ComboFix 13-10-31.01 - - 2013-10-30  19:53:02.1.2 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.48.1045.18.2046.919 [GMT 1:00]
Uruchomiony z: c:\users\-\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2013-09-28 do 2013-10-30  )))))))))))))))))))))))))))))))
.
.
2013-10-30 18:49 . 2013-10-30 18:50	--------	d-----w-	c:\program files (x86)\Google
2013-10-30 17:14 . 2013-10-30 17:14	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-30 17:10 . 2010-02-23 08:16	294912	----a-w-	c:\windows\system32\browserchoice.exe
2013-10-30 17:08 . 2013-10-16 00:20	10280728	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{C5751DBA-7423-427F-800D-D3DA4D4605BF}\mpengine.dll
2013-10-30 17:03 . 2013-10-30 17:05	--------	d-----w-	c:\windows\system32\MRT
2013-10-30 17:00 . 2013-07-25 09:25	1888768	----a-w-	c:\windows\system32\WMVDECOD.DLL
2013-10-30 17:00 . 2013-07-25 08:57	1620992	----a-w-	c:\windows\SysWow64\WMVDECOD.DLL
2013-10-30 17:00 . 2013-02-27 06:02	111448	----a-w-	c:\windows\system32\consent.exe
2013-10-30 17:00 . 2013-02-27 05:48	1930752	----a-w-	c:\windows\system32\authui.dll
2013-10-30 17:00 . 2013-02-27 05:47	70144	----a-w-	c:\windows\system32\appinfo.dll
2013-10-30 17:00 . 2013-02-27 04:49	1796096	----a-w-	c:\windows\SysWow64\authui.dll
2013-10-30 17:00 . 2013-08-02 02:13	424448	----a-w-	c:\windows\system32\KernelBase.dll
2013-10-30 16:58 . 2013-07-09 05:51	1217024	----a-w-	c:\windows\system32\rpcrt4.dll
2013-10-30 16:55 . 2013-08-29 02:17	5549504	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-10-30 16:54 . 2013-07-03 04:05	76800	----a-w-	c:\windows\system32\drivers\hidclass.sys
2013-10-30 16:54 . 2013-07-03 04:05	32896	----a-w-	c:\windows\system32\drivers\hidparse.sys
2013-10-30 16:54 . 2013-04-26 05:51	751104	----a-w-	c:\windows\system32\win32spl.dll
2013-10-30 16:54 . 2013-04-26 04:55	492544	----a-w-	c:\windows\SysWow64\win32spl.dll
2013-10-30 16:54 . 2013-07-04 12:57	259584	----a-w-	c:\windows\system32\WebClnt.dll
2013-10-30 16:54 . 2013-07-04 12:50	102400	----a-w-	c:\windows\system32\davclnt.dll
2013-10-30 16:54 . 2013-07-04 11:57	205824	----a-w-	c:\windows\SysWow64\WebClnt.dll
2013-10-30 16:54 . 2013-07-04 11:51	81920	----a-w-	c:\windows\SysWow64\davclnt.dll
2013-10-30 16:54 . 2013-07-04 10:11	140800	----a-w-	c:\windows\system32\drivers\mrxdav.sys
2013-10-30 16:54 . 2013-01-24 06:01	223752	----a-w-	c:\windows\system32\drivers\fvevol.sys
2013-10-30 16:44 . 2012-06-02 22:19	2428952	----a-w-	c:\windows\system32\wuaueng.dll
2013-10-30 16:44 . 2012-06-02 22:19	57880	----a-w-	c:\windows\system32\wuauclt.exe
2013-10-30 16:44 . 2012-06-02 22:19	44056	----a-w-	c:\windows\system32\wups2.dll
2013-10-30 16:44 . 2012-06-02 22:15	2622464	----a-w-	c:\windows\system32\wucltux.dll
2013-10-30 16:44 . 2012-06-02 22:19	38424	----a-w-	c:\windows\system32\wups.dll
2013-10-30 16:44 . 2012-06-02 22:19	701976	----a-w-	c:\windows\system32\wuapi.dll
2013-10-30 16:44 . 2012-06-02 22:15	99840	----a-w-	c:\windows\system32\wudriver.dll
2013-10-30 16:44 . 2012-06-02 14:19	186752	----a-w-	c:\windows\system32\wuwebv.dll
2013-10-30 16:44 . 2012-06-02 14:15	36864	----a-w-	c:\windows\system32\wuapp.exe
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-03 13:35 . 2010-11-21 03:27	278800	------w-	c:\windows\system32\MpSigStub.exe
2013-08-29 01:48 . 2013-10-30 16:55	44032	----a-w-	c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
S3 RTL8167;Sterownik Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-30 18:50	1185744	----a-w-	c:\program files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe
.
Zawartość folderu 'Zaplanowane zadania'
.
2013-10-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-10-30 18:49]
.
2013-10-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-10-30 18:49]
.
.
--------- X64 Entries -----------
.
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 89.161.65.246 89.161.65.247
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
Wow6432Node-HKCU-Run-BrowserChoice - c:\windows\System32\browserchoice.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2013-10-30  19:58:35
ComboFix-quarantined-files.txt  2013-10-30 18:58
.
Przed: 90 268 467 200 bajtów wolnych
Po: 90 216 820 736 bajtów wolnych
.
- - End Of File - - 67F75CA00E2BABC45ECFB87449D3719B
A36C5E4F47E84449FF07ED3517B43A31