ComboFix 09-01-02.01 - HP_Ägaren 2009-01-04 21:29:29.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1053.18.1023.624 [GMT 1:00] Körs från: c:\documents and settings\HP_Ägaren\Skrivbord\ComboFix.exe * Skapade en ny återställningspunkt . ((((((((((((((((((((((((((((((((((((((( Andra raderingar )))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin1.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin10.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin100.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin101.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin102.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin103.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin104.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin105.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin106.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin107.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin108.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin109.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin11.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin110.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin111.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin112.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin113.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin114.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin115.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin116.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin117.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin118.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin119.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin12.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin120.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin121.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin122.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin123.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin124.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin125.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin126.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin127.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin128.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin129.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin13.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin130.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin131.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin132.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin133.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin134.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin135.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin136.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin137.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin138.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin139.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin14.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin140.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin141.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin15.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin16.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin17.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin18.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin19.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin2.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin20.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin21.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin22.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin23.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin24.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin25.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin26.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin27.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin28.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin29.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin3.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin30.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin31.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin32.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin33.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin34.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin35.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin36.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin37.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin38.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin39.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin4.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin40.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin41.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin42.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin43.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin44.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin45.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin46.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin47.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin48.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin49.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin5.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin50.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin51.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin52.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin53.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin54.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin55.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin56.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin57.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin58.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin59.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin6.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin60.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin61.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin62.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin63.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin64.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin65.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin66.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin67.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin68.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin69.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin7.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin70.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin71.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin72.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin73.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin74.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin75.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin76.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin77.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin78.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin79.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin8.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin80.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin81.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin82.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin83.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin84.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin85.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin86.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin87.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin88.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin89.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin9.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin90.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin91.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin92.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin93.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin94.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin95.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin96.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin97.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin98.zip c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin99.zip c:\documents and settings\HP_Ägaren\Favoriter\Cnsmin.url c:\windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb c:\windows\system32\wdmaud.sys D:\Autorun.inf . ((((((((((((((((((((( Filer Skapade från 2008-12-04 till 2009-01-04 )))))))))))))))))))))))))))))))))))) . 2009-01-04 20:49 . 2009-01-04 20:49 d-------- C:\_OTScanIt 2009-01-01 00:23 . 2009-01-01 00:23 d-------- c:\documents and settings\HP_Ägaren\Application Data\Malwarebytes 2009-01-01 00:23 . 2009-01-01 00:23 d-------- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-01-01 00:23 . 2008-12-03 19:52 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys 2009-01-01 00:23 . 2008-12-03 19:52 15,504 --a------ c:\windows\system32\drivers\mbam.sys 2008-12-29 21:04 . 2008-12-29 21:04 d-------- c:\documents and settings\User\Application Data\vlc 2008-12-29 21:04 . 2008-12-29 21:04 d-------- c:\documents and settings\User\Application Data\Media Player Classic 2008-12-29 14:58 . 2008-12-29 14:58 d-------- c:\documents and settings\User\Application Data\Magic Set Editor 2008-12-29 12:58 . 2008-12-29 12:58 d-------- c:\documents and settings\User\Application Data\Talkback 2008-12-29 12:51 . 2008-12-29 12:51 d-------- c:\documents and settings\User\Application Data\Grisoft 2008-12-29 12:50 . 2005-01-01 22:41 d-------- c:\documents and settings\User\WINDOWS 2008-12-29 12:50 . 2005-05-29 17:29 dr------- c:\documents and settings\User\Start-meny 2008-12-29 12:50 . 2008-12-29 12:56 d-------- c:\documents and settings\User\Skrivbord 2008-12-29 12:50 . 2005-01-01 21:42 d--h----- c:\documents and settings\User\Skrivare 2008-12-29 12:50 . 2005-01-01 21:42 d--h----- c:\documents and settings\User\Nätverket 2008-12-29 12:50 . 2008-12-29 12:51 dr------- c:\documents and settings\User\Mina dokument 2008-12-29 12:50 . 2005-05-29 17:32 d--h----- c:\documents and settings\User\Mallar 2008-12-29 12:50 . 2009-01-04 21:32 d--h----- c:\documents and settings\User\Lokala inställningar 2008-12-29 12:50 . 2008-12-29 12:51 dr------- c:\documents and settings\User\Favoriter 2008-12-29 12:50 . 2008-12-29 12:50 d-------- c:\documents and settings\User\Application Data\WTablet 2008-12-29 12:50 . 2005-01-02 18:47 d-------- c:\documents and settings\User\Application Data\Symantec 2008-12-29 12:50 . 2005-01-02 14:58 d-------- c:\documents and settings\User\Application Data\SampleView 2008-12-29 12:50 . 2005-01-01 22:33 d-------- c:\documents and settings\User\Application Data\Intervideo 2008-12-29 12:50 . 2005-01-01 22:41 d-------- c:\documents and settings\User\Application Data\Apple Computer 2008-12-29 12:50 . 2008-12-29 12:50 d-------- c:\documents and settings\User 2008-12-27 12:57 . 2008-12-27 12:57 d-------- c:\program\Delade filer\Wise Installation Wizard 2008-12-26 16:06 . 2008-12-26 16:06 d-------- c:\program\“Œ•û•¶‰Ô’Ÿ 2008-12-25 12:57 . 2008-12-26 00:14 d-------- c:\documents and settings\All Users\Application Data\Microsoft Help 2008-12-25 12:56 . 2008-12-25 12:56 d-------- c:\program\Microsoft SDKs 2008-12-25 01:02 . 2008-12-25 12:55 d-------- c:\windows\system32\XPSViewer 2008-12-25 01:02 . 2008-12-25 01:02 d-------- c:\program\MSBuild 2008-12-25 01:01 . 2008-12-25 01:01 d-------- c:\program\Reference Assemblies 2008-12-25 01:01 . 2008-07-06 13:06 1,676,288 --------- c:\windows\system32\xpssvcs.dll 2008-12-25 01:01 . 2008-07-06 13:06 1,676,288 -----c--- c:\windows\system32\dllcache\xpssvcs.dll 2008-12-25 01:01 . 2008-07-06 11:50 597,504 -----c--- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2008-12-25 01:01 . 2008-07-06 13:06 575,488 --------- c:\windows\system32\xpsshhdr.dll 2008-12-25 01:01 . 2008-07-06 13:06 575,488 -----c--- c:\windows\system32\dllcache\xpsshhdr.dll 2008-12-25 01:01 . 2008-07-06 13:06 117,760 --------- c:\windows\system32\prntvpt.dll 2008-12-25 01:01 . 2008-07-06 13:06 89,088 -----c--- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2008-12-25 00:56 . 2008-12-25 00:56 d-------- c:\program\MSXML 6.0 . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-01-04 19:58 --------- d-----w c:\documents and settings\HP_Ägaren\Application Data\WTablet 2008-12-29 20:04 --------- d-----w c:\documents and settings\User\Application Data\vlc 2008-12-27 14:35 --------- d-----w c:\program\Spybot - Search & Destroy 2008-12-27 11:59 --------- d-----w c:\documents and settings\All Users\Application Data\Lavasoft 2008-12-27 11:48 --------- d--h--w c:\program\InstallShield Installation Information 2008-11-23 11:21 --------- d-----w c:\program\ESET 2008-11-23 11:21 --------- d-----w c:\documents and settings\All Users\Application Data\ESET 2008-11-23 10:59 --------- d-----w c:\program\Delade filer\Symantec Shared 2008-10-16 13:13 202,776 ----a-w c:\windows\system32\wuweb.dll 2008-10-16 13:13 1,809,944 ----a-w c:\windows\system32\wuaueng.dll 2008-10-16 13:12 561,688 ----a-w c:\windows\system32\wuapi.dll 2008-10-16 13:12 323,608 ----a-w c:\windows\system32\wucltui.dll 2008-10-16 13:09 92,696 ----a-w c:\windows\system32\cdm.dll 2008-10-16 13:09 51,224 ----a-w c:\windows\system32\wuauclt.exe 2008-10-16 13:09 43,544 ----a-w c:\windows\system32\wups2.dll 2008-10-16 13:08 34,328 ----a-w c:\windows\system32\wups.dll 2008-10-16 10:40 659,968 ----a-w c:\windows\system32\wininet.dll 2008-08-22 20:28 604 ---ha-w c:\program\STLL Notifier 2008-12-21 10:39 67,688 ----a-w c:\program\mozilla firefox\components\jar50.dll 2008-12-21 10:39 54,368 ----a-w c:\program\mozilla firefox\components\jsd3250.dll 2008-12-21 10:39 34,944 ----a-w c:\program\mozilla firefox\components\myspell.dll 2008-12-21 10:39 46,712 ----a-w c:\program\mozilla firefox\components\spellchk.dll 2008-12-21 10:39 172,136 ----a-w c:\program\mozilla firefox\components\xpinstal.dll 2006-02-24 20:20 0 --sha-w c:\windows\SMINST\HPCD.sys . (((((((((((((((((((((((((((((((((((( Startpunkter i registret ))))))))))))))))))))))))))))))))))))))))))))))) . . *Not* tomma poster & legitima standardposter visas inte REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSMSGS"="c:\program\Messenger\msmsgs.exe" [2004-10-13 1694208] "Acme.PCHButton"="c:\program\HELPAN~1\HPQ\XPXWWPP5\plugin\bin\pchbutton.exe" [2005-01-01 159744] "Eraser"="c:\temporary programs\Eraser\eraser.exe" [2006-08-07 634880] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360] "updateMgr"="c:\program\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 313472] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-08-20 155648] "HPHUPD06"="c:\program\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe" [2004-06-07 49152] "HPHmon06"="c:\windows\system32\hphmon06.exe" [2004-06-07 659456] "KBD"="c:\hp\KBD\KBD.EXE" [2003-02-11 61440] "Home Theater SchSvr"="c:\program\Delade filer\InterVideo\SchSvr\SchSvr.exe" [2004-09-23 106496] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-12-05 8523776] "PS2"="c:\windows\system32\ps2.exe" [2002-10-16 81920] "CTDVDDET"="c:\program\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE" [2003-06-18 45056] "UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112] "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2004-10-14 253952] "WINCINEMAMGR"="c:\program\InterVideo\Common\Bin\WinRemote.exe" [2004-10-19 192512] "OpwareSE2"="c:\program\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 49152] "QuickTime Task"="c:\program\QuickTime\qttask.exe" [2005-01-01 98304] "SunJavaUpdateSched"="c:\program\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 132496] "!AVG Anti-Spyware"="c:\miniprogram\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 6731312] "WINREMOTE"="c:\program\InterVideo\Common\Bin\WinRemote.exe" [2004-10-19 192512] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-12-05 81920] "egui"="c:\program\ESET\ESET NOD32 Antivirus\egui.exe" [2007-11-14 1410304] "nwiz"="nwiz.exe" [2007-12-05 c:\windows\system32\nwiz.exe] "SiSPower"="SiSPower.dll" [2004-09-24 c:\windows\system32\SiSPower.dll] "CTHelper"="CTHELPER.EXE" [2003-11-14 c:\windows\system32\CTHELPER.EXE] "AGRSMMSG"="AGRSMMSG.exe" [2005-03-04 c:\windows\AGRSMMSG.exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "StartMS"="c:\program\Creative\Shared Files\Media Sniffer\StartMS.EXE" [2003-03-26 57344] "CMSRegOW.exe"="c:\program\InstallShield Installation Information\{56F3E1FF-54FE-4384-A153-6CCABA097814}\CMSRegOW.exe" [2003-06-16 57344] "SetDefaultMIDI"="MIDIDEF.EXE" [2003-06-21 c:\windows\MIDIDEF.EXE] c:\documents and settings\All Users\Start-meny\Program\Autostart\ Adobe Reader Speed Launch.lnk - c:\program\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 29696] HP Digital Imaging Monitor.lnk - c:\program\HP\Digital Imaging\bin\hpqtra08.exe [2004-05-29 241664] Microsoft Office.lnk - c:\program\Microsoft Office\Office10\OSA.EXE [2001-02-13 83360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "vidc.ffds"= c:\minipr~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll "aux"= wdmaud.sys [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\[u]0[/u]lsdelete [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program\\Bonjour\\mDNSResponder.exe"= R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2007-11-14 30728] R3 PhTVTune;ASUS WDM TV Tuner;c:\windows\system32\drivers\PhTVTune.sys [2005-01-01 24608] R4 ekrn;Eset Service;c:\program\ESET\ESET NOD32 Antivirus\ekrn.exe [2007-11-14 455936] R4 TabletServiceWacom;TabletServiceWacom;c:\windows\system32\Wacom_Tablet.exe [2008-04-07 1373480] S3 ELECTRO;ELECTRO;c:\windows\system32\drivers\electro.sys [2007-01-14 34260] S3 NMG2USB;NMG2USB;c:\windows\system32\drivers\nmg2usb.sys [2008-06-14 19880] S4 Automatisk LiveUpdate-schemaläggare;Automatisk LiveUpdate-schemaläggare;"c:\program\Symantec\LiveUpdate\ALUSchedulerSvc.exe" --> c:\program\Symantec\LiveUpdate\ALUSchedulerSvc.exe [?] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K] \Shell\AutoRun\command - K:\LaunchU3.exe -a [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{35c8db25-4da5-11dd-9dd4-0011d84964c2}] \Shell\AutoRun\command - k:\wd_windows_tools\WDSetup.exe *Newly Created Service* - CATCHME *Newly Created Service* - PROCEXP90 . - - - - FÖRÄLDRALÖSA POSTER SOM TAGITS BORT - - - - HKLM-Run-VTTimer - VTTimer.exe . ------- Extra genomsökning ------- . uStart Page = hxxp://www.google.se/ uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=SV_SE&c=Q105&bd=pavilion&pf=desktop mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=SV_SE&c=Q105&bd=pavilion&pf=desktop uInternet Settings,ProxyOverride = *.local IE: E&xportera till Microsoft Excel - c:\program\MICROS~2\Office10\EXCEL.EXE/3000 IE: Easy-WebPrint Add To Print List - c:\program\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html IE: Easy-WebPrint High Speed Print - c:\program\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html IE: Easy-WebPrint Preview - c:\program\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html IE: Easy-WebPrint Print - c:\program\Canon\Easy-WebPrint\Resource.dll/RC_Print.html FF - ProfilePath - c:\documents and settings\HP_Ägaren\Application Data\Mozilla\Firefox\Profiles\fzsrrstk.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - component: c:\program\Mozilla Firefox\\components\xpinstal.dll FF - component: c:\program\Mozilla Firefox\extensions\talkback@mozilla.org\components\qfaservices.dll . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-01-04 21:34:12 Windows 5.1.2600 Service Pack 2 NTFS genomsöker dolda processer ... genomsöker dolda autostartpunkter ... genomsöker dolda filer ... genomsökningen avslutades lyckosamt dolda filer: 0 ************************************************************************** . Sluttid: 2009-01-04 21:36:08 ComboFix-quarantined-files.txt 2009-01-04 20:35:09 Före genomsökningen: 193 298 268 160 byte ledigt Efter genomsökningen: 193,565,597,696 byte ledigt 332 --- E O F --- 2008-12-31 22:22:21