CIO Tech Eksperten IT-JOB IT-Kurser Events Podcast Søg
Cookie ikon
Avatar billede costanza1974 Novice
14. januar 2007 - 11:18 Der er 20 kommentarer

Ved nogle hvad denne besked betyder

Detected SPYware! System error #384
__________________________________________________________________________

Your IP address is 83.89.101.144. Using this address a remote computer has gained anaccess to your computer and probably is collecting the information about the sites you've visited and the files contained in the folder Temporary Internet Files. Attention! Ask for help or install the software for deleting secret information about the sites you visited.
__________________________________________________________________________
Your computer is full of evidences!

ISP of transmission:    WEBSPEED
Your IP address:    83.89.101.144
They know you're using:    Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)ver1
Your computer is:    Windows XP
Risk status for further investigation:    VERY HIGH RISK




To protect from the Spyware - click here

To prevent information transmission  - click here

To delete the history of your activity, click here
Avatar billede erikjacobsen Ekspert
14. januar 2007 - 11:28 #1
Venligst ignorer den.

Det er ikke et tegn på du har spyware, men et lamt forsøg på at få dig til at downloade deres spyware.
(Du kan selvfølgelig have snask på maskinen alligevel)
Avatar billede costanza1974 Novice
14. januar 2007 - 11:37 #2
netop hvad jeg selv tænkte....
tak for responsen Erikjacobsen
Avatar billede ejvindh Ekspert
14. januar 2007 - 11:49 #3
Men det kan muligvis betyde, at du du allerede ER inficeret. Du bør derfor få undersøgt computeren med nogle troværdige scanningsprogrammer. Jeg vil derfor foreslå, at du gør følgende:

Hent Oldtimer's WinPFind3 herfra:
http://download.bleepingcomputer.com/oldtimer/winpfind3u.exe

Dobbeltklik på WinPFind3u, som du hentede, og klik på Extract. Så udpakkes programmet i en særskilt mappe. Gå ind i denne mappe, og dobbeltklik på WinPFind3U.exe. Sæt så flueben og prikker på følgende måde:

Processes: Non-Microsoft
Win32 Services: Non-Microsoft
Driver Services: Non-Microsoft
Registry:  Non-Microsoft
Files Created Within: 30 Days, Non-Microsoft Only
Files Modified Within: 30 Days, Non-Microsoft Only
File String Search: Non-Microsoft

Klik herefter på "Run Scan". Efter noget tid vil der dukke en logfil op, som du gerne må paste herind. Muligvis vil loggen være så lang, at den ikke kan være i en enkelt post. Så må du lægge den ind i flere bider.
Avatar billede erikjacobsen Ekspert
14. januar 2007 - 11:56 #4
"det kan muligvis betyde, at du du allerede ER inficeret." - nej, det kan det ikke. Det er en helt almindelig reklame. Den har ikke undersøgt maskinen. Den vises til alle.

Det man kan sige til spørgeren, og til alle andre, er selvfølgelig at deres maskine måske er inficeret.

Men ikke på grund af den der reklame.
Avatar billede johnstigers Seniormester
14. januar 2007 - 12:50 #5
Et eller andet ER der i hvert fald på maskinen, ellers ville den reklame ikke vises. Så jo, han er inficeret med et eller andet.
Avatar billede ejvindh Ekspert
14. januar 2007 - 13:21 #6
ErikJacobsen: Det er fx. meget almindeligt at smitfraud- og Vundo-infektionen virker på den måde.

Noget andet kan også være tilfældet, at beskeden er kommet med servicen messenger. Men det kan man altså først se, når man har nogle logs fra maskinen. :-)
Avatar billede costanza1974 Novice
14. januar 2007 - 14:25 #7
WinPFind3 logfile created on: 14-01-2007 14:17:08
WinPFind3U by OldTimer - Version 1.0.10    Folder = C:\Documents and Settings\Ejer\Skrivebord\WinPFind3u\
Microsoft Windows XP Service Pack 2 (Version = 5.1.2600)
Internet Explorer (Version = 6.0.2900.2180)

523760 Kb Total Physical Memory | 109648 Kb Available Physical Memory | 20,93% Memory free
1280024 Kb Paging File | 926664 Kb Available in Paging File | 72,39% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmer
Drive C: | 160071628 Kb Total Space | 136779960 Kb Free Space | 85,45% Space Free
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Avatar billede costanza1974 Novice
14. januar 2007 - 14:25 #8
[Processes - Non-Microsoft Only]
ashdisp.exe -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe ->  [Ver = 5, 0, 0, 0 | Size = 108160 bytes | Modified Date = 25-09-2006 17:42:08 | Attr =    ]
ashmaisv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 889, 0 | Size = 251520 bytes | Modified Date = 25-09-2006 17:41:44 | Attr =    ]
ashserv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe ->  [Ver = 4, 7, 889, 0 | Size = 108160 bytes | Modified Date = 25-09-2006 17:42:02 | Attr =    ]
ashwebsv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 889, 0 | Size = 370304 bytes | Modified Date = 25-09-2006 17:41:34 | Attr =    ]
aswupdsv.exe -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe ->  [Ver =  | Size = 59008 bytes | Modified Date = 25-09-2006 17:32:08 | Attr =    ]
ati2evxx.exe -> %System32%\ati2evxx.exe ->  [Ver =  | Size = 397312 bytes | Modified Date = 03-03-2004 05:29:54 | Attr =    ]
ati2evxx.exe -> %System32%\ati2evxx.exe ->  [Ver =  | Size = 397312 bytes | Modified Date = 03-03-2004 05:29:54 | Attr =    ]
atiptaxx.exe -> %ProgramFiles%\ATI Technologies\ATI Control Panel\atiptaxx.exe -> ATI Technologies, Inc. [Ver = 6.14.10.5090 | Size = 335872 bytes | Modified Date = 03-03-2004 12:00:00 | Attr =    ]
everest poker.exe -> %ProgramFiles%\Everest Poker\Everest Poker.exe ->  [Ver =  | Size = 131584 bytes | Modified Date = 05-01-2007 19:44:02 | Attr =    ]
firefox.exe -> %ProgramFiles%\Mozilla Firefox\firefox.exe -> Mozilla [Ver = 1.0.2 | Size = 6627434 bytes | Modified Date = 21-03-2005 11:43:00 | Attr =    ]
googletoolbarnotifier.exe -> %ProgramFiles%\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 1, 2, 908, 5008 | Size = 163576 bytes | Modified Date = 09-01-2007 18:02:30 | Attr =    ]
hpqimzone.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqimzone.exe -> Hewlett-Packard Development Company, L.P. [Ver = 065.000.117.000 | Size = 479232 bytes | Modified Date = 10-02-2006 07:56:12 | Attr =    ]
hpqste08.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqste08.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 239320 bytes | Modified Date = 19-02-2006 05:24:52 | Attr =    ]
hpqtra08.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqtra08.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 288472 bytes | Modified Date = 19-02-2006 04:21:22 | Attr =    ]
hpwuschd2.exe -> %ProgramFiles%\HP\HP Software Update\HPWuSchd2.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 49152 bytes | Modified Date = 19-02-2006 02:41:10 | Attr =    ]
hpzipm12.exe -> %System32%\HPZipm12.exe -> HP [Ver = 10, 1, 1, 5 | Size = 69632 bytes | Modified Date = 03-03-2006 21:03:10 | Attr =    ]
ipodservice.exe -> %ProgramFiles%\iPod\bin\iPodService.exe -> Apple Computer, Inc. [Ver = 7.0.2.16 | Size = 492608 bytes | Modified Date = 30-10-2006 09:36:32 | Attr =    ]
ituneshelper.exe -> %ProgramFiles%\iTunes\iTunesHelper.exe -> Apple Computer, Inc. [Ver = 7.0.2.16 | Size = 256576 bytes | Modified Date = 30-10-2006 09:36:36 | Attr =    ]
logitechdesktopmessenger.exe -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe -> Logitech [Ver = 2.30.04 | Size = 36864 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
lxbkbmgr.exe -> %ProgramFiles%\Lexmark X1100 Series\lxbkbmgr.exe -> Lexmark International, Inc. [Ver = 0.1.1.1 | Size = 57344 bytes | Modified Date = 19-08-2003 10:43:48 | Attr =    ]
lxbkbmon.exe -> %ProgramFiles%\Lexmark X1100 Series\lxbkbmon.exe -> Lexmark International, Inc. [Ver = 0.1.1.1 | Size = 53248 bytes | Modified Date = 19-08-2003 11:00:40 | Attr =    ]
qttask.exe -> %ProgramFiles%\QuickTime\qttask.exe -> Apple Computer, Inc. [Ver = 7.1.3 | Size = 282624 bytes | Modified Date = 25-10-2006 18:58:18 | Attr =    ]
slserv.exe -> %System32%\slserv.exe -> Smart Link [Ver = 3.80.01MC15 | Size = 73796 bytes | Modified Date = 26-08-2004 16:53:54 | Attr =    ]
wincinemamgr.exe -> %ProgramFiles%\InterVideo\Common\Bin\WinCinemaMgr.exe -> InterVideo Inc. [Ver = 1.7.1 | Size = 114688 bytes | Modified Date = 12-12-2003 20:02:12 | Attr =    ]
winpfind3u.exe -> %UserDesktop%\WinPFind3u\WinPFind3U.exe -> Oldtimer Tools [Ver = 1.0.10.0 | Size = 306176 bytes | Modified Date = 12-01-2007 16:20:26 | Attr =    ]
wlancfgg.exe -> %ProgramFiles%\Belkin\Belkin Wireless Network Utility\WLanCfgG.exe ->  [Ver = 1, 0, 7, 4 | Size = 827392 bytes | Modified Date = 13-06-2005 15:45:54 | Attr =    ]
wlservice.exe -> %ProgramFiles%\Belkin\Belkin Wireless Network Utility\WLService.exe ->  [Ver =  | Size = 49152 bytes | Modified Date = 29-03-2004 16:08:16 | Attr =    ]
Avatar billede costanza1974 Novice
14. januar 2007 - 14:25 #9
[Win32 Services - Non-Microsoft Only]
(aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe ->  [Ver =  | Size = 59008 bytes | Modified Date = 25-09-2006 17:32:08 | Attr =    ]
(Ati HotKey Poller) Ati HotKey Poller [Win32_Own | Auto | Running] -> %System32%\ati2evxx.exe ->  [Ver =  | Size = 397312 bytes | Modified Date = 03-03-2004 05:29:54 | Attr =    ]
(ATI Smart) ATI Smart [Win32_Own | Auto | Stopped] -> %System32%\ati2sgag.exe ->  [Ver = 5.13.0017 | Size = 516096 bytes | Modified Date = 03-03-2004 12:00:00 | Attr =    ]
(avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe ->  [Ver = 4, 7, 889, 0 | Size = 108160 bytes | Modified Date = 25-09-2006 17:42:02 | Attr =    ]
(avast! Mail Scanner) avast! Mail Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 889, 0 | Size = 251520 bytes | Modified Date = 25-09-2006 17:41:44 | Attr =    ]
(avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 889, 0 | Size = 370304 bytes | Modified Date = 25-09-2006 17:41:34 | Attr =    ]
(Belkin Wireless USB Network Adapter Service) Belkin Wireless USB Network Adapter [Win32_Own | Auto | Running] -> %ProgramFiles%\Belkin\Belkin Wireless Network Utility\WLService.exe ->  [Ver =  | Size = 49152 bytes | Modified Date = 29-03-2004 16:08:16 | Attr =    ]
(dmadmin) Logical Disk Manager Administrative Service [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 225280 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
(iPod Service) iPod Service [Win32_Own | On_Demand | Running] -> %ProgramFiles%\iPod\bin\iPodService.exe -> Apple Computer, Inc. [Ver = 7.0.2.16 | Size = 492608 bytes | Modified Date = 30-10-2006 09:36:32 | Attr =    ]
(Pml Driver HPZ12) Pml Driver HPZ12 [Win32_Own | Unknown | Running] ->  -> File not found
(SLService) SmartLinkService [Win32_Own | Auto | Running] -> %System32%\slserv.exe -> Smart Link [Ver = 3.80.01MC15 | Size = 73796 bytes | Modified Date = 26-08-2004 16:53:54 | Attr =    ]
Avatar billede costanza1974 Novice
14. januar 2007 - 14:26 #10
[Driver Services - Non-Microsoft Only]
(Aavmker4) avast! Asynchronous Virus Monitor [Kernel | System | Running] -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.892.0 | Size = 24560 bytes | Modified Date = 25-09-2006 17:37:50 | Attr =    ]
(Abiosdsk) Abiosdsk [Kernel | Disabled | Stopped] ->  -> File not found
(abp480n5) abp480n5 [Kernel | Disabled | Stopped] ->  -> File not found
(adpu160m) adpu160m [Kernel | Disabled | Stopped] ->  -> File not found
(AegisP) AEGIS Protocol (IEEE 802.1x) v3.4.3.0 [Kernel | Auto | Running] -> %System32%\drivers\AegisP.sys -> Meetinghouse Data Communications [Ver = 3.4.3.0 | Size = 20747 bytes | Modified Date = 04-01-2007 11:00:54 | Attr =    ]
(Aha154x) Aha154x [Kernel | Disabled | Stopped] ->  -> File not found
(aic78u2) aic78u2 [Kernel | Disabled | Stopped] ->  -> File not found
(aic78xx) aic78xx [Kernel | Disabled | Stopped] ->  -> File not found
(AliIde) AliIde [Kernel | Disabled | Stopped] ->  -> File not found
(amsint) amsint [Kernel | Disabled | Stopped] ->  -> File not found
(asc) asc [Kernel | Disabled | Stopped] ->  -> File not found
(asc3350p) asc3350p [Kernel | Disabled | Stopped] ->  -> File not found
(asc3550) asc3550 [Kernel | Disabled | Stopped] ->  -> File not found
(ASPI32) ASPI32 [Kernel | System | Running] -> %System32%\drivers\ASPI32.SYS -> Adaptec [Ver = 4.60 (1021) | Size = 25244 bytes | Modified Date = 13-06-2003 04:04:10 | Attr =    ]
(aswMon2) avast! Standard Shield Support [File_System | Auto | Running] -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.869.0 | Size = 87424 bytes | Modified Date = 25-09-2006 17:40:42 | Attr =    ]
(aswRdr) aswRdr [Kernel | On_Demand | Running] -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.892.0 | Size = 16352 bytes | Modified Date = 25-09-2006 17:39:26 | Attr =    ]
(aswTdi) avast! Network Shield Support [Kernel | System | Running] -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.892.0 | Size = 36176 bytes | Modified Date = 25-09-2006 17:39:02 | Attr =    ]
(Atdisk) Atdisk [Kernel | Disabled | Stopped] ->  -> File not found
(ati2mtag) ati2mtag [Kernel | On_Demand | Running] -> %System32%\drivers\ati2mtag.sys -> ATI Technologies Inc. [Ver = 6.14.10.6430 | Size = 679936 bytes | Modified Date = 03-03-2004 05:31:22 | Attr =    ]
(cd20xrnt) cd20xrnt [Kernel | Disabled | Stopped] ->  -> File not found
(Changer) Changer [Kernel | System | Stopped] ->  -> File not found
(CmdIde) CmdIde [Kernel | Disabled | Stopped] ->  -> File not found
(cmuda) C-Media WDM Audio Interface [Kernel | On_Demand | Running] -> %System32%\drivers\cmuda.sys -> C-Media Inc [Ver = 5.12.01.0041.3 (39b) | Size = 812416 bytes | Modified Date = 08-01-2004 05:37:02 | Attr =    ]
(Cpqarray) Cpqarray [Kernel | Disabled | Stopped] ->  -> File not found
(dac960nt) dac960nt [Kernel | Disabled | Stopped] ->  -> File not found
(DCamUSBDigitalCamera) Digital Camera [Kernel | On_Demand | Stopped] -> %System32%\drivers\MPIXVID.SYS ->  [Ver =  | Size = 104593 bytes | Modified Date = 26-04-2005 16:42:48 | Attr =    ]
(dmboot) dmboot [Kernel | Disabled | Stopped] -> %System32%\drivers\dmboot.sys -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 800000 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
(dmio) dmio [Kernel | Disabled | Stopped] -> %System32%\drivers\dmio.sys -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 153600 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
(dmload) dmload [Kernel | Disabled | Stopped] -> %System32%\drivers\dmload.sys -> Microsoft Corp., Veritas Software. [Ver = 2600.0.503.0 | Size = 5888 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
(dpti2o) dpti2o [Kernel | Disabled | Stopped] ->  -> File not found
(FETNDIS) NT-driver til VIA PCI 10/100Mb Fast Ethernet-netværkskort [Kernel | On_Demand | Stopped] -> %System32%\drivers\fetnd5.sys -> VIA Technologies, Inc.              [Ver = 2.66 | Size = 27165 bytes | Modified Date = 17-08-2001 21:13:08 | Attr =    ]
(FETNDISB) VIA Rhine Family Fast Ethernet Adapter Driver Service [Kernel | On_Demand | Stopped] -> %System32%\drivers\fetnd5b.sys -> VIA Technologies, Inc.              [Ver = 3.27.00.0412 | Size = 41984 bytes | Modified Date = 11-11-2003 11:41:08 | Attr = R  ]
(GEARAspiWDM) GEARAspiWDM [Kernel | On_Demand | Running] -> %System32%\drivers\GEARAspiWDM.sys -> GEAR Software Inc. [Ver = 2.0.6.1 | Size = 15664 bytes | Modified Date = 19-09-2006 15:44:04 | Attr =    ]
(hpn) hpn [Kernel | Disabled | Stopped] ->  -> File not found
(HPZid412) IEEE-1284.4 Driver HPZid412 [Kernel | On_Demand | Running] -> %System32%\drivers\HPZid412.sys -> HP [Ver = 10, 1, 0, 2 | Size = 49664 bytes | Modified Date = 16-05-2006 07:17:22 | Attr = R  ]
(HPZipr12) Print Class Driver for IEEE-1284.4 HPZipr12 [Kernel | On_Demand | Running] -> %System32%\drivers\HPZipr12.sys -> HP [Ver = 10, 1, 0, 2 | Size = 16496 bytes | Modified Date = 16-05-2006 07:17:22 | Attr = R  ]
(HPZius12) USB to IEEE-1284.4 Translation Driver HPZius12 [Kernel | On_Demand | Running] -> %System32%\drivers\HPZius12.sys -> HP [Ver = 10, 1, 0, 2 | Size = 21568 bytes | Modified Date = 16-05-2006 07:17:24 | Attr = R  ]
(i2omgmt) i2omgmt [Kernel | System | Stopped] ->  -> File not found
(i2omp) i2omp [Kernel | Disabled | Stopped] ->  -> File not found
(ini910u) ini910u [Kernel | Disabled | Stopped] ->  -> File not found
(IntelIde) IntelIde [Kernel | Disabled | Stopped] ->  -> File not found
(lbrtfdc) lbrtfdc [Kernel | System | Stopped] ->  -> File not found
(mraid35x) mraid35x [Kernel | Disabled | Stopped] ->  -> File not found
(Mtlmnt5) Mtlmnt5 [Kernel | On_Demand | Stopped] -> %System32%\drivers\mtlmnt5.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 126686 bytes | Modified Date = 03-08-2004 21:41:40 | Attr =    ]
(Mtlstrm) Mtlstrm [Kernel | On_Demand | Stopped] -> %System32%\drivers\mtlstrm.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 1309184 bytes | Modified Date = 03-08-2004 21:41:38 | Attr =    ]
(NtMtlFax) NtMtlFax [Kernel | On_Demand | Stopped] -> %System32%\drivers\ntmtlfax.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 180360 bytes | Modified Date = 03-08-2004 21:41:40 | Attr =    ]
(NTSIM) NTSIM [Kernel | On_Demand | Stopped] -> %System32%\ntsim.sys -> VIA Networking Technologies, Inc.        [Ver = 1.07.00.0007 | Size = 7040 bytes | Modified Date = 17-07-2003 09:10:06 | Attr = R  ]
(PCIDump) PCIDump [Kernel | System | Stopped] ->  -> File not found
(PCIIde) PCIIde [Kernel | Disabled | Stopped] ->  -> File not found
(PDCOMP) PDCOMP [Kernel | On_Demand | Stopped] ->  -> File not found
(PDFRAME) PDFRAME [Kernel | On_Demand | Stopped] ->  -> File not found
(PDRELI) PDRELI [Kernel | On_Demand | Stopped] ->  -> File not found
(PDRFRAME) PDRFRAME [Kernel | On_Demand | Stopped] ->  -> File not found
(perc2) perc2 [Kernel | Disabled | Stopped] ->  -> File not found
(perc2hib) perc2hib [Kernel | Disabled | Stopped] ->  -> File not found
(PhilCam8116) Logitech QuickCam Pro 3000(PID_08B0) [Kernel | On_Demand | Running] -> %System32%\drivers\CamDrL21.sys -> Logitech Inc. [Ver = 8.1.0.1105 | Size = 333520 bytes | Modified Date = 19-08-2003 10:27:20 | Attr =    ]
(Ptilink) Driver til direkte, parallel forbindelse [Kernel | On_Demand | Running] -> %System32%\drivers\ptilink.sys -> Parallel Technologies, Inc. [Ver = 1.10 (XPClient.010817-1148) | Size = 17792 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
(PxHelp20) PxHelp20 [Kernel | Boot | Running] -> %System32%\drivers\pxhelp20.sys -> Sonic Solutions [Ver = 3.00.09a | Size = 46080 bytes | Modified Date = 19-08-2005 03:00:00 | Attr =    ]
(QCMerced) Logitech QuickCam Messenger [Kernel | On_Demand | Stopped] -> %System32%\drivers\lvcm.sys -> Logitech Inc. [Ver = 8.0.3.1110 | Size = 472332 bytes | Modified Date = 27-06-2003 03:05:38 | Attr =    ]
(ql1080) ql1080 [Kernel | Disabled | Stopped] ->  -> File not found
(Ql10wnt) Ql10wnt [Kernel | Disabled | Stopped] ->  -> File not found
(ql12160) ql12160 [Kernel | Disabled | Stopped] ->  -> File not found
(ql1240) ql1240 [Kernel | Disabled | Stopped] ->  -> File not found
(ql1280) ql1280 [Kernel | Disabled | Stopped] ->  -> File not found
(RecAgent) RecAgent [Kernel | Boot | Running] -> %System32%\drivers\RecAgent.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 13776 bytes | Modified Date = 03-08-2004 21:41:40 | Attr =    ]
(RT73) Belkin USB Network Adapter [Kernel | On_Demand | Running] -> %System32%\drivers\rt73.sys -> Ralink Technology, Corp. [Ver = 1.00.00.0000 | Size = 232192 bytes | Modified Date = 02-08-2005 23:00:36 | Attr =    ]
(Secdrv) Secdrv [Kernel | On_Demand | Stopped] -> %System32%\drivers\secdrv.sys ->  [Ver =  | Size = 27440 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
(Simbad) Simbad [Kernel | Disabled | Stopped] ->  -> File not found
(Slnt7554) USB Soft Modem Driver [Kernel | On_Demand | Stopped] -> %System32%\drivers\slnt7554.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 129535 bytes | Modified Date = 03-08-2004 21:41:42 | Attr =    ]
(SlNtHal) SlNtHal [Kernel | On_Demand | Stopped] -> %System32%\drivers\slnthal.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 95424 bytes | Modified Date = 03-08-2004 21:41:46 | Attr =    ]
(SlWdmSup) SlWdmSup [Kernel | On_Demand | Stopped] -> %System32%\drivers\slwdmsup.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 13240 bytes | Modified Date = 03-08-2004 21:41:46 | Attr =    ]
(Sparrow) Sparrow [Kernel | Disabled | Stopped] ->  -> File not found
(symc810) symc810 [Kernel | Disabled | Stopped] ->  -> File not found
(symc8xx) symc8xx [Kernel | Disabled | Stopped] ->  -> File not found
(sym_hi) sym_hi [Kernel | Disabled | Stopped] ->  -> File not found
(sym_u3) sym_u3 [Kernel | Disabled | Stopped] ->  -> File not found
(TosIde) TosIde [Kernel | Disabled | Stopped] ->  -> File not found
(ultra) ultra [Kernel | Disabled | Stopped] ->  -> File not found
(viaagp1) VIA AGP Filter [Kernel | Boot | Running] -> %System32%\drivers\VIAAGP1.SYS -> VIA Technologies, Inc. [Ver = 5.1.0.3442 built by: VIA | Size = 27904 bytes | Modified Date = 02-07-2003 04:42:00 | Attr =    ]
(viasraid) viasraid [Kernel | Boot | Running] -> %System32%\drivers\viasraid.sys -> VIA Technologies inc,.ltd [Ver = 5.1.2600.220 | Size = 77312 bytes | Modified Date = 31-10-2003 04:22:38 | Attr = R  ]
(WDICA) WDICA [Kernel | On_Demand | Stopped] ->  -> File not found
Avatar billede costanza1974 Novice
14. januar 2007 - 14:26 #11
[Registry - Non-Microsoft Only]
< Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ATIPTA -> %ProgramFiles%\ATI Technologies\ATI Control Panel\atiptaxx.exe -> ATI Technologies, Inc. [Ver = 6.14.10.5090 | Size = 335872 bytes | Modified Date = 03-03-2004 12:00:00 | Attr =    ]
AutoSys -> %System32%\autosys.exe ->  [Ver =  | Size = 2969 bytes | Modified Date = 13-01-2007 19:45:18 | Attr =    ]
avast! -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe ->  [Ver = 5, 0, 0, 0 | Size = 108160 bytes | Modified Date = 25-09-2006 17:42:08 | Attr =    ]
Cmaudio -> cmicnfg.CPL -> File not found
HP Software Update -> %ProgramFiles%\HP\HP Software Update\HPWuSchd2.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 49152 bytes | Modified Date = 19-02-2006 02:41:10 | Attr =    ]
iTunesHelper -> %ProgramFiles%\iTunes\iTunesHelper.exe -> Apple Computer, Inc. [Ver = 7.0.2.16 | Size = 256576 bytes | Modified Date = 30-10-2006 09:36:36 | Attr =    ]
kRfGLDdQ -> %SystemRoot%\lxkqp.exe -> File not found
Lexmark X1100 Series -> %ProgramFiles%\Lexmark X1100 Series\lxbkbmgr.exe -> Lexmark International, Inc. [Ver = 0.1.1.1 | Size = 57344 bytes | Modified Date = 19-08-2003 10:43:48 | Attr =    ]
NeroFilterCheck -> %System32%\NeroCheck.exe -> Ahead Software Gmbh [Ver = 1, 0, 0, 2 | Size = 155648 bytes | Modified Date = 09-07-2001 10:50:42 | Attr =    ]
PinnacleDriverCheck -> %System32%\PSDrvCheck.exe ->  [Ver = 1.0.0.63 | Size = 406016 bytes | Modified Date = 10-11-2003 16:06:08 | Attr =    ]
QuickTime Task -> %ProgramFiles%\QuickTime\qttask.exe -> Apple Computer, Inc. [Ver = 7.1.3 | Size = 282624 bytes | Modified Date = 25-10-2006 18:58:18 | Attr =    ]
< OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\
IMAIL -> Installed = 1 ->
MAPI -> Installed = 1 ->
MSFS -> Installed = 1 ->
< Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
LDM -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe -> Logitech [Ver = 2.30.04 | Size = 36864 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
Skype -> %ProgramFiles%\Skype\Phone\Skype.exe -> Skype Technologies S.A. [Ver = 3.0.0.198 | Size = 25365032 bytes | Modified Date = 18-12-2006 17:32:52 | Attr =    ]
swg -> %ProgramFiles%\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 1, 2, 908, 5008 | Size = 163576 bytes | Modified Date = 09-01-2007 18:02:30 | Attr =    ]
WinInit -> %LocalSettings%\Temp\6086203.exe ->  [Ver =  | Size = 3584 bytes | Modified Date = 13-01-2007 19:45:20 | Attr = RHS]
WinMedia -> %LocalSettings%\Temp\6085984.exe ->  [Ver =  | Size = 3584 bytes | Modified Date = 13-01-2007 22:06:48 | Attr = RHS]
< Common Startup > -> C:\Documents and Settings\All Users\Menuen Start\Programmer\Start
%AllUsersStartup%\Adobe Gamma Loader.lnk -> %CommonProgramFiles%\Adobe\Calibration\Adobe Gamma Loader.exe -> Adobe Systems, Inc. [Ver = 1, 0, 0, 1 | Size = 110592 bytes | Modified Date = 06-01-2002 22:07:32 | Attr =    ]
%AllUsersStartup%\Adobe Reader Speed Launch.lnk -> %ProgramFiles%\Adobe\Acrobat 7.0\Reader\reader_sl.exe -> Adobe Systems Incorporated [Ver = 7.0.0.0 | Size = 29696 bytes | Modified Date = 14-12-2004 04:44:06 | Attr =    ]
%AllUsersStartup%\HP Digital Imaging Monitor.lnk -> %ProgramFiles%\HP\Digital Imaging\bin\hpqtra08.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 288472 bytes | Modified Date = 19-02-2006 04:21:22 | Attr =    ]
%AllUsersStartup%\HP Photosmart Premier Hurtig start.lnk -> %ProgramFiles%\HP\Digital Imaging\bin\hpqthb08.exe -> Hewlett-Packard Development Company, L.P. [Ver = 065.000.117.000 | Size = 73728 bytes | Modified Date = 10-02-2006 07:56:20 | Attr =    ]
%AllUsersStartup%\InterVideo WinCinema Manager.lnk -> %ProgramFiles%\InterVideo\Common\Bin\WinCinemaMgr.exe -> InterVideo Inc. [Ver = 1.7.1 | Size = 114688 bytes | Modified Date = 12-12-2003 20:02:12 | Attr =    ]
%AllUsersStartup%\Logitech Desktop Messenger.lnk -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe -> Logitech [Ver = 2.30.04 | Size = 196608 bytes | Modified Date = 22-08-2006 19:41:08 | Attr =    ]
< SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders
< Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet ->
Control_RunDLL ->  -> File not found
< Winlogon settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
< Winlogon\Notify settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\
< Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext ->  ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 ->
< Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ ->  ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ ->  ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 145 ->
-> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer not found. ->
< Desktop Components > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\
0 -> [Key] ->
0 -> FriendlyName = Min aktuelle startside ->
0 -> Source = About:Home ->
0 -> SubscribedURL = About:Home ->
< HOSTS File > -> C:\WINDOWS\System32\drivers\etc\Hosts
< Internet Explorer Settings > ->
HKLM: Default_Page_URL -> c:\secure32.html ->
HKLM: Main\\Default_Search_URL -> http://www.google.com/ie ->
HKLM: Local Page -> c:\secure32.html ->
HKLM: Search Bar -> http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr7/*http://www.yahoo.com/ext/search/search.html ->
HKLM: Search Page ->  ->
HKLM: Start Page -> c:\secure32.html ->
HKLM: CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm ->
HKLM: Search\\Default_Search_URL -> http://www.google.com/ie ->
HKLM: SearchAssistant -> http://www.google.com/ie ->
HKCU: Default_Page_URL -> c:\secure32.html ->
HKCU: Local Page -> c:\secure32.html ->
HKCU: Search Bar -> http://www.google.com/ie ->
HKCU: Search Page -> http://www.google.com ->
HKCU: Start Page -> c:\secure32.html ->
HKCU: SearchAssistant -> http://www.google.com/ie ->
HKCU: ProxyEnable -> 0 ->
HKCU: ProxyOverride -> localhost ->
< Trusted Sites > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
msn.com [ - ] ->  ->
< BHO's > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [AcroIEHlprObj Class] -> Adobe Systems Incorporated [Ver = 7.0.0.2004121400 | Size = 63136 bytes | Modified Date = 14-12-2004 01:56:50 | Attr =    ]
{53707962-6F74-2D53-2644-206D7942484F} [HKLM] -> %ProgramFiles%\Spybot - Search & Destroy\SDHelper.dll [Reg Data - Value does not exist] -> Safer Networking Limited [Ver = 1, 3, 0, 12 | Size = 744960 bytes | Modified Date = 12-05-2004 01:03:00 | Attr =    ]
{AA58ED58-01DD-4d91-8333-CF10577473F7} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [Google Toolbar Helper] -> Google Inc. [Ver = 4, 0, 1020, 3054 | Size = 2128960 bytes | Modified Date = 09-01-2007 18:02:28 | Attr = R  ]
< Internet Explorer Bars [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\
{4528BBE0-4E08-11D5-AD55-00010333D0AD} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found
< Internet Explorer Bars [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\
{4528BBE0-4E08-11D5-AD55-00010333D0AD} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found
< Internet Explorer ToolBars [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar
{2318C2B1-4965-11d4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc. [Ver = 4, 0, 1020, 3054 | Size = 2128960 bytes | Modified Date = 09-01-2007 18:02:28 | Attr = R  ]
< Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\
WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar1.dll [&Google] -> Google Inc. [Ver = 4, 0, 1020, 3054 | Size = 2128960 bytes | Modified Date = 09-01-2007 18:02:28 | Attr = R  ]
< Internet Explorer CmdMapping [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\CmdMapping
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} -> 8192 - Sun Java Console ->
{3852AC86-965F-4abe-A75F-3DCB7E81A4B2} -> 8196 - Reg Data - Key not found ->
{77E68763-4284-41d6-B7E7-B6E1F053A9E7} -> 8193 - EmpirePoker ->
{B723B1B8-9788-4684-ADA7-D1DB02E1D516} -> 8198 - Reg Data - Key not found ->
{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} -> 8194 - PartyPoker.com ->
{E6073F93-9541-4be4-9800-109D378EB99B} -> 8197 - Reg Data - Key not found ->
{FB5F1910-F110-11d2-BB9E-00C04F795683} -> 8195 - Windows Messenger ->
NextId -> 8199 ->
< Internet Explorer Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %ProgramFiles%\Java\jre1.5.0_04\bin\npjpi150_04.dll [MenuText: Sun Java Console] -> Sun Microsystems, Inc. [Ver = 5.0.40.5 | Size = 69746 bytes | Modified Date = 03-06-2005 03:09:54 | Attr =    ]
{77E68763-4284-41d6-B7E7-B6E1F053A9E7} -> %ProgramFiles%\EmpirePoker\EmpirePoker.exe [ButtonText: EmpirePoker] -> File not found
{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} -> %ProgramFiles%\PartyPoker\PartyPoker.exe [ButtonText: PartyPoker.com] -> File not found
< Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\
&Search -> http:\bar.mywebsearch.com\menusearch.htm -> File not found
E&ksporter til Microsoft Excel ->  -> File not found
< Approved Shell Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
{00E7B358-F65B-4dcf-83DF-CD026B94BFD4} [HKLM] -> Reg Data - Key not found [Autoplay for SlideShow] -> File not found
{0DF44EAA-FF21-4412-828E-260A8728E7F1} [HKLM] -> Reg Data - Key not found [Proceslinje og menuen Start] -> File not found
{400CFEE2-39D0-46DC-96DF-E0BB5A4324B3} [HKLM] -> %ProgramFiles%\Logitech\Video\Namespc2.dll [My Logitech Pictures] -> Logitech Inc. [Ver = 8.1.5.1016 | Size = 65536 bytes | Modified Date = 16-12-2003 22:38:02 | Attr =    ]
{42071714-76d4-11d1-8b24-00a0c9068ff3} [HKLM] -> deskpan.dll [Kontrolpanel-udvidelse til skærmpanorering] -> File not found
{472083B0-C522-11CF-8763-00608CC02F24} [HKLM] -> %ProgramFiles%\Alwil Software\Avast4\ashShell.dll [avast] -> ALWIL Software [Ver = 4, 7, 889, 0 | Size = 13824 bytes | Modified Date = 25-09-2006 17:36:56 | Attr =    ]
{764BF0E1-F219-11ce-972D-00AA00A14F56} [HKLM] -> Reg Data - Key not found [Grænsefladeudvidelser til filkomprimering] -> File not found
{792F0537-F929-4eb7-AC1D-FB6334C71550} [HKLM] -> Reg Data - Key not found [LG Phone] -> File not found
{7A9D77BD-5403-11d2-8785-2E0420524153} [HKLM] -> Reg Data - Key not found [Brugerkonti] -> File not found
{853FE2B1-B769-11d0-9C4E-00C04FB6C6FA} [HKLM] -> Reg Data - Key not found [Kontekstmenu til kryptering] -> File not found
{88895560-9AA2-1069-930E-00AA0030EBC8} [HKLM] -> %System32%\hticons.dll [HyperTerminal-ikon] -> Hilgraeve, Inc. [Ver = 5.1.2600.0 | Size = 44544 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
{B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR shell extension] ->  [Ver =  | Size = 121344 bytes | Modified Date = 26-12-2004 20:34:38 | Attr =    ]
{B5FB6487-7E79-4816-B73B-8A65E41971DA} [HKLM] -> Reg Data - Key not found [BullGuard Antivirus v4] -> File not found
{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} [HKLM] -> %ProgramFiles%\iTunes\iTunesMiniPlayer.dll [iTunes] -> Apple Computer, Inc. [Ver = 7.0.2.16 | Size = 132672 bytes | Modified Date = 30-10-2006 09:36:36 | Attr =    ]
{F5D92341-0A64-11D0-9956-0000E8096023} [HKLM] -> Reg Data - Key not found [CD Copy Shell Extension] -> File not found
{F5D92342-0A64-11D0-9956-0000E8096023} [HKLM] -> Reg Data - Key not found [CD Wizard Shell Extension] -> File not found
{F5D92344-0A64-11D0-9956-0000E8096023} [HKLM] -> Reg Data - Key not found [InstantWrite Shellextension] -> File not found
< ContextMenuHandlers - * [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\*\shellex\ContextMenuHandlers\
{472083B0-C522-11CF-8763-00608CC02F24} [HKLM] -> %ProgramFiles%\Alwil Software\Avast4\ashShell.dll [avast] -> ALWIL Software [Ver = 4, 7, 889, 0 | Size = 13824 bytes | Modified Date = 25-09-2006 17:36:56 | Attr =    ]
{B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] ->  [Ver =  | Size = 121344 bytes | Modified Date = 26-12-2004 20:34:38 | Attr =    ]
< ContextMenuHandlers - Directory [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\Directory\shellex\ContextMenuHandlers\
{B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] ->  [Ver =  | Size = 121344 bytes | Modified Date = 26-12-2004 20:34:38 | Attr =    ]
< ContextMenuHandlers - Directory\Background [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\Directory\Background\shellex\ContextMenuHandlers\
{950FF917-7A57-46BC-8017-59D9BF474000} [HKLM] -> Reg Data - Key not found [InCDMenu] -> File not found
< ContextMenuHandlers - Folder [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\Folder\shellex\ContextMenuHandlers\
{472083B0-C522-11CF-8763-00608CC02F24} [HKLM] -> %ProgramFiles%\Alwil Software\Avast4\ashShell.dll [avast] -> ALWIL Software [Ver = 4, 7, 889, 0 | Size = 13824 bytes | Modified Date = 25-09-2006 17:36:56 | Attr =    ]
{B5FB6487-7E79-4816-B73B-8A65E41971DA} [HKLM] -> Reg Data - Key not found [BullGuard Antivirus v4] -> File not found
{B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] ->  [Ver =  | Size = 121344 bytes | Modified Date = 26-12-2004 20:34:38 | Attr =    ]
< ColumnHandlers - Folder [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\
{F9DB5320-233E-11D1-9F84-707F02C10627} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 7.0\ActiveX\pdfshell.dll [PDF Shell Extension] -> Adobe Systems, Inc. [Ver = 7.0.0.0 | Size = 110592 bytes | Modified Date = 14-12-2004 02:20:02 | Attr =    ]
< User Agent Post Platform [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform
SV1 ->  ->
< DNS Name Servers [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\
{61FCAD6A-DECA-4293-8F89-CBA8EA58CB35} ->    () ->
{93FD6333-FE47-40C9-A4FF-57760BA67588} ->    (VIA Rhine II Fast Ethernet Adapter) ->
{E05B1E17-655F-48F4-9D9D-D0F7953BB81B} ->    (Belkin 54g Wireless USB Network Adapter) ->
{EF16C440-949A-4D6C-B2A0-2F63032B22A4} ->    (1394-netværkskort) ->
< Protocol Handlers [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\
bw+0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw+0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw-0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw00 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw00s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw-0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw10 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw10s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw20 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw20s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw30 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw30s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw40 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw40s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw50 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw50s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw60 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw60s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw70 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw70s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw80 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw80s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw90 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bw90s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwa0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwa0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwb0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwb0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwc0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwc0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwd0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwd0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwe0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwe0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwf0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwf0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwfile-8876480 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwg0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwg0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwh0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwh0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwi0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwi0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwj0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwj0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwk0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwk0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwl0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwl0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwm0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwm0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwn0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwn0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwo0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwo0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwp0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwp0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwq0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwq0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwr0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwr0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bws0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bws0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwt0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwt0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwu0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwu0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwv0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwv0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bww0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bww0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwx0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwx0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwy0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwy0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwz0 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
bwz0s -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
ipp -> Reg Data - Key not found -> File not found
msdaipp -> Reg Data - Key not found -> File not found
offline-8876480 -> %ProgramFiles%\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll -> Logitech [Ver = Version 7.2.0 (Build 157R) | Size = 40999 bytes | Modified Date = 22-08-2006 20:50:24 | Attr =    ]
skype4com -> %CommonProgramFiles%\Skype\Skype4COM.dll -> Skype Technologies [Ver = 1, 0, 26, 0 | Size = 1783384 bytes | Modified Date = 01-11-2006 15:21:20 | Attr = R  ]
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\
{14B87622-7E19-4EA8-93B3-97215F77A6BC} -> MessengerStatsClient Class - CodeBase = http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab ->
{8AD9C840-044E-11D1-B3E9-00805F499D93} -> Java Plug-in 1.5.0_04 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_04-windows-i586.cab ->
{B8BE5E93-A60C-4D26-A2DC-220313175592} -> ZoneIntro Class - CodeBase = http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab ->
{BD393C14-72AD-4790-A095-76522973D6B8} -> CBreakshotControl Class - CodeBase = http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab ->
{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_01 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_01-windows-i586.cab ->
{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_04 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-1_5_0_04-windows-i586.cab ->
{D27CDB6E-AE6D-11CF-96B8-444553540000} -> Shockwave Flash Object - CodeBase = http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab ->
Avatar billede costanza1974 Novice
14. januar 2007 - 14:27 #12
[Files - Created Wihin 30 days]
baiod.exe -> %SystemDrive%\baiod.exe ->  [Ver =  | Size = 74240 bytes | Created Date = 13-01-2007 19:45:21 | Attr =    ]
secure32.html -> %SystemDrive%\secure32.html ->  [Ver =  | Size = 3057 bytes | Created Date = 13-01-2007 19:45:21 | Attr =    ]
sqmdata00.sqm -> %SystemDrive%\sqmdata00.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 04-01-2007 11:46:28 | Attr =  H ]
sqmdata01.sqm -> %SystemDrive%\sqmdata01.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 09-01-2007 14:09:30 | Attr =  H ]
sqmdata02.sqm -> %SystemDrive%\sqmdata02.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 09-01-2007 14:09:36 | Attr =  H ]
sqmdata03.sqm -> %SystemDrive%\sqmdata03.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 09-01-2007 14:09:41 | Attr =  H ]
sqmdata04.sqm -> %SystemDrive%\sqmdata04.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 09-01-2007 14:13:15 | Attr =  H ]
sqmdata05.sqm -> %SystemDrive%\sqmdata05.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 09:59:22 | Attr =  H ]
sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:00:06 | Attr =  H ]
sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:00:31 | Attr =  H ]
sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:00:58 | Attr =  H ]
sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:04:05 | Attr =  H ]
sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:05:34 | Attr =  H ]
sqmdata11.sqm -> %SystemDrive%\sqmdata11.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:07:56 | Attr =  H ]
sqmdata12.sqm -> %SystemDrive%\sqmdata12.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:10:53 | Attr =  H ]
sqmdata13.sqm -> %SystemDrive%\sqmdata13.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:11:36 | Attr =  H ]
sqmdata14.sqm -> %SystemDrive%\sqmdata14.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:11:41 | Attr =  H ]
sqmdata15.sqm -> %SystemDrive%\sqmdata15.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:11:53 | Attr =  H ]
sqmdata16.sqm -> %SystemDrive%\sqmdata16.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:13:02 | Attr =  H ]
sqmdata17.sqm -> %SystemDrive%\sqmdata17.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:14:15 | Attr =  H ]
sqmdata18.sqm -> %SystemDrive%\sqmdata18.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:15:34 | Attr =  H ]
sqmdata19.sqm -> %SystemDrive%\sqmdata19.sqm ->  [Ver =  | Size = 232 bytes | Created Date = 12-01-2007 10:16:28 | Attr =  H ]
sqmnoopt00.sqm -> %SystemDrive%\sqmnoopt00.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 04-01-2007 11:46:28 | Attr =  H ]
sqmnoopt01.sqm -> %SystemDrive%\sqmnoopt01.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 09-01-2007 14:09:30 | Attr =  H ]
sqmnoopt02.sqm -> %SystemDrive%\sqmnoopt02.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 09-01-2007 14:09:36 | Attr =  H ]
sqmnoopt03.sqm -> %SystemDrive%\sqmnoopt03.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 09-01-2007 14:09:41 | Attr =  H ]
sqmnoopt04.sqm -> %SystemDrive%\sqmnoopt04.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 09-01-2007 14:13:15 | Attr =  H ]
sqmnoopt05.sqm -> %SystemDrive%\sqmnoopt05.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 09:59:21 | Attr =  H ]
sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:00:06 | Attr =  H ]
sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:00:31 | Attr =  H ]
sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:00:58 | Attr =  H ]
sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:04:05 | Attr =  H ]
sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:05:34 | Attr =  H ]
sqmnoopt11.sqm -> %SystemDrive%\sqmnoopt11.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:07:56 | Attr =  H ]
sqmnoopt12.sqm -> %SystemDrive%\sqmnoopt12.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:10:53 | Attr =  H ]
sqmnoopt13.sqm -> %SystemDrive%\sqmnoopt13.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:11:36 | Attr =  H ]
sqmnoopt14.sqm -> %SystemDrive%\sqmnoopt14.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:11:41 | Attr =  H ]
sqmnoopt15.sqm -> %SystemDrive%\sqmnoopt15.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:11:53 | Attr =  H ]
sqmnoopt16.sqm -> %SystemDrive%\sqmnoopt16.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:13:02 | Attr =  H ]
sqmnoopt17.sqm -> %SystemDrive%\sqmnoopt17.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:14:15 | Attr =  H ]
sqmnoopt18.sqm -> %SystemDrive%\sqmnoopt18.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:15:34 | Attr =  H ]
sqmnoopt19.sqm -> %SystemDrive%\sqmnoopt19.sqm ->  [Ver =  | Size = 244 bytes | Created Date = 12-01-2007 10:16:28 | Attr =  H ]
iKernel.rgs -> %CommonProgramFiles%\InstallShield\Professional\RunTime\iKernel.rgs ->  [Ver =  | Size = 25830 bytes | Created Date = 07-01-2007 16:12:45 | Attr =    ]
IsProBE.tlb -> %CommonProgramFiles%\InstallShield\Professional\RunTime\IsProBE.tlb ->  [Ver =  | Size = 85240 bytes | Created Date = 07-01-2007 16:12:45 | Attr =    ]
Objectps.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\Objectps.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1261 | Size = 32768 bytes | Created Date = 07-01-2007 16:12:45 | Attr =    ]
ctor.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1235 | Size = 57344 bytes | Created Date = 07-01-2007 16:12:44 | Attr =    ]
DotNetInstaller.exe -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe -> InstallShield Software Corporation [Ver = 7.0.100.1032 | Size = 5632 bytes | Created Date = 07-01-2007 16:12:44 | Attr =    ]
iGdi.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1234 | Size = 163972 bytes | Created Date = 07-01-2007 16:12:44 | Attr =    ]
iKernel.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1237 | Size = 692224 bytes | Created Date = 07-01-2007 16:12:44 | Attr =    ]
iscript.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1235 | Size = 237568 bytes | Created Date = 07-01-2007 16:12:45 | Attr =    ]
iuser.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1236 | Size = 155648 bytes | Created Date = 07-01-2007 16:12:45 | Attr =    ]
setup.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\setup.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1248 | Size = 282756 bytes | Created Date = 07-01-2007 16:12:43 | Attr =    ]
HPHins12.dat -> %SystemRoot%\HPHins12.dat ->  [Ver =  | Size = 135632 bytes | Created Date = 04-01-2007 18:27:19 | Attr =    ]
hphmdl12.dat -> %SystemRoot%\hphmdl12.dat ->  [Ver =  | Size = 14916 bytes | Created Date = 04-01-2007 18:27:19 | Attr =    ]
imaginationx.ini -> %SystemRoot%\imaginationx.ini ->  [Ver =  | Size = 567 bytes | Created Date = 11-01-2007 18:15:23 | Attr =    ]
kodakpcd.Ejer.ini -> %SystemRoot%\kodakpcd.Ejer.ini ->  [Ver =  | Size = 23 bytes | Created Date = 06-01-2007 11:06:57 | Attr =    ]
winreg.ini -> %SystemRoot%\winreg.ini ->  [Ver =  | Size = 34 bytes | Created Date = 11-01-2007 18:14:05 | Attr =    ]
actskin4.ocx -> %System32%\actskin4.ocx ->  [Ver = 4, 2, 7, 3 | Size = 380928 bytes | Created Date = 04-01-2007 11:21:40 | Attr =    ]
aswBoot.exe -> %System32%\aswBoot.exe ->  [Ver = 4, 7, 892, 0 | Size = 666240 bytes | Created Date = 04-01-2007 11:21:40 | Attr =    ]
autosys.exe -> %System32%\autosys.exe ->  [Ver =  | Size = 2969 bytes | Created Date = 13-01-2007 19:45:16 | Attr =    ]
AVASTSS.scr -> %System32%\AVASTSS.scr -> ALWIL Software [Ver = 4, 7, 889, 0 | Size = 90112 bytes | Created Date = 04-01-2007 11:21:40 | Attr =    ]
B11gUSB.dll -> %System32%\B11gUSB.dll ->  [Ver =  | Size = 40960 bytes | Created Date = 04-01-2007 11:00:37 | Attr =    ]
GTNDIS3.VXD -> %System32%\GTNDIS3.VXD ->  [Ver =  | Size = 31930 bytes | Created Date = 04-01-2007 11:00:34 | Attr =    ]
GTNDIS5.sys -> %System32%\GTNDIS5.sys -> Printing Communications Assoc., Inc. (PCAUSA) [Ver = 5.03.16.54 | Size = 15872 bytes | Created Date = 04-01-2007 11:00:34 | Attr =    ]
GTW32N50.dll -> %System32%\GTW32N50.dll ->  [Ver = 1.0.0.1 | Size = 94208 bytes | Created Date = 04-01-2007 11:00:34 | Attr =    ]
hpz3l4pi.dll -> %System32%\hpz3l4pi.dll -> Hewlett-Packard Company [Ver = 60.061.243.00 | Size = 48128 bytes | Created Date = 04-01-2007 18:31:45 | Attr =    ]
HPZc3212.dll -> %System32%\HPZc3212.dll -> Hewlett-Packard Co. [Ver = 10, 1, 0, 2 | Size = 282624 bytes | Created Date = 04-01-2007 18:28:12 | Attr = R  ]
HPZidr12.dll -> %System32%\HPZidr12.dll -> HP [Ver = 10, 1, 1, 5 | Size = 282680 bytes | Created Date = 04-01-2007 18:35:00 | Attr =    ]
hpzids01.dll -> %System32%\hpzids01.dll ->  [Ver =  | Size = 77824 bytes | Created Date = 04-01-2007 18:31:49 | Attr = R  ]
HPZinw12.exe -> %System32%\HPZinw12.exe -> HP [Ver = 10, 1, 1, 5 | Size = 65536 bytes | Created Date = 04-01-2007 18:35:01 | Attr =    ]
HPZipm12.exe -> %System32%\HPZipm12.exe -> HP [Ver = 10, 1, 1, 5 | Size = 69632 bytes | Created Date = 04-01-2007 18:35:01 | Attr =    ]
HPZipr12.dll -> %System32%\HPZipr12.dll -> HP [Ver = 10, 1, 1, 5 | Size = 204800 bytes | Created Date = 04-01-2007 18:35:01 | Attr =    ]
HPZipt12.dll -> %System32%\HPZipt12.dll -> HP [Ver = 10, 1, 1, 5 | Size = 94208 bytes | Created Date = 04-01-2007 18:35:01 | Attr =    ]
HPZisn12.dll -> %System32%\HPZisn12.dll -> HP [Ver = 10, 1, 1, 5 | Size = 57344 bytes | Created Date = 04-01-2007 18:35:01 | Attr =    ]
INSTMON.EXE -> %System32%\INSTMON.EXE ->  [Ver =  | Size = 40960 bytes | Created Date = 04-01-2007 13:42:00 | Attr =    ]
LEX2KUSB.DLL -> %System32%\LEX2KUSB.DLL -> Lexmark International, Inc. [Ver = 8.29 | Size = 196096 bytes | Created Date = 04-01-2007 13:42:00 | Attr =    ]
LEXBCE.DLL -> %System32%\LEXBCE.DLL -> Lexmark International, Inc. [Ver = 8.29 | Size = 147456 bytes | Created Date = 04-01-2007 13:42:00 | Attr =    ]
LEXBCES.EXE -> %System32%\LEXBCES.EXE -> Lexmark International, Inc. [Ver = 8.29 | Size = 303104 bytes | Created Date = 04-01-2007 13:42:00 | Attr =    ]
LEXP2P32.DLL -> %System32%\LEXP2P32.DLL -> Lexmark International, Inc. [Ver = 8.29 | Size = 201216 bytes | Created Date = 04-01-2007 13:42:00 | Attr =    ]
LEXPING.EXE -> %System32%\LEXPING.EXE -> Lexmark International, Inc. [Ver = 8,10,0,0 | Size = 155648 bytes | Created Date = 04-01-2007 13:42:00 | Attr =    ]
LEXPPS.EXE -> %System32%\LEXPPS.EXE -> Lexmark International, Inc. [Ver = 8.29 | Size = 174592 bytes | Created Date = 04-01-2007 13:42:00 | Attr =    ]
LXBK.LOC -> %System32%\LXBK.LOC ->  [Ver =  | Size = 448 bytes | Created Date = 04-01-2007 13:42:00 | Attr =    ]
LXBKCFG.EXE -> %System32%\LXBKCFG.EXE -> Lexmark International, Inc. [Ver = 8,10,0,0 | Size = 126976 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
lxbkcinf.dll -> %System32%\lxbkcinf.dll -> Lexmark International, Inc. [Ver = 2.0.2.0 | Size = 57344 bytes | Created Date = 04-01-2007 13:41:35 | Attr =    ]
lxbkcoin.dll -> %System32%\lxbkcoin.dll -> Lexmark International, Inc. [Ver = 2.0.2.0 | Size = 49152 bytes | Created Date = 04-01-2007 13:41:35 | Attr =    ]
lxbkcoin.ini -> %System32%\lxbkcoin.ini ->  [Ver =  | Size = 266 bytes | Created Date = 04-01-2007 13:41:35 | Attr =    ]
lxbkcomm.dll -> %System32%\lxbkcomm.dll -> Lexmark International, Inc. [Ver = 8,10,0,0 | Size = 286720 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
LXBKCU.DLL -> %System32%\LXBKCU.DLL -> Lexmark International Inc. [Ver = 2.0.2.2 | Size = 69632 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
LXBKIH.EXE -> %System32%\LXBKIH.EXE ->  [Ver =  | Size = 86016 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
LXBKLCNP.DLL -> %System32%\LXBKLCNP.DLL ->  [Ver =  | Size = 77824 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
LXBKLCNT.DLL -> %System32%\LXBKLCNT.DLL -> Lexmark International, Inc. [Ver = 8,10,0,0 | Size = 217088 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
LXBKLSNT.EXE -> %System32%\LXBKLSNT.EXE -> Lexmark International, Inc. [Ver = 8,10,0,0 | Size = 544768 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
LXBKPMNT.DLL -> %System32%\LXBKPMNT.DLL -> Lexmark International, Inc. [Ver = 8,10,0,0 | Size = 286720 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
lxbkpwr.dll -> %System32%\lxbkpwr.dll -> Lexmark International, Inc. [Ver = 0, 1, 61, 1 | Size = 73728 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
lxbkscin.dll -> %System32%\lxbkscin.dll -> Lexmark International, Inc. [Ver = 2.0.2.0 | Size = 69632 bytes | Created Date = 04-01-2007 13:41:35 | Attr =    ]
LXBKUTIL.DLL -> %System32%\LXBKUTIL.DLL -> Lexmark International Inc. [Ver = 2.0.2.2 | Size = 352256 bytes | Created Date = 04-01-2007 13:41:35 | Attr =    ]
lxbkvs.dll -> %System32%\lxbkvs.dll ->  [Ver =  | Size = 40960 bytes | Created Date = 04-01-2007 13:42:01 | Attr =    ]
MA2_6.scr -> %System32%\MA2_6.scr ->  [Ver =  | Size = 2936832 bytes | Created Date = 13-01-2007 19:58:35 | Attr =    ]
RLVirDev.ocx -> %System32%\RLVirDev.ocx -> reallusion [Ver = 1, 0, 0, 1 | Size = 5656576 bytes | Created Date = 07-01-2007 16:12:56 | Attr =    ]
secure32.html -> %System32%\secure32.html ->  [Ver =  | Size = 3057 bytes | Created Date = 13-01-2007 19:45:21 | Attr =    ]
SHARKS2.scr -> %System32%\SHARKS2.scr ->  [Ver =  | Size = 4833280 bytes | Created Date = 11-01-2007 23:54:37 | Attr =    ]
aavmker4.sys -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.892.0 | Size = 24560 bytes | Created Date = 04-01-2007 11:21:46 | Attr =    ]
AegisP.sys -> %System32%\drivers\AegisP.sys -> Meetinghouse Data Communications [Ver = 3.4.3.0 | Size = 20747 bytes | Created Date = 04-01-2007 11:00:52 | Attr =    ]
aswmon.sys -> %System32%\drivers\aswmon.sys -> ALWIL Software [Ver = 4.7.892.0 | Size = 85952 bytes | Created Date = 04-01-2007 11:21:44 | Attr =    ]
aswmon2.sys -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.869.0 | Size = 87424 bytes | Created Date = 04-01-2007 11:21:44 | Attr =    ]
aswRdr.sys -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.892.0 | Size = 16352 bytes | Created Date = 04-01-2007 11:21:47 | Attr =    ]
aswTdi.sys -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.892.0 | Size = 36176 bytes | Created Date = 04-01-2007 11:21:46 | Attr =    ]
HPZid412.sys -> %System32%\drivers\HPZid412.sys -> HP [Ver = 10, 1, 0, 2 | Size = 49664 bytes | Created Date = 04-01-2007 18:32:23 | Attr = R  ]
HPZipr12.sys -> %System32%\drivers\HPZipr12.sys -> HP [Ver = 10, 1, 0, 2 | Size = 16496 bytes | Created Date = 04-01-2007 18:32:29 | Attr = R  ]
HPZius12.sys -> %System32%\drivers\HPZius12.sys -> HP [Ver = 10, 1, 0, 2 | Size = 21568 bytes | Created Date = 04-01-2007 18:28:12 | Attr = R  ]
rt73.sys -> %System32%\drivers\rt73.sys -> Ralink Technology, Corp. [Ver = 1.00.00.0000 | Size = 232192 bytes | Created Date = 04-01-2007 11:00:34 | Attr =    ]
Avatar billede costanza1974 Novice
14. januar 2007 - 14:27 #13
[Files - Modified Wihin 30 days]
baiod.exe -> %SystemDrive%\baiod.exe ->  [Ver =  | Size = 74240 bytes | Modified Date = 13-01-2007 19:45:24 | Attr =    ]
secure32.html -> %SystemDrive%\secure32.html ->  [Ver =  | Size = 3057 bytes | Modified Date = 13-01-2007 19:45:22 | Attr =    ]
sqmdata00.sqm -> %SystemDrive%\sqmdata00.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:23:14 | Attr =  H ]
sqmdata01.sqm -> %SystemDrive%\sqmdata01.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 09-01-2007 14:09:32 | Attr =  H ]
sqmdata02.sqm -> %SystemDrive%\sqmdata02.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 09-01-2007 14:09:38 | Attr =  H ]
sqmdata03.sqm -> %SystemDrive%\sqmdata03.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 09-01-2007 14:09:42 | Attr =  H ]
sqmdata04.sqm -> %SystemDrive%\sqmdata04.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 09-01-2007 14:13:16 | Attr =  H ]
sqmdata05.sqm -> %SystemDrive%\sqmdata05.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 09:59:22 | Attr =  H ]
sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:00:08 | Attr =  H ]
sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:00:32 | Attr =  H ]
sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:01:00 | Attr =  H ]
sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:04:06 | Attr =  H ]
sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:05:36 | Attr =  H ]
sqmdata11.sqm -> %SystemDrive%\sqmdata11.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:07:58 | Attr =  H ]
sqmdata12.sqm -> %SystemDrive%\sqmdata12.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:10:54 | Attr =  H ]
sqmdata13.sqm -> %SystemDrive%\sqmdata13.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:11:38 | Attr =  H ]
sqmdata14.sqm -> %SystemDrive%\sqmdata14.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:11:42 | Attr =  H ]
sqmdata15.sqm -> %SystemDrive%\sqmdata15.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:11:54 | Attr =  H ]
sqmdata16.sqm -> %SystemDrive%\sqmdata16.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:13:04 | Attr =  H ]
sqmdata17.sqm -> %SystemDrive%\sqmdata17.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:14:16 | Attr =  H ]
sqmdata18.sqm -> %SystemDrive%\sqmdata18.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:15:36 | Attr =  H ]
sqmdata19.sqm -> %SystemDrive%\sqmdata19.sqm ->  [Ver =  | Size = 232 bytes | Modified Date = 12-01-2007 10:16:30 | Attr =  H ]
sqmnoopt00.sqm -> %SystemDrive%\sqmnoopt00.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:23:14 | Attr =  H ]
sqmnoopt01.sqm -> %SystemDrive%\sqmnoopt01.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 09-01-2007 14:09:32 | Attr =  H ]
sqmnoopt02.sqm -> %SystemDrive%\sqmnoopt02.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 09-01-2007 14:09:38 | Attr =  H ]
sqmnoopt03.sqm -> %SystemDrive%\sqmnoopt03.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 09-01-2007 14:09:42 | Attr =  H ]
sqmnoopt04.sqm -> %SystemDrive%\sqmnoopt04.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 09-01-2007 14:13:16 | Attr =  H ]
sqmnoopt05.sqm -> %SystemDrive%\sqmnoopt05.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 09:59:22 | Attr =  H ]
sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:00:08 | Attr =  H ]
sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:00:32 | Attr =  H ]
sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:01:00 | Attr =  H ]
sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:04:06 | Attr =  H ]
sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:05:36 | Attr =  H ]
sqmnoopt11.sqm -> %SystemDrive%\sqmnoopt11.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:07:58 | Attr =  H ]
sqmnoopt12.sqm -> %SystemDrive%\sqmnoopt12.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:10:54 | Attr =  H ]
sqmnoopt13.sqm -> %SystemDrive%\sqmnoopt13.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:11:38 | Attr =  H ]
sqmnoopt14.sqm -> %SystemDrive%\sqmnoopt14.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:11:42 | Attr =  H ]
sqmnoopt15.sqm -> %SystemDrive%\sqmnoopt15.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:11:54 | Attr =  H ]
sqmnoopt16.sqm -> %SystemDrive%\sqmnoopt16.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:13:04 | Attr =  H ]
sqmnoopt17.sqm -> %SystemDrive%\sqmnoopt17.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:14:16 | Attr =  H ]
sqmnoopt18.sqm -> %SystemDrive%\sqmnoopt18.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:15:36 | Attr =  H ]
sqmnoopt19.sqm -> %SystemDrive%\sqmnoopt19.sqm ->  [Ver =  | Size = 244 bytes | Modified Date = 12-01-2007 10:16:30 | Attr =  H ]
ACE1Cache.lst -> %CommonProgramFiles%\Adobe\Color\ACE1Cache.lst ->  [Ver =  | Size = 25627 bytes | Modified Date = 09-01-2007 15:52:08 | Attr =    ]
AdobeFnt05.lst -> %CommonProgramFiles%\Adobe\TypeSpt\AdobeFnt05.lst ->  [Ver =  | Size = 23177 bytes | Modified Date = 09-01-2007 15:41:06 | Attr =    ]
AdobeFnt06.lst -> %CommonProgramFiles%\Adobe\TypeSpt\AdobeFnt06.lst ->  [Ver =  | Size = 23177 bytes | Modified Date = 09-01-2007 15:57:32 | Attr =    ]
iGdi.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1234 | Size = 163972 bytes | Modified Date = 07-01-2007 16:12:46 | Attr =    ]
setup.dll -> %CommonProgramFiles%\InstallShield\Professional\RunTime\0701\Intel32\setup.dll -> InstallShield Software Corporation [Ver = 7, 01, 100, 1248 | Size = 282756 bytes | Modified Date = 07-01-2007 16:12:44 | Attr =    ]
bootstat.dat -> %SystemRoot%\bootstat.dat ->  [Ver =  | Size = 2048 bytes | Modified Date = 13-01-2007 22:29:16 | Attr =  S]
HPHins12.dat -> %SystemRoot%\HPHins12.dat ->  [Ver =  | Size = 135632 bytes | Modified Date = 04-01-2007 18:43:52 | Attr =    ]
imaginationx.ini -> %SystemRoot%\imaginationx.ini ->  [Ver =  | Size = 567 bytes | Modified Date = 11-01-2007 18:15:24 | Attr =    ]
imsins.BAK -> %SystemRoot%\imsins.BAK ->  [Ver =  | Size = 1355 bytes | Modified Date = 05-01-2007 01:20:08 | Attr =    ]
kodakpcd.Ejer.ini -> %SystemRoot%\kodakpcd.Ejer.ini ->  [Ver =  | Size = 23 bytes | Modified Date = 06-01-2007 11:06:58 | Attr =    ]
NeroDigital.ini -> %SystemRoot%\NeroDigital.ini ->  [Ver =  | Size = 116 bytes | Modified Date = 13-01-2007 20:16:18 | Attr =    ]
win.ini -> %SystemRoot%\win.ini ->  [Ver =  | Size = 720 bytes | Modified Date = 04-01-2007 18:07:18 | Attr =    ]
winreg.ini -> %SystemRoot%\winreg.ini ->  [Ver =  | Size = 34 bytes | Modified Date = 11-01-2007 23:52:44 | Attr =    ]
WMSysPr9.prx -> %SystemRoot%\WMSysPr9.prx ->  [Ver =  | Size = 316640 bytes | Modified Date = 04-01-2007 18:06:30 | Attr =    ]
amcompat.tlb -> %System32%\amcompat.tlb ->  [Ver =  | Size = 16832 bytes | Modified Date = 05-01-2007 16:22:36 | Attr =    ]
autosys.exe -> %System32%\autosys.exe ->  [Ver =  | Size = 2969 bytes | Modified Date = 13-01-2007 19:45:18 | Attr =    ]
CONFIG.NT -> %System32%\CONFIG.NT ->  [Ver =  | Size = 2709 bytes | Modified Date = 04-01-2007 11:21:48 | Attr =    ]
FNTCACHE.DAT -> %System32%\FNTCACHE.DAT ->  [Ver =  | Size = 119744 bytes | Modified Date = 05-01-2007 09:45:22 | Attr =    ]
nscompat.tlb -> %System32%\nscompat.tlb ->  [Ver =  | Size = 23392 bytes | Modified Date = 05-01-2007 16:22:36 | Attr =    ]
perfc006.dat -> %System32%\perfc006.dat ->  [Ver =  | Size = 62474 bytes | Modified Date = 05-01-2007 09:47:12 | Attr =    ]
perfc009.dat -> %System32%\perfc009.dat ->  [Ver =  | Size = 52764 bytes | Modified Date = 05-01-2007 09:47:12 | Attr =    ]
perfh006.dat -> %System32%\perfh006.dat ->  [Ver =  | Size = 394772 bytes | Modified Date = 05-01-2007 09:47:12 | Attr =    ]
perfh009.dat -> %System32%\perfh009.dat ->  [Ver =  | Size = 380350 bytes | Modified Date = 05-01-2007 09:47:12 | Attr =    ]
PerfStringBackup.INI -> %System32%\PerfStringBackup.INI ->  [Ver =  | Size = 900660 bytes | Modified Date = 05-01-2007 09:47:12 | Attr =    ]
secure32.html -> %System32%\secure32.html ->  [Ver =  | Size = 3057 bytes | Modified Date = 13-01-2007 19:48:58 | Attr =    ]
wpa.dbl -> %System32%\wpa.dbl ->  [Ver =  | Size = 13734 bytes | Modified Date = 12-01-2007 09:36:58 | Attr =    ]
AegisP.sys -> %System32%\drivers\AegisP.sys -> Meetinghouse Data Communications [Ver = 3.4.3.0 | Size = 20747 bytes | Modified Date = 04-01-2007 11:00:54 | Attr =    ]

[File String Scan - Non-Microsoft Only]
PEC2 ,  -> %SystemDrive%\NU KAN DET KUN GÅ FREMAD.mp3 ->  [Ver =  | Size = 6184960 bytes | Modified Date = 07-07-2005 08:01:10 | Attr =    ]
Thawte Consulting ,  -> %CommonProgramFiles%\Java\Update\Base Images\jre1.5.0.b64\core3.zip ->  [Ver =  | Size = 3290841 bytes | Modified Date = 06-12-2004 21:57:36 | Attr =    ]
UPX! , UPX0 ,  -> %System32%\aswBoot.exe ->  [Ver = 4, 7, 892, 0 | Size = 666240 bytes | Modified Date = 25-09-2006 17:45:08 | Attr =    ]
FSG! ,  -> %System32%\autosys.exe ->  [Ver =  | Size = 2969 bytes | Modified Date = 13-01-2007 19:45:18 | Attr =    ]
PEC2 ,  -> %System32%\dfrg.msc ->  [Ver =  | Size = 41123 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
winsync ,  -> %System32%\wbdbase.deu ->  [Ver =  | Size = 1309184 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
WSUD , UPX0 ,  -> %System32%\dllcache\hwxjpn.dll ->  [Ver =  | Size = 13463552 bytes | Modified Date = 27-08-2004 13:00:00 | Attr =    ]
PTech ,  -> %System32%\dllcache\mtlstrm.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 1309184 bytes | Modified Date = 03-08-2004 21:41:38 | Attr =    ]
PTech ,  -> %System32%\drivers\mtlstrm.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 1309184 bytes | Modified Date = 03-08-2004 21:41:38 | Attr =    ]

< End of report >
Avatar billede costanza1974 Novice
14. januar 2007 - 14:28 #14
Det var noget af en LOG :-)
Avatar billede ejvindh Ekspert
14. januar 2007 - 14:49 #15
Ja, og der var noget skidt i den. Prøv derfor følgende:

Kør WinPFind3U fra WinPFind3U-mappen igen. Kopier indholdet mellem de bølgede linier ind i det hvide felt til højre (højreklik på feltet og vælg "sæt ind"/"paste"):

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[Kill Explorer]
[Registry - Non-Microsoft Only]
< Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
YY -> AutoSys -> %System32%\autosys.exe
YY -> kRfGLDdQ -> %SystemRoot%\lxkqp.exe
< Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
YY -> WinInit -> %LocalSettings%\Temp\6086203.exe
YY -> WinMedia -> %LocalSettings%\Temp\6085984.exe
< Internet Explorer Settings > ->
YN -> HKLM: Default_Page_URL -> c:\secure32.html
YN -> HKLM: Local Page -> c:\secure32.html
YN -> HKLM: Start Page -> c:\secure32.html
YN -> HKCU: Default_Page_URL -> c:\secure32.html
YN -> HKCU: Local Page -> c:\secure32.html
YN -> HKCU: Start Page -> c:\secure32.html
< Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\
YN -> &Search -> http:\bar.mywebsearch.com\menusearch.htm
[Files - Created Wihin 30 days]
NY -> baiod.exe -> %SystemDrive%\baiod.exe
NY -> secure32.html -> %SystemDrive%\secure32.html
NY -> sqmdata00.sqm -> %SystemDrive%\sqmdata00.sqm
NY -> sqmdata01.sqm -> %SystemDrive%\sqmdata01.sqm
NY -> sqmdata02.sqm -> %SystemDrive%\sqmdata02.sqm
NY -> sqmdata03.sqm -> %SystemDrive%\sqmdata03.sqm
NY -> sqmdata04.sqm -> %SystemDrive%\sqmdata04.sqm
NY -> sqmdata05.sqm -> %SystemDrive%\sqmdata05.sqm
NY -> sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm
NY -> sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm
NY -> sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm
NY -> sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm
NY -> sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm
NY -> sqmdata11.sqm -> %SystemDrive%\sqmdata11.sqm
NY -> sqmdata12.sqm -> %SystemDrive%\sqmdata12.sqm
NY -> sqmdata13.sqm -> %SystemDrive%\sqmdata13.sqm
NY -> sqmdata14.sqm -> %SystemDrive%\sqmdata14.sqm
NY -> sqmdata15.sqm -> %SystemDrive%\sqmdata15.sqm
NY -> sqmdata16.sqm -> %SystemDrive%\sqmdata16.sqm
NY -> sqmdata17.sqm -> %SystemDrive%\sqmdata17.sqm
NY -> sqmdata18.sqm -> %SystemDrive%\sqmdata18.sqm
NY -> sqmdata19.sqm -> %SystemDrive%\sqmdata19.sqm
NY -> sqmnoopt00.sqm -> %SystemDrive%\sqmnoopt00.sqm
NY -> sqmnoopt01.sqm -> %SystemDrive%\sqmnoopt01.sqm
NY -> sqmnoopt02.sqm -> %SystemDrive%\sqmnoopt02.sqm
NY -> sqmnoopt03.sqm -> %SystemDrive%\sqmnoopt03.sqm
NY -> sqmnoopt04.sqm -> %SystemDrive%\sqmnoopt04.sqm
NY -> sqmnoopt05.sqm -> %SystemDrive%\sqmnoopt05.sqm
NY -> sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm
NY -> sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm
NY -> sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm
NY -> sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm
NY -> sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm
NY -> sqmnoopt11.sqm -> %SystemDrive%\sqmnoopt11.sqm
NY -> sqmnoopt12.sqm -> %SystemDrive%\sqmnoopt12.sqm
NY -> sqmnoopt13.sqm -> %SystemDrive%\sqmnoopt13.sqm
NY -> sqmnoopt14.sqm -> %SystemDrive%\sqmnoopt14.sqm
NY -> sqmnoopt15.sqm -> %SystemDrive%\sqmnoopt15.sqm
NY -> sqmnoopt16.sqm -> %SystemDrive%\sqmnoopt16.sqm
NY -> sqmnoopt17.sqm -> %SystemDrive%\sqmnoopt17.sqm
NY -> sqmnoopt18.sqm -> %SystemDrive%\sqmnoopt18.sqm
NY -> sqmnoopt19.sqm -> %SystemDrive%\sqmnoopt19.sqm
NY -> autosys.exe -> %System32%\autosys.exe
NY -> secure32.html -> %System32%\secure32.html
[Files - Modified Wihin 30 days]
NY -> baiod.exe -> %SystemDrive%\baiod.exe
NY -> secure32.html -> %SystemDrive%\secure32.html
NY -> sqmdata00.sqm -> %SystemDrive%\sqmdata00.sqm
NY -> sqmdata01.sqm -> %SystemDrive%\sqmdata01.sqm
NY -> sqmdata02.sqm -> %SystemDrive%\sqmdata02.sqm
NY -> sqmdata03.sqm -> %SystemDrive%\sqmdata03.sqm
NY -> sqmdata04.sqm -> %SystemDrive%\sqmdata04.sqm
NY -> sqmdata05.sqm -> %SystemDrive%\sqmdata05.sqm
NY -> sqmdata06.sqm -> %SystemDrive%\sqmdata06.sqm
NY -> sqmdata07.sqm -> %SystemDrive%\sqmdata07.sqm
NY -> sqmdata08.sqm -> %SystemDrive%\sqmdata08.sqm
NY -> sqmdata09.sqm -> %SystemDrive%\sqmdata09.sqm
NY -> sqmdata10.sqm -> %SystemDrive%\sqmdata10.sqm
NY -> sqmdata11.sqm -> %SystemDrive%\sqmdata11.sqm
NY -> sqmdata12.sqm -> %SystemDrive%\sqmdata12.sqm
NY -> sqmdata13.sqm -> %SystemDrive%\sqmdata13.sqm
NY -> sqmdata14.sqm -> %SystemDrive%\sqmdata14.sqm
NY -> sqmdata15.sqm -> %SystemDrive%\sqmdata15.sqm
NY -> sqmdata16.sqm -> %SystemDrive%\sqmdata16.sqm
NY -> sqmdata17.sqm -> %SystemDrive%\sqmdata17.sqm
NY -> sqmdata18.sqm -> %SystemDrive%\sqmdata18.sqm
NY -> sqmdata19.sqm -> %SystemDrive%\sqmdata19.sqm
NY -> sqmnoopt00.sqm -> %SystemDrive%\sqmnoopt00.sqm
NY -> sqmnoopt01.sqm -> %SystemDrive%\sqmnoopt01.sqm
NY -> sqmnoopt02.sqm -> %SystemDrive%\sqmnoopt02.sqm
NY -> sqmnoopt03.sqm -> %SystemDrive%\sqmnoopt03.sqm
NY -> sqmnoopt04.sqm -> %SystemDrive%\sqmnoopt04.sqm
NY -> sqmnoopt05.sqm -> %SystemDrive%\sqmnoopt05.sqm
NY -> sqmnoopt06.sqm -> %SystemDrive%\sqmnoopt06.sqm
NY -> sqmnoopt07.sqm -> %SystemDrive%\sqmnoopt07.sqm
NY -> sqmnoopt08.sqm -> %SystemDrive%\sqmnoopt08.sqm
NY -> sqmnoopt09.sqm -> %SystemDrive%\sqmnoopt09.sqm
NY -> sqmnoopt10.sqm -> %SystemDrive%\sqmnoopt10.sqm
NY -> sqmnoopt11.sqm -> %SystemDrive%\sqmnoopt11.sqm
NY -> sqmnoopt12.sqm -> %SystemDrive%\sqmnoopt12.sqm
NY -> sqmnoopt13.sqm -> %SystemDrive%\sqmnoopt13.sqm
NY -> sqmnoopt14.sqm -> %SystemDrive%\sqmnoopt14.sqm
NY -> sqmnoopt15.sqm -> %SystemDrive%\sqmnoopt15.sqm
NY -> sqmnoopt16.sqm -> %SystemDrive%\sqmnoopt16.sqm
NY -> sqmnoopt17.sqm -> %SystemDrive%\sqmnoopt17.sqm
NY -> sqmnoopt18.sqm -> %SystemDrive%\sqmnoopt18.sqm
NY -> sqmnoopt19.sqm -> %SystemDrive%\sqmnoopt19.sqm
NY -> autosys.exe -> %System32%\autosys.exe
[File String Scan - Non-Microsoft Only]
NY -> FSG! , -> %System32%\autosys.exe
[Start Explorer]
[Reboot]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Klik herefter på "Run Fix", og følg instruksionerne, der gives. Din computer vil nu genstarte. Efter genstart skal du køre WinPFindU.exe igen, klikke på "Scan" og lægge en frisk log herind. I mappen, hvor du har installeret WinPFindU ligger der en log, hvis navn består af en masse numre - den skal du også kopiere herind.

-- Hent S!Ri's SmitfraudFix.zip og gem det på dit Skrivebord.
http://siri.urz.free.fr/Fix/SmitfraudFix.exe

NB: Filen "process.exe" som ligger i dette værktøj bliver af visse antivirus-programmer identificeret som "RiskTool". Det har dog ikke noget på sig!

-- Genstart i fejlsikret, hvis du ikke ved hvordan så kig her:
http://www.ctrlaltdel.dk/forum/forum_posts.asp?TID=23&PN=1

-- Kør SmitfraudFix. Tast 2 - svar ja til at rense (y=yes). Lad programmet gennemføre en rensning. Det vil også checke om systemfilen wininet.dll er inficeret. Hvis den er det, vil du blive bedt om tilladelse til at erstatte den med en anden. Her skal du vælge "Yes", ved at taste "y".

Programmet bliver muligvis nødt til at genstarte undervejs. Herefter vil der dukke en liste med resultaterne af rensningen op . Kopiér denne liste ind i tråden.

-- Genstart og læg en loggen fra SmitfraudFix herind (C:\rapport.txt).
Avatar billede ejvindh Ekspert
15. februar 2007 - 13:45 #16
Jeg kan se, at du nu har oprettet en ny tråd. Hvordan gik det med dette problem? Fulgte du min anvisning, og hjalp det i givet fald på problemet?
Avatar billede costanza1974 Novice
15. februar 2007 - 16:29 #17
Jeg har ikke rigtig fundet ud af mine problemer endnu.
Jeg vil prøve dine instruktioner idag når jeg kommer hjem.
Jeg ignorede problemet i denne tråd og siden havde computeren kørt fint indtil igår.
Derfor skrev jeg en ny tråd.
Hvis jeg ikke er så god til at svare er det fordi jeg ikke kan komme på nettet
Avatar billede ejvindh Ekspert
15. februar 2007 - 16:47 #18
Det var dumt. Og det er også lidt træls når man læser en lang log for folk, at de så ikke responderer på det forslag, som man har lagt.

Så har du nu i over en måned (bl.a.) haft en keylogger installeret på din computer:
http://64.233.183.104/search?q=cache:QpSK8xYD7UkJ:research.sunbelt-software.com/threatdisplay.aspx%3Fname%3DWinguardian%26threatid%3D40587+autosys.exe&hl=en&ct=clnk&cd=13&client=firefox-a
http://fileinfo.prevx.com/fileinfo.asp?PXC=8bbf65667412

Så har du jo nok stadig smitfraud på computeren. Jeg vil derfor anbefale dig at køre proceduren, som jeg har lagt. Jeg tror dog ikke det vil være tilstrækkeligt længere, eftersom der nok er blevet installeret mere i mellemtiden.
Avatar billede costanza1974 Novice
15. februar 2007 - 18:40 #19
Jeg undskylder meget....
Jeg er ikke den store computerhaj.
Jeg skal nok følge anvisninger en anden gang. Igen Sorry :-(
Avatar billede ejvindh Ekspert
16. februar 2007 - 09:49 #20
Alt i orden. Mest af alt er det jo egentlig dig selv, du skal undskylde overfor, eftersom dem der har lagt keyloggeren ind på din computer nu har kunnet overvåge enhver handling du har foretaget dig på computeren i den mellemliggende tid.
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview

Flere spørgsmål fra Virus kategorien

Titel Indlæg Oprettet Seneste aktivitet
trusler Af gerhardpet i Virus 4 26/01/202410:02 27/01/202408:32
Kan ikke fjerne virus Af mik28 i Virus 16 09/01/202416:37 10/01/202419:59
virusscanning Af JetteD i Virus 2 10/11/202312:55 10/11/202316:36
Google ser ud til at være malware, lyder advarsel på alle vore mobiler! Af vbr i Virus 9 30/10/202312:12 15/12/202310:17
Jeg får en fejl på Enhedssikkerhed Af pouls i Virus 8 04/06/202321:28 05/06/202316:28
Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Opret Log ind

Du kan også logge ind via nedenstående tjenester



Alle kategorier på Eksperten
Seneste spørgsmål Seneste aktivitet
I dag 08:46 Markere dubletter ud fra reference felt. Af jthyge i Excel
I dag 08:46 MailChimp Survey Af Anita i Fri debat
I dag 08:28 Hvorfor kan jeg ikke udskrive i farver fra MacBook til Brother-printer Af LLB i Printere
I dag 01:19 Edge Af MOAN i Browsere
I går 19:52 Lille katalog til mine videoer. Af valby i Fri debat
White papers
Flere white papers »


Premium
Teaser billede
It-specialisterne vælter ud i de danske virksomheder: Alle typer arbejdspladser hyrer løs
Læs mere »
Sådan gik det til, da Vestas blev ramt af ødelæggende Lockbit-angreb - 500 servere kunne slet ikke patches
Statens It-råd: Nyt statsligt løn-system er højrisiko-projekt - her er bekymringerne
Itm8 rykker ind i Tyskland med opkøb af it-firma med 125 ansatte: Flere opkøb i Tyskland i kikkerten
Se alle »
Computerworld
Teaser billede
Her er Danmarks fem bedste CIO’er lige nu: Se de fem nominerede til prisen som Årets CIO 2024
Læs mere »
Prøvekørt: Sydkoreansk familie-kolos har plads til alle og sætter alle på plads
Apotekskæde lukker alle butikker efter "cybersikkerhedshændelse"
Test: Disse små højttalere til 44.000 kroner per sæt vil blæse dig bagover - både visuelt og lydmæssigt
Se alle »
CIO
Teaser billede
Her er Danmarks fem bedste CIO’er lige nu: Se de fem nominerede til prisen som Årets CIO 2024
Læs mere »
Top-CIO Anne Nørklit færdig hos Tryg: “Jeg vil bruge sommeren på at overveje, hvad fremtiden skal bringe”
Køber 25.000 Copilot-licenser af Microsoft i kæmpe-aftale - vil investere milliarder i AI
Microsoft skruer op for CPU-krav til den næste version af Windows 11: Færre brugere kan nu opdatere
Se alle »
Job & Karriere
Teaser billede
Her er Danmarks fem bedste CIO’er lige nu: Se de fem nominerede til prisen som Årets CIO 2024
Læs mere »
Knap 40 procent af disse it-folk tjener tjener mindst 57.000 kroner om måneden
Medarbejderne fik udleveret badetøfler ved indflytningen: Kom med inden for i IBM Danmarks nye topmoderne hovedkontor
Så meget tjener dine kollegaer: Her er alle data fra Computerworlds store it-lønstatistik for 2024
Se alle »
White paper
Teaser billede
Nemmere overblik, styring og omkostningskontrol i dit multicloud-miljø
Læs mere »
Guide: Sådan udvikler du en moderne netværksstrategi
Sådan høster du forretningsfordelene ved Internet of Things
Få mere ud af din cloudinfrastruktur og gør op med de konstant stigende omkostninger
Se alle »

Events
Flere events »
White papers
Flere white papers »
IT-Kurser
Se alle vores it-kurser »