pkbike Skrevet 19. januar 2010 Del Skrevet 19. januar 2010 Hei. Jeg tror jeg har fått et slags msn virus eller noe. Hver gang jeg logger på blir det sendt en link til alle kontaktene mine. Det som blir sendt er: behage bli denne ringtonen www.melodiessite.com Noen som vet hva jeg må gjøre for å få det vekk? Lenke til kommentar
PerB Skrevet 20. januar 2010 Del Skrevet 20. januar 2010 Se i toppen av detet forumet. Der finner du en sticky med hva du må gjøre og hvilke rapporter du må legge ut for å kunne få fornuftig hjelp. Benytt dette for å finne ut om du har malvare på din maskin. Lenke til kommentar
pkbike Skrevet 20. januar 2010 Forfatter Del Skrevet 20. januar 2010 Her er logg fra Malwarebytes' Anti-Malware: Malwarebytes' Anti-Malware 1.44 Databaseversjon: 3600 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 20-Jan-10 16:55:55 mbam-log-2010-01-20 (16-55-55).txt Skanntype: Rask Skann Objekter skannet: 97553 Tid tilbakelagt: 3 minute(s), 46 second(s) Minneprosesser infisert: 0 Minnemoduler infisert: 0 Registernøkler infisert: 0 Registerverdier infisert: 0 Registerfiler infisert: 0 Mapper infisert: 0 Filer infisert: 0 Minneprosesser infisert: (Ingen mistenkelige filer funnet) Minnemoduler infisert: (Ingen mistenkelige filer funnet) Registernøkler infisert: (Ingen mistenkelige filer funnet) Registerverdier infisert: (Ingen mistenkelige filer funnet) Registerfiler infisert: (Ingen mistenkelige filer funnet) Mapper infisert: (Ingen mistenkelige filer funnet) Filer infisert: (Ingen mistenkelige filer funnet) Og her er logg fra DDS: DDS (Ver_09-12-01.01) - NTFSX64 Run by Krister at 16:48:51.98 on 20-Jan-10 Internet Explorer: 8.0.7600.16385 Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1044.18.4061.2615 [GMT 1:00] ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\LSI SoftModem\agr64svc.exe C:\Windows\system32\nvvsvc.exe C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe C:\Program Files (x86)\Acer\Registration\GregHSRW.exe C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe C:\Program Files\Acer\Acer Updater\UpdaterService.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe C:\Windows\servicing\TrustedInstaller.exe C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe C:\Program Files (x86)\Launch Manager\LManager.EXE C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files (x86)\Java\jre6\bin\jusched.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\Norton Internet Security\Engine\17.1.0.19\ccSvcHst.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe C:\Program Files (x86)\Acer\Acer VCM\Vc.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe C:\Windows\system32\wuauclt.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\system32\taskeng.exe C:\Windows\SysWow64\Macromed\Flash\FlashUtil10b.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Users\Krister\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UV2LIGOD\dds[1].scr C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe ============== Pseudo HJT Report =============== uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5739g&r=273601102306l03d3z1h6t6854y325 uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5739g&r=273601102306l03d3z1h6t6854y325 mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5739g&r=273601102306l03d3z1h6t6854y325 mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5739g&r=273601102306l03d3z1h6t6854y325 mLocal Page = c:\windows\syswow64\blank.htm BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files (x86)\norton internet security\engine\17.1.0.19\coIEPlg.dll BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files (x86)\norton internet security\engine\17.1.0.19\IPSBHO.DLL BHO: Påloggingshjelp for Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files (x86)\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre6\bin\jp2ssv.dll TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files (x86)\norton internet security\engine\17.1.0.19\coIEPlg.dll TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File uRun: [msnmsgr] "c:\program files (x86)\windows live\messenger\msnmsgr.exe" /background uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [Google Update] "c:\users\krister\appdata\local\google\update\GoogleUpdate.exe" /c uRunOnce: [FlashPlayerUpdate] c:\windows\syswow64\macromed\flash\FlashUtil10b.exe mRun: [EgisTecLiveUpdate] "c:\program files (x86)\egistec egis software update\EgisUpdate.exe" mRun: [Adobe Reader Speed Launcher] "c:\program files (x86)\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [backupManagerTray] "c:\program files (x86)\newtech infosystems\acer backup manager\BackupManagerTray.exe" -h -k mRun: [NortonOnlineBackupReminder] "c:\program files (x86)\symantec\norton online backup\activation\NobuActivation.exe" UNATTENDED mRun: [LManager] c:\program files (x86)\launch manager\LManager.exe mRun: [ArcadeDeluxeAgent] "c:\program files (x86)\acer arcade deluxe\acer arcade deluxe\ArcadeDeluxeAgent.exe" mRun: [PlayMovie] "c:\program files (x86)\acer arcade deluxe\playmovie\PMVService.exe" mRun: [AdobeCS4ServiceManager] "c:\program files (x86)\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin mRun: [sunJavaUpdateSched] "c:\program files (x86)\java\jre6\bin\jusched.exe" StartupFolder: c:\progra~3\micros~1\windows\startm~1\programs\startup\acervc~1.lnk - c:\program files (x86)\acer\acer vcm\AcerVCM.exe mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0) mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: E&xport to Microsoft Excel - c:\progra~2\micros~1\office12\EXCEL.EXE/3000 IE: Google Sidewiki - c:\program files (x86)\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~2\micros~1\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~2\micros~1\office12\REFIEBAR.DLL Trusted Zone: com.tw\asia.msi Trusted Zone: com.tw\global.msi Trusted Zone: com.tw\www.msi DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {40F576AD-8680-4F9E-9490-99D069CD665F} - hxxp://srtest-cdn.systemrequirementslab.com.s3.amazonaws.com/bin/sysreqlabdetect.cab DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} - hxxp://liveupdate.msi.com.tw/autobios/LOnline/install.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files (x86)\acer\acer vcm\Skype4COM.dll TB-X64: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File TB-X64: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File mRun-x64: [iAAnotif] c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe mRun-x64: [mwlDaemon] c:\program files (x86)\egistec\mywinlocker 3\x86\mwlDaemon.exe mRun-x64: [Acer ePower Management] c:\program files\acer\acer powersmart manager\ePowerTrayLauncher.exe mRun-x64: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe mRun-x64: [PLFSetI] c:\windows\PLFSetI.exe ============= SERVICES / DRIVERS =============== R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nisx64\1101000.013\SymDS64.sys [2010-1-3 433200] R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nisx64\1101000.013\SymEFA64.sys [2010-1-3 219184] R1 BHDrvx64;BHDrvx64;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_17.0.0.136\definitions\bashdefs\20091205.001\BHDrvx64.sys [2009-12-5 668720] R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\nisx64\1101000.013\cchpx64.sys [2010-1-3 615040] R1 IDSVia64;IDSVia64;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_17.0.0.136\definitions\ipsdefs\20100116.002\IDSviA64.sys [2010-1-17 466992] R1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\drivers\mwlPSDFilter.sys [2009-6-2 22576] R1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\drivers\mwlPSDNserv.sys [2009-6-2 20016] R1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\drivers\mwlPSDVDisk.sys [2009-6-2 60464] R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nisx64\1101000.013\Ironx64.sys [2010-1-3 146992] R1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\system32\drivers\nisx64\1101000.013\symtdiv.sys [2010-1-3 450608] R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 59904] R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};Power Control [2009/01/10 22:27:27];c:\program files (x86)\acer arcade deluxe\playmovie00.fcl [2009-1-11 146928] R2 ePowerSvc;Acer ePower Service;c:\program files\acer\acer powersmart manager\ePowerSvc.exe [2009-8-22 796192] R2 Greg_Service;GRegService;c:\program files (x86)\acer\registration\GregHSRW.exe [2009-6-4 1150496] R2 MWLService;MyWinLocker Service;c:\program files (x86)\egistec\mywinlocker 3\x86\MWLService.exe [2009-8-6 311592] R2 NIS;Norton Internet Security;c:\program files (x86)\norton internet security\engine\17.1.0.19\ccSvcHst.exe [2010-1-3 126392] R2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\newtech infosystems\acer backup manager\IScheduleSvc.exe [2009-8-21 62720] R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\newtech infosystems\nti backup now 5\SchedulerSvc.exe [2009-6-18 144640] R2 RS_Service;Raw Socket Service;c:\program files (x86)\acer\acer vcm\RS_Service.exe [2009-8-22 253952] R2 Updater Service;Updater Service;c:\program files\acer\acer updater\UpdaterService.exe [2009-8-22 240160] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x64.sys [2009-11-13 67072] R3 NETw5s64;Intel® Wireless WiFi Link-kortdriver for Windows 7 64-bit;c:\windows\system32\drivers\NETw5s64.sys [2009-9-15 6952960] R3 nuvotoncir;Nuvoton IR Transceiver;c:\windows\system32\drivers\nuvotoncir.sys [2009-6-24 48128] R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2010-1-8 84584] S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\common files\macrovision shared\flexnet publisher\FNPLicensingService64.exe [2010-1-3 1038088] S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\drivers\NETw5v64.sys [2009-8-22 5435904] S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\newtech infosystems\nti backup now 5\BackupSvc.exe [2009-6-18 50432] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2009-8-22 216576] =============== Created Last 30 ================ 2010-01-19 21:45:12 0 d-----w- c:\program files (x86)\TrendMicro 2010-01-19 20:34:17 0 d-----w- c:\program files\Codemonster 2010-01-19 20:26:26 0 d-----w- C:\Msn 2010-01-19 20:11:09 0 d-----w- c:\program files (x86)\Windows Live SkyDrive 2010-01-19 20:10:52 0 d-----w- c:\windows\PCHEALTH 2010-01-19 19:30:40 0 d-----w- c:\users\krister\appdata\roaming\Malwarebytes 2010-01-19 19:30:35 22104 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-01-19 19:30:35 0 d-----w- c:\programdata\Malwarebytes 2010-01-19 19:30:35 0 d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2010-01-15 10:34:31 234 ----a-w- c:\windows\Cod.bat 2010-01-15 07:42:40 0 d-----w- c:\program files (x86)\Age Of Empires 2 & The Conquerors Expansion - Full Game 2010-01-14 12:57:27 411368 ----a-w- c:\windows\syswow64\deploytk.dll 2010-01-14 12:57:27 149280 ----a-w- c:\windows\syswow64\javaws.exe 2010-01-14 12:57:27 145184 ----a-w- c:\windows\syswow64\javaw.exe 2010-01-14 12:57:27 145184 ----a-w- c:\windows\syswow64\java.exe 2010-01-13 07:31:57 70656 ----a-w- c:\windows\syswow64\fontsub.dll 2010-01-13 07:31:57 148480 ----a-w- c:\windows\system32\t2embed.dll 2010-01-13 07:31:57 108544 ----a-w- c:\windows\syswow64\t2embed.dll 2010-01-13 07:31:57 100864 ----a-w- c:\windows\system32\fontsub.dll 2010-01-09 11:17:35 0 d-----w- c:\users\krister\appdata\roaming\Tific 2010-01-08 11:30:10 0 d-----w- C:\LFS 2010-01-07 23:30:27 84584 ----a-w- c:\windows\system32\drivers\nvhda64v.sys 2010-01-07 23:30:27 22528 ----a-w- c:\windows\system32\nvhdap64.dll 2010-01-07 23:28:54 0 d-----w- c:\program files\NVIDIA Corporation 2010-01-07 13:01:30 0 d-----w- c:\users\krister\appdata\roaming\Unigraphics Solutions 2010-01-07 12:10:35 0 d-----w- c:\program files (x86)\Solid Edge V20 2010-01-06 13:57:52 0 d-----w- c:\program files\Realtek 2010-01-06 13:57:32 1638944 ----a-w- c:\windows\system32\RtkAPO64.dll 2010-01-06 13:57:31 328096 ----a-w- c:\windows\system32\FMAPO64.dll 2010-01-04 10:00:54 0 d-----w- c:\programdata\Sandlot Games 2010-01-04 09:55:59 0 d-----w- c:\users\krister\appdata\roaming\GameConsole 2010-01-04 09:55:37 0 d-sh--w- c:\users\krister\appdata\roaming\.# 2010-01-03 17:41:05 0 d-----w- c:\programdata\FLEXnet 2010-01-03 17:38:41 0 d-----w- c:\program files\Adobe 2010-01-03 17:36:06 0 d-----w- c:\windows\syswow64\spool 2010-01-03 17:34:19 0 d-----w- c:\program files\common files\Macrovision Shared 2010-01-03 17:34:18 0 d-----w- c:\program files\common files\Adobe 2010-01-03 17:34:16 0 d-----w- c:\program files (x86)\common files\Macrovision Shared 2010-01-03 16:21:05 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf 2010-01-03 14:40:53 0 d-----w- c:\programdata\Blizzard Entertainment 2010-01-03 13:05:51 2048 ----a-w- c:\windows\syswow64\tzres.dll 2010-01-03 13:05:51 2048 ----a-w- c:\windows\system32\tzres.dll 2010-01-03 13:02:47 311808 ----a-w- c:\windows\system32\msv1_0.dll 2010-01-03 13:02:47 257024 ----a-w- c:\windows\syswow64\msv1_0.dll 2010-01-03 13:01:31 0 d-----w- c:\program files (x86)\MSXML 4.0 2010-01-03 12:12:47 0 d-----w- c:\program files\World of Warcraft 2010-01-03 12:12:47 0 d-----w- c:\program files (x86)\common files\Blizzard Entertainment 2010-01-03 12:12:02 0 d-----w- c:\programdata\Blizzard 2010-01-02 22:32:05 0 d-----w- c:\program files\MSI 2010-01-02 21:59:13 0 d-----w- c:\programdata\PlayMovie 2010-01-02 21:59:11 0 d-----w- c:\users\krister\appdata\roaming\SoftDMA 2010-01-02 17:50:42 8862 ----a-w- c:\windows\system32\nvinfo.pb 2010-01-02 17:41:36 0 d-----w- c:\program files (x86)\Microsoft 2010-01-02 17:24:26 0 d-----w- c:\users\krister\Tracing 2010-01-02 17:16:58 0 d-----w- c:\program files (x86)\SystemRequirementsLab 2010-01-02 17:14:38 0 d-----w- c:\users\krister\appdata\roaming\Spotify 2010-01-02 17:12:12 0 d-----w- c:\program files (x86)\Spotify 2010-01-02 17:11:47 0 d-----w- c:\program files (x86)\common files\Symantec Shared 2010-01-02 16:34:46 854 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.INF 2010-01-02 16:34:46 7440 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.CAT 2010-01-02 16:34:46 173104 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS 2010-01-02 16:34:37 0 d-----w- c:\program files\Symantec 2010-01-02 16:34:37 0 d-----w- c:\program files\common files\Symantec Shared 2010-01-02 16:34:11 0 d-----w- c:\windows\system32\drivers\NISx64 2010-01-02 16:34:09 0 d-----w- c:\program files (x86)\Norton Internet Security 2010-01-02 16:34:08 0 d-----w- c:\programdata\Norton 2010-01-02 16:32:09 0 d-----w- c:\programdata\NortonInstaller 2010-01-02 16:32:09 0 d-----w- c:\program files (x86)\NortonInstaller 2010-01-02 16:10:28 0 d-----w- c:\users\krister\appdata\roaming\PowerCinema 2010-01-02 16:09:46 0 d---a-w- C:\book 2010-01-02 16:05:21 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll 2010-01-02 16:05:21 3426072 ----a-w- c:\windows\syswow64\d3dx9_32.dll 2010-01-02 16:02:57 0 d-----w- c:\program files (x86)\common files\Windows Live 2010-01-02 16:01:15 0 d-----w- c:\program files (x86)\Microsoft Visual Studio 8 2010-01-02 15:51:33 0 d-----w- C:\AcerSW 2010-01-02 15:45:47 0 d-----w- c:\program files (x86)\OEM 2010-01-02 15:44:49 0 d-sh--w- C:\Recovery ==================== Find3M ==================== 2010-01-15 07:43:31 74124 ----a-w- c:\windows\system32\perfc014.dat 2010-01-15 07:43:31 448210 ----a-w- c:\windows\system32\perfh014.dat 2009-11-20 20:31:00 90216 ----a-w- c:\windows\system32\nvhotkey.dll 2009-11-20 20:31:00 886376 ----a-w- c:\windows\system32\nvsvc64.dll 2009-11-20 20:31:00 61032 ----a-w- c:\windows\system32\nvshext.dll 2009-11-20 20:31:00 151144 ----a-w- c:\windows\system32\nvvsvc.exe 2009-11-20 20:31:00 13825128 ----a-w- c:\windows\system32\nvcpl.dll 2009-11-20 20:31:00 1323624 ----a-w- c:\windows\system32\nvsvcr.dll 2009-11-20 20:31:00 115816 ----a-w- c:\windows\system32\nvmctray.dll 2009-11-19 20:43:02 645736 ----a-w- c:\windows\system32\NVUNINST.EXE 2009-11-19 07:22:46 64512 ----a-w- c:\windows\syswow64\msfeedsbs.dll 2009-11-19 07:22:46 5958656 ----a-w- c:\windows\syswow64\mshtml.dll 2009-11-12 04:15:02 645224 ----a-w- c:\windows\system32\nvuhda6.exe 2009-11-10 23:15:10 199272 ----a-w- c:\windows\system32\nvcohda6.dll 2009-07-14 04:54:24 174 --sha-w- c:\program files\desktop.ini 2009-07-14 04:54:24 174 --sha-w- c:\program files (x86)\desktop.ini 2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib000\perfi.dat 2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib000\perfh.dat 2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib000\perfd.dat 2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib000\perfc.dat 2009-02-10 19:23:42 192484 ----a-w- c:\program files (x86)\common files\Acer GameZone online.ico 2009-01-11 06:53:03 36156 ----a-w- c:\windows\inf\perflib414\perfd.dat 2009-01-11 06:53:03 36156 ----a-w- c:\windows\inf\perflib414\perfc.dat 2009-01-11 06:53:03 298300 ----a-w- c:\windows\inf\perflib414\perfi.dat 2009-01-11 06:53:03 298300 ----a-w- c:\windows\inf\perflib414\perfh.dat 2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat 2009-07-14 05:12:52 245760 --sha-w- c:\windows\system32\config\systemprofile\appdata\roaming\microsoft\windows\ietldcache\index.dat 2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe 2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe ============= FINISH: 16:49:37.98 =============== Lenke til kommentar
Pseudopod Skrevet 20. januar 2010 Del Skrevet 20. januar 2010 Har du forsøkt å forandre passord på MSN kontoen din? Etter min erfaring så er nesten alle "MSN virus" et resultat av at du har logget inn med MSN kontoen din på en falsk MSN side, og dermed logger en annen datamaskin inn på MSN med din konto, sender linker, og logger av. Det betyr følgelig at om du forandrer passord så kan ikke det systemet som kun kjenner ditt gamle MSN passord logge inn lengre. Lenke til kommentar
pkbike Skrevet 20. januar 2010 Forfatter Del Skrevet 20. januar 2010 (endret) Har endret 1 gang, igår, men virket ikke.. Skal ta å prøve igjen Edit: Fungerte ikke.. Noen som har en bra ide om hva som kan gjøres? Endret 20. januar 2010 av pkbike Lenke til kommentar
dronjom Skrevet 4. juli 2010 Del Skrevet 4. juli 2010 Jeg lurer på det samme, kom borti link med samme navn melodiessite men det har ikke begynt å skje noe enda, vil være i forkjøpet. Fant du ut av noe senere, pkbike? Noen andre som har noe å si? Er det ikke hver gang man klikker på det at det reagerer? Forta meg å logge ut med en gang. Hva er det viruset gjør a? Er det folk som spionerer? Stjeler bank koder? Eller blir pcen ødelagt, isåfall hvordan? :S Lenke til kommentar
Atiks Skrevet 4. juli 2010 Del Skrevet 4. juli 2010 Det ser ut som at din MBAM ikke er oppdatert, så oppgrader den og skann på nytt og post loggen. Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå