ComboFix 14-03-05.01 - Urszula 2014-03-10  18:46:21.4.2 - x86
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.48.1045.18.3579.2407 [GMT 1:00]
Uruchomiony z: c:\users\Urszula\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2014-02-10 do 2014-03-10  )))))))))))))))))))))))))))))))
.
.
2014-03-10 18:01 . 2014-03-10 18:01	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-03-10 17:34 . 2014-03-10 17:35	--------	d-----w-	C:\FRST
2014-03-09 16:13 . 2014-03-09 16:13	--------	d-----w-	c:\users\Urszula\AppData\Roaming\AVAST Software
2014-03-09 16:06 . 2014-03-09 16:06	64168	----a-w-	c:\windows\system32\drivers\aswStm.sys
2014-03-07 11:50 . 2014-03-07 11:50	--------	d-----w-	c:\users\Urszula\AppData\Local\Skype
2014-03-07 11:50 . 2014-03-07 11:50	--------	d-----w-	c:\program files\Common Files\Skype
2014-03-07 11:50 . 2014-03-07 11:50	--------	d-----r-	c:\program files\Skype
2014-03-07 10:34 . 2014-03-07 11:16	--------	d-----w-	c:\users\Urszula\Doctor Web
2014-03-07 10:05 . 2014-03-10 18:01	--------	d-----w-	c:\users\Urszula\AppData\Local\temp
2014-03-07 09:36 . 2014-02-06 07:08	7947048	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{174F0A49-85A4-4114-8254-4FD41B708E7A}\mpengine.dll
2014-02-26 20:51 . 2014-02-26 20:51	--------	d-----w-	c:\windows\Migration
2014-02-16 17:45 . 2014-02-16 17:45	--------	d-----w-	c:\users\Urszula\AppData\Local\Autodesk,_Inc
2014-02-16 17:43 . 2014-02-16 17:43	--------	d-----w-	c:\users\Urszula\AppData\Local\Granta Design
2014-02-16 16:27 . 2014-02-16 16:27	--------	d-----w-	c:\programdata\boost_interprocess
2014-02-13 23:02 . 2014-02-06 09:19	1584640	----a-w-	c:\program files\Internet Explorer\F12.dll
2014-02-13 23:02 . 2014-02-06 09:23	469504	----a-w-	c:\program files\Internet Explorer\ieinstal.exe
2014-02-13 23:02 . 2014-02-06 08:41	1820160	----a-w-	c:\windows\system32\wininet.dll
2014-02-13 23:02 . 2014-02-06 22:24	808152	----a-w-	c:\program files\Internet Explorer\iexplore.exe
2014-02-13 23:02 . 2014-02-06 09:09	1964032	----a-w-	c:\windows\system32\inetcpl.cpl
2014-02-13 23:02 . 2014-02-06 09:25	4244480	----a-w-	c:\windows\system32\jscript9.dll
2014-02-13 22:54 . 2013-12-21 08:56	454656	----a-w-	c:\windows\system32\vbscript.dll
2014-02-13 09:51 . 2013-12-06 02:02	1237504	----a-w-	c:\windows\system32\msxml3.dll
2014-02-13 09:51 . 2013-12-06 02:02	2048	----a-w-	c:\windows\system32\msxml3r.dll
2014-02-13 09:50 . 2013-12-24 23:09	1987584	----a-w-	c:\windows\system32\d3d10warp.dll
2014-02-13 09:50 . 2013-11-26 08:16	3419136	----a-w-	c:\windows\system32\d2d1.dll
2014-02-13 09:50 . 2013-12-04 01:54	594944	----a-w-	c:\windows\system32\RMActivate_isv.exe
2014-02-13 09:50 . 2013-12-04 01:54	572416	----a-w-	c:\windows\system32\RMActivate.exe
2014-02-13 09:50 . 2013-12-04 01:54	508928	----a-w-	c:\windows\system32\RMActivate_ssp_isv.exe
2014-02-13 09:50 . 2013-12-04 01:54	510976	----a-w-	c:\windows\system32\RMActivate_ssp.exe
2014-02-13 09:50 . 2013-12-04 02:03	423936	----a-w-	c:\windows\system32\secproc_isv.dll
2014-02-13 09:50 . 2013-12-04 02:03	428032	----a-w-	c:\windows\system32\secproc.dll
2014-02-13 09:50 . 2013-12-04 02:03	87040	----a-w-	c:\windows\system32\secproc_ssp_isv.dll
2014-02-13 09:50 . 2013-12-04 02:03	87040	----a-w-	c:\windows\system32\secproc_ssp.dll
2014-02-13 09:50 . 2013-12-04 02:02	390144	----a-w-	c:\windows\system32\msdrm.dll
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-09 16:06 . 2013-10-01 07:22	410784	----a-w-	c:\windows\system32\drivers\aswSP.sys
2014-03-09 16:06 . 2013-10-01 07:22	79720	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2014-03-09 16:06 . 2013-10-01 07:21	775952	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2014-03-09 16:06 . 2013-10-01 07:21	180248	----a-w-	c:\windows\system32\drivers\aswVmm.sys
2014-03-09 16:06 . 2013-10-01 07:21	49944	----a-w-	c:\windows\system32\drivers\aswRvrt.sys
2014-03-09 16:06 . 2013-10-01 07:21	67824	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2014-03-09 16:06 . 2013-10-01 07:21	270240	----a-w-	c:\windows\system32\aswBoot.exe
2014-03-09 16:06 . 2013-10-01 07:20	43152	----a-w-	c:\windows\avastSS.scr
2014-02-22 10:01 . 2012-04-04 15:29	71048	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2014-02-22 10:01 . 2012-04-04 15:29	692616	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2014-01-22 14:52 . 2013-10-01 07:22	56080	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2013-12-18 20:10 . 2014-01-20 11:05	94632	----a-w-	c:\windows\system32\WindowsAccessBridge.dll
2013-12-18 05:13 . 2012-04-20 16:04	231584	------w-	c:\windows\system32\MpSigStub.exe
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2011-05-30 . 6FA4AA7B6324780B24E2501FE727CCE8 . 2133504 . . [6.1.7600.16385] . . c:\windows\explorer.exe
[7] 2011-05-30 . 8B88EBBB05A0E56B7DCC708498C02B3E . 2616320 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[7] 2011-05-30 . 0FB9C74046656D1579A64660AD67B746 . 2616320 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[7] 2010-11-20 . 40D777B7A95E00593EB1568C68514493 . 2616320 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-03-09 16:06	259464	----a-w-	c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AppEx Accelerator UI"="c:\program files\AMD Quick Stream\AppexAcceleratorUI.exe" [2012-08-17 840544]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-01 9398888]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-11-01 1873192]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2011-02-15 2757312]
"NBAgent"="c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2011-03-22 1406248]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-07-27 1983816]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2009-03-18 767312]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"Olympus ib"="c:\program files\Olympus\ib\olycamdetect.exe" [2011-11-29 96128]
"MDS_Menu"="c:\program files\Olympus\ib\MUITransfer\MUIStartMenu.exe" [2011-08-30 223104]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-12-19 642808]
"PCSuiteTrayApplication"="c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 227328]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-10-01 152392]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-03-09 3767096]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Nokia.PCSync"="c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 1744896]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2013-02-05 894344]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2012-4-11 113664]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-7-29 836896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-04-04 21:06	958576	----a-w-	c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-12-18 14:28	38112	----a-w-	c:\program files\Adobe\Reader 10.0\Reader\reader_sl.exe
.
R2 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-03-09 64168]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2010-11-01 297000]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-11-01 33320]
R3 DCDhcpService;DCDhcpService;c:\program files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [2011-07-19 104096]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y6032.sys [2009-07-13 214016]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-02-06 108032]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 SOHCImp;VAIO Content Importer;c:\program files\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2011-02-21 113824]
R3 SOHDs;VAIO Device Searcher;c:\program files\Common Files\Sony Shared\SOHLib\SOHDs.exe [2011-02-21 67232]
R3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe [2011-01-20 228056]
R3 ST330;ST330;c:\windows\system32\drivers\st330.sys [2012-04-04 30464]
R3 STBUS;STBUS;c:\windows\system32\drivers\stbus.sys [2012-04-04 12672]
R3 STETH;SpeedTouch Ethernet Adapter NT Driver;c:\windows\system32\DRIVERS\steth.sys [2012-09-14 40320]
R3 stppp;Speedtouch PPP Adapter Adapter;c:\windows\system32\DRIVERS\stppp.sys [2012-04-04 35328]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 27136]
R3 VCFw;VAIO Content Folder Watcher;c:\program files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2011-01-20 887000]
R3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2011-05-19 549616]
R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2011-02-18 385336]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [2011-02-18 83232]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-04-07 1343400]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys [2011-02-17 64128]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys [2011-02-17 32384]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-03-09 775952]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-03-09 410784]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-12-19 219136]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-12-19 291840]
S2 APXACC;AppEx Networks Accelerator LWF;c:\windows\system32\DRIVERS\appexDrv.sys [2012-09-11 160608]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-03-09 67824]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232]
S2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
S2 mitsijm2014;Autodesk Simulation Moldflow MITSI 2014 Job Manager;c:\program files\Autodesk\Inventor 2014\Moldflow\bin\mitsijm.exe [2013-01-25 723744]
S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-05-04 503080]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2011-01-29 189048]
S2 uCamMonitor;CamMonitor;c:\program files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2011-02-23 105024]
S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2013-08-27 862808]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 17408]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2012-11-06 84992]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-11-01 68208]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2011-03-28 197224]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2010-04-26 9344]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2011-01-07 35968]
S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe [2011-02-14 44736]
S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update\VUAgent.exe [2013-08-01 1020976]
.
.
Zawartość folderu 'Zaplanowane zadania'
.
2014-03-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 10:01]
.
2014-03-10 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2072632562-1884050489-2965620541-1001Core.job
- c:\users\Urszula\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-20 06:35]
.
2014-03-10 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2072632562-1884050489-2965620541-1001UA.job
- c:\users\Urszula\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-20 06:35]
.
2014-03-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2072632562-1884050489-2965620541-1001Core.job
- c:\users\Urszula\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-18 12:21]
.
2014-03-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2072632562-1884050489-2965620541-1001UA.job
- c:\users\Urszula\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-18 12:21]
.
.
------- Skan uzupełniający -------
.
uStart Page = www.idg.pl/start
uInternet Settings,ProxyOverride = <local>
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000
IE: Pasek Narzędzi avast! EasyPass - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
IE: Personalizuj menu - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: Wypełnij Pola - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: Zapisz Pola - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\Urszula\AppData\Roaming\Mozilla\Firefox\Profiles\67y1hnic.default-1394455505612\
FF - ExtSQL: 2014-03-09 17:06; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
.
------- Skojarzenia plików -------
.
.scr=DWGTrueViewScriptFile
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2072632562-1884050489-2965620541-1001\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{26A4C77F-6DDD-88FC-E8C6-8F65D729A7A5}*]
"jakgopgolcfjeokbbeod"=hex:68,62,61,61,61,6c,6d,64,6f,6c,6f,62,66,61,68,66,63,
   63,66,61,64,6f,61,63,6f,65,67,6b,68,62,62,68,63,62,62,63,67,70,68,68,6f,69,\
"jakgopmoahcjfldodlho"=hex:6b,61,62,63,69,62,63,6d,69,6b,61,67,6c,66,6d,64,6d,
   6d,69,6a,62,69,00,00
.
[HKEY_USERS\S-1-5-21-2072632562-1884050489-2965620541-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:cd,6b,7a,29,bb,f3,67,3b,ca,4d,07,c5,19,ef,f6,9e,3d,47,0b,10,37,e5,a5,
   f1,01,60,b3,50,33,21,db,44,86,9e,43,bd,ff,d2,07,17,61,ca,14,5e,8e,fc,2b,1f,\
"??"=hex:8f,38,87,ab,37,16,a3,70,d8,a4,e5,27,7f,89,e7,4f
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
.
- - - - - - - > 'Explorer.exe'(5608)
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
.
Czas ukończenia: 2014-03-10  19:06:16
ComboFix-quarantined-files.txt  2014-03-10 18:06
ComboFix2.txt  2014-03-10 13:17
.
Przed: 341 741 969 408 bajtów wolnych
Po: 341 683 212 288 bajtów wolnych
.
- - End Of File - - 14B17D0DAF7AD1F69F3376E9EEFFEFED
A36C5E4F47E84449FF07ED3517B43A31