Logg frå combofix

Fløffy · 9. mars 2009

Maskina har oppført seg litt rart i det siste. Tok ein scan med MBAM, den fann ikkje noko.

Legger ved logg frå combofix, kanskje det er noko rusk der?

Logg fra combofix:

Klikk for å se/fjerne innholdet nedenfor

ComboFix 09-03-06.02 - Morten 2009-03-09 21:40:49.1 - NTFSx86

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1044.18.3327.2341 [GMT 1:00]

Kjører fra: C:\ComboFix.exe

AV: avast! antivirus 4.8.1296 [VPS 090308-0] *On-access scanning disabled* (Updated)

* Opprettet nytt gjenopprettingspunkt

.

((((((((((((((((((((((((((( Filer Opprettet Fra 2009-02-09 til 2009-03-09 )))))))))))))))))))))))))))))))))

.

2009-03-09 21:37 . 2009-03-09 21:38 2,933,448 -ra------ C:\ComboFix.exe

2009-03-09 21:34 . 2009-03-09 21:34 <DIR> d-------- c:\programfiler\Malwarebytes' Anti-Malware

2009-03-09 21:34 . 2009-03-09 21:34 <DIR> d-------- c:\documents and settings\Morten\Programdata\Malwarebytes

2009-03-09 21:34 . 2009-03-09 21:34 <DIR> d-------- c:\documents and settings\All Users\Programdata\Malwarebytes

2009-03-09 21:34 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys

2009-03-09 21:34 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys

2009-03-09 21:33 . 2009-03-09 21:33 2,876,720 --a------ C:\mbam-setup.exe

2009-03-09 19:08 . 2009-03-09 19:08 7,168 --ahs---- c:\windows\Thumbs.db

2009-03-09 18:59 . 2009-03-09 18:59 <DIR> d-------- C:\Screenshots

2009-03-09 16:33 . 2009-03-09 16:33 278,280 --a------ C:\Screenshots.zip

2009-03-07 11:05 . 2009-03-07 11:05 473,120 --a------ C:\OGAPluginInstall.exe

2009-03-07 11:04 . 2009-03-07 11:04 956,376 --a------ C:\SaveAsPDFandXPS.exe

2009-03-07 10:58 . 2009-03-07 10:59 11,399,920 --a------ C:\5550-non-2kxpinfu.exe

2009-03-07 10:58 . 2006-10-26 19:56 32,592 --a------ c:\windows\system32\msonpmon.dll

2009-03-07 10:56 . 2009-03-07 10:56 <DIR> d-------- c:\windows\SHELLNEW

2009-03-07 00:34 . 2009-03-07 00:45 8 --a------ c:\windows\system32\nvModes.dat

2009-03-05 14:48 . 2009-03-05 14:51 <DIR> d-------- c:\programfiler\WhatPulse

2009-03-05 14:48 . 2009-03-05 14:48 657,331 --a------ C:\WhatPulse-1.5-Setup.exe

2009-03-01 15:46 . 2009-01-09 20:19 1,089,883 -----c--- c:\windows\system32\dllcache\ntprint.cat

2009-03-01 14:40 . 2009-03-01 14:40 1,355 --a------ c:\windows\imsins.BAK

2009-03-01 14:33 . 2009-03-01 14:33 224 --a------ c:\windows\system32\spupdsvc.inf

2009-02-26 22:10 . 2009-03-09 21:28 <DIR> dr-h----- c:\documents and settings\Morten\Siste

2009-02-26 22:08 . 2009-02-26 22:08 3,171,208 --a------ C:\ccsetup216.exe

2009-02-21 16:51 . 2009-02-21 16:51 <DIR> d--h----- c:\documents and settings\All Users\Programdata\CanonBJ

2009-02-16 21:11 . 2009-02-16 21:15 <DIR> d-------- c:\programfiler\GRemote

2009-02-16 21:09 . 2009-02-16 21:09 4,054,994 --a------ C:\GRemote setup.exe

2009-02-14 16:58 . 2009-02-14 16:59 <DIR> d-------- c:\documents and settings\Morten\.VirtualBox

2009-02-14 16:58 . 2009-01-21 19:14 129,552 --a------ c:\windows\system32\VBoxNetFltNotify.dll

2009-02-14 16:58 . 2009-01-21 19:13 87,312 --a------ c:\windows\system32\drivers\VBoxNetFlt.sys

2009-02-14 16:20 . 2009-02-14 16:20 <DIR> d-------- c:\programfiler\Sun

2009-02-14 16:20 . 2009-01-21 19:13 100,560 --a------ c:\windows\system32\drivers\VBoxDrv.sys

2009-02-14 16:20 . 2009-01-21 19:13 41,680 --a------ c:\windows\system32\drivers\VBoxUSBMon.sys

2009-02-14 16:16 . 2009-02-14 16:17 37,428,736 --a------ C:\VirtualBox-2.1.2-41885-Win_x86.msi

2009-02-14 14:43 . 2009-02-14 14:48 <DIR> d-------- c:\windows\NV76006852.TMP

2009-02-14 14:43 . 2008-09-17 23:55 201,050 --a------ c:\windows\system32\nvapps.nvb

2009-02-14 13:19 . 2009-02-14 13:19 <DIR> d-------- c:\programfiler\Google

2009-02-11 16:35 . 2009-02-11 16:35 <DIR> d-------- c:\programfiler\Spotify

2009-02-11 16:35 . 2009-03-09 18:19 <DIR> d-------- c:\documents and settings\Morten\Programdata\Spotify

2009-02-11 16:35 . 2009-02-11 16:35 1,521,192 --a------ C:\Spotify Installer.exe

2009-02-09 21:35 . 2009-02-09 21:35 <DIR> d-------- c:\windows\Sun

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-03-09 20:39 --------- d-----w c:\documents and settings\Morten\Programdata\DNA

2009-03-09 17:53 --------- d-----w c:\documents and settings\Morten\Programdata\BitTorrent

2009-03-09 09:17 --------- d-----w c:\programfiler\LogMeIn

2009-03-08 02:09 --------- d-----w c:\programfiler\DNA

2009-03-08 01:27 --------- d-----w c:\documents and settings\All Users\Programdata\Microsoft Help

2009-03-07 12:40 --------- d-----w c:\documents and settings\All Users\Programdata\Spybot - Search & Destroy

2009-03-07 10:04 --------- d-----w c:\programfiler\MSECache

2009-03-07 09:53 --------- d-----w c:\programfiler\Microsoft Works

2009-03-01 17:41 --------- d-----w c:\programfiler\DC++

2009-02-22 12:03 --------- d-----w c:\documents and settings\Morten\Programdata\LimeWire

2009-02-19 16:33 --------- d-----w c:\documents and settings\Morten\Programdata\dvdcss

2009-02-18 18:44 --------- d-----w c:\programfiler\Windows Live

2009-02-14 13:48 --------- d-----w c:\programfiler\Spybot - Search & Destroy

2009-02-08 22:41 28,868,320 ----a-w C:\FileFormatConverters(2).exe

2009-02-06 17:52 49,504 ----a-w c:\windows\system32\sirenacm.dll

2009-02-05 21:41 --------- d-----w c:\programfiler\Fellesfiler\Autodesk Shared

2009-02-05 21:41 --------- d-----w c:\programfiler\Autodesk

2009-01-29 16:09 --------- d-----w c:\documents and settings\All Users\Programdata\Office Genuine Advantage

2009-01-28 15:52 --------- d-----w c:\documents and settings\Morten\Programdata\Ulead Systems

2009-01-28 15:36 --------- d-----w c:\documents and settings\All Users\Programdata\Ulead Systems

2009-01-28 15:33 --------- d--h--w c:\programfiler\InstallShield Installation Information

2009-01-28 15:33 --------- d-----w c:\programfiler\Windows Media Components

2009-01-28 15:33 --------- d-----w c:\documents and settings\All Users\Programdata\InstallShield

2009-01-28 15:32 --------- d-----w c:\programfiler\Ulead Systems

2009-01-28 15:32 --------- d-----w c:\programfiler\Fellesfiler\Ulead Systems

2009-01-28 15:32 --------- d-----w c:\programfiler\Fellesfiler\InstallShield

2009-01-26 20:36 --------- d-----w c:\programfiler\Fellesfiler\Adobe

2009-01-26 20:35 --------- d-----w c:\documents and settings\All Users\Programdata\NOS

2009-01-26 20:34 --------- d-----w c:\programfiler\NOS

2009-01-26 18:22 34,031,720 ----a-w C:\GoogleSketchUpWEN.exe

2009-01-25 16:23 --------- d-----w c:\programfiler\Codemasters

2009-01-19 18:33 28,868,320 ----a-w C:\FileFormatConverters.exe

2009-01-18 11:48 7,668,519 ----a-w C:\DCPlusPlus-0-7091.exe

2009-01-14 23:39 410,984 ----a-w c:\windows\system32\deploytk.dll

2009-01-14 23:39 --------- d-----w c:\programfiler\Java

2009-01-14 23:38 607,640 ----a-w C:\jxpiinstall-6u11-fcs-bin-b90-windows-i586-25_nov_2008.exe

2009-01-14 23:38 607,640 ----a-w C:\jxpiinstall-6u11-fcs-bin-b90-windows-i586-25_nov_2008(2).exe

2009-01-14 23:38 --------- d-----w c:\programfiler\LimeWire

2009-01-14 23:37 4,900,376 ----a-w C:\LimeWireWin.exe

2009-01-14 21:27 --------- d-----w c:\documents and settings\All Users\Programdata\LogMeIn

2009-01-14 15:04 --------- d-----w c:\documents and settings\Morten\Programdata\Steinberg

2009-01-13 23:19 --------- d-----w c:\programfiler\Steinberg

2009-01-13 23:19 --------- d-----w c:\programfiler\Pinnacle

2009-01-13 23:18 --------- d-----w c:\programfiler\Syncrosoft

2009-01-13 23:18 --------- d-----w c:\documents and settings\All Users\Programdata\Pinnacle

2009-01-13 22:56 --------- d-----w c:\programfiler\BitTorrent

2009-01-13 22:56 --------- d-----w c:\programfiler\AskSearch

2009-01-13 22:53 1,754,496 ----a-w C:\BitTorrent-6.1.2.exe

2009-01-13 20:30 --------- d-----w c:\programfiler\Fellesfiler\Macrovision Shared

2009-01-13 20:27 --------- d-----w c:\programfiler\Lavalys

2009-01-12 20:58 --------- d-----w c:\programfiler\Microsoft.NET

2009-01-11 22:12 --------- d-----w c:\documents and settings\Morten\Programdata\vlc

2009-01-11 22:11 --------- d-----w c:\programfiler\VideoLAN

2009-01-11 22:09 16,320,472 ----a-w C:\vlc-0.9.8a-win32.exe

2009-01-11 19:29 --------- d-----w c:\programfiler\Microsoft Games for Windows - LIVE

2009-01-11 19:26 31,879,336 ----a-w C:\gfwlivesetupmin.exe

2009-01-11 19:20 --------- d--h--r c:\documents and settings\Morten\Programdata\SecuROM

2009-01-11 19:12 318,904 ----a-w C:\wmpfirefoxplugin.exe

2009-01-11 17:56 107,888 ----a-w c:\windows\system32\CmdLineExt.dll

2009-01-11 17:44 --------- d-----w c:\programfiler\Rockstar Games

2009-01-11 17:35 --------- d-----w c:\programfiler\MSBuild

2009-01-11 17:32 --------- d-----w c:\programfiler\Reference Assemblies

2009-01-11 17:28 --------- d-----w c:\programfiler\DAEMON Tools Lite

2009-01-11 17:25 716,272 ----a-w c:\windows\system32\drivers\sptd.sys

2009-01-11 17:25 --------- d-----w c:\documents and settings\Morten\Programdata\DAEMON Tools

2009-01-11 17:12 504,320 ----a-w C:\daemon347.exe

2009-01-11 17:12 --------- d-----w c:\programfiler\D-Tools

2009-01-11 14:04 --------- d-----w c:\programfiler\Activision

2009-01-11 13:53 --------- d-----w c:\programfiler\Windows Live SkyDrive

2009-01-11 13:53 --------- d-----w c:\programfiler\Microsoft Sync Framework

2009-01-11 13:53 --------- d-----w c:\programfiler\Microsoft

2009-01-11 13:49 --------- d-----w c:\programfiler\Fellesfiler\Windows Live

2009-01-11 13:48 1,149,768 ----a-w C:\wlsetup-web.exe

2009-01-11 13:09 --------- d-----w c:\programfiler\iTunes

2009-01-11 13:09 --------- d-----w c:\documents and settings\Morten\Programdata\Apple Computer

2009-01-11 13:09 --------- d-----w c:\documents and settings\All Users\Programdata\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}

2009-01-11 13:08 --------- d-----w c:\programfiler\QuickTime

2009-01-11 13:08 --------- d-----w c:\programfiler\iPod

2009-01-11 13:08 --------- d-----w c:\programfiler\Fellesfiler\Apple

2009-01-11 13:08 --------- d-----w c:\programfiler\Bonjour

2009-01-11 13:08 --------- d-----w c:\programfiler\Apple Software Update

2009-01-11 13:08 --------- d-----w c:\documents and settings\All Users\Programdata\Apple Computer

2009-01-11 13:07 4,556,588 ----a-w C:\daemon4303-lite.exe

2009-01-11 13:07 --------- d-----w c:\documents and settings\All Users\Programdata\Apple

2009-01-11 13:06 68,756,776 ----a-w C:\iTunesSetup.exe

2009-01-11 12:50 12,063,952 ----a-w C:\SoundMAX_Audio_v510016310_32bit_2kxp.zip

2009-01-11 12:50 1,232,547 ----a-w C:\wrar371no.exe

2009-01-11 12:50 --------- d-----w c:\programfiler\Analog Devices

2009-01-11 12:48 1,851,544 ----a-w C:\install_flash_player.exe

2009-01-11 12:24 --------- d-----w c:\documents and settings\All Users\Programdata\Lavasoft

2009-01-11 12:23 23,804,784 ----a-w C:\aaw2008.exe

2009-01-11 12:23 --------- d-----w c:\programfiler\Lavasoft

2009-01-11 12:23 --------- d-----w c:\programfiler\Fellesfiler\Wise Installation Wizard

2009-01-11 12:23 --------- d-----w c:\programfiler\Alwil Software

2009-01-11 12:22 29,993,648 ----a-w C:\setupnor.exe

2009-01-11 12:22 15,083,520 ----a-w C:\spybotsd160.exe

2009-01-11 12:21 --------- d-----w c:\programfiler\CCleaner

2009-01-11 12:20 3,165,824 ----a-w C:\ccsetup215.exe

2009-01-10 21:36 --------- d-----w c:\programfiler\My Company Name

2009-01-10 21:26 --------- d-----w c:\programfiler\ASUS

.

(((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))

.

*Merk* tomme oppføringer & gyldige standardoppføringer vises ikke

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

"SpybotSD TeaTimer"="c:\programfiler\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]

"msnmsgr"="c:\programfiler\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885400]

"DAEMON Tools Lite"="c:\programfiler\DAEMON Tools Lite\daemon.exe" [2008-02-14 486856]

"RGSC"="c:\programfiler\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2009-01-11 306088]

"EVEREST AutoStart"="c:\programfiler\Lavalys\EVEREST Corporate + Ultimate Edition\everest.exe" [2008-01-17 2057312]

"BitTorrent DNA"="c:\programfiler\DNA\btdna.exe" [2009-01-13 342848]

"WhatPulse"="c:\programfiler\WhatPulse\WhatPulse.exe" [2006-08-21 665600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Ai Nap"="c:\program files\ASUS\Ai Suite\AiNap\AiNap.exe" [2007-09-06 1426432]

"CPU Power Monitor"="c:\program files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe" [2007-09-06 626688]

"Cpu Level Up help"="c:\program files\ASUS\Ai Suite\CpuLevelUpHelp.exe" [2007-09-11 880640]

"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-17 13574144]

"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-26 81000]

"SoundMAXPnP"="c:\programfiler\Analog Devices\Core\smax4pnp.exe" [2007-10-09 1036288]

"QuickTime Task"="c:\programfiler\QuickTime\QTTask.exe" [2008-11-04 413696]

"iTunesHelper"="c:\programfiler\iTunes\iTunesHelper.exe" [2008-11-20 290088]

"DAEMON Tools-1033"="c:\programfiler\D-Tools\daemon.exe" [2004-08-22 81920]

"SunJavaUpdateSched"="c:\programfiler\Java\jre6\bin\jusched.exe" [2009-01-15 136600]

"Adobe Reader Speed Launcher"="c:\programfiler\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]

"UVS10 Preload"="c:\programfiler\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe" [2006-08-09 36864]

"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-17 86016]

"GRemoteServer"="c:\programfiler\GRemote\GRemoteServer.exe" [2008-12-23 1178112]

"nwiz"="nwiz.exe" [2008-09-17 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]

2008-10-16 20:35 87352 c:\windows\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"msacm.dvacm"= c:\progra~1\FELLES~1\ULEADS~1\Vio\Dvacm.acm

"msacm.MPEGacm"= c:\progra~1\FELLES~1\ULEADS~1\MPEG\MPEGacm.acm

"msacm.ulmp3acm"= c:\progra~1\FELLES~1\ULEADS~1\MPEG\ulmp3acm.acm

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Programfiler\\Bonjour\\mDNSResponder.exe"=

"c:\\Programfiler\\iTunes\\iTunes.exe"=

"c:\\Programfiler\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=

"c:\\Programfiler\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"=

"c:\\Programfiler\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"=

"c:\\Programfiler\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe"=

"c:\\Programfiler\\DNA\\btdna.exe"=

"c:\\Programfiler\\BitTorrent\\bittorrent.exe"=

"c:\\Programfiler\\LimeWire\\LimeWire.exe"=

"c:\\Programfiler\\DC++\\DCPlusPlus.exe"=

"c:\\Programfiler\\Codemasters\\DiRT\\DiRT.exe"=

"c:\\Programfiler\\Spotify\\spotify.exe"=

"c:\\Programfiler\\GRemote\\GRemoteServer.exe"=

"c:\\Programfiler\\Windows Live\\Messenger\\msnmsgr.exe"=

"c:\\Programfiler\\Microsoft Office\\Office12\\ONENOTE.EXE"=

R0 pe3ah4nb;DiRT Environment Driver (pe3ah4nb);c:\windows\system32\drivers\pe3ah4nb.sys [2007-06-11 64880]

R0 pe3ah4nc;DiRT Environment Driver (pe3ah4nc);c:\windows\system32\drivers\pe3ah4nc.sys [2007-05-18 64880]

R0 Pnp680;SiI 680 ATA Controller;c:\windows\system32\drivers\PnP680.sys [2007-11-13 71720]

R0 ps6ah4nb;DiRT Synchronization Driver (ps6ah4nb);c:\windows\system32\drivers\ps6ah4nb.sys [2007-06-11 55160]

R0 ps6ah4nc;DiRT Synchronization Driver (ps6ah4nc);c:\windows\system32\drivers\ps6ah4nc.sys [2007-05-18 55160]

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-01-11 111184]

R1 VBoxDrv;VirtualBox Service;c:\windows\system32\drivers\VBoxDrv.sys [2009-02-14 100560]

R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\drivers\VBoxUSBMon.sys [2009-02-14 41680]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-01-11 20560]

R2 LMIInfo;LogMeIn Kernel Information Provider;c:\programfiler\LogMeIn\x86\rainfo.sys [2008-07-24 12856]

R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2009-01-14 47640]

R2 SeaPort;SeaPort;c:\programfiler\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]

R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\programfiler\Lavalys\EVEREST Corporate + Ultimate Edition\kerneld.wnt [2009-01-13 22640]

R3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\drivers\VBoxNetFlt.sys [2009-02-14 87312]

S2 pr2ah4nb;DiRT Drivers Auto Removal (pr2ah4nb);c:\windows\system32\pr2ah4nb.exe svc --> c:\windows\system32\pr2ah4nb.exe svc [?]

S2 pr2ah4nc;DiRT Drivers Auto Removal (pr2ah4nc);c:\windows\system32\pr2ah4nc.exe svc --> c:\windows\system32\pr2ah4nc.exe svc [?]

S3 getPlus® Helper;getPlus® Helper;c:\programfiler\NOS\bin\getPlus_HelperSvc.exe [2009-01-26 33752]

S4 LMIRfsClientNP;LMIRfsClientNP; [x]

--- Andre tjenester/drivere lastet i minnet ---

*NewlyCreated* - EVERESTDRIVER

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{af01c3d3-df5e-11dd-bedd-806d6172696f}]

\Shell\AutoRun\command - J:\Launch.exe /run

.

Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)

2009-03-05 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\programfiler\Apple Software Update\SoftwareUpdate.exe [2008-07-30 12:34]

2009-03-09 c:\windows\Tasks\OGADaily.job

- c:\windows\system32\OGAVerify.exe [2008-12-31 17:04]

2009-03-08 c:\windows\Tasks\OGALogon.job

- c:\windows\system32\OGAVerify.exe [2008-12-31 17:04]

.

- - - - TOMME PEKERE FJERNET - - - -

HKU-Default-RunOnce-nltide3 - rundll32 advpack.dll

.

------- Tilleggsskanning -------

.

uStart Page = hxxp://www.ask.com/?o=101764&l=dis

uInternet Settings,ProxyOverride = *.local

IE: E&ksporter til Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000

FF - ProfilePath - c:\documents and settings\Morten\Programdata\Mozilla\Firefox\Profiles\izohv8hj.default\

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - hxxp://nn-NO.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:nn-NO:official

FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101761&gct=&gc=1&q=

FF - plugin: c:\programfiler\Mozilla Firefox\plugins\np-mswmp.dll

FF - plugin: c:\programfiler\Mozilla Firefox\plugins\npbittorrent.dll

FF - plugin: c:\programfiler\Mozilla Firefox\plugins\npOGAPlugin.dll

---- FIREFOX POLICIES ----

c:\programfiler\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".no");

.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-03-09 21:41:30

Windows 5.1.2600 Service Pack 3 NTFS

skanner skjulte prosesser ...

skanner skjulte autostart-oppføringer ...

skanner skjulte filer ...

skanning vellykket

skjulte filer: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\EverestDriver]

"ImagePath"="\??\c:\programfiler\Lavalys\EVEREST Corporate + Ultimate Edition\kerneld.wnt"

.

--------------------- LÅSTE REGISTERNØKLER ---------------------

[HKEY_USERS\S-1-5-21-1993962763-1580436667-682003330-1003\Software\SecuROM\License information*]

"datasecu"=hex:08,0e,7f,c9,96,18,79,11,5c,2d,e9,53,a9,aa,61,c3,4d,1b,67,4a,d7,

64,d9,ce,e9,6f,d1,31,43,6c,02,22,27,39,fc,60,e4,7e,65,59,93,2d,dc,38,ba,87,\

"rkeysecu"=hex:b2,8c,7d,5f,0e,b1,a4,60,df,fa,d3,fb,df,cb,2a,d7

.

--------------------- DLL'er Lastet Av Kjørende Prosesser ---------------------

- - - - - - - > 'winlogon.exe'(876)

c:\windows\system32\LMIinit.dll

c:\windows\system32\LMIRfsClientNP.dll

.

Tidspunkt ferdig: 2009-03-09 21:42:20

ComboFix-quarantined-files.txt 2009-03-09 20:42:18

Pre-Run: 19 194 994 688 byte ledig

Post-Run: 21,068,472,320 byte ledig

WindowsXP-KB310994-SP2-Pro-BootDisk-NOR.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

292 --- E O F --- 2009-03-08 01:27:17

norbat · 9. mars 2009

Hva legger du i 'litt rart'?

Fløffy · 10. mars 2009

Musa lagger kanskje litt av og til, samme når du opnar og legg ned vindauge. Men ellers var det ikkje nokon filer eg burde fjerne?

norbat · 10. mars 2009

Nei, loggen ser grei ut. Kjør en runde med CCleaner:

Last ned CCleaner. Start programmet. Gå til 'Valg'->'Avansert'. Fjern avkryssingen framfor: "bare slett midlertidige filer......." Klikk på 'Renser' og deretter 'Kjør CCleaner'.

Kjør også noen runder med 'Register'til det ikke finner flere feil. Si ja til å lage backup når det blir spurt om det.

Fløffy · 10. mars 2009

kjøyrer CCleaner ca. 1 gong i veka, men kan kjøyre det når eg kjem heim.

Logg inn

Logg frå combofix

Anbefalte innlegg

Fløffy

Lenke til kommentar

Videoannonse

norbat

Lenke til kommentar

Fløffy

Lenke til kommentar

norbat

Lenke til kommentar

Fløffy

Lenke til kommentar

Opprett en konto eller logg inn for å kommentere

Opprett konto

Logg inn

Populær nå

Krigen mellom Israel og Hamas 1 2 3 4 778

Presidentvalget i USA 2024 1 2 3 4 30

Hvem er aktive 0 medlemmer