ComboFix 16-04-29.01 - Lap 2016-05-04 22:54:23.1.4 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1250.48.1045.18.3063.1147 [GMT 2:00] Uruchomiony z: c:\users\Lap\Downloads\ComboFix.exe AV: AVG AntiVirus Free Edition *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413} SP: AVG AntiVirus Free Edition *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\Install.exe . . ((((((((((((((((((((((((( Pliki utworzone od 2016-04-04 do 2016-05-04 ))))))))))))))))))))))))))))))) . . 2016-05-04 21:10 . 2016-05-04 21:10 -------- d-----w- c:\users\Default\AppData\Local\temp 2016-05-04 21:10 . 2016-05-04 21:10 -------- d-----w- c:\users\Adm\AppData\Local\temp 2016-04-28 13:30 . 2016-04-28 15:39 -------- d-----w- c:\users\Lap\AppData\Roaming\.minecraft 2016-04-27 17:02 . 2016-04-27 17:02 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi 2016-04-20 12:17 . 2016-04-20 12:17 307456 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys 2016-04-18 07:04 . 2016-04-18 07:04 71936 ----a-w- c:\windows\system32\drivers\avguniva.sys 2016-04-15 08:41 . 2016-04-15 08:41 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll 2016-04-15 08:41 . 2016-04-15 08:41 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll 2016-04-15 08:41 . 2016-04-15 08:41 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll 2016-04-14 08:54 . 2016-04-14 08:54 51968 ----a-w- c:\windows\system32\drivers\avgrkx64.sys 2016-04-13 17:06 . 2016-03-31 00:02 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb 2016-04-09 17:00 . 2016-04-09 17:18 -------- d-----w- c:\program files (x86)\Farming Simulator 2015 2016-04-05 17:29 . 2016-04-05 17:29 -------- d-----w- c:\programdata\RzSurroundVAD_1.1.61.0 2016-04-05 14:18 . 2016-04-05 14:18 34720 ---ha-w- c:\windows\system32\drivers\hamachi.sys . . . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2016-04-04 19:45 . 2016-02-15 10:09 97856 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2016-03-29 14:39 . 2016-03-29 14:39 248576 ----a-w- c:\windows\system32\drivers\avgmfx64.sys 2016-03-17 22:24 . 2016-04-13 17:07 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2016-02-16 14:07 . 2016-02-16 14:07 162592 ----a-w- c:\windows\system32\drivers\avgdiska.sys 2016-02-16 14:05 . 2016-02-16 14:05 360736 ----a-w- c:\windows\system32\drivers\avgloga.sys 2016-02-15 07:57 . 2016-02-15 07:57 40640 ----a-w- c:\windows\system32\drivers\RzSurroundVAD.sys 2016-02-15 07:55 . 2016-02-15 07:55 245760 ----a-w- c:\windows\system32\DriverInstallCACMD.exe 2016-02-15 07:55 . 2016-02-15 07:55 69632 ----a-w- c:\windows\system32\DriverInstallCA.dll 2016-02-12 18:52 . 2016-03-09 17:19 98816 ----a-w- c:\windows\system32\wudriver.dll 2016-02-12 18:52 . 2016-03-09 17:19 3169792 ----a-w- c:\windows\system32\wucltux.dll 2016-02-12 18:52 . 2016-03-09 17:19 192512 ----a-w- c:\windows\system32\wuwebv.dll 2016-02-12 18:44 . 2016-03-09 17:19 91136 ----a-w- c:\windows\system32\WinSetupUI.dll 2016-02-12 18:39 . 2016-03-09 17:19 174080 ----a-w- c:\windows\SysWow64\wuwebv.dll 2016-02-12 18:22 . 2016-03-09 17:19 2610688 ----a-w- c:\windows\system32\wuaueng.dll 2016-02-12 18:19 . 2016-03-09 17:19 709120 ----a-w- c:\windows\system32\wuapi.dll 2016-02-12 18:18 . 2016-03-09 17:19 37888 ----a-w- c:\windows\system32\wuapp.exe 2016-02-12 18:18 . 2016-03-09 17:19 140288 ----a-w- c:\windows\system32\wuauclt.exe 2016-02-12 18:18 . 2016-03-09 17:19 36864 ----a-w- c:\windows\system32\wups.dll 2016-02-12 18:18 . 2016-03-09 17:19 37888 ----a-w- c:\windows\system32\wups2.dll 2016-02-12 18:18 . 2016-03-09 17:19 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll 2016-02-12 18:06 . 2016-03-09 17:19 573440 ----a-w- c:\windows\SysWow64\wuapi.dll 2016-02-12 18:05 . 2016-03-09 17:19 93696 ----a-w- c:\windows\SysWow64\wudriver.dll 2016-02-12 18:05 . 2016-03-09 17:19 30208 ----a-w- c:\windows\SysWow64\wups.dll 2016-02-12 18:05 . 2016-03-09 17:19 35328 ----a-w- c:\windows\SysWow64\wuapp.exe 2016-02-09 09:57 . 2016-03-09 17:15 12625920 ----a-w- c:\windows\system32\wmploc.DLL 2016-02-09 09:57 . 2016-03-09 17:15 14634496 ----a-w- c:\windows\system32\wmp.dll 2016-02-09 09:56 . 2016-03-09 17:15 5120 ----a-w- c:\windows\system32\msdxm.ocx 2016-02-09 09:56 . 2016-03-09 17:15 5120 ----a-w- c:\windows\system32\dxmasf.dll 2016-02-09 09:55 . 2016-03-09 17:15 30720 ----a-w- c:\windows\system32\seclogon.dll 2016-02-09 09:54 . 2016-03-09 17:15 9728 ----a-w- c:\windows\system32\spwmp.dll 2016-02-09 09:51 . 2016-03-09 17:15 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL 2016-02-09 09:13 . 2016-03-09 17:15 4096 ----a-w- c:\windows\SysWow64\msdxm.ocx 2016-02-09 09:13 . 2016-03-09 17:15 4096 ----a-w- c:\windows\SysWow64\dxmasf.dll 2016-02-09 09:13 . 2016-03-09 17:15 8192 ----a-w- c:\windows\SysWow64\spwmp.dll 2016-02-05 18:54 . 2016-03-09 17:15 41472 ----a-w- c:\windows\system32\lpk.dll 2016-02-05 18:54 . 2016-03-09 17:15 100864 ----a-w- c:\windows\system32\fontsub.dll 2016-02-05 18:53 . 2016-03-09 17:15 14336 ----a-w- c:\windows\system32\dciman32.dll 2016-02-05 18:53 . 2016-03-09 17:15 46080 ----a-w- c:\windows\system32\atmlib.dll 2016-02-05 18:50 . 2016-03-09 17:15 25600 ----a-w- c:\windows\SysWow64\lpk.dll 2016-02-05 18:44 . 2016-03-09 17:15 70656 ----a-w- c:\windows\SysWow64\fontsub.dll 2016-02-05 18:42 . 2016-03-09 17:15 10240 ----a-w- c:\windows\SysWow64\dciman32.dll 2016-02-05 17:48 . 2016-03-09 17:15 372736 ----a-w- c:\windows\system32\atmfd.dll 2016-02-05 17:43 . 2016-03-09 17:15 299520 ----a-w- c:\windows\SysWow64\atmfd.dll 2016-02-05 17:43 . 2016-03-09 17:15 34304 ----a-w- c:\windows\SysWow64\atmlib.dll 2016-02-05 01:19 . 2016-03-09 17:15 381440 ----a-w- c:\windows\system32\mfds.dll 2016-02-04 22:13 . 2016-02-04 22:13 875720 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll 2016-02-04 22:13 . 2016-02-04 22:13 536776 ----a-w- c:\windows\SysWow64\msvcp120_clr0400.dll 2016-02-04 22:03 . 2016-02-04 22:03 869568 ----a-w- c:\windows\system32\msvcr120_clr0400.dll 2016-02-04 22:03 . 2016-02-04 22:03 678600 ----a-w- c:\windows\system32\msvcp120_clr0400.dll . . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 2016-04-12 16:18 2439240 ----a-w- c:\program files (x86)\AVG Web TuneUp\4.2.9.726\AVG Web TuneUp.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Steam"="c:\program files (x86)\Steam\steam.exe" [2016-03-31 3077712] "BingSvc"="c:\users\Lap\AppData\Local\Microsoft\BingSvc\BingSvc.exe" [2015-11-12 144008] "BlueStacks Agent"="c:\program files (x86)\BlueStacks\HD-Agent.exe" [2016-03-11 912920] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "TWebCamera"="c:\program files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" [2010-02-24 2454840] "AVG_UI"="c:\program files (x86)\AVG\Av\avuirunnerx.exe" [2016-04-20 32528] "vProt"="c:\program files (x86)\AVG Web TuneUp\vprot.exe" [2016-04-12 2885704] "Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2016-01-13 594240] "AvgUi"="c:\program files (x86)\AVG\Framework\Common\avguirnx.exe" [2016-04-14 186640] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2016-03-20 595480] "LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2016-04-05 5565448] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.11.309\SSScheduler.exe [2016-3-11 334088] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . R1 pfnfd_1_10_0_8;pfnfd_1_10_0_8;c:\windows\system32\drivers\pfnfd_1_10_0_8.sys;c:\windows\SYSNATIVE\drivers\pfnfd_1_10_0_8.sys [x] R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service;c:\windows\system32\DRIVERS\VBoxNetAdp6.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp6.sys [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x] R3 AvgAMPS;AvgAMPS;c:\program files (x86)\AVG\Av\avgamps.exe;c:\program files (x86)\AVG\Av\avgamps.exe [x] R3 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x] R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x] R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x] R3 hidkmdf;Filter Driver Service for HID-KMDF Interface layer;c:\windows\system32\DRIVERS\hidkmdf.sys;c:\windows\SYSNATIVE\DRIVERS\hidkmdf.sys [x] R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x] R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.11.309\McCHSvc.exe;c:\program files\McAfee Security Scan\3.11.309\McCHSvc.exe [x] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x] R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x] R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bbus.sys [x] R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdfl.sys [x] R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdm.sys [x] R3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\DRIVERS\ss_bserd.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bserd.sys [x] R3 ssdevfactory;SteelSeries Device Factory Service;c:\windows\system32\DRIVERS\ssdevfactory.sys;c:\windows\SYSNATIVE\DRIVERS\ssdevfactory.sys [x] R3 sshid;SteelSeries HID Service;c:\windows\system32\DRIVERS\sshid.sys;c:\windows\SYSNATIVE\DRIVERS\sshid.sys [x] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x] R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x] S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x] S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x] S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x] S0 Avguniva;AVG Universal Driver;c:\windows\system32\DRIVERS\avguniva.sys;c:\windows\SYSNATIVE\DRIVERS\avguniva.sys [x] S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x] S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x] S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x] S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x] S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\Av\avgidsagenta.exe;c:\program files (x86)\AVG\Av\avgidsagenta.exe [x] S2 avgsvc;AVG Service;c:\program files (x86)\AVG\Framework\Common\avgsvca.exe;c:\program files (x86)\AVG\Framework\Common\avgsvca.exe [x] S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\Av\avgwdsvca.exe;c:\program files (x86)\AVG\Av\avgwdsvca.exe [x] S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x] S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x] S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x] S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x] S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x] S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x] S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x] S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x] S2 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x] S2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x] S2 rzpnk;rzpnk;c:\windows\system32\drivers\rzpnk.sys;c:\windows\SYSNATIVE\drivers\rzpnk.sys [x] S2 RzSurroundVADStreamingService;RzSurroundVADStreamingService;c:\programdata\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe;c:\programdata\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [x] S2 vToolbarUpdater40.2.9;vToolbarUpdater40.2.9;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.9\ToolbarUpdater.exe;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.9\ToolbarUpdater.exe [x] S2 WtuSystemSupport;WtuSystemSupport;c:\program files (x86)\AVG Web TuneUp\WtuSystemSupport.exe;c:\program files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [x] S3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);c:\windows\system32\DRIVERS\vrtaucbl.sys;c:\windows\SYSNATIVE\DRIVERS\vrtaucbl.sys [x] S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x] S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x] S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x] S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192se.sys [x] S3 rzendpt;rzendpt;c:\windows\system32\DRIVERS\rzendpt.sys;c:\windows\SYSNATIVE\DRIVERS\rzendpt.sys [x] S3 RZSURROUNDVADService;Razer Surround Audio Service;c:\windows\system32\drivers\RzSurroundVAD.sys;c:\windows\SYSNATIVE\drivers\RzSurroundVAD.sys [x] S3 rzudd;Razer Keyboard Driver;c:\windows\system32\DRIVERS\rzudd.sys;c:\windows\SYSNATIVE\DRIVERS\rzudd.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2014-12-19 15:49 1087816 ----a-w- c:\program files (x86)\Google\Chrome\Application\39.0.2171.95\Installer\chrmstp.exe . Zawartość folderu 'Zaplanowane zadania' . . --------- X64 Entries ----------- . . ------- Skan uzupełniający ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = https://mysearch.avg.com/?cid={4A567253-1039-483C-BD09-15DBDF9A8642}&mid=175f54c9b99047cd8e8065cbb83f4783-a5ee01a36a2bde02065a2ef6c92d0dd185874940&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0116tb&pr=fr&d=2015-02-25 12:26&v=4.2.4.155&pid=wtu&sg=&sap=hp uDefault_Search_URL = hxxp://www.google.com/ie mStart Page = mLocal Page = c:\windows\SysWOW64\blank.htm uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&ksportuj do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 FF - ProfilePath - c:\users\Lap\AppData\Roaming\Mozilla\Firefox\Profiles\bfvoqvwv.default\ . - - - - USUNIĘTO PUSTE WPISY - - - - . Wow6432Node-HKLM-Run- - (no file) Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe AddRemove-Flashtool - c:\flashtool\uninstall.exe AddRemove-Google Chrome - c:\program files (x86)\Google\Chrome\Application\39.0.2171.95\Installer\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB2972107 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB2972216 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB2978128 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3023224 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3035490 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3037581 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3074230 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3074550 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3097996 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3098781 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3122656 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3127229 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB3135996 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.5.51209\setup.exe . . . --------------------- ZABLOKOWANE KLUCZE REJESTRU --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks] "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Czas ukończenia: 2016-05-04 23:18:14 ComboFix-quarantined-files.txt 2016-05-04 21:18 . Przed: 33 084 522 496 bajtów wolnych Po: 32 742 842 368 bajtów wolnych . - - End Of File - - 1134AF280C5B5282FFE82BE2B1B66582 A36C5E4F47E84449FF07ED3517B43A31