Vengance Skrevet 5. februar 2009 Del Skrevet 5. februar 2009 (endret) Her har vi combofix loggen på den andre pc'en: ComboFix 09-02-04.04 - Zeki 2009-02-05 20:20:46.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1044.18.1014.470 [GMT 1:00] Kjører fra: c:\documents and settings\Zeki\Lokale innstillinger\Programdata\Opera\Opera\profile\cache4\temporary_download\ComboFix.exe AV: AVG Anti-Virus *On-access scanning enabled* (Updated) FW: AVG Firewall *disabled* * Opprettet nytt gjenopprettingspunkt ADVARSEL -DENNE MASKINEN HAR IKKE GJENOPPRETTINGSKONSOLLEN INSTALLERT !! . ((((((((((((((((((((((((((( Filer Opprettet Fra 2009-01-05 til 2009-02-05 ))))))))))))))))))))))))))))))))) . 2009-02-05 19:51 . 2009-02-05 19:51 <DIR> d-------- c:\programfiler\SmartFTP Client 2009-02-05 19:51 . 2009-02-05 19:51 <DIR> d-------- c:\documents and settings\Zeki\Programdata\SmartFTP 2009-02-05 19:50 . 2009-02-05 19:50 <DIR> d-------- c:\programfiler\SmartFTP Client 3.0 Setup Files 2009-02-05 19:11 . 2009-02-05 19:11 <DIR> d-------- c:\windows\LastGood 2009-02-05 15:32 . 2009-02-05 15:32 <DIR> d-------- c:\programfiler\Microsoft CAPICOM 2.1.0.2 2009-02-05 15:23 . 2009-02-05 15:23 <DIR> d-------- c:\programfiler\MSXML 4.0 2009-02-05 15:21 . 2009-02-05 15:40 1,355 --a------ c:\windows\imsins.BAK 2009-02-05 15:13 . 2009-02-05 20:13 <DIR> dr-h----- c:\documents and settings\Zeki\Siste 2009-02-04 22:11 . 2009-02-04 22:11 <DIR> d---s---- c:\documents and settings\Zeki\UserData 2009-02-04 22:09 . 2009-02-04 22:09 <DIR> d-------- c:\programfiler\MSN Messenger 2009-02-04 21:46 . 2009-02-04 21:46 <DIR> d-------- c:\programfiler\Malwarebytes' Anti-Malware 2009-02-04 21:46 . 2009-02-04 21:46 <DIR> d-------- c:\documents and settings\Zeki\Programdata\Malwarebytes 2009-02-04 21:46 . 2009-02-04 21:46 <DIR> d-------- c:\documents and settings\All Users\Programdata\Malwarebytes 2009-02-04 21:46 . 2009-01-14 16:11 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys 2009-02-04 21:46 . 2009-01-14 16:11 15,504 --a------ c:\windows\system32\drivers\mbam.sys 2009-02-04 20:51 . 2009-02-04 20:51 <DIR> d-------- c:\programfiler\Microsoft 2009-02-04 20:50 . 2009-02-04 20:50 <DIR> d-------- c:\programfiler\Windows Live SkyDrive 2009-02-04 20:50 . 2009-02-04 20:51 <DIR> d-------- c:\programfiler\Windows Live 2009-02-04 20:50 . 2009-02-04 21:15 <DIR> d-------- c:\documents and settings\Zeki\Contacts 2009-02-04 20:31 . 2009-02-04 20:35 8,310 --a------ c:\documents and settings\Zeki\tobs2.exe 2009-02-04 20:29 . 2009-02-04 20:29 <DIR> d-------- c:\documents and settings\Zeki\Programdata\Canneverbe_Limited 2009-02-04 20:28 . 2009-02-04 20:29 <DIR> d-------- c:\programfiler\CDBurnerXP 2009-02-04 20:25 . 2006-06-29 13:07 14,048 --------- c:\windows\system32\spmsg2.dll 2009-02-04 20:23 . 2009-02-04 20:23 <DIR> d-------- c:\windows\system32\nb-NO 2009-02-04 20:20 . 2009-02-04 20:23 <DIR> d-------- c:\windows\system32\XPSViewer 2009-02-04 20:19 . 2009-02-04 20:19 <DIR> d-------- c:\programfiler\Reference Assemblies 2009-02-04 20:17 . 2009-02-04 20:19 <DIR> d-------- C:\3cb292a7f7ed8028e4eb2ecc7e 2009-02-04 20:17 . 2008-07-06 13:06 1,676,288 --------- c:\windows\system32\xpssvcs.dll 2009-02-04 20:17 . 2008-07-06 13:06 1,676,288 -----c--- c:\windows\system32\dllcache\xpssvcs.dll 2009-02-04 20:17 . 2008-07-06 11:50 597,504 -----c--- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2009-02-04 20:17 . 2008-07-06 13:06 575,488 --------- c:\windows\system32\xpsshhdr.dll 2009-02-04 20:17 . 2008-07-06 13:06 575,488 -----c--- c:\windows\system32\dllcache\xpsshhdr.dll 2009-02-04 20:17 . 2008-07-06 13:06 117,760 --------- c:\windows\system32\prntvpt.dll 2009-02-04 20:17 . 2008-07-06 13:06 89,088 -----c--- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2009-02-04 20:14 . 2009-02-04 23:29 <DIR> d-------- c:\documents and settings\Zeki\Programdata\LimeWire 2009-02-04 20:13 . 2009-02-04 20:13 <DIR> d-------- c:\programfiler\MSXML 6.0 2009-02-04 20:09 . 2009-02-04 20:09 <DIR> d-------- c:\programfiler\LimeWire 2009-02-04 18:35 . 2006-10-26 19:56 32,592 --a------ c:\windows\system32\msonpmon.dll 2009-02-04 18:33 . 2009-02-04 20:20 <DIR> d-------- c:\programfiler\MSBuild 2009-02-04 18:33 . 2009-02-04 18:33 <DIR> d-------- c:\programfiler\Microsoft Works 2009-02-04 18:31 . 2009-02-04 18:31 <DIR> d-------- c:\programfiler\Microsoft.NET 2009-02-04 16:21 . 2008-10-16 14:06 268,648 --a------ c:\windows\system32\mucltui.dll 2009-02-04 16:21 . 2008-10-16 14:06 208,744 --a------ c:\windows\system32\muweb.dll 2009-02-04 16:21 . 2008-10-16 14:06 27,496 --a------ c:\windows\system32\mucltui.dll.mui 2009-02-04 15:16 . 2009-02-04 18:32 <DIR> d-------- c:\windows\SHELLNEW 2009-02-04 15:08 . 2009-02-04 15:08 <DIR> dr-h----- C:\MSOCache 2009-02-04 15:00 . 2009-02-04 15:00 <DIR> d-------- c:\programfiler\Alcohol Soft 2009-02-04 15:00 . 2009-02-04 20:35 8,311 --a------ c:\documents and settings\Zeki\clf32.exe 2009-02-04 14:57 . 2009-02-04 14:57 716,272 --a------ c:\windows\system32\drivers\sptd.sys 2009-02-04 14:27 . 2009-02-04 20:35 19,456 --a------ c:\documents and settings\Zeki\tvs2.exe 2009-02-04 14:26 . 2004-08-03 23:08 26,496 --a--c--- c:\windows\system32\dllcache\usbstor.sys 2009-02-04 14:06 . 2009-02-05 15:40 <DIR> d-------- c:\documents and settings\All Users\Programdata\Microsoft Help 2009-02-04 13:29 . 2009-02-04 13:29 <DIR> d-------- c:\programfiler\ACW 2009-02-04 07:57 . 2009-02-04 07:57 <DIR> d-------- c:\windows\system32\LogFiles 2009-02-03 23:10 . 2009-02-04 19:53 <DIR> d-------- c:\documents and settings\Zeki\Tracing 2009-02-03 23:01 . 2009-02-03 23:01 <DIR> d-------- c:\programfiler\Fellesfiler\Adobe 2009-02-03 22:52 . 2009-02-04 17:28 <DIR> d-------- c:\windows\system32\CatRoot_bak 2009-02-03 22:51 . 2008-06-14 19:00 272,256 --------- c:\windows\system32\drivers\bthport.sys 2009-02-03 22:51 . 2008-06-14 19:00 272,256 -----c--- c:\windows\system32\dllcache\bthport.sys 2009-02-03 22:49 . 2009-02-03 22:49 <DIR> d-------- c:\programfiler\Fellesfiler\Windows Live 2009-02-03 22:48 . 2008-08-14 14:48 2,182,144 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe 2009-02-03 22:48 . 2008-08-14 14:48 2,138,112 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe 2009-02-03 22:48 . 2008-08-14 14:48 2,059,520 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe 2009-02-03 22:48 . 2008-08-14 14:48 2,017,792 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe 2009-02-03 22:43 . 2008-10-24 12:10 453,632 -----c--- c:\windows\system32\dllcache\mrxsmb.sys 2009-02-03 22:38 . 2007-11-30 12:18 26,488 --a------ c:\windows\system32\spupdsvc.exe 2009-02-03 22:22 . 2009-02-03 22:22 325,128 --a------ c:\windows\system32\drivers\avgldx86.sys 2009-02-03 22:22 . 2009-02-03 22:22 107,272 --a------ c:\windows\system32\drivers\avgtdix.sys 2009-02-03 22:22 . 2009-02-03 22:22 12,552 --a------ c:\windows\system32\drivers\avgrkx86.sys 2009-02-03 22:22 . 2009-02-03 22:22 10,520 --a------ c:\windows\system32\avgrsstx.dll 2009-02-03 22:21 . 2009-02-05 15:16 <DIR> d-------- c:\windows\system32\drivers\Avg 2009-02-03 22:21 . 2009-02-03 22:21 <DIR> d-------- c:\documents and settings\Zeki\Programdata\AVGTOOLBAR 2009-02-03 22:20 . 2009-02-03 22:20 <DIR> d-------- c:\programfiler\AVG 2009-02-03 22:20 . 2009-02-03 22:20 <DIR> d-------- c:\documents and settings\All Users\Programdata\avg8 2009-02-03 22:20 . 2009-02-03 22:20 50,968 --a------ c:\windows\system32\avgfwdx.dll 2009-02-03 22:20 . 2009-02-03 22:20 29,208 --a------ c:\windows\system32\drivers\avgfwdx.sys 2009-02-03 22:09 . 2009-02-03 22:09 410,984 --a------ c:\windows\system32\deploytk.dll 2009-02-03 22:09 . 2009-02-03 22:09 73,728 --a------ c:\windows\system32\javacpl.cpl 2009-02-03 21:53 . 2009-02-03 21:53 <DIR> d-------- C:\e9bc658c9e5ba82334bf 2009-02-03 21:50 . 2004-10-25 15:12 32,768 --a------ c:\windows\iwlanver.dll 2009-02-03 21:49 . 2009-02-03 21:49 <DIR> d-------- c:\documents and settings\Zeki\Programdata\Intel 2009-02-03 21:49 . 2009-02-03 21:49 <DIR> d-------- c:\documents and settings\All Users\Programdata\Intel 2009-02-03 21:49 . 2009-02-03 21:49 17,056 --a------ c:\windows\system32\drivers\AegisP.sys 2009-02-03 21:37 . 2009-02-03 21:37 <DIR> d-------- c:\programfiler\uTorrent 2009-02-03 21:37 . 2009-02-04 20:31 <DIR> d-------- c:\documents and settings\Zeki\Programdata\uTorrent 2009-02-03 21:36 . 2009-02-04 20:49 <DIR> d----c--- c:\windows\system32\DRVSTORE 2009-02-03 21:36 . 2006-08-21 16:34 2,732,032 --a------ c:\windows\system32\Netw2r32.dll 2009-02-03 21:36 . 2006-08-21 16:34 557,056 --a------ c:\windows\system32\Netw2c32.dll 2009-02-03 21:36 . 2006-08-21 16:34 53,248 --a------ c:\windows\iwlandrvxpver.dll 2009-02-03 21:29 . 2009-02-03 21:29 <DIR> d-------- c:\programfiler\CCleaner 2009-02-03 21:20 . 2009-02-03 21:20 <DIR> d-------- c:\programfiler\Opera 2009-02-03 21:18 . 2009-02-03 21:18 <DIR> d-------- c:\documents and settings\All Users\Programdata\hpqwmi 2009-02-03 21:13 . 2009-02-05 19:11 <DIR> d--h----- c:\windows\$hf_mig$ 2009-02-03 21:13 . 2004-08-04 01:54 57,344 --a------ c:\windows\system32\drivers\redbook.sys 2009-02-03 21:13 . 2004-08-04 00:07 14,080 --a------ c:\windows\system32\drivers\CmBatt.sys 2009-02-03 21:13 . 2001-08-17 22:57 14,080 --a------ c:\windows\system32\drivers\battc.sys 2009-02-03 21:13 . 2001-08-17 22:58 9,344 --a------ c:\windows\system32\drivers\compbatt.sys 2009-02-03 21:13 . 2001-08-17 22:59 3,072 --a------ c:\windows\system32\drivers\audstub.sys 2009-02-03 21:12 . 2004-08-04 02:03 74,240 --a------ c:\windows\system32\usbui.dll 2009-02-03 21:12 . 2004-08-03 23:31 20,992 --a------ c:\windows\system32\drivers\RTL8139.sys 2009-02-03 21:12 . 2001-08-17 22:46 6,400 --a------ c:\windows\system32\drivers\enum1394.sys 2009-02-03 21:12 . 2004-08-04 01:56 5,504 --a------ c:\windows\system32\drivers\intelide.sys 2009-02-03 21:11 . 2004-08-04 13:00 221,184 --a------ c:\windows\system32\wmpns.dll 2009-02-03 21:11 . 2004-08-04 00:07 8,832 --a------ c:\windows\system32\drivers\wmiacpi.sys 2009-02-03 21:09 . 2004-08-04 13:00 13,463,552 --a--c--- c:\windows\system32\dllcache\hwxjpn.dll 2009-02-03 21:08 . 2009-02-05 20:20 <DIR> d-------- c:\windows\system32\CatRoot2 2009-02-03 21:08 . 2009-02-03 22:09 <DIR> d-------- c:\programfiler\Java 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d-------- c:\programfiler\Fellesfiler\Java 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> dr------- c:\documents and settings\Default User\Start-meny 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d--h----- c:\documents and settings\Default User\Skrivere 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d-------- c:\documents and settings\Default User\Skrivebord 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d--h----- c:\documents and settings\Default User\Siste 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> dr-h----- c:\documents and settings\Default User\Programdata 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d-------- c:\documents and settings\Default User\Mine dokumenter 2009-02-03 21:08 . 2009-02-03 20:16 <DIR> d--h----- c:\documents and settings\Default User\Maler 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> dr-h----- c:\documents and settings\Default User\Lokale innstillinger 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d-------- c:\documents and settings\Default User\Favoritter 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d--h----- c:\documents and settings\Default User\AndrMask 2009-02-03 21:08 . 2009-02-03 20:34 <DIR> dr------- c:\documents and settings\All Users\Start-meny 2009-02-03 21:08 . 2009-02-05 19:51 <DIR> d-------- c:\documents and settings\All Users\Skrivebord 2009-02-03 21:08 . 2009-02-04 21:46 <DIR> dr-h----- c:\documents and settings\All Users\Programdata 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d--h----- c:\documents and settings\All Users\Maler 2009-02-03 21:08 . 2009-02-03 21:08 <DIR> d-------- c:\documents and settings\All Users\Favoritter 2009-02-03 21:08 . 2009-02-04 19:11 <DIR> dr------- c:\documents and settings\All Users\Dokumenter 2009-02-03 21:07 . 2009-02-03 20:21 <DIR> d--h----- c:\documents and settings\Default User . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-02-03 20:13 --------- d-----w c:\programfiler\HPQ 2009-02-03 20:09 --------- d--h--w c:\programfiler\InstallShield Installation Information 2009-02-03 20:03 --------- d-----w c:\programfiler\Fellesfiler\InstallShield 2009-02-03 19:46 --------- d-----w c:\programfiler\QuickTime 2009-02-03 19:46 --------- d-----w c:\documents and settings\Zeki\Programdata\Apple Computer 2009-02-03 19:46 --------- d-----w c:\documents and settings\All Users\Programdata\QuickTime 2009-02-03 19:44 --------- d-----w c:\programfiler\Hp 2009-02-03 19:44 --------- d-----w c:\programfiler\Hewlett-Packard 2009-02-03 19:43 --------- d-----w c:\programfiler\InterVideo 2009-02-03 19:39 --------- d-----w c:\programfiler\Intel 2009-02-03 19:37 --------- d-----w c:\programfiler\Apoint2K 2009-02-03 19:33 --------- d-----w c:\programfiler\WIDCOMM 2009-02-03 19:32 --------- d-----w c:\programfiler\Analog Devices 2009-02-03 19:21 --------- d-----w c:\programfiler\microsoft frontpage 2009-02-03 19:19 --------- d-----w c:\programfiler\Elektroniske tjenester 2009-02-03 19:18 --------- d-----w c:\programfiler\Fellesfiler\Tjenester 2008-12-11 11:57 333,184 ----a-w c:\windows\system32\drivers\srv.sys . (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret ))))))))))))))))))))))))))))))))))))))))))))) . . *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\programfiler\MSN Messenger\MsnMsgr.Exe" [2007-01-19 5674352] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952] "PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168] "PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168] "SoundMAXPnP"="c:\programfiler\Analog Devices\SoundMAX\SMax4PNP.exe" [2004-07-27 1388544] "Apoint"="c:\programfiler\Apoint2K\Apoint.exe" [2005-02-08 159744] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-12-13 155648] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-12-13 126976] "Cpqset"="c:\programfiler\HPQ\Default Settings\cpqset.exe" [2004-09-07 213054] "HP Software Update"="c:\programfiler\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-16 49152] "IntelWireless"="c:\programfiler\Intel\Wireless\Bin\ifrmewrk.exe" [2004-08-06 385024] "EOUApp"="c:\programfiler\Intel\Wireless\Bin\EOUWiz.exe" [2004-08-06 356352] "SunJavaUpdateSched"="c:\programfiler\Java\jre6\bin\jusched.exe" [2009-02-03 136600] "AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-02-03 1601304] "Adobe Reader Speed Launcher"="c:\programfiler\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "GrooveMonitor"="c:\programfiler\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016] "AGRSMMSG"="AGRSMMSG.exe" [2004-08-24 c:\windows\AGRSMMSG.exe] c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\ BTTray.lnk - c:\programfiler\WIDCOMM\Bluetooth-programvare\BTTray.exe [2004-12-23 569405] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IntelWireless] 2004-08-06 16:48 110592 c:\programfiler\Intel\Wireless\Bin\LgNotify.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter] 2009-02-03 22:22 10520 c:\windows\system32\avgrsstx.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount] --a------ 2008-02-22 16:58 217544 c:\programfiler\Alcohol Soft\Alcohol 120\AxCmd.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eabconfg.cpl] --a------ 2004-12-03 13:24 290816 c:\programfiler\HPQ\Quick Launch Buttons\eabservr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant] --a------ 2005-04-11 15:21 794624 c:\programfiler\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2009-02-03 20:46 98304 c:\programfiler\QuickTime\qttask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] --a------ 2005-03-04 03:36 36975 c:\programfiler\Java\jre1.5.0_02\bin\jusched.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Programfiler\\uTorrent\\uTorrent.exe"= "c:\\Programfiler\\Messenger\\msmsgs.exe"= "c:\\Programfiler\\AVG\\AVG8\\avgam.exe"= "c:\\Programfiler\\AVG\\AVG8\\avgemc.exe"= "c:\\Programfiler\\AVG\\AVG8\\avgupd.exe"= "c:\\Programfiler\\AVG\\AVG8\\avgnsx.exe"= "c:\\Programfiler\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Programfiler\\Microsoft Office\\Office12\\GROOVE.EXE"= "c:\\Programfiler\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Programfiler\\LimeWire\\LimeWire.exe"= "c:\\Programfiler\\MSN Messenger\\msnmsgr.exe"= "c:\\Programfiler\\MSN Messenger\\livecall.exe"= "c:\\Programfiler\\SmartFTP Client\\SmartFTP.exe"= R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2009-02-03 12552] R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-02-03 325128] R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-02-03 107272] R2 avg8emc;AVG8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [2009-02-03 903960] R2 avg8wd;AVG8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [2009-02-03 298264] R2 avgfws8;AVG8 Firewall;c:\progra~1\AVG\AVG8\avgfws8.exe [2009-02-03 1339600] R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2009-02-03 29208] S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2009-02-03 29208] . - - - - TOMME PEKERE FJERNET - - - - HKLM-Run-Windows API Control Center - winsystem.exe . ------- Tilleggsskanning ------- . uInternet Connection Wizard,ShellNext = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=NB_NO&c=Q305&bd=pavilion&pf=laptop IE: E&ksporter til Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 IE: Send til &Bluetooth - c:\programfiler\WIDCOMM\Bluetooth-programvare\btsendto_ie_ctx.htm . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-02-05 20:22:48 Windows 5.1.2600 Service Pack 2 NTFS skanner skjulte prosesser ... skanner skjulte autostart-oppføringer ... HKLM\Software\Microsoft\Windows\CurrentVersion\Run Cpqset = c:\programfiler\HPQ\Default Settings\cpqset.exe?????????0?7?2?5??????? ???B???????????????B???????? skanner skjulte filer ... skanning vellykket skjulte filer: 0 ************************************************************************** . --------------------- DLL'er Lastet Av Kjørende Prosesser --------------------- - - - - - - - > 'winlogon.exe'(1136) c:\programfiler\Intel\Wireless\Bin\LgNotify.dll . Tidspunkt ferdig: 2009-02-05 20:24:09 ComboFix-quarantined-files.txt 2009-02-05 19:24:05 Pre-Run: 82 794 393 600 byte ledig Post-Run: 82,937,176,064 byte ledig 251 --- E O F --- 2009-02-05 14:40:34 Endret 5. februar 2009 av Vengance Lenke til kommentar
Patience Skrevet 5. februar 2009 Del Skrevet 5. februar 2009 Tvillingtråd av https://www.diskusjon.no/index.php?showtopic=1071366. Tråden er lik eller tilsvarende andre tråder trådstarter har opprettet tidligere i samme tidsrom. En tråd om det samme emnet holder. Tråden stenges! Lenke til kommentar
Anbefalte innlegg