nu har jeg kørt combofix og her er log
"Simon Thorgaard" - 2007-07-06 19:04:47 - ComboFix 07-07-04.4 - Service Pack 2
(((((((((((((((((((((((((((((((((((((((((((( V Log )))))))))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\dceaboge.dll
C:\WINDOWS\system32\ftcnamsd.dll
C:\WINDOWS\system32\wvuttss.dll
C:\WINDOWS\system32\winteu32.dll
C:\WINDOWS\system32\egobaecd.ini
C:\WINDOWS\system32\dsmanctf.ini
C:\WINDOWS\system32\ddfhk.bak1
C:\WINDOWS\system32\ddfhk.bak2
C:\WINDOWS\system32\ddfhk.ini
* * * POST RUN FILES/FOLDERS * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\DOCUME~1\SIMONT~1\APPLIC~1\DriveCleaner 2006 Free
C:\DOCUME~1\SIMONT~1\APPLIC~1\DriveCleaner 2006 Free\Logs\update.log
C:\DOCUME~1\SIMONT~1\APPLIC~1\WinAntiSpyware 2006
C:\DOCUME~1\SIMONT~1\APPLIC~1\WinAntiSpyware 2006\Logs\update.log
C:\Documents and Settings\SIMONT~1.\err.log
C:\Programmer\F‘lles filer\Yazzle1162OinUninstaller.exe
C:\Programmer\winantispyware 2006 free
((((((((((((((((((((((((( Files Created from 2007-06-06 to 2007-07-06 )))))))))))))))))))))))))))))))
2007-07-06 19:03 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-06 17:21 <DIR> dr------- C:\DOCUME~1\LOCALS~1\Foretrukne
2007-07-06 13:03 <DIR> d-------- C:\Programmer\inKline Global
2007-07-06 12:57 <DIR> d-------- C:\Programmer\PCB
2007-07-06 12:34 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
2007-07-06 12:32 <DIR> d-------- C:\Programmer\McAfee
2007-07-06 12:32 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
2007-07-06 12:31 349,760 --a------ C:\WINDOWS\system32\mcinsctl.dll
2007-07-06 12:31 288,320 -ra------ C:\WINDOWS\system32\mcgdmgr.dll
2007-07-06 12:31 <DIR> d-------- C:\Programmer\McAfee.com
2007-07-06 12:28 <DIR> d-------- C:\WINDOWS\system32\oodag
2007-07-05 23:29 <DIR> d-------- C:\Programmer\OO Software
2007-07-05 23:29 <DIR> d-------- C:\Programmer\F‘lles filer\OO Software
2007-07-05 23:08 266,360 --a------ C:\WINDOWS\system32\TweakUI.exe
2007-07-05 22:59 <DIR> d-------- C:\Programmer\CCleaner
2007-07-05 22:44 8,560 --a--c--- C:\dnsbak.reg
2007-07-05 20:31 164 --a--c--- C:\install.dat
2007-07-05 20:27 <DIR> d-------- C:\DOCUME~1\SIMONT~1\APPLIC~1\Sammsoft
2007-07-05 20:05 <DIR> d-------- C:\DOCUME~1\SIMONT~1\APPLIC~1\ATI
2007-07-05 19:48 520,192 --------- C:\WINDOWS\system32\ati2sgag.exe
2007-07-05 18:40 4,672 --a------ C:\WINDOWS\system32\jvpmooci.exe
2007-06-24 14:00 512,096 --a------ C:\WINDOWS\system32\drivers\amon.sys
2007-06-24 14:00 298,104 --a------ C:\WINDOWS\system32\imon.dll
2007-06-24 14:00 15,424 --a------ C:\WINDOWS\system32\drivers\nod32drv.sys
2007-06-22 15:17 57,344 --a------ C:\DOCUME~1\ALLUSE~1\APPLIC~1\abynipkx.exe
2007-06-22 15:16 31,254 --a------ C:\WINDOWS\system32\cbxuusp.dll
2007-06-22 14:52 <DIR> d-------- C:\Programmer\Microsoft Games
2007-06-22 14:49 <DIR> d-------- C:\DOCUME~1\SIMONT~1\APPLIC~1\FarStone
2007-06-22 14:43 65,536 --a------ C:\WINDOWS\system32\GDPersns.dat
2007-06-22 14:37 53,248 --------- C:\WINDOWS\system32\RemFarStone.exe
2007-06-13 21:25 339,968 --a------ C:\WINDOWS\system32\ATIDEMGX.dll
2007-06-13 21:15 6,213,632 --a------ C:\WINDOWS\system32\Atioglgl.dll
2007-06-13 21:15 483,328 --a------ C:\WINDOWS\system32\ati2evxx.exe
2007-06-13 21:10 8,097,792 --a------ C:\WINDOWS\system32\atioglx2.dll
2007-06-13 20:57 972,072 --a------ C:\WINDOWS\system32\ativva6x.dat
2007-06-13 20:57 3,107,788 --a------ C:\WINDOWS\system32\ativvaxx.dat
2007-06-13 20:57 3,107,788 --a------ C:\WINDOWS\system32\ativva5x.dat
2007-06-13 20:43 262,144 --a------ C:\WINDOWS\system32\atikvmag.dll
2007-06-13 20:41 50,176 --a------ C:\WINDOWS\system32\atiok3x2.dll
2007-06-13 20:41 49,152 --a------ C:\WINDOWS\system32\drivers\ati2erec.dll
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-07-06 17:10:58 -------- d-----w C:\Programmer\Fælles filer
2007-07-06 11:03:13 -------- d--h--w C:\Programmer\InstallShield Installation Information
2007-07-05 21:29:52 -------- d-----w C:\Programmer\Fælles filer\OO Software
2007-07-05 21:25:05 -------- d-----w C:\Programmer\SpeedFan
2007-07-05 21:22:57 -------- d-----w C:\Programmer\Morgan
2007-07-05 21:20:55 -------- d-----w C:\Programmer\Startup Inspector for Windows
2007-07-05 21:15:42 -------- d-----w C:\Programmer\AviSynth 2.5
2007-07-05 21:03:35 -------- d-----w C:\Programmer\BearShare
2007-07-05 17:54:04 -------- d-----w C:\Programmer\ATI Technologies
2007-06-25 15:50:29 -------- d-----w C:\Programmer\BitComet
2007-06-22 13:56:23 -------- d-----w C:\DOCUME~1\SIMONT~1\APPLIC~1\AdobeUM
2007-06-13 19:24:32 268,288 ----a-w C:\WINDOWS\system32\ati2dvag.dll
2007-06-13 19:24:13 2,155,520 ----a-w C:\WINDOWS\system32\drivers\ati2mtag.sys
2007-06-13 19:23:23 307,200 ----a-w C:\WINDOWS\system32\atiiiexx.dll
2007-06-13 19:17:37 139,264 ----a-w C:\WINDOWS\system32\atipdlxx.dll
2007-06-13 19:17:26 118,784 ----a-w C:\WINDOWS\system32\Oemdspif.dll
2007-06-13 19:17:18 26,112 ----a-w C:\WINDOWS\system32\Ati2mdxx.exe
2007-06-13 19:17:12 42,496 ----a-w C:\WINDOWS\system32\ati2edxx.dll
2007-06-13 19:16:59 118,784 ----a-w C:\WINDOWS\system32\ati2evxx.dll
2007-06-13 19:14:51 53,248 ----a-w C:\WINDOWS\system32\ATIDDC.DLL
2007-06-13 19:07:26 2,922,208 ----a-w C:\WINDOWS\system32\ati3duag.dll
2007-06-13 18:57:21 1,512,960 ----a-w C:\WINDOWS\system32\ativvaxx.dll
2007-06-13 18:46:28 5,431,296 ----a-w C:\WINDOWS\system32\atioglxx.dll
2007-06-13 18:42:29 17,408 ----a-w C:\WINDOWS\system32\atitvo32.dll
2007-06-13 18:36:45 368,640 ----a-w C:\WINDOWS\system32\ati2cqag.dll
2007-06-13 14:04:36 -------- d-----w C:\Programmer\Fælles filer\System
2007-06-05 16:43:58 -------- d-----w C:\Programmer\BearShare Applications
2007-06-04 10:08:57 -------- d-----w C:\Programmer\Diablo II
2007-06-02 12:09:13 -------- d-----w C:\Programmer\Yahoo!
2007-05-22 13:29:06 -------- d-----w C:\Programmer\Fælles filer\xing shared
2007-05-22 13:28:55 -------- d-----w C:\Programmer\Fælles filer\Real
2007-05-22 13:26:40 -------- d-----w C:\Programmer\Fælles filer\SureThing Shared
2007-05-22 13:25:37 -------- d-----w C:\Programmer\illiminable
2007-05-21 13:20:10 2,560 ----a-w C:\WINDOWS\system32\BitCometRes.dll
2007-05-18 09:38:15 -------- d-----w C:\Programmer\3DO
2007-05-16 15:14:25 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-12 17:30:49 43,520 ----a-w C:\WINDOWS\system32\CmdLineExt03.dll
2007-05-12 14:22:21 33,533 ----a-w C:\WINDOWS\system32\CoreVorbis-uninstall.exe
2007-05-12 14:22:17 36,734 ----a-w C:\WINDOWS\system32\OggDSuninst.exe
2007-05-12 14:22:04 -------- d-----w C:\Programmer\ffdshow
2007-05-12 14:21:34 -------- d-----w C:\Programmer\AC3Filter
2007-05-12 14:21:28 -------- d-----w C:\Programmer\XviD
2007-05-12 14:20:26 -------- d-----w C:\Programmer\DivX
2007-05-12 14:20:25 56 --sh--r C:\WINDOWS\system32\4EB6305386.sys
2007-05-12 14:20:25 1,890 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2007-05-12 14:19:28 -------- d-----w C:\Programmer\GordianKnot
2007-05-12 14:19:16 -------- d-----w C:\Programmer\Gabest
2007-05-09 16:25:21 -------- d-----w C:\DOCUME~1\SIMONT~1\APPLIC~1\MusicIP
2007-05-09 13:42:28 -------- d-----w C:\DOCUME~1\SIMONT~1\APPLIC~1\wsInspector
2007-05-09 13:40:04 -------- d-----w C:\DOCUME~1\SIMONT~1\APPLIC~1\Opera
2007-05-09 13:38:45 50,364 ----a-w C:\WINDOWS\system32\pdf995mon.dll
2007-05-09 13:38:45 114,688 ----a-w C:\WINDOWS\system32\pdfmona.dll
2007-05-09 12:50:01 -------- d-----w C:\Programmer\Softinterface, Inc
2007-05-06 18:53:19 -------- d-----w C:\Programmer\Rainlendar2
2007-04-25 14:22:43 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-18 16:14:26 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-16 20:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-16 20:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-16 20:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-16 20:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-16 20:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-16 20:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-16 20:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2006-12-18 04:16 59032 --a------ C:\Programmer\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
2007-04-29 11:29 394816 --a------ C:\Programmer\BitComet\tools\BitCometBHO_1.1.4.29.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
2006-10-27 01:48 2210608 --a------ C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
2006-12-15 04:23 440056 --a------ C:\Programmer\Java\jre1.5.0_11\bin\ssv.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C648F60F-2C4B-45D7-BDC5-77FDA7586D9D}]
C:\WINDOWS\system32\khfdd.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="C:\Programmer\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-06-11 05:10]
"SynTPLpr"="C:\Programmer\Synaptics\SynTP\SynTPLpr.exe" [2004-05-07 11:49]
"Zone Labs Client"="C:\Programmer\Zone Labs\ZoneAlarm\zlclient.exe" [2006-06-18 17:54]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2007-04-21 09:58]
"GrooveMonitor"="C:\Programmer\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 01:47]
"StartCCC"="C:\Programmer\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 12:35]
"MCAgentExe"="c:\PROGRA~1\mcafee.com\agent\mcagent.exe" [2005-09-22 18:29]
"MCUpdateExe"="C:\PROGRA~1\mcafee.com\agent\mcupdate.exe" [2006-01-11 12:05]
"_AntiSpyware"="c:\progra~1\mcafee\MCAFEE~1\masalert.exe" [2005-11-18 19:16]
"PC Booster"="C:\Programmer\inKline Global\PC Booster\pcbooster.exe" [2005-12-28 11:39]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Rainlendar2"="C:\Programmer\Rainlendar2\Rainlendar2.exe" [2007-04-15 08:31]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\runservices]
"MSN Messages"=msnmessag.exe
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"ALUAlert"=C:\Programmer\Symantec\LiveUpdate\ALUNotify.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"="C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL" [2006-10-27 01:48]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cbxuusp]
cbxuusp.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\khfdd]
C:\WINDOWS\system32\khfdd.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages :\WINDOWS\syste scecli scecli
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menuen Start^Programmer^Start^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menuen Start^Programmer^Start^Microsoft Firewall Client Management.lnk]
path=C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\Microsoft Firewall Client Management.lnk
backup=C:\WINDOWS\pss\Microsoft Firewall Client Management.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Simon Thorgaard^Menuen Start^Programmer^Start^Screen Clipper and Launcher til OneNote 2007.lnk]
path=C:\Documents and Settings\Simon Thorgaard\Menuen Start\Programmer\Start\Screen Clipper and Launcher til OneNote 2007.lnk
backup=C:\WINDOWS\pss\Screen Clipper and Launcher til OneNote 2007.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\abynipkx.exe]
C:\Documents and Settings\All Users\Application Data\abynipkx.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
"C:\Programmer\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avp]
C:\WINDOWS\avp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]
"C:\Programmer\BearShare\BearShare.exe" /pause
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\emMonitor]
C:\WINDOWS\emMon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GameDrive]
"C:\Programmer\FarStone\GameDrive\GDP\GDTask.exe" /AutoRestore
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq.com]
rundll32.exe "C:\WINDOWS\system32\qypaykvl.dll",forkonce
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load]
C:\Programmer\WAFFLEz\mlg1.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nod32kui]
"C:\Programmer\Eset\nod32kui.exe" /WAITSERVICE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OemReset]
%systemroot%\OPTIONS\OEMRESET.EXE /AUDIT
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SC2]
C:\WINDOWS\system32\scchk32.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
"C:\Programmer\Spyware Doctor\SDTrayApp.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe" -osboot
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
C:\Programmer\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Programmer\WinAmp 295\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"PavPrSrv"=2 (0x2)
"Creative Service for CDROM Access"=2 (0x2)
Contents of the 'Scheduled Tasks' folder
2007-02-15 18:08:25 C:\WINDOWS\tasks\Critical Battery Alarm Program.job
2007-07-06 10:36:32 C:\WINDOWS\tasks\McAfee AntiSpyware.job
2007-07-06 16:41:19 C:\WINDOWS\tasks\Symantec NetDetect.job
**************************************************************************
catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer,
http://www.gmer.netRootkit scan 2007-07-06 19:27:27
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-07-06 19:30:09 - machine was rebooted
C:\ComboFix-quarantined-files.txt ... 2007-07-06 19:30
--- E O F ---
Og her er den nye hijackthis log
Logfile of HijackThis v1.99.1
Scan saved at 19:32:22, on 06-07-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\mcafee.com\agent\mcdetect.exe
C:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Programmer\Eset\nod32krn.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\UAService7.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Synaptics\SynTP\SynTPLpr.exe
C:\Programmer\Zone Labs\ZoneAlarm\zlclient.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Programmer\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\progra~1\mcafee\MCAFEE~1\masalert.exe
C:\Programmer\Rainlendar2\Rainlendar2.exe
C:\WINDOWS\system32\notepad.exe
C:\Programmer\Mozilla Firefox\firefox.exe
C:\Temp\hijackthis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://my.freeze.com/start.shtmlO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Programmer\BitComet\tools\BitCometBHO_1.1.4.29.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmer\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {C648F60F-2C4B-45D7-BDC5-77FDA7586D9D} - C:\WINDOWS\system32\khfdd.dll (file missing)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O4 - HKLM\..\Run: [ATIPTA] "C:\Programmer\ATI" Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Programmer\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Programmer\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [AVG7_CC] "C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" /STARTUP
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Programmer\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Programmer\ATI" Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [PC Booster] C:\Programmer\inKline Global\PC Booster\pcbooster.exe
O4 - HKCU\..\Run: [Rainlendar2] C:\Programmer\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\RunServices: [MSN Messages] msnmessag.exe
O8 - Extra context menu item: &Google Search -
res://c:\programmer\google\GoogleToolbar2.dll/cmsearch.htmlO8 - Extra context menu item: Backward Links -
res://c:\programmer\google\GoogleToolbar2.dll/cmbacklinks.htmlO8 - Extra context menu item: Cached Snapshot of Page -
res://c:\programmer\google\GoogleToolbar2.dll/cmcache.htmlO8 - Extra context menu item: Download all links using BitComet -
res://C:\Programmer\BitComet\BitComet.exe/AddAllLink.htmO8 - Extra context menu item: Download all videos using BitComet -
res://C:\Programmer\BitComet\BitComet.exe/AddVideo.htmO8 - Extra context menu item: Download link using &BitComet -
res://C:\Programmer\BitComet\BitComet.exe/AddLink.htmO8 - Extra context menu item: E&ksporter til Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000O8 - Extra context menu item: Similar Pages -
res://c:\programmer\google\GoogleToolbar2.dll/cmsimilar.htmlO8 - Extra context menu item: Translate into English -
res://c:\programmer\google\GoogleToolbar2.dll/cmtrans.htmlO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Send til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\programmer\microsoft firewall client 2004\fwcwsp.dll
O10 - Unknown file in Winsock LSP: c:\programmer\microsoft firewall client 2004\fwcwsp.dll
O10 - Unknown file in Winsock LSP: c:\programmer\microsoft firewall client 2004\fwcwsp.dll
O10 - Unknown file in Winsock LSP: c:\programmer\microsoft firewall client 2004\fwcwsp.dll
O10 - Unknown file in Winsock LSP: c:\programmer\microsoft firewall client 2004\fwcwsp.dll
O16 - DPF: RaptisoftGameLoader -
http://www.miniclip.com/hamsterball/raptisoftgameloader.cabO16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) -
http://www.creative.com/su/ocx/15026/CTSUEng.cabO16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft.com/fwlink/?linkid=39204O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} -
http://www.miniclip.com/puzzlepirates/miniclipGameLoader.dllO16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) -
http://messenger.msn.com/download/msnmessengersetupdownloader.cabO16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) -
http://www.creative.com/su/ocx/15028/CTPID.cabO18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Programmer\Fælles filer\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FLLESF~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: cbxuusp - C:\WINDOWS\SYSTEM32\cbxuusp.dll
O20 - Winlogon Notify: khfdd - C:\WINDOWS\system32\khfdd.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmer\Fælles filer\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - C:\PROGRA~1\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - C:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Programmer\Eset\nod32krn.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: StyleXPService - Unknown owner - C:\Programmer\TGTSoft\StyleXP\StyleXPService.exe (file missing)
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\System32\UAService7.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Hvilke antivirus programmer forslår du jeg sletter ? Kan du udfra loggen om der er noget virus/malware ?
Tak for hjælpen indtil videre
Ny bruger
Nybegynder
Opret
Preview
