ComboFix 12-01-06.01 - Jaro 2012-01-07  10:31:27.1.2 - x64
Microsoft Windows 7 Professional   6.1.7600.0.1250.48.1045.18.4095.2809 [GMT 1:00]
Uruchomiony z: c:\users\Jaro\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Outdated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Enabled/Outdated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jaro\AppData\Local\3ee31dd1\U
c:\users\Jaro\AppData\Local\3ee31dd1\U\80000000.@
c:\users\Jaro\AppData\Local\3ee31dd1\U\800000cb.@
c:\windows\assembly\tmp\U
c:\windows\assembly\tmp\U\00000001.@
c:\windows\assembly\tmp\U\000000c0.@
c:\windows\assembly\tmp\U\000000cb.@
c:\windows\assembly\tmp\U\000000cf.@
c:\windows\assembly\tmp\U\80000000.@
c:\windows\assembly\tmp\U\800000c0.@
c:\windows\assembly\tmp\U\800000cb.@
c:\windows\assembly\tmp\U\800000cf.@
c:\windows\system32\consrv.dll
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2011-12-07 do 2012-01-07  )))))))))))))))))))))))))))))))
.
.
2012-01-07 09:36 . 2012-01-07 09:36	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-01-06 14:41 . 2011-12-10 14:24	23152	----a-w-	c:\windows\system32\drivers\mbam.sys
2012-01-06 13:55 . 2012-01-06 13:55	--------	d-----w-	c:\programdata\Malwarebytes
2012-01-06 00:53 . 2012-01-06 00:53	--------	d-----w-	c:\program files (x86)\Microsoft.NET
2012-01-05 23:27 . 2012-01-05 23:27	--------	d-----w-	c:\programdata\AVG Secure Search
2012-01-05 21:30 . 2012-01-05 21:30	--------	d-----w-	c:\windows\SysWow64\Wat
2012-01-05 21:30 . 2012-01-05 21:30	--------	d-----w-	c:\windows\system32\Wat
2012-01-05 15:57 . 2012-01-05 16:03	--------	d-----w-	c:\program files (x86)\Common Files\Steam
2012-01-05 15:20 . 2012-01-05 15:20	--------	d-----w-	c:\program files (x86)\Marvell
2012-01-05 15:16 . 2000-01-01 00:00	3744872	----a-w-	c:\windows\system32\RtkAPO64.dll
2012-01-05 15:06 . 2011-06-10 08:26	416768	----a-w-	c:\windows\system32\drivers\ewusbwwan.sys
2012-01-05 15:06 . 2011-06-10 08:26	222976	----a-w-	c:\windows\system32\drivers\ewusbmdm.sys
2012-01-05 15:06 . 2010-10-08 08:59	32768	----a-w-	c:\windows\system32\drivers\ewdcsc.sys
2012-01-05 15:06 . 2010-08-05 23:43	1001472	----a-w-	c:\windows\system32\drivers\mod7700.sys
2012-01-05 15:06 . 2010-07-27 01:52	117248	----a-w-	c:\windows\system32\drivers\ew_hwusbdev.sys
2012-01-05 15:06 . 2010-03-20 04:06	13952	----a-w-	c:\windows\system32\drivers\ew_usbenumfilter.sys
2012-01-05 15:06 . 2012-01-05 15:06	--------	d-----w-	c:\program files (x86)\HUAWEI Modem Driver
2012-01-05 15:05 . 2012-01-05 15:05	--------	d-----w-	c:\program files\Microsoft IntelliPoint
2012-01-05 15:04 . 2012-01-05 15:04	--------	d-----w-	c:\windows\PCHEALTH
2012-01-05 15:00 . 2000-01-01 00:00	53248	----a-w-	c:\windows\SysWow64\CSVer.dll
2012-01-05 13:23 . 2008-07-31 09:41	238088	----a-w-	c:\windows\SysWow64\xactengine3_2.dll
2012-01-05 12:48 . 2012-01-05 12:48	--------	d-----w-	c:\program files (x86)\NapiProjekt
2012-01-05 12:41 . 2012-01-05 12:41	--------	d-----w-	c:\program files (x86)\Common Files\xing shared
2012-01-05 12:40 . 2012-01-05 12:40	348160	----a-w-	c:\windows\SysWow64\msvcr71.dll
2012-01-05 12:40 . 2012-01-05 12:40	499712	----a-w-	c:\windows\SysWow64\msvcp71.dll
2012-01-05 12:40 . 2012-01-05 12:41	--------	d-----w-	c:\program files (x86)\Real
2012-01-05 12:14 . 2012-01-06 16:08	--------	d-----w-	c:\users\UpdatusUser
2012-01-05 12:14 . 2012-01-05 12:15	--------	d-----w-	c:\program files (x86)\NVIDIA Corporation
2012-01-05 12:14 . 2000-01-01 00:00	137536	----a-w-	c:\windows\system32\nvshext.dll
2012-01-05 12:14 . 2000-01-01 00:00	837952	----a-w-	c:\windows\system32\easyupdatusapiu64.dll
2012-01-05 12:13 . 2012-01-05 12:13	--------	d-----w-	c:\programdata\NVIDIA Corporation
2012-01-05 12:05 . 2012-01-05 12:14	--------	d-----w-	c:\program files\NVIDIA Corporation
2012-01-05 11:57 . 2010-09-14 06:45	367104	----a-w-	c:\windows\system32\wcncsvc.dll
2012-01-05 11:57 . 2010-09-14 06:07	276992	----a-w-	c:\windows\SysWow64\wcncsvc.dll
2012-01-05 11:40 . 2009-09-10 06:28	311808	----a-w-	c:\windows\system32\msv1_0.dll
2012-01-05 11:40 . 2009-09-10 05:52	257024	----a-w-	c:\windows\SysWow64\msv1_0.dll
2012-01-05 11:34 . 2007-12-17 16:14	14392	----a-w-	c:\windows\SysWow64\drivers\AsIO.sys
2012-01-05 11:34 . 2006-01-10 15:50	24576	----a-w-	c:\windows\SysWow64\AsIO.dll
2012-01-05 11:34 . 2012-01-05 11:34	--------	d-----w-	c:\program files (x86)\ASUS
2012-01-05 11:34 . 2008-01-04 12:34	11832	----a-w-	c:\windows\SysWow64\drivers\AsInsHelp64.sys
2012-01-05 11:34 . 2008-01-04 12:34	10216	----a-w-	c:\windows\SysWow64\drivers\AsInsHelp32.sys
2012-01-05 11:34 . 2009-05-14 08:26	15416	----a-w-	c:\windows\system32\drivers\ASACPI.sys
2012-01-05 11:33 . 2009-11-25 11:47	99176	----a-w-	c:\windows\SysWow64\PresentationHostProxy.dll
2012-01-05 11:33 . 2009-11-25 11:47	49472	----a-w-	c:\windows\SysWow64\netfxperf.dll
2012-01-05 11:33 . 2009-11-25 11:47	48960	----a-w-	c:\windows\system32\netfxperf.dll
2012-01-05 11:33 . 2009-11-25 11:47	297808	----a-w-	c:\windows\SysWow64\mscoree.dll
2012-01-05 11:33 . 2009-11-25 11:47	295264	----a-w-	c:\windows\SysWow64\PresentationHost.exe
2012-01-05 11:33 . 2009-11-25 11:47	1130824	----a-w-	c:\windows\SysWow64\dfshim.dll
2012-01-05 11:33 . 2009-11-25 11:47	109912	----a-w-	c:\windows\system32\PresentationHostProxy.dll
2012-01-05 11:33 . 2009-11-25 11:47	444752	----a-w-	c:\windows\system32\mscoree.dll
2012-01-05 11:33 . 2009-11-25 11:47	320352	----a-w-	c:\windows\system32\PresentationHost.exe
2012-01-05 11:33 . 2009-11-25 11:47	1942856	----a-w-	c:\windows\system32\dfshim.dll
2012-01-05 11:33 . 2010-02-23 08:16	294912	----a-w-	c:\windows\system32\browserchoice.exe
2012-01-05 11:23 . 2010-03-04 04:32	243712	----a-w-	c:\windows\system32\drivers\ks.sys
2012-01-05 11:21 . 2010-08-04 07:07	552960	----a-w-	c:\windows\system32\msdri.dll
2012-01-05 11:20 . 2010-06-19 06:53	52224	----a-w-	c:\windows\system32\rtutils.dll
2012-01-05 11:19 . 2011-03-03 06:17	182272	----a-w-	c:\windows\system32\dnsrslvr.dll
2012-01-05 11:13 . 2010-08-31 04:32	954752	----a-w-	c:\windows\SysWow64\mfc40.dll
2012-01-05 11:12 . 2011-02-18 06:33	31232	----a-w-	c:\windows\system32\prevhost.exe
2012-01-05 11:11 . 2009-08-29 07:50	46592	----a-w-	c:\windows\system32\msasn1.dll
2012-01-05 11:11 . 2009-08-29 06:57	34816	----a-w-	c:\windows\SysWow64\msasn1.dll
2012-01-05 11:11 . 2011-05-03 05:21	976896	----a-w-	c:\windows\system32\inetcomm.dll
2012-01-05 11:11 . 2011-05-03 04:50	740864	----a-w-	c:\windows\SysWow64\inetcomm.dll
2012-01-05 11:11 . 2010-10-16 05:23	112000	----a-w-	c:\windows\system32\consent.exe
2012-01-05 11:08 . 2009-12-29 08:03	220672	----a-w-	c:\windows\system32\wintrust.dll
2012-01-05 11:08 . 2009-12-29 06:55	172032	----a-w-	c:\windows\SysWow64\wintrust.dll
2012-01-05 11:08 . 2010-01-09 07:19	139264	----a-w-	c:\windows\system32\cabview.dll
2012-01-05 11:08 . 2010-01-09 06:52	132608	----a-w-	c:\windows\SysWow64\cabview.dll
2012-01-04 23:34 . 2012-01-04 23:34	--------	d-----w-	c:\program files (x86)\ChomikBox
2012-01-04 23:34 . 2011-11-28 18:01	256960	----a-w-	c:\windows\system32\aswBoot.exe
2012-01-04 23:09 . 2012-01-04 23:09	--------	d-----w-	c:\windows\system32\Macromed
2012-01-04 23:04 . 2012-01-05 23:27	--------	d-----w-	c:\program files (x86)\AVG Secure Search
2012-01-04 23:04 . 2012-01-04 23:04	--------	d-----w-	c:\program files (x86)\Common Files\AVG Secure Search
2012-01-04 23:04 . 2012-01-04 23:04	--------	d--h--w-	c:\programdata\Common Files
2012-01-04 23:04 . 2012-01-04 23:04	--------	d-sh--w-	c:\windows\system32\%APPDATA%
2012-01-04 23:03 . 2012-01-04 23:03	--------	d-----w-	c:\windows\system32\appmgmt
2012-01-04 22:55 . 2012-01-04 22:55	--------	d-----w-	c:\program files (x86)\Carambis
2012-01-04 22:53 . 2012-01-04 22:53	--------	d-----w-	c:\program files (x86)\Ask.com
2012-01-04 22:52 . 2012-01-04 22:52	--------	d-----w-	c:\program files (x86)\Auslogics
2012-01-04 22:51 . 2012-01-05 11:55	--------	d-----w-	c:\program files (x86)\Microsoft Silverlight
2012-01-04 22:39 . 2011-11-30 01:21	8822856	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{3E4FDE77-CBF1-413D-8DF9-00E3069BD6B3}\mpengine.dll
2012-01-04 22:39 . 2011-11-15 13:29	270720	------w-	c:\windows\system32\MpSigStub.exe
2012-01-04 22:36 . 2012-01-04 22:36	--------	d-----w-	c:\program files (x86)\Google
2012-01-04 22:35 . 2012-01-06 14:10	--------	d-----w-	c:\program files (x86)\PLAY ONLINE
2012-01-04 22:32 . 2012-01-05 23:28	15672	----a-w-	c:\windows\system32\drivers\SWDUMon.sys
2012-01-04 22:32 . 2012-01-05 15:19	--------	d-----w-	c:\program files (x86)\SlimDrivers
2012-01-04 22:31 . 2012-01-04 22:31	--------	d-----w-	c:\program files (x86)\RegCleaner
2012-01-04 22:30 . 2012-01-04 23:09	414368	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-04 22:30 . 2012-01-04 22:30	--------	d-----w-	c:\windows\SysWow64\Macromed
2012-01-04 22:29 . 2012-01-04 22:29	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2012-01-04 22:20 . 2012-01-07 09:48	--------	d-----w-	c:\programdata\NVIDIA
2012-01-04 22:17 . 2012-01-06 22:43	--------	d-----w-	c:\program files (x86)\DAEMON Tools Toolbar
2012-01-04 22:16 . 2012-01-04 22:16	--------	d-----w-	c:\programdata\DAEMON Tools Lite
2012-01-04 22:15 . 2012-01-07 09:23	--------	d-----w-	c:\programdata\Alwil Software
2012-01-04 22:15 . 2012-01-04 22:15	--------	d-----w-	c:\program files\Alwil Software
2012-01-04 22:13 . 2012-01-04 22:13	--------	d-----w-	C:\Intel
2012-01-04 22:13 . 2012-01-05 15:00	--------	d-----w-	c:\program files (x86)\Intel
2012-01-04 22:10 . 2012-01-06 14:10	--------	d-----w-	C:\dvmexp
2012-01-04 22:10 . 2012-01-05 12:37	--------	d-----w-	C:\temp
2012-01-04 22:10 . 2012-01-04 22:10	--------	d-----w-	C:\ASUS.000
2012-01-04 22:10 . 2012-01-04 22:10	--------	d-----w-	C:\ASUS.SYS
2012-01-04 22:09 . 2012-01-05 23:28	--------	d-sh--w-	c:\windows\Installer
2012-01-04 22:09 . 2012-01-04 22:09	--------	d-----w-	c:\program files (x86)\Downloaded Installations
2012-01-04 22:08 . 2012-01-04 22:08	--------	d-----w-	c:\windows\SysWow64\Atheros_L1e
2012-01-04 22:06 . 2012-01-04 22:06	--------	d-----w-	c:\program files\Realtek
2012-01-04 22:06 . 2012-01-05 15:18	--------	d--h--w-	c:\program files (x86)\Temp
2012-01-04 22:06 . 2000-01-01 00:00	1698408	----a-w-	c:\windows\RtlExUpd.dll
2012-01-04 22:06 . 2012-01-05 11:34	--------	d-----w-	c:\program files (x86)\Common Files\InstallShield
2012-01-04 21:58 . 2008-07-26 11:48	494592	----a-w-	c:\windows\system32\nvuninst.exe
2012-01-04 21:58 . 2008-07-26 11:48	410656	----a-w-	c:\windows\system32\nvcpl.cpl
2012-01-04 21:58 . 2008-07-26 11:48	2113056	----a-w-	c:\windows\system32\nvcplui.exe
2012-01-04 21:58 . 2008-07-26 11:48	1097248	----a-w-	c:\windows\system32\nvcpluir.dll
2012-01-04 21:49 . 2012-01-06 14:10	--------	d-----w-	c:\users\Jaro
2012-01-04 21:13 . 2012-01-04 21:49	--------	d-----w-	c:\windows\Panther
2012-01-04 21:12 . 2012-01-04 21:12	--------	d-----w-	C:\Boot
2012-01-04 21:08 . 2012-01-04 21:08	--------	d-----w-	C:\Windows.old
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-14 23:54 . 2011-10-14 23:54	321856	----a-w-	c:\windows\SysWow64\nvStreaming.exe
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2011-11-17 1515688]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-01-05 23:27	1574240	----a-w-	c:\program files (x86)\AVG Secure Search\9.0.0.22\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-11-17 18:29	1515688	----a-w-	c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2011-11-17 1515688]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\9.0.0.22\AVG Secure Search_toolbar.dll" [2012-01-05 1574240]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2011-11-17 901800]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-01-05 892768]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2012-01-05 296056]
"Malwarebytes' Anti-Malware"="d:\malwarebytes' anti-malware\mbamgui.exe" [2011-12-24 460872]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [x]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [x]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [x]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [x]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 mv61xx;mv61xx;c:\windows\system32\DRIVERS\mv61xx.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-04-02 90112]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\asus.sys\config\DVMExportService.exe [2009-02-18 294912]
S2 MBAMService;MBAMService;d:\malwarebytes' anti-malware\mbamservice.exe [2011-12-24 652872]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2000-01-01 2253120]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]
S2 vToolbarUpdater;vToolbarUpdater;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe [2012-01-05 869216]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2000-01-01 2417032]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2000-01-01 13374568]
"combofix"="c:\combofix\CF26671.3XE" [2009-07-14 344576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://isearch.avg.com/?cid={A96AEE0A-8EA3-4A74-855D-595A42944533}&mid=ba220518693b47d1a329d15756fbb957-d2cb598395325632bb6493783fdaa0ccc4e833a7&lang=pl&ds=ts024&pr=&d=2012-01-05 00:04&v=8.0.0.34&sap=hp
uDefault_Search_URL = hxxp://www.google.com/ie
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\9.0.1\ViProtocol.dll
FF - ProfilePath - c:\users\Jaro\AppData\Roaming\Mozilla\Firefox\Profiles\tit9lrc1.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/
FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7B5060aa4d-ccd2-42cc-871d-9e7f484f45c7%7D&mid=ba220518693b47d1a329d15756fbb957-d2cb598395325632bb6493783fdaa0ccc4e833a7&ds=ts024&v=8.0.0.40&lang=pl&pr=&d=2012-01-05%2000%3A04%3A21&sap=ku&q=
FF - prefs.js: network.proxy.type - 0
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\program files (x86)\ASUS\EPU-6 Engine\SixEngine.exe
.
**************************************************************************
.
Czas ukończenia: 2012-01-07  10:51:27 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2012-01-07 09:51
.
Przed: 7 061 995 520 bajtów wolnych
Po: 6 978 109 440 bajtów wolnych
.
- - End Of File - - 952B6EC6653436267FDB6FA99A826985