trineline

Medlemmer
  • Innholdsteller

    16
  • Ble med

  • Besøkte siden sist


Nettsamfunnsomdømme

0 ProPoeng

Om trineline

  • Rang
    Nyansatt

Profile Information

  • Kjønn Kvinne

trineline sin aktivitet

  1. trineline la til et innlegg i et emne [LØST] kan noen analysere mine logger?   

    combofix (klikk for å vise/skjule)
    ComboFix 09-07-31.04 - Månestråle 01/08/2009 12:20.2.1 - NTFSx86
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1044.18.1023.530 [GMT 2:00]
    Kjører fra: c:\documents and settings\Månestråle\Skrivebord\ComboFix.exe
    Command switches brukt :: c:\documents and settings\Månestråle\Skrivebord\CFScript.txt
    AV: Norton Internet Security Online *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
    FW: Norton Internet Security Online *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

    ADVARSEL -DENNE MASKINEN HAR IKKE GJENOPPRETTINGSKONSOLLEN INSTALLERT !!
    .

    ((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    .
    ((((((((((((((((((((((((((((((((((((((( Drivere/Tjenester )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    -------\Legacy_XDIMPT
    -------\Service_XDIMPT


    ((((((((((((((((((((((((((( Filer Opprettet Fra 2009-07-01 til 2009-08-01 )))))))))))))))))))))))))))))))))
    .

    2009-08-01 09:58 . 2009-07-13 08:00 87888 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.050\NAVENG.SYS
    2009-08-01 09:58 . 2009-07-13 08:00 875728 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.050\NAVEX15.SYS
    2009-08-01 09:58 . 2009-02-19 09:00 177520 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.050\NAVENG32.DLL
    2009-08-01 09:58 . 2009-02-19 09:00 1181040 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.050\NAVEX32A.DLL
    2009-08-01 09:58 . 2009-02-25 09:00 371248 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.050\EECTRL.SYS
    2009-08-01 09:58 . 2009-02-25 09:00 2414128 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.050\CCERASER.DLL
    2009-08-01 09:58 . 2009-02-25 09:00 101936 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.050\ERASER.SYS
    2009-08-01 09:58 . 2009-02-15 09:00 259368 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.050\ECMSVR32.DLL
    2009-07-31 18:47 . 2009-07-11 19:34 276344 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSXpx86.sys
    2009-07-31 18:47 . 2009-07-11 19:34 533880 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\Scxpx86.dll
    2009-07-31 18:47 . 2009-07-11 19:34 451960 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSxpx86.dll
    2009-07-31 18:47 . 2009-07-11 19:34 293424 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSvix86.sys
    2009-07-31 18:47 . 2009-07-11 19:34 397360 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSviA64.sys
    2009-07-30 10:24 . 2009-07-11 19:34 276344 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\IDSXpx86.sys
    2009-07-30 10:24 . 2009-07-11 19:34 533880 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\Scxpx86.dll
    2009-07-30 10:24 . 2009-07-11 19:34 293424 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\IDSvix86.sys
    2009-07-30 10:24 . 2009-07-11 19:34 451960 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\IDSxpx86.dll
    2009-07-30 10:24 . 2009-07-11 19:34 397360 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\IDSviA64.sys
    2009-07-24 10:05 . 2009-07-24 10:23 -------- d-----w- c:\programfiler\trend micro
    2009-07-24 10:05 . 2009-07-24 10:06 -------- d-----w- C:\rsit
    2009-07-11 19:34 . 2009-07-11 19:34 276344 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSXpx86.sys
    2009-07-11 19:34 . 2009-07-11 19:34 293424 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSvix86.sys
    2009-07-11 19:34 . 2009-07-11 19:34 533880 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\Scxpx86.dll
    2009-07-11 19:34 . 2009-07-11 19:34 451960 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSxpx86.dll
    2009-07-11 19:34 . 2009-07-11 19:34 397360 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSviA64.sys
    2009-07-09 22:46 . 2009-07-09 22:46 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
    2009-07-09 22:08 . 2009-07-09 22:08 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
    2009-07-09 21:50 . 2009-06-02 10:12 102912 ------w- c:\windows\system32\dllcache\iecompat.dll
    2009-07-09 21:48 . 2009-07-09 21:48 -------- d-----w- c:\windows\ie8updates
    2009-07-09 21:46 . 2009-07-03 17:01 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
    2009-07-09 21:46 . 2009-07-03 17:01 246272 ------w- c:\windows\system32\dllcache\ieproxy.dll
    2009-07-09 21:38 . 2009-07-09 21:45 -------- dc-h--w- c:\windows\ie8

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-07-23 22:37 . 2007-02-15 12:12 -------- d-----w- c:\documents and settings\All Users\Programdata\Spybot - Search & Destroy
    2009-07-05 10:58 . 2007-02-27 17:05 -------- d-----w- c:\programfiler\LimeWire
    2009-07-03 17:01 . 2004-09-28 18:07 915456 ----a-w- c:\windows\system32\wininet.dll
    2009-06-28 22:12 . 2009-01-24 00:36 -------- d-----w- c:\programfiler\DJBCP Codec Pack
    2009-06-26 00:07 . 2009-05-04 14:34 -------- d-----w- c:\programfiler\Graboid
    2009-06-25 15:01 . 2009-06-25 15:01 110864 ----a-w- c:\documents and settings\All Users\Programdata\MGS\cache\t\type_3reelnormal1_2.6d58a1bcaf1d9165fa0b77fa9598b623.dll
    2009-06-25 15:01 . 2009-06-25 14:37 -------- d-----w- c:\documents and settings\All Users\Programdata\MGS
    2009-06-25 14:37 . 2009-06-25 14:37 -------- d-----w- c:\documents and settings\All Users\Programdata\Microgaming
    2009-06-21 14:46 . 2009-06-21 14:46 -------- d-----w- c:\programfiler\ImgBurn
    2009-06-20 18:23 . 2004-09-28 18:07 521250 ----a-w- c:\windows\system32\perfh014.dat
    2009-06-20 18:23 . 2004-09-28 18:07 113522 ----a-w- c:\windows\system32\perfc014.dat
    2009-06-20 08:01 . 2009-06-20 08:01 -------- d-----w- c:\documents and settings\All Users\Programdata\BVRP Software
    2009-06-20 07:54 . 2009-06-20 07:54 148736 ----a-w- c:\documents and settings\All Users\Programdata\hpe5.dll
    2009-06-20 07:54 . 2009-06-20 07:54 148736 ----a-w- c:\documents and settings\All Users\Programdata\hpe5.dll
    2009-06-20 07:53 . 2006-01-13 09:37 -------- d--h--w- c:\programfiler\InstallShield Installation Information
    2009-06-17 07:04 . 2009-06-17 07:04 47024 ---ha-w- c:\windows\system32\mlfcache.dat
    2009-06-17 06:45 . 2009-06-17 06:45 -------- d-----w- c:\documents and settings\All Users\Programdata\HP
    2009-06-16 14:43 . 2004-09-28 18:07 119808 ----a-w- c:\windows\system32\t2embed.dll
    2009-06-16 14:43 . 2004-09-28 18:06 81920 ----a-w- c:\windows\system32\fontsub.dll
    2009-06-13 10:07 . 2009-06-13 10:05 -------- d-----w- c:\programfiler\Vuze
    2009-06-03 19:11 . 2004-09-28 18:06 1294336 ----a-w- c:\windows\system32\quartz.dll
    2009-05-07 15:34 . 2004-09-28 18:06 346112 ----a-w- c:\windows\system32\localspl.dll
    2006-05-01 14:33 . 2006-01-20 22:55 104 --sh--r- c:\windows\system32\7B61FD2CFE.sys
    2006-05-01 14:33 . 2006-01-20 22:55 6216 --sha-w- c:\windows\system32\KGyGaAvL.sys
    .

    ((((((((((((((((((((((((((((( SnapShot@2009-07-31_21.57.38 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2009-08-01 10:33 . 2009-08-01 10:33 16384 c:\windows\Temp\Perflib_Perfdata_68c.dat
    + 2009-08-01 09:48 . 2009-08-01 09:48 16384 c:\windows\Temp\Perflib_Perfdata_1dc.dat
    .
    (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
    "msnmsgr"="c:\programfiler\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Apoint"="c:\programfiler\Apoint\Apoint.exe" [2004-09-13 155648]
    "ATIPTA"="c:\programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-08-05 344064]
    "IntelWireless"="c:\programfiler\Intel\Wireless\Bin\ifrmewrk.exe" [2004-10-30 385024]
    "ISUSScheduler"="c:\programfiler\Fellesfiler\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
    "HP Component Manager"="c:\programfiler\HP\hpcoretech\hpcmpmgr.exe" [2005-01-12 241664]
    "UCam_Menu"="c:\programfiler\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2007-12-24 222504]
    "QuickTime Task"="c:\programfiler\QuickTime\qttask.exe" [2009-01-05 413696]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    "DWQueuedReporting"="c:\progra~1\FELLES~1\MICROS~1\DW\dwtrig20.exe" [2007-02-25 437160]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IntelWireless]
    2004-09-07 16:08 110592 ----a-w- c:\programfiler\Intel\Wireless\Bin\LgNotify.dll

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
    BootExecute REG_MULTI_SZ autocheck autochk *\0autocheck smrgdf c:\documents and settings\Månestråle\Programdata\iolo

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
    @="FSFilter Activity Monitor"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
    @="Service"

    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^Digital Line Detect.lnk]
    path=c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\Digital Line Detect.lnk
    backup=c:\windows\pss\Digital Line Detect.lnkCommon Startup

    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^HP Digital Imaging Monitor.lnk]
    path=c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\HP Digital Imaging Monitor.lnk
    backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^Logitech Desktop Messenger.lnk]
    path=c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\Logitech Desktop Messenger.lnk
    backup=c:\windows\pss\Logitech Desktop Messenger.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "c:\\Programfiler\\LimeWire\\LimeWire.exe"=
    "c:\\Programfiler\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
    "c:\\Programfiler\\Telenor\\Telenorhjelpen\\Telenor.exe"=
    "c:\\Programfiler\\Sony Ericsson\\Update Service\\Update Service.exe"=
    "c:\\Programfiler\\BitTyrant\\Azureus.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\WINDOWS\\system32\\sessmgr.exe"=
    "c:\\Programfiler\\Bonjour\\mDNSResponder.exe"=
    "c:\\Programfiler\\Norton Internet Security\\Engine\\16.5.0.135\\ccSvcHst.exe"=
    "c:\\Programfiler\\Windows Live\\Messenger\\wlcsdk.exe"=
    "c:\\Programfiler\\Windows Live\\Messenger\\msnmsgr.exe"=

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
    "1723:TCP"= 1723:TCP:@xpsp2res.dll,-22015
    "1701:UDP"= 1701:UDP:@xpsp2res.dll,-22016
    "500:UDP"= 500:UDP:@xpsp2res.dll,-22017

    R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1005000.087\SymEFA.sys [20/03/2009 15:55 310320]
    R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\NIS\1005000.087\BHDrvx86.sys [20/03/2009 15:55 258608]
    R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NIS\1005000.087\cchpx86.sys [20/03/2009 15:10 482352]
    R1 hwinterface;hwinterface;c:\windows\system32\drivers\hwinterface.sys [24/08/2007 19:57 3026]
    R1 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSXpx86.sys [31/07/2009 20:47 276344]
    R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [21/04/2009 19:05 55152]
    R2 Norton Internet Security;Norton Internet Security;c:\programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe [20/03/2009 15:11 115560]
    R2 WinDefend;Windows Defender;c:\programfiler\Windows Defender\MsMpEng.exe [03/11/2006 20:19 13592]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\programfiler\Fellesfiler\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [25/02/2009 11:00 101936]
    S3 cxbu0wdm;CardMan 3x21;c:\windows\system32\drivers\cxbu0wdm.sys [05/12/2005 07:20 80384]
    S3 fsssvc;Windows Live Family Safety;c:\programfiler\Windows Live\Family Safety\fsssvc.exe [06/02/2009 18:08 533360]
    S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [03/06/2008 01:45 13352]
    S3 PID_0920;Logitech QuickCam Express(PID_0920);c:\windows\system32\DRIVERS\LV532AV.SYS --> c:\windows\system32\DRIVERS\LV532AV.SYS [?]
    S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [20/06/2009 09:56 89256]
    S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [20/06/2009 09:56 15016]
    S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [20/06/2009 09:56 120744]
    S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [20/06/2009 09:56 114216]
    S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [20/06/2009 09:56 25512]
    S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [20/06/2009 09:56 110632]
    S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [20/06/2009 09:56 115752]
    S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [26/03/2009 17:07 86824]
    S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [26/03/2009 17:07 15016]
    S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [26/03/2009 17:07 114600]
    S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [26/03/2009 17:08 108328]
    S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [26/03/2009 17:08 26024]
    S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [26/03/2009 17:08 104616]
    S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [26/03/2009 17:08 109736]
    S3 SaiH1589;SaiH1589;c:\windows\system32\drivers\SaiH1589.sys [26/07/2004 12:54 56576]
    S3 SaiU1589;SaiU1589;c:\windows\system32\drivers\SaiU1589.sys [26/07/2004 12:54 19584]
    S3 V0090VID;Creative WebCam Vista Plus;c:\windows\system32\drivers\V0090Vid.sys [21/06/2006 17:44 138112]

    --- Andre tjenester/drivere lastet i minnet ---

    *Deregistered* - uphcleanhlp

    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    "c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
    .
    Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)

    2009-07-18 c:\windows\Tasks\AppleSoftwareUpdate.job
    - c:\programfiler\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

    2009-08-01 c:\windows\Tasks\MP Scheduled Scan.job
    - c:\programfiler\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]
    .
    .
    ------- Tilleggsskanning -------
    .
    uSearchMigratedDefaultURL = hxxp://www.mywebsearch.com/jsp/cfg_redir2.jsp?id=ZNxmk570YYNO&fl=0&ptb=1dNZ_wVIzeRkzTKDHisEOw&url=http://edits.mywebsearch.com/toolbaredits/barsearch.jhtml&st=sb&searchfor={searchTerms}
    uStart Page = hxxp://www.startsiden.no/
    uDefault_Search_URL = hxxp://www.google.com/ie
    uInternet Connection Wizard,ShellNext = iexplore
    uInternet Settings,ProxyOverride = localhost;*.local
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
    Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\programfiler\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} - hxxp://downloads.ewido.net/ewidoOnlineScan.cab
    DPF: {99CAAA27-FA0C-4FA4-B88A-4AB1CC7A17FE} - hxxp://hero.netgame.com/launch/object/mglaunch_USAv1004.cab
    DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} - hxxps://plugins.valueactive.eu/flashax/iefax.cab
    .

    **************************************************************************

    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-08-01 12:32
    Windows 5.1.2600 Service Pack 3 NTFS

    skanner skjulte prosesser ...

    skanner skjulte autostart-oppføringer ...

    skanner skjulte filer ...

    skanning vellykket
    skjulte filer: 0

    **************************************************************************

    [HKEY_LOCAL_MACHINE\System\ControlSet004\Services\Norton Internet Security]
    "ImagePath"="\"c:\programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\programfiler\Norton Internet Security\Engine\16.5.0.135\diMaster.dll\" /prefetch:1"
    .
    --------------------- LÅSTE REGISTERNØKLER ---------------------

    [HKEY_USERS\S-1-5-21-891088668-1515687847-3996960803-1006\Software\Microsoft\SystemCertificates\AddressBook*]
    @Allowed: (Read) (RestrictedCode)
    @Allowed: (Read) (RestrictedCode)

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "cd042efbbd7f7af1647644e76e06692b"=hex:e2,63,26,f1,3f,c8,ff,68,a3,24,43,db,ea,
    c2,cc,fa,e2,63,26,f1,3f,c8,ff,68,56,fe,8b,81,21,21,05,ed,e2,63,26,f1,3f,c8,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "bca643cdc5c2726b20d2ecedcc62c59b"=hex:71,3b,04,66,8b,46,0d,96,d1,1d,a4,36,2a,
    e0,f9,47,6a,9c,d6,61,af,45,84,18,2d,37,60,3a,27,3a,05,08,6a,9c,d6,61,af,45,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "2c81e34222e8052573023a60d06dd016"=hex:25,da,ec,7e,55,20,c9,26,e7,de,e1,33,72,
    5c,7e,ab,ff,7c,85,e0,43,d4,0e,fe,b1,9d,e5,1f,89,3a,31,d9,ff,7c,85,e0,43,d4,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "2582ae41fb52324423be06337561aa48"=hex:6b,65,49,6a,7e,99,74,f7,cd,f7,47,6f,35,
    f1,49,2b,86,8c,21,01,be,91,eb,e7,ae,4c,b5,73,7a,98,bd,94,86,8c,21,01,be,91,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "caaeda5fd7a9ed7697d9686d4b818472"=hex:f5,1d,4d,73,a8,13,5c,05,ba,3c,00,6d,57,
    53,db,83,f5,1d,4d,73,a8,13,5c,05,5c,9a,c5,23,57,1e,2a,a4,f5,1d,4d,73,a8,13,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "a4a1bcf2cc2b8bc3716b74b2b4522f5d"=hex:50,93,e5,ab,ec,6a,4e,ab,0d,8d,ee,24,8e,
    f7,aa,f4,df,20,58,62,78,6b,cf,c8,cd,af,bf,e6,f9,94,f3,ab,df,20,58,62,78,6b,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "4d370831d2c43cd13623e232fed27b7b"=hex:fb,a7,78,e6,12,2f,9a,ea,5d,5e,22,1c,73,
    9f,62,50,fb,a7,78,e6,12,2f,9a,ea,64,33,72,75,ef,7d,fb,a9,fb,a7,78,e6,12,2f,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "1d68fe701cdea33e477eb204b76f993d"=hex:01,3a,48,fc,e8,04,4a,f1,6b,60,75,e8,c1,
    26,c7,ea,01,3a,48,fc,e8,04,4a,f1,69,d7,cf,48,a5,10,c6,ba,01,3a,48,fc,e8,04,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "1fac81b91d8e3c5aa4b0a51804d844a3"=hex:f6,0f,4e,58,98,5b,89,c9,48,e4,70,8c,8c,
    16,88,92,f6,0f,4e,58,98,5b,89,c9,37,74,0f,08,6f,98,66,21,f6,0f,4e,58,98,5b,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "f5f62a6129303efb32fbe080bb27835b"=hex:3d,ce,ea,26,2d,45,aa,78,b6,15,31,67,0f,
    cb,b3,a1,3d,ce,ea,26,2d,45,aa,78,7f,e0,98,f9,4c,da,e7,fd,3d,ce,ea,26,2d,45,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "fd4e2e1a3940b94dceb5a6a021f2e3c6"=hex:e3,0e,66,d5,eb,bc,2f,6b,21,2c,49,99,0a,
    41,e8,c5,2a,b7,cc,b5,b9,7f,41,e7,91,6b,04,6b,18,26,08,b9,2a,b7,cc,b5,b9,7f,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "8a8aec57dd6508a385616fbc86791ec2"=hex:fa,ea,66,7f,d4,3b,6b,70,d2,9e,71,04,66,
    5a,c6,60,6c,43,2d,1e,aa,22,2f,9c,ad,ae,ed,61,06,5c,48,80,6c,43,2d,1e,aa,22,\
    .
    --------------------- DLL'er Lastet Av Kjørende Prosesser ---------------------

    - - - - - - - > 'winlogon.exe'(1804)
    c:\windows\system32\Ati2evxx.dll
    c:\programfiler\Intel\Wireless\Bin\LgNotify.dll

    - - - - - - - > 'explorer.exe'(2836)
    c:\windows\system32\webcheck.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    .
    ------------------------ Andre Kjørende Prosesser ------------------------
    .
    c:\windows\system32\ati2evxx.exe
    c:\programfiler\Intel\Wireless\Bin\EvtEng.exe
    c:\programfiler\Intel\Wireless\Bin\ZCfgSvc.exe
    c:\windows\system32\ati2evxx.exe
    c:\programfiler\Intel\Wireless\Bin\S24EvMon.exe
    c:\programfiler\Intel\Wireless\Bin\WLKEEPER.exe
    c:\windows\system32\scardsvr.exe
    c:\programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    c:\programfiler\Bonjour\mDNSResponder.exe
    c:\programfiler\Java\jre6\bin\jqs.exe
    c:\progra~1\Intel\Wireless\Bin\1XConfig.exe
    c:\programfiler\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
    c:\programfiler\Dell\NicConfigSvc\NicConfigSvc.exe
    c:\programfiler\CDBurnerXP\NMSAccessU.exe
    c:\programfiler\Intel\Wireless\Bin\RegSrvc.exe
    c:\programfiler\Microsoft SQL Server\90\Shared\sqlbrowser.exe
    c:\programfiler\Microsoft SQL Server\90\Shared\sqlwriter.exe
    c:\programfiler\UPHClean\uphclean.exe
    c:\windows\system32\wbem\wmiapsrv.exe
    c:\programfiler\Apoint\ApntEx.exe
    c:\programfiler\Windows Live\Contacts\wlcomm.exe
    .
    **************************************************************************
    .
    Tidspunkt ferdig: 2009-08-01 12:46 - maskinen ble startet på nytt
    ComboFix-quarantined-files.txt 2009-08-01 10:46
    ComboFix2.txt 2009-07-31 22:06

    Pre-Run: 9,785,995,264 byte ledig
    Post-Run: 9,770,016,768 byte ledig

    Current=4 Default=4 Failed=3 LastKnownGood=5 Sets=1,2,3,4,5
    319 --- E O F --- 2009-07-31 18:44

    • 0
  2. trineline la til et emne i Løst og inaktive saker   

    [LØST] kan noen analysere mine logger?
    MBAM (klikk for å vise/skjule)
    Malwarebytes' Anti-Malware 1.36
    Databaseversjon: 2047
    Windows 5.1.2600 Service Pack 3

    31/07/2009 23:19:07
    mbam-log-2009-07-31 (23-19-07).txt

    Skanntype: Rask Skann
    Objekter skannet: 87338
    Tid tilbakelagt: 11 minute(s), 28 second(s)

    Minneprosesser infisert: 0
    Minnemoduler infisert: 0
    Registernøkler infisert: 1
    Registerverdier infisert: 1
    Registerfiler infisert: 0
    Mapper infisert: 0
    Filer infisert: 1

    Minneprosesser infisert:
    (Ingen mistenkelige filer funnet)

    Minnemoduler infisert:
    (Ingen mistenkelige filer funnet)

    Registernøkler infisert:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{af2e62b6-f9e1-4d4f-a10a-9dc8e6dcbcc0} (Adware.VideoEgg) -> Quarantined and deleted successfully.

    Registerverdier infisert:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\system32\memman.vxd (Rogue.SysCleanerPro) -> Quarantined and deleted successfully.

    Registerfiler infisert:
    (Ingen mistenkelige filer funnet)

    Mapper infisert:
    (Ingen mistenkelige filer funnet)

    Filer infisert:
    C:\WINDOWS\system32\memman.vxd (Rogue.SysCleanerPro) -> Quarantined and deleted successfully.

    COMBOFIX (klikk for å vise/skjule)
    ComboFix 09-07-31.02 - Månestråle 31/07/2009 23:38.1.1 - NTFSx86
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1044.18.1023.543 [GMT 2:00]
    Kjører fra: c:\documents and settings\Månestråle\Skrivebord\ComboFix.exe
    AV: Norton Internet Security Online *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
    FW: Norton Internet Security Online *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

    ADVARSEL -DENNE MASKINEN HAR IKKE GJENOPPRETTINGSKONSOLLEN INSTALLERT !!
    .

    ((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    C:\kmd.exe
    c:\windows\Installer\13b640.msp
    c:\windows\Installer\13b653.msp
    c:\windows\Installer\13b654.msp
    c:\windows\Installer\1599637.msi
    c:\windows\Installer\7d76372.msp
    c:\windows\Installer\7d763b9.msp
    c:\windows\Installer\7d763d0.msp
    c:\windows\Installer\a56563.msi
    c:\windows\system32\mfc45.dll
    c:\windows\system32\skinboxer43.dll

    .
    ((((((((((((((((((((((((((((((((((((((( Drivere/Tjenester )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    -------\Legacy_FAD
    -------\Legacy_NNSERV
    -------\Service_NNServ


    ((((((((((((((((((((((((((( Filer Opprettet Fra 2009-06-28 til 2009-07-31 )))))))))))))))))))))))))))))))))
    .

    2009-07-31 18:48 . 2009-07-13 08:00 87888 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.004\NAVENG.SYS
    2009-07-31 18:48 . 2009-07-13 08:00 875728 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.004\NAVEX15.SYS
    2009-07-31 18:48 . 2009-02-25 09:00 371248 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.004\EECTRL.SYS
    2009-07-31 18:48 . 2009-02-25 09:00 2414128 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.004\CCERASER.DLL
    2009-07-31 18:48 . 2009-02-25 09:00 101936 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.004\ERASER.SYS
    2009-07-31 18:48 . 2009-02-19 09:00 177520 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.004\NAVENG32.DLL
    2009-07-31 18:48 . 2009-02-19 09:00 1181040 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.004\NAVEX32A.DLL
    2009-07-31 18:48 . 2009-02-15 09:00 259368 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090731.004\ECMSVR32.DLL
    2009-07-31 18:47 . 2009-07-11 19:34 276344 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSXpx86.sys
    2009-07-31 18:47 . 2009-07-11 19:34 533880 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\Scxpx86.dll
    2009-07-31 18:47 . 2009-07-11 19:34 451960 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSxpx86.dll
    2009-07-31 18:47 . 2009-07-11 19:34 293424 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSvix86.sys
    2009-07-31 18:47 . 2009-07-11 19:34 397360 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSviA64.sys
    2009-07-30 10:24 . 2009-07-11 19:34 276344 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\IDSXpx86.sys
    2009-07-30 10:24 . 2009-07-11 19:34 533880 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\Scxpx86.dll
    2009-07-30 10:24 . 2009-07-11 19:34 293424 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\IDSvix86.sys
    2009-07-30 10:24 . 2009-07-11 19:34 451960 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\IDSxpx86.dll
    2009-07-30 10:24 . 2009-07-11 19:34 397360 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090722.001\IDSviA64.sys
    2009-07-24 10:05 . 2009-07-24 10:23 -------- d-----w- c:\programfiler\trend micro
    2009-07-24 10:05 . 2009-07-24 10:06 -------- d-----w- C:\rsit
    2009-07-11 19:34 . 2009-07-11 19:34 276344 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSXpx86.sys
    2009-07-11 19:34 . 2009-07-11 19:34 293424 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSvix86.sys
    2009-07-11 19:34 . 2009-07-11 19:34 533880 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\Scxpx86.dll
    2009-07-11 19:34 . 2009-07-11 19:34 451960 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSxpx86.dll
    2009-07-11 19:34 . 2009-07-11 19:34 397360 ----a-w- c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSviA64.sys
    2009-07-09 22:46 . 2009-07-09 22:46 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
    2009-07-09 22:08 . 2009-07-09 22:08 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
    2009-07-09 21:50 . 2009-06-02 10:12 102912 ------w- c:\windows\system32\dllcache\iecompat.dll
    2009-07-09 21:48 . 2009-07-09 21:48 -------- d-----w- c:\windows\ie8updates
    2009-07-09 21:46 . 2009-07-03 17:01 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
    2009-07-09 21:46 . 2009-07-03 17:01 246272 ------w- c:\windows\system32\dllcache\ieproxy.dll
    2009-07-09 21:38 . 2009-07-09 21:45 -------- dc-h--w- c:\windows\ie8

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-07-23 22:37 . 2007-02-15 12:12 -------- d-----w- c:\documents and settings\All Users\Programdata\Spybot - Search & Destroy
    2009-07-05 10:58 . 2007-02-27 17:05 -------- d-----w- c:\programfiler\LimeWire
    2009-07-03 17:01 . 2004-09-28 18:07 915456 ----a-w- c:\windows\system32\wininet.dll
    2009-06-28 22:12 . 2009-01-24 00:36 -------- d-----w- c:\programfiler\DJBCP Codec Pack
    2009-06-26 00:07 . 2009-05-04 14:34 -------- d-----w- c:\programfiler\Graboid
    2009-06-25 15:01 . 2009-06-25 15:01 110864 ----a-w- c:\documents and settings\All Users\Programdata\MGS\cache\t\type_3reelnormal1_2.6d58a1bcaf1d9165fa0b77fa9598b623.dll
    2009-06-25 15:01 . 2009-06-25 14:37 -------- d-----w- c:\documents and settings\All Users\Programdata\MGS
    2009-06-25 14:37 . 2009-06-25 14:37 -------- d-----w- c:\documents and settings\All Users\Programdata\Microgaming
    2009-06-21 14:46 . 2009-06-21 14:46 -------- d-----w- c:\programfiler\ImgBurn
    2009-06-20 18:23 . 2004-09-28 18:07 521250 ----a-w- c:\windows\system32\perfh014.dat
    2009-06-20 18:23 . 2004-09-28 18:07 113522 ----a-w- c:\windows\system32\perfc014.dat
    2009-06-20 08:01 . 2009-06-20 08:01 -------- d-----w- c:\documents and settings\All Users\Programdata\BVRP Software
    2009-06-20 07:54 . 2009-06-20 07:54 148736 ----a-w- c:\documents and settings\All Users\Programdata\hpe5.dll
    2009-06-20 07:54 . 2009-06-20 07:54 148736 ----a-w- c:\documents and settings\All Users\Programdata\hpe5.dll
    2009-06-20 07:53 . 2006-01-13 09:37 -------- d--h--w- c:\programfiler\InstallShield Installation Information
    2009-06-17 07:04 . 2009-06-17 07:04 47024 ---ha-w- c:\windows\system32\mlfcache.dat
    2009-06-17 06:45 . 2009-06-17 06:45 -------- d-----w- c:\documents and settings\All Users\Programdata\HP
    2009-06-16 14:43 . 2004-09-28 18:07 119808 ----a-w- c:\windows\system32\t2embed.dll
    2009-06-16 14:43 . 2004-09-28 18:06 81920 ----a-w- c:\windows\system32\fontsub.dll
    2009-06-13 10:07 . 2009-06-13 10:05 -------- d-----w- c:\programfiler\Vuze
    2009-06-03 19:11 . 2004-09-28 18:06 1294336 ----a-w- c:\windows\system32\quartz.dll
    2009-05-07 15:34 . 2004-09-28 18:06 346112 ----a-w- c:\windows\system32\localspl.dll
    2006-05-01 14:33 . 2006-01-20 22:55 104 --sh--r- c:\windows\system32\7B61FD2CFE.sys
    2006-05-01 14:33 . 2006-01-20 22:55 6216 --sha-w- c:\windows\system32\KGyGaAvL.sys
    .

    (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
    "msnmsgr"="c:\programfiler\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Apoint"="c:\programfiler\Apoint\Apoint.exe" [2004-09-13 155648]
    "ATIPTA"="c:\programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-08-05 344064]
    "IntelWireless"="c:\programfiler\Intel\Wireless\Bin\ifrmewrk.exe" [2004-10-30 385024]
    "ISUSScheduler"="c:\programfiler\Fellesfiler\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
    "HP Component Manager"="c:\programfiler\HP\hpcoretech\hpcmpmgr.exe" [2005-01-12 241664]
    "UCam_Menu"="c:\programfiler\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2007-12-24 222504]
    "QuickTime Task"="c:\programfiler\QuickTime\qttask.exe" [2009-01-05 413696]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    "DWQueuedReporting"="c:\progra~1\FELLES~1\MICROS~1\DW\dwtrig20.exe" [2007-02-25 437160]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IntelWireless]
    2004-09-07 16:08 110592 ----a-w- c:\programfiler\Intel\Wireless\Bin\LgNotify.dll

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
    BootExecute REG_MULTI_SZ autocheck autochk *\0autocheck smrgdf c:\documents and settings\Månestråle\Programdata\iolo"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
    @="FSFilter Activity Monitor"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
    @="Service"

    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^Digital Line Detect.lnk]
    path=c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\Digital Line Detect.lnk
    backup=c:\windows\pss\Digital Line Detect.lnkCommon Startup

    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^HP Digital Imaging Monitor.lnk]
    path=c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\HP Digital Imaging Monitor.lnk
    backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^Logitech Desktop Messenger.lnk]
    path=c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\Logitech Desktop Messenger.lnk
    backup=c:\windows\pss\Logitech Desktop Messenger.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "c:\\Programfiler\\LimeWire\\LimeWire.exe"=
    "c:\\Programfiler\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
    "c:\\Programfiler\\Telenor\\Telenorhjelpen\\Telenor.exe"=
    "c:\\Programfiler\\Sony Ericsson\\Update Service\\Update Service.exe"=
    "c:\\Programfiler\\BitTyrant\\Azureus.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\WINDOWS\\system32\\sessmgr.exe"=
    "c:\\Programfiler\\Bonjour\\mDNSResponder.exe"=
    "c:\\Programfiler\\Norton Internet Security\\Engine\\16.5.0.135\\ccSvcHst.exe"=
    "c:\\Programfiler\\Windows Live\\Messenger\\wlcsdk.exe"=
    "c:\\Programfiler\\Windows Live\\Messenger\\msnmsgr.exe"=

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
    "1723:TCP"= 1723:TCP:@xpsp2res.dll,-22015
    "1701:UDP"= 1701:UDP:@xpsp2res.dll,-22016
    "500:UDP"= 500:UDP:@xpsp2res.dll,-22017

    R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1005000.087\SymEFA.sys [20/03/2009 15:55 310320]
    R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\NIS\1005000.087\BHDrvx86.sys [20/03/2009 15:55 258608]
    R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NIS\1005000.087\cchpx86.sys [20/03/2009 15:10 482352]
    R1 hwinterface;hwinterface;c:\windows\system32\drivers\hwinterface.sys [24/08/2007 19:57 3026]
    R1 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090730.003\IDSXpx86.sys [31/07/2009 20:47 276344]
    R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [21/04/2009 19:05 55152]
    R2 Norton Internet Security;Norton Internet Security;c:\programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe [20/03/2009 15:11 115560]
    R2 WinDefend;Windows Defender;c:\programfiler\Windows Defender\MsMpEng.exe [03/11/2006 20:19 13592]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\programfiler\Fellesfiler\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [25/02/2009 11:00 101936]
    S3 cxbu0wdm;CardMan 3x21;c:\windows\system32\drivers\cxbu0wdm.sys [05/12/2005 07:20 80384]
    S3 fsssvc;Windows Live Family Safety;c:\programfiler\Windows Live\Family Safety\fsssvc.exe [06/02/2009 18:08 533360]
    S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [03/06/2008 01:45 13352]
    S3 PID_0920;Logitech QuickCam Express(PID_0920);c:\windows\system32\DRIVERS\LV532AV.SYS --> c:\windows\system32\DRIVERS\LV532AV.SYS [?]
    S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [20/06/2009 09:56 89256]
    S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [20/06/2009 09:56 15016]
    S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [20/06/2009 09:56 120744]
    S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [20/06/2009 09:56 114216]
    S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [20/06/2009 09:56 25512]
    S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [20/06/2009 09:56 110632]
    S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [20/06/2009 09:56 115752]
    S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);c:\windows\system32\drivers\s0017bus.sys [26/03/2009 17:07 86824]
    S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;c:\windows\system32\drivers\s0017mdfl.sys [26/03/2009 17:07 15016]
    S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;c:\windows\system32\drivers\s0017mdm.sys [26/03/2009 17:07 114600]
    S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0017mgmt.sys [26/03/2009 17:08 108328]
    S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);c:\windows\system32\drivers\s0017nd5.sys [26/03/2009 17:08 26024]
    S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;c:\windows\system32\drivers\s0017obex.sys [26/03/2009 17:08 104616]
    S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);c:\windows\system32\drivers\s0017unic.sys [26/03/2009 17:08 109736]
    S3 SaiH1589;SaiH1589;c:\windows\system32\drivers\SaiH1589.sys [26/07/2004 12:54 56576]
    S3 SaiU1589;SaiU1589;c:\windows\system32\drivers\SaiU1589.sys [26/07/2004 12:54 19584]
    S3 V0090VID;Creative WebCam Vista Plus;c:\windows\system32\drivers\V0090Vid.sys [21/06/2006 17:44 138112]
    S3 XDIMPT;XDIMPT; [x]

    --- Andre tjenester/drivere lastet i minnet ---

    *Deregistered* - uphcleanhlp

    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    "c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
    .
    Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)

    2009-07-18 c:\windows\Tasks\AppleSoftwareUpdate.job
    - c:\programfiler\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

    2009-07-31 c:\windows\Tasks\MP Scheduled Scan.job
    - c:\programfiler\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]
    .
    - - - - TOMME PEKERE FJERNET - - - -

    BHO-{ecdee021-0d17-467f-a1ff-c7a115230949} - (no file)
    WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
    HKCU-RunOnce-Shockwave Updater - c:\windows\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100429 -Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; SIMBAR Enabled; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30;


    .
    ------- Tilleggsskanning -------
    .
    uSearchMigratedDefaultURL = hxxp://www.mywebsearch.com/jsp/cfg_redir2.jsp?id=ZNxmk570YYNO&fl=0&ptb=1dNZ_wVIzeRkzTKDHisEOw&url=http://edits.mywebsearch.com/toolbaredits/barsearch.jhtml&st=sb&searchfor={searchTerms}
    uStart Page = hxxp://www.startsiden.no/
    uDefault_Search_URL = hxxp://www.google.com/ie
    uInternet Connection Wizard,ShellNext = iexplore
    uInternet Settings,ProxyOverride = localhost;*.local
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
    Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\programfiler\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} - hxxp://downloads.ewido.net/ewidoOnlineScan.cab
    DPF: {99CAAA27-FA0C-4FA4-B88A-4AB1CC7A17FE} - hxxp://hero.netgame.com/launch/object/mglaunch_USAv1004.cab
    DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} - hxxps://plugins.valueactive.eu/flashax/iefax.cab
    .
    .
    ------- Filassosiasjoner -------
    .
    JSEFile=NOTEPAD.EXE %1
    VBEFile=NOTEPAD.EXE %1
    VBSFile=NOTEPAD.EXE %1
    .

    **************************************************************************

    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-07-31 23:57
    Windows 5.1.2600 Service Pack 3 NTFS

    skanner skjulte prosesser ...

    skanner skjulte autostart-oppføringer ...

    skanner skjulte filer ...

    skanning vellykket
    skjulte filer: 0

    **************************************************************************

    [HKEY_LOCAL_MACHINE\System\ControlSet004\Services\Norton Internet Security]
    "ImagePath"="\"c:\programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\programfiler\Norton Internet Security\Engine\16.5.0.135\diMaster.dll\" /prefetch:1"
    .
    --------------------- LÅSTE REGISTERNØKLER ---------------------

    [HKEY_USERS\S-1-5-21-891088668-1515687847-3996960803-1006\Software\Microsoft\SystemCertificates\AddressBook*]
    @Allowed: (Read) (RestrictedCode)
    @Allowed: (Read) (RestrictedCode)

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "cd042efbbd7f7af1647644e76e06692b"=hex:e2,63,26,f1,3f,c8,ff,68,a3,24,43,db,ea,
    c2,cc,fa,e2,63,26,f1,3f,c8,ff,68,56,fe,8b,81,21,21,05,ed,e2,63,26,f1,3f,c8,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "bca643cdc5c2726b20d2ecedcc62c59b"=hex:71,3b,04,66,8b,46,0d,96,d1,1d,a4,36,2a,
    e0,f9,47,6a,9c,d6,61,af,45,84,18,2d,37,60,3a,27,3a,05,08,6a,9c,d6,61,af,45,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "2c81e34222e8052573023a60d06dd016"=hex:25,da,ec,7e,55,20,c9,26,e7,de,e1,33,72,
    5c,7e,ab,ff,7c,85,e0,43,d4,0e,fe,b1,9d,e5,1f,89,3a,31,d9,ff,7c,85,e0,43,d4,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "2582ae41fb52324423be06337561aa48"=hex:6b,65,49,6a,7e,99,74,f7,cd,f7,47,6f,35,
    f1,49,2b,86,8c,21,01,be,91,eb,e7,ae,4c,b5,73,7a,98,bd,94,86,8c,21,01,be,91,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "caaeda5fd7a9ed7697d9686d4b818472"=hex:f5,1d,4d,73,a8,13,5c,05,ba,3c,00,6d,57,
    53,db,83,f5,1d,4d,73,a8,13,5c,05,5c,9a,c5,23,57,1e,2a,a4,f5,1d,4d,73,a8,13,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "a4a1bcf2cc2b8bc3716b74b2b4522f5d"=hex:50,93,e5,ab,ec,6a,4e,ab,0d,8d,ee,24,8e,
    f7,aa,f4,df,20,58,62,78,6b,cf,c8,cd,af,bf,e6,f9,94,f3,ab,df,20,58,62,78,6b,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "4d370831d2c43cd13623e232fed27b7b"=hex:fb,a7,78,e6,12,2f,9a,ea,5d,5e,22,1c,73,
    9f,62,50,fb,a7,78,e6,12,2f,9a,ea,64,33,72,75,ef,7d,fb,a9,fb,a7,78,e6,12,2f,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "1d68fe701cdea33e477eb204b76f993d"=hex:01,3a,48,fc,e8,04,4a,f1,6b,60,75,e8,c1,
    26,c7,ea,01,3a,48,fc,e8,04,4a,f1,69,d7,cf,48,a5,10,c6,ba,01,3a,48,fc,e8,04,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "1fac81b91d8e3c5aa4b0a51804d844a3"=hex:f6,0f,4e,58,98,5b,89,c9,48,e4,70,8c,8c,
    16,88,92,f6,0f,4e,58,98,5b,89,c9,37,74,0f,08,6f,98,66,21,f6,0f,4e,58,98,5b,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "f5f62a6129303efb32fbe080bb27835b"=hex:3d,ce,ea,26,2d,45,aa,78,b6,15,31,67,0f,
    cb,b3,a1,3d,ce,ea,26,2d,45,aa,78,7f,e0,98,f9,4c,da,e7,fd,3d,ce,ea,26,2d,45,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "fd4e2e1a3940b94dceb5a6a021f2e3c6"=hex:e3,0e,66,d5,eb,bc,2f,6b,21,2c,49,99,0a,
    41,e8,c5,2a,b7,cc,b5,b9,7f,41,e7,91,6b,04,6b,18,26,08,b9,2a,b7,cc,b5,b9,7f,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "8a8aec57dd6508a385616fbc86791ec2"=hex:fa,ea,66,7f,d4,3b,6b,70,d2,9e,71,04,66,
    5a,c6,60,6c,43,2d,1e,aa,22,2f,9c,ad,ae,ed,61,06,5c,48,80,6c,43,2d,1e,aa,22,\
    .
    --------------------- DLL'er Lastet Av Kjørende Prosesser ---------------------

    - - - - - - - > 'winlogon.exe'(1776)
    c:\windows\system32\Ati2evxx.dll
    c:\programfiler\Intel\Wireless\Bin\LgNotify.dll

    - - - - - - - > 'explorer.exe'(4008)
    c:\windows\system32\webcheck.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    .
    ------------------------ Andre Kjørende Prosesser ------------------------
    .
    c:\windows\system32\ati2evxx.exe
    c:\programfiler\Intel\Wireless\Bin\EvtEng.exe
    c:\programfiler\Intel\Wireless\Bin\ZCfgSvc.exe
    c:\windows\system32\ati2evxx.exe
    c:\programfiler\Intel\Wireless\Bin\S24EvMon.exe
    c:\programfiler\Intel\Wireless\Bin\WLKEEPER.exe
    c:\windows\system32\scardsvr.exe
    c:\programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    c:\programfiler\Bonjour\mDNSResponder.exe
    c:\programfiler\Java\jre6\bin\jqs.exe
    c:\programfiler\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
    c:\programfiler\Dell\NicConfigSvc\NicConfigSvc.exe
    c:\programfiler\CDBurnerXP\NMSAccessU.exe
    c:\programfiler\Intel\Wireless\Bin\RegSrvc.exe
    c:\programfiler\Microsoft SQL Server\90\Shared\sqlbrowser.exe
    c:\programfiler\Microsoft SQL Server\90\Shared\sqlwriter.exe
    c:\programfiler\UPHClean\uphclean.exe
    c:\programfiler\Apoint\ApntEx.exe
    c:\windows\system32\wbem\wmiapsrv.exe
    c:\windows\system32\wscntfy.exe
    .
    **************************************************************************
    .
    Tidspunkt ferdig: 2009-07-31 0:06 - maskinen ble startet på nytt
    ComboFix-quarantined-files.txt 2009-07-31 22:06

    Pre-Run: 9,864,019,968 byte ledig
    Post-Run: 9,799,614,464 byte ledig

    Current=4 Default=4 Failed=3 LastKnownGood=5 Sets=1,2,3,4,5
    335 --- E O F --- 2009-07-31 18:44

    hijackthis (klikk for å vise/skjule)
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 00:17:22, on 01/08/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Programfiler\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Programfiler\Intel\Wireless\Bin\EvtEng.exe
    C:\Programfiler\Intel\Wireless\Bin\ZcfgSvc.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\Programfiler\Intel\Wireless\Bin\S24EvMon.exe
    C:\Programfiler\Intel\Wireless\Bin\WLKeeper.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Programfiler\Bonjour\mDNSResponder.exe
    C:\Programfiler\Java\jre6\bin\jqs.exe
    C:\Programfiler\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
    C:\Programfiler\CDBurnerXP\NMSAccessU.exe
    C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    C:\Programfiler\Intel\Wireless\Bin\RegSrvc.exe
    C:\Programfiler\Microsoft SQL Server\90\Shared\sqlwriter.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Programfiler\UPHClean\uphclean.exe
    C:\Programfiler\Apoint\Apoint.exe
    C:\Programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\Programfiler\Intel\Wireless\Bin\ifrmewrk.exe
    C:\Programfiler\Fellesfiler\InstallShield\UpdateService\issch.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Programfiler\Apoint\Apntex.exe
    C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\explorer.exe
    C:\WINDOWS\system32\notepad.exe
    C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Documents and Settings\Månestråle\Lokale innstillinger\Temporary Internet Files\Content.IE5\5S81V5NN\HiJackThis[1].exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startsiden.no/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger
    O2 - BHO: (no name) - {111CAA23-6F4F-42AC-8555-B48C1D87BBAB} - (no file)
    O2 - BHO: (no name) - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
    O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\IPSBHO.DLL
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programfiler\Fellesfiler\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Telenor Telenorhjelpen Plugin - {DB87CDE1-EF9C-44EB-A42F-6D0B3C72C516} - C:\Programfiler\Telenor\Telenorhjelpen\IEFixItNowPlugin.dll
    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programfiler\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programfiler\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
    O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
    O4 - HKLM\..\Run: [Apoint] C:\Programfiler\Apoint\Apoint.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [intelWireless] C:\Programfiler\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
    O4 - HKLM\..\Run: [iSUSScheduler] "C:\Programfiler\Fellesfiler\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Programfiler\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [uCam_Menu] "C:\Programfiler\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Programfiler\CyberLink\YouCam" update "Software\CyberLink\YouCam\2.0"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Programfiler\QuickTime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Programfiler\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FELLES~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab
    O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/...can8/oscan8.cab
    O16 - DPF: {615F158E-D5CA-422F-A8E7-F6A5EED7063B} (Bejeweled Control) - http://www.worldwinner.com/games/v46/bejeweled/bejeweled.cab
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
    O16 - DPF: {99CAAA27-FA0C-4FA4-B88A-4AB1CC7A17FE} (MGLaunch_v1004 Class) - http://hero.netgame.com/launch/object/mglaunch_USAv1004.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab
    O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab
    O16 - DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} (Flash Casino Helper Control) - https://plugins.valueactive.eu/flashax/iefax.cab
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programfiler\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Programfiler\Bonjour\mDNSResponder.exe
    O23 - Service: EvtEng - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Programfiler\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programfiler\Java\jre6\bin\jqs.exe
    O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Programfiler\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
    O23 - Service: NMSAccessU - Unknown owner - C:\Programfiler\CDBurnerXP\NMSAccessU.exe
    O23 - Service: Norton Internet Security - Symantec Corporation - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: RegSrvc - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\S24EvMon.exe
    O23 - Service: WLANKEEPER - Intel® Corporation - C:\Programfiler\Intel\Wireless\Bin\WLKeeper.exe

    --
    End of file - 11310 bytes

    • 3 svar
    • visninger
  3. trineline la til et emne i Virus og antivirus   

    Maskinen er treg og låser seg

    Hei. Jeg har litt av samme problemer på min maskin. Den er treg og låser seg, og prossessene kjører for fullt veldig ofte. Har kjørt ccleaner, norton antivirus og spybot search and destroy. Nå har jeg kjørt RSIT, å legger loggen hær:
    Kan noen se over den om den er grei?
    RSIT logg (klikk for å vise/skjule) Logfile of random's system information tool 1.06 (written by random/random)
    Run by Månestråle at 2009-07-24 12:23:13
    Microsoft Windows XP Home Edition Service Pack 3
    System drive C: has 12 GB (22%) free of 54 GB
    Total RAM: 1023 MB (35% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 12:23:29, on 24/07/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Programfiler\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Programfiler\Intel\Wireless\Bin\ZcfgSvc.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Programfiler\Intel\Wireless\Bin\EvtEng.exe
    C:\Programfiler\Intel\Wireless\Bin\S24EvMon.exe
    C:\Programfiler\Intel\Wireless\Bin\WLKeeper.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Programfiler\Bonjour\mDNSResponder.exe
    C:\Programfiler\Java\jre6\bin\jqs.exe
    C:\Programfiler\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
    C:\Programfiler\CDBurnerXP\NMSAccessU.exe
    C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    C:\Programfiler\Intel\Wireless\Bin\RegSrvc.exe
    C:\Programfiler\Microsoft SQL Server\90\Shared\sqlwriter.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Programfiler\UPHClean\uphclean.exe
    C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
    C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    C:\Programfiler\Apoint\Apoint.exe
    C:\Programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\Programfiler\Intel\Wireless\Bin\ifrmewrk.exe
    C:\Programfiler\Fellesfiler\InstallShield\UpdateService\issch.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Programfiler\Windows Live\Messenger\msnmsgr.exe
    C:\Programfiler\Apoint\Apntex.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Programfiler\Windows Live\Contacts\wlcomm.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Programfiler\Internet Explorer\iexplore.exe
    C:\Programfiler\Outlook Express\msimn.exe
    C:\Documents and Settings\Månestråle\Lokale innstillinger\Temporary Internet Files\Content.IE5\5W91Y38C\RSIT[1].exe
    C:\Programfiler\trend micro\Månestråle.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startsiden.no/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger
    O2 - BHO: (no name) - {111CAA23-6F4F-42AC-8555-B48C1D87BBAB} - (no file)
    O2 - BHO: (no name) - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
    O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\IPSBHO.DLL
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programfiler\Fellesfiler\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Telenor Telenorhjelpen Plugin - {DB87CDE1-EF9C-44EB-A42F-6D0B3C72C516} - C:\Programfiler\Telenor\Telenorhjelpen\IEFixItNowPlugin.dll
    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programfiler\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programfiler\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O2 - BHO: (no name) - {ecdee021-0d17-467f-a1ff-c7a115230949} - (no file)
    O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
    O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
    O4 - HKLM\..\Run: [Apoint] C:\Programfiler\Apoint\Apoint.exe
    O4 - HKLM\..\Run: [ATIPTA] "C:\Programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [intelWireless] C:\Programfiler\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
    O4 - HKLM\..\Run: [iSUSScheduler] "C:\Programfiler\Fellesfiler\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Programfiler\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [uCam_Menu] "C:\Programfiler\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Programfiler\CyberLink\YouCam" update "Software\CyberLink\YouCam\2.0"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Programfiler\QuickTime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Programfiler\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100429 -Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; SIMBAR Enabled; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJENESTE')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETTVERKSTJENESTE')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab
    O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/...can8/oscan8.cab
    O16 - DPF: {615F158E-D5CA-422F-A8E7-F6A5EED7063B} (Bejeweled Control) - http://www.worldwinner.com/games/v46/bejeweled/bejeweled.cab
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
    O16 - DPF: {99CAAA27-FA0C-4FA4-B88A-4AB1CC7A17FE} (MGLaunch_v1004 Class) - http://hero.netgame.com/launch/object/mglaunch_USAv1004.cab
    O16 - DPF: {AF2E62B6-F9E1-4D4F-A10A-9DC8E6DCBCC0} -
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab
    O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab
    O16 - DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} (Flash Casino Helper Control) - https://plugins.valueactive.eu/flashax/iefax.cab
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programfiler\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Programfiler\Bonjour\mDNSResponder.exe
    O23 - Service: EvtEng - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Programfiler\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programfiler\Java\jre6\bin\jqs.exe
    O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Programfiler\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
    O23 - Service: NMSAccessU - Unknown owner - C:\Programfiler\CDBurnerXP\NMSAccessU.exe
    O23 - Service: NNServ - Unknown owner - (no file)
    O23 - Service: Norton Internet Security - Symantec Corporation - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: RegSrvc - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\S24EvMon.exe
    O23 - Service: WLANKEEPER - Intel® Corporation - C:\Programfiler\Intel\Wireless\Bin\WLKeeper.exe

    --
    End of file - 11990 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\MP Scheduled Scan.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{111CAA23-6F4F-42AC-8555-B48C1D87BBAB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
    Symantec NCO BHO - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll [2009-03-12 372592]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
    Symantec Intrusion Prevention - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\IPSBHO.DLL [2009-03-12 107896]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live Sign-in Helper - C:\Programfiler\Fellesfiler\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DB87CDE1-EF9C-44EB-A42F-6D0B3C72C516}]
    Telenor Telenorhjelpen Plugin - C:\Programfiler\Telenor\Telenorhjelpen\IEFixItNowPlugin.dll [2008-02-19 123584]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java Plug-In 2 SSV Helper - C:\Programfiler\Java\jre6\bin\jp2ssv.dll [2009-03-13 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Programfiler\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-13 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ecdee021-0d17-467f-a1ff-c7a115230949}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
    {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll [2009-03-12 372592]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Apoint"=C:\Programfiler\Apoint\Apoint.exe [2004-09-13 155648]
    "ATIPTA"=C:\Programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-08-05 344064]
    "IntelWireless"=C:\Programfiler\Intel\Wireless\Bin\ifrmewrk.exe [2004-10-30 385024]
    "ISUSScheduler"=C:\Programfiler\Fellesfiler\InstallShield\UpdateService\issch.exe [2005-06-10 81920]
    "HP Component Manager"=C:\Programfiler\HP\hpcoretech\hpcmpmgr.exe [2005-01-12 241664]
    "UCam_Menu"=C:\Programfiler\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2007-12-24 222504]
    "QuickTime Task"=C:\Programfiler\QuickTime\qttask.exe [2009-01-05 413696]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
    "msnmsgr"=C:\Programfiler\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "Shockwave Updater"=C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE [2008-03-19 439736]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
    C:\Programfiler\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe [2007-03-09 63712]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    C:\Programfiler\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
    C:\Programfiler\Alcohol Soft\Alcohol 120\axcmd.exe [2009-02-23 203928]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
    C:\Documents and Settings\Månestråle\Lokale innstillinger\Programdata\Google\Update\GoogleUpdate.exe /c []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM]
    C:\Programfiler\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2007-02-27 67128]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LifeCam]
    C:\Programfiler\Microsoft LifeCam\LifeExp.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
    C:\Programfiler\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Programfiler\QuickTime\qttask.exe [2009-01-05 413696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
    C:\Programfiler\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe [2009-04-01 405504]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
    C:\Programfiler\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Programfiler\Java\jre6\bin\jusched.exe [2009-03-13 148888]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Telenorhjelpen]
    C:\Programfiler\Telenor\Telenorhjelpen\Telenor.exe [2008-02-07 189120]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VX1000]
    C:\WINDOWS\vVX1000.exe [2008-08-04 721936]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
    C:\Programfiler\Windows Defender\MSASCui.exe [2006-11-03 866584]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^Digital Line Detect.lnk]
    C:\PROGRA~1\DIGITA~1\DLG.exe [2003-10-29 24576]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^HP Digital Imaging Monitor.lnk]
    C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2003-09-16 237568]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^Logitech Desktop Messenger.lnk]
    C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LOGITE~1.EXE [2007-02-27 67128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
    C:\WINDOWS\system32\Ati2evxx.dll [2005-08-04 46080]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\IntelWireless]
    C:\Programfiler\Intel\Wireless\Bin\LgNotify.dll [2004-09-07 110592]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2007-02-15 236928]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SymEFA.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Programfiler\LimeWire\LimeWire.exe"="C:\Programfiler\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Programfiler\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Programfiler\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "C:\Programfiler\Telenor\Online Start\Telenor.exe"="C:\Programfiler\Telenor\Online Start\Telenor.exe:*:Enabled:Online Start"
    "C:\Programfiler\Skype\Phone\Skype.exe"="C:\Programfiler\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Programfiler\Azureus\Azureus.exe"="C:\Programfiler\Azureus\Azureus.exe:*:Enabled:Azureus"
    "C:\Programfiler\Telenor\Telenorhjelpen\Telenor.exe"="C:\Programfiler\Telenor\Telenorhjelpen\Telenor.exe:*:Enabled:Telenorhjelpen"
    "C:\Programfiler\Sony Ericsson\Update Service\Update Service.exe"="C:\Programfiler\Sony Ericsson\Update Service\Update Service.exe:*:Enabled:Update Service"
    "C:\Programfiler\FlashGet\FlashGet.exe"="C:\Programfiler\FlashGet\FlashGet.exe:*:Enabled:Flashget"
    "C:\Programfiler\BitTyrant\Azureus.exe"="C:\Programfiler\BitTyrant\Azureus.exe:*:Enabled:Azureus"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
    "C:\Programfiler\Team MediaPortal\MediaPortal TV Server\TvService.exe"="C:\Programfiler\Team MediaPortal\MediaPortal TV Server\TvService.exe:LocalSubNet:Enabled:MediaPortal TV Server"
    "C:\Programfiler\Team MediaPortal\MediaPortal\MediaPortal.exe"="C:\Programfiler\Team MediaPortal\MediaPortal\MediaPortal.exe:LocalSubNet:Enabled:MediaPortal"
    "C:\Programfiler\Internet Explorer\iexplore.exe"="C:\Programfiler\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
    "C:\Programfiler\Mozilla Firefox\firefox.exe"="C:\Programfiler\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
    "C:\Programfiler\MSN Messenger\livecall.exe"="C:\Programfiler\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Programfiler\Bonjour\mDNSResponder.exe"="C:\Programfiler\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe"="C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe:*:Enabled:Symantec Service Framework"
    "C:\Programfiler\Windows Live\Messenger\wlcsdk.exe"="C:\Programfiler\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Programfiler\Windows Live\Messenger\msnmsgr.exe"="C:\Programfiler\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Programfiler\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Programfiler\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Programfiler\MSN Messenger\livecall.exe"="C:\Programfiler\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Programfiler\Windows Live\Messenger\wlcsdk.exe"="C:\Programfiler\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Programfiler\Windows Live\Messenger\msnmsgr.exe"="C:\Programfiler\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    ======File associations======

    .js - open - NOTEPAD.EXE %1
    .vbs - open - NOTEPAD.EXE %1

    ======List of files/folders created in the last 1 months======

    2009-07-24 12:05:32 ----D---- C:\Programfiler\trend micro
    2009-07-24 12:05:26 ----D---- C:\rsit
    2009-07-24 11:47:49 ----D---- C:\WINDOWS\LastGood
    2009-07-16 00:23:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
    2009-07-16 00:22:57 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
    2009-07-16 00:09:49 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
    2009-07-09 23:48:48 ----D---- C:\WINDOWS\ie8updates
    2009-07-09 23:38:13 ----HDC---- C:\WINDOWS\ie8
    2009-06-25 16:37:12 ----D---- C:\Documents and Settings\All Users\Programdata\Microgaming
    2009-06-25 16:37:12 ----D---- C:\Documents and Settings\All Users\Programdata\MGS
    2009-06-25 16:36:41 ----D---- C:\Microgaming

    ======List of files/folders modified in the last 1 months======

    2009-07-24 12:06:52 ----D---- C:\WINDOWS\Prefetch
    2009-07-24 12:05:32 ----AD---- C:\Programfiler
    2009-07-24 12:05:31 ----D---- C:\WINDOWS\Temp
    2009-07-24 11:55:30 ----D---- C:\WINDOWS\system32\drivers
    2009-07-24 11:48:15 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-07-24 11:48:14 ----D---- C:\WINDOWS\BDOSCAN8
    2009-07-24 11:47:51 ----HD---- C:\WINDOWS\inf
    2009-07-24 11:47:49 ----D---- C:\WINDOWS
    2009-07-24 11:46:23 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-07-24 11:37:54 ----SD---- C:\WINDOWS\Tasks
    2009-07-24 10:55:15 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-07-24 00:37:37 ----D---- C:\Documents and Settings\All Users\Programdata\Spybot - Search & Destroy
    2009-07-24 00:31:18 ----D---- C:\WINDOWS\Debug
    2009-07-21 22:05:32 ----D---- C:\Documents and Settings\Månestråle\Programdata\Azureus
    2009-07-16 10:39:37 ----D---- C:\WINDOWS\system32
    2009-07-16 00:23:21 ----HD---- C:\WINDOWS\$hf_mig$
    2009-07-16 00:23:04 ----RSHD---- C:\WINDOWS\system32\dllcache
    2009-07-10 04:17:08 ----RASH---- C:\boot.ini
    2009-07-10 04:17:08 ----A---- C:\WINDOWS\win.ini
    2009-07-10 04:17:08 ----A---- C:\WINDOWS\system.ini
    2009-07-10 04:16:21 ----D---- C:\WINDOWS\pss
    2009-07-10 00:07:30 ----D---- C:\WINDOWS\system32\nb-no
    2009-07-10 00:07:30 ----D---- C:\WINDOWS\Media
    2009-07-10 00:07:30 ----D---- C:\Programfiler\Internet Explorer
    2009-07-10 00:07:29 ----D---- C:\WINDOWS\Help
    2009-07-07 17:10:56 ----A---- C:\WINDOWS\system32\MRT.exe
    2009-07-05 12:58:59 ----D---- C:\Programfiler\LimeWire
    2009-07-05 12:58:17 ----SHD---- C:\WINDOWS\Installer
    2009-07-05 12:58:17 ----SHD---- C:\Config.Msi
    2009-06-29 00:12:51 ----AD---- C:\Programfiler\Fellesfiler
    2009-06-29 00:12:10 ----D---- C:\Programfiler\DJBCP Codec Pack
    2009-06-28 00:26:06 ----D---- C:\Documents and Settings\Månestråle\Programdata\FrostWire
    2009-06-26 02:08:14 ----D---- C:\Programfiler\Mozilla Firefox
    2009-06-26 02:07:23 ----D---- C:\Programfiler\Graboid
    2009-06-26 01:33:10 ----D---- C:\Downloads

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 APPDRV;APPDRV; C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [2005-08-03 16128]
    R1 BHDrvx86;Symantec Heuristics Driver; C:\WINDOWS\System32\Drivers\NIS\1005000.087\BHDrvx86.sys [2009-03-12 258608]
    R1 ccHP;Symantec Hash Provider; C:\WINDOWS\System32\Drivers\NIS\1005000.087\ccHPx86.sys [2009-03-20 482352]
    R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Programfiler\Fellesfiler\Symantec Shared\EENGINE\eeCtrl.sys []
    R1 hwinterface;hwinterface; C:\WINDOWS\System32\Drivers\hwinterface.sys [2007-08-24 3026]
    R1 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20090715.003\IDSxpx86.sys []
    R1 intelppm;Intel-prosessordriver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
    R1 omci;OMCI WDM Device Driver; C:\WINDOWS\system32\DRIVERS\omci.sys [2004-02-13 17153]
    R1 PCLEPCI;PCLEPCI; \??\C:\WINDOWS\system32\drivers\pclepci.sys []
    R1 SRTSPX;Symantec Real Time Storage Protection (PEL); \??\C:\WINDOWS\system32\drivers\NIS\1005000.087\SRTSPX.SYS []
    R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\NIS\1005000.087\SYMTDI.SYS [2009-03-12 217392]
    R1 Tcpip6;Microsoft IPv6-protokolldriver; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225856]
    R1 WS2IFSL;Windows Socket 2.0-støttemiljø for ikke-IFS-tjenesteleverandør; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-04 12032]
    R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.1.0.1; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2006-01-13 17056]
    R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-02-06 55152]
    R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-03-17 13059]
    R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2004-08-31 11354]
    R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-11-16 108791]
    R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-08-04 1273344]
    R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2004-05-26 44928]
    R3 CmBatt;Driver for batteri med Microsoft ACPI-kontrollmetode; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Programfiler\Fellesfiler\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
    R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2004-06-17 1041536]
    R3 HSFHWICH;HSFHWICH; C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [2004-06-17 200064]
    R3 IWCA;Intel Wireless Connection Agent Miniport for Win XP; C:\WINDOWS\system32\DRIVERS\iwca.sys [2004-08-12 234496]
    R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2004-06-21 78976]
    R3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090723.066\NAVENG.SYS []
    R3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090723.066\NAVEX15.SYS []
    R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
    R3 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NIS\1005000.087\SRTSP.SYS [2009-03-12 307760]
    R3 STAC97;SigmaTel C-Major Audio; C:\WINDOWS\system32\drivers\STAC97.sys [2005-03-11 273168]
    R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
    R3 SYMFW;Symantec Network Filter Driver; C:\WINDOWS\System32\Drivers\NIS\1005000.087\SYMFW.SYS [2009-03-12 89776]
    R3 SYMIDS;Symantec Network Filter Driver; C:\WINDOWS\System32\Drivers\NIS\1005000.087\SYMIDS.SYS [2009-03-12 34736]
    R3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2009-03-12 36400]
    R3 SYMNDIS;Symantec Network Filter Driver; C:\WINDOWS\System32\Drivers\NIS\1005000.087\SYMNDIS.SYS [2009-03-12 37296]
    R3 tunmp;Microsoft Tun Miniport-kortdriver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
    R3 usbehci;Miniportdriver for Microsoft USB 2.0 forbedret vertskontroller; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;USB2 aktivert hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbuhci;Miniportdriver for Microsoft USB universell vertskontroller; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    R3 w29n51;Intel® PRO/Wireless 2200BG nettverkstilkoblingsdriver for Windows XP; C:\WINDOWS\system32\DRIVERS\w29n51.sys [2004-10-21 3210496]
    R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2004-06-17 685056]
    S3 61883;61883 enhet; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
    S3 Arp1394;1394 ARP-klientprotokoll; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
    S3 au194vjs;au194vjs; C:\WINDOWS\system32\drivers\au194vjs.sys []
    S3 Avc;AVC-enhet; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
    S3 bvrp_pci;bvrp_pci; C:\WINDOWS\system32\drivers\bvrp_pci.sys [2004-03-24 4272]
    S3 CCDECODE;Dekoder for teksting for hørselshemmede; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 cxbu0wdm;CardMan 3x21; C:\WINDOWS\system32\DRIVERS\cxbu0wdm.sys [2005-12-05 80384]
    S3 EL90XBC;Driver for 3Com EtherLink XL 90XB/C-kort; C:\WINDOWS\system32\DRIVERS\el90xbc5.sys [2001-08-17 66591]
    S3 ggflt;SEMC USB Flash Driver Filter; C:\WINDOWS\system32\DRIVERS\ggflt.sys [2008-06-03 13352]
    S3 ggsemc;SEMC USB Flash Driver; C:\WINDOWS\system32\DRIVERS\ggsemc.sys [2008-06-03 21672]
    S3 HidUsb;Microsoft HID-klassedriver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
    S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-02-26 51056]
    S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-02-26 16496]
    S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-02-26 21488]
    S3 irsir;Microsoft seriell infrarød driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
    S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
    S3 MSTEE;Tee/Sink-to-Sink-konverterer for Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;NABTS/FEC VBI-kodek; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Microsoft TV/video-tilkobling; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 NIC1394;1394-nettverksdriver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
    S3 nm;Driver for Network Monitor; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
    S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-04 1897408]
    S3 PID_0920;Logitech QuickCam Express(PID_0920); C:\WINDOWS\system32\DRIVERS\LV532AV.SYS []
    S3 s0016bus;Sony Ericsson Device 0016 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
    S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:\WINDOWS\system32\DRIVERS\s0017bus.sys [2008-10-21 86824]
    S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s0017mdfl.sys [2008-10-21 15016]
    S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s0017mdm.sys [2008-10-21 114600]
    S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s0017mgmt.sys [2008-10-21 108328]
    S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS); C:\WINDOWS\system32\DRIVERS\s0017nd5.sys [2008-10-21 26024]
    S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s0017obex.sys [2008-10-21 104616]
    S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:\WINDOWS\system32\DRIVERS\s0017unic.sys [2008-10-21 109736]
    S3 SaiH1589;SaiH1589; C:\WINDOWS\system32\DRIVERS\SaiH1589.sys [2004-07-26 56576]
    S3 SaiU1589;SaiU1589; C:\WINDOWS\system32\DRIVERS\SaiU1589.sys [2004-07-26 19584]
    S3 SE2Ebus;Sony Ericsson Device 046 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE2Ebus.sys [2006-05-01 61600]
    S3 sffdisk;SFF-lagringsklassedriver; C:\WINDOWS\system32\DRIVERS\sffdisk.sys [2008-04-13 11904]
    S3 sffp_sd;SFF-lagringsprotokolldriver for SDBus; C:\WINDOWS\system32\DRIVERS\sffp_sd.sys [2008-04-13 11008]
    S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 SONYPVU1;Sony USB-filterdriver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 SYMDNS;SYMDNS; C:\WINDOWS\System32\Drivers\NIS\1002000.007\SYMDNS.SYS []
    S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2009-03-12 36400]
    S3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\NIS\1002000.007\SYMREDRV.SYS []
    S3 usbaudio;USB-lyddriver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
    S3 usbccgp;Microsoft USB generell overordnet driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 usbprint;Microsoft USB PRINTER-klasse; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 usbscan;USB-skannerdriver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    S3 USBSTOR;USB-masselagringsenhet; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 V0090VID;Creative WebCam Vista Plus; C:\WINDOWS\system32\DRIVERS\V0090Vid.sys [2005-04-14 138112]
    S3 VX1000;VX-1000; C:\WINDOWS\system32\DRIVERS\VX1000.sys [2008-08-04 1964432]
    S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;World Standard Teletext-kodek; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 agp440;Intel AGP-bussfilter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
    S4 agpCPQ;Compaq AGP-bussfilter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-13 44928]
    S4 alim1541;ALI AGP-bussfilter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-13 42752]
    S4 amdagp;Driver for AMD AGP-bussfilter; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-13 43008]
    S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
    S4 sisagp;SIS AGP-bussfilter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-13 40960]
    S4 sr;Filterdriver for systemgjenoppretting; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]
    S4 viaagp;VIA AGP-bussfilter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-13 42240]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-26 132424]
    R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-08-04 380928]
    R2 Bonjour Service;Bonjour Service; C:\Programfiler\Bonjour\mDNSResponder.exe [2008-12-12 238888]
    R2 EvtEng;EvtEng; C:\Programfiler\Intel\Wireless\Bin\EvtEng.exe [2004-09-07 86016]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Programfiler\Java\jre6\bin\jqs.exe [2009-03-13 152984]
    R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Programfiler\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-11-24 29263712]
    R2 NICCONFIGSVC;NICCONFIGSVC; C:\Programfiler\Dell\NICCONFIGSVC\NICCONFIGSVC.exe [2005-06-09 356352]
    R2 NMSAccessU;NMSAccessU; C:\Programfiler\CDBurnerXP\NMSAccessU.exe [2008-06-15 71096]
    R2 Norton Internet Security;Norton Internet Security; C:\Programfiler\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe [2009-03-12 115560]
    R2 RegSrvc;RegSrvc; C:\Programfiler\Intel\Wireless\Bin\RegSrvc.exe [2004-09-07 139264]
    R2 S24EventMonitor;Spectrum24 Event Monitor; C:\Programfiler\Intel\Wireless\Bin\S24EvMon.exe [2004-09-07 360521]
    R2 SQLBrowser;SQL Server Browser; C:\Programfiler\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
    R2 SQLWriter;SQL Server VSS Writer; C:\Programfiler\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
    R2 UPHClean;User Profile Hive Cleanup; C:\Programfiler\UPHClean\uphclean.exe [2005-04-27 241725]
    R2 WinDefend;Windows Defender; C:\Programfiler\Windows Defender\MsMpEng.exe [2006-11-03 13592]
    R2 WLANKEEPER;WLANKEEPER; C:\Programfiler\Intel\Wireless\Bin\WLKeeper.exe [2004-09-07 225353]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S2 6to4;IPv6-hjelpetjeneste; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 aspnet_state;Statustjeneste for ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 fsssvc;Windows Live Family Safety; C:\Programfiler\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
    S3 gusvc;Google Updater Service; C:\Programfiler\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-08-01 136120]
    S3 IDriverT;InstallDriver Table Manager; C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 ose;Office Source Engine; C:\Programfiler\Fellesfiler\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-02-26 65795]
    S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Programfiler\Windows Media Player\WMPNetwk.exe [2006-11-15 914944]
    S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Programfiler\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
    S4 NetTcpPortSharing;Tjenesten Net.Tcp Port Sharing; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------


    • 1 svar
    • visninger
  4. trineline la til et emne i Hovedkort, prosessor og minne   

    Må jeg kjøpe nytt hovedkort?
    Hei

    Jeg har en Dell inspiron 6000 bærbar pc, ca 3 år gammel. Men har et kjempeproblem. Strøminngangen (altså hullet jeg stikker ledningen inn i) er ødelagt. Jeg får ikke ladet pc`n, og jeg må vri å presse for å få strøm inn i maskin. Det jeg lurer på er:

    Må jeg kjøpe nytt hovedkort? Sitter strøminngangen på hovedkortet?
    Må jeg kjøpe helt likt hovedkort som sitter i maskin nå? Hva må jeg eventulet passe på ved kjøp av nytt?
    • 3 svar
    • visninger
  5. trineline la til et innlegg i et emne Må jeg kjøpe nytt hovedkort?   


    Tænx førr tipset :thumbup:
    • 0
  6. trineline la til et innlegg i et emne Må jeg kjøpe nytt hovedkort?   



    Ser forresten nå at jeg har skrevet feil ord i emnefeltet

    Det skal være hovedkort å IKKE skjermkort
    • 0
  7. trineline la til et innlegg i et emne Må jeg kjøpe nytt hovedkort?   


    Litt vanskeli å forklare dette, men jeg skal prøve...

    Inni strøminngangen er det noen "metallbiter" som klemmer til rundt "kontakten" til strømledningen/adapteret. Disse "bitene" ser ut som di har løsnet, å noe har forsvunnet.

    Ellers fungerer pc`m helt fint, så jeg syns det er litt ille å kassere hele pc`n lixom
    • 0
  8. trineline la til et emne i Grafikkort   

    Må jeg kjøpe nytt hovedkort?
    Hei

    Jeg har en Dell inspiron 6000 bærbar pc, ca 3 år gammel. Men har et kjempeproblem. Strøminngangen (altså hullet jeg stikker ledningen inn i) er ødelagt. Jeg får ikke ladet pc`n, og jeg må vri å presse for å få strøm inn i maskin. Det jeg lurer på er:

    Må jeg kjøpe nytt hovedkort? Sitter strøminngangen på hovedkortet?
    Må jeg kjøpe helt likt hovedkort som sitter i maskin nå? Hva må jeg eventulet passe på ved kjøp av nytt?


    • 5 svar
    • visninger
  9. trineline la til et innlegg i et emne NTLDR is missing   

    Alle kablene sitter fast å som dem skal.
    • 0
  10. trineline la til et innlegg i et emne NTLDR is missing   

    Har sjekket ja, å ingen diskett eller cd står i nei.
    • 0
  11. trineline la til et emne i Windows   

    NTLDR is missing
    Hei.

    Min sønns pc slo seg plutselig av mens han satt å jobbet med et videoredigeringsprogram, så ble skjermen svart å meldingen "NTLDR is missing
    Press Ctrl+Alt+Del to restart" kommer opp. Når vi gjør dette kommer bare den samme meldingen opp på nytt. Hvorfor? Må jeg formatere? Har ingen windows xp cd. Vet at jeg har formatert pc`n tidligere, å trur operativsystemet lå på hardisken. Stemmer dette, eller husker jeg helt feil? Å kan jeg da formatere fra bios eventuelt?
    • 7 svar
    • visninger
  12. trineline la til et emne i Windows   

    vil spille win 98 spill på XP
    en venn av meg har hørt om noe som gjør det slikt at jeg kan spille windows 98 spill på windows XP, hvis dette finnes er det noe jeg ville gitt mye for å få tak i....

    hvis noe slikt finnes så si ifra
    • 5 svar
    • visninger
  13. trineline la til et innlegg i et emne Hjelp. Kommer ikke på nett!   

    Takk for svaret. Har prøvd alt du sa, meeen d virket ikke det heller

    Å ja, jeg har hatt lyst til å hive begge pc`an ut vinduet gitt. Men gir ikke opp enda, hehe.
    • 0
  14. trineline la til et innlegg i et emne Hjelp. Kommer ikke på nett!   

    Nå har jeg prøvd å nullstille, men det skjedde ingen forandring (
    • 0
  15. trineline la til et innlegg i et emne Hjelp. Kommer ikke på nett!   

    Har prøvd det. FÅr da til svar at :Kan ikke koble til tjenesten. Dette kan skyldes uriktige proxy- ellerbrannmurinnstillinger.

    Har prøvd å slå av både router å modem å pc flere gang. Å sjekket kablene å innstillinger. Men det er mulig at jeg har prøvd så mye forskjellig at jeg har endret på noe jeg ikke burde.
    • 0