log filer
hej ville lige høre om der var en som kunne se lidt på disse log filer jeg synes at min pc opfører sig lidt underligLogfile of HijackThis v1.99.1
Scan saved at 16:36:08, on 14-10-2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\System32\Ati2evxx.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\Programmer\Alwil Software\Avast4\aswUpdSv.exe
E:\Programmer\Alwil Software\Avast4\ashServ.exe
E:\WINDOWS\system32\LEXBCES.EXE
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\system32\LEXPPS.EXE
E:\Programmer\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
E:\Programmer\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
E:\Programmer\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
E:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\System32\svchost.exe
E:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
E:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
E:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
E:\Programmer\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
E:\Programmer\Lexmark X1100 Series\lxbkbmgr.exe
E:\Programmer\Lexmark X1100 Series\lxbkbmon.exe
E:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
E:\Programmer\Java\jre1.6.0_02\bin\jusched.exe
E:\Programmer\Nokia\Nokia PC Suite 6\LaunchApplication.exe
E:\Programmer\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
E:\Programmer\TomTom HOME 2\HOMERunner.exe
E:\Programmer\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
E:\Programmer\Adobe\Reader 8.0\Reader\Reader_sl.exe
E:\Programmer\Trend Micro\Internet Security 2006\pccguide.exe
E:\WINDOWS\RTHDCPL.EXE
E:\WINDOWS\SOUNDMAN.EXE
E:\Programmer\Fælles filer\Teleca Shared\CapabilityManager.exe
E:\Programmer\Fælles filer\InstallShield\UpdateService\issch.exe
E:\WINDOWS\System32\ctfmon.exe
E:\Programmer\Messenger\msmsgs.exe
E:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
E:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
E:\Programmer\Logitech\SetPoint\SetPoint.exe
E:\Programmer\Alwil Software\Avast4\ashWebSv.exe
E:\Programmer\Fælles filer\Logitech\KHAL\KHALMNPR.EXE
E:\Programmer\Alwil Software\Avast4\ashMaiSv.exe
E:\Programmer\Fælles filer\Teleca Shared\Generic.exe
E:\Programmer\PC Connectivity Solution\ServiceLayer.exe
E:\Programmer\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
E:\Documents and Settings\mikael\Skrivebord\oprydning af pc\alternativ.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ni.dk/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Programmer\Fælles filer\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Media Holding Enterprises, LLC - {0D39A900-0F3A-4C29-A254-3E65244FDC34} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Programmer\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - e:\programmer\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Programmer\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - e:\programmer\google\googletoolbar2.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [Lexmark X1100 Series] "E:\Programmer\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE E:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast!] E:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Programmer\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] E:\Programmer\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "E:\Programmer\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [TomTomHOME.exe] "E:\Programmer\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Adobe Photo Downloader] "E:\Programmer\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Programmer\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [pccguide.exe] "E:\Programmer\Trend Micro\Internet Security 2006\pccguide.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ISUSScheduler] "E:\Programmer\Fælles filer\InstallShield\UpdateService\issch.exe" -start
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "E:\Programmer\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] E:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] E:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Logitech SetPoint.lnk = E:\Programmer\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = E:\Programmer\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Programmer\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Programmer\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - E:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - E:\WINDOWS\web\related.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Programmer\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Programmer\Messenger\MSMSGS.EXE
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://downol.dr.dk/download/netradio/Rawflow.cab
O16 - DPF: {07D09E9E-C667-45DD-B035-217BC2A61A3B} (ActiveX sikkerhedssoftware Control) - https://www.portalbank.dk/package/sdc/external/activex/ActiveXSikkerhedssoftware-prod-1.10.cab
O16 - DPF: {11818680-FCF6-11D0-9808-0800092A4865} (Adobe Form Control) - http://www.kps.dk/Codebase/FormCtl.cab
O16 - DPF: {1469FF24-47F6-11D2-8805-006008C537E3} (Adobe Mail Control) - http://www.kps.dk/codebase/ffmail.cab
O16 - DPF: {1663ed61-23eb-11d2-b92f-008048fdd814} (MeadCo ScriptX 5.5 Advanced) - https://sec.if.dk/dkprivateprod/franchise/smsx.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {92EB6641-286A-11D2-A68E-00A0C996A6DD} (Adobe Signature Object) - http://www.kps.dk/codebase/jfsignature.cab
O16 - DPF: {AD90E8D1-3B47-11D2-A696-00A0C996A6DD} (jfCryptoSignature Class) - http://www.kps.dk/codebase/jfcrypto.cab
O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O16 - DPF: {CDDCFBB3-4D93-11D2-B1A9-00A0C9B742BE} (Adobe Script Object) - http://www.kps.dk/codebase/scriptobject.cab
O16 - DPF: {EF2FB80F-0975-408E-A871-B00CC863478A} (Adobe Soft Font Installer) - http://www.kps.dk/codebase/fontinstaller.cab
O20 - Winlogon Notify: !SASWinLogon - E:\Programmer\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - E:\Programmer\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - E:\Programmer\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - E:\Programmer\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - E:\Programmer\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - E:\Programmer\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - E:\Programmer\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - E:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - E:\Programmer\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - E:\Programmer\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - E:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: ServiceLayer - Nokia. - E:\Programmer\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SPYWAREfighterRP - SpamFighter APS - E:\Programmer\SPYWAREfighter\spfprc.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - E:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - E:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - E:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
ComboFix 07-10-12.4 - mikael 2007-10-14 16:41:04.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.1.1252.1.1030.18.501 [GMT 2:00]
Running from: E:\Documents and Settings\mikael\Skrivebord\oprydning af pc\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
E:\Programmer\Microsoft Security Adviser
E:\WINDOWS\system32\.exe
E:\WINDOWS\system32\UpMedia
.
((((((((((((((((((((((((( Files Created from 2007-09-14 to 2007-10-14 )))))))))))))))))))))))))))))))
.
2007-10-14 16:40 51,200 --a------ E:\WINDOWS\NirCmd.exe
2007-10-14 15:07 <DIR> E:\Programmer\Fælles filer\Wise Installation Wizard
2007-10-14 14:15 <DIR> d-------- E:\Programmer\CCleaner
2007-10-14 13:19 192,512 --a------ E:\WINDOWS\system32\lexlmpm.dll
2007-10-14 13:17 14,208 --a------ E:\WINDOWS\system32\drivers\usbscan.sys
2007-10-14 13:17 14,208 --a--c--- E:\WINDOWS\system32\dllcache\usbscan.sys
2007-10-14 13:02 <DIR> dr------- E:\Documents and Settings\LocalService\Foretrukne
2007-10-14 12:04 51,456 --a------ E:\WINDOWS\system32\drivers\i8042prt.sys
2007-10-14 12:04 51,456 --a--c--- E:\WINDOWS\system32\dllcache\i8042prt.sys
2007-10-14 12:04 23,680 --a------ E:\WINDOWS\system32\drivers\kbdclass.sys
2007-10-14 12:04 23,680 --a--c--- E:\WINDOWS\system32\dllcache\kbdclass.sys
2007-10-14 12:04 22,272 --a------ E:\WINDOWS\system32\drivers\mouclass.sys
2007-10-14 12:04 22,272 --a--c--- E:\WINDOWS\system32\dllcache\mouclass.sys
2007-10-14 11:51 <DIR> d-------- E:\Programmer\Trend Micro
2007-10-13 08:08 <DIR> d-------- E:\WINDOWS\NV39003904.TMP
2007-10-13 08:08 1,160,448 -ra------ E:\WINDOWS\system32\drivers\nvnrm.sys
2007-10-13 08:08 363,008 -ra------ E:\WINDOWS\system32\idecoiins.dll
2007-10-13 08:08 261,632 -ra------ E:\WINDOWS\system32\drivers\nvsnpu.sys
2007-10-13 08:08 201,728 -ra------ E:\WINDOWS\system32\fdco1ins.dll
2007-10-13 08:08 105,088 -ra------ E:\WINDOWS\system32\drivers\nvata.sys
2007-10-13 08:08 57,856 -ra------ E:\WINDOWS\system32\drivers\NVENETFD.sys
2007-10-13 08:08 20,480 -ra------ E:\WINDOWS\system32\drivers\nvnetbus.sys
2007-10-13 08:08 11,264 -ra------ E:\WINDOWS\system32\bdco1ins.dll
2007-10-13 08:01 <DIR> d-------- E:\Programmer\Realtek
2007-10-13 08:01 2,879,488 -r------- E:\WINDOWS\SkyTel.exe
2007-10-13 08:01 499,712 -r------- E:\WINDOWS\RtlExUpd.dll
2007-10-13 08:01 49,152 -r------- E:\WINDOWS\system32\ChCfg.exe
2007-10-13 07:51 208,896 --a------ E:\WINDOWS\system32\wmpns.dll
2007-10-13 07:39 675,579 --a------ E:\WINDOWS\PROGRAM.exe
2007-10-13 07:39 203,592 --a------ E:\WINDOWS\distro_SelectRebatesSetup_um1001.exe
2007-10-12 00:33 24,661 --a------ E:\WINDOWS\system32\spxcoins.dll
2007-10-12 00:33 24,661 --a--c--- E:\WINDOWS\system32\dllcache\spxcoins.dll
2007-10-12 00:33 13,312 --a------ E:\WINDOWS\system32\irclass.dll
2007-10-12 00:33 13,312 --a--c--- E:\WINDOWS\system32\dllcache\irclass.dll
2007-10-12 00:06 <DIR> d-------- E:\Documents and Settings\mikael\Application Data\Leadertech
2007-10-11 17:18 26,112 --a------ E:\WINDOWS\system32\xpsp1hfm.exe
2007-10-11 17:17 6,550 --a------ E:\WINDOWS\jautoexp.dat
2007-10-11 17:17 113 --a------ E:\WINDOWS\system32\zonedon.reg
2007-10-11 17:17 113 --a------ E:\WINDOWS\system32\zonedoff.reg
2007-10-11 17:12 <DIR> E:\Programmer\Fælles filer\Application
2007-10-11 16:44 <DIR> d-------- E:\Programmer\SPYWAREfighter
2007-10-07 22:51 <DIR> d-------- E:\Programmer\Adssite Advanced Toolbar
2007-10-07 22:51 <DIR> d-------- E:\Documents and Settings\mikael\Application Data\Adssite Advanced Toolbar
2007-10-07 20:41 <DIR> d-------- E:\Documents and Settings\mikael\Application Data\CyberLink
2007-10-05 14:23 <DIR> d-------- E:\Programmer\CyberLink
2007-10-05 14:23 1,111,040 --a------ E:\WINDOWS\system32\wmsdmoe2.dll
2007-10-05 14:23 997,888 --a------ E:\WINDOWS\system32\wmvdmoe2.dll
2007-10-05 14:23 892,416 --a------ E:\WINDOWS\system32\wmspdmoe.dll
2007-10-05 14:23 486,536 --a------ E:\WINDOWS\system32\wmspdmod.dll
2007-10-05 14:23 384,512 --a------ E:\WINDOWS\system32\mp4sdmod.dll
2007-10-05 14:23 316,040 --a------ E:\WINDOWS\system32\mp43dmod.dll
2007-10-05 14:23 143,360 --a------ E:\WINDOWS\system32\wmidx.dll
2007-10-05 13:37 299,008 -ra------ E:\WINDOWS\system32\atiiiexx.dll
2007-10-05 13:36 79,320 -ra------ E:\WINDOWS\system32\atiicdxx.dat
2007-09-29 08:15 <DIR> d-------- E:\Documents and Settings\mikael\Application Data\TomTom
2007-09-29 08:14 <DIR> d-------- E:\Programmer\TomTom HOME 2
2007-09-29 08:05 <DIR> d-------- E:\Documents and Settings\All Users\Application Data\TomTom
2007-09-29 08:04 <DIR> d-------- E:\Programmer\TomTom HOME
2007-09-18 23:44 <DIR> d-------- E:\Documents and Settings\mikael\Application Data\AccurateRip
2007-09-18 23:36 <DIR> d-------- E:\Ny mappe
2007-09-18 23:31 <DIR> d-------- E:\Incomplete
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-14 13:12 --------- d-----w E:\Programmer\SUPERAntiSpyware
2007-10-14 13:07 --------- d-----w E:\Programmer\Fælles filer
2007-10-14 12:27 --------- d-----w E:\Documents and Settings\mikael\Application Data\SUPERAntiSpyware.com
2007-10-14 11:31 --------- d-----w E:\Programmer\Lexmark X1100 Series
2007-10-13 06:01 --------- d--h--w E:\Programmer\InstallShield Installation Information
2007-10-11 22:55 --------- d-----w E:\Programmer\Fælles filer\System
2007-10-11 22:13 --------- d-----w E:\Programmer\Screamer Radio
2007-10-11 15:12 --------- d-----w E:\Programmer\TPTEST5
2007-10-11 11:03 --------- d-----w E:\Programmer\Betsson Poker
2007-10-07 20:52 --------- d-----w E:\Programmer\LimeWire
2007-10-07 19:00 --------- d-----w E:\Documents and Settings\mikael\Application Data\AdobeUM
2007-10-05 11:57 --------- d-----w E:\Programmer\Fælles filer\Adobe
2007-09-18 21:48 --------- d-----w E:\Programmer\CD to MP3 Freeware
2007-09-06 10:09 801,144 ----a-w E:\WINDOWS\system32\aswBoot.exe
2007-09-06 10:05 94,416 ----a-w E:\WINDOWS\system32\drivers\aswmon2.sys
2007-09-06 10:05 92,848 ----a-w E:\WINDOWS\system32\drivers\aswmon.sys
2007-09-06 10:03 23,152 ----a-w E:\WINDOWS\system32\drivers\aswRdr.sys
2007-09-06 10:02 42,912 ----a-w E:\WINDOWS\system32\drivers\aswTdi.sys
2007-09-06 10:00 95,608 ----a-w E:\WINDOWS\system32\AvastSS.scr
2007-09-06 10:00 26,624 ----a-w E:\WINDOWS\system32\drivers\aavmker4.sys
2007-07-30 17:19 549,720 ----a-w E:\WINDOWS\system32\wuapi.dll
2007-07-30 17:19 43,352 ----a-w E:\WINDOWS\system32\wups2.dll
2007-07-30 17:19 325,976 ----a-w E:\WINDOWS\system32\wucltui.dll
2007-07-30 17:19 203,096 ----a-w E:\WINDOWS\system32\wuweb.dll
2007-07-30 17:18 33,624 ----a-w E:\WINDOWS\system32\wups.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D39A900-0F3A-4C29-A254-3E65244FDC34}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Lexmark X1100 Series"="E:\Programmer\Lexmark X1100 Series\lxbkbmgr.exe" [2003-03-28 15:16]
"High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 17:07 E:\WINDOWS\system32\HdAShCut.exe]
"NvCplDaemon"="E:\WINDOWS\System32\NvCpl.dll" [2006-10-31 08:35]
"nwiz"="nwiz.exe" [2006-10-31 08:35 E:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="E:\WINDOWS\System32\NvMcTray.dll" [2006-10-31 08:35]
"avast!"="E:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-09-06 12:06]
"SunJavaUpdateSched"="E:\Programmer\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"PCSuiteTrayApplication"="E:\Programmer\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 13:20]
"Sony Ericsson PC Suite"="E:\Programmer\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 16:17]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2004-09-15 10:12 E:\WINDOWS\KHALMNPR.Exe]
"TomTomHOME.exe"="E:\Programmer\TomTom HOME 2\HOMERunner.exe" [2007-08-15 16:59]
"Adobe Photo Downloader"="E:\Programmer\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 11:09]
"Adobe Reader Speed Launcher"="E:\Programmer\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]
"SkyTel"="SkyTel.EXE" [2006-05-16 12:04 E:\WINDOWS\SkyTel.exe]
"pccguide.exe"="E:\Programmer\Trend Micro\Internet Security 2006\pccguide.exe" [2005-12-06 17:49]
"RTHDCPL"="RTHDCPL.EXE" [2006-12-19 05:12 E:\WINDOWS\RTHDCPL.exe]
"SoundMan"="SOUNDMAN.EXE" [2006-07-21 10:14 E:\WINDOWS\SoundMan.exe]
"AlcWzrd"="ALCWZRD.EXE" [2006-05-04 10:26 E:\WINDOWS\alcwzrd.exe]
"ISUSScheduler"="E:\Programmer\Fælles filer\InstallShield\UpdateService\issch.exe" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="E:\WINDOWS\System32\ctfmon.exe" [2002-09-16 14:00]
"MSMSGS"="E:\Programmer\Messenger\msmsgs.exe" [2004-11-15 16:18]
"swg"="E:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-09 15:00]
"SUPERAntiSpyware"="E:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-06-21 14:06]
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"Nokia.PCSync"=E:\Programmer\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
"swg"=E:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
E:\Documents and Settings\All Users\Menuen Start\Programmer\Start\
Logitech SetPoint.lnk - E:\Programmer\Logitech\SetPoint\SetPoint.exe [2007-05-21 06:28:59]
Microsoft Office.lnk - E:\Programmer\Microsoft Office\Office\OSA9.EXE [1999-02-17 21:05:56]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= E:\Programmer\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
E:\Programmer\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 E:\Programmer\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
"Authentication Packages"= msv1_0 nwprovau
S1 lusbaudio;Logitech USB-mikrofon;E:\WINDOWS\System32\drivers\OVSound2.sys
S3 LUsbKbd;Logitech SetPoint USB Keyboard Filter;E:\WINDOWS\System32\Drivers\LUsbKbd.Sys
S3 MyGuard;MyGuard;\??\E:\Programmer\MyGuard\MyGuard\MyGuard.SYS
S3 QCEmerald;Logitech QuickCam Web;E:\WINDOWS\System32\DRIVERS\OVCE.sys
S3 SE2Cbus;Sony Ericsson Device 044 Driver driver (WDM);E:\WINDOWS\System32\DRIVERS\SE2Cbus.sys
S3 SE2Cmdfl;Sony Ericsson Device 044 USB WMC Modem Filter;E:\WINDOWS\System32\DRIVERS\SE2Cmdfl.sys
S3 SE2Cmdm;Sony Ericsson Device 044 USB WMC Modem Driver;E:\WINDOWS\System32\DRIVERS\SE2Cmdm.sys
S3 SE2Cmgmt;Sony Ericsson Device 044 USB WMC Device Management Drivers (WDM);E:\WINDOWS\System32\DRIVERS\SE2Cmgmt.sys
S3 se2Cnd5;Sony Ericsson Device 044 USB Ethernet Emulation SEMC44 (NDIS);E:\WINDOWS\System32\DRIVERS\se2Cnd5.sys
S3 SE2Cobex;Sony Ericsson Device 044 USB WMC OBEX Interface;E:\WINDOWS\System32\DRIVERS\SE2Cobex.sys
S3 se2Cunic;Sony Ericsson Device 044 USB Ethernet Emulation SEMC44 (WDM);E:\WINDOWS\System32\DRIVERS\se2Cunic.sys
S3 SpyFighter;SpyFighter Guard Device;\??\E:\Programmer\SPYWAREfighter\spyfighter.sys
S3 SPYWAREfighterRP;SPYWAREfighterRP;"E:\Programmer\SPYWAREfighter\spfprc.exe"
*Newly Created Service* - CATCHME
.
**************************************************************************
catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-14 16:42:02
Windows 5.1.2600 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-10-14 16:42:27
.
--- E O F ---
********************************* ROOTCHK-(21-09-07)-LOG, by ejvindh
14-10-2007 16:38:33,92
The rootkits that are detected by this tool were not found.
********************************* ROOTCHK-LOG-end
catchme 0.3.1160 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-14 16:38:34
Windows 5.1.2600 Service Pack 1
scanning hidden processes ...
scanning hidden services & system hive ...
scanning hidden registry entries ...
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher]
"TracesProcessed"=dword:00000224
scanning hidden files ...
hidden processes: 0
hidden services: 0
hidden files: 0
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 10/14/2007 at 03:34 PM
Application Version : 3.9.1008
Core Rules Database Version : 3324
Trace Rules Database Version: 1325
Scan type : Complete Scan
Total Scan Time : 00:21:20
Memory items scanned : 152
Memory threats detected : 0
Registry items scanned : 5579
Registry threats detected : 0
File items scanned : 42008
File threats detected : 16
Adware.Tracking Cookie
E:\Documents and Settings\mikael\Cookies\mikael@windowsmedia[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@2o7[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@eas.apm.emediate[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@adtech[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@adserver.easyad[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@tradedoubler[2].txt
E:\Documents and Settings\mikael\Cookies\mikael@date.ventivmedia[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@ad.yieldmanager[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@advertising[2].txt
E:\Documents and Settings\mikael\Cookies\mikael@doubleclick[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@atdmt[2].txt
E:\Documents and Settings\mikael\Cookies\mikael@ad1.emediate[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@ads.realtechnetwork[2].txt
E:\Documents and Settings\mikael\Cookies\mikael@track.adform[1].txt
E:\Documents and Settings\mikael\Cookies\mikael@rotator.its.adjuggler[2].txt
E:\Documents and Settings\LocalService\Cookies\system@ehg-lexmark.hitbox[1].txt
