ComboFix 11-11-02.03 - Eelmaster Deluxe 02-11-2011  19:10:30.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7600.0.1252.45.1033.18.4073.2390 [GMT 1:00]
Kører fra: c:\users\Eelmaster Deluxe\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: PC Tools Firewall Plus *Enabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Dannede nyt systemgendannelsespunkt
.
.
(((((((((((((((((((((((((((((((((((((((   Andet, der er slettet   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\users\Eelmaster Deluxe\AppData\Roaming\Setup.com
c:\windows\system32\consrv.dll
c:\windows\System64
D:\install.exe
E:\install.exe
.
.
(((((((((((((((((((((((((((((   Filer skabt fra 2011-10-02 til 2011-11-02  )))))))))))))))))))))))))))))))))))
.
.
2011-11-02 18:15 . 2011-11-02 18:15	--------	d-----w-	c:\users\Default\AppData\Local\temp
2011-11-01 14:44 . 2011-11-01 14:44	--------	d-----w-	c:\users\Eelmaster Deluxe\AppData\Roaming\PCToolsFirewallPlus
2011-11-01 14:38 . 2010-03-29 10:06	233488	----a-w-	c:\windows\system32\drivers\PCTCore64.sys
2011-11-01 14:38 . 2011-03-24 11:39	140800	----a-w-	c:\windows\system32\drivers\pctwfpfilter64.sys
2011-11-01 14:38 . 2011-01-17 08:09	334976	----a-w-	c:\windows\system32\drivers\pctgntdi64.sys
2011-11-01 14:34 . 2011-11-01 14:38	--------	d-----w-	c:\program files (x86)\Common Files\PC Tools
2011-11-01 14:34 . 2011-01-12 09:35	119688	----a-w-	c:\windows\system32\drivers\pctNdis-PacketFilter64.sys
2011-11-01 14:34 . 2010-07-08 07:49	79000	----a-w-	c:\windows\system32\drivers\pctNdis64.sys
2011-11-01 14:34 . 2010-02-05 07:26	42968	----a-w-	c:\windows\system32\drivers\pctNdis-DNS64.sys
2011-11-01 14:34 . 2011-01-17 07:11	179976	----a-w-	c:\windows\system32\drivers\pctplfw64.sys
2011-11-01 14:34 . 2011-11-01 14:44	--------	d-----w-	c:\program files (x86)\PC Tools Firewall Plus
2011-10-29 16:38 . 2011-10-29 16:38	--------	d-----w-	c:\programdata\Nexon
2011-10-29 16:32 . 2011-10-29 16:32	--------	d-----w-	c:\program files (x86)\BandiMPEG1
2011-10-29 15:28 . 2011-10-29 16:32	--------	d-----w-	C:\Download
2011-10-29 15:28 . 2011-10-29 16:30	--------	d-----w-	C:\Nexon
2011-10-29 15:28 . 2011-10-29 15:28	235	----a-w-	c:\windows\SysWow64\nxEuUninstall.bat
2011-10-29 15:28 . 2011-10-29 15:28	446464	----a-w-	c:\windows\NEXON_EU_DownloaderUpdater.exe
2011-10-29 06:58 . 2011-10-29 07:15	--------	d-----w-	c:\programdata\PopCap Games
2011-10-28 12:48 . 2011-10-28 12:48	--------	d-----w-	c:\program files (x86)\Common Files\Java
2011-10-24 02:07 . 2011-10-24 02:07	249856	------w-	c:\windows\Setup1.exe
2011-10-24 02:06 . 2011-10-24 02:06	73216	----a-w-	c:\windows\ST6UNST.EXE
2011-10-23 12:56 . 2011-10-23 12:56	--------	d-----w-	c:\windows\SysWow64\Adobe
2011-10-20 01:38 . 2011-10-20 01:38	--------	d-----w-	c:\users\Eelmaster Deluxe\AppData\Roaming\RenPy
2011-10-20 01:38 . 2011-10-20 01:38	--------	d-----w-	c:\program files (x86)\Infinite Game Works
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-23 12:45 . 2011-05-18 08:38	414368	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-10-03 03:06 . 2011-04-12 16:56	472808	----a-w-	c:\windows\SysWow64\deployJava1.dll
2011-09-30 13:39 . 2011-04-09 13:42	1025664	----a-w-	c:\windows\PE_Rom.dll
2011-09-14 09:47 . 2011-09-14 09:47	60416	----a-w-	c:\windows\system32\OVDecode64.dll
2011-09-14 09:47 . 2011-09-14 09:47	53760	----a-w-	c:\windows\SysWow64\OVDecode.dll
2011-09-14 09:47 . 2011-09-14 09:47	16652288	----a-w-	c:\windows\system32\amdocl64.dll
2011-09-14 09:38 . 2011-09-14 09:38	44032	----a-w-	c:\windows\system32\amdoclcl64.dll
2011-09-14 09:38 . 2011-09-14 09:38	37376	----a-w-	c:\windows\SysWow64\amdoclcl.dll
2011-09-08 18:27 . 2011-09-08 18:27	10203648	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2011-09-08 17:59 . 2011-09-08 17:59	24229376	----a-w-	c:\windows\system32\atio6axx.dll
2011-09-08 17:39 . 2011-09-08 17:39	18534912	----a-w-	c:\windows\SysWow64\atioglxx.dll
2011-09-08 17:34 . 2011-09-08 17:34	151552	----a-w-	c:\windows\system32\atiapfxx.exe
2011-09-08 17:34 . 2011-09-08 17:34	732672	----a-w-	c:\windows\SysWow64\aticfx32.dll
2011-09-08 17:32 . 2011-03-09 04:55	862720	----a-w-	c:\windows\system32\aticfx64.dll
2011-09-08 17:30 . 2011-09-08 17:30	466944	----a-w-	c:\windows\system32\ATIDEMGX.dll
2011-09-08 17:30 . 2011-09-08 17:30	486912	----a-w-	c:\windows\system32\atieclxx.exe
2011-09-08 17:29 . 2011-09-08 17:29	204288	----a-w-	c:\windows\system32\atiesrxx.exe
2011-09-08 17:28 . 2011-09-08 17:28	120320	----a-w-	c:\windows\system32\atitmm64.dll
2011-09-08 17:28 . 2011-09-08 17:28	423424	----a-w-	c:\windows\system32\atipdl64.dll
2011-09-08 17:28 . 2011-09-08 17:28	356352	----a-w-	c:\windows\SysWow64\atipdlxx.dll
2011-09-08 17:28 . 2011-09-08 17:28	278528	----a-w-	c:\windows\SysWow64\Oemdspif.dll
2011-09-08 17:28 . 2011-09-08 17:28	21504	----a-w-	c:\windows\system32\atimuixx.dll
2011-09-08 17:28 . 2011-09-08 17:28	59392	----a-w-	c:\windows\system32\atiedu64.dll
2011-09-08 17:28 . 2011-09-08 17:28	43520	----a-w-	c:\windows\SysWow64\ati2edxx.dll
2011-09-08 17:24 . 2011-09-08 17:24	4204032	----a-w-	c:\windows\SysWow64\atidxx32.dll
2011-09-08 17:18 . 2011-09-08 17:18	1113088	----a-w-	c:\windows\system32\atiumd6v.dll
2011-09-08 17:18 . 2011-09-08 17:18	1828864	----a-w-	c:\windows\SysWow64\atiumdmv.dll
2011-09-08 17:18 . 2011-09-08 17:18	3888640	----a-w-	c:\windows\system32\atiumd6a.dll
2011-09-08 17:16 . 2011-03-09 04:40	4944896	----a-w-	c:\windows\system32\atidxx64.dll
2011-09-08 17:09 . 2011-09-08 17:09	51200	----a-w-	c:\windows\system32\aticalrt64.dll
2011-09-08 17:09 . 2011-09-08 17:09	46080	----a-w-	c:\windows\SysWow64\aticalrt.dll
2011-09-08 17:09 . 2011-09-08 17:09	44544	----a-w-	c:\windows\system32\aticalcl64.dll
2011-09-08 17:09 . 2011-09-08 17:09	44032	----a-w-	c:\windows\SysWow64\aticalcl.dll
2011-09-08 17:09 . 2011-09-08 17:09	8723456	----a-w-	c:\windows\system32\aticaldd64.dll
2011-09-08 17:08 . 2011-09-08 17:08	4064768	----a-w-	c:\windows\SysWow64\atiumdva.dll
2011-09-08 17:05 . 2011-09-08 17:05	7331840	----a-w-	c:\windows\SysWow64\aticaldd.dll
2011-09-08 17:05 . 2011-09-08 17:05	4289024	----a-w-	c:\windows\SysWow64\atiumdag.dll
2011-09-08 17:00 . 2011-09-08 17:00	5428736	----a-w-	c:\windows\system32\atiumd64.dll
2011-09-08 16:59 . 2011-03-09 04:11	58880	----a-w-	c:\windows\system32\coinst.dll
2011-09-08 16:53 . 2011-09-08 16:53	381952	----a-w-	c:\windows\system32\atiadlxx.dll
2011-09-08 16:53 . 2011-09-08 16:53	270336	----a-w-	c:\windows\SysWow64\atiadlxy.dll
2011-09-08 16:52 . 2011-09-08 16:52	15360	----a-w-	c:\windows\system32\atig6pxx.dll
2011-09-08 16:52 . 2011-09-08 16:52	13312	----a-w-	c:\windows\SysWow64\atiglpxx.dll
2011-09-08 16:52 . 2011-09-08 16:52	13312	----a-w-	c:\windows\system32\atiglpxx.dll
2011-09-08 16:52 . 2011-09-08 16:52	39936	----a-w-	c:\windows\system32\atig6txx.dll
2011-09-08 16:52 . 2011-09-08 16:52	32768	----a-w-	c:\windows\SysWow64\atigktxx.dll
2011-09-08 16:52 . 2011-09-08 16:52	310784	----a-w-	c:\windows\system32\drivers\atikmpag.sys
2011-09-08 16:52 . 2011-03-09 04:17	40960	----a-w-	c:\windows\system32\atiuxp64.dll
2011-09-08 16:51 . 2011-09-08 16:51	31744	----a-w-	c:\windows\SysWow64\atiuxpag.dll
2011-09-08 16:51 . 2011-07-28 20:53	38912	----a-w-	c:\windows\system32\atiu9p64.dll
2011-09-08 16:51 . 2011-09-08 16:51	29184	----a-w-	c:\windows\SysWow64\atiu9pag.dll
2011-09-08 16:51 . 2011-09-08 16:51	53248	----a-w-	c:\windows\system32\drivers\ati2erec.dll
2011-09-08 16:51 . 2011-09-08 16:51	54784	----a-w-	c:\windows\system32\atimpc64.dll
2011-09-08 16:51 . 2011-09-08 16:51	54784	----a-w-	c:\windows\system32\amdpcom64.dll
2011-09-08 16:50 . 2011-09-08 16:50	53760	----a-w-	c:\windows\SysWow64\atimpc32.dll
2011-09-08 16:50 . 2011-09-08 16:50	53760	----a-w-	c:\windows\SysWow64\amdpcom32.dll
2011-09-06 20:45 . 2011-04-09 13:15	41184	----a-w-	c:\windows\avastSS.scr
2011-09-06 20:45 . 2011-04-09 13:15	199304	----a-w-	c:\windows\SysWow64\aswBoot.exe
2011-09-06 20:45 . 2011-04-09 13:15	254400	----a-w-	c:\windows\system32\aswBoot.exe
2011-09-06 20:38 . 2011-04-09 13:15	601944	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2011-09-06 20:38 . 2011-04-09 13:15	301912	----a-w-	c:\windows\system32\drivers\aswSP.sys
2011-09-06 20:36 . 2011-04-09 13:15	58200	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2011-09-06 20:36 . 2011-04-09 13:15	42328	----a-w-	c:\windows\system32\drivers\aswRdr.sys
2011-09-06 20:36 . 2011-04-09 13:15	65368	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2011-09-06 20:36 . 2011-04-09 13:15	24408	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2011-08-31 15:00 . 2011-04-09 13:37	25416	----a-w-	c:\windows\system32\drivers\mbam.sys
2011-08-24 18:19 . 2011-08-24 18:19	56320	----a-w-	c:\windows\SysWow64\OpenVideo.dll
2011-08-24 18:18 . 2011-08-24 18:18	13601280	----a-w-	c:\windows\SysWow64\amdocl.dll
2011-05-22 20:11 . 2011-05-22 20:11	1195247	----a-w-	c:\program files (x86)\unins000.exe
.
.
(((((((((((((((((((((((((((((((((((   Start steder i reg.basen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke  
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PeerBlock"="c:\program files\PeerBlock\peerblock.exe" [2010-11-06 2646128]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2011-08-02 1242448]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"KPeerNexonEU"="c:\nexon\NEXON_EU_Downloader\nxEULauncher.exe" [2011-10-29 438272]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-04-27 113288]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160]
"ASUS ShellProcess Execute"="c:\program files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe" [2010-09-28 252544]
"BCU"="c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-10-26 375000]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-09-08 343168]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"00PCTFW"="c:\program files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" [2011-04-07 2672600]
.
c:\users\Eelmaster Deluxe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
FAHControl.lnk - c:\ting\FAHClient\FAHControl.exe [2011-9-19 1525760]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 atillk64;atillk64;c:\users\Eelmaster Deluxe\Downloads\HD_6950_to_HD_6970_mod\winflash\atillk64.sys [2006-07-19 14608]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 pbfilter;pbfilter;c:\program files\PeerBlock\pbfilter.sys [2010-11-06 24176]
R3 pctNdis;PC Tools Firewall Intermediate Filter Service;c:\windows\system32\DRIVERS\pctNdis64.sys [x]
S0 mv91xx;mv91xx;c:\windows\system32\DRIVERS\mv91xx.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 pctgntdi;pctgntdi;c:\windows\System32\drivers\pctgntdi64.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [2010-11-03 918144]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [2010-12-02 915584]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 BCUService;Browser Configuration Utility Service;c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-26 223464]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;c:\windows\system32\drivers\pctNdis-PacketFilter64.sys [x]
S3 pctNdisMP;PC Tools Driver;c:\windows\system32\DRIVERS\pctNdis64.sys [x]
S3 pctplfw;pctplfw;c:\windows\System32\drivers\pctplfw64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
--- Andre Services/Drivers i Hukommelsen ---
.
*Deregistered* - pctESPInject
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{35a7ba76-62b2-11e0-9d35-f46d04972a99}]
\shell\AutoRun\command - H:\SETUP.EXE
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-09-06 20:45	134384	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-11-02 11545192]
"combofix"="c:\combofix\CF20845.3XE" [2009-07-14 344576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Yderligere scanning -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 212.10.10.4 212.10.24.252 212.10.10.5
FF - ProfilePath - c:\users\Eelmaster Deluxe\AppData\Roaming\Mozilla\Firefox\Profiles\rlk9ezmx.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: network.proxy.type - 0
.
.
------- Fil Associationer -------
.
.txt=GetDiz.TextFile
.
- - - - TOMME GENVEJE FJERNET - - - -
.
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
--------------------- LÅSTE REGISTRERINGS NØGLER ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andre kørende processer ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\PC Tools Firewall Plus\FWService.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
c:\program files (x86)\ASUS\AI Suite II\AsRoutineController.exe
c:\program files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pnSvc.exe
c:\program files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
c:\nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
c:\program files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
c:\program files (x86)\ASUS\AI Suite II\AI Suite II.exe
c:\program files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
.
**************************************************************************
.
Gennemført tid: 2011-11-02  19:38:10 - maskinen blev genstartet
ComboFix-quarantined-files.txt  2011-11-02 18:38
.
Pre-Kørsel: 78.272.286.720 bytes free
Post-Kørsel: 78.396.149.760 bytes free
.
- - End Of File - - 37F29C4A3ADB00CFC42C7883F71F1C86