HiJack Log

Umiddelbar er du 'ren' ...
Oplever du problemer ?

Ja,CPU køre konstant imellem 5-50% når netkablet er på.
Kører den trådløs, er er den ok.
Så jeg skal nok prøve at fjerne SP1 (KB939653),men ville først ha` tjekket HJT-loggen.
Har du ellers nogle forslag til problemet ?

... Nu er det ikke alle (u)ønskede elementer som viser sig med en HiJackThis Log; hvis du har 'mod' på det så gennemfør proceduren herfra -> http://www.eksperten.dk/artikler/1123
PS: Brug stadig denne version af HJT -> http://www.trendsecure.com/portal/en-US/_download/HiJackThis.exe

ok ... gør det senere på dagen, når jeg er hos vedkommende. (Det er ikke min egen computer)

Her er 3 stk. logs.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:46:29, on 22-06-2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\Users\Ann\NOKIA-PC\Nokia PC Suite 6\PCSuite.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Windows\system32\igfxsrvc.exe
C:\Users\Ann\AppData\Local\Temp\RtkBtMnt.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\PC Connectivity Solution\Transports\NclIrSrv.exe
C:\Windows\system32\PhotoScreensaver.scr
C:\Users\Ann\Desktop\AT\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://uk.rd.yahoo.com/customize/ycomp/defaults/sp/*http://uk.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://da.intl.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://da.intl.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Gadwin PrintScreen 2.6] C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Users\Ann\NOKIA-PC\Nokia PC Suite 6\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "C:\Users\Ann\NOKIA-PC\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "C:\Users\Ann\NOKIA-PC\Nokia PC Suite 6\PcSync2.exe" /NoDialog (User 'Default user')
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Opslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\Windows\system32\brsvc01a.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: Trend Micro Beskyttelse mod spyware (PcScnSrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcScnSrv.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 8246 bytes


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 06/22/2008 at 06:10 PM

Application Version : 4.0.1154

Core Rules Database Version : 3487
Trace Rules Database Version: 1478

Scan type      : Quick Scan
Total Scan Time : 01:10:20

Memory items scanned      : 734
Memory threats detected  : 0
Registry items scanned    : 404
Registry threats detected : 0
File items scanned        : 28391
File threats detected    : 26

Adware.Tracking Cookie
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@e-2dj6wjlyugdpslo.stats.esomniture[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@e-2dj6wjlouhdjsdq.stats.esomniture[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@e-2dj6wjlosndpmgp.stats.esomniture[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@ad1.emediate[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@adopt.euroclick[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@ads.pointroll[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@adtech[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@banner2.fynskemedier[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@e-2dj6walyondzcgq.stats.esomniture[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@dyrefinder[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@e-2dj6wakyaocjoko.stats.esomniture[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@e-2dj6wfmikmcpscp.stats.esomniture[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@e-2dj6wjkogpajokq.stats.esomniture[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@e2.emediate[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@eas4.emediate[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@edcgruppen.112.2o7[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@edsa.122.2o7[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@ez-tracks[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@indextools[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@msnportal.112.2o7[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@paypal.112.2o7[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@qksrv[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@tribalfusion[2].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@spamfighter.112.2o7[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@track.adform[1].txt
    F:\Ann ... gl. bærbar\Documents and Settings\Ann\Cookies\ann@www.ez-tracks[1].txt




ComboFix 08-06-20.4 - Ann 2008-06-22 18:40:53.1 - NTFSx86
Microsoft® Windows Vista™ Home Basic  6.0.6001.1.1252.1.1030.18.984 [GMT 2:00]
Running from: C:\Users\Ann\Desktop\AT\ComboFix.exe
* Created a new restore point
.

(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Windows\system32\ACER.exe
C:\Windows\system32\x64

.
(((((((((((((((((((((((((  Files Created from 2008-05-22 to 2008-06-22  )))))))))))))))))))))))))))))))
.

2008-06-22 16:56 . 2008-06-22 16:56    <DIR>    d--------    C:\Users\Ann\AppData\Roaming\SUPERAntiSpyware.com
2008-06-22 16:56 . 2008-06-22 16:56    <DIR>    d--------    C:\Users\All Users\SUPERAntiSpyware.com
2008-06-22 16:56 . 2008-06-22 16:56    <DIR>    d--------    C:\ProgramData\SUPERAntiSpyware.com
2008-06-22 16:56 . 2008-06-22 16:56    <DIR>    d--------    C:\Program Files\SUPERAntiSpyware
2008-06-22 16:47 . 2008-06-22 16:47    <DIR>    d--------    C:\Program Files\Common Files\Wise Installation Wizard
2008-06-22 16:42 . 2008-06-22 16:42    <DIR>    d--------    C:\Program Files\CCleaner
2008-06-19 23:44 . 2008-06-19 23:44    <DIR>    d--------    C:\Program Files\FastStone Image Viewer
2008-06-19 23:41 . 2008-06-19 23:43    <DIR>    d--------    C:\Program Files\FastStone MaxView
2008-06-11 18:02 . 2008-04-25 04:12    1,383,424    --a------    C:\Windows\System32\mshtml.tlb
2008-06-11 18:02 . 2008-04-26 10:08    1,314,816    --a------    C:\Windows\System32\quartz.dll
2008-06-11 18:02 . 2008-04-25 06:35    826,880    --a------    C:\Windows\System32\wininet.dll
2008-06-11 18:02 . 2008-05-10 03:33    113,664    --a------    C:\Windows\System32\drivers\rmcast.sys
2008-06-04 23:58 . 2008-06-04 23:58    <DIR>    d--------    C:\Windows\Sun
2008-06-04 23:53 . 2008-06-04 23:53    <DIR>    d--------    C:\Users\All Users\Google
2008-06-04 23:53 . 2008-06-05 00:03    <DIR>    d--------    C:\Program Files\Google
2008-05-28 09:56 . 2008-03-08 04:08    4,240,384    --a------    C:\Windows\System32\GameUXLegacyGDFs.dll
2008-05-28 09:56 . 2008-03-08 06:21    1,695,744    --a------    C:\Windows\System32\gameux.dll
2008-05-26 18:20 . 2008-05-26 18:34    32,544    --a------    C:\Windows\king-uninstall.exe

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-22 16:27    ---------    d-----w    C:\Program Files\Common Files\Akamai
2008-06-12 08:10    ---------    d-----w    C:\Program Files\Windows Mail
2008-06-04 22:13    ---------    d-----w    C:\Program Files\Common Files\Adobe
2008-06-04 21:58    ---------    d-----w    C:\Program Files\Java
2008-05-28 13:55    ---------    d-----w    C:\Program Files\Trend Micro
2008-05-28 12:23    ---------    d-----w    C:\Users\Ann\AppData\Roaming\Skype
2008-05-28 12:22    ---------    d-----w    C:\Users\Ann\AppData\Roaming\skypePM
2008-05-19 13:45    ---------    d-----w    C:\Program Files\RealArcade
2008-05-08 21:31    0    ---ha-w    C:\Windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2008-05-02 14:22    205,328    ----a-w    C:\Windows\system32\drivers\tmxpflt.sys
2008-05-02 14:21    36,368    ----a-w    C:\Windows\system32\drivers\tmpreflt.sys
2008-05-02 14:17    1,169,240    ----a-w    C:\Windows\system32\drivers\vsapint.sys
2008-04-27 03:51    174    --sha-w    C:\Program Files\desktop.ini
2008-04-27 03:40    ---------    d-----w    C:\Program Files\Windows Sidebar
2008-04-27 03:40    ---------    d-----w    C:\Program Files\Windows Photo Gallery
2008-04-27 03:40    ---------    d-----w    C:\Program Files\Windows Defender
2008-04-27 03:40    ---------    d-----w    C:\Program Files\Windows Collaboration
2008-04-27 03:40    ---------    d-----w    C:\Program Files\Windows Calendar
2008-04-27 03:04    82,432    ----a-w    C:\Windows\System32\axaltocm.dll
2008-04-27 03:04    101,888    ----a-w    C:\Windows\System32\ifxcardm.dll
2008-02-13 23:08    32    ----a-w    C:\Users\All Users\ezsid.dat
2008-02-13 23:08    32    ----a-w    C:\ProgramData\ezsid.dat
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 09:33 1233920]
"Gadwin PrintScreen 2.6"="C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe" [2003-07-16 11:29 913408]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2008-02-29 16:03 1481968]
"PC Suite Tray"="C:\Users\Ann\NOKIA-PC\Nokia PC Suite 6\PCSuite.exe" [2007-12-10 11:12 695808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2007-05-29 02:29 4472832 C:\Windows\RtHDVCpl.exe]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-10-23 21:00 815104]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-07-12 17:36 178712]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-04-25 17:33 457216]
"WarReg_PopUp"="C:\Acer\WR_PopUp\WarReg_PopUp.exe" [2006-11-05 22:48 57344]
"pccguide.exe"="C:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe" [2007-03-08 04:43 3429904]
"SSBkgdUpdate"="C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-10-14 11:22 155648]
"PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" [2005-03-17 15:25 57393]
"IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" [2005-03-17 15:45 40960]
"BrMfcWnd"="C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe" [2007-02-15 15:29 622592]
"ControlCenter3"="C:\Program Files\Brother\ControlCenter3\brctrcen.exe" [2006-07-19 15:51 65536]
"IgfxTray"="C:\Windows\system32\igfxtray.exe" [2008-01-02 18:07 141848]
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [2008-01-02 18:06 166424]
"Persistence"="C:\Windows\system32\igfxpers.exe" [2008-01-02 18:07 133656]
"Skytel"="Skytel.exe" [2007-05-29 06:39 1826816 C:\Windows\SkyTel.exe]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 23:16 39792]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Nokia.PCSync"="C:\Users\Ann\NOKIA-PC\Nokia PC Suite 6\PcSync2.exe" [2007-11-07 18:35 1294336]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Empowering Technology Launcher.lnk - C:\Acer\Empowering Technology\eAPLauncher.exe [2007-07-11 12:20:29 535336]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 12:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 12:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKLM\~\startupfolder\C:^Users^Ann^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Kuma_Tray.lnk]
path=C:\Users\Ann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Kuma_Tray.lnk
backup=C:\Windows\pss\Kuma_Tray.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer Tour Reminder]
--a------ 2007-05-22 15:49 151552 C:\Acer\AcerTour\Reminder.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 23:16 39792 c:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
--a------ 2007-02-07 17:21 54832 C:\Program Files\CyberLink\PowerDVD\Language\Language.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
--a------ 2007-10-17 20:59 858632 C:\PROGRA~1\LAUNCH~1\LManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
--a------ 2007-12-10 11:12 695808 C:\Users\Ann\NOKIA-PC\Nokia PC Suite 6\PCSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--------- 2007-03-14 22:01 71216 C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
-ra------ 2008-02-01 18:22 21898024 C:\Program Files\Skype\Phone\Skype.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-02-01 10:13 185632 C:\Program Files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AutoUpdateDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\TrendFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{C5BC0AA5-C686-4735-8849-B04095AB96AB}"= C:\Program Files\CyberLink\PowerDVD\PowerDVD.EXE:CyberLink PowerDVD
"{55A9EDCE-9866-41B9-8F85-5571AFC0448B}"= UDP:9420:Red Swoosh
"{C3225729-9B5F-45FD-86F3-85C75E1F8415}"= TCP:5000:Red Swoosh

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"C:\\Acer\\Empowering Technology\\eDataSecurity\\eDSfsu.exe"= C:\Acer\Empowering Technology\eDataSecurity\eDSfsu.exe:*:Enabled:eDSfsu
"C:\\Acer\\Empowering Technology\\eDataSecurity\\encryption.exe"= C:\Acer\Empowering Technology\eDataSecurity\encryption.exe:*:Enabled:encryption
"C:\\Acer\\Empowering Technology\\eDataSecurity\\decryption.exe"= C:\Acer\Empowering Technology\eDataSecurity\decryption.exe:*:Enabled:decryption

R2 {95808DC4-FA4A-4c74-92FE-5B863F82066B};{95808DC4-FA4A-4c74-92FE-5B863F82066B};C:\Program Files\CyberLink\PowerDVD\000.fcl [2006-11-02 17:51]
R2 Akamai;Akamai;C:\Windows\System32\svchost.exe [2008-01-19 09:33]
R2 BcmSqlStartupSvc;Business Contact Manager SQL Starttjeneste;"C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe" [2008-01-16 12:01]
R3 igfx;igfx;C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-01-02 17:48]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\b57nd60x.sys [2007-02-09 00:03]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ);"C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ []
S3 WSVD;WSVD;C:\Windows\system32\drivers\WSVD.sys [2006-09-19 17:47]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork    REG_MULTI_SZ      PLA DPS BFE mpssvc
Akamai    REG_MULTI_SZ      Akamai

*Newly Created Service* - CATCHME
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-22 18:45:04
Windows 6.0.6001 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="\"C:\\Program Files\\Intel\\Intel Matrix Storage Manager\\Iaanotif.exe\""
.
Completion time: 2008-06-22 18:46:48
ComboFix-quarantined-files.txt  2008-06-22 16:46:20

Pre-Run: 43,649,343,488 byte ledig
Post-Run: 44,919,169,024 byte ledig

167    --- E O F ---    2008-06-12 08:05:32

Ikke noget at gi' af der...
Det _kan_ eks. være "Trend Micro\Internet Security 2007" der checker for opdateringer ...

Nej, har prøvet at lukke den ned (men....den kører jo også når msn kører trådløs)
Har lagt et spørgsmål i "Vista"
Tak for hjælpen, lægger du et svar.

msn = man

Ping...
(Det var et [svar]...)

Ta' gerne en oprydningstur med CCleaner som du allerede her...

???

CCleaner bruger jeg jævnligt.
Igen tak for hjælpen - beklager at ikke har accepteret før nu.

Takker for P.