ComboFix 17-08-04.01 - Odyn 2017-08-31   1:16:58.2.4 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1250.48.1045.18.8175.5175 [GMT 2:00]
Uruchomiony z: C:\Users\Odyn\Desktop\ComboFix.exe
AV: Bitdefender Antivirus Free Antimalware *Disabled/Updated* {3FB17364-4FCC-0FA7-6BBF-973897395371}
SP: Bitdefender Antivirus Free Antimalware *Disabled/Updated* {84D09280-69F6-0029-510F-AC4AECBE19CC}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Rezydentny antywirus jest aktywny



(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))


C:\ProgramData\1501312304.bdinstall.bin
C:\ProgramData\1501312309.bdinstall.bin
C:\ProgramData\1501312613.bdinstall.bin
C:\ProgramData\1501312614.bdinstall.bin
C:\ProgramData\1501312831.bdinstall.bin
C:\ProgramData\1501312832.bdinstall.bin
C:\Windows\ServiceProfiles\LocalService\~gNTUS07.tmp
C:\Windows\ServiceProfiles\NetworkService\~gNTUS06.tmp
C:\Windows\SysWow64\SET7107.tmp
C:\Windows\SysWow64\SET74E5.tmp
C:\Windows\SysWow64\SET7CD2.tmp
C:\Windows\SysWow64\SETA3C1.tmp
C:\Windows\SysWow64\SETAE88.tmp
C:\Windows\SysWow64\SETC370.tmp
C:\Windows\SysWow64\SETC46B.tmp
C:\Windows\SysWow64\SETC866.tmp
C:\Windows\SysWow64\SETCDCC.tmp
C:\Windows\SysWow64\SETCE26.tmp
C:\Windows\SysWow64\SETD808.tmp
C:\Windows\SysWow64\SETECEB.tmp
C:\Windows\SysWow64\SETF0B5.tmp
C:\Windows\SysWow64\SETFB90.tmp
C:\Windows\SysWow64\SETFFB3.tmp


(((((((((((((((((((((((((   Pliki utworzone od 2017-07-28 do 2017-08-30  )))))))))))))))))))))))))))))))


2017-08-30 23:05:41 . 2017-08-30 23:05:41	27552	----a-w-	C:\Windows\system32\drivers\HWiNFO64A.SYS
2017-08-30 22:40:02 . 2017-08-30 22:40:02	--------	d-----w-	C:\Program Files (x86)\Common Files\Razer
2017-08-30 21:50:19 . 2017-05-11 03:37:02	187688	----a-w-	C:\Windows\system32\drivers\gzflt.sys
2017-08-30 21:50:18 . 2017-06-23 01:51:04	259880	----a-w-	C:\Windows\system32\drivers\edrsensor.sys
2017-08-30 21:50:17 . 2017-08-30 22:21:06	1763744	----a-w-	C:\Windows\system32\drivers\avc3.sys
2017-08-30 21:50:17 . 2017-06-07 03:04:24	950160	----a-w-	C:\Windows\system32\drivers\atc.sys
2017-08-30 21:46:03 . 2016-06-22 13:40:56	520032	----a-w-	C:\Windows\system32\drivers\trufos.sys
2017-08-30 21:45:59 . 2017-08-30 23:14:18	--------	d-----w-	C:\Program Files\Bitdefender Antivirus Free
2017-08-30 21:40:45 . 2017-08-30 21:40:45	30718	----a-w-	C:\ProgramData\agent.update.1504129244.bdinstall.bin
2017-08-30 21:39:18 . 2017-08-30 21:39:18	48133	----a-w-	C:\ProgramData\agent.1504129157.bdinstall.bin
2017-08-30 21:39:17 . 2017-08-30 23:10:05	--------	d-----w-	C:\Program Files\Bitdefender Agent
2017-08-30 21:39:17 . 2017-08-30 21:39:18	--------	d-----w-	C:\ProgramData\Bitdefender Agent
2017-08-30 21:22:14 . 2017-08-30 21:22:14	153000	----a-w-	C:\Windows\system32\drivers\bddci.sys
2017-08-30 20:39:08 . 2017-08-09 03:56:35	13476768	----a-w-	C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BC48C4F8-50F5-4688-B757-1EEB82F9D08F}\mpengine.dll
2017-08-28 09:56:05 . 2017-08-30 21:34:52	--------	d-----w-	C:\Program Files\Common Files\ATI Technologies
2017-08-28 09:55:29 . 2017-08-28 09:55:29	--------	d-----w-	C:\Program Files (x86)\VulkanRT
2017-08-28 09:55:29 . 2017-07-12 16:54:00	776992	----a-w-	C:\Windows\SysWow64\vulkan-1.dll
2017-08-28 09:55:29 . 2017-07-12 16:53:54	477472	----a-w-	C:\Windows\SysWow64\vulkaninfo.exe
2017-08-28 09:55:29 . 2017-07-12 16:53:46	905504	----a-w-	C:\Windows\system32\vulkan-1.dll
2017-08-28 09:55:29 . 2017-07-12 16:53:42	578848	----a-w-	C:\Windows\system32\vulkaninfo.exe
2017-08-28 09:54:50 . 2017-08-30 21:33:53	--------	d-----w-	C:\Program Files\AMD
2017-08-28 09:52:15 . 2017-08-28 09:50:55	189112	----a-w-	C:\Windows\PAExec.exe
2017-08-28 08:36:14 . 2017-08-24 14:09:35	891944	----a-w-	C:\Program Files\Mozilla Firefox\uninstall\helper.exe
2017-08-28 08:36:14 . 2017-08-24 14:09:33	96720	----a-w-	C:\Program Files\Mozilla Firefox\gmp-clearkey\0.1\clearkey.dll
2017-08-23 08:38:00 . 2017-08-23 08:38:00	--------	d-----w-	C:\ProgramData\.mono
2017-08-22 21:58:40 . 2017-08-22 21:58:40	0	----a-w-	C:\Windows\system32\SETC85E.tmp
2017-08-22 21:53:33 . 2017-08-01 15:33:31	757248	----a-w-	C:\Windows\system32\win32spl.dll
2017-08-22 21:53:33 . 2017-08-01 15:16:00	497664	----a-w-	C:\Windows\SysWow64\win32spl.dll
2017-08-22 21:53:33 . 2017-07-07 15:29:31	1143296	----a-w-	C:\Windows\system32\DXPTaskRingtone.dll
2017-08-22 21:53:33 . 2017-07-07 15:10:49	973312	----a-w-	C:\Windows\SysWow64\DXPTaskRingtone.dll
2017-08-22 21:43:24 . 2017-08-22 21:53:09	--------	d-----w-	C:\Users\Odyn\AppData\Local\Samsung
2017-08-22 21:40:41 . 2017-08-22 21:53:09	--------	d-----w-	C:\Users\Odyn\AppData\Roaming\Samsung
2017-08-22 21:35:28 . 2016-05-18 12:49:46	144664	----a-w-	C:\Windows\SysWow64\secman.dll
2017-08-22 21:35:26 . 2016-05-18 12:49:46	4659712	----a-w-	C:\Windows\SysWow64\Redemption.dll
2017-08-22 21:35:08 . 2017-08-22 21:53:09	--------	d-----w-	C:\Program Files (x86)\Samsung
2017-08-22 21:35:08 . 2017-08-22 21:53:08	--------	d-----w-	C:\ProgramData\Samsung
2017-08-22 04:23:36 . 2017-08-22 04:23:36	161344	----a-w-	C:\Windows\SysWow64\atiuxpag.dll
2017-08-22 04:23:34 . 2017-08-22 04:23:34	208272	----a-w-	C:\Windows\system32\atiuxp64.dll
2017-08-22 04:23:30 . 2017-08-22 04:23:30	9414912	----a-w-	C:\Windows\SysWow64\atiumdag.dll
2017-08-22 04:23:22 . 2017-08-22 04:23:22	11564520	----a-w-	C:\Windows\system32\atiumd64.dll
2017-08-22 04:23:18 . 2017-08-22 04:23:18	185088	----a-w-	C:\Windows\system32\atiu9p64.dll
2017-08-22 04:23:18 . 2017-08-22 04:23:18	143864	----a-w-	C:\Windows\SysWow64\atiu9pag.dll
2017-08-22 04:21:58 . 2017-08-22 04:21:58	325512	----a-w-	C:\Windows\SysWow64\atieah32.exe
2017-08-22 04:20:58 . 2017-08-22 04:20:58	9752456	----a-w-	C:\Windows\SysWow64\amdmantle32.dll
2017-08-22 04:19:58 . 2017-08-22 04:19:58	915848	----a-w-	C:\Windows\system32\coinst_17.30.dll
2017-08-22 04:19:54 . 2017-08-22 04:19:54	10285448	----a-w-	C:\Windows\SysWow64\amdvlk32.dll
2017-08-22 04:19:52 . 2017-08-22 04:19:52	47850376	----a-w-	C:\Windows\SysWow64\amdocl.dll
2017-08-22 04:19:50 . 2017-08-22 04:19:50	166792	----a-w-	C:\Windows\system32\amduve64.dll
2017-08-22 04:19:48 . 2017-08-22 04:19:48	135560	----a-w-	C:\Windows\SysWow64\amduve32.dll
2017-08-22 04:19:44 . 2017-08-22 04:19:44	66952	----a-w-	C:\Windows\system32\amdmmcl6.dll
2017-08-22 04:19:42 . 2017-08-22 04:19:42	54664	----a-w-	C:\Windows\SysWow64\amdmmcl.dll
2017-08-22 04:19:42 . 2017-08-22 04:19:42	28871560	----a-w-	C:\Windows\SysWow64\atioglxx.dll
2017-08-22 04:19:40 . 2017-08-22 04:19:40	82824	----a-w-	C:\Windows\system32\amdmcl64.dll
2017-08-22 04:19:38 . 2017-08-22 04:19:38	66440	----a-w-	C:\Windows\SysWow64\amdmcl32.dll
2017-08-22 04:19:28 . 2017-08-22 04:19:28	35207560	----a-w-	C:\Windows\system32\atio6axx.dll
2017-08-21 22:19:20 . 2017-08-21 22:19:20	127880	----a-w-	C:\Windows\SysWow64\amdihk32.dll
2017-08-21 22:19:18 . 2017-08-21 22:19:18	149896	----a-w-	C:\Windows\system32\amdihk64.dll
2017-08-15 19:21:46 . 2017-08-15 19:21:46	1531784	----a-w-	C:\Windows\system32\SETC82F.tmp
2017-08-09 17:07:22 . 2017-08-09 17:07:22	122848	----a-w-	C:\Windows\system32\RtNicProp64.dll
2017-08-09 17:07:22 . 2017-08-09 17:07:22	1049056	----a-w-	C:\Windows\system32\drivers\Rt64win7.sys
2017-08-09 16:55:04 . 2017-08-09 16:55:07	--------	d-----w-	C:\Program Files (x86)\qBittorrent
2017-08-09 16:53:42 . 2017-08-24 14:08:23	127440	----a-w-	C:\Program Files\Mozilla Firefox\AccessibleHandler.dll
.


((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))

2017-08-30 23:08:12 . 2016-11-09 19:04:56	65536	----a-w-	C:\Windows\system32\spu_storage.bin
2017-08-28 08:30:07 . 2017-04-19 18:21:52	251832	----a-w-	C:\Windows\system32\drivers\MBAMSwissArmy.sys
2017-08-20 08:17:32 . 2016-11-09 18:01:10	803328	----a-w-	C:\Windows\SysWow64\FlashPlayerApp.exe
2017-08-20 08:17:32 . 2016-11-09 18:01:10	144896	----a-w-	C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2017-08-09 17:07:22 . 2015-03-13 19:08:21	118816	----a-w-	C:\Windows\system32\RTNUninst64.dll
2017-08-09 03:54:05 . 2015-03-14 00:28:30	140394280	-c--a-w-	C:\Windows\system32\MRT.exe
2017-07-20 23:40:28 . 2017-07-20 23:40:28	208272	----a-w-	C:\Windows\system32\SET25BF.tmp
2017-07-20 23:40:18 . 2017-07-20 23:40:18	11556280	----a-w-	C:\Windows\system32\SETC6A3.tmp
2017-07-20 23:40:14 . 2017-07-20 23:40:14	185088	----a-w-	C:\Windows\system32\SET258E.tmp
2017-07-20 23:39:50 . 2017-07-20 23:39:50	20360	----a-w-	C:\Windows\system32\SETDDE4.tmp
2017-07-20 23:39:34 . 2017-07-20 23:39:34	236424	----a-w-	C:\Windows\system32\SET25F0.tmp
2017-07-20 23:39:32 . 2017-07-20 23:39:32	155528	----a-w-	C:\Windows\system32\SET4E35.tmp
2017-07-20 23:39:30 . 2017-07-20 23:39:30	14690064	----a-w-	C:\Windows\system32\SETE807.tmp
2017-07-20 23:39:30 . 2017-07-20 23:39:30	12749080	----a-w-	C:\Windows\system32\SETC77F.tmp
2017-07-20 23:39:20 . 2017-07-20 23:39:20	1910832	----a-w-	C:\Windows\system32\SET266F.tmp
2017-07-20 23:37:40 . 2017-07-20 23:37:40	915848	----a-w-	C:\Windows\system32\SET5BDD.tmp
2017-07-20 23:37:04 . 2017-07-20 23:37:04	35198856	----a-w-	C:\Windows\system32\SETD8EB.tmp
2017-07-16 19:40:42 . 2016-08-14 11:49:21	137208	----a-w-	C:\Windows\system32\drivers\rzpnk.sys
2017-07-12 16:54:00 . 2017-07-12 16:54:00	776992	----a-w-	C:\Windows\SysWow64\vulkan-1-1-0-54-0.dll
2017-07-12 16:53:54 . 2017-07-12 16:53:54	477472	----a-w-	C:\Windows\SysWow64\vulkaninfo-1-1-0-54-0.exe
2017-07-12 16:53:46 . 2017-07-12 16:53:46	905504	----a-w-	C:\Windows\system32\vulkan-1-1-0-54-0.dll
2017-07-12 16:53:42 . 2017-07-12 16:53:42	578848	----a-w-	C:\Windows\system32\vulkaninfo-1-1-0-54-0.exe
2017-07-07 15:10:46 . 2017-08-09 03:53:19	44032	----a-w-	C:\Windows\apppatch\acwow64.dll
2017-07-06 21:42:38 . 2017-07-06 21:42:38	96256	----a-w-	C:\Windows\system32\drivers\AtihdW76.sys
2017-07-06 21:41:38 . 2017-07-06 21:41:38	103424	----a-w-	C:\Windows\system32\DelayAPO.dll
2017-06-15 20:23:49 . 2017-07-11 17:31:54	753664	----a-w-	C:\Windows\system32\drivers\http.sys
2017-06-13 20:42:02 . 2017-04-19 18:21:47	77440	----a-w-	C:\Windows\system32\drivers\mbae64.sys
2017-06-12 22:49:25 . 2017-07-11 17:31:53	594432	----a-w-	C:\Windows\system32\wvc.dll
2017-06-12 22:49:24 . 2017-07-11 17:31:53	1363456	----a-w-	C:\Windows\system32\wdc.dll
2017-06-12 22:49:23 . 2017-07-11 17:31:54	475136	----a-w-	C:\Windows\system32\sysmon.ocx
2017-06-12 22:49:20 . 2017-07-11 17:31:53	58880	----a-w-	C:\Windows\system32\pdhui.dll
2017-06-12 22:29:03 . 2017-07-11 17:31:53	444928	----a-w-	C:\Windows\SysWow64\wvc.dll
2017-06-12 22:29:02 . 2017-07-11 17:31:53	1227264	----a-w-	C:\Windows\SysWow64\wdc.dll
2017-06-12 22:29:01 . 2017-07-11 17:31:53	390144	----a-w-	C:\Windows\SysWow64\sysmon.ocx
2017-06-12 22:28:57 . 2017-07-11 17:31:53	47104	----a-w-	C:\Windows\SysWow64\pdhui.dll
2017-06-12 22:14:07 . 2017-07-11 17:31:54	379392	----a-w-	C:\Windows\system32\msinfo32.exe
2017-06-12 22:14:06 . 2017-07-11 17:31:53	172544	----a-w-	C:\Windows\system32\perfmon.exe
2017-06-12 22:14:04 . 2017-07-11 17:31:53	103936	----a-w-	C:\Windows\system32\resmon.exe
2017-06-12 22:06:51 . 2017-07-11 17:31:53	157184	----a-w-	C:\Windows\SysWow64\perfmon.exe
2017-06-12 22:06:50 . 2017-07-11 17:31:53	303616	----a-w-	C:\Windows\SysWow64\msinfo32.exe
2017-06-12 22:06:50 . 2017-07-11 17:31:53	103424	----a-w-	C:\Windows\SysWow64\resmon.exe
2017-06-10 15:59:44 . 2017-07-11 17:31:54	313856	----a-w-	C:\Windows\system32\Wldap32.dll
2017-06-10 15:39:54 . 2017-07-11 17:31:54	271360	----a-w-	C:\Windows\SysWow64\Wldap32.dll
2017-06-09 15:33:28 . 2017-07-11 17:31:54	1680616	----a-w-	C:\Windows\system32\drivers\ntfs.sys
2017-06-06 19:36:18 . 2017-06-06 19:36:18	207760	----a-w-	C:\Windows\system32\SET6906.tmp
2017-06-06 19:36:16 . 2017-06-06 19:36:16	12578016	----a-w-	C:\Windows\system32\SET3CBE.tmp
2017-06-06 19:36:10 . 2017-06-06 19:36:10	9446336	----a-w-	C:\Windows\system32\SET2993.tmp
2017-06-06 19:36:08 . 2017-06-06 19:36:08	185088	----a-w-	C:\Windows\system32\SET68E5.tmp
2017-06-06 19:36:04 . 2017-06-06 19:36:04	1654880	----a-w-	C:\Windows\system32\SET6959.tmp
2017-06-06 19:35:44 . 2017-06-06 19:35:44	20360	----a-w-	C:\Windows\system32\SET3521.tmp
2017-06-06 19:35:28 . 2017-06-06 19:35:28	236424	----a-w-	C:\Windows\system32\SET6918.tmp
2017-06-06 19:35:26 . 2017-06-06 19:35:26	155528	----a-w-	C:\Windows\system32\SET89AF.tmp
2017-06-06 19:35:04 . 2017-06-06 19:35:04	14414072	----a-w-	C:\Windows\system32\SET2A70.tmp
2017-06-06 19:34:48 . 2017-06-06 19:34:48	1507720	----a-w-	C:\Windows\system32\SET2AD2.tmp
2017-06-06 19:34:28 . 2017-06-06 19:34:28	915848	----a-w-	C:\Windows\system32\SET8F1E.tmp
2017-06-06 19:32:56 . 2017-06-06 19:32:56	32738184	----a-w-	C:\Windows\system32\SET3077.tmp
2017-06-06 15:30:28 . 2017-07-11 17:31:54	1867264	----a-w-	C:\Windows\system32\ExplorerFrame.dll
2017-06-06 15:12:38 . 2017-07-11 17:31:54	1499648	----a-w-	C:\Windows\SysWow64\ExplorerFrame.dll
2017-06-02 08:10:16 . 2017-06-13 17:23:17	733696	----a-w-	C:\Windows\HelpPane.exe


(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))


*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive1]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2016-04-04 19:19:46	329376	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive2]
@="{5AB7172C-9C11-405C-8DD5-AF20F3606282}"
[HKEY_CLASSES_ROOT\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}]
2016-04-04 19:19:46	329376	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive3]
@="{A78ED123-AB77-406B-9962-2A5D9D2F7F30}"
[HKEY_CLASSES_ROOT\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}]
2016-04-04 19:19:46	329376	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive4]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2016-04-04 19:19:46	329376	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive5]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2016-04-04 19:19:46	329376	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2017-02-23 07:34:16	1743664	----a-w-	C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2017-02-23 07:34:16	1743664	----a-w-	C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2017-02-23 07:34:16	1743664	----a-w-	C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GUDelayStartup"="C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" [2017-08-21 01:40:14 44016]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk * 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"StartCCC"="C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"Raptr"="C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe" --startup
"PlaysTV"="C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe" --startup
"KeePass 2 PreLoad"="C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
"VirtualCloneDrive"="C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s

R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [x]
R1 BDVEDISK;BDVEDISK;C:\Windows\system32\DRIVERS\bdvedisk.sys;C:\Windows\SYSNATIVE\DRIVERS\bdvedisk.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 EMET_Service;Microsoft EMET Service;C:\Program Files (x86)\EMET 5.5\EMET_Service.exe;C:\Program Files (x86)\EMET 5.5\EMET_Service.exe [x]
R2 Origin Web Helper Service;Origin Web Helper Service;C:\Program Files (x86)\Origin\OriginWebHelperService.exe;C:\Program Files (x86)\Origin\OriginWebHelperService.exe [x]
R3 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe;C:\Windows\SYSNATIVE\atiesrxx.exe [x]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;C:\Windows\system32\Drivers\ssadadb.sys;C:\Windows\SYSNATIVE\Drivers\ssadadb.sys [x]
R3 bdfwfpf_pc;bdfwfpf_pc;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys;C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [x]
R3 BDSandBox;BDSandBox;C:\Windows\system32\drivers\bdsandbox.sys;C:\Windows\SYSNATIVE\drivers\bdsandbox.sys [x]
R3 ChromodoUpdater;COMODO Chromodo Update Service;C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe;C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe [x]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;C:\Windows\system32\DRIVERS\dtlitescsibus.sys;C:\Windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
R3 etdrv;etdrv;C:\Windows\etdrv.sys;C:\Windows\etdrv.sys [x]
R3 ew_usbccgpfilter;HwHandSet_CompositeFilter;C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys;C:\Windows\SYSNATIVE\DRIVERS\ew_usbccgpfilter.sys [x]
R3 FanatecWheelFilterUsb;FanatecWheelFilterUsb;C:\Windows\system32\DRIVERS\FWFilterUsb.sys;C:\Windows\SYSNATIVE\DRIVERS\FWFilterUsb.sys [x]
R3 FcSerial;Fc Serial Port Driver;C:\Windows\system32\DRIVERS\FcSerial.sys;C:\Windows\SYSNATIVE\DRIVERS\FcSerial.sys [x]
R3 GalaxyClientService;GalaxyClientService;D:\Program Files\GOG Galaxy\GalaxyClientService.exe;D:\Program Files\GOG Galaxy\GalaxyClientService.exe [x]
R3 GalaxyCommunication;GalaxyCommunication;C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe;C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [x]
R3 GeneStor;Genesys Logic Storage Driver;C:\Windows\system32\DRIVERS\GeneStor.sys;C:\Windows\SYSNATIVE\DRIVERS\GeneStor.sys [x]
R3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys;C:\Windows\GVTDrv64.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\system32\IEEtwCollector.exe;C:\Windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 MBAMService;Malwarebytes Service;C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe;C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\system32\drivers\MBAMSwissArmy.sys;C:\Windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 PAExec;PAExec;C:\Windows\PAExec.exe;C:\Windows\PAExec.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys;C:\Windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Revoflt;Revoflt;C:\Windows\system32\DRIVERS\revoflt.sys;C:\Windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 RTCore64;RTCore64;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys;C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.20);C:\Windows\system32\DRIVERS\RtTeam620.sys;C:\Windows\SYSNATIVE\DRIVERS\RtTeam620.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);C:\Windows\system32\DRIVERS\RtVlan620.sys;C:\Windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 SmbDrvI;SmbDrvI;C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys;C:\Windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\system32\DRIVERS\ssadbus.sys;C:\Windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\system32\DRIVERS\ssadmdfl.sys;C:\Windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\system32\DRIVERS\ssadmdm.sys;C:\Windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\system32\DRIVERS\ssadserd.sys;C:\Windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 Synth3dVsc;Synth3dVsc;C:\Windows\system32\drivers\synth3dvsc.sys;C:\Windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 tmbulk;Thrustmaster Series Bulk Driver (tmbulk);C:\Windows\system32\Drivers\tmbulk.sys;C:\Windows\SYSNATIVE\Drivers\tmbulk.sys [x]
R3 tmhidusb;Thrustmaster HID USB Driver;C:\Windows\system32\DRIVERS\tmhidusb.sys;C:\Windows\SYSNATIVE\DRIVERS\tmhidusb.sys [x]
R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys;C:\Windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;C:\Windows\system32\drivers\tsusbhub.sys;C:\Windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;C:\Windows\system32\drivers\rdvgkmd.sys;C:\Windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;C:\Windows\system32\Wat\WatAdminSvc.exe;C:\Windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WSDScan;Obsługa skanowania WSD za pośrednictwem bloku pamięci górnej;C:\Windows\system32\DRIVERS\WSDScan.sys;C:\Windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R4 EaseUS Agent;EaseUS Agent Service;C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe;C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [x]
R4 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe;C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [x]
R4 FWPnpService;Fanatec Wheel Service;C:\Program Files\Fanatec\Fanatec Wheel\FWPnpService.exe;C:\Program Files\Fanatec\Fanatec Wheel\FWPnpService.exe [x]
R4 Mobile Broadband HL Service;Mobile Broadband HL Service;C:\ProgramData\MobileBrServ\mbbservice.exe;C:\ProgramData\MobileBrServ\mbbservice.exe [x]
R4 Origin Client Service;Origin Client Service;C:\Program Files (x86)\Origin\OriginClientService.exe;C:\Program Files (x86)\Origin\OriginClientService.exe [x]
R4 SafeBox;SafeBox;C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe;C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [x]
R4 Smart TimeLock;Smart TimeLock Service;C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe;C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [x]
R4 tmInstall;Thrustmaster® Device Driver Installer;C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE;C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\system32\DRIVERS\amdkmpfd.sys;C:\Windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 atc;atc;C:\Windows\system32\DRIVERS\atc.sys;C:\Windows\SYSNATIVE\DRIVERS\atc.sys [x]
S0 avc3;avc3;C:\Windows\system32\DRIVERS\avc3.sys;C:\Windows\SYSNATIVE\DRIVERS\avc3.sys [x]
S0 EUBAKUP;EUBAKUP;C:\Windows\system32\drivers\eubakup.sys;C:\Windows\SYSNATIVE\drivers\eubakup.sys [x]
S0 EUBKMON;EUBKMON;C:\Windows\system32\drivers\EUBKMON.sys;C:\Windows\SYSNATIVE\drivers\EUBKMON.sys [x]
S0 gzflt;gzflt;C:\Windows\system32\drivers\gzflt.sys;C:\Windows\SYSNATIVE\drivers\gzflt.sys [x]
S0 iaStorA;iaStorA;C:\Windows\system32\DRIVERS\iaStorA.sys;C:\Windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;C:\Windows\system32\DRIVERS\iaStorF.sys;C:\Windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 sptd;sptd;C:\Windows\\SystemRoot\System32\Drivers\sptd.sys;C:\Windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 bdfwfpf;bdfwfpf;C:\Program Files\Bitdefender Antivirus Free\bdfwfpf.sys;C:\Program Files\Bitdefender Antivirus Free\bdfwfpf.sys [x]
S1 EUDSKACS;EUDSKACS;C:\Windows\system32\drivers\eudskacs.sys;C:\Windows\SYSNATIVE\drivers\eudskacs.sys [x]
S1 EUFDDISK;EUFDDISK;C:\Windows\system32\drivers\EuFdDisk.sys;C:\Windows\SYSNATIVE\drivers\EuFdDisk.sys [x]
S1 GUBootStartup;GUBootStartup;C:\Windows\System32\drivers\GUBootStartup.sys;C:\Windows\SYSNATIVE\drivers\GUBootStartup.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;C:\Windows\system32\drivers\HWiNFO64A.SYS;C:\Windows\SYSNATIVE\drivers\HWiNFO64A.SYS [x]
S1 isedrv;Internet Security Essentials;C:\Windows\system32\drivers\isedrv.sys;C:\Windows\SYSNATIVE\drivers\isedrv.sys [x]
S1 ndisrd;WinpkFilter LightWeight Filter;C:\Windows\system32\DRIVERS\ndisrd.sys;C:\Windows\SYSNATIVE\DRIVERS\ndisrd.sys [x]
S2 ClickToRunSvc;Usługa Szybka instalacja pakietu Microsoft Office;C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe;C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe;C:\Windows\SYSNATIVE\svchost.exe [x]
S2 FoxitReaderService;Foxit Reader Service;C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe;C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [x]
S2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe;C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe;C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 isesrv;isesrv;C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe;C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 KMS-R@1n;KMS-R@1n;C:\Windows\KMS-R@1n.exe;C:\Windows\KMS-R@1n.exe [x]
S2 ProductAgentService;ProductAgentService;C:\Program Files\Bitdefender Agent\ProductAgentService.exe;C:\Program Files\Bitdefender Agent\ProductAgentService.exe [x]
S2 Razer Game Manager Service;Razer Game Manager;C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe;C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;C:\Windows\system32\DRIVERS\RtNdPt60.sys;C:\Windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 RzActionSvc;Razer Central Service;C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe;C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [x]
S2 RzKLService;RzKLService;C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe;C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [x]
S2 rzpnk;rzpnk;C:\Windows\system32\drivers\rzpnk.sys;C:\Windows\SYSNATIVE\drivers\rzpnk.sys [x]
S2 ss_conn_service;SAMSUNG Mobile Connectivity Service;C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe;C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [x]
S2 updatesrv;Bitdefender Update Service;C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe;C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [x]
S2 vsservppl;Bitdefender Correlation Service;C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe;C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [x]
S2 XperiaCompanionService;Usługa Xperia Companion;C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe;C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys;C:\Windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 edrsensor;edrsensor;C:\Windows\system32\DRIVERS\edrsensor.sys;C:\Windows\SYSNATIVE\DRIVERS\edrsensor.sys [x]
S3 FWVirtualInputDevice;FWVirtualInputDevice Service;C:\Windows\system32\DRIVERS\FWVirtualInputDevice.sys;C:\Windows\SYSNATIVE\DRIVERS\FWVirtualInputDevice.sys [x]
S3 huawei_enumerator;huawei_enumerator;C:\Windows\system32\DRIVERS\ew_jubusenum.sys;C:\Windows\SYSNATIVE\DRIVERS\ew_jubusenum.sys [x]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\system32\DRIVERS\LEqdUsb.Sys;C:\Windows\SYSNATIVE\DRIVERS\LEqdUsb.Sys [x]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\system32\DRIVERS\LHidEqd.Sys;C:\Windows\SYSNATIVE\DRIVERS\LHidEqd.Sys [x]
S3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys;C:\Windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]


--- Inne Usługi/Sterowniki w Pamięci ---

*NewlyCreated* - RZPNK

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	SSDPSRV upnphost SCardSvr QWAVE wcncsvc

Zawartość folderu 'Zaplanowane zadania'

2015-03-15 C:\Windows\Tasks\RtlLanOptimizerVistaStart.job
- C:\Program Files (x86)\Realtek\LanOptimizer\LanOptimizer.exe [2015-03-15 00:46:33 . 2015-03-15 00:46:42]


--------- X64 Entries -----------


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive1]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2016-04-04 19:19:47	358064	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive2]
@="{5AB7172C-9C11-405C-8DD5-AF20F3606282}"
[HKEY_CLASSES_ROOT\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}]
2016-04-04 19:19:47	358064	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive3]
@="{A78ED123-AB77-406B-9962-2A5D9D2F7F30}"
[HKEY_CLASSES_ROOT\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}]
2016-04-04 19:19:47	358064	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive4]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2016-04-04 19:19:47	358064	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive5]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2016-04-04 19:19:47	358064	----a-w-	C:\Users\Odyn\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64\FileSyncShell64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2017-01-29 13:55:39	2948288	----a-w-	C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2017-01-29 13:55:39	2948288	----a-w-	C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2017-01-29 13:55:39	2948288	----a-w-	C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1]
@="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}"
[HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}]
2014-07-04 16:58:23	206352	------w-	C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxshell.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2]
@="{342DAA0B-D796-460D-8566-901E08A1CCAD}"
[HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}]
2014-07-04 16:58:23	206352	------w-	C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxshell.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3]
@="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}"
[HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}]
2014-07-04 16:58:23	206352	------w-	C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxshell.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4]
@="{33816773-98AE-4723-ADE0-EBE54C8B5A67}"
[HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}]
2014-07-04 16:58:23	206352	------w-	C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxshell.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" [2017-08-09 17:04:41 18381792]

------- Skan uzupełniający -------

uLocal Page = C:\Windows\system32\blank.htm
uStart Page = about:blank
mStart Page = about:blank
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
TCP: DhcpNameServer = 89.108.202.21 89.108.195.21
TCP: Interfaces\{BD034E05-AACF-4CC0-8C54-30A4C4CF482B}: NameServer = 89.108.202.21,89.108.195.21
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
FF - ProfilePath - C:\Users\Odyn\AppData\Roaming\Mozilla\Firefox\Profiles\1jsg0fnb.default-1431533625142\
FF - prefs.js: browser.startup.homepage - google.pl


------- Skojarzenia plików -------

inifile="%SystemRoot%\system32\NOTEPAD.EXE" %1
txtfile="%SystemRoot%\system32\NOTEPAD.EXE" %1

- - - - USUNIĘTO PUSTE WPISY - - - -

AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB4024848 - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.02053\setup.exe
AddRemove-{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB4033990 - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.02053\setup.exe



--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)

Czas ukończenia: 2017-08-31  01:21:52
ComboFix-quarantined-files.txt  2017-08-30 23:21:52

Przed: 17 872 113 664 bajtów wolnych
Po: 19 153 395 712 bajtów wolnych

- - End Of File - - 4E8F98357E7A5E173F2D29A006282BB1
A36C5E4F47E84449FF07ED3517B43A31