Logfile of random's system information tool 1.05 (written by random/random)
Run by Erik at 2008-12-31 21:30:24
Microsoft Windows XP Professional Service Pack 3
System drive C: has 335 GB (70%) free of 477 GB
Total RAM: 2046 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:30:25, on 31.12.2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\TPSrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\ATKKBService.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Programfiler\Bonjour\mDNSResponder.exe
C:\Programfiler\GIGABYTE\EnergySaver\GSvr.exe
C:\WINDOWS\system32\svchost.exe
C:\Programfiler\Java\jre6\bin\jqs.exe
C:\Programfiler\Fellesfiler\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PsCtrls.exe
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PavFnSvr.exe
C:\Programfiler\Fellesfiler\Panda Security\PavShld\pavprsrv.exe
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PsImSvc.exe
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PskSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\pavsrv51.exe
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\AVENGINE.EXE
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\Firewall\PSHOST.EXE
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Programfiler\ScanSoft\OmniPageSE4\OpwareSE4.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Programfiler\Java\jre6\bin\jusched.exe
C:\Programfiler\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programfiler\Microsoft ActiveSync\Wcescomm.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEGE.EXE
C:\Programfiler\Software Informer\softinfo.exe
C:\Programfiler\TomTom HOME 2\HOMERunner.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\WINDOWS\explorer.exe
C:\Programfiler\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\psimreal.exe
C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\avciman.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Erik\Skrivebord\RSIT.exe
C:\Programfiler\Trend Micro\HijackThis\Erik.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programfiler\Fellesfiler\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programfiler\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programfiler\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programfiler\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programfiler\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [GEST] m‘|\ü
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Programfiler\Fellesfiler\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Programfiler\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programfiler\Fellesfiler\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programfiler\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\Inicio.exe"
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programfiler\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programfiler\Microsoft ActiveSync\Wcescomm.exe"
O4 - HKCU\..\Run: [LaunchList] C:\Programfiler\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEGE.EXE /FU "C:\WINDOWS\TEMP\E_S10C.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Software Informer] C:\Programfiler\Software Informer\softinfo.exe -autorun
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Programfiler\TomTom HOME 2\HOMERunner.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Programfiler\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Opprett mobil favoritt... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1226963252062
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1228589093986
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{90564647-D775-4F25-AE8A-818C1F8C9F4C}: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B909C215-2D4B-448F-895D-6605D404E3A5}: NameServer = 192.168.1.1
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Programfiler\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Programfiler\Fellesfiler\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Programfiler\GIGABYTE\EnergySaver\GSvr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programfiler\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Unknown owner - C:\Programfiler\Nero\Nero8\Nero BackItUp\NBService.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Programfiler\Fellesfiler\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Security, S.L. - C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Security, S.L. - C:\Programfiler\Fellesfiler\Panda Security\PavShld\pavprsrv.exe
O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\pavsrv51.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\WINDOWS\system32\drivers\pclepci.sys
O23 - Service: Panda Host Service (PSHost) - Panda Software International - C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\Firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PsImSvc.exe
O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PskSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\TPSrv.exe

--
End of file - 10065 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\SyncBack Backup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Programfiler\Fellesfiler\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Programfiler\Java\jre6\bin\ssv.dll [2008-12-21 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Programfiler\Java\jre6\bin\jp2ssv.dll [2008-12-21 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Programfiler\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-12-21 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Programfiler\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Programfiler\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-22 368640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GEST"=m‘|\ü []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-09-17 13574144]
"nwiz"=nwiz.exe /install []
"SSBkgdUpdate"=C:\Programfiler\Fellesfiler\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2008-06-26 210472]
"OpwareSE4"=C:\Programfiler\ScanSoft\OmniPageSE4\OpwareSE4.exe [2008-06-26 79400]
"NeroFilterCheck"=C:\Programfiler\Fellesfiler\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-09-17 86016]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-07-23 16804864]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2008-06-18 77824]
"AlcWzrd"=C:\WINDOWS\ALCWZRD.EXE [2008-06-19 2808832]
"Adobe Reader Speed Launcher"=C:\Programfiler\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"APVXDWIN"=C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\APVXDWIN.EXE [2008-12-03 869632]
"SCANINICIO"=C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\Inicio.exe [2008-07-07 50432]
"Logitech Utility"=C:\WINDOWS\Logi_MwX.Exe [2003-12-11 20992]
"SunJavaUpdateSched"=C:\Programfiler\Java\jre6\bin\jusched.exe [2008-12-21 136600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"H/PC Connection Agent"=C:\Programfiler\Microsoft ActiveSync\Wcescomm.exe [2006-11-13 1289000]
"LaunchList"=C:\Programfiler\Pinnacle\Studio 11\LaunchList2.exe [2007-03-21 145496]
"EPSON Stylus SX400 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEGE.EXE [2007-12-17 188928]
"Software Informer"=C:\Programfiler\Software Informer\softinfo.exe [2008-11-01 1347653]
"TomTomHOME.exe"=C:\Programfiler\TomTom HOME 2\HOMERunner.exe [2008-11-27 234856]

C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart
Microsoft Office.lnk - C:\Programfiler\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr]
C:\WINDOWS\SYSTEM32\avldr.dll [2008-03-18 58672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\SYSTEM32\WgaLogon.dll [2008-09-05 267304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2008-06-26 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programfiler\Microsoft ActiveSync\rapimgr.exe"="C:\Programfiler\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Programfiler\Microsoft ActiveSync\wcescomm.exe"="C:\Programfiler\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Programfiler\Microsoft ActiveSync\WCESMgr.exe"="C:\Programfiler\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Programfiler\Pinnacle\Studio 11\programs\RM.exe"="C:\Programfiler\Pinnacle\Studio 11\programs\RM.exe:*:Enabled:Render Manager"
"C:\Programfiler\Pinnacle\Studio 11\programs\studio.exe"="C:\Programfiler\Pinnacle\Studio 11\programs\studio.exe:*:Enabled:Studio"
"C:\Programfiler\Pinnacle\Studio 11\programs\PMSRegisterFile.exe"="C:\Programfiler\Pinnacle\Studio 11\programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"C:\Programfiler\Pinnacle\Studio 11\programs\umi.exe"="C:\Programfiler\Pinnacle\Studio 11\programs\umi.exe:*:Enabled:umi"
"C:\Programfiler\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe"="C:\Programfiler\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"
"C:\Programfiler\Bonjour\mDNSResponder.exe"="C:\Programfiler\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Programfiler\Microsoft ActiveSync\rapimgr.exe"="C:\Programfiler\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Programfiler\Microsoft ActiveSync\wcescomm.exe"="C:\Programfiler\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Programfiler\Microsoft ActiveSync\WCESMgr.exe"="C:\Programfiler\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Programfiler\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe"="C:\Programfiler\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{85554c2a-bd80-11dd-b44d-001fd08011a2}]
shell\AutoRun\command - InstallTomTomHOME.exe


======List of files/folders created in the last 3 months======

2008-12-31 21:29:11 ----D---- C:\rsit
2008-12-31 20:13:52 ----A---- C:\ComboFix.txt
2008-12-31 20:10:43 ----A---- C:\Boot.bak
2008-12-31 20:10:38 ----RASHD---- C:\cmdcons
2008-12-31 20:08:47 ----A---- C:\WINDOWS\NIRCMD.exe
2008-12-31 20:08:46 ----A---- C:\WINDOWS\zip.exe
2008-12-31 20:08:46 ----A---- C:\WINDOWS\VFIND.exe
2008-12-31 20:08:46 ----A---- C:\WINDOWS\SWXCACLS.exe
2008-12-31 20:08:46 ----A---- C:\WINDOWS\SWSC.exe
2008-12-31 20:08:46 ----A---- C:\WINDOWS\SWREG.exe
2008-12-31 20:08:46 ----A---- C:\WINDOWS\sed.exe
2008-12-31 20:08:46 ----A---- C:\WINDOWS\grep.exe
2008-12-31 20:08:46 ----A---- C:\WINDOWS\fdsv.exe
2008-12-31 20:08:32 ----D---- C:\WINDOWS\ERDNT
2008-12-31 20:08:32 ----D---- C:\Qoobox
2008-12-31 20:08:32 ----D---- C:\ComboFix
2008-12-31 19:57:29 ----D---- C:\Documents and Settings\Erik\Programdata\Malwarebytes
2008-12-31 19:57:22 ----D---- C:\Programfiler\Malwarebytes' Anti-Malware
2008-12-31 19:57:22 ----D---- C:\Documents and Settings\All Users\Programdata\Malwarebytes
2008-12-31 16:44:58 ----D---- C:\Programfiler\Trend Micro
2008-12-21 23:25:22 ----A---- C:\WINDOWS\system32\javaws.exe
2008-12-21 23:25:22 ----A---- C:\WINDOWS\system32\javaw.exe
2008-12-21 23:25:22 ----A---- C:\WINDOWS\system32\java.exe
2008-12-21 20:20:54 ----HDC---- C:\Documents and Settings\All Users\Programdata\{51019853-129C-4EDE-9030-D5FD7BBD9AD0}
2008-12-21 20:15:05 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2008-12-21 20:11:37 ----D---- C:\028ee6d009c0e87a2be035
2008-12-21 20:11:23 ----D---- C:\WINDOWS\SxsCaPendDel
2008-12-21 19:58:16 ----RHD---- C:\AHCache
2008-12-21 19:54:26 ----D---- C:\Drivers
2008-12-21 19:53:06 ----D---- C:\Programfiler\Fellesfiler\Logitech
2008-12-21 19:53:06 ----A---- C:\WINDOWS\system32\LGUICOM.DLL
2008-12-21 19:53:05 ----A---- C:\WINDOWS\system32\LMOUSE32.DLL
2008-12-21 19:53:05 ----A---- C:\WINDOWS\system32\LMOUSE16.DLL
2008-12-21 19:53:05 ----A---- C:\WINDOWS\system32\COMNCTR.DLL
2008-12-21 19:53:04 ----N---- C:\WINDOWS\system32\lmoufrc.dll
2008-12-21 19:53:04 ----N---- C:\WINDOWS\system32\LCOINST.DLL
2008-12-21 19:53:04 ----N---- C:\WINDOWS\LOGI_MWX.EXE
2008-12-21 19:45:41 ----D---- C:\Documents and Settings\All Users\Programdata\DriverScanner
2008-12-21 19:44:55 ----HDC---- C:\Documents and Settings\All Users\Programdata\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
2008-12-21 17:33:34 ----D---- C:\Documents and Settings\Erik\Programdata\Uniblue
2008-12-21 17:33:22 ----D---- C:\Programfiler\Uniblue
2008-12-21 17:33:10 ----HDC---- C:\Documents and Settings\All Users\Programdata\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
2008-12-20 09:02:37 ----D---- C:\Documents and Settings\Erik\Programdata\vlc
2008-12-13 23:25:09 ----D---- C:\Documents and Settings\All Users\Programdata\SecTaskMan
2008-12-13 23:25:03 ----D---- C:\Programfiler\Security Task Manager
2008-12-09 21:26:23 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2008-12-09 21:25:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2008-12-09 21:24:59 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2008-12-09 21:22:19 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2008-12-08 14:19:29 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-07 20:31:26 ----D---- C:\Programfiler\Windows Resource Kits
2008-12-07 19:55:46 ----D---- C:\IN_BRUGES
2008-12-06 21:56:36 ----A---- C:\WINDOWS\ieResetIcons.exe
2008-12-06 19:41:26 ----A---- C:\WINDOWS\system32\wuauserv.dll
2008-12-06 14:53:33 ----SHD---- C:\found.009
2008-12-06 09:12:09 ----SHD---- C:\found.008
2008-11-29 21:42:58 ----D---- C:\Documents and Settings\Erik\Programdata\EPSON
2008-11-29 21:42:58 ----A---- C:\WINDOWS\DEBUGSM.INI
2008-11-29 20:06:16 ----D---- C:\Documents and Settings\All Users\Programdata\FLEXnet
2008-11-29 19:56:47 ----D---- C:\Programfiler\Bonjour
2008-11-29 19:50:55 ----D---- C:\Programfiler\Fellesfiler\Macrovision Shared
2008-11-28 16:43:08 ----D---- C:\Documents and Settings\Erik\Programdata\TomTom
2008-11-28 16:42:49 ----D---- C:\Programfiler\TomTom HOME 2
2008-11-22 08:53:06 ----D---- C:\Documents and Settings\Erik\Programdata\Software Informer
2008-11-22 08:52:57 ----D---- C:\Programfiler\Software Informer
2008-11-22 07:33:18 ----A---- C:\WINDOWS\system32\deploytk.dll
2008-11-21 21:24:56 ----A---- C:\WINDOWS\system32\HHActiveX.dll
2008-11-21 21:24:50 ----A---- C:\WINDOWS\system32\TpUtil.dll
2008-11-21 21:24:50 ----A---- C:\WINDOWS\system32\SYSTOOLS.DLL
2008-11-21 21:24:50 ----A---- C:\WINDOWS\system32\PavLspHook.dll
2008-11-21 21:24:49 ----A---- C:\WINDOWS\system32\PavSHook.dll
2008-11-21 21:24:49 ----A---- C:\WINDOWS\system32\pavipc.dll
2008-11-21 21:24:45 ----D---- C:\WINDOWS\system32\PAV
2008-11-21 21:24:45 ----A---- C:\WINDOWS\system32\avldr.dll
2008-11-21 21:24:44 ----D---- C:\Documents and Settings\Erik\Programdata\Panda Security
2008-11-21 21:24:44 ----D---- C:\Documents and Settings\All Users\Programdata\Panda Security
2008-11-21 21:22:57 ----D---- C:\Programfiler\Fellesfiler\Panda Security
2008-11-21 21:07:26 ----A---- C:\WINDOWS\AvDetected.ini
2008-11-21 20:37:02 ----D---- C:\Programfiler\Sun
2008-11-21 20:26:11 ----D---- C:\Programfiler\Windows Installer Clean Up
2008-11-19 06:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2008-11-18 23:45:49 ----D---- C:\Documents and Settings\All Users\Programdata\NOS
2008-11-18 23:45:48 ----D---- C:\Programfiler\NOS
2008-11-18 22:34:18 ----D---- C:\Documents and Settings\All Users\Programdata\UDL
2008-11-18 22:33:09 ----D---- C:\Programfiler\ABBYY FineReader 6.0 Sprint
2008-11-18 22:21:48 ----A---- C:\WINDOWS\system32\PICSDK2.dll
2008-11-18 22:21:48 ----A---- C:\WINDOWS\system32\PICSDK.ini
2008-11-18 22:21:48 ----A---- C:\WINDOWS\system32\PICSDK.dll
2008-11-18 22:21:48 ----A---- C:\WINDOWS\system32\PICEntry.dll
2008-11-18 22:21:48 ----A---- C:\WINDOWS\system32\EpPicPrt.dll
2008-11-18 22:21:47 ----A---- C:\WINDOWS\system32\EPPicMgr.dll
2008-11-18 22:20:39 ----A---- C:\WINDOWS\system32\E_DCINST.DLL
2008-11-18 22:20:38 ----A---- C:\WINDOWS\system32\E_FLBEGE.DLL
2008-11-18 22:20:38 ----A---- C:\WINDOWS\system32\E_FD4BEGE.DLL
2008-11-18 22:09:25 ----D---- C:\Documents and Settings\All Users\Programdata\EPSON
2008-11-18 22:09:17 ----D---- C:\Programfiler\epson
2008-11-18 22:09:17 ----A---- C:\WINDOWS\system32\escwiad.dll
2008-11-18 22:08:50 ----A---- C:\WINDOWS\CDE SX400EXPORT.ini
2008-11-18 16:18:17 ----A---- C:\WINDOWS\system32\RtNicProp32.dll
2008-11-18 16:11:31 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-11-18 06:49:14 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2008-11-18 06:49:06 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2008-11-18 06:48:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-11-18 06:48:52 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-11-18 06:48:42 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-11-18 06:48:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-11-18 06:48:29 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-11-18 06:47:50 ----D---- C:\WINDOWS\NV4870851564.TMP
2008-11-18 06:44:02 ----HDC---- C:\WINDOWS\$NtUninstallKB943729$
2008-11-18 06:43:55 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-11-18 06:43:50 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-11-18 06:43:44 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$
2008-11-18 06:43:37 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-11-18 06:43:30 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-11-18 06:43:25 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-11-18 06:43:18 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-11-18 06:43:09 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2008-11-18 06:42:37 ----D---- C:\Programfiler\Windows Desktop Search
2008-11-18 06:42:36 ----D---- C:\WINDOWS\system32\GroupPolicy
2008-11-18 06:42:23 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2008-11-18 06:42:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-11-18 06:42:09 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-11-18 06:42:05 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-11-18 06:40:10 ----A---- C:\WINDOWS\system32\SET37.tmp
2008-11-18 06:40:10 ----A---- C:\WINDOWS\system32\SET36.tmp
2008-11-18 06:40:10 ----A---- C:\WINDOWS\system32\SET35.tmp
2008-11-18 06:40:10 ----A---- C:\WINDOWS\system32\SET34.tmp
2008-11-18 06:40:10 ----A---- C:\WINDOWS\system32\SET32.tmp
2008-11-18 06:40:10 ----A---- C:\WINDOWS\system32\SET31.tmp
2008-11-18 06:40:10 ----A---- C:\WINDOWS\system32\SET30.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET33.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET2F.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET2E.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET2D.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET2C.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET2B.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET2A.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET29.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET28.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET27.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET26.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET25.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET24.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET23.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET22.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET21.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET20.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET1F.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET1E.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET1D.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET1C.tmp
2008-11-18 06:40:09 ----A---- C:\WINDOWS\system32\SET1B.tmp
2008-11-18 06:30:07 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-11-18 06:30:05 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2008-11-18 03:06:53 ----D---- C:\WINDOWS\Prefetch
2008-11-18 00:31:01 ----HDC---- C:\WINDOWS\$NtUninstallKB942763$
2008-11-18 00:22:19 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-11-18 00:18:32 ----A---- C:\WINDOWS\003293_.tmp
2008-11-17 23:31:38 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2008-11-17 23:28:01 ----A---- C:\WINDOWS\system32\wshirda.dll
2008-11-17 23:28:01 ----A---- C:\WINDOWS\system32\irmon.dll
2008-11-17 23:28:01 ----A---- C:\WINDOWS\system32\irftp.exe
2008-11-17 23:04:07 ----A---- C:\WINDOWS\system32\spxcoins.dll
2008-11-17 23:04:07 ----A---- C:\WINDOWS\system32\irclass.dll
2008-11-17 23:03:58 ----RA---- C:\WINDOWS\SET138.tmp
2008-11-17 23:03:52 ----RA---- C:\WINDOWS\SET105.tmp
2008-11-17 23:03:50 ----RA---- C:\WINDOWS\SETF9.tmp
2008-11-17 23:03:48 ----RA---- C:\WINDOWS\SETF6.tmp
2008-11-16 00:02:09 ----SHD---- C:\found.007
2008-11-13 19:59:05 ----A---- C:\WINDOWS\imsins.BAK
2008-11-12 23:28:14 ----SHD---- C:\found.006
2008-11-06 17:52:49 ----D---- C:\Programfiler\Fellesfiler\Remote Control Software Common
2008-11-06 17:52:45 ----D---- C:\Programfiler\Logitech
2008-11-06 17:52:35 ----D---- C:\Programfiler\Fellesfiler\Remote Control USB Driver
2008-10-28 18:49:47 ----SD---- C:\WINDOWS\Tasks
2008-10-28 18:49:41 ----D---- C:\Programfiler\msn gaming zone
2008-10-28 18:42:01 ----SHD---- C:\found.005
2008-10-28 00:36:27 ----SHD---- C:\found.004
2008-10-27 23:53:21 ----SHD---- C:\found.003
2008-10-27 23:26:32 ----SHD---- C:\found.002
2008-10-27 22:51:13 ----D---- C:\Programfiler\Hot CPU Tester Pro 4 LE
2008-10-27 22:51:13 ----A---- C:\WINDOWS\eSellerateEngine.dll
2008-10-27 17:57:33 ----SHD---- C:\found.001
2008-10-27 17:09:39 ----SHD---- C:\found.000
2008-10-25 10:38:04 ----A---- C:\WINDOWS\system32\icardres.dll.mui
2008-10-19 19:37:49 ----D---- C:\THE_INCREDIBLE_HULK
2008-10-12 21:45:46 ----D---- C:\Documents and Settings\All Users\Programdata\vsosdk

======List of files/folders modified in the last 3 months======

2008-12-31 21:29:13 ----D---- C:\WINDOWS\Temp
2008-12-31 20:21:55 ----D---- C:\Programfiler\Mozilla Firefox
2008-12-31 20:19:49 ----D---- C:\WINDOWS\system32\drivers
2008-12-31 20:13:55 ----D---- C:\WINDOWS\system32
2008-12-31 20:13:53 ----D---- C:\WINDOWS
2008-12-31 20:13:01 ----A---- C:\WINDOWS\system.ini
2008-12-31 20:12:21 ----D---- C:\WINDOWS\AppPatch
2008-12-31 20:12:21 ----D---- C:\Programfiler\Fellesfiler
2008-12-31 20:11:42 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-12-31 20:10:43 ----RASH---- C:\boot.ini
2008-12-31 20:09:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-12-31 19:57:22 ----RD---- C:\Programfiler
2008-12-31 19:36:28 ----D---- C:\WINDOWS\Minidump
2008-12-30 19:39:26 ----D---- C:\Programfiler\TightVNC
2008-12-26 08:08:36 ----A---- C:\WINDOWS\ntbtlog.txt
2008-12-25 23:49:39 ----D---- C:\Programfiler\Panda Security
2008-12-25 22:34:42 ----D---- C:\Documents and Settings\Erik\Programdata\Vso
2008-12-24 16:02:46 ----A---- C:\WINDOWS\win.ini
2008-12-21 23:25:09 ----SHD---- C:\WINDOWS\Installer
2008-12-21 23:25:08 ----D---- C:\Programfiler\Java
2008-12-21 23:19:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-12-21 22:34:46 ----HD---- C:\WINDOWS\inf
2008-12-21 21:26:48 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-12-21 21:26:41 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-12-21 21:26:38 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-12-21 20:43:26 ----D---- C:\WINDOWS\Microsoft.NET
2008-12-21 20:43:19 ----RSD---- C:\WINDOWS\assembly
2008-12-21 20:25:56 ----D---- C:\WINDOWS\system32\config
2008-12-21 20:14:47 ----D---- C:\WINDOWS\system32\nb-no
2008-12-21 20:13:35 ----D---- C:\WINDOWS\WinSxS
2008-12-21 20:12:37 ----D---- C:\WINDOWS\system32\XPSViewer
2008-12-21 20:12:34 ----D---- C:\WINDOWS\system32\en-us
2008-12-21 20:12:29 ----RSD---- C:\WINDOWS\Fonts
2008-12-21 19:53:04 ----HD---- C:\Programfiler\InstallShield Installation Information
2008-12-19 21:29:27 ----A---- C:\WINDOWS\NeroDigital.ini
2008-12-18 21:44:52 ----D---- C:\WINDOWS\ie7updates
2008-12-18 21:44:34 ----HD---- C:\WINDOWS\$hf_mig$
2008-12-17 15:32:12 ----SHD---- C:\System Volume Information
2008-12-17 15:32:12 ----D---- C:\WINDOWS\system32\Restore
2008-12-16 17:32:57 ----D---- C:\WINDOWS\system32\CatRoot
2008-12-16 10:00:03 ----D---- C:\WINDOWS\system32\inetsrv
2008-12-13 07:40:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-12-09 21:26:00 ----D---- C:\Programfiler\Internet Explorer
2008-12-09 15:24:38 ----A---- C:\WINDOWS\system32\MRT.exe
2008-12-08 13:50:18 ----D---- C:\WINDOWS\system32\OldCatRoot2
2008-12-07 19:54:16 ----D---- C:\Documents and Settings\All Users\Programdata\DVD Shrink
2008-12-06 21:57:02 ----DC---- C:\WINDOWS\ie7
2008-12-06 21:56:39 ----D---- C:\WINDOWS\Help
2008-12-06 19:44:16 ----D---- C:\WINDOWS\SoftwareDistribution
2008-12-06 01:45:39 ----D---- C:\OziExplorer
2008-11-29 21:57:19 ----D---- C:\Documents and Settings\Erik\Programdata\Adobe
2008-11-29 19:57:47 ----D---- C:\Programfiler\Adobe
2008-11-29 19:57:20 ----D---- C:\Documents and Settings\All Users\Programdata\Adobe
2008-11-29 19:56:46 ----D---- C:\Programfiler\Fellesfiler\Adobe
2008-11-28 22:25:07 ----D---- C:\Documents and Settings\Erik\Programdata\Sites
2008-11-28 22:25:07 ----D---- C:\Documents and Settings\Erik\Programdata\SiteClasses
2008-11-28 17:41:38 ----D---- C:\Programfiler\Microsoft ActiveSync
2008-11-28 16:43:10 ----D---- C:\Documents and Settings\Erik\Programdata\Mozilla
2008-11-21 20:41:18 ----SD---- C:\Documents and Settings\All Users\Programdata\Microsoft
2008-11-21 20:41:12 ----D---- C:\WINDOWS\system32\wbem
2008-11-21 20:26:02 ----D---- C:\Programfiler\MSECache
2008-11-18 23:00:39 ----D---- C:\temp
2008-11-18 22:09:17 ----D---- C:\WINDOWS\twain_32
2008-11-18 17:27:06 ----D---- C:\Programfiler\Canon
2008-11-18 16:12:25 ----D---- C:\WINDOWS\system32\RTCOM
2008-11-18 16:11:54 ----A---- C:\WINDOWS\HideWin.exe
2008-11-18 16:07:03 ----D---- C:\WINDOWS\nview
2008-11-18 06:43:28 ----D---- C:\Programfiler\Messenger
2008-11-18 06:43:11 ----SD---- C:\Documents and Settings\Erik\Programdata\Microsoft
2008-11-18 06:29:52 ----D---- C:\Programfiler\Windows Media Player
2008-11-18 03:06:57 ----A---- C:\WINDOWS\setuplog.txt
2008-11-18 03:06:32 ----D---- C:\WINDOWS\system32\Setup
2008-11-18 00:28:57 ----D---- C:\WINDOWS\ime
2008-11-18 00:28:48 ----D---- C:\WINDOWS\PeerNet
2008-11-18 00:28:48 ----D---- C:\Programfiler\Movie Maker
2008-11-18 00:27:14 ----D---- C:\WINDOWS\system32\npp
2008-11-18 00:27:13 ----D---- C:\WINDOWS\msagent
2008-11-18 00:27:11 ----D---- C:\WINDOWS\srchasst
2008-11-18 00:27:11 ----D---- C:\Programfiler\NetMeeting
2008-11-18 00:27:10 ----D---- C:\WINDOWS\system32\Com
2008-11-18 00:27:08 ----D---- C:\Programfiler\Windows NT
2008-11-18 00:27:08 ----D---- C:\Programfiler\Outlook Express
2008-11-18 00:27:06 ----D---- C:\Programfiler\Fellesfiler\System
2008-11-18 00:26:52 ----D---- C:\WINDOWS\system32\usmt
2008-11-18 00:26:52 ----D---- C:\WINDOWS\system32\oobe
2008-11-18 00:26:51 ----D---- C:\WINDOWS\system
2008-11-18 00:24:47 ----D---- C:\WINDOWS\security
2008-11-18 00:22:17 ----D---- C:\WINDOWS\ehome
2008-11-17 23:47:43 ----D---- C:\WINDOWS\Registration
2008-11-17 23:32:27 ----A---- C:\WINDOWS\OEWABLog.txt
2008-11-17 23:32:21 ----A---- C:\WINDOWS\ODBCINST.INI
2008-11-17 23:31:40 ----RD---- C:\WINDOWS\Web
2008-11-17 23:31:33 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2008-11-17 23:10:12 ----D---- C:\WINDOWS\Media
2008-11-17 23:06:26 ----D---- C:\WINDOWS\system32\1044
2008-11-17 23:05:25 ----D---- C:\WINDOWS\system32\icsxml
2008-11-17 23:04:52 ----D---- C:\WINDOWS\system32\ias
2008-11-17 23:04:46 ----D---- C:\WINDOWS\system32\1033
2008-11-17 23:03:58 ----ASH---- C:\Documents and Settings\All Users\Programdata\desktop.ini
2008-11-17 23:03:25 ----D---- C:\WINDOWS\Driver Cache
2008-11-13 02:38:27 ----A---- C:\WINDOWS\DUMP3846.tmp
2008-11-13 02:32:11 ----A---- C:\WINDOWS\DUMP3807.tmp
2008-11-08 22:01:31 ----D---- C:\Documents and Settings\Erik\Programdata\dvdcss
2008-11-06 17:52:31 ----D---- C:\Programfiler\Fellesfiler\InstallShield
2008-10-28 16:27:21 ----A---- C:\WINDOWS\system32\wpa.bak
2008-10-28 02:47:56 ----A---- C:\WINDOWS\DUMP35c5.tmp
2008-10-27 17:47:16 ----A---- C:\WINDOWS\DUMP3855.tmp
2008-10-23 13:43:42 ----A---- C:\WINDOWS\system32\gdi32.dll
2008-10-23 11:06:59 ----A---- C:\WINDOWS\system32\tzchange.exe
2008-10-22 17:49:37 ----D---- C:\Programfiler\Microsoft Silverlight
2008-10-16 21:33:33 ----A---- C:\WINDOWS\system32\wininet.dll
2008-10-16 21:33:32 ----A---- C:\WINDOWS\system32\webcheck.dll
2008-10-16 21:33:32 ----A---- C:\WINDOWS\system32\urlmon.dll
2008-10-16 21:33:31 ----N---- C:\WINDOWS\system32\pngfilt.dll
2008-10-16 21:33:31 ----N---- C:\WINDOWS\system32\occache.dll
2008-10-16 21:33:31 ----N---- C:\WINDOWS\system32\mstime.dll
2008-10-16 21:33:31 ----A---- C:\WINDOWS\system32\url.dll
2008-10-16 21:33:30 ----N---- C:\WINDOWS\system32\msrating.dll
2008-10-16 21:33:30 ----N---- C:\WINDOWS\system32\mshtmled.dll
2008-10-16 21:33:27 ----N---- C:\WINDOWS\system32\jsproxy.dll
2008-10-16 21:33:27 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2008-10-16 21:33:27 ----A---- C:\WINDOWS\system32\msfeeds.dll
2008-10-16 21:33:26 ----N---- C:\WINDOWS\system32\iernonce.dll
2008-10-16 21:33:26 ----A---- C:\WINDOWS\system32\iertutil.dll
2008-10-16 21:33:26 ----A---- C:\WINDOWS\system32\ieframe.dll
2008-10-16 21:33:23 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2008-10-16 21:33:23 ----N---- C:\WINDOWS\system32\ieaksie.dll
2008-10-16 21:33:23 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2008-10-16 21:33:22 ----N---- C:\WINDOWS\system32\ieakeng.dll
2008-10-16 21:33:22 ----N---- C:\WINDOWS\system32\extmgr.dll
2008-10-16 21:33:22 ----N---- C:\WINDOWS\system32\dxtrans.dll
2008-10-16 21:33:22 ----N---- C:\WINDOWS\system32\dxtmsft.dll
2008-10-16 21:33:22 ----A---- C:\WINDOWS\system32\icardie.dll
2008-10-16 21:33:22 ----A---- C:\WINDOWS\system32\advpack.dll
2008-10-16 14:15:01 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2008-10-16 14:13:40 ----A---- C:\WINDOWS\system32\wuweb.dll
2008-10-16 14:13:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2008-10-16 14:12:22 ----A---- C:\WINDOWS\system32\wucltui.dll
2008-10-16 14:12:20 ----A---- C:\WINDOWS\system32\wuapi.dll
2008-10-16 14:11:09 ----A---- C:\WINDOWS\system32\ieudinit.exe
2008-10-16 14:09:44 ----A---- C:\WINDOWS\system32\wups2.dll
2008-10-16 14:09:44 ----A---- C:\WINDOWS\system32\wuauclt.exe
2008-10-16 14:09:44 ----A---- C:\WINDOWS\system32\cdm.dll
2008-10-16 14:08:58 ----A---- C:\WINDOWS\system32\wups.dll
2008-10-16 14:08:56 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2008-10-16 14:07:50 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2008-10-16 14:07:48 ----A---- C:\WINDOWS\system32\muweb.dll
2008-10-16 14:07:32 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2008-10-16 14:06:48 ----A---- C:\WINDOWS\system32\mucltui.dll
2008-10-16 14:06:36 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2008-10-15 17:38:04 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-15 08:04:53 ----N---- C:\WINDOWS\system32\ieakui.dll
2008-10-06 17:41:47 ----D---- C:\Programfiler\Postmann Pat - PC SPILL
2008-10-03 11:04:49 ----A---- C:\WINDOWS\system32\strmdll.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 APPFLT;App Filter Plugin; \??\C:\WINDOWS\system32\Drivers\APPFLT.SYS []
R1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2007-07-12 11136]
R1 DSAFLT;DSA Filter Plugin; \??\C:\WINDOWS\system32\Drivers\DSAFLT.SYS []
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R1 FNETMON;NetMon Filter Plugin; \??\C:\WINDOWS\system32\Drivers\fnetmon.SYS []
R1 IDSFLT;Ids Filter Plugin; \??\C:\WINDOWS\system32\Drivers\IDSFLT.SYS []
R1 intelppm;Intel-prosessordriver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 NETFLTDI;Panda Net Driver [TDI Layer]; \??\C:\WINDOWS\system32\Drivers\NETFLTDI.SYS []
R1 ShldDrv;Panda File Shield Driver; C:\WINDOWS\System32\DRIVERS\ShlDrv51.sys [2008-03-04 41144]
R1 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\WINDOWS\system32\Drivers\WNMFLT.SYS []
R2 irda;IrDA-protokoll; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 PAVDRV;pavdrv; C:\WINDOWS\system32\DRIVERS\pavdrv51.sys [2008-04-28 84024]
R2 PavProc;Panda Process Protection Driver; \??\C:\WINDOWS\system32\DRIVERS\PavProc.sys []
R3 Arp1394;1394 ARP-klientprotokoll; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb.sys [2007-07-12 12416]
R3 AvFlt;Antivirus Filter Driver; C:\WINDOWS\system32\drivers\av5flt.sys []
R3 ComFiltr;Panda Anti-Dialer; \??\C:\WINDOWS\system32\DRIVERS\COMFiltr.sys []
R3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
R3 HDAudBus;Microsoft UAA-bussdriver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-24 4749824]
R3 LHidFlt2;Logitech HID/USB Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFlt2.Sys [2003-12-11 25630]
R3 LHidUsb;Logitech USB Receiver device driver; C:\WINDOWS\System32\Drivers\LHidUsb.Sys [2003-12-11 37916]
R3 LMouFlt2;Logitech Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFlt2.Sys [2003-12-11 70894]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2008-06-26 171520]
R3 mouhid;HID-driver for mus; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-06 12160]
R3 NETIMFLT01060034;PANDA NDIS IM Filter Miniport v1.6.0.34; C:\WINDOWS\system32\DRIVERS\neti1634.sys [2008-06-26 197888]
R3 NIC1394;1394-nettverksdriver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-09-17 6132576]
R3 PavSRK.sys;PavSRK.sys; \??\C:\WINDOWS\system32\PavSRK.sys []
R3 PavTPK.sys;PavTPK.sys; \??\C:\WINDOWS\system32\PavTPK.sys []
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-07-06 47360]
R3 Rasirda;WAN-miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-10-16 115840]
R3 STIrUsb;SigmaTel USB-IrDA maskinvarelås; C:\WINDOWS\system32\DRIVERS\irstusb.sys [2008-06-26 26624]
R3 usbccgp;Microsoft USB generell overordnet driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Miniportdriver for Microsoft USB 2.0 forbedret vertskontroller; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Driver for standard Microsoft USB-hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Microsoft USB PRINTER-klasse; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;USB-skannerdriver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 usbstor;USB-masselagringsenhet; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Miniportdriver for Microsoft USB universell vertskontroller; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys [2007-07-12 10752]
S1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys []
S3 61883;61883 enhet; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
S3 7ByteIo;7ByteIo; \??\C:\Programfiler\Hot CPU Tester Pro 4 LE\SysInfo.sys []
S3 Avc;AVC-enhet; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Dekoder for teksting for hørselshemmede; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 grmnusb;grmnusb; C:\WINDOWS\system32\drivers\grmnusb.sys [2007-03-08 8320]
S3 hidusb;Microsoft HID-klassedriver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
S3 MSIRCOMM;Microsoft IR Communications Driver; C:\WINDOWS\system32\DRIVERS\MSIRCOMM.sys [2008-04-13 22016]
S3 MSTEE;Tee/Sink-to-Sink-konverterer for Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI-kodek; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/video-tilkobling; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 RkPavproc1;RkPavproc1; \??\C:\WINDOWS\system32\drivers\RkPavproc1.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usb_rndisx;USB RNDIS-kort; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 WSTCODEC;World Standard Teletext-kodek; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Windows Socket 2.0-støttemiljø for ikke-IFS-tjenesteleverandør; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2006-03-02 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2008-06-26 257024]
R2 bgsvcgen;B's Recorder GOLD Library General Service; C:\WINDOWS\system32\bgsvcgen.exe [2007-06-16 145504]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Programfiler\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 GEST Service;GEST Service for program management.; C:\Programfiler\GIGABYTE\EnergySaver\GSvr.exe [2008-05-13 80392]
R2 Gwmsrv;Panda Goodware Cache Manager; C:\WINDOWS\system32\svchost -k Panda []
R2 Irmon;Infrarød overvåking; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Programfiler\Java\jre6\bin\jqs.exe [2008-12-21 152984]
R2 MDM;Machine Debug Manager; C:\Programfiler\Fellesfiler\Microsoft Shared\VS7Debug\mdm.exe [2003-06-19 322120]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-09-17 163908]
R2 Panda Software Controller;Panda Software Controller; C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PsCtrls.exe [2008-07-16 181504]
R2 PAVFNSVR;Panda Function Service; C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PavFnSvr.exe [2008-07-10 169216]
R2 PavPrSrv;Panda Process Protection Service; C:\Programfiler\Fellesfiler\Panda Security\PavShld\pavprsrv.exe [2008-02-04 62768]
R2 PAVSRV;Panda On-Access Anti-Malware Service; C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\pavsrv51.exe [2008-07-04 288512]
R2 PSHost;Panda Host Service; C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\Firewall\PSHOST.EXE [2008-06-12 226608]
R2 PSIMSVC;Panda IManager Service; C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PsImSvc.exe [2008-06-19 108288]
R2 PskSvcRetail;Panda PSK service; C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\PskSvc.exe [2008-06-25 28928]
R2 TPSrv;Panda TPSrv; C:\Programfiler\Panda Security\Panda Antivirus Pro 2009\TPSrv.exe [2008-07-17 157440]
S2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Programfiler\Nero\Nero8\Nero BackItUp\NBService.exe []
S2 PCLEPCI;PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [2005-02-09 14165]
S3 aspnet_state;Statustjeneste for ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Programfiler\Fellesfiler\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-11-29 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Programfiler\Fellesfiler\Nero\Lib\NMIndexingService.exe [2007-12-13 447784]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Programfiler\Windows Media Player\WMPNetwk.exe [2006-11-15 914944]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------