ComboFix 10-10-14.01 - kent 15.10.2010  10:49:17.2.4 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6000.0.1252.47.1044.18.2038.1074 [GMT 2:00]
Kjører fra: d:\progz\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((   Filer Opprettet Fra 2010-09-15 til 2010-10-15  )))))))))))))))))))))))))))))))))
.

2010-10-15 08:51 . 2010-10-15 08:51	--------	d-----w-	c:\users\Default\AppData\Local\temp
2010-10-15 08:01 . 2010-09-16 08:24	6084944	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{F2B2AE07-2F72-429D-83C2-E2E72C7AD34F}\mpengine.dll
2010-10-15 08:01 . 2010-10-15 08:01	378368	----a-w-	c:\windows\system32\winhttp.dll
2010-10-15 08:00 . 2010-10-15 08:00	268800	----a-w-	c:\windows\system32\es.dll
2010-10-15 07:38 . 2010-10-15 07:38	--------	d-----r-	c:\program files\Skype
2010-10-15 07:38 . 2010-10-15 07:38	--------	d-----w-	c:\program files\Common Files\Skype
2010-10-15 07:37 . 2010-10-15 07:38	--------	d-----w-	c:\programdata\Skype
2010-10-15 06:56 . 2010-10-15 06:56	--------	d-----w-	c:\programdata\Malwarebytes
2010-10-15 06:56 . 2010-04-29 13:39	38224	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2010-10-15 06:56 . 2010-10-15 06:56	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2010-10-15 06:56 . 2010-04-29 13:39	20952	----a-w-	c:\windows\system32\drivers\mbam.sys
2010-10-15 06:39 . 2010-10-15 06:39	67584	----a-w-	c:\windows\system32\wlanhlp.dll
2010-10-15 06:39 . 2010-10-15 06:39	502272	----a-w-	c:\windows\system32\wlansvc.dll
2010-10-15 06:39 . 2010-10-15 06:39	47104	----a-w-	c:\windows\system32\wlanapi.dll
2010-10-15 06:39 . 2010-10-15 06:39	297984	----a-w-	c:\windows\system32\wlansec.dll
2010-10-15 06:39 . 2010-10-15 06:39	290816	----a-w-	c:\windows\system32\wlanmsm.dll
2010-10-15 06:39 . 2010-10-15 06:39	123904	----a-w-	c:\windows\system32\L2SecHC.dll
2010-10-14 21:55 . 2010-10-14 21:55	72704	----a-w-	c:\windows\system32\fontsub.dll
2010-10-14 21:55 . 2010-10-14 21:55	34304	----a-w-	c:\windows\system32\atmlib.dll
2010-10-14 21:55 . 2010-10-14 21:55	289792	----a-w-	c:\windows\system32\atmfd.dll
2010-10-14 21:55 . 2010-10-14 21:55	24064	----a-w-	c:\windows\system32\lpk.dll
2010-10-14 21:55 . 2010-10-14 21:55	156672	----a-w-	c:\windows\system32\t2embed.dll
2010-10-14 21:55 . 2010-10-14 21:55	10240	----a-w-	c:\windows\system32\dciman32.dll
2010-10-14 21:52 . 2010-10-14 21:52	61440	----a-w-	c:\windows\system32\winipsec.dll
2010-10-14 21:51 . 2010-10-14 21:51	84992	----a-w-	c:\windows\system32\drivers\srvnet.sys
2010-10-14 21:51 . 2010-10-14 21:51	306688	----a-w-	c:\windows\system32\drivers\srv.sys
2010-10-14 21:50 . 2010-10-14 21:50	95232	----a-w-	c:\windows\system32\PortableDeviceClassExtension.dll
2010-10-14 21:50 . 2010-10-14 21:50	241152	----a-w-	c:\windows\system32\PortableDeviceApi.dll
2010-10-14 21:50 . 2010-10-14 21:50	160768	----a-w-	c:\windows\system32\PortableDeviceTypes.dll
2010-10-14 21:49 . 2010-10-14 21:49	707072	----a-w-	c:\program files\Common Files\System\wab32.dll
2010-10-14 21:49 . 2010-10-14 21:49	87040	----a-w-	c:\windows\system32\msoert2.dll
2010-10-14 21:49 . 2010-10-14 21:49	41984	----a-w-	c:\program files\Windows Mail\wabimp.dll
2010-10-14 21:49 . 2010-10-14 21:49	39424	----a-w-	c:\windows\system32\ACCTRES.dll
2010-10-14 21:49 . 2010-10-14 21:49	2836992	----a-w-	c:\program files\Windows Mail\MSOERES.dll
2010-10-14 21:49 . 2010-10-14 21:49	205824	----a-w-	c:\windows\system32\msoeacct.dll
2010-10-14 21:49 . 2010-10-14 21:49	1614848	----a-w-	c:\program files\Windows Mail\msoe.dll
2010-10-14 21:49 . 2010-10-14 21:49	1098752	----a-w-	c:\program files\Common Files\System\wab32res.dll
2010-10-14 21:49 . 2010-10-14 21:49	397312	----a-w-	c:\program files\Windows Mail\WinMail.exe
2010-10-14 21:49 . 2010-10-14 21:49	81408	----a-w-	c:\program files\Windows Mail\oeimport.dll
2010-10-14 21:49 . 2010-10-14 21:49	24064	----a-w-	c:\program files\Common Files\System\DirectDB.dll
2010-10-14 21:48 . 2010-10-14 21:48	9728	----a-w-	c:\windows\system32\TCPSVCS.EXE
2010-10-14 21:48 . 2010-10-14 21:48	8704	----a-w-	c:\windows\system32\HOSTNAME.EXE
2010-10-14 21:48 . 2010-10-14 21:48	27136	----a-w-	c:\windows\system32\NETSTAT.EXE
2010-10-14 21:48 . 2010-10-14 21:48	19968	----a-w-	c:\windows\system32\ARP.EXE
2010-10-14 21:48 . 2010-10-14 21:48	17920	----a-w-	c:\windows\system32\ROUTE.EXE
2010-10-14 21:48 . 2010-10-14 21:48	15360	----a-w-	c:\windows\system32\netevent.dll
2010-10-14 21:48 . 2010-10-14 21:48	11264	----a-w-	c:\windows\system32\MRINFO.EXE
2010-10-14 21:48 . 2010-10-14 21:48	103936	----a-w-	c:\windows\system32\netiohlp.dll
2010-10-14 21:48 . 2010-10-14 21:48	10240	----a-w-	c:\windows\system32\finger.exe
2010-10-14 21:47 . 2010-10-14 21:47	704000	----a-w-	c:\windows\system32\PhotoScreensaver.scr
2010-10-14 21:47 . 2010-10-14 21:47	356352	----a-w-	c:\windows\system32\wbem\wbemcomn.dll
2010-10-14 21:47 . 2010-10-14 21:47	258232	----a-w-	c:\windows\system32\drivers\acpi.sys
2010-10-14 21:47 . 2010-10-14 21:47	24064	----a-w-	c:\windows\system32\wtsapi32.dll
2010-10-14 21:47 . 2010-10-14 21:47	542720	----a-w-	c:\windows\system32\sysmain.dll
2010-10-14 21:46 . 2010-10-14 21:46	194560	----a-w-	c:\windows\system32\WebClnt.dll
2010-10-14 21:46 . 2010-10-14 21:46	110080	----a-w-	c:\windows\system32\drivers\mrxdav.sys
2010-10-14 21:46 . 2010-10-14 21:46	2048	----a-w-	c:\windows\system32\msxml3r.dll
2010-10-14 21:46 . 2010-10-14 21:46	1260032	----a-w-	c:\windows\system32\msxml3.dll
2010-10-14 21:46 . 2010-10-14 21:46	1406464	----a-w-	c:\windows\system32\msxml6.dll
2010-10-14 21:46 . 2010-10-14 21:46	2048	----a-w-	c:\windows\system32\msxml6r.dll
2010-10-14 21:45 . 2010-10-14 21:45	216576	----a-w-	c:\windows\system32\msv1_0.dll
2010-10-14 21:44 . 2010-10-14 21:44	58368	----a-w-	c:\windows\system32\drivers\mrxsmb20.sys
2010-10-14 21:44 . 2010-10-14 21:44	211968	----a-w-	c:\windows\system32\drivers\mrxsmb10.sys
2010-10-14 21:44 . 2010-10-14 21:44	102400	----a-w-	c:\windows\system32\drivers\mrxsmb.sys
2010-10-14 21:43 . 2010-10-14 21:43	49664	----a-w-	c:\windows\system32\csrsrv.dll
2010-10-14 21:43 . 2010-10-14 21:43	376320	----a-w-	c:\windows\system32\winsrv.dll
2010-10-14 21:43 . 2010-10-14 21:43	98816	----a-w-	c:\windows\system32\mfps.dll
2010-10-14 21:43 . 2010-10-14 21:43	52736	----a-w-	c:\windows\system32\rrinstaller.exe
2010-10-14 21:43 . 2010-10-14 21:43	2855424	----a-w-	c:\windows\system32\mf.dll
2010-10-14 21:43 . 2010-10-14 21:43	24576	----a-w-	c:\windows\system32\mfpmp.exe
2010-10-14 21:43 . 2010-10-14 21:43	2048	----a-w-	c:\windows\system32\mferror.dll
2010-10-14 21:42 . 2010-10-14 21:42	3502480	----a-w-	c:\windows\system32\ntkrnlpa.exe
2010-10-14 21:42 . 2010-10-14 21:42	3468168	----a-w-	c:\windows\system32\ntoskrnl.exe
2010-10-14 21:39 . 2010-10-14 21:39	434176	----a-w-	c:\windows\system32\vbscript.dll
2010-10-14 21:38 . 2010-10-14 21:38	71680	----a-w-	c:\windows\system32\atl.dll
2010-10-14 21:37 . 2010-10-14 21:37	297472	----a-w-	c:\windows\system32\gdi32.dll
2010-10-14 21:36 . 2010-10-14 21:36	41984	----a-w-	c:\windows\system32\drivers\monitor.sys
2010-10-14 21:36 . 2010-10-14 21:36	1060920	----a-w-	c:\windows\system32\drivers\ntfs.sys
2010-10-14 21:35 . 2010-10-14 21:35	374456	----a-w-	c:\windows\system32\mcupdate_GenuineIntel.dll
2010-10-14 21:34 . 2010-10-14 21:34	500736	----a-w-	c:\windows\system32\msdtcprx.dll
2010-10-14 21:34 . 2010-10-14 21:34	30208	----a-w-	c:\windows\system32\xolehlp.dll
2010-10-14 21:33 . 2010-10-14 21:33	156160	----a-w-	c:\windows\system32\wkssvc.dll
2010-10-14 21:32 . 2010-10-14 21:32	36352	----a-w-	c:\windows\system32\tsgqec.dll
2010-10-14 21:32 . 2010-10-14 21:32	1871872	----a-w-	c:\windows\system32\mstscax.dll
2010-10-14 21:32 . 2010-10-14 21:32	116736	----a-w-	c:\windows\system32\aaclient.dll
2010-10-14 21:32 . 2010-10-14 21:32	303616	----a-w-	c:\windows\system32\wmpeffects.dll
2010-10-14 21:30 . 2010-10-14 21:30	414208	----a-w-	c:\windows\system32\msscp.dll
2010-10-14 21:30 . 2010-05-21 12:14	221568	------w-	c:\windows\system32\MpSigStub.exe
2010-10-14 21:30 . 2010-10-14 21:30	713728	----a-w-	c:\windows\system32\timedate.cpl
2010-10-14 21:29 . 2010-10-14 21:29	356864	----a-w-	c:\windows\system32\MediaMetadataHandler.dll
2010-10-14 21:28 . 2010-10-14 21:28	392192	----a-w-	c:\windows\system32\FirewallAPI.dll
2010-10-14 21:28 . 2010-10-14 21:28	63488	----a-w-	c:\windows\system32\drivers\mpsdrv.sys
2010-10-14 21:28 . 2010-10-14 21:28	86016	----a-w-	c:\windows\system32\icfupgd.dll
2010-10-14 21:28 . 2010-10-14 21:28	61952	----a-w-	c:\windows\system32\cmifw.dll
2010-10-14 21:28 . 2010-10-14 21:28	396800	----a-w-	c:\windows\system32\MPSSVC.dll
2010-10-14 21:28 . 2010-10-14 21:28	16896	----a-w-	c:\windows\system32\wfapigp.dll
2010-10-14 21:27 . 2010-10-14 21:27	23040	----a-w-	c:\program files\Movie Maker\WMM2EXT.dll
2010-10-14 21:27 . 2010-10-14 21:27	195072	----a-w-	c:\program files\Movie Maker\WMM2AE.dll
2010-10-14 21:27 . 2010-10-14 21:27	150016	----a-w-	c:\program files\Movie Maker\MOVIEMK.exe
2010-10-14 21:27 . 2010-10-14 21:27	10922496	----a-w-	c:\program files\Movie Maker\MOVIEMK.dll
2010-10-14 21:25 . 2010-10-14 21:25	80896	----a-w-	c:\windows\system32\MSNP.ax
2010-10-14 21:25 . 2010-10-14 21:25	68608	----a-w-	c:\windows\system32\Mpeg2Data.ax
2010-10-14 21:25 . 2010-10-14 21:25	57856	----a-w-	c:\windows\system32\MSDvbNP.ax
2010-10-14 21:25 . 2010-10-14 21:25	428032	----a-w-	c:\windows\system32\EncDec.dll
2010-10-14 21:25 . 2010-10-14 21:25	292352	----a-w-	c:\windows\system32\psisdecd.dll
2010-10-14 21:25 . 2010-10-14 21:25	217088	----a-w-	c:\windows\system32\psisrndr.ax
2010-10-14 21:25 . 2010-10-14 21:25	177152	----a-w-	c:\windows\system32\mpg2splt.ax
2010-10-14 21:25 . 2010-10-14 21:25	1244672	----a-w-	c:\windows\system32\mcmde.dll
2010-10-14 21:23 . 2010-10-14 21:23	2048	----a-w-	c:\windows\system32\tzres.dll
2010-10-14 21:22 . 2010-10-14 21:22	696832	----a-w-	c:\windows\system32\localspl.dll
2010-10-14 21:21 . 2010-10-14 21:21	21560	----a-w-	c:\windows\system32\drivers\atapi.sys
2010-10-14 21:21 . 2010-10-14 21:21	45112	----a-w-	c:\windows\system32\drivers\pciidex.sys
2010-10-14 21:21 . 2010-10-14 21:21	211000	----a-w-	c:\windows\system32\drivers\volsnap.sys
2010-10-14 21:21 . 2010-10-14 21:21	15928	----a-w-	c:\windows\system32\drivers\pciide.sys
2010-10-14 21:21 . 2010-10-14 21:21	154624	----a-w-	c:\windows\system32\drivers\nwifi.sys
2010-10-14 21:21 . 2010-10-14 21:21	109624	----a-w-	c:\windows\system32\drivers\ataport.sys
2010-10-14 21:20 . 2010-10-14 21:20	104448	----a-w-	c:\windows\system32\DWWIN.EXE
2010-10-14 21:20 . 2010-10-14 21:20	2923520	----a-w-	c:\windows\explorer.exe
2010-10-14 21:19 . 2010-10-14 21:19	8704	----a-w-	c:\windows\system32\hcrstco.dll
2010-10-14 21:19 . 2010-10-14 21:19	8704	----a-w-	c:\windows\system32\hccoin.dll
2010-10-14 21:19 . 2010-10-14 21:19	5888	----a-w-	c:\windows\system32\drivers\usbd.sys
2010-10-14 21:19 . 2010-10-14 21:19	38400	----a-w-	c:\windows\system32\drivers\usbehci.sys
2010-10-14 21:19 . 2010-10-14 21:19	224768	----a-w-	c:\windows\system32\drivers\usbport.sys
2010-10-14 21:19 . 2010-10-14 21:19	192000	----a-w-	c:\windows\system32\drivers\usbhub.sys
2010-10-14 21:18 . 2010-10-14 21:18	171520	----a-w-	c:\windows\system32\wintrust.dll

.
((((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.

((((((((((((((((((((((((((((((((   Oppstartspunkter I Registeret   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Merk* tomme oppføringer & gyldige standardoppføringer vises ikke  
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-10-14 1232896]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2010-10-14 1006264]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2009-10-28 1701888]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-08-25 98304]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys [2008-10-24 35328]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtVlan60.sys [2007-12-03 19968]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys [2008-10-24 35328]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.0);c:\windows\system32\DRIVERS\RtVLAN60.sys [2007-12-03 19968]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-08-26 176128]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys [2007-12-11 27648]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-08-26 6380032]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-08-26 221696]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdLH3.sys [2010-07-15 99344]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2009-10-21 1102848]

.
.
------- Tilleggsskanning -------
.
FF - ProfilePath - c:\users\kent\AppData\Roaming\Mozilla\Firefox\Profiles\0l53puws.default\
FF - component: c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
FF - plugin: c:\programdata\id Software\QuakeLive\npquakezero.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); 
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); 
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".no");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
.
Tidspunkt ferdig: 2010-10-15  10:52:45
ComboFix-quarantined-files.txt  2010-10-15 08:52
ComboFix2.txt  2010-10-15 07:13

Pre-Run: 4 753 117 184 byte ledig
Post-Run: 4 626 358 272 byte ledig

- - End Of File - - B410849A4362E9B1CF95EF2F81154A5F