ComboFix 14-10-15.01 - Marcin 2014-10-17  15:51:33.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1250.48.1045.18.3959.2269 [GMT 2:00]
Uruchomiony z: c:\users\Marcin\Desktop\ComboFix.exe
AV: AVG Internet Security 2015 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2015 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2015 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2014-09-17 do 2014-10-17  )))))))))))))))))))))))))))))))
.
.
2014-10-17 13:55 . 2014-10-17 13:55	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-10-16 20:58 . 2014-10-17 13:49	--------	d-----w-	C:\FRST
2014-10-16 20:09 . 2014-09-29 00:58	3198976	----a-w-	c:\windows\system32\win32k.sys
2014-10-16 20:09 . 2014-06-18 22:23	81560	----a-w-	c:\windows\SysWow64\mscories.dll
2014-10-16 20:09 . 2014-06-18 22:23	156824	----a-w-	c:\windows\SysWow64\mscorier.dll
2014-10-16 20:09 . 2014-06-18 22:23	1131664	----a-w-	c:\windows\SysWow64\dfshim.dll
2014-10-16 20:09 . 2014-06-18 22:23	73880	----a-w-	c:\windows\system32\mscories.dll
2014-10-16 20:09 . 2014-06-18 22:23	1943696	----a-w-	c:\windows\system32\dfshim.dll
2014-10-16 20:09 . 2014-06-18 22:23	156312	----a-w-	c:\windows\system32\mscorier.dll
2014-10-16 19:52 . 2014-09-18 01:32	2363904	----a-w-	c:\windows\SysWow64\msi.dll
2014-10-16 19:51 . 2014-09-18 02:00	3241472	----a-w-	c:\windows\system32\msi.dll
2014-10-16 19:51 . 2014-08-29 02:07	3179520	----a-w-	c:\windows\system32\rdpcorets.dll
2014-10-16 19:51 . 2014-09-04 05:04	372736	----a-w-	c:\windows\SysWow64\rastls.dll
2014-10-16 19:51 . 2014-09-04 05:23	424448	----a-w-	c:\windows\system32\rastls.dll
2014-10-16 19:50 . 2014-07-17 01:40	157696	----a-w-	c:\windows\SysWow64\winsta.dll
2014-10-16 19:50 . 2014-07-17 01:39	65536	----a-w-	c:\windows\SysWow64\TSpkg.dll
2014-10-16 19:50 . 2014-07-17 01:39	17408	----a-w-	c:\windows\SysWow64\credssp.dll
2014-10-16 19:50 . 2014-07-17 02:07	455168	----a-w-	c:\windows\system32\winlogon.exe
2014-10-16 19:49 . 2014-07-17 02:07	681984	----a-w-	c:\windows\system32\termsrv.dll
2014-10-16 19:49 . 2014-07-17 02:07	235520	----a-w-	c:\windows\system32\winsta.dll
2014-10-16 19:49 . 2014-07-17 01:21	39936	----a-w-	c:\windows\system32\drivers\tssecsrv.sys
2014-10-16 19:49 . 2014-07-17 02:07	150528	----a-w-	c:\windows\system32\rdpcorekmts.dll
2014-10-16 19:49 . 2014-07-17 01:21	212480	----a-w-	c:\windows\system32\drivers\rdpwd.sys
2014-10-16 19:49 . 2014-07-17 02:07	86528	----a-w-	c:\windows\system32\TSpkg.dll
2014-10-16 19:49 . 2014-07-17 02:07	22016	----a-w-	c:\windows\system32\credssp.dll
2014-10-16 19:49 . 2014-09-05 01:52	5703168	----a-w-	c:\windows\SysWow64\mstscax.dll
2014-10-16 19:49 . 2014-09-05 02:11	6584320	----a-w-	c:\windows\system32\mstscax.dll
2014-10-16 19:49 . 2014-09-13 01:40	67072	----a-w-	c:\windows\SysWow64\packager.dll
2014-10-16 19:49 . 2014-09-13 01:58	77312	----a-w-	c:\windows\system32\packager.dll
2014-10-16 18:16 . 2014-10-16 19:39	--------	d-----w-	c:\programdata\Malwarebytes
2014-10-15 14:24 . 2014-09-19 01:10	347648	----a-w-	c:\program files\Internet Explorer\F12Tools.dll
2014-10-11 22:15 . 2014-10-16 17:43	--------	d-----w-	c:\program files\iPod
2014-10-11 22:15 . 2014-10-16 19:39	--------	d-----w-	c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-10-11 22:15 . 2014-10-16 19:39	--------	d-----w-	c:\program files\iTunes
2014-10-11 22:06 . 2014-10-16 19:39	--------	d-----w-	c:\programdata\Apple Computer
2014-10-11 22:05 . 2014-10-16 19:39	--------	d-----w-	c:\programdata\Apple
2014-10-11 22:05 . 2014-10-16 17:43	--------	d-----w-	c:\program files (x86)\Common Files\Apple
2014-10-09 15:09 . 2014-10-16 17:43	--------	d-----w-	c:\program files (x86)\Common Files\Java
2014-10-09 15:07 . 2014-10-09 15:22	--------	d-----w-	c:\programdata\Oracle
2014-10-09 14:56 . 2014-10-09 14:56	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-10-09 14:56 . 2014-10-09 14:56	701104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-10-09 14:55 . 2014-10-16 19:37	--------	d-----w-	c:\windows\system32\Macromed
2014-10-09 14:52 . 2014-10-16 19:39	--------	d-----w-	c:\program files (x86)\Mozilla Maintenance Service
2014-10-08 17:32 . 2014-10-16 19:39	--------	d-----w-	c:\program files\Microsoft Silverlight
2014-10-08 17:32 . 2014-10-16 19:39	--------	d-----w-	c:\program files (x86)\Microsoft Silverlight
2014-10-06 11:41 . 2014-10-06 11:41	--------	d-----w-	c:\programdata\FLEXnet
2014-10-06 11:38 . 2014-10-16 19:39	--------	d-----w-	c:\program files (x86)\Bonjour
2014-10-06 11:36 . 2014-10-16 19:38	--------	d-----w-	c:\windows\SysWow64\spool
2014-10-06 11:36 . 2014-10-16 19:38	--------	d-----w-	c:\windows\SysWow64\Macromed
2014-10-06 11:35 . 2014-10-16 19:36	--------	d-----w-	c:\program files (x86)\Common Files\Macrovision Shared
2014-10-06 11:34 . 2014-10-16 19:36	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2014-10-03 17:13 . 2014-10-03 17:13	--------	d-----w-	c:\program files\Common Files\DESIGNER
2014-10-03 17:02 . 2014-10-03 17:02	--------	d-----w-	c:\windows\PCHEALTH
2014-10-03 17:00 . 2014-10-16 19:36	--------	d-----w-	c:\program files\Microsoft Analysis Services
2014-10-03 17:00 . 2014-10-16 19:36	--------	d-----w-	c:\program files (x86)\Microsoft Analysis Services
2014-10-03 17:00 . 2014-10-16 21:37	--------	d-----w-	c:\programdata\Microsoft Help
2014-10-02 18:13 . 2014-10-16 19:36	--------	d-----r-	c:\program files (x86)\Skype
2014-10-02 18:13 . 2014-10-02 18:13	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2014-10-02 15:23 . 2013-10-18 01:36	1063200	----a-w-	c:\windows\system32\nvspcap64.dll
2014-10-02 15:23 . 2013-10-18 01:36	955168	----a-w-	c:\windows\SysWow64\nvspcap.dll
2014-10-02 15:23 . 2014-10-02 15:23	--------	d-----w-	c:\program files (x86)\AGEIA Technologies
2014-10-02 15:22 . 2014-10-17 13:42	--------	d-----w-	c:\programdata\NVIDIA
2014-10-02 15:22 . 2014-10-16 19:58	--------	d-----w-	c:\users\UpdatusUser
2014-10-02 15:20 . 2014-10-16 19:36	--------	d-----w-	c:\program files (x86)\NVIDIA Corporation
2014-10-02 15:20 . 2013-10-23 08:20	3489568	----a-w-	c:\windows\system32\nvsvc64.dll
2014-10-02 15:20 . 2013-10-23 08:20	922912	----a-w-	c:\windows\system32\nvvsvc.exe
2014-10-02 15:20 . 2013-10-23 08:20	63776	----a-w-	c:\windows\system32\nvshext.dll
2014-10-02 15:20 . 2013-10-23 08:20	6669600	----a-w-	c:\windows\system32\nvcpl.dll
2014-10-02 15:20 . 2013-10-23 08:20	2559776	----a-w-	c:\windows\system32\nvsvcr.dll
2014-10-02 15:20 . 2013-10-23 08:20	219424	----a-w-	c:\windows\system32\nvmctray.dll
2014-10-02 15:19 . 2013-10-23 10:30	61216	----a-w-	c:\windows\system32\OpenCL.dll
2014-10-02 15:19 . 2013-10-23 10:30	53024	----a-w-	c:\windows\SysWow64\OpenCL.dll
2014-10-01 17:46 . 2010-06-02 02:55	77656	----a-w-	c:\windows\system32\XAPOFX1_5.dll
2014-10-01 17:45 . 2010-05-26 09:41	1998168	----a-w-	c:\windows\SysWow64\D3DX9_43.dll
2014-10-01 16:34 . 2014-10-01 16:34	--------	d-----w-	c:\windows\SysWow64\Wat
2014-10-01 16:34 . 2014-10-01 16:34	--------	d-----w-	c:\windows\system32\Wat
2014-10-01 16:33 . 2014-10-17 12:52	--------	d-s---w-	c:\windows\system32\CompatTel
2014-10-01 14:45 . 2014-10-16 19:37	--------	d-----w-	c:\windows\Migration
2014-10-01 14:45 . 2014-10-16 19:36	--------	d-----w-	c:\program files (x86)\Microsoft.NET
2014-10-01 14:33 . 2010-02-23 08:16	294912	----a-w-	c:\windows\system32\browserchoice.exe
2014-10-01 14:28 . 2014-06-27 02:08	2777088	----a-w-	c:\windows\system32\msmpeg2vdec.dll
2014-10-01 14:28 . 2014-06-27 01:45	2285056	----a-w-	c:\windows\SysWow64\msmpeg2vdec.dll
2014-10-01 14:26 . 2014-06-30 22:24	8856	----a-w-	c:\windows\system32\icardres.dll
2014-10-01 14:26 . 2014-06-30 22:14	8856	----a-w-	c:\windows\SysWow64\icardres.dll
2014-10-01 14:26 . 2014-03-09 21:48	171160	----a-w-	c:\windows\system32\infocardapi.dll
2014-10-01 14:26 . 2014-03-09 21:48	1389208	----a-w-	c:\windows\system32\icardagt.exe
2014-10-01 14:26 . 2014-03-09 21:47	99480	----a-w-	c:\windows\SysWow64\infocardapi.dll
2014-10-01 14:26 . 2014-03-09 21:47	619672	----a-w-	c:\windows\SysWow64\icardagt.exe
2014-10-01 14:26 . 2014-06-06 06:16	35480	----a-w-	c:\windows\SysWow64\TsWpfWrp.exe
2014-10-01 14:26 . 2014-06-06 06:12	35480	----a-w-	c:\windows\system32\TsWpfWrp.exe
2014-10-01 14:11 . 2011-04-09 06:58	142336	----a-w-	c:\windows\system32\poqexec.exe
2014-10-01 14:11 . 2011-04-09 05:56	123904	----a-w-	c:\windows\SysWow64\poqexec.exe
2014-10-01 14:09 . 2014-09-25 02:08	371712	----a-w-	c:\windows\system32\qdvd.dll
2014-10-01 14:09 . 2014-09-25 01:40	519680	----a-w-	c:\windows\SysWow64\qdvd.dll
2014-10-01 14:08 . 2014-06-03 10:02	1719296	----a-w-	c:\program files\Windows Journal\NBDoc.DLL
2014-10-01 14:08 . 2014-06-03 10:02	1380864	----a-w-	c:\program files\Windows Journal\JNTFiltr.dll
2014-10-01 14:08 . 2014-06-03 10:02	1354240	----a-w-	c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2014-10-01 14:08 . 2014-06-03 10:02	1389568	----a-w-	c:\program files\Windows Journal\JNWDRV.dll
2014-10-01 14:08 . 2014-06-03 09:29	936960	----a-w-	c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2014-10-01 14:08 . 2014-04-25 02:34	801280	----a-w-	c:\windows\system32\usp10.dll
2014-10-01 14:08 . 2014-04-25 02:06	626688	----a-w-	c:\windows\SysWow64\usp10.dll
2014-10-01 14:08 . 2014-08-01 11:53	1031168	----a-w-	c:\windows\system32\TSWorkspace.dll
2014-10-01 14:08 . 2014-08-01 11:35	793600	----a-w-	c:\windows\SysWow64\TSWorkspace.dll
2014-10-01 14:08 . 2014-04-05 02:47	1903552	----a-w-	c:\windows\system32\drivers\tcpip.sys
2014-10-01 14:08 . 2014-04-05 02:47	288192	----a-w-	c:\windows\system32\drivers\FWPKCLNT.SYS
2014-10-01 14:06 . 2014-06-25 02:05	14175744	----a-w-	c:\windows\system32\shell32.dll
2014-09-30 19:11 . 2014-10-02 18:13	--------	d-----w-	c:\programdata\Skype
2014-09-30 19:00 . 2014-09-30 19:00	--------	d-----w-	c:\programdata\Samsung
2014-09-30 19:00 . 2011-06-21 00:24	36864	----a-w-	c:\windows\system32\Spool\prtprocs\x64\sst3cpc.dll
2014-09-30 17:53 . 2014-10-16 19:39	--------	d-----w-	c:\program files (x86)\Common Files\Steam
2014-09-30 17:52 . 2014-09-30 17:52	--------	d-----w-	c:\programdata\Avg_Update_0914avt
2014-09-30 16:47 . 2014-09-30 18:12	--------	d-----w-	c:\windows\Panther
2014-09-30 16:42 . 2014-09-30 16:42	--------	d-----w-	c:\program files (x86)\VideoLAN
2014-09-30 16:38 . 2014-10-09 14:41	--------	d-----w-	c:\program files (x86)\Google
2014-09-30 16:14 . 2014-09-30 16:15	--------	d-----w-	c:\programdata\AVG2015
2014-09-30 16:14 . 2014-09-30 16:14	--------	d-----w-	C:\$AVG
2014-09-30 16:13 . 2014-09-30 16:13	--------	d-----w-	c:\program files (x86)\AVG
2014-09-30 16:10 . 2014-10-16 21:37	--------	d-sh--w-	c:\windows\Installer
2014-09-30 16:09 . 2014-10-03 15:24	--------	d-----w-	c:\programdata\NVIDIA Corporation
2014-09-30 16:06 . 2014-10-16 19:36	--------	d-----w-	C:\NVIDIA
2014-09-30 16:05 . 2011-09-29 09:30	74272	----a-w-	c:\windows\system32\RtNicProp64.dll
2014-09-30 16:05 . 2011-09-29 09:30	646248	----a-w-	c:\windows\system32\drivers\Rt64win7.sys
2014-09-30 16:05 . 2011-09-29 09:30	107552	----a-w-	c:\windows\system32\RTNUninst64.dll
2014-09-30 16:03 . 2014-09-30 16:03	--------	d-----w-	c:\program files (x86)\Common Files\postureAgent
2014-09-30 16:03 . 2009-09-17 04:54	56344	----a-w-	c:\windows\system32\drivers\HECIx64.sys
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-20 19:45 . 2014-08-20 19:45	243480	----a-w-	c:\windows\system32\drivers\avgldx64.sys
2014-08-06 19:39 . 2014-08-06 19:39	123672	----a-w-	c:\windows\system32\drivers\avgmfx64.sys
2014-07-25 00:35 . 2014-07-25 00:35	875688	----a-w-	c:\windows\SysWow64\msvcr120_clr0400.dll
2014-07-24 21:47 . 2014-07-24 21:47	869544	----a-w-	c:\windows\system32\msvcr120_clr0400.dll
2014-07-24 12:06 . 2014-07-24 12:06	247576	----a-w-	c:\windows\system32\drivers\avgidsdrivera.sys
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="c:\program files (x86)\AVG\AVG2015\avgui.exe" [2014-09-05 3593744]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2015\avgidsagent.exe;c:\program files (x86)\AVG\AVG2015\avgidsagent.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 XENfiltv;XENfiltv;c:\windows\system32\drivers\XENfiltv.sys;c:\windows\SYSNATIVE\drivers\XENfiltv.sys [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S2 avgfws;Zapora AVG;c:\program files (x86)\AVG\AVG2015\avgfws.exe;c:\program files (x86)\AVG\AVG2015\avgfws.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2015\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2015\avgwdsvc.exe [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-09 14:41	1089352	----a-w-	c:\program files (x86)\Google\Chrome\Application\38.0.2125.101\Installer\chrmstp.exe
.
Zawartość folderu 'Zaplanowane zadania'
.
2014-10-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-09 14:56]
.
2014-10-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-10-09 14:40]
.
2014-10-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-10-09 14:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-10-26 13213840]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-10-18 1028384]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-10-18 1063200]
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - d:\programs\MICROS~1\Office14\EXCEL.EXE/3000
Trusted Zone: samsungsetup.com\www
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{0C84514E-CEF0-4E73-A729-E886995F3C24}: NameServer = 8.8.8.8,8.8.4.4
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
AddRemove-Mozilla Firefox 32.0.3 (x86 pl) - d:\programs\Firefox\uninstall\helper.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2014-10-17  15:57:07
ComboFix-quarantined-files.txt  2014-10-17 13:57
ComboFix2.txt  2014-10-16 18:57
.
Przed: 162 958 577 664 bajtów wolnych
Po: 162 322 907 136 bajtów wolnych
.
- - End Of File - - F0466346C0F6EAE4023BC64ACE7F7576
A36C5E4F47E84449FF07ED3517B43A31