ComboFix 12-06-05.01 - Lukasz 2012-06-05  13:57:46.1.4 - x64
Uruchomiony z: c:\users\Lukasz\Downloads\ComboFix.exe
 * Utworzono nowy punkt przywracania
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\StartSearch plugin
c:\program files (x86)\StartSearch plugin\IEhelperActiveX.dll
c:\program files (x86)\StartSearch plugin\ssBarLcher.dll
c:\program files (x86)\StartSearch plugin\StartBar.dll
c:\program files (x86)\StartSearch plugin\uninst.exe
c:\program files (x86)\StartSearch plugin\vshareplg.crx
c:\programdata\TheBflix
c:\programdata\TheBflix\background.html
c:\programdata\TheBflix\bhoclass.dll
c:\programdata\TheBflix\content.js
c:\programdata\TheBflix\data\content.js
c:\programdata\TheBflix\data\jsondb.js
c:\programdata\TheBflix\hjakmojkcnhgipgkkbiempkfdndcnlah.crx
c:\programdata\TheBflix\settings.ini
c:\programdata\TheBflix\uninstall.exe
c:\users\Lukasz\AppData\Roaming\Love
c:\users\Lukasz\AppData\Roaming\Love\mari0\options.txt
c:\users\Public\sdelevURL.tmp
c:\windows\system32\ReadMe.txt
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2012-05-05 do 2012-06-05  )))))))))))))))))))))))))))))))
.
.
2012-06-05 10:20 . 2012-06-05 10:21	--------	d-----w-	c:\users\Lukasz\AppData\Local\Deployment
2012-05-31 08:52 . 2012-05-31 08:52	--------	d-----w-	c:\program files\Google
2012-05-30 11:17 . 2012-05-30 11:17	--------	d-----w-	c:\program files (x86)\Common Files\Adobe
2012-05-29 12:48 . 2012-05-29 12:48	--------	d-----r-	C:\MSOCache
2012-05-29 12:13 . 2012-05-31 08:52	70304	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-29 12:13 . 2012-05-31 08:52	419488	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2012-05-28 18:46 . 2012-03-06 23:01	24408	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2012-05-28 18:46 . 2012-03-06 23:04	337240	----a-w-	c:\windows\system32\drivers\aswSP.sys
2012-05-28 18:46 . 2012-03-06 23:02	53080	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2012-05-28 18:46 . 2012-03-06 23:01	59224	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2012-05-28 18:46 . 2012-03-06 23:04	819032	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2012-05-28 18:46 . 2012-03-06 23:01	69976	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2012-05-28 18:46 . 2012-03-06 23:15	258520	----a-w-	c:\windows\system32\aswBoot.exe
2012-05-28 18:46 . 2012-03-06 23:15	41184	----a-w-	c:\windows\avastSS.scr
2012-05-28 18:46 . 2012-03-06 23:15	201352	----a-w-	c:\windows\SysWow64\aswBoot.exe
2012-05-28 18:46 . 2012-05-28 18:46	--------	d-----w-	c:\programdata\AVAST Software
2012-05-28 18:46 . 2012-05-28 18:46	--------	d-----w-	c:\program files\AVAST Software
2012-05-28 12:05 . 2012-05-28 12:05	--------	d-----w-	c:\program files\ESET
2012-05-25 18:40 . 2012-05-25 18:40	--------	d-----w-	c:\users\Lukasz\AppData\Roaming\LolClient2
2012-05-22 06:04 . 2012-05-22 06:04	--------	d-----w-	c:\users\Lukasz\AppData\Roaming\IObit
2012-05-19 20:02 . 2001-09-05 01:18	77824	----a-w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2012-05-19 20:02 . 2001-09-05 01:18	225280	------w-	c:\program files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-05-19 20:02 . 2001-09-05 01:14	176128	------w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2012-05-19 20:02 . 2001-09-05 01:13	32768	------w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2012-05-19 20:02 . 2012-05-19 19:25	610436	----a-w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\IKernel.exe
2012-05-18 22:41 . 2012-05-18 22:41	--------	d-----w-	c:\users\Lukasz\AppData\Local\SniperV2
2012-05-11 10:56 . 2012-03-03 06:35	1544704	----a-w-	c:\windows\system32\DWrite.dll
2012-05-11 10:56 . 2012-03-03 05:31	1077248	----a-w-	c:\windows\SysWow64\DWrite.dll
2012-05-11 10:56 . 2012-03-31 06:05	5559664	----a-w-	c:\windows\system32\ntoskrnl.exe
2012-05-11 10:56 . 2012-03-31 04:39	3968368	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2012-05-11 10:56 . 2012-03-31 04:39	3913072	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2012-05-11 10:56 . 2012-03-31 03:10	3146240	----a-w-	c:\windows\system32\win32k.sys
2012-05-11 10:55 . 2012-03-17 07:58	75120	----a-w-	c:\windows\system32\drivers\partmgr.sys
2012-05-11 10:55 . 2012-03-30 11:35	1918320	----a-w-	c:\windows\system32\drivers\tcpip.sys
2012-05-11 10:55 . 2012-03-31 05:40	1367552	----a-w-	c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2012-05-11 10:55 . 2012-03-31 04:29	936960	----a-w-	c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2012-05-06 17:18 . 2012-05-06 17:18	--------	d-----w-	c:\users\Lukasz\AppData\Local\Risen2
2012-05-06 17:09 . 2012-05-06 17:09	--------	d-----w-	c:\program files (x86)\Common Files\Wise Installation Wizard
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-05 12:02 . 2012-01-27 21:38	25640	----a-w-	c:\windows\gdrv.sys
2012-05-27 08:18 . 2012-02-03 08:06	283304	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2012-05-27 08:18 . 2012-01-31 20:06	283304	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2012-05-27 08:18 . 2012-01-31 19:18	280904	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2012-05-05 11:09 . 2012-05-05 11:09	8744608	----a-w-	c:\windows\SysWow64\FlashPlayerInstaller.exe
2012-04-26 13:39 . 2012-04-26 13:39	25640	----a-w-	c:\windows\etdrv.sys
2012-04-26 13:29 . 2012-01-27 21:38	30528	----a-w-	c:\windows\GVTDrv64.sys
2012-04-18 01:03 . 2012-05-01 16:05	8917360	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{88B99C65-EA71-440D-84A1-78CEB085BECA}\mpengine.dll
2012-04-02 20:46 . 2012-04-02 20:46	525544	----a-w-	c:\windows\system32\deployJava1.dll
2012-03-22 19:12 . 2012-03-22 19:12	4435968	----a-w-	c:\windows\SysWow64\GPhotos.scr
2012-03-21 09:57 . 2012-03-21 09:57	22	--sha-w-	c:\users\Lukasz\AppData\Roaming\Sys2662.Config.Repository.bin
2012-03-14 06:40 . 2012-03-14 06:40	38288	----a-w-	c:\windows\system32\drivers\EpfwLWF.sys
2012-03-12 12:23 . 2012-03-12 12:23	48648	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-03-12 12:23 . 2012-03-12 12:23	686416	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-03-12 12:18 . 2012-03-12 12:18	91648	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2012-03-12 12:18 . 2012-03-12 12:18	89088	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2012-03-12 12:18 . 2012-03-12 12:18	86528	----a-w-	c:\windows\SysWow64\iesysprep.dll
2012-03-12 12:18 . 2012-03-12 12:18	85504	----a-w-	c:\windows\system32\iesetup.dll
2012-03-12 12:18 . 2012-03-12 12:18	76800	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2012-03-12 12:18 . 2012-03-12 12:18	76800	----a-w-	c:\windows\system32\tdc.ocx
2012-03-12 12:18 . 2012-03-12 12:18	74752	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-03-12 12:18 . 2012-03-12 12:18	74752	----a-w-	c:\windows\SysWow64\iesetup.dll
2012-03-12 12:18 . 2012-03-12 12:18	63488	----a-w-	c:\windows\SysWow64\tdc.ocx
2012-03-12 12:18 . 2012-03-12 12:18	603648	----a-w-	c:\windows\system32\vbscript.dll
2012-03-12 12:18 . 2012-03-12 12:18	49664	----a-w-	c:\windows\system32\imgutil.dll
2012-03-12 12:18 . 2012-03-12 12:18	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2012-03-12 12:18 . 2012-03-12 12:18	48640	----a-w-	c:\windows\system32\mshtmler.dll
2012-03-12 12:18 . 2012-03-12 12:18	448512	----a-w-	c:\windows\system32\html.iec
2012-03-12 12:18 . 2012-03-12 12:18	420864	----a-w-	c:\windows\SysWow64\vbscript.dll
2012-03-12 12:18 . 2012-03-12 12:18	367104	----a-w-	c:\windows\SysWow64\html.iec
2012-03-12 12:18 . 2012-03-12 12:18	35840	----a-w-	c:\windows\SysWow64\imgutil.dll
2012-03-12 12:18 . 2012-03-12 12:18	30720	----a-w-	c:\windows\system32\licmgr10.dll
2012-03-12 12:18 . 2012-03-12 12:18	23552	----a-w-	c:\windows\SysWow64\licmgr10.dll
2012-03-12 12:18 . 2012-03-12 12:18	222208	----a-w-	c:\windows\system32\msls31.dll
2012-03-12 12:18 . 2012-03-12 12:18	173056	----a-w-	c:\windows\system32\ieUnatt.exe
2012-03-12 12:18 . 2012-03-12 12:18	165888	----a-w-	c:\windows\system32\iexpress.exe
2012-03-12 12:18 . 2012-03-12 12:18	161792	----a-w-	c:\windows\SysWow64\msls31.dll
2012-03-12 12:18 . 2012-03-12 12:18	160256	----a-w-	c:\windows\system32\wextract.exe
2012-03-12 12:18 . 2012-03-12 12:18	152064	----a-w-	c:\windows\SysWow64\wextract.exe
2012-03-12 12:18 . 2012-03-12 12:18	150528	----a-w-	c:\windows\SysWow64\iexpress.exe
2012-03-12 12:18 . 2012-03-12 12:18	142848	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2012-03-12 12:18 . 2012-03-12 12:18	135168	----a-w-	c:\windows\system32\IEAdvpack.dll
2012-03-12 12:18 . 2012-03-12 12:18	12288	----a-w-	c:\windows\system32\mshta.exe
2012-03-12 12:18 . 2012-03-12 12:18	11776	----a-w-	c:\windows\SysWow64\mshta.exe
2012-03-12 12:18 . 2012-03-12 12:18	114176	----a-w-	c:\windows\system32\admparse.dll
2012-03-12 12:18 . 2012-03-12 12:18	111616	----a-w-	c:\windows\system32\iesysprep.dll
2012-03-12 12:18 . 2012-03-12 12:18	110592	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2012-03-12 12:18 . 2012-03-12 12:18	101888	----a-w-	c:\windows\SysWow64\admparse.dll
2012-03-11 15:37 . 2012-03-11 15:37	1556992	----a-w-	c:\windows\is-O70QC.exe
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{88c7f2aa-f93f-432c-8f0e-b7d85967a527}"= "c:\program files (x86)\BitTorrentBar\prxtbBitT.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
2011-05-09 08:49	176936	----a-w-	c:\program files (x86)\BitTorrentBar\prxtbBitT.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{88c7f2aa-f93f-432c-8f0e-b7d85967a527}"= "c:\program files (x86)\BitTorrentBar\prxtbBitT.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-06 4241512]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Usługa Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-05-31 136176]
R2 gupdatem;Usługa Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-05-31 136176]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-05 2655768]
R2 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-31 257696]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [x]
R3 BrYNSvc;BrYNSvc;c:\program files (x86)\Browny02\BrYNSvc.exe [2010-01-25 245760]
R3 etdrv;etdrv;c:\windows\etdrv.sys [2012-04-26 25640]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-04-26 30528]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R4 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [2009-10-13 114688]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [x]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
--- Inne Usługi/Sterowniki w Pamięci ---
.
*NewlyCreated* - IPNAT
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs	REG_MULTI_SZ   	w3svc was
apphost	REG_MULTI_SZ   	apphostsvc
.
Zawartość folderu 'Zaplanowane zadania'
.
2012-06-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-29 08:52]
.
2012-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-05-31 08:52]
.
2012-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-05-31 08:52]
.
2012-06-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3694339052-751786824-1015860672-1000Core.job
- c:\users\Lukasz\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-05 10:21]
.
2012-06-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3694339052-751786824-1015860672-1000UA.job
- c:\users\Lukasz\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-05 10:21]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-06 23:15	135408	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"="c:\program files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe" [2010-08-23 2552320]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.pl/
mStart Page = hxxp://home.sweetim.com/?crg=3.1010000&st=10&barid={6873C5CD-A508-40E9-AE40-C443CBF1EE3D}
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&ksportuj do programu Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Wyślij &do programu OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
TCP: Interfaces\{258BADD1-C8F3-48A2-AE4A-B8ECF2B57161}: NameServer = 188.246.140.1,217.76.112.66
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
AddRemove-LiveVDO plugin - c:\program files (x86)\StartSearch plugin\uninst.exe
AddRemove-{37476589-E48E-439E-A706-56189E2ED4C4} - c:\programdata\TheBflix\uninstall.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3694339052-751786824-1015860672-1000\Software\SecuROM\License information*]
"datasecu"=hex:da,62,d8,07,27,98,17,6a,21,99,eb,6f,43,d5,75,6f,4f,24,14,a0,1b,
   58,49,2e,ed,25,ad,99,3a,56,c0,98,2d,41,54,66,f3,de,8b,79,4f,56,2e,3e,d3,fc,\
"rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\system\ControlSet004\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet004\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Czas ukończenia: 2012-06-05  14:04:25 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt  2012-06-05 12:04
.
Przed: 69 593 276 416 bajtów wolnych
Po: 69 188 870 144 bajtów wolnych
.
- - End Of File - - BDDCCDCC904D3EDD8BF2A5F8A697575A