CIO Tech Eksperten IT-JOB IT-Kurser Events Podcast Søg
Cookie ikon
Avatar billede notice Nybegynder
10. januar 2007 - 17:33 Der er 3 kommentarer

Virus eller computer-nedbrud?

Jeg kan ikke finde ud af om jeg har fået virus eller om der er noget galt med min computer.

Jeg kan f.eks. ikke få lov til at åbne officepakken, den brokker sig over at den ikke kan finde nogle dll-filer, nogle gange når man starter op kommer der blå skærm hvor den laver en eller anden disk tjek i 3 stadier, der er en "windows installer" som jeg ikke kan få lov til at lukke ned (leder efter en .msi-fil til et grafisk program)

Jeg kan ikke finde noget med AVG (gratis version), spybot, ad-aware. Jeg forsøgte at installere norton internet security som jeg ellers valgte at afinstallere fordi det var til for stor gene. -Det kan jeg ikke få lov til...

Jeg har også forsøgt en online virus-scan på: http://housecall.trendmicro.com, men efter lidt tid så lukker den bare vinduet...

Måske der er nogen der kan lure noget ud fra screendump af process explorer: www.notice-design.dk/OLDthingys/Diverse/Process.jpg

Håber der er en derude der kan hjælpe :-l
Avatar billede ejvindh Ekspert
10. januar 2007 - 19:56 #1
Umiddelbart lyder det ikke som virus, men prøv lige følgende for en sikkerhedsskyld:

Hent Oldtimer's WinPFind3 herfra:
http://download.bleepingcomputer.com/oldtimer/winpfind3u.exe

Dobbeltklik på WinPFind3u, som du hentede, og klik på Extract. Så udpakkes programmet i en særskilt mappe. Gå ind i denne mappe, og dobbeltklik på WinPFind3U.exe. Sæt så flueben og prikker på følgende måde:

Processes: Non-Microsoft
Win32 Services: Non-Microsoft
Driver Services: Non-Microsoft
Registry:  Non-Microsoft
Files Created Within: 30 Days, Non-Microsoft Only
Files Modified Within: 30 Days, Non-Microsoft Only
File String Search: Non-Microsoft

Klik herefter på "Run Scan". Efter noget tid vil der dukke en logfil op, som du gerne må paste herind. Muligvis vil loggen være så lang, at den ikke kan være i en enkelt post. Så må du lægge den ind i flere bider.
Avatar billede notice Nybegynder
10. januar 2007 - 23:48 #2
WinPFind3 logfile created on: 10-01-2007 23:47:26
WinPFind3U by OldTimer - Version 1.0.9    Folder = C:\Documents and Settings\Nikolaj Stadsvold\Desktop\WinPFind3u\
Microsoft Windows XP Service Pack 2 (Version = 5.1.2600)
Internet Explorer (Version = 7.0.5730.11)

1572324 Kb Total Physical Memory | 1123364 Kb Available Physical Memory | 71,45% Memory free
3516808 Kb Paging File | 3228092 Kb Available in Paging File | 91,79% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %ProgramFiles% = C:\Program Files
Drive C: | 199133672 Kb Total Space | 24157928 Kb Free Space | 12,13% Space Free
D: Drive not present or media not loaded
Drive E: | 249732 Kb Total Space | 0 Kb Free Space | 0,00% Space Free
F: Drive not present or media not loaded


[Processes - Non-Microsoft Only]
acrotray.exe -> %ProgramFiles%\Adobe\Acrobat 6.0\Distillr\acrotray.exe -> Adobe Systems Inc. [Ver = 6.0.0.2003051500 | Size =

217193 bytes | Modified Date = 15-05-2003 00:19:50 | Attr =    ]
avgas.exe -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\avgas.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 50 | Size =

6266880 bytes | Modified Date = 07-10-2006 13:20:00 | Attr =    ]
ctdetect.exe -> %ProgramFiles%\Creative\MediaSource\Detector\CTDetect.exe -> Creative Technology Ltd [Ver = 2.3.1.0 | Size =

98304 bytes | Modified Date = 05-10-2004 08:52:32 | Attr =    ]
ctsvccda.exe -> %System32%\CTSVCCDA.EXE -> Creative Technology Ltd [Ver = 1.0.1.0 | Size = 44032 bytes | Modified Date =

13-12-1999 02:01:00 | Attr =    ]
ewidoctrl.exe -> %ProgramFiles%\ewido\security suite\ewidoctrl.exe -> ewido networks [Ver = 3, 0, 0, 1 | Size = 16448 bytes |

Modified Date = 12-11-2004 00:53:04 | Attr =    ]
guard.exe -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\guard.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size =

204800 bytes | Modified Date = 28-09-2006 15:13:20 | Attr =    ]
iaanotif.exe -> %ProgramFiles%\Intel\Intel Application Accelerator\IAAnotif.exe -> Intel [Ver = 1, 0, 0, 2653 | Size = 126976

bytes | Modified Date = 14-09-2003 23:00:00 | Attr =    ]
iaantmon.exe -> %ProgramFiles%\Intel\Intel Application Accelerator\IAANTmon.exe -> Intel [Ver = 1, 0, 0, 2568 | Size = 73838

bytes | Modified Date = 14-09-2003 23:00:00 | Attr =    ]
ipodservice.exe -> %ProgramFiles%\iPod\bin\iPodService.exe -> Apple Computer, Inc. [Ver = 6.0.1.3 | Size = 323584 bytes |

Modified Date = 18-10-2005 11:58:40 | Attr =    ]
ituneshelper.exe -> %ProgramFiles%\iTunes\iTunesHelper.exe -> Apple Computer, Inc. [Ver = 6.0.1.3 | Size = 278528 bytes |

Modified Date = 18-10-2005 11:58:54 | Attr =    ]
jusched.exe -> %ProgramFiles%\Java\jre1.5.0_06\bin\jusched.exe -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 36975 bytes |

Modified Date = 10-11-2005 13:03:52 | Attr =    ]
mgabg.exe -> %System32%\mgabg.exe -> Matrox Graphics Inc. [Ver = 1.00.023 | Size = 81920 bytes | Modified Date = 16-01-2002

13:15:14 | Attr =    ]
pdesk.exe -> %System32%\PDesk\pdesk.exe -> Matrox Graphics Inc. [Ver = 6.93.009 | Size = 684032 bytes | Modified Date =

14-09-2004 09:13:58 | Attr =    ]
reader_sl.exe -> %ProgramFiles%\Adobe\Acrobat 7.0\Reader\reader_sl.exe -> Adobe Systems Incorporated [Ver = 7.0.5.2005092300 |

Size = 29696 bytes | Modified Date = 23-09-2005 22:05:26 | Attr =    ]
soundman.exe -> %SystemRoot%\SOUNDMAN.EXE -> Realtek Semiconductor Corp. [Ver = 5.1.11 | Size = 57344 bytes | Modified Date =

08-10-2003 10:41:10 | Attr =    ]
wincinemamgr.exe -> %ProgramFiles%\InterVideo\Common\Bin\WinCinemaMgr.exe -> InterVideo Inc. [Ver = 1.8.2 | Size = 237568 bytes

| Modified Date = 12-07-2004 19:50:00 | Attr =    ]
winpfind3u.exe -> %UserDesktop%\WinPFind3u\WinPFind3U.exe -> Oldtimer Tools [Ver = 1.0.9.0 | Size = 306176 bytes | Modified

Date = 06-01-2007 14:14:24 | Attr =    ]

[Win32 Services - Non-Microsoft Only]
(Adobe LM Service) Adobe LM Service [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\Adobe Systems

Shared\Service\Adobelmsvc.exe ->  [Ver = 2.41.000 | Size = 68096 bytes | Modified Date = 28-06-2004 16:41:24 | Attr =    ]
(ATMsrvc) ATM Service [Win32_Own | Disabled | Stopped] -> %System32%\ATMsrvc.exe -> File not found
(AVG Anti-Spyware Guard) AVG Anti-Spyware Guard [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware

7.5\guard.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size = 204800 bytes | Modified Date = 28-09-2006 15:13:20 |

Attr =    ]
(Creative Service for CDROM Access) Creative Service for CDROM Access [Win32_Own | Auto | Running] -> %System32%\CTSVCCDA.EXE

-> Creative Technology Ltd [Ver = 1.0.1.0 | Size = 44032 bytes | Modified Date = 13-12-1999 02:01:00 | Attr =    ]
(dmadmin) Logical Disk Manager Administrative Service [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe ->

Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 224768 bytes | Modified Date = 04-08-2004 08:56:48 | Attr = 

]
(ewido security suite control) ewido security suite control [Win32_Own | Auto | Running] -> %ProgramFiles%\ewido\security

suite\ewidoctrl.exe -> ewido networks [Ver = 3, 0, 0, 1 | Size = 16448 bytes | Modified Date = 12-11-2004 00:53:04 | Attr =   

]
(ewido security suite guard) ewido security suite guard [Win32_Own | Disabled | Stopped] -> %ProgramFiles%\ewido\security

suite\ewidoguard.exe -> ewido networks [Ver = 3, 0, 0, 1 | Size = 151616 bytes | Modified Date = 28-12-2005 16:08:48 | Attr = 

]
(IAANTMon) IAA Event Monitor [Win32_Own | Auto | Running] -> %ProgramFiles%\Intel\Intel Application Accelerator\IAANTmon.exe ->

Intel [Ver = 1, 0, 0, 2568 | Size = 73838 bytes | Modified Date = 14-09-2003 23:00:00 | Attr =    ]
(IDriverT) InstallDriver Table Manager [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\InstallShield\Driver\11\Intel

32\IDriverT.exe -> Macrovision Corporation [Ver = 11.00.28844 | Size = 69632 bytes | Modified Date = 04-04-2005 00:41:10 | Attr

=    ]
(iPodService) iPodService [Win32_Own | On_Demand | Running] -> %ProgramFiles%\iPod\bin\iPodService.exe -> Apple Computer, Inc.

[Ver = 6.0.1.3 | Size = 323584 bytes | Modified Date = 18-10-2005 11:58:40 | Attr =    ]
(MGABGEXE) MGABGEXE [Win32_Own | Auto | Running] -> %System32%\mgabg.exe -> Matrox Graphics Inc. [Ver = 1.00.023 | Size = 81920

bytes | Modified Date = 16-01-2002 13:15:14 | Attr =    ]
(NetSvc) Intel NCS NetService [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Intel\PROSetWired\NCS\Sync\NetSvc.exe ->

Intel(R) Corporation [Ver = 1.4.5.0 | Size = 143360 bytes | Modified Date = 16-07-2003 11:37:58 | Attr =    ]

[Driver Services - Non-Microsoft Only]
(Abiosdsk) Abiosdsk [Kernel | Disabled | Stopped] ->  -> File not found
(abp480n5) abp480n5 [Kernel | Disabled | Stopped] ->  -> File not found
(adpu160m) adpu160m [Kernel | Disabled | Stopped] ->  -> File not found
(Aha154x) Aha154x [Kernel | Disabled | Stopped] ->  -> File not found
(aic78u2) aic78u2 [Kernel | Disabled | Stopped] ->  -> File not found
(aic78xx) aic78xx [Kernel | Disabled | Stopped] ->  -> File not found
(ALCXSENS) Service for WDM 3D Audio Driver [Kernel | On_Demand | Running] -> %System32%\drivers\ALCXSENS.SYS -> Sensaura Ltd

[Ver = 5.10.00.3511 | Size = 401152 bytes | Modified Date = 04-10-2003 05:25:56 | Attr =    ]
(ALCXWDM) Service for Realtek AC97 Audio (WDM) [Kernel | On_Demand | Running] -> %System32%\drivers\ALCXWDM.SYS -> Realtek

Semiconductor Corp. [Ver = 5.10.5350 | Size = 475788 bytes | Modified Date = 09-10-2003 11:52:08 | Attr =    ]
(AliIde) AliIde [Kernel | Disabled | Stopped] ->  -> File not found
(amsint) amsint [Kernel | Disabled | Stopped] ->  -> File not found
(asc) asc [Kernel | Disabled | Stopped] ->  -> File not found
(asc3350p) asc3350p [Kernel | Disabled | Stopped] ->  -> File not found
(asc3550) asc3550 [Kernel | Disabled | Stopped] ->  -> File not found
(ASPI32) ASPI32 [Kernel | System | Running] -> %System32%\drivers\Aspi32.sys -> Adaptec [Ver = 4.71 (0002) | Size = 16877 bytes

| Modified Date = 17-07-2002 08:53:02 | Attr =    ]
(atapi) Standard IDE/ESDI Hard Disk Controller [Kernel | Boot | Running] -> %System32%\drivers\atapi.sys ->  [Ver =  | Size =

86912 bytes | Modified Date = 29-08-2002 00:27:50 | Attr =    ]
(Atdisk) Atdisk [Kernel | Disabled | Stopped] ->  -> File not found
(ati2mtag) ati2mtag [Kernel | On_Demand | Stopped] -> %System32%\drivers\ati2mtag.sys -> ATI Technologies Inc. [Ver =

6.14.10.6462 | Size = 701440 bytes | Modified Date = 04-08-2004 06:29:26 | Attr =    ]
(AVG Anti-Spyware Driver) AVG Anti-Spyware Driver [Kernel | System | Running] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware

7.5\guard.sys ->  [Ver =  | Size = 4096 bytes | Modified Date = 28-09-2006 15:13:34 | Attr =    ]
(AvgAsCln) AVG Anti-Spyware Clean Driver [Kernel | System | Running] -> %System32%\drivers\AvgAsCln.sys -> GRISOFT, s.r.o. [Ver

= 1.0.0.14 | Size = 3968 bytes | Modified Date = 05-09-2006 17:03:16 | Attr =    ]
(cd20xrnt) cd20xrnt [Kernel | Disabled | Stopped] ->  -> File not found
(Changer) Changer [Kernel | System | Stopped] ->  -> File not found
(CmdIde) CmdIde [Kernel | Disabled | Stopped] ->  -> File not found
(CO_Mon) CO_Mon [Kernel | On_Demand | Stopped] -> %System32%\drivers\CO_Mon.sys ->  [Ver =  | Size = 28672 bytes | Modified

Date = 10-01-2007 17:46:48 | Attr =    ]
(Cpqarray) Cpqarray [Kernel | Disabled | Stopped] ->  -> File not found
(d346bus) d346bus [Kernel | Boot | Running] -> %System32%\drivers\d346bus.sys ->  [Ver = 3.46.0.0 built by: WinDDK | Size =

156800 bytes | Modified Date = 12-03-2004 21:41:28 | Attr =    ]
(d346prt) d346prt [Kernel | Boot | Running] -> %System32%\drivers\d346prt.sys ->  [Ver = 3.46.0.0 built by: WinDDK | Size =

5248 bytes | Modified Date = 12-03-2004 21:41:42 | Attr =    ]
(dac960nt) dac960nt [Kernel | Disabled | Stopped] ->  -> File not found
(dmboot) dmboot [Kernel | Disabled | Stopped] -> %System32%\drivers\dmboot.sys -> Microsoft Corp., Veritas Software [Ver =

2600.2180.503.0 | Size = 799744 bytes | Modified Date = 04-08-2004 07:07:18 | Attr =    ]
(Dmi0wvwn) Dmi0wvwn [Kernel | Disabled | Stopped] ->  -> File not found
(dmio) Logical Disk Manager Driver [Kernel | Boot | Running] -> %System32%\drivers\dmio.sys -> Microsoft Corp., Veritas

Software [Ver = 2600.2180.503.0 | Size = 153344 bytes | Modified Date = 04-08-2004 07:07:16 | Attr =    ]
(dmload) dmload [Kernel | Boot | Running] -> %System32%\drivers\dmload.sys -> Microsoft Corp., Veritas Software. [Ver =

2600.0.503.0 | Size = 5888 bytes | Modified Date = 23-08-2001 13:00:00 | Attr =    ]
(dpti2o) dpti2o [Kernel | Disabled | Stopped] ->  -> File not found
(E1000) Intel(R) PRO/1000 Adapter Driver [Kernel | On_Demand | Running] -> %System32%\drivers\e1000325.sys -> Intel Corporation

[Ver = 7.2.17.0 built by: WinDDK | Size = 125952 bytes | Modified Date = 14-08-2003 07:46:48 | Attr = R  ]
(ewido security suite driver) ewido security suite driver [Kernel | System | Running] -> %ProgramFiles%\ewido\security

suite\guard.sys ->  [Ver =  | Size = 3072 bytes | Modified Date = 22-11-2004 15:15:16 | Attr =    ]
(G400DH) G400DH [Kernel | On_Demand | Running] -> %System32%\drivers\g400dhm.sys -> Matrox Graphics Inc. [Ver = 6.12.01.1930 |

Size = 348800 bytes | Modified Date = 14-09-2004 09:36:48 | Attr =    ]
(G550DH) G550DH [Kernel | On_Demand | Stopped] -> %System32%\drivers\g550dhm.sys -> Matrox Graphics Inc. [Ver = 6.13.01.1920 |

Size = 321920 bytes | Modified Date = 26-01-2004 12:52:10 | Attr =    ]
(GEARAspiWDM) GEAR CDRom Filter [Kernel | On_Demand | Running] -> %System32%\drivers\GEARAspiWDM.sys -> GEAR Software Inc. [Ver

= 2.0.4.3 | Size = 14408 bytes | Modified Date = 02-02-2005 01:21:04 | Attr =    ]
(hpn) hpn [Kernel | Disabled | Stopped] ->  -> File not found
(hpt3xx) hpt3xx [Kernel | Disabled | Stopped] ->  -> File not found
(i2omgmt) i2omgmt [Kernel | System | Stopped] ->  -> File not found
(i2omp) i2omp [Kernel | Disabled | Stopped] ->  -> File not found
(iaStor) Intel Integrated RAID [Kernel | Boot | Running] -> %System32%\drivers\iaStor.sys -> Intel Corporation [Ver =

3.5.0.2568, 06/17/2003 | Size = 274816 bytes | Modified Date = 14-09-2003 23:00:00 | Attr =    ]
(InCDFs) InCD File System [File_System | Disabled | Stopped] -> system32\drivers\InCDFs.sys -> File not found
(InCDPass) InCDPass [Kernel | System | Stopped] -> system32\drivers\InCDPass.sys -> File not found
(InCDRm) InCD Reader [Kernel | System | Stopped] -> system32\drivers\InCDRm.sys -> File not found
(ini910u) ini910u [Kernel | Disabled | Stopped] ->  -> File not found
(IntelIde) IntelIde [Kernel | Disabled | Stopped] ->  -> File not found
(Jukebox3) Jukebox3 [Kernel | On_Demand | Stopped] -> %System32%\drivers\ctpdusb.sys -> Creative Technology Ltd. [Ver =

1.27.02.00 | Size = 16880 bytes | Modified Date = 30-09-2004 00:27:00 | Attr =    ]
(lbrtfdc) lbrtfdc [Kernel | System | Stopped] ->  -> File not found
(mraid35x) mraid35x [Kernel | Disabled | Stopped] ->  -> File not found
(PCIDump) PCIDump [Kernel | System | Stopped] ->  -> File not found
(PDCOMP) PDCOMP [Kernel | On_Demand | Stopped] ->  -> File not found
(PDFRAME) PDFRAME [Kernel | On_Demand | Stopped] ->  -> File not found
(PDRELI) PDRELI [Kernel | On_Demand | Stopped] ->  -> File not found
(PDRFRAME) PDRFRAME [Kernel | On_Demand | Stopped] ->  -> File not found
(perc2) perc2 [Kernel | Disabled | Stopped] ->  -> File not found
(perc2hib) perc2hib [Kernel | Disabled | Stopped] ->  -> File not found
(Ptilink) Direct Parallel Link Driver [Kernel | On_Demand | Running] -> %System32%\drivers\ptilink.sys -> Parallel

Technologies, Inc. [Ver = 1.10 (XPClient.010817-1148) | Size = 17792 bytes | Modified Date = 23-08-2001 13:00:00 | Attr =    ]
(PxHelp20) PxHelp20 [Kernel | Boot | Running] -> %System32%\drivers\pxhelp20.sys -> Sonic Solutions [Ver = 2.03.28a | Size =

20640 bytes | Modified Date = 11-03-2005 23:28:10 | Attr =    ]
(ql1080) ql1080 [Kernel | Disabled | Stopped] ->  -> File not found
(Ql10wnt) Ql10wnt [Kernel | Disabled | Stopped] ->  -> File not found
(ql12160) ql12160 [Kernel | Disabled | Stopped] ->  -> File not found
(ql1240) ql1240 [Kernel | Disabled | Stopped] ->  -> File not found
(ql1280) ql1280 [Kernel | Disabled | Stopped] ->  -> File not found
(Secdrv) Secdrv [Kernel | On_Demand | Stopped] -> %System32%\drivers\secdrv.sys ->  [Ver =  | Size = 27440 bytes | Modified

Date = 23-08-2001 13:00:00 | Attr =    ]
(SI3114r) SiI-3114 SATARaid Controller [Kernel | Boot | Running] -> %System32%\drivers\SI3114r.sys -> Silicon Image, Inc [Ver =

1, 0, 0, 7 | Size = 97857 bytes | Modified Date = 09-02-2004 14:27:04 | Attr =    ]
(SiFilter) SATALink driver accelerator [Kernel | Boot | Running] -> %System32%\drivers\SiWinAcc.sys -> Silicon Image, Inc. [Ver

= 1.0.0.8 | Size = 10240 bytes | Modified Date = 15-10-2003 09:28:16 | Attr =    ]
(Simbad) Simbad [Kernel | Disabled | Stopped] ->  -> File not found
(Sparrow) Sparrow [Kernel | Disabled | Stopped] ->  -> File not found
(symc810) symc810 [Kernel | Disabled | Stopped] ->  -> File not found
(symc8xx) symc8xx [Kernel | Disabled | Stopped] ->  -> File not found
(sym_hi) sym_hi [Kernel | Disabled | Stopped] ->  -> File not found
(sym_u3) sym_u3 [Kernel | Disabled | Stopped] ->  -> File not found
(TibClass) Vector Combo SM/CF Class Driver [Kernel | On_Demand | Stopped] -> %System32%\drivers\TibClass.sys -> SmartDisk

Corporation [Ver = 1.00.19 | Size = 90240 bytes | Modified Date = 01-03-2001 03:15:00 | Attr =    ]
(TibUsb) Vector Combo SM/CF USB Driver [Kernel | On_Demand | Stopped] -> %System32%\drivers\TibUsb.sys -> SmartDisk Corporation

[Ver = 1.00.19 | Size = 68816 bytes | Modified Date = 01-03-2001 03:20:00 | Attr =    ]
(tmcomm) tmcomm [Kernel | Auto | Running] -> %System32%\drivers\tmcomm.sys -> Trend Micro Inc. [Ver = 1.5.0.1052 | Size = 76560

bytes | Modified Date = 08-01-2007 14:31:52 | Attr =    ]
(TosIde) TosIde [Kernel | Disabled | Stopped] ->  -> File not found
(ultra) ultra [Kernel | Disabled | Stopped] ->  -> File not found
(UltraMonMirror) UltraMonMirror [Kernel | On_Demand | Running] -> %System32%\drivers\UltraMonMirror.sys -> Realtime Soft [Ver =

2.6.23.0 | Size = 3328 bytes | Modified Date = 14-05-2005 17:41:28 | Attr =    ]
(UltraMonUtility) UltraMon Utility Driver [Kernel | Auto | Running] -> %CommonProgramFiles%\Realtime

Soft\UltraMonMirrorDrv\x32\UltraMonUtility.sys -> Realtime Soft [Ver = 2.6.23.0 | Size = 10496 bytes | Modified Date =

02-06-2005 12:54:50 | Attr =    ]
(ViaIde) ViaIde [Kernel | Disabled | Stopped] ->  -> File not found
(WDICA) WDICA [Kernel | On_Demand | Stopped] ->  -> File not found

[Registry - Non-Microsoft Only]
< Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
!AVG Anti-Spyware -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\avgas.exe -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 50

| Size = 6266880 bytes | Modified Date = 07-10-2006 13:20:00 | Attr =    ]
DAEMON Tools-1033 -> %ProgramFiles%\D-Tools\daemon.exe -> DAEMON'S HOME [Ver = 3.46.0.0 | Size = 81920 bytes | Modified Date =

12-03-2004 21:43:18 | Attr =    ]
iTunesHelper -> %ProgramFiles%\iTunes\iTunesHelper.exe -> Apple Computer, Inc. [Ver = 6.0.1.3 | Size = 278528 bytes | Modified

Date = 18-10-2005 11:58:54 | Attr =    ]
IAAnotif -> %ProgramFiles%\Intel\Intel Application Accelerator\IAAnotif.exe -> Intel [Ver = 1, 0, 0, 2653 | Size = 126976 bytes

| Modified Date = 14-09-2003 23:00:00 | Attr =    ]
KernelFaultCheck ->  -> File not found
Matrox Powerdesk -> %System32%\PDesk\pdesk.exe -> Matrox Graphics Inc. [Ver = 6.93.009 | Size = 684032 bytes | Modified Date =

14-09-2004 09:13:58 | Attr =    ]
NeroFilterCheck -> %System32%\NeroCheck.exe -> Ahead Software Gmbh [Ver = 1, 0, 0, 2 | Size = 155648 bytes | Modified Date =

09-07-2001 10:50:42 | Attr =    ]
NWEReboot ->  -> File not found
PRONoMgrWired -> %ProgramFiles%\Intel\PROSetWired\NCS\PROSet\PRONoMgr.exe -> Intel(R) Corporation [Ver = 6.4.3.8 | Size = 86016

bytes | Modified Date = 06-08-2003 15:08:00 | Attr =    ]
QuickTime Task -> %ProgramFiles%\QuickTime\qttask.exe -> Apple Computer, Inc. [Ver = 7.0.3 | Size = 155648 bytes | Modified

Date = 12-12-2005 12:53:42 | Attr =    ]
SoundMan -> %SystemRoot%\SOUNDMAN.EXE -> Realtek Semiconductor Corp. [Ver = 5.1.11 | Size = 57344 bytes | Modified Date =

08-10-2003 10:41:10 | Attr =    ]
SunJavaUpdateSched -> %ProgramFiles%\Java\jre1.5.0_06\bin\jusched.exe -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 36975

bytes | Modified Date = 10-11-2005 13:03:52 | Attr =    ]
UltraMon -> %ProgramFiles%\UltraMon\UltraMon.exe -> Realtime Soft [Ver = 2.6.23.0 | Size = 187904 bytes | Modified Date =

14-05-2005 17:23:04 | Attr =    ]
< OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\
IMAIL -> Installed = 1 ->
MAPI -> Installed = 1 ->
MSFS -> Installed = 1 ->
< Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} -> %CommonProgramFiles%\Ahead\lib\NMBgMonitor.exe -> File not found
Creative Detector -> %ProgramFiles%\Creative\MediaSource\Detector\CTDetect.exe -> Creative Technology Ltd [Ver = 2.3.1.0 | Size

= 98304 bytes | Modified Date = 05-10-2004 08:52:32 | Attr =    ]
< Common Startup > -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup
%AllUsersStartup%\Acrobat Assistant.lnk -> %ProgramFiles%\Adobe\Acrobat 6.0\Distillr\acrotray.exe -> Adobe Systems Inc. [Ver =

6.0.0.2003051500 | Size = 217193 bytes | Modified Date = 15-05-2003 00:19:50 | Attr =    ]
%AllUsersStartup%\Adobe Gamma Loader.lnk -> %CommonProgramFiles%\Adobe\Calibration\Adobe Gamma Loader.exe -> Adobe Systems,

Inc. [Ver = 1, 0, 0, 1 | Size = 110592 bytes | Modified Date = 12-10-2003 19:00:10 | Attr =    ]
%AllUsersStartup%\Adobe Reader Hurtigstart.lnk -> %ProgramFiles%\Adobe\Acrobat 7.0\Reader\reader_sl.exe -> Adobe Systems

Incorporated [Ver = 7.0.5.2005092300 | Size = 29696 bytes | Modified Date = 23-09-2005 22:05:26 | Attr =    ]
%AllUsersStartup%\InterVideo WinCinema Manager.lnk -> %ProgramFiles%\InterVideo\Common\Bin\WinCinemaMgr.exe -> InterVideo Inc.

[Ver = 1.8.2 | Size = 237568 bytes | Modified Date = 12-07-2004 19:50:00 | Attr =    ]
< User Startup > -> C:\Documents and Settings\Nikolaj Stadsvold\Start Menu\Programs\Startup
-> %UserStartup%\PowerReg Scheduler.exe ->  [Ver = 1, 0, 0, 1 | Size = 189952 bytes | Modified Date = 29-11-2006 14:51:20 |

Attr =    ]
< AppInit_DLLs [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
< ShellExecuteHooks [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
{54D9498B-CF93-414F-8984-8CE7FDE0D391} [HKLM] -> %ProgramFiles%\ewido\security suite\shellhook.dll [ewido shell guard] ->  [Ver

=  | Size = 39488 bytes | Modified Date = 30-09-2004 13:21:58 | Attr =    ]
{57B86673-276A-48B2-BAE7-C6DBB3020EB8} [HKLM] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [AVG

Anti-Spyware 7.5] -> Anti-Malware Development a.s. [Ver = 7, 5, 0, 47 | Size = 73728 bytes | Modified Date = 28-09-2006

15:13:28 | Attr =    ]
< SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders
< Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet ->
Control_RunDLL ->  -> File not found
< Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Ext\ ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Ext\CLSID\ ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Ext\CLSID\\{17492023-C23A-453E-A040-C7C580BBF700} -> 1 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} ->

1073741857 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 ->
< Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ ->  ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ ->  ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 145 ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ ->  ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools -> 0 ->
-> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer not found. ->
< Desktop Components > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\
0 -> [Key] ->
0 -> FriendlyName = My Current Home Page ->
0 -> Source = About:Home ->
0 -> SubscribedURL = About:Home ->
< HOSTS File > -> C:\WINDOWS\System32\drivers\etc\Hosts
< Internet Explorer Settings > ->
HKCU: Local Page -> C:\WINDOWS\system32\blank.htm ->
HKCU: Search Bar -> http://www.google.com/ie ->
HKCU: Search Page -> http://www.google.com ->
HKCU: Start Page -> http://www.google.dk/ ->
HKCU: ProxyEnable -> 0 ->
HKCU: ProxyOverride -> <local> ->
< Trusted Sites > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
msn.com [ - ] ->  ->
< Trusted Sites > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
danskebank.dk
  • ->  ->
    • www_sparnord.dk [https] ->  ->
    < BHO's > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [Adobe PDF Reader

    Link Helper] -> Adobe Systems Incorporated [Ver = 7.0.7.2006011200 | Size = 63128 bytes | Modified Date = 12-01-2006 20:38:22 |

    Attr =    ]
    {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> %ProgramFiles%\Java\jre1.5.0_06\bin\ssv.dll [SSVHelper Class] -> Sun

    Microsystems, Inc. [Ver = 5.0.60.5 | Size = 184423 bytes | Modified Date = 10-11-2005 13:22:10 | Attr =    ]
    {AE7CD045-E861-484f-8273-0445EE161910} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll

    [AcroIEToolbarHelper Class] ->  [Ver =  | Size = 147456 bytes | Modified Date = 15-05-2003 00:03:46 | Attr =    ]
    {AA58ED58-01DD-4d91-8333-CF10577473F7} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [Google Toolbar Helper] -> Google

    Inc. [Ver = 3, 0, 131, 0 | Size = 1183232 bytes | Modified Date = 14-02-2006 20:05:02 | Attr = R  ]
    < Internet Explorer Bars [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\
    {32683183-48a0-441b-a342-7c2a440a9478} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found
    < Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\
    ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google

    Inc. [Ver = 3, 0, 131, 0 | Size = 1183232 bytes | Modified Date = 14-02-2006 20:05:02 | Attr = R  ]
    ShellBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} [HKLM] -> Reg Data - Value does not exist [Adobe PDF] -> File not found
    WebBrowser\\{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not

    found
    WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc.

    [Ver = 3, 0, 131, 0 | Size = 1183232 bytes | Modified Date = 14-02-2006 20:05:02 | Attr = R  ]
    WebBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not

    found
    WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} [HKLM] -> Reg Data - Value does not exist [Adobe PDF] -> File not found
    WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKLM] -> Reg Data - Key not found [Yahoo! Toolbar] -> File not found
    < Internet Explorer CmdMapping [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\CmdMapping
    {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -> 8195 - Reg Data - Key not found ->
    {92780B25-18CC-41C8-B9BE-3C9C571A8263} -> 8194 - Reg Data - Key not found ->
    {FB5F1910-F110-11d2-BB9E-00C04F795683} -> 8193 - Reg Data - Key not found ->
    NextId -> 8196 ->
    < Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\
    &Google-søgning -> %ProgramFiles%\google\GoogleToolbar1.dll\cmsearch.htm -> File not found
    &Oversæt engelsk ord -> %ProgramFiles%\google\GoogleToolbar1.dll\cmwordtrans.htm -> File not found
    E&ksporter til Microsoft Excel ->  -> File not found
    Lignende sider -> %ProgramFiles%\google\GoogleToolbar1.dll\cmsimilar.htm -> File not found
    Tilbage via links -> %ProgramFiles%\google\GoogleToolbar1.dll\cmbacklinks.htm -> File not found
    Øjebliksbillede af side i cache -> %ProgramFiles%\google\GoogleToolbar1.dll\cmcache.htm -> File not found
    < Approved Shell Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
    [HKLM] -> Reg Data - Key not found [CorelDRAW Shell Extension Component] -> File not found
    {0DF44EAA-FF21-4412-828E-260A8728E7F1} [HKLM] -> Reg Data - Key not found [Taskbar and Start Menu] -> File not found
    {32683183-48a0-441b-a342-7c2a440a9478} [HKLM] -> Reg Data - Key not found [Media Band] -> File not found
    {42071714-76d4-11d1-8b24-00a0c9068ff3} [HKLM] -> deskpan.dll [Display Panning CPL Extension] -> File not found
    {4A741382-48B4-11d2-AD84-00A024D24BF3} [HKLM] -> %System32%\PDesk\pdpages.dll [Matrox PowerDesk Properties] -> Matrox Graphics

    Inc. [Ver = 6.93.009 | Size = 634880 bytes | Modified Date = 14-09-2004 09:19:40 | Attr =    ]
    {4CCEFB41-18FA-11D3-9EF3-00A0C9E897FD} [HKLM] -> %ProgramFiles%\Corel\Corel Graphics 11\DRAW\CDRVIEWER\CrlShell110.dll

    [CorelDRAW Shell Extension Component] -> File not found
    {57A17730-E8D6-11D1-B1FF-99A7A7FEB94A} [HKLM] -> %SystemDrive%\Corel\GALLERY 3\Gallery\Programs\CNSFlt80.dll

    [NSFiltManDll.FiltManCom] -> Corel Corporation [Ver = 8.374 | Size = 5920256 bytes | Modified Date = 07-08-1998 12:29:30 | Attr

    =    ]
    {57A17733-E8D6-11D1-B1FF-99A7A7FEB94A} [HKLM] -> %SystemDrive%\Corel\GALLERY 3\Gallery\Programs\CNSFlt80.dll

    [IconFactTemp.IconHandlerFactory] -> Corel Corporation [Ver = 8.374 | Size = 5920256 bytes | Modified Date = 07-08-1998

    12:29:30 | Attr =    ]
    {764BF0E1-F219-11ce-972D-00AA00A14F56} [HKLM] -> Reg Data - Key not found [Shell extensions for file compression] -> File not

    found
    {7A9D77BD-5403-11d2-8785-2E0420524153} [HKLM] -> Reg Data - Key not found [User Accounts] -> File not found
    {853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} [HKLM] -> Reg Data - Key not found [Encryption Context Menu] -> File not found
    {88895560-9AA2-1069-930E-00AA0030EBC8} [HKLM] -> %System32%\hticons.dll [HyperTerminal Icon Ext] -> Hilgraeve, Inc. [Ver =

    5.1.2600.0 | Size = 44544 bytes | Modified Date = 23-08-2001 13:00:00 | Attr =    ]
    {8FF88D21-7BD0-11D1-BFB7-00AA00262A11} [HKLM] -> %ProgramFiles%\WinAce\arcext.dll [WinAce Archiver 2.6b4 (beta test) Context

    Menu Shell Extension] -> e-merge GmbH [Ver = 2.5.1.0 | Size = 166912 bytes | Modified Date = 03-12-2004 02:06:00 | Attr =    ]
    {8FF88D23-7BD0-11D1-BFB7-00AA00262A11} [HKLM] -> %ProgramFiles%\WinAce\arcext.dll [WinAce Archiver 2.6b4 (beta test) Property

    Sheet Shell Extension] -> e-merge GmbH [Ver = 2.5.1.0 | Size = 166912 bytes | Modified Date = 03-12-2004 02:06:00 | Attr =    ]
    {8FF88D25-7BD0-11D1-BFB7-00AA00262A11} [HKLM] -> %ProgramFiles%\WinAce\arcext.dll [WinAce Archiver 2.6b4 (beta test) DragDrop

    Shell Extension] -> e-merge GmbH [Ver = 2.5.1.0 | Size = 166912 bytes | Modified Date = 03-12-2004 02:06:00 | Attr =    ]
    {8FF88D27-7BD0-11D1-BFB7-00AA00262A11} [HKLM] -> %ProgramFiles%\WinAce\arcext.dll [WinAce Archiver 2.6b4 (beta test) Context

    Menu Shell Extension] -> e-merge GmbH [Ver = 2.5.1.0 | Size = 166912 bytes | Modified Date = 03-12-2004 02:06:00 | Attr =    ]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR shell extension] ->  [Ver =  | Size =

    121344 bytes | Modified Date = 01-09-2004 21:16:44 | Attr =    ]
    {B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} [HKLM] -> %ProgramFiles%\iTunes\iTunesMiniPlayer.dll [iTunes] -> Apple Computer, Inc.

    [Ver = 6.0.1.3 | Size = 102400 bytes | Modified Date = 18-10-2005 12:10:06 | Attr =    ]
    {BF05BB6E-442C-428B-8025-82280B7BC26C} [HKLM] -> %ProgramFiles%\Creative\Creative Zen Micro\Zen Micro Media

    Explorer\CTJBNS2.dll [Zen Micro Media Explorer] -> Creative Technology Ltd [Ver = 4.0.16.0 | Size = 765952 bytes | Modified

    Date = 11-10-2004 15:31:30 | Attr =    ]
    {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 6.0\Acrobat Elements\ContextMenu.dll

    [Adobe.Acrobat.ContextMenu] -> Adobe Systems Inc. [Ver = 1.0.0.2003051500 | Size = 409687 bytes | Modified Date = 15-05-2003

    00:41:08 | Attr =    ]
    {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} [HKLM] -> %ProgramFiles%\Real\RealPlayer\rpshell.dll [Shell Extensions for RealOne

    Player] -> RealNetworks, Inc. [Ver = 1.0.1.2237 | Size = 49198 bytes | Modified Date = 05-07-2006 09:40:48 | Attr =    ]
    < Approved Shell Extensions [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
    {09308CE0-6ECC-4DB6-A957-2AD37E5E3C7E} [HKLM] -> %ProgramFiles%\Allume Systems\StuffIt\ArchiveMenu.dll [StuffIt Archive Menu]

    -> Allume Systems, Inc. [Ver = 9.0.0.21 | Size = 30720 bytes | Modified Date = 23-03-2005 18:24:30 | Attr =    ]
    {3FBFD0B0-EB46-4797-9101-615610E87DA6} [HKLM] -> %ProgramFiles%\Allume Systems\StuffIt\CompressMenu.dll [StuffIt Compress Menu]

    -> Allume Systems, Inc. [Ver = 9.0.0.21 | Size = 40960 bytes | Modified Date = 23-03-2005 18:24:20 | Attr =    ]
    < ContextMenuHandlers - * [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\*\shellex\ContextMenuHandlers\
    {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 6.0\Acrobat Elements\ContextMenu.dll

    [Adobe.Acrobat.ContextMenu] -> Adobe Systems Inc. [Ver = 1.0.0.2003051500 | Size = 409687 bytes | Modified Date = 15-05-2003

    00:41:08 | Attr =    ]
    {8934FCEF-F5B8-468f-951F-78A921CD3920} [HKLM] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\context.dll [AVG Anti-Spyware] ->

    Anti-Malware Development a.s. [Ver = 7, 5, 0, 49 | Size = 98304 bytes | Modified Date = 06-10-2006 12:40:48 | Attr =    ]
    {57BD36D7-CE32-4600-9B1C-1A0C47EFC02E} [HKLM] -> %ProgramFiles%\ewido\security suite\context.dll [ewido] -> ewido networks [Ver

    = 1.0.0.1 | Size = 69632 bytes | Modified Date = 21-05-2005 17:13:04 | Attr =    ]
    {3FBFD0B0-EB46-4797-9101-615610E87DA6} [HKLM] -> %ProgramFiles%\Allume Systems\StuffIt\CompressMenu.dll [StuffIt Compress Menu]

    -> Allume Systems, Inc. [Ver = 9.0.0.21 | Size = 40960 bytes | Modified Date = 23-03-2005 18:24:20 | Attr =    ]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] ->  [Ver =  | Size = 121344 bytes |

    Modified Date = 01-09-2004 21:16:44 | Attr =    ]
    {8FF88D27-7BD0-11D1-BFB7-00AA00262A11} [HKLM] -> %ProgramFiles%\WinAce\arcext.dll [ZFAdd] -> e-merge GmbH [Ver = 2.5.1.0 | Size

    = 166912 bytes | Modified Date = 03-12-2004 02:06:00 | Attr =    ]
    < ContextMenuHandlers - Directory [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\Directory\shellex\ContextMenuHandlers\
    {8934FCEF-F5B8-468f-951F-78A921CD3920} [HKLM] -> %ProgramFiles%\Grisoft\AVG Anti-Spyware 7.5\context.dll [AVG Anti-Spyware] ->

    Anti-Malware Development a.s. [Ver = 7, 5, 0, 49 | Size = 98304 bytes | Modified Date = 06-10-2006 12:40:48 | Attr =    ]
    {57BD36D7-CE32-4600-9B1C-1A0C47EFC02E} [HKLM] -> %ProgramFiles%\ewido\security suite\context.dll [ewido] -> ewido networks [Ver

    = 1.0.0.1 | Size = 69632 bytes | Modified Date = 21-05-2005 17:13:04 | Attr =    ]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] ->  [Ver =  | Size = 121344 bytes |

    Modified Date = 01-09-2004 21:16:44 | Attr =    ]
    {8FF88D27-7BD0-11D1-BFB7-00AA00262A11} [HKLM] -> %ProgramFiles%\WinAce\arcext.dll [ZFAdd] -> e-merge GmbH [Ver = 2.5.1.0 | Size

    = 166912 bytes | Modified Date = 03-12-2004 02:06:00 | Attr =    ]
    < ContextMenuHandlers - Folder [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\Folder\shellex\ContextMenuHandlers\
    {3FBFD0B0-EB46-4797-9101-615610E87DA6} [HKLM] -> %ProgramFiles%\Allume Systems\StuffIt\CompressMenu.dll [StuffIt Compress Menu]

    -> Allume Systems, Inc. [Ver = 9.0.0.21 | Size = 40960 bytes | Modified Date = 23-03-2005 18:24:20 | Attr =    ]
    {B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] ->  [Ver =  | Size = 121344 bytes |

    Modified Date = 01-09-2004 21:16:44 | Attr =    ]
    < ColumnHandlers - Folder [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\
    {F9DB5320-233E-11D1-9F84-707F02C10627} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 7.0\ActiveX\pdfshell.dll [PDF Shell Extension] ->

    Adobe Systems, Inc. [Ver = 7.0.0.0 | Size = 110592 bytes | Modified Date = 14-12-2004 02:20:02 | Attr =    ]
    < DNS Name Servers [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\
    {6CE28975-3400-417E-87D6-508D9B99FC94} -> 194.239.143.131  (Intel(R) PRO/1000 CT Network Connection) ->
    {C1EFFCE1-3508-4562-9A33-BC0A4CD540A9} ->    (1394 Net Adapter) ->
    {EE3840B2-23E3-4919-9229-AAE276FA65F9} ->    () ->
    < Protocol Handlers [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\
    ipp -> Reg Data - Key not found -> File not found
    msdaipp -> Reg Data - Key not found -> File not found
    < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\
    {029FDBA6-3547-11D7-AA4C-0050BF051A00} -> Rawflow ICD Client - CodeBase = http://downol.dr.dk/download/netradio/Rawflow.cab ->
    {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} -> QuickTime Object - CodeBase = http://www.apple.com/qtactivex/qtplugin.cab ->
    {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} -> Symantec AntiVirus scanner - CodeBase =

    http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab ->
    {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} -> Office Update Installation Engine - CodeBase =

    http://office.microsoft.com/officeupdate/content/opuc3.cab ->
    {4F1E5B1A-2A80-42CA-8532-2D05CB959537} -> MSN Photo Upload Tool - CodeBase =

    http://nikolaj81.spaces.msn.com//PhotoUpload/MsnPUpld.cab ->
    {56336BCB-3D8A-11D6-A00B-0050DA18DE71} ->  - CodeBase = http://software-dl.real.com/10bd5eb5080be6b8af16/netzip/RdxIE601.cab ->
    {62789780-B744-11D0-986B-00609731A21D} -> Autodesk MapGuide ActiveX Control - CodeBase =

    http://gis.aarhus.dk/Mapguide%20viewer/mgaxctrl.cab ->
    {644E432F-49D3-41A1-8DD5-E099162EEEC5} -> Symantec RuFSI Utility Class - CodeBase =

    http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab ->
    {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} -> MUWebControl Class - CodeBase =

    http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1125326582765 ->
    {8AD9C840-044E-11D1-B3E9-00805F499D93} -> Java Plug-in 1.5.0_06 - CodeBase =

    http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab ->
    {9F1C11AA-197B-4942-BA54-47A8489BB47F} ->  - CodeBase =

    http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38165.3735532407 ->
    {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} -> MsnMessengerSetupDownloadControl Class - CodeBase =

    http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab ->
    {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase =

    http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab ->
    {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase =

    http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab ->
    {D27CDB6E-AE6D-11CF-96B8-444553540000} ->  - CodeBase = http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

    ->
    {D8575CE3-3432-4540-88A9-85A1325D3375} -> e-Safekey - CodeBase =

    https://netbank.danskebank.dk/html/activex/e-Safekey/DB/e-Safekey.cab ->
    {E87F6C8E-16C0-11D3-BEF7-009027438003} -> Persits Software XUpload - CodeBase = http://billedgalleri.nextmedia.dk/XUpload.ocx

    ->
    Microsoft XML Parser for Java ->  - CodeBase = file://C:\WINDOWS\Java\classes\xmldso.cab ->


    [Files - Created Wihin 30 days]
    AvgAsCln.sys -> %System32%\drivers\AvgAsCln.sys -> GRISOFT, s.r.o. [Ver = 1.0.0.14 | Size = 3968 bytes | Created Date =

    08-01-2007 15:10:35 | Attr =    ]
    CO_Mon.sys -> %System32%\drivers\CO_Mon.sys ->  [Ver =  | Size = 28672 bytes | Created Date = 10-01-2007 17:46:47 | Attr =    ]
    tmcomm.sys -> %System32%\drivers\tmcomm.sys -> Trend Micro Inc. [Ver = 1.5.0.1052 | Size = 76560 bytes | Created Date =

    08-01-2007 14:32:54 | Attr =    ]

    [Files - Modified Wihin 30 days]
    hiberfil.sys -> %SystemDrive%\hiberfil.sys ->  [Ver =  | Size = 1610133504 bytes | Modified Date = 10-01-2007 23:44:42 | Attr =

    HS]
    bootstat.dat -> %SystemRoot%\bootstat.dat ->  [Ver =  | Size = 2048 bytes | Modified Date = 10-01-2007 23:44:48 | Attr =  S]
    imsins.BAK -> %SystemRoot%\imsins.BAK ->  [Ver =  | Size = 1355 bytes | Modified Date = 05-01-2007 16:34:34 | Attr =    ]
    NeroDigital.ini -> %SystemRoot%\NeroDigital.ini ->  [Ver =  | Size = 69 bytes | Modified Date = 10-01-2007 05:03:02 | Attr =   

    ]
    winamp.ini -> %SystemRoot%\winamp.ini ->  [Ver =  | Size = 1125 bytes | Modified Date = 18-12-2006 09:56:38 | Attr =    ]
    FNTCACHE.DAT -> %System32%\FNTCACHE.DAT ->  [Ver =  | Size = 555456 bytes | Modified Date = 08-01-2007 13:15:40 | Attr =    ]
    wpa.dbl -> %System32%\wpa.dbl ->  [Ver =  | Size = 2262 bytes | Modified Date = 10-01-2007 23:45:28 | Attr =    ]
    CO_Mon.sys -> %System32%\drivers\CO_Mon.sys ->  [Ver =  | Size = 28672 bytes | Modified Date = 10-01-2007 17:46:48 | Attr =   

    ]
    tmcomm.sys -> %System32%\drivers\tmcomm.sys -> Trend Micro Inc. [Ver = 1.5.0.1052 | Size = 76560 bytes | Modified Date =

    08-01-2007 14:31:52 | Attr =    ]

    [File String Scan - Non-Microsoft Only]
    PEC2 , PECompact2 ,  -> %CommonProgramFiles%\Adobe\ESD\AdobeDownloadManager.exe -> Adobe Systems [Ver = 2.0.0.43 | Size =

    414208 bytes | Modified Date = 13-11-2004 04:36:04 | Attr =    ]
    Thawte Consulting ,  -> %CommonProgramFiles%\Java\Update\Base Images\jre1.5.0.b64\core3.zip ->  [Ver =  | Size = 3290841 bytes

    | Modified Date = 10-11-2005 13:38:40 | Attr =    ]
    UPX! ,  -> %CommonProgramFiles%\Microsoft Shared\Web Components\11\1030\OWCFUN11.CHM ->  [Ver =  | Size = 599630 bytes |

    Modified Date = 18-08-2003 14:46:24 | Attr =    ]
    PEC2 , PECompact2 ,  -> %CommonProgramFiles%\Real\GToolbar\GDSSetup.exe ->  [Ver =  | Size = 746600 bytes | Modified Date =

    05-07-2006 09:40:56 | Attr =    ]
    PEC2 , PECompact2 ,  -> %CommonProgramFiles%\Real\GToolbar\GoogleToolbarInstaller.exe -> Google [Ver = 3, 0, 126, 3 | Size =

    559784 bytes | Modified Date = 05-07-2006 09:40:56 | Attr =    ]
    UPX! , UPX0 ,  -> %SystemRoot%\daemon.dll ->  [Ver = 3.46.0.0 | Size = 69120 bytes | Modified Date = 15-03-2004 18:28:50 | Attr

    =    ]
    PTech ,  -> %SystemRoot%\setupapi.log.0.old ->  [Ver =  | Size = 1875604 bytes | Modified Date = 05-10-2004 00:35:34 | Attr = 

    ]
    WSUD ,  -> %System32%\ALSNDMGR.CPL -> Realtek Semiconductor Corp. [Ver = 2.2.08 | Size = 13426176 bytes | Modified Date =

    08-10-2003 09:05:36 | Attr =    ]
    PEC2 ,  -> %System32%\dfrg.msc ->  [Ver =  | Size = 41397 bytes | Modified Date = 23-08-2001 13:00:00 | Attr =    ]
    PEC2 , PECompact2 ,  -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.1.1.2 | Size = 573952 bytes | Modified Date = 07-12-2005

    18:05:52 | Attr =    ]
    winsync ,  -> %System32%\wbdbase.deu ->  [Ver =  | Size = 1309184 bytes | Modified Date = 23-08-2001 13:00:00 | Attr =    ]
    Thawte Consulting ,  -> %System32%\XceedZip.dll -> Xceed Software Inc        (450) 442-2626        support@xceedsoft.com       

    www.xceedsoft.com [Ver = 5.0.92.0 | Size = 426528 bytes | Modified Date = 24-10-2002 13:47:56 | Attr =    ]
    WSUD , UPX0 ,  -> %System32%\dllcache\hwxjpn.dll ->  [Ver =  | Size = 13463552 bytes | Modified Date = 23-08-2001 13:00:00 |

    Attr =    ]
    PTech ,  -> %System32%\drivers\mtlstrm.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 1309184 bytes | Modified Date = 04-08-2004

    06:41:38 | Attr =    ]

    < End of report >
    Avatar billede ejvindh Ekspert
    11. januar 2007 - 20:24 #3
    Der er heller ikke noget skidt i WinPFind3-loggen. Jeg tror derfor at den bedste løsning vil være at køre et sfc-scan eller en repair, og angående Office, så prøve at afinstallere og geninstallere det.

    Vejledning til Sfc-scan og repair finder du her:
    http://www.hcma.dk/tips21to30.htm#no22
    http://www.hcma.dk/tips1to10.htm#no4
    Avatar billede Ny bruger Nybegynder

    Din løsning...

    Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

    Loading billede Opret Preview
    Kategori
    Se alle it-kurser fra Computerworld Kurser
    IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.
    Se alle it-kurser

    Flere spørgsmål fra Virus kategorien

    Titel Indlæg Oprettet Seneste aktivitet
    Findes der mon et Antivirus program, som ikke, konstant, reklamerer, for at købe ? Af Ikke-ekspert i Virus 21 22/06/202419:22 23/06/202412:54
    Anbefaling af antivirusprogram med firewall Af OnePlusFan i Virus 23 07/05/202421:02 13/05/202419:48
    trusler Af gerhardpet i Virus 4 26/01/202410:02 27/01/202408:32
    Kan ikke fjerne virus Af mik28 i Virus 16 09/01/202416:37 10/01/202419:59
    virusscanning Af JetteD i Virus 2 10/11/202312:55 10/11/202316:36
    Se alle spørgsmål i kategorien Opret spørgsmål

    Log ind eller opret profil

    Hov!

    For at kunne deltage på Computerworld Eksperten skal du være logget ind.

    Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

    Opret Log ind

    Du kan også logge ind via nedenstående tjenester



    Alle kategorier på Eksperten
    Seneste spørgsmål Seneste aktivitet
    I går 20:17 vlc viser kegle-icon Af casablanca i Andet software
    I går 14:01 Oprette / gemme et par fotos i en mappe - Samsung Galaxy A 14 5G ? Af Ikke-ekspert i Mobiltelefoner
    I går 11:14 Bærbar til Sims 3? Af idamarie i PC
    I går 10:49 Adobe til excel Af densortehingst i Andet software
    I går 09:26 Chrome Af fjorbak i Andet netværk
    White papers
    Flere white papers »


    Premium
    Teaser billede
    5.000 flyafgange i verden blev aflyst som følge af Crowdstrike-nedbrud: Vil Københavns Lufthavn søge erstatning?
    Læs mere »
    Hackere udnytter CrowdStrike-nedbruddet: Spreder malware ved hjælp af falske løsninger
    Microsoft skyder dele af skylden for CrowdStrike-nedbrud på 15 år gammel EU-aftale
    Derfor står Danske Bank foran en kæmpe AWS-transformation: Ellers skulle vi bygge en ny infrastruktur for at følge med
    Se alle »
    Computerworld
    Teaser billede
    Microsoft-nedbrud spreder sig: It-systemer i lufthavne verden over er ramt
    Læs mere »
    Test: Denne mikro-pc er smartere end de stærkeste desktop-maskiner - men flopper alligevel
    Elon Musk dropper CrowdStrike efter kæmpe nedbrud
    Hundredevis af flyafgange ramt af stort Microsoft-nedbrud
    Se alle »
    CIO
    Teaser billede
    Microsoft er på sagen: I gang med at løse kæmpe nedbrud efter katastrofal Crowdstrike-fejl
    Læs mere »
    Så mange Microsoft-enheder blev ramt af gigantisk Crowdstrike-koks
    Telenor skrotter ældre it-system: Nyt system er en hyldevare
    Derfor står Danske Bank foran en kæmpe AWS-transformation: Ellers skulle vi bygge en ny infrastruktur for at følge med
    Se alle »
    Job & Karriere
    Teaser billede
    Efter 12 år er NNIT's hovedkvarter i Søborg nu ryddet og tomt - alle arbejder hjemme: "Det er med et vist vemod"
    Læs mere »
    Norlys skal splittes op i fem selskaber: Nu bliver flere ansatte og ledere fyret
    Dansk top-profil trækker sig fra Microsoft: Skal være direktør i TDC Erhverv
    KMD-direktør forlader selskabet: Det skal hun nu
    Se alle »
    White paper
    Teaser billede
    SASE: Træf det rette valg – første gang
    Læs mere »
    Samlet platform sikrer sammenhæng, kontrol og sikkerhed i hybrid cloud
    Sådan får du overblik og beskytter dine cloudapplikationer
    Få mere ud af din cloudinfrastruktur og gør op med de konstant stigende omkostninger
    Se alle »

    Events
    Flere events »
    White papers
    Flere white papers »
    IT-Kurser
    Se alle vores it-kurser »