Gå til innhold

Se over ComboFix log

reef91

Av reef91
i IKT-drift og sikkerhet

Anbefalte innlegg

reef91

reef91

Skrevet
Skrevet

Jeg tror jeg har fått virus og fint om noen kunne sett over denne loggen. Bare skrik ut om det er noe mer dere trenger.

 

Combofix Log

 

ComboFix 09-10-23.01 - René 24.10.2009 17:57.1.2 - NTFSx86

Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.47.1044.18.3038.1849 [GMT 2:00]

Kjører fra: c:\users\René\Downloads\ComboFix.exe

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

.

 

((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\$recycle.bin\S-1-5-21-1380526448-4240249008-1041488945-500

c:\$recycle.bin\S-1-5-21-3406256479-142805783-62209338-500

c:\windows\system32\oem9.inf

 

.

((((((((((((((((((((((((((( Filer Opprettet Fra 2009-09-24 til 2009-10-24 )))))))))))))))))))))))))))))))))

.

 

2009-10-24 16:06 . 2009-10-24 16:06 -------- d-----w- c:\users\Default\AppData\Local\temp

2009-10-24 15:45 . 2009-09-10 12:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2009-10-24 15:45 . 2009-10-24 15:45 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2009-10-24 15:45 . 2009-10-24 15:45 -------- d-----w- c:\programdata\Malwarebytes

2009-10-24 15:45 . 2009-09-10 12:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys

2009-10-18 16:03 . 2009-10-18 16:03 56 ---ha-w- c:\windows\system32\ezsidmv.dat

2009-10-18 15:59 . 2009-10-18 15:59 -------- d-----w- c:\program files\Skype

2009-10-18 15:59 . 2009-10-18 15:59 -------- d-----w- c:\program files\Common Files\Skype

2009-10-18 15:59 . 2009-10-18 15:59 -------- d-----w- c:\programdata\Skype

2009-10-16 17:16 . 2009-10-16 17:16 -------- d-----w- c:\program files\Microsoft Visual Studio 8

2009-10-16 17:11 . 2009-10-16 17:11 -------- d-----w- c:\users\Public\CyberLink

2009-10-16 16:44 . 2009-10-16 16:44 -------- d-----w- c:\program files\uTorrent

2009-10-16 16:36 . 2009-10-16 16:36 -------- d-----w- c:\windows\Sun

2009-10-14 07:53 . 2009-08-31 13:55 428544 ----a-w- c:\windows\system32\EncDec.dll

2009-10-14 07:53 . 2009-08-31 13:55 293376 ----a-w- c:\windows\system32\psisdecd.dll

2009-10-14 07:52 . 2009-09-04 12:24 61440 ----a-w- c:\windows\system32\msasn1.dll

2009-10-14 07:52 . 2009-09-14 09:44 144896 ----a-w- c:\windows\system32\drivers\srv2.sys

2009-10-14 07:32 . 2009-04-02 12:37 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL

2009-10-04 11:00 . 2009-10-04 11:00 -------- d-----w- c:\programdata\Tages

2009-10-04 08:48 . 2009-10-04 10:58 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys

2009-10-04 08:48 . 2009-10-04 08:48 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys

2009-10-04 02:11 . 2009-10-04 02:11 -------- d-----w- c:\program files\GameSpy

2009-10-04 02:09 . 2009-10-04 02:09 -------- d-----w- c:\windows\system32\URTTEMP

2009-10-04 02:08 . 2009-10-04 02:08 -------- d-----w- c:\windows\95FC26FB19FD4A96BBB1B1062E8648F5.TMP

2009-10-04 02:08 . 2009-10-04 02:08 -------- d-----w- c:\program files\Netdevil

2009-10-04 01:58 . 2009-10-04 01:59 -------- d-----w- c:\program files\LimeWire

2009-10-03 21:17 . 2009-10-04 02:24 -------- d-----w- c:\program files\Common Files\Steam

2009-10-03 21:17 . 2009-10-19 08:15 -------- d-----w- c:\program files\Steam

2009-10-03 16:45 . 2009-10-01 08:29 195440 ------w- c:\windows\system32\MpSigStub.exe

2009-10-03 16:39 . 2009-08-07 02:24 44768 ----a-w- c:\windows\system32\wups2.dll

2009-10-03 16:39 . 2009-08-07 02:24 53472 ----a-w- c:\windows\system32\wuauclt.exe

2009-10-03 16:39 . 2009-08-07 02:23 1929952 ----a-w- c:\windows\system32\wuaueng.dll

2009-10-03 16:39 . 2009-08-07 01:45 2421760 ----a-w- c:\windows\system32\wucltux.dll

2009-10-03 16:38 . 2009-08-07 02:24 35552 ----a-w- c:\windows\system32\wups.dll

2009-10-03 16:38 . 2009-08-07 02:23 575704 ----a-w- c:\windows\system32\wuapi.dll

2009-10-03 16:38 . 2009-08-07 01:44 87552 ----a-w- c:\windows\system32\wudriver.dll

2009-10-03 16:38 . 2009-08-06 17:23 171608 ----a-w- c:\windows\system32\wuwebv.dll

2009-10-03 16:38 . 2009-08-06 16:44 33792 ----a-w- c:\windows\system32\wuapp.exe

2009-10-01 15:01 . 2009-10-01 15:01 17087 ----a-w- c:\windows\DIIUnin.dat

2009-10-01 15:01 . 2009-10-01 15:01 94208 ----a-w- c:\windows\DIIUnin.exe

2009-10-01 15:01 . 2009-10-01 15:01 2829 ----a-w- c:\windows\DIIUnin.pif

2009-10-01 14:38 . 2009-10-01 15:01 -------- d-----w- c:\program files\Diablo II

2009-09-30 11:17 . 2009-09-30 11:31 -------- d-----w- c:\program files\Electronic Arts

2009-09-28 16:12 . 2009-09-28 16:12 -------- d-----w- c:\program files\AGEIA Technologies

2009-09-28 16:12 . 2009-09-28 16:12 -------- d-----w- c:\windows\system32\AGEIA

2009-09-28 16:11 . 2009-10-04 02:08 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard

2009-09-28 16:11 . 2008-10-27 08:04 514384 ----a-w- c:\windows\system32\XAudio2_3.dll

2009-09-28 16:11 . 2008-10-27 08:04 70992 ----a-w- c:\windows\system32\XAPOFX1_2.dll

2009-09-28 16:11 . 2008-10-27 08:04 235856 ----a-w- c:\windows\system32\xactengine3_3.dll

2009-09-28 16:11 . 2008-10-27 08:04 23376 ----a-w- c:\windows\system32\X3DAudio1_5.dll

2009-09-28 16:11 . 2008-07-30 04:20 68616 ----a-w- c:\windows\system32\XAPOFX1_1.dll

2009-09-28 16:11 . 2008-07-30 04:20 509448 ----a-w- c:\windows\system32\XAudio2_2.dll

2009-09-28 16:11 . 2008-07-30 04:20 238088 ----a-w- c:\windows\system32\xactengine3_2.dll

2009-09-28 16:11 . 2008-07-10 09:01 467984 ----a-w- c:\windows\system32\d3dx10_39.dll

2009-09-28 16:11 . 2008-07-10 09:00 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll

2009-09-28 16:11 . 2008-07-10 09:00 1493528 ----a-w- c:\windows\system32\D3DCompiler_39.dll

2009-09-28 15:57 . 2009-09-28 15:57 -------- d-----w- c:\program files\Eidos

2009-09-26 23:53 . 2009-10-02 11:41 -------- d-----w- c:\programdata\TrackMania

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-10-24 09:08 . 2009-09-17 12:54 -------- d-----w- c:\program files\Heroes of Newerth

2009-10-21 17:07 . 2009-02-17 09:07 597722 ----a-w- c:\windows\system32\perfh01D.dat

2009-10-21 17:07 . 2009-02-17 09:07 121820 ----a-w- c:\windows\system32\perfc01D.dat

2009-10-21 17:07 . 2009-02-17 09:01 80798 ----a-w- c:\windows\system32\perfc014.dat

2009-10-21 17:07 . 2009-02-17 09:01 460618 ----a-w- c:\windows\system32\perfh014.dat

2009-10-21 17:07 . 2009-02-17 08:56 85720 ----a-w- c:\windows\system32\perfc00B.dat

2009-10-21 17:07 . 2009-02-17 08:56 436008 ----a-w- c:\windows\system32\perfh00B.dat

2009-10-21 17:07 . 2009-02-17 08:50 82072 ----a-w- c:\windows\system32\perfc006.dat

2009-10-21 17:07 . 2009-02-17 08:50 463558 ----a-w- c:\windows\system32\perfh006.dat

2009-10-19 01:05 . 2009-09-16 16:09 -------- d-----w- c:\programdata\Microsoft Help

2009-10-16 17:18 . 2006-11-02 12:37 -------- d-----w- c:\program files\MSBuild

2009-10-16 17:11 . 2009-02-17 09:31 -------- d-----w- c:\programdata\CyberLink

2009-10-14 09:27 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail

2009-09-29 08:20 . 2009-02-17 09:03 -------- d-----w- c:\programdata\WildTangent

2009-09-29 08:18 . 2009-02-17 09:03 -------- d-----w- c:\program files\HP Games

2009-09-28 15:57 . 2009-02-17 08:35 -------- d--h--w- c:\program files\InstallShield Installation Information

2009-09-28 11:18 . 2009-09-21 12:18 -------- d-----w- c:\programdata\TmForever

2009-09-24 11:02 . 2009-09-24 11:02 -------- d-----w- c:\program files\Alcohol Soft

2009-09-24 10:51 . 2009-09-24 10:51 721904 ----a-w- c:\windows\system32\drivers\sptd.sys

2009-09-21 12:15 . 2009-09-21 12:12 -------- d-----w- c:\program files\TmNationsForever

2009-09-18 15:33 . 2009-09-18 15:33 -------- d-----w- c:\programdata\EscapeTheMuseum

2009-09-18 09:42 . 2009-09-18 09:42 19 ----a-w- c:\windows\popcinfo.dat

2009-09-17 20:42 . 2009-09-17 20:42 107888 ----a-w- c:\windows\system32\CmdLineExt.dll

2009-09-17 15:49 . 2009-09-16 20:58 -------- d-----w- c:\program files\Microsoft Silverlight

2009-09-17 15:47 . 2009-09-17 15:47 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE

2009-09-17 13:59 . 2009-09-17 13:59 -------- d-----w- c:\program files\DivX

2009-09-17 13:59 . 2009-09-17 13:59 -------- d-----w- c:\program files\Common Files\PX Storage Engine

2009-09-17 13:59 . 2009-09-17 13:59 -------- d-----w- c:\program files\Common Files\DivX Shared

2009-09-16 21:15 . 2009-09-16 21:15 411368 ----a-w- c:\windows\system32\deploytk.dll

2009-09-16 21:15 . 2009-02-17 10:02 -------- d-----w- c:\program files\Java

2009-09-16 20:58 . 2009-09-16 20:54 -------- d-----w- c:\program files\Microsoft

2009-09-16 20:58 . 2009-09-16 20:54 -------- d-----w- c:\program files\Windows Live

2009-09-16 20:56 . 2009-09-16 20:56 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition

2009-09-16 20:54 . 2009-09-16 20:54 -------- d-----w- c:\program files\Windows Live SkyDrive

2009-09-16 20:49 . 2009-09-16 20:49 -------- d-----w- c:\program files\Common Files\Windows Live

2009-09-16 20:45 . 2009-02-17 08:37 -------- d-----w- c:\programdata\Norton

2009-09-16 19:49 . 2009-09-16 19:49 -------- d-----w- c:\program files\Bethesda Softworks

2009-09-16 18:18 . 2009-09-16 16:11 -------- d-----w- c:\program files\Microsoft Works

2009-09-16 17:51 . 2009-09-16 17:51 -------- d-----w- c:\program files\MSXML 4.0

2009-09-16 16:44 . 2009-09-16 16:44 -------- d-----w- c:\programdata\LightScribe

2009-09-16 16:40 . 2009-09-16 16:40 -------- d-----w- c:\program files\Spotify

2009-09-16 16:35 . 2009-02-17 10:35 -------- d-----w- c:\program files\SMINST

2009-09-16 16:16 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar

2009-09-16 16:12 . 2009-09-16 16:12 -------- d-----w- c:\programdata\{623D32E9-0C62-4453-AD44-98B31F52A5E1}

2009-09-16 16:12 . 2009-09-16 16:12 -------- d-----w- c:\program files\Activation Assistant for the 2007 Microsoft Office suites

2009-09-16 16:10 . 2009-09-16 16:10 -------- d-----w- c:\program files\Microsoft.NET

2009-09-16 16:08 . 2009-09-16 16:08 -------- d-----w- c:\program files\Common Files\Adobe

2009-09-16 16:07 . 2009-09-16 16:07 0 --sha-r- c:\windows\system32\drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_QCNF9322M65_E510505-DH1_4A_I3628_SQuanta_V18.3E_F.25_T090710_WV3-1_L414_M3039_J500_7Intel_867A_92.00_#090720_N10EC8168;14E44315_(VF339EA#UUW)_XMOBILE_CN10_

_2Rev 1.MRK

2009-09-10 17:30 . 2009-10-14 07:54 213504 ----a-w- c:\windows\system32\msv1_0.dll

2009-08-28 12:39 . 2009-09-16 17:46 28672 ----a-w- c:\windows\system32\Apphlpdm.dll

2009-08-28 10:15 . 2009-09-16 17:46 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll

2009-08-27 13:32 . 2009-10-14 07:54 833024 ----a-w- c:\windows\system32\wininet.dll

2009-08-27 13:29 . 2009-10-14 07:54 78336 ----a-w- c:\windows\system32\ieencode.dll

2009-08-27 10:58 . 2009-10-14 07:54 26624 ----a-w- c:\windows\system32\ieUnatt.exe

2009-08-17 21:33 . 2009-08-17 21:33 1193832 ----a-w- c:\windows\system32\FM20.DLL

2009-08-14 17:07 . 2009-09-16 17:47 897608 ----a-w- c:\windows\system32\drivers\tcpip.sys

2009-08-14 16:29 . 2009-09-16 17:47 104960 ----a-w- c:\windows\system32\netiohlp.dll

2009-08-14 16:29 . 2009-09-16 17:47 17920 ----a-w- c:\windows\system32\netevent.dll

2009-08-14 14:16 . 2009-09-16 17:47 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE

2009-08-14 14:16 . 2009-09-16 17:47 17920 ----a-w- c:\windows\system32\ROUTE.EXE

2009-08-14 14:16 . 2009-09-16 17:47 11264 ----a-w- c:\windows\system32\MRINFO.EXE

2009-08-14 14:16 . 2009-09-16 17:47 27136 ----a-w- c:\windows\system32\NETSTAT.EXE

2009-08-14 14:16 . 2009-09-16 17:47 19968 ----a-w- c:\windows\system32\ARP.EXE

2009-08-14 14:16 . 2009-09-16 17:47 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE

2009-08-14 14:16 . 2009-09-16 17:47 10240 ----a-w- c:\windows\system32\finger.exe

2009-08-07 17:51 . 2009-08-07 17:51 15308424 ----a-w- c:\windows\system32\xlive.dll

2009-08-07 17:51 . 2009-08-07 17:51 13642888 ----a-w- c:\windows\system32\xlivefnt.dll

2009-08-05 20:48 . 2009-09-16 20:58 54632 ----a-w- c:\windows\system32\drivers\fssfltr.sys

2009-08-05 17:15 . 2009-10-14 07:54 3599960 ----a-w- c:\windows\system32\ntkrnlpa.exe

2009-08-05 17:15 . 2009-10-14 07:54 3547736 ----a-w- c:\windows\system32\ntoskrnl.exe

2009-07-14 00:16 . 2009-07-14 00:16 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll

2009-07-14 00:16 . 2009-07-14 00:16 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll

2009-02-17 09:38 . 2009-02-17 09:09 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT

.

 

(((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))

.

.

*Merk* tomme oppføringer & gyldige standardoppføringer vises ikke

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]

"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]

"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 52\axcmd.exe" [2009-04-24 203416]

"Steam"="c:\program files\Steam\Steam.exe" [2009-10-03 1217784]

"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2009-10-16 289072]

"Skype"="c:\program files\Skype\Phone\Skype.exe" [2008-04-30 22058792]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-30 61440]

"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-07-24 1348904]

"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2008-10-26 450659]

"DVDAgent"="c:\program files\Hewlett-Packard\Media\DVD\DVDAgent.exe" [2008-11-29 1148200]

"TSMAgent"="c:\program files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe" [2008-12-25 1316136]

"CLMLServer for HP TouchSmart"="c:\program files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe" [2008-12-25 189736]

"TVAgent"="c:\program files\Hewlett-Packard\Media\TV\TVAgent.exe" [2009-05-09 206120]

"UCam_Menu"="c:\program files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" [2008-11-15 218408]

"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2008-11-19 914224]

"UpdateLBPShortCut"="c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]

"UpdatePSTShortCut"="c:\program files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-11-26 210216]

"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]

"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-10-10 206128]

"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-10-30 210216]

"UpdatePDIRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]

"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-09-16 149280]

"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-10-09 75008]

"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]

"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-12-08 432432]

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]

 

c:\users\Ren‚\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [2009-9-30 503808]

OneNote 2007 Screen Clipper og Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2008-10-25 98696]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

@="Service"

 

R2 {55662437-DA8C-40c0-AADA-2C816A897A49};Power Control [2009/07/20 03:18];c:\program files\Hewlett-Packard\Media\DVD00.fcl [29.11.2008 03:04 87536]

R2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_52c73ccb\AEstSrv.exe [20.07.2009 11:44 77824]

R2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe -k netsvcs [21.01.2008 04:23 21504]

R2 hpsrv;HP Service;c:\windows\System32\hpservice.exe [19.03.2008 01:24 19456]

R2 Recovery Service for Windows;Recovery Service for Windows;c:\program files\SMINST\BLService.exe [17.02.2009 12:35 365952]

R2 TVCapSvc;TV Background Capture Service (TVBCS);c:\program files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [27.11.2008 02:13 296320]

R2 TVSched;TV Task Scheduler (TVTS);c:\program files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [27.11.2008 02:13 116096]

R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [17.02.2009 10:51 222512]

R3 enecir;ENE CIR Receiver;c:\windows\System32\drivers\enecir.sys [04.09.2008 19:47 54784]

S2 Norton Internet Security;Norton Internet Security;"c:\program files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe" /s "Norton Internet Security" /m "c:\program files\Norton Internet Security\Engine\16.0.0.125\diMaster.dll" /prefetch:1 --> c:\program files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe [?]

S3 fssfltr;FssFltr;c:\windows\System32\drivers\fssfltr.sys [16.09.2009 22:58 54632]

S3 fsssvc;Windows Live Tryggere for familien-tjenesten;c:\program files\Windows Live\Family Safety\fsssvc.exe [05.08.2009 22:48 704864]

S3 JMCR;JMCR;c:\windows\System32\drivers\jmcr.sys [23.10.2008 11:42 107360]

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

ezSharedSvc

 

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]

"c:\program files\Common Files\LightScribe\LSRunOnce.exe"

.

.

------- Tilleggsskanning -------

.

uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nb_no&c=91&bd=Pavilion&pf=cnnb

mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nb_no&c=91&bd=Pavilion&pf=cnnb

uInternet Settings,ProxyOverride = local

IE: &Søkefunksjon i AOL-verktrylinjen - c:\programdata\AOL\ieToolbar\resources\nb-NO\local\search.html

IE: E&ksporter til Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000

FF - ProfilePath - c:\users\René\AppData\Roaming\Mozilla\Firefox\Profiles\ur2ie04l.default\

FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll

FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

 

---- FIREFOX POLICIES ----

c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".no");

.

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-10-24 18:06

Windows 6.0.6001 Service Pack 1 NTFS

 

skanner skjulte prosesser ...

 

skanner skjulte autostart-oppføringer ...

 

skanner skjulte filer ...

 

skanning vellykket

skjulte filer: 0

 

**************************************************************************

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Norton Internet Security]

"ImagePath"="\"c:\program files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\program files\Norton Internet Security\Engine\16.0.0.125\diMaster.dll\" /prefetch:1"

 

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{55662437-DA8C-40c0-AADA-2C816A897A49}]

"ImagePath"="\??\c:\program files\Hewlett-Packard\Media\DVD00.fcl"

.

Tidspunkt ferdig: 2009-10-24 18:08

ComboFix-quarantined-files.txt 2009-10-24 16:08

 

Pre-Run: 319 369 981 952 byte ledig

Post-Run: 319 678 271 488 byte ledig

 

- - End Of File - - F51BEF94FD488F581384129211D645CD

 

 

Lenke til kommentar

Videoannonse

Videoannonse
Annonse
reef91

reef91

Skrevet
  • Forfatter
Skrevet (endret)

Jeg mistenker virus fordi jeg har fått noen pop-ups i ny og ne (vet at det ikke er pga virus), og tenkte at siden jeg tydelig vis har spyware så kan jeg godt ha virus også. Dessuten så har firefox oppført seg litt rart ved at den looper refresh knappen når jeg går innpå visse sider og går tilbake en side (bruker backspace)

 

MBAM fant ingen ting.

Endret av reef91
Lenke til kommentar

Opprett en konto eller logg inn for å kommentere

Du må være et medlem for å kunne skrive en kommentar

Opprett konto

Det er enkelt å melde seg inn for å starte en ny konto!

Start en konto

Logg inn

Har du allerede en konto? Logg inn her.

Logg inn nå
Gå til emneliste

  • Hvem er aktive   0 medlemmer

    • Ingen innloggede medlemmer aktive
×
×
  • Opprett ny...