ComboFix 11-09-17.04 - Bendik 18.09.2011  14:37:43.1.2 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.47.1044.18.4061.1490 [GMT 2:00]
Kjører fra: c:\users\Bendik\Downloads\ComboFix.exe
AV: Bitdefender Antivirus *Disabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
FW: Bitdefender Firewall *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
SP: Bitdefender Antispyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Andre slettinger   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Bendik\Desktop\Setup.exe
c:\users\Public\Documents\NTILiveUpdate.dll
c:\windows\system32\no
c:\windows\system32\no\AuthFWSnapIn.Resources.dll
c:\windows\system32\no\AuthFWWizFwk.Resources.dll
c:\windows\SysWow64\mfc100deu.dll
c:\windows\SysWow64\no
c:\windows\SysWow64\no\AuthFWSnapIn.Resources.dll
c:\windows\SysWow64\no\AuthFWWizFwk.Resources.dll
.
.
(((((((((((((((((((((((((((   Filer Opprettet Fra 2011-08-18 til 2011-09-18  )))))))))))))))))))))))))))))))))
.
.
2011-09-18 12:51 . 2011-09-18 12:51	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-09-18 12:17 . 2011-09-18 12:17	--------	d-----w-	c:\users\Bendik\AppData\Roaming\Malwarebytes
2011-09-18 12:17 . 2011-09-18 12:17	--------	d-----w-	c:\programdata\Malwarebytes
2011-09-18 12:16 . 2011-09-18 12:17	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2011-09-18 12:16 . 2011-08-31 15:00	25416	----a-w-	c:\windows\system32\drivers\mbam.sys
2011-09-18 10:16 . 2011-03-25 21:27	81008	----a-w-	c:\windows\system32\drivers\vmci.sys
2011-09-18 10:16 . 2011-03-25 21:27	68720	----a-w-	c:\windows\system32\drivers\vmx86.sys
2011-09-18 10:14 . 2011-03-25 21:26	334448	----a-w-	c:\windows\SysWow64\vmnetdhcp.exe
2011-09-18 10:14 . 2011-03-25 21:26	404080	----a-w-	c:\windows\SysWow64\vmnat.exe
2011-09-18 10:14 . 2011-03-25 21:25	30320	----a-w-	c:\windows\system32\drivers\vmnetuserif.sys
2011-09-18 10:14 . 2011-03-25 21:27	968816	----a-w-	c:\windows\system32\vnetlib64.dll
2011-09-18 10:14 . 2011-03-25 21:25	31856	----a-w-	c:\windows\system32\drivers\VMkbd.sys
2011-09-18 10:14 . 2011-03-25 20:27	38512	----a-w-	c:\windows\system32\drivers\hcmon.sys
2011-09-18 10:13 . 2011-09-18 10:13	--------	d-----w-	c:\program files (x86)\Common Files\VMware
2011-09-18 10:13 . 2011-09-18 10:16	--------	d-----w-	c:\programdata\VMware
2011-09-18 10:13 . 2011-09-18 10:13	--------	d-----w-	c:\program files (x86)\VMware
2011-09-18 10:11 . 2011-09-18 10:11	--------	d-----w-	c:\program files\Windows XP Mode
2011-09-18 10:09 . 2011-09-18 10:10	--------	d-----w-	c:\users\Bendik\AppData\Roaming\Download Manager
2011-09-18 09:52 . 2011-09-18 09:53	--------	d-----w-	C:\open
2011-09-18 08:43 . 2011-09-18 08:43	--------	d-----w-	c:\program files (x86)\WINPranks Trial Version
2011-09-18 08:42 . 2011-09-18 08:43	--------	d-----w-	c:\users\Bendik\AppData\Roaming\GetRightToGo
2011-09-17 18:46 . 2011-09-17 18:46	--------	d-----w-	c:\users\Bendik\AppData\Roaming\Foundstone Free Tools
2011-09-17 18:46 . 2011-09-17 18:58	--------	d-----w-	c:\program files (x86)\Foundstone Free Tools
2011-09-17 18:46 . 2011-09-17 18:46	--------	d-----w-	c:\programdata\Foundstone Free Tools
2011-09-17 17:07 . 2011-09-18 11:48	--------	d-----w-	c:\users\Bendik\AppData\Local\Spotify
2011-09-17 17:07 . 2011-09-18 11:52	--------	d-----w-	c:\users\Bendik\AppData\Roaming\Spotify
2011-09-17 13:37 . 2011-09-17 13:37	--------	d-----w-	C:\MoTemp
2011-09-17 10:34 . 2011-09-17 10:34	--------	d-----w-	c:\users\Bendik\AppData\Local\Deployment
2011-09-17 10:34 . 2011-09-17 10:34	--------	d-----w-	c:\users\Bendik\AppData\Local\Apps
2011-09-17 10:29 . 2011-09-17 10:29	--------	d-----w-	c:\users\Bendik\AppData\Local\assembly
2011-09-17 10:27 . 2011-09-17 11:06	--------	d-----w-	c:\users\Bendik\AppData\Local\Temporary Projects
2011-09-17 09:08 . 2011-09-17 09:08	--------	d-----w-	c:\users\Bendik\AppData\Local\Electronic_Arts_Inc
2011-09-17 09:06 . 2007-10-12 13:14	5081608	----a-w-	c:\windows\system32\d3dx9_36.dll
2011-09-17 09:03 . 2011-09-17 09:05	--------	d--h--w-	c:\windows\msdownld.tmp
2011-09-17 08:35 . 2011-09-17 08:35	234768	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2011-09-17 08:33 . 2011-09-17 08:33	--------	d-----w-	c:\users\Bendik\AppData\Local\PunkBuster
2011-09-17 06:51 . 2011-09-17 08:35	234768	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2011-09-17 06:51 . 2011-09-17 06:51	75136	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2011-09-17 06:40 . 2011-09-17 06:40	--------	d-----w-	c:\program files (x86)\EA Games
2011-09-16 21:36 . 2011-09-16 21:36	--------	d-----w-	C:\2011
2011-09-16 17:49 . 2011-09-16 17:49	--------	d-----w-	c:\program files (x86)\Astroburn Toolbar
2011-09-16 17:49 . 2011-09-16 17:49	--------	d-----w-	c:\programdata\Astroburn Lite
2011-09-16 17:49 . 2011-09-16 17:49	--------	d-----w-	c:\program files (x86)\Astroburn Lite
2011-09-16 17:15 . 2011-09-16 17:15	270912	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2011-09-16 17:02 . 2011-09-16 17:02	526392	----a-w-	c:\windows\system32\drivers\sptd.sys
2011-09-16 17:01 . 2011-09-16 17:15	--------	d-----w-	c:\program files (x86)\DAEMON Tools Lite
2011-09-16 16:47 . 2011-09-16 17:00	--------	d-----w-	c:\programdata\DAEMON Tools Pro
2011-09-16 16:47 . 2011-09-16 16:47	--------	d-----w-	c:\users\Bendik\AppData\Roaming\DAEMON Tools Pro
2011-09-16 16:46 . 2011-09-18 10:12	--------	d-----w-	c:\users\Bendik\AppData\Roaming\DAEMON Tools Lite
2011-09-16 16:46 . 2011-09-16 17:01	--------	d-----w-	c:\programdata\DAEMON Tools Lite
2011-09-16 15:42 . 2011-09-16 15:42	--------	d-----w-	c:\users\Bendik\AppData\Local\IsolatedStorage
2011-09-16 15:37 . 2011-09-17 09:03	--------	d-----w-	c:\program files (x86)\Electronic Arts
2011-09-11 13:02 . 2011-09-11 13:02	48648	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-09-11 13:02 . 2011-09-11 13:02	555328	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-09-09 12:23 . 2011-09-09 12:23	--------	d--h--r-	c:\users\Bendik\AppData\Roaming\SecuROM
2011-09-09 12:16 . 2011-09-09 12:16	--------	d-----w-	c:\programdata\EA Core
2011-09-09 12:15 . 2011-09-09 12:13	447752	----a-w-	c:\windows\SysWow64\vp6vfw.dll
2011-09-09 12:15 . 2011-09-09 12:15	--------	d-----w-	c:\program files (x86)\Microsoft WSE
2011-09-09 12:14 . 2006-09-28 14:05	3977496	----a-w-	c:\windows\system32\d3dx9_31.dll
2011-09-09 12:14 . 2006-09-28 14:05	2414360	----a-w-	c:\windows\SysWow64\d3dx9_31.dll
2011-09-08 20:10 . 2011-09-08 20:10	--------	d-----w-	c:\users\Bendik\Adobe Flash Builder 4
2011-09-08 20:07 . 2011-09-08 20:07	78928	----a-w-	c:\windows\system32\drivers\bdsandbox.sys
2011-09-08 20:00 . 2011-09-08 20:10	--------	d-----w-	c:\users\Bendik\AppData\Local\Flash Builder
2011-09-08 13:52 . 2011-09-08 13:52	--------	d-----w-	c:\users\Bendik\AppData\Roaming\Origin
2011-09-08 13:52 . 2011-09-08 13:52	--------	d-----w-	c:\users\Bendik\AppData\Local\Origin
2011-09-08 13:52 . 2011-09-17 09:03	--------	d-----w-	c:\programdata\Electronic Arts
2011-09-08 13:52 . 2011-09-09 11:44	--------	d-----w-	c:\program files (x86)\Origin Games
2011-09-08 13:52 . 2011-09-08 19:16	--------	d-----w-	c:\programdata\Origin
2011-09-08 13:52 . 2011-09-16 14:28	--------	d-----w-	c:\program files (x86)\Origin
2011-09-06 16:31 . 2011-09-06 16:31	--------	d-----w-	c:\users\Bendik\Ny mappe
2011-09-06 16:21 . 2011-09-06 16:21	--------	d-----w-	c:\users\Bendik\data
2011-09-01 20:03 . 2004-03-09 15:36	505104	----a-w-	c:\windows\SysWow64\msxml.dll
2011-09-01 20:03 . 2004-03-09 15:36	115016	----a-w-	c:\windows\SysWow64\MSINET.OCX
2011-09-01 20:03 . 2004-03-09 15:36	69632	----a-w-	c:\windows\SysWow64\xmltok.dll
2011-09-01 20:03 . 2004-03-09 15:36	36864	----a-w-	c:\windows\SysWow64\xmlparse.dll
2011-09-01 20:03 . 2004-03-09 15:36	35840	----a-w-	c:\windows\SysWow64\comdlg32.oca
2011-09-01 20:03 . 2004-03-09 15:36	28432	----a-w-	c:\windows\SysWow64\msxmlr.dll
2011-09-01 20:03 . 2004-03-09 15:36	26096	----a-w-	c:\windows\SysWow64\xmlinst.exe
2011-09-01 20:03 . 2004-03-09 15:36	24576	----a-w-	c:\windows\SysWow64\msxml3a.dll
2011-09-01 20:03 . 2004-03-09 15:36	140488	----a-w-	c:\windows\SysWow64\comdlg32.ocx
2011-09-01 20:03 . 2011-09-01 20:03	--------	d-----w-	c:\program files (x86)\Ubisoft
2011-09-01 20:03 . 2004-03-09 15:36	89360	----a-w-	c:\windows\SysWow64\VB5DB.DLL
2011-09-01 20:03 . 2004-03-09 15:36	29184	----a-w-	c:\windows\SysWow64\MSINET.oca
2011-09-01 19:37 . 2011-09-01 19:37	--------	d-----w-	c:\program files\Ubisoft
2011-09-01 19:37 . 2002-12-05 12:10	155648	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2011-09-01 19:37 . 2002-12-02 11:33	57344	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2011-09-01 19:37 . 2002-12-02 11:33	237568	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2011-09-01 19:37 . 2002-12-05 12:12	692224	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2011-09-01 19:37 . 2002-12-02 13:22	5632	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2011-09-01 19:37 . 2011-09-01 19:37	163972	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2011-09-01 19:37 . 2011-09-01 19:37	282756	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2011-08-31 17:10 . 2011-08-31 17:10	--------	d-----w-	C:\Doomsday
2011-08-30 18:20 . 2011-08-30 18:20	--------	d-----w-	c:\users\.Gjest
2011-08-30 06:13 . 2011-08-30 06:13	--------	d-sh--w-	c:\windows\system32\%APPDATA%
2011-08-27 13:20 . 2011-08-27 13:20	--------	d-----w-	c:\program files (x86)\Inpaint
2011-08-27 07:43 . 2011-08-27 07:43	--------	d-----w-	c:\windows\SysWow64\QuickTime
2011-08-27 07:43 . 2011-08-27 07:43	--------	d-----w-	c:\program files (x86)\Common Files\TechSmith Shared
2011-08-27 07:43 . 2011-08-27 07:43	--------	d-----w-	c:\programdata\TechSmith
2011-08-27 07:43 . 2011-08-27 07:43	--------	d-----w-	c:\program files (x86)\TechSmith
2011-08-26 20:07 . 2011-09-18 10:16	--------	d-----w-	c:\users\Bendik\AppData\Roaming\FileZilla
2011-08-26 17:53 . 2011-08-26 17:53	--------	d-----w-	c:\program files (x86)\FileZilla FTP Client
2011-08-26 16:32 . 2011-08-26 16:32	--------	d-----w-	c:\users\Bendik\AppData\Roaming\Artisteer
2011-08-26 16:25 . 2011-08-26 16:25	--------	d-----w-	c:\program files (x86)\Artisteer 3
2011-08-26 15:09 . 2011-08-26 15:09	--------	d-----w-	c:\program files (x86)\Sjekk Passordet
2011-08-25 17:43 . 2011-08-25 17:43	--------	d-----w-	c:\windows\Sun
2011-08-25 17:01 . 2011-08-25 17:01	--------	d-----w-	c:\users\Bendik\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2011-08-25 15:38 . 2011-08-26 16:32	--------	d-----w-	c:\users\Bendik\AppData\Roaming\Apple Computer
2011-08-25 15:38 . 2011-08-26 16:32	--------	d-----w-	c:\users\Bendik\AppData\Local\Apple Computer
2011-08-25 15:38 . 2009-05-18 11:17	34152	----a-w-	c:\windows\system32\drivers\GEARAspiWDM.sys
2011-08-25 15:38 . 2008-04-17 10:12	126312	----a-w-	c:\windows\system32\GEARAspi64.dll
2011-08-25 15:38 . 2008-04-17 10:12	107368	----a-w-	c:\windows\SysWow64\GEARAspi.dll
2011-08-25 15:38 . 2011-08-25 15:38	--------	dc----w-	c:\windows\system32\DRVSTORE
2011-08-25 15:37 . 2011-08-25 15:37	--------	d-----w-	c:\program files\iPod
2011-08-25 15:37 . 2011-08-25 15:38	--------	d-----w-	c:\programdata\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2011-08-25 15:37 . 2011-08-25 15:38	--------	d-----w-	c:\program files\iTunes
2011-08-25 15:37 . 2011-08-25 15:37	--------	d-----w-	c:\program files (x86)\iTunes
2011-08-25 15:36 . 2011-08-25 15:36	159744	----a-w-	c:\program files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2011-08-25 15:36 . 2011-08-25 15:36	159744	----a-w-	c:\program files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2011-08-25 15:36 . 2011-08-25 15:36	159744	----a-w-	c:\program files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2011-08-25 14:23 . 2011-07-09 05:26	2048	----a-w-	c:\windows\system32\tzres.dll
2011-08-25 14:23 . 2011-07-09 04:29	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2011-08-23 19:56 . 2011-08-23 19:56	--------	d-----w-	c:\program files (x86)\Adobe Story
2011-08-23 19:40 . 2011-08-23 19:40	--------	d-----w-	c:\users\Bendik\AppData\Roaming\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2011-08-21 20:31 . 2011-08-21 20:31	--------	d-----w-	c:\users\Bendik\AppData\Roaming\com.adobe.dmp.contentviewer
2011-08-21 14:01 . 2011-08-21 14:01	--------	d-----w-	c:\program files (x86)\Symantec Worm Simulator
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-16 21:49 . 2009-08-18 09:24	18328	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-09-06 16:21 . 2011-08-16 11:02	404640	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-08-17 18:26 . 2011-08-17 18:26	181499	----a-w-	c:\programdata\1313605411.bdinstall.bin
2011-08-17 18:21 . 2011-08-17 18:21	93798	----a-w-	c:\programdata\1313605165.bdinstall.bin
2011-08-17 18:10 . 2011-08-17 18:10	153079	----a-w-	c:\programdata\1313604539.bdinstall.bin
2011-08-17 16:04 . 2011-08-17 16:04	0	---ha-w-	c:\users\Bendik\AppData\Local\BITE1B6.tmp
2011-08-17 15:04 . 2011-08-17 15:04	0	---ha-w-	c:\users\Bendik\AppData\Local\BITEFD.tmp
2011-08-17 14:30 . 2011-08-17 14:30	0	---ha-w-	c:\users\Bendik\AppData\Local\BITD364.tmp
2011-08-17 14:23 . 2011-08-17 14:23	152976	----a-w-	c:\programdata\1313590950.bdinstall.bin
2011-08-17 14:21 . 2011-08-17 14:21	168196	----a-w-	c:\programdata\1313590734.bdinstall.bin
2011-08-17 14:13 . 2011-08-17 14:13	15663	----a-w-	c:\programdata\1313590379.bdinstall.bin
2011-08-17 14:12 . 2011-08-17 14:12	486620	----a-w-	c:\programdata\1313590237.bdinstall.bin
2011-08-17 14:08 . 2011-08-17 14:08	145659	----a-w-	c:\programdata\1313589440.bdinstall.bin
2011-08-17 10:21 . 2011-08-17 10:21	159080	----a-w-	c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10138.bin
2011-08-16 10:48 . 2011-08-16 10:48	186730	----a-w-	c:\programdata\1313491253.bdinstall.bin
2011-08-16 10:05 . 2009-07-14 02:36	175616	----a-w-	c:\windows\system32\msclmd.dll
2011-08-16 10:05 . 2009-07-14 02:36	152576	----a-w-	c:\windows\SysWow64\msclmd.dll
2011-08-16 01:37 . 2011-08-16 01:37	2560	----a-w-	c:\windows\SysWow64\drivers\nb-NO\qwavedrv.sys.mui
2011-08-16 01:37 . 2011-08-16 01:37	5632	----a-w-	c:\windows\SysWow64\drivers\nb-NO\ndiscap.sys.mui
2011-08-16 01:37 . 2011-08-16 01:37	46592	----a-w-	c:\windows\SysWow64\drivers\nb-NO\tcpip.sys.mui
2011-08-16 01:37 . 2011-08-16 01:37	25088	----a-w-	c:\windows\SysWow64\drivers\nb-NO\bfe.dll.mui
2011-08-16 01:37 . 2011-08-16 01:37	15360	----a-w-	c:\windows\SysWow64\drivers\nb-NO\pacer.sys.mui
2011-08-16 01:37 . 2011-08-16 01:37	2560	----a-w-	c:\windows\SysWow64\drivers\nb-NO\scfilter.sys.mui
2011-08-15 17:35 . 2011-08-15 17:35	48648	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-08-15 17:35 . 2011-08-15 17:35	555328	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-08-15 15:49 . 2009-08-22 06:29	6	----a-w-	c:\windows\system32\PLD_Framework.cmd
2011-07-28 18:54 . 2011-02-28 16:01	947472	----a-w-	c:\windows\SysWow64\msjava.dll
2011-07-22 18:20 . 2011-08-17 18:23	288600	----a-w-	c:\windows\system32\drivers\trufos.sys
2011-07-20 07:44 . 2011-08-16 10:33	8578896	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{8E357D9C-B499-47FB-9B3B-C834BE8E220D}\mpengine.dll
2011-07-16 05:41 . 2011-08-15 20:40	362496	----a-w-	c:\windows\system32\wow64win.dll
2011-07-16 05:41 . 2011-08-15 20:40	243200	----a-w-	c:\windows\system32\wow64.dll
2011-07-16 05:41 . 2011-08-15 20:40	13312	----a-w-	c:\windows\system32\wow64cpu.dll
2011-07-16 05:39 . 2011-08-15 20:40	16384	----a-w-	c:\windows\system32\ntvdm64.dll
2011-07-16 05:37 . 2011-08-15 20:40	421888	----a-w-	c:\windows\system32\KernelBase.dll
2011-07-16 05:21 . 2011-08-15 20:40	6144	---ha-w-	c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	4608	---ha-w-	c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	4608	---ha-w-	c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	5120	---ha-w-	c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 05:21 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-07-16 04:29 . 2011-08-15 20:40	14336	----a-w-	c:\windows\SysWow64\ntvdm64.dll
2011-07-16 04:26 . 2011-08-15 20:40	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2011-07-16 04:25 . 2011-08-15 20:40	25600	----a-w-	c:\windows\SysWow64\setup16.exe
2011-07-16 04:24 . 2011-08-15 20:40	5120	----a-w-	c:\windows\SysWow64\wow32.dll
2011-07-16 04:24 . 2011-08-15 20:40	272384	----a-w-	c:\windows\SysWow64\KernelBase.dll
2011-07-16 04:15 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	5120	---ha-w-	c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	4608	---ha-w-	c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2011-07-16 04:15 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2011-07-16 02:21 . 2011-08-15 20:40	7680	----a-w-	c:\windows\SysWow64\instnm.exe
2011-07-16 02:21 . 2011-08-15 20:40	2048	----a-w-	c:\windows\SysWow64\user.exe
2011-07-16 02:17 . 2011-08-15 20:40	4608	---ha-w-	c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 02:17 . 2011-08-15 20:40	3584	---ha-w-	c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 02:17 . 2011-08-15 20:40	6144	---ha-w-	c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2011-07-16 02:17 . 2011-08-15 20:40	3072	---ha-w-	c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2011-07-15 14:12 . 2011-07-15 14:12	550208	----a-w-	c:\windows\system32\drivers\avckf.sys
2011-07-15 14:12 . 2011-07-15 14:12	258224	----a-w-	c:\windows\system32\drivers\avchv.sys
2011-07-15 14:12 . 2011-07-15 14:12	674904	----a-w-	c:\windows\system32\drivers\avc3.sys
.
.
((((((((((((((((((((((((((((((((   Oppstartspunkter I Registeret   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Merk* tomme oppføringer & gyldige standardoppføringer vises ikke  
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{EFEED92A-A33D-4873-BA8F-32BAA631E54D}"= "c:\program files (x86)\Astroburn Toolbar\ABToolbar.dll" [2011-05-23 1000768]
.
[HKEY_CLASSES_ROOT\clsid\{efeed92a-a33d-4873-ba8f-32baa631e54d}]
[HKEY_CLASSES_ROOT\ABToolbar.ToolBandObj.1]
[HKEY_CLASSES_ROOT\TypeLib\{142EECD7-B6CA-4e29-AE5D-A4798EF4FD7F}]
[HKEY_CLASSES_ROOT\ABToolbar.ToolBandObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-08-22 39408]
"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-06-08 37296]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2009-08-21 261888]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-08-18 825864]
"ArcadeDeluxeAgent"="c:\program files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2009-07-31 128296]
"PlayMovie"="c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2009-08-04 181480]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2011-06-06 36760]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2011-06-06 2903448]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-08-18 421736]
"VMware hqtray"="c:\program files (x86)\VMware\VMware Player\hqtray.exe" [2011-03-25 64112]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
c:\users\Bendik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper og Launcher.lnk - c:\program files (x86)\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Acer VCM.lnk - c:\program files (x86)\Acer\Acer VCM\AcerVCM.exe [2009-8-22 708608]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Googles oppdateringstjeneste (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-15 135664]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 gupdatem;Google-oppdatering-tjenesten (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-15 135664]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-07-22 466736]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-03-01 89680]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-09-08 102992]
S1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-08-18 796192]
S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]
S2 SafeBox;SafeBox;c:\program files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2011-07-22 74336]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S2 TabletServicePen;TabletServicePen;c:\program files\Tablet\Pen\Pen_Tablet.exe [2010-10-21 5790064]
S2 TouchServicePen;Wacom Consumer Touch Service;c:\program files\Tablet\Pen\Pen_TouchService.exe [2010-10-21 487280]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2011-07-22 62512]
S2 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [x]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2011-03-25 539248]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [x]
S3 NETw5s64;Intel(R) Wireless WiFi Link-kortdriver for Windows 7 64-bit;c:\windows\system32\DRIVERS\NETw5s64.sys [x]
S3 nuvotoncir;Nuvoton IR Transceiver;c:\windows\system32\DRIVERS\nuvotoncir.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
.
.
--- Andre tjenester/drivere lastet i minnet ---
.
*NewlyCreated* - HCMON
*NewlyCreated* - VMCI
*NewlyCreated* - VMNETBRIDGE
*NewlyCreated* - VMNETUSERIF
*NewlyCreated* - VMX86
*NewlyCreated* - VSTOR2-WS60
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai	REG_MULTI_SZ   	Akamai
.
Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1071476507-3793927736-1526210004-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1071476507-3793927736-1526210004-1000UA.job
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EFEED92A-A33D-4873-BA8F-32BAA631E54D}"= "c:\program files (x86)\Astroburn Toolbar\ABToolbar64.dll" [2011-05-23 1536320]
.
[HKEY_CLASSES_ROOT\CLSID\{EFEED92A-A33D-4873-BA8F-32BAA631E54D}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1]
@="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}"
[HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}]
2011-07-22 15:24	262320	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2]
@="{342DAA0B-D796-460D-8566-901E08A1CCAD}"
[HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}]
2011-07-22 15:24	262320	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3]
@="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}"
[HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}]
2011-07-22 15:24	262320	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4]
@="{33816773-98AE-4723-ADE0-EBE54C8B5A67}"
[HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}]
2011-07-22 15:24	262320	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"Acer ePower Management"="c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" [2009-08-18 496160]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-08-06 16336416]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-09-04 8098848]
"PLFSetI"="c:\windows\PLFSetI.exe" [2008-07-29 200704]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2011-08-17 1058992]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-03-30 499608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Tilleggsskanning -------
.
uStart Page = about:blank
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Append Link Target to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Google Sidewiki - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
LSP: c:\program files (x86)\VMware\VMware Player\vsocklib.dll
TCP: DhcpNameServer = 193.213.112.4 130.67.15.198 10.0.0.138
FF - ProfilePath - c:\users\Bendik\AppData\Roaming\Mozilla\Firefox\Profiles\q38qhxv0.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.astroburn-search.com/startpage
.
- - - - TOMME PEKERE FJERNET - - - -
.
BHO-{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - (no file)
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Akamai]
"ServiceDll"="C:/Program Files (x86)/Common Files/Akamai/netsession_win_2da1ebd.dll"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Akamai]
"ServiceDll"="C:/Program Files (x86)/Common Files/Akamai/netsession_win_2da1ebd.dll"
.
--------------------- LÅSTE REGISTERNØKLER ---------------------
.
[HKEY_USERS\S-1-5-21-1071476507-3793927736-1526210004-1000\Software\SecuROM\License information*]
"datasecu"=hex:f1,e9,1b,83,6d,7a,fe,30,39,20,7f,b7,f5,28,b8,42,4b,85,76,2f,84,
   15,d6,69,54,ed,80,e5,ed,4d,30,2a,45,db,50,02,81,5e,7c,94,45,37,af,05,51,90,\
"rkeysecu"=hex:98,c7,a1,92,36,14,8e,94,14,09,38,34,99,89,ce,74
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:8b,a4,d2,40,59,94,6c,61,7c,57,2b,da,d4,49,56,cb,fe,3a,c4,4e,34,
   f9,5d,57,7b,90,4d,55,fd,91,d7,61,ea,2f,90,25,bf,b2,34,33,4d,64,46,9e,6f,47,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:8b,a4,d2,40,59,94,6c,61,7c,57,2b,da,d4,49,56,cb,fe,3a,c4,4e,34,
   f9,5d,57,7b,90,4d,55,fd,91,d7,61,ea,2f,90,25,bf,b2,34,33,4d,64,46,9e,6f,47,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Tidspunkt ferdig: 2011-09-18  15:18:29
ComboFix-quarantined-files.txt  2011-09-18 13:18
.
Pre-Run: 389 434 626 048 byte ledig
Post-Run: 389 758 615 552 byte ledig
.
- - End Of File - - 26B14C5CCAD86808F77F167BFBB2B4A4