Explorer segt i Vista

[olak]

Hej, jag har fått hjälp av Cecilia här tidigare, nu skulle jag behöva din hjälp igen. Denna gång har jag en bärbar PC med Vista Home premium.

För ca en vecka sen uppdaterade jag till Explorer 8, några dagar efter det hände nånting, det har blivit hur segt som helst. Jag ha en loggfil från hijackthis. Vill du kolla på den och se om du hittar nåt, eller ska jag avinstallera IE 8 ?

Tacksam för hjälp

//Ola

 

[log]Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 22:34:02, on 2009-05-10

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\taskeng.exe

C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Program Files\ASUS\SmartLogon\sensorsrv.exe

C:\Program Files\ASUS\ASUS Live Update\ALU.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files\ATKOSD2\ATKOSD2.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\ASUS\ATK Media\DMedia.exe

C:\Windows\ASScrPro.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe

C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Personal\bin\Personal.exe

C:\Program Files\Synaptics\SynTP\SynAsus.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\conime.exe

C:\Windows\system32\Taskmgr.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com'>http://www.asus.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.eliteprospects.com/index.php

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"

O4 - HKLM\..\Run: [P2Go_Menu] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe

O4 - HKLM\..\Run: [ChkMail] C:\Program Files\ChkMail\ChkMail\ChkMail.exe

O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\AsScrProlog.exe

O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe

O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule

O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"

O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"

O4 - HKLM\..\Run: [OPSE reminder] "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe" -r "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\ereg.ini"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [uniblue Registry Booster] C:\Program Files\Uniblue\Registry Booster\RegistryBooster.exe /S

O4 - HKCU\..\RunOnce: [shockwave Updater] C:\Windows\system32\Adobe\Shockwave 11\SwHelper_1150595.exe -Update -1150595 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; InfoPath.2; .NET CLR 3.5.30729; .NET CLR 3.0.30618; OfficeLiveConnector.1.3; OfficeLivePatch.0.0)" -"http://www.solux.se/bygghjalpen/load.asp?id=JNRMEOM0"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKAL TJÄNST')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKAL TJÄNST')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NÄTVERKSTJÄNST')

O4 - Global Startup: Personal.lnk = C:\Program Files\Personal\bin\Personal.exe

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: Skicka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Ski&cka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O13 - Gopher Prefix:

O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-09.sun.com/s/ESD7/JSCDL/jdk/6u13-b03/jinstall-6u13-windows-i586-jc.cab?e=1241986937372&h=f8436e0f472788b895fde4a3cb9dc7b0/&filename=jinstall-6u13-windows-i586-jc.cab

O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll

O20 - AppInit_DLLs: APSHook.dll

O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe

O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe

O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe

O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe

O23 - Service: getPlus® Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE

O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

O23 - Service: AMD Safely Remove Disk Drive (SafeRemove) - AMD - C:\Program Files\AMD\Safely Remove Disk\SafeRemoveService.exe

O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe

O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe

 

--

End of file - 11908 bytes

[/log]

 

[Cecilia]

Vistas kontroll av användarkonto (UAC) är mycket bra på stoppa skadliga program från att installeras, se t ex:

http://www.idg.se/2.1085/1.164287

http://www.idg.se/2.1085/1.166702

Kontrollera att den är påslagen:

Kontrollpanelen - Säkerhetscenter - Andra säkerhetsinställningar

 

Jag kan inte se något skadligt i den loggen men vi kan kolla vad det har kommit för filer senaste veckan. Vi kan se vad DDS visar till att börja med. Ladda ner DDS till Skrivbordet.

http://download.bleepingcomputer.com/sUBs/dds.scr

 

Starta programmet (i Vista högerklicka och Kör som administratör).

Tryck Yes/Ja på frågan om Optional Scan.

I ditt svar bifogar du de två loggarna DSS.txt och Attach.txt.

 

[olak]

tack för hjälpen med hijack-loggen, jo jag har UAC på slaget. Här kommer loggfiler från DDS, får se om det kan ge nåt.

[log]

DDS (Ver_09-03-16.01) - NTFSx86

Run by Ola at 21:10:31,31 on 2009-05-11

Internet Explorer: 8.0.6001.18702

Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.46.1053.18.2430.962 [GMT 2:00]

 

 

============== Running Processes ===============

 

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\System32\svchost.exe -k Cognizance

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\system32\Ati2evxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\Ati2evxx.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\ATK Hotkey\ASLDRSrv.exe

C:\Program Files\ATKGFNEX\GFNEXSrv.exe

C:\Windows\system32\WLANExt.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\agrsmsvc.exe

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files\AMD\Safely Remove Disk\SafeRemoveService.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Windows\system32\SafeRemoveDialog.exe

C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe

C:\Windows\Explorer.EXE

C:\Program Files\ATK Hotkey\Hcontrol.exe

C:\Program Files\ATK Hotkey\MsgTranAgt.exe

C:\Program Files\Wireless Console 2\wcourier.exe

C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe

C:\Program Files\P4G\BatteryLife.exe

C:\Program Files\ASUS\Splendid\ACMON.exe

C:\Windows\System32\ACEngSvr.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\ATK Hotkey\ATKOSD.exe

C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files\ATKOSD2\ATKOSD2.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\ATK Hotkey\KBFiltr.exe

C:\Program Files\ASUS\ATK Media\DMedia.exe

C:\Program Files\ChkMail\ChkMail\ChkMail.exe

C:\Program Files\ATK Hotkey\WDC.exe

C:\Windows\ASScrPro.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Personal\bin\Personal.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Synaptics\SynTP\SynAsus.exe

C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Windows\system32\LogonUI.exe

C:\Windows\system32\Ati2evxx.exe

C:\Program Files\ATK Hotkey\Hcontrol.exe

C:\Program Files\ATK Hotkey\MsgTranAgt.exe

C:\Program Files\Wireless Console 2\wcourier.exe

C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe

C:\Program Files\P4G\BatteryLife.exe

C:\Program Files\ASUS\Splendid\ACMON.exe

C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe

C:\Windows\system32\SafeRemoveDialog.exe

C:\Windows\System32\ACEngSvr.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\ATK Hotkey\ATKOSD.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\ASUS\SmartLogon\sensorsrv.exe

C:\Program Files\ATK Hotkey\KBFiltr.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\ASUS\ASUS Live Update\ALU.exe

C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files\ATK Hotkey\WDC.exe

C:\Program Files\ATKOSD2\ATKOSD2.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\ASUS\ATK Media\DMedia.exe

C:\Program Files\ChkMail\ChkMail\ChkMail.exe

C:\Windows\ASScrPro.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\Personal\bin\Personal.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\Synaptics\SynTP\SynAsus.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Users\Ola\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GT1XBIE2\dds[1].scr

C:\Windows\system32\conime.exe

C:\Windows\system32\wbem\wmiprvse.exe

 

============== Pseudo HJT Report ===============

 

uStart Page = hxxp://www.eliteprospects.com/index.php

uDefault_Page_URL = hxxp://www.asus.com

mDefault_Page_URL = hxxp://www.asus.com

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: NCO 2.0 IE BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\common files\symantec shared\coshared\browser\2.6\coIEPlg.dll

BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\progra~1\common~1\symant~1\ids\IPSBHO.dll

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

BHO: Windows Live inloggningshjälpen: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.3572\swg.dll

BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: ASUS Security Protect Manager: {df21f1db-80c6-11d3-9483-b03d0ec10000} - c:\program files\asus security center\asus security protect manager\bin\ItIEAddIn.dll

BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll

TB: Show Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\common files\symantec shared\coshared\browser\2.6\CoIEPlg.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll

TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll

TB: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File

uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun

uRun: [LightScribe Control Panel] c:\program files\common files\lightscribe\LightScribeControlPanel.exe -hidden

uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe

uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe

uRun: [uniblue Registry Booster] c:\program files\uniblue\registry booster\RegistryBooster.exe /S

uRunOnce: [shockwave Updater] c:\windows\system32\adobe\shockwave 11\SwHelper_1150595.exe -Update -1150595 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; InfoPath.2; .NET CLR 3.5.30729; .NET CLR 3.0.30618; OfficeLiveConnector.1.3; OfficeLivePatch.0.0)" -"http://www.solux.se/bygghjalpen/load.asp?id=JNRMEOM0"

mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

mRun: [CLMLServer] "c:\program files\cyberlink\power2go\CLMLSvc.exe"

mRun: [P2Go_Menu] "c:\program files\cyberlink\power2go\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\power2go" updatewithcreateonce "software\cyberlink\power2go\6.0"

mRun: [startCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun

mRun: [ATKOSD2] "c:\program files\atkosd2\ATKOSD2.exe"

mRun: [RtHDVCpl] RtHDVCpl.exe

mRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe

mRun: [ATKMEDIA] c:\program files\asus\atk media\DMedia.exe

mRun: [ChkMail] c:\program files\chkmail\chkmail\ChkMail.exe

mRun: [ASUS Camera ScreenSaver] c:\windows\AsScrProlog.exe

mRun: [ASUS Screen Saver Protector] c:\windows\ASScrPro.exe

mRun: [CognizanceTS] rundll32.exe c:\progra~1\asusse~1\asusse~1\bin\ASTSVCC.dll,RegisterModule

mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"

mRun: [osCheck] "c:\program files\norton 360\osCheck.exe"

mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"

mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"

mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot

mRun: [OpwareSE2] "c:\program files\scansoft\omnipagese2.0\OpwareSE2.exe"

mRun: [OPSE reminder] "c:\program files\scansoft\omnipagese2.0\eregeng\ereg.exe" -r "c:\program files\scansoft\omnipagese2.0\eregeng\ereg.ini"

mRun: [sunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"

mRun: [Control Center] c:\program files\levelone\mfp server control center\Control Center.exe -mini

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\personal.lnk - c:\program files\personal\bin\Personal.exe

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://dl8-cdn-09.sun.com/s/ESD7/JSCDL/jdk/6u13-b03/jinstall-6u13-windows-i586-jc.cab?e=1241986937372&h=f8436e0f472788b895fde4a3cb9dc7b0/&filename=jinstall-6u13-windows-i586-jc.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab

DPF: {D821DC4A-0814-435E-9820-661C543A4679} - hxxp://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx

Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll

Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll

AppInit_DLLs: APSHook.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

LSA: Notification Packages = scecli ASWLNPkg

 

============= SERVICES / DRIVERS ===============

 

R0 lullaby;lullaby;c:\windows\system32\drivers\lullaby.sys [2008-9-19 15416]

R1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\symantec\defini~1\symcdata\ipsdefs\20090506.001\IDSvix86.sys [2009-5-9 272432]

R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-4-28 9968]

R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-4-28 72944]

R2 ASBroker;Logon Session Broker;c:\windows\system32\svchost.exe -k Cognizance [2008-1-21 21504]

R2 ASChannel;Local Communication Channel;c:\windows\system32\svchost.exe -k Cognizance [2008-1-21 21504]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-3-28 101936]

R3 itecir;ITECIR Infrared Receiver;c:\windows\system32\drivers\itecir.sys [2008-9-19 49664]

R3 KUSBusByTCPMasterBus;Master Bus of Kernel USB Software Bus by TCP;c:\windows\system32\drivers\KUSBusByTCPMasterBus.sys [2007-7-20 48256]

R3 SYMNDISV;SYMNDISV;c:\windows\system32\drivers\symndisv.sys [2008-2-5 41008]

R3 usbfilter;AMD USB Filter Driver;c:\windows\system32\drivers\usbfilter.sys [2008-9-19 22072]

S3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mon.sys [2008-1-13 23888]

S3 getPlus® Helper;getPlus® Helper;c:\program files\nos\bin\getPlus_HelperSvc.exe [2009-4-6 33176]

S3 KUSBusByTCP;%KUSBusByUSB.SvcDesc%;c:\windows\system32\drivers\KUSBusByTCP.sys [2007-7-20 88192]

S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-4-28 7408]

S3 TdsNordecr;Nordea NCR1 SmartCard Reader;c:\windows\system32\drivers\nordecr.sys [2007-10-30 24064]

S3 zebrbus;Sony Ericsson Composite Device driver;c:\windows\system32\drivers\zebrbus.sys [2009-4-9 83200]

S3 zebrmdfl;Sony Ericsson Modem Filter;c:\windows\system32\drivers\zebrmdfl.sys [2009-4-9 14848]

S3 zebrmdm;Sony Ericsson Port (WDM);c:\windows\system32\drivers\zebrmdm.sys [2009-4-9 109568]

S3 zebrmdmc;Sony Ericsson mRouter Port (WDM);c:\windows\system32\drivers\zebrmdmc.sys [2009-4-9 109568]

 

=============== Created Last 30 ================

 

2009-05-11 20:09 <DIR> --d----- c:\program files\LevelOne

2009-05-10 22:33 <DIR> --d----- c:\program files\Trend Micro

2009-05-10 22:24 <DIR> --d----- c:\users\ola\.housecall6.6

2009-05-10 22:22 410,984 a------- c:\windows\system32\deploytk.dll

2009-05-10 21:06 <DIR> --d----- c:\program files\ESET

2009-05-09 20:06 <DIR> --d----- c:\users\ola\appdata\roaming\Registry Booster

2009-05-09 20:06 <DIR> --d----- c:\program files\Uniblue

2009-05-07 19:59 <DIR> --d----- c:\programdata\SUPERAntiSpyware.com

2009-05-07 19:59 <DIR> --d----- c:\progra~2\SUPERAntiSpyware.com

2009-05-07 19:58 <DIR> --d----- c:\users\ola\appdata\roaming\SUPERAntiSpyware.com

2009-05-07 19:58 <DIR> --d----- c:\program files\SUPERAntiSpyware

2009-05-07 19:57 <DIR> --d----- c:\program files\common files\Wise Installation Wizard

2009-05-06 23:10 <DIR> --d----- c:\programdata\Uniblue

2009-05-06 23:10 <DIR> --d----- c:\progra~2\Uniblue

2009-05-06 23:10 20,232 a------- c:\windows\system32\AntiSpyNative64.exe

2009-05-06 23:10 16,648 a------- c:\windows\system32\AntiSpyNative32.exe

2009-05-06 22:09 <DIR> --d----- c:\users\ola\appdata\roaming\Uniblue

2009-05-06 18:37 354,692,053 a------- c:\windows\MEMORY.DMP

2009-05-06 18:22 <DIR> --d----- c:\programdata\SSScanWizard

2009-05-06 18:22 <DIR> --d----- c:\programdata\SSScanAppDataDir

2009-05-06 18:22 <DIR> --d----- c:\progra~2\SSScanWizard

2009-05-06 18:22 <DIR> --d----- c:\progra~2\SSScanAppDataDir

2009-05-06 18:22 532 a------- c:\windows\MAXLINK.INI

2009-05-06 18:22 <DIR> --d----- c:\program files\ScanSoft

2009-05-06 18:22 <DIR> --d----- c:\program files\common files\ScanSoft Shared

2009-05-06 18:20 212,480 a------- c:\windows\PCDLIB32.DLL

2009-05-06 18:19 <DIR> --d----- c:\windows\StartHtmico

2009-05-06 18:11 <DIR> --d----- c:\program files\Canon

2009-05-06 18:09 <DIR> --d----- c:\program files\common files\Canon

2009-05-01 15:39 <DIR> --d----- c:\users\ola\Tracing

2009-05-01 15:29 3,426,072 a------- c:\windows\system32\d3dx9_32.dll

2009-05-01 15:29 <DIR> --d----- c:\program files\Microsoft SQL Server Compact Edition

2009-05-01 15:28 <DIR> --d----- c:\program files\Microsoft

2009-05-01 15:28 <DIR> --d----- c:\program files\Windows Live SkyDrive

2009-05-01 12:12 <DIR> --d----- c:\program files\common files\Windows Live

2009-04-27 18:06 <DIR> --d-h--- c:\programdata\CanonBJ

2009-04-25 20:48 <DIR> --d----- c:\windows\system32\nordea

2009-04-25 20:48 <DIR> --d----- c:\program files\Nordea NCR1 Installationspaket

2009-04-25 20:29 <DIR> --d----- c:\users\ola\appdata\roaming\Personal

2009-04-25 20:26 <DIR> --d----- c:\program files\Personal

2009-04-22 21:57 <DIR> --d----- c:\users\ola\appdata\roaming\PeerNetworking

2009-04-22 19:57 <DIR> --d----- c:\users\ola\appdata\roaming\GrabPro

2009-04-22 19:57 <DIR> --d----- C:\downloads

2009-04-21 21:55 <DIR> --d----- c:\program files\Audacity

2009-04-16 17:07 72,704 a------- c:\windows\system32\secur32.dll

2009-04-16 17:07 24,064 a------- c:\windows\system32\amxread.dll

2009-04-16 17:07 13,824 a------- c:\windows\system32\apilogen.dll

 

==================== Find3M ====================

 

2009-05-11 17:32 45,056 a------- c:\windows\system32\acovcnt.exe

2009-05-07 21:09 597,836 a------- c:\windows\system32\perfh01D.dat

2009-05-07 21:09 117,416 a------- c:\windows\system32\perfc01D.dat

2009-05-01 15:38 86,016 a------- c:\windows\inf\infstrng.dat

2009-05-01 15:38 51,200 a------- c:\windows\inf\infpub.dat

2009-05-01 15:38 86,016 a------- c:\windows\inf\infstor.dat

2009-04-12 08:40 84 a---h--- c:\programdata\aspg.dat

2009-04-12 08:40 84 a---h--- c:\progra~2\aspg.dat

2009-03-28 02:14 123,952 a------- c:\windows\system32\drivers\SYMEVENT.SYS

2009-03-28 02:14 10,563 a------- c:\windows\system32\drivers\SYMEVENT.CAT

2009-03-28 02:14 805 a------- c:\windows\system32\drivers\SYMEVENT.INF

2009-03-23 17:00 667,136 a------- c:\windows\system32\OGACheckControl.dll

2009-03-17 05:38 40,960 a------- c:\windows\apppatch\apihex86.dll

2009-03-08 13:34 914,944 a------- c:\windows\system32\wininet.dll

2009-03-08 13:34 43,008 a------- c:\windows\system32\licmgr10.dll

2009-03-08 13:33 18,944 a------- c:\windows\system32\corpol.dll

2009-03-08 13:33 109,056 a------- c:\windows\system32\iesysprep.dll

2009-03-08 13:33 109,568 a------- c:\windows\system32\PDMSetup.exe

2009-03-08 13:33 132,608 a------- c:\windows\system32\ieUnatt.exe

2009-03-08 13:33 107,520 a------- c:\windows\system32\RegisterIEPKEYs.exe

2009-03-08 13:33 107,008 a------- c:\windows\system32\SetIEInstalledDate.exe

2009-03-08 13:33 103,936 a------- c:\windows\system32\SetDepNx.exe

2009-03-08 13:33 420,352 a------- c:\windows\system32\vbscript.dll

2009-03-08 13:32 72,704 a------- c:\windows\system32\admparse.dll

2009-03-08 13:32 71,680 a------- c:\windows\system32\iesetup.dll

2009-03-08 13:32 66,560 a------- c:\windows\system32\wextract.exe

2009-03-08 13:32 169,472 a------- c:\windows\system32\iexpress.exe

2009-03-08 13:31 34,816 a------- c:\windows\system32\imgutil.dll

2009-03-08 13:31 48,128 a------- c:\windows\system32\mshtmler.dll

2009-03-08 13:31 45,568 a------- c:\windows\system32\mshta.exe

2009-03-08 13:22 156,160 a------- c:\windows\system32\msls31.dll

2009-03-03 06:46 3,599,328 a------- c:\windows\system32\ntkrnlpa.exe

2009-03-03 06:46 3,547,632 a------- c:\windows\system32\ntoskrnl.exe

2009-03-03 06:39 183,296 a------- c:\windows\system32\sdohlp.dll

2009-03-03 06:39 551,424 a------- c:\windows\system32\rpcss.dll

2009-03-03 06:39 26,112 a------- c:\windows\system32\printfilterpipelineprxy.dll

2009-03-03 06:37 98,304 a------- c:\windows\system32\iasrecst.dll

2009-03-03 06:37 54,784 a------- c:\windows\system32\iasads.dll

2009-03-03 06:37 44,032 a------- c:\windows\system32\iasdatastore.dll

2009-03-03 05:04 666,624 a------- c:\windows\system32\printfilterpipelinesvc.exe

2009-03-03 04:38 17,408 a------- c:\windows\system32\iashost.exe

2009-03-02 20:10 67,584 a------- c:\windows\system32\ff_vfw.dll

2009-02-13 10:49 1,255,936 a------- c:\windows\system32\lsasrv.dll

2008-09-19 03:39 665,600 a------- c:\windows\inf\drvindex.dat

2008-04-29 08:11 290,490 a------- c:\windows\inf\perflib\041d\perfi.dat

2008-04-29 08:11 290,490 a------- c:\windows\inf\perflib\041d\perfh.dat

2008-04-29 08:11 35,978 a------- c:\windows\inf\perflib\041d\perfd.dat

2008-04-29 08:11 35,978 a------- c:\windows\inf\perflib\041d\perfc.dat

2008-01-21 04:43 174 a--sh--- c:\program files\desktop.ini

2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat

2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat

2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat

2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat

 

============= FINISH: 21:11:43,26 ===============

[/log][log]UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

 

DDS (Ver_09-03-16.01)

 

Microsoft® Windows Vista™ Home Premium

Boot Device: \Device\HarddiskVolume2

Install Date: 2008-09-19 02:30:39

System Uptime: 2009-05-11 16:56:32 (5 hours ago)

 

Motherboard: PEGATRON CORPORATION | | M70TL

Processor: AMD Turion X2 Dual-Core Mobile RM-70 | CPU 1 | 1000/200mhz

 

==== Disk Partitions =========================

 

C: is FIXED (NTFS) - 149 GiB total, 76,492 GiB free.

D: is FIXED (NTFS) - 139 GiB total, 124,282 GiB free.

E: is CDROM ()

 

==== Disabled Device Manager Items =============

 

==== System Restore Points ===================

 

RP118: 2009-05-03 19:15:41 - Schemalagd kontrollpunkt

RP119: 2009-05-06 14:47:09 - Schemalagd kontrollpunkt

RP121: 2009-05-06 18:20:12 - Installed PhotoStudio

RP122: 2009-05-06 18:22:07 - installerades

RP123: 2009-05-06 18:33:24 - Installed MFP Server Control Center

RP125: 2009-05-06 19:20:41 - Removed MFP Server Control Center

RP126: 2009-05-06 20:22:24 - Installed MFP Server Control Center

RP127: 2009-05-06 21:00:54 - Removed MFP Server Control Center

RP128: 2009-05-06 21:37:24 - Installed MFP Server Control Center

RP129: 2009-05-07 19:57:17 - Installed SUPERAntiSpyware Free Edition

RP130: 2009-05-08 13:56:37 - Schemalagd kontrollpunkt

RP131: 2009-05-09 15:12:27 - Windows Update

RP132: 2009-05-09 16:31:13 - Windows Update

RP133: 2009-05-09 16:54:39 - Återställningsåtgärd

RP134: 2009-05-09 17:03:11 - Återställningsåtgärd

RP135: 2009-05-10 22:21:21 - Installed Java 6 Update 13

RP136: 2009-05-11 20:08:58 - Installed MFP Server Control Center

 

==== Installed Programs ======================

 

2007 Microsoft Office system

Adobe Flash Player 10 ActiveX

Adobe Reader 9.1 - Svenska

Adobe Shockwave Player 11.5

Agere Systems HDA Modem

AMD USB Audio Driver Filter

AppCore

ArcSoft PhotoStudio 5.5

ASUS CopyProtect

ASUS LifeFrame3

ASUS Live Update

ASUS Power4Gear Hybrid

ASUS Security Protect Manager

ASUS SmartLogon

ASUS Splendid Video Enhancement Technology

Asus_Camera_ScreenSaver

Atheros Client Installation Program

ATI Catalyst Install Manager

ATK Generic Function Service

ATK Hotkey

ATK Media

ATKOSD2

Audacity 1.2.6

AuthenTec Fingerprint Sensor Minimum Install

Backup

BitTorrent

Canon Inkjet Printer Driver Add-On Module

Canon MP Navigator 2.0

Canon Utilities Easy-PhotoPrint EX

Catalyst Control Center Core Implementation

Catalyst Control Center Graphics Full Existing

Catalyst Control Center Graphics Full New

Catalyst Control Center Graphics Light

Catalyst Control Center Graphics Previews Vista

Catalyst Control Center InstallProxy

Catalyst Control Center Localization Chinese Standard

Catalyst Control Center Localization Chinese Traditional

Catalyst Control Center Localization Czech

Catalyst Control Center Localization Danish

Catalyst Control Center Localization Dutch

Catalyst Control Center Localization Finnish

Catalyst Control Center Localization French

Catalyst Control Center Localization German

Catalyst Control Center Localization Greek

Catalyst Control Center Localization Hungarian

Catalyst Control Center Localization Italian

Catalyst Control Center Localization Japanese

Catalyst Control Center Localization Korean

Catalyst Control Center Localization Norwegian

Catalyst Control Center Localization Polish

Catalyst Control Center Localization Portuguese

Catalyst Control Center Localization Russian

Catalyst Control Center Localization Spanish

Catalyst Control Center Localization Swedish

Catalyst Control Center Localization Thai

Catalyst Control Center Localization Turkish

ccc-core-static

ccc-utility

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

ccCommon

ChkMail

Choice Guard

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

CyberLink LabelPrint

CyberLink Power2Go

DNA

Dolby Control Center

ESET Online Scanner v3

Express Gate

GearDrvs

Google Toolbar for Internet Explorer

HijackThis 2.0.2

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

ITECIR Driver

Java 6 Update 13

Junk Mail filter update

K-Lite Codec Pack 4.7.5 (Full)

LightScribe System Software 1.14.17.1

LiveUpdate (Symantec Corporation)

MFP Server Control Center

Microsoft .NET Framework 3.5 Language Pack SP1 - sve

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Office 2007 Service Pack 2 (SP2)

Microsoft Office Access MUI (Danish) 2007

Microsoft Office Access MUI (English) 2007

Microsoft Office Access MUI (Finnish) 2007

Microsoft Office Access MUI (Norwegian (Bokmål)) 2007

Microsoft Office Access MUI (Swedish) 2007

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel 2007 Help Oppdatering (KB963678)

Microsoft Office Excel 2007 Help Uppdatering (KB963678)

Microsoft Office Excel MUI (Danish) 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office Excel MUI (Finnish) 2007

Microsoft Office Excel MUI (Norwegian (Bokmål)) 2007

Microsoft Office Excel MUI (Swedish) 2007

Microsoft Office Groove MUI (Swedish) 2007

Microsoft Office InfoPath MUI (Swedish) 2007

Microsoft Office Live Add-in 1.3

Microsoft Office OneNote MUI (Swedish) 2007

Microsoft Office Outlook MUI (Danish) 2007

Microsoft Office Outlook MUI (English) 2007

Microsoft Office Outlook MUI (Finnish) 2007

Microsoft Office Outlook MUI (Norwegian (Bokmål)) 2007

Microsoft Office Outlook MUI (Swedish) 2007

Microsoft Office Powerpoint 2007 Help Oppdatering (KB963669)

Microsoft Office Powerpoint 2007 Help Uppdatering (KB963669)

Microsoft Office PowerPoint MUI (Danish) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint MUI (Finnish) 2007

Microsoft Office PowerPoint MUI (Norwegian (Bokmål)) 2007

Microsoft Office PowerPoint MUI (Swedish) 2007

Microsoft Office Professional Hybrid 2007

Microsoft Office Proof (Danish) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Finnish) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (German) 2007

Microsoft Office Proof (Norwegian (Bokmål)) 2007

Microsoft Office Proof (Norwegian (Nynorsk)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proof (Swedish) 2007

Microsoft Office Proofing (Danish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing (Finnish) 2007

Microsoft Office Proofing (Norwegian (Bokmål)) 2007

Microsoft Office Proofing (Swedish) 2007

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

Microsoft Office Publisher MUI (Danish) 2007

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Publisher MUI (Finnish) 2007

Microsoft Office Publisher MUI (Norwegian (Bokmål)) 2007

Microsoft Office Publisher MUI (Swedish) 2007

Microsoft Office Shared MUI (Danish) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared MUI (Finnish) 2007

Microsoft Office Shared MUI (Norwegian (Bokmål)) 2007

Microsoft Office Shared MUI (Swedish) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word 2007 Help Oppdatering (KB963665)

Microsoft Office Word 2007 Help Uppdatering (KB963665)

Microsoft Office Word MUI (Danish) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Office Word MUI (Finnish) 2007

Microsoft Office Word MUI (Norwegian (Bokmål)) 2007

Microsoft Office Word MUI (Swedish) 2007

Microsoft Search Enhancement Pack

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Sync Framework Runtime Native v1.0 (x86)

Microsoft Sync Framework Services Native v1.0 (x86)

Microsoft Visual C++ 2005 Redistributable

MSVCRT

NAVIGON Fresh 1.2

NAVIGON Fresh 1.5.0

NB Probe

Nordea NCR1 Installationspaket

Norton 360

Norton 360 (Symantec Corporation)

Norton 360 HTMLHelp

Norton Confidential Core

Norton Security Scan

Norton Security Scan (Symantec Corporation)

OGA Notifier 1.7.0105.35.0

Ohjelman Microsoft Office Excel 2007 Help päivitys (KB963678)

Ohjelman Microsoft Office Powerpoint 2007 Help päivitys (KB963669)

Ohjelman Microsoft Office Word 2007 Help päivitys (KB963665)

OmniPage SE 2.0

Opdatering til Microsoft Office Excel 2007 Help (KB963678)

Opdatering til Microsoft Office Powerpoint 2007 Help (KB963669)

Opdatering til Microsoft Office Word 2007 Help (KB963665)

Personal 4.10.2

Product Key Explorer 2.1.6

RealPlayer

Realtek 8169 8168 8101E 8102E Ethernet Driver

Realtek High Definition Audio Driver

RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.01

Safely Remove Disk Drive

Skins

SPBBC 32bit

Språkpaket för Microsoft .NET Framework 3.5 SP 1 - sve

SUPERAntiSpyware Free Edition

Symantec Real Time Storage Protection Component

Symantec Technical Support Controls

SymNet

Synaptics Pointing Device Driver

Uniblue Registry Booster

Uniblue SpyEraser

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office Access 2007 Help (KB963663)

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office Outlook 2007 Help (KB957246)

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

Update for Outlook 2007 Junk Email Filter (kb968503)

USB2.0 UVC 1.3M WebCam

Windows Driver Package - ITE Tech.Inc. (itecir) HIDClass (06/20/2007 5.0.0004.2)

Windows Live Communications Platform

Windows Live Essentials

Windows Live inloggningsassistenten

Windows Live Mail

Windows Live Messenger

Windows Live Photo Gallery

Windows Live Sync

Windows Live Toolbar

Windows Live Upload Tool

WinFlash

WinRAR

Wireless Console 2

 

==== End Of File ===========================

[/log]

 

[Cecilia]

Om UAC har varit påslagen hela veckan så borde du ha märkt om det kom in någon fil oväntat under veckan.

 

Surfa till http://www.virustotal.com (fungerar bäst med Internet Explorer) klistra in ett av följande filnamn i rutan, tryck på Skicka Fil och vänta tills resultatet är klart (Närvarande status blir genomförd). Klistra in resultatet från de olika antivirusprogrammen (inte Övrig information) här. Upprepa med nästa filnamn.

c:\windows\system32\AntiSpyNative64.exe

c:\windows\system32\AntiSpyNative32.exe

c:\windows\system32\acovcnt.exe

 

Vad är det för program som finns i mappen c:\progra~2\SSScanWizard där ~2 står för ett antal godtyckliga tecken?

 

Kolla att du har senaste versionen av Norton, vilket för Norton 360 är version 3:

http://www.symantec.com/sv/se/norton/support/index.jsp

 

[olak]

[log]Fil AntiSpyNative64.exe mottagen 2009.05.12 19:31:39 (CET)

Närvarande status: Laddar ... köad väntar söker genomförd EJ FUNNEN STOPPAD

 

 

Resultat: 0/39 (0%)

Laddar server information...

Din fil är köad i position: 2.

Uppskattat starttid är mellan 58 och 83 sekunder.

Stäng inte ner detta fönster förens sökningen är genomförd.

Scannern som arbetade med din fil har stoppat, vi kommer att vänta ett par sekunder för att försöka återställa ditt resultat.

Om du väntar i mer än 5 minuter måste du skicka in din fil igen.

Din fil blir genomsökt av VirusTotal för tillfället,

resultat kommer att visas när de är klara.

Compact Skriv ut resultat Din fil har upphört eller existerar inte.

Tjänsten är stoppad för tillfället, din fil väntar på att bli genomsökt (position: ) för en obestämd tid.

Du kan vänta på ett svar (automatisk uppdatering) eller ange din email i formuläret nedan och klicka "begär" så kommer systemet att skicka dig ett email när sökningen är genomförd. Email:

 

 

Antivirus Version Senaste Uppdatering Resultat

a-squared 4.0.0.101 2009.05.12 -

AhnLab-V3 5.0.0.2 2009.05.12 -

AntiVir 7.9.0.166 2009.05.12 -

Antiy-AVL 2.0.3.1 2009.05.12 -

Authentium 5.1.2.4 2009.05.12 -

Avast 4.8.1335.0 2009.05.12 -

AVG 8.5.0.327 2009.05.12 -

BitDefender 7.2 2009.05.12 -

CAT-QuickHeal 10.00 2009.05.12 -

ClamAV 0.94.1 2009.05.12 -

Comodo 1157 2009.05.08 -

DrWeb 5.0.0.12182 2009.05.12 -

eSafe 7.0.17.0 2009.05.12 -

eTrust-Vet 31.6.6501 2009.05.12 -

F-Prot 4.4.4.56 2009.05.12 -

F-Secure 8.0.14470.0 2009.05.12 -

Fortinet 3.117.0.0 2009.05.12 -

GData 19 2009.05.12 -

Ikarus T3.1.1.49.0 2009.05.12 -

K7AntiVirus 7.10.732 2009.05.11 -

Kaspersky 7.0.0.125 2009.05.12 -

McAfee 5613 2009.05.12 -

McAfee+Artemis 5613 2009.05.12 -

McAfee-GW-Edition 6.7.6 2009.05.12 -

Microsoft 1.4602 2009.05.12 -

NOD32 4068 2009.05.12 -

Norman 6.01.05 2009.05.12 -

nProtect 2009.1.8.0 2009.05.12 -

Panda 10.0.0.14 2009.05.12 -

PCTools 4.4.2.0 2009.05.07 -

Prevx 3.0 2009.05.12 -

Rising 21.29.14.00 2009.05.12 -

Sophos 4.41.0 2009.05.12 -

Sunbelt 3.2.1858.2 2009.05.12 -

Symantec 1.4.4.12 2009.05.12 -

TheHacker 6.3.4.1.324 2009.05.12 -

TrendMicro 8.950.0.1092 2009.05.12 -

VBA32 3.12.10.4 2009.05.12 -

ViRobot 2009.5.12.1731 2009.05.12 -

[/log][log]Fil AntiSpyNative32.exe mottagen 2009.05.12 19:37:15 (CET)

Närvarande status: Laddar ... köad väntar söker genomförd EJ FUNNEN STOPPAD

 

 

Resultat: 0/40 (0%)

Laddar server information...

Din fil är köad i position: 1.

Uppskattat starttid är mellan 46 och 66 sekunder.

Stäng inte ner detta fönster förens sökningen är genomförd.

Scannern som arbetade med din fil har stoppat, vi kommer att vänta ett par sekunder för att försöka återställa ditt resultat.

Om du väntar i mer än 5 minuter måste du skicka in din fil igen.

Din fil blir genomsökt av VirusTotal för tillfället,

resultat kommer att visas när de är klara.

Compact Skriv ut resultat Din fil har upphört eller existerar inte.

Tjänsten är stoppad för tillfället, din fil väntar på att bli genomsökt (position: ) för en obestämd tid.

Du kan vänta på ett svar (automatisk uppdatering) eller ange din email i formuläret nedan och klicka "begär" så kommer systemet att skicka dig ett email när sökningen är genomförd. Email:

 

 

Antivirus Version Senaste Uppdatering Resultat

a-squared 4.0.0.101 2009.05.12 -

AhnLab-V3 5.0.0.2 2009.05.12 -

AntiVir 7.9.0.166 2009.05.12 -

Antiy-AVL 2.0.3.1 2009.05.12 -

Authentium 5.1.2.4 2009.05.12 -

Avast 4.8.1335.0 2009.05.12 -

AVG 8.5.0.327 2009.05.12 -

BitDefender 7.2 2009.05.12 -

CAT-QuickHeal 10.00 2009.05.12 -

ClamAV 0.94.1 2009.05.12 -

Comodo 1157 2009.05.08 -

DrWeb 5.0.0.12182 2009.05.12 -

eSafe 7.0.17.0 2009.05.12 -

eTrust-Vet 31.6.6501 2009.05.12 -

F-Prot 4.4.4.56 2009.05.12 -

F-Secure 8.0.14470.0 2009.05.12 -

Fortinet 3.117.0.0 2009.05.12 -

GData 19 2009.05.12 -

Ikarus T3.1.1.49.0 2009.05.12 -

K7AntiVirus 7.10.732 2009.05.11 -

Kaspersky 7.0.0.125 2009.05.12 -

McAfee 5613 2009.05.12 -

McAfee+Artemis 5613 2009.05.12 -

McAfee-GW-Edition 6.7.6 2009.05.12 -

Microsoft 1.4602 2009.05.12 -

NOD32 4068 2009.05.12 -

Norman 6.01.05 2009.05.12 -

nProtect 2009.1.8.0 2009.05.12 -

Panda 10.0.0.14 2009.05.12 -

PCTools 4.4.2.0 2009.05.07 -

Prevx 3.0 2009.05.12 -

Rising 21.29.14.00 2009.05.12 -

Sophos 4.41.0 2009.05.12 -

Sunbelt 3.2.1858.2 2009.05.12 -

Symantec 1.4.4.12 2009.05.12 -

TheHacker 6.3.4.1.324 2009.05.12 -

TrendMicro 8.950.0.1092 2009.05.12 -

VBA32 3.12.10.4 2009.05.12 -

ViRobot 2009.5.12.1731 2009.05.12 -

VirusBuster 4.6.5.0 2009.05.12 -

[/log][log]Fil acovcnt.exe mottagen 2009.05.12 19:43:46 (CET)

Närvarande status: Laddar ... köad väntar söker genomförd EJ FUNNEN STOPPAD

 

 

Resultat: 0/40 (0%)

Laddar server information...

Din fil är köad i position: 4.

Uppskattat starttid är mellan 81 och 116 sekunder.

Stäng inte ner detta fönster förens sökningen är genomförd.

Scannern som arbetade med din fil har stoppat, vi kommer att vänta ett par sekunder för att försöka återställa ditt resultat.

Om du väntar i mer än 5 minuter måste du skicka in din fil igen.

Din fil blir genomsökt av VirusTotal för tillfället,

resultat kommer att visas när de är klara.

Compact Skriv ut resultat Din fil har upphört eller existerar inte.

Tjänsten är stoppad för tillfället, din fil väntar på att bli genomsökt (position: ) för en obestämd tid.

Du kan vänta på ett svar (automatisk uppdatering) eller ange din email i formuläret nedan och klicka "begär" så kommer systemet att skicka dig ett email när sökningen är genomförd. Email:

 

 

Antivirus Version Senaste Uppdatering Resultat

a-squared 4.0.0.101 2009.05.12 -

AhnLab-V3 5.0.0.2 2009.05.12 -

AntiVir 7.9.0.166 2009.05.12 -

Antiy-AVL 2.0.3.1 2009.05.12 -

Authentium 5.1.2.4 2009.05.12 -

Avast 4.8.1335.0 2009.05.12 -

AVG 8.5.0.327 2009.05.12 -

BitDefender 7.2 2009.05.12 -

CAT-QuickHeal 10.00 2009.05.12 -

ClamAV 0.94.1 2009.05.12 -

Comodo 1157 2009.05.08 -

DrWeb 5.0.0.12182 2009.05.12 -

eSafe 7.0.17.0 2009.05.12 -

eTrust-Vet 31.6.6501 2009.05.12 -

F-Prot 4.4.4.56 2009.05.12 -

F-Secure 8.0.14470.0 2009.05.12 -

Fortinet 3.117.0.0 2009.05.12 -

GData 19 2009.05.12 -

Ikarus T3.1.1.49.0 2009.05.12 -

K7AntiVirus 7.10.732 2009.05.11 -

Kaspersky 7.0.0.125 2009.05.12 -

McAfee 5613 2009.05.12 -

McAfee+Artemis 5613 2009.05.12 -

McAfee-GW-Edition 6.7.6 2009.05.12 -

Microsoft 1.4602 2009.05.12 -

NOD32 4068 2009.05.12 -

Norman 6.01.05 2009.05.12 -

nProtect 2009.1.8.0 2009.05.12 -

Panda 10.0.0.14 2009.05.12 -

PCTools 4.4.2.0 2009.05.07 -

Prevx 3.0 2009.05.12 -

Rising 21.29.14.00 2009.05.12 -

Sophos 4.41.0 2009.05.12 -

Sunbelt 3.2.1858.2 2009.05.12 -

Symantec 1.4.4.12 2009.05.12 -

TheHacker 6.3.4.1.324 2009.05.12 -

TrendMicro 8.950.0.1092 2009.05.12 -

VBA32 3.12.10.4 2009.05.12 -

ViRobot 2009.5.12.1731 2009.05.12 -

VirusBuster 4.6.5.0 2009.05.12 -

[/log]

Jag vet inte vd SSScan Wizard är för något, men när jag skriver in det namnet i sök på startmenyn så får jag upp den fil i anteckningar som jag döpt till DDS och som jag skickade til dig igår. I c:\program data finns två mappar. SSScanWizard och SSScanAppDataDir båda är toma nåt program hittar jag inte.

Norton 360 är ver. 2.5.0.5

//Ola

 

[Cecilia]

Jag kan inte se något skadligt i loggarna då.

 

2009-05-06 18:09 installerade du program från Canon, för en skanner kanske. Var det då datorn blev seg?