ComboFix 15-05-28.01 - Artur19E68 2015-05-30  20:34:40.1.2 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1250.48.1033.18.4095.2432 [GMT 2:00]
Uruchomiony z: c:\users\Artur19E68\Downloads\ComboFix.exe
AV: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: ESET NOD32 Antivirus 8.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\38654086-845e-43c8-938b-27901e69b340\ce2dce8e-e160-42e5-a858-32627b07ea88.dll
c:\program files (x86)\443d5019-b6cc-436f-b330-4190d69529ee\443d5019-b6cc-436f-b330-4190d69529ee.dll
c:\program files (x86)\443d5019-b6cc-436f-b330-4190d69529ee\b94754ee-f8c5-43de-bee5-434626e59a90.dll
c:\program files (x86)\ShopperPro
c:\program files (x86)\ShopperPro\config.json
c:\program files (x86)\ShopperPro\database1_0_0.ej
c:\program files (x86)\ShopperPro\database1_0_0.json
c:\program files (x86)\ShopperPro\FireFox\chrome.manifest
c:\program files (x86)\ShopperPro\FireFox\content\overlay.xul
c:\program files (x86)\ShopperPro\FireFox\content\shopperpro_128.png
c:\program files (x86)\ShopperPro\FireFox\install.rdf
c:\program files (x86)\ShopperPro\JSDriver\1.42.1.1893\config.json
c:\program files (x86)\ShopperPro\JSDriver\1.42.1.1893\database1_0_0.ej
c:\program files (x86)\ShopperPro\JSDriver\1.42.1.1893\jsdrv.sys
c:\program files (x86)\ShopperPro\JSDriver\jsdrv.sys
c:\program files (x86)\ShopperPro\ShopperPro.dll
c:\program files (x86)\ShopperPro\ShopperPro64.dll
c:\program files (x86)\ShopperPro\SPRemove.exe
c:\program files (x86)\ShopperPro\Updater.exe
c:\programdata\16966126430779413545
c:\programdata\16966126430779413545\31a2d35526c848d7831f24e9ddd8af81.ini
.
.
(((((((((((((((((((((((((((((((((((((((   Sterowniki/Usługi   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_SPDRIVER_1.42.1.1893
-------\Legacy_SPDRIVER_1.42.1.1893
-------\Service_SPDRIVER_1.42.1.1893
-------\Service_SPDRIVER_1.42.1.1893
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2015-04-28 do 2015-05-30  )))))))))))))))))))))))))))))))
.
.
2015-05-30 08:25 . 2015-05-29 22:37	--------	d-----w-	c:\windows\Panther
2015-05-30 00:36 . 2015-05-30 17:37	136408	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-05-30 00:36 . 2015-05-30 00:36	--------	d-----w-	c:\program files (x86)\Malwarebytes Anti-Malware
2015-05-30 00:36 . 2015-05-30 00:36	--------	d-----w-	c:\programdata\Malwarebytes
2015-05-30 00:36 . 2015-04-14 07:37	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2015-05-30 00:36 . 2015-04-14 07:37	107736	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2015-05-30 00:36 . 2015-04-14 07:37	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
2015-05-30 00:08 . 2015-05-05 01:29	342016	----a-w-	c:\windows\system32\schannel.dll
2015-05-29 23:55 . 2015-05-29 23:55	--------	d-----w-	c:\program files\ESET
2015-05-29 23:46 . 2015-05-29 23:46	--------	d-----w-	c:\program files (x86)\Common Files\Java
2015-05-29 23:45 . 2015-05-29 23:45	867240	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2015-05-29 23:45 . 2015-05-29 23:45	789416	----a-w-	c:\windows\SysWow64\deployJava1.dll
2015-05-29 23:45 . 2015-05-29 23:45	96168	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-05-29 23:45 . 2015-05-29 23:45	--------	d-----w-	c:\program files (x86)\Java
2015-05-29 23:45 . 2015-05-30 18:39	--------	d-----w-	c:\program files (x86)\443d5019-b6cc-436f-b330-4190d69529ee
2015-05-29 23:45 . 2015-05-30 18:39	--------	d-----w-	c:\program files (x86)\38654086-845e-43c8-938b-27901e69b340
2015-05-29 23:43 . 2015-05-30 00:28	--------	d-----w-	c:\program files (x86)\YouTube Accelerator
2015-05-29 23:43 . 2015-05-29 23:43	172032	----a-w-	c:\windows\SysWow64\AniGIF.ocx
2015-05-29 23:25 . 2015-05-29 23:25	--------	d-----w-	c:\windows\SysWow64\XPSViewer
2015-05-29 23:25 . 2015-05-29 23:25	--------	d-----w-	c:\windows\SysWow64\drivers\pl-PL
2015-05-29 23:25 . 2015-05-29 23:25	--------	d-----w-	c:\windows\SysWow64\wbem\pl-PL
2015-05-29 23:25 . 2015-05-29 23:25	--------	d-----w-	c:\windows\SysWow64\pl
2015-05-29 23:25 . 2015-05-29 23:25	--------	d-----w-	c:\windows\pl-PL
2015-05-29 23:25 . 2015-05-30 01:37	--------	d-----w-	c:\windows\system32\drivers\pl-PL
2015-05-29 23:25 . 2015-05-29 23:25	--------	d-----w-	c:\windows\system32\drivers\UMDF\pl-PL
2015-05-29 23:24 . 2015-05-29 23:24	--------	d-----w-	c:\windows\system32\wbem\pl-PL
2015-05-29 23:24 . 2015-05-29 23:24	--------	d-----w-	c:\windows\system32\pl
2015-05-29 23:24 . 2015-05-29 23:29	--------	d-s---w-	c:\windows\system32\GWX
2015-05-29 23:24 . 2015-05-29 23:24	--------	d-s---w-	c:\windows\SysWow64\GWX
2015-05-29 23:24 . 2015-05-29 23:24	--------	d-----w-	c:\windows\Migration
2015-05-29 23:23 . 2015-05-30 00:52	--------	d-----w-	c:\program files (x86)\b16eb401-2ba3-4400-8575-ff928f435e3d
2015-05-29 23:20 . 2015-05-29 23:20	--------	d-----w-	c:\program files (x86)\predm
2015-05-29 23:17 . 2015-05-29 23:17	--------	d-----w-	c:\windows\SysWow64\Flash
2015-05-29 23:11 . 2015-05-29 23:18	--------	d-----w-	c:\windows\system32\MRT
2015-05-29 23:10 . 2015-05-29 23:10	--------	d-----w-	c:\program files (x86)\Microsoft.NET
2015-05-29 23:02 . 2015-05-29 23:04	--------	d-----w-	c:\program files (x86)\Google
2015-05-29 23:02 . 2009-07-13 16:48	3584	----a-w-	c:\windows\system32\Spool\prtprocs\x64\pl-PL\LXKPTPRC.DLL.mui
2015-05-29 23:01 . 2015-05-29 23:01	--------	d-----w-	c:\program files\Common Files\logishrd
2015-05-29 23:01 . 2015-05-18 02:57	12214312	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{A7AC566A-D001-4825-97BA-8CBF475ECE7B}\mpengine.dll
2015-05-29 22:59 . 2015-02-04 02:21	6782152	----a-w-	c:\windows\system32\nvcpl.dll
2015-05-29 22:59 . 2015-02-04 02:21	3522376	----a-w-	c:\windows\system32\nvsvc64.dll
2015-05-29 22:59 . 2015-02-04 02:21	932040	----a-w-	c:\windows\system32\nvvsvc.exe
2015-05-29 22:59 . 2015-02-04 02:21	2558792	----a-w-	c:\windows\system32\nvsvcr.dll
2015-05-29 22:59 . 2015-02-04 02:21	62792	----a-w-	c:\windows\system32\nvshext.dll
2015-05-29 22:59 . 2015-02-04 02:21	384200	----a-w-	c:\windows\system32\nvmctray.dll
2015-05-29 22:59 . 2015-02-03 16:18	4229086	----a-w-	c:\windows\system32\nvcoproc.bin
2015-05-29 22:59 . 2015-02-19 22:43	72904	----a-w-	c:\windows\system32\OpenCL.dll
2015-05-29 22:59 . 2015-02-19 22:43	59592	----a-w-	c:\windows\SysWow64\OpenCL.dll
2015-05-29 22:59 . 2015-05-29 23:00	--------	d-----w-	c:\programdata\NVIDIA Corporation
2015-05-29 22:59 . 2015-05-29 23:00	--------	d-----w-	c:\program files\NVIDIA Corporation
2015-05-29 22:58 . 2015-05-30 00:21	--------	d-----w-	c:\program files (x86)\Opera
2015-05-29 22:57 . 2015-05-30 00:53	--------	d-----w-	c:\program files (x86)\globalUpdate
2015-05-29 22:52 . 2015-04-08 03:29	169984	----a-w-	c:\program files\Common Files\Microsoft Shared\ink\rtscom.dll
2015-05-29 22:51 . 2015-03-04 04:41	6656	----a-w-	c:\windows\system32\shimeng.dll
2015-05-29 22:51 . 2015-03-04 04:41	72192	----a-w-	c:\windows\system32\aelupsvc.dll
2015-05-29 22:51 . 2015-03-04 04:41	342016	----a-w-	c:\windows\system32\apphelp.dll
2015-05-29 22:51 . 2015-03-04 04:41	23552	----a-w-	c:\windows\system32\sdbinst.exe
2015-05-29 22:51 . 2015-03-04 04:11	5120	----a-w-	c:\windows\SysWow64\shimeng.dll
2015-05-29 22:51 . 2015-03-04 04:10	295936	----a-w-	c:\windows\SysWow64\apphelp.dll
2015-05-29 22:51 . 2015-03-04 04:10	20992	----a-w-	c:\windows\SysWow64\sdbinst.exe
2015-05-29 22:51 . 2015-02-18 07:06	123904	----a-w-	c:\windows\SysWow64\poqexec.exe
2015-05-29 22:51 . 2015-02-18 07:04	142336	----a-w-	c:\windows\system32\poqexec.exe
2015-05-29 22:51 . 2015-05-29 22:51	--------	d-----w-	c:\program files (x86)\VideoLAN
2015-05-29 22:50 . 2015-05-30 00:15	--------	d-----w-	c:\program files (x86)\afterguard
2015-05-29 22:47 . 2015-05-30 01:37	--------	d-sh--w-	c:\windows\Installer
2015-05-29 22:37 . 2015-05-29 22:55	--------	d-----w-	c:\users\Artur19E68
2015-05-29 22:37 . 2015-05-29 22:37	--------	d-----w-	C:\Recovery
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-04-16 19:11 . 2015-04-16 19:11	2048	----a-w-	c:\windows\SysWow64\msxml3r.dll
2015-04-16 19:11 . 2015-04-16 19:11	2048	----a-w-	c:\windows\system32\msxml3r.dll
2015-04-16 19:11 . 2015-04-16 19:11	1882624	----a-w-	c:\windows\system32\msxml3.dll
2015-04-16 19:11 . 2015-04-16 19:11	1237504	----a-w-	c:\windows\SysWow64\msxml3.dll
2015-04-16 19:11 . 2015-04-16 19:11	404480	----a-w-	c:\windows\system32\gdi32.dll
2015-04-16 19:11 . 2015-04-16 19:11	311808	----a-w-	c:\windows\SysWow64\gdi32.dll
2015-04-16 19:10 . 2015-04-16 19:10	7680	----a-w-	c:\windows\SysWow64\instnm.exe
2015-04-16 19:10 . 2015-04-16 19:10	6656	----a-w-	c:\windows\SysWow64\apisetschema.dll
2015-04-16 19:10 . 2015-04-16 19:10	6656	----a-w-	c:\windows\system32\apisetschema.dll
2015-04-16 19:10 . 2015-04-16 19:10	6144	---ha-w-	c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	6144	---ha-w-	c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	5557696	----a-w-	c:\windows\system32\ntoskrnl.exe
2015-04-16 19:10 . 2015-04-16 19:10	5120	---ha-w-	c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	5120	---ha-w-	c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	5120	----a-w-	c:\windows\SysWow64\wow32.dll
2015-04-16 19:10 . 2015-04-16 19:10	503808	----a-w-	c:\windows\system32\srcore.dll
2015-04-16 19:10 . 2015-04-16 19:10	50176	----a-w-	c:\windows\system32\srclient.dll
2015-04-16 19:10 . 2015-04-16 19:10	4608	---ha-w-	c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4608	---ha-w-	c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4608	---ha-w-	c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4608	---ha-w-	c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2015-04-16 19:10 . 2015-04-16 19:10	43520	----a-w-	c:\windows\system32\csrsrv.dll
2015-04-16 19:10 . 2015-04-16 19:10	43008	----a-w-	c:\windows\SysWow64\srclient.dll
2015-04-16 19:10 . 2015-04-16 19:10	424448	----a-w-	c:\windows\system32\KernelBase.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	4096	---ha-w-	c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3976632	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2015-04-16 19:10 . 2015-04-16 19:10	3920824	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2015-04-16 19:10 . 2015-04-16 19:10	362496	----a-w-	c:\windows\system32\wow64win.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3584	---ha-w-	c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	338432	----a-w-	c:\windows\system32\conhost.exe
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	3072	---ha-w-	c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-16 19:10 . 2015-04-16 19:10	296960	----a-w-	c:\windows\system32\rstrui.exe
2015-04-16 19:10 . 2015-04-16 19:10	274944	----a-w-	c:\windows\SysWow64\KernelBase.dll
2015-04-16 19:10 . 2015-04-16 19:10	25600	----a-w-	c:\windows\SysWow64\setup16.exe
2015-04-16 19:10 . 2015-04-16 19:10	243712	----a-w-	c:\windows\system32\wow64.dll
2015-04-16 19:10 . 2015-04-16 19:10	215040	----a-w-	c:\windows\system32\winsrv.dll
2015-04-16 19:10 . 2015-04-16 19:10	2048	----a-w-	c:\windows\SysWow64\user.exe
2015-04-16 19:10 . 2015-04-16 19:10	1727904	----a-w-	c:\windows\system32\ntdll.dll
2015-04-16 19:10 . 2015-04-16 19:10	16384	----a-w-	c:\windows\system32\ntvdm64.dll
2015-04-16 19:10 . 2015-04-16 19:10	14336	----a-w-	c:\windows\SysWow64\ntvdm64.dll
2015-04-16 19:10 . 2015-04-16 19:10	13312	----a-w-	c:\windows\system32\wow64cpu.dll
2015-04-16 19:10 . 2015-04-16 19:10	1309696	----a-w-	c:\windows\SysWow64\ntdll.dll
2015-04-16 19:10 . 2015-04-16 19:10	1163264	----a-w-	c:\windows\system32\kernel32.dll
2015-04-16 19:10 . 2015-04-16 19:10	112640	----a-w-	c:\windows\system32\smss.exe
2015-04-16 19:10 . 2015-04-16 19:10	79360	----a-w-	c:\windows\system32\clfsw32.dll
2015-04-16 19:10 . 2015-04-16 19:10	58880	----a-w-	c:\windows\SysWow64\clfsw32.dll
2015-04-16 19:10 . 2015-04-16 19:10	367552	----a-w-	c:\windows\system32\clfs.sys
2015-04-16 19:10 . 2015-04-16 19:10	754688	----a-w-	c:\windows\system32\drivers\http.sys
2015-04-16 19:09 . 2015-04-16 19:09	14177280	----a-w-	c:\windows\system32\shell32.dll
2015-04-16 19:08 . 2015-04-16 19:08	3179520	----a-w-	c:\windows\system32\rdpcorets.dll
2015-04-16 19:08 . 2015-04-16 19:08	243200	----a-w-	c:\windows\system32\rdpudd.dll
2015-04-16 19:08 . 2015-04-16 19:08	16384	----a-w-	c:\windows\system32\RdpGroupPolicyExtension.dll
2015-04-16 19:07 . 2015-04-16 19:07	1424896	----a-w-	c:\windows\system32\WindowsCodecs.dll
2015-04-16 19:07 . 2015-04-16 19:07	1230848	----a-w-	c:\windows\SysWow64\WindowsCodecs.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;tsusbhub [x]
R4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S3 lvpepf64;Volume Adapter;c:\windows\system32\DRIVERS\lv302a64.sys;c:\windows\SYSNATIVE\DRIVERS\lv302a64.sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
S3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys;c:\windows\SYSNATIVE\drivers\LVUSBS64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver;c:\windows\system32\DRIVERS\Rtnic64.sys;c:\windows\SYSNATIVE\DRIVERS\Rtnic64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-29 23:04	986440	----a-w-	c:\program files (x86)\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe
.
Zawartość folderu 'Zaplanowane zadania'
.
2015-05-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29 23:02]
.
2015-05-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29 23:02]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2015-01-28 5595848]
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = www.google.com
uDefault_Search_URL = www.google.com
mDefault_Search_URL = www.google.com
mDefault_Page_URL = www.google.com
mStart Page = www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = www.google.com
LSP: c:\program files (x86)\YouTube Accelerator\ytalsp.dll
TCP: DhcpNameServer = 192.168.1.1
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
HKLM_Wow6432Node-ActiveSetup-installed components - c:\program files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe
AddRemove-ShopperPro - c:\program files (x86)\ShopperPro\SPremove.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
.
**************************************************************************
.
Czas ukończenia: 2015-05-30  21:02:55 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2015-05-30 19:02
.
Przed: 12 901 756 928 bajtów wolnych
Po: 15 004 729 344 bajtów wolnych
.
- - End Of File - - D2B7440736302A013888EDD30278EE64
A36C5E4F47E84449FF07ED3517B43A31