ComboFix 13-11-07.01 - uzytkownik 2013-11-10  14:16:28.3.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.48.1045.18.4095.2657 [GMT 1:00]
Uruchomiony z: c:\users\uzytkownik\Downloads\ComboFix.exe
AV: Ad-Aware Antivirus *Disabled/Outdated* {D87B6541-12A1-DAEA-0033-9B8057AAB996}
FW: Ad-Aware Firewall *Disabled* {E040E464-58CE-DBB2-2B6C-32B5A979FEED}
SP: Ad-Aware Antivirus *Disabled/Outdated* {631A84A5-349B-D564-3A83-A0F22C2DF32B}
SP: PC Tools Spyware Doctor *Disabled/Updated* {94076BB2-F3DA-227F-9A1E-F060FF73600F}
SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usuniêto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\auth.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\burnlib.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\dsp_sps.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\enc_fhgaac.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\enc_flac.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\enc_lame.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\enc_vorbis.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\enc_wav.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\enc_wma.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_classicart.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_ff.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_hotkeys.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_jumpex.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_ml.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_nopro.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_skinmanager.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_timerestore.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_tray.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\gen_undo.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_avi.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_cdda.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_dshow.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_flac.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_flv.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_linein.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_midi.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_mkv.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_mod.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_mp3.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_mp4.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_nsv.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_swf.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_vorbis.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_wav.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_wave.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_wm.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\in_wv.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_addons.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_autotag.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_bookmarks.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_devices.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_disc.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_downloads.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_enqplay.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_history.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_impex.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_local.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_nowplaying.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_online.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_playlists.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_plg.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_pmp.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_rg.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_transcode.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ml_wire.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\ombrowser.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\out_disk.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\out_ds.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\out_wave.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\playlist.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\pmp_activesync.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\pmp_android.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\pmp_ipod.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\pmp_njb.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\pmp_p4s.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\pmp_usb.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\pmp_wifi.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\tagz.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\vis_avs.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\vis_milk2.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\vis_nsfs.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\winamp.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\winampa.lng
c:\users\uzytkownik\AppData\Local\Temp\WPLEFAB.tmp\xspf.lng
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2013-10-10 do 2013-11-10  )))))))))))))))))))))))))))))))
.
.
2013-11-10 13:24 . 2013-11-10 13:24	--------	d-----w-	c:\users\GoϾ\AppData\Local\temp
2013-11-10 13:24 . 2013-11-10 13:24	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-11-10 13:24 . 2013-11-10 13:24	--------	d-----w-	c:\users\Administrator\AppData\Local\temp
2013-11-10 12:47 . 2013-11-10 12:49	--------	d-----w-	C:\UsbFix
2013-11-10 12:01 . 2013-11-10 12:22	--------	d-----w-	c:\users\uzytkownik\AppData\Local\CrashDumps
2013-11-10 11:18 . 2012-08-30 12:26	503808	----a-w-	c:\windows\msvcp71.dll
2013-11-10 11:16 . 2003-03-18 21:14	499712	----a-w-	c:\windows\system32\msvcp71.dll
2013-11-10 11:15 . 2004-07-09 07:43	364544	----a-w-	c:\windows\system32\TwnLib4.dll
2013-11-10 11:15 . 2003-03-18 19:12	1047552	----a-w-	c:\windows\system32\mfc71u.dll
2013-11-10 11:15 . 2003-02-21 03:42	348160	----a-w-	c:\windows\system32\msvcr71.dll
2013-11-10 11:15 . 2004-07-26 15:16	476320	----a-w-	c:\windows\system32\imagXpr7.dll
2013-11-10 11:15 . 2004-07-26 15:16	471040	----a-w-	c:\windows\system32\imagXRA7.dll
2013-11-10 11:15 . 2004-07-26 15:16	262144	----a-w-	c:\windows\system32\imagXR7.dll
2013-11-10 11:15 . 2004-07-26 15:16	1568768	----a-w-	c:\windows\system32\imagX7.dll
2013-11-10 11:15 . 2003-03-19 05:20	1060864	----a-w-	c:\windows\system32\mfc71.dll
2013-11-10 01:03 . 2013-11-10 01:03	--------	d-----w-	c:\program files\Lavasoft
2013-11-10 01:02 . 2013-11-10 01:02	--------	d-----w-	c:\users\uzytkownik\AppData\Roaming\Lavasoft
2013-11-10 01:01 . 2013-11-10 01:01	--------	d-----w-	c:\program files\Common Files\Lavasoft
2013-11-10 01:00 . 2013-11-10 01:00	--------	d-----w-	c:\programdata\Lavasoft
2013-11-10 00:55 . 2012-10-23 16:40	77144	----a-w-	c:\windows\system32\drivers\PCTBD64.sys
2013-11-10 00:55 . 2012-10-23 16:40	769144	----a-w-	c:\windows\BDTSupport.dll
2013-11-10 00:52 . 2012-11-01 14:35	253256	----a-w-	c:\windows\system32\drivers\PCTSD64.sys
2013-11-10 00:51 . 2013-11-10 00:55	--------	d-----w-	c:\programdata\PC Tools
2013-11-10 00:51 . 2013-11-10 00:51	--------	d-----w-	c:\users\uzytkownik\AppData\Roaming\TestApp
2013-11-09 23:07 . 2013-11-09 23:07	--------	d-----w-	c:\users\uzytkownik\AppData\Roaming\NCH Software
2013-11-09 23:07 . 2013-11-09 23:09	--------	d-----w-	c:\program files (x86)\NCH Software
2013-11-09 23:07 . 2013-11-09 23:07	--------	d-----w-	c:\programdata\NCH Software
2013-11-09 21:30 . 2013-11-09 21:30	388096	----a-r-	c:\users\uzytkownik\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-11-09 21:30 . 2013-11-09 21:30	--------	d-----w-	c:\program files (x86)\Trend Micro
2013-11-08 22:04 . 2013-09-20 09:49	21040	----a-w-	c:\windows\system32\sdnclean64.exe
2013-11-08 21:50 . 2013-11-08 22:05	--------	d-----w-	c:\program files (x86)\Spybot - Search & Destroy 2
2013-11-08 21:38 . 2013-11-08 21:38	883928	----a-w-	c:\windows\system32\drivers\Rt64win7.sys
2013-11-08 21:38 . 2013-11-08 21:38	74456	----a-w-	c:\windows\system32\RtNicProp64.dll
2013-11-08 21:26 . 2013-11-09 22:26	--------	d-----w-	c:\programdata\ProductData
2013-11-08 09:50 . 2013-10-15 23:20	10280728	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{253E62DB-B056-4355-A005-71600B700AE7}\mpengine.dll
2013-11-04 17:38 . 2013-11-10 12:06	--------	d-----w-	c:\program files\Debugging Tools for Windows (x64)
2013-11-04 17:38 . 2013-11-04 17:38	--------	d-----w-	c:\program files\Microsoft SDKs
2013-11-04 12:32 . 2013-11-04 12:32	--------	d-----w-	c:\users\uzytkownik\AppData\Roaming\.wtw
2013-11-04 12:21 . 2009-02-24 17:35	255552	----a-w-	c:\windows\SysWow64\drivers\mcdbus.sys
2013-11-01 23:16 . 2006-11-14 05:28	86016	----a-w-	c:\windows\SysWow64\cttele.dll
2013-11-01 21:40 . 2013-11-08 22:06	--------	d-----w-	c:\programdata\Spybot - Search & Destroy
2013-10-31 20:18 . 2013-10-31 20:12	--------	d-----w-	c:\users\uzytkownik\AppData\Local\NVIDIA
2013-10-31 20:07 . 2013-10-31 20:07	--------	d-----w-	c:\users\HomeGroupUser$
2013-10-31 18:48 . 2013-10-31 19:12	--------	d-----w-	C:\symbols
2013-10-31 18:40 . 2013-10-31 18:40	--------	d-----w-	c:\program files (x86)\Debugging Tools for Windows (x86)
2013-10-31 18:11 . 2013-10-31 18:11	--------	d-----w-	c:\windows\ERUNT
2013-10-31 18:04 . 2013-10-31 20:19	--------	d-----w-	c:\programdata\NVIDIA Corporation
2013-10-31 18:00 . 2013-10-31 18:00	--------	d-----w-	c:\program files\Common Files\Intel
2013-10-31 18:00 . 2013-10-31 18:00	--------	d-----w-	c:\program files (x86)\Common Files\Intel
2013-10-31 17:54 . 2013-10-31 18:00	--------	d-----w-	c:\program files (x86)\Intel
2013-10-31 17:54 . 2010-12-15 15:10	53248	----a-w-	c:\windows\SysWow64\CSVer.dll
2013-10-31 17:54 . 2013-10-31 17:58	--------	d-----w-	C:\Drivers
2013-10-31 17:27 . 2013-10-31 17:27	--------	d-----w-	c:\program files (x86)\SystemRequirementsLab
2013-10-31 17:27 . 2013-10-31 17:27	--------	d-----w-	c:\users\uzytkownik\SystemRequirementsLab
2013-10-31 17:23 . 2013-10-31 17:23	--------	d-----w-	C:\NVIDIA
2013-10-31 12:01 . 2013-10-31 12:01	--------	d-----w-	c:\programdata\Installations
2013-10-31 11:56 . 2013-10-31 11:56	--------	d-----w-	c:\programdata\NokiaInstallerCache
2013-10-31 11:56 . 2013-10-31 11:56	--------	d-----w-	c:\program files (x86)\Nokia
2013-10-31 11:53 . 2013-10-31 11:53	--------	d-----w-	c:\windows\SysWow64\CatRoot_bak
2013-10-31 11:51 . 2013-10-31 11:51	--------	d-----w-	c:\program files (x86)\Common Files\InstallShield
2013-10-30 19:29 . 2013-10-30 19:29	--------	d-----w-	c:\users\uzytkownik\AppData\Local\Intel_Corporation
2013-10-30 19:29 . 2013-10-30 19:29	--------	d-----w-	c:\program files (x86)\Intel Corporation
2013-10-30 19:00 . 2013-10-31 17:59	--------	d-----w-	C:\Intel
2013-10-29 17:55 . 2013-10-29 17:55	--------	d-----w-	c:\users\uzytkownik\AppData\Local\AMD
2013-10-29 17:55 . 2013-10-29 17:55	--------	d-----w-	c:\programdata\ATI
2013-10-29 17:45 . 2013-10-29 17:47	--------	d-----w-	c:\program files (x86)\MSI Afterburner
2013-10-29 16:45 . 2013-10-26 20:35	174968	----a-w-	c:\windows\system32\drivers\idmwfp.sys
2013-10-29 13:19 . 2013-10-29 13:19	--------	d-----w-	c:\users\uzytkownik\AppData\Local\Mozilla Thunderbird
2013-10-25 16:39 . 2013-10-25 16:39	78432	----a-w-	c:\windows\system32\atimpc64.dll
2013-10-25 16:39 . 2013-10-25 16:39	78432	----a-w-	c:\windows\system32\amdpcom64.dll
2013-10-25 16:39 . 2013-10-25 16:39	71704	----a-w-	c:\windows\SysWow64\atimpc32.dll
2013-10-25 16:39 . 2013-10-25 16:39	71704	----a-w-	c:\windows\SysWow64\amdpcom32.dll
2013-10-25 16:36 . 2013-10-25 16:36	13198848	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2013-10-25 16:23 . 2013-10-25 16:23	230912	----a-w-	c:\windows\system32\clinfo.exe
2013-10-25 16:23 . 2013-10-25 16:23	100352	----a-w-	c:\windows\system32\OpenVideo64.dll
2013-10-25 16:22 . 2013-10-25 16:22	83968	----a-w-	c:\windows\SysWow64\OpenVideo.dll
2013-10-25 16:22 . 2013-10-25 16:22	86528	----a-w-	c:\windows\system32\OVDecode64.dll
2013-10-25 16:22 . 2013-10-25 16:22	73728	----a-w-	c:\windows\SysWow64\OVDecode.dll
2013-10-25 16:22 . 2013-10-25 16:22	29363712	----a-w-	c:\windows\system32\amdocl64.dll
2013-10-25 16:20 . 2013-10-25 16:20	24846848	----a-w-	c:\windows\SysWow64\amdocl.dll
2013-10-25 16:17 . 2013-10-25 16:17	63488	----a-w-	c:\windows\system32\OpenCL.dll
2013-10-25 16:17 . 2013-10-25 16:17	57344	----a-w-	c:\windows\SysWow64\OpenCL.dll
2013-10-25 16:13 . 2013-10-25 16:13	129536	----a-w-	c:\windows\system32\coinst_13.25.18.dll
2013-10-25 15:59 . 2013-10-25 15:59	26350592	----a-w-	c:\windows\system32\atio6axx.dll
2013-10-25 15:56 . 2013-10-25 15:56	368640	----a-w-	c:\windows\system32\atiapfxx.exe
2013-10-25 15:56 . 2013-10-25 15:56	62464	----a-w-	c:\windows\system32\aticalrt64.dll
2013-10-25 15:56 . 2013-10-25 15:56	52224	----a-w-	c:\windows\SysWow64\aticalrt.dll
2013-10-25 15:56 . 2013-10-25 15:56	55808	----a-w-	c:\windows\system32\aticalcl64.dll
2013-10-25 15:55 . 2013-10-25 15:55	49152	----a-w-	c:\windows\SysWow64\aticalcl.dll
2013-10-25 15:55 . 2013-10-25 15:55	15716352	----a-w-	c:\windows\system32\aticaldd64.dll
2013-10-25 15:52 . 2013-10-25 15:52	14302208	----a-w-	c:\windows\SysWow64\aticaldd.dll
2013-10-25 15:41 . 2013-10-25 15:41	22156288	----a-w-	c:\windows\SysWow64\atioglxx.dll
2013-10-25 15:36 . 2013-10-25 15:36	31232	----a-w-	c:\windows\system32\atimuixx.dll
2013-10-25 15:36 . 2013-10-25 15:36	585216	----a-w-	c:\windows\system32\atieclxx.exe
2013-10-25 15:35 . 2013-10-25 15:35	239616	----a-w-	c:\windows\system32\atiesrxx.exe
2013-10-25 15:34 . 2013-10-25 15:34	190976	----a-w-	c:\windows\system32\atitmm64.dll
2013-10-25 15:06 . 2013-10-25 15:06	825856	----a-w-	c:\windows\SysWow64\atiadlxy.dll
2013-10-25 15:05 . 2013-10-25 15:05	74752	----a-w-	c:\windows\system32\atig6pxx.dll
2013-10-25 15:05 . 2013-10-25 15:05	69632	----a-w-	c:\windows\SysWow64\atiglpxx.dll
2013-10-25 15:05 . 2013-10-25 15:05	69632	----a-w-	c:\windows\system32\atiglpxx.dll
2013-10-25 15:05 . 2013-10-25 15:05	100352	----a-w-	c:\windows\system32\atig6txx.dll
2013-10-25 15:05 . 2013-10-25 15:05	96768	----a-w-	c:\windows\SysWow64\atigktxx.dll
2013-10-25 15:05 . 2013-10-25 15:05	624128	----a-w-	c:\windows\system32\drivers\atikmpag.sys
2013-10-25 15:02 . 2013-10-25 15:02	43520	----a-w-	c:\windows\system32\drivers\ati2erec.dll
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-08 21:38 . 2013-06-27 18:17	108760	----a-w-	c:\windows\system32\RTNUninst64.dll
2013-11-01 23:16 . 2013-06-27 18:11	431104	----a-w-	c:\windows\system32\wrap_oal.dll
2013-11-01 23:16 . 2013-06-27 18:11	409600	----a-w-	c:\windows\SysWow64\wrap_oal.dll
2013-11-01 23:16 . 2013-06-27 18:11	136192	----a-w-	c:\windows\system32\OpenAL32.dll
2013-11-01 23:16 . 2013-06-27 18:11	114688	----a-w-	c:\windows\SysWow64\OpenAL32.dll
2013-10-25 16:39 . 2013-03-29 02:37	143304	----a-w-	c:\windows\system32\atiuxp64.dll
2013-10-25 16:39 . 2013-03-29 02:37	126336	----a-w-	c:\windows\SysWow64\atiuxpag.dll
2013-10-25 16:39 . 2013-03-29 02:37	98496	----a-w-	c:\windows\SysWow64\atiu9pag.dll
2013-10-25 16:39 . 2013-03-29 02:37	115512	----a-w-	c:\windows\system32\atiu9p64.dll
2013-10-25 16:39 . 2013-03-29 02:37	1318040	----a-w-	c:\windows\system32\aticfx64.dll
2013-10-25 16:39 . 2013-03-29 02:37	1099704	----a-w-	c:\windows\SysWow64\aticfx32.dll
2013-10-25 16:39 . 2013-03-29 02:36	9763576	----a-w-	c:\windows\system32\atidxx64.dll
2013-10-25 16:39 . 2013-03-29 02:36	8412168	----a-w-	c:\windows\SysWow64\atidxx32.dll
2013-10-25 16:39 . 2013-03-29 02:36	8287008	----a-w-	c:\windows\SysWow64\atiumdva.dll
2013-10-25 16:39 . 2013-03-29 02:36	6630232	----a-w-	c:\windows\SysWow64\atiumdag.dll
2013-10-25 16:38 . 2013-03-29 02:36	8927704	----a-w-	c:\windows\system32\atiumd6a.dll
2013-10-25 16:38 . 2013-03-29 02:36	7751408	----a-w-	c:\windows\system32\atiumd64.dll
2013-10-25 15:36 . 2013-03-29 01:35	442368	----a-w-	c:\windows\system32\atidemgy.dll
2013-10-25 15:06 . 2013-03-29 01:10	1145344	----a-w-	c:\windows\system32\atiadlxx.dll
2013-10-18 09:24 . 2013-10-04 20:38	1490656	----a-w-	c:\windows\system32\WdfCoInstaller01007.dll
2013-10-18 09:24 . 2013-10-04 20:38	1490656	----a-w-	c:\windows\system32\drivers\WdfCoInstaller01007.dll
2013-10-10 11:47 . 2013-06-27 22:03	80541720	----a-w-	c:\windows\system32\MRT.exe
2013-10-09 14:14 . 2013-08-16 18:56	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-09 14:14 . 2013-08-16 18:56	692616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-10-08 05:50 . 2013-09-15 20:22	96168	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-05 14:01 . 2013-10-05 14:01	5899264	----a-w-	c:\windows\SysWow64\config\systemprofile\RIPatch_windows_22.exe
2013-09-24 14:53 . 2013-09-24 14:53	94208	----a-w-	c:\windows\system32\drivers\AtihdW76.sys
2013-09-24 14:51 . 2013-09-24 14:51	110080	----a-w-	c:\windows\system32\DelayAPO.dll
2013-09-22 23:28 . 2013-10-10 17:55	1767936	----a-w-	c:\windows\SysWow64\wininet.dll
2013-09-22 23:27 . 2013-10-10 17:55	2876928	----a-w-	c:\windows\SysWow64\jscript9.dll
2013-09-22 23:27 . 2013-10-10 17:55	61440	----a-w-	c:\windows\SysWow64\iesetup.dll
2013-09-22 23:27 . 2013-10-10 17:55	109056	----a-w-	c:\windows\SysWow64\iesysprep.dll
2013-09-22 22:55 . 2013-10-10 17:55	51712	----a-w-	c:\windows\system32\ie4uinit.exe
2013-09-22 22:55 . 2013-10-10 17:55	2241024	----a-w-	c:\windows\system32\wininet.dll
2013-09-22 22:55 . 2013-10-10 17:55	1365504	----a-w-	c:\windows\system32\urlmon.dll
2013-09-22 22:54 . 2013-10-10 17:55	603136	----a-w-	c:\windows\system32\msfeeds.dll
2013-09-22 22:54 . 2013-10-10 17:55	19252224	----a-w-	c:\windows\system32\mshtml.dll
2013-09-22 22:54 . 2013-10-10 17:55	855552	----a-w-	c:\windows\system32\jscript.dll
2013-09-22 22:54 . 2013-10-10 17:55	3959296	----a-w-	c:\windows\system32\jscript9.dll
2013-09-22 22:54 . 2013-10-10 17:55	53248	----a-w-	c:\windows\system32\jsproxy.dll
2013-09-22 22:54 . 2013-10-10 17:55	526336	----a-w-	c:\windows\system32\ieui.dll
2013-09-22 22:54 . 2013-10-10 17:55	67072	----a-w-	c:\windows\system32\iesetup.dll
2013-09-22 22:54 . 2013-10-10 17:55	39936	----a-w-	c:\windows\system32\iernonce.dll
2013-09-22 22:54 . 2013-10-10 17:55	2647552	----a-w-	c:\windows\system32\iertutil.dll
2013-09-22 22:54 . 2013-10-10 17:55	136704	----a-w-	c:\windows\system32\iesysprep.dll
2013-09-22 22:54 . 2013-10-10 17:55	15404544	----a-w-	c:\windows\system32\ieframe.dll
2013-09-21 03:38 . 2013-10-10 17:55	2706432	----a-w-	c:\windows\system32\mshtml.tlb
2013-09-21 03:30 . 2013-10-10 17:55	2706432	----a-w-	c:\windows\SysWow64\mshtml.tlb
2013-09-21 02:48 . 2013-10-10 17:55	89600	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2013-09-21 02:39 . 2013-10-10 17:55	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-09-15 20:22 . 2013-09-15 20:22	973736	----a-w-	c:\windows\system32\deployJava1.dll
2013-09-15 20:22 . 2013-09-15 20:22	312744	----a-w-	c:\windows\system32\javaws.exe
2013-09-15 20:22 . 2013-09-15 20:22	1095080	----a-w-	c:\windows\system32\npDeployJava1.dll
2013-09-15 20:22 . 2013-09-15 20:22	189352	----a-w-	c:\windows\system32\javaw.exe
2013-09-15 20:22 . 2013-09-15 20:22	189352	----a-w-	c:\windows\system32\java.exe
2013-09-15 20:22 . 2013-09-15 20:22	108968	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2013-09-14 01:10 . 2013-10-10 05:56	497152	----a-w-	c:\windows\system32\drivers\afd.sys
2013-09-12 21:13 . 2013-09-12 21:13	320512	----a-w-	c:\windows\SysWow64\LiveWrapRTSP.dll
2013-09-08 02:30 . 2013-10-10 05:56	1903552	----a-w-	c:\windows\system32\drivers\tcpip.sys
2013-09-08 02:27 . 2013-10-10 05:56	327168	----a-w-	c:\windows\system32\mswsock.dll
2013-09-08 02:03 . 2013-10-10 05:56	231424	----a-w-	c:\windows\SysWow64\mswsock.dll
2013-09-03 12:35 . 2013-06-27 18:11	278800	------w-	c:\windows\system32\MpSigStub.exe
2013-08-29 02:17 . 2013-10-10 05:56	5549504	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-08-29 02:16 . 2013-10-10 05:56	1732032	----a-w-	c:\windows\system32\ntdll.dll
2013-08-29 02:16 . 2013-10-10 05:56	243712	----a-w-	c:\windows\system32\wow64.dll
2013-08-29 02:16 . 2013-10-10 05:56	859648	----a-w-	c:\windows\system32\tdh.dll
2013-08-29 02:13 . 2013-10-10 05:56	878080	----a-w-	c:\windows\system32\advapi32.dll
2013-08-29 01:51 . 2013-10-10 05:56	3969472	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51 . 2013-10-10 05:56	3914176	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50 . 2013-10-10 05:56	5120	----a-w-	c:\windows\SysWow64\wow32.dll
2013-08-29 01:50 . 2013-10-10 05:56	1292192	----a-w-	c:\windows\SysWow64\ntdll.dll
2013-08-29 01:50 . 2013-10-10 05:56	619520	----a-w-	c:\windows\SysWow64\tdh.dll
2013-08-29 01:48 . 2013-10-10 05:56	640512	----a-w-	c:\windows\SysWow64\advapi32.dll
2013-08-29 01:48 . 2013-10-10 05:56	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2013-08-29 00:49 . 2013-10-10 05:56	25600	----a-w-	c:\windows\SysWow64\setup16.exe
2013-08-29 00:49 . 2013-10-10 05:56	7680	----a-w-	c:\windows\SysWow64\instnm.exe
2013-08-29 00:49 . 2013-10-10 05:56	14336	----a-w-	c:\windows\SysWow64\ntvdm64.dll
2013-08-29 00:49 . 2013-10-10 05:56	2048	----a-w-	c:\windows\SysWow64\user.exe
2013-08-28 01:21 . 2013-10-10 05:56	3155968	----a-w-	c:\windows\system32\win32k.sys
2013-08-28 01:12 . 2013-10-10 05:56	461312	----a-w-	c:\windows\system32\scavengeui.dll
2013-08-22 21:33 . 2013-08-22 21:33	773800	----a-w-	c:\windows\SysWow64\msvcr100.dll
2013-08-22 21:33 . 2013-08-22 21:33	421032	----a-w-	c:\windows\SysWow64\msvcp100.dll
2013-08-20 06:02 . 2013-08-20 06:02	204568	----a-w-	c:\windows\system32\drivers\ssudmdm.sys
2013-08-20 06:02 . 2013-08-20 06:02	103576	----a-w-	c:\windows\system32\drivers\ssudbus.sys
2013-08-15 12:46 . 2013-08-15 12:46	716789	----a-w-	c:\windows\SysWow64\unins000.exe
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyœlne, prawid³owe wpisy nie s¹ pokazane  
REGEDIT4
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DevconDefaultDB"="c:\windows\system32\READREG" [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AbilisT;Abilis Systems Single DVB-T Tuner;c:\windows\system32\Drivers\AbilisBdaTuner.sys;c:\windows\SYSNATIVE\Drivers\AbilisBdaTuner.sys [x]
R3 BthAvrcp;Profil AVRCP Bluetooth;c:\windows\system32\DRIVERS\BthAvrcp.sys;c:\windows\SYSNATIVE\DRIVERS\BthAvrcp.sys [x]
R3 cpuz136;cpuz136;c:\users\uzytkownik\AppData\Local\Temp\cpuz136\cpuz136_x64.sys;c:\users\uzytkownik\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [x]
R3 csr_a2dp;Profil AV Bluetooth;c:\windows\system32\drivers\bthav.sys;c:\windows\SYSNATIVE\drivers\bthav.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ew_hwusbdev.sys [x]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys;c:\windows\SYSNATIVE\DRIVERS\ew_usbenumfilter.sys [x]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys;c:\windows\SYSNATIVE\DRIVERS\ewusbwwan.sys [x]
R3 gzflt;gzflt;c:\program files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys;c:\program files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\2.6.0.0\gzflt.sys [x]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jucdcacm.sys [x]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jubusenum.sys [x]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juextctrl.sys [x]
R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juwwanecm.sys [x]
R3 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]
R3 IntcDAud;Intel(R) Audio dla ekranów;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 kxwdmdrv;kX WDM Driver Service;c:\windows\system32\drivers\kx.sys;c:\windows\SYSNATIVE\drivers\kx.sys [x]
R3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv_x64.sys;c:\windows\SYSNATIVE\DRIVERS\mcvidrv_x64.sys [x]
R3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv_x64.sys;c:\windows\SYSNATIVE\drivers\mcaudrv_x64.sys [x]
R3 PCTBD;PC Tools Browser Defender Driver;c:\windows\system32\Drivers\PCTBD64.sys;c:\windows\SYSNATIVE\Drivers\PCTBD64.sys [x]
R3 pctplsm;pctplsm;c:\windows\System32\drivers\pctplsm64.sys;c:\windows\SYSNATIVE\drivers\pctplsm64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Us³uga Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
R4 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
R4 BroadCamService;BroadCam Video Streaming Server;c:\program files (x86)\NCH Software\BroadCam\broadcam.exe;c:\program files (x86)\NCH Software\BroadCam\broadcam.exe [x]
R4 Browser Defender Update Service;Browser Defender Update Service;c:\program files (x86)\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe;c:\program files (x86)\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe [x]
R4 HWDeviceService64.exe;HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe [x]
R4 LavasoftAdAwareService11;Ad-Aware Service 11;c:\program files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe;c:\program files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.0.4555.0\AdAwareService.exe [x]
R4 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R4 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
R4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
R4 sdAuxService;PC Tools Auxiliary Service;c:\program files (x86)\PC Tools\PC Tools Security\pctsAuxs.exe;c:\program files (x86)\PC Tools\PC Tools Security\pctsAuxs.exe [x]
R4 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
R4 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
R4 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
R4 Serviio;Serviio;c:\program files\Serviio\bin\ServiioService.exe;c:\program files\Serviio\bin\ServiioService.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 wxpSvc;webcamXP Service;c:\programy\webcamXP5\wService.exe;c:\programy\webcamXP5\wService.exe [x]
S0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore64.sys;c:\windows\SYSNATIVE\drivers\PCTCore64.sys [x]
S0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS64.sys;c:\windows\SYSNATIVE\drivers\pctDS64.sys [x]
S0 pctEFA;PC Tools Extended File Attributes;c:\windows\system32\drivers\pctEFA64.sys;c:\windows\SYSNATIVE\drivers\pctEFA64.sys [x]
S1 pctgntdi;pctgntdi;c:\windows\System32\drivers\pctgntdi64.sys;c:\windows\SYSNATIVE\drivers\pctgntdi64.sys [x]
S1 PCTSD;PC Tools Spyware Doctor Driver;c:\windows\system32\Drivers\PCTSD64.sys;c:\windows\SYSNATIVE\Drivers\PCTSD64.sys [x]
S2 AODDriver4.2.0;AODDriver4.2.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BrSerIb;Brother Serial Interface Driver(WDM);c:\windows\system32\DRIVERS\BrSerIb.sys;c:\windows\SYSNATIVE\DRIVERS\BrSerIb.sys [x]
S3 BrUsbSIb;Brother Serial USB Driver(WDM);c:\windows\system32\DRIVERS\BrUsbSIb.sys;c:\windows\SYSNATIVE\DRIVERS\BrUsbSIb.sys [x]
S3 DFX11_1;DFX Audio Enhancer 11.1;c:\windows\system32\drivers\dfx11_1x64.sys;c:\windows\SYSNATIVE\drivers\dfx11_1x64.sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
start [BU]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-15 17:51	1185744	----a-w-	c:\program files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe
.
ZawartoϾ folderu 'Zaplanowane zadania'
.
2013-10-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-16 14:14]
.
2013-10-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-07-28 22:42]
.
2013-10-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-07-28 22:42]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2013-11-08 21:26	2486592	----a-w-	c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
------- Skan uzupe³niaj¹cy -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: internet
Trusted Zone: lenovo.com\consumersupport
Trusted Zone: lenovo.com.cn\edrivers
Trusted Zone: lenovo.com.cn\support4
Trusted Zone: lenovo.com.cn\think
Trusted Zone: mcafee.com
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
FF - ProfilePath - c:\users\uzytkownik\AppData\Roaming\Mozilla\Firefox\Profiles\fwmcvfg2.default-1383323895420\
FF - prefs.js: browser.search.selectedEngine - Google
FF - ExtSQL: 2013-11-01 17:41; {7b1bf0b6-a1b9-42b0-b75d-252036438bdc}; c:\users\uzytkownik\AppData\Roaming\Mozilla\Firefox
FF - ExtSQL: 2013-11-04 19:41; {c6fb3a99-0bf0-4ab3-9b5b-9fe631d6cde3}; c:\users\uzytkownik\AppData\Roaming\Mozilla\Firefox\Profiles\fwmcvfg2.default-1383323895420\extensions\{c6fb3a99-0bf0-4ab3-9b5b-9fe631d6cde3}.xpi
FF - ExtSQL: 2013-11-04 19:42; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\uzytkownik\AppData\Roaming\Mozilla\Firefox\Profiles\fwmcvfg2.default-1383323895420\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-11-10 01:55; {cb84136f-9c44-433a-9048-c5cd9df1dc16}; c:\program files (x86)\PC Tools\PC Tools Security\BDT\Firefox
.
- - - - USUNIÊTO PUSTE WPISY - - - -
.
Notify-SDWinLogon - SDWinLogon.dll
AddRemove-Active WebCam - c:\programy\Kamrka\PY_UNINSTAL.EXE SOFTWARE\PySoft\Act_WebCam
AddRemove-setup - c:\windows\rundll32.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\wxpSvc]
"ImagePath"="c:\programy\webcamXP5\wService.exe /startedbyscm:5053B757-40E35B3B-webcamSRV"
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

[HKEY_USERS\S-1-5-21-3364782758-3580566253-3286037037-1000\Software\DFX\11\23\pens:\q7‡7©7ã7è7g8y88‡8Ÿ8¸8â8×8í899#9,999l9g9x9~9„9œ9’9¨9°9¸9à9ê9ã9:#:n::’: :¸:ç:ü:;;;$;);h;p;w;];m;”;¨;°;º;ä;î;ô;à;ð;õ;<<<)<.<6<@<u<\<g<q<‡<Œ<”<ž<Ù<è<ê=>6>b>m>z>‰>˜>?„?ï?þ?*P*¸*]
@=""

[HKEY_USERS\S-1-5-21-3364782758-3580566253-3286037037-1000_Classes\Wow6432Node\CLSID\{50cd372c-d60e-4c2b-891a-a9637bb3ca6e}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000134
"Therad"=dword:00000013
.
[HKEY_USERS\S-1-5-21-3364782758-3580566253-3286037037-1000_Classes\Wow6432Node\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):56,38,f2,a8,36,12,a5,b8,07,7d,0a,5d,e5,39,d6,12,b0,ce,01,81,8a,
   de,ab,d8,20,a7,20,3e,0b,11,62,f3,29,ce,f0,ce,2e,17,17,4f,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukoñczenia: 2013-11-10  14:26:31 - komputer zosta³ uruchomiony ponownie
ComboFix-quarantined-files.txt  2013-11-10 13:26
ComboFix2.txt  2013-11-07 15:58
ComboFix3.txt  2013-11-01 16:56
ComboFix4.txt  2013-05-10 08:38
ComboFix5.txt  2013-11-10 13:14
.
Przed: 9 413 578 752 bajtów wolnych
Po: 9 526 333 440 bajtów wolnych
.
- - End Of File - - BF5854C22764E251522BB4DF245DDDC7
8F558EB6672622401DA993E1E865C861