ComboFix 13-05-22.01 - user 2013-05-22  16:52:01.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1250.48.1045.18.8067.5271 [GMT 2:00]
Uruchomiony z: f:\!download\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Usunięto   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Windows Service Manager0\jtkyyvgiu.exe
c:\users\user\AppData\Local\unins000.exe
c:\users\user\AppData\Roaming\poclbm
c:\users\user\AppData\Roaming\poclbm\poclbm.ini
c:\users\user\AppData\Roaming\Windir
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\SysWow64\ChilkatMail_v7_9.dll
c:\windows\SysWow64\muzapp.exe
c:\windows\SysWow64\windir
D:\install.exe
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2013-04-22 do 2013-05-22  )))))))))))))))))))))))))))))))
.
.
2013-05-22 14:57 . 2013-05-22 14:57	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2013-05-22 14:57 . 2013-05-22 14:57	--------	d-----w-	c:\users\DefaultAppPool\AppData\Local\temp
2013-05-22 14:57 . 2013-05-22 14:57	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-05-22 12:43 . 2013-02-27 12:05	28672	----a-w-	c:\windows\SysWow64\AsIO.dll
2013-05-22 12:43 . 2013-02-27 12:05	15232	----a-w-	c:\windows\SysWow64\drivers\AsIO.sys
2013-05-22 12:43 . 2012-09-14 08:06	14464	----a-w-	c:\windows\SysWow64\drivers\AsUpIO.sys
2013-05-22 04:23 . 2013-05-22 04:22	964552	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{82F14DF7-FAAF-41E9-9DE3-00B346EA8069}\gapaengine.dll
2013-05-22 04:22 . 2013-05-13 06:37	9460464	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{007D867B-4620-444A-B373-E53980DAA08D}\mpengine.dll
2013-05-22 04:11 . 2013-05-22 14:45	--------	d-----w-	c:\users\user\AppData\Roaming\WinDefenders
2013-05-21 21:10 . 2013-05-21 21:10	--------	d-----w-	c:\users\user\AppData\Roaming\Color Profile Keeper
2013-05-20 20:30 . 2013-05-13 06:37	9460464	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-05-16 12:27 . 2013-04-10 06:01	265064	----a-w-	c:\windows\system32\drivers\dxgmms1.sys
2013-05-14 17:58 . 2013-05-22 14:57	--------	d-sh--w-	c:\programdata\Windows Service Manager0
2013-05-14 17:24 . 2013-05-14 17:24	--------	d-----w-	c:\windows\SysWow64\NV
2013-05-14 17:24 . 2013-05-14 17:24	--------	d-----w-	c:\windows\system32\NV
2013-05-07 14:47 . 2013-05-07 14:47	566048	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-04-25 05:24 . 2013-05-22 14:45	94656	----a-w-	c:\windows\system32\WPRO_41_2001woem.tmp
2013-04-24 09:02 . 2013-04-12 14:45	1656680	----a-w-	c:\windows\system32\drivers\ntfs.sys
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-22 14:45 . 2013-01-16 05:31	34752	----a-w-	c:\windows\system32\drivers\WPRO_41_2001.sys
2013-05-22 04:11 . 2012-04-01 16:12	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-22 04:11 . 2011-11-25 20:56	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-22 04:10 . 2013-01-22 16:22	119296	----a-w-	c:\windows\SysWow64\zlib.dll
2013-05-16 14:12 . 2011-11-25 20:48	75016696	----a-w-	c:\windows\system32\MRT.exe
2013-05-11 13:41 . 2011-03-28 17:36	22240	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-08 03:33 . 2013-03-18 20:45	15143904	----a-w-	c:\windows\system32\nvd3dumx.dll
2013-05-08 03:33 . 2013-02-11 16:34	2934672	----a-w-	c:\windows\system32\nvapi64.dll
2013-05-08 03:33 . 2013-02-11 16:34	2596832	----a-w-	c:\windows\SysWow64\nvapi.dll
2013-05-08 03:33 . 2013-02-11 16:34	13404192	----a-w-	c:\windows\SysWow64\nvwgf2um.dll
2013-05-08 03:33 . 2013-02-11 16:34	12426216	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2013-05-08 03:33 . 2013-02-11 16:34	15912296	----a-w-	c:\windows\system32\nvwgf2umx.dll
2013-05-08 03:33 . 2013-02-10 14:26	925648	----a-w-	c:\windows\SysWow64\nvumdshim.dll
2013-05-08 03:33 . 2012-12-04 18:26	266960	----a-w-	c:\windows\system32\nvinitx.dll
2013-05-08 03:33 . 2012-12-04 18:26	214448	----a-w-	c:\windows\SysWow64\nvinit.dll
2013-05-08 03:33 . 2012-12-04 18:26	1059560	----a-w-	c:\windows\system32\nvumdshimx.dll
2013-05-07 22:35 . 2013-02-11 16:34	6491936	----a-w-	c:\windows\system32\nvcpl.dll
2013-05-07 22:35 . 2013-02-11 16:34	3514656	----a-w-	c:\windows\system32\nvsvc64.dll
2013-05-07 22:35 . 2013-02-11 16:34	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-05-07 22:35 . 2013-02-11 16:34	2555680	----a-w-	c:\windows\system32\nvsvcr.dll
2013-05-07 22:35 . 2012-12-04 18:27	884512	----a-w-	c:\windows\system32\nvvsvc.exe
2013-05-07 22:35 . 2013-02-11 16:34	237856	----a-w-	c:\windows\system32\nvmctray.dll
2013-05-02 15:29 . 2010-11-21 03:27	278800	------w-	c:\windows\system32\MpSigStub.exe
2013-04-30 13:35 . 2012-12-04 18:27	3165506	----a-w-	c:\windows\system32\nvcoproc.bin
2013-04-24 09:04 . 2012-02-11 07:53	905296	----a-w-	c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-04-13 05:49 . 2013-05-16 12:27	135168	----a-w-	c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-16 12:27	350208	----a-w-	c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-16 12:27	308736	----a-w-	c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-16 12:27	111104	----a-w-	c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-16 12:27	474624	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-16 12:27	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
2013-04-08 07:04 . 2013-04-08 07:04	614504	----a-w-	c:\windows\SysWow64\PotPlayerLauncher.ocx
2013-04-04 12:50 . 2013-03-29 07:42	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-04-04 03:35 . 2013-03-07 21:15	95648	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-19 06:04 . 2013-04-10 18:53	5550424	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 18:53	43520	----a-w-	c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 18:53	3968856	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 18:53	3913560	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 18:53	6656	----a-w-	c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 18:53	112640	----a-w-	c:\windows\system32\smss.exe
2013-03-16 21:53 . 2013-03-16 21:53	719360	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2013-03-16 21:53 . 2013-03-16 21:53	226304	----a-w-	c:\windows\system32\elshyph.dll
2013-03-16 21:53 . 2013-03-16 21:53	185344	----a-w-	c:\windows\SysWow64\elshyph.dll
2013-03-16 21:53 . 2013-03-16 21:53	158720	----a-w-	c:\windows\SysWow64\msls31.dll
2013-03-16 21:53 . 2013-03-16 21:53	150528	----a-w-	c:\windows\SysWow64\iexpress.exe
2013-03-16 21:53 . 2013-03-16 21:53	138752	----a-w-	c:\windows\SysWow64\wextract.exe
2013-03-16 21:53 . 2013-03-16 21:53	1054720	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-16 21:53 . 2013-03-16 21:53	73728	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-16 21:53 . 2013-03-16 21:53	61952	----a-w-	c:\windows\SysWow64\tdc.ocx
2013-03-16 21:53 . 2013-03-16 21:53	523264	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-03-16 21:53 . 2013-03-16 21:53	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2013-03-16 21:53 . 2013-03-16 21:53	38400	----a-w-	c:\windows\SysWow64\imgutil.dll
2013-03-16 21:53 . 2013-03-16 21:53	361984	----a-w-	c:\windows\SysWow64\html.iec
2013-03-16 21:53 . 2013-03-16 21:53	23040	----a-w-	c:\windows\SysWow64\licmgr10.dll
2013-03-16 21:53 . 2013-03-16 21:53	216064	----a-w-	c:\windows\system32\msls31.dll
2013-03-16 21:53 . 2013-03-16 21:53	197120	----a-w-	c:\windows\system32\msrating.dll
2013-03-16 21:53 . 2013-03-16 21:53	1441280	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2013-03-16 21:53 . 2013-03-16 21:53	137216	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-03-16 21:53 . 2013-03-16 21:53	12800	----a-w-	c:\windows\SysWow64\mshta.exe
2013-03-16 21:53 . 2013-03-16 21:53	110592	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2013-03-16 21:53 . 2013-03-16 21:53	97280	----a-w-	c:\windows\system32\mshtmled.dll
2013-03-16 21:53 . 2013-03-16 21:53	92160	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-03-16 21:53 . 2013-03-16 21:53	905728	----a-w-	c:\windows\system32\mshtmlmedia.dll
2013-03-16 21:53 . 2013-03-16 21:53	81408	----a-w-	c:\windows\system32\icardie.dll
2013-03-16 21:53 . 2013-03-16 21:53	77312	----a-w-	c:\windows\system32\tdc.ocx
2013-03-16 21:53 . 2013-03-16 21:53	762368	----a-w-	c:\windows\system32\ieapfltr.dll
2013-03-16 21:53 . 2013-03-16 21:53	62976	----a-w-	c:\windows\system32\pngfilt.dll
2013-03-16 21:53 . 2013-03-16 21:53	599552	----a-w-	c:\windows\system32\vbscript.dll
2013-03-16 21:53 . 2013-03-16 21:53	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2013-03-16 21:53 . 2013-03-16 21:53	51200	----a-w-	c:\windows\system32\imgutil.dll
2013-03-16 21:53 . 2013-03-16 21:53	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-03-16 21:53 . 2013-03-16 21:53	452096	----a-w-	c:\windows\system32\dxtmsft.dll
2013-03-16 21:53 . 2013-03-16 21:53	441856	----a-w-	c:\windows\system32\html.iec
2013-03-16 21:53 . 2013-03-16 21:53	281600	----a-w-	c:\windows\system32\dxtrans.dll
2013-03-16 21:53 . 2013-03-16 21:53	27648	----a-w-	c:\windows\system32\licmgr10.dll
2013-03-16 21:53 . 2013-03-16 21:53	270848	----a-w-	c:\windows\system32\iedkcs32.dll
2013-03-16 21:53 . 2013-03-16 21:53	247296	----a-w-	c:\windows\system32\webcheck.dll
2013-03-16 21:53 . 2013-03-16 21:53	235008	----a-w-	c:\windows\system32\url.dll
2013-03-16 21:53 . 2013-03-16 21:53	173568	----a-w-	c:\windows\system32\ieUnatt.exe
2013-03-16 21:53 . 2013-03-16 21:53	167424	----a-w-	c:\windows\system32\iexpress.exe
2013-03-16 21:53 . 2013-03-16 21:53	1509376	----a-w-	c:\windows\system32\inetcpl.cpl
2013-03-16 21:53 . 2013-03-16 21:53	149504	----a-w-	c:\windows\system32\occache.dll
2013-03-16 21:53 . 2013-03-16 21:53	144896	----a-w-	c:\windows\system32\wextract.exe
2013-03-16 21:53 . 2013-03-16 21:53	1400416	----a-w-	c:\windows\system32\ieapfltr.dat
2013-03-16 21:53 . 2013-03-16 21:53	13824	----a-w-	c:\windows\system32\mshta.exe
2013-03-16 21:53 . 2013-03-16 21:53	136192	----a-w-	c:\windows\system32\iepeers.dll
2013-03-16 21:53 . 2013-03-16 21:53	135680	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-03-16 21:53 . 2013-03-16 21:53	12800	----a-w-	c:\windows\system32\msfeedssync.exe
2013-03-16 21:53 . 2013-03-16 21:53	102912	----a-w-	c:\windows\system32\inseng.dll
2013-03-15 05:53 . 2013-03-25 22:15	1807136	----a-w-	c:\windows\system32\nvdispco6431422.dll
2013-03-15 05:53 . 2013-03-25 22:15	1510176	----a-w-	c:\windows\system32\nvdispgenco6431422.dll
2013-03-14 11:43 . 2013-03-18 20:45	1807136	----a-w-	c:\windows\system32\nvdispco6431421.dll
2013-03-14 11:43 . 2013-03-18 20:45	1510176	----a-w-	c:\windows\system32\nvdispgenco6431421.dll
2013-03-07 21:15 . 2012-07-05 18:41	861088	----a-w-	c:\windows\SysWow64\npdeployJava1.dll
2013-03-07 21:15 . 2011-11-25 22:23	782240	----a-w-	c:\windows\SysWow64\deployJava1.dll
2013-02-10 15:01 . 2013-02-10 15:01	14823424	----a-w-	c:\program files (x86)\Common Files\lpuninstall.exe
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32	94208	----a-w-	c:\users\user\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32	94208	----a-w-	c:\users\user\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32	94208	----a-w-	c:\users\user\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32	94208	----a-w-	c:\users\user\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2011-12-20 328056]
"Windows Service Manager"="c:\programdata\Windows Service Manager0\jtkyyvgiu.exe" [2013-05-22 1060207]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Popup"="c:\program files (x86)\MegaRAID Storage Manager\MegaPopup\Popup.exe" [2009-03-25 102400]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2012-11-30 56128]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"Windows Service Manager"="c:\programdata\Windows Service Manager0\jtkyyvgiu.exe" [2013-05-22 1060207]
.
c:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
irPC.exe — skrót.lnk - c:\program files (x86)\irPC\irPC.exe [2005-12-30 107520]
MSIAfterburnerRemoteServer.exe — skrót.lnk - c:\program files (x86)\MSI Afterburner\RemoteServer\MSIAfterburnerRemoteServer.exe [2013-1-20 123904]
QNIX LCD only.lnk - c:\users\user\AppData\Roaming\Realtime Soft\UltraMon\3.1.0\Profiles\QNIX LCD only.umprofile [2013-5-7 287]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Install LastPass IE RunOnce.lnk - c:\program files (x86)\Common Files\lpuninstall.exe [2013-2-10 14823424]
TMMonitor.lnk - c:\program files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe [2013-1-24 258048]
UltraMon.lnk - c:\windows\Installer\{537056B7-32A4-4408-9B54-0341963C7C9C}\IcoUltraMon.ico [2012-5-29 29310]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer9"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2013-02-03 54728]
R1 atitray;atitray;c:\program files (x86)\Ray Adams\ATI Tray Tools\atitray64.sys [x]
R1 EIO64;EIO Driver;c:\windows\system32\DRIVERS\EIO64.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2013-02-03 552928]
R3 AsrDrv10;AsrDrv10;c:\windows\SysWOW64\Drivers\AsrDrv10.sys [x]
R3 AsrVDrive;AsrVDrive;c:\windows\system32\DRIVERS\AsrVDrive.sys [2011-01-26 23048]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
R3 cpudrv64;cpudrv64;c:\program files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-06-02 17864]
R3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x]
R3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\System32\drivers\CT20XUT.SYS [x]
R3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.SYS [x]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\System32\drivers\CTEXFIFX.SYS [x]
R3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.SYS [x]
R3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\System32\drivers\CTHWIUT.SYS [x]
R3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.SYS [x]
R3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2011-08-01 52584]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-09-20 102368]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2012-12-17 137488]
R3 GPUZ;GPUZ;c:\users\USER\APPDATA\LOCAL\TEMP\GPUZ.sys [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
R3 IntcDAud;Intel(R) Audio dla ekranów;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-08-23 317440]
R3 IOMap;IOMap;c:\windows\system32\drivers\IOMap64.sys [2010-02-22 23680]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys [2012-09-18 78648]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys [2012-09-18 15160]
R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 Mv_Process;Marvell process notification.;c:\windows\syswow64\mv_process.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 NisSrv;Inspekcja sieci firmy Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
R3 NLNdisPT;NetLimiter Ndis Protocol Service;c:\windows\system32\DRIVERS\nlndis.sys [2011-03-21 33416]
R3 pmxdrv;pmxdrv;c:\windows\system32\drivers\pmxdrv.sys [2013-01-16 31152]
R3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2011-08-01 45416]
R3 PROCEXP151;PROCEXP151;c:\windows\system32\Drivers\PROCEXP151.SYS [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 rspLLL;rspLLL;c:\windows\system32\DRIVERS\rspLLL64.sys [2013-02-07 23968]
R3 RSSDrv;RSSDrv;c:\windows\SysWOW64\Drivers\RSSDrv.sys [x]
R3 RTL8023x64;Sterownik Realtek 10/100 NIC Family NDIS x64;c:\windows\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712]
R3 SliceDisk5;SliceDisk5;c:\users\user\AppData\Local\Temp\HBCD\FindAndMount\slicedisk-x64.sys [x]
R3 smsbda;DVB-T TV Stick;c:\windows\system32\drivers\smsbda.sys [2009-09-18 63520]
R3 SolutoRemoteService;Soluto Remote Service;c:\program files\Soluto\SolutoRemoteService.exe [2013-02-03 1239552]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-09-20 203104]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2012-08-23 29696]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R4 ASGT;ASGT;c:\windows\SysWOW64\ASGT.exe [2012-01-17 55296]
R4 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [2011-08-24 83240]
R4 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [2011-09-02 75048]
R4 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [2011-09-02 292136]
R4 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 AsrRamDisk;AsrRamDisk;c:\windows\system32\DRIVERS\AsrRamDisk.sys [2012-01-13 31016]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys [2012-11-19 652344]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys [2012-11-19 28216]
S0 megasas2;megasas2;c:\windows\system32\DRIVERS\megasas2.sys [2011-11-26 53544]
S1 archlp;archlp;c:\windows\system32\drivers\archlp.sys [2010-07-07 136192]
S1 ArcSec;archlp;c:\windows\system32\drivers\ArcSec.sys [2010-09-21 312184]
S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys [2010-06-11 15368]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys [x]
S1 CbFs;CbFs;c:\windows\system32\drivers\cbfs_x64.sys [2009-08-19 191960]
S1 Ext2Fsd;Linux ext2 file system driver; [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO64A.SYS [2012-12-19 29672]
S1 nltdi;nltdi;c:\program files\NetLimiter 3\nltdi.sys [2011-03-21 88200]
S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/11/30 19:12];c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [2011-09-02 11:08 148976]
S2 BrcmMgmtAgent;Broadcom Management Agent;c:\program files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe [2011-01-14 163328]
S2 DVBVRecorder;DVBViewer Recording Service;c:\program files (x86)\DVBViewer\DVBVservice.exe [2010-10-16 617600]
S2 IAStorDataMgrSvc;Technologia pamięci Intel® Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-11-19 14904]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632]
S2 ISCTAgent;ISCT Always Updated Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2012-02-09 133632]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-09-18 165760]
S2 KMService;KMService;c:\windows\system32\srvany.exe [x]
S2 ntk_PowerDVD;ntk_PowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [2011-08-24 75248]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-03-23 87040]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-10-27 113456]
S2 SolutoLauncherService;Soluto Launcher Service;c:\program files\Soluto\SolutoLauncherService.exe [2013-02-03 183264]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-05-07 413472]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624]
S2 UltraMonUtility;UltraMon Utility Driver;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [2008-11-14 20512]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-09-18 364416]
S3 ALSysIO;ALSysIO;c:\users\USER\APPDATA\LOCAL\TEMP\ALSysIO64.sys [x]
S3 BazisVirtualCDBus;WinCDEmu Virtual Bus Driver;c:\windows\system32\DRIVERS\BazisVirtualCDBus.sys [2011-08-08 198480]
S3 cmudaxp;ASUS Xonar DX Audio Interface;c:\windows\system32\drivers\cmudaxp.sys [2009-10-19 1257472]
S3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2012-08-07 65152]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2012-08-07 88832]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys [2012-02-09 25536]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys [2012-02-09 25536]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys [2012-02-09 44992]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2012-10-15 435512]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 NLNdisMP;NLNdisMP;c:\windows\system32\DRIVERS\nlndis.sys [2011-03-21 33416]
S3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys [2013-01-23 13368]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2011-03-30 35112]
S3 ttBudget2_NTAMD64;TechnoTrend BDA/DVB (BDA);c:\windows\system32\drivers\ttBudget2_amd64.sys [2010-08-09 774360]
S3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);c:\windows\system32\drivers\WPRO_41_2001.sys [2013-05-22 34752]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs	REG_MULTI_SZ   	w3svc was
apphost	REG_MULTI_SZ   	apphostsvc
.
Zawartość folderu 'Zaplanowane zadania'
.
2013-05-22 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 12:41]
.
2013-05-19 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 12:41]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32	97792	----a-w-	c:\users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32	97792	----a-w-	c:\users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32	97792	----a-w-	c:\users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32	97792	----a-w-	c:\users\user\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-12-13 13374568]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-01-19 1129248]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-12-14 172144]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-12-14 399984]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-12-14 441968]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.pl/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&ksportuj do programu Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: LastPass - file://c:\users\user\AppData\LocalLow\LastPass\context.html?cmd=lastpass
IE: Wypełnij formularze LastPass - file://c:\users\user\AppData\LocalLow\LastPass\context.html?cmd=fillforms
IE: Wyślij &do programu OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: Interfaces\{034C6E1D-8EC3-4FC6-9E34-C4094087AA46}: NameServer = 217.8.168.244,157.25.5.18
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\
FF - ExtSQL: 2013-04-19 15:43; foxmarks@kei.com; c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\extensions\foxmarks@kei.com
FF - ExtSQL: 2013-04-19 15:51; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-04-19 15:51; {1280606b-2510-4fe0-97ef-9b5a22eafe30}; c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
FF - ExtSQL: 2013-04-19 15:52; {e4a8a97b-f2ed-450b-b12d-ee082ba24781}; c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF - ExtSQL: 2013-04-19 15:52; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - ExtSQL: 2013-04-19 15:52; {DDC359D1-844A-42a7-9AA1-88A850A938A8}; c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF - ExtSQL: 2013-04-19 15:52; {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}; c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
FF - ExtSQL: 2013-04-19 15:52; support@lastpass.com; c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\cgh1htwx.default\extensions\support@lastpass.com
.
.
------- Skojarzenia plików -------
.
JSEFile=%SystemRoot%\SysWow64\CScript.exe "%1" %*
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
URLSearchHooks-{ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
Wow6432Node-HKCU-Run-zASRockInstantBoot - (no file)
Wow6432Node-HKCU-Run-ASRockRuefi - (no file)
Wow6432Node-HKCU-Run-ASRockXTU - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Notify-SDWinLogon - SDWinLogon.dll
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file)
AddRemove-{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1 - c:\users\user\AppData\Local\unins000.exe
AddRemove-{CEB93895-E59E-44EB-AF58-F021864F9FF4}_is1 - c:\users\user\Desktop\System Monitor II\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl"
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_USERS\S-1-5-21-228855754-5744613-1243827483-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-228855754-5744613-1243827483-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_USERS\S-1-5-21-228855754-5744613-1243827483-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{0A0BBA6F-FB80-DE61-9D15-8B4E0DBA2A10}*]
"hankmehfipmfkaeg"=hex:64,62,69,6c,6d,65,61,65,6f,61,63,65,62,6a,66,6f,6d,69,
   6d,61,66,61,70,65,67,63,65,70,6e,70,6c,6b,6b,63,64,6b,6b,6f,68,68,00,00
"jaalpejkfokefnbboeme"=hex:64,62,68,6f,64,6f,6c,70,68,65,68,62,70,62,68,6b,6a,
   66,65,65,68,65,6c,69,63,6b,69,6a,69,6c,66,61,66,63,6b,69,64,63,61,6c,00,00
.
[HKEY_USERS\S-1-5-21-228855754-5744613-1243827483-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2013-05-22  16:59:43
ComboFix-quarantined-files.txt  2013-05-22 14:59
.
Przed: 8 014 102 528 bajtów wolnych
Po: 8 048 447 488 bajtów wolnych
.
- - End Of File - - E20F9910B51F738EDAC572E2CFEDB767