ComboFix 11-12-28.03 - Alexis 2011-12-28  19:33:48.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7600.0.1250.48.1045.18.6007.4440 [GMT 1:00]
Uruchomiony z: c:\users\Alexis\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
FW: Zapora osobista *Disabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}
SP: ESET Smart Security 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Utworzono nowy punkt przywracania
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Alexis\AppData\Local\25b20565\U
c:\users\Alexis\AppData\Local\25b20565\U\80000000.@
c:\users\Alexis\AppData\Local\25b20565\U\800000cb.@
c:\users\Alexis\AppData\Local\25b20565\U\800000cf.@
c:\users\Alexis\AppData\Roaming\EurekaLog
c:\windows\assembly\tmp\U
c:\windows\assembly\tmp\U\00000001.@
c:\windows\assembly\tmp\U\000000c0.@
c:\windows\assembly\tmp\U\000000cb.@
c:\windows\assembly\tmp\U\000000cf.@
c:\windows\assembly\tmp\U\80000000.@
c:\windows\assembly\tmp\U\800000c0.@
c:\windows\assembly\tmp\U\800000cb.@
c:\windows\assembly\tmp\U\800000cf.@
c:\windows\system32\consrv.dll
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2011-11-28 do 2011-12-28  )))))))))))))))))))))))))))))))
.
.
2011-12-28 18:38 . 2011-12-28 18:38	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-12-28 16:55 . 2011-12-28 16:55	--------	d-----w-	c:\programdata\ATI
2011-12-28 16:55 . 2011-12-28 16:55	--------	d-----w-	c:\program files (x86)\AMD APP
2011-12-28 16:55 . 2011-12-28 16:55	--------	d-----w-	c:\program files\Common Files\ATI Technologies
2011-12-28 16:55 . 2011-12-28 16:55	--------	d-----w-	c:\program files (x86)\Common Files\ATI Technologies
2011-12-27 11:47 . 2011-11-21 11:40	8822856	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{28E781A4-48FD-4366-9D1D-0C4D47C62790}\mpengine.dll
2011-12-25 13:11 . 2011-12-25 13:11	--------	d-----w-	c:\users\Alexis\AppData\Roaming\InstallShield
2011-12-24 22:22 . 2011-12-25 11:34	--------	d-----w-	c:\programdata\Spybot - Search & Destroy
2011-12-24 22:22 . 2011-12-24 22:22	--------	d-----w-	c:\program files (x86)\Spybot - Search & Destroy
2011-12-24 22:00 . 2011-12-24 22:00	--------	d-----w-	c:\program files\CCleaner
2011-12-15 14:52 . 2011-11-24 05:00	3141632	----a-w-	c:\windows\system32\win32k.sys
2011-12-15 14:52 . 2011-10-15 06:25	723456	----a-w-	c:\windows\system32\EncDec.dll
2011-12-15 14:52 . 2011-10-15 05:48	534528	----a-w-	c:\windows\SysWow64\EncDec.dll
2011-12-15 14:51 . 2011-11-05 05:17	2048	----a-w-	c:\windows\system32\tzres.dll
2011-12-15 14:51 . 2011-11-05 04:30	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2011-12-06 13:56 . 2011-12-06 13:56	0	---ha-w-	c:\users\Alexis\AppData\Local\BIT9E53.tmp
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-01 19:21 . 2010-12-28 15:36	234536	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2011-12-01 19:21 . 2010-12-28 11:48	234536	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2011-11-10 03:45 . 2011-11-10 03:45	10567680	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2011-11-10 03:20 . 2011-11-10 03:20	25218048	----a-w-	c:\windows\system32\atio6axx.dll
2011-11-10 03:17 . 2011-11-10 03:17	159744	----a-w-	c:\windows\system32\atiapfxx.exe
2011-11-10 03:16 . 2011-11-10 03:16	774656	----a-w-	c:\windows\SysWow64\aticfx32.dll
2011-11-10 03:15 . 2011-01-26 22:59	927232	----a-w-	c:\windows\system32\aticfx64.dll
2011-11-10 03:12 . 2011-01-26 22:56	466944	----a-w-	c:\windows\system32\ATIDEMGX.dll
2011-11-10 03:12 . 2011-11-10 03:12	516608	----a-w-	c:\windows\system32\atieclxx.exe
2011-11-10 03:11 . 2011-11-10 03:11	204288	----a-w-	c:\windows\system32\atiesrxx.exe
2011-11-10 03:10 . 2011-11-10 03:10	120320	----a-w-	c:\windows\system32\atitmm64.dll
2011-11-10 03:09 . 2011-01-26 22:54	423424	----a-w-	c:\windows\system32\atipdl64.dll
2011-11-10 03:09 . 2011-11-10 03:09	360448	----a-w-	c:\windows\SysWow64\atipdlxx.dll
2011-11-10 03:09 . 2011-11-10 03:09	278528	----a-w-	c:\windows\SysWow64\Oemdspif.dll
2011-11-10 03:09 . 2011-11-10 03:09	21504	----a-w-	c:\windows\system32\atimuixx.dll
2011-11-10 03:09 . 2011-11-10 03:09	59392	----a-w-	c:\windows\system32\atiedu64.dll
2011-11-10 03:09 . 2011-11-10 03:09	43520	----a-w-	c:\windows\SysWow64\ati2edxx.dll
2011-11-10 03:06 . 2011-11-10 03:06	6077952	----a-w-	c:\windows\SysWow64\atidxx32.dll
2011-11-10 02:58 . 2011-11-10 02:58	18996224	----a-w-	c:\windows\SysWow64\atioglxx.dll
2011-11-10 02:51 . 2011-01-26 22:40	7405056	----a-w-	c:\windows\system32\atidxx64.dll
2011-11-10 02:40 . 2011-11-10 02:40	1113088	----a-w-	c:\windows\system32\atiumd6v.dll
2011-11-10 02:40 . 2011-11-10 02:40	1828864	----a-w-	c:\windows\SysWow64\atiumdmv.dll
2011-11-10 02:40 . 2011-01-26 22:32	4061696	----a-w-	c:\windows\system32\atiumd6a.dll
2011-11-10 02:34 . 2011-11-10 02:34	51200	----a-w-	c:\windows\system32\aticalrt64.dll
2011-11-10 02:34 . 2011-11-10 02:34	46080	----a-w-	c:\windows\SysWow64\aticalrt.dll
2011-11-10 02:34 . 2011-11-10 02:34	44544	----a-w-	c:\windows\system32\aticalcl64.dll
2011-11-10 02:34 . 2011-11-10 02:34	44032	----a-w-	c:\windows\SysWow64\aticalcl.dll
2011-11-10 02:34 . 2011-11-10 02:34	13552640	----a-w-	c:\windows\system32\aticaldd64.dll
2011-11-10 02:33 . 2011-11-10 02:33	5852672	----a-w-	c:\windows\SysWow64\atiumdag.dll
2011-11-10 02:29 . 2011-11-10 02:29	11300864	----a-w-	c:\windows\SysWow64\aticaldd.dll
2011-11-10 02:29 . 2011-11-10 02:29	4200960	----a-w-	c:\windows\SysWow64\atiumdva.dll
2011-11-10 02:24 . 2011-01-26 22:21	7439360	----a-w-	c:\windows\system32\atiumd64.dll
2011-11-10 02:18 . 2011-01-26 22:20	58880	----a-w-	c:\windows\system32\coinst.dll
2011-11-10 02:13 . 2011-01-26 22:14	494592	----a-w-	c:\windows\system32\atiadlxx.dll
2011-11-10 02:13 . 2011-11-10 02:13	348160	----a-w-	c:\windows\SysWow64\atiadlxy.dll
2011-11-10 02:13 . 2011-11-10 02:13	17408	----a-w-	c:\windows\system32\atig6pxx.dll
2011-11-10 02:13 . 2011-11-10 02:13	14336	----a-w-	c:\windows\SysWow64\atiglpxx.dll
2011-11-10 02:13 . 2011-11-10 02:13	14336	----a-w-	c:\windows\system32\atiglpxx.dll
2011-11-10 02:13 . 2011-11-10 02:13	39936	----a-w-	c:\windows\system32\atig6txx.dll
2011-11-10 02:12 . 2011-11-10 02:12	32768	----a-w-	c:\windows\SysWow64\atigktxx.dll
2011-11-10 02:12 . 2011-11-10 02:12	325632	----a-w-	c:\windows\system32\drivers\atikmpag.sys
2011-11-10 02:11 . 2011-01-26 22:12	41984	----a-w-	c:\windows\system32\atiuxp64.dll
2011-11-10 02:11 . 2011-11-10 02:11	32256	----a-w-	c:\windows\SysWow64\atiuxpag.dll
2011-11-10 02:11 . 2011-01-26 22:12	39424	----a-w-	c:\windows\system32\atiu9p64.dll
2011-11-10 02:11 . 2011-11-10 02:11	54784	----a-w-	c:\windows\system32\atimpc64.dll
2011-11-10 02:11 . 2011-11-10 02:11	54784	----a-w-	c:\windows\system32\amdpcom64.dll
2011-11-10 02:11 . 2011-11-10 02:11	29184	----a-w-	c:\windows\SysWow64\atiu9pag.dll
2011-11-10 02:11 . 2011-11-10 02:11	53760	----a-w-	c:\windows\SysWow64\atimpc32.dll
2011-11-10 02:11 . 2011-11-10 02:11	53760	----a-w-	c:\windows\SysWow64\amdpcom32.dll
2011-11-10 02:10 . 2011-11-10 02:10	53248	----a-w-	c:\windows\system32\drivers\ati2erec.dll
2011-11-09 21:39 . 2011-11-09 21:39	69632	----a-w-	c:\windows\system32\OpenVideo64.dll
2011-11-09 21:39 . 2011-11-09 21:39	59904	----a-w-	c:\windows\SysWow64\OpenVideo.dll
2011-11-09 21:39 . 2011-11-09 21:39	61952	----a-w-	c:\windows\system32\OVDecode64.dll
2011-11-09 21:39 . 2011-11-09 21:39	54784	----a-w-	c:\windows\SysWow64\OVDecode.dll
2011-11-09 21:39 . 2011-11-09 21:39	17442304	----a-w-	c:\windows\system32\amdocl64.dll
2011-11-09 21:38 . 2011-11-09 21:38	14375936	----a-w-	c:\windows\SysWow64\amdocl.dll
2011-11-09 21:37 . 2011-11-09 21:37	51200	----a-w-	c:\windows\system32\OpenCL.dll
2011-11-09 21:37 . 2011-11-09 21:37	44032	----a-w-	c:\windows\SysWow64\OpenCL.dll
2011-10-26 15:28 . 2011-10-26 15:28	108144	----a-w-	c:\windows\SysWow64\CmdLineExt.dll
2011-10-21 19:16 . 2011-10-21 19:16	1843200	----a-w-	c:\windows\SysWow64\SlotMaximizerBe.dll
2011-10-21 19:15 . 2011-10-21 19:15	104448	----a-w-	c:\windows\SysWow64\SlotMaximizerAg.dll
2011-10-21 19:12 . 2011-10-21 19:12	2763264	----a-w-	c:\windows\system32\SlotMaximizerBe.dll
2011-10-21 19:07 . 2011-10-21 19:07	125440	----a-w-	c:\windows\system32\SlotMaximizerAg.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2010-03-12 49208]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-11-09 343168]
.
c:\users\Alexis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
MagicDisc.lnk - c:\program files (x86)\MagicDisc\MagicDisc.exe [2011-3-27 576000]
Stardock ObjectDock.lnk - c:\program files (x86)\Stardock\ObjectDockFree\ObjectDock.exe [2010-10-6 3768176]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 1082656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Usługa Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-23 136176]
R3 BcmVWL;Broadcom Virtual Wireless;c:\windows\system32\DRIVERS\bcmvwl64.sys [x]
R3 gupdatem;Usługa Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-23 136176]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2009-11-16 735960]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-11-03 2358656]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
.
.
Zawartość folderu 'Zaplanowane zadania'
.
2011-12-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-05 15:46]
.
2011-12-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-05 15:46]
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1561438092-2120412676-3059849348-1000Core.job
- c:\users\Alexis\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-23 15:46]
.
2011-12-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1561438092-2120412676-3059849348-1000UA.job
- c:\users\Alexis\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-23 15:46]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"="c:\program files\Dell\DW WLAN Card\WLTRAY.exe" [2010-02-02 5712896]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-11-16 2716216]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"combofix"="c:\combofix\CF31419.3XE" [2009-07-14 344576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://mystart.incredimail.com/mb68?u=92541679467948540
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Wyślij obraz do urządzenia &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Wyślij stronę do urządzenia &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.1.1 0.0.0.0
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-FoxTab FLV Player - d:\wolfqu~1\Uninstall\Uninstall.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.9"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil9f.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil9f.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
.
**************************************************************************
.
Czas ukończenia: 2011-12-28  19:45:11 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2011-12-28 18:45
.
Przed: 5 518 733 312 bajtów wolnych
Po: 5 462 212 608 bajtów wolnych
.
- - End Of File - - D7CBE7F7422B5A5798664D2D0C3C42B3