ComboFix 11-10-10.02 - Dominik 2011-10-10  21:04:25.1.2 - x86
Microsoft® Windows Vista™ Business   6.0.6002.2.1250.48.1045.18.3059.2452 [GMT 2:00]
Uruchomiony z: E:\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\$NtUninstallKB53281$
c:\windows\$NtUninstallKB53281$\2375459400\@
c:\windows\$NtUninstallKB53281$\2375459400\click.tlb
c:\windows\$NtUninstallKB53281$\2375459400\L\vhtmwbun
c:\windows\$NtUninstallKB53281$\2375459400\loader.tlb
c:\windows\$NtUninstallKB53281$\2375459400\U\@00000001
c:\windows\$NtUninstallKB53281$\2375459400\U\@000000c0
c:\windows\$NtUninstallKB53281$\2375459400\U\@000000cb
c:\windows\$NtUninstallKB53281$\2375459400\U\@000000cf
c:\windows\$NtUninstallKB53281$\2375459400\U\@80000000
c:\windows\$NtUninstallKB53281$\2375459400\U\@800000c0
c:\windows\$NtUninstallKB53281$\2375459400\U\@800000cb
c:\windows\$NtUninstallKB53281$\2375459400\U\@800000cf
c:\windows\$NtUninstallKB53281$\2881087843
c:\windows\{2521BB91-29B1-4d7e-9137-AC9875D77735}
c:\windows\IsUn0415.exe
c:\windows\msxml4-KB954430-enu.LOG
c:\windows\msxml4-KB973688-enu.LOG
c:\windows\security\Database\tmp.edb
c:\windows\system32\ 
c:\windows\system32\c_25642.nls
.
Zainfekowana kopia c:\windows\system32\drivers\tdx.sys została znaleziona. Problem naprawiono 
Plik odzyskano z - The cat found it :) 
Zainfekowana kopia c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe została znaleziona. Problem naprawiono 
Plik odzyskano z - c:\windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe 
.
.
(((((((((((((((((((((((((((((((((((((((   Sterowniki/Usługi   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_8d96a248
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2011-09-10 do 2011-10-10  )))))))))))))))))))))))))))))))
.
.
2011-10-10 19:12 . 2011-10-10 19:12	56200	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF0DB856-3C17-4480-B812-C9F1ED6823B8}\offreg.dll
2011-10-10 19:10 . 2011-10-10 19:12	--------	d-----w-	c:\users\Dominik\AppData\Local\temp
2011-10-10 19:10 . 2011-10-10 19:10	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-10-10 18:59 . 2009-04-10 19:45	72192	----a-w-	c:\windows\system32\drivers\tdx.sys
2011-10-10 14:32 . 2010-02-17 10:04	88632	----a-w-	c:\windows\system32\drivers\CSCrySec.sys
2011-10-10 14:32 . 2010-02-17 10:04	39352	----a-w-	c:\windows\system32\drivers\CSVirtualDiskDrv.sys
2011-10-10 13:38 . 2011-10-10 13:38	--------	d-----w-	c:\users\Dominik\DoctorWeb
2011-10-10 12:41 . 2011-10-10 12:42	--------	d---a-w-	C:\.Trash-999
2011-10-10 11:07 . 2011-10-10 14:35	--------	d-----w-	c:\programdata\AVAST Software
2011-10-10 11:07 . 2011-10-10 11:07	--------	d-----w-	c:\program files\AVAST Software
2011-10-10 10:54 . 2011-10-10 11:01	--------	d-----w-	c:\program files\Eusing Free Registry Cleaner
2011-10-10 09:46 . 2011-10-10 09:46	--------	d-----w-	C:\6591cfde837e31c5abe7208b7d7c
2011-10-10 09:24 . 2011-10-10 09:24	--------	d-----w-	C:\cda
2011-10-10 09:23 . 2011-10-10 09:23	--------	d-----w-	c:\program files\Combined Community Codec Pack
2011-10-10 09:15 . 2011-10-10 09:15	--------	d-----w-	c:\users\Dominik\AppData\Roaming\Malwarebytes
2011-10-10 09:10 . 2011-07-06 17:52	41272	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2011-10-10 09:09 . 2011-10-10 09:09	--------	d-----w-	c:\programdata\Malwarebytes
2011-10-10 09:09 . 2011-10-10 09:15	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2011-10-10 09:09 . 2011-07-06 17:52	22712	----a-w-	c:\windows\system32\drivers\mbam.sys
2011-10-10 08:47 . 2011-10-10 11:01	--------	d-----w-	c:\programdata\Spybot - Search & Destroy
2011-10-10 08:47 . 2011-10-10 08:47	--------	d-----w-	c:\program files\Spybot - Search & Destroy
2011-10-07 07:16 . 2011-09-12 23:14	7269712	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{EF0DB856-3C17-4480-B812-C9F1ED6823B8}\mpengine.dll
2011-10-06 07:23 . 2011-10-06 07:23	--------	d-----w-	c:\users\Dominik\AppData\Local\MediaGet2
2011-10-06 07:23 . 2011-10-06 07:23	--------	d-----w-	c:\users\Dominik\AppData\Local\Media Get LLC
2011-10-06 07:19 . 2011-10-10 09:56	--------	d-sh--w-	c:\users\Dominik\AppData\Local\8d96a248
2011-09-28 09:17 . 2011-09-28 10:19	--------	d-----w-	c:\users\Dominik\AppData\Roaming\IrfanView
2011-09-28 09:17 . 2011-09-28 09:17	--------	d-----w-	c:\program files\IrfanView
2011-09-21 07:35 . 2011-09-21 07:35	--------	d-----w-	c:\program files\MSXML 4.0
2011-09-20 09:32 . 2011-09-20 09:32	--------	d-----w-	c:\programdata\Nokia
2011-09-20 09:25 . 2011-09-20 09:25	--------	d-----w-	c:\users\Dominik\AppData\Local\Nokia
2011-09-20 09:24 . 2011-09-20 09:24	--------	d-----w-	c:\program files\Common Files\Nokia
2011-09-20 09:11 . 2011-09-20 09:18	92471464	----a-w-	C:\Nokia_Ovi_Suite_webinstaller_ALL.exe
2011-09-20 08:49 . 2009-07-14 17:45	445008	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2011-09-20 08:49 . 2009-07-14 17:45	38480	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2011-09-20 08:39 . 2011-09-20 09:32	--------	d-----w-	c:\users\Dominik\AppData\Roaming\PC Suite
2011-09-20 08:39 . 2011-09-20 08:40	--------	d-----w-	c:\users\Dominik\AppData\Roaming\Nokia
2011-09-20 08:39 . 2011-09-20 08:39	--------	d-----w-	c:\programdata\PC Suite
2011-09-20 08:36 . 2011-09-20 08:40	--------	d-----w-	c:\program files\DIFX
2011-09-20 08:36 . 2008-08-26 08:26	18816	----a-w-	c:\windows\system32\drivers\pccsmcfd.sys
2011-09-20 08:34 . 2011-10-10 09:35	--------	d-----w-	c:\program files\PC Connectivity Solution
2011-09-20 08:33 . 2011-09-20 09:24	--------	d-----w-	c:\program files\Nokia
2011-09-20 08:33 . 2011-05-18 08:13	75264	----a-w-	c:\windows\system32\nmwcdcls.dll
2011-09-20 08:33 . 2011-09-20 08:33	--------	d-----w-	c:\programdata\Installations
2011-09-14 06:57 . 2011-08-10 12:14	2409784	----a-w-	c:\program files\Windows Mail\OESpamFilter.dat
2011-09-14 06:57 . 2011-09-14 07:21	--------	d-----w-	c:\users\Dominik\AppData\Roaming\FreeFileSync
2011-09-14 06:57 . 2011-09-14 06:57	--------	d-----w-	c:\program files\FreeFileSync
2011-09-13 12:22 . 2011-09-13 12:22	--------	d-----w-	c:\programdata\HP
2011-09-13 12:21 . 2011-09-13 12:34	--------	d-----w-	c:\users\Dominik\AppData\Roaming\NetDrive
2011-09-13 12:20 . 2011-10-10 09:34	--------	d-----w-	c:\program files\NetDrive
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-07 06:55 . 2011-09-07 06:48	81229680	----a-w-	C:\iTunesSetup.exe
2011-08-29 10:27 . 2011-05-23 13:15	404640	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-29 10:21 . 2011-08-29 10:21	6144	----a-w-	c:\windows\system32\drivers\UMDF\pl-PL\WpdMtpDr.dll.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\umbus.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\gpr400.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\serscan.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\cxbp0wdm.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	2560	----a-w-	c:\windows\system32\drivers\pl-PL\wd.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4608	----a-w-	c:\windows\system32\drivers\pl-PL\grserial.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4096	----a-w-	c:\windows\system32\drivers\pl-PL\SCR111.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4096	----a-w-	c:\windows\system32\drivers\pl-PL\scmstcs.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4096	----a-w-	c:\windows\system32\drivers\pl-PL\pscr.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\stcusb.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\cmbp0wdm.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\Spool\prtprocs\w32x86\pl-PL\LMPRTPRC.DLL.mui
2011-08-29 10:21 . 2011-08-29 10:21	5120	----a-w-	c:\windows\system32\drivers\pl-PL\nv4_mini.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4608	----a-w-	c:\windows\system32\drivers\pl-PL\pcmcia.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4608	----a-w-	c:\windows\system32\drivers\pl-PL\ntrigdigi.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	6656	----a-w-	c:\windows\system32\drivers\pl-PL\yk60x86.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	5632	----a-w-	c:\windows\system32\drivers\pl-PL\bcm4sbxp.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\rndismpx.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\parvdm.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4096	----a-w-	c:\windows\system32\drivers\pl-PL\parport.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4608	----a-w-	c:\windows\system32\drivers\pl-PL\msdsm.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\scsiport.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	2560	----a-w-	c:\windows\system32\drivers\pl-PL\amdide.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	10240	----a-w-	c:\windows\system32\drivers\pl-PL\afd.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4096	----a-w-	c:\windows\system32\drivers\pl-PL\modem.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\srv.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\RNDISMP.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\pacer.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\qwavedrv.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	69632	----a-w-	c:\windows\system32\drivers\pl-PL\ntfs.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4096	----a-w-	c:\windows\system32\drivers\pl-PL\ipnat.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4096	----a-w-	c:\windows\system32\drivers\pl-PL\dxgkrnl.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\nfsrdr.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	5120	----a-w-	c:\windows\system32\drivers\pl-PL\fltmgr.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	7168	----a-w-	c:\windows\system32\drivers\pl-PL\IPMIDrv.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\pnpmem.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	10752	----a-w-	c:\windows\system32\drivers\pl-PL\ltmdmnt.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	5120	----a-w-	c:\windows\system32\drivers\pl-PL\bthpan.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4608	----a-w-	c:\windows\system32\drivers\pl-PL\wacompen.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\hidbth.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\ati2mtag.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\Dot4usb.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	2560	----a-w-	c:\windows\system32\drivers\pl-PL\BrParwdm.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	11264	----a-w-	c:\windows\system32\drivers\pl-PL\serial.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	10752	----a-w-	c:\windows\system32\drivers\pl-PL\BrSerId.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\ati2mpad.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\GAGP30KX.SYS.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\atikmdag.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\UAGP35.SYS.mui
2011-08-29 10:21 . 2011-08-29 10:21	12288	----a-w-	c:\windows\system32\drivers\pl-PL\ohci1394.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	40960	----a-w-	c:\windows\system32\drivers\pl-PL\http.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	7680	----a-w-	c:\windows\system32\drivers\pl-PL\luafv.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\wdf01000.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	5632	----a-w-	c:\windows\system32\drivers\pl-PL\b57nd60x.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	5120	----a-w-	c:\windows\system32\drivers\pl-PL\e100b325.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	22016	----a-w-	c:\windows\system32\drivers\pl-PL\e1e6032.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	18944	----a-w-	c:\windows\system32\drivers\pl-PL\E1G60I32.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	6144	----a-w-	c:\windows\system32\drivers\pl-PL\sermouse.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	5120	----a-w-	c:\windows\system32\drivers\pl-PL\tpm.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	5120	----a-w-	c:\windows\system32\drivers\pl-PL\mouclass.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	36864	----a-w-	c:\windows\system32\drivers\pl-PL\volsnap.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\mouhid.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	28160	----a-w-	c:\windows\system32\drivers\pl-PL\mpio.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	15872	----a-w-	c:\windows\system32\drivers\pl-PL\fvevol.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	9216	----a-w-	c:\windows\system32\drivers\pl-PL\pci.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	5120	----a-w-	c:\windows\system32\drivers\pl-PL\kbdclass.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	4608	----a-w-	c:\windows\system32\drivers\pl-PL\isapnp.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\ULIAGPKX.SYS.mui
2011-08-29 10:21 . 2011-08-29 10:21	3584	----a-w-	c:\windows\system32\drivers\pl-PL\mssmbios.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\VIAAGP.SYS.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\SISAGP.SYS.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\NV_AGP.SYS.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\kbdhid.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\AMDAGP.SYS.mui
2011-08-29 10:21 . 2011-08-29 10:21	3072	----a-w-	c:\windows\system32\drivers\pl-PL\AGP440.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	11776	----a-w-	c:\windows\system32\drivers\pl-PL\i8042prt.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	21504	----a-w-	c:\windows\system32\drivers\pl-PL\viac7.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	21504	----a-w-	c:\windows\system32\drivers\pl-PL\processr.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	21504	----a-w-	c:\windows\system32\drivers\pl-PL\intelppm.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	21504	----a-w-	c:\windows\system32\drivers\pl-PL\crusoe.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	21504	----a-w-	c:\windows\system32\drivers\pl-PL\amdk8.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	21504	----a-w-	c:\windows\system32\drivers\pl-PL\amdk7.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	10752	----a-w-	c:\windows\system32\drivers\pl-PL\acpi.sys.mui
2011-08-29 10:21 . 2011-08-29 10:21	10240	----a-w-	c:\windows\system32\drivers\pl-PL\battc.sys.mui
2011-08-23 07:03 . 2011-08-23 07:00	15117456	----a-w-	C:\Thunderbird Setup 6.0.exe
2011-08-05 23:29 . 2011-08-05 23:29	472808	----a-w-	c:\windows\system32\deployJava1.dll
2011-07-22 13:54 . 2011-08-31 07:30	1383424	----a-w-	c:\windows\system32\mshtml.tlb
2011-10-06 07:26 . 2011-06-07 09:53	134104	----a-w-	c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"i8kfangui"="c:\program files\I8kfanGUI\I8kfanGUI.exe" [2007-02-16 856064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Netdrive"="c:\program files\NetDrive\netdrive.exe" [2011-03-22 2557952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ERA_SEPANG ModemListener]
2010-12-07 08:17	102400	----a-w-	c:\program files\blueconnect\BackgroundService\ModemListener.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2011-08-18 23:07	421736	----a-w-	c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
2011-09-01 12:39	966712	----a-w-	c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2010-05-12 09:55	13838952	----a-w-	c:\windows\System32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVHotkey]
2010-05-12 09:55	92776	----a-w-	c:\windows\System32\nvhotkey.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2010-05-05 23:58	1657448	----a-w-	c:\windows\System32\nwiz.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-07-05 16:36	421888	----a-w-	c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
2009-01-26 13:31	2144088	--sha-r-	c:\program files\Spybot - Search & Destroy\TeaTimer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-04-08 10:59	254696	----a-w-	c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 jrdusbser;Modem Interface Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\jrdusbser.sys [2010-07-23 105344]
R3 ndfs;ndfs;c:\program files\NetDrive\ndfs.sys [2011-03-22 49424]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S0 CSCrySec;InfoWatch Encrypt Sector Library driver;c:\windows\system32\DRIVERS\CSCrySec.sys [2010-02-17 88632]
S0 KLBG;Kaspersky Lab Boot Guard Driver;c:\windows\system32\DRIVERS\klbg.sys [2009-10-14 36880]
S1 CSVirtualDiskDrv;InfoWatch Virtual Disk driver;c:\windows\system32\DRIVERS\CSVirtualDiskDrv.sys [2010-02-17 39352]
S1 fanio;FanIO driver;c:\windows\system32\drivers\fanio.sys [2007-02-16 14464]
S3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y6032.sys [2011-03-23 223432]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-10-02 19472]
S3 NETwNv32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETwNv32.sys [2010-07-14 6680064]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork	REG_MULTI_SZ   	PLA DPS BFE mpssvc
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	FontCache
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.google.pl/
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\fpen5u3e.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/
FF - prefs.js: network.proxy.type - 0
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
ShellIconOverlayIdentifiers-{dd230880-495a-11d1-b064-008048ec2fc5} - (no file)
.
.
.
**************************************************************************
skanowanie ukrytych procesów ...  
.
skanowanie ukrytych wpisów autostartu ... 
.
skanowanie ukrytych plików ...  
.
skanowanie pomyślnie ukończone
ukryte pliki: 
.
**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\WUDFHost.exe
.
**************************************************************************
.
Czas ukończenia: 2011-10-10  21:16:01 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2011-10-10 19:15
.
Przed: 132 944 195 584 bajtów wolnych
Po: 133 169 770 496 bajtów wolnych
.
- - End Of File - - BA125A4631A0ABAC52181CFF6394D39C