ComboFix 10-03-05.01 - Renate 05.03.2010  22:41:21.2.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.47.1044.18.3066.1460 [GMT 1:00]
Kjører fra: c:\users\Renate\Desktop\ComboFix.exe
SP: Spybot - Search and Destroy *enabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((((((   Andre slettinger   )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-2850935068-1113216565-140813062-1001

.
(((((((((((((((((((((((((((   Filer Opprettet Fra 2010-02-05 til 2010-03-05  )))))))))))))))))))))))))))))))))
.

2010-03-05 21:48 . 2010-03-05 21:48	--------	d-----w-	c:\users\Default\AppData\Local\temp
2010-03-05 21:48 . 2010-03-05 21:48	--------	d-----w-	c:\users\Gjest\AppData\Local\temp
2010-03-05 21:27 . 2010-03-05 21:39	--------	d-----w-	C:\32788R22FWJFW
2010-03-05 21:04 . 2010-03-05 21:04	--------	d-----w-	c:\program files\Easy Duplicate Finder
2010-03-05 21:04 . 2010-03-05 21:04	--------	d-----w-	c:\users\Renate\AppData\Roaming\Easy Duplicate Finder
2010-03-05 21:04 . 2010-03-05 21:04	--------	d-----w-	c:\programdata\Easy Duplicate Finder
2010-03-05 19:16 . 2010-03-05 19:16	--------	d-----w-	c:\users\Renate\SPOTIFY
2010-03-05 10:42 . 2010-03-05 10:42	--------	d-----w-	c:\users\Renate\AppData\Roaming\VSRevoGroup
2010-03-05 10:32 . 2010-03-05 10:32	--------	d-----w-	c:\program files\VS Revo Group
2010-03-05 09:21 . 2002-10-14 17:09	847872	----a-w-	c:\windows\system32\_ISource22.dll
2010-03-05 08:58 . 2010-03-05 09:01	44544	------w-	c:\windows\AWuninstall.exe
2010-03-05 08:13 . 2010-03-05 08:43	--------	d-----w-	c:\users\Renate\AppData\Roaming\Canon
2010-03-05 08:11 . 2006-09-12 19:00	74240	----a-w-	c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon MP110 Series Printer\LanguageModules\0409\CNMsr6F.dll
2010-03-05 08:11 . 2006-09-12 19:00	73216	----a-w-	c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon MP110 Series Printer\LanguageModules\0411\CNMlr6F.dll
2010-03-05 08:11 . 2006-09-12 19:00	42496	----a-w-	c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon MP110 Series Printer\LanguageModules\0411\CNMsr6F.dll
2010-03-05 08:11 . 2006-09-12 19:00	334848	----a-w-	c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon MP110 Series Printer\LanguageModules\0409\CNMur6F.dll
2010-03-05 08:11 . 2006-09-12 19:00	249344	----a-w-	c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon MP110 Series Printer\LanguageModules\0411\CNMur6F.dll
2010-03-05 08:11 . 2006-09-12 19:00	130048	----a-w-	c:\programdata\CanonBJ\IJPrinter\CNMWindows\Canon MP110 Series Printer\LanguageModules\0409\CNMlr6F.dll
2010-03-05 08:08 . 2010-03-05 08:08	--------	d--h--w-	c:\programdata\CanonBJ
2010-03-05 08:08 . 2006-09-12 19:00	69632	----a-w-	c:\windows\system32\Spool\prtprocs\w32x86\CNMPP6F.DLL
2010-03-05 08:08 . 2006-09-12 19:00	27136	----a-w-	c:\windows\system32\Spool\prtprocs\w32x86\CNMPD6F.DLL
2010-03-05 08:08 . 2010-03-05 08:08	--------	d--h--w-	c:\windows\system32\CanonIJ Uninstaller Information
2010-03-05 08:06 . 2006-09-12 19:00	197632	----a-w-	c:\windows\system32\CNMLM6F.DLL
2010-03-05 08:06 . 2006-09-26 04:00	49152	----a-w-	c:\windows\system32\cncisco.dll
2010-03-05 08:06 . 2006-09-26 03:59	94208	----a-w-	c:\windows\system32\CNCL110.DLL
2010-03-05 08:06 . 2006-09-26 03:59	37376	----a-w-	c:\windows\system32\CNCI110.DLL
2010-03-05 08:06 . 2006-09-26 03:59	159744	----a-w-	c:\windows\system32\CNCC110.DLL
2010-03-05 08:06 . 2006-03-03 05:35	389180	----a-w-	c:\windows\system32\UCS32P.DLL
2010-03-05 08:05 . 2010-03-05 08:05	--------	d--h--w-	c:\program files\CanonBJ
2010-03-05 06:46 . 2010-03-05 06:46	--------	d-----w-	C:\$AVG
2010-03-05 06:04 . 2010-03-05 06:04	49152	----a-r-	c:\users\Renate\AppData\Roaming\Microsoft\Installer\{81A34902-9D0B-4920-A25C-4CDC5D14B328}\Anim3Premium.exe
2010-03-05 06:04 . 2010-03-05 06:04	14278	----a-r-	c:\users\Renate\AppData\Roaming\Microsoft\Installer\{81A34902-9D0B-4920-A25C-4CDC5D14B328}\PaintShopPro8_Premium.exe
2010-03-05 06:04 . 2010-03-05 06:04	14278	----a-r-	c:\users\Renate\AppData\Roaming\Microsoft\Installer\{81A34902-9D0B-4920-A25C-4CDC5D14B328}\ARPPRODUCTICON.exe
2010-03-05 06:03 . 2010-03-05 06:03	--------	d-----w-	c:\users\Renate\AppData\Roaming\Jasc Software Inc
2010-03-05 06:03 . 2010-03-05 06:03	--------	d-----w-	c:\program files\Jasc Software Inc
2010-03-05 03:02 . 2010-03-05 03:02	--------	d-----w-	c:\program files\PSP Thumbnail Handler
2010-03-05 02:47 . 2006-10-20 13:10	295000	----a-w-	c:\windows\system\msvcrt.dll
2010-03-05 02:47 . 2004-03-08 16:40	57344	----a-w-	c:\windows\system\icmfilter.dll
2010-03-05 02:47 . 2004-03-08 16:40	32768	----a-w-	c:\windows\system\plugin.dll
2010-03-05 02:47 . 2004-03-08 16:40	210944	----a-w-	c:\windows\system\Msvcrt10.dll
2010-03-05 02:47 . 1996-11-16 23:00	326656	----a-w-	c:\windows\system\MSVCRT40.DLL
2010-03-05 02:47 . 1995-07-11 15:50	253952	----a-w-	c:\windows\system\MSVCRT20.DLL
2010-03-05 02:25 . 2010-03-05 20:22	--------	d-----w-	c:\users\Renate\AppData\Local\Corel
2010-03-05 02:23 . 2010-03-05 02:23	--------	d-----w-	c:\program files\Common Files\Corel
2010-03-05 02:23 . 2010-03-05 02:23	--------	d-----w-	c:\program files\Corel
2010-03-05 01:05 . 2010-03-05 01:05	242568	----a-w-	c:\programdata\avg9\update\backup\avgtdix.sys
2010-03-04 22:41 . 2010-03-04 22:47	--------	d-----w-	c:\program files\BitLord
2010-03-04 21:52 . 2010-03-04 21:52	--------	d-----w-	c:\users\Renate\AppData\Roaming\gtk-2.0
2010-03-04 21:50 . 2010-03-04 21:50	--------	d-----w-	c:\users\Renate\AppData\Roaming\Participatory Culture Foundation
2010-03-04 17:22 . 2010-03-04 18:38	--------	d-----w-	c:\program files\Common Files\Adobe
2010-03-04 17:15 . 2010-03-04 17:15	--------	d-----w-	c:\program files\Secunia
2010-03-04 17:03 . 2010-03-04 17:03	--------	d-----w-	c:\users\Renate\AppData\Local\CyberLink
2010-03-04 17:03 . 2010-03-04 17:03	--------	d-----w-	c:\programdata\PlayMovie
2010-03-04 17:03 . 2010-03-04 17:03	--------	d-----w-	c:\users\Renate\AppData\Local\SoftDMA
2010-03-04 17:03 . 2010-03-04 17:03	--------	d-----w-	c:\users\Renate\AppData\Local\Acer Arcade Deluxe
2010-03-04 13:13 . 2010-03-04 13:13	--------	d-----w-	c:\program files\Windows Portable Devices
2010-03-04 13:12 . 2009-09-10 02:01	3023360	----a-w-	c:\windows\system32\UIRibbon.dll
2010-03-04 13:12 . 2009-09-10 02:00	1164800	----a-w-	c:\windows\system32\UIRibbonRes.dll
2010-03-04 13:12 . 2009-09-10 02:00	92672	----a-w-	c:\windows\system32\UIAnimation.dll
2010-03-04 13:10 . 2009-10-01 01:02	30208	----a-w-	c:\windows\system32\WPDShextAutoplay.exe
2010-03-04 13:09 . 2009-10-08 21:08	555520	----a-w-	c:\windows\system32\UIAutomationCore.dll
2010-03-04 13:09 . 2009-10-08 21:08	234496	----a-w-	c:\windows\system32\oleacc.dll
2010-03-04 13:09 . 2009-10-08 21:07	4096	----a-w-	c:\windows\system32\oleaccrc.dll
2010-03-04 08:45 . 2010-01-06 15:39	1696256	----a-w-	c:\windows\system32\gameux.dll
2010-03-04 08:45 . 2010-01-06 15:38	28672	----a-w-	c:\windows\system32\Apphlpdm.dll
2010-03-04 08:45 . 2010-01-06 13:30	4240384	----a-w-	c:\windows\system32\GameUXLegacyGDFs.dll
2010-03-03 20:39 . 2010-03-03 20:39	207877	----a-r-	c:\users\Renate\AppData\Roaming\Microsoft\Installer\{D0C98156-0CF6-4AD9-9442-24D94D99E75C}\_6C3F6A1F50459F06E485AE.exe
2010-03-03 20:39 . 2010-03-03 20:39	207877	----a-r-	c:\users\Renate\AppData\Roaming\Microsoft\Installer\{D0C98156-0CF6-4AD9-9442-24D94D99E75C}\_13F16EC4EBE93B99B1C7D3.exe
2010-03-03 20:39 . 2010-03-03 20:39	--------	d-----w-	c:\program files\nsrac4192
2010-03-03 18:05 . 2010-03-03 18:05	--------	d-----w-	c:\windows\system32\ca-ES
2010-03-03 18:05 . 2010-03-03 18:05	--------	d-----w-	c:\windows\system32\eu-ES
2010-03-03 18:05 . 2010-03-03 18:05	--------	d-----w-	c:\windows\system32\vi-VN
2010-03-03 18:03 . 2010-03-03 18:03	--------	d-----w-	c:\windows\system32\SPReview
2010-03-03 15:51 . 2010-03-03 15:52	--------	d-----r-	c:\users\Renate\PrivateVideoer
2010-03-03 15:33 . 2010-03-03 15:33	--------	d-----w-	c:\windows\system32\Adobe
2010-03-03 14:47 . 2010-02-23 13:04	1664256	----a-w-	c:\programdata\AVG Security Toolbar\IEToolbar.dll
2010-03-03 12:39 . 2010-03-03 12:39	52872	----a-w-	c:\windows\system32\drivers\avgrkx86.sys
2010-03-03 12:39 . 2010-03-03 12:39	12464	----a-w-	c:\windows\system32\avgrsstx.dll
2010-03-03 12:39 . 2010-03-05 01:04	242696	----a-w-	c:\windows\system32\drivers\avgtdix.sys
2010-03-03 12:39 . 2010-03-03 12:39	216200	----a-w-	c:\windows\system32\drivers\avgldx86.sys
2010-03-03 12:39 . 2010-03-05 20:31	--------	d-----w-	c:\windows\system32\drivers\Avg
2010-03-03 12:39 . 2010-03-03 12:39	29512	----a-w-	c:\windows\system32\drivers\avgmfx86.sys
2010-03-03 12:39 . 2010-03-03 14:47	--------	d-----w-	c:\programdata\AVG Security Toolbar
2010-03-03 12:38 . 2010-03-03 12:38	24856	----a-w-	c:\windows\system32\drivers\avgfwd6x.sys
2010-03-03 12:38 . 2010-03-03 12:38	--------	d-----w-	c:\programdata\avg9
2010-03-03 12:38 . 2010-03-03 12:38	--------	d-----w-	c:\program files\AVG
2010-03-03 06:04 . 2010-03-03 06:04	--------	d-----w-	c:\users\Gjest\AppData\Local\temp(49)
2010-03-02 17:09 . 2010-03-02 17:09	--------	d-----w-	c:\windows\Sun
2010-03-02 01:58 . 2010-03-02 01:58	--------	d-----w-	c:\program files\Trend Micro
2010-03-02 00:19 . 2010-03-03 06:17	--------	d-----w-	c:\programdata\Spybot - Search & Destroy
2010-03-02 00:19 . 2010-03-03 06:15	--------	d-----w-	c:\program files\Spybot - Search & Destroy
2010-03-01 06:23 . 2010-03-01 06:23	--------	d-----w-	C:\EGIS_Drive
2010-03-01 02:12 . 2010-03-05 02:25	--------	d-----w-	c:\users\Renate\AppData\Roaming\Corel
2010-03-01 02:11 . 2010-03-05 12:52	--------	d-----w-	c:\programdata\Corel
2010-03-01 02:07 . 2010-03-05 19:45	3766	--sha-w-	c:\windows\system32\KGyGaAvL.sys
2010-03-01 02:07 . 2010-03-01 02:27	88	--sh--r-	c:\windows\system32\D5DB869025.sys
2010-03-01 01:57 . 2007-04-16 13:58	1118208	----a-w-	c:\windows\system32\NMSDVDXU.dll
2010-03-01 01:57 . 2003-08-19 03:31	81920	----a-w-	c:\windows\system32\viscomwave.dll
2010-03-01 01:57 . 2005-01-18 23:18	323584	----a-w-	c:\windows\system32\FoxImager.dll
2010-03-01 01:57 . 1998-06-17 23:00	89360	----a-w-	c:\windows\system32\VB5DB.DLL
2010-03-01 01:20 . 2010-03-01 01:20	--------	d-----w-	c:\users\Renate\AppData\Roaming\Jasc
2010-03-01 01:16 . 2010-03-01 01:16	--------	d-----w-	c:\programdata\NOS
2010-03-01 01:11 . 2010-03-01 01:11	160262	----a-w-	c:\windows\Sqirlz Water Reflections Uninstaller.exe
2010-03-01 01:11 . 2010-03-01 01:11	--------	d-----w-	c:\program files\Sqirlz Water Reflections
2010-03-01 01:09 . 2010-03-01 01:09	--------	d-----w-	c:\program files\FMPatcher
2010-03-01 00:30 . 2010-03-03 06:15	--------	d-----w-	c:\program files\CCleaner
2010-03-01 00:24 . 2010-03-01 00:24	--------	d-----w-	c:\programdata\TechSmith
2010-03-01 00:24 . 2010-03-01 00:24	--------	d-----w-	c:\users\Renate\AppData\Local\TechSmith
2010-03-01 00:24 . 2010-03-01 00:24	--------	d-----w-	c:\program files\TechSmith
2010-03-01 00:18 . 2010-03-01 00:18	--------	d-----w-	c:\program files\Thinking BIG
2010-02-28 17:16 . 2009-04-10 22:28	928768	----a-w-	c:\windows\system32\scavenge.dll
2010-02-28 17:15 . 2009-04-10 22:27	57856	----a-w-	c:\windows\system32\compcln.exe
2010-02-28 17:08 . 2009-04-10 22:32	53736	----a-w-	c:\windows\system32\drivers\disk.sys
2010-02-28 17:07 . 2009-04-10 22:28	1576960	----a-w-	c:\windows\system32\tquery.dll
2010-02-28 17:07 . 2009-04-10 22:32	53224	----a-w-	c:\windows\system32\drivers\termdd.sys
2010-02-28 17:07 . 2009-04-10 22:28	615424	----a-w-	c:\windows\system32\themeui.dll
2010-02-28 17:07 . 2009-04-10 22:28	449024	----a-w-	c:\windows\system32\termsrv.dll
2010-02-28 17:07 . 2009-04-10 22:28	313344	----a-w-	c:\windows\system32\thawbrkr.dll
2010-02-28 17:07 . 2009-04-10 22:28	270336	----a-w-	c:\windows\system32\taskcomp.dll
2010-02-28 17:07 . 2009-04-10 22:28	242688	----a-w-	c:\windows\system32\tapisrv.dll
2010-02-28 17:07 . 2009-04-10 22:28	170496	----a-w-	c:\windows\system32\tcpipcfg.dll
2010-02-28 17:07 . 2009-04-10 22:28	135168	----a-w-	c:\windows\system32\tcpmon.dll
2010-02-28 17:07 . 2009-04-10 22:28	1152000	----a-w-	c:\windows\system32\themecpl.dll
2010-02-28 17:07 . 2009-04-10 22:28	169984	----a-w-	c:\windows\system32\taskeng.exe
2010-02-28 17:07 . 2009-04-10 20:45	72192	----a-w-	c:\windows\system32\drivers\tdx.sys

.
((((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-05 21:00 . 2008-04-20 15:44	--------	d-----w-	c:\program files\Microsoft.NET
2010-03-05 20:46 . 2008-04-20 15:42	--------	d-----w-	c:\programdata\Microsoft Help
2010-03-05 19:48 . 2008-01-21 06:14	76478	----a-w-	c:\windows\system32\perfc014.dat
2010-03-05 19:48 . 2008-01-21 06:14	452326	----a-w-	c:\windows\system32\perfh014.dat
2010-03-05 19:43 . 2010-02-27 04:42	77742	----a-w-	c:\programdata\nvModes.dat
2010-03-05 08:09 . 2008-04-20 15:05	--------	d--h--w-	c:\program files\InstallShield Installation Information
2010-03-05 03:09 . 2010-03-04 21:03	--------	d-----w-	c:\users\Renate\AppData\Roaming\LimeWire
2010-03-04 13:13 . 2006-11-02 10:25	665600	----a-w-	c:\windows\inf\drvindex.dat
2010-03-04 13:13 . 2010-03-04 13:13	0	---ha-w-	c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2010-03-04 13:13 . 2010-03-04 13:13	0	---ha-w-	c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2010-03-03 18:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Calendar
2010-03-03 18:05 . 2006-11-02 11:18	--------	d-----w-	c:\program files\Windows Mail
2010-03-03 18:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Sidebar
2010-03-03 18:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Photo Gallery
2010-03-03 18:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Journal
2010-03-03 18:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Collaboration
2010-03-03 18:05 . 2006-11-02 12:37	--------	d-----w-	c:\program files\Windows Defender
2010-03-02 16:20 . 2008-04-20 15:15	--------	d-----w-	c:\program files\Acer
2010-03-01 20:31 . 2010-03-01 20:31	71848	----a-w-	c:\users\Gjest\AppData\Local\GDIPFONTCACHEV1.DAT
2010-03-01 00:06 . 2010-03-01 00:06	0	---ha-w-	c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2010-02-28 17:02 . 2010-02-27 04:42	71848	----a-w-	c:\users\Renate\AppData\Local\GDIPFONTCACHEV1.DAT
2010-02-28 13:47 . 2008-04-20 15:12	125	----a-w-	c:\windows\xUninstall.bat
2010-02-28 03:43 . 2008-04-20 15:01	--------	d-----w-	c:\program files\Intel
2010-02-27 05:56 . 2008-04-20 15:16	--------	d-----w-	c:\programdata\McAfee
2010-02-27 05:49 . 2008-04-20 15:17	--------	d-----w-	c:\programdata\SiteAdvisor
2010-02-27 04:36 . 2010-02-27 04:36	0	---ha-w-	c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2010-02-27 04:29 . 2010-02-27 04:29	--------	d-sh--we	c:\programdata\Start-meny
2010-02-27 04:29 . 2010-02-27 04:29	--------	d-sh--we	c:\programdata\Skrivebord
2010-02-27 04:29 . 2010-02-27 04:29	--------	d-sh--we	c:\programdata\Programdata
2010-02-27 04:29 . 2010-02-27 04:29	--------	d-sh--we	c:\programdata\Maler
2010-02-27 04:29 . 2010-02-27 04:29	--------	d-sh--we	c:\programdata\Favoritter
2010-02-27 04:29 . 2010-02-27 04:29	--------	d-sh--we	c:\programdata\Dokumenter
2010-02-27 04:29 . 2010-02-27 04:29	--------	d-sh--we	c:\program files\Fellesfiler
2010-01-25 12:00 . 2010-02-27 06:37	471552	----a-w-	c:\windows\system32\secproc_isv.dll
2010-01-25 12:00 . 2010-02-27 06:37	152576	----a-w-	c:\windows\system32\secproc_ssp_isv.dll
2010-01-25 12:00 . 2010-02-27 06:37	152064	----a-w-	c:\windows\system32\secproc_ssp.dll
2010-01-25 12:00 . 2010-02-27 06:37	471552	----a-w-	c:\windows\system32\secproc.dll
2010-01-25 11:58 . 2010-02-27 06:37	332288	----a-w-	c:\windows\system32\msdrm.dll
2010-01-25 08:21 . 2010-02-27 06:37	526336	----a-w-	c:\windows\system32\RMActivate_isv.exe
2010-01-25 08:21 . 2010-02-27 06:37	346624	----a-w-	c:\windows\system32\RMActivate_ssp_isv.exe
2010-01-25 08:21 . 2010-02-27 06:37	518144	----a-w-	c:\windows\system32\RMActivate.exe
2010-01-25 08:21 . 2010-02-27 06:37	347136	----a-w-	c:\windows\system32\RMActivate_ssp.exe
2010-01-06 15:38 . 2010-03-04 08:45	173056	----a-w-	c:\windows\AppPatch\AcXtrnal.dll
2010-01-06 15:38 . 2010-03-04 08:45	542720	----a-w-	c:\windows\AppPatch\AcLayers.dll
2010-01-06 15:38 . 2010-03-04 08:45	458752	----a-w-	c:\windows\AppPatch\AcSpecfc.dll
2010-01-06 15:38 . 2010-03-04 08:45	2159616	----a-w-	c:\windows\AppPatch\AcGenral.dll
2010-01-02 06:38 . 2010-02-27 12:04	916480	----a-w-	c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-02-27 12:04	71680	----a-w-	c:\windows\system32\iesetup.dll
2010-01-02 06:32 . 2010-02-27 12:04	109056	----a-w-	c:\windows\system32\iesysprep.dll
2010-01-02 04:57 . 2010-02-27 12:04	133632	----a-w-	c:\windows\system32\ieUnatt.exe
2009-12-11 11:43 . 2010-02-27 06:34	302080	----a-w-	c:\windows\system32\drivers\srv.sys
2009-12-11 11:43 . 2010-02-27 06:34	98816	----a-w-	c:\windows\system32\drivers\srvnet.sys
.

((((((((((((((((((((((((((((((((   Oppstartspunkter I Registeret   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Merk* tomme oppføringer & gyldige standardoppføringer vises ikke  
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-02-23 1664256]

[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2010-02-23 13:04	1664256	----a-w-	c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-02-23 1664256]

[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2010-02-23 1664256]

[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-03-04 21:38	121392	----a-w-	c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-10 1233920]
"WindowsWelcomeCenter"="oobefldr.dll" [2009-04-10 2153472]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"RtHDVCpl"="RtHDVCpl.exe" [2008-04-28 6111232]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-01-18 1033512]
"eDataSecurity Loader"="c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-03-04 526896]
"eAudio"="c:\program files\Acer\Empowering Technology\eAudio\eAudio.exe" [2008-03-07 544768]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-04-21 13535776]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-04-21 92704]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-04-15 178712]
"LManager"="c:\progra~1\LAUNCH~1\QtZgAcer.EXE" [2008-07-02 821768]
"CLMLServer"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" [2008-05-12 167936]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2010-02-17 177472]
"PLFSetI"="c:\windows\PLFSetI.exe" [2007-10-23 200704]
"Skytel"="Skytel.exe" [2007-11-20 1826816]
"ArcadeDeluxeAgent"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2008-05-12 147456]
"Corel File Shell Monitor"="c:\program files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe" [2007-10-30 16200]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 35760]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-2-12 723496]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AWinNotifyVitaKey MC3000]
 [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2010-02-28 14:07	135664	----atw-	c:\users\Renate\AppData\Local\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):2e,1f,90,a3,fc,ba,ca,01

R3 A310;AVerMedia A310 DVB-T;c:\windows\system32\DRIVERS\AVerA310USB.sys [2008-04-15 25856]
R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG9\Toolbar\ToolbarBroker.exe [2010-02-23 369920]
R3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\system32\drivers\AVerA310Cap.sys [2008-04-15 42880]
S0 AvgRkx86;avgrkx86.sys;c:\windows\System32\Drivers\avgrkx86.sys [2010-03-03 52872]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6x.sys [2010-03-03 24856]
S1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\Drivers\avgldx86.sys [2010-03-03 216200]
S1 AvgTdiX;AVG Network Redirector;c:\windows\system32\Drivers\avgtdix.sys [2010-03-05 242696]
S2 avg9emc;AVG E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [2010-03-03 916760]
S2 avg9wd;AVG WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [2010-03-05 308064]
S2 avgfws9;AVG Firewall;c:\program files\AVG\AVG9\avgfws9.exe [2010-03-03 2325816]
S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384]
S2 CLHNService;CLHNService;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-01-16 81504]
S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2008-03-21 24576]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2008-03-28 210432]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper	REG_MULTI_SZ   	getPlusHelper
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	FontCache
.
Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)

2010-03-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2850935068-1113216565-140813062-1000Core.job
- c:\users\Renate\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-28 14:07]

2010-03-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2850935068-1113216565-140813062-1000UA.job
- c:\users\Renate\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-28 14:07]
.
.
------- Tilleggsskanning -------
.
uStart Page = hxxp://www.startsiden.no/
mStart Page = hxxp://no.intl.acer.yahoo.com
uInternet Settings,ProxyOverride = *.local
IE: E&ksporter til Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send bilde til &Bluetooth-enhet... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send side til &Bluetooth-enhet... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll
FF - ProfilePath - c:\users\Renate\AppData\Roaming\Mozilla\Firefox\Profiles\rsl955rm.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.startsiden.no/
FF - plugin: c:\users\Renate\AppData\Local\Google\Update\1.2.183.17\npGoogleOneClick8.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency",   1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug",            false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight",       2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize",       1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight",   25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight",     5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - TOMME PEKERE FJERNET - - - -

WebBrowser-{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - (no file)
HKLM-Run-Corel Photo Downloader - c:\program files\Common Files\Corel\Corel PhotoDownloader\Corel PhotoDownloader.exe
AddRemove-3D Shadow by Lokas Software - c:\windows\AWuninstall.exe Software\Lokas Ltd\3D Shadow



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-05 22:48
Windows 6.0.6002 Service Pack 2 NTFS

skanner skjulte prosesser ...  

skanner skjulte autostart-oppføringer ... 

skanner skjulte filer ...  

skanning vellykket
skjulte filer: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl"
.
--------------------- LÅSTE REGISTERNØKLER ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
--------------------- DLL'er Lastet Av Kjørende Prosesser ---------------------

- - - - - - - > 'Explorer.exe'(2636)
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll
c:\windows\system32\btmmhook.dll
.
Tidspunkt ferdig: 2010-03-05  22:51:31
ComboFix-quarantined-files.txt  2010-03-05 21:51
ComboFix2.txt  2010-03-03 06:04
ComboFix3.txt  2010-02-27 15:38

Pre-Run: 59 586 224 128 byte ledig
Post-Run: 59 607 343 104 byte ledig

- - End Of File - - 27F46E16725C16ACBAB5CAA304506A19