ComboFix 13-03-05.01 - Igor 2013-03-07   9:29.2.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.48.1045.18.16367.13761 [GMT 1:00]
Uruchomiony z: f:\dokumenty\Downloads\ComboFix.exe
AV: COMODO Antivirus *Disabled/Outdated* {458BB331-2324-0753-3D5F-1472EB102AC0}
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
FW: COMODO Firewall *Enabled* {7DB03214-694B-060B-1600-BD4715C36DBB}
SP: COMODO Defense+ *Enabled/Updated* {FEEA52D5-051E-08DD-07EF-2F009097607D}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2013-02-07 do 2013-03-07  )))))))))))))))))))))))))))))))
.
.
2013-03-07 08:40 . 2013-03-07 08:40	--------	d-----w-	c:\users\Igor\AppData\Local\temp
2013-03-07 08:40 . 2013-03-07 08:40	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-03-07 07:59 . 2013-02-07 15:28	9162192	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B30D746E-059F-48F9-A5C9-2D28027B5325}\mpengine.dll
2013-03-06 08:13 . 2013-03-06 08:14	--------	d-----w-	f:\program files (x86)\EAGLE-6.4.0
2013-03-06 08:01 . 2013-03-06 08:01	--------	d-----w-	f:\program files (x86)\EAGLE-5.0.0
2013-03-06 07:59 . 2013-03-07 07:55	--------	d-----w-	c:\users\Igor\AppData\Roaming\CadSoft
2013-03-02 07:50 . 2013-02-08 00:28	9162192	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-03-01 15:05 . 2013-03-01 15:05	47368	----a-w-	c:\windows\SysWow64\certsentry.dll
2013-02-23 02:02 . 2013-03-07 07:58	--------	d-----w-	c:\users\UpdatusUser
2013-02-20 13:43 . 2013-02-20 13:43	95648	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-16 18:50 . 2013-02-16 18:50	--------	d-----w-	f:\program files\Microsoft Sync Framework
2013-02-16 18:50 . 2013-02-16 18:50	--------	d-----w-	f:\program files\Microsoft Synchronization Services
2013-02-16 18:50 . 2013-02-16 18:50	--------	d-----w-	f:\program files\Microsoft SQL Server Compact Edition
2013-02-16 18:49 . 2013-02-16 18:49	--------	d-----w-	c:\programdata\PreEmptive Solutions
2013-02-16 18:47 . 2013-02-16 18:47	--------	d-----w-	f:\program files\IIS
2013-02-16 18:45 . 2013-02-20 13:03	2319968	----a-w-	c:\programdata\Microsoft\VisualStudio\10.0\1033\ResourceCache.dll
2013-02-16 18:42 . 2013-02-16 18:42	--------	d-----w-	c:\windows\SysWow64\1033
2013-02-16 18:42 . 2013-02-16 18:49	--------	d-----w-	f:\program files (x86)\Microsoft Visual Studio 10.0
2013-02-16 18:39 . 2013-02-16 18:39	--------	d-----w-	c:\windows\system32\1033
2013-02-16 18:39 . 2013-02-16 18:39	--------	d-----w-	f:\program files\Microsoft Visual Studio 10.0
2013-02-16 18:39 . 2013-02-16 18:39	--------	d-----w-	f:\program files\Microsoft Help Viewer
2013-02-16 18:37 . 2013-02-16 18:37	--------	d-----w-	c:\windows\PCHEALTH
2013-02-16 17:38 . 2013-02-16 17:38	684828	----a-w-	C:\cc_20130216_183827.reg
2013-02-16 15:49 . 2013-02-16 15:49	--------	d-----w-	c:\windows\SysWow64\XPSViewer
2013-02-16 15:49 . 2013-02-16 18:49	--------	d-----w-	f:\program files\MSBuild
2013-02-16 15:26 . 2012-10-10 20:23	1482600	----a-w-	c:\windows\system32\nvdispgenco64.dll
2013-02-16 15:26 . 2012-10-10 20:22	19906920	----a-w-	c:\windows\SysWow64\nvoglv32.dll
2013-02-16 02:31 . 2013-02-16 02:06	996352	----a-w-	f:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-16 02:31 . 2013-02-16 02:06	768000	----a-w-	f:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-16 02:08 . 2012-07-26 05:05	2560	----a-w-	c:\windows\system32\drivers\pl-PL\wdf01000.sys.mui
2013-02-16 02:08 . 2012-07-26 04:55	785512	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2013-02-16 02:08 . 2012-07-26 04:55	54376	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2013-02-16 02:08 . 2012-07-26 02:36	9728	----a-w-	c:\windows\system32\Wdfres.dll
2013-02-16 02:02 . 2012-12-16 17:11	46080	----a-w-	c:\windows\system32\atmlib.dll
2013-02-16 02:02 . 2012-12-16 14:45	367616	----a-w-	c:\windows\system32\atmfd.dll
2013-02-16 02:02 . 2012-12-16 14:13	295424	----a-w-	c:\windows\SysWow64\atmfd.dll
2013-02-16 02:02 . 2012-12-16 14:13	34304	----a-w-	c:\windows\SysWow64\atmlib.dll
2013-02-16 02:02 . 2012-07-26 02:26	87040	----a-w-	c:\windows\system32\drivers\WUDFPf.sys
2013-02-16 02:02 . 2012-07-26 02:26	198656	----a-w-	c:\windows\system32\drivers\WUDFRd.sys
2013-02-16 02:02 . 2012-07-26 03:08	229888	----a-w-	c:\windows\system32\WUDFHost.exe
2013-02-16 02:02 . 2012-07-26 03:08	84992	----a-w-	c:\windows\system32\WUDFSvc.dll
2013-02-16 02:02 . 2012-07-26 03:08	45056	----a-w-	c:\windows\system32\WUDFCoinstaller.dll
2013-02-16 02:02 . 2012-07-26 03:08	194048	----a-w-	c:\windows\system32\WUDFPlatform.dll
2013-02-16 02:02 . 2012-07-26 03:08	744448	----a-w-	c:\windows\system32\WUDFx.dll
2013-02-15 21:37 . 2013-02-15 21:37	972264	------w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{518A417D-89B0-44FD-8B69-CB13ACDA6845}\gapaengine.dll
2013-02-15 21:35 . 2013-03-01 15:05	56072	----a-w-	c:\windows\system32\certsentry.dll
2013-02-13 22:57 . 2013-02-13 23:03	--------	d-----w-	f:\program files\Microsoft Visual Studio 9.0
2013-02-12 08:20 . 2013-02-12 08:20	--------	d-----w-	f:\program files (x86)\LibreOffice 4.0
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-27 12:58 . 2012-04-27 14:51	71024	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-27 12:58 . 2012-04-27 14:51	691568	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-20 13:43 . 2012-08-01 09:51	861088	----a-w-	c:\windows\SysWow64\npdeployJava1.dll
2013-02-20 13:43 . 2012-04-30 15:13	782240	----a-w-	c:\windows\SysWow64\deployJava1.dll
2013-02-04 21:49 . 2012-04-27 15:17	70004024	----a-w-	c:\windows\system32\MRT.exe
2013-01-30 10:53 . 2010-11-21 03:27	273840	------w-	c:\windows\system32\MpSigStub.exe
2013-01-20 14:59 . 2013-01-20 14:59	230320	----a-w-	c:\windows\system32\drivers\MpFilter.sys
2013-01-20 14:59 . 2012-03-20 18:44	130008	----a-w-	c:\windows\system32\drivers\NisDrvWFP.sys
2013-01-04 04:43 . 2013-02-15 21:36	44032	----a-w-	c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\Igor\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\Igor\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	129272	----a-w-	c:\users\Igor\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_8A462CA9246B43D8B4F8B294BEC4CFF6"="c:\users\Igor\AppData\Local\Google\Chrome\Application\chrome.exe" [2013-02-21 1274320]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-07 17706088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"="f:\program files (x86)\PowerISO\PWRISOVM.EXE" [2012-04-19 336952]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\users\Igor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Igor\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-1-20 28539272]
Privacy IO — skrót.lnk -  [N/A]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
CrashPlan Tray.lnk - f:\program files\CrashPlan\CrashPlanTray.exe [N/A]
Secunia PSI Tray.lnk - f:\program files (x86)\Secunia\PSI\psi_tray.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\guard32.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0OODBS
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 DragonUpdater;COMODO Dragon Update Service;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe [2013-03-01 2074768]
R2 DSO20901;DSO-2090 USB DRIVER 1;c:\windows\system32\Drivers\DSO2090AMD641.sys [2010-01-26 27952]
R2 DSO20902;DSO-2090 USB DRIVER 2;c:\windows\system32\Drivers\DSO2090AMD642.SYS [2010-01-26 46256]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-07 161384]
R3 CoordinatorServiceHost;SW Distributed TS Coordinator Service;f:\program files\SolidWorks\swScheduler\DTSCoordinatorService.exe [2011-11-10 89160]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;f:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-05-24 1431888]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 NisSrv;Inspekcja sieci firmy Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
R3 pbfilter;pbfilter;f:\program files\PeerBlock\pbfilter.sys [2010-11-06 24176]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
R3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\rtl8187.sys [2010-01-07 448512]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-04-27 1255736]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2012-11-07 22736]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2012-11-07 584056]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2012-11-07 38144]
S2 OODefragAgent;O&O Defrag;f:\program files\OO Software\Defrag\oodag.exe [2011-11-17 3273552]
S2 Realtek8185;Realtek8185;c:\program files (x86)\Realtek\RTL8185 Wireless LAN Utility\RtlService.exe [2009-12-07 40960]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe [2012-07-25 1326176]
S2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe [2012-07-25 681056]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 WTService;WTService;c:\windows\system32\atwtusb.exe [2012-02-07 584192]
S3 camdrv42;Philips SPC 900NC PC Camera;c:\windows\system32\DRIVERS\camdrv42.sys [2007-04-23 1533952]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-01-26 39808]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-01-26 64256]
S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [2010-09-01 17976]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-12-24 412264]
.
.
Zawartość folderu 'Zaplanowane zadania'
.
2013-03-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2088257191-1956929055-3403238492-1000Core.job
- c:\users\Igor\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-27 16:43]
.
2013-03-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2088257191-1956929055-3403238492-1000UA.job
- c:\users\Igor\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-27 16:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\Igor\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\Igor\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\Igor\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-11-13 23:32	162552	----a-w-	c:\users\Igor\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-01-04 11772520]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
"COMODO Internet Security"="f:\program files\COMODO\COMODO Internet Security\cfp.exe" [2012-11-07 9577680]
"OODefragTray"="f:\program files\OO Software\Defrag\oodtray.exe" [2011-11-17 3994960]
"MacrokeyManager"="WTMKM.exe" [2012-02-07 10893312]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\guard64.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://skritter.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: Interfaces\{276639D4-09E5-4E42-99AD-5D42EF382F04}: NameServer = 8.8.8.8,8.8.4.4
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
SafeBoot-CLPSLS
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_168_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_168_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2013-03-07  09:52:02
ComboFix-quarantined-files.txt  2013-03-07 08:52
.
Przed: 60 849 745 920 bajtów wolnych
Po: 60 321 529 856 bajtów wolnych
.
- - End Of File - - 9FAA49521060B1147E5CDCF57DB9966E