ComboFix 13-01-12.01 - Aoeseo 2013-01-12  20:36:04.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1250.48.1033.18.8189.6541 [GMT 1:00]
Uruchomiony z: c:\users\Aoeseo\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Aoeseo\Desktop\Setup.exe
c:\windows\security\Database\tmp.edb
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2012-12-12 do 2013-01-12  )))))))))))))))))))))))))))))))
.
.
2013-01-12 19:38 . 2013-01-12 19:38	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-01-12 15:30 . 2013-01-12 15:30	--------	d-----w-	c:\windows\system32\SPReview
2013-01-12 15:30 . 2013-01-12 15:30	--------	d-----w-	c:\windows\system32\EventProviders
2013-01-12 15:27 . 2010-11-20 10:44	32896	----a-w-	c:\windows\system32\drivers\USBCAMD2.sys
2013-01-12 12:48 . 2013-01-12 12:49	--------	d-----w-	c:\windows\system32\appmgmt
2013-01-12 04:07 . 2013-01-12 04:07	76232	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{7D1D532A-2988-42DB-B94E-6891D3CF8C5F}\offreg.dll
2013-01-11 21:40 . 2012-12-16 16:31	67599240	----a-w-	c:\windows\system32\MRT.exe
2013-01-11 21:30 . 2010-02-23 08:16	294912	----a-w-	c:\windows\system32\browserchoice.exe
2013-01-11 21:30 . 2012-11-19 00:01	9125352	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{7D1D532A-2988-42DB-B94E-6891D3CF8C5F}\mpengine.dll
2013-01-11 21:23 . 2012-12-16 17:11	46080	----a-w-	c:\windows\system32\atmlib.dll
2013-01-11 21:23 . 2012-12-16 14:45	367616	----a-w-	c:\windows\system32\atmfd.dll
2013-01-11 21:23 . 2012-12-16 14:13	295424	----a-w-	c:\windows\SysWow64\atmfd.dll
2013-01-11 21:23 . 2012-12-16 14:13	34304	----a-w-	c:\windows\SysWow64\atmlib.dll
2013-01-11 21:23 . 2010-09-30 10:41	100864	----a-w-	c:\windows\system32\fontsub.dll
2013-01-11 21:23 . 2010-09-30 06:47	70656	----a-w-	c:\windows\SysWow64\fontsub.dll
2013-01-11 21:19 . 2012-03-01 06:46	23408	----a-w-	c:\windows\system32\drivers\fs_rec.sys
2013-01-11 21:19 . 2012-03-01 06:33	81408	----a-w-	c:\windows\system32\imagehlp.dll
2013-01-11 21:19 . 2012-03-01 06:28	5120	----a-w-	c:\windows\system32\wmi.dll
2013-01-11 21:19 . 2012-03-01 05:33	159232	----a-w-	c:\windows\SysWow64\imagehlp.dll
2013-01-11 21:19 . 2012-03-01 05:29	5120	----a-w-	c:\windows\SysWow64\wmi.dll
2013-01-11 21:15 . 2011-10-26 05:25	1572864	----a-w-	c:\windows\system32\quartz.dll
2013-01-11 21:14 . 2012-03-31 05:42	1732096	----a-w-	c:\program files\Windows Journal\NBDoc.DLL
2013-01-11 21:08 . 2012-03-30 11:35	1918320	----a-w-	c:\windows\system32\drivers\tcpip.sys
2013-01-11 21:08 . 2010-11-20 13:33	288640	----a-w-	c:\windows\system32\drivers\FWPKCLNT.SYS
2013-01-11 21:08 . 2011-11-17 06:41	1731920	----a-w-	c:\windows\system32\ntdll.dll
2013-01-11 21:08 . 2011-11-17 05:38	1292080	----a-w-	c:\windows\SysWow64\ntdll.dll
2013-01-11 21:08 . 2011-10-15 06:31	723456	----a-w-	c:\windows\system32\EncDec.dll
2013-01-11 21:08 . 2011-10-15 05:38	534528	----a-w-	c:\windows\SysWow64\EncDec.dll
2013-01-11 21:08 . 2011-02-23 04:55	90624	----a-w-	c:\windows\system32\drivers\bowser.sys
2013-01-11 21:08 . 2012-05-14 05:26	956928	----a-w-	c:\windows\system32\localspl.dll
2013-01-11 21:08 . 2010-11-20 13:27	39424	----a-w-	c:\windows\system32\Spool\prtprocs\x64\winprint.dll
2013-01-11 21:08 . 2011-11-19 14:58	77312	----a-w-	c:\windows\system32\packager.dll
2013-01-11 21:08 . 2011-11-19 14:01	67072	----a-w-	c:\windows\SysWow64\packager.dll
2013-01-11 00:53 . 2009-09-04 16:29	1892184	----a-w-	c:\windows\SysWow64\D3DX9_42.dll
2013-01-11 00:52 . 2005-07-22 18:59	3807440	----a-w-	c:\windows\system32\d3dx9_27.dll
2013-01-11 00:52 . 2005-05-26 14:34	3767504	----a-w-	c:\windows\system32\d3dx9_26.dll
2013-01-11 00:52 . 2005-05-26 14:34	2297552	----a-w-	c:\windows\SysWow64\d3dx9_26.dll
2013-01-11 00:52 . 2005-03-18 16:19	3823312	----a-w-	c:\windows\system32\d3dx9_25.dll
2013-01-11 00:52 . 2005-02-05 18:45	3544272	----a-w-	c:\windows\system32\d3dx9_24.dll
2013-01-10 22:39 . 2013-01-12 16:06	--------	d-----w-	c:\program files\DrWeb
2013-01-10 22:35 . 2013-01-12 16:06	--------	d-----w-	c:\programdata\Doctor Web
2013-01-10 03:01 . 2013-01-09 18:04	--------	d-----w-	c:\windows\Panther
2013-01-10 01:05 . 2013-01-10 01:05	--------	d-----w-	c:\programdata\Nexon
2013-01-10 00:39 . 2013-01-10 00:39	--------	d-----w-	c:\program files\uTorrent
2013-01-10 00:30 . 2013-01-10 00:30	235	----a-w-	c:\windows\SysWow64\nxEuUninstall.bat
2013-01-10 00:30 . 2013-01-10 00:30	--------	d-----w-	C:\Nexon
2013-01-10 00:30 . 2013-01-10 00:30	446464	----a-w-	c:\windows\NEXON_EU_DownloaderUpdater.exe
2013-01-09 22:10 . 2013-01-12 19:04	281120	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2013-01-09 22:09 . 2013-01-12 19:04	281120	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2013-01-09 22:09 . 2013-01-12 18:24	281120	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2013-01-09 22:09 . 2013-01-09 22:09	76888	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2013-01-09 21:57 . 2008-07-31 09:41	68616	----a-w-	c:\windows\SysWow64\XAPOFX1_1.dll
2013-01-09 21:57 . 2008-07-31 09:40	509448	----a-w-	c:\windows\SysWow64\XAudio2_2.dll
2013-01-09 21:57 . 2008-07-12 07:18	467984	----a-w-	c:\windows\SysWow64\d3dx10_39.dll
2013-01-09 21:57 . 2008-07-12 07:18	1493528	----a-w-	c:\windows\SysWow64\D3DCompiler_39.dll
2013-01-09 21:57 . 2008-07-12 07:18	3851784	----a-w-	c:\windows\SysWow64\D3DX9_39.dll
2013-01-09 20:20 . 2010-06-02 03:55	74072	----a-w-	c:\windows\SysWow64\XAPOFX1_5.dll
2013-01-09 20:20 . 2010-06-02 03:55	527192	----a-w-	c:\windows\SysWow64\XAudio2_7.dll
2013-01-09 20:20 . 2010-05-26 10:41	2106216	----a-w-	c:\windows\SysWow64\D3DCompiler_43.dll
2013-01-09 20:20 . 2010-05-26 10:41	1998168	----a-w-	c:\windows\SysWow64\D3DX9_43.dll
2013-01-09 20:20 . 2007-04-04 17:53	81768	----a-w-	c:\windows\SysWow64\xinput1_3.dll
2013-01-09 20:15 . 2013-01-11 20:54	--------	d-----w-	c:\programdata\PMB Files
2013-01-09 20:15 . 2013-01-09 20:15	--------	d-----w-	c:\program files (x86)\Pando Networks
2013-01-09 20:11 . 2013-01-09 20:43	--------	d-----w-	c:\program files (x86)\Google
2013-01-09 19:55 . 2013-01-09 19:54	959976	----a-w-	c:\windows\system32\deployJava1.dll
2013-01-09 19:55 . 2013-01-09 19:54	308200	----a-w-	c:\windows\system32\javaws.exe
2013-01-09 19:55 . 2013-01-09 19:54	1081320	----a-w-	c:\windows\system32\npDeployJava1.dll
2013-01-09 19:54 . 2013-01-09 19:54	188392	----a-w-	c:\windows\system32\javaw.exe
2013-01-09 19:54 . 2013-01-09 19:54	188392	----a-w-	c:\windows\system32\java.exe
2013-01-09 19:54 . 2013-01-09 19:54	108008	----a-w-	c:\windows\system32\WindowsAccessBridge-64.dll
2013-01-09 19:54 . 2013-01-09 19:54	--------	d-----w-	c:\program files\Java
2013-01-09 19:46 . 2013-01-09 19:46	--------	d-----w-	c:\program files\Opera x64
2013-01-09 19:46 . 2013-01-09 19:46	--------	d-----w-	c:\program files (x86)\Opera x64
2013-01-09 19:30 . 2010-02-23 06:46	23680	----a-w-	c:\windows\system32\drivers\IOMap64.sys
2013-01-09 19:28 . 2013-01-09 19:28	--------	d-----w-	c:\program files (x86)\ASUS
2013-01-09 19:21 . 2012-06-02 22:19	2428952	----a-w-	c:\windows\system32\wuaueng.dll
2013-01-09 19:21 . 2012-06-02 22:19	57880	----a-w-	c:\windows\system32\wuauclt.exe
2013-01-09 19:21 . 2012-06-02 22:19	44056	----a-w-	c:\windows\system32\wups2.dll
2013-01-09 19:21 . 2012-06-02 22:15	2622464	----a-w-	c:\windows\system32\wucltux.dll
2013-01-09 19:21 . 2012-06-02 22:19	38424	----a-w-	c:\windows\system32\wups.dll
2013-01-09 19:21 . 2012-06-02 22:19	701976	----a-w-	c:\windows\system32\wuapi.dll
2013-01-09 19:21 . 2012-06-02 22:15	99840	----a-w-	c:\windows\system32\wudriver.dll
2013-01-09 19:21 . 2012-06-02 14:19	186752	----a-w-	c:\windows\system32\wuwebv.dll
2013-01-09 19:21 . 2012-06-02 14:15	36864	----a-w-	c:\windows\system32\wuapp.exe
2013-01-09 19:10 . 2013-01-09 20:10	74248	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-09 19:10 . 2013-01-09 20:10	697864	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-01-09 19:10 . 2013-01-09 19:10	--------	d-----w-	c:\windows\SysWow64\Macromed
2013-01-09 19:10 . 2013-01-09 19:10	--------	d-----w-	c:\windows\system32\Macromed
2013-01-09 19:09 . 2012-05-31 10:25	279656	------w-	c:\windows\system32\MpSigStub.exe
2013-01-09 18:59 . 2013-01-09 18:59	--------	d-----w-	c:\windows\SysWow64\XPSViewer
2013-01-09 18:59 . 2013-01-09 18:59	--------	d-----w-	c:\windows\SysWow64\drivers\pl-PL
2013-01-09 18:59 . 2013-01-12 15:55	--------	d-----w-	c:\windows\SysWow64\wbem\pl-PL
2013-01-09 18:59 . 2013-01-09 18:59	--------	d-----w-	c:\windows\SysWow64\pl
2013-01-09 18:59 . 2013-01-12 15:55	--------	d-----w-	c:\windows\system32\drivers\pl-PL
2013-01-09 18:59 . 2013-01-09 18:59	--------	d-----w-	c:\windows\system32\drivers\UMDF\pl-PL
2013-01-09 18:59 . 2013-01-09 18:59	--------	d-----w-	c:\windows\pl-PL
2013-01-09 18:59 . 2013-01-12 15:55	--------	d-----w-	c:\windows\system32\wbem\pl-PL
2013-01-09 18:59 . 2013-01-09 18:59	--------	d-----w-	c:\windows\system32\pl
2013-01-09 18:56 . 2009-07-13 17:48	3584	----a-w-	c:\windows\system32\Spool\prtprocs\x64\pl-PL\LXKPTPRC.DLL.mui
2013-01-09 18:51 . 2013-01-09 18:51	0	----a-w-	c:\windows\ativpsrm.bin
2013-01-09 18:41 . 2013-01-09 18:41	--------	d-----w-	c:\programdata\ATI
2013-01-09 18:37 . 2013-01-09 18:38	--------	d-----w-	c:\program files\ATI Technologies
2013-01-09 18:34 . 2013-01-12 18:10	25640	----a-w-	c:\windows\gdrv.sys
2013-01-09 18:32 . 2011-06-15 13:11	48416	----a-r-	c:\windows\system32\drivers\RtTeam60.sys
2013-01-09 18:32 . 2011-09-16 07:12	32360	----a-r-	c:\windows\system32\drivers\RtVlan620.sys
2013-01-09 18:32 . 2011-06-15 13:11	32544	----a-r-	c:\windows\system32\drivers\RtNdPt60.sys
2013-01-09 18:30 . 2013-01-09 18:30	--------	d-----w-	c:\programdata\CyberLink
2013-01-09 18:22 . 2013-01-09 18:22	--------	d-----w-	c:\programdata\InstallShield
2013-01-09 18:22 . 2005-02-17 06:15	73728	----a-w-	c:\windows\SysWow64\ISUSPM.cpl
2013-01-09 18:20 . 2013-01-12 16:07	30528	----a-w-	c:\windows\GVTDrv64.sys
2013-01-09 18:17 . 2013-01-09 18:28	--------	d-----w-	c:\program files (x86)\GIGABYTE
2013-01-09 18:17 . 2013-01-09 18:24	--------	d-----w-	c:\program files\GIGABYTE
2013-01-09 18:17 . 2011-11-02 09:48	21616	----a-w-	c:\windows\system32\drivers\AppleCharger.sys
2013-01-09 18:17 . 2010-04-06 15:30	31272	----a-w-	c:\windows\system32\AppleChargerSrv.exe
2013-01-09 18:17 . 2013-01-09 18:17	--------	d-----w-	c:\program files (x86)\Etron Technology
2013-01-09 18:17 . 2013-01-12 18:08	--------	d-sh--w-	c:\windows\Installer
2013-01-09 18:15 . 2011-08-23 13:57	565352	----a-w-	c:\windows\system32\drivers\Rt64win7.sys
2013-01-09 18:15 . 2011-08-23 13:57	74272	----a-w-	c:\windows\system32\RtNicProp64.dll
2013-01-09 18:15 . 2011-08-23 13:57	107552	----a-w-	c:\windows\system32\RTNUninst64.dll
2013-01-09 18:12 . 2009-11-17 10:12	108960	----a-w-	c:\windows\system32\AERTAR64.dll
2013-01-09 18:12 . 2013-01-09 21:55	--------	d--h--w-	c:\program files (x86)\InstallShield Installation Information
2013-01-09 18:12 . 2013-01-09 18:32	--------	d-----w-	c:\program files (x86)\Realtek
2013-01-09 18:12 . 2013-01-09 18:13	--------	d--h--w-	c:\program files (x86)\Temp
2013-01-09 18:12 . 2010-07-22 08:37	200800	----a-w-	c:\windows\system32\AERTAC64.dll
2013-01-09 18:12 . 2011-08-31 11:12	1698408	------r-	c:\windows\RtlExUpd.dll
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-12 15:43 . 2009-07-14 02:36	175616	----a-w-	c:\windows\system32\msclmd.dll
2013-01-12 15:43 . 2009-07-14 02:36	152576	----a-w-	c:\windows\SysWow64\msclmd.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2005-02-17 221184]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2013-01-09 3093624]
"KPeerNexonEU"="c:\nexon\NEXON_EU_Downloader\nxEULauncher.exe" [2013-01-10 438272]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2012-02-14 393216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-02-14 636032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"GBTUpd"="c:\program files (x86)\GIGABYTE\UpdManager\PreRun.exe" [2008-04-03 297480]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AML Device Install.lnk - c:\program files (x86)\AMD AVT\bin\kdbsync.exe [2012-1-31 10752]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 ASGT;ASGT;c:\windows\SysWOW64\ASGT.exe [2012-01-17 55296]
R3 AODDriver;AODDriver;c:\program files (x86)\GIGABYTE\ET6\amd64\AODDriver.sys [2010-03-12 52280]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2013-01-12 30528]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 20992]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys [2011-09-16 32360]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
R3 TrojanKillerDriver;GridinSoft Trojan Killer Driver;c:\windows\system32\DRIVERS\gtkdrv.sys [2012-10-03 16640]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 tsusbhub;tsusbhub;tsusbhub [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 21616]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-02-14 235520]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-02-14 361984]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-01-03 55936]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys [2011-06-15 32544]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2011-12-05 95248]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-07-29 56960]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-07-29 79104]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
2010-11-05 01:57	444752	----a-w-	c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1d09c093-f71e-43c3-b948-19316cbd695e}"= "mscoree.dll" [2010-11-05 444752]
.
[HKEY_CLASSES_ROOT\CLSID\{1d09c093-f71e-43c3-b948-19316cbd695e}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-10-17 13307496]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"="c:\program files\GIGABYTE\SmartRecovery2_x64\RPMKickstart.exe" [2013-01-09 2422272]
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 95.160.170.92 88.156.222.92 82.139.8.40
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2013-01-12  20:40:17
ComboFix-quarantined-files.txt  2013-01-12 19:40
.
Przed: 71 266 443 264 bajtów wolnych
Po: 70 790 209 536 bajtów wolnych
.
- - End Of File - - 26FCEF47940EE96D455090A05086311B