ComboFix 16-08-15.01 - p1 2016-08-18 20:49:03.1.8 - x64 Microsoft Windows 7 Professional 6.1.7601.1.1250.48.1045.18.8094.5836 [GMT 2:00] Uruchomiony z: c:\users\p1\Downloads\ComboFix.exe AV: Bitdefender Antivirus Free Edition *Disabled/Updated* {3FB17364-4FCC-0FA7-6BBF-973897395371} SP: Bitdefender Antivirus Free Edition *Disabled/Updated* {84D09280-69F6-0029-510F-AC4AECBE19CC} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Utworzono nowy punkt przywracania . . ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\install.exe c:\programdata\1470045801.2712.bin c:\programdata\1470045801.2860.bin c:\programdata\1470045801.2900.bin c:\programdata\1470045801.3740.bin c:\programdata\1470045801.3748.bin c:\programdata\1470045801.4904.bin c:\programdata\1470045801.4960.bin c:\programdata\1470045801.684.bin c:\programdata\Roaming . . ((((((((((((((((((((((((( Pliki utworzone od 2016-07-18 do 2016-08-18 ))))))))))))))))))))))))))))))) . . 2016-08-18 18:54 . 2016-08-18 18:54 -------- d-----w- c:\users\Default\AppData\Local\temp 2016-08-18 09:04 . 2016-08-18 09:08 -------- d-----w- C:\HMICOMP 2016-08-16 13:32 . 2016-08-16 13:32 -------- d-----w- c:\program files\Common Files\Adobe 2016-08-13 20:52 . 2016-08-13 20:52 -------- d-----w- c:\users\Public\Foxit Software 2016-08-13 20:52 . 2016-08-13 20:52 -------- d-----w- c:\programdata\Foxit ContentPlatform 2016-08-13 20:52 . 2016-08-13 20:52 -------- d-----w- c:\program files (x86)\Foxit Software 2016-08-13 19:31 . 2016-08-13 19:31 -------- d-----w- c:\programdata\TIDAL 2016-08-13 19:30 . 2016-08-13 19:30 -------- d-----w- c:\program files (x86)\TIDAL 2016-08-13 17:14 . 2016-08-13 17:14 -------- d-----w- c:\programdata\Logs 2016-08-13 17:14 . 2016-08-13 17:14 -------- d-----w- c:\programdata\Licenses 2016-08-13 17:14 . 2016-08-13 17:14 -------- d-----w- c:\programdata\AutoUpdate 2016-08-13 17:14 . 2016-08-13 17:14 -------- d-----w- c:\program files\Eltima Software 2016-08-13 11:10 . 2016-07-07 08:11 4813312 ----a-w- c:\programdata\Microsoft\Windows\Templates\Bloody6\Setup.exe 2016-08-13 11:09 . 2016-08-13 11:09 -------- d-----w- c:\program files (x86)\Bloody6 2016-08-11 14:12 . 2016-08-18 11:05 -------- d-----w- C:\EBpro 2016-08-11 13:24 . 2016-08-11 13:24 -------- d-----w- c:\programdata\Weintek 2016-08-11 13:24 . 2014-10-21 14:22 40664 ----a-w- c:\windows\system32\drivers\tap0901.sys 2016-08-11 13:24 . 2016-08-11 13:24 -------- d-----w- c:\program files (x86)\EasyAccess 2.0 2016-08-11 07:19 . 2007-10-15 11:23 86016 ----a-w- c:\windows\SysWow64\lffax14n.dll 2016-08-11 07:19 . 2007-10-15 11:23 364544 ----a-w- c:\windows\SysWow64\LFCMP14n.dll 2016-08-11 07:19 . 2016-08-11 07:19 -------- d-----w- c:\program files (x86)\OriginLab 2016-08-10 19:07 . 2016-08-10 19:07 -------- d-----w- c:\program files\MATLAB 2016-08-10 09:56 . 2016-08-10 09:57 -------- d-----w- c:\program files\KiCad 2016-08-10 08:57 . 2016-08-10 08:57 -------- d-----w- c:\windows\SysWow64\NV 2016-08-10 08:57 . 2016-08-10 08:57 -------- d-----w- c:\windows\system32\NV 2016-08-10 08:04 . 2016-08-10 08:04 -------- d-----w- C:\NVIDIA 2016-08-09 14:47 . 2016-06-21 13:20 95168 ----a-w- c:\windows\system32\drivers\ftser2k.sys 2016-08-09 14:47 . 2016-06-21 13:20 75200 ----a-w- c:\windows\system32\ftcserco.dll 2016-08-09 14:47 . 2016-06-21 13:20 65472 ----a-w- c:\windows\system32\ftserui2.dll 2016-08-09 14:47 . 2016-06-21 13:20 316352 ----a-w- c:\windows\system32\ftd2xx.dll 2016-08-09 14:47 . 2016-06-21 13:20 274872 ----a-w- c:\windows\system32\FTLang.dll 2016-08-09 14:47 . 2016-06-21 13:20 274360 ----a-w- c:\windows\SysWow64\ftd2xx.dll 2016-08-09 14:47 . 2016-06-21 13:20 168384 ----a-w- c:\windows\system32\ftbusui.dll 2016-08-09 14:47 . 2016-06-21 13:20 108352 ----a-w- c:\windows\system32\drivers\ftdibus.sys 2016-08-08 07:05 . 2011-11-04 16:00 58368 ----a-w- c:\windows\system32\drivers\CH341S64.SYS 2016-08-08 07:05 . 2005-07-29 17:00 6712 ----a-w- c:\windows\SysWow64\CH341PT.DLL 2016-08-06 15:48 . 2016-08-06 15:48 -------- d-----w- c:\programdata\VMicro 2016-08-04 16:11 . 2016-08-04 16:11 -------- d-----w- c:\program files (x86)\IBE Software 2016-08-04 10:15 . 2016-08-04 10:15 -------- d-----w- c:\windows\Migration 2016-08-04 06:26 . 2016-08-04 06:26 -------- d-----w- c:\programdata\Energy Management 2016-08-04 06:26 . 2016-08-04 06:26 144 ----a-w- c:\windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-08-04 04:31 . 2016-08-04 04:31 656960 ----a-w- c:\programdata\Microsoft\Blend\14.0\1033\ResourceCache.dll 2016-08-04 04:31 . 2016-08-04 04:31 2092128 ----a-w- c:\programdata\Microsoft\VisualStudio\14.0\1033\ResourceCache.dll 2016-08-04 04:12 . 2016-08-04 04:12 -------- d-----w- c:\program files (x86)\AppInsights 2016-08-04 04:03 . 2016-08-04 04:03 -------- d-----w- c:\programdata\PreEmptive Solutions 2016-08-04 04:03 . 2016-08-04 04:03 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 11.0 2016-08-04 03:31 . 2016-08-04 03:31 -------- d-----w- c:\program files\Microsoft Visual Studio 12.0 2016-08-04 03:31 . 2016-08-04 03:31 -------- d-----w- c:\program files (x86)\HTML Help Workshop 2016-08-04 03:25 . 2016-08-04 03:25 -------- d-s---w- c:\windows\SysWow64\Microsoft 2016-08-04 03:25 . 2016-08-04 03:25 -------- d-----w- c:\program files\IIS Express 2016-08-04 03:24 . 2016-08-04 03:24 -------- d-----w- c:\programdata\NuGet 2016-08-04 03:24 . 2016-08-04 03:24 -------- d-----w- c:\program files (x86)\NuGet 2016-08-04 02:53 . 2013-08-29 02:13 878080 ----a-w- c:\windows\system32\advapi32.dll 2016-08-04 02:52 . 2016-08-04 02:52 -------- d-----w- c:\program files (x86)\Microsoft Silverlight 2016-08-04 02:51 . 2016-08-04 02:51 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition 2016-08-04 02:51 . 2016-08-04 02:52 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition 2016-08-04 02:50 . 2016-08-04 02:50 -------- d-----w- c:\program files (x86)\Application Verifier 2016-08-04 02:50 . 2016-08-04 02:50 -------- d-----w- c:\program files\Application Verifier 2016-08-04 02:50 . 2016-08-04 02:50 -------- d-----w- c:\programdata\Windows App Certification Kit 2016-08-04 02:46 . 2016-08-04 02:46 -------- d-----w- c:\program files (x86)\Common Files\Microsoft 2016-08-04 02:46 . 2016-08-04 02:46 -------- d-----w- c:\program files (x86)\ShellDir 2016-08-04 02:45 . 2016-08-04 03:04 -------- d-----w- c:\program files (x86)\Microsoft ASP.NET 2016-08-04 02:43 . 2016-08-04 02:43 -------- d-----w- c:\programdata\Microsoft DNX 2016-08-04 02:43 . 2016-08-04 02:43 -------- d-----w- c:\program files\Microsoft DNX 2016-08-04 02:40 . 2016-08-04 04:02 -------- d-----w- c:\program files (x86)\Microsoft Web Tools 2016-08-04 02:38 . 2016-08-04 03:25 -------- d-----w- c:\program files (x86)\IIS Express 2016-08-04 02:37 . 2016-08-04 02:37 -------- d-----w- c:\program files (x86)\Microsoft WCF Data Services 2016-08-04 02:37 . 2016-08-04 02:37 -------- d-----w- c:\program files\IIS 2016-08-04 02:37 . 2016-08-04 02:37 -------- d-----w- c:\program files (x86)\IIS 2016-08-04 02:33 . 2016-08-04 04:14 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 12.0 2016-08-04 02:18 . 2016-08-04 02:18 -------- d-----w- c:\windows\symbols 2016-08-04 02:18 . 2016-08-04 02:18 -------- d-----w- c:\program files (x86)\Microsoft Help Viewer 2016-08-04 02:18 . 2016-08-04 02:51 -------- d-----w- c:\program files (x86)\Windows Kits 2016-08-04 02:15 . 2016-08-04 04:22 -------- d-----w- c:\program files (x86)\Common Files\Merge Modules 2016-08-04 02:12 . 2016-08-04 04:03 -------- d-----w- c:\program files (x86)\Microsoft SDKs 2016-08-04 02:04 . 2016-08-04 02:04 -------- d-----w- c:\programdata\regid.1991-06.com.microsoft 2016-08-04 01:39 . 2016-08-06 15:16 -------- d-----w- c:\program files (x86)\Dropbox 2016-08-04 01:39 . 2016-08-04 01:39 -------- d-----w- c:\programdata\Dropbox 2016-08-03 18:49 . 2016-08-03 18:49 -------- d-----w- c:\program files (x86)\Cisco 2016-08-03 18:44 . 2012-02-02 03:07 615976 ----a-w- c:\windows\system32\drivers\btwampfl.sys 2016-08-03 18:43 . 2012-02-02 03:07 39976 ----a-w- c:\windows\system32\drivers\btwl2cap.sys 2016-08-03 18:43 . 2012-02-02 03:07 21544 ----a-w- c:\windows\system32\drivers\btwrchid.sys 2016-08-03 18:43 . 2012-02-02 03:07 211496 ----a-w- c:\windows\system32\drivers\btwavdt.sys 2016-08-03 18:43 . 2012-02-02 03:07 184360 ----a-w- c:\windows\system32\drivers\btwaudio.sys 2016-08-03 18:43 . 2012-02-02 03:07 134696 ----a-w- c:\windows\system32\drivers\bcbtums.sys 2016-08-03 08:04 . 2016-08-03 08:04 -------- d-----w- c:\program files\SqliteBrowser3 2016-08-03 07:11 . 2016-08-03 07:11 -------- d-----w- c:\program files\Inkscape 2016-08-02 16:04 . 2016-08-02 16:04 -------- d-----w- c:\program files (x86)\IrfanView 2016-08-02 10:10 . 2016-08-02 10:10 451 ----a-w- c:\windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2016-08-02 09:16 . 2016-08-02 09:16 -------- d-----w- c:\users\MSSQL$SQLEXPRESS 2016-08-02 09:16 . 2012-02-11 08:02 45656 ----a-w- c:\windows\SysWow64\perf-MSSQL11.SQLEXPRESS-sqlagtctr.dll 2016-08-02 09:16 . 2012-02-11 06:44 54360 ----a-w- c:\windows\system32\perf-MSSQL11.SQLEXPRESS-sqlagtctr.dll 2016-08-02 09:16 . 2012-02-11 08:03 82520 ----a-w- c:\windows\SysWow64\perf-MSSQL$SQLEXPRESS-sqlctr11.0.2100.60.dll 2016-08-02 09:16 . 2012-02-11 06:44 95832 ----a-w- c:\windows\system32\perf-MSSQL$SQLEXPRESS-sqlctr11.0.2100.60.dll 2016-08-02 09:16 . 2012-02-11 06:46 82520 ----a-w- c:\windows\system32\fssres.dll 2016-08-02 09:16 . 2012-02-11 06:46 180312 ----a-w- c:\windows\system32\hadrres.dll 2016-08-02 09:16 . 2016-08-02 09:16 -------- d-----w- c:\program files\Microsoft Visual Studio 10.0 2016-08-02 09:16 . 2016-08-02 09:16 -------- d-----w- c:\windows\system32\RsFx 2016-08-02 09:15 . 2016-08-02 09:15 -------- d-----w- c:\program files\Microsoft.NET 2016-08-02 08:56 . 2016-08-02 08:56 -------- d-----w- c:\windows\system32\appmgmt 2016-08-02 08:36 . 2013-10-04 21:58 963232 ----a-w- c:\windows\system32\msvcr110.dll 2016-08-02 08:10 . 2016-08-02 08:10 -------- d-----w- c:\program files (x86)\Microsoft Works 2016-08-02 08:10 . 2016-08-02 08:10 -------- d-----w- c:\windows\PCHEALTH 2016-08-02 08:10 . 2016-08-02 08:10 -------- d-----w- c:\program files\Microsoft Office 2016-08-02 08:09 . 2016-08-02 08:09 -------- d-----r- C:\MSOCache 2016-08-02 08:07 . 2016-08-02 08:07 -------- d-----w- c:\program files\Common Files\Macrovision Shared 2016-08-02 07:59 . 2016-08-02 07:59 -------- d-----w- c:\program files (x86)\Arduino 2016-08-02 06:48 . 2016-08-02 08:07 -------- d-----w- c:\programdata\DassaultSystemes 2016-08-02 06:48 . 2016-08-02 08:06 -------- d-----w- C:\SOLIDWORKS Data 2016-08-02 06:44 . 2016-08-02 07:45 -------- d-----w- c:\program files\SOLIDWORKS Corp 2016-08-02 06:44 . 2016-08-02 06:44 -------- d-----w- c:\programdata\SOLIDWORKS 2016-08-02 06:13 . 2016-08-04 04:07 -------- d-----w- c:\windows\SysWow64\1033 2016-08-02 06:13 . 2016-08-04 03:05 -------- d-----w- c:\program files (x86)\Microsoft SQL Server 2016-08-02 06:13 . 2016-08-04 03:06 -------- d-----w- c:\program files\Microsoft SQL Server 2016-08-02 06:11 . 2016-08-04 02:16 -------- d-----w- c:\windows\system32\1033 2016-08-02 06:11 . 2016-08-04 04:03 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 14.0 2016-08-01 15:59 . 2016-08-02 06:44 -------- d-----w- c:\program files (x86)\Common Files\Menedżer instalacji SOLIDWORKS 2016-08-01 15:58 . 2016-08-02 06:43 -------- d-----w- c:\windows\SolidWorks 2016-08-01 11:38 . 2016-08-01 11:38 796352 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2016-08-01 11:38 . 2016-08-01 11:38 142528 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2016-08-01 11:38 . 2016-08-01 11:38 -------- d-----w- c:\windows\system32\Macromed 2016-08-01 11:38 . 2016-08-01 11:38 -------- d-----w- c:\windows\SysWow64\Macromed 2016-08-01 11:24 . 2016-08-02 07:44 -------- d-----w- c:\program files\Common Files\SOLIDWORKS Shared 2016-08-01 11:24 . 2016-08-02 08:07 -------- d-----w- c:\program files (x86)\Common Files\SOLIDWORKS Shared 2016-08-01 11:23 . 2016-08-01 11:23 -------- d-----w- c:\program files\Microsoft Visual Studio 8 . . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2016-08-01 10:14 . 2011-12-15 12:09 30816 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys 2016-07-13 10:40 . 2016-07-13 10:40 87888 ----a-w- c:\windows\system32\vcruntime140.dll 2016-07-13 10:40 . 2016-07-13 10:40 781632 ----a-w- c:\windows\system32\concrt140d.dll 2016-07-13 10:40 . 2016-07-13 10:40 75584 ----a-w- c:\windows\system32\mfc140fra.dll 2016-07-13 10:40 . 2016-07-13 10:40 75584 ----a-w- c:\windows\system32\mfc140deu.dll 2016-07-13 10:40 . 2016-07-13 10:40 74560 ----a-w- c:\windows\system32\mfc140esn.dll 2016-07-13 10:40 . 2016-07-13 10:40 73536 ----a-w- c:\windows\system32\mfc140ita.dll 2016-07-13 10:40 . 2016-07-13 10:40 71488 ----a-w- c:\windows\system32\mfc140rus.dll 2016-07-13 10:40 . 2016-07-13 10:40 65856 ----a-w- c:\windows\system32\mfc140enu.dll 2016-07-13 10:40 . 2016-07-13 10:40 633152 ----a-w- c:\windows\system32\msvcp140.dll 2016-07-13 10:40 . 2016-07-13 10:40 6065976 ----a-w- c:\windows\system32\mfc140u.dll 2016-07-13 10:40 . 2016-07-13 10:40 6037296 ----a-w- c:\windows\system32\mfc140.dll 2016-07-13 10:40 . 2016-07-13 10:40 55104 ----a-w- c:\windows\system32\mfc140jpn.dll 2016-07-13 10:40 . 2016-07-13 10:40 545088 ----a-w- c:\windows\system32\vcamp140.dll 2016-07-13 10:40 . 2016-07-13 10:40 54080 ----a-w- c:\windows\system32\mfc140kor.dll 2016-07-13 10:40 . 2016-07-13 10:40 46912 ----a-w- c:\windows\system32\mfc140cht.dll 2016-07-13 10:40 . 2016-07-13 10:40 46912 ----a-w- c:\windows\system32\mfc140chs.dll 2016-07-13 10:40 . 2016-07-13 10:40 395592 ----a-w- c:\windows\system32\vccorlib140.dll 2016-07-13 10:40 . 2016-07-13 10:40 333632 ----a-w- c:\windows\system32\concrt140.dll 2016-07-13 10:40 . 2016-07-13 10:40 213312 ----a-w- c:\windows\system32\vcomp140d.dll 2016-07-13 10:40 . 2016-07-13 10:40 185152 ----a-w- c:\windows\system32\vcomp140.dll 2016-07-13 10:40 . 2016-07-13 10:40 1369920 ----a-w- c:\windows\system32\vcamp140d.dll 2016-07-13 10:40 . 2016-07-13 10:40 136000 ----a-w- c:\windows\system32\mfcm140d.dll 2016-07-13 10:40 . 2016-07-13 10:40 135488 ----a-w- c:\windows\system32\mfcm140ud.dll 2016-07-13 10:40 . 2016-07-13 10:40 131920 ----a-w- c:\windows\system32\vcruntime140d.dll 2016-07-13 10:40 . 2016-07-13 10:40 11455808 ----a-w- c:\windows\system32\mfc140ud.dll 2016-07-13 10:40 . 2016-07-13 10:40 11383096 ----a-w- c:\windows\system32\mfc140d.dll 2016-07-13 10:40 . 2016-07-13 10:40 106304 ----a-w- c:\windows\system32\mfcm140u.dll 2016-07-13 10:40 . 2016-07-13 10:40 105784 ----a-w- c:\windows\system32\mfcm140.dll 2016-07-13 10:40 . 2016-07-13 10:40 1015632 ----a-w- c:\windows\system32\vccorlib140d.dll 2016-07-13 10:40 . 2016-07-13 10:40 1001280 ----a-w- c:\windows\system32\msvcp140d.dll 2016-07-13 10:39 . 2016-07-13 10:39 95552 ----a-w- c:\windows\SysWow64\mfcm140u.dll 2016-07-13 10:39 . 2016-07-13 10:39 95032 ----a-w- c:\windows\SysWow64\mfcm140.dll 2016-07-13 10:39 . 2016-07-13 10:39 8631104 ----a-w- c:\windows\SysWow64\mfc140ud.dll 2016-07-13 10:39 . 2016-07-13 10:39 8559408 ----a-w- c:\windows\SysWow64\mfc140d.dll 2016-07-13 10:39 . 2016-07-13 10:39 83792 ----a-w- c:\windows\SysWow64\vcruntime140.dll 2016-07-13 10:39 . 2016-07-13 10:39 774480 ----a-w- c:\windows\SysWow64\vccorlib140d.dll 2016-07-13 10:39 . 2016-07-13 10:39 75584 ----a-w- c:\windows\SysWow64\mfc140fra.dll 2016-07-13 10:39 . 2016-07-13 10:39 75584 ----a-w- c:\windows\SysWow64\mfc140deu.dll 2016-07-13 10:39 . 2016-07-13 10:39 749888 ----a-w- c:\windows\SysWow64\msvcp140d.dll 2016-07-13 10:39 . 2016-07-13 10:39 74560 ----a-w- c:\windows\SysWow64\mfc140esn.dll 2016-07-13 10:39 . 2016-07-13 10:39 73536 ----a-w- c:\windows\SysWow64\mfc140ita.dll 2016-07-13 10:39 . 2016-07-13 10:39 71488 ----a-w- c:\windows\SysWow64\mfc140rus.dll 2016-07-13 10:39 . 2016-07-13 10:39 65856 ----a-w- c:\windows\SysWow64\mfc140enu.dll 2016-07-13 10:39 . 2016-07-13 10:39 591168 ----a-w- c:\windows\SysWow64\concrt140d.dll 2016-07-13 10:39 . 2016-07-13 10:39 55104 ----a-w- c:\windows\SysWow64\mfc140jpn.dll 2016-07-13 10:39 . 2016-07-13 10:39 54080 ----a-w- c:\windows\SysWow64\mfc140kor.dll 2016-07-13 10:39 . 2016-07-13 10:39 4775224 ----a-w- c:\windows\SysWow64\mfc140u.dll 2016-07-13 10:39 . 2016-07-13 10:39 4705072 ----a-w- c:\windows\SysWow64\mfc140.dll 2016-07-13 10:39 . 2016-07-13 10:39 46912 ----a-w- c:\windows\SysWow64\mfc140cht.dll 2016-07-13 10:39 . 2016-07-13 10:39 46912 ----a-w- c:\windows\SysWow64\mfc140chs.dll 2016-07-13 10:39 . 2016-07-13 10:39 440128 ----a-w- c:\windows\SysWow64\msvcp140.dll 2016-07-13 10:39 . 2016-07-13 10:39 400192 ----a-w- c:\windows\SysWow64\vcamp140.dll 2016-07-13 10:39 . 2016-07-13 10:39 267592 ----a-w- c:\windows\SysWow64\vccorlib140.dll 2016-07-13 10:39 . 2016-07-13 10:39 244032 ----a-w- c:\windows\SysWow64\concrt140.dll 2016-07-13 10:39 . 2016-07-13 10:39 162112 ----a-w- c:\windows\SysWow64\vcomp140d.dll 2016-07-13 10:39 . 2016-07-13 10:39 138560 ----a-w- c:\windows\SysWow64\vcomp140.dll 2016-07-13 10:39 . 2016-07-13 10:39 122168 ----a-w- c:\windows\SysWow64\mfcm140d.dll 2016-07-13 10:39 . 2016-07-13 10:39 121664 ----a-w- c:\windows\SysWow64\mfcm140ud.dll 2016-07-13 10:39 . 2016-07-13 10:39 111952 ----a-w- c:\windows\SysWow64\vcruntime140d.dll 2016-07-13 10:39 . 2016-07-13 10:39 1032512 ----a-w- c:\windows\SysWow64\vcamp140d.dll 2016-06-20 12:45 . 2016-06-20 12:45 226472 ----a-w- c:\windows\SysWow64\VSPerf140.dll 2016-06-20 12:45 . 2016-06-20 12:45 1826504 ----a-w- c:\windows\SysWow64\VsGraphicsHelper.dll 2016-06-20 11:51 . 2016-06-20 11:51 279720 ----a-w- c:\windows\system32\VSPerf140.dll . . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 211264 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.38.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 211264 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.38.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3] @="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 211264 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.38.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4] @="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 211264 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.38.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 211264 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.38.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6] @="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 211264 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.38.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 211264 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.38.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8] @="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 211264 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.38.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite Automount"="c:\program files\DAEMON Tools Lite\DTAgent.exe" [2016-06-22 4299968] "Bloody2"="c:\program files (x86)\Bloody6\Bloody6\Bloody6.exe" [2016-07-22 19228160] "TIDAL"="c:\program files (x86)\TIDAL\TIDAL.exe" [2016-06-09 1399184] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440] "Dropbox"="c:\program files (x86)\Dropbox\Client\Dropbox.exe" [2016-08-01 23546672] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2012-2-1 1380128] SOLIDWORKS 2015 Fast Start.lnk - c:\windows\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe [2016-8-2 335872] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) "AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Notification Packages REG_MULTI_SZ scecli c:\program files\Lenovo\Bluetooth Software\BtwProximityCP.dll . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 dbupdate;Usługa Aktualizacja Dropbox (dbupdate);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x] R3 AMPPAL;Karta wirtualna Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x] R3 CH341SER_A64;CH341SER_A64;c:\windows\system32\Drivers\CH341S64.SYS;c:\windows\SYSNATIVE\Drivers\CH341S64.SYS [x] R3 CoordinatorServiceHost;DTSInterops;c:\program files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe;c:\program files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [x] R3 dbupdatem;Usługa Aktualizacja Dropbox (dbupdatem);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x] R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [x] R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x] R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x] R3 Te.Service;Te.Service;c:\program files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe;c:\program files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 VSStandardCollectorService140;Visual Studio Standard Collector Service;c:\program files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe;c:\program files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [x] R4 RsFx0200;RsFx0200 Driver;c:\windows\system32\DRIVERS\RsFx0200.sys;c:\windows\SYSNATIVE\DRIVERS\RsFx0200.sys [x] R4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE;c:\program files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [x] S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys;c:\windows\SYSNATIVE\DRIVERS\avc3.sys [x] S0 iusb3hcs;Sterownik przełącznika kontrolera hosta Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x] S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x] S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x] S1 bdfwfpf;bdfwfpf;c:\program files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys;c:\program files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [x] S1 gzflt;gzflt;c:\windows\system32\DRIVERS\gzflt.sys;c:\windows\SYSNATIVE\DRIVERS\gzflt.sys [x] S2 gzserv;Bitdefender Antivirus Free Edition;c:\program files\Bitdefender\Antivirus Free Edition\gzserv.exe;c:\program files\Bitdefender\Antivirus Free Edition\gzserv.exe [x] S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x] S2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service;c:\windows\system32\igfxCUIService.exe;c:\windows\SYSNATIVE\igfxCUIService.exe [x] S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x] S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x] S2 SPSniff;SPSniff;c:\program files\Eltima Software\Serial Port Monitor\SPSniff.sys;c:\program files\Eltima Software\Serial Port Monitor\SPSniff.sys [x] S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x] S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x] S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiVpc.sys [x] S3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys;c:\windows\SYSNATIVE\DRIVERS\avckf.sys [x] S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x] S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x] S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x] S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [x] S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x] S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;c:\windows\system32\DRIVERS\dtliteusbbus.sys;c:\windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x] S3 IntcDAud;Audio dla wyświetlaczy Intel(R);c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x] S3 iusb3hub;Sterownik koncentratora Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x] S3 iusb3xhc;Sterownik kontrolera hosta Intel(R) USB 3.0 eXtensible;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x] S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x] S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x] S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x] . . Zawartość folderu 'Zaplanowane zadania' . 2016-08-18 c:\windows\Tasks\DropboxUpdateTaskMachineCore.job - c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-04 01:39] . 2016-08-18 c:\windows\Tasks\DropboxUpdateTaskMachineUA.job - c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-04 01:39] . 2016-08-18 c:\windows\Tasks\MATLAB R2012b Startup Accelerator.job - c:\program files\MATLAB\R2012b\bin\win64\MATLABStartupAccelerator.exe [2016-08-10 17:59] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 255296 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.38.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 255296 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.38.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3] @="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 255296 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.38.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4] @="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 255296 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.38.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 255296 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.38.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6] @="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 255296 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.38.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 255296 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.38.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8] @="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}] 2016-08-01 21:23 255296 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.38.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-12-27 12343400] "RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-11-15 1156712] "Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2016-08-01 8079408] "EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2016-08-01 6200368] "OnekeyStudio"="c:\program files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe" [2016-08-01 789856] "NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-08-27 2634872] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=c:\windows\System32\nvinitx.dll . ------- Skan uzupełniający ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = about:blank mStart Page = about:blank mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: E&ksportuj do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 94.75.115.220 94.75.115.221 8.8.8.8 . . ------- Skojarzenia plików ------- . inifile="%SystemRoot%\system32\NOTEPAD.EXE" %1 txtfile="%SystemRoot%\system32\NOTEPAD.EXE" %1 . - - - - USUNIĘTO PUSTE WPISY - - - - . HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe HKLM-Run-SynLenovoGestureMgr - c:\program files (x86)\Synaptics\SynTP\SynLenovoGestureMgr.exe . . . --------------------- ZABLOKOWANE KLUCZE REJESTRU --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Czas ukończenia: 2016-08-18 20:56:33 ComboFix-quarantined-files.txt 2016-08-18 18:56 . Przed: 161 624 858 624 bajtów wolnych Po: 163 909 185 536 bajtów wolnych . - - End Of File - - A2F40C26CC65ABB3C6C842B17B9979A2