Jump to content


Photo
- - - - -

HiJackThis Log


  • This topic is locked This topic is locked
4 replies to this topic

#1 maneise

maneise

    New Member

  • Members
  • Pip
  • 10 posts

Posted 25 February 2009 - 06:37 PM

Can you see any Malware/virus/suspicious based on this log?

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:33:07, on 26.02.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\crypserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Programfiler\Java\jre6\bin\jqs.exe
C:\Programfiler\Fellesfiler\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programfiler\Raxco\PerfectDisk10\PDAgent.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programfiler\ZoomText 9.0\Zt.exe
C:\Programfiler\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Programfiler\D-Link\DWA-160\AirNCFG.exe
C:\Programfiler\Java\jre6\bin\jusched.exe
E:\D\dl\SharePort Network USB Utility.exe
C:\Programfiler\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programfiler\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe
C:\WINDOWS\System32\svchost.exe
C:\Programfiler\ZoomText 9.0\ZER.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Programfiler\HP\Digital Imaging\bin\hpqtra08.exe
C:\Programfiler\SqueezeCenter\SqueezeTray.exe
C:\PROGRA~1\SQUEEZ~1\server\SQUEEZ~1.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Programfiler\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Programfiler\Raxco\PerfectDisk10\PDEngine.exe
C:\Programfiler\Raxco\PerfectDisk10\PDAgentS1.exe
C:\Programfiler\Raxco\PerfectDisk10\PerfectDisk.exe
E:\E\ekrn.exe
E:\E\egui.exe
E:\S\SUPERAntiSpyware.exe
C:\Programfiler\Outlook Express\msimn.exe
C:\Programfiler\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrator\Skrivebord\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startsiden.no/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Programfiler\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Programfiler\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Koblingshjelpeprogram for Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programfiler\Fellesfiler\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AH IE BHO - {10384d0e-2bc1-48b6-844b-ad0e9e6d2511} - C:\Programfiler\ZoomText 9.0\AHOI\ah_ie_bho.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programfiler\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programfiler\Fellesfiler\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programfiler\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programfiler\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Ptipbmf] rundll32.exe ptipbmf.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "E:\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ZoomText 9.0] "C:\Programfiler\ZoomText 9.0\Zt.exe"
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Programfiler\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [D-Link D-Link Wireless N Dual Band DWA-160] C:\Programfiler\D-Link\DWA-160\AirNCFG.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programfiler\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [D-Link Network USB Utility] E:\D\dl\SharePort Network USB Utility.exe -mini
O4 - HKLM\..\Run: [HP Software Update] C:\Programfiler\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OSSelectorReinstall] C:\Programfiler\Fellesfiler\Acronis\Acronis Disk Director\oss_reinstall.exe
O4 - HKLM\..\Run: [egui] "E:\E\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "E:\A\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] E:\M\Malwarebytes` Anti-Malware\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programfiler\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] E:\S\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Programfiler\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Programfiler\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Hurtigstart for Adobe Reader.lnk = C:\Programfiler\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: SqueezeCenter Tray Tool.lnk = C:\Programfiler\SqueezeCenter\SqueezeTray.exe
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://E:\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Blogg dette - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programfiler\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blogg dette i Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programfiler\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: HP Utklippsbok - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Programfiler\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart valgmetode - {700259D7-1666-479a-93B1-3250410481E8} - C:\Programfiler\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programfiler\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programfiler\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programfiler\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.t...ivex/hcImpl.cab
O16 - DPF: {358DFA15-D48C-4296-8D16-7405F918333B} (Fronter OES2 release 20) - http://fronter.com/o...ronter_oes2.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.mi...b?1184754698953
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.co.../sysreqlab2.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx...owserPlugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ent/swflash.cab
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.on...e/en/crlocx.ocx
O16 - DPF: {FFBB3F3B-0A5A-4106-BE53-DFE1E2340CB1} (Nedlastningsadministratorkontroll) - http://dlm.tools.aka...vex-2.2.1.6.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FELLES~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - E:\S\SASWINLO.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Programfiler\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - E:\E\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - E:\E\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Programfiler\Fellesfiler\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programfiler\Java\jre6\bin\jqs.exe
O23 - Service: Jumpstart Wifi Protected Setup (jswpsapi) - Atheros Communications, Inc. - C:\Programfiler\D-Link\DWA-160\JSWUtil\jswpsapi.exe
O23 - Service: MBAMService - Unknown owner - E:\A\Malwarebytes' Anti-Malware\mbamservice.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Programfiler\Raxco\PerfectDisk10\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Programfiler\Raxco\PerfectDisk10\PDEngine.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: SqueezeMySQL - Unknown owner - C:\PROGRA~1\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe

--
End of file - 11283 bytes

#2 AdvancedSetup

AdvancedSetup

    Staff

  • Root Admin
  • PipPipPipPipPipPip
  • 41,163 posts
  • Gender:Male
  • Location:US

Posted 26 February 2009 - 03:49 AM

STEP 01
Update and Scan with Malwarebytes' Anti-Malware
  • Start MalwareBytes AntiMalware (Vista users must Right click and choose RunAs Admin)
  • Please DO NOT run MBAM in Safe Mode unless requested to, you MUST run it in normal Windows mode.
    • Update Malwarebytes' Anti-Malware
    • Select the Update tab
    • Click Update
  • When the update is complete, select the Scanner tab
  • Select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad. please copy and paste the log into your next reply
    • If you accidently close it, the log file is saved here and will be named like this:
    • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

STEP 02

Download DDS and save it to your desktop
http://download.bleepingcomputer.com/sUBs/dds.scr

Disable any script blocker if your Anti-Virus/Anti-Malware has it.
Once downloaded you can disconnect from the Internet and disable your Ant-Virus temporarily if needed.
Then double click dds.scr to run the tool.
When done, the DDS.txt will open.
Click Yes at the next prompt for Optional Scan.

  • When done, DDS will open two (2) logs:
  • DDS.txt
  • Attach.txt
  • Save both reports to your desktop
  • Please include the following logs in your next reply: DDS.txt and Attach.txt


STEP 03
  • Please create a BOOTLOG
  • Restart the computer and press F8 when Windows start booting. This will bring up the startup options.
  • Select "Enable Boot Logging" option and press enter.
  • Windows prompts you to select a Windows Installation (even if there is only one windows installation)
  • This boots windows normally and creates a boot log named ntbtlog.txt and saves it to C:\Windows
     
    If you're already running inside Windows you can enable it the following way.
     
  • Click on START - RUN and type in MSCONFIG go to the BOOT.INI tab and place a check mark by /BOOTLOG
  • Click on OK and you will be prompted to RESTART Windows. Please do restart now.
  • After Windows restarts open the file C:\Windows\ntbtlog.txt with Notepad
  • From the Edit menu choose Select All then Edit, COPY and post that back on your next reply.

STEP 04
Post back the following log files: MBAM, DDS & ATTACH, ntbtlog.txt

Ron Lewis
Forum Community Manager

staff.png

Follow us: Twitter, Become a fan: Facebook


#3 maneise

maneise

    New Member

  • Members
  • Pip
  • 10 posts

Posted 26 February 2009 - 11:10 AM

Thank you,

Slower computer
I did have 12-15 different infections. Captured and deleted with MBAM, super antispyware and also run combofix.exe . Posting log just to be sure, since i am an novice. I have another laptop computer that is not scanned yet. I wil post a log later for this one also, to be sure.

Mbam-log-2009-02-26 (16-02-08).txt – Notebook

Malwarebytes' Anti-Malware 1.34
Database version: 1806
Windows 5.1.2600 Service Pack 3

26.02.2009 16:02:08
mbam-log-2009-02-26 (16-02-08).txt

Scan type: Quick Scan
Objects scanned: 64453
Time elapsed: 2 minute(s), 56 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

__________________________________________________________________________

DDS.txt – Notebook


DDS (Ver_09-02-01.01) - NTFSx86
Run by Administrator at 16:16:15,60 on 26.02.2009
Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Professional 5.1.2600.3.1252.47.1044.18.3071.2372 [GMT 1:00]

AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\crypserv.exe
E:\E\ekrn.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Programfiler\Java\jre6\bin\jqs.exe
C:\Programfiler\Fellesfiler\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programfiler\Raxco\PerfectDisk10\PDAgent.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\PROGRA~1\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programfiler\ZoomText 9.0\Zt.exe
C:\Programfiler\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Programfiler\D-Link\DWA-160\AirNCFG.exe
C:\Programfiler\Java\jre6\bin\jusched.exe
E:\D\dl\SharePort Network USB Utility.exe
C:\Programfiler\HP\HP Software Update\HPWuSchd2.exe
E:\E\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programfiler\Microsoft ActiveSync\Wcescomm.exe
E:\S\SUPERAntiSpyware.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Programfiler\HP\Digital Imaging\bin\hpqtra08.exe
C:\Programfiler\SqueezeCenter\SqueezeTray.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Programfiler\ZoomText 9.0\ZER.exe
C:\PROGRA~1\SQUEEZ~1\server\SQUEEZ~1.EXE
C:\Programfiler\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Programfiler\Outlook Express\msimn.exe
C:\Programfiler\Mozilla Firefox\firefox.exe
E:\M\Malwarebytes` Anti-Malware\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Programfiler\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Programfiler\CLUE\CLUE.EXE
C:\Documents and Settings\Administrator\Skrivebord\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.startsiden.no/
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\programfiler\hp\smart web printing\hpswp_printenhancer.dll
BHO: HP Print Clips: {053f9267-dc04-4294-a72c-58f732d338c0} - c:\programfiler\hp\smart web printing\hpswp_framework.dll
BHO: Koblingshjelpeprogram for Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\programfiler\fellesfiler\adobe\acrobat\activex\AcroIEHelper.dll
BHO: AhIeBho Class: {10384d0e-2bc1-48b6-844b-ad0e9e6d2511} - c:\programfiler\zoomtext 9.0\ahoi\ah_ie_bho.dll
BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\programfiler\skype\toolbars\internet explorer\SkypeIEPlugin.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\programfiler\java\jre6\bin\ssv.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Påloggingshjelp for Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\programfiler\fellesfiler\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\programfiler\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\programfiler\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [H/PC Connection Agent] "c:\programfiler\microsoft activesync\Wcescomm.exe"
uRun: [SUPERAntiSpyware] e:\s\SUPERAntiSpyware.exe
mRun: [Ptipbmf] rundll32.exe ptipbmf.dll,SetWriteCacheMode
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [QuickTime Task] "e:\quicktime\qttask.exe" -atboottime
mRun: [ZoomText 9.0] "c:\programfiler\zoomtext 9.0\Zt.exe"
mRun: [ANIWZCS2Service] c:\programfiler\ani\aniwzcs2 service\WZCSLDR2.exe
mRun: [D-Link D-Link Wireless N Dual Band DWA-160] c:\programfiler\d-link\dwa-160\AirNCFG.exe
mRun: [SunJavaUpdateSched] "c:\programfiler\java\jre6\bin\jusched.exe"
mRun: [D-Link Network USB Utility] e:\d\dl\SharePort Network USB Utility.exe -mini
mRun: [HP Software Update] c:\programfiler\hp\hp software update\HPWuSchd2.exe
mRun: [OSSelectorReinstall] c:\programfiler\fellesfiler\acronis\acronis disk director\oss_reinstall.exe
mRun: [egui] "e:\e\egui.exe" /hide /waitservice
mRun: [Malwarebytes' Anti-Malware] "e:\a\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRunOnce: [Malwarebytes' Anti-Malware] e:\m\malwarebytes` anti-malware\malwarebytes' anti-malware\mbamgui.exe /install /silent
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\start-~1\progra~1\oppstart\adober~1.lnk - c:\programfiler\adobe\reader 8.0\reader\AdobeCollabSync.exe
StartupFolder: c:\docume~1\alluse~1\start-~1\progra~1\oppstart\hpdigi~1.lnk - c:\programfiler\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\start-~1\progra~1\oppstart\hurtig~1.lnk - c:\programfiler\adobe\reader 8.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\start-~1\progra~1\oppstart\squeez~1.lnk - c:\programfiler\squeezecenter\SqueezeTray.exe
IE: E&ksporter til Microsoft Excel - e:\micros~2\office11\EXCEL.EXE/3000
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\programfiler\partygaming\partypoker\RunApp.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programfiler\messenger\msmsgs.exe
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\programfiler\windows live\writer\WriterBrowserExtension.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\micros~3\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\micros~3\INetRepl.dll
IE: {58ECB495-38F0-49cb-A538-10282ABF65E7} - {E763472E-A716-4CD9-89BD-DBDA6122F741} - c:\programfiler\hp\smart web printing\hpswp_extensions.dll
IE: {700259D7-1666-479a-93B1-3250410481E8} - {A93C41D8-01F8-4F8B-B14C-DE20B117E636} - c:\programfiler\hp\smart web printing\hpswp_extensions.dll
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\programfiler\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://www.apple.com/qtactivex/qtplugin.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} - hxxp://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
DPF: {358DFA15-D48C-4296-8D16-7405F918333B} - hxxp://fronter.com/osloskoler/links/fronter_oes2.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1184754698953
DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} - hxxp://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {D821DC4A-0814-435E-9820-661C543A4679} - hxxp://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
DPF: {FFBB3F3B-0A5A-4106-BE53-DFE1E2340CB1} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.1.6.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\felles~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - e:\s\SASWINLO.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - e:\s\SASSEH.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\admini~1\progra~1\mozilla\firefox\profiles\0erlesoz.default\
FF - plugin: e:\quicktime\plugins\npqtplugin.dll
FF - plugin: e:\quicktime\plugins\npqtplugin2.dll
FF - plugin: e:\quicktime\plugins\npqtplugin3.dll
FF - plugin: e:\quicktime\plugins\npqtplugin4.dll
FF - plugin: e:\quicktime\plugins\npqtplugin5.dll
FF - plugin: e:\quicktime\plugins\npqtplugin6.dll
FF - plugin: e:\quicktime\plugins\npqtplugin7.dll

---- FIREFOX POLICIES ----
c:\programfiler\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".no");

============= SERVICES / DRIVERS ===============

R1 Ai2sXP;Ai2sXP;c:\windows\system32\drivers\Ai2sXP.sys [2008-11-9 7296]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2008-7-1 34312]
R1 SASDIFSV;SASDIFSV;e:\s\sasdifsv.sys [2009-1-15 8944]
R1 SASKUTIL;SASKUTIL;e:\s\SASKUTIL.SYS [2009-1-15 55024]
R2 ekrn;Eset Service;e:\e\ekrn.exe [2008-7-1 468224]
R2 SqueezeMySQL;SqueezeMySQL;c:\progra~1\squeez~1\server\bin\mswin3~1\mysqld.exe --defaults-file=c:\docume~1\alluse~1\progra~1\squeez~1\cache\my.cnf squeezemysql --> c:\progra~1\squeez~1\server\bin\mswin3~1\mysqld.exe --defaults-file=c:\docume~1\alluse~1\progra~1\squeez~1\cache\my.cnf SqueezeMySQL [?]
R3 cxbu0wdm;CardMan 3x21;c:\windows\system32\drivers\cxbu0wdm.sys [2008-10-1 67178]
R3 DlinkUDSMBus;UDS Master Bus of Kernel USB Software Bus by TCP;c:\windows\system32\drivers\DlinkUDSMBus.sys [2008-9-23 74624]
R3 DlinkUDSTcpBus;DlinkUDSTcpBus;c:\windows\system32\drivers\DlinkUDSTcpBus.sys [2008-9-23 97664]
R3 Envy24HFS;ICE Envy24 Family Audio Controller WDM;c:\windows\system32\drivers\Envy24HF.sys [2008-10-31 589120]
R3 JSWSCIMD;jswscimd Service;c:\windows\system32\drivers\jswscimd.sys [2008-11-11 57440]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-2-26 15504]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2009-2-26 38496]
R3 SASENUM;SASENUM;e:\s\SASENUM.SYS [2009-1-15 7408]
S2 MBAMService;MBAMService;"e:\a\malwarebytes' anti-malware\mbamservice.exe" --> e:\a\malwarebytes' anti-malware\mbamservice.exe [?]
S3 arusb(Atheros);Atheros Wireless Network Adapter Service(Atheros);c:\windows\system32\drivers\arusb.sys [2008-11-11 434688]
S3 jswpsapi;Jumpstart Wifi Protected Setup;c:\programfiler\d-link\dwa-160\jswutil\jswpsapi.exe [2008-11-11 356434]

=============== Created Last 30 ================

2009-02-26 15:53 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-02-26 15:53 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-26 15:39 <DIR> --d----- c:\programfiler\Malwarebytes' Anti-Malware
2009-02-26 14:52 <DIR> --d----- c:\windows\pss
2009-02-25 21:38 <DIR> --d----- c:\programfiler\fellesfiler\Wise Installation Wizard
2009-02-25 20:37 <DIR> --d----- C:\ComboFix
2009-02-25 19:36 <DIR> a-dshr-- C:\cmdcons
2009-02-25 19:29 161,792 a------- c:\windows\SWREG.exe
2009-02-25 19:29 98,816 a------- c:\windows\sed.exe
2009-02-24 13:17 280 a------- c:\windows\system32\PDBootState
2009-02-24 00:06 <DIR> --d----- c:\docume~1\alluse~1\progra~1\SUPERAntiSpyware.com
2009-02-24 00:05 <DIR> --d----- c:\docume~1\admini~1\progra~1\SUPERAntiSpyware.com
2009-02-23 16:21 <DIR> --d----- c:\docume~1\admini~1\progra~1\Malwarebytes
2009-02-23 16:21 <DIR> --d----- c:\docume~1\alluse~1\progra~1\Malwarebytes
2009-02-20 21:02 <DIR> --d----- c:\windows\SHELLNEW
2009-02-20 18:42 <DIR> --d----- c:\windows\system32\no
2009-02-20 18:42 <DIR> --d----- c:\windows\l2schemas
2009-02-19 23:06 <DIR> --d----- c:\docume~1\admini~1\progra~1\GetRightToGo
2009-02-19 20:52 <DIR> --d----- c:\windows\system32\FxsTmp
2009-02-19 20:50 1,817,687 ac------ c:\windows\system32\dllcache\bckgres.dll
2009-02-19 20:49 65,954 a------- c:\windows\Storm i vannglass.bmp
2009-02-19 20:38 <DIR> --d----- c:\programfiler\Windows Mobile Resources
2009-02-19 20:28 <DIR> --d----- c:\programfiler\Microsoft ActiveSync
2009-02-17 17:49 <DIR> --d----- c:\programfiler\fellesfiler\Acronis

==================== Find3M ====================

2009-02-26 15:32 465,012 a------- c:\windows\system32\perfh014.dat
2009-02-26 15:32 95,300 a------- c:\windows\system32\perfc014.dat
2009-02-20 18:44 86,327 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2009-02-17 23:52 1,392,304 a------- c:\windows\system32\AutoPartNt.exe
2009-02-17 17:49 114,048 a------- c:\windows\system32\drivers\snapman.sys
2009-01-13 18:24 231,176 a------- c:\windows\system32\PDBoot.exe
2009-01-09 10:49 71,184 a------- c:\windows\system32\drivers\DefragFs.sys
2009-01-06 00:50 147,984 a------- c:\windows\HPHins15.dat
2009-01-02 16:15 410,984 a------- c:\windows\system32\deploytk.dll
2008-12-21 00:03 826,368 a------- c:\windows\system32\wininet.dll
2008-08-30 18:43 108 a------- c:\documents and settings\administrator\devices.dat
2008-05-12 16:11 47,360 a------- c:\docume~1\admini~1\progra~1\pcouffin.sys

============= FINISH: 16:16:36,14 ===============

________________________________________________________________________________
_

attached.txt – Notebook


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-02-01.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 13.07.2007 09:15:43
System Uptime: 26.02.2009 15:27:46 (1 hours ago)

Motherboard: ASUSTeK Computer Inc. | | P4C800-E
Processor: Intel® Pentium® 4 CPU 3.00GHz | CPU 1 | 2998/200mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 40 GiB total, 19,41 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 59 GiB total, 56,815 GiB free.
F: is FIXED (NTFS) - 300 GiB total, 288,07 GiB free.
G: is FIXED (NTFS) - 300 GiB total, 42,151 GiB free.

==== Disabled Device Manager Items =============

Class GUID: {4D36E97B-E325-11CE-BFC1-08002BE10318}
Description: Win2000 Promise FastTrak 378 ™ Controller
Device ID: PCI\VEN_105A&DEV_3373&SUBSYS_80F51043&REV_02\4&2E98101C&0&20F0
Manufacturer: Promise Technology
Name: Win2000 Promise FastTrak 378 ™ Controller
PNP Device ID: PCI\VEN_105A&DEV_3373&SUBSYS_80F51043&REV_02\4&2E98101C&0&20F0
Service: fasttx2k

==== System Restore Points ===================

RP598: 25.02.2009 01:05:25 - Software Distribution Service 3.0
RP599: 25.02.2009 15:37:32 - Removed Microsoft Office Professional 2007 Trial
RP600: 25.02.2009 19:32:01 - ComboFix created restore point
RP601: 25.02.2009 19:45:36 - Removed SUPERAntiSpyware Professional
RP602: 25.02.2009 19:47:29 - Removed ESET NOD32 Antivirus
RP603: 25.02.2009 21:14:03 - Installed ESET NOD32 Antivirus
RP604: 25.02.2009 21:39:09 - Installed SUPERAntiSpyware Professional

==== Installed Programs ======================

Acronis Disk Director Suite
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 8 - Norsk
ANIO Service
ANIWZCS2 Service
BufferChm
Buypass Smartkortstøtte
D-Link Wireless N Dual Band DWA-160
D4200
D4200_Help
DeviceDiscovery
DeviceManagementQFolder
dj_sf_ProductContext
dj_sf_software
dj_sf_software_req
dMC AccurateRip
ESET NOD32 Antivirus
eSupportQFolder
Exact Audio Copy 0.95b4
FLAC 1.2.0a (remove only)
HijackThis 2.0.2
Hotfix for Windows Media Format 11 SDK (KB929399)
HP Deskjet Printer Driver Software 9.0
HP Imaging Device Functions 9.0
HP Smart Web Printing
HP Solution Center 9.0
HP Update
HPProductAssistant
Hurtigreparasjon for Windows Media Player 11 (KB939683)
Hurtigreparasjon for Windows XP (KB952287)
HyperSnap 6
IBM ViaVoice TTS Runtime v6.610 - US English
InfraRecorder
Intel® PRO Network Adapters and Drivers
Java™ 6 Update 11
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 1.1 Norwegian Language Pack
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft ActiveSync
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Mozilla Firefox (3.0.6)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 6 Service Pack 2 (KB954459)
neroxml
NVIDIA Drivers
Oppdatering for Windows XP (KB951072-v2)
Oppdatering for Windows XP (KB951978)
Oppdatering for Windows XP (KB955839)
Oppdatering for Windows XP (KB967715)
PanoStandAlone
PerfectDisk 10 Professional
Pinnacle Instant DVD Recorder
Platform
Påloggingsassistent for Windows Live
QuickTime
RealPlayer Basic
Security Update for CAPICOM (KB931906)
SharePort Network USB Utility
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB938127-v2)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB953838)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB958215)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB960714)
Sikkerhetsoppdatering for Windows Internet Explorer 7 (KB961260)
Sikkerhetsoppdatering for Windows Media Player (KB911564)
Sikkerhetsoppdatering for Windows Media Player (KB952069)
Sikkerhetsoppdatering for Windows Media Player 11 (KB936782)
Sikkerhetsoppdatering for Windows Media Player 11 (KB954154)
Sikkerhetsoppdatering for Windows Media Player 6.4 (KB925398)
Sikkerhetsoppdatering for Windows Media Player 9 (KB917734)
Sikkerhetsoppdatering for Windows XP (KB923689)
Sikkerhetsoppdatering for Windows XP (KB938464)
Sikkerhetsoppdatering for Windows XP (KB941569)
Sikkerhetsoppdatering for Windows XP (KB946648)
Sikkerhetsoppdatering for Windows XP (KB950760)
Sikkerhetsoppdatering for Windows XP (KB950762)
Sikkerhetsoppdatering for Windows XP (KB950974)
Sikkerhetsoppdatering for Windows XP (KB951066)
Sikkerhetsoppdatering for Windows XP (KB951376-v2)
Sikkerhetsoppdatering for Windows XP (KB951376)
Sikkerhetsoppdatering for Windows XP (KB951698)
Sikkerhetsoppdatering for Windows XP (KB951748)
Sikkerhetsoppdatering for Windows XP (KB952954)
Sikkerhetsoppdatering for Windows XP (KB953155)
Sikkerhetsoppdatering for Windows XP (KB953839)
Sikkerhetsoppdatering for Windows XP (KB954211)
Sikkerhetsoppdatering for Windows XP (KB954459)
Sikkerhetsoppdatering for Windows XP (KB954600)
Sikkerhetsoppdatering for Windows XP (KB955069)
Sikkerhetsoppdatering for Windows XP (KB956391)
Sikkerhetsoppdatering for Windows XP (KB956802)
Sikkerhetsoppdatering for Windows XP (KB956803)
Sikkerhetsoppdatering for Windows XP (KB956841)
Sikkerhetsoppdatering for Windows XP (KB957095)
Sikkerhetsoppdatering for Windows XP (KB957097)
Sikkerhetsoppdatering for Windows XP (KB958644)
Sikkerhetsoppdatering for Windows XP (KB958687)
Sikkerhetsoppdatering for Windows XP (KB960715)
Skype™ 3.8
SolutionCenter
SqueezeCenter 7.0.1
Status
Studio 11
Studio 11 Bonus DVD
SUPERAntiSpyware Professional
System Requirements Lab
Toolbox
TrayApp
UnInstall Envy24 Family Audio Device Driver
UnloadSupport
VIA Plattform devise leder
WebFldrs XP
WebReg
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Internet Explorer 7
Windows Live Fotogalleri
Windows Live installer
Windows Live Mail
Windows Live Messenger
Windows Live Writer
Windows Media Format 11 runtime
Windows Media Player 11
Windows Mobile Resources
Windows XP Service Pack 3
Yahoo! Desktop Login
ZoomText 9.0

==== End Of File ===========================

_____________________________________________


ntbtlog.txt – Notebook

Service Pack 3 2 26 2009 16:46:52.375
Lastet driver \WINDOWS\system32\ntoskrnl.exe
Lastet driver \WINDOWS\system32\hal.dll
Lastet driver \WINDOWS\system32\KDCOM.DLL
Lastet driver \WINDOWS\system32\BOOTVID.dll
Lastet driver ACPI.sys
Lastet driver \WINDOWS\System32\DRIVERS\WMILIB.SYS
Lastet driver pci.sys
Lastet driver isapnp.sys
Lastet driver ohci1394.sys
Lastet driver \WINDOWS\System32\DRIVERS\1394BUS.SYS
Lastet driver pciide.sys
Lastet driver \WINDOWS\System32\DRIVERS\PCIIDEX.SYS
Lastet driver MountMgr.sys
Lastet driver ftdisk.sys
Lastet driver dmload.sys
Lastet driver dmio.sys
Lastet driver PartMgr.sys
Lastet driver VolSnap.sys
Lastet driver atapi.sys
Lastet driver fasttx2k.sys
Lastet driver \WINDOWS\system32\drivers\SCSIPORT.SYS
Lastet driver disk.sys
Lastet driver \WINDOWS\System32\DRIVERS\CLASSPNP.SYS
Lastet driver fltmgr.sys
Lastet driver sr.sys
Lastet driver PxHelp20.sys
Lastet driver KSecDD.sys
Lastet driver Ntfs.sys
Lastet driver NDIS.sys
Lastet driver timntr.sys
Lastet driver snapman.sys
Lastet driver sbp2port.sys
Lastet driver Mup.sys
Lastet driver agp440.sys
Lastet driver \SystemRoot\system32\DRIVERS\tunmp.sys
Lastet driver \SystemRoot\System32\DRIVERS\intelppm.sys
Lastet driver \SystemRoot\system32\DRIVERS\nv4_mini.sys
Lastet driver \SystemRoot\System32\DRIVERS\e1000325.sys
Lastet driver \SystemRoot\System32\DRIVERS\usbuhci.sys
Lastet driver \SystemRoot\system32\DRIVERS\usbehci.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\Envy24HF.sys
Lastet driver \SystemRoot\System32\DRIVERS\nic1394.sys
Lastet driver \SystemRoot\System32\DRIVERS\serial.sys
Lastet driver \SystemRoot\System32\DRIVERS\serenum.sys
Lastet driver \SystemRoot\System32\DRIVERS\fdc.sys
Lastet driver \SystemRoot\System32\DRIVERS\parport.sys
Lastet driver \SystemRoot\System32\Drivers\Imapi.SYS
Lastet driver \SystemRoot\System32\DRIVERS\cdrom.sys
Lastet driver \SystemRoot\System32\DRIVERS\redbook.sys
Lastet driver \SystemRoot\system32\DRIVERS\jswscimd.sys
Lastet driver \SystemRoot\System32\Drivers\DlinkUDSMBus.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\System32\DRIVERS\audstub.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\System32\DRIVERS\rasl2tp.sys
Lastet driver \SystemRoot\System32\DRIVERS\ndistapi.sys
Lastet driver \SystemRoot\System32\DRIVERS\ndiswan.sys
Lastet driver \SystemRoot\System32\DRIVERS\raspppoe.sys
Lastet driver \SystemRoot\System32\DRIVERS\raspptp.sys
Lastet driver \SystemRoot\System32\DRIVERS\msgpc.sys
Lastet driver \SystemRoot\System32\DRIVERS\psched.sys
Lastet driver \SystemRoot\System32\DRIVERS\ptilink.sys
Lastet driver \SystemRoot\System32\DRIVERS\raspti.sys
Lastet driver \SystemRoot\System32\DRIVERS\rdpdr.sys
Lastet driver \SystemRoot\System32\DRIVERS\termdd.sys
Lastet driver \SystemRoot\System32\DRIVERS\kbdclass.sys
Lastet driver \SystemRoot\System32\DRIVERS\mouclass.sys
Lastet driver \SystemRoot\System32\DRIVERS\swenum.sys
Lastet driver \SystemRoot\System32\DRIVERS\update.sys
Lastet driver \SystemRoot\System32\DRIVERS\mssmbios.sys
Lastet driver \SystemRoot\system32\DRIVERS\MarvinBus.sys
Lastet driver \SystemRoot\System32\Drivers\NDProxy.SYS
Driver ble ikke lastet inn \SystemRoot\System32\Drivers\NDProxy.SYS
Lastet driver \SystemRoot\System32\DRIVERS\usbhub.sys
Lastet driver \SystemRoot\System32\DRIVERS\flpydisk.sys
Driver ble ikke lastet inn \SystemRoot\System32\Drivers\lbrtfdc.SYS
Driver ble ikke lastet inn \SystemRoot\System32\Drivers\Sfloppy.SYS
Driver ble ikke lastet inn \SystemRoot\System32\Drivers\i2omgmt.SYS
Driver ble ikke lastet inn \SystemRoot\System32\Drivers\Changer.SYS
Driver ble ikke lastet inn \SystemRoot\System32\Drivers\Cdaudio.SYS
Lastet driver \SystemRoot\System32\Drivers\Fs_Rec.SYS
Lastet driver \SystemRoot\System32\Drivers\Null.SYS
Lastet driver \SystemRoot\System32\Drivers\Beep.SYS
Driver ble ikke lastet inn \SystemRoot\System32\Drivers\i8042prt.SYS
Driver ble ikke lastet inn \SystemRoot\System32\DRIVERS\kbdhid.sys
Lastet driver \SystemRoot\System32\drivers\vga.sys
Lastet driver \SystemRoot\System32\Drivers\mnmdd.SYS
Lastet driver \SystemRoot\System32\DRIVERS\RDPCDD.sys
Lastet driver \SystemRoot\System32\Drivers\Msfs.SYS
Lastet driver \SystemRoot\System32\Drivers\Npfs.SYS
Lastet driver \SystemRoot\System32\DRIVERS\rasacd.sys
Lastet driver \SystemRoot\System32\DRIVERS\ipsec.sys
Lastet driver \SystemRoot\System32\DRIVERS\tcpip.sys
Lastet driver \SystemRoot\System32\DRIVERS\ipnat.sys
Lastet driver \SystemRoot\system32\DRIVERS\tcpip6.sys
Lastet driver \SystemRoot\System32\DRIVERS\wanarp.sys
Lastet driver \SystemRoot\system32\drivers\ip6fw.sys
Lastet driver \SystemRoot\System32\DRIVERS\netbt.sys
Lastet driver \SystemRoot\system32\DRIVERS\epfwtdir.sys
Lastet driver \SystemRoot\System32\drivers\ws2ifsl.sys
Lastet driver \SystemRoot\System32\drivers\afd.sys
Lastet driver \SystemRoot\System32\DRIVERS\arp1394.sys
Lastet driver \SystemRoot\System32\DRIVERS\netbios.sys
Driver ble ikke lastet inn \SystemRoot\System32\DRIVERS\processr.sys
Lastet driver \SystemRoot\System32\drivers\Ai2sXP.sys
Driver ble ikke lastet inn \SystemRoot\System32\Drivers\PCIDump.SYS
Lastet driver \??\E:\S\SASKUTIL.sys
Lastet driver \??\E:\S\SASDIFSV.SYS
Lastet driver \SystemRoot\System32\DRIVERS\rdbss.sys
Lastet driver \SystemRoot\system32\ckldrv.sys
Lastet driver \SystemRoot\System32\DRIVERS\mrxsmb.sys
Lastet driver \SystemRoot\System32\Drivers\Fips.SYS
Lastet driver \SystemRoot\system32\DRIVERS\easdrv.sys
Lastet driver \SystemRoot\System32\DRIVERS\hidusb.sys
Lastet driver \SystemRoot\system32\DRIVERS\cxbu0wdm.sys
Lastet driver \SystemRoot\System32\DRIVERS\usbccgp.sys
Lastet driver \SystemRoot\System32\DRIVERS\mouhid.sys
Lastet driver \SystemRoot\System32\DRIVERS\kbdhid.sys
Lastet driver \SystemRoot\System32\Drivers\Cdfs.SYS
Lastet driver \SystemRoot\system32\DRIVERS\tifsfilt.sys
Lastet driver \SystemRoot\System32\Drivers\PCLEPCI.SYS
Lastet driver \SystemRoot\System32\Drivers\DefragFS.SYS
Lastet driver \SystemRoot\System32\DRIVERS\ndisuio.sys
Driver ble ikke lastet inn \SystemRoot\System32\DRIVERS\rdbss.sys
Driver ble ikke lastet inn \SystemRoot\System32\DRIVERS\mrxsmb.sys
Lastet driver \SystemRoot\System32\DRIVERS\mrxdav.sys
Lastet driver \SystemRoot\System32\Drivers\ParVdm.SYS
Lastet driver \??\C:\WINDOWS\system32\ANIO.SYS
Lastet driver \SystemRoot\system32\DRIVERS\eamon.sys
Lastet driver \??\C:\WINDOWS\system32\drivers\mbam.sys
Lastet driver \SystemRoot\System32\DRIVERS\srv.sys
Lastet driver \SystemRoot\System32\DRIVERS\secdrv.sys
Lastet driver \SystemRoot\System32\Drivers\Fastfat.SYS
Driver ble ikke lastet inn \SystemRoot\System32\DRIVERS\ipnat.sys
Driver ble ikke lastet inn \SystemRoot\system32\drivers\ip6fw.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\wdmaud.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\sysaudio.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\splitter.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\aec.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\swmidi.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\DMusic.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\kmixer.sys
Lastet driver \SystemRoot\system32\drivers\LVUSBSta.sys
Lastet driver \SystemRoot\system32\drivers\drmkaud.sys
Lastet driver \SystemRoot\System32\Drivers\HTTP.sys
Lastet driver \SystemRoot\System32\Drivers\DlinkUDSTcpBus.sys
Lastet driver \??\E:\S\SASENUM.SYS
Lastet driver \SystemRoot\system32\DRIVERS\asyncmac.sys

_______________________________________________________

Should i change back to normal boot mode?

#4 maneise

maneise

    New Member

  • Members
  • Pip
  • 10 posts

Posted 26 February 2009 - 08:13 PM

There was no Malware & Virus found on the laptop comuter.

#5 AdvancedSetup

AdvancedSetup

    Staff

  • Root Admin
  • PipPipPipPipPipPip
  • 41,163 posts
  • Gender:Male
  • Location:US

Posted 07 March 2009 - 05:49 AM

Topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

The fixes and advice in this thread are for this machine only. Do not apply the instructions from this thread to your own machine. Please start a new thread describing your issue and someone will be along to assist you.

Ron Lewis
Forum Community Manager

staff.png

Follow us: Twitter, Become a fan: Facebook





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users