ComboFix 15-07-07.01 - ami 2015-07-08   0:07.2.2 - x86
Microsoft Windows XP Professional  5.1.2600.3.1250.48.1045.18.2814.2108 [GMT 2:00]
Uruchomiony z: c:\documents and settings\ami\Moje dokumenty\Downloads\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2015-06-07 do 2015-07-07  )))))))))))))))))))))))))))))))
.
.
2015-07-07 04:43 . 2015-07-07 14:44	--------	d-----w-	c:\windows\system32\MpEngineStore
2015-07-06 17:04 . 2015-07-06 17:05	--------	d-----w-	c:\documents and settings\Administrator
2015-07-05 20:22 . 2015-07-05 20:22	--------	d-----w-	c:\documents and settings\ami\Ustawienia lokalne\Dane aplikacji\ESET
2015-07-05 20:20 . 2015-07-05 20:20	--------	d-----w-	c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET
2015-07-05 16:06 . 2008-04-14 16:21	116736	-c--a-w-	c:\windows\system32\dllcache\xrxwiadr.dll
2015-07-05 16:06 . 2001-10-26 15:29	23040	-c--a-w-	c:\windows\system32\dllcache\xrxwbtmp.dll
2015-07-05 16:06 . 2008-04-14 16:21	18944	-c--a-w-	c:\windows\system32\dllcache\xrxscnui.dll
2015-07-05 16:06 . 2001-10-26 15:30	27648	-c--a-w-	c:\windows\system32\dllcache\xrxftplt.exe
2015-07-05 16:06 . 2001-10-26 15:30	4608	-c--a-w-	c:\windows\system32\dllcache\xrxflnch.exe
2015-07-05 16:06 . 2001-08-18 04:37	99865	-c--a-w-	c:\windows\system32\dllcache\xlog.exe
2015-07-05 16:05 . 2001-08-17 18:11	16970	-c--a-w-	c:\windows\system32\dllcache\xem336n5.sys
2015-07-05 16:05 . 2004-08-03 20:29	19455	-c--a-w-	c:\windows\system32\dllcache\wvchntxx.sys
2015-07-05 16:05 . 2004-08-03 20:29	12063	-c--a-w-	c:\windows\system32\dllcache\wsiintxx.sys
2015-07-05 16:05 . 2008-04-14 16:21	8192	-c--a-w-	c:\windows\system32\dllcache\wshirda.dll
2015-07-05 16:04 . 2004-08-03 20:31	154624	-c--a-w-	c:\windows\system32\dllcache\wlluc48.sys
2015-07-05 16:04 . 2001-10-26 15:00	34890	-c--a-w-	c:\windows\system32\dllcache\wlandrv2.sys
2015-07-05 16:04 . 2001-08-17 19:28	771581	-c--a-w-	c:\windows\system32\dllcache\winacisa.sys
2015-07-05 16:04 . 2001-10-26 15:29	54272	-c--a-w-	c:\windows\system32\dllcache\wiamsmud.dll
2015-07-05 16:04 . 2001-10-26 15:29	87040	-c--a-w-	c:\windows\system32\dllcache\wiafbdrv.dll
2015-07-05 16:04 . 2001-08-17 19:28	701386	-c--a-w-	c:\windows\system32\dllcache\wdhaalba.sys
2015-07-05 16:04 . 2004-08-03 20:29	23615	-c--a-w-	c:\windows\system32\dllcache\wch7xxnt.sys
2015-07-05 16:04 . 2008-04-14 15:03	31872	-c--a-w-	c:\windows\system32\dllcache\wceusbsh.sys
2015-07-05 16:04 . 2001-08-17 18:10	35871	-c--a-w-	c:\windows\system32\dllcache\wbfirdma.sys
2015-07-05 16:02 . 2001-08-17 19:28	687999	-c--a-w-	c:\windows\system32\dllcache\usrwdxjs.sys
2015-07-05 16:01 . 2001-10-26 15:29	26624	-c--a-w-	c:\windows\system32\dllcache\umaxu22.dll
2015-07-05 16:01 . 2001-10-26 15:29	69632	-c--a-w-	c:\windows\system32\dllcache\umaxu12.dll
2015-07-05 16:01 . 2001-10-26 15:29	50688	-c--a-w-	c:\windows\system32\dllcache\umaxscan.dll
2015-07-05 16:01 . 2001-08-17 19:58	22912	-c--a-w-	c:\windows\system32\dllcache\umaxpcls.sys
2015-07-05 16:01 . 2001-10-26 15:29	50176	-c--a-w-	c:\windows\system32\dllcache\umaxp60.dll
2015-07-05 16:01 . 2001-10-26 15:29	48128	-c--a-w-	c:\windows\system32\dllcache\umaxcam.dll
2015-07-05 16:01 . 2001-10-26 15:29	212480	-c--a-w-	c:\windows\system32\dllcache\um54scan.dll
2015-07-05 16:01 . 2001-10-26 15:29	216576	-c--a-w-	c:\windows\system32\dllcache\um34scan.dll
2015-07-05 16:01 . 2001-08-17 19:52	36736	-c--a-w-	c:\windows\system32\dllcache\ultra.sys
2015-07-05 16:01 . 2001-08-17 19:48	11520	-c--a-w-	c:\windows\system32\dllcache\twotrack.sys
2015-07-05 16:01 . 2001-08-17 18:51	166784	-c--a-w-	c:\windows\system32\dllcache\tridxpm.sys
2015-07-05 16:01 . 2001-10-26 15:29	525568	-c--a-w-	c:\windows\system32\dllcache\tridxp.dll
2015-07-05 16:00 . 2001-08-17 18:51	159232	-c--a-w-	c:\windows\system32\dllcache\tridkbm.sys
2015-07-05 16:00 . 2001-10-26 15:29	440576	-c--a-w-	c:\windows\system32\dllcache\tridkb.dll
2015-07-05 16:00 . 2001-08-17 18:51	222336	-c--a-w-	c:\windows\system32\dllcache\trid3dm.sys
2015-07-05 16:00 . 2001-10-26 15:29	315520	-c--a-w-	c:\windows\system32\dllcache\trid3d.dll
2015-07-05 16:00 . 2001-08-17 18:12	34375	-c--a-w-	c:\windows\system32\dllcache\tpro4.sys
2015-07-05 16:00 . 2001-10-26 15:28	43520	-c--a-w-	c:\windows\system32\dllcache\tp4res.dll
2015-07-05 16:00 . 2008-04-14 16:21	82944	-c--a-w-	c:\windows\system32\dllcache\tp4mon.exe
2015-07-05 16:00 . 2001-10-26 15:29	31744	-c--a-w-	c:\windows\system32\dllcache\tp4.dll
2015-07-05 16:00 . 2001-10-26 14:52	4992	-c--a-w-	c:\windows\system32\dllcache\toside.sys
2015-07-05 16:00 . 2001-08-17 20:02	230912	-c--a-w-	c:\windows\system32\dllcache\tosdvd03.sys
2015-07-05 16:00 . 2001-08-17 20:01	241664	-c--a-w-	c:\windows\system32\dllcache\tosdvd02.sys
2015-07-05 16:00 . 2001-08-17 18:10	28232	-c--a-w-	c:\windows\system32\dllcache\tos4mo.sys
2015-07-05 15:59 . 2001-08-17 18:14	123995	-c--a-w-	c:\windows\system32\dllcache\tjisdn.sys
2015-07-05 15:59 . 2001-08-17 18:51	138528	-c--a-w-	c:\windows\system32\dllcache\tgiulnt5.sys
2015-07-05 15:59 . 2001-10-26 15:29	81408	-c--a-w-	c:\windows\system32\dllcache\tgiul50.dll
2015-07-05 15:59 . 2008-04-13 17:40	149376	-c--a-w-	c:\windows\system32\dllcache\tffsport.sys
2015-07-05 15:59 . 2001-08-17 18:13	17129	-c--a-w-	c:\windows\system32\dllcache\tdkcd31.sys
2015-07-05 15:59 . 2001-08-17 18:13	37961	-c--a-w-	c:\windows\system32\dllcache\tdk100b.sys
2015-07-05 15:59 . 2001-08-17 19:49	30464	-c--a-w-	c:\windows\system32\dllcache\tbatm155.sys
2015-07-05 15:59 . 2001-08-17 19:52	7040	-c--a-w-	c:\windows\system32\dllcache\tandqic.sys
2015-07-05 15:59 . 2001-08-17 18:50	36640	-c--a-w-	c:\windows\system32\dllcache\t2r4mini.sys
2015-07-05 15:59 . 2001-10-26 15:29	172768	-c--a-w-	c:\windows\system32\dllcache\t2r4disp.dll
2015-07-05 15:59 . 2001-08-17 20:07	32640	-c--a-w-	c:\windows\system32\dllcache\symc8xx.sys
2015-07-05 15:59 . 2001-08-17 20:07	16256	-c--a-w-	c:\windows\system32\dllcache\symc810.sys
2015-07-05 15:57 . 2001-10-26 15:29	99328	-c--a-w-	c:\windows\system32\dllcache\srusd.dll
2015-07-05 15:57 . 2001-10-26 15:29	24660	-c--a-w-	c:\windows\system32\dllcache\spxupchk.dll
2015-07-05 15:57 . 2001-08-17 19:51	61824	-c--a-w-	c:\windows\system32\dllcache\speed.sys
2015-07-05 15:57 . 2001-10-26 15:29	106584	-c--a-w-	c:\windows\system32\dllcache\spdports.dll
2015-07-05 15:57 . 2001-08-17 20:07	19072	-c--a-w-	c:\windows\system32\dllcache\sparrow.sys
2015-07-05 15:57 . 2001-08-17 19:56	7552	-c--a-w-	c:\windows\system32\dllcache\sonypvu1.sys
2015-07-05 15:57 . 2001-08-17 18:51	37040	-c--a-w-	c:\windows\system32\dllcache\sonypi.sys
2015-07-05 15:57 . 2001-10-26 15:29	114688	-c--a-w-	c:\windows\system32\dllcache\sonypi.dll
2015-07-05 15:57 . 2001-08-17 18:51	20752	-c--a-w-	c:\windows\system32\dllcache\sonync.sys
2015-07-05 15:57 . 2001-08-17 19:53	9600	-c--a-w-	c:\windows\system32\dllcache\sonymc.sys
2015-07-05 15:57 . 2008-04-13 17:40	7552	-c--a-w-	c:\windows\system32\dllcache\sonyait.sys
2015-07-05 15:57 . 2001-08-17 19:53	7040	-c--a-w-	c:\windows\system32\dllcache\snyaitmc.sys
2015-07-05 15:56 . 2001-08-17 18:51	58368	-c--a-w-	c:\windows\system32\dllcache\smiminib.sys
2015-07-05 15:56 . 2001-10-26 15:29	147200	-c--a-w-	c:\windows\system32\dllcache\smidispb.dll
2015-07-05 15:56 . 2001-08-17 18:12	25034	-c--a-w-	c:\windows\system32\dllcache\smcpwr2n.sys
2015-07-05 15:56 . 2001-10-26 15:07	36425	-c--a-w-	c:\windows\system32\dllcache\smcirda.sys
2015-07-05 15:56 . 2001-08-17 18:12	24576	-c--a-w-	c:\windows\system32\dllcache\smc8000n.sys
2015-07-05 15:56 . 2001-08-17 19:57	6784	-c--a-w-	c:\windows\system32\dllcache\smbhc.sys
2015-07-05 15:56 . 2008-04-13 17:36	6912	-c--a-w-	c:\windows\system32\dllcache\smbclass.sys
2015-07-05 15:56 . 2008-04-13 17:36	16000	-c--a-w-	c:\windows\system32\dllcache\smbbatt.sys
2015-07-05 15:56 . 2001-10-26 15:29	45568	-c--a-w-	c:\windows\system32\dllcache\smb3w.dll
2015-07-05 15:56 . 2001-10-26 15:29	33792	-c--a-w-	c:\windows\system32\dllcache\smb0w.dll
2015-07-05 15:56 . 2001-10-26 15:29	28672	-c--a-w-	c:\windows\system32\dllcache\sma0w.dll
2015-07-05 15:56 . 2001-10-26 15:29	28160	-c--a-w-	c:\windows\system32\dllcache\sm91w.dll
2015-07-05 15:55 . 2004-08-03 20:31	63547	-c--a-w-	c:\windows\system32\dllcache\sla30nd5.sys
2015-07-05 15:55 . 2001-08-17 18:12	91294	-c--a-w-	c:\windows\system32\dllcache\skfpwin.sys
2015-07-05 15:55 . 2001-10-26 15:07	94986	-c--a-w-	c:\windows\system32\dllcache\sk98xwin.sys
2015-07-05 15:55 . 2001-10-26 15:29	157696	-c--a-w-	c:\windows\system32\dllcache\sisv256.dll
2015-07-05 15:55 . 2001-08-17 18:50	50432	-c--a-w-	c:\windows\system32\dllcache\sisv.sys
2015-07-05 15:55 . 2004-08-03 20:31	32768	-c--a-w-	c:\windows\system32\dllcache\sisnic.sys
2015-07-05 15:55 . 2001-10-26 15:29	238592	-c--a-w-	c:\windows\system32\dllcache\sisgrv.dll
2015-07-05 15:55 . 2001-08-17 18:50	104064	-c--a-w-	c:\windows\system32\dllcache\sisgrp.sys
2015-07-05 15:55 . 2001-10-26 15:29	150144	-c--a-w-	c:\windows\system32\dllcache\sis6306v.dll
2015-07-05 15:55 . 2001-08-17 18:50	68608	-c--a-w-	c:\windows\system32\dllcache\sis6306p.sys
2015-07-05 15:55 . 2001-10-26 15:29	252032	-c--a-w-	c:\windows\system32\dllcache\sis300iv.dll
2015-07-05 15:55 . 2001-08-17 18:50	101760	-c--a-w-	c:\windows\system32\dllcache\sis300ip.sys
2015-07-05 15:54 . 2001-10-26 15:06	161728	-c--a-w-	c:\windows\system32\dllcache\sgsmusb.sys
2015-07-05 15:54 . 2001-07-21 20:29	18400	-c--a-w-	c:\windows\system32\dllcache\sgsmld.sys
2015-07-05 15:54 . 2001-08-17 18:51	98080	-c--a-w-	c:\windows\system32\dllcache\sgiulnt5.sys
2015-07-05 15:54 . 2001-10-26 15:29	386560	-c--a-w-	c:\windows\system32\dllcache\sgiul50.dll
2015-07-05 15:54 . 2001-08-17 18:19	36480	-c--a-w-	c:\windows\system32\dllcache\sfmanm.sys
2015-07-05 15:54 . 2001-10-26 15:05	6912	-c--a-w-	c:\windows\system32\dllcache\serscan.sys
2015-07-05 15:54 . 2001-10-26 15:05	17920	-c--a-w-	c:\windows\system32\dllcache\sermouse.sys
2015-07-05 15:54 . 2001-08-17 19:53	6912	-c--a-w-	c:\windows\system32\dllcache\seaddsmc.sys
2015-07-05 15:54 . 2008-04-13 17:45	11520	-c--a-w-	c:\windows\system32\dllcache\scsiscan.sys
2015-07-05 15:54 . 2001-08-17 19:52	11648	-c--a-w-	c:\windows\system32\dllcache\scsiprnt.sys
2015-07-05 15:53 . 2001-10-26 15:05	17408	-c--a-w-	c:\windows\system32\dllcache\scr111.sys
2015-07-05 15:53 . 2001-10-26 15:05	16640	-c--a-w-	c:\windows\system32\dllcache\scmstcs.sys
2015-07-05 15:53 . 2001-08-17 19:51	23936	-c--a-w-	c:\windows\system32\dllcache\sccmusbm.sys
2015-07-05 15:53 . 2001-10-26 15:04	23936	-c--a-w-	c:\windows\system32\dllcache\sccmn50m.sys
2015-07-05 15:53 . 2008-04-13 17:40	43904	-c--a-w-	c:\windows\system32\dllcache\sbp2port.sys
2015-07-05 15:53 . 2001-10-26 15:28	495616	-c--a-w-	c:\windows\system32\dllcache\sblfx.dll
2015-07-05 15:53 . 2001-08-17 18:50	75392	-c--a-w-	c:\windows\system32\dllcache\s3savmxm.sys
2015-07-05 15:53 . 2001-10-26 15:29	245632	-c--a-w-	c:\windows\system32\dllcache\s3savmx.dll
2015-07-05 15:53 . 2001-08-17 18:50	77824	-c--a-w-	c:\windows\system32\dllcache\s3sav4m.sys
2015-07-05 15:53 . 2001-10-26 15:29	198400	-c--a-w-	c:\windows\system32\dllcache\s3sav4.dll
2015-07-05 15:51 . 2001-08-17 18:19	3840	-c--a-w-	c:\windows\system32\dllcache\rpfun.sys
2015-07-05 15:51 . 2008-04-14 15:07	79232	-c--a-w-	c:\windows\system32\dllcache\rocket.sys
2015-07-05 15:51 . 2001-08-17 18:12	37563	-c--a-w-	c:\windows\system32\dllcache\rlnet5.sys
2015-07-05 15:51 . 2001-10-26 15:28	86097	-c--a-w-	c:\windows\system32\dllcache\reslog32.dll
2015-07-05 15:51 . 2001-08-17 19:51	19584	-c--a-w-	c:\windows\system32\dllcache\rasirda.sys
2015-07-05 15:51 . 2001-10-26 15:01	715146	-c--a-w-	c:\windows\system32\dllcache\r2mdmkxx.sys
2015-07-05 15:51 . 2001-10-26 15:01	899530	-c--a-w-	c:\windows\system32\dllcache\r2mdkxga.sys
2015-07-05 15:51 . 2001-10-26 15:29	41472	-c--a-w-	c:\windows\system32\dllcache\qvusd.dll
2015-07-05 15:51 . 2001-08-17 19:53	3328	-c--a-w-	c:\windows\system32\dllcache\qv2kux.sys
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-06-23 19:08 . 2012-05-29 20:19	778416	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2015-06-23 19:08 . 2011-07-27 09:23	142512	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2009-11-15 33120]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2015-06-02 28785792]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nwiz"="nwiz.exe" [2009-04-30 1657376]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-04-30 13750272]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-02-06 2021400]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0\0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2007-06-27 17:03	152872	----a-w-	c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2008-12-08 14:50	54576	----a-w-	c:\program files\Hp\HP Software Update\hpwuschd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57	153136	----a-w-	c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
2008-08-01 15:14	202032	----a-w-	c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Resume copy]
2010-10-05 09:22	73728	----a-w-	c:\windows\copyfstq.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
2014-06-24 09:42	4101576	----a-w-	c:\program files\Spybot - Search & Destroy 2\SDTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2006-03-08 05:32	761945	----a-w-	c:\program files\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WirelessAssistant]
2009-09-01 08:41	499768	----a-w-	c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"StarWindServiceAE"=2 (0x2)
"SDWSCService"=2 (0x2)
"SDUpdateService"=2 (0x2)
"SDScannerService"=2 (0x2)
"NBService"=3 (0x3)
"MozillaMaintenance"=3 (0x3)
"gupdatem"=3 (0x3)
"gupdate"=2 (0x2)
"AdobeFlashPlayerUpdateSvc"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Miranda IM\\miranda32.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Program Files\\TeamViewer\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\TeamViewer_Service.exe"=
"c:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe"=
"c:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe"=
"c:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe"=
"c:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2011-12-13 691696]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-02-06 106208]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-02-06 93336]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-02-06 727720]
S1 qlzvqwdq;qlzvqwdq;\??\c:\windows\system32\drivers\qlzvqwdq.sys --> c:\windows\system32\drivers\qlzvqwdq.sys [?]
S2 .EsetTrialReset;Eset Trial Reset;c:\windows\system32\regedt32.exe [2006-03-02 3584]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-11-28 193840]
S3 zlportio;zlportio;c:\documents and settings\ami\Pulpit\singstar\UltraStar\zlportio.sys [2011-07-29 4016]
S4 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\Spybot - Search & Destroy 2\SDFSSvc.exe [2015-03-22 1738168]
S4 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2015-03-22 2088408]
S4 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files\Spybot - Search & Destroy 2\SDWSCSvc.exe [2015-03-22 171928]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-07-07 20:37	991048	----a-w-	c:\program files\Google\Chrome\Application\43.0.2357.132\Installer\chrmstp.exe
.
Zawartość folderu 'Zaplanowane zadania'
.
2015-07-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-29 19:08]
.
2015-07-07 c:\windows\Tasks\Check for updates (Spybot - Search & Destroy).job
- c:\program files\Spybot - Search & Destroy 2\SDUpdate.exe [2015-03-22 10:52]
.
2015-07-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-11-12 16:03]
.
2015-07-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-11-12 16:03]
.
2015-02-08 c:\windows\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job
- c:\windows\system32\xp_eos.exe [2014-03-27 23:28]
.
2015-07-07 c:\windows\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job
- c:\windows\system32\xp_eos.exe [2014-03-27 23:28]
.
2015-03-22 c:\windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
- c:\program files\Spybot - Search & Destroy 2\SDImmunize.exe [2015-03-22 09:41]
.
2015-03-22 c:\windows\Tasks\Scan the system (Spybot - Search & Destroy).job
- c:\program files\Spybot - Search & Destroy 2\SDScan.exe [2015-03-22 09:42]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://msn.gazeta.pl/msn/0,0.html?pc=UP97&ocid=UP97DHP&dt=071913
IE: {{07BA1DA9-F501-4796-8728-74D1B91A6CD5} - c:\program files\PokerStars.EU\PokerStarsUpdate.exe
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\ami\Dane aplikacji\Mozilla\Firefox\Profiles\f21vw7y9.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl
FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&dt=071913&q=
FF - prefs.js: network.proxy.http - 211.138.124.198
FF - prefs.js: network.proxy.http_port - 80
FF - prefs.js: network.proxy.ssl - 198.199.200.210.211.232
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: !HIDDEN! 2010-10-30 14:43; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2015-07-08 00:16
Windows 5.1.2600 Dodatek Service Pack 3 NTFS
.
skanowanie ukrytych procesów ...  
.
skanowanie ukrytych wpisów autostartu ... 
.
skanowanie ukrytych plików ...  
.
skanowanie pomyślnie ukończone
ukryte pliki: 0
.
**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_190_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_190_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
.
- - - - - - - > 'explorer.exe'(1240)
c:\windows\system32\WININET.dll
c:\program files\ESET\ESET NOD32 Antivirus\eplgHooks.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Czas ukończenia: 2015-07-08  00:18:30
ComboFix-quarantined-files.txt  2015-07-07 22:18
ComboFix2.txt  2015-07-07 16:31
.
Przed: 5 137 440 768 bajtów wolnych
Po: 5 131 862 016 bajtów wolnych
.
- - End Of File - - 980C2B56D6345B94E0C41A69772A6785
32052574BF9F325AE309ABC7BFD04460