[Løst]Hjelp til logg-analyse

[Turmalina]

Hei! Har fulgt veiledningen, glad for hjelp til å analysere loggene! Her er det nok mye rart (+årsak til treg oppstart?) Har HijackThis installert fra før, men vet ikke hva jeg kan slette...

 

MBAM-logg:

 

Malwarebytes' Anti-Malware 1.41

Databaseversjon: 3092

Windows 5.1.2600 Service Pack 3

 

03.11.2009 15:56:11

mbam-log-2009-11-03 (15-56-11).txt

 

Skanntype: Rask Skann

Objekter skannet: 100229

Tid tilbakelagt: 4 minute(s), 36 second(s)

 

Minneprosesser infisert: 0

Minnemoduler infisert: 0

Registernøkler infisert: 5

Registerverdier infisert: 0

Registerfiler infisert: 0

Mapper infisert: 0

Filer infisert: 0

 

Minneprosesser infisert:

(Ingen mistenkelige filer funnet)

 

Minnemoduler infisert:

(Ingen mistenkelige filer funnet)

 

Registernøkler infisert:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{90b5a95a-afd5-4d11-b9bd-a69d53d22226} (Adware.Hotbar) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8109fd3d-d891-4f80-8339-50a4913ace6f} (Adware.Zango) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2.1 (Adware.PopCap) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\The Weather Channel (Adware.Hotbar) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Trymedia Systems (Adware.TryMedia) -> Quarantined and deleted successfully.

 

Registerverdier infisert:

(Ingen mistenkelige filer funnet)

 

Registerfiler infisert:

(Ingen mistenkelige filer funnet)

 

Mapper infisert:

(Ingen mistenkelige filer funnet)

 

Filer infisert:

(Ingen mistenkelige filer funnet)

 

 

Combofix-logg:

 

ComboFix 09-11-02.05 - Anne 03.11.2009 17:10.1.1 - FAT32x86

Microsoft Windows XP Home Edition 5.1.2600.3.1252.47.1044.18.1014.508 [GMT 1:00]

Kjører fra: c:\documents and settings\Anne\Mine dokumenter\Mine nedlastinger\ComboFix.exe

AV: avast! antivirus 4.8.1351 [VPS 091103-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}

 

ADVARSEL -DENNE MASKINEN HAR IKKE GJENOPPRETTINGSKONSOLLEN INSTALLERT !!

.

 

((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\documents and settings\Anne\x.exe

c:\programfiler\WinPCap

c:\programfiler\WinPCap\daemon_mgm.exe

c:\programfiler\WinPCap\npf_mgm.exe

c:\programfiler\WinPCap\rpcapd.exe

c:\windows\Downloaded Program Files\setup.dll

c:\windows\system32\drivers\npf.sys

c:\windows\system32\Packet.dll

c:\windows\system32\pthreadVC.dll

c:\windows\system32\WanPacket.dll

c:\windows\system32\wpcap.dll

 

.

((((((((((((((((((((((((((((((((((((((( Drivere/Tjenester )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

-------\Service_NPF

 

 

((((((((((((((((((((((((((( Filer Opprettet Fra 2009-10-03 til 2009-11-03 )))))))))))))))))))))))))))))))))

.

 

2009-11-03 14:35 . 2009-11-03 14:36 -------- d-----w- c:\documents and settings\Anne\Programdata\Malwarebytes

2009-11-03 14:35 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2009-11-03 14:35 . 2009-11-03 14:35 -------- d-----w- c:\documents and settings\All Users\Programdata\Malwarebytes

2009-11-03 14:35 . 2009-11-03 14:35 -------- d-----w- c:\programfiler\Malwarebytes' Anti-Malware

2009-11-03 14:35 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys

2009-11-02 09:42 . 2008-11-06 01:03 -------- d-----w- C:\SDFix

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-10-14 13:10 . 2006-06-29 05:12 81464 ----a-w- c:\windows\system32\perfc014.dat

2009-10-14 13:10 . 2006-06-29 05:12 447948 ----a-w- c:\windows\system32\perfh014.dat

2009-09-18 21:00 . 2009-09-18 20:59 -------- d-----w- c:\programfiler\iPod

2009-09-18 20:59 . 2009-09-18 20:59 -------- d-----w- c:\programfiler\iTunes

2009-09-18 20:59 . 2009-09-18 20:59 -------- d-----w- c:\documents and settings\All Users\Programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD}

2009-09-18 20:56 . 2009-09-18 20:56 -------- d-----w- c:\programfiler\QuickTime

2009-09-11 15:20 . 2004-08-04 19:00 136192 ----a-w- c:\windows\system32\msv1_0.dll

2009-09-04 22:05 . 2004-08-04 19:00 58880 ----a-w- c:\windows\system32\msasn1.dll

2009-08-29 09:00 . 2006-01-09 19:08 916480 ----a-w- c:\windows\system32\wininet.dll

2009-08-26 09:02 . 2004-08-04 19:00 247326 ----a-w- c:\windows\system32\strmdll.dll

2009-08-22 08:07 . 2006-10-27 23:17 465408 ----a-w- c:\documents and settings\Anne\Lokale innstillinger\Programdata\GDIPFONTCACHEV1.DAT

2009-08-17 17:10 . 2007-01-17 22:11 1279456 ----a-w- c:\windows\system32\aswBoot.exe

2009-08-17 17:06 . 2007-01-17 22:11 93392 ----a-w- c:\windows\system32\drivers\aswmon.sys

2009-08-17 17:06 . 2007-01-17 22:11 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys

2009-08-17 17:05 . 2008-06-01 12:31 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys

2009-08-17 17:05 . 2008-06-01 12:31 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2009-08-17 17:04 . 2007-01-17 22:11 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2009-08-17 17:04 . 2007-01-17 22:11 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2009-08-17 17:03 . 2007-01-17 22:11 26944 ----a-w- c:\windows\system32\drivers\aavmker4.sys

2009-08-17 17:02 . 2007-01-17 22:11 97480 ----a-w- c:\windows\system32\AVASTSS.scr

2009-08-06 18:24 . 2004-08-04 19:00 327896 ----a-w- c:\windows\system32\wucltui.dll

2009-08-06 18:24 . 2004-08-04 19:00 209632 ----a-w- c:\windows\system32\wuweb.dll

2009-08-06 18:24 . 2005-05-26 03:16 44768 ----a-w- c:\windows\system32\wups2.dll

2009-08-06 18:24 . 2004-08-04 19:00 35552 ----a-w- c:\windows\system32\wups.dll

2009-08-06 18:24 . 2004-08-04 19:00 53472 ----a-w- c:\windows\system32\wuauclt.exe

2009-08-06 18:24 . 2004-08-04 19:00 96480 ----a-w- c:\windows\system32\cdm.dll

2009-08-06 18:23 . 2004-08-04 19:00 575704 ----a-w- c:\windows\system32\wuapi.dll

2009-08-06 18:23 . 2009-05-24 08:21 274288 ----a-w- c:\windows\system32\mucltui.dll

2009-08-06 18:23 . 2009-05-24 08:21 215920 ----a-w- c:\windows\system32\muweb.dll

2009-08-06 18:23 . 2004-08-04 19:00 1929952 ----a-w- c:\windows\system32\wuaueng.dll

2008-09-27 10:31 . 2007-04-15 08:43 122880 ----a-w- c:\programfiler\mozilla firefox\components\GoogleDesktopMozilla.dll

2009-04-14 10:44 . 2008-02-22 22:39 6008 --sha-w- c:\windows\system32\KGyGaAvL.sys

2009-04-14 10:44 . 2008-02-23 02:32 168 --sh--r- c:\windows\system32\85686DD38D.sys

.

 

(((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))

.

.

*Merk* tomme oppføringer & gyldige standardoppføringer vises ikke

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Eraser"="c:\programfiler\Eraser\eraser.exe" [2003-07-25 536576]

"SpybotSD TeaTimer"="c:\programfiler\Fådetvekk\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

"updateMgr"="c:\programfiler\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 313472]

"SUPERAntiSpyware"="c:\programfiler\Fådetvekk\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2009-10-15 2000112]

"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AzMixerSel"="c:\programfiler\Realtek\InstallShield\AzMixerSel.exe" [2005-12-21 53248]

"SynTPEnh"="c:\programfiler\Synaptics\SynTP\SynTPEnh.exe" [2005-07-20 729177]

"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952]

"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-04 59392]

"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]

"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]

"PCMService"="c:\programfiler\Acer\Acer Arcade\PCMService.exe" [2005-12-13 151552]

"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-11-28 77824]

"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-11-28 118784]

"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2005-12-27 69632]

"ePower_DMC"="c:\acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-01-17 344064]

"Acer ePower Management"="c:\acer\Empowering Technology\ePower\Acer ePower Management.exe" [2006-01-16 3080192]

"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2006-03-28 593920]

"eRecoveryService"="c:\acer\Empowering Technology\eRecovery\Monitor.exe" [2006-01-24 397312]

"LVCOMSX"="c:\windows\system32\LVCOMSX.EXE" [2006-04-06 225280]

"LogitechCameraAssistant"="c:\programfiler\Acer\OrbiCam\CameraAssistant.exe" [2006-04-06 331776]

"LogitechVideo[inspector]"="c:\programfiler\Acer\OrbiCam\InstallHelper.exe" [2006-04-06 18:06 73728]

"LogitechCameraService(E)"="c:\windows\system32\ElkCtrl.exe" [2004-11-01 262144]

"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-08-17 81000]

"Google Desktop Search"="c:\programfiler\Google\Google Desktop Search\GoogleDesktop.exe" [2008-09-27 29744]

"ntiMUI"="c:\programfiler\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2005-05-11 45056]

"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-11-28 98304]

"CanonSolutionMenu"="c:\programfiler\Canon\SolutionMenu\CNSLMAIN.exe" [2008-03-10 689488]

"CanonMyPrinter"="c:\programfiler\Canon\MyPrinter\BJMyPrt.exe" [2008-03-17 1848648]

"IntelliPoint"="c:\programfiler\Microsoft IntelliPoint\ipoint.exe" [2008-06-10 1406024]

"ADMTray.exe"="c:\acer\Empowering Technology\admtray.exe" [2005-10-24 2462208]

"SunJavaUpdateSched"="c:\programfiler\Java\jre6\bin\jusched.exe" [2009-07-25 149280]

"QuickTime Task"="c:\programfiler\QuickTime\QTTask.exe" [2009-09-05 417792]

"iTunesHelper"="c:\programfiler\iTunes\iTunesHelper.exe" [2009-09-08 305440]

"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2005-12-19 15797248]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

 

c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\

Run Google Web Accelerator.lnk.disabled [2007-7-18 979]

Adobe Reader Speed Launch.lnk - c:\programfiler\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-4-23 29696]

 

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]

"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\programfiler\Fådetvekk\SUPERAntiSpyware\SASSEH.DLL" [2008-08-28 77824]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]

2009-09-07 08:51 548352 ----a-w- c:\programfiler\Fådetvekk\SUPERAntiSpyware\SASWINLO.DLL

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

@="Service"

 

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"c:\\WINDOWS\\PCHEALTH\\HELPCTR\\BINARIES\\HelpCtr.exe"=

"c:\\Programfiler\\Acer\\Acer Arcade\\PCMService.exe"=

"c:\\Programfiler\\MSN Messenger\\msnmsgr.exe"=

"c:\\Programfiler\\MSN Messenger\\msncall.exe"=

"c:\\WINDOWS\\system32\\sessmgr.exe"=

"c:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Programfiler\\Bonjour\\mDNSResponder.exe"=

"c:\\Programfiler\\iTunes\\iTunes.exe"=

 

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [01.06.2008 13:31 114768]

R1 NTGDT;NTGDT;c:\windows\system32\drivers\NTGDT.SYS [28.10.2005 08:34 18144]

R1 SASDIFSV;SASDIFSV;c:\programfiler\Fådetvekk\SUPERAntiSpyware\SASDIFSV.SYS [10.10.2006 13:53 9968]

R1 SASKUTIL;SASKUTIL;c:\programfiler\Fådetvekk\SUPERAntiSpyware\SASKUTIL.SYS [27.02.2007 12:39 74480]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [01.06.2008 13:31 20560]

R2 Automatisk LiveUpdate-planlegging;Automatisk LiveUpdate-planlegging;c:\programfiler\Symantec\LiveUpdate\AluSchedulerSvc.exe [29.10.2006 07:07 100032]

R3 lv321av;Logitech USB PC Camera (VC0321);c:\windows\system32\drivers\lv321av.sys [28.10.2006 00:24 1097472]

R3 SASENUM;SASENUM;c:\programfiler\Fådetvekk\SUPERAntiSpyware\SASENUM.SYS [16.02.2006 17:51 4096]

S3 cmusbser;%CMUSBSER%;c:\windows\system32\drivers\cmusbser.sys [31.03.2009 17:40 87040]

S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245;c:\programfiler\Google\Google Desktop Search\GoogleDesktop.exe [15.04.2007 09:43 29744]

S3 OMNUSB;Omnikey AG CardMan 2020 USB-smartkortleser;c:\windows\system32\drivers\sccmusbm.sys [28.10.2006 11:16 23936]

 

--- Andre tjenester/drivere lastet i minnet ---

 

*NewlyCreated* - MBR

*Deregistered* - mbr

.

Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)

 

2009-11-01 c:\windows\Tasks\avast! Antivirus.job

- c:\progra~1\ALWILS~1\Avast4\ashAvast.exe [2007-01-17 17:01]

 

2009-11-01 c:\windows\Tasks\RegCure.job

- c:\programfiler\RegCure\RegCure.exe [2008-12-29 18:58]

 

2009-11-03 c:\windows\Tasks\RegCure Program Check.job

- c:\programfiler\RegCure\RegCure.exe [2008-12-29 18:58]

 

2009-10-30 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\programfiler\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

.

.

------- Tilleggsskanning -------

.

uStart Page = hxxp://www.askim.kommune.no

uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8

uInternet Connection Wizard,ShellNext = iexplore

uInternet Settings,ProxyOverride = *.local

uSearchURL,(Default) = hxxp://www.google.com/keyword/%s

IE: E&ksporter til Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000

Trusted Zone: microsoft.com\office

Trusted Zone: onecall.no\www

Trusted Zone: skandiabanken.no\secure

Trusted Zone: skandiabanken.no\www

Trusted Zone: sparebank1.no\nettbank

Trusted Zone: sparebank1.no\www2

Trusted Zone: webcruiter.no\www

DPF: {594ECDD4-A991-4208-A7B7-00DDAD9BE328} - hxxp://media.labs.live.com/all/ps/_code_/Photosynth.cab

DPF: {B91AEDBE-93DF-4017-8BB3-F1C300C0EC51} - hxxp://www.buypass.no/Installasjoner/Buypass_installasjonsprogram/setup.exe

FF - ProfilePath - c:\documents and settings\Anne\Programdata\Mozilla\Firefox\Profiles\cj7cuq1u.default\

FF - prefs.js: browser.startup.homepage - hxxp://nb-no.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:nb-NO:official

FF - prefs.js: network.proxy.http - http://localhost:9100/proxy.pac

FF - prefs.js: network.proxy.type - 2

FF - component: c:\programfiler\Mozilla Firefox\components\GoogleDesktopMozilla.dll

FF - plugin: c:\documents and settings\Anne\Lokale innstillinger\Programdata\myVRnpapi\npmyvr.dll

FF - plugin: c:\programfiler\Mozilla Firefox\plugins\npsabffx.dll

FF - plugin: c:\windows\system32\SuperAdBlocker.com\npsabffx.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

 

---- FIREFOX POLICIES ----

c:\programfiler\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".no");

.

- - - - TOMME PEKERE FJERNET - - - -

 

HKCU-Run-DW4 - c:\programfiler\The Weather Channel FW\Desktop Weather\DesktopWeather.exe

ShellExecuteHooks-{EDB0E980-90BD-11D4-8599-0008C7D3B6F8} - c:\programfiler\Qualcomm\Eudora\EuShlExt.dll

 

 

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-11-03 17:20

Windows 5.1.2600 Service Pack 3 FAT NTAPI

 

skanner skjulte prosesser ...

 

skanner skjulte autostart-oppføringer ...

 

skanner skjulte filer ...

 

skanning vellykket

skjulte filer: 0

 

**************************************************************************

.

--------------------- DLL'er Lastet Av Kjørende Prosesser ---------------------

 

- - - - - - - > 'winlogon.exe'(816)

c:\programfiler\Fådetvekk\SUPERAntiSpyware\SASWINLO.DLL

 

- - - - - - - > 'explorer.exe'(3796)

c:\windows\system32\MSNChatHook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\MSVCR71.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\WPDShServiceObj.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

c:\acer\Empowering Technology\ePower\SysHook.dll

.

------------------------ Andre Kjørende Prosesser ------------------------

.

c:\programfiler\Fådetvekk\Ad-Aware\aawservice.exe

c:\programfiler\Alwil Software\Avast4\aswUpdSv.exe

c:\programfiler\Alwil Software\Avast4\ashServ.exe

c:\windows\System32\SCardSvr.exe

c:\programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

c:\acer\Empowering Technology\admServ.exe

c:\programfiler\Bonjour\mDNSResponder.exe

c:\programfiler\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe

c:\programfiler\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe

c:\programfiler\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe

c:\programfiler\Canon\IJPLM\IJPLMSVC.EXE

c:\programfiler\Java\jre6\bin\jqs.exe

c:\programfiler\Fellesfiler\LightScribe\LSSrvc.exe

c:\programfiler\Fellesfiler\Microsoft Shared\VS7DEBUG\MDM.EXE

c:\windows\system32\PSIService.exe

c:\programfiler\CyberLink\Shared Files\RichVideo.exe

c:\programfiler\Acer\Acer Arcade\Kernel\TV\CLSched.exe

c:\windows\system32\igfxext.exe

c:\windows\system32\igfxsrvc.exe

c:\docume~1\Anne\LOKALE~1\Temp\RtkBtMnt.exe

c:\programfiler\Alwil Software\Avast4\ashMaiSv.exe

c:\programfiler\Alwil Software\Avast4\ashWebSv.exe

c:\windows\system32\wbem\unsecapp.exe

c:\programfiler\iPod\bin\iPodService.exe

c:\windows\system32\wscntfy.exe

.

**************************************************************************

.

Tidspunkt ferdig: 2009-11-03 17:24 - maskinen ble startet på nytt

ComboFix-quarantined-files.txt 2009-11-03 16:24

 

Pre-Run: 9 060 220 928 byte ledig

Post-Run: 9 619 636 224 byte ledig

 

 

 

Endret 3. november 2009 av Turmalina

[norbat]

Loggen viser ikke noe malware. En generell opprydding kan kanskje hjelpe på treg pc?

- slett prog. du ikke bruker

- slett temporære filer etc.

- Diskdefragmentering

[Turmalina]

Godt å høre, takk for det! Ja, skal ta en opprydding etter beste evne... Takk for rådet om diskfragmentering!

 

Hilsen Turmalina