ComboFix 12-05-14.01 - Mariusz 2012-05-14  12:38:09.2.4 - x86
Microsoft Windows 7 Ultimate   6.1.7600.0.1250.48.1033.18.3583.2137 [GMT 2:00]
Uruchomiony z: c:\users\Mariusz\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\D989E655AC.sys
c:\users\Mariusz\AppData\Roaming\dvdae
c:\users\Mariusz\AppData\Roaming\dvdae\dvdae.config
c:\users\Mariusz\AppData\Roaming\dvdae\dvdae.lic
c:\windows\msxml4-KB954430-enu.LOG
c:\windows\msxml4-KB973688-enu.LOG
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2012-04-14 do 2012-05-14  )))))))))))))))))))))))))))))))
.
.
2012-05-14 10:46 . 2012-05-14 10:47	--------	d-----w-	c:\users\Mariusz\AppData\Local\temp
2012-05-14 10:46 . 2012-05-14 10:46	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2012-05-14 10:46 . 2012-05-14 10:46	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-05-14 09:59 . 2012-05-14 09:59	--------	d-----w-	c:\users\Mariusz\AppData\Local\ESET
2012-05-14 09:53 . 2012-05-14 09:53	--------	d-----w-	c:\program files\ESET
2012-05-13 12:06 . 2012-05-13 12:06	--------	d-----w-	c:\windows\system32\Wat
2012-05-13 12:04 . 2011-02-19 05:33	802304	----a-w-	c:\windows\system32\FntCache.dll
2012-05-13 11:47 . 2009-09-10 05:52	257024	----a-w-	c:\windows\system32\msv1_0.dll
2012-05-13 11:24 . 2012-03-01 05:53	19312	----a-w-	c:\windows\system32\drivers\fs_rec.sys
2012-05-13 11:24 . 2012-03-01 05:49	172544	----a-w-	c:\windows\system32\wintrust.dll
2012-05-13 11:24 . 2012-03-01 05:45	158720	----a-w-	c:\windows\system32\imagehlp.dll
2012-05-13 11:24 . 2012-03-01 05:40	5120	----a-w-	c:\windows\system32\wmi.dll
2012-05-13 11:24 . 2010-02-11 07:10	293376	----a-w-	c:\windows\system32\browserchoice.exe
2012-05-13 11:18 . 2009-10-10 02:57	12800	----a-w-	c:\windows\system32\drivers\sffp_sd.sys
2012-05-13 11:17 . 2010-03-04 03:57	190976	----a-w-	c:\windows\system32\drivers\ks.sys
2012-05-13 11:16 . 2012-05-13 11:16	--------	d-----w-	c:\program files\MSXML 4.0
2012-05-13 11:12 . 2012-04-18 01:06	6734704	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{373C4D5E-B293-4EE8-B9E0-6012E736E4B9}\mpengine.dll
2012-05-13 11:12 . 2010-09-14 06:07	276992	----a-w-	c:\windows\system32\wcncsvc.dll
2012-05-13 11:11 . 2010-11-02 04:41	351232	----a-w-	c:\windows\system32\wmicmiplugin.dll
2012-05-13 11:11 . 2010-11-02 04:40	496128	----a-w-	c:\windows\system32\taskschd.dll
2012-05-13 11:11 . 2010-11-02 04:39	749056	----a-w-	c:\windows\system32\schedsvc.dll
2012-05-13 11:11 . 2010-11-02 04:40	305152	----a-w-	c:\windows\system32\taskcomp.dll
2012-05-13 11:11 . 2010-11-02 04:34	192000	----a-w-	c:\windows\system32\taskeng.exe
2012-05-13 11:11 . 2010-11-02 04:34	179712	----a-w-	c:\windows\system32\schtasks.exe
2012-05-13 11:11 . 2011-11-05 04:30	2048	----a-w-	c:\windows\system32\tzres.dll
2012-05-13 11:08 . 2012-04-02 02:43	2342400	----a-w-	c:\windows\system32\win32k.sys
2012-05-13 11:07 . 2011-10-26 04:28	1328640	----a-w-	c:\windows\system32\quartz.dll
2012-05-13 11:06 . 2011-03-11 05:40	1164288	----a-w-	c:\windows\system32\mfc42u.dll
2012-05-13 11:05 . 2011-03-03 05:29	132608	----a-w-	c:\windows\system32\dnsrslvr.dll
2012-05-13 11:05 . 2011-03-03 05:27	28672	----a-w-	c:\windows\system32\dnscacheugc.exe
2012-05-13 11:05 . 2010-08-21 05:33	530432	----a-w-	c:\windows\system32\comctl32.dll
2012-05-13 11:05 . 2010-01-09 06:52	132608	----a-w-	c:\windows\system32\cabview.dll
2012-05-13 11:05 . 2010-03-05 07:42	67584	----a-w-	c:\windows\system32\asycfilt.dll
2012-05-13 11:05 . 2011-02-18 05:33	31232	----a-w-	c:\windows\system32\prevhost.exe
2012-05-13 11:05 . 2010-05-05 06:46	363520	----a-w-	c:\windows\system32\StructuredQuery.dll
2012-05-13 11:05 . 2010-10-16 04:41	101760	----a-w-	c:\windows\system32\consent.exe
2012-05-13 11:05 . 2011-04-27 02:33	78336	----a-w-	c:\windows\system32\drivers\dfsc.sys
2012-05-13 10:52 . 2011-02-03 05:45	219008	----a-w-	c:\windows\system32\drivers\dxgmms1.sys
2012-05-13 10:52 . 2010-11-02 04:46	728448	----a-w-	c:\windows\system32\drivers\dxgkrnl.sys
2012-05-13 10:52 . 2010-11-02 04:23	107520	----a-w-	c:\windows\system32\cdd.dll
2012-05-12 15:38 . 2012-05-12 15:38	--------	d-----w-	c:\users\Mariusz\AppData\Roaming\dvdcss
2012-05-12 14:55 . 2012-05-12 14:55	--------	d-----w-	c:\program files\DVD Audio Extractor
2012-05-12 14:46 . 2012-05-12 14:47	--------	d-----w-	c:\program files\NO1 DVD Audio Ripper
2012-05-12 13:21 . 2012-05-12 13:21	--------	d-----w-	c:\program files\Hewlett-Packard
2012-05-12 00:33 . 2012-05-12 00:33	--------	d-----w-	c:\program files\Audacity
2012-05-11 18:42 . 2012-05-11 20:04	--------	d-----w-	c:\users\Mariusz\AppData\Roaming\Camfrog
2012-05-11 18:42 . 2012-05-11 18:42	--------	d-----w-	c:\users\Mariusz\AppData\Local\CrashRpt
2012-05-11 18:42 . 2012-05-13 10:41	--------	d--h--w-	c:\programdata\Common Files
2012-05-11 08:34 . 2012-05-12 14:41	--------	d-----w-	c:\users\Mariusz\AppData\Roaming\Audacity
2012-05-10 23:59 . 2012-05-12 21:00	--------	d-----w-	c:\users\Mariusz\AppData\Local\GetNZB
2012-05-10 23:55 . 2012-05-10 23:55	--------	d-----w-	c:\programdata\GFI Software
2012-05-10 22:21 . 2006-07-03 08:31	94208	----a-w-	c:\windows\amcap.exe
2012-05-10 22:21 . 2006-10-10 13:49	270336	----a-w-	c:\windows\tsnp325.exe
2012-05-10 22:21 . 2006-10-10 12:11	827392	----a-w-	c:\windows\vsnp325.exe
2012-05-10 22:21 . 2012-05-10 22:21	--------	d-----w-	c:\program files\Common Files\snp325
2012-05-10 22:21 . 2007-03-14 09:21	61440	----a-w-	c:\windows\system32\vsnp325.dll
2012-05-10 22:21 . 2007-03-07 14:58	10260864	----a-w-	c:\windows\system32\drivers\snp325.sys
2012-05-10 22:21 . 2006-04-12 10:11	147456	----a-w-	c:\windows\system32\rsnp325.dll
2012-05-10 22:21 . 2005-11-23 11:55	53248	----a-w-	c:\windows\system32\csnp325.dll
2012-05-10 22:21 . 2012-05-10 22:21	--------	d-----w-	c:\users\Mariusz\AppData\Roaming\InstallShield
2012-05-10 21:05 . 2012-05-10 21:13	--------	d-----w-	c:\program files\Trojan Remover
2012-05-10 20:59 . 2012-05-10 20:59	--------	d-----w-	c:\program files\Mozilla Maintenance Service
2012-04-24 23:59 . 2012-04-26 09:20	--------	d-----w-	c:\programdata\boost_interprocess
2012-04-24 23:59 . 2012-05-11 20:10	--------	d-----w-	c:\users\Mariusz\AppData\Roaming\Skype
2012-04-15 22:45 . 2012-04-15 23:33	--------	d-----w-	c:\users\Mariusz\AppData\Roaming\GHISLER
2012-04-15 22:45 . 2012-04-15 22:45	--------	d-----w-	C:\totalcmd
2012-04-15 22:45 . 2012-03-09 05:57	545	----a-w-	c:\windows\UC.PIF
2012-04-15 22:45 . 2012-03-09 05:57	545	----a-w-	c:\windows\RAR.PIF
2012-04-15 22:45 . 2012-03-09 05:57	545	----a-w-	c:\windows\NOCLOSE.PIF
2012-04-15 22:45 . 2012-03-09 05:57	545	----a-w-	c:\windows\LHA.PIF
2012-04-15 22:45 . 2012-03-09 05:57	545	----a-w-	c:\windows\ARJ.PIF
2012-04-14 22:09 . 2012-04-14 22:09	--------	d-----w-	c:\users\Mariusz\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2012-04-14 22:04 . 2012-04-14 22:04	--------	d-----w-	c:\users\Mariusz\AppData\Roaming\PDAppFlex
2012-04-14 22:04 . 2012-04-14 22:04	--------	d-----w-	c:\programdata\regid.1986-12.com.adobe
2012-04-14 14:33 . 2012-04-14 14:33	242240	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2012-04-14 14:26 . 2012-04-14 14:26	477240	----a-w-	c:\windows\system32\drivers\sptd.sys
2012-04-14 14:26 . 2012-04-14 14:33	--------	d-----w-	c:\program files\DAEMON Tools Lite
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-15 00:01 . 2012-04-11 15:12	418464	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2012-04-15 00:01 . 2011-12-14 21:27	70304	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2012-03-06 23:15 . 2011-12-14 21:44	41184	----a-w-	c:\windows\avastSS.scr
2012-03-06 23:15 . 2011-12-14 21:44	201352	----a-w-	c:\windows\system32\aswBoot.exe
2012-03-06 23:03 . 2011-12-14 21:45	612184	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2012-03-06 23:03 . 2011-12-14 21:45	337880	----a-w-	c:\windows\system32\drivers\aswSP.sys
2012-03-06 23:02 . 2012-03-26 11:26	44376	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2012-03-06 23:01 . 2011-12-14 21:45	53848	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2012-03-06 23:01 . 2011-12-14 21:45	57688	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2012-03-06 23:01 . 2011-12-14 21:45	20696	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2012-03-01 00:53 . 2012-03-01 00:53	472808	----a-w-	c:\windows\system32\deployJava1.dll
2012-02-29 23:59 . 2012-03-27 11:49	61248	----a-w-	c:\windows\system32\OpenCL.dll
2012-02-29 23:59 . 2012-03-27 11:49	19444544	----a-w-	c:\windows\system32\nvoglv32.dll
2012-02-29 23:59 . 2012-03-27 11:49	10819392	----a-w-	c:\windows\system32\drivers\nvlddmkm.sys
2012-02-29 23:59 . 2012-03-27 11:49	5892928	----a-w-	c:\windows\system32\nvcuda.dll
2012-02-29 23:59 . 2012-03-27 11:49	2517312	----a-w-	c:\windows\system32\nvcuvid.dll
2012-02-29 23:59 . 2012-03-27 11:49	2437440	----a-w-	c:\windows\system32\nvcuvenc.dll
2012-02-29 23:59 . 2012-03-27 11:49	17543488	----a-w-	c:\windows\system32\nvcompiler.dll
2012-02-29 23:59 . 2011-12-14 21:30	881984	----a-w-	c:\windows\system32\nvgenco32.dll
2012-02-29 23:59 . 2011-12-14 21:30	2301248	----a-w-	c:\windows\system32\nvapi.dll
2012-02-29 23:59 . 2011-12-14 21:30	1000256	----a-w-	c:\windows\system32\nvdispco32.dll
2012-02-29 23:59 . 2009-07-13 22:09	7713088	----a-w-	c:\windows\system32\nvwgf2um.dll
2012-02-29 23:59 . 2009-06-10 21:19	15009600	----a-w-	c:\windows\system32\nvd3dum.dll
2012-02-29 20:56 . 2011-12-14 21:30	3881792	----a-w-	c:\windows\system32\nvcpl.dll
2012-02-29 20:55 . 2011-12-14 21:30	2719040	----a-w-	c:\windows\system32\nvsvc.dll
2012-02-29 20:53 . 2011-12-14 21:30	108352	----a-w-	c:\windows\system32\nvmctray.dll
2012-02-29 20:53 . 2011-12-14 21:30	645440	----a-w-	c:\windows\system32\nvvsvc.exe
2012-02-29 20:53 . 2011-12-14 21:30	62272	----a-w-	c:\windows\system32\nvshext.dll
2012-02-29 20:53 . 2011-12-14 21:30	2561344	----a-w-	c:\windows\system32\nvsvcr.dll
2012-02-29 11:26 . 2012-02-29 11:26	416064	----a-w-	c:\windows\system32\nvStreaming.exe
2012-02-28 00:10 . 2012-02-28 00:10	947472	----a-w-	c:\windows\system32\msjava.dll
2012-02-26 14:47 . 2012-03-28 22:21	79360	----a-w-	c:\windows\system32\ff_vfw.dll
2012-02-23 08:18 . 2011-12-14 21:58	237072	------w-	c:\windows\system32\MpSigStub.exe
2012-04-21 01:18 . 2012-05-10 20:59	97208	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-06 23:15	123536	----a-w-	c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GGDriveOverlay1]
@="{E68D0A50-3C40-4712-B90D-DCFA93FF2534}"
[HKEY_CLASSES_ROOT\CLSID\{E68D0A50-3C40-4712-B90D-DCFA93FF2534}]
2012-04-19 11:47	499712	----a-w-	c:\programdata\GG\ggdrive\ggdrive-overlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GGDriveOverlay2]
@="{E68D0A51-3C40-4712-B90D-DCFA93FF2534}"
[HKEY_CLASSES_ROOT\CLSID\{E68D0A51-3C40-4712-B90D-DCFA93FF2534}]
2012-04-19 11:47	499712	----a-w-	c:\programdata\GG\ggdrive\ggdrive-overlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GGDriveOverlay3]
@="{E68D0A52-3C40-4712-B90D-DCFA93FF2534}"
[HKEY_CLASSES_ROOT\CLSID\{E68D0A52-3C40-4712-B90D-DCFA93FF2534}]
2012-04-19 11:47	499712	----a-w-	c:\programdata\GG\ggdrive\ggdrive-overlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GGDriveOverlay4]
@="{E68D0A53-3C40-4712-B90D-DCFA93FF2534}"
[HKEY_CLASSES_ROOT\CLSID\{E68D0A53-3C40-4712-B90D-DCFA93FF2534}]
2012-04-19 11:47	499712	----a-w-	c:\programdata\GG\ggdrive\ggdrive-overlay.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 718208]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2009-07-15 1474560]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-06 4241512]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"NBAgent"="c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-02-01 446392]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-02-22 1073312]
"snpstd3"="c:\windows\vsnpstd3.exe" [2005-09-05 339968]
"tsnp325"="c:\windows\tsnp325.exe" [2006-10-10 270336]
"snp325"="c:\windows\vsnp325.exe" [2006-10-10 827392]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-22 3080264]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [x]
R2 KMService;KMService;c:\windows\system32\srvany.exe [2011-12-14 8192]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-15 253088]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [2012-04-21 129976]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-05-13 1343400]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-14 242240]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-03-06 57688]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-09-22 974944]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 103112]
S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-29 2348352]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-29 382272]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-03-01 139776]
S3 SNP325;USB PC Camera (SNPSTD325);c:\windows\system32\DRIVERS\snp325.sys [2007-03-07 10260864]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2009-07-10 1067008]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
HPService	REG_MULTI_SZ   	HPSLPSVC
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
.
Zawartość folderu 'Zaplanowane zadania'
.
2012-05-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-11 00:01]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://isearch.avg.com/?cid={5E649381-7132-43FE-96BB-8537379D8644}&mid=43a5eb2d8dab47d0a711318208c292bb-519452ac398a1608a388bff0ce191819acede41e&lang=pl&ds=gh011&pr=sa&d=2012-05-11 20:43&v=11.0.0.9&sap=hp
mStart Page = hxxp://pl.v9.com/?utm_source=b&utm_medium=vlt
uInternet Settings,ProxyOverride = *.local
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Wyślij &do programu OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Mariusz\AppData\Roaming\Mozilla\Firefox\Profiles\rtzbkqa2.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7B01028c14-646d-4935-8bdc-c2636bdfe046%7D&mid=43a5eb2d8dab47d0a711318208c292bb-519452ac398a1608a388bff0ce191819acede41e&ds=gh011&v=11.0.0.9&lang=pl&pr=sa&d=2012-05-11%2020%3A43%3A19&sap=ku&q=
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100482
FF - user.js: extensions.BabylonToolbar_i.babExt - 
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 623bd10e000000000000e0cb4e267b48
FF - user.js: extensions.BabylonToolbar_i.hardId - 623bd10e000000000000e0cb4e267b48
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15375
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1713:02
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe
HKCU-Run-ALLUpdate - c:\program files\ALLPlayer\ALLUpdate.exe
HKCU-Run-AdobeBridge - (no file)
HKLM-Run-NBKeyScan - c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2012-05-14  12:55:24
ComboFix-quarantined-files.txt  2012-05-14 10:55
.
Przed: 4 087 947 264 bajtów wolnych
Po: 4 005 269 504 bajtów wolnych
.
- - End Of File - - E67306717BC6C27138B8E0F12552C486