Noen som kan sjekke disse loggene?

[Cskog]

Hei

Lurer på om det begynner å bli mye "tjafs" på den antikke pc`n min.

Konge viss noen tok seg bryet med å sjekke disse loggene for meg,da jeg selv har begrenede data kunnskaper.

 

 

 

 

 

ComboFix 10-02-09.01 - Nordre Røråsen3 09.02.2010 22:01:03.1.1 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.47.1044.18.1023.691 [GMT 1:00]

Kjører fra: d:\documents and settings\Nordre Røråsen3\Skrivebord\ComboFix.exe

AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}

.

 

((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

G:\Autorun.inf

 

.

((((((((((((((((((((((((((( Filer Opprettet Fra 2010-01-09 til 2010-02-09 )))))))))))))))))))))))))))))))))

.

 

2010-02-09 20:23 . 2010-01-07 15:07 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys

2010-02-09 20:23 . 2010-02-09 20:23 -------- d-----w- d:\documents and settings\All Users\Programdata\Malwarebytes

2010-02-09 20:23 . 2010-01-07 15:07 19160 ----a-w- d:\windows\system32\drivers\mbam.sys

2010-02-09 20:23 . 2010-02-09 20:24 -------- d-----w- d:\programfiler\Malwarebytes' Anti-Malware

2010-02-04 15:11 . 2007-11-08 15:26 1164728 ----a-w- d:\windows\system32\NMSDVDXU.dll

2010-02-04 10:27 . 2010-02-04 10:27 -------- d-----w- d:\documents and settings\All Users\Programdata\Nokia

2010-02-04 10:23 . 2010-02-03 18:26 24415032 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}\NokiaSoftwareUpdaterSetup_no.exe

2010-02-04 08:57 . 2010-02-04 08:57 -------- d-----w- d:\programfiler\MSXML 4.0

2010-02-03 18:30 . 2010-02-03 18:30 3351812 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}\Installer\CommonCustomActions\msxml6Exec.exe

2010-02-03 18:30 . 2010-02-03 18:30 36864 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}\Installer\CommonCustomActions\Sleep.exe

2010-02-03 18:30 . 2010-02-03 18:30 3203453 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{4C911A61-39EA-41CC-AB3C-FE3BFFDB5F78}\Installer\CommonCustomActions\vcredistExec.exe

2010-02-03 18:20 . 2001-08-18 05:36 8704 -c--a-w- d:\windows\system32\dllcache\kbdjpn.dll

2010-02-03 18:20 . 2001-08-18 05:36 8704 ----a-w- d:\windows\system32\kbdjpn.dll

2010-02-03 18:20 . 2001-08-18 05:36 8192 -c--a-w- d:\windows\system32\dllcache\kbdkor.dll

2010-02-03 18:20 . 2001-08-18 05:36 8192 ----a-w- d:\windows\system32\kbdkor.dll

2010-02-03 18:20 . 2001-08-17 21:55 6144 -c--a-w- d:\windows\system32\dllcache\kbd101c.dll

2010-02-03 18:20 . 2001-08-17 21:55 6144 ----a-w- d:\windows\system32\kbd101c.dll

2010-02-03 18:20 . 2001-08-17 21:55 5632 -c--a-w- d:\windows\system32\dllcache\kbd103.dll

2010-02-03 18:20 . 2001-08-17 21:55 5632 ----a-w- d:\windows\system32\kbd103.dll

2010-02-03 18:20 . 2001-08-17 21:55 6144 -c--a-w- d:\windows\system32\dllcache\kbd101b.dll

2010-02-03 18:20 . 2001-08-17 21:55 6144 ----a-w- d:\windows\system32\kbd101b.dll

2010-02-03 18:20 . 2008-04-14 16:20 6144 -c--a-w- d:\windows\system32\dllcache\kbd106.dll

2010-02-03 18:20 . 2008-04-14 16:20 6144 ----a-w- d:\windows\system32\kbd106.dll

2010-02-03 18:17 . 2010-02-03 18:17 -------- d-----w- D:\Sounds

2010-02-03 18:02 . 2009-11-19 07:28 90112 ----a-w- d:\windows\LGMobileDL.dll

2010-02-03 18:02 . 2008-07-28 16:47 180224 ----a-w- d:\windows\AuthDll.dll

2010-02-03 18:02 . 2006-12-10 15:08 258048 ----a-w- d:\windows\esn.dll

2010-02-03 18:02 . 2006-11-21 17:17 40960 ----a-w- d:\windows\Sublock.dll

2010-02-03 18:02 . 2006-10-09 23:28 221291 ----a-w- d:\windows\Imei_dll.dll

2010-02-03 16:41 . 2008-03-21 12:57 14640 ------w- d:\windows\system32\spmsgXP_2k3.dll

2010-02-03 16:39 . 2010-02-03 16:42 -------- d-----w- d:\documents and settings\All Users\Programdata\PC Suite

2010-02-03 16:36 . 2010-02-03 16:36 -------- d-----w- d:\programfiler\Fellesfiler\PCSuite

2010-02-03 16:36 . 2010-02-04 10:46 -------- d-----w- d:\programfiler\Fellesfiler\Nokia

2010-02-03 16:33 . 2010-02-03 16:26 34467776 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Nokia_PC_Suite_nor_web.exe

2010-02-03 16:32 . 2010-02-03 16:32 95232 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\pcswpcsi.exe

2010-02-03 16:32 . 2010-02-03 16:32 61440 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCSFEMsi.exe

2010-02-03 16:32 . 2010-02-03 16:32 10240 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCS.exe

2010-02-03 16:32 . 2010-02-03 16:32 8192 ----a-w- d:\documents and settings\All Users\Programdata\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstCCD.exe

2010-02-03 16:32 . 2010-02-03 18:29 -------- d-----w- d:\documents and settings\All Users\Programdata\Installations

2010-02-03 16:10 . 2008-04-13 18:45 26112 -c--a-w- d:\windows\system32\dllcache\usbser.sys

2010-02-03 16:10 . 2008-04-13 18:45 26112 ----a-w- d:\windows\system32\drivers\usbser.sys

2010-02-03 15:20 . 2010-02-04 15:10 -------- d-----w- d:\programfiler\LG Electronics

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-02-09 19:58 . 2009-05-31 21:25 189432 ----a-w- d:\documents and settings\LocalService\Lokale innstillinger\Programdata\FontCache3.0.0.0.dat

2010-02-08 11:27 . 2009-02-14 14:14 -------- d-----w- d:\documents and settings\All Users\Programdata\Spybot - Search & Destroy

2010-02-04 15:10 . 2009-02-14 12:28 -------- d--h--w- d:\programfiler\InstallShield Installation Information

2010-02-04 10:46 . 2010-02-03 16:35 -------- d-----w- d:\programfiler\Nokia

2010-02-03 16:42 . 2010-02-03 16:42 0 ---ha-w- d:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf

2010-02-03 16:42 . 2010-02-03 16:42 0 ---ha-w- d:\windows\system32\drivers\MsftWdf_user_01_07_00.Wdf

2010-02-03 16:41 . 2010-02-03 16:41 0 ---ha-w- d:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf

2010-02-03 16:41 . 2010-02-03 16:41 0 ---ha-w- d:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf

2010-02-03 16:35 . 2010-02-03 16:35 -------- d-----w- d:\programfiler\DIFX

2010-02-03 16:35 . 2010-02-03 16:35 -------- d-----w- d:\programfiler\PC Connectivity Solution

2010-02-03 16:06 . 2010-02-03 16:06 0 ---ha-w- d:\windows\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf

2010-02-03 16:06 . 2010-02-03 16:06 0 ---ha-w- d:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf

2010-01-20 18:01 . 2009-07-18 15:37 -------- d-----w- d:\programfiler\Microsoft Silverlight

2010-01-05 10:00 . 2004-08-03 23:03 832512 ----a-w- d:\windows\system32\wininet.dll

2010-01-05 09:59 . 2004-08-03 23:03 78336 ----a-w- d:\windows\system32\ieencode.dll

2010-01-05 09:59 . 2004-08-03 23:03 17408 ------w- d:\windows\system32\corpol.dll

2009-12-07 15:47 . 2009-05-15 21:29 56816 ----a-w- d:\windows\system32\drivers\avgntflt.sys

2009-11-21 16:03 . 2004-08-03 23:03 471552 ----a-w- d:\windows\AppPatch\aclayers.dll

2009-05-09 09:18 . 2009-05-09 09:17 16742799 ----a-w- d:\programfiler\vlc-0.9.9-win32.exe

.

 

(((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))

.

.

*Merk* tomme oppføringer & gyldige standardoppføringer vises ikke

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SpybotSD TeaTimer"="d:\programfiler\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ATIPTA"="d:\programfiler\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-08-30 344064]

"avgnt"="d:\programfiler\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]

"QuickTime Task"="d:\programfiler\QuickTime\QTTask.exe" [2009-05-26 413696]

"Adobe Reader Speed Launcher"="d:\programfiler\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]

"Adobe ARM"="d:\programfiler\Fellesfiler\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]

"V0330Mon.exe"="d:\windows\V0330Mon.exe" [2007-04-30 32768]

"SunJavaUpdateSched"="d:\programfiler\Java\jre6\bin\jusched.exe" [2009-10-11 149280]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"HideShutdownScripts"= 0 (0x0)

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"MaxRecentDocs"= 99 (0x63)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

2009-10-03 03:08 35696 ----a-w- d:\programfiler\Adobe\Reader 9.0\Reader\reader_sl.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CreativeTaskScheduler]

2006-11-17 09:42 53341 -c----w- d:\programfiler\Creative\Shared Files\CTSched.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]

2009-11-11 09:57 1451520 ----a-w- d:\programfiler\Nokia\Nokia PC Suite 7\PCSuite.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]

2007-04-16 14:28 577536 -c--a-w- d:\windows\soundman.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]

2008-08-29 15:11 61440 -c--a-w- d:\programfiler\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"d:\\Programfiler\\BitLord\\BitLord.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"d:\\Programfiler\\Windows Live\\Messenger\\msnmsgr.exe"=

"d:\\Programfiler\\Spotify\\spotify.exe"=

 

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;d:\programfiler\Avira\AntiVir Desktop\sched.exe [15.05.2009 22:29 108289]

R3 LgBttPort;LGE Bluetooth TransPort;d:\windows\system32\drivers\lgbtport.sys [29.09.2009 08:11 12160]

R3 lgbusenum;LG Bluetooth Bus Enumerator;d:\windows\system32\drivers\lgbtbus.sys [29.09.2009 08:11 10496]

R3 LGVMODEM;LGE Virtual Modem;d:\windows\system32\drivers\lgvmodem.sys [29.09.2009 08:11 12928]

R3 V0330VID;WebCam Vista/Live! Cam Chat;d:\windows\system32\drivers\V0330Vid.sys [16.02.2009 09:58 157696]

S3 nmwcdnsu;Nokia USB Flashing Phone Parent;d:\windows\system32\drivers\nmwcdnsu.sys [03.02.2010 17:35 136704]

S3 nmwcdnsuc;Nokia USB Flashing Generic;d:\windows\system32\drivers\nmwcdnsuc.sys [03.02.2010 17:35 8320]

.

.

------- Tilleggsskanning -------

.

uStart Page = about:blank

DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} - hxxp://www.navigram.com/engine/v911/Navigram.cab

DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

FF - ProfilePath - d:\documents and settings\Nordre Røråsen3\Programdata\Mozilla\Firefox\Profiles\641ikgt0.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.startsiden.no/

FF - component: d:\programfiler\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - d:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

 

---- FIREFOX POLICIES ----

d:\programfiler\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".no");

.

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-02-09 22:07

Windows 5.1.2600 Service Pack 3 NTFS

 

skanner skjulte prosesser ...

 

skanner skjulte autostart-oppføringer ...

 

skanner skjulte filer ...

 

skanning vellykket

skjulte filer: 0

 

**************************************************************************

.

--------------------- DLL'er Lastet Av Kjørende Prosesser ---------------------

 

- - - - - - - > 'winlogon.exe'(676)

d:\windows\system32\Ati2evxx.dll

.

Tidspunkt ferdig: 2010-02-09 22:11:48

ComboFix-quarantined-files.txt 2010-02-09 21:11

 

Pre-Run: 7 844 655 104 byte ledig

Post-Run: 7 830 110 208 byte ledig

 

WindowsXP-KB310994-SP2-Pro-BootDisk-NOR.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

 

Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4

- - End Of File - - 306D374C44C7EF46B1428736C97C31FC

 

 

 

 

 

 

 

 

 

 

Malwarebytes' Anti-Malware 1.44

Databaseversjon: 3716

Windows 5.1.2600 Service Pack 3

Internet Explorer 7.0.5730.13

 

09.02.2010 21:55:26

mbam-log-2010-02-09 (21-55-26).txt

 

Skanntype: Rask Skann

Objekter skannet: 106612

Tid tilbakelagt: 10 minute(s), 6 second(s)

 

Minneprosesser infisert: 0

Minnemoduler infisert: 0

Registernøkler infisert: 0

Registerverdier infisert: 0

Registerfiler infisert: 0

Mapper infisert: 0

Filer infisert: 0

 

Minneprosesser infisert:

(Ingen mistenkelige filer funnet)

 

Minnemoduler infisert:

(Ingen mistenkelige filer funnet)

 

Registernøkler infisert:

(Ingen mistenkelige filer funnet)

 

Registerverdier infisert:

(Ingen mistenkelige filer funnet)

 

Registerfiler infisert:

(Ingen mistenkelige filer funnet)

 

Mapper infisert:

(Ingen mistenkelige filer funnet)

 

Filer infisert:

(Ingen mistenkelige filer funnet)