Jump to content

Tronjan.agent-gen infection


Recommended Posts

Got infected and removed with my antivirussoftware and did a malwarebytes scanremoval/reboot before finding this forum. Thanks in advance!

 

1st. Farbar scanlog:

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2015
Ran by Fabian F. Egge (administrator) on FABIANE on 22-01-2015 20:06:35
Running from C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Downloads
Loaded Profiles: Fabian F. Egge (Available profiles: Fabian F. Egge)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Norsk (bokmål)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Cisco Systems, Inc.) C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(SUPERAntiSpyware.com) C:\Programfiler\SUPERAntiSpyware\SASCORE.EXE
(Apple Inc.) C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Programfiler\Bonjour\mDNSResponder.exe
(Oracle Corporation) C:\Programfiler\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Programfiler\Malwarebytes Anti-Malware\mbamscheduler.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Apple Inc.) C:\Programfiler\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe
(Cisco Systems, Inc.) C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Malwarebytes Corporation) C:\Programfiler\Malwarebytes Anti-Malware\mbamservice.exe
(Spotify Ltd) C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\Data\SpotifyWebHelper.exe
(SUPERAntiSpyware) C:\Programfiler\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Valve Corporation) C:\Programfiler\Steam\Steam.exe
(Piriform Ltd) C:\Programfiler\CCleaner\CCleaner.exe
(Realtek Semiconductor Corp.) C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
(Malwarebytes Corporation) C:\Programfiler\Malwarebytes Anti-Malware\mbam.exe
(Apple Inc.) C:\Programfiler\iPod\bin\iPodService.exe
(Valve Corporation) C:\Programfiler\Steam\bin\steamwebhelper.exe
(Oracle Corporation) C:\Programfiler\Fellesfiler\Java\Java Update\jucheck.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18671104 2009-07-29] (Realtek Semiconductor Corp.)
HKLM\...\Run: [APSDaemon] => C:\Programfiler\Fellesfiler\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Programfiler\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Programfiler\Fellesfiler\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707984 2013-10-10] (Cisco Systems, Inc.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Run: [spotify Web Helper] => C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-18] (Spotify Ltd)
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Run: [sUPERAntiSpyware] => C:\Programfiler\SUPERAntiSpyware\SUPERAntiSpyware.exe [6699800 2015-01-22] (SUPERAntiSpyware)
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Run: [steam] => C:\Programfiler\Steam\steam.exe [1942720 2015-01-19] (Valve Corporation)
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Run: [CCleaner Monitoring] => C:\Programfiler\CCleaner\CCleaner.exe [5489944 2014-12-12] (Piriform Ltd)
Startup: C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart\REALTEK 11n USB Wireless LAN Utility.lnk
ShortcutTarget: REALTEK 11n USB Wireless LAN Utility.lnk -> C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKU\S-1-5-21-73586283-1682526488-1417001333-1003 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
BHO: No Name -> {5081D2D4-1637-404c-B74F-50526718257D} ->  No File
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programfiler\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Programfiler\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Programfiler\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programfiler\Fellesfiler\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
ShellExecuteHooks: Binding for URL-initialisering - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\system32\shell32.dll [8468992 2012-06-08] (Microsoft Corporation)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Programfiler\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
Winsock: Catalog5 04 C:\Programfiler\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default
FF DefaultSearchEngine: omiga-plus
FF SelectedSearchEngine: omiga-plus
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Programfiler\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Programfiler\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Programfiler\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Programfiler\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Programfiler\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Programfiler\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Programfiler\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\user.js
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\bok-NO.xml
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\gulesider-NO.xml
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\qxl-NO.xml
FF Extension: Media Hint - C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\Extensions\mediahint@jetpack.xpi [2013-12-27]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-08-22]
FF Extension: No Name - C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\extensions\faststartff@gmail.com [Not Found]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR StartupUrls: Profile 1 -> "https://www.google.com/"
CHR Profile: C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Wallet) - C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-22]
CHR StartMenuInternet: Google Chrome - Chrome.exe
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Programfiler\SUPERAntiSpyware\SASCORE.EXE [142648 2014-08-13] (SUPERAntiSpyware.com)
R2 Apple Mobile Device; C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008 2012-12-21] (Apple Inc.)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2009-09-18] () [File not signed]
R2 Bonjour Service; C:\Programfiler\Bonjour\mDNSResponder.exe [390504 2011-08-30] (Apple Inc.)
S2 gupdate; C:\Programfiler\Google\Update\GoogleUpdate.exe [116648 2013-08-21] (Google Inc.)
S3 gupdatem; C:\Programfiler\Google\Update\GoogleUpdate.exe [116648 2013-08-21] (Google Inc.)
R3 iPod Service; C:\Programfiler\iPod\bin\iPodService.exe [553288 2013-08-16] (Apple Inc.)
R2 JavaQuickStarterService; C:\Programfiler\Java\jre7\bin\jqs.exe [182696 2013-12-18] (Oracle Corporation)
R2 MBAMScheduler; C:\Programfiler\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Programfiler\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 MozillaMaintenance; C:\Programfiler\Mozilla Maintenance Service\maintenanceservice.exe [119408 2014-05-09] (Mozilla Foundation)
S3 ose; C:\Programfiler\Fellesfiler\Microsoft Shared\Source Engine\OSE.EXE [149352 2010-01-09] (Microsoft Corporation)
S3 osppsvc; C:\Programfiler\Fellesfiler\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [4640000 2010-01-09] (Microsoft Corporation)
S2 SkypeUpdate; C:\Programfiler\Skype\Updater\Updater.exe [315496 2014-12-11] (Skype Technologies)
R2 vpnagent; C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [558480 2013-10-10] (Cisco Systems, Inc.)
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{361A275E-69DB-4504-822A-BEEB34430698}
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 acsint; C:\WINDOWS\System32\DRIVERS\acsint.sys [40304 2013-10-10] (Cisco Systems, Inc.)
S3 acsmux; C:\WINDOWS\System32\DRIVERS\acsmux.sys [58736 2013-10-10] (Cisco Systems, Inc.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2014-09-14] (Cisco Systems, Inc.) [File not signed]
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1684736 2008-08-06] (Creative)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [96256 2013-07-09] (Advanced Micro Devices)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [114904 2015-01-22] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2006-01-05] (Creative Technology Ltd.)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [100736 2006-04-25] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [34176 2006-02-18] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13056 2006-02-18] (NVIDIA Corporation)
R3 RTL8192cu; C:\WINDOWS\System32\DRIVERS\RTL8192cu.sys [978920 2010-11-17] (Realtek Semiconductor Corporation                           )
R1 SASDIFSV; C:\Programfiler\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Programfiler\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 ctsfm2k; system32\DRIVERS\ctsfm2k.sys [X]
S3 CTUSFSYN; system32\drivers\ctusfsyn.sys [X]
S4 IntelIde; No ImagePath
S3 ossrv; system32\DRIVERS\ctoss2k.sys [X]
S3 P17xfi; system32\drivers\P17xfi.sys [X]
S3 p17xfilt; system32\drivers\p17xfilt.sys [X]
U1 WS2IFSL; No ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-22 20:06 - 2015-01-22 20:06 - 00000000 ____D () C:\FRST
2015-01-22 19:09 - 2015-01-22 19:45 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-22 19:08 - 2015-01-22 19:08 - 00000770 _____ () C:\Documents and Settings\All Users\Skrivebord\Malwarebytes Anti-Malware.lnk
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Programfiler\Malwarebytes Anti-Malware
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Malwarebytes Anti-Malware
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Malwarebytes
2015-01-22 19:08 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-01-22 19:08 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-01-22 19:06 - 2015-01-22 19:56 - 00000000 __RHD () C:\Documents and Settings\Fabian F. Egge\Siste
2015-01-22 19:06 - 2015-01-22 19:06 - 00154342 _____ () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\cc_20150122_190605.reg
2015-01-22 19:03 - 2015-01-22 19:03 - 00000675 _____ () C:\Documents and Settings\All Users\Skrivebord\CCleaner.lnk
2015-01-22 19:03 - 2015-01-22 19:03 - 00000000 ____D () C:\Programfiler\CCleaner
2015-01-22 19:03 - 2015-01-22 19:03 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\CCleaner
2015-01-22 18:55 - 2015-01-22 18:55 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\816b8710000600d
2015-01-22 18:53 - 2015-01-22 18:53 - 00000000 ____D () C:\shoplog
2015-01-22 18:51 - 2015-01-22 18:51 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2015-01-22 18:51 - 2015-01-22 18:51 - 00000000 ____D () C:\Programfiler\predm
2015-01-22 18:50 - 2015-01-22 18:59 - 00000524 _____ () C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 6ba769cc-e797-4d5b-aa86-7ef6bce948fe.job
2015-01-22 18:27 - 2015-01-22 18:27 - 00000364 _____ () C:\WINDOWS\Tasks\APSnotifierPP1.job
2015-01-22 18:27 - 2015-01-22 18:27 - 00000362 _____ () C:\WINDOWS\Tasks\APSnotifierPP3.job
2015-01-22 18:27 - 2015-01-22 18:27 - 00000362 _____ () C:\WINDOWS\Tasks\APSnotifierPP2.job
2015-01-22 18:26 - 2015-01-22 18:26 - 00000000 ____D () C:\WINDOWS\system32\Flash
2015-01-22 18:25 - 2015-01-22 18:25 - 00613057 _____ (CMI Limited) C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\nsr5C.tmp
2015-01-22 18:25 - 2015-01-22 18:25 - 00000000 __SHD () C:\Documents and Settings\Fabian F. Egge\Programdata\AnyProtectEx
2015-01-22 18:23 - 2015-01-22 18:23 - 00076040 _____ () C:\Documents and Settings\LocalService\Lokale innstillinger\Programdata\GDIPFONTCACHEV1.DAT
2015-01-22 18:01 - 2015-01-22 18:01 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Optimizer Pro
2015-01-22 18:00 - 2015-01-22 18:00 - 00000000 ___RD () C:\Documents and Settings\LocalService\Favoritter
2015-01-22 18:00 - 2015-01-22 18:00 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Company
2015-01-22 17:58 - 2015-01-22 18:20 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Skype
2015-01-22 17:58 - 2015-01-22 17:58 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Skype
2015-01-22 17:57 - 2015-01-22 17:57 - 00001874 _____ () C:\Documents and Settings\All Users\Skrivebord\Skype.lnk
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ___RD () C:\Programfiler\Skype
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ____D () C:\Programfiler\Fellesfiler\Skype
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Skype
2015-01-22 17:56 - 2015-01-22 17:57 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Skype
2015-01-21 01:32 - 2015-01-21 01:37 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Klei
2015-01-21 01:31 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-01-21 01:31 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-01-21 01:31 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-01-21 01:31 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-01-21 01:31 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-01-21 01:31 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-01-21 01:31 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-01-21 01:31 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-01-21 01:31 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-01-21 01:31 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-01-21 01:31 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-01-21 01:31 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-01-21 01:31 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-01-21 01:31 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-01-21 01:31 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-01-21 01:31 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-01-21 01:31 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-01-21 01:31 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-01-21 01:31 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-01-21 01:31 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-01-21 01:31 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-01-21 01:31 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-01-21 01:31 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-01-21 01:31 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-01-21 01:31 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-01-21 01:30 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-01-21 01:30 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-01-21 01:30 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-01-21 01:30 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-01-21 01:30 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-01-21 01:30 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-01-21 01:30 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-01-21 01:30 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-01-21 01:30 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-01-21 01:30 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-01-21 01:30 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-01-21 01:30 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-01-21 01:30 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-01-21 01:30 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-01-21 01:30 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-01-21 01:30 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-01-21 01:30 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-01-21 01:30 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-01-21 01:30 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-01-21 01:30 - 2005-12-05 18:07 - 00061136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput9_1_0.dll
2015-01-21 01:30 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-01-21 01:30 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-01-21 01:30 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-01-21 01:30 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-01-18 23:35 - 2015-01-18 23:35 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\LolClient
2015-01-18 23:27 - 2015-01-22 19:45 - 00000000 ____D () C:\Programfiler\Steam
2015-01-18 23:27 - 2015-01-18 23:27 - 00000631 _____ () C:\Documents and Settings\All Users\Skrivebord\Steam.lnk
2015-01-18 23:27 - 2015-01-18 23:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Steam
2015-01-18 23:00 - 2015-01-18 23:00 - 00000000 ____D () C:\Programfiler\PokerStrategy
2015-01-18 21:23 - 2015-01-18 21:23 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Riot Games
2015-01-17 20:00 - 2015-01-17 20:00 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Blizzard
2015-01-17 19:56 - 2015-01-17 19:56 - 00001977 _____ () C:\Documents and Settings\All Users\Skrivebord\PokerStrategy.com Equilab.lnk
2015-01-17 19:56 - 2015-01-17 19:56 - 00000000 ____D () C:\Programfiler\PokerStrategy.com
2015-01-17 19:56 - 2015-01-17 19:56 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Downloaded Installations
2015-01-17 19:56 - 2015-01-17 19:56 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\PokerStrategy.com
2015-01-17 19:55 - 2015-01-17 19:55 - 00001507 _____ () C:\Documents and Settings\All Users\Skrivebord\League of Legends.lnk
2015-01-17 19:55 - 2015-01-17 19:55 - 00000000 ____D () C:\Riot Games
2015-01-17 19:55 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-01-17 19:55 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-01-17 19:53 - 2015-01-17 19:55 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Riot Games
2015-01-17 18:31 - 2015-01-17 18:31 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\cache
2015-01-17 18:30 - 2015-01-18 22:14 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\FullTiltPoker
2015-01-17 18:30 - 2015-01-17 18:30 - 00000779 _____ () C:\Documents and Settings\All Users\Skrivebord\Full Tilt Poker.lnk
2015-01-17 18:30 - 2015-01-17 18:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Full Tilt Poker
2015-01-17 18:29 - 2015-01-18 22:14 - 00000000 ____D () C:\Programfiler\Full Tilt Poker
2015-01-17 18:29 - 2015-01-17 20:00 - 00000000 ____D () C:\Programfiler\Hearthstone
2015-01-17 18:29 - 2015-01-17 18:29 - 00000849 _____ () C:\Documents and Settings\All Users\Skrivebord\Hearthstone.lnk
2015-01-17 18:29 - 2015-01-17 18:29 - 00000000 ____D () C:\Programfiler\Fellesfiler\Blizzard Entertainment
2015-01-17 18:29 - 2015-01-17 18:29 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Hearthstone
2015-01-17 18:28 - 2015-01-20 04:32 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Battle.net
2015-01-17 18:28 - 2015-01-17 18:28 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Battle.net
2015-01-17 18:28 - 2015-01-17 18:28 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Blizzard Entertainment
2015-01-17 18:27 - 2015-01-17 18:27 - 00000812 _____ () C:\Documents and Settings\All Users\Skrivebord\Battle.net.lnk
2015-01-17 18:27 - 2015-01-17 18:27 - 00000000 ____D () C:\Programfiler\Battle.net
2015-01-17 18:27 - 2015-01-17 18:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Battle.net
2015-01-17 18:27 - 2015-01-17 18:27 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Blizzard Entertainment
2015-01-17 18:17 - 2015-01-17 18:17 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Battle.net
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-22 20:07 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Temp
2015-01-22 19:56 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Skrivebord
2015-01-22 19:51 - 2013-08-22 02:11 - 00000260 _____ () C:\WINDOWS\Tasks\WGASetup.job
2015-01-22 19:46 - 2013-08-21 21:08 - 00000000 ____D () C:\Programfiler\SUPERAntiSpyware
2015-01-22 19:46 - 2013-08-21 18:24 - 01582207 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-22 19:45 - 2014-09-14 20:51 - 00000000 _____ () C:\WINDOWS\RTacDbg.txt
2015-01-22 19:45 - 2014-03-23 06:38 - 00000240 _____ () C:\WINDOWS\Tasks\Varsel om avslutning av støtte for Microsoft Windows XP – pålogging.job
2015-01-22 19:45 - 2013-08-21 20:06 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-01-22 19:45 - 2013-08-21 20:06 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-01-22 19:45 - 2013-08-21 20:04 - 00000000 ___RD () C:\Programfiler
2015-01-22 19:45 - 2013-08-21 18:50 - 00000974 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-22 19:45 - 2013-08-21 18:29 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-22 19:42 - 2013-12-13 03:47 - 03997696 _____ () C:\WINDOWS\system32\config\ACVPN.evt
2015-01-22 19:42 - 2013-08-21 18:30 - 00000184 ___SH () C:\Documents and Settings\Fabian F. Egge\ntuser.ini
2015-01-22 19:42 - 2013-08-21 18:29 - 00032542 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-22 19:31 - 2013-08-21 21:37 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\CRE
2015-01-22 19:21 - 2013-08-21 18:50 - 00000978 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-22 19:08 - 2013-08-21 20:04 - 00000000 ___RD () C:\Documents and Settings\All Users\Start-meny\Programmer
2015-01-22 19:08 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\All Users\Skrivebord
2015-01-22 19:06 - 2013-08-25 21:33 - 00000000 ____D () C:\WINDOWS\Minidump
2015-01-22 19:06 - 2013-08-21 21:36 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\uTorrent
2015-01-22 19:06 - 2013-08-21 19:01 - 00000000 __SHD () C:\Documents and Settings\Fabian F. Egge\UserData
2015-01-22 19:06 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter
2015-01-22 19:06 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge
2015-01-22 19:05 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer
2015-01-22 19:04 - 2013-08-21 18:51 - 00000000 ___HD () C:\Programfiler\InstallShield Installation Information
2015-01-22 18:59 - 2013-08-21 18:29 - 00000000 ____D () C:\Documents and Settings\LocalService\Lokale innstillinger\Temp
2015-01-22 18:52 - 2013-11-27 20:32 - 00000000 ____D () C:\Programfiler\MathType
2015-01-22 18:30 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Oppstart
2015-01-22 18:23 - 2013-08-21 18:24 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2015-01-22 18:23 - 2001-10-09 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-22 18:00 - 2013-12-27 01:03 - 00000919 _____ () C:\Documents and Settings\All Users\Start-meny\Programmer\Mozilla Firefox.lnk
2015-01-22 18:00 - 2013-08-21 18:30 - 00000994 _____ () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Internet Explorer.lnk
2015-01-22 18:00 - 2013-08-21 18:29 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-01-22 17:57 - 2013-08-21 20:04 - 00000000 ____D () C:\Programfiler\Fellesfiler
2015-01-22 17:43 - 2014-01-27 00:56 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-21 01:30 - 2013-08-21 18:53 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-01-18 15:30 - 2013-08-22 14:47 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Dropbox
2015-01-18 15:28 - 2013-08-22 14:45 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox
2015-01-18 15:27 - 2013-08-22 14:47 - 00001026 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Dropbox.lnk
2015-01-18 15:27 - 2013-08-22 14:45 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Dropbox
2015-01-18 15:25 - 2013-08-21 21:23 - 00076040 _____ () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\GDIPFONTCACHEV1.DAT
2015-01-18 15:21 - 2013-08-21 20:02 - 00292480 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-18 02:02 - 2013-09-02 20:00 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Microsoft Help
2015-01-18 01:59 - 2013-08-21 19:40 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-17 18:43 - 2014-01-27 00:56 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-17 18:43 - 2014-01-27 00:56 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-17 18:14 - 2013-08-21 20:04 - 01221642 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-17 18:14 - 2001-10-09 13:00 - 00507368 _____ () C:\WINDOWS\system32\perfh014.dat
2015-01-17 18:14 - 2001-10-09 13:00 - 00100296 _____ () C:\WINDOWS\system32\perfc014.dat
2014-12-31 13:15 - 2013-08-21 19:40 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
 
==================== Files in the root of some directories =======
2013-09-11 22:40 - 2014-06-05 16:25 - 0133120 _____ () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-22 18:25 - 2015-01-22 18:25 - 0613057 _____ (CMI Limited) C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\nsr5C.tmp
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================

 

 

Link to post
Share on other sites

2nd addition log:

 

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 19-01-2015
Ran by Fabian F. Egge at 2015-01-22 20:07:28
Running from C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.8.0.870 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Norsk (HKLM\...\{AC76BA86-7AD7-1044-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{D60ED057-BA8E-313A-8313-3C2DCCDA7D92}) (Version: 8.0.891.0 - Advanced Micro Devices, Inc.)
Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Apple-programsupport (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
ATI Catalyst Control Center (HKLM\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.009.0918.2131 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.66-090918a-088537C - )
ATI HYDRAVISION (HKLM\...\{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}) (Version: 3.25.0006 - )
Audacity 2.0.4 (HKLM\...\Audacity_is1) (Version: 2.0.4 - Audacity Team)
Battle.net (HKLM\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Cisco AnyConnect Secure Mobility Client  (HKLM\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.04072 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (Version: 3.1.04072 - Cisco Systems, Inc.) Hidden
Don't Starve (HKLM\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Together Beta (HKLM\...\Steam App 322330) (Version:  - Klei Entertainment)
Dropbox (HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Dropbox) (Version: 3.0.5 - Dropbox, Inc.)
Full Tilt Poker (HKLM\...\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}) (Version: 5.26.2.WIN.FullTilt.COM - )
Google Chrome (HKLM\...\{CBD486B9-01C2-3412-8BAA-1C20A5A58EAC}) (Version: 65.130.49209 - Google, Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Hearthstone (HKLM\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hurtigreparasjon for Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Hurtigreparasjon for Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Hurtigreparasjon for Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
HydraVision (Version: 4.2.242.0 - Advanced Micro Devices, Inc.) Hidden
iTunes (HKLM\...\{9B486871-27EB-49A5-8832-77176E63333C}) (Version: 11.0.5.5 - Apple Inc.)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version:  - )
League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware versjon 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Norwegian Language Pack (HKLM\...\{3EAC35F4-FF26-4123-9404-0B5B93DAB570}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 2.0 Language Pack - NOR (HKLM\...\Microsoft .NET Framework 2.0 Language Pack - NOR) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile NOR Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile NOR Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended NOR Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended NOR Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Base Smart Card Cryptographic Service Provider-pakke (HKLM\...\KB909520) (Version:  - Microsoft Corporation)
Microsoft Mathematics Add-in (32-bit) (HKLM\...\{E2C98732-F973-4985-A9C5-DC06178E16EE}) (Version: 2.0.040811.01 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM\...\Office14.PRJPRO) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 nb-NO) (HKLM\...\Mozilla Firefox 29.0.1 (x86 nb-NO)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
Oppdatering for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2492386) (HKLM\...\KB2492386) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Oppdatering for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2808679) (HKLM\...\KB2808679) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Oppdatering for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
PokerStrategy.com Equilab (HKLM\...\{86D09F48-CDAB-4B4C-8806-F6C16F17935A}) (Version: 1.2.8.0 - PokerStrategy.com)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5904 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM\...\{9C049499-055C-4a0c-A916-1D12314F45EB}) (Version: 1.00.0174 - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPRO_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Sikkerhetsoppdatering for Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2618444) (HKLM\...\KB2618444-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2744842) (HKLM\...\KB2744842-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2862772) (HKLM\...\KB2862772-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2870699) (HKLM\...\KB2870699-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2879017) (HKLM\...\KB2879017-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2888505) (HKLM\...\KB2888505-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2898785) (HKLM\...\KB2898785-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2925418) (HKLM\...\KB2925418-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB2803821) (HKLM\...\KB2803821_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB2803821-v2) (HKLM\...\KB2803821-v2_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB952069) (HKLM\...\KB952069_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB954155) (HKLM\...\KB954155_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB973540) (HKLM\...\KB973540_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2510581) (Version: 1 - Microsoft Corporation) Hidden
Sikkerhetsoppdatering for Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2862772) (Version: 1 - Microsoft Corporation) Hidden
Sikkerhetsoppdatering for Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2876315) (HKLM\...\KB2876315) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB923789) (HKLM\...\KB923789) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB975713) (Version: 1 - Microsoft Corporation) Hidden
Sikkerhetsoppdatering for Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
SketchUp 8 (HKLM\...\{8EB62C87-AAA6-4850-A5BC-64155884B973}) (Version: 3.0.16846 - Trimble Navigation Limited)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.6.1032 - SUPERAntiSpyware.com)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
VLC media player 2.1.2 (HKLM\...\VLC media player) (Version: 2.1.2 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Widevine Media Optimizer Chrome 6.0.0 (HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\optimizer_chrome) (Version: 6.0.0.12442 - Widevine Technologies)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version:  - Microsoft Corporation)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
 
==================== Restore Points  =========================
 
17-01-2015 19:55:01 Installerte Microsoft Visual C++ 2005 Redistributable
17-01-2015 19:55:15 Installed League of Legends
17-01-2015 19:55:34 Installed DirectX
17-01-2015 19:56:34 Installed PokerStrategy.com Equilab.
18-01-2015 01:50:13 Software Distribution Service 3.0
18-01-2015 23:01:05 Installerte ICM Trainer
19-01-2015 02:57:55 Software Distribution Service 3.0
20-01-2015 04:50:51 Kontrollpunkt for system
21-01-2015 01:30:17 Installed DirectX
21-01-2015 01:32:12 Installed DirectX
21-01-2015 01:37:28 Installed DirectX
21-01-2015 01:47:37 Installed DirectX
22-01-2015 03:00:21 Software Distribution Service 3.0
22-01-2015 19:04:43 Removed M-Audio Series II MIDI
22-01-2015 19:05:21 Fjernet ICM Trainer
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2001-10-09 13:00 - 2001-10-09 13:00 - 00000722 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Programfiler\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Programfiler\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Programfiler\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Programfiler\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Programfiler\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Programfiler\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 6ba769cc-e797-4d5b-aa86-7ef6bce948fe.job => C:\Programfiler\SUPERAntiSpyware\SASTask.exe
Task: C:\WINDOWS\Tasks\Varsel om avslutning av støtte for Microsoft Windows XP – månedlig.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Varsel om avslutning av støtte for Microsoft Windows XP – pålogging.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\WGASetup.job => C:\WINDOWS\system32\KB905474\wgasetup.exe
 
==================== Loaded Modules (whitelisted) =============
 
2013-10-10 22:48 - 2013-10-10 22:48 - 00063376 _____ () C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2013-04-21 20:44 - 2013-04-21 20:44 - 00087952 _____ () C:\Programfiler\Fellesfiler\Apple\Apple Application Support\zlib1.dll
2013-04-21 20:44 - 2013-04-21 20:44 - 01242952 _____ () C:\Programfiler\Fellesfiler\Apple\Apple Application Support\libxml2.dll
2015-01-18 23:29 - 2014-12-01 22:31 - 02396672 _____ () C:\Programfiler\Steam\libavcodec-56.dll
2015-01-18 23:29 - 2014-12-01 22:31 - 00442880 _____ () C:\Programfiler\Steam\libavutil-54.dll
2015-01-18 23:29 - 2014-12-01 22:31 - 00479744 _____ () C:\Programfiler\Steam\libavformat-56.dll
2015-01-18 23:29 - 2014-12-01 22:31 - 00332800 _____ () C:\Programfiler\Steam\libavresample-2.dll
2015-01-18 23:29 - 2014-11-11 19:47 - 00774656 _____ () C:\Programfiler\Steam\SDL2.dll
2015-01-21 01:35 - 2014-12-02 01:29 - 05002752 _____ () C:\Programfiler\Steam\v8.dll
2015-01-21 01:35 - 2014-12-02 01:29 - 01612800 _____ () C:\Programfiler\Steam\icui18n.dll
2015-01-21 01:35 - 2014-12-02 01:29 - 01210368 _____ () C:\Programfiler\Steam\icuuc.dll
2015-01-18 23:29 - 2015-01-19 19:49 - 02227904 _____ () C:\Programfiler\Steam\video.dll
2015-01-18 23:29 - 2014-12-01 22:31 - 00485888 _____ () C:\Programfiler\Steam\libswscale-3.dll
2015-01-18 23:29 - 2015-01-19 19:49 - 00696000 _____ () C:\Programfiler\Steam\bin\chromehtml.dll
2014-09-14 20:46 - 2009-12-09 20:20 - 00126976 _____ () C:\Programfiler\Realtek\11n USB Wireless LAN Utility\EnumDevLib.dll
2014-09-14 20:46 - 2007-07-12 10:11 - 01163264 _____ () C:\Programfiler\Realtek\11n USB Wireless LAN Utility\acAuth.dll
2015-01-18 23:29 - 2015-01-16 00:42 - 34641288 _____ () C:\Programfiler\Steam\bin\libcef.dll
2008-04-14 08:22 - 2008-04-14 08:22 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2015-01-17 18:27 - 2015-01-09 01:35 - 09009480 _____ () C:\Programfiler\Google\Chrome\Application\39.0.2171.99\pdf.dll
2015-01-17 18:27 - 2015-01-09 01:35 - 01677128 _____ () C:\Programfiler\Google\Chrome\Application\39.0.2171.99\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-73586283-1682526488-1417001333-500 - Administrator - Enabled)
ASPNET (S-1-5-21-73586283-1682526488-1417001333-1004 - Limited - Enabled)
Fabian F. Egge (S-1-5-21-73586283-1682526488-1417001333-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Fabian F. Egge
Gjest (S-1-5-21-73586283-1682526488-1417001333-501 - Limited - Disabled)
Hjelpeassistent (S-1-5-21-73586283-1682526488-1417001333-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-73586283-1682526488-1417001333-1002 - Limited - Disabled)
 
==================== Faulty Device Manager Devices =============
 
Name: PCI Device
Description: PCI Device
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Lydkontroller for multimedia
Description: Lydkontroller for multimedia
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: 
Description: 
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (01/22/2015 06:48:50 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: The server name or address could not be resolved
 
Error: (01/22/2015 06:48:44 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: Denne nettverkstilkoblingen finnes ikke.
 
Error: (01/22/2015 06:48:30 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: Denne nettverkstilkoblingen finnes ikke.
 
Error: (01/22/2015 06:48:30 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: The server name or address could not be resolved
 
Error: (01/22/2015 06:47:59 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: Denne nettverkstilkoblingen finnes ikke.
 
Error: (01/22/2015 06:47:59 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: Denne nettverkstilkoblingen finnes ikke.
 
Error: (01/22/2015 06:47:58 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: Denne nettverkstilkoblingen finnes ikke.
 
Error: (01/22/2015 06:47:58 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: Denne nettverkstilkoblingen finnes ikke.
 
Error: (01/22/2015 06:47:58 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: Denne nettverkstilkoblingen finnes ikke.
 
Error: (01/22/2015 06:47:56 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Kan ikke automatisk oppdatere henting av tredjeparts rotlistesekvensnummer fra: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>med feil: Denne nettverkstilkoblingen finnes ikke.
 
 
System errors:
=============
Error: (01/22/2015 07:45:53 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra tjenesten MBAMService.
 
Error: (01/22/2015 06:59:08 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Følgende oppstarts- eller systemstartsdriver(e) kan ikke lastes inn: 
cherimoya
wpnfd_1_10_0_6
 
Error: (01/22/2015 06:55:47 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten MSIServer med argument ""
for å kunne kjøre server: 
{000C101C-0000-0000-C000-000000000046}
 
Error: (01/22/2015 06:55:07 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten BITS med argument ""
for å kunne kjøre server: 
{4991D34B-80A1-4291-83B6-3328366B9097}
 
Error: (01/22/2015 06:55:07 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten BITS med argument ""
for å kunne kjøre server: 
{4991D34B-80A1-4291-83B6-3328366B9097}
 
Error: (01/22/2015 06:54:40 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten MSIServer med argument ""
for å kunne kjøre server: 
{000C101C-0000-0000-C000-000000000046}
 
Error: (01/22/2015 06:53:39 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten netman med argument ""
for å kunne kjøre server: 
{BA126AE5-2166-11D1-B1D0-00805FC1270E}
 
Error: (01/22/2015 06:53:28 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten netman med argument ""
for å kunne kjøre server: 
{BA126AE5-2166-11D1-B1D0-00805FC1270E}
 
Error: (01/22/2015 06:51:36 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten MSIServer med argument ""
for å kunne kjøre server: 
{000C101C-0000-0000-C000-000000000046}
 
Error: (01/22/2015 06:51:29 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten MSIServer med argument ""
for å kunne kjøre server: 
{000C101C-0000-0000-C000-000000000046}
 
 
Microsoft Office Sessions:
=========================
Error: (01/22/2015 06:48:50 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:48:44 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:48:30 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:48:30 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:47:59 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:47:59 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:47:58 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:47:58 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:47:58 PM) (Source: crypt32) (EventID: 8) (User: )
 
Error: (01/22/2015 06:47:56 PM) (Source: crypt32) (EventID: 8) (User: )
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core2 CPU 4300 @ 1.80GHz
Percentage of memory in use: 58%
Total physical RAM: 2046.48 MB
Available physical RAM: 852.28 MB
Total Pagefile: 3939.27 MB
Available Pagefile: 2834.14 MB
Total Virtual: 2047.88 MB
Available Virtual: 1943.57 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:465.75 GB) (Free:390.19 GB) NTFS ==>[Drive with boot components (Windows XP)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
Link to post
Share on other sites

Detailed version:

 

Went to dl spotify and mistyped site in a hurry and dl/opened the file. Superantispyware-program shows infection warning, and suddenly computer slows down and dls several unauthorized programs to the desktop aswell as internetbrowser popups with unknown sites - in other words backdoor infection..? Since I have some experience with failing im pretty sure i havent solved the problem although ive tried to run malwarebytes and allegedly quarantined/removed the virus, so further assistance is needed and appreciated :)

 

Please let me know if there is anything else you need to know

Link to post
Share on other sites

Hello and welcome!

I'm Radek and I'll try to help you with your issue.

Before we start please note the following:

  • Analysis and research take some time, also sometimes real life gets in the way, please be patient.
  • Limit your internet access to posting here, some infections just wait to steal typed-in passwords.
  • Don't run any scripts or tools on your own, unsupervised usage may cause more harm than good.
  • Paste the logs in your posts, attachments make my work harder and more complicated.
  • Stay with me to the end, the absence of symtoms doesn't mean that your machine is fully operational.
  • Note that we may live in totally different time zones, what may cause some delays between answers.
I can't foresee everything, so if anything unexpected happens, please stop and inform me!

There are no silly questions. Never be afraid to ask if in doubt!

warning.gif Rules and policies

We won't support any piracy.

That being told, if any evidence of illegal OS, software, cracks/keygens or any other will be revealed, any further assistance will be suspended. If you are aware that there is this kind of stuff on your machine, remove it before proceeding!

The same applies to any use of P2P software: uTorrent, BitTorrent, Vuze, Kazaa, Ares... We don't provide any help for P2P, except for their removal. All P2P software has to be uninstalled or at least fully disabled before proceeding!

Failure to follow these guidelines will result with closing your topic and withdrawning any assistance.


51a46ae42d560-malwarebytes_anti_malware. Scan with Malwarebytes' Anti-Malware

Please download and install Malwarebytes Anti-Malware, or re-run it if you already have it installed.

  • First of all select update.
  • Once updated, click the Settings tab, in the left panel choose Detctions & protection and tick Scan for rootkits.
  • Click the Scan tab, choose Threat Scan is checked and click Scan Now.
  • If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
  • Upon completion of the scan (or after the reboot), click the History tab.
  • Click Application Logs and double-click the Scan Log.
  • At the bottom click Export and choose Text file.
Save the file to your desktop and include its content in your next reply.

51a612a8b27e2-Zoek.png Scan with ZOEK

Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)

Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

  • Right-click on 51a612a8b27e2-Zoek.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Wait patiently until the main console will appear, it may take a minute or two.
  • In the main box please paste in the following script:

    createsrpoint;process;drivers-services-list;systemspecs;startupall;skipfix-iedefaults;firefoxlook;chromelook;filesrcm;installedprogs;
  • Make sure that Scan All Users option is checked.
  • Push Run Script and wait patiently. The scan may take a couple of minutes.
  • When the scan completes, a zoek-results logfile should open in notepad.
  • If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)
Please include its content in your next reply.

Don't forget to re-enable your switched-off protection software!

Link to post
Share on other sites

Hey, malwarebytes turned up empty, no threats found since I previously removed these threats earlier. However this has been with another anti-spyware client running in the background (Superantispyware) and I keep them both running at the same time. Should I only have one of them running at the same time to avoid interferance? 

 

Otherwise I've done as instructed. 

 

Also, had some problems with posting the log, so I'll post it in two different replies. 

Link to post
Share on other sites

Killing time.

JRTbythisisu.png Fix with Junkware Removal Tool

Please download JRT by Thisisu and save the file to your desktop.

Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

  • Right-click on JRTbythisisu.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Follow the prompts and let this process run uninterrupted.
  • This scan can take a while, depending on your System specs.
  • Upon completion, a log (JRT.txt) will open on your desktop.
Please include the contents of that file in your reply.

Do not forget to re-enable your previously switched off protection software!

Please also manually reboot your machine after this procedure.

adwcleaner_new.png Fix with AdwCleaner

Please download AdwCleaner by Xplode and save the file to your desktop.

  • Right-click on adwcleaner_new.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • The program will begin to update the database (if internet connection is operational). Please wait a little bit.
  • Follow the prompts and click Scan.
  • When finished, please click Clean.
  • Upon completion, click Report. A log (AdwCleaner[s*].txt) will open.
Please include the contents of that file in your reply.
Link to post
Share on other sites

Upon completing JRT scan and manually restarting, the only thing showing was my desktop background.

 

After attempting to remove the explorer.exe process in taskmanager and launching the same .exefile again still nothing happened. 

Through taskmanager I restarted the system and the desktop now shows, although the screen suddenly turns off as if the pc was restarting yet again. Upon restarting again, everything started up normally although a warning message showed the pc restored after a serious error. (oops, was I supposed to turn off system restore?)

 

Attempting to AdwCleaner. 

JRT log.txt

Link to post
Share on other sites

AdwCleaner log: 

 

# AdwCleaner v4.109 - Report created 26/01/2015 at 16:57:07
# Updated 24/01/2015 by Xplode
# Database : 2015-01-25.1 [Live]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Fabian F. Egge - FABIANE
# Running from : C:\Documents and Settings\Fabian F. Egge\Skrivebord\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Conduit
Folder Deleted : C:\Documents and Settings\Fabian F. Egge\Programdata\AnyProtectEx
Folder Deleted : C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Optimizer Pro
 
***** [ Scheduled Tasks ] *****
 
 
***** [ Shortcuts ] *****
 
Shortcut Disinfected : C:\Documents and Settings\All Users\Start-meny\Programmer\Mozilla Firefox.lnk
Shortcut Disinfected : C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Internet Explorer.lnk
Shortcut Disinfected : C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Tilbehør\Systemverktøy\Internet Explorer (ingen tillegg).lnk
Shortcut Disinfected : C:\Documents and Settings\Fabian F. Egge\Programdata\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
Shortcut Disinfected : C:\Documents and Settings\Fabian F. Egge\Programdata\Microsoft\Internet Explorer\Quick Launch\Start Internet Explorer-leseren.lnk
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E4C3E50F-5761-4BF8-95A0-939A819DF1C3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9AE7A6AE-162E-44C4-9A2B-A6B4EF19909D}
Key Deleted : HKCU\Software\AnyProtect
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\PepperZip
Key Deleted : HKCU\Software\Tutorials
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Tutorials
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
 
-\\ Mozilla Firefox v29.0.1 (nb-NO)
 
[t4yyb141.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename", "omiga-plus");
[t4yyb141.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine", "omiga-plus");
 
-\\ Google Chrome v40.0.2214.91
 
 
*************************
 
AdwCleaner[R0].txt - [1978 octets] - [26/01/2015 16:52:08]
AdwCleaner[s0].txt - [2604 octets] - [26/01/2015 16:57:07]
 
########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2664 octets] ##########
Link to post
Share on other sites

Something strange is going on here.

FRST.gif Scan with Farbar Recovery Scan Tool

Please re-run Farbar Recovery Scan Tool.

  • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.

    > XP users click run after receipt of Windows Security Warning - Open File.

    > 8 users will be prompted about Windows SmartScreen protection - click More information and Run.

  • Make sure that Addition option is checked.
  • Press Scan button and wait.
  • The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.
Please include their content in your next reply.

51a5d669693dd-icon_OTL.png Scan with OTL

Please download OTL by OldTimer and save the file to your desktop.

  • Right-click on 51a5d669693dd-icon_OTL.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Make sure that Scan All Users, LOP check and Purity check are ticked.
  • For 64-bit systems only - make sure that Include 64-bit option is also ticked.
  • Sections Processes, Modules, Services, Drivers, Standard Registry are set to Use Safelist.
  • Section Extra Registry is also set to Use Safelist.
  • Push Run Scan and wait patiently.
  • Two notepad windows will be opened after this run: OTL.txt (maximized) and Extras.txt (minimized).
Please include the content of both logfiles in your next reply.
Link to post
Share on other sites

FRTS.txt:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-01-2015 01
Ran by Fabian F. Egge (administrator) on FABIANE on 26-01-2015 21:14:21
Running from C:\Documents and Settings\Fabian F. Egge\Skrivebord
Loaded Profiles: Fabian F. Egge & postgres (Available profiles: Fabian F. Egge & postgres)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Norsk (bokmål)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Cisco Systems, Inc.) C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(SUPERAntiSpyware.com) C:\Programfiler\SUPERAntiSpyware\SASCORE.EXE
(Apple Inc.) C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Programfiler\Bonjour\mDNSResponder.exe
(Oracle Corporation) C:\Programfiler\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Programfiler\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Programfiler\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Programfiler\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Apple Inc.) C:\Programfiler\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe
(Cisco Systems, Inc.) C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Spotify Ltd) C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\Data\SpotifyWebHelper.exe
(Realtek Semiconductor Corp.) C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
(Apple Inc.) C:\Programfiler\iPod\bin\iPodService.exe
(Oracle Corporation) C:\Programfiler\Fellesfiler\Java\Java Update\jucheck.exe
(SUPERAntiSpyware) C:\Programfiler\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18671104 2009-07-29] (Realtek Semiconductor Corp.)
HKLM\...\Run: [APSDaemon] => C:\Programfiler\Fellesfiler\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Programfiler\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Programfiler\Fellesfiler\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707984 2013-10-10] (Cisco Systems, Inc.)
HKLM\...\Run: [P17Helper] => Rundll32 SPIRun.dll,RunDLLEntry
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Run: [spotify Web Helper] => C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-18] (Spotify Ltd)
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Run: [sUPERAntiSpyware] => C:\Programfiler\SUPERAntiSpyware\SUPERAntiSpyware.exe [6699800 2015-01-22] (SUPERAntiSpyware)
Startup: C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart\REALTEK 11n USB Wireless LAN Utility.lnk
ShortcutTarget: REALTEK 11n USB Wireless LAN Utility.lnk -> C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: [s-1-5-21-73586283-1682526488-1417001333-1005] ATTENTION ==> Default URLSearchHook is missing.
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-73586283-1682526488-1417001333-1005 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programfiler\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Programfiler\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Programfiler\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programfiler\Fellesfiler\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
ShellExecuteHooks: Binding for URL-initialisering - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\system32\shell32.dll [8468992 2012-06-08] (Microsoft Corporation)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Programfiler\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
Winsock: Catalog5 04 C:\Programfiler\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Programfiler\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Programfiler\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Programfiler\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Programfiler\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Programfiler\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Programfiler\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Programfiler\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\bok-NO.xml
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\gulesider-NO.xml
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\qxl-NO.xml
FF Extension: Zoom It - C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\Extensions\{83e02f0a-1694-3889-c714-122520abd078} [2015-01-22]
FF Extension: Media Hint - C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\Extensions\mediahint@jetpack.xpi [2013-12-27]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-08-22]
StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR StartupUrls: Profile 1 -> "https://www.google.com/"
CHR Profile: C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Wallet) - C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-22]
StartMenuInternet: chrome.exe - Chrome.exe
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Programfiler\SUPERAntiSpyware\SASCORE.EXE [142648 2014-08-13] (SUPERAntiSpyware.com)
R2 Apple Mobile Device; C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008 2012-12-21] (Apple Inc.)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2009-09-18] () [File not signed]
R2 Bonjour Service; C:\Programfiler\Bonjour\mDNSResponder.exe [390504 2011-08-30] (Apple Inc.)
S2 gupdate; C:\Programfiler\Google\Update\GoogleUpdate.exe [116648 2013-08-21] (Google Inc.)
S3 gupdatem; C:\Programfiler\Google\Update\GoogleUpdate.exe [116648 2013-08-21] (Google Inc.)
R3 iPod Service; C:\Programfiler\iPod\bin\iPodService.exe [553288 2013-08-16] (Apple Inc.)
R2 JavaQuickStarterService; C:\Programfiler\Java\jre7\bin\jqs.exe [182696 2013-12-18] (Oracle Corporation)
R2 MBAMScheduler; C:\Programfiler\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Programfiler\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 MozillaMaintenance; C:\Programfiler\Mozilla Maintenance Service\maintenanceservice.exe [119408 2014-05-09] (Mozilla Foundation)
S3 ose; C:\Programfiler\Fellesfiler\Microsoft Shared\Source Engine\OSE.EXE [149352 2010-01-09] (Microsoft Corporation)
S3 osppsvc; C:\Programfiler\Fellesfiler\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [4640000 2010-01-09] (Microsoft Corporation)
S2 SkypeUpdate; C:\Programfiler\Skype\Updater\Updater.exe [315496 2014-12-11] (Skype Technologies)
R2 vpnagent; C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [558480 2013-10-10] (Cisco Systems, Inc.)
R2 postgresql-9.0; C:/Programfiler/PostgreSQL/9.0/bin/pg_ctl.exe runservice -N "postgresql-9.0" -D "C:/Programfiler/PostgreSQL/9.0/data" -w [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 acsint; C:\WINDOWS\System32\DRIVERS\acsint.sys [40304 2013-10-10] (Cisco Systems, Inc.)
S3 acsmux; C:\WINDOWS\System32\DRIVERS\acsmux.sys [58736 2013-10-10] (Cisco Systems, Inc.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2014-09-14] (Cisco Systems, Inc.) [File not signed]
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1684736 2008-08-06] (Creative)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [96256 2013-07-09] (Advanced Micro Devices)
R3 CTUSFSYN; C:\WINDOWS\System32\drivers\ctusfsyn.sys [162176 2006-08-07] (Creative Technology Ltd.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [114904 2015-01-26] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2006-01-05] (Creative Technology Ltd.)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [100736 2006-04-25] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [34176 2006-02-18] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13056 2006-02-18] (NVIDIA Corporation)
S3 P17xfi; C:\WINDOWS\System32\drivers\P17xfi.sys [1174528 2007-11-21] (Creative Technology Ltd.)
S3 p17xfilt; C:\WINDOWS\System32\drivers\p17xfilt.sys [1664384 2007-10-10] (Creative)
R3 RTL8192cu; C:\WINDOWS\System32\DRIVERS\RTL8192cu.sys [978920 2010-11-17] (Realtek Semiconductor Corporation                           )
R1 SASDIFSV; C:\Programfiler\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Programfiler\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S4 IntelIde; No ImagePath
U1 WS2IFSL; No ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-26 21:14 - 2015-01-26 21:14 - 00015791 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST.txt
2015-01-26 21:14 - 2015-01-26 21:14 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST-OlderVersion
2015-01-26 20:47 - 2015-01-26 20:47 - 00001601 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\PokerStars.lnk
2015-01-26 20:47 - 2015-01-26 20:47 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\PokerStars
2015-01-26 20:45 - 2015-01-26 21:04 - 00000000 ____D () C:\Programfiler\PokerStars
2015-01-26 19:29 - 2015-01-26 19:29 - 00004968 _____ () C:\Documents and Settings\All Users\Programdata\lrbivjdu.eai
2015-01-26 18:15 - 2015-01-26 18:15 - 00094208 _____ () C:\WINDOWS\Minidump\Mini012615-02.dmp
2015-01-26 17:56 - 2015-01-26 17:56 - 00000061 _____ () C:\WINDOWS\sbwin.ini
2015-01-26 17:22 - 2015-01-26 17:22 - 00413696 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2015-01-26 17:22 - 2015-01-26 17:22 - 00102400 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2015-01-26 17:22 - 2008-03-03 11:54 - 00023273 _____ () C:\WINDOWS\system32\Ludap17.ini
2015-01-26 17:22 - 2007-09-12 14:11 - 00765952 _____ (Creative Labs Inc.) C:\WINDOWS\OALInst.exe
2015-01-26 17:22 - 2007-07-02 11:45 - 00000990 _____ () C:\WINDOWS\SB0790.reg
2015-01-26 17:22 - 2007-07-02 11:45 - 00000986 _____ () C:\WINDOWS\SB0792.reg
2015-01-26 17:22 - 2006-08-07 19:30 - 00162176 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctusfsyn.sys
2015-01-26 17:22 - 2005-12-08 11:54 - 00142336 _____ (Creative Technology Ltd) C:\WINDOWS\system32\Drivers\ctsfm2k.sys
2015-01-26 17:22 - 2005-12-08 11:54 - 00120832 _____ (Creative Technology Ltd) C:\WINDOWS\system32\sfms32.dll
2015-01-26 17:22 - 2005-12-08 11:54 - 00114688 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctoss2k.sys
2015-01-26 17:22 - 2005-12-08 11:54 - 00021504 _____ (Creative Technology Ltd) C:\WINDOWS\system32\sfman32.dll
2015-01-26 17:22 - 2005-04-22 11:27 - 00073728 _____ (Creative Technology Ltd) C:\WINDOWS\MIDIDEF.EXE
2015-01-26 17:22 - 2005-03-08 14:17 - 00000054 _____ () C:\WINDOWS\system32\ctzapxx.ini
2015-01-26 17:22 - 2003-07-24 12:17 - 04174814 _____ () C:\WINDOWS\system32\ct4mgm.sf2
2015-01-26 17:22 - 2003-04-11 10:26 - 00000059 _____ () C:\WINDOWS\system32\default4.sfm
2015-01-26 17:21 - 2008-03-18 17:02 - 22833304 _____ (Creative Technology Ltd) C:\WINDOWS\system32\AppSetup.exe
2015-01-26 17:21 - 2007-11-21 17:06 - 01174528 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\P17xfi.sys
2015-01-26 17:21 - 2007-05-08 08:59 - 00137216 _____ () C:\WINDOWS\system32\OemSpi.dll
2015-01-26 17:21 - 2006-08-23 18:47 - 00008251 _____ () C:\WINDOWS\sfsyn.ini
2015-01-26 17:21 - 2006-07-03 12:55 - 00053248 _____ (Creative Technology Ltd.) C:\WINDOWS\resdef.exe
2015-01-26 17:21 - 2006-07-03 12:43 - 00010752 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\SPIRun.dll
2015-01-26 17:21 - 2006-06-02 11:08 - 00197632 _____ (Creative Technology Ltd) C:\WINDOWS\SF32.exe
2015-01-26 17:21 - 2006-01-25 14:55 - 00137728 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\P17res.dll
2015-01-26 17:21 - 2005-06-15 11:07 - 00011264 _____ (Creative Technology Limited) C:\WINDOWS\InRes.DLL
2015-01-26 17:21 - 2004-12-22 19:58 - 00008704 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\Pfmodnt.sys
2015-01-26 17:21 - 2003-10-02 18:48 - 00053248 _____ () C:\WINDOWS\system32\P17CPI.dll
2015-01-26 17:21 - 2003-04-02 07:13 - 00139264 _____ (Creative Technology Ltd) C:\WINDOWS\system32\EAX.DLL
2015-01-26 16:52 - 2015-01-26 16:57 - 00000000 ____D () C:\AdwCleaner
2015-01-26 16:35 - 2015-01-26 16:35 - 00094208 _____ () C:\WINDOWS\Minidump\Mini012615-01.dmp
2015-01-26 16:17 - 2015-01-26 16:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2015-01-26 16:15 - 2015-01-26 16:15 - 02194432 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\AdwCleaner.exe
2015-01-26 16:14 - 2015-01-26 16:14 - 01707939 _____ (Thisisu) C:\Documents and Settings\Fabian F. Egge\Skrivebord\JRT (1).exe
2015-01-26 15:08 - 2015-01-26 15:13 - 00305468 _____ () C:\zoek-results.log
2015-01-26 15:02 - 2015-01-26 15:02 - 00000000 ____D () C:\zoek_backup
2015-01-26 15:01 - 2015-01-26 15:01 - 01295360 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\zoek.exe
2015-01-26 01:15 - 2015-01-26 17:36 - 00009362 _____ () C:\WINDOWS\setupapi.log
2015-01-25 18:28 - 2015-01-26 18:02 - 00000184 ___SH () C:\Documents and Settings\postgres\ntuser.ini
2015-01-25 18:28 - 2015-01-25 18:28 - 00000000 ____D () C:\Documents and Settings\postgres
2015-01-25 18:28 - 2015-01-25 18:28 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\PostgreSQL 9.0
2015-01-25 18:28 - 2013-09-04 02:08 - 00000000 ____D () C:\Documents and Settings\postgres\Lokale innstillinger\Programdata\Microsoft Help
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___RD () C:\Documents and Settings\postgres\Start-meny\Programmer\Oppstart
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___RD () C:\Documents and Settings\postgres\Start-meny
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\Skrivere
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\Siste
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\Lokale innstillinger\Logg
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\Lokale innstillinger
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\AndrMask
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\postgres\Skrivebord
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\postgres\Mine dokumenter
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\postgres\Lokale innstillinger\Temp
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\postgres\Favoritter
2015-01-25 18:28 - 2013-08-21 19:01 - 00000000 ___RD () C:\Documents and Settings\postgres\Start-meny\Programmer
2015-01-25 18:28 - 2013-08-21 18:51 - 00000000 ____D () C:\Documents and Settings\postgres\Programdata\Macromedia
2015-01-25 18:28 - 2013-08-21 18:25 - 00001599 _____ () C:\Documents and Settings\postgres\Start-meny\Programmer\Fjernhjelp.lnk
2015-01-25 18:28 - 2013-08-21 18:25 - 00000000 ___RD () C:\Documents and Settings\postgres\Start-meny\Programmer\Tilbehør
2015-01-25 18:28 - 2013-08-21 18:22 - 00000000 ___HD () C:\Documents and Settings\postgres\Maler
2015-01-25 18:26 - 2015-01-25 18:26 - 00000000 ____D () C:\Programfiler\PostgreSQL
2015-01-25 18:21 - 2015-01-26 20:25 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\PokerTracker 4
2015-01-25 18:21 - 2015-01-25 18:21 - 00004946 _____ () C:\Documents and Settings\All Users\Programdata\flwjycbm.bab
2015-01-25 16:33 - 2015-01-25 16:33 - 00000742 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\PokerTracker 4.lnk
2015-01-25 16:33 - 2015-01-25 16:33 - 00000000 ____D () C:\Programfiler\PokerTracker 4
2015-01-25 16:33 - 2015-01-25 16:33 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\PokerTracker 4
2015-01-25 02:48 - 2015-01-25 02:49 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Dropbox
2015-01-25 02:47 - 2015-01-25 02:47 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Dropbox (Old)
2015-01-22 23:49 - 2015-01-22 19:02 - 00001810 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Google Chrome.lnk
2015-01-22 23:23 - 2015-01-26 01:09 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Equilab
2015-01-22 20:06 - 2015-01-26 21:14 - 01120768 _____ (Farbar) C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST.exe
2015-01-22 20:06 - 2015-01-26 21:14 - 00000000 ____D () C:\FRST
2015-01-22 19:09 - 2015-01-26 19:43 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-22 19:08 - 2015-01-22 19:08 - 00000770 _____ () C:\Documents and Settings\All Users\Skrivebord\Malwarebytes Anti-Malware.lnk
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Programfiler\Malwarebytes Anti-Malware
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Malwarebytes Anti-Malware
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Malwarebytes
2015-01-22 19:08 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-01-22 19:08 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-01-22 19:06 - 2015-01-26 17:34 - 00000000 __RHD () C:\Documents and Settings\Fabian F. Egge\Siste
2015-01-22 19:06 - 2015-01-22 19:06 - 00154342 _____ () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\cc_20150122_190605.reg
2015-01-22 18:55 - 2015-01-22 18:55 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\816b8710000600d
2015-01-22 18:53 - 2015-01-22 18:53 - 00000000 ____D () C:\shoplog
2015-01-22 18:51 - 2015-01-22 18:51 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2015-01-22 18:50 - 2015-01-26 18:49 - 00000524 _____ () C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 6ba769cc-e797-4d5b-aa86-7ef6bce948fe.job
2015-01-22 18:26 - 2015-01-22 18:26 - 00000000 ____D () C:\WINDOWS\system32\Flash
2015-01-22 18:25 - 2015-01-22 18:25 - 00613057 _____ (CMI Limited) C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\nsr5C.tmp
2015-01-22 18:23 - 2015-01-22 18:23 - 00076040 _____ () C:\Documents and Settings\LocalService\Lokale innstillinger\Programdata\GDIPFONTCACHEV1.DAT
2015-01-22 18:00 - 2015-01-22 18:00 - 00000000 ___RD () C:\Documents and Settings\LocalService\Favoritter
2015-01-22 18:00 - 2015-01-22 18:00 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Company
2015-01-22 17:58 - 2015-01-22 18:20 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Skype
2015-01-22 17:58 - 2015-01-22 17:58 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Skype
2015-01-22 17:57 - 2015-01-22 17:57 - 00001874 _____ () C:\Documents and Settings\All Users\Skrivebord\Skype.lnk
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ___RD () C:\Programfiler\Skype
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ____D () C:\Programfiler\Fellesfiler\Skype
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Skype
2015-01-22 17:56 - 2015-01-22 17:57 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Skype
2015-01-21 01:32 - 2015-01-21 01:37 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Klei
2015-01-21 01:31 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-01-21 01:31 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-01-21 01:31 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-01-21 01:31 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-01-21 01:31 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-01-21 01:31 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-01-21 01:31 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-01-21 01:31 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-01-21 01:31 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-01-21 01:31 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-01-21 01:31 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-01-21 01:31 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-01-21 01:31 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-01-21 01:31 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-01-21 01:31 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-01-21 01:31 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-01-21 01:31 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-01-21 01:31 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-01-21 01:31 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-01-21 01:31 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-01-21 01:31 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-01-21 01:31 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-01-21 01:31 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-01-21 01:31 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-01-21 01:31 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-01-21 01:30 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-01-21 01:30 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-01-21 01:30 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-01-21 01:30 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-01-21 01:30 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-01-21 01:30 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-01-21 01:30 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-01-21 01:30 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-01-21 01:30 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-01-21 01:30 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-01-21 01:30 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-01-21 01:30 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-01-21 01:30 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-01-21 01:30 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-01-21 01:30 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-01-21 01:30 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-01-21 01:30 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-01-21 01:30 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-01-21 01:30 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-01-21 01:30 - 2005-12-05 18:07 - 00061136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput9_1_0.dll
2015-01-21 01:30 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-01-21 01:30 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-01-21 01:30 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-01-21 01:30 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-01-18 23:35 - 2015-01-18 23:35 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\LolClient
2015-01-18 23:27 - 2015-01-26 21:13 - 00000000 ____D () C:\Programfiler\Steam
2015-01-18 23:27 - 2015-01-18 23:27 - 00000631 _____ () C:\Documents and Settings\All Users\Skrivebord\Steam.lnk
2015-01-18 23:27 - 2015-01-18 23:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Steam
2015-01-18 23:00 - 2015-01-18 23:00 - 00000000 ____D () C:\Programfiler\PokerStrategy
2015-01-18 21:23 - 2015-01-18 21:23 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Riot Games
2015-01-17 20:00 - 2015-01-17 20:00 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Blizzard
2015-01-17 19:56 - 2015-01-17 19:56 - 00001977 _____ () C:\Documents and Settings\All Users\Skrivebord\PokerStrategy.com Equilab.lnk
2015-01-17 19:56 - 2015-01-17 19:56 - 00000000 ____D () C:\Programfiler\PokerStrategy.com
2015-01-17 19:56 - 2015-01-17 19:56 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Downloaded Installations
2015-01-17 19:56 - 2015-01-17 19:56 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\PokerStrategy.com
2015-01-17 19:55 - 2015-01-17 19:55 - 00001507 _____ () C:\Documents and Settings\All Users\Skrivebord\League of Legends.lnk
2015-01-17 19:55 - 2015-01-17 19:55 - 00000000 ____D () C:\Riot Games
2015-01-17 19:55 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-01-17 19:55 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-01-17 19:53 - 2015-01-17 19:55 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Riot Games
2015-01-17 18:31 - 2015-01-17 18:31 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\cache
2015-01-17 18:30 - 2015-01-18 22:14 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\FullTiltPoker
2015-01-17 18:30 - 2015-01-17 18:30 - 00000779 _____ () C:\Documents and Settings\All Users\Skrivebord\Full Tilt Poker.lnk
2015-01-17 18:30 - 2015-01-17 18:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Full Tilt Poker
2015-01-17 18:29 - 2015-01-26 21:06 - 00000000 ____D () C:\Programfiler\Full Tilt Poker
2015-01-17 18:29 - 2015-01-22 20:35 - 00000000 ____D () C:\Programfiler\Hearthstone
2015-01-17 18:29 - 2015-01-17 18:29 - 00000849 _____ () C:\Documents and Settings\All Users\Skrivebord\Hearthstone.lnk
2015-01-17 18:29 - 2015-01-17 18:29 - 00000000 ____D () C:\Programfiler\Fellesfiler\Blizzard Entertainment
2015-01-17 18:29 - 2015-01-17 18:29 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Hearthstone
2015-01-17 18:28 - 2015-01-26 04:53 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Battle.net
2015-01-17 18:28 - 2015-01-17 18:28 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Battle.net
2015-01-17 18:28 - 2015-01-17 18:28 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Blizzard Entertainment
2015-01-17 18:27 - 2015-01-17 18:27 - 00000812 _____ () C:\Documents and Settings\All Users\Skrivebord\Battle.net.lnk
2015-01-17 18:27 - 2015-01-17 18:27 - 00000000 ____D () C:\Programfiler\Battle.net
2015-01-17 18:27 - 2015-01-17 18:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Battle.net
2015-01-17 18:27 - 2015-01-17 18:27 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Blizzard Entertainment
2015-01-17 18:17 - 2015-01-17 18:17 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Battle.net
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-26 21:14 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Skrivebord
2015-01-26 21:14 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Temp
2015-01-26 20:47 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer
2015-01-26 20:45 - 2013-08-21 20:04 - 00000000 ___RD () C:\Programfiler
2015-01-26 20:43 - 2014-01-27 00:56 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-26 20:21 - 2013-08-21 18:50 - 00000978 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-26 19:58 - 2013-08-21 18:24 - 01718393 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-26 18:54 - 2013-08-21 21:08 - 00000000 ____D () C:\Programfiler\SUPERAntiSpyware
2015-01-26 18:29 - 2013-08-22 02:11 - 00000260 _____ () C:\WINDOWS\Tasks\WGASetup.job
2015-01-26 18:25 - 2014-09-14 20:51 - 00000000 _____ () C:\WINDOWS\RTacDbg.txt
2015-01-26 18:25 - 2014-03-23 06:38 - 00000240 _____ () C:\WINDOWS\Tasks\Varsel om avslutning av støtte for Microsoft Windows XP – pålogging.job
2015-01-26 18:25 - 2013-08-21 20:06 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2015-01-26 18:25 - 2013-08-21 20:06 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-01-26 18:25 - 2013-08-21 20:04 - 00000000 ____D () C:\Programfiler\Fellesfiler
2015-01-26 18:25 - 2013-08-21 19:54 - 00000000 ____D () C:\Programfiler\Creative
2015-01-26 18:25 - 2013-08-21 18:50 - 00000974 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-26 18:25 - 2013-08-21 18:29 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-26 18:23 - 2013-12-13 03:47 - 03997696 _____ () C:\WINDOWS\system32\config\ACVPN.evt
2015-01-26 18:23 - 2013-08-21 18:30 - 00000184 ___SH () C:\Documents and Settings\Fabian F. Egge\ntuser.ini
2015-01-26 18:23 - 2013-08-21 18:29 - 00032398 _____ () C:\WINDOWS\SchedLgU.Txt
2015-01-26 18:22 - 2013-08-21 19:54 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Creative
2015-01-26 18:21 - 2013-08-21 19:59 - 00000000 ___HD () C:\Programfiler\Creative Installation Information
2015-01-26 18:21 - 2013-08-21 19:56 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Creative
2015-01-26 17:58 - 2013-08-21 20:05 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Creative
2015-01-26 17:56 - 2013-08-21 19:56 - 00000584 _____ () C:\WINDOWS\system32\settingsbkup.sfm
2015-01-26 17:56 - 2013-08-21 19:56 - 00000584 _____ () C:\WINDOWS\system32\settings.sfm
2015-01-26 17:47 - 2013-08-21 18:51 - 00000000 ___HD () C:\Programfiler\InstallShield Installation Information
2015-01-26 17:34 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Mine bilder
2015-01-26 17:26 - 2013-08-21 20:04 - 01221642 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-26 17:26 - 2001-10-09 13:00 - 00507728 _____ () C:\WINDOWS\system32\perfh014.dat
2015-01-26 17:26 - 2001-10-09 13:00 - 00100476 _____ () C:\WINDOWS\system32\perfc014.dat
2015-01-26 17:22 - 2013-08-21 19:55 - 00000971 ___RH () C:\WINDOWS\ctfile.rfc
2015-01-26 16:57 - 2013-12-27 01:03 - 00000723 _____ () C:\Documents and Settings\All Users\Start-meny\Programmer\Mozilla Firefox.lnk
2015-01-26 16:57 - 2013-08-21 20:04 - 00000000 ___RD () C:\Documents and Settings\All Users\Start-meny\Programmer
2015-01-26 16:57 - 2013-08-21 18:30 - 00000758 _____ () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Internet Explorer.lnk
2015-01-26 16:57 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter
2015-01-26 16:24 - 2001-10-09 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-01-25 02:49 - 2013-08-22 14:45 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox
2015-01-25 02:49 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Oppstart
2015-01-25 02:47 - 2013-08-22 14:47 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Dropbox
2015-01-25 02:43 - 2014-01-27 00:56 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-25 02:43 - 2014-01-27 00:56 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-24 07:35 - 2013-08-22 02:03 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2015-01-23 12:04 - 2013-08-22 14:17 - 00000282 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2015-01-23 01:58 - 2013-08-21 19:20 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify
2015-01-22 23:05 - 2013-08-21 19:21 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Spotify
2015-01-22 20:17 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\All Users\Skrivebord
2015-01-22 20:09 - 2013-08-21 21:36 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\uTorrent
2015-01-22 20:09 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Start-meny
2015-01-22 19:31 - 2013-08-21 21:37 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\CRE
2015-01-22 19:06 - 2013-08-25 21:33 - 00000000 ____D () C:\WINDOWS\Minidump
2015-01-22 19:06 - 2013-08-21 19:01 - 00000000 __SHD () C:\Documents and Settings\Fabian F. Egge\UserData
2015-01-22 19:06 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge
2015-01-22 18:59 - 2013-08-21 18:29 - 00000000 ____D () C:\Documents and Settings\LocalService\Lokale innstillinger\Temp
2015-01-22 18:52 - 2013-11-27 20:32 - 00000000 ____D () C:\Programfiler\MathType
2015-01-22 18:23 - 2013-08-21 18:24 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2015-01-22 18:00 - 2013-08-21 18:29 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-01-21 01:30 - 2013-08-21 18:53 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-01-18 15:27 - 2013-08-22 14:47 - 00001026 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Dropbox.lnk
2015-01-18 15:27 - 2013-08-22 14:45 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Dropbox
2015-01-18 15:25 - 2013-08-21 21:23 - 00076040 _____ () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\GDIPFONTCACHEV1.DAT
2015-01-18 15:21 - 2013-08-21 20:02 - 00292480 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-18 02:02 - 2013-09-02 20:00 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Microsoft Help
2015-01-18 01:59 - 2013-08-21 19:40 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-12-31 13:15 - 2013-08-21 19:40 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
 
==================== Files in the root of some directories =======
 
2013-09-11 22:40 - 2014-06-05 16:25 - 0133120 _____ () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-22 18:25 - 2015-01-22 18:25 - 0613057 _____ (CMI Limited) C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\nsr5C.tmp
 
Some content of TEMP:
====================
C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp5mwalx.dll
C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpatana8.dll
C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Temp\Quarantine.exe
C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 

 

==================== End Of Log ============================
 
 
 
 
 
Addition.txt:
 
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-01-2015 01
Ran by Fabian F. Egge at 2015-01-26 21:15:27
Running from C:\Documents and Settings\Fabian F. Egge\Skrivebord
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.8.0.870 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Norsk (HKLM\...\{AC76BA86-7AD7-1044-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{D60ED057-BA8E-313A-8313-3C2DCCDA7D92}) (Version: 8.0.891.0 - Advanced Micro Devices, Inc.)
Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Apple-programsupport (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
ATI Catalyst Control Center (HKLM\...\{055EE59D-217B-43A7-ABFF-507B966405D8}) (Version: 2.009.0918.2131 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.66-090918a-088537C - )
ATI HYDRAVISION (HKLM\...\{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}) (Version: 3.25.0006 - )
Audacity 2.0.4 (HKLM\...\Audacity_is1) (Version: 2.0.4 - Audacity Team)
Battle.net (HKLM\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Cisco AnyConnect Secure Mobility Client  (HKLM\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.04072 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (Version: 3.1.04072 - Cisco Systems, Inc.) Hidden
Don't Starve (HKLM\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Together Beta (HKLM\...\Steam App 322330) (Version:  - Klei Entertainment)
Dropbox (HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Dropbox) (Version: 3.0.5 - Dropbox, Inc.)
Dystopia (HKLM\...\Steam App 17580) (Version:  - Puny Human)
Full Tilt Poker (HKLM\...\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}) (Version: 5.26.2.WIN.FullTilt.COM - )
Google Chrome (HKLM\...\{CBD486B9-01C2-3412-8BAA-1C20A5A58EAC}) (Version: 65.130.49209 - Google, Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Hearthstone (HKLM\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hurtigreparasjon for Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Hurtigreparasjon for Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Hurtigreparasjon for Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
HydraVision (Version: 4.2.242.0 - Advanced Micro Devices, Inc.) Hidden
iTunes (HKLM\...\{9B486871-27EB-49A5-8832-77176E63333C}) (Version: 11.0.5.5 - Apple Inc.)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version:  - )
League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware versjon 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Norwegian Language Pack (HKLM\...\{3EAC35F4-FF26-4123-9404-0B5B93DAB570}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 2.0 Language Pack - NOR (HKLM\...\Microsoft .NET Framework 2.0 Language Pack - NOR) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile NOR Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile NOR Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended NOR Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended NOR Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Base Smart Card Cryptographic Service Provider-pakke (HKLM\...\KB909520) (Version:  - Microsoft Corporation)
Microsoft Mathematics Add-in (32-bit) (HKLM\...\{E2C98732-F973-4985-A9C5-DC06178E16EE}) (Version: 2.0.040811.01 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM\...\Office14.PRJPRO) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 nb-NO) (HKLM\...\Mozilla Firefox 29.0.1 (x86 nb-NO)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
Oppdatering for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2492386) (HKLM\...\KB2492386) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Oppdatering for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2808679) (HKLM\...\KB2808679) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Oppdatering for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Oppdatering for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
PokerStars (HKLM\...\PokerStars) (Version:  - PokerStars)
PokerStrategy.com Equilab (HKLM\...\{86D09F48-CDAB-4B4C-8806-F6C16F17935A}) (Version: 1.2.8.0 - PokerStrategy.com)
PokerTracker 4 (remove only) (HKLM\...\PokerTracker4) (Version:  - )
PostgreSQL 9.0  (HKLM\...\PostgreSQL 9.0) (Version: 9.0 - PostgreSQL Global Development Group)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5904 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM\...\{9C049499-055C-4a0c-A916-1D12314F45EB}) (Version: 1.00.0174 - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPRO_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Sikkerhetsoppdatering for Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2618444) (HKLM\...\KB2618444-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2744842) (HKLM\...\KB2744842-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2862772) (HKLM\...\KB2862772-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2870699) (HKLM\...\KB2870699-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2879017) (HKLM\...\KB2879017-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2888505) (HKLM\...\KB2888505-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2898785) (HKLM\...\KB2898785-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2925418) (HKLM\...\KB2925418-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB2803821) (HKLM\...\KB2803821_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB2803821-v2) (HKLM\...\KB2803821-v2_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB952069) (HKLM\...\KB952069_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB954155) (HKLM\...\KB954155_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB973540) (HKLM\...\KB973540_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2510581) (Version: 1 - Microsoft Corporation) Hidden
Sikkerhetsoppdatering for Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2862772) (Version: 1 - Microsoft Corporation) Hidden
Sikkerhetsoppdatering for Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2876315) (HKLM\...\KB2876315) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB923789) (HKLM\...\KB923789) (Version:  - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB956802) (HKLM\...\KB956802) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB975713) (Version: 1 - Microsoft Corporation) Hidden
Sikkerhetsoppdatering for Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Sikkerhetsoppdatering for Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
SketchUp 8 (HKLM\...\{8EB62C87-AAA6-4850-A5BC-64155884B973}) (Version: 3.0.16846 - Trimble Navigation Limited)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.6.1032 - SUPERAntiSpyware.com)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM\...\Steam App 440) (Version:  - Valve)
VLC media player 2.1.2 (HKLM\...\VLC media player) (Version: 2.1.2 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Widevine Media Optimizer Chrome 6.0.0 (HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\optimizer_chrome) (Version: 6.0.0.12442 - Widevine Technologies)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version:  - Microsoft Corporation)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-73586283-1682526488-1417001333-1003_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
 
==================== Restore Points  =========================
 
17-01-2015 19:55:01 Installerte Microsoft Visual C++ 2005 Redistributable
17-01-2015 19:55:15 Installed League of Legends
17-01-2015 19:55:34 Installed DirectX
17-01-2015 19:56:34 Installed PokerStrategy.com Equilab.
18-01-2015 01:50:13 Software Distribution Service 3.0
18-01-2015 23:01:05 Installerte ICM Trainer
19-01-2015 02:57:55 Software Distribution Service 3.0
20-01-2015 04:50:51 Kontrollpunkt for system
21-01-2015 01:30:17 Installed DirectX
21-01-2015 01:32:12 Installed DirectX
21-01-2015 01:37:28 Installed DirectX
21-01-2015 01:47:37 Installed DirectX
22-01-2015 03:00:21 Software Distribution Service 3.0
22-01-2015 19:04:43 Removed M-Audio Series II MIDI
22-01-2015 19:05:21 Fjernet ICM Trainer
23-01-2015 19:49:56 Kontrollpunkt for system
24-01-2015 21:40:11 Kontrollpunkt for system
25-01-2015 18:26:51 Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
26-01-2015 15:08:54 zoek.exe restore point
26-01-2015 17:22:32 Installed Creative Audio Console
26-01-2015 17:22:43 Installed Creative Software AutoUpdate
26-01-2015 17:47:12 Installed WaveStudio 7
26-01-2015 17:49:02 Installed Creative MediaSource 5
26-01-2015 18:20:42 Removed Creative Audio Console
26-01-2015 18:21:14 Removed Creative MediaSource 5
26-01-2015 18:22:22 Removed Creative Software AutoUpdate
26-01-2015 18:22:48 Removed WaveStudio 7
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2001-10-09 13:00 - 2001-10-09 13:00 - 00000722 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Programfiler\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Programfiler\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Programfiler\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 6ba769cc-e797-4d5b-aa86-7ef6bce948fe.job => C:\Programfiler\SUPERAntiSpyware\SASTask.exe
Task: C:\WINDOWS\Tasks\Varsel om avslutning av støtte for Microsoft Windows XP – månedlig.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Varsel om avslutning av støtte for Microsoft Windows XP – pålogging.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\WGASetup.job => C:\WINDOWS\system32\KB905474\wgasetup.exe
 
==================== Loaded Modules (whitelisted) =============
 
2013-10-10 22:48 - 2013-10-10 22:48 - 00063376 _____ () C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2013-04-21 20:44 - 2013-04-21 20:44 - 00087952 _____ () C:\Programfiler\Fellesfiler\Apple\Apple Application Support\zlib1.dll
2013-04-21 20:44 - 2013-04-21 20:44 - 01242952 _____ () C:\Programfiler\Fellesfiler\Apple\Apple Application Support\libxml2.dll
2014-09-14 20:46 - 2009-12-09 20:20 - 00126976 _____ () C:\Programfiler\Realtek\11n USB Wireless LAN Utility\EnumDevLib.dll
2014-09-14 20:46 - 2007-07-12 10:11 - 01163264 _____ () C:\Programfiler\Realtek\11n USB Wireless LAN Utility\acAuth.dll
2008-04-14 08:22 - 2008-04-14 08:22 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2015-01-23 00:23 - 2015-01-21 04:50 - 09171272 _____ () C:\Programfiler\Google\Chrome\Application\40.0.2214.91\pdf.dll
2014-04-12 02:22 - 2014-02-10 12:44 - 04592128 _____ () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-04-12 02:22 - 2014-02-10 12:44 - 00112128 _____ () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-73586283-1682526488-1417001333-500 - Administrator - Enabled)
ASPNET (S-1-5-21-73586283-1682526488-1417001333-1004 - Limited - Enabled)
Fabian F. Egge (S-1-5-21-73586283-1682526488-1417001333-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Fabian F. Egge
Gjest (S-1-5-21-73586283-1682526488-1417001333-501 - Limited - Disabled)
Hjelpeassistent (S-1-5-21-73586283-1682526488-1417001333-1000 - Limited - Disabled)
postgres (S-1-5-21-73586283-1682526488-1417001333-1005 - Limited - Enabled) => %SystemDrive%\Documents and Settings\postgres
SUPPORT_388945a0 (S-1-5-21-73586283-1682526488-1417001333-1002 - Limited - Disabled)
 
==================== Faulty Device Manager Devices =============
 
Name: PCI Device
Description: PCI Device
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: 
Description: 
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
 
System errors:
=============
Error: (01/26/2015 06:26:26 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra tjenesten MBAMService.
 
Error: (01/26/2015 06:17:33 PM) (Source: System Error) (EventID: 1003) (User: )
Description: Feilkode 0000009c, parameter1 00000000, parameter2 ba33c050, parameter3 b2000040, parameter4 00000800.
 
Error: (01/26/2015 06:12:21 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra tjenesten MBAMService.
 
Error: (01/26/2015 06:04:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra tjenesten MBAMService.
 
Error: (01/26/2015 05:31:02 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra tjenesten MBAMService.
 
Error: (01/26/2015 04:36:58 PM) (Source: System Error) (EventID: 1003) (User: )
Description: Feilkode 100000d3, parameter1 9bb3dffc, parameter2 000000ff, parameter3 00000000, parameter4 80545c2f.
 
Error: (01/24/2015 07:36:47 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra tjenesten MBAMService.
 
Error: (01/22/2015 07:45:53 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra tjenesten MBAMService.
 
Error: (01/22/2015 06:59:08 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Følgende oppstarts- eller systemstartsdriver(e) kan ikke lastes inn: 
cherimoya
wpnfd_1_10_0_6
 
Error: (01/22/2015 06:55:47 PM) (Source: DCOM) (EventID: 10005) (User: FABIANE)
Description: DCOM fikk feilen "%%1084" ved forsøk på å starte tjenesten MSIServer med argument ""
for å kunne kjøre server: 
{000C101C-0000-0000-C000-000000000046}
 
 
Microsoft Office Sessions:
=========================
 
==================== Memory info =========================== 
 
Processor: Intel® Core2 CPU 4300 @ 1.80GHz
Percentage of memory in use: 42%
Total physical RAM: 2046.48 MB
Available physical RAM: 1171.91 MB
Total Pagefile: 3939.32 MB
Available Pagefile: 2989.41 MB
Total Virtual: 2047.88 MB
Available Virtual: 1934.96 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:465.75 GB) (Free:367.6 GB) NTFS ==>[Drive with boot components (Windows XP)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
Link to post
Share on other sites

OTL.txt:

 

OTL logfile created on: 27.01.2015 17:37:21 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\Fabian F. Egge\Skrivebord
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000414 | Country: Norge | Language: NOR | Date Format: dd.MM.yyyy
 
2,00 Gb Total Physical Memory | 1,17 Gb Available Physical Memory | 58,72% Memory free
3,85 Gb Paging File | 2,56 Gb Available in Paging File | 66,56% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programfiler
Drive C: | 465,75 Gb Total Space | 367,49 Gb Free Space | 78,90% Space Free | Partition Type: NTFS
 
Computer Name: FABIANE | User Name: Fabian F. Egge | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2015.01.26 21:17:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\OTL.exe
PRC - [2015.01.22 18:16:50 | 006,699,800 | ---- | M] (SUPERAntiSpyware) -- C:\Programfiler\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
PRC - [2015.01.21 04:50:49 | 000,843,592 | ---- | M] (Google Inc.) -- C:\Programfiler\Google\Chrome\Application\chrome.exe
PRC - [2014.11.21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) -- C:\Programfiler\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2014.11.21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) -- C:\Programfiler\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014.11.21 06:12:46 | 007,229,752 | ---- | M] (Malwarebytes Corporation) -- C:\Programfiler\Malwarebytes Anti-Malware\mbam.exe
PRC - [2014.08.13 21:13:33 | 000,142,648 | ---- | M] (SUPERAntiSpyware.com) -- C:\Programfiler\SUPERAntiSpyware\SASCORE.EXE
PRC - [2014.05.18 20:28:42 | 001,176,632 | ---- | M] (Spotify Ltd) -- C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\Data\SpotifyWebHelper.exe
PRC - [2013.12.18 21:05:43 | 000,182,696 | ---- | M] (Oracle Corporation) -- C:\Programfiler\Java\jre7\bin\jqs.exe
PRC - [2013.10.10 22:47:54 | 000,707,984 | ---- | M] (Cisco Systems, Inc.) -- C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
PRC - [2013.10.10 22:47:38 | 000,558,480 | ---- | M] (Cisco Systems, Inc.) -- C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
PRC - [2013.07.02 09:16:32 | 000,507,264 | ---- | M] (Oracle Corporation) -- C:\Programfiler\Fellesfiler\Java\Java Update\jucheck.exe
PRC - [2013.07.02 09:16:26 | 000,254,336 | ---- | M] (Oracle Corporation) -- C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe
PRC - [2012.12.21 15:27:46 | 000,057,008 | ---- | M] (Apple Inc.) -- C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2012.09.20 07:39:37 | 000,095,232 | ---- | M] (PostgreSQL Global Development Group) -- C:\Programfiler\PostgreSQL\9.0\bin\pg_ctl.exe
PRC - [2012.09.20 07:35:53 | 004,926,976 | ---- | M] (PostgreSQL Global Development Group) -- C:\Programfiler\PostgreSQL\9.0\bin\postgres.exe
PRC - [2010.10.29 15:34:42 | 001,011,712 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
PRC - [2008.04.14 08:22:50 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2015.01.21 04:50:47 | 014,913,352 | ---- | M] () -- C:\Programfiler\Google\Chrome\Application\40.0.2214.91\PepperFlash\pepflashplayer.dll
MOD - [2015.01.21 04:50:45 | 009,171,272 | ---- | M] () -- C:\Programfiler\Google\Chrome\Application\40.0.2214.91\pdf.dll
MOD - [2014.02.10 12:44:24 | 004,592,128 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libGLESv2.dll
MOD - [2014.02.10 12:44:24 | 000,112,128 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libEGL.dll
MOD - [2013.10.10 22:48:38 | 000,063,376 | ---- | M] () -- C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
MOD - [2013.04.21 20:44:32 | 000,087,952 | ---- | M] () -- C:\Programfiler\Fellesfiler\Apple\Apple Application Support\zlib1.dll
MOD - [2013.04.21 20:44:04 | 001,242,952 | ---- | M] () -- C:\Programfiler\Fellesfiler\Apple\Apple Application Support\libxml2.dll
MOD - [2009.12.09 20:20:06 | 000,126,976 | ---- | M] () -- C:\Programfiler\Realtek\11n USB Wireless LAN Utility\EnumDevLib.dll
MOD - [2008.04.14 08:22:12 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007.07.12 10:11:54 | 001,163,264 | ---- | M] () -- C:\Programfiler\Realtek\11n USB Wireless LAN Utility\acAuth.dll
 
 
========== Services (SafeList) ==========
 
SRV - [2015.01.25 02:43:22 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.12.11 10:30:48 | 000,315,496 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Programfiler\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014.11.21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programfiler\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014.11.21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Programfiler\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014.08.13 21:13:33 | 000,142,648 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Programfiler\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2014.05.09 21:22:55 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programfiler\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.12.18 21:05:43 | 000,182,696 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Programfiler\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2013.10.10 22:47:38 | 000,558,480 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe -- (vpnagent)
SRV - [2012.12.21 15:27:46 | 000,057,008 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2012.09.20 07:39:37 | 000,095,232 | ---- | M] (PostgreSQL Global Development Group) [Auto | Running] -- C:\Programfiler\PostgreSQL\9.0\bin\pg_ctl.exe -- (postgresql-9.0)
SRV - [2010.01.09 20:37:50 | 004,640,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programfiler\Fellesfiler\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2010.01.09 20:18:00 | 000,149,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Programfiler\Fellesfiler\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2015.01.27 16:51:09 | 000,114,904 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV - [2014.11.21 06:14:06 | 000,023,256 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2013.10.10 22:31:34 | 000,023,976 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vpnva.sys -- (vpnva)
DRV - [2013.10.10 22:29:26 | 000,058,736 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\acsmux.sys -- (acsmux)
DRV - [2013.10.10 22:29:26 | 000,040,304 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\acsint.sys -- (acsint)
DRV - [2013.07.09 18:38:40 | 000,096,256 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService)
DRV - [2011.07.22 17:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Programfiler\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011.07.12 22:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Programfiler\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010.11.17 08:44:42 | 000,978,920 | R--- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8192cu.sys -- (RTL8192cu)
DRV - [2009.09.19 05:29:36 | 004,477,952 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009.08.19 13:05:56 | 000,100,368 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009.07.29 12:06:24 | 005,870,080 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2008.08.06 11:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2007.11.21 17:06:26 | 001,174,528 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P17xfi.sys -- (P17xfi)
DRV - [2007.10.10 19:31:08 | 001,664,384 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\p17xfilt.sys -- (p17xfilt)
DRV - [2006.08.07 19:30:52 | 000,162,176 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctusfsyn.sys -- (CTUSFSYN)
DRV - [2006.04.25 08:52:28 | 000,100,736 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvata.sys -- (nvata)
DRV - [2006.02.18 02:28:32 | 000,013,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.02.18 02:28:30 | 000,034,176 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2006.01.05 06:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2005.12.08 11:54:52 | 000,114,688 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2005.12.08 11:54:44 | 000,142,336 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
 
IE - HKU\S-1-5-21-73586283-1682526488-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKU\S-1-5-21-73586283-1682526488-1417001333-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKU\S-1-5-21-73586283-1682526488-1417001333-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-73586283-1682526488-1417001333-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-73586283-1682526488-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-21-73586283-1682526488-1417001333-1005\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledAddons: %7B83e02f0a-1694-3889-c714-122520abd078%7D:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Programfiler\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Programfiler\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Programfiler\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Programfiler\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Programfiler\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Programfiler\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.2: C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Programfiler\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Programfiler\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Programfiler\Mozilla Firefox\plugins
 
[2013.12.27 01:04:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Extensions
[2015.01.22 23:48:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\extensions
[2015.01.22 23:48:45 | 000,000,000 | ---D | M] ("Zoom It") -- C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\extensions\{83e02f0a-1694-3889-c714-122520abd078}
[2013.12.27 01:05:41 | 000,069,465 | ---- | M] () (No name found) -- C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\extensions\mediahint@jetpack.xpi
[2014.05.09 21:22:29 | 000,000,000 | ---D | M] (No name found) -- C:\Programfiler\Mozilla Firefox\browser\extensions
[2014.05.09 21:22:57 | 000,000,000 | ---D | M] (Default) -- C:\Programfiler\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
O1 HOSTS File: ([2001.10.09 13:00:00 | 000,000,722 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programfiler\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programfiler\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Programfiler\Fellesfiler\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Programfiler\Fellesfiler\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [P17Helper] C:\WINDOWS\System32\SPIRun.dll (Creative Technology Ltd.)
O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe (Oracle Corporation)
O4 - HKU\S-1-5-21-73586283-1682526488-1417001333-1003..\Run: [spotify Web Helper] C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - HKU\S-1-5-21-73586283-1682526488-1417001333-1003..\Run: [sUPERAntiSpyware] C:\Programfiler\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware)
O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart\REALTEK 11n USB Wireless LAN Utility.lnk = C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-73586283-1682526488-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-73586283-1682526488-1417001333-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Programfiler\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Programfiler\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programfiler\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programfiler\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programfiler\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programfiler\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Programfiler\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab(Creative Software AutoUpdate)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1377110130187(MUWebControl Class)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab(Creative Software AutoUpdate Support Package 2)
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab(Creative Software AutoUpdate 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab(Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7FBE160F-DAED-4820-999F-3DBC6676CB53}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BC8FAF55-AED4-4CAA-A166-91B0906AA468}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programfiler\Fellesfiler\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programfiler\Fellesfiler\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Min gjeldende hjemmeside) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Programfiler\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013.08.21 18:25:15 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2015.01.26 21:17:38 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\OTL.exe
[2015.01.26 21:14:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST-OlderVersion
[2015.01.26 20:47:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\PokerStars
[2015.01.26 20:45:05 | 000,000,000 | ---D | C] -- C:\Programfiler\PokerStars
[2015.01.26 17:22:14 | 000,162,176 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\ctusfsyn.sys
[2015.01.26 17:22:14 | 000,142,336 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\drivers\ctsfm2k.sys
[2015.01.26 17:22:14 | 000,120,832 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\sfms32.dll
[2015.01.26 17:22:14 | 000,114,688 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\ctoss2k.sys
[2015.01.26 17:22:14 | 000,073,728 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\MIDIDEF.EXE
[2015.01.26 17:22:14 | 000,021,504 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\sfman32.dll
[2015.01.26 17:22:13 | 000,413,696 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2015.01.26 17:22:13 | 000,102,400 | ---- | C] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll
[2015.01.26 17:22:12 | 000,765,952 | ---- | C] (Creative Labs Inc.) -- C:\WINDOWS\OALInst.exe
[2015.01.26 17:21:59 | 022,833,304 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\AppSetup.exe
[2015.01.26 17:21:59 | 001,174,528 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\P17xfi.sys
[2015.01.26 17:21:59 | 000,197,632 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\SF32.exe
[2015.01.26 17:21:59 | 000,139,264 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\EAX.DLL
[2015.01.26 17:21:59 | 000,137,728 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\P17res.dll
[2015.01.26 17:21:59 | 000,053,248 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\resdef.exe
[2015.01.26 17:21:59 | 000,011,264 | ---- | C] (Creative Technology Limited) -- C:\WINDOWS\InRes.DLL
[2015.01.26 17:21:59 | 000,010,752 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\SPIRun.dll
[2015.01.26 17:21:59 | 000,008,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Pfmodnt.sys
[2015.01.26 16:52:04 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015.01.26 16:17:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2015.01.26 16:14:52 | 001,707,939 | ---- | C] (Thisisu) -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\JRT (1).exe
[2015.01.26 15:02:03 | 000,000,000 | ---D | C] -- C:\zoek_backup
[2015.01.25 18:28:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Programmer\PostgreSQL 9.0
[2015.01.25 18:26:59 | 000,000,000 | ---D | C] -- C:\Programfiler\PostgreSQL
[2015.01.25 18:21:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\PokerTracker 4
[2015.01.25 16:33:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\PokerTracker 4
[2015.01.25 16:33:12 | 000,000,000 | ---D | C] -- C:\Programfiler\PokerTracker 4
[2015.01.25 02:48:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\Dropbox
[2015.01.25 02:47:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Dropbox (Old)
[2015.01.22 23:23:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Equilab
[2015.01.22 20:06:24 | 000,000,000 | ---D | C] -- C:\FRST
[2015.01.22 20:06:02 | 001,120,768 | ---- | C] (Farbar) -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST.exe
[2015.01.22 19:09:12 | 000,114,904 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
[2015.01.22 19:08:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Programmer\Malwarebytes Anti-Malware
[2015.01.22 19:08:54 | 000,054,360 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys
[2015.01.22 19:08:54 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2015.01.22 19:08:54 | 000,000,000 | ---D | C] -- C:\Programfiler\Malwarebytes Anti-Malware
[2015.01.22 19:08:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Programdata\Malwarebytes
[2015.01.22 19:06:42 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Fabian F. Egge\Siste
[2015.01.22 18:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Programdata\816b8710000600d
[2015.01.22 18:53:50 | 000,000,000 | ---D | C] -- C:\shoplog
[2015.01.22 18:51:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2015.01.22 18:26:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Flash
[2015.01.22 18:00:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Company
[2015.01.22 17:58:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Skype
[2015.01.22 17:58:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Skype
[2015.01.22 17:57:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Programmer\Skype
[2015.01.22 17:57:04 | 000,000,000 | ---D | C] -- C:\Programfiler\Fellesfiler\Skype
[2015.01.22 17:57:01 | 000,000,000 | R--D | C] -- C:\Programfiler\Skype
[2015.01.22 17:56:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Programdata\Skype
[2015.01.21 01:32:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Klei
[2015.01.21 01:31:42 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2015.01.21 01:31:42 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2015.01.21 01:31:42 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2015.01.21 01:31:41 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2015.01.21 01:31:40 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2015.01.21 01:31:39 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2015.01.21 01:31:39 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2015.01.21 01:31:38 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2015.01.21 01:31:37 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2015.01.21 01:31:37 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2015.01.21 01:31:36 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2015.01.21 01:31:36 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2015.01.21 01:31:35 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2015.01.21 01:31:34 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2015.01.21 01:31:34 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2015.01.21 01:31:33 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2015.01.21 01:31:32 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2015.01.21 01:31:31 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2015.01.21 01:31:30 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2015.01.21 01:31:29 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll
[2015.01.21 01:31:29 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll
[2015.01.21 01:31:26 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll
[2015.01.21 01:31:26 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll
[2015.01.21 01:31:26 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll
[2015.01.21 01:31:26 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll
[2015.01.21 01:31:25 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll
[2015.01.21 01:31:25 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll
[2015.01.21 01:31:25 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll
[2015.01.21 01:31:24 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll
[2015.01.21 01:31:24 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll
[2015.01.21 01:31:23 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll
[2015.01.21 01:31:23 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll
[2015.01.21 01:31:22 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2015.01.21 01:31:18 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2015.01.21 01:31:18 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2015.01.21 01:31:18 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2015.01.21 01:31:18 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2015.01.21 01:31:17 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2015.01.21 01:31:17 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2015.01.21 01:31:17 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2015.01.21 01:31:16 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2015.01.21 01:31:15 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2015.01.21 01:31:15 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2015.01.21 01:31:14 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2015.01.21 01:31:14 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2015.01.21 01:31:14 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2015.01.21 01:31:13 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2015.01.21 01:31:13 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2015.01.21 01:31:12 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2015.01.21 01:31:12 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2015.01.21 01:31:11 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll
[2015.01.21 01:31:11 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll
[2015.01.21 01:31:11 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2015.01.21 01:31:10 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll
[2015.01.21 01:31:09 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll
[2015.01.21 01:31:09 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2015.01.21 01:31:09 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2015.01.21 01:31:08 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll
[2015.01.21 01:31:08 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll
[2015.01.21 01:31:07 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2015.01.21 01:31:02 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2015.01.21 01:30:58 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2015.01.21 01:30:58 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2015.01.21 01:30:51 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2015.01.21 01:30:51 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2015.01.21 01:30:50 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[2015.01.21 01:30:49 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2015.01.21 01:30:48 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll
[2015.01.21 01:30:48 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll
[2015.01.21 01:30:48 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2015.01.21 01:30:47 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll
[2015.01.21 01:30:47 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll
[2015.01.21 01:30:46 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll
[2015.01.21 01:30:46 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2015.01.21 01:30:45 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2015.01.21 01:30:31 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2015.01.21 01:30:30 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2015.01.21 01:30:30 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2015.01.21 01:30:29 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2015.01.21 01:30:28 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2015.01.21 01:30:27 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2015.01.21 01:30:27 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2015.01.21 01:30:26 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2015.01.21 01:30:26 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2015.01.21 01:30:24 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2015.01.18 23:35:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Programdata\LolClient
[2015.01.18 23:27:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Programmer\Steam
[2015.01.18 23:27:55 | 000,000,000 | ---D | C] -- C:\Programfiler\Steam
[2015.01.18 23:00:31 | 000,000,000 | ---D | C] -- C:\Programfiler\PokerStrategy
[2015.01.18 21:23:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Programdata\Riot Games
[2015.01.17 20:00:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Blizzard
[2015.01.17 19:56:38 | 000,000,000 | ---D | C] -- C:\Programfiler\PokerStrategy.com
[2015.01.17 19:56:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Programmer\PokerStrategy.com
[2015.01.17 19:56:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Downloaded Installations
[2015.01.17 19:55:38 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2015.01.17 19:55:38 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2015.01.17 19:55:37 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2015.01.17 19:55:37 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2015.01.17 19:55:35 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2015.01.17 19:55:24 | 000,000,000 | ---D | C] -- C:\Riot Games
[2015.01.17 19:53:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Riot Games
[2015.01.17 18:31:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\cache
[2015.01.17 18:30:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\FullTiltPoker
[2015.01.17 18:30:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Programmer\Full Tilt Poker
[2015.01.17 18:29:28 | 000,000,000 | ---D | C] -- C:\Programfiler\Full Tilt Poker
[2015.01.17 18:29:10 | 000,000,000 | ---D | C] -- C:\Programfiler\Hearthstone
[2015.01.17 18:29:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Programmer\Hearthstone
[2015.01.17 18:29:10 | 000,000,000 | ---D | C] -- C:\Programfiler\Fellesfiler\Blizzard Entertainment
[2015.01.17 18:28:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Blizzard Entertainment
[2015.01.17 18:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Battle.net
[2015.01.17 18:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Battle.net
[2015.01.17 18:27:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Programdata\Blizzard Entertainment
[2015.01.17 18:27:04 | 000,000,000 | ---D | C] -- C:\Programfiler\Battle.net
[2015.01.17 18:27:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start-meny\Programmer\Battle.net
[2015.01.17 18:17:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Programdata\Battle.net
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\*.tmp files -> C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2015.01.27 17:43:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2015.01.27 17:21:01 | 000,000,978 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2015.01.27 16:51:09 | 000,114,904 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
[2015.01.27 10:49:00 | 000,000,524 | ---- | M] () -- C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task 6ba769cc-e797-4d5b-aa86-7ef6bce948fe.job
[2015.01.26 21:17:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\OTL.exe
[2015.01.26 21:14:00 | 001,120,768 | ---- | M] (Farbar) -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST.exe
[2015.01.26 20:47:19 | 000,001,601 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\PokerStars.lnk
[2015.01.26 19:29:49 | 000,004,968 | ---- | M] () -- C:\Documents and Settings\All Users\Programdata\lrbivjdu.eai
[2015.01.26 18:29:43 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2015.01.26 18:25:50 | 000,000,974 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2015.01.26 18:25:50 | 000,000,240 | ---- | M] () -- C:\WINDOWS\tasks\Varsel om avslutning av støtte for Microsoft Windows XP – pålogging.job
[2015.01.26 18:25:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2015.01.26 17:56:27 | 000,000,584 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2015.01.26 17:56:27 | 000,000,584 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2015.01.26 17:56:26 | 000,000,061 | ---- | M] () -- C:\WINDOWS\sbwin.ini
[2015.01.26 17:26:31 | 000,507,728 | ---- | M] () -- C:\WINDOWS\System32\perfh014.dat
[2015.01.26 17:26:31 | 000,505,770 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2015.01.26 17:26:31 | 000,100,476 | ---- | M] () -- C:\WINDOWS\System32\perfc014.dat
[2015.01.26 17:26:31 | 000,089,436 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2015.01.26 17:22:48 | 000,000,971 | RH-- | M] () -- C:\WINDOWS\ctfile.rfc
[2015.01.26 17:22:13 | 000,413,696 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2015.01.26 17:22:13 | 000,102,400 | ---- | M] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll
[2015.01.26 16:24:17 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2015.01.26 16:15:18 | 002,194,432 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\AdwCleaner.exe
[2015.01.26 16:14:54 | 001,707,939 | ---- | M] (Thisisu) -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\JRT (1).exe
[2015.01.26 15:01:53 | 001,295,360 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\zoek.exe
[2015.01.25 18:21:04 | 000,004,946 | ---- | M] () -- C:\Documents and Settings\All Users\Programdata\flwjycbm.bab
[2015.01.25 16:33:35 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\PokerTracker 4.lnk
[2015.01.25 02:43:22 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2015.01.25 02:43:22 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2015.01.23 12:04:02 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2015.01.22 19:08:57 | 000,000,770 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivebord\Malwarebytes Anti-Malware.lnk
[2015.01.22 19:06:09 | 000,154,342 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\cc_20150122_190605.reg
[2015.01.22 19:02:29 | 000,001,810 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\Google Chrome.lnk
[2015.01.22 17:57:05 | 000,001,874 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivebord\Skype.lnk
[2015.01.18 23:27:56 | 000,000,631 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivebord\Steam.lnk
[2015.01.18 15:27:06 | 000,001,026 | ---- | M] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\Dropbox.lnk
[2015.01.18 15:21:38 | 000,292,480 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2015.01.17 19:56:38 | 000,001,977 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivebord\PokerStrategy.com Equilab.lnk
[2015.01.17 19:55:25 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivebord\League of Legends.lnk
[2015.01.17 18:30:45 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivebord\Full Tilt Poker.lnk
[2015.01.17 18:29:12 | 000,000,849 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivebord\Hearthstone.lnk
[2015.01.17 18:27:10 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivebord\Battle.net.lnk
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\*.tmp files -> C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2015.01.26 20:47:19 | 000,001,601 | ---- | C] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\PokerStars.lnk
[2015.01.26 19:29:49 | 000,004,968 | ---- | C] () -- C:\Documents and Settings\All Users\Programdata\lrbivjdu.eai
[2015.01.26 17:56:26 | 000,000,061 | ---- | C] () -- C:\WINDOWS\sbwin.ini
[2015.01.26 17:22:48 | 000,023,273 | ---- | C] () -- C:\WINDOWS\System32\Ludap17.ini
[2015.01.26 17:22:48 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2015.01.26 17:22:14 | 004,174,814 | ---- | C] () -- C:\WINDOWS\System32\ct4mgm.sf2
[2015.01.26 17:22:14 | 000,000,059 | ---- | C] () -- C:\WINDOWS\System32\default4.sfm
[2015.01.26 17:22:12 | 000,000,990 | ---- | C] () -- C:\WINDOWS\SB0790.reg
[2015.01.26 17:22:12 | 000,000,986 | ---- | C] () -- C:\WINDOWS\SB0792.reg
[2015.01.26 17:21:59 | 000,137,216 | ---- | C] () -- C:\WINDOWS\System32\OemSpi.dll
[2015.01.26 17:21:59 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\P17CPI.dll
[2015.01.26 17:21:59 | 000,008,251 | ---- | C] () -- C:\WINDOWS\sfsyn.ini
[2015.01.26 16:15:15 | 002,194,432 | ---- | C] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\AdwCleaner.exe
[2015.01.26 15:01:50 | 001,295,360 | ---- | C] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\zoek.exe
[2015.01.25 18:21:04 | 000,004,946 | ---- | C] () -- C:\Documents and Settings\All Users\Programdata\flwjycbm.bab
[2015.01.25 16:33:35 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\PokerTracker 4.lnk
[2015.01.22 23:49:14 | 000,001,810 | ---- | C] () -- C:\Documents and Settings\Fabian F. Egge\Skrivebord\Google Chrome.lnk
[2015.01.22 19:08:57 | 000,000,770 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivebord\Malwarebytes Anti-Malware.lnk
[2015.01.22 19:06:07 | 000,154,342 | ---- | C] () -- C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\cc_20150122_190605.reg
[2015.01.22 18:50:01 | 000,000,524 | ---- | C] () -- C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task 6ba769cc-e797-4d5b-aa86-7ef6bce948fe.job
[2015.01.22 17:57:05 | 000,001,874 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivebord\Skype.lnk
[2015.01.18 23:27:56 | 000,000,631 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivebord\Steam.lnk
[2015.01.17 19:56:38 | 000,001,977 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivebord\PokerStrategy.com Equilab.lnk
[2015.01.17 19:55:25 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivebord\League of Legends.lnk
[2015.01.17 18:30:43 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivebord\Full Tilt Poker.lnk
[2015.01.17 18:29:12 | 000,000,849 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivebord\Hearthstone.lnk
[2015.01.17 18:27:10 | 000,000,812 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivebord\Battle.net.lnk
[2014.09.14 20:46:44 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2014.09.14 20:46:16 | 000,451,072 | ---- | C] () -- C:\WINDOWS\System32\ISSRemoveSP.exe
[2013.09.11 22:40:50 | 000,133,120 | ---- | C] () -- C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013.08.21 21:10:13 | 000,000,029 | ---- | C] () -- C:\WINDOWS\sfbm.INI
[2013.08.21 21:00:06 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2013.08.21 20:30:23 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2013.08.21 20:04:51 | 000,004,249 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2013.08.21 20:02:15 | 000,292,480 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.08.21 19:55:59 | 000,065,536 | ---- | C] ( ) -- C:\WINDOWS\System32\A3d.dll
[2013.08.21 18:59:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2013.08.21 18:52:20 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2013.08.21 18:52:10 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2013.08.21 18:52:10 | 000,195,855 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2013.08.21 18:52:10 | 000,000,003 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2013.08.21 18:26:58 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013.08.21 18:22:54 | 000,021,704 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
 
========== ZeroAccess Check ==========
 
[2013.08.21 18:53:26 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2013.07.25 09:14:12 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 11:56:06 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 08:22:32 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2013.08.22 14:18:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2015.01.22 18:55:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Programdata\816b8710000600d
[2014.01.05 15:34:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Programdata\Ableton
[2015.01.17 18:17:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Programdata\Battle.net
[2013.12.11 21:00:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Programdata\Cisco
[2015.01.18 21:23:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Programdata\Riot Games
[2014.01.10 17:18:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\.minecraft
[2014.01.05 15:34:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Ableton
[2013.09.12 00:35:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Audacity
[2015.01.17 18:28:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Battle.net
[2015.01.22 18:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Company
[2013.11.27 20:44:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Design Science
[2015.01.25 02:49:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox
[2014.04.30 22:46:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\IDM
[2015.01.18 23:35:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\LolClient
[2015.01.17 19:55:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Riot Games
[2015.01.23 01:58:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify
[2015.01.22 20:09:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabian F. Egge\Programdata\uTorrent
 
========== Purity Check ==========
 
 
 
< End of report >

 

 
 
 
 
 
 
 
Extras.txt:
 
 
OTL Extras logfile created on: 27.01.2015 17:37:21 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\Fabian F. Egge\Skrivebord
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000414 | Country: Norge | Language: NOR | Date Format: dd.MM.yyyy
 
2,00 Gb Total Physical Memory | 1,17 Gb Available Physical Memory | 58,72% Memory free
3,85 Gb Paging File | 2,56 Gb Available in Paging File | 66,56% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programfiler
Drive C: | 465,75 Gb Total Space | 367,49 Gb Free Space | 78,90% Space Free | Partition Type: NTFS
 
Computer Name: FABIANE | User Name: Fabian F. Egge | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
 
[HKEY_USERS\S-1-5-21-73586283-1682526488-1417001333-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
========== Shell Spawning ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Programfiler\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Programfiler\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Programfiler\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Programfiler\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
========== Security Center Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
========== System Restore Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"5985:TCP" = 5985:TCP:*:Disabled:Windows Remote Management 
"80:TCP" = 80:TCP:*:Disabled:Windows Remote Management - kompatibilitetsmodus (HTTP inn) 
"1542:TCP" = 1542:TCP:*:Enabled:Realtek WPS TCP Prot
"1542:UDP" = 1542:UDP:*:Enabled:Realtek WPS UDP Prot
"53:UDP" = 53:UDP:*:Enabled:Realtek AP UDP Prot
 
========== Authorized Applications List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\spotify.exe" = C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\spotify.exe:*:Enabled:Spotify -- (Spotify Ltd)
"C:\Programfiler\Fellesfiler\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Programfiler\Fellesfiler\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Programfiler\Bonjour\mDNSResponder.exe" = C:\Programfiler\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour-tjeneste -- (Apple Inc.)
"C:\Programfiler\iTunes\iTunes.exe" = C:\Programfiler\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\Dropbox.exe" = C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox -- (Dropbox, Inc.)
"C:\Programfiler\Java\jre7\bin\javaw.exe" = C:\Programfiler\Java\jre7\bin\javaw.exe:*:Enabled:Java Platform SE binary -- (Oracle Corporation)
"C:\Programfiler\Microsoft Office\Office14\ONENOTE.EXE" = C:\Programfiler\Microsoft Office\Office14\ONENOTE.EXE:*:Enabled:Microsoft OneNote -- (Microsoft Corporation)
"C:\Programfiler\Microsoft Office\Office14\OUTLOOK.EXE" = C:\Programfiler\Microsoft Office\Office14\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vbc.exe" = C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vbc.exe:*:Enabled:Visual Basic Command Line Compiler -- (Microsoft Corporation)
"C:\Programfiler\Google\Chrome\Application\chrome.exe" = C:\Programfiler\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome -- (Google Inc.)
"C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe" = C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe:*:Enabled:RtWlan -- (Realtek Semiconductor Corp.)
"C:\Programfiler\Battle.net\Battle.net.exe" = C:\Programfiler\Battle.net\Battle.net.exe:*:Enabled:Battle.net -- (Blizzard Entertainment)
"C:\Programfiler\Hearthstone\Hearthstone.exe" = C:\Programfiler\Hearthstone\Hearthstone.exe:*:Enabled:Hearthstone -- ()
"C:\Programfiler\Steam\Steam.exe" = C:\Programfiler\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Programfiler\Steam\bin\steamwebhelper.exe" = C:\Programfiler\Steam\bin\steamwebhelper.exe:*:Enabled:Steam Web Helper -- (Valve Corporation)
"C:\Programfiler\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe" = C:\Programfiler\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe:*:Enabled:Don't Starve -- ()
"C:\Programfiler\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe" = C:\Programfiler\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe:*:Enabled:Don't Starve Together Beta -- ()
"C:\Programfiler\Skype\Phone\Skype.exe" = C:\Programfiler\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\WINDOWS\system32\rundll32.exe" = C:\WINDOWS\system32\rundll32.exe:*:Enabled:Kjør en DLL som et program -- (Microsoft Corporation)
"C:\Programfiler\Steam\steamapps\common\Dystopia\hl2.exe" = C:\Programfiler\Steam\steamapps\common\Dystopia\hl2.exe:*:Enabled:Dystopia -- ()
"C:\Documents and Settings\All Users\Programdata\Battle.net\Agent\Agent.3688\Agent.exe" = C:\Documents and Settings\All Users\Programdata\Battle.net\Agent\Agent.3688\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
"C:\Programfiler\Steam\steamapps\common\Team Fortress 2\hl2.exe" = C:\Programfiler\Steam\steamapps\common\Team Fortress 2\hl2.exe:*:Enabled:Team Fortress 2 -- ()
"C:\Documents and Settings\All Users\Programdata\Battle.net\Agent\Agent.3689\Agent.exe" = C:\Documents and Settings\All Users\Programdata\Battle.net\Agent\Agent.3689\Agent.exe:*:Enabled:Battle.net Update Agent -- (Blizzard Entertainment)
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A5B39D2-7ED6-4779-BCC9-37F381139DB3}" = Adobe AIR
"{0FAF6738-12D4-3D63-A15D-341D012FB84F}" = Microsoft .NET Framework 4 Extended NOR Language Pack
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.0
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 51
"{3028F213-FAEE-33D7-C8CA-F8A859A36B2B}" = HydraVision
"{350C9414-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}" = ATI HYDRAVISION
"{3EAC35F4-FF26-4123-9404-0B5B93DAB570}" = Microsoft .NET Framework 1.1 Norwegian Language Pack
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple-programsupport
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{79BF4901-1EC4-4726-B3C2-A7859706C6E7}" = League of Legends
"{86D09F48-CDAB-4B4C-8806-F6C16F17935A}" = PokerStrategy.com Equilab
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EB62C87-AAA6-4850-A5BC-64155884B973}" = SketchUp 8
"{8EC376A3-F279-47D7-97AA-7BA2A2EB006E}" = Cisco AnyConnect Secure Mobility Client
"{90140000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders  (English) 14
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-003B-0000-0000-0000000FF1CE}" = Microsoft Office Project Professional 2010
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00B4-0409-0000-0000000FF1CE}" = Microsoft Office Project MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B486871-27EB-49A5-8832-77176E63333C}" = iTunes
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C049499-055C-4a0c-A916-1D12314F45EB}" = REALTEK Wireless LAN Driver and Utility
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A3499A41-41EA-3567-977C-29E9E226A360}" = Microsoft .NET Framework 4 Client Profile NOR Language Pack
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1044-7B44-AB0000000001}" = Adobe Reader XI (11.0.08) - Norsk
"{AF099291-F4BC-B566-4F13-EE750FEC189F}" = AMD Problem Report Wizard
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBD486B9-01C2-3412-8BAA-1C20A5A58EAC}" = Google Chrome
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF7C2683-9FBE-4223-84E7-43FED4912CD5}" = Microsoft .NET Framework 2.0 Language Pack - NOR
"{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}" = Full Tilt Poker
"{D60ED057-BA8E-313A-8313-3C2DCCDA7D92}" = AMD Catalyst Install Manager
"{E14ADE0E-75F3-4A46-87E5-26692DD626EC}" = Apple Mobile Device Support
"{E2C98732-F973-4985-A9C5-DC06178E16EE}" = Microsoft Mathematics Add-in (32-bit)
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"7-Zip" = 7-Zip 9.20
"Adobe AIR" = Adobe AIR
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"ATI Display Driver" = ATI Display Driver
"Audacity_is1" = Audacity 2.0.4
"Battle.net" = Battle.net
"Cisco AnyConnect Secure Mobility Client" = Cisco AnyConnect Secure Mobility Client 
"Hearthstone" = Hearthstone
"ie8" = Windows Internet Explorer 8
"LAME_is1" = LAME v3.99.3 (for Windows)
"League of Legends 3.0.1" = League of Legends
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware versjon 2.0.4.1028
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - NOR" = Microsoft .NET Framework 2.0 Language Pack - NOR
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile NOR Language Pack" = Microsoft .NET Framework 4 Client Profile NOR Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended NOR Language Pack" = Microsoft .NET Framework 4 Extended NOR Language Pack
"Mozilla Firefox 29.0.1 (x86 nb-NO)" = Mozilla Firefox 29.0.1 (x86 nb-NO)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIA Drivers" = NVIDIA Drivers
"Office14.PRJPRO" = Microsoft Project Professional 2010
"Office14.SingleImage" = Microsoft Office Professional 2010
"PokerStars" = PokerStars
"PokerTracker4" = PokerTracker 4 (remove only)
"PostgreSQL 9.0" = PostgreSQL 9.0 
"Steam" = Steam
"Steam App 17580" = Dystopia
"Steam App 219740" = Don't Starve
"Steam App 322330" = Don't Starve Together Beta
"Steam App 440" = Team Fortress 2
"VLC media player" = VLC media player 2.1.2
 
========== HKEY_USERS Uninstall List ==========
 
[HKEY_USERS\S-1-5-21-73586283-1682526488-1417001333-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"optimizer_chrome" = Widevine Media Optimizer Chrome 6.0.0
"Spotify" = Spotify
 
========== Last 20 Event Log Errors ==========
 
[ Cisco AnyConnect Secure Mobility Client Events ]
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CHostConfigMgr::determinePublicAddrCandidateFromDefRoute
File:
 .\HostConfigMgr.cpp Line: 1766 Invoked Function: CHostConfigMgr::FindDefaultRouteInterface
Return
 Code: -24117215 (0xFE900021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CMainThread::applyHostConfigForNoVpn File: .\MainThread.cpp
Line:
 9685 Invoked Function: CHostConfigMgr::DeterminePublicInterface Return Code: -28835824
 (0xFE480010) Description: HOSTCONFIGMGR_ERROR_PUBLIC_ADDRESS_UNAVAILABLE 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CMainThread::genericNoticeCategoryHandler File: .\MainThread.cpp
Line:
 6908 Invoked Function: CMainThread::applyHostConfigForNoVpn Return Code: -28835824
 (0xFE480010) Description: HOSTCONFIGMGR_ERROR_PUBLIC_ADDRESS_UNAVAILABLE 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CMainThread::processNotice File: .\MainThread.cpp Line: 6521
Invoked
 Function: CMainThread::genericNoticeCategoryHandler Return Code: -28835824 (0xFE480010)
Description:
 HOSTCONFIGMGR_ERROR_PUBLIC_ADDRESS_UNAVAILABLE 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CMainThread::noticeHandler File: .\MainThread.cpp Line: 6471
Invoked
 Function: CMainThread::processNotice Return Code: -28835824 (0xFE480010) Description:
 HOSTCONFIGMGR_ERROR_PUBLIC_ADDRESS_UNAVAILABLE 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CMainThread::OnEventSignaled File: .\MainThread.cpp Line: 
6243 Invoked Function: CMainThread::noticeHandler Return Code: -28835824 (0xFE480010)
Description:
 HOSTCONFIGMGR_ERROR_PUBLIC_ADDRESS_UNAVAILABLE 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CHostConfigMgr::determinePublicAddrCandidateFromDefRoute
File:
 .\HostConfigMgr.cpp Line: 1766 Invoked Function: CHostConfigMgr::FindDefaultRouteInterface
Return
 Code: -24117215 (0xFE900021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CMainThread::applyHostConfigForNoVpn File: .\MainThread.cpp
Line:
 9685 Invoked Function: CHostConfigMgr::DeterminePublicInterface Return Code: -28835824
 (0xFE480010) Description: HOSTCONFIGMGR_ERROR_PUBLIC_ADDRESS_UNAVAILABLE 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CMainThread::OnTimerExpired File: .\MainThread.cpp Line: 5417
Invoked
 Function: CMainThread::applyHostConfigForNoVpn Return Code: -28835824 (0xFE480010)
Description:
 HOSTCONFIGMGR_ERROR_PUBLIC_ADDRESS_UNAVAILABLE 
 
Error - 16.09.2014 16:39:12 | Computer Name = FABIANE | Source = acvpnagent | ID = 67108866
Description = Function: CHostConfigMgr::determinePublicAddrCandidateFromDefRoute
File:
 .\HostConfigMgr.cpp Line: 1766 Invoked Function: CHostConfigMgr::FindDefaultRouteInterface
Return
 Code: -24117215 (0xFE900021) Description: ROUTETABLE_ERROR_GETBESTROUTE_FAILED 
 
[ System Events ]
Error - 22.01.2015 13:55:47 | Computer Name = FABIANE | Source = DCOM | ID = 10005
Description = DCOM fikk feilen "%1084" ved forsøk på å starte tjenesten MSIServer
 med argument ""  for å kunne kjøre server:   {000C101C-0000-0000-C000-000000000046}
 
Error - 22.01.2015 13:59:08 | Computer Name = FABIANE | Source = Service Control Manager | ID = 7026
Description = Følgende oppstarts- eller systemstartsdriver(e) kan ikke lastes inn:
   cherimoya  wpnfd_1_10_0_6
 
Error - 22.01.2015 14:45:53 | Computer Name = FABIANE | Source = Service Control Manager | ID = 7011
Description = Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra
 tjenesten MBAMService.
 
Error - 24.01.2015 02:36:47 | Computer Name = FABIANE | Source = Service Control Manager | ID = 7011
Description = Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra
 tjenesten MBAMService.
 
Error - 26.01.2015 11:36:58 | Computer Name = FABIANE | Source = System Error | ID = 1003
Description = Feilkode 100000d3, parameter1 9bb3dffc, parameter2 000000ff, parameter3
 00000000, parameter4 80545c2f.
 
Error - 26.01.2015 12:31:02 | Computer Name = FABIANE | Source = Service Control Manager | ID = 7011
Description = Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra
 tjenesten MBAMService.
 
Error - 26.01.2015 13:04:48 | Computer Name = FABIANE | Source = Service Control Manager | ID = 7011
Description = Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra
 tjenesten MBAMService.
 
Error - 26.01.2015 13:12:21 | Computer Name = FABIANE | Source = Service Control Manager | ID = 7011
Description = Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra
 tjenesten MBAMService.
 
Error - 26.01.2015 13:17:33 | Computer Name = FABIANE | Source = System Error | ID = 1003
Description = Feilkode 0000009c, parameter1 00000000, parameter2 ba33c050, parameter3
 b2000040, parameter4 00000800.
 
Error - 26.01.2015 13:26:26 | Computer Name = FABIANE | Source = Service Control Manager | ID = 7011
Description = Tidsavbrudd (30000 millisekunder). Venter på et transaksjonssvar fra
 tjenesten MBAMService.
 
 
< End of report >
 
Link to post
Share on other sites

I don't see the culprit. Some errors are pointing to drivers, but I can't find the connection.

Let's run this one.

batfile.gif Run System Files Checker

SFC is internal Windows tool to verify the integration of critical system files.

  • Press the WindowsKey.png on your keyboard.
  • In the search box type in cmd and wait until it appears.
  • Right-click on the batfile.gifcmd.exe and select RunAsAdmin.jpg Run as Administrator to start command prompt.
  • Type in the following command: sfc /scannow and press enter. Note the space as marked: sfc_/scannow.
Let in run unhindered. This procedure may take some time.

Did it say that finished and no violations were found?

Link to post
Share on other sites

Hey to run that I need a windows-cd which I cant find. I recently restarted the computer which resulted in trojan infection alerts. I think formatting is out of the question at the moment. It might be worth noting that Im not runninig on the xp administrator user, but I'm using a user with administrator priveleges so when i'm told to right click and run as administrator I just double click. Is there any way to proceed here?

 

Added screenshots of the trojan popup-warnings from my antispyware program. 

Thanks for the help

Link to post
Share on other sites

The detections you are pointing are generic and can be easily taken down. 

 

About Run as admin - my instructions are given for Vista/higher, ignore that.

 

You don't have your XP cd at all?  I do not request for reformatting, but SFC is a scan that repairs plenty of things.

Link to post
Share on other sites

See if you'll be able to do that scan:

DrWebCureIt.png Scan with Dr.Web CureIt

Please visit this page: Dr.Web CureIt!

You will find there a download site and instructions how to run a free scan with Dr.Web.

Some notes from me:

  • The file will come totally randomly named (like h34cva7) - that's normal; however it will have this icon: DrWebCureIt.png.
  • It may take a while to finish, depending of your capacities and system specs, be patient.
  • Don't fix anything on your own using Dr.Web - this type of scans often produces false positives; I will tell you what to remove and how to do it after a look at provided results.
Upon completion, please click Open Report and include it here for my analysis.

If the file will be too big to post it directly, you may attach it to your post.

To attach it:

- after typing in your message, click More reply options instead of Post.

- below the post preview and the post editor, you should be able to see Attach files option - please click Choose file.

- in the pop-up window navigate to the desktop. Choose the one named Application.zip and attach it.

If the file will be to big to attach it (it may happen), then please host it on a Dropbox account or a site like mediafire.com, providing me the link to the uploaded file.

Link to post
Share on other sites

P2P software is well known for exposimg you to the infections. As long as you'll use P2P (and most probably break the law with it) you'll be very vulnerable to any infections.
 
See if you are able to run the SFC now. Aside of that, please make me additional FRST scan:
 
 
 
FRST.gif Scan with Farbar Recovery Scan Tool
 
Please re-run Farbar Recovery Scan Tool.

  • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
    > XP users click run after receipt of Windows Security Warning - Open File.
    > 8 users will be prompted about Windows SmartScreen protection - click More information and Run.
  • Press Scan button and wait.
  • The tool will produce a logfile on your desktop named FRST.txt.

Please include its content in your next reply.

Link to post
Share on other sites

Hey. Indeed.

 

SFC - same thing as last.

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-02-2015
Ran by Fabian F. Egge (administrator) on FABIANE on 09-02-2015 22:11:56
Running from C:\Documents and Settings\Fabian F. Egge\Skrivebord
Loaded Profiles: Fabian F. Egge & postgres (Available profiles: Fabian F. Egge & postgres)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: Norsk (bokmål)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Cisco Systems, Inc.) C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(SUPERAntiSpyware.com) C:\Programfiler\SUPERAntiSpyware\SASCORE.EXE
(Apple Inc.) C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Programfiler\Bonjour\mDNSResponder.exe
(Oracle Corporation) C:\Programfiler\Java\jre7\bin\jqs.exe
(Malwarebytes Corporation) C:\Programfiler\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Programfiler\Malwarebytes Anti-Malware\mbam.exe
(PostgreSQL Global Development Group) C:\Programfiler\PostgreSQL\9.0\bin\pg_ctl.exe
(PostgreSQL Global Development Group) C:\Programfiler\PostgreSQL\9.0\bin\postgres.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Apple Inc.) C:\Programfiler\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe
(Cisco Systems, Inc.) C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(PostgreSQL Global Development Group) C:\Programfiler\PostgreSQL\9.0\bin\postgres.exe
(Spotify Ltd) C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\Data\SpotifyWebHelper.exe
(SUPERAntiSpyware) C:\Programfiler\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Realtek Semiconductor Corp.) C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
(PostgreSQL Global Development Group) C:\Programfiler\PostgreSQL\9.0\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Programfiler\PostgreSQL\9.0\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Programfiler\PostgreSQL\9.0\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Programfiler\PostgreSQL\9.0\bin\postgres.exe
(Apple Inc.) C:\Programfiler\iPod\bin\iPodService.exe
(Oracle Corporation) C:\Programfiler\Fellesfiler\Java\Java Update\jucheck.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programfiler\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18671104 2009-07-29] (Realtek Semiconductor Corp.)
HKLM\...\Run: [APSDaemon] => C:\Programfiler\Fellesfiler\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Programfiler\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Programfiler\Fellesfiler\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Programfiler\Fellesfiler\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707984 2013-10-10] (Cisco Systems, Inc.)
HKLM\...\Run: [P17Helper] => Rundll32 SPIRun.dll,RunDLLEntry
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Run: [spotify Web Helper] => C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify\Data\SpotifyWebHelper.exe [1676344 2015-01-28] (Spotify Ltd)
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\...\Run: [sUPERAntiSpyware] => C:\Programfiler\SUPERAntiSpyware\SUPERAntiSpyware.exe [6699800 2015-02-07] (SUPERAntiSpyware)
Startup: C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart\REALTEK 11n USB Wireless LAN Utility.lnk
ShortcutTarget: REALTEK 11n USB Wireless LAN Utility.lnk -> C:\Programfiler\Realtek\11n USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-73586283-1682526488-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: [s-1-5-21-73586283-1682526488-1417001333-1005] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-73586283-1682526488-1417001333-1005 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Programfiler\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Programfiler\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Programfiler\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programfiler\Fellesfiler\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programfiler\Fellesfiler\SYSTEM\OLE DB\MSDAIPP.DLL (Microsoft Corporation)
ShellExecuteHooks: Binding for URL-initialisering - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\system32\shell32.dll [8468992 2012-06-08] (Microsoft Corporation)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Programfiler\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
Winsock: Catalog5 04 C:\Programfiler\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Programfiler\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Programfiler\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Programfiler\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Programfiler\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Programfiler\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Programfiler\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Programfiler\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Programfiler\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\bok-NO.xml
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\gulesider-NO.xml
FF SearchPlugin: C:\Programfiler\mozilla firefox\browser\searchplugins\qxl-NO.xml
FF Extension: Zoom It - C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\Extensions\{83e02f0a-1694-3889-c714-122520abd078} [2015-01-22]
FF Extension: Media Hint - C:\Documents and Settings\Fabian F. Egge\Programdata\Mozilla\Firefox\Profiles\t4yyb141.default\Extensions\mediahint@jetpack.xpi [2013-12-27]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-08-22]
StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR StartupUrls: Profile 1 -> "https://www.google.com/"
CHR Profile: C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Wallet) - C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-22]
StartMenuInternet: chrome.exe - Chrome.exe
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Programfiler\SUPERAntiSpyware\SASCORE.EXE [142648 2014-08-13] (SUPERAntiSpyware.com)
R2 Apple Mobile Device; C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008 2012-12-21] (Apple Inc.)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2009-09-18] () [File not signed]
R2 Bonjour Service; C:\Programfiler\Bonjour\mDNSResponder.exe [390504 2011-08-30] (Apple Inc.)
S2 gupdate; C:\Programfiler\Google\Update\GoogleUpdate.exe [116648 2013-08-21] (Google Inc.)
S3 gupdatem; C:\Programfiler\Google\Update\GoogleUpdate.exe [116648 2013-08-21] (Google Inc.)
R3 iPod Service; C:\Programfiler\iPod\bin\iPodService.exe [553288 2013-08-16] (Apple Inc.)
R2 JavaQuickStarterService; C:\Programfiler\Java\jre7\bin\jqs.exe [182696 2013-12-18] (Oracle Corporation)
R2 MBAMScheduler; C:\Programfiler\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Programfiler\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 MozillaMaintenance; C:\Programfiler\Mozilla Maintenance Service\maintenanceservice.exe [119408 2014-05-09] (Mozilla Foundation)
S3 ose; C:\Programfiler\Fellesfiler\Microsoft Shared\Source Engine\OSE.EXE [149352 2010-01-09] (Microsoft Corporation)
S3 osppsvc; C:\Programfiler\Fellesfiler\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [4640000 2010-01-09] (Microsoft Corporation)
S2 SkypeUpdate; C:\Programfiler\Skype\Updater\Updater.exe [315496 2014-12-11] (Skype Technologies)
R2 vpnagent; C:\Programfiler\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [558480 2013-10-10] (Cisco Systems, Inc.)
R2 postgresql-9.0; C:/Programfiler/PostgreSQL/9.0/bin/pg_ctl.exe runservice -N "postgresql-9.0" -D "C:/Programfiler/PostgreSQL/9.0/data" -w [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 acsint; C:\WINDOWS\System32\DRIVERS\acsint.sys [40304 2013-10-10] (Cisco Systems, Inc.)
S3 acsmux; C:\WINDOWS\System32\DRIVERS\acsmux.sys [58736 2013-10-10] (Cisco Systems, Inc.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2014-09-14] (Cisco Systems, Inc.) [File not signed]
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1684736 2008-08-06] (Creative)
R3 AtiHDAudioService; C:\WINDOWS\System32\drivers\AtihdXP3.sys [96256 2013-07-09] (Advanced Micro Devices)
R3 CTUSFSYN; C:\WINDOWS\System32\drivers\ctusfsyn.sys [162176 2006-08-07] (Creative Technology Ltd.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [114904 2015-02-09] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2006-01-05] (Creative Technology Ltd.)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [100736 2006-04-25] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [34176 2006-02-18] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13056 2006-02-18] (NVIDIA Corporation)
S3 P17xfi; C:\WINDOWS\System32\drivers\P17xfi.sys [1174528 2007-11-21] (Creative Technology Ltd.)
S3 p17xfilt; C:\WINDOWS\System32\drivers\p17xfilt.sys [1664384 2007-10-10] (Creative)
S3 RTL8192cu; C:\WINDOWS\System32\DRIVERS\RTL8192cu.sys [978920 2010-11-17] (Realtek Semiconductor Corporation                           )
R1 SASDIFSV; C:\Programfiler\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Programfiler\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S4 IntelIde; No ImagePath
U1 WS2IFSL; No ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-02-06 19:38 - 2015-02-06 19:38 - 04090760 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\cureit.log
2015-02-06 18:52 - 2015-02-07 19:48 - 00065536 _____ () C:\WINDOWS\system32\config\Doctor Web.evt
2015-02-06 18:52 - 2015-02-06 18:52 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Doctor Web
2015-02-06 18:45 - 2015-02-06 18:47 - 161466120 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\em54jya0.exe
2015-02-05 19:06 - 2015-02-05 19:06 - 00000049 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\jh.txt
2015-02-05 18:50 - 2015-02-05 18:50 - 00000000 ____D () C:\WINDOWS\CSC
2015-01-28 22:56 - 2015-01-28 22:56 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\PokerStrategy
2015-01-28 22:53 - 2015-01-28 22:53 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\ICMTrainer
2015-01-28 20:33 - 2015-01-28 20:33 - 03542872 _____ (WinZip Computing, S.L. (WinZip Computing) ) C:\Documents and Settings\Fabian F. Egge\Skrivebord\wzdu18.exe
2015-01-27 19:17 - 2015-01-27 19:17 - 00001319 _____ () C:\Documents and Settings\Fabian F. Egge\Start-meny\Titan Poker.lnk
2015-01-27 19:15 - 2015-01-28 22:53 - 00002493 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\ICM Trainer.lnk
2015-01-27 18:03 - 2015-02-01 20:25 - 00002577 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\ICM Trainer Light.lnk
2015-01-27 18:03 - 2015-01-27 19:15 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\PokerStrategy
2015-01-27 18:03 - 2015-01-27 18:04 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\ICMTrainerLight
2015-01-27 17:48 - 2015-01-27 17:48 - 00047254 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Extras.Txt
2015-01-26 21:15 - 2015-01-26 21:16 - 00039838 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Addition.txt
2015-01-26 21:14 - 2015-02-09 22:12 - 00016237 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST.txt
2015-01-26 21:14 - 2015-02-09 22:11 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST-OlderVersion
2015-01-26 20:47 - 2015-01-26 20:47 - 00001601 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\PokerStars.lnk
2015-01-26 20:47 - 2015-01-26 20:47 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\PokerStars
2015-01-26 20:45 - 2015-02-07 00:17 - 00000000 ____D () C:\Programfiler\PokerStars
2015-01-26 19:29 - 2015-01-26 19:29 - 00004968 _____ () C:\Documents and Settings\All Users\Programdata\lrbivjdu.eai
2015-01-26 18:15 - 2015-01-26 18:15 - 00094208 _____ () C:\WINDOWS\Minidump\Mini012615-02.dmp
2015-01-26 17:56 - 2015-01-26 17:56 - 00000061 _____ () C:\WINDOWS\sbwin.ini
2015-01-26 17:22 - 2015-01-26 17:22 - 00413696 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2015-01-26 17:22 - 2015-01-26 17:22 - 00102400 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2015-01-26 17:22 - 2008-03-03 11:54 - 00023273 _____ () C:\WINDOWS\system32\Ludap17.ini
2015-01-26 17:22 - 2007-09-12 14:11 - 00765952 _____ (Creative Labs Inc.) C:\WINDOWS\OALInst.exe
2015-01-26 17:22 - 2007-07-02 11:45 - 00000990 _____ () C:\WINDOWS\SB0790.reg
2015-01-26 17:22 - 2007-07-02 11:45 - 00000986 _____ () C:\WINDOWS\SB0792.reg
2015-01-26 17:22 - 2006-08-07 19:30 - 00162176 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctusfsyn.sys
2015-01-26 17:22 - 2005-12-08 11:54 - 00142336 _____ (Creative Technology Ltd) C:\WINDOWS\system32\Drivers\ctsfm2k.sys
2015-01-26 17:22 - 2005-12-08 11:54 - 00120832 _____ (Creative Technology Ltd) C:\WINDOWS\system32\sfms32.dll
2015-01-26 17:22 - 2005-12-08 11:54 - 00114688 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctoss2k.sys
2015-01-26 17:22 - 2005-12-08 11:54 - 00021504 _____ (Creative Technology Ltd) C:\WINDOWS\system32\sfman32.dll
2015-01-26 17:22 - 2005-04-22 11:27 - 00073728 _____ (Creative Technology Ltd) C:\WINDOWS\MIDIDEF.EXE
2015-01-26 17:22 - 2005-03-08 14:17 - 00000054 _____ () C:\WINDOWS\system32\ctzapxx.ini
2015-01-26 17:22 - 2003-07-24 12:17 - 04174814 _____ () C:\WINDOWS\system32\ct4mgm.sf2
2015-01-26 17:22 - 2003-04-11 10:26 - 00000059 _____ () C:\WINDOWS\system32\default4.sfm
2015-01-26 17:21 - 2008-03-18 17:02 - 22833304 _____ (Creative Technology Ltd) C:\WINDOWS\system32\AppSetup.exe
2015-01-26 17:21 - 2007-11-21 17:06 - 01174528 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\P17xfi.sys
2015-01-26 17:21 - 2007-05-08 08:59 - 00137216 _____ () C:\WINDOWS\system32\OemSpi.dll
2015-01-26 17:21 - 2006-08-23 18:47 - 00008251 _____ () C:\WINDOWS\sfsyn.ini
2015-01-26 17:21 - 2006-07-03 12:55 - 00053248 _____ (Creative Technology Ltd.) C:\WINDOWS\resdef.exe
2015-01-26 17:21 - 2006-07-03 12:43 - 00010752 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\SPIRun.dll
2015-01-26 17:21 - 2006-06-02 11:08 - 00197632 _____ (Creative Technology Ltd) C:\WINDOWS\SF32.exe
2015-01-26 17:21 - 2006-01-25 14:55 - 00137728 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\P17res.dll
2015-01-26 17:21 - 2005-06-15 11:07 - 00011264 _____ (Creative Technology Limited) C:\WINDOWS\InRes.DLL
2015-01-26 17:21 - 2004-12-22 19:58 - 00008704 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\Pfmodnt.sys
2015-01-26 17:21 - 2003-10-02 18:48 - 00053248 _____ () C:\WINDOWS\system32\P17CPI.dll
2015-01-26 17:21 - 2003-04-02 07:13 - 00139264 _____ (Creative Technology Ltd) C:\WINDOWS\system32\EAX.DLL
2015-01-26 16:52 - 2015-01-26 16:57 - 00000000 ____D () C:\AdwCleaner
2015-01-26 16:35 - 2015-01-26 16:35 - 00094208 _____ () C:\WINDOWS\Minidump\Mini012615-01.dmp
2015-01-26 16:17 - 2015-01-26 16:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2015-01-26 15:08 - 2015-01-26 15:13 - 00305468 _____ () C:\zoek-results.log
2015-01-26 15:02 - 2015-01-26 15:02 - 00000000 ____D () C:\zoek_backup
2015-01-26 01:15 - 2015-02-09 22:11 - 00016245 _____ () C:\WINDOWS\setupapi.log
2015-01-25 18:28 - 2015-02-07 07:56 - 00000184 ___SH () C:\Documents and Settings\postgres\ntuser.ini
2015-01-25 18:28 - 2015-01-25 18:28 - 00000000 ____D () C:\Documents and Settings\postgres
2015-01-25 18:28 - 2015-01-25 18:28 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\PostgreSQL 9.0
2015-01-25 18:28 - 2013-09-04 02:08 - 00000000 ____D () C:\Documents and Settings\postgres\Lokale innstillinger\Programdata\Microsoft Help
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___RD () C:\Documents and Settings\postgres\Start-meny\Programmer\Oppstart
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___RD () C:\Documents and Settings\postgres\Start-meny
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\Skrivere
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\Siste
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\Lokale innstillinger\Logg
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\Lokale innstillinger
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ___HD () C:\Documents and Settings\postgres\AndrMask
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\postgres\Skrivebord
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\postgres\Mine dokumenter
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\postgres\Lokale innstillinger\Temp
2015-01-25 18:28 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\postgres\Favoritter
2015-01-25 18:28 - 2013-08-21 19:01 - 00000000 ___RD () C:\Documents and Settings\postgres\Start-meny\Programmer
2015-01-25 18:28 - 2013-08-21 18:51 - 00000000 ____D () C:\Documents and Settings\postgres\Programdata\Macromedia
2015-01-25 18:28 - 2013-08-21 18:25 - 00001599 _____ () C:\Documents and Settings\postgres\Start-meny\Programmer\Fjernhjelp.lnk
2015-01-25 18:28 - 2013-08-21 18:25 - 00000000 ___RD () C:\Documents and Settings\postgres\Start-meny\Programmer\Tilbehør
2015-01-25 18:28 - 2013-08-21 18:22 - 00000000 ___HD () C:\Documents and Settings\postgres\Maler
2015-01-25 18:26 - 2015-01-25 18:26 - 00000000 ____D () C:\Programfiler\PostgreSQL
2015-01-25 18:21 - 2015-01-29 19:29 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\PokerTracker 4
2015-01-25 18:21 - 2015-01-25 18:21 - 00004946 _____ () C:\Documents and Settings\All Users\Programdata\flwjycbm.bab
2015-01-25 16:33 - 2015-01-25 16:33 - 00000742 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\PokerTracker 4.lnk
2015-01-25 16:33 - 2015-01-25 16:33 - 00000000 ____D () C:\Programfiler\PokerTracker 4
2015-01-25 16:33 - 2015-01-25 16:33 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\PokerTracker 4
2015-01-25 02:48 - 2015-01-25 02:49 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Dropbox
2015-01-25 02:47 - 2015-01-25 02:47 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Dropbox (Old)
2015-01-22 23:49 - 2015-01-22 19:02 - 00001810 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Google Chrome.lnk
2015-01-22 23:23 - 2015-02-07 03:08 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Equilab
2015-01-22 20:06 - 2015-02-09 22:11 - 01124352 _____ (Farbar) C:\Documents and Settings\Fabian F. Egge\Skrivebord\FRST.exe
2015-01-22 20:06 - 2015-02-09 22:11 - 00000000 ____D () C:\FRST
2015-01-22 19:09 - 2015-02-09 21:43 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-22 19:08 - 2015-01-22 19:08 - 00000770 _____ () C:\Documents and Settings\All Users\Skrivebord\Malwarebytes Anti-Malware.lnk
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Programfiler\Malwarebytes Anti-Malware
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Malwarebytes Anti-Malware
2015-01-22 19:08 - 2015-01-22 19:08 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Malwarebytes
2015-01-22 19:08 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-01-22 19:08 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-01-22 19:06 - 2015-02-06 19:39 - 00000000 __RHD () C:\Documents and Settings\Fabian F. Egge\Siste
2015-01-22 19:06 - 2015-01-22 19:06 - 00154342 _____ () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\cc_20150122_190605.reg
2015-01-22 18:55 - 2015-01-22 18:55 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\816b8710000600d
2015-01-22 18:53 - 2015-01-22 18:53 - 00000000 ____D () C:\shoplog
2015-01-22 18:51 - 2015-01-22 18:51 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2015-01-22 18:50 - 2015-02-09 02:49 - 00000524 _____ () C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 6ba769cc-e797-4d5b-aa86-7ef6bce948fe.job
2015-01-22 18:26 - 2015-01-22 18:26 - 00000000 ____D () C:\WINDOWS\system32\Flash
2015-01-22 18:25 - 2015-01-22 18:25 - 00613057 _____ (CMI Limited) C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\nsr5C.tmp
2015-01-22 18:23 - 2015-01-22 18:23 - 00076040 _____ () C:\Documents and Settings\LocalService\Lokale innstillinger\Programdata\GDIPFONTCACHEV1.DAT
2015-01-22 18:00 - 2015-01-22 18:00 - 00000000 ___RD () C:\Documents and Settings\LocalService\Favoritter
2015-01-22 18:00 - 2015-01-22 18:00 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Company
2015-01-22 17:58 - 2015-02-09 03:02 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Skype
2015-01-22 17:58 - 2015-01-22 17:58 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Skype
2015-01-22 17:57 - 2015-02-08 16:36 - 00002257 _____ () C:\Documents and Settings\All Users\Skrivebord\Skype.lnk
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ___RD () C:\Programfiler\Skype
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ____D () C:\Programfiler\Fellesfiler\Skype
2015-01-22 17:57 - 2015-01-22 17:57 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Skype
2015-01-22 17:56 - 2015-01-22 17:57 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Skype
2015-01-21 01:32 - 2015-01-21 01:37 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Klei
2015-01-21 01:31 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-01-21 01:31 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-01-21 01:31 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-01-21 01:31 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-01-21 01:31 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-01-21 01:31 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-01-21 01:31 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-01-21 01:31 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-01-21 01:31 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-01-21 01:31 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-01-21 01:31 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-01-21 01:31 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-01-21 01:31 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-01-21 01:31 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-01-21 01:31 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-01-21 01:31 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-01-21 01:31 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-01-21 01:31 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-01-21 01:31 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-01-21 01:31 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-01-21 01:31 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-01-21 01:31 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-01-21 01:31 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-01-21 01:31 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-01-21 01:31 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-01-21 01:31 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-01-21 01:31 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-01-21 01:31 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-01-21 01:31 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-01-21 01:31 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-01-21 01:31 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-01-21 01:31 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-01-21 01:31 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-01-21 01:31 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-01-21 01:31 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-01-21 01:30 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-01-21 01:30 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-01-21 01:30 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-01-21 01:30 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-01-21 01:30 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-01-21 01:30 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-01-21 01:30 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-01-21 01:30 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-01-21 01:30 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-01-21 01:30 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-01-21 01:30 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-01-21 01:30 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-01-21 01:30 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-01-21 01:30 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-01-21 01:30 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-01-21 01:30 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-01-21 01:30 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-01-21 01:30 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-01-21 01:30 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-01-21 01:30 - 2005-12-05 18:07 - 00061136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput9_1_0.dll
2015-01-21 01:30 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-01-21 01:30 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-01-21 01:30 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-01-21 01:30 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-01-18 23:35 - 2015-01-18 23:35 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\LolClient
2015-01-18 23:27 - 2015-02-09 03:05 - 00000000 ____D () C:\Programfiler\Steam
2015-01-18 23:27 - 2015-01-18 23:27 - 00000631 _____ () C:\Documents and Settings\All Users\Skrivebord\Steam.lnk
2015-01-18 23:27 - 2015-01-18 23:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Steam
2015-01-18 23:00 - 2015-01-18 23:00 - 00000000 ____D () C:\Programfiler\PokerStrategy
2015-01-18 21:23 - 2015-01-18 21:23 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Riot Games
2015-01-17 20:00 - 2015-01-17 20:00 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Blizzard
2015-01-17 19:56 - 2015-01-27 18:03 - 00000000 ____D () C:\Programfiler\PokerStrategy.com
2015-01-17 19:56 - 2015-01-17 19:56 - 00001977 _____ () C:\Documents and Settings\All Users\Skrivebord\PokerStrategy.com Equilab.lnk
2015-01-17 19:56 - 2015-01-17 19:56 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Downloaded Installations
2015-01-17 19:56 - 2015-01-17 19:56 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\PokerStrategy.com
2015-01-17 19:55 - 2015-01-17 19:55 - 00001507 _____ () C:\Documents and Settings\All Users\Skrivebord\League of Legends.lnk
2015-01-17 19:55 - 2015-01-17 19:55 - 00000000 ____D () C:\Riot Games
2015-01-17 19:55 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-01-17 19:55 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-01-17 19:55 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-01-17 19:53 - 2015-01-17 19:55 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Riot Games
2015-01-17 18:31 - 2015-01-17 18:31 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\cache
2015-01-17 18:30 - 2015-01-18 22:14 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\FullTiltPoker
2015-01-17 18:30 - 2015-01-17 18:30 - 00000779 _____ () C:\Documents and Settings\All Users\Skrivebord\Full Tilt Poker.lnk
2015-01-17 18:30 - 2015-01-17 18:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Full Tilt Poker
2015-01-17 18:29 - 2015-02-06 21:48 - 00000000 ____D () C:\Programfiler\Hearthstone
2015-01-17 18:29 - 2015-01-26 21:37 - 00000000 ____D () C:\Programfiler\Full Tilt Poker
2015-01-17 18:29 - 2015-01-17 18:29 - 00000849 _____ () C:\Documents and Settings\All Users\Skrivebord\Hearthstone.lnk
2015-01-17 18:29 - 2015-01-17 18:29 - 00000000 ____D () C:\Programfiler\Fellesfiler\Blizzard Entertainment
2015-01-17 18:29 - 2015-01-17 18:29 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Hearthstone
2015-01-17 18:28 - 2015-02-07 00:13 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Battle.net
2015-01-17 18:28 - 2015-01-17 18:28 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Battle.net
2015-01-17 18:28 - 2015-01-17 18:28 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Blizzard Entertainment
2015-01-17 18:27 - 2015-02-06 21:47 - 00000000 ____D () C:\Programfiler\Battle.net
2015-01-17 18:27 - 2015-01-17 18:27 - 00000812 _____ () C:\Documents and Settings\All Users\Skrivebord\Battle.net.lnk
2015-01-17 18:27 - 2015-01-17 18:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Battle.net
2015-01-17 18:27 - 2015-01-17 18:27 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Blizzard Entertainment
2015-01-17 18:17 - 2015-01-17 18:17 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Battle.net
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-02-09 22:12 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Temp
2015-02-09 22:11 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Skrivebord
2015-02-09 22:08 - 2013-08-22 02:11 - 00000260 _____ () C:\WINDOWS\Tasks\WGASetup.job
2015-02-09 21:51 - 2013-08-21 18:24 - 01958760 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-09 21:42 - 2014-03-23 06:38 - 00000240 _____ () C:\WINDOWS\Tasks\Varsel om avslutning av støtte for Microsoft Windows XP – pålogging.job
2015-02-09 21:42 - 2013-08-21 20:06 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-02-09 21:42 - 2013-08-21 20:06 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-02-09 21:42 - 2013-08-21 18:50 - 00000974 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-09 21:42 - 2013-08-21 18:29 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-09 21:42 - 2001-10-09 13:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-02-09 03:05 - 2013-12-13 03:47 - 03997696 _____ () C:\WINDOWS\system32\config\ACVPN.evt
2015-02-09 03:05 - 2013-08-21 18:30 - 00000184 ___SH () C:\Documents and Settings\Fabian F. Egge\ntuser.ini
2015-02-09 03:05 - 2013-08-21 18:29 - 00032550 _____ () C:\WINDOWS\SchedLgU.Txt
2015-02-09 02:27 - 2013-08-21 18:50 - 00000978 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-08 15:00 - 2014-03-23 06:38 - 00000234 _____ () C:\WINDOWS\Tasks\Varsel om avslutning av støtte for Microsoft Windows XP – månedlig.job
2015-02-08 03:50 - 2013-08-21 21:08 - 00000000 ____D () C:\Programfiler\SUPERAntiSpyware
2015-02-07 19:48 - 2013-08-21 19:20 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Spotify
2015-02-06 20:42 - 2013-08-21 19:21 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Spotify
2015-02-06 18:52 - 2013-08-21 18:30 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge
2015-02-06 12:04 - 2013-08-22 14:17 - 00000282 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2015-02-05 18:15 - 2013-08-21 20:04 - 01221642 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-02-05 18:15 - 2001-10-09 13:00 - 00507368 _____ () C:\WINDOWS\system32\perfh014.dat
2015-02-05 18:15 - 2001-10-09 13:00 - 00100296 _____ () C:\WINDOWS\system32\perfc014.dat
2015-02-05 03:52 - 2013-08-21 18:29 - 00000000 ____D () C:\Documents and Settings\LocalService\Lokale innstillinger\Temp
2015-02-04 21:22 - 2013-08-21 20:04 - 00000000 ___RD () C:\Programfiler
2015-02-03 21:32 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Mine bilder
2015-02-03 21:25 - 2014-09-14 20:51 - 00000000 _____ () C:\WINDOWS\RTacDbg.txt
2015-01-30 12:19 - 2013-08-21 18:30 - 00000000 ___HD () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger
2015-01-27 19:17 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Start-meny
2015-01-27 18:12 - 2014-01-27 00:56 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-01-27 18:12 - 2014-01-27 00:56 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-01-27 18:12 - 2013-08-21 18:51 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\Adobe
2015-01-27 18:03 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer
2015-01-26 18:25 - 2013-08-21 20:04 - 00000000 ____D () C:\Programfiler\Fellesfiler
2015-01-26 18:25 - 2013-08-21 19:54 - 00000000 ____D () C:\Programfiler\Creative
2015-01-26 18:22 - 2013-08-21 19:54 - 00000000 ____D () C:\Documents and Settings\All Users\Start-meny\Programmer\Creative
2015-01-26 18:21 - 2013-08-21 19:59 - 00000000 ___HD () C:\Programfiler\Creative Installation Information
2015-01-26 18:21 - 2013-08-21 19:56 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Creative
2015-01-26 17:58 - 2013-08-21 20:05 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Creative
2015-01-26 17:56 - 2013-08-21 19:56 - 00000584 _____ () C:\WINDOWS\system32\settingsbkup.sfm
2015-01-26 17:56 - 2013-08-21 19:56 - 00000584 _____ () C:\WINDOWS\system32\settings.sfm
2015-01-26 17:47 - 2013-08-21 18:51 - 00000000 ___HD () C:\Programfiler\InstallShield Installation Information
2015-01-26 17:22 - 2013-08-21 19:55 - 00000971 ___RH () C:\WINDOWS\ctfile.rfc
2015-01-26 16:57 - 2013-12-27 01:03 - 00000723 _____ () C:\Documents and Settings\All Users\Start-meny\Programmer\Mozilla Firefox.lnk
2015-01-26 16:57 - 2013-08-21 20:04 - 00000000 ___RD () C:\Documents and Settings\All Users\Start-meny\Programmer
2015-01-26 16:57 - 2013-08-21 18:30 - 00000758 _____ () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Internet Explorer.lnk
2015-01-26 16:57 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter
2015-01-25 02:49 - 2013-08-22 14:45 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\Dropbox
2015-01-25 02:49 - 2013-08-21 18:30 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Oppstart
2015-01-25 02:47 - 2013-08-22 14:47 - 00000000 ___RD () C:\Documents and Settings\Fabian F. Egge\Mine dokumenter\Dropbox
2015-01-24 07:35 - 2013-08-22 02:03 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973507$
2015-01-22 20:17 - 2013-08-21 20:04 - 00000000 ____D () C:\Documents and Settings\All Users\Skrivebord
2015-01-22 20:09 - 2013-08-21 21:36 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Programdata\uTorrent
2015-01-22 19:31 - 2013-08-21 21:37 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\CRE
2015-01-22 19:06 - 2013-08-25 21:33 - 00000000 ____D () C:\WINDOWS\Minidump
2015-01-22 19:06 - 2013-08-21 19:01 - 00000000 __SHD () C:\Documents and Settings\Fabian F. Egge\UserData
2015-01-22 18:52 - 2013-11-27 20:32 - 00000000 ____D () C:\Programfiler\MathType
2015-01-22 18:23 - 2013-08-21 18:24 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2015-01-22 18:00 - 2013-08-21 18:29 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-01-21 01:30 - 2013-08-21 18:53 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-01-18 15:27 - 2013-08-22 14:47 - 00001026 _____ () C:\Documents and Settings\Fabian F. Egge\Skrivebord\Dropbox.lnk
2015-01-18 15:27 - 2013-08-22 14:45 - 00000000 ____D () C:\Documents and Settings\Fabian F. Egge\Start-meny\Programmer\Dropbox
2015-01-18 15:25 - 2013-08-21 21:23 - 00076040 _____ () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\GDIPFONTCACHEV1.DAT
2015-01-18 15:21 - 2013-08-21 20:02 - 00292480 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-18 02:02 - 2013-09-02 20:00 - 00000000 ____D () C:\Documents and Settings\All Users\Programdata\Microsoft Help
2015-01-18 01:59 - 2013-08-21 19:40 - 00000000 ____D () C:\WINDOWS\system32\MRT
 
==================== Files in the root of some directories =======
 
2013-09-11 22:40 - 2014-06-05 16:25 - 0133120 _____ () C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-22 18:25 - 2015-01-22 18:25 - 0613057 _____ (CMI Limited) C:\Documents and Settings\Fabian F. Egge\Lokale innstillinger\Programdata\nsr5C.tmp
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================
Link to post
Share on other sites

Not since last, but the computer has been denying access to all sorts of operations/programs including taskmanager after i let the computer run for too long. I googled this issue and most hits I got was on this being a specific behaviour of a trojan infection. But I cannot quite see how this would benefit anyone, unless Im connected to an active botnet or something.. not likely or?

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.