mindre egenkapital

Magazine
Go Back   Computer Juice > Computer Software > Virus, spionprogrammer og sikkerhet
Reload this Page

Virus hjelp!

Registrer Site Spy Member List Donate Søke Dagens innlegg Marker forumene som lest Forum Rules

Register


 Default 

Virus hjelp!




Reply
Side 1 av 2 1 2
 
Thread Tools
  #1  
Old 6te Nov 2008, 14:43
Medlem Group
  
Default Virus hjelp!

Hei folkens,

Skrevet den her en stund tilbake med virus problemer på min bærbare - Evil hjalp ut massivt og laptop kjører perfekt!

Men .... nå My Bloody desktop har noe

Forrige uke fikk jeg en e-post gjennom Bebo fra en av mine kamerater sa sjekk denne videoen ut av meg og kona fra fredag (og jeg visste at de hadde gått ut på fredag, så trodde det faktisk var ham) anyways, åpner jeg det, har å installere en ny spiller .... og dvs hvor jeg tror viruset kom fra. En boks komme opp med et lass av ting jeg gjorde ikke forstår så gikk ned bakken fra der ..

Nå har jeg skrånende få på enkelte områder, enten det eller det tar meg å treffe oppdatere omtrent hundre ganger! Noen ganger kan et nettsted stykkgods ..... og folk stadig vekk rare meldinger fra meg på facebook

Noen ide hva faen dette er og hvordan du sorterer det? Også, jeg er ikke sikker på om det kunne være relatert men siden alt dette mitt Sky + boksen wont arbeide?! For øyeblikket ikke vil det selv skru på ... Jeg tviler på sin beslektet, men tenkte jeg skulle sjekke ..

Hjelp please!!
  #2  
Old 6te Nov 2008, 15:07
Administrator Group
  
Default Virus hjelp!

Følg veiledningen og post loggfilene som før please.
__________________

Min System: Hybr! D

Prosessor (er):
AMD Turion 64 X2 TL-64 2.2GHz
Hovedkort:
HP nForce 560
RAM-minne:
2GB DDR2 PC2-5300
Graphics Card (s):
Nvidia 7150M Om bord Integrert
Lydkort:
5.1 Om bord Integrert
Harddisk (er):
250GB 5400RPM SATA300
Optisk stasjon (er):
18x CD / DVDRW-DL ATA
Case / PSU:
Stock HP
Cooling:
Stock HP
Nettverk / Internett:
10/100 Nic / 10MB Virgin Kabel
Skjerm (er):
17 "WXGA + HD BrightView Widescreen
Operating System (s):
Windows 7 Ultimate 32Bit
  #3  
Old 6te Nov 2008, 15:18
Medlem Group
  
Default Virus hjelp!

Logfile of Trend Micro HijackThis v2.0.2
Scan lagret på 22:18:20, on 06/11/2008
Plattform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Kjører prosesser:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ Winlogon.exe
C: \ WINDOWS \ system32 \ Services.exe
C: \ WINDOWS \ system32 \ Lsass.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ system32 \ Spoolsv.exe
C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ PhotoshopElementsFileAgent.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoRpc.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoRT.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoTask.exe
C: \ WINDOWS \ Explorer.exe
C: \ WINDOWS \ system32 \ Ctfmon.exe
C: \ Programfiler \ Analog Devices \ Core \ smax4pnp.exe
C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
C: \ progra ~ 1 \ CA \ eTrust ~ 1 \ realmon.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Programfiler \ iTunes \ iTunesHelper.exe
C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ Programfiler \ WinZip \ WZQKPICK.EXE
C: \ Programfiler \ iPod \ bin \ iPodService.exe
C: \ progra ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
C: \ progra ~ 1 \ AVG \ AVG8 \ avgam.exe
C: \ progra ~ 1 \ AVG \ AVG8 \ avgrsx.exe
C: \ progra ~ 1 \ AVG \ AVG8 \ avgnsx.exe
C: \ progra ~ 1 \ AVG \ AVG8 \ avgemc.exe
C: \ Programfiler \ AVG \ AVG8 \ avgtray.exe
C: \ Programfiler \ AVG \ AVG8 \ avgui.exe
C: \ Programfiler \ AVG \ AVG8 \ avgscanx.exe
C: \ Programfiler \ Internet Explorer \ iexplore.exe
C: \ Programfiler \ Trend Micro \ HijackThis \ HijackThis.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/ig?hl=en
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Programfiler \ Fellesfiler \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Programfiler \ AVG \ AVG8 \ avgssie.dll
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ system32 \ dla \ tfswshx.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Programfiler \ Fellesfiler \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Programfiler \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
O4 - HKLM \ .. \ Run: [UpdateManager] "C: \ Programfiler \ Fellesfiler \ Sonic \ Update Manager \ sgtray.exe" / r
O4 - HKLM \ .. \ Run: [Realtime Monitor] C: \ progra ~ 1 \ CA \ eTrust ~ 1 \ realmon.exe-s
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Programfiler \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Programfiler \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ apdproxy.exe"
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ progra ~ 1 \ AVG \ AVG8 \ avgtray.exe
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [Sony Ericsson PC Suite] "C: \ Programfiler \ Sony Ericsson \ Sony Ericsson PC Suite \ SEPCSuite.exe" / Systray / nologon
O4 - HKUS \ S-1-5-18 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'SYSTEM')
O4 - HKUS \. DEFAULT \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Programfiler \ Adobe \ Reader 8.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C: \ Programfiler \ Adobe \ Reader 8.0 \ Reader \ AdobeCollabSync.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C: \ Programfiler \ WinZip \ WZQKPICK.EXE
O8 - Extra sammenheng menyelement: E & ksporter til Microsoft Excel - res: / / c: \ progra ~ 1 \ micros ~ 2 \ Office11 \ EXCEL.EXE/3000
O9 - Extra knappen: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra "Verktøy" MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra knappen: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ progra ~ 1 \ micros ~ 2 \ Office11 \ REFIEBAR.DLL
O9 - Extra knappen: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Verktøy" MENUITEM: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra knappen: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Programfiler \ Messenger \ msmsgs.exe
O9 - Extra "Verktøy" MENUITEM: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Programfiler \ Messenger \ msmsgs.exe
O16 - DPF: (01A88BB1-1174-41EC-ACCB-963509EAE56B) (SysProWmi klasse) -- http://support.euro.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: (0CCA191D-13A6-4E29-B746-314DEE697D83) (Facebook Photo Uploader 5) -- http://upload.facebook.com/controls/...oUploader5.cab
O16 - DPF: (138E6DC9-722B-4F4B-B09D-95D191869696) (Bebo Uploader Control) -- http://www.bebo.com/files/BeboUploader.5.1.4.cab
O16 - DPF: (48DD0448-9209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Klassifikasjon) -- http://messenger.zone.msn.com/binary...t.cab56907.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O18 - Protocol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Programfiler \ AVG \ AVG8 \ avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ PhotoshopElementsFileAgent.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, sro - C: \ progra ~ 1 \ AVG \ AVG8 \ avgemc.exe
O23 - Service: AVG8 Watchdog (avg8wd) - AVG Technologies CZ, sro - C: \ progra ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: eTrust Antivirus RPC Server (InoRPC) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoRpc.exe
O23 - Service: eTrust Antivirus Realtime Server (InoRT) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoRT.exe
O23 - Service: eTrust Antivirus Job Server (InoTask) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoTask.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C: \ Programfiler \ iPod \ bin \ iPodService.exe
--
End of file - 7142 bytes
  #4  
Old 6te Nov 2008, 15:26
Moderator Group
  
Default Virus hjelp!

Du kjører to antivirusprogrammer samtidig.

Jeg (samt Microsoft, McAfee og Symantec) Anbefaler at du IKKE har mer enn ett antivirusprogram installert og kjører på datamaskinen samtidig.

The real-time beskyttelse av to antivirusprogrammer kan være i konflikt med hverandre og føre til følgende:

1) Falske alarmer: Når anti virus programvare forteller deg at din PC har et virus når det faktisk ikke.
2) Konflikter: Ditt system kan låse opp på grunn av begge produktene forsøker å få tilgang til den samme filen samtidig.
3) Ytelse: Mer som en antivirus føre PCen blir treg, og det kan med krasje eller blå skjerm.

Jeg sterkeste at du enten konfigurerer bare ett antivirusprogram for å aktivere automatisk skanning i sanntid, og la resten deaktivert, bruker dem for on-demand-skannere eller gå til Start > Kontrollpanel > Legg til eller fjern programmer og avinstallerer alle unntatt én antivirusprogram.

Avinstaller en nå for å unngå problemer med skanner og løser vi trenger å gjøre.

----------

Laste ned Malwarebytes' Anti-Malware (MBAM)
  • Dobbeltklikk mbam-setup.exe og følger instruksjonene for å installere programmet.
  • Ved utgangen, må du passe på et merke plasseres ved siden av det følgende:
    • Oppdater Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Deretter klikker du Fullfør.
  • Hvis en oppdatering er funnet, vil laste ned og installere den nyeste versjonen.
  • Når programmet er lastet, velger du Utføre rask skanning, Og klikk Scan.
  • Når skanningen er fullført, klikker du OK, Deretter Vis resultater å vise resultater.
  • Pass på at alt er sjekket, og klikk Fjern valgte.
  • Når desinfeksjon er ferdig, en logg åpnes i Notepad, og du kan bli bedt om å starte. (Se Extra Note)
  • Loggen lagres automatisk ved MBAM og kan vises ved å klikke Logger kategorien i MBAM.
  • Kopier og lim inn hele rapporten i neste svaret.

Ekstra Merk: Hvis MBAM finner en fil som er vanskelig å fjerne, vil du bli presentert med 1 av 2 ledetekster, klikk OK for å enten og la MBAM fortsette med desinfeksjon prosessen, hvis du blir bedt om å starte datamaskinen på nytt, kan du gjøre det umiddelbart.

----------

Laste ned tilfeldig system informasjon verktøyet (RSIT) av en tilfeldig / tilfeldig fra og lagre det til skrivebordet ditt.
  • Dobbeltklikk på RSIT.exe å kjøre.
  • Klikk Fortsett på ansvarsfraskrivelse skjermen.
  • Når den er ferdig, to loggene åpne.
  • Log.txt <skal optimaliseres og info.txt <skal minimeres
  • Vennligst post innholdet av begge loggene i neste svaret.
__________________
  #5  
Old 6te Nov 2008, 15:29
Medlem Group
  
Default Virus hjelp!

Jeg arbeidsudyktig og kvitte seg med AVG nå ...

Bare for å fortelle deg, dvs bare vært her en time eller så tror jeg - noen andre anbefales det så jeg raskt DL'd det og ikke har blitt kvitt den ennå ...

Vil legge stokkene i et par minutter
  #6  
Old 6te Nov 2008, 15:39
Moderator Group
  
Default Virus hjelp!

CA og AVG er omtrent det samme etter min mening. Så jeg tror ikke installere det ville gjøre noe godt.
__________________
  #7  
Old 6te Nov 2008, 15:44
Medlem Group
  
Default Virus hjelp!

RST er tilfeldig log;

"Log.txt":

Logfile tilfeldig system informasjon verktøyet 1,04 (skrevet av tilfeldige / tilfeldig)
Kjør av Adam at 2008-11-06 22:43:21
Microsoft Windows XP Professional Service Pack 2
System stasjon C: har 42 GB (57%) gratis i 73 GB
Total RAM: 510 MB (36% gratis)
Logfile of Trend Micro HijackThis v2.0.2
Scan lagret på 22:43:38, on 06/11/2008
Plattform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Kjører prosesser:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ Winlogon.exe
C: \ WINDOWS \ system32 \ Services.exe
C: \ WINDOWS \ system32 \ Lsass.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ system32 \ Spoolsv.exe
C: \ WINDOWS \ Explorer.exe
C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ PhotoshopElementsFileAgent.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoRpc.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoRT.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoTask.exe
C: \ Programfiler \ Analog Devices \ Core \ smax4pnp.exe
C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
C: \ progra ~ 1 \ CA \ eTrust ~ 1 \ realmon.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ Programfiler \ iTunes \ iTunesHelper.exe
C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ Ctfmon.exe
C: \ Programfiler \ WinZip \ WZQKPICK.EXE
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ Programfiler \ iPod \ bin \ iPodService.exe
C: \ Programfiler \ Internet Explorer \ iexplore.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Programfiler \ Malwarebytes' Anti-Malware \ mbam.exe
C: \ Documents and Settings \ Adam \ Skrivebord \ RSIT.exe
C: \ Program Files \ Trend Micro \ HijackThis \ Adam.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/ig?hl=en
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Programfiler \ Fellesfiler \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Programfiler \ AVG \ AVG8 \ avgssie.dll (fil mangler)
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ system32 \ dla \ tfswshx.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Programfiler \ Fellesfiler \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Programfiler \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
O4 - HKLM \ .. \ Run: [UpdateManager] "C: \ Programfiler \ Fellesfiler \ Sonic \ Update Manager \ sgtray.exe" / r
O4 - HKLM \ .. \ Run: [Realtime Monitor] C: \ progra ~ 1 \ CA \ eTrust ~ 1 \ realmon.exe-s
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Programfiler \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Programfiler \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ apdproxy.exe"
O4 - HKLM \ .. \ RunOnce: [Malwarebytes' Anti-Malware] C: \ Programfiler \ Malwarebytes' Anti-Malware \ mbamgui.exe / install / lydløs
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [Sony Ericsson PC Suite] "C: \ Programfiler \ Sony Ericsson \ Sony Ericsson PC Suite \ SEPCSuite.exe" / Systray / nologon
O4 - HKUS \ S-1-5-18 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'SYSTEM')
O4 - HKUS \. DEFAULT \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Programfiler \ Adobe \ Reader 8.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C: \ Programfiler \ Adobe \ Reader 8.0 \ Reader \ AdobeCollabSync.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C: \ Programfiler \ WinZip \ WZQKPICK.EXE
O8 - Extra sammenheng menyelement: E & ksporter til Microsoft Excel - res: / / c: \ progra ~ 1 \ micros ~ 2 \ Office11 \ EXCEL.EXE/3000
O9 - Extra knappen: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra "Verktøy" MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra knappen: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ progra ~ 1 \ micros ~ 2 \ Office11 \ REFIEBAR.DLL
O9 - Extra knappen: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Verktøy" MENUITEM: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra knappen: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Programfiler \ Messenger \ msmsgs.exe
O9 - Extra "Verktøy" MENUITEM: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Programfiler \ Messenger \ msmsgs.exe
O16 - DPF: (01A88BB1-1174-41EC-ACCB-963509EAE56B) (SysProWmi klasse) -- http://support.euro.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: (0CCA191D-13A6-4E29-B746-314DEE697D83) (Facebook Photo Uploader 5) -- http://upload.facebook.com/controls/...oUploader5.cab
O16 - DPF: (138E6DC9-722B-4F4B-B09D-95D191869696) (Bebo Uploader Control) -- http://www.bebo.com/files/BeboUploader.5.1.4.cab
O16 - DPF: (48DD0448-9209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Klassifikasjon) -- http://messenger.zone.msn.com/binary...t.cab56907.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ PhotoshopElementsFileAgent.exe
O23 - Service: eTrust Antivirus RPC Server (InoRPC) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoRpc.exe
O23 - Service: eTrust Antivirus Realtime Server (InoRT) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoRT.exe
O23 - Service: eTrust Antivirus Job Server (InoTask) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoTask.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C: \ Programfiler \ iPod \ bin \ iPodService.exe
--
End of file - 6709 bytes
====== Planlagte oppgaver mappe ======
C: \ WINDOWS \ oppgaver \ AppleSoftwareUpdate.job
====== Registerkontroll dump ======
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3)]
Adobe PDF Reader Link Helper - C: \ Programfiler \ Fellesfiler \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0)]
AVG Safe Search - C: \ Programfiler \ AVG \ AVG8 \ avgssie.dll []
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (5CA3D70E-1895-11CF-8E15-001234567890)]
DriveLetterAccess - C: \ WINDOWS \ system32 \ dla \ tfswshx.dll [2004-08-13 118842]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (761497BB-D6F0-462C-B6EB-D4DAF1D92D43)]
SSVHelper Class - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll [2008-06-10 509328]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (7E853D72-626A-48EC-A868-BA8D5E23E045)]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (9030D464-4C02-4ABF-8ECC-5164760863C6)]
Windows Live Sign-in Helper - C: \ Programfiler \ Fellesfiler \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll [2006-07-07 324416]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ Run]
"SoundMAXPnP" = C: \ Programfiler \ Analog Devices \ Core \ smax4pnp.exe [2004-10-14 1404928]
"dla" = C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe [2004-08-13 122939]
"UpdateManager" = C: \ Program Files \ Common Files \ Sonic \ Update Manager \ sgtray.exe [2004-01-07 110592]
"Realtime Monitor" = C: \ PROGRA ~ 1 \ CA \ eTrust ~ 1 \ realmon.exe [2004-04-06 504080]
"" = []
"igfxtray" = C: \ WINDOWS \ system32 \ igfxtray.exe [2005-09-20 94208]
"igfxhkcmd" = C: \ WINDOWS \ system32 \ hkcmd.exe [2005-09-20 77824]
"igfxpers" = C: \ WINDOWS \ system32 \ igfxpers.exe [2005-09-20 114688]
«QuickTime Task" = C: \ Programfiler \ QuickTime \ qttask.exe [2006-10-25 282624]
"iTunesHelper" = C: \ Programfiler \ iTunes \ iTunesHelper.exe [2006-10-30 256576]
"SunJavaUpdateSched" = C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ jusched.exe [2008-06-10 144784]
"Adobe Photo Downloader" = C: \ Program Files \ Adobe \ Photoshop Elements 5.0 \ apdproxy.exe [2006-09-14 61440]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ RunOnce]
"Malwarebytes 'Anti-Malware" = C: \ Program Files \ Malwarebytes' Anti-Malware \ mbamgui.exe [2008-10-22 399504]
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Run]
"Ctfmon.exe" = C: \ WINDOWS \ system32 \ Ctfmon.exe [2004-08-04 15360]
"Sony Ericsson PC Suite" = C: \ Program Files \ Sony Ericsson \ Sony Ericsson PC Suite \ SEPCSuite.exe [2007-10-18 356352]
C: \ Documents and Settings \ All Users \ Start-meny \ Programmer \ Oppstart
Adobe Reader Speed Launch.lnk - C: \ Program Files \ Adobe \ 8.0 \ Reader Reader \ reader_sl.exe
Adobe Reader Synchronizer.lnk - C: \ Program Files \ Adobe \ 8.0 \ Reader Reader \ AdobeCollabSync.exe
WinZip Quick Pick.lnk - C: \ Programfiler \ WinZip \ WZQKPICK.EXE
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ igfxcui]
C: \ WINDOWS \ system32 \ igfxdev.dll [2005-09-20 135168]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ Policies \ System]
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"shutdownwithoutlogon" = 1
"undockwithoutlogon" = 1
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Policies \ Explorer]
"NoDriveTypeAutoRun" = 145
[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ tjenester es \ sharedaccess \ Parameters \ firewallpolicy \ standard profil \ authorizedapplications \ listen]
"% windir% \ system32 \ sessmgr.exe" = "% windir% \ system32 \ sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019"
"C: \ Programfiler \ Messenger \ msmsgs.exe" = "C: \ Programfiler \ Messenger \ msmsgs.exe: *: Enabled: Windows Messenger"
"C: \ Programfiler \ iTunes \ iTunes.exe" = "C: \ Programfiler \ iTunes \ iTunes.exe: *: Enabled: iTunes"
"C: \ Programfiler \ MSN Messenger \ msncall.exe" = "C: \ Programfiler \ MSN Messenger \ msncall.exe: *: Enabled: Windows Live Messenger 8.0 (Phone)"
"C: \ Programfiler \ MSN Messenger \ msnmsgr.exe" = "C: \ Programfiler \ MSN Messenger \ msnmsgr.exe: *: Enabled: Windows Live Messenger 8.1"
"C: \ Programfiler \ MSN Messenger \ livecall.exe" = "C: \ Programfiler \ MSN Messenger \ livecall.exe: *: Enabled: Windows Live Messenger 8.1 (Phone)"
"% windir% \ Network Diagnostic \ xpnetdiag.exe" = "% windir% \ Network Diagnostic \ xpnetdiag.exe: *: Enabled: @ xpsp3res.dll, -20000"
"C: \ Programfiler \ uTorrent \ uTorrent.exe" = "C: \ Programfiler \ uTorrent \ uTorrent.exe: *: Enabled: μTorrent"
[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ tjenester es \ sharedaccess \ Parameters \ firewallpolicy \ domainpr ofile \ authorizedapplications \ listen]
"% windir% \ system32 \ sessmgr.exe" = "% windir% \ system32 \ sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019"
"C: \ Programfiler \ MSN Messenger \ msncall.exe" = "C: \ Programfiler \ MSN Messenger \ msncall.exe: *: Enabled: Windows Live Messenger 8.0 (Phone)"
"C: \ Programfiler \ MSN Messenger \ msnmsgr.exe" = "C: \ Programfiler \ MSN Messenger \ msnmsgr.exe: *: Enabled: Windows Live Messenger 8.1"
"C: \ Programfiler \ MSN Messenger \ livecall.exe" = "C: \ Programfiler \ MSN Messenger \ livecall.exe: *: Enabled: Windows Live Messenger 8.1 (Phone)"
"% windir% \ Network Diagnostic \ xpnetdiag.exe" = "% windir% \ Network Diagnostic \ xpnetdiag.exe: *: Enabled: @ xpsp3res.dll, -20000"
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ explorer \ mountpoints2 \ (069b2f09-8c7d-11dc-871c-0013205c16a9)]
shell \ Auto \ command - Start.exe
shell \ AutoRun \ command - C: \ WINDOWS \ system32 \ rundll32.exe shell32.dll, ShellExec_RunDLL Start.exe

====== Filtilknytninger ======
. js - rediger - "C: \ Program Files \ Macromedia \ Dreamweaver 8 \ dreamweaver.exe" "% 1"
====== Liste over filer / mapper opprettet i de siste 1 mnd ======
2008-11-06 22:43:21 ---- D ---- C: \ rsit
2008-11-06 22:42:18 ---- D ---- C: \ Documents and Settings \ Adam \ Application Data \ Malwarebytes
2008-11-06 22:42:13 ---- D ---- C: \ Program Files \ Malwarebytes 'Anti-Malware
2008-11-06 22:42:13 ---- D ---- C: \ Documents and Settings \ All Users \ Application Data \ Malwarebytes
2008-11-06 22:36:21 ---- D ---- C: \ Documents and Settings \ All Users \ Application Data \ Avg8
2008-11-06 22:17:46 ---- D ---- C: \ Program Files \ Trend Micro
2008-11-06 21:25:12 ---- D ---- C: \ WINDOWS \ system32 \ AppMgmt
2008-11-06 21:22:34 ---- D ---- C: \ Documents and Settings \ Adam \ Application Data \ Versiontracker Pro
2008-11-06 21:22:08 ---- D ---- C: \ Program Files \ TechTracker
2008-11-06 19:31:45 ---- D ---- C: \ Program Files \ uTorrent
2008-11-06 19:31:45 ---- D ---- C: \ Documents and Settings \ Adam \ Application Data \ uTorrent
2008-11-06 19:31:43 ---- D ---- C: \ Program Files \ Avanquest oppdatering
2008-11-06 19:31:43 ---- D ---- C: \ Documents and Settings \ All Users \ Application Data \ BVRP Software
2008-11-06 19:31:40 ---- D ---- C: \ Program Files \ Free Audio Pack
2008-11-06 19:30:51 ---- D ---- C: \ Program Files \ \ SureThing Delt
2008-11-06 19:30:44 ---- D ---- C: \ Programfiler \ Fellesfiler \ Sonic
2008-11-05 13:26:28 ---- D ---- C: \ Documents and Settings \ All Users \ Application Data \ BVRP Software (2)
2008-11-04 23:51:31 ---- D ---- C: \ Program Files \ tinyproxy
2008-10-26 11:13:15 ---- B ---- C: \ WINDOWS \ system32 \ javaws.exe
2008-10-26 11:13:15 ---- B ---- C: \ WINDOWS \ system32 \ javaw.exe
2008-10-26 11:13:15 ---- B ---- C: \ WINDOWS \ system32 \ java.exe
2008-10-26 11:00:26 ---- B ---- C: \ WINDOWS \ system32 \ PerfStringBackup.TMP
2008-10-25 22:30:23 ---- D ---- C: \ Program Files \ DSA Theory Test
2008-10-25 22:29:24 ---- D ---- C: \ Config.Msi
2008-10-25 22:29:23 ---- D ---- C: \ WINDOWS \ VirtualEar
2008-10-25 19:02:44 ---- D ---- C: \ WINDOWS \ assembly
2008-10-25 19:01:55 ---- D ---- C: \ WINDOWS \ Microsoft.NET
2008-10-25 19:01:06 ---- D ---- C: \ Program Files \ Navman
2008-10-25 01:28:29 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB958644 $
2008-10-15 22:04:03 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB956803 $
2008-10-15 22:03:57 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB956391 $
2008-10-15 22:03:49 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB957095 $
2008-10-15 22:03:06 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB954211 $
2008-10-15 22:02:48 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB956841 $
====== Liste over filer / mapper endret de siste 1 mnd ======
2008-11-06 22:42:16 ---- D ---- C: \ WINDOWS \ system32 \ drivers
2008-11-06 22:42:13 ---- RD ---- C: \ Program Files
2008-11-06 22:37:58 ---- D ---- C: \ WINDOWS \ Temp
2008-11-06 22:37:33 ---- D ---- C: \ WINDOWS \ system32
2008-11-06 22:36:49 ---- B ---- C: \ WINDOWS \ SchedLgU.Txt
2008-11-06 22:36:16 ---- D ---- C: \ WINDOWS
2008-11-06 22:30:43 ---- RSHDC ---- C: \ WINDOWS \ system32 \ dllcache
2008-11-06 21:46:09 ---- D ---- C: \ WINDOWS \ Forhåndshent
2008-11-06 21:45:09 ---- SHD ---- C: \ WINDOWS \ Installer
2008-11-06 21:45:08 ---- D ---- C: \ WINDOWS \ WinSxS
2008-11-06 21:45:08 ---- D ---- C: \ Programfiler \ Fellesfiler \ Microsoft Shared
2008-11-06 21:24:57 ---- D ---- C: \ WINDOWS \ system32 \ CatRoot
2008-11-06 21:24:56 ---- D ---- C: \ WINDOWS \ system32 \ Catroot2
2008-11-06 19:32:25 ---- D ---- C: \ WINDOWS \ system32 \ config
2008-11-06 19:32:11 ---- D ---- C: \ WINDOWS \ system32 \ wbem
2008-11-06 19:32:10 ---- D ---- C: \ WINDOWS \ Registration
2008-11-06 19:30:52 ---- HD ---- C: \ WINDOWS \ inf
2008-11-04 23:57:39 ---- D ---- C: \ Program Files \
2008-11-04 23:57:26 ---- D ---- C: \ Programfiler \ Sonic
2008-11-04 23:56:21 ---- D ---- C: \ Programfiler \ Fellesfiler \ Macromedia
2008-11-04 23:56:20 ---- D ---- C: \ WINDOWS \ Downloaded Installations
2008-11-04 23:56:20 ---- D ---- C: \ Program Files \ Macromedia
2008-11-04 23:54:45 ---- HD ---- C: \ Program Files \ InstallShield Installation Information
2008-10-26 11:13:15 ---- D ---- C: \ Program Files \ Java
2008-10-25 22:29:27 ---- D ---- C: \ WINDOWS \ system32 \ dla
2008-10-25 22:29:26 ---- D ---- C: \ WINDOWS \ security
2008-10-25 22:28:47 ---- D ---- C: \ WINDOWS \ system32 \ Restore
2008-10-25 19:25:27 ---- D ---- C: \ Program Files \ Common Files \ InstallShield
2008-10-25 19:25:13 ---- D ---- C: \ WINDOWS \ system
2008-10-25 19:23:42 ---- D ---- C: \ Program Files \ MSN
2008-10-25 19:16:19 ---- SD ---- C: \ Documents and Settings \ Adam \ Application Data \ Microsoft
2008-10-25 19:01:59 ---- D ---- C: \ Programfiler \ Internet Explorer
2008-10-25 01:28:39 ---- B ---- C: \ WINDOWS \ imsins.BAK
2008-10-25 01:27:53 ---- HD ---- C: \ WINDOWS \ $ hf_mig $
2008-10-25 00:58:29 ---- B ---- C: \ WINDOWS \ win.ini
2008-10-16 15:35:17 ---- B ---- C: \ WINDOWS \ system32 \ PerfStringBackup.INI
2008-10-15 16:57:55 ---- B ---- C: \ WINDOWS \ system32 \ Netapi32.dll
2008-10-15 16:57:55 ---- B ---- C: \ WINDOWS \ system32 \ netapi32 (2). DLL
====== Liste over drivere (R = Running, S = stoppet, 0 = Boot, 1 = System, 2 = Auto, 3 = Demand, 4 = funksjonshemmede )======
R1 intelppm; Intel Processor Driver; C: \ WINDOWS \ system32 \ DRIVERS \ intelppm.sys [2004-08-04 36096]
R1 kbdhid; Keyboard HID Driver; C: \ WINDOWS \ system32 \ drivers \ kbdhid.sys [2004-08-04 14848]
R1 sscdbhk5; sscdbhk5 C: \ WINDOWS \ system32 \ drivers \ sscdbhk5.sys [2004-07-14 5627]
R1 ssrtln; ssrtln C: \ WINDOWS \ system32 \ drivers \ ssrtln.sys [2004-07-14 23545]
R2 drvnddm; drvnddm C: \ WINDOWS \ system32 \ drivers \ drvnddm.sys [2004-08-13 40544]
R2 INO_FLTR; INO_FLTR; \? \ C: \ WINDOWS \ system32 \ drivers \ ino_fltr.sys []
R2 tfsnboio; tfsnboio C: \ WINDOWS \ system32 \ dla \ tfsnboio.sys [2004-08-13 25723]
R2 tfsncofs; tfsncofs C: \ WINDOWS \ system32 \ dla \ tfsncofs.sys [2004-08-13 34843]
R2 tfsndrct; tfsndrct C: \ WINDOWS \ system32 \ dla \ tfsndrct.sys [2004-08-13 4123]
R2 tfsndres; tfsndres C: \ WINDOWS \ system32 \ dla \ tfsndres.sys [2004-08-13 2239]
R2 tfsnifs; tfsnifs C: \ WINDOWS \ system32 \ dla \ tfsnifs.sys [2004-08-13 86202]
R2 tfsnopio; tfsnopio C: \ WINDOWS \ system32 \ dla \ tfsnopio.sys [2004-08-13 14715]
R2 tfsnpool; tfsnpool C: \ WINDOWS \ system32 \ dla \ tfsnpool.sys [2004-08-13 6363]
R2 tfsnudf; tfsnudf C: \ WINDOWS \ system32 \ dla \ tfsnudf.sys [2004-08-13 98714]
R2 tfsnudfa; tfsnudfa C: \ WINDOWS \ system32 \ dla \ tfsnudfa.sys [2004-08-13 100603]
R3 E100B; Intel (R) PRO Adapter Driver; C: \ WINDOWS \ system32 \ DRIVERS \ e100b325.sys [2004-02-10 154112]
R3 GEARAspiWDM; GEARAspiWDM; C: \ WINDOWS \ system32 \ Drivers \ GEARAspiWDM.sys [2006-09-19 15664]
R3 hidusb; Microsoft HID Klassifikasjon Driver; C: \ WINDOWS \ system32 \ drivers \ hidusb.sys [2004-08-04 9600]
R3 ialm; ialm C: \ WINDOWS \ system32 \ DRIVERS \ ialmnt5.sys [2005-09-20 1302332]
R3 MBAMSwissArmy; MBAMSwissArmy; \? \ C: \ WINDOWS \ system32 \ drivers \ mbamswissarmy.sys []
R3 mouhid; Mouse HID Driver; C: \ WINDOWS \ system32 \ drivers \ mouhid.sys [2001-08-17 12160]
R3 senfilt; senfilt C: \ WINDOWS \ system32 \ drivers \ senfilt.sys [2004-09-17 732928]
R3 smwdm; smwdm C: \ WINDOWS \ system32 \ drivers \ smwdm.sys [2005-01-27 260352]
R3 usbehci; Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C: \ WINDOWS \ system32 \ drivers \ usbehci.sys [2004-08-04 26624]
R3 usbhub; USB2 Enabled Hub; C: \ WINDOWS \ system32 \ drivers \ Usbhub.sys [2004-08-04 57600]
R3 usbuhci; Microsoft USB Universal Host Controller Miniport Driver; C: \ WINDOWS \ system32 \ drivers \ usbuhci.sys [2004-08-04 20480]
S3 usbccgp; Microsoft USB Generic Parent Driver C: \ WINDOWS \ system32 \ DRIVERS \ Usbccgp.sys [2004-08-03 31616]
S3 usbprint; Microsoft USB PRINTER Klassifikasjon; C: \ WINDOWS \ system32 \ drivers \ usbprint.sys [2004-08-03 25856]
S3 USBSTOR; USB Mass Storage Driver; C: \ WINDOWS \ system32 \ drivers \ USBSTOR.SYS [2004-08-03 26496]
====== Liste over tjenester (R = Running, S = stoppet, 0 = Boot, 1 = System, 2 = Auto, 3 = Demand, 4 = funksjonshemmede )======
R2 AdobeActiveFileMonitor5.0; Adobe Active File Monitor V5 C: \ Program Files \ 5.0 \ Adobe \ Photoshop Elements PhotoshopElementsFileAgent.exe [2006-09-14 102400]
R2 InoRPC; eTrust Antivirus RPC Server; C: \ Program Files \ CA \ eTrust Antivirus \ InoRpc.exe [2004-04-06 139536]
R2 InoRT; eTrust Antivirus Realtime Server; C: \ Program Files \ CA \ eTrust Antivirus \ InoRT.exe [2004-04-06 241936]
R2 InoTask; eTrust Antivirus Job Server; C: \ Program Files \ CA \ eTrust Antivirus \ InoTask.exe [2004-04-06 254224]
R2 UMWdf; Windows User Mode Driver Framework, C: \ WINDOWS \ system32 \ wdfmgr.exe [2005-01-28 38912]
R3 iPod Service; iPod Service; C: \ Programfiler \ iPod \ bin \ iPodService.exe [2006-10-30 492608]
S3 ose; Office Source Engine; C: \ Programfiler \ Fellesfiler \ Microsoft Shared \ Source Engine \ Ose.exe [2003-07-28 89136]
S3 usnjsvc; Messenger Sharing Folders USN Journal Reader service; C: \ Programfiler \ MSN Messenger \ usnsvc.exe [2007-01-19 97136]
----------------- EOF -----------------



"Info.txt":

info.txt logfile av tilfeldige system informasjon verktøyet 1,04 2008-11-06 22:43:42
====== Uninstall listen ======
-> C: \ Programfiler \ DivX \ DivXConverterUninstall.exe / Converter
-> C: \ WINDOWS \ system32 \ \ MSIEXEC.EXE / I (09DA4F91-2A09-4232-AB8C-6BC740096DE3) FJERNE = UpdateMgrFeature
-> C: \ WINDOWS \ system32 \ \ msiexec.exe / x (1206EF92-2E83-4859-ACCB-2048C3CB7DA6)
-> C: \ WINDOWS \ system32 \ \ msiexec.exe / x (9541FED0-327F-4df0-8B96-EF57EF622F19)
-> Msiexec.exe / I (C4CBAD7E-DF4A-4FEC-AC17-8BC709AFB844)
-> rundll32.exe Setupapi.dll, InstallHinfSection DefaultUninstall 132 C: \ WINDOWS \ INF \ PCHealth.inf
Adobe Flash Player ActiveX -> C: \ WINDOWS \ system32 \ Macromed \ Flash \ uninstall_acti veX.exe
Adobe Help Center 2.1 -> Msiexec.exe / I (25569723-DC5A-4467-A639-79535BF01B71)
Adobe Photoshop Elements 5.0 -> msiexec / I (A7B609FB-83D8-4FC3-8477-1BC65ECFE85B)
Adobe Reader 8 -> Msiexec.exe / I (AC76BA86-7AD7-1033-7B44-A80000000002)
Apple Software Update -> Msiexec.exe / I (B74F042E-E1B9-4A5B-8D46-387BB172F0A4)
Avanquest oppdatering -> C: \ Programfiler \ InstallShield Installation Information \ (76E41F43-59D2-4F30-BA42-9A762EE1E8DE) \ Setup.exe-runfromtemp-l0x0009-removeonly
CA eTrust Antivirus -> Msiexec.exe / X (99747F0D-D4F8-4877-9CA0-4AE96D963633)
Canon iP4200 -> C: \ WINDOWS \ system32 \ CNMCP78.exe "-PRINTERNAMECanon iP4200"-HELPERDLLC: \ Documents and Settings \ All Users \ Application Data \ CanonBJ \ IJPrinter \ CNMWINDOWS \ Canon iP4200 Installer \ Inst2 \ cnmis.dll ""-RCDLLcnmi0409.dll "
DivX-kodek -> C: \ Programfiler \ DivX \ DivXCodecUninstall.exe / Codec
DivX Content Uploader -> C: \ Program Files \ DivX \ DivXContentUploaderUninstall.exe / CUPLOADER
DivX Converter -> C: \ Programfiler \ DivX \ DivXConverterUninstall.exe / Converter
DivX Player -> C: \ Programfiler \ DivX \ DivXPlayerUninstall.exe / PLAYER
DivX Web Player -> C: \ Programfiler \ DivX \ DivXWebPlayerUninstall.exe / Plugin
DSA Theory Test -> C: \ PROGRA ~ 1 \ FELLES ~ 1 \ INSTAL ~ 1 \ Driver \ 7 \ INTEL3 1 \ ~ Jeg Driver.exe / M (79D1BA4A-BEB4-4357-A431-C3EF58E72E6C)
Free Mp3 Wma Converter V 1.7.2 -> "C: \ Program Files \ Free Audio Pack \ unins000.exe"
HijackThis 2.0.2 -> "C: \ Programfiler \ Trend Micro \ HijackThis \ HijackThis.exe" / avinstallere
Hurtigreparasjonen for Windows Internet Explorer 7 (KB947864 )-->" C: \ WINDOWS \ ie7updates \ KB947864-ie7 \ spuninst \ spuninst.exe "
Hurtigreparasjonen for Windows XP (KB914440 )-->" C: \ WINDOWS \ $ NtUninstallKB914440 $ \ spuninst \ spunin st.exe "
Hurtigreparasjonen for Windows XP (KB915865 )-->" C: \ WINDOWS \ $ NtUninstallKB915865 $ \ spuninst \ spunin st.exe "
Hurtigreparasjonen for Windows XP (KB952287 )-->" C: \ WINDOWS \ $ NtUninstallKB952287 $ \ spuninst \ spunin st.exe "
Intel (R) Extreme Graphics 2 Driver -> rundll32.exe C: \ WINDOWS \ system32 \ ialmrem.dll, UninstallW2KIGfx PCI \ VEN_8086 & DEV_2572
Intel (R) PRO Nettverkskort og drivere -> Prounstl.exe
iTunes -> Msiexec.exe / I (446DBFFA-4088-48E3-8932-74316BA4CAE4)
Java (TM) 6 Update 6 -> Msiexec.exe / I (3248F0A8-6813-11D6-A77B-00B0D0160060)
Java (TM) 6 Update 7 -> Msiexec.exe / I (3248F0A8-6813-11D6-A77B-00B0D0160070)
Macromedia Dreamweaver 8 -> Msiexec.exe / I (0837A661-FEC3-48B3-876C-91E7D32048A9)
Macromedia Extension Manager -> Msiexec.exe / I (5546CDB5-2CE2-498B-B059-5B3BF81FC41F)
Malwarebytes' Anti-Malware -> "C: \ Programfiler \ Malwarebytes' Anti-Malware \ unins000.exe"
Microsoft internasjonalt domenenavn Mitigation APIene -> "C: \ WINDOWS \ $ NtServicePackUninstallIDNMitigationA PIS $ \ Spuninst \ Spuninst.exe"
Microsoft National Language Support Downlevel APIene -> "C: \ WINDOWS \ $ NtServicePackUninstallNLSDownlevelMa pping $ \ Spuninst \ Spuninst.exe"
Microsoft Office Professional Edition 2003 -> Msiexec.exe / I (90110409-6000-11D3-8CFE-0150048383C9)
Microsoft Visual C + + 2005 Redistributable -> Msiexec.exe / X (7299052b-02a4-4627-81f2-1818da5d550d)
MSN -> C: \ Programfiler \ MSN \ MsnInstaller \ msninst.exe / Handling: ARP
MSXML 4.0 SP2 (KB936181) -> Msiexec.exe / I (C04E32E0-0416-434D-AFB9-6969D703A9EF)
PowerDVD -> rundll32 C: \ progra ~ 1 \ FELLES ~ 1 \ installere ~ 1 \ engine \ 6 \ INTEL3 ~ 1 \ Ct or.dll, LaunchSetup "C: \ Programfiler \ InstallShield Installation Information \ (6811CAA0-BF12 - 11D4-9EA1-0050BAE317E1) \ setup.exe "-uninstall
QuickTime -> Msiexec.exe / I (50D8FFDD-90CD-4859-841F-AA1961C7767A)
Real Alternative 1.7.5 -> "C: \ Program Files \ Real Alternative \ unins000.exe"
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB938127 )-->" C: \ WINDOWS \ ie7updates \ KB938127-ie7 \ spuninst \ spuninst.exe "
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB939653 )-->" C: \ WINDOWS \ ie7updates \ KB939653-ie7 \ spuninst \ spuninst.exe "
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB942615 )-->" C: \ WINDOWS \ ie7updates \ KB942615-ie7 \ spuninst \ spuninst.exe "
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB944533 )-->" C: \ WINDOWS \ ie7updates \ KB944533-ie7 \ spuninst \ spuninst.exe "
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB950759 )-->" C: \ WINDOWS \ ie7updates \ KB950759-ie7 \ spuninst \ spuninst.exe "
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB953838 )-->" C: \ WINDOWS \ ie7updates \ KB953838-ie7 \ spuninst \ spuninst.exe "
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB956390 )-->" C: \ WINDOWS \ ie7updates \ KB956390-ie7 \ spuninst \ spuninst.exe "
Sikkerhetsoppdatering for Windows Media Player (KB911564 )-->" C: \ WINDOWS \ $ NtUninstallKB911564 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows Media Player 6.4 (KB925398 )-->" C: \ WINDOWS \ $ NtUninstallKB925398_WMP64 $ \ Spuninst \ Spuninst.exe "
Sikkerhetsoppdatering for Windows Media Player 9 (KB936782 )-->" C: \ WINDOWS \ $ NtUninstallKB936782_WMP9 $ \ Spuninst \ s puninst.exe "
Sikkerhetsoppdatering for Windows XP (KB890046 )-->" C: \ WINDOWS \ $ NtUninstallKB890046 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB893756 )-->" C: \ WINDOWS \ $ NtUninstallKB893756 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB896358 )-->" C: \ WINDOWS \ $ NtUninstallKB896358 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB896423 )-->" C: \ WINDOWS \ $ NtUninstallKB896423 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB896428 )-->" C: \ WINDOWS \ $ NtUninstallKB896428 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB899587 )-->" C: \ WINDOWS \ $ NtUninstallKB899587 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB899591 )-->" C: \ WINDOWS \ $ NtUninstallKB899591 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB900725 )-->" C: \ WINDOWS \ $ NtUninstallKB900725 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB901017 )-->" C: \ WINDOWS \ $ NtUninstallKB901017 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB901190 )-->" C: \ WINDOWS \ $ NtUninstallKB901190 $ \ Spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB901214 )-->" C: \ WINDOWS \ $ NtUninstallKB901214 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB902400 )-->" C: \ WINDOWS \ $ NtUninstallKB902400 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB904706 )-->" C: \ WINDOWS \ $ NtUninstallKB904706 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB905414 )-->" C: \ WINDOWS \ $ NtUninstallKB905414 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB905749 )-->" C: \ WINDOWS \ $ NtUninstallKB905749 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB908519 )-->" C: \ WINDOWS \ $ NtUninstallKB908519 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB911562 )-->" C: \ WINDOWS \ $ NtUninstallKB911562 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB911927 )-->" C: \ WINDOWS \ $ NtUninstallKB911927 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB913580 )-->" C: \ WINDOWS \ $ NtUninstallKB913580 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB914388 )-->" C: \ WINDOWS \ $ NtUninstallKB914388 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB914389 )-->" C: \ WINDOWS \ $ NtUninstallKB914389 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB917344 )-->" C: \ WINDOWS \ $ NtUninstallKB917344 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB917953 )-->" C: \ WINDOWS \ $ NtUninstallKB917953 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB918118 )-->" C: \ WINDOWS \ $ NtUninstallKB918118 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB918439 )-->" C: \ WINDOWS \ $ NtUninstallKB918439 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB919007 )-->" C: \ WINDOWS \ $ NtUninstallKB919007 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB920213 )-->" C: \ WINDOWS \ $ NtUninstallKB920213 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB920670 )-->" C: \ WINDOWS \ $ NtUninstallKB920670 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB920683 )-->" C: \ WINDOWS \ $ NtUninstallKB920683 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB920685 )-->" C: \ WINDOWS \ $ NtUninstallKB920685 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB921503 )-->" C: \ WINDOWS \ $ NtUninstallKB921503 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB922819 )-->" C: \ WINDOWS \ $ NtUninstallKB922819 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB923191 )-->" C: \ WINDOWS \ $ NtUninstallKB923191 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB923414 )-->" C: \ WINDOWS \ $ NtUninstallKB923414 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB923689 )-->" C: \ WINDOWS \ $ NtUninstallKB923689 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB923789) -> C: \ WINDOWS \ system32 \ Macromed \ Flash \ genuinst.exe C: \ WINDOWS \ system32 \ Macromed \ Flash \ KB923789.inf
Sikkerhetsoppdatering for Windows XP (KB923980 )-->" C: \ WINDOWS \ $ NtUninstallKB923980 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB924270 )-->" C: \ WINDOWS \ $ NtUninstallKB924270 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB924496 )-->" C: \ WINDOWS \ $ NtUninstallKB924496 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB924667 )-->" C: \ WINDOWS \ $ NtUninstallKB924667 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB925902 )-->" C: \ WINDOWS \ $ NtUninstallKB925902 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB926255 )-->" C: \ WINDOWS \ $ NtUninstallKB926255 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB926436 )-->" C: \ WINDOWS \ $ NtUninstallKB926436 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB927779 )-->" C: \ WINDOWS \ $ NtUninstallKB927779 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB927802 )-->" C: \ WINDOWS \ $ NtUninstallKB927802 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB928255 )-->" C: \ WINDOWS \ $ NtUninstallKB928255 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB928843 )-->" C: \ WINDOWS \ $ NtUninstallKB928843 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB929123 )-->" C: \ WINDOWS \ $ NtUninstallKB929123 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB930178 )-->" C: \ WINDOWS \ $ NtUninstallKB930178 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB931261 )-->" C: \ WINDOWS \ $ NtUninstallKB931261 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB931784 )-->" C: \ WINDOWS \ $ NtUninstallKB931784 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB932168 )-->" C: \ WINDOWS \ $ NtUninstallKB932168 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB933729 )-->" C: \ WINDOWS \ $ NtUninstallKB933729 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB935839 )-->" C: \ WINDOWS \ $ NtUninstallKB935839 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB935840 )-->" C: \ WINDOWS \ $ NtUninstallKB935840 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB936021 )-->" C: \ WINDOWS \ $ NtUninstallKB936021 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB937894 )-->" C: \ WINDOWS \ $ NtUninstallKB937894 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB938127 )-->" C: \ WINDOWS \ $ NtUninstallKB938127 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB938464 )-->" C: \ WINDOWS \ $ NtUninstallKB938464 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB938829 )-->" C: \ WINDOWS \ $ NtUninstallKB938829 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB939653 )-->" C: \ WINDOWS \ $ NtUninstallKB939653 $ \ Spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB941202 )-->" C: \ WINDOWS \ $ NtUninstallKB941202 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB941568 )-->" C: \ WINDOWS \ $ NtUninstallKB941568 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB941569 )-->" C: \ WINDOWS \ $ NtUninstallKB941569 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB941644 )-->" C: \ WINDOWS \ $ NtUninstallKB941644 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB941693 )-->" C: \ WINDOWS \ $ NtUninstallKB941693 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB943055 )-->" C: \ WINDOWS \ $ NtUninstallKB943055 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB943460 )-->" C: \ WINDOWS \ $ NtUninstallKB943460 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB943485 )-->" C: \ WINDOWS \ $ NtUninstallKB943485 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB944653 )-->" C: \ WINDOWS \ $ NtUninstallKB944653 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB945553 )-->" C: \ WINDOWS \ $ NtUninstallKB945553 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB946026 )-->" C: \ WINDOWS \ $ NtUninstallKB946026 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB946648 )-->" C: \ WINDOWS \ $ NtUninstallKB946648 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB948590 )-->" C: \ WINDOWS \ $ NtUninstallKB948590 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB948881 )-->" C: \ WINDOWS \ $ NtUninstallKB948881 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB950749 )-->" C: \ WINDOWS \ $ NtUninstallKB950749 $ \ Spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB950760 )-->" C: \ WINDOWS \ $ NtUninstallKB950760 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB950762 )-->" C: \ WINDOWS \ $ NtUninstallKB950762 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB950974 )-->" C: \ WINDOWS \ $ NtUninstallKB950974 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB951066 )-->" C: \ WINDOWS \ $ NtUninstallKB951066 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB951376 )-->" C: \ WINDOWS \ $ NtUninstallKB951376 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB951376-v2 )-->" C: \ WINDOWS \ $ NtUninstallKB951376-v2 $ \ Spuninst \ Spuninst.exe "
Sikkerhetsoppdatering for Windows XP (KB951698 )-->" C: \ WINDOWS \ $ NtUninstallKB951698 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB951748 )-->" C: \ WINDOWS \ $ NtUninstallKB951748 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB952954 )-->" C: \ WINDOWS \ $ NtUninstallKB952954 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB953839 )-->" C: \ WINDOWS \ $ NtUninstallKB953839 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB954211 )-->" C: \ WINDOWS \ $ NtUninstallKB954211 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB956391 )-->" C: \ WINDOWS \ $ NtUninstallKB956391 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB956803 )-->" C: \ WINDOWS \ $ NtUninstallKB956803 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB956841 )-->" C: \ WINDOWS \ $ NtUninstallKB956841 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB957095 )-->" C: \ WINDOWS \ $ NtUninstallKB957095 $ \ spuninst \ spunin st.exe "
Sikkerhetsoppdatering for Windows XP (KB958644 )-->" C: \ WINDOWS \ $ NtUninstallKB958644 $ \ spuninst \ spunin st.exe "
Sonic DLA -> Msiexec.exe / I (1206EF92-2E83-4859-ACCB-2048C3CB7DA6)
Sonic RecordNow! Plus -> Msiexec.exe / I (9541FED0-327F-4DF0-8B96-EF57EF622F19)
Sonic Update Manager -> Msiexec.exe / I (09DA4F91-2A09-4232-AB8C-6BC740096DE3)
Sony Ericsson PC Suite 3.102.00 -> C: \ Program Files \ InstallShield Installation Information \ (2FFE93F0-BB72-4E52-8761-354D1AAA9387) \ Setup.exe-runfromtemp-l0x0009-removeonly
SoundMAX -> rundll32 C: \ PROGRA ~ 1 \ FELLES ~ 1 \ INSTAL ~ 1 \ profe ~ 1 \ runtime \ 10 \ 00 \ Intel32 \ Ctor.dll, LaunchSetup "C: \ Program Files \ InstallShield Installation Information \ (F0A37341 -D692-11D4-A984-009027EC0A9C) \ setup.exe "-l0x9-removeonly
Oppdatering for Windows XP (KB894391 )-->" C: \ WINDOWS \ $ NtUninstallKB894391 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB898461 )-->" C: \ WINDOWS \ $ NtUninstallKB898461 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB900485 )-->" C: \ WINDOWS \ $ NtUninstallKB900485 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB904942 )-->" C: \ WINDOWS \ $ NtUninstallKB904942 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB908531 )-->" C: \ WINDOWS \ $ NtUninstallKB908531 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB910437 )-->" C: \ WINDOWS \ $ NtUninstallKB910437 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB911280 )-->" C: \ WINDOWS \ $ NtUninstallKB911280 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB916595 )-->" C: \ WINDOWS \ $ NtUninstallKB916595 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB920872 )-->" C: \ WINDOWS \ $ NtUninstallKB920872 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB922582 )-->" C: \ WINDOWS \ $ NtUninstallKB922582 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB927891 )-->" C: \ WINDOWS \ $ NtUninstallKB927891 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB930916 )-->" C: \ WINDOWS \ $ NtUninstallKB930916 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB932823-v3 )-->" C: \ WINDOWS \ $ NtUninstallKB932823-v3 $ \ Spuninst \ Spuninst.exe "
Oppdatering for Windows XP (KB933360 )-->" C: \ WINDOWS \ $ NtUninstallKB933360 $ \ Spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB936357 )-->" C: \ WINDOWS \ $ NtUninstallKB936357 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB938828 )-->" C: \ WINDOWS \ $ NtUninstallKB938828 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB942763 )-->" C: \ WINDOWS \ $ NtUninstallKB942763 $ \ spuninst \ spunin st.exe "
Oppdatering for Windows XP (KB951072-v2 )-->" C: \ WINDOWS \ $ NtUninstallKB951072-v2 $ \ Spuninst \ Spuninst.exe "
Windows Installer 3.1 (KB893803 )-->" C: \ WINDOWS \ $ MSI31Uninstall_KB893803v2 $ \ Spuninst \ Spuninst.exe "
Windows Internet Explorer 7 -> "C: \ WINDOWS \ ie7 \ spuninst \ spuninst.exe"
Windows Live Messenger -> Msiexec.exe / I (571700F0-DB9D-4B3A-B03D-35A14BB5939F)
Windows Live Sign-in Assistant -> Msiexec.exe / I (22B3CC30-77B8-419C-AA4B-F571FDF5D66D)
Windows Media Format Runtime -> "C: \ Programfiler \ Windows Media Player \ wmsetsdk.exe" / UninstallAll
Windows XP Hotfix - KB873339 -> C: \ WINDOWS \ $ NtUninstallKB873339 $ \ spuninst \ spunins t.exe
Windows XP Hotfix - KB885835 -> C: \ WINDOWS \ $ NtUninstallKB885835 $ \ spuninst \ spunins t.exe
Windows XP Hotfix - KB885836 -> C: \ WINDOWS \ $ NtUninstallKB885836 $ \ spuninst \ spunins t.exe
Windows XP hurtigreparasjon - kb886185 -> C: \ WINDOWS \ $ NtUninstallKB886185 $ \ spuninst \ spunins t.exe
Windows XP Hotfix - KB887472 -> C: \ WINDOWS \ $ NtUninstallKB887472 $ \ spuninst \ spunins t.exe
Windows XP Hotfix - KB888302 -> C: \ WINDOWS \ $ NtUninstallKB888302 $ \ spuninst \ spunins t.exe
Windows XP Hotfix - KB890859 -> "C: \ WINDOWS \ $ NtUninstallKB890859 $ \ spuninst \ spunin st.exe"
Windows XP Hotfix - KB891781 -> C: \ WINDOWS \ $ NtUninstallKB891781 $ \ spuninst \ spunins t.exe
WinRAR archiver -> C: \ Programfiler \ WinRAR \ uninstall.exe
WinZip -> "C: \ Programfiler \ WinZip \ WINZIP32.EXE" / avinstallere
====== Miljøvariabler ======
"ComSpec" =% SystemRoot% \ system32 \ cmd.exe
"Path" =% SystemRoot% \ system32;% SystemRoot%;% SystemR oot% \ system32 \ Wbem C: \ PROGRA ~ 1 \ CA \ SHARED ~ 1 \ SCANEN ~ 1 C: \ PROGRA ~ 1 \ CA \ eTrust ~ 1 C: \ Programfiler \ QuickTime \ QTSystem \
"Windir" =% SystemRoot%
"FP_NO_HOST_CHECK" = NO
"OS" = Windows_NT
"PROCESSOR_ARCHITECTURE" = x86
"PROCESSOR_LEVEL" = 15
"PROCESSOR_IDENTIFIER" = x86 Family 15 Model 4 Stepping 1, GenuineIntel
"PROCESSOR_REVISION" = 0401
"NUMBER_OF_PROCESSORS" = 1
"PATHEXT" =. COM;. EXE;. BAT;. CMD;. VBS;. VBE;. JS;. Jse;. WSF;. WSH
"TEMP" =% SystemRoot% \ Temp
"TMP" =% SystemRoot% \ Temp
"AVENGINE" = C: \ PROGRA ~ 1 \ CA \ SHARED ~ 1 \ SCANEN ~ 1
"Inoculan" = C: \ PROGRA ~ 1 \ CA \ eTrust ~ 1
"CLASSPATH" =., C: \ Programfiler \ QuickTime \ QTSystem \ QTJava.zip
"QTJAVA" = C: \ Programfiler \ QuickTime \ QTSystem \ QTJava.zip
----------------- EOF -----------------


Venter på Malwarebytes til slutt:)
  #8  
Old 6 november 2008, 15:51
Medlem Group
  
Default Virus hjelp!

Malwarebytes' Anti-Malware 1.30
Database versjon: 1370
Windows 5.1.2600 Service Pack 2
06/11/2008 22:51:35
mbam-log-2008-11-06 (22-51-35). txt
Scan type: Quick Scan
Objekter skannet: 52152
Tid tilbakelagt: 8 minute (s), 22 second (s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registernøkler Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 1
Files Infected: 2
Memory Processes Infected:
(Ingen skadelige eks oppdaget)
Memory Modules Infected:
(Ingen skadelige eks oppdaget)
Registernøkler Infected:
HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ Curre ntVersion \ Ext \ Stats \ (af2e62b6-f9e1-4d4f-a10a-9dc8e6dcbcc0) (Adware.VideoEgg) -> karantene og slettet.
Registry Values Infected:
(Ingen skadelige eks oppdaget)
Registry Data Items Infected:
(Ingen skadelige eks oppdaget)
Folders Infected:
C: \ Programfiler \ TinyProxy (Trojan.Proxy) -> Quarantined and deleted successfully.
Files Infected:
C: \ Program Files \ TinyProxy \ tinyproxy (2). Exe (Trojan.Proxy) -> Quarantined and deleted successfully.
C: \ WINDOWS \ fmark2.dat (Malware.Trace) -> Quarantined and deleted successfully.
  #9  
Old 6te Nov 2008, 15:52
Moderator Group
  
Default Virus hjelp!

Jeg trengte Malwarebytes log først. Når den er avsluttet deretter kjøre en ny RSIT skann og post loggen. Det vil bare skape en logg andre gang.

Nå går en ny RSIT skann og post loggen.
__________________
  #10  
Old 6 november 2008, 16:00
Medlem Group
  
Default Virus hjelp!

There you go dude ..

Logfile tilfeldig system informasjon verktøyet 1,04 (skrevet av tilfeldige / tilfeldig)
Kjør av Adam at 2008-11-06 23:00:19
Microsoft Windows XP Professional Service Pack 2
System stasjon C: har 42 GB (57%) gratis i 73 GB
Total RAM: 510 MB (40% gratis)
Logfile of Trend Micro HijackThis v2.0.2
Scan lagret på 23:00:23, on 06/11/2008
Plattform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Kjører prosesser:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ Winlogon.exe
C: \ WINDOWS \ system32 \ Services.exe
C: \ WINDOWS \ system32 \ Lsass.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ WINDOWS \ system32 \ Spoolsv.exe
C: \ WINDOWS \ Explorer.exe
C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ PhotoshopElementsFileAgent.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoRpc.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoRT.exe
C: \ Programfiler \ CA \ eTrust Antivirus \ InoTask.exe
C: \ Programfiler \ Analog Devices \ Core \ smax4pnp.exe
C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
C: \ progra ~ 1 \ CA \ eTrust ~ 1 \ realmon.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ Programfiler \ iTunes \ iTunesHelper.exe
C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ Ctfmon.exe
C: \ Programfiler \ WinZip \ WZQKPICK.EXE
C: \ WINDOWS \ system32 \ Svchost.exe
C: \ Programfiler \ iPod \ bin \ iPodService.exe
C: \ Programfiler \ Internet Explorer \ iexplore.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Documents and Settings \ Adam \ Skrivebord \ RSIT.exe
C: \ Program Files \ Trend Micro \ HijackThis \ Adam.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/ig?hl=en
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Programfiler \ Fellesfiler \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Programfiler \ AVG \ AVG8 \ avgssie.dll (fil mangler)
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ system32 \ dla \ tfswshx.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Programfiler \ Fellesfiler \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Programfiler \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
O4 - HKLM \ .. \ Run: [UpdateManager] "C: \ Programfiler \ Fellesfiler \ Sonic \ Update Manager \ sgtray.exe" / r
O4 - HKLM \ .. \ Run: [Realtime Monitor] C: \ progra ~ 1 \ CA \ eTrust ~ 1 \ realmon.exe-s
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Programfiler \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Programfiler \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ apdproxy.exe"
O4 - HKLM \ .. \ RunOnce: [Malwarebytes' Anti-Malware] C: \ Programfiler \ Malwarebytes' Anti-Malware \ mbamgui.exe / install / lydløs
O4 - HKCU \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe
O4 - HKCU \ .. \ Run: [Sony Ericsson PC Suite] "C: \ Programfiler \ Sony Ericsson \ Sony Ericsson PC Suite \ SEPCSuite.exe" / Systray / nologon
O4 - HKUS \ S-1-5-18 \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'SYSTEM')
O4 - HKUS \. DEFAULT \ .. \ Run: [Ctfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Programfiler \ Adobe \ Reader 8.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C: \ Programfiler \ Adobe \ Reader 8.0 \ Reader \ AdobeCollabSync.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C: \ Programfiler \ WinZip \ WZQKPICK.EXE
O8 - Extra sammenheng menyelement: E & ksporter til Microsoft Excel - res: / / c: \ progra ~ 1 \ micros ~ 2 \ Office11 \ EXCEL.EXE/3000
O9 - Extra knappen: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra "Verktøy" MENUITEM: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra knappen: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ progra ~ 1 \ micros ~ 2 \ Office11 \ REFIEBAR.DLL
O9 - Extra knappen: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Verktøy" MENUITEM: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra knappen: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Programfiler \ Messenger \ msmsgs.exe
O9 - Extra "Verktøy" MENUITEM: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Programfiler \ Messenger \ msmsgs.exe
O16 - DPF: (01A88BB1-1174-41EC-ACCB-963509EAE56B) (SysProWmi klasse) -- http://support.euro.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: (0CCA191D-13A6-4E29-B746-314DEE697D83) (Facebook Photo Uploader 5) -- http://upload.facebook.com/controls/...oUploader5.cab
O16 - DPF: (138E6DC9-722B-4F4B-B09D-95D191869696) (Bebo Uploader Control) -- http://www.bebo.com/files/BeboUploader.5.1.4.cab
O16 - DPF: (48DD0448-9209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Klassifikasjon) -- http://messenger.zone.msn.com/binary...t.cab56907.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C: \ Programfiler \ Adobe \ Photoshop Elements 5.0 \ PhotoshopElementsFileAgent.exe
O23 - Service: eTrust Antivirus RPC Server (InoRPC) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoRpc.exe
O23 - Service: eTrust Antivirus Realtime Server (InoRT) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoRT.exe
O23 - Service: eTrust Antivirus Job Server (InoTask) - Computer Associates International, Inc. - C: \ Programfiler \ CA \ eTrust Antivirus \ InoTask.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C: \ Programfiler \ iPod \ bin \ iPodService.exe
--
End of file - 6622 bytes
====== Planlagte oppgaver mappe ======
C: \ WINDOWS \ oppgaver \ AppleSoftwareUpdate.job
====== Registerkontroll dump ======
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3)]
Adobe PDF Reader Link Helper - C: \ Programfiler \ Fellesfiler \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0)]
AVG Safe Search - C: \ Programfiler \ AVG \ AVG8 \ avgssie.dll []
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (5CA3D70E-1895-11CF-8E15-001234567890)]
DriveLetterAccess - C: \ WINDOWS \ system32 \ dla \ tfswshx.dll [2004-08-13 118842]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (761497BB-D6F0-462C-B6EB-D4DAF1D92D43)]
SSVHelper Class - C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ ssv.dll [2008-06-10 509328]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (7E853D72-626A-48EC-A868-BA8D5E23E045)]
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Explorer \ Browser Helper Objects \ (9030D464-4C02-4ABF-8ECC-5164760863C6)]
Windows Live Sign-in Helper - C: \ Programfiler \ Fellesfiler \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll [2006-07-07 324416]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ Run]
"SoundMAXPnP" = C: \ Programfiler \ Analog Devices \ Core \ smax4pnp.exe [2004-10-14 1404928]
"dla" = C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe [2004-08-13 122939]
"UpdateManager" = C: \ Program Files \ Common Files \ Sonic \ Update Manager \ sgtray.exe [2004-01-07 110592]
"Realtime Monitor" = C: \ PROGRA ~ 1 \ CA \ eTrust ~ 1 \ realmon.exe [2004-04-06 504080]
"" = []
"igfxtray" = C: \ WINDOWS \ system32 \ igfxtray.exe [2005-09-20 94208]
"igfxhkcmd" = C: \ WINDOWS \ system32 \ hkcmd.exe [2005-09-20 77824]
"igfxpers" = C: \ WINDOWS \ system32 \ igfxpers.exe [2005-09-20 114688]
«QuickTime Task" = C: \ Programfiler \ QuickTime \ qttask.exe [2006-10-25 282624]
"iTunesHelper" = C: \ Programfiler \ iTunes \ iTunesHelper.exe [2006-10-30 256576]
"SunJavaUpdateSched" = C: \ Programfiler \ Java \ jre1.6.0_07 \ bin \ jusched.exe [2008-06-10 144784]
"Adobe Photo Downloader" = C: \ Program Files \ Adobe \ Photoshop Elements 5.0 \ apdproxy.exe [2006-09-14 61440]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ RunOnce]
"Malwarebytes 'Anti-Malware" = C: \ Program Files \ Malwarebytes' Anti-Malware \ mbamgui.exe [2008-10-22 399504]
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Run]
"Ctfmon.exe" = C: \ WINDOWS \ system32 \ Ctfmon.exe [2004-08-04 15360]
"Sony Ericsson PC Suite" = C: \ Program Files \ Sony Ericsson \ Sony Ericsson PC Suite \ SEPCSuite.exe [2007-10-18 356352]
C: \ Documents and Settings \ All Users \ Start-meny \ Programmer \ Oppstart
Adobe Reader Speed Launch.lnk - C: \ Program Files \ Adobe \ 8.0 \ Reader Reader \ reader_sl.exe
Adobe Reader Synchronizer.lnk - C: \ Program Files \ Adobe \ 8.0 \ Reader Reader \ AdobeCollabSync.exe
WinZip Quick Pick.lnk - C: \ Programfiler \ WinZip \ WZQKPICK.EXE
[HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ Notify \ igfxcui]
C: \ WINDOWS \ system32 \ igfxdev.dll [2005-09-20 135168]
[HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entVersion \ Policies \ System]
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"shutdownwithoutlogon" = 1
"undockwithoutlogon" = 1
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ Curre ntVersion \ Policies \ Explorer]
"NoDriveTypeAutoRun" = 145
[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ tjenester es \ sharedaccess \ Parameters \ firewallpolicy \ standard profil \ authorizedapplications \ listen]
"% windir% \ system32 \ sessmgr.exe" = "% windir% \ system32 \ sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019"
"C: \ Programfiler \ Messenger \ msmsgs.exe" = "C: \ Programfiler \ Messenger \ msmsgs.exe: *: Enabled: Windows Messenger"
"C: \ Programfiler \ iTunes \ iTunes.exe" = "C: \ Programfiler \ iTunes \ iTunes.exe: *: Enabled: iTunes"
"C: \ Programfiler \ MSN Messenger \ msncall.exe" = "C: \ Programfiler \ MSN Messenger \ msncall.exe: *: Enabled: Windows Live Messenger 8.0 (Phone)"
"C: \ Programfiler \ MSN Messenger \ msnmsgr.exe" = "C: \ Programfiler \ MSN Messenger \ msnmsgr.exe: *: Enabled: Windows Live Messenger 8.1"
"C: \ Programfiler \ MSN Messenger \ livecall.exe" = "C: \ Programfiler \ MSN Messenger \ livecall.exe: *: Enabled: Windows Live Messenger 8.1 (Phone)"
"% windir% \ Network Diagnostic \ xpnetdiag.exe" = "% windir% \ Network Diagnostic \ xpnetdiag.exe: *: Enabled: @ xpsp3res.dll, -20000"
"C: \ Programfiler \ uTorrent \ uTorrent.exe" = "C: \ Programfiler \ uTorrent \ uTorrent.exe: *: Enabled: μTorrent"
[HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ tjenester es \ sharedaccess \ Parameters \ firewallpolicy \ domainpr ofile \ authorizedapplications \ listen]
"% windir% \ system32 \ sessmgr.exe" = "% windir% \ system32 \ sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019"
"C: \ Programfiler \ MSN Messenger \ msncall.exe" = "C: \ Programfiler \ MSN Messenger \ msncall.exe: *: Enabled: Windows Live Messenger 8.0 (Phone)"
"C: \ Programfiler \ MSN Messenger \ msnmsgr.exe" = "C: \ Programfiler \ MSN Messenger \ msnmsgr.exe: *: Enabled: Windows Live Messenger 8.1"
"C: \ Programfiler \ MSN Messenger \ livecall.exe" = "C: \ Programfiler \ MSN Messenger \ livecall.exe: *: Enabled: Windows Live Messenger 8.1 (Phone)"
"% windir% \ Network Diagnostic \ xpnetdiag.exe" = "% windir% \ Network Diagnostic \ xpnetdiag.exe: *: Enabled: @ xpsp3res.dll, -20000"
[HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ explorer \ mountpoints2 \ (069b2f09-8c7d-11dc-871c-0013205c16a9)]
shell \ Auto \ command - Start.exe
shell \ AutoRun \ command - C: \ WINDOWS \ system32 \ rundll32.exe shell32.dll, ShellExec_RunDLL Start.exe

====== Filtilknytninger ======
. js - rediger - "C: \ Program Files \ Macromedia \ Dreamweaver 8 \ dreamweaver.exe" "% 1"
====== Liste over filer / mapper opprettet i de siste 1 mnd ======
2008-11-06 22:43:21 ---- D ---- C: \ rsit
2008-11-06 22:42:18 ---- D ---- C: \ Documents and Settings \ Adam \ Application Data \ Malwarebytes
2008-11-06 22:42:13 ---- D ---- C: \ Program Files \ Malwarebytes 'Anti-Malware
2008-11-06 22:42:13 ---- D ---- C: \ Documents and Settings \ All Users \ Application Data \ Malwarebytes
2008-11-06 22:36:21 ---- D ---- C: \ Documents and Settings \ All Users \ Application Data \ Avg8
2008-11-06 22:17:46 ---- D ---- C: \ Program Files \ Trend Micro
2008-11-06 21:25:12 ---- D ---- C: \ WINDOWS \ system32 \ AppMgmt
2008-11-06 21:22:34 ---- D ---- C: \ Documents and Settings \ Adam \ Application Data \ Versiontracker Pro
2008-11-06 21:22:08 ---- D ---- C: \ Program Files \ TechTracker
2008-11-06 19:31:45 ---- D ---- C: \ Program Files \ uTorrent
2008-11-06 19:31:45 ---- D ---- C: \ Documents and Settings \ Adam \ Application Data \ uTorrent
2008-11-06 19:31:43 ---- D ---- C: \ Program Files \ Avanquest oppdatering
2008-11-06 19:31:43 ---- D ---- C: \ Documents and Settings \ All Users \ Application Data \ BVRP Software
2008-11-06 19:31:40 ---- D ---- C: \ Program Files \ Free Audio Pack
2008-11-06 19:30:51 ---- D ---- C: \ Program Files \ \ SureThing Delt
2008-11-06 19:30:44 ---- D ---- C: \ Programfiler \ Fellesfiler \ Sonic
2008-11-05 13:26:28 ---- D ---- C: \ Documents and Settings \ All Users \ Application Data \ BVRP Software (2)
2008-10-26 11:13:15 ---- B ---- C: \ WINDOWS \ system32 \ javaws.exe
2008-10-26 11:13:15 ---- B ---- C: \ WINDOWS \ system32 \ javaw.exe
2008-10-26 11:13:15 ---- B ---- C: \ WINDOWS \ system32 \ java.exe
2008-10-26 11:00:26 ---- B ---- C: \ WINDOWS \ system32 \ PerfStringBackup.TMP
2008-10-25 22:30:23 ---- D ---- C: \ Program Files \ DSA Theory Test
2008-10-25 22:29:24 ---- D ---- C: \ Config.Msi
2008-10-25 22:29:23 ---- D ---- C: \ WINDOWS \ VirtualEar
2008-10-25 19:02:44 ---- D ---- C: \ WINDOWS \ assembly
2008-10-25 19:01:55 ---- D ---- C: \ WINDOWS \ Microsoft.NET
2008-10-25 19:01:06 ---- D ---- C: \ Program Files \ Navman
2008-10-25 01:28:29 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB958644 $
2008-10-15 22:04:03 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB956803 $
2008-10-15 22:03:57 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB956391 $
2008-10-15 22:03:49 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB957095 $
2008-10-15 22:03:06 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB954211 $
2008-10-15 22:02:48 ---- HDC ---- C: \ WINDOWS \ $ NtUninstallKB956841 $
====== Liste over filer / mapper endret de siste 1 mnd ======
2008-11-06 22:51:35 ---- RD ---- C: \ Program Files
2008-11-06 22:51:35 ---- D ---- C: \ WINDOWS
2008-11-06 22:42:16 ---- D ---- C: \ WINDOWS \ system32 \ drivers
2008-11-06 22:37:58 ---- D ---- C: \ WINDOWS \ Temp
2008-11-06 22:37:33 ---- D ---- C: \ WINDOWS \ system32
2008-11-06 22:36:49 ---- B ---- C: \ WINDOWS \ SchedLgU.Txt
2008-11-06 22:30:43 ---- RSHDC ---- C: \ WINDOWS \ system32 \ dllcache
2008-11-06 21:46:09 ---- D ---- C: \ WINDOWS \ Forhåndshent
2008-11-06 21:45:09 ---- SHD ---- C: \ WINDOWS \ Installer
2008-11-06 21:45:08 ---- D ---- C: \ WINDOWS \ WinSxS
2008-11-06 21:45:08 ---- D ---- C: \ Programfiler \ Fellesfiler \ Microsoft Shared
2008-11-06 21:24:57 ---- D ---- C: \ WINDOWS \ system32 \ CatRoot
2008-11-06 21:24:56 ---- D ---- C: \ WINDOWS \ system32 \ Catroot2
2008-11-06 19:32:25 ---- D ---- C: \ WINDOWS \ system32 \ config
2008-11-06 19:32:11 ---- D ---- C: \ WINDOWS \ system32 \ wbem
2008-11-06 19:32:10 ---- D ---- C: \ WINDOWS \ Registration
2008-11-06 19:30:53 ---- D ---- C: \ Programfiler \ Fellesfiler \ Macromedia
2008-11-06 19:30:52 ---- HD ---- C: \ WINDOWS \ inf
2008-11-04 23:57:39 ---- D ---- C: \ Program Files \
2008-11-04 23:57:26 ---- D ---- C: \ Programfiler \ Sonic
2008-11-04 23:56:20 ---- D ---- C: \ WINDOWS \ Downloaded Installations
2008-11-04 23:56:20 ---- D ---- C: \ Program Files \ Macromedia
2008-11-04 23:54:45 ---- HD ---- C: \ Program Files \ InstallShield Installation Information
2008-10-26 11:13:15 ---- D ---- C: \ Program Files \ Java
2008-10-25 22:29:27 ---- D ---- C: \ WINDOWS \ system32 \ dla
2008-10-25 22:29:26 ---- D ---- C: \ WINDOWS \ security
2008-10-25 22:28:47 ---- D ---- C: \ WINDOWS \ system32 \ Restore
2008-10-25 19:25:27 ---- D ---- C: \ Program Files \ Common Files \ InstallShield
2008-10-25 19:25:13 ---- D ---- C: \ WINDOWS \ system
2008-10-25 19:23:42 ---- D ---- C: \ Program Files \ MSN
2008-10-25 19:16:19 ---- SD ---- C: \ Documents and Settings \ Adam \ Application Data \ Microsoft
2008-10-25 19:01:59 ---- D ---- C: \ Programfiler \ Internet Explorer
2008-10-25 01:28:39 ---- B ---- C: \ WINDOWS \ imsins.BAK
2008-10-25 01:27:53 ---- HD ---- C: \ WINDOWS \ $ hf_mig $
2008-10-25 00:58:29 ---- B ---- C: \ WINDOWS \ win.ini
2008-10-16 15:35:17 ---- B ---- C: \ WINDOWS \ system32 \ PerfStringBackup.INI
2008-10-15 16:57:55 ---- B ---- C: \ WINDOWS \ system32 \ Netapi32.dll
2008-10-15 16:57:55 ---- B ---- C: \ WINDOWS \ system32 \ netapi32 (2). DLL
====== Liste over drivere (R = Running, S = stoppet, 0 = Boot, 1 = System, 2 = Auto, 3 = Demand, 4 = funksjonshemmede )======
R1 intelppm; Intel Processor Driver; C: \ WINDOWS \ system32 \ DRIVERS \ intelppm.sys [2004-08-04 36096]
R1 kbdhid; Keyboard HID Driver; C: \ WINDOWS \ system32 \ drivers \ kbdhid.sys [2004-08-04 14848]
R1 sscdbhk5; sscdbhk5 C: \ WINDOWS \ system32 \ drivers \ sscdbhk5.sys [2004-07-14 5627]
R1 ssrtln; ssrtln C: \ WINDOWS \ system32 \ drivers \ ssrtln.sys [2004-07-14 23545]
R2 drvnddm; drvnddm C: \ WINDOWS \ system32 \ drivers \ drvnddm.sys [2004-08-13 40544]
R2 INO_FLTR; INO_FLTR; \? \ C: \ WINDOWS \ system32 \ drivers \ ino_fltr.sys []
R2 tfsnboio; tfsnboio C: \ WINDOWS \ system32 \ dla \ tfsnboio.sys [2004-08-13 25723]
R2 tfsncofs; tfsncofs C: \ WINDOWS \ system32 \ dla \ tfsncofs.sys [2004-08-13 34843]
R2 tfsndrct; tfsndrct C: \ WINDOWS \ system32 \ dla \ tfsndrct.sys [2004-08-13 4123]
R2 tfsndres; tfsndres C: \ WINDOWS \ system32 \ dla \ tfsndres.sys [2004-08-13 2239]
R2 tfsnifs; tfsnifs C: \ WINDOWS \ system32 \ dla \ tfsnifs.sys [2004-08-13 86202]
R2 tfsnopio; tfsnopio C: \ WINDOWS \ system32 \ dla \ tfsnopio.sys [2004-08-13 14715]
R2 tfsnpool; tfsnpool C: \ WINDOWS \ system32 \ dla \ tfsnpool.sys [2004-08-13 6363]
R2 tfsnudf; tfsnudf C: \ WINDOWS \ system32 \ dla \ tfsnudf.sys [2004-08-13 98714]
R2 tfsnudfa; tfsnudfa C: \ WINDOWS \ system32 \ dla \ tfsnudfa.sys [2004-08-13 100603]
R3 E100B; Intel (R) PRO Adapter Driver; C: \ WINDOWS \ system32 \ DRIVERS \ e100b325.sys [2004-02-10 154112]
R3 GEARAspiWDM; GEARAspiWDM; C: \ WINDOWS \ system32 \ Drivers \ GEARAspiWDM.sys [2006-09-19 15664]
R3 hidusb; Microsoft HID Klassifikasjon Driver; C: \ WINDOWS \ system32 \ drivers \ hidusb.sys [2004-08-04 9600]
R3 ialm; ialm C: \ WINDOWS \ system32 \ DRIVERS \ ialmnt5.sys [2005-09-20 1302332]
R3 mouhid; Mouse HID Driver; C: \ WINDOWS \ system32 \ drivers \ mouhid.sys [2001-08-17 12160]
R3 senfilt; senfilt C: \ WINDOWS \ system32 \ drivers \ senfilt.sys [2004-09-17 732928]
R3 smwdm; smwdm C: \ WINDOWS \ system32 \ drivers \ smwdm.sys [2005-01-27 260352]
R3 usbehci; Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C: \ WINDOWS \ system32 \ drivers \ usbehci.sys [2004-08-04 26624]
R3 usbhub; USB2 Enabled Hub; C: \ WINDOWS \ system32 \ drivers \ Usbhub.sys [2004-08-04 57600]
R3 usbuhci; Microsoft USB Universal Host Controller Miniport Driver; C: \ WINDOWS \ system32 \ drivers \ usbuhci.sys [2004-08-04 20480]
S3 usbccgp; Microsoft USB Generic Parent Driver C: \ WINDOWS \ system32 \ DRIVERS \ Usbccgp.sys [2004-08-03 31616]
S3 usbprint; Microsoft USB PRINTER Klassifikasjon; C: \ WINDOWS \ system32 \ drivers \ usbprint.sys [2004-08-03 25856]
S3 USBSTOR; USB Mass Storage Driver; C: \ WINDOWS \ system32 \ drivers \ USBSTOR.SYS [2004-08-03 26496]
====== Liste over tjenester (R = Running, S = stoppet, 0 = Boot, 1 = System, 2 = Auto, 3 = Demand, 4 = funksjonshemmede )======
R2 AdobeActiveFileMonitor5.0; Adobe Active File Monitor V5 C: \ Program Files \ 5.0 \ Adobe \ Photoshop Elements PhotoshopElementsFileAgent.exe [2006-09-14 102400]
R2 InoRPC; eTrust Antivirus RPC Server; C: \ Program Files \ CA \ eTrust Antivirus \ InoRpc.exe [2004-04-06 139536]
R2 InoRT; eTrust Antivirus Realtime Server; C: \ Program Files \ CA \ eTrust Antivirus \ InoRT.exe [2004-04-06 241936]
R2 InoTask; eTrust Antivirus Job Server; C: \ Program Files \ CA \ eTrust Antivirus \ InoTask.exe [2004-04-06 254224]
R2 UMWdf; Windows User Mode Driver Framework, C: \ WINDOWS \ system32 \ wdfmgr.exe [2005-01-28 38912]
R3 iPod Service; iPod Service; C: \ Programfiler \ iPod \ bin \ iPodService.exe [2006-10-30 492608]
S3 ose; Office Source Engine; C: \ Programfiler \ Fellesfiler \ Microsoft Shared \ Source Engine \ Ose.exe [2003-07-28 89136]
S3 usnjsvc; Messenger Sharing Folders USN Journal Reader service; C: \ Programfiler \ MSN Messenger \ usnsvc.exe [2007-01-19 97136]
----------------- EOF -----------------
Reply
Side 1 av 2 1 2

Register

Hugseliste

Lignende Tråder
Tråd Tråd startet Forum Svar Siste innlegg
Virus Spørsmål - Kan noen fortelle meg om jeg har et virus billozz Virus, spionprogrammer og sikkerhet 1 2 april 2009 13:58
Mine venner MAC har et virus ... Umm ... yeah ... et virus ... cheesepuff Virus, spionprogrammer og sikkerhet 3 29 oktober 2008 12:58
Virus hjelp jam90 Virus, spionprogrammer og sikkerhet 1 28 juli 2008 07:26
Virus lolli_pop Virus, spionprogrammer og sikkerhet 13 17 nov 2007 09:42
Virus? carpious Virus, spionprogrammer og sikkerhet 12 6 mai 2007 09:49
Thread Tools



Arabic Bulgarian Chinese (Simplified) Chinese (Traditional) Croatian Czech Danish Dutch English Finnish French German Greek Hebrew Hungarian Italian Japanese Korean Latvian Lithuanian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Spanish Swedish Thai Turkish Ukrainian

Copyright © 2006 - 2009 Computer Juice.
Kontakt -- Personvern -- Sitemap -- Topp

Powered by vBulletin ® Copyright © 2000 - 2009 Jelsoft Enterprises Ltd SEO by vBSEO © 2009, gjennomgå webområdet, Inc.