\pl-PL\isapnp.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 4096 ----a-w- c:\windows\system32\drivers\pl-PL\hdaudbus.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 38912 ----a-w- c:\windows\system32\drivers\pl-PL\mpio.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3584 ----a-w- c:\windows\system32\drivers\pl-PL\pscr.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3584 ----a-w- c:\windows\system32\drivers\pl-PL\portcls.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3584 ----a-w- c:\windows\system32\drivers\pl-PL\HdAudio.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3584 ----a-w- c:\windows\system32\drivers\pl-PL\atikmdag.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3072 ----a-w- c:\windows\system32\drivers\pl-PL\ULIAGPKX.SYS.mui 2013-12-05 07:40 . 2013-12-05 07:40 3072 ----a-w- c:\windows\system32\drivers\pl-PL\rndismpx.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3072 ----a-w- c:\windows\system32\drivers\pl-PL\rndismp6.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3072 ----a-w- c:\windows\system32\drivers\pl-PL\mssmbios.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3072 ----a-w- c:\windows\system32\drivers\pl-PL\mouhid.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3072 ----a-w- c:\windows\system32\drivers\pl-PL\hidbth.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\vwifibus.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\VIAAGP.SYS.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\SISAGP.SYS.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\serscan.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\pnpmem.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\kbdhid.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\Dot4usb.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\BTHUSB.SYS.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\BrParwdm.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\AMDAGP.SYS.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\AGP440.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2048 ----a-w- c:\windows\system32\drivers\pl-PL\bthenum.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 11776 ----a-w- c:\windows\system32\drivers\pl-PL\ohci1394.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 11776 ----a-w- c:\windows\system32\drivers\pl-PL\1394ohci.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 11264 ----a-w- c:\windows\system32\drivers\pl-PL\i8042prt.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 6144 ----a-w- c:\windows\system32\drivers\pl-PL\ndiscap.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 5120 ----a-w- c:\windows\system32\drivers\pl-PL\fltmgr.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\scfilter.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 50688 ----a-w- c:\windows\system32\drivers\pl-PL\tcpip.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 40960 ----a-w- c:\windows\system32\drivers\pl-PL\http.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 39936 ----a-w- c:\windows\system32\drivers\pl-PL\ndis.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2048 ----a-w- c:\windows\system32\drivers\pl-PL\ws2ifsl.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 35840 ----a-w- c:\windows\system32\drivers\pl-PL\bfe.dll.mui 2013-12-05 07:40 . 2013-12-05 07:40 16384 ----a-w- c:\windows\system32\drivers\pl-PL\pacer.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 3584 ----a-w- c:\windows\system32\drivers\pl-PL\modem.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 2560 ----a-w- c:\windows\system32\drivers\pl-PL\volmgrx.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 17408 ----a-w- c:\windows\system32\drivers\pl-PL\afd.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 8704 ----a-w- c:\windows\system32\drivers\pl-PL\tunnel.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 65536 ----a-w- c:\windows\system32\drivers\pl-PL\ntfs.sys.mui 2013-12-05 07:40 . 2013-12-05 07:40 5120 ----a-w- c:\windows\system32\drivers\pl-PL\rdbss.sys.mui . . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1] @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}" [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}] 2013-12-09 11:49 220632 ----a-w- c:\users\Arcadius\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2] @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}" [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}] 2013-12-09 11:49 220632 ----a-w- c:\users\Arcadius\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3] @="{BBACC218-34EA-4666-9D7A-C78F2274A524}" [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}] 2013-12-09 11:49 220632 ----a-w- c:\users\Arcadius\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-06-08 284696] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-08-03 9398888] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-06-16 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-06-16 173592] "Persistence"="c:\windows\system32\igfxpers.exe" [2010-06-16 150552] "PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2013-10-23 337432] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 948440] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-12-05 280576] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192] R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files\BitComet\tools\BitCometService.exe [2010-12-28 1296728] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x] R3 EUCR;EUCR;c:\windows\system32\drivers\EUCR6SK.SYS [2010-06-17 82768] R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2013-11-26 108032] R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768] R3 NisSrv;Inspekcja sieci firmy Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 49664] R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-12-05 1343400] S1 MpKsl71af96bb;MpKsl71af96bb;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{92DCE636-B3FD-4F84-8E73-F33E90439E61}\MpKsl71af96bb.sys [2013-12-17 40392] S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-06-08 13336] S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-08-24 68208] S3 NETw5s32;Sterownik karty Intel(R) Wireless WiFi Link 5000 Series dla systemu Windows 7 32 Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2010-05-31 6766080] . . --- Inne Usługi/Sterowniki w Pamięci --- . *NewlyCreated* - MPKSL71AF96BB . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-12-05 16:34 1210320 ----a-w- c:\program files\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe . Zawartość folderu 'Zaplanowane zadania' . 2013-12-18 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-06 18:19] . 2013-12-17 c:\windows\Tasks\AutoKMS.job - c:\windows\AutoKMS\AutoKMS.exe [2013-12-05 21:38] . 2013-12-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2013-12-05 16:33] . 2013-12-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2013-12-05 16:33] . . ------- Skan uzupełniający ------- . uStart Page = hxxp://www.bing.com/ IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~4\Office14\EXCEL.EXE/3000 IE: Wyślij &do programu OneNote - c:\progra~1\MICROS~4\Office14\ONBttnIE.dll/105 TCP: DhcpNameServer = 192.168.0.1 . . --------------------- ZABLOKOWANE KLUCZE REJESTRU --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Czas ukończenia: 2013-12-18 02:03:06 ComboFix-quarantined-files.txt 2013-12-18 01:03 ComboFix2.txt 2013-12-17 11:58 ComboFix3.txt 2013-12-17 11:10 . Przed: 98 657 976 320 bajtów wolnych Po: 98 608 676 864 bajtów wolnych . - - End Of File - - 4762498555F38557C00C78BF216443E3 A36C5E4F47E84449FF07ED3517B43A31