påkjørende programmvare som stopper

rstrr · 20. februar 2010

Jeg fikk installert et eller annet uten å ha ønsket det.Et programm som vil undersøke dataen min og vise alle de uønskete programmene jeg har på maskinen min.De var flere. Kunne ikke drive på vanlig måte på internett als.

Legger her ved loggen fra Combofix.

ComboFix 10-02-20.01 - star 20.02.2010 19:51:22.1.2 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.47.1044.18.502.251 [GMT 1:00]

Kjører fra: E:\ComboFix.exe

AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}

.

((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\documents and settings\star\Start-meny\Programmer\Oppstart\Logitech . Produktregistrering.lnk

c:\windows\TEMP\logishrd\LVPrcInj01.dll

.

((((((((((((((((((((((((((( Filer Opprettet Fra 2010-01-20 til 2010-02-20 )))))))))))))))))))))))))))))))))

.

2010-02-10 14:38 . 2010-02-20 18:58 -------- d-----w- c:\documents and settings\star\Programdata\Skype

2010-02-06 17:25 . 2010-02-06 17:25 -------- d-----w- c:\documents and settings\All Users\Programdata\Logitech

2010-02-06 17:25 . 2010-02-06 17:27 -------- d-----w- c:\documents and settings\star\Programdata\Canon

2010-02-06 17:24 . 2010-02-06 17:24 -------- d-----w- c:\documents and settings\star\Programdata\ScanSoft

2010-02-06 17:24 . 2010-02-06 17:24 -------- d-----w- c:\documents and settings\All Users\Programdata\SSScanWizard

2010-02-06 17:24 . 2010-02-06 17:24 -------- d-----w- c:\documents and settings\All Users\Programdata\SSScanAppDataDir

2010-02-06 17:23 . 2010-02-06 17:23 -------- d-----w- c:\documents and settings\star\Programdata\Windows Search

2010-02-06 17:21 . 2010-02-06 17:21 -------- d-----w- c:\documents and settings\star\Programdata\Windows Desktop Search

2010-01-31 13:28 . 2010-02-06 17:26 -------- d-----w- c:\documents and settings\All Users\Programdata\Lavasoft

2010-01-31 00:32 . 2010-02-06 17:26 -------- d-----w- c:\documents and settings\All Users\Programdata\AlawarWrapper

2010-01-30 16:03 . 2010-01-30 16:03 -------- d-----w- c:\documents and settings\star\Programdata\Leadertech

2010-01-30 16:02 . 2010-02-06 17:26 -------- d-----w- c:\documents and settings\All Users\Programdata\LogiShrd

2010-01-30 14:28 . 2010-02-20 17:59 -------- d-----w- c:\documents and settings\star\Programdata\skypePM

2010-01-30 14:24 . 2010-02-10 14:37 -------- d-----w- c:\documents and settings\All Users\Programdata\Skype

2010-01-28 14:48 . 2010-01-28 14:48 503808 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-70df6410-n\msvcp71.dll

2010-01-28 14:48 . 2010-01-28 14:48 499712 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-70df6410-n\jmc.dll

2010-01-28 14:48 . 2010-01-28 14:48 348160 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-70df6410-n\msvcr71.dll

2010-01-28 14:48 . 2010-01-28 14:48 61440 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-2d42de2f-n\decora-sse.dll

2010-01-28 14:48 . 2010-01-28 14:48 12800 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-2d42de2f-n\decora-d3d.dll

2010-01-22 12:09 . 2008-04-14 16:22 26624 ----a-w- c:\documents and settings\LocalService\Programdata\Microsoft\UPnP Device Host\upnphost\udhisapi.dll

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-02-20 17:11 . 2010-01-19 13:07 -------- d-----w- c:\documents and settings\star\Programdata\Spotify

2010-02-13 18:10 . 2010-01-19 12:30 -------- d-----w- c:\documents and settings\All Users\Programdata\NOS

2010-02-12 11:31 . 2010-01-30 14:49 0 ----a-w- c:\windows\system32\drivers\lvuvc.hs

2010-02-11 13:31 . 2010-02-11 13:31 -------- d-----w- c:\programfiler\Google

2010-02-10 21:00 . 2010-01-30 15:54 0 ----a-w- c:\windows\system32\drivers\logiflt.iad

2010-02-10 14:37 . 2010-02-10 14:37 -------- d-----w- c:\programfiler\Fellesfiler\Skype

2010-02-10 14:37 . 2010-02-10 14:37 -------- d-----r- c:\programfiler\Skype

2010-02-06 17:26 . 2010-02-06 17:26 -------- d-----w- c:\programfiler\FileHippo.com

2010-02-06 17:26 . 2010-02-06 17:24 -------- d-----w- c:\programfiler\Spotify

2010-02-06 17:26 . 2010-02-06 17:26 -------- d-----w- c:\programfiler\Lavasoft

2010-02-06 17:26 . 2010-02-06 17:23 -------- d-----w- c:\programfiler\CCleaner

2010-02-06 17:26 . 2010-02-06 17:26 -------- d-----w- c:\programfiler\PelikoneFi

2010-02-06 17:26 . 2010-01-30 14:43 -------- d-----w- c:\programfiler\Fellesfiler\LogiShrd

2010-02-06 17:25 . 2010-02-06 17:25 -------- d-----w- c:\programfiler\MSXML 4.0

2010-02-06 17:25 . 2010-01-30 15:49 -------- d-----w- c:\programfiler\Microsoft CAPICOM 2.1.0.2

2010-02-06 17:24 . 2010-01-23 18:32 -------- d-----w- c:\programfiler\Fellesfiler\ScanSoft Shared

2010-02-06 17:24 . 2010-02-06 17:16 -------- d-----w- c:\programfiler\Fellesfiler\InstallShield

2010-02-06 17:24 . 2010-01-19 11:45 -------- d-----w- c:\programfiler\Microsoft Silverlight

2010-02-06 17:24 . 2010-01-19 13:03 -------- d-----w- c:\programfiler\Fellesfiler\Adobe

2010-02-06 17:23 . 2010-01-19 11:53 -------- d-----w- c:\programfiler\Malwarebytes' Anti-Malware

2010-02-06 17:23 . 2010-02-06 17:23 -------- d-----w- c:\programfiler\Microsoft

2010-02-06 17:23 . 2010-02-06 17:23 -------- d-----w- c:\programfiler\Windows Live SkyDrive

2010-02-06 17:22 . 2010-01-19 10:56 -------- d-----w- c:\programfiler\Windows Desktop Search

2010-02-06 17:21 . 2010-01-19 10:55 -------- d-----w- c:\programfiler\Windows Media Connect 2

2010-02-06 17:16 . 2010-01-19 09:33 -------- d-----w- c:\programfiler\Analog Devices

2010-02-06 17:16 . 2010-01-19 09:30 -------- d-----w- c:\programfiler\Broadcom

2010-02-06 17:15 . 2010-02-06 17:15 1606 ----a-w- c:\windows\system32\PerfStringBackup.TMP

2010-02-06 17:15 . 2004-08-04 12:00 88220 ----a-w- c:\windows\system32\perfc014.dat

2010-02-06 17:15 . 2004-08-04 12:00 465104 ----a-w- c:\windows\system32\perfh014.dat

2010-02-06 17:06 . 2010-01-19 11:42 -------- d-----w- c:\programfiler\Windows Live

2010-02-06 17:03 . 2010-01-30 15:27 -------- d-----w- c:\programfiler\Logitech

2010-01-30 15:30 . 2010-01-30 15:30 127034 ------r- c:\windows\bwUnin-8.1.1.50-8876480SL.exe

2010-01-30 15:30 . 2010-01-19 09:33 -------- d--h--w- c:\programfiler\InstallShield Installation Information

2010-01-30 14:28 . 2010-01-30 14:28 56 ---ha-w- c:\windows\system32\ezsidmv.dat

2010-01-23 18:38 . 2010-01-23 18:38 -------- d--h--w- c:\documents and settings\All Users\Programdata\CanonBJ

2010-01-23 18:32 . 2010-01-23 18:32 -------- d-----w- c:\programfiler\ScanSoft

2010-01-23 18:31 . 2010-01-23 18:31 -------- d-----w- c:\programfiler\ArcSoft

2010-01-23 18:30 . 2010-01-23 18:27 -------- d-----w- c:\programfiler\Canon

2010-01-21 09:58 . 2010-01-21 09:58 -------- d-----w- c:\documents and settings\star\Programdata\Uniblue

2010-01-20 19:05 . 2010-01-20 19:05 -------- d-----w- c:\programfiler\Fellesfiler\Java

2010-01-20 19:05 . 2010-01-20 19:05 61440 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\46\759e98ee-324eae47-n\decora-sse.dll

2010-01-20 19:05 . 2010-01-20 19:05 503808 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\46\759e98ee-324eae47-n\msvcp71.dll

2010-01-20 19:05 . 2010-01-20 19:05 499712 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\46\759e98ee-324eae47-n\jmc.dll

2010-01-20 19:05 . 2010-01-20 19:05 348160 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\46\759e98ee-324eae47-n\msvcr71.dll

2010-01-20 19:05 . 2010-01-20 19:05 12800 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\46\759e98ee-324eae47-n\decora-d3d.dll

2010-01-20 19:05 . 2010-01-20 19:05 315392 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\62\6baea4fe-78242538-n\jogl.dll

2010-01-20 19:05 . 2010-01-20 19:05 20480 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\62\6baea4fe-78242538-n\jogl_awt.dll

2010-01-20 19:05 . 2010-01-20 19:05 114688 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\62\6baea4fe-78242538-n\jogl_cg.dll

2010-01-20 19:05 . 2010-01-20 19:05 20480 ----a-w- c:\documents and settings\star\Programdata\Sun\Java\Deployment\SystemCache\6.0\45\4f710eed-5d3821e2-n\gluegen-rt.dll

2010-01-20 19:05 . 2010-01-20 19:05 411368 ----a-w- c:\windows\system32\deploytk.dll

2010-01-20 19:05 . 2010-01-20 19:05 -------- d-----w- c:\programfiler\Java

2010-01-20 10:16 . 2010-01-19 10:16 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys

2010-01-20 09:49 . 2010-01-20 09:49 0 ----a-w- c:\windows\nsreg.dat

2010-01-19 12:30 . 2010-01-19 12:30 1956528 ----a-w- c:\documents and settings\All Users\Programdata\NOS\Adobe_Downloads\install_flash_player_ax.exe

2010-01-19 12:30 . 2010-01-19 12:30 1975408 ----a-w- c:\documents and settings\All Users\Programdata\NOS\Adobe_Downloads\GoogleToolbarInstaller_en32_signed.exe

2010-01-19 11:53 . 2010-01-19 11:53 -------- d-----w- c:\documents and settings\star\Programdata\Malwarebytes

2010-01-19 11:53 . 2010-01-19 11:53 -------- d-----w- c:\documents and settings\All Users\Programdata\Malwarebytes

2010-01-19 11:45 . 2010-01-19 11:37 13688 ----a-w- c:\documents and settings\star\Lokale innstillinger\Programdata\GDIPFONTCACHEV1.DAT

2010-01-19 11:44 . 2010-01-19 11:44 -------- d-----w- c:\programfiler\Microsoft SQL Server Compact Edition

2010-01-19 11:37 . 2010-01-19 11:37 -------- d-----w- c:\programfiler\Fellesfiler\Windows Live

2010-01-19 11:11 . 2010-01-19 11:11 128 ----a-w- c:\documents and settings\star\Lokale innstillinger\Programdata\fusioncache.dat

2010-01-19 10:59 . 2010-01-19 10:59 -------- d-----w- c:\programfiler\MSBuild

2010-01-19 10:59 . 2010-01-19 10:59 -------- d-----w- c:\programfiler\Reference Assemblies

2010-01-19 10:16 . 2010-01-19 10:16 -------- d-----w- c:\programfiler\Avira

2010-01-19 10:16 . 2010-01-19 10:16 -------- d-----w- c:\documents and settings\All Users\Programdata\Avira

2010-01-19 10:08 . 2010-01-18 12:20 87263 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat

2010-01-19 09:42 . 2010-01-19 09:42 5 ----a-w- c:\windows\system32\drivers\DELL_OPT_GX620.MRK

2010-01-19 09:42 . 2010-01-19 09:42 5 ----a-w- c:\windows\system32\drivers\1028_DELL_OPT_GX620.MRK

2010-01-19 09:41 . 2010-01-19 09:14 -------- d-----w- c:\programfiler\Dell

2010-01-19 09:15 . 2010-01-19 09:15 -------- d-----w- c:\programfiler\Intel

2010-01-18 12:22 . 2010-01-18 12:22 -------- d-----w- c:\programfiler\microsoft frontpage

2010-01-18 12:20 . 2010-01-18 12:20 -------- d-----w- c:\programfiler\Elektroniske tjenester

2010-01-18 12:19 . 2010-01-18 12:19 -------- d-----w- c:\programfiler\Fellesfiler\Tjenester

2010-01-18 12:18 . 2010-01-18 12:18 21704 ----a-w- c:\windows\system32\emptyregdb.dat

2010-01-07 15:07 . 2010-01-19 11:53 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-01-07 15:07 . 2010-01-19 11:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys

2009-12-31 16:50 . 2004-08-04 12:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys

2009-12-21 19:10 . 2004-08-04 12:00 916480 ----a-w- c:\windows\system32\wininet.dll

2009-12-17 07:42 . 2010-01-18 12:17 344064 ----a-w- c:\windows\system32\mspaint.exe

2009-12-14 07:10 . 2004-08-04 12:00 33280 ----a-w- c:\windows\system32\csrsrv.dll

2009-12-09 10:12 . 2004-08-04 12:00 2147328 ----a-w- c:\windows\system32\ntoskrnl.exe

2009-12-09 10:12 . 2004-08-04 00:58 2025984 ----a-w- c:\windows\system32\ntkrnlpa.exe

2009-12-04 18:22 . 2004-08-04 12:00 455424 ----a-w- c:\windows\system32\drivers\mrxsmb.sys

2009-11-27 17:14 . 2004-08-04 12:00 1294848 ----a-w- c:\windows\system32\quartz.dll

2009-11-27 17:14 . 2004-08-04 01:03 17920 ----a-w- c:\windows\system32\msyuv.dll

2009-11-27 16:10 . 2004-08-04 12:00 84992 ----a-w- c:\windows\system32\avifil32.dll

2009-11-27 16:10 . 2004-08-04 12:00 28672 ----a-w- c:\windows\system32\msvidc32.dll

2009-11-27 16:10 . 2004-08-04 12:00 11264 ----a-w- c:\windows\system32\msrle32.dll

2009-11-27 16:10 . 2004-08-04 01:03 48128 ----a-w- c:\windows\system32\iyuv_32.dll

2009-11-27 16:10 . 2001-10-06 14:02 8704 ----a-w- c:\windows\system32\tsbyuv.dll

.

(((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))

.

*Merk* tomme oppføringer & gyldige standardoppføringer vises ikke

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="c:\programfiler\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]

"Logitech Vid"="c:\programfiler\Logitech\Logitech Vid\Vid.exe" [2010-01-19 5932888]

"LDM"="c:\programfiler\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2010-01-30 67128]

"FileHippo.com"="c:\programfiler\FileHippo.com\UpdateChecker.exe" [2010-02-05 155648]

"Skype"="c:\programfiler\Skype\Phone\Skype.exe" [2009-10-09 25623336]

"swg"="c:\programfiler\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-02-11 39408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SoundMAXPnP"="c:\programfiler\Analog Devices\Core\smax4pnp.exe" [2004-10-14 1404928]

"avgnt"="c:\programfiler\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]

"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-10-14 94208]

"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-10-14 77824]

"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-10-14 114688]

"Adobe Reader Speed Launcher"="c:\programfiler\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 35760]

"Adobe ARM"="c:\programfiler\Fellesfiler\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672]

"SunJavaUpdateSched"="c:\programfiler\Fellesfiler\Java\Java Update\jusched.exe" [2010-01-11 246504]

"OpwareSE2"="c:\programfiler\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 49152]

"OPSE reminder"="c:\programfiler\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe" [2003-07-07 729088]

"LogitechQuickCamRibbon"="c:\programfiler\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Start-meny\Programmer\Oppstart\

Logitech Desktop Messenger.lnk - c:\programfiler\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2010-1-30 67128]

Windows Search.lnk - c:\programfiler\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]

"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\programfiler\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Programfiler\\Windows Live\\Messenger\\msnmsgr.exe"=

"c:\\Programfiler\\Windows Live\\Sync\\WindowsLiveSync.exe"=

"c:\\Programfiler\\Spotify\\spotify.exe"=

"c:\\Programfiler\\Messenger\\msmsgs.exe"=

"c:\\Programfiler\\Skype\\Plugin Manager\\skypePM.exe"=

"c:\\Programfiler\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=

"c:\\Programfiler\\Logitech\\Logitech Vid\\Vid.exe"=

"c:\\Programfiler\\Skype\\Phone\\Skype.exe"=

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\programfiler\Avira\AntiVir Desktop\sched.exe [19.01.2010 11:16 108289]

R2 ASFIPmon;Broadcom ASF IP Monitor;c:\programfiler\Broadcom\ASFIPMon\AsfIpMon.exe -service --> c:\programfiler\Broadcom\ASFIPMon\AsfIpMon.exe -service [?]

.

Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)

.

------- Tilleggsskanning -------

.

uStart Page = hxxp://www.slimstart.no/

IE: Easy-WebPrint Add To Print List - c:\programfiler\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html

IE: Easy-WebPrint High Speed Print - c:\programfiler\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html

IE: Easy-WebPrint Preview - c:\programfiler\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html

IE: Easy-WebPrint Print - c:\programfiler\Canon\Easy-WebPrint\Resource.dll/RC_Print.html

IE: Google Sidewiki - c:\programfiler\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html

Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\programfiler\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} - hxxp://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab

FF - ProfilePath - c:\documents and settings\star\Programdata\Mozilla\Firefox\Profiles\6sw927t4.default\

FF - plugin: c:\programfiler\Windows Live\Photo Gallery\NPWLPG.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);

c:\programfiler\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");

c:\programfiler\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);

c:\programfiler\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-02-20 19:57

Windows 5.1.2600 Service Pack 3 NTFS

skanner skjulte prosesser ...

skanner skjulte autostart-oppføringer ...

skanner skjulte filer ...

skanning vellykket

skjulte filer: 0

**************************************************************************

.

--------------------- DLL'er Lastet Av Kjørende Prosesser ---------------------

- - - - - - - > 'winlogon.exe'(660)

c:\windows\system32\igfxdev.dll

- - - - - - - > 'explorer.exe'(4948)

c:\windows\TEMP\logishrd\LVPrcInj01.dll

c:\programfiler\ScanSoft\OmniPageSE2.0\ophookSE2.dll

c:\programfiler\Windows Desktop Search\deskbar.dll

c:\programfiler\Windows Desktop Search\nb-no\dbres.dll.mui

c:\programfiler\Windows Desktop Search\dbres.dll

c:\programfiler\Windows Desktop Search\wordwheel.dll

c:\programfiler\Windows Desktop Search\nb-no\msnlExtRes.dll.mui

c:\programfiler\Windows Desktop Search\msnlExtRes.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\WPDShServiceObj.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

.

------------------------ Andre Kjørende Prosesser ------------------------

.

c:\programfiler\Broadcom\ASFIPMon\AsfIpMon.exe

c:\programfiler\Dell\OpenManage\Client\Iap.exe

c:\programfiler\Java\jre6\bin\jqs.exe

c:\programfiler\Fellesfiler\LogiShrd\LVMVFM\LVPrcSrv.exe

c:\windows\system32\SearchIndexer.exe

c:\windows\system32\wscntfy.exe

c:\programfiler\Fellesfiler\Logishrd\LQCVFX\COCIManager.exe

c:\programfiler\Windows Live\Contacts\wlcomm.exe

c:\programfiler\Skype\Plugin Manager\skypePM.exe

.

**************************************************************************

.

Tidspunkt ferdig: 2010-02-20 20:11:20 - maskinen ble startet på nytt

ComboFix-quarantined-files.txt 2010-02-20 19:11

Pre-Run: 63 076 601 856 byte ledig

Post-Run: 63 044 448 256 byte ledig

WindowsXP-KB310994-SP2-Pro-BootDisk-NOR.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - C6FB92FA7ED44617F541BD83A0E89CBF

norbat · 20. februar 2010

Fikk du noe navn på det programmet som utførte denne sjekken?

Du har et program knyttet til filehippo.com som sjekker om du har noen utdaterte program. Kan det være dette?

rstrr · 20. februar 2010

Nej. Det er ikke Filhippo.

Jeg gjorde systemgjenoppretting før Combofixkjøring og mistet navn på den. Den såg ut å vare fremmed men korrekt antimalware. Kan jeg finne den hvis jeg angrer på gjenoppretinga?. Den finnes sikkert i nyinstallerte programmer.

Det ser ut at maskinen nå virker korrekt!

Endret 20. februar 2010 av rstrr

norbat · 20. februar 2010

Du skal ikke angre gjenopprettingen. Combofix-loggen viser ikke noe malware. Du kan avinstallere combofix ved å skrive combofix /uninstall i kjør-feltet (start->kjør).

Surf trygt.

Logg inn

påkjørende programmvare som stopper

Anbefalte innlegg

rstrr

Lenke til kommentar

Videoannonse

norbat

Lenke til kommentar

rstrr

Lenke til kommentar

norbat

Lenke til kommentar

Opprett en konto eller logg inn for å kommentere

Opprett konto

Logg inn

Hvem er aktive 0 medlemmer