Hej Spywarefri.
Jeg har anvendt Combofix og den har genereret medfølgende text file, som ikke siger mig noget. Jeg håber, at I har løst til at gi’ mig et feed back. På forhånd tak. PS. Til orientering så har jeg ikke bevist nogen problemer med min Pavilion 1209, så det var mere for at få lidt knowhow, hvis jeg skulle blive inficeret. Anvender Avast og Avira. MVH Svecon
ComboFix 10-03-11.06 - HP_Ejer 12-03-2010 18:50:42.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.45.1030.18.1214.683 [GMT 1:00]
Kører fra: c:\documents and settings\HP_Ejer.DIT-B8449E21E84\Skrivebord\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
AV: avast! antivirus 4.8.1368 [VPS 100312-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Webroot Internet Security Essentials *On-access scanning disabled* (Updated) {77E10C7F-2CCA-4187-9394-BDBC267AD597}
FW: Webroot Internet Security Essentials *disabled* {63671000-11A2-46DD-BADD-A084CABCDEAE}
.
((((((((((((((((((((((((((((((((((((((( Andet, der er slettet )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\All Users\Menuen Start\Programmer\Start\Bluetooth.lnk
C:\install.exe
c:\recycler\S-1-5-21-2009014944-499444254-910384454-1008
c:\recycler\S-1-5-21-2009014944-499444254-910384454-500
c:\recycler\S-1-5-21-2476700117-1340456052-362000389-1008
c:\windows\system32\ps2.bat
c:\windows\twain_16.dll
D:\Autorun.inf
.
((((((((((((((((((((((((((((( Filer skabt fra 2010-02-12 til 2010-03-12 )))))))))))))))))))))))))))))))))))
.
2010-03-11 11:14 . 2009-10-23 15:28 3558912 ———w- c:\windows\system32\dllcache\moviemk.exe
2010-02-18 13:13 . 2010-02-18 13:13 ———— d——-w- c:\programmer\Microsoft Silverlight
2010-02-18 12:23 . 2010-02-18 10:04 3550592 ——a-w- c:\programmer\procexp.exe
2010-02-15 17:41 . 2010-02-15 17:41 72488 ——a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.0.3.15\SetupAdmin.exe
2010-02-15 17:07 . 2010-02-15 17:07 ———— d——-w- c:\programmer\MSSOAP
2010-02-15 17:00 . 2010-02-15 17:00 164 ——a-w- c:\windows\install.dat
2010-02-14 21:37 . 2010-02-14 21:39 23655 ——a-w- c:\windows\hpqins15.dat
2010-02-14 18:45 . 2010-02-14 18:45 ———— d——-w- c:\documents and settings\HP_Ejer.DIT-B8449E21E84\Application Data\Malwarebytes
2010-02-14 18:45 . 2010-01-07 15:07 38224 ——a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-14 18:45 . 2010-02-14 18:45 ———— d——-w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-02-14 18:45 . 2010-01-07 15:07 19160 ——a-w- c:\windows\system32\drivers\mbam.sys
2010-02-14 18:45 . 2010-02-18 13:35 ———— d——-w- c:\programmer\Malwarebytes’ Anti-Malware
2010-02-11 20:20 . 2010-02-11 20:20 ———— d——-w- c:\programmer\Enigma Software Group
.
(((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-12 12:20 . 2004-12-03 19:32 428178 ——a-w- c:\windows\system32\perfh006.dat
2010-03-12 12:20 . 2004-12-03 19:32 77860 ——a-w- c:\windows\system32\perfc006.dat
2010-03-11 22:09 . 2008-02-10 17:24 5695 ——a-w- c:\windows\bthservsdp.dat
2010-03-07 10:05 . 2010-01-19 14:42 0 ——a-w- c:\documents and settings\HP_Ejer.DIT-B8449E21E84\temp.dat
2010-03-04 19:37 . 2007-11-29 17:29 ———— d——-w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-02-28 21:39 . 2009-09-03 15:24 ———— d——-w- c:\documents and settings\HP_Ejer.DIT-B8449E21E84\Application Data\HpUpdate
2010-02-28 11:59 . 2007-10-04 18:32 ———— d——-w- c:\programmer\RogueRemover FREE
2010-02-24 17:26 . 2009-09-26 16:48 57312 —-ha-w- c:\windows\system32\mlfcache.dat
2010-02-24 08:16 . 2010-01-07 19:32 181632 ———w- c:\windows\system32\MpSigStub.exe
2010-02-23 22:20 . 2005-01-03 02:36 ———— d——-w- c:\programmer\iTunes
2010-02-23 22:19 . 2005-01-03 02:36 ———— d——-w- c:\programmer\iPod
2010-02-23 22:19 . 2008-01-23 16:37 ———— d——-w- c:\programmer\Fælles filer\Apple
2010-02-23 19:52 . 2009-07-30 15:30 ———— d——-w- c:\documents and settings\HP_Ejer.DIT-B8449E21E84\Application Data\HPAppData
2010-02-15 17:42 . 2005-01-03 02:47 ———— d——-w- c:\programmer\Fælles filer\Symantec Shared
2010-02-02 18:11 . 2005-01-03 02:34 ———— d——-w- c:\programmer\Fælles filer\Adobe
2010-02-02 08:22 . 2010-01-31 18:26 ———— d——-w- c:\programmer\BitDefender
2010-02-01 22:26 . 2010-01-31 18:44 81984 ——a-w- c:\windows\system32\bdod.bin
2010-01-31 18:27 . 2010-01-31 18:25 ———— d——-w- c:\programmer\Fælles filer\BitDefender
2010-01-28 09:56 . 2009-07-09 11:55 72312 ——a-w- c:\documents and settings\HP_Ejer.DIT-B8449E21E84\Lokale indstillinger\Application Data\GDIPFONTCACHEV1.DAT
2010-01-26 17:35 . 2007-10-15 15:23 ———— d——-w- c:\programmer\MSECACHE
2010-01-24 22:36 . 2010-01-24 22:36 3584 ——a-r- c:\documents and settings\HP_Ejer.DIT-B8449E21E84\Application Data\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2010-01-24 22:36 . 2007-10-15 15:23 ———— d——-w- c:\programmer\Windows Installer Clean Up
2010-01-24 09:23 . 2009-09-23 20:36 ———— d——-w- c:\documents and settings\HP_Ejer.DIT-B8449E21E84\Application Data\Nokia
2010-01-17 11:22 . 2005-01-03 02:31 ———— d——-w- c:\programmer\Sonic
2010-01-16 20:04 . 2010-01-16 19:43 ———— d——-w- c:\documents and settings\All Users\Application Data\LogiShrd
2010-01-16 20:03 . 2010-01-16 20:03 ———— d——-w- c:\documents and settings\HP_Ejer.DIT-B8449E21E84\Application Data\Logitech
2010-01-16 19:43 . 2010-01-16 19:40 ———— d——-w- c:\programmer\Fælles filer\Logishrd
2010-01-16 19:43 . 2010-01-16 19:43 0 —-ha-w- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
2010-01-16 19:42 . 2010-01-16 19:42 0 —-ha-w- c:\windows\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf
2010-01-16 19:42 . 2010-01-16 19:42 0 —-ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2010-01-16 19:40 . 2010-01-16 19:40 ———— d——-w- c:\documents and settings\All Users\Application Data\Logitech
2010-01-16 19:40 . 2005-01-03 02:15 ———— d—h—w- c:\programmer\InstallShield Installation Information
2010-01-16 19:40 . 2008-12-07 18:16 ———— d——-w- c:\programmer\Logitech
2009-12-31 16:50 . 2004-08-27 11:00 353792 ——a-w- c:\windows\system32\drivers\srv.sys
2009-12-21 20:56 . 2009-12-21 20:56 12212040 ——a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe
2009-12-21 20:56 . 2009-12-21 20:56 13930312 ——a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe
2009-12-21 20:56 . 2009-12-21 20:56 77824 ——a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\Run_XML6_SP1.exe
2009-12-21 20:56 . 2009-12-21 20:56 61440 ——a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMF11Runx86.exe
2009-12-21 20:56 . 2009-12-21 20:56 58880 ——a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\WMF11Runx64.exe
2009-12-21 20:56 . 2009-12-21 20:56 50000 ——a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Installer\CommonCustomActions\pcswpc.exe
2009-12-21 20:55 . 2009-12-21 20:55 95992424 ——a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}\Nokia_Ovi_Suite_PCS_Update.exe
2009-12-21 19:08 . 2004-08-27 11:00 916480 ——a-w- c:\windows\system32\wininet.dll
2009-12-19 23:38 . 2009-12-19 23:38 95232 ——a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\pcswpcsi.exe
2009-12-19 23:38 . 2009-12-19 23:38 8192 ——a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstCCD.exe
2009-12-19 23:38 . 2009-12-19 23:38 61440 ——a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2009-12-19 23:38 . 2009-12-19 23:38 10240 ——a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCS.exe
2009-12-19 23:34 . 2009-12-19 23:39 33652688 ——a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Nokia_PC_Suite_7_1_40_1_dan.exe
2009-12-17 07:41 . 2004-08-27 12:00 344576 ——a-w- c:\windows\system32\mspaint.exe
2009-12-14 07:09 . 2004-08-27 12:00 33280 ——a-w- c:\windows\system32\csrsrv.dll
2004-05-07 13:31 . 2007-07-14 14:14 348160 -c—a-w- c:\programmer\mozilla firefox\components\MSVCR71.DLL
2006-06-02 04:39 . 2006-06-01 19:39 22 -csha-w- c:\windows\SMINST\HPCD.sys
.
((((((((((((((((((((((((((((((((((( Start steder i reg.basen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“SpybotSD TeaTimer”=“c:\programmer\Spybot - Search & Destroy\TeaTimer.exe” [2009-03-05 2260480]
“Uniblue SpyEraser”=“c:\programmer\Uniblue\SpyEraser\SpyEraser.exe” [2008-01-29 1424648]
“Uniblue SpeedUpMyPC”=“c:\programmer\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe” [2007-10-13 9495832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“hpsysdrv”=“c:\windows\system\hpsysdrv.exe” [1998-05-07 52736]
“ATIPTA”=“c:\programmer\ATI Technologies\ATI Control Panel\atiptaxx.exe” [2005-08-13 344064]
“Recguard”=“c:\windows\SMINST\RECGUARD.EXE” [2004-04-14 233472]
“AlcxMonitor”=“ALCXMNTR.EXE” [2004-09-07 57344]
“PS2”=“c:\windows\system32\ps2.exe” [2004-10-25 90112]
“HP Software Update”=“c:\programmer\HP\HP Software Update\HPWuSchd2.exe” [2008-12-08 54576]
“avgnt”=“c:\programmer\Avira\AntiVir Desktop\avgnt.exe” [2009-03-02 209153]
“avast!”=“c:\progra~1\ALWILS~1\Avast4\ashDisp.exe” [2009-11-24 81000]
“BluetoothAuthenticationAgent”=“bthprops.cpl” [2008-04-14 110592]
“SunJavaUpdateSched”=“c:\programmer\Java\jre6\bin\jusched.exe” [2009-10-11 149280]
“QuickTime Task”=“c:\programmer\QuickTime\QTTask.exe” [2009-11-10 417792]
“ISUSPM Startup”=“c:\progra~1\FLLESF~1\INSTAL~1\UPDATE~1\ISUSPM.exe” [2004-07-27 221184]
“ISUSScheduler”=“c:\programmer\Fælles filer\InstallShield\UpdateService\issch.exe” [2004-07-27 81920]
“Windows Defender”=“c:\programmer\Windows Defender\MSASCui.exe” [2006-11-03 866584]
“Kernel and Hardware Abstraction Layer”=“KHALMNPR.EXE” [2009-06-17 55824]
“Adobe Reader Speed Launcher”=“c:\programmer\Adobe\Reader 9.0\Reader\Reader_sl.exe” [2009-12-22 35760]
“Adobe ARM”=“c:\programmer\Fælles filer\Adobe\ARM\1.0\AdobeARM.exe” [2009-12-11 948672]
“AppleSyncNotifier”=“c:\programmer\Fælles filer\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe” [2010-02-17 177472]
“iTunesHelper”=“c:\programmer\iTunes\iTunesHelper.exe” [2010-02-15 141608]
c:\documents and settings\All Users\Menuen Start\Programmer\Start\
HP Digital Imaging Monitor.lnk - c:\programmer\HP\Digital Imaging\bin\hpqtra08.exe [2008-3-25 214360]
Logitech Desktop Messenger.lnk - c:\programmer\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-12-7 66864]
Logitech SetPoint.lnk - c:\programmer\Logitech\SetPoint\SetPoint.exe [2010-1-16 813584]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 11:28 72208 ——a-w- c:\programmer\Fælles filer\Logishrd\Bluetooth\LBTWLgn.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=”“
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@=“Service”
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WRConsumerService]
@=“Service”
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
“%windir%\\Network Diagnostic\\xpnetdiag.exe”=
“c:\\Programmer\\BitTorrent\\bittorrent.exe”=
“c:\\Programmer\\Bonjour\\mDNSResponder.exe”=
“c:\\Programmer\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe”=
“c:\\Programmer\\Logitech\\Logitech Harmony Remote Software 7\\HarmonyRemote.exe”=
“c:\\Programmer\\Fælles filer\\Nokia\\Service Layer\\A\\nsl_host_process.exe”=
“c:\\Programmer\\Nokia\\Nokia Ovi Suite\\NokiaOviSuite.exe”=
“c:\\Programmer\\Alwil Software\\Avast4\\ashAvast.exe”=
“c:\\WINDOWS\\system32\\sessmgr.exe”=
“c:\\Programmer\\HP\\Digital Imaging\\bin\\hpqste08.exe”=
“c:\\Programmer\\HP\\Digital Imaging\\bin\\hposid01.exe”=
“c:\\Programmer\\HP\\Digital Imaging\\bin\\hpqscnvw.exe”=
“c:\\Programmer\\HP\\Digital Imaging\\bin\\hpqkygrp.exe”=
“c:\\Programmer\\HP\\Digital Imaging\\bin\\hpoews01.exe”=
“c:\\Programmer\\HP\\HP Software Update\\hpwucli.exe”=
“c:\\Programmer\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe”=
“c:\\Programmer\\iTunes\\iTunes.exe”=
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [06-10-2009 17:30 114768]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\programmer\Avira\AntiVir Desktop\sched.exe [14-09-2009 21:17 108289]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [06-10-2009 17:30 20560]
R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [16-01-2010 20:43 10384]
R2 WinDefend;Windows Defender;c:\programmer\Windows Defender\MsMpEng.exe [03-11-2006 18:19 13592]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [14-10-2009 19:46 27632]
S2 WRConsumerService;Webroot Client Service;“c:\programmer\Webroot\WebrootSecurity\WRConsumerService.exe”—> c:\programmer\Webroot\WebrootSecurity\WRConsumerService.exe [?]
S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\drivers\s0016bus.sys [15-10-2009 19:48 89256]
S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\drivers\s0016mdfl.sys [15-10-2009 19:48 15016]
S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\drivers\s0016mdm.sys [15-10-2009 19:48 120744]
S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s0016mgmt.sys [15-10-2009 19:48 114216]
S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\drivers\s0016nd5.sys [15-10-2009 19:48 25512]
S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\drivers\s0016obex.sys [15-10-2009 19:48 110632]
S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\drivers\s0016unic.sys [15-10-2009 19:48 115752]
S3 USBAAPL;Apple Mobile USB Driver;c:\windows\system32\drivers\usbaapl.sys [26-09-2009 17:00 40448]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Indhold af mappen ‘Planlagte Opgaver’
2009-12-30 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmer\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-03-12 c:\windows\Tasks\MP Scheduled Scan.job
- c:\programmer\Windows Defender\MpCmdRun.exe [2006-11-03 17:20]
2010-03-12 c:\windows\Tasks\Norton Security Scan for HP_Ejer.job
- c:\programmer\Norton Security Scan\Nss.exe [2008-09-19 02:18]
2010-03-11 c:\windows\Tasks\Uniblue SpeedUpMyPC Nag.job
- c:\programmer\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe [2007-10-13 12:49]
2007-10-13 c:\windows\Tasks\Uniblue SpeedUpMyPC.job
- c:\programmer\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe [2007-10-13 12:49]
2010-03-12 c:\windows\Tasks\Uniblue SpyEraser Nag.job
- c:\programmer\Uniblue\SpyEraser\SpyEraser.exe [2007-10-11 08:13]
2009-09-11 c:\windows\Tasks\Uniblue SpyEraser.job
- c:\programmer\Uniblue\SpyEraser\SpyEraser.exe [2007-10-11 08:13]
2010-03-12 c:\windows\Tasks\User_Feed_Synchronization-{20696BF4-08D0-401E-972C-72CB2E624897}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
2010-03-12 c:\windows\Tasks\User_Feed_Synchronization-{2A4F790B-FDA2-4FEC-A89F-A43B46CB5C97}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
———- Yderligere scanning———-
.
uStart Page = hxxp://www.google.dk/
Trusted Zone: danskebank.dk
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\programmer\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
DPF: {4FEE6316-7B6F-4A6C-BD4E-4157C59A9E9D} - hxxp://static.s2g.gate5.de/ovi_maps/OviMaps_2.3.37.6.cab
DPF: {75AA409D-05F9-4F27-BD53-C7339D4B1D0A} - hxxp://mail.hasselblad.dk/dwa85W.cab
DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} - hxxps://netbank.danskebank.dk/html/activex/e-Safekey/DB/e-Safekey.cab
.
- - - - TOMME GENVEJE FJERNET - - - -
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
Notify-NavLogon - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-12 18:57
Windows 5.1.2600 Service Pack 3 NTFS
scanner skjulte processer ...
scanner skjulte autostarter ...
scanner skjulte filer ...
scanning gennemført med succes
skjulte filer: 0
**************************************************************************
.
——————————- DLLs startet under kørende Processer——————————-
- - - - - - - > ‘winlogon.exe’(596)
c:\windows\system32\Ati2evxx.dll
c:\programmer\fælles filer\logishrd\bluetooth\LBTWlgn.dll
c:\programmer\fælles filer\logishrd\bluetooth\LBTServ.dll
.
Gennemført tid: 2010-03-12 18:59:40
ComboFix-quarantined-files.txt 2010-03-12 17:59
ComboFix2.txt 2007-11-19 16:09
Pre-Kørsel: 96.049.758.208 byte ledig
Post-Kørsel: 96.897.536.000 byte ledig
- - End Of File - - C7CF5123894DC8844DCDAA7F75F8EC4A
