CIO Tech Eksperten IT-JOB IT-Kurser Events Podcast Søg
Cookie ikon
Avatar billede orbe Nybegynder
12. oktober 2007 - 07:54 Der er 4 kommentarer og
1 løsning

Nogen der vil hjælpe mig med mine log filer?

Har de 4 log filer, dom jeg gerne vil have kigget igennem, hvis nogen har lyst,

på forhånd tak

ComboFix 07-10-12.1 - Jonas 2007-10-12  7:25:56.1 - FAT32x86
Microsoft Windows XP Home Edition  5.1.2600.2.1252.1.1030.18.98 [GMT 2:00]
Running from: C:\Documents and Settings\Jonas\Skrivebord\Virus\ComboFix.exe
* Created a new restore point
.

(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\Downloaded Program Files\Quarantine

.
(((((((((((((((((((((((((  Files Created from 2007-09-12 to 2007-10-12  )))))))))))))))))))))))))))))))
.

2007-10-12 07:24    51,200    --a------    C:\WINDOWS\NirCmd.exe
2007-10-12 00:18    <DIR>    d--------    C:\Documents and Settings\Administrator\Skrivebord
2007-10-12 00:18    <DIR>    d--h-----    C:\Documents and Settings\Administrator\Skabeloner
2007-10-12 00:18    <DIR>    d--h-----    C:\Documents and Settings\Administrator\Printere
2007-10-12 00:18    <DIR>    dr-------    C:\Documents and Settings\Administrator\Menuen Start
2007-10-12 00:18    <DIR>    d--h-----    C:\Documents and Settings\Administrator\Lokale indstillinger
2007-10-12 00:18    <DIR>    dr-------    C:\Documents and Settings\Administrator\Foretrukne
2007-10-12 00:18    <DIR>    dr-------    C:\Documents and Settings\Administrator\Dokumenter
2007-10-12 00:18    <DIR>    d--h-----    C:\Documents and Settings\Administrator\Andre computere
2007-10-12 00:17    <DIR>    d--hs----    C:\FOUND.006
2007-10-12 00:09    <DIR>    d--------    C:\Programmer\SUPERAntiSpyware
2007-10-12 00:09    <DIR>    d--------    C:\Documents and Settings\Jonas\Application Data\SUPERAntiSpyware.com
2007-10-12 00:09    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2007-10-12 00:02    <DIR>    d--------    C:\Programmer\CCleaner
2007-10-08 18:34    <DIR>    d--------    C:\Documents and Settings\Jonas\Application Data\Logitech
2007-10-08 18:33    <DIR>    d--hs----    C:\WINDOWS\ftpcache
2007-10-08 18:05    81,920    -r-------    C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
2007-10-08 18:03    <DIR>    d--------    C:\Programmer\Logitech
2007-10-08 18:03    <DIR>        C:\Programmer\Fælles filer\Logitech
2007-10-08 18:03    71,535    --a------    C:\WINDOWS\system32\drivers\LMouKE.Sys
2007-10-08 18:03    54,851    ---------    C:\WINDOWS\system32\drivers\L8042MOU.SYS
2007-10-08 18:03    38,691    --a------    C:\WINDOWS\system32\drivers\LHidUsbK.sys
2007-10-08 18:03    29,696    --a------    C:\WINDOWS\KHALMNPR.Exe
2007-10-08 18:03    24,671    --a------    C:\WINDOWS\system32\drivers\LHidKE.Sys
2007-10-03 09:14    25,856    --a------    C:\WINDOWS\system32\drivers\usbprint.sys
2007-10-03 09:14    25,856    --a------    C:\WINDOWS\system32\dllcache\usbprint.sys
2007-10-03 08:45    <DIR>    d--hs----    C:\FOUND.005
2007-09-29 17:52    159,232    --a------    C:\WINDOWS\system32\ptpusd.dll
2007-09-29 17:52    15,104    --a------    C:\WINDOWS\system32\drivers\usbscan.sys
2007-09-29 17:52    15,104    --a------    C:\WINDOWS\system32\dllcache\usbscan.sys
2007-09-29 17:52    5,632    --a------    C:\WINDOWS\system32\ptpusb.dll
2007-09-27 19:21    <DIR>    d--hs----    C:\FOUND.004
2007-09-26 20:21    89,360    -ra------    C:\WINDOWS\system32\VB5DB.DLL
2007-09-26 20:21    69,632    -ra------    C:\WINDOWS\system32\xmltok.dll
2007-09-26 20:21    36,864    -ra------    C:\WINDOWS\system32\xmlparse.dll
2007-09-26 20:21    26,096    -ra------    C:\WINDOWS\system32\xmlinst.exe
2007-09-26 20:21    24,576    -ra------    C:\WINDOWS\system32\msxml3a.dll
2007-09-26 20:16    <DIR>    d--------    C:\Programmer\Ubi Soft
2007-09-25 21:58    <DIR>    d--------    C:\Program Files
2007-09-25 20:36    1,144    --a------    C:\WINDOWS\mozver.dat
2007-09-25 20:33    0    --a------    C:\WINDOWS\nsreg.dat
2007-09-25 20:00    <DIR>    d--------    C:\Programmer\3D MP3 Sound Recorder G2
2007-09-23 22:13    <DIR>    d--hs----    C:\FOUND.003
2007-09-20 12:12    43,520    --a------    C:\WINDOWS\system32\CmdLineExt03.dll
2007-09-20 10:47    <DIR>    d--------    C:\Documents and Settings\Jonas\WINDOWS
2007-09-20 09:10    21,840    --a------    C:\WINDOWS\system32\SIntfNT.dll
2007-09-20 09:10    17,212    --a------    C:\WINDOWS\system32\SIntf32.dll
2007-09-20 09:10    12,067    --a------    C:\WINDOWS\system32\SIntf16.dll
2007-09-20 09:09    94,208    --a------    C:\WINDOWS\DIIUnin.exe
2007-09-20 09:09    34,582    --a------    C:\WINDOWS\DIIUnin.dat
2007-09-20 09:09    2,829    --a------    C:\WINDOWS\DIIUnin.pif
2007-09-20 08:57    <DIR>    d--------    C:\Programmer\Diablo II
2007-09-18 13:50    <DIR>    d--------    C:\Programmer\BitComet

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-09-26 18:22    11,973    ----a-w    C:\WINDOWS\system32\drivers\secdrv.sys
2007-09-26 18:07    786,432    ----a-w    C:\Documents and Settings\Gæst\NTUSER.DAT
2007-09-11 15:08    ---------    d-----w    C:\Programmer\Apple Software Update
2007-09-11 04:49    ---------    d-----w    C:\Programmer\Alcohol Soft
2007-09-11 04:41    685,816    ----a-w    C:\WINDOWS\system32\drivers\sptd.sys
2007-09-10 05:00    ---------    d-----w    C:\Programmer\Windows Live Safety Center
2007-09-09 06:36    ---------    d-----w    C:\Programmer\iPod
2007-09-09 06:35    ---------    d-----w    C:\Programmer\iTunes
2007-09-06 10:09    801,144    ----a-w    C:\WINDOWS\system32\aswBoot.exe
2007-09-06 10:05    94,416    ----a-w    C:\WINDOWS\system32\drivers\aswmon2.sys
2007-09-06 10:05    92,848    ----a-w    C:\WINDOWS\system32\drivers\aswmon.sys
2007-09-06 10:03    23,152    ----a-w    C:\WINDOWS\system32\drivers\aswRdr.sys
2007-09-06 10:02    42,912    ----a-w    C:\WINDOWS\system32\drivers\aswTdi.sys
2007-09-06 10:00    95,608    ----a-w    C:\WINDOWS\system32\AvastSS.scr
2007-09-06 10:00    26,624    ----a-w    C:\WINDOWS\system32\drivers\aavmker4.sys
2007-09-04 21:14    ---------    d-----w    C:\Documents and Settings\Jonas\Application Data\.BitZip
2007-09-02 20:25    ---------    d-----w    C:\Documents and Settings\Jonas\Application Data\Apple Computer
2007-09-02 20:23    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\Apple Computer
2007-09-02 20:21    ---------    d-----w    C:\Programmer\Fælles filer\Apple
2007-09-02 20:21    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\Apple
2007-08-22 20:07    520,192    ----a-w    C:\WINDOWS\system32\Ekstra Bladet screensaver.scr
2007-08-22 18:10    ---------    d-----w    C:\Documents and Settings\Jonas\Application Data\LimeWire
2007-08-22 18:02    ---------    d-----w    C:\Programmer\IGN
2007-08-21 06:17    683,520    ----a-w    C:\WINDOWS\system32\inetcomm.dll
2007-08-21 06:17    683,520    ----a-w    C:\WINDOWS\system32\dllcache\inetcomm.dll
2007-08-20 10:00    824,832    ----a-w    C:\WINDOWS\system32\dllcache\wininet.dll
2007-08-20 10:00    671,232    ----a-w    C:\WINDOWS\system32\dllcache\mstime.dll
2007-08-20 10:00    63,488    ------w    C:\WINDOWS\system32\dllcache\icardie.dll
2007-08-20 10:00    6,058,496    ------w    C:\WINDOWS\system32\dllcache\ieframe.dll
2007-08-20 10:00    52,224    ------w    C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2007-08-20 10:00    477,696    ----a-w    C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-08-20 10:00    459,264    ------w    C:\WINDOWS\system32\dllcache\msfeeds.dll
2007-08-20 10:00    44,544    ----a-w    C:\WINDOWS\system32\dllcache\iernonce.dll
2007-08-20 10:00    384,512    ----a-w    C:\WINDOWS\system32\dllcache\iedkcs32.dll
2007-08-20 10:00    383,488    ------w    C:\WINDOWS\system32\dllcache\ieapfltr.dll
2007-08-20 10:00    3,584,512    ----a-w    C:\WINDOWS\system32\dllcache\mshtml.dll
2007-08-20 10:00    27,648    ----a-w    C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-08-20 10:00    267,776    ------w    C:\WINDOWS\system32\dllcache\iertutil.dll
2007-08-20 10:00    232,960    ----a-w    C:\WINDOWS\system32\dllcache\webcheck.dll
2007-08-20 10:00    230,400    ----a-w    C:\WINDOWS\system32\dllcache\ieaksie.dll
2007-08-20 10:00    214,528    ----a-w    C:\WINDOWS\system32\dllcache\dxtrans.dll
2007-08-20 10:00    193,024    ----a-w    C:\WINDOWS\system32\dllcache\msrating.dll
2007-08-20 10:00    153,088    ----a-w    C:\WINDOWS\system32\dllcache\ieakeng.dll
2007-08-20 10:00    132,608    ----a-w    C:\WINDOWS\system32\dllcache\extmgr.dll
2007-08-20 10:00    124,928    ----a-w    C:\WINDOWS\system32\dllcache\advpack.dll
2007-08-20 10:00    105,984    ----a-w    C:\WINDOWS\system32\dllcache\url.dll
2007-08-20 10:00    102,400    ----a-w    C:\WINDOWS\system32\dllcache\occache.dll
2007-08-20 10:00    1,152,000    ----a-w    C:\WINDOWS\system32\dllcache\urlmon.dll
2007-08-19 22:10    9,344    ----a-w    C:\WINDOWS\system32\drivers\NSDriver.sys
2007-08-19 22:10    8,320    ----a-w    C:\WINDOWS\system32\drivers\AWRTRD.sys
2007-08-19 19:38    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\Avg7
2007-08-17 10:19    63,488    ----a-w    C:\WINDOWS\system32\dllcache\ie4uinit.exe
2007-08-17 10:19    625,152    ----a-w    C:\WINDOWS\system32\dllcache\iexplore.exe
2007-08-17 10:19    13,824    ------w    C:\WINDOWS\system32\dllcache\ieudinit.exe
2007-08-17 07:34    161,792    ----a-w    C:\WINDOWS\system32\dllcache\ieakui.dll
2007-08-15 18:59    ---------    d-----w    C:\Programmer\B2BPOKER
2007-08-13 16:09    821,312    ----a-w    C:\WINDOWS\system32\drivers\avg7core.sys.~
2007-08-12 19:46    ---------    d-----w    C:\Programmer\Java
2007-08-12 19:45    ---------    d-----w    C:\Programmer\Fælles filer\Java
2007-08-07 21:12    4,098    ----a-w    C:\WINDOWS\CLEANUP.CMD
2007-07-30 17:19    92,504    ----a-w    C:\WINDOWS\system32\dllcache\cdm.dll
2007-07-30 17:19    92,504    ----a-w    C:\WINDOWS\system32\cdm.dll
2007-07-30 17:19    549,720    ----a-w    C:\WINDOWS\system32\wuapi.dll
2007-07-30 17:19    549,720    ----a-w    C:\WINDOWS\system32\dllcache\wuapi.dll
2007-07-30 17:19    53,080    ----a-w    C:\WINDOWS\system32\wuauclt.exe
2007-07-30 17:19    53,080    ----a-w    C:\WINDOWS\system32\dllcache\wuauclt.exe
2007-07-30 17:19    43,352    ----a-w    C:\WINDOWS\system32\wups2.dll
2007-07-30 17:19    325,976    ----a-w    C:\WINDOWS\system32\wucltui.dll
2007-07-30 17:19    325,976    ----a-w    C:\WINDOWS\system32\dllcache\wucltui.dll
2007-07-30 17:19    271,224    ----a-w    C:\WINDOWS\system32\mucltui.dll
2007-07-30 17:19    207,736    ----a-w    C:\WINDOWS\system32\muweb.dll
2007-07-30 17:19    203,096    ----a-w    C:\WINDOWS\system32\wuweb.dll
2007-07-30 17:19    203,096    ----a-w    C:\WINDOWS\system32\dllcache\wuweb.dll
2007-07-30 17:19    1,712,984    ----a-w    C:\WINDOWS\system32\wuaueng.dll
2007-07-30 17:19    1,712,984    ----a-w    C:\WINDOWS\system32\dllcache\wuaueng.dll
2007-07-30 17:18    33,624    ----a-w    C:\WINDOWS\system32\wups.dll
2007-07-30 17:18    33,624    ----a-w    C:\WINDOWS\system32\dllcache\wups.dll
2007-07-12 23:31    765,952    ----a-w    C:\WINDOWS\system32\dllcache\vgx.dll
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" []
"SynTPLpr"="C:\Programmer\Synaptics\SynTP\SynTPLpr.exe" [2004-10-07 23:44]
"SynTPEnh"="C:\Programmer\Synaptics\SynTP\SynTPEnh.exe" [2004-10-07 23:43]
"SoundMan"="SOUNDMAN.EXE" [2005-02-23 18:13 C:\WINDOWS\SOUNDMAN.EXE]
"SiSPower"="SiSPower.dll" [2005-02-25 19:35 C:\WINDOWS\system32\SiSPower.dll]
"SiS Windows KeyHook"="C:\WINDOWS\system32\keyhook.exe" [2005-03-04 13:13]
"PCMService"="C:\Programmer\Arcade\PCMService.exe" [2005-03-09 18:59]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-27 05:00]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-27 05:00]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-27 05:00]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-27 05:00]
"LManager"="C:\Programmer\Launch Manager\QtZgAcer.EXE" [2005-03-28 12:30]
"eRecoveryService"="C:\Windows\System32\Check.exe" [2005-03-23 10:01]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-09-06 12:06]
"QuickTime Task"="C:\Programmer\QuickTime\qttask.exe" [2007-08-09 16:23]
"Microsoft Windows Update                                                                                                                                                                                                                        x86"="me.exe" []
"SunJavaUpdateSched"="C:\Programmer\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"Adobe Reader Speed Launcher"="C:\Programmer\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]
"iTunesHelper"="C:\Programmer\iTunes\iTunesHelper.exe" [2007-09-07 16:55]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2004-10-21 13:28 C:\WINDOWS\KHALMNPR.Exe]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Programmer\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"LDM"="C:\Programmer\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe" [2007-10-08 18:05]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-27 05:00]
"SUPERAntiSpyware"="C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-10-12 07:16]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices]
"Microsoft Windows Update                                                                                                                                                                                                                        x86"=me.exe

C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\
Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe [2005-03-14 14:08:40]
Logitech SetPoint.lnk - C:\Programmer\Logitech\SetPoint\KEM.exe [2007-10-08 18:03:27]
Logitech Desktop Messenger.lnk - C:\Programmer\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2007-10-08 18:05:25]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Programmer\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Programmer\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Programmer\SUPERAntiSpyware\SASWINLO.dll

R1 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys
R3 DKbFltr;Dritek HotKey Keyboard Filter Driver;C:\WINDOWS\system32\Drivers\DKbFltr.sys
R3 HSFHWSIS;HSFHWSIS;C:\WINDOWS\system32\DRIVERS\HSFHWSIS.sys
R3 int15.sys;int15.sys;\??\C:\Programmer\acer\eRecovery\int15.sys
R3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51;C:\WINDOWS\system32\DRIVERS\sisnicxp.sys

*Newly Created Service* - CATCHME
.
Contents of the 'Scheduled Tasks' folder
"2007-10-11 21:56:02 C:\WINDOWS\Tasks\Søg efter opdateringer til Windows Live Toolbar.job"
"2007-09-14 19:22:04 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
.
**************************************************************************

catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-12 07:27:42
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-10-12  7:28:09
.
    --- E O F ---
Logfile of HijackThis v1.99.1
Scan saved at 07:20:38, on 12-10-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmer\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Acer\eManager\anbmServ.exe
C:\Programmer\Fælles filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programmer\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Alwil Software\Avast4\ashMaiSv.exe
C:\Programmer\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programmer\Synaptics\SynTP\SynTPLpr.exe
C:\Programmer\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\keyhook.exe
C:\Programmer\Arcade\PCMService.exe
C:\Programmer\Launch Manager\QtZgAcer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Programmer\Java\jre1.6.0_02\bin\jusched.exe
C:\Programmer\iTunes\iTunesHelper.exe
C:\Programmer\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\sistray.exe
C:\Programmer\acer\eRecovery\Monitor.exe
C:\Programmer\Internet Explorer\iexplore.exe
C:\Programmer\Logitech\SetPoint\KEM.exe
C:\Programmer\Logitech\SetPoint\KHALMNPR.EXE
C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Programmer\iPod\bin\iPodService.exe
C:\Programmer\iTunes\iTunes.exe
C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\Jonas\Skrivebord\Virus\alternativ.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Fælles filer\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmer\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmer\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmer\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SynTPLpr] C:\Programmer\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programmer\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [PCMService] "C:\Programmer\Arcade\PCMService.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [LManager] C:\Programmer\Launch Manager\QtZgAcer.EXE
O4 - HKLM\..\Run: [eRecoveryService] C:\Windows\System32\Check.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmer\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Microsoft Windows Update                                                                                                                                                                                                                        x86] me.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmer\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmer\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmer\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\RunServices: [Microsoft Windows Update                                                                                                                                                                                                                        x86] me.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmer\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Programmer\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Programmer\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Programmer\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Programmer\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070711/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.2.100.cab
O16 - DPF: {56393399-041A-4650-94C7-13DFCB1F4665} (PSFormX Control) - http://ca.com/us/securityadvisor/pestscan/pestscan.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase8300.cab
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://ca.com/us/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Programmer\SUPERAntiSpyware\SASWINLO.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Programmer\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programmer\Fælles filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Programmer\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Programmer\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Programmer\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Programmer\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Programmer\iPod\bin\iPodService.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Programmer\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

ComboFix 07-10-12.1 - Jonas 2007-10-12  7:25:56.1 - FAT32x86
Microsoft Windows XP Home Edition  5.1.2600.2.1252.1.1030.18.98 [GMT 2:00]
Running from: C:\Documents and Settings\Jonas\Skrivebord\Virus\ComboFix.exe
* Created a new restore point
.

(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\Downloaded Program Files\Quarantine

.
(((((((((((((((((((((((((  Files Created from 2007-09-12 to 2007-10-12  )))))))))))))))))))))))))))))))
.

2007-10-12 07:24    51,200    --a------    C:\WINDOWS\NirCmd.exe
2007-10-12 00:18    <DIR>    d--------    C:\Documents and Settings\Administrator\Skrivebord
2007-10-12 00:18    <DIR>    d--h-----    C:\Documents and Settings\Administrator\Skabeloner
2007-10-12 00:18    <DIR>    d--h-----    C:\Documents and Settings\Administrator\Printere
2007-10-12 00:18    <DIR>    dr-------    C:\Documents and Settings\Administrator\Menuen Start
2007-10-12 00:18    <DIR>    d--h-----    C:\Documents and Settings\Administrator\Lokale indstillinger
2007-10-12 00:18    <DIR>    dr-------    C:\Documents and Settings\Administrator\Foretrukne
2007-10-12 00:18    <DIR>    dr-------    C:\Documents and Settings\Administrator\Dokumenter
2007-10-12 00:18    <DIR>    d--h-----    C:\Documents and Settings\Administrator\Andre computere
2007-10-12 00:17    <DIR>    d--hs----    C:\FOUND.006
2007-10-12 00:09    <DIR>    d--------    C:\Programmer\SUPERAntiSpyware
2007-10-12 00:09    <DIR>    d--------    C:\Documents and Settings\Jonas\Application Data\SUPERAntiSpyware.com
2007-10-12 00:09    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2007-10-12 00:02    <DIR>    d--------    C:\Programmer\CCleaner
2007-10-08 18:34    <DIR>    d--------    C:\Documents and Settings\Jonas\Application Data\Logitech
2007-10-08 18:33    <DIR>    d--hs----    C:\WINDOWS\ftpcache
2007-10-08 18:05    81,920    -r-------    C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
2007-10-08 18:03    <DIR>    d--------    C:\Programmer\Logitech
2007-10-08 18:03    <DIR>        C:\Programmer\Fælles filer\Logitech
2007-10-08 18:03    71,535    --a------    C:\WINDOWS\system32\drivers\LMouKE.Sys
2007-10-08 18:03    54,851    ---------    C:\WINDOWS\system32\drivers\L8042MOU.SYS
2007-10-08 18:03    38,691    --a------    C:\WINDOWS\system32\drivers\LHidUsbK.sys
2007-10-08 18:03    29,696    --a------    C:\WINDOWS\KHALMNPR.Exe
2007-10-08 18:03    24,671    --a------    C:\WINDOWS\system32\drivers\LHidKE.Sys
2007-10-03 09:14    25,856    --a------    C:\WINDOWS\system32\drivers\usbprint.sys
2007-10-03 09:14    25,856    --a------    C:\WINDOWS\system32\dllcache\usbprint.sys
2007-10-03 08:45    <DIR>    d--hs----    C:\FOUND.005
2007-09-29 17:52    159,232    --a------    C:\WINDOWS\system32\ptpusd.dll
2007-09-29 17:52    15,104    --a------    C:\WINDOWS\system32\drivers\usbscan.sys
2007-09-29 17:52    15,104    --a------    C:\WINDOWS\system32\dllcache\usbscan.sys
2007-09-29 17:52    5,632    --a------    C:\WINDOWS\system32\ptpusb.dll
2007-09-27 19:21    <DIR>    d--hs----    C:\FOUND.004
2007-09-26 20:21    89,360    -ra------    C:\WINDOWS\system32\VB5DB.DLL
2007-09-26 20:21    69,632    -ra------    C:\WINDOWS\system32\xmltok.dll
2007-09-26 20:21    36,864    -ra------    C:\WINDOWS\system32\xmlparse.dll
2007-09-26 20:21    26,096    -ra------    C:\WINDOWS\system32\xmlinst.exe
2007-09-26 20:21    24,576    -ra------    C:\WINDOWS\system32\msxml3a.dll
2007-09-26 20:16    <DIR>    d--------    C:\Programmer\Ubi Soft
2007-09-25 21:58    <DIR>    d--------    C:\Program Files
2007-09-25 20:36    1,144    --a------    C:\WINDOWS\mozver.dat
2007-09-25 20:33    0    --a------    C:\WINDOWS\nsreg.dat
2007-09-25 20:00    <DIR>    d--------    C:\Programmer\3D MP3 Sound Recorder G2
2007-09-23 22:13    <DIR>    d--hs----    C:\FOUND.003
2007-09-20 12:12    43,520    --a------    C:\WINDOWS\system32\CmdLineExt03.dll
2007-09-20 10:47    <DIR>    d--------    C:\Documents and Settings\Jonas\WINDOWS
2007-09-20 09:10    21,840    --a------    C:\WINDOWS\system32\SIntfNT.dll
2007-09-20 09:10    17,212    --a------    C:\WINDOWS\system32\SIntf32.dll
2007-09-20 09:10    12,067    --a------    C:\WINDOWS\system32\SIntf16.dll
2007-09-20 09:09    94,208    --a------    C:\WINDOWS\DIIUnin.exe
2007-09-20 09:09    34,582    --a------    C:\WINDOWS\DIIUnin.dat
2007-09-20 09:09    2,829    --a------    C:\WINDOWS\DIIUnin.pif
2007-09-20 08:57    <DIR>    d--------    C:\Programmer\Diablo II
2007-09-18 13:50    <DIR>    d--------    C:\Programmer\BitComet

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-09-26 18:22    11,973    ----a-w    C:\WINDOWS\system32\drivers\secdrv.sys
2007-09-26 18:07    786,432    ----a-w    C:\Documents and Settings\Gæst\NTUSER.DAT
2007-09-11 15:08    ---------    d-----w    C:\Programmer\Apple Software Update
2007-09-11 04:49    ---------    d-----w    C:\Programmer\Alcohol Soft
2007-09-11 04:41    685,816    ----a-w    C:\WINDOWS\system32\drivers\sptd.sys
2007-09-10 05:00    ---------    d-----w    C:\Programmer\Windows Live Safety Center
2007-09-09 06:36    ---------    d-----w    C:\Programmer\iPod
2007-09-09 06:35    ---------    d-----w    C:\Programmer\iTunes
2007-09-06 10:09    801,144    ----a-w    C:\WINDOWS\system32\aswBoot.exe
2007-09-06 10:05    94,416    ----a-w    C:\WINDOWS\system32\drivers\aswmon2.sys
2007-09-06 10:05    92,848    ----a-w    C:\WINDOWS\system32\drivers\aswmon.sys
2007-09-06 10:03    23,152    ----a-w    C:\WINDOWS\system32\drivers\aswRdr.sys
2007-09-06 10:02    42,912    ----a-w    C:\WINDOWS\system32\drivers\aswTdi.sys
2007-09-06 10:00    95,608    ----a-w    C:\WINDOWS\system32\AvastSS.scr
2007-09-06 10:00    26,624    ----a-w    C:\WINDOWS\system32\drivers\aavmker4.sys
2007-09-04 21:14    ---------    d-----w    C:\Documents and Settings\Jonas\Application Data\.BitZip
2007-09-02 20:25    ---------    d-----w    C:\Documents and Settings\Jonas\Application Data\Apple Computer
2007-09-02 20:23    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\Apple Computer
2007-09-02 20:21    ---------    d-----w    C:\Programmer\Fælles filer\Apple
2007-09-02 20:21    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\Apple
2007-08-22 20:07    520,192    ----a-w    C:\WINDOWS\system32\Ekstra Bladet screensaver.scr
2007-08-22 18:10    ---------    d-----w    C:\Documents and Settings\Jonas\Application Data\LimeWire
2007-08-22 18:02    ---------    d-----w    C:\Programmer\IGN
2007-08-21 06:17    683,520    ----a-w    C:\WINDOWS\system32\inetcomm.dll
2007-08-21 06:17    683,520    ----a-w    C:\WINDOWS\system32\dllcache\inetcomm.dll
2007-08-20 10:00    824,832    ----a-w    C:\WINDOWS\system32\dllcache\wininet.dll
2007-08-20 10:00    671,232    ----a-w    C:\WINDOWS\system32\dllcache\mstime.dll
2007-08-20 10:00    63,488    ------w    C:\WINDOWS\system32\dllcache\icardie.dll
2007-08-20 10:00    6,058,496    ------w    C:\WINDOWS\system32\dllcache\ieframe.dll
2007-08-20 10:00    52,224    ------w    C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2007-08-20 10:00    477,696    ----a-w    C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-08-20 10:00    459,264    ------w    C:\WINDOWS\system32\dllcache\msfeeds.dll
2007-08-20 10:00    44,544    ----a-w    C:\WINDOWS\system32\dllcache\iernonce.dll
2007-08-20 10:00    384,512    ----a-w    C:\WINDOWS\system32\dllcache\iedkcs32.dll
2007-08-20 10:00    383,488    ------w    C:\WINDOWS\system32\dllcache\ieapfltr.dll
2007-08-20 10:00    3,584,512    ----a-w    C:\WINDOWS\system32\dllcache\mshtml.dll
2007-08-20 10:00    27,648    ----a-w    C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-08-20 10:00    267,776    ------w    C:\WINDOWS\system32\dllcache\iertutil.dll
2007-08-20 10:00    232,960    ----a-w    C:\WINDOWS\system32\dllcache\webcheck.dll
2007-08-20 10:00    230,400    ----a-w    C:\WINDOWS\system32\dllcache\ieaksie.dll
2007-08-20 10:00    214,528    ----a-w    C:\WINDOWS\system32\dllcache\dxtrans.dll
2007-08-20 10:00    193,024    ----a-w    C:\WINDOWS\system32\dllcache\msrating.dll
2007-08-20 10:00    153,088    ----a-w    C:\WINDOWS\system32\dllcache\ieakeng.dll
2007-08-20 10:00    132,608    ----a-w    C:\WINDOWS\system32\dllcache\extmgr.dll
2007-08-20 10:00    124,928    ----a-w    C:\WINDOWS\system32\dllcache\advpack.dll
2007-08-20 10:00    105,984    ----a-w    C:\WINDOWS\system32\dllcache\url.dll
2007-08-20 10:00    102,400    ----a-w    C:\WINDOWS\system32\dllcache\occache.dll
2007-08-20 10:00    1,152,000    ----a-w    C:\WINDOWS\system32\dllcache\urlmon.dll
2007-08-19 22:10    9,344    ----a-w    C:\WINDOWS\system32\drivers\NSDriver.sys
2007-08-19 22:10    8,320    ----a-w    C:\WINDOWS\system32\drivers\AWRTRD.sys
2007-08-19 19:38    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\Avg7
2007-08-17 10:19    63,488    ----a-w    C:\WINDOWS\system32\dllcache\ie4uinit.exe
2007-08-17 10:19    625,152    ----a-w    C:\WINDOWS\system32\dllcache\iexplore.exe
2007-08-17 10:19    13,824    ------w    C:\WINDOWS\system32\dllcache\ieudinit.exe
2007-08-17 07:34    161,792    ----a-w    C:\WINDOWS\system32\dllcache\ieakui.dll
2007-08-15 18:59    ---------    d-----w    C:\Programmer\B2BPOKER
2007-08-13 16:09    821,312    ----a-w    C:\WINDOWS\system32\drivers\avg7core.sys.~
2007-08-12 19:46    ---------    d-----w    C:\Programmer\Java
2007-08-12 19:45    ---------    d-----w    C:\Programmer\Fælles filer\Java
2007-08-07 21:12    4,098    ----a-w    C:\WINDOWS\CLEANUP.CMD
2007-07-30 17:19    92,504    ----a-w    C:\WINDOWS\system32\dllcache\cdm.dll
2007-07-30 17:19    92,504    ----a-w    C:\WINDOWS\system32\cdm.dll
2007-07-30 17:19    549,720    ----a-w    C:\WINDOWS\system32\wuapi.dll
2007-07-30 17:19    549,720    ----a-w    C:\WINDOWS\system32\dllcache\wuapi.dll
2007-07-30 17:19    53,080    ----a-w    C:\WINDOWS\system32\wuauclt.exe
2007-07-30 17:19    53,080    ----a-w    C:\WINDOWS\system32\dllcache\wuauclt.exe
2007-07-30 17:19    43,352    ----a-w    C:\WINDOWS\system32\wups2.dll
2007-07-30 17:19    325,976    ----a-w    C:\WINDOWS\system32\wucltui.dll
2007-07-30 17:19    325,976    ----a-w    C:\WINDOWS\system32\dllcache\wucltui.dll
2007-07-30 17:19    271,224    ----a-w    C:\WINDOWS\system32\mucltui.dll
2007-07-30 17:19    207,736    ----a-w    C:\WINDOWS\system32\muweb.dll
2007-07-30 17:19    203,096    ----a-w    C:\WINDOWS\system32\wuweb.dll
2007-07-30 17:19    203,096    ----a-w    C:\WINDOWS\system32\dllcache\wuweb.dll
2007-07-30 17:19    1,712,984    ----a-w    C:\WINDOWS\system32\wuaueng.dll
2007-07-30 17:19    1,712,984    ----a-w    C:\WINDOWS\system32\dllcache\wuaueng.dll
2007-07-30 17:18    33,624    ----a-w    C:\WINDOWS\system32\wups.dll
2007-07-30 17:18    33,624    ----a-w    C:\WINDOWS\system32\dllcache\wups.dll
2007-07-12 23:31    765,952    ----a-w    C:\WINDOWS\system32\dllcache\vgx.dll
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" []
"SynTPLpr"="C:\Programmer\Synaptics\SynTP\SynTPLpr.exe" [2004-10-07 23:44]
"SynTPEnh"="C:\Programmer\Synaptics\SynTP\SynTPEnh.exe" [2004-10-07 23:43]
"SoundMan"="SOUNDMAN.EXE" [2005-02-23 18:13 C:\WINDOWS\SOUNDMAN.EXE]
"SiSPower"="SiSPower.dll" [2005-02-25 19:35 C:\WINDOWS\system32\SiSPower.dll]
"SiS Windows KeyHook"="C:\WINDOWS\system32\keyhook.exe" [2005-03-04 13:13]
"PCMService"="C:\Programmer\Arcade\PCMService.exe" [2005-03-09 18:59]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-27 05:00]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-27 05:00]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-27 05:00]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-27 05:00]
"LManager"="C:\Programmer\Launch Manager\QtZgAcer.EXE" [2005-03-28 12:30]
"eRecoveryService"="C:\Windows\System32\Check.exe" [2005-03-23 10:01]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-09-06 12:06]
"QuickTime Task"="C:\Programmer\QuickTime\qttask.exe" [2007-08-09 16:23]
"Microsoft Windows Update                                                                                                                                                                                                                        x86"="me.exe" []
"SunJavaUpdateSched"="C:\Programmer\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"Adobe Reader Speed Launcher"="C:\Programmer\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]
"iTunesHelper"="C:\Programmer\iTunes\iTunesHelper.exe" [2007-09-07 16:55]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2004-10-21 13:28 C:\WINDOWS\KHALMNPR.Exe]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Programmer\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"LDM"="C:\Programmer\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe" [2007-10-08 18:05]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-27 05:00]
"SUPERAntiSpyware"="C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-10-12 07:16]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices]
"Microsoft Windows Update                                                                                                                                                                                                                        x86"=me.exe

C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\
Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe [2005-03-14 14:08:40]
Logitech SetPoint.lnk - C:\Programmer\Logitech\SetPoint\KEM.exe [2007-10-08 18:03:27]
Logitech Desktop Messenger.lnk - C:\Programmer\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2007-10-08 18:05:25]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Programmer\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Programmer\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Programmer\SUPERAntiSpyware\SASWINLO.dll

R1 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys
R3 DKbFltr;Dritek HotKey Keyboard Filter Driver;C:\WINDOWS\system32\Drivers\DKbFltr.sys
R3 HSFHWSIS;HSFHWSIS;C:\WINDOWS\system32\DRIVERS\HSFHWSIS.sys
R3 int15.sys;int15.sys;\??\C:\Programmer\acer\eRecovery\int15.sys
R3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51;C:\WINDOWS\system32\DRIVERS\sisnicxp.sys

*Newly Created Service* - CATCHME
.
Contents of the 'Scheduled Tasks' folder
"2007-10-11 21:56:02 C:\WINDOWS\Tasks\Søg efter opdateringer til Windows Live Toolbar.job"
"2007-09-14 19:22:04 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
.
**************************************************************************

catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-12 07:27:42
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-10-12  7:28:09
.
    --- E O F ---
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 10/12/2007 at 01:05 AM

Application Version : 3.7.1018

Core Rules Database Version : 3323
Trace Rules Database Version: 1324

Scan type      : Complete Scan
Total Scan Time : 00:38:33

Memory items scanned      : 179
Memory threats detected  : 0
Registry items scanned    : 4144
Registry threats detected : 0
File items scanned        : 33534
File threats detected    : 0
Avatar billede Computer Hjælp (Gratis) Mester
12. oktober 2007 - 08:10 #1
(Hold dig til én tråd -> http://www.eksperten.dk/spm/800638 ! Vi fortsætter der...)
Avatar billede Jensen DK Novice
12. oktober 2007 - 08:58 #2
Og luk denne tråd, orbe du laver et svar og acceptere det så er her lukket.
Avatar billede orbe Nybegynder
12. oktober 2007 - 20:30 #3
tak
Avatar billede Jensen DK Novice
13. oktober 2007 - 06:39 #4
Du skal også acceptere dit svar,ellers er det ikke lukket.
Avatar billede orbe Nybegynder
30. oktober 2007 - 20:42 #5
kan ikk accepter :S
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview
Kategori
Se alle it-kurser fra Computerworld Kurser
IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.
Se alle it-kurser

Flere spørgsmål fra Virus kategorien

Titel Indlæg Oprettet Seneste aktivitet
Findes der mon et Antivirus program, som ikke, konstant, reklamerer, for at købe ? Af Ikke-ekspert i Virus 21 22/06/202419:22 23/06/202412:54
Anbefaling af antivirusprogram med firewall Af OnePlusFan i Virus 23 07/05/202421:02 13/05/202419:48
trusler Af gerhardpet i Virus 4 26/01/202410:02 27/01/202408:32
Kan ikke fjerne virus Af mik28 i Virus 16 09/01/202416:37 10/01/202419:59
virusscanning Af JetteD i Virus 2 10/11/202312:55 10/11/202316:36
Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Opret Log ind

Du kan også logge ind via nedenstående tjenester



Alle kategorier på Eksperten
Seneste spørgsmål Seneste aktivitet
I går 17:36 støj fra bilradio når jeg oplader min telefon og hører musik via aux stikket Af ibnielsen i Mobiltelefoner
I går 08:58 Camera til usb > 30 Megapixel Af KurtG i Foto & video
I går 03:15 omarrangering af skærme Af jcr18 i Skærme
28/0711:41 Windows 10 : Ikke kopiere tekst med Firefox. Men gerne med Opera. Af Ikke-ekspert i Browsere
27/0718:09 Kan ikke fildele fra PC til PC Af gertLundberg i LAN/WAN
White papers
Flere white papers »


Premium
Teaser billede
Her er de tre største it-sikkerhedsudfordringer for bestyrelser: ”De fleste ved ikke, hvilken risiko de står overfor”
Læs mere »
Løsesum betalt efter angreb mod bilforhandlere: Konsekvenserne påvirker USAs økonomi
Huawei er ramt af forbud og anklager om overvågning - men hvert år bliver unge it-ledere fra hele Europa sendt på sommerskole på selskabets regning
Kritikken af Motorregistret tager til: Opdateringer rammer alle elbiler
Se alle »
Computerworld
Teaser billede
Med SearchGPT har verden fået en spritny søgemaskine: Kan den true Googles dominans?
Læs mere »
Test: Endelig kan man få en soundbar der lyder godt - og som ikke behøver nogen klodset subwoofer
Nørgaard: Jeg har jo sagt det gang på gang på gang! VMS er det bedste styresystem EVER! Men lytter folk?! Nej, nej og atter nej!
Apples folde-iPhone tager form: Her er planerne
Se alle »
CIO
Teaser billede
Telenor skrotter ældre it-system: Nyt system er en hyldevare
Læs mere »
Derfor står Danske Bank foran en kæmpe AWS-transformation: Ellers skulle vi bygge en ny infrastruktur for at følge med
Stor aftale gør Microsofts datacentre hurtigere - investerer i netværksudstyr
Top-CIO Rasmus Lundgaard Pedersen balancerer hele tiden mellem to poler
Se alle »
Job & Karriere
Teaser billede
Efter 12 år er NNIT's hovedkvarter i Søborg nu ryddet og tomt - alle arbejder hjemme: "Det er med et vist vemod"
Læs mere »
Dansk top-profil trækker sig fra Microsoft: Skal være direktør i TDC Erhverv
KMD-direktør forlader selskabet: Det skal hun nu
IBM Danmark skifter ud i sin øverste ledelse - her er den nye direktion
Se alle »
White paper
Teaser billede
Opdag fordelene ved cloud-baseret backup og recovery
Læs mere »
Sådan: Sikker, hurtig og fleksibel storage til dine kritiske data
Guide: Sådan udvikler du en moderne netværksstrategi
Optimering af Source-to-Pay: Identificér oplagte gevinster og skær omkostninger
Se alle »

Events
Flere events »
White papers
Flere white papers »
IT-Kurser
Se alle vores it-kurser »