vetting Skrevet 9. oktober 2010 Del Skrevet 9. oktober 2010 Fikk idag 2 mailer med "delivery failur" hvor det har blitt sendt mail fra meg til noen venner. Gikk så inn på sendte mailer-mappen og så at det var 2 mailer sendt fra min mail til alle vedkommende som jeg fikk delivery failur fra. Altså, alle mailene var blitt stoppet av google. Gmail er vel en web-mail, så eventuelle slike virus ligger ikke på maskinen min, men i mailen (ved untak om en har trykket på linken)? Er det noen god måte å stoppe slike mailer på? Ser at flere har opplevd det samme de siste dagene, men hvor sendte elementer var slettet for å skjule at noe var sendt fra meg, samt slettede elemter som også var slettet. Jeg har ikke fått beskjed fra noen om å ha mottatt noen spookye mailer fra meg. P.S. Har byttet passord på mailen min. Mbam inMalwarebytes' Anti-Malware 1.46www.malwarebytes.org Databaseversjon: 4785 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18943 09.10.2010 18:47:24 mbam-log-2010-10-09 (18-47-24).txt Skanntype: Hurtigsøk Objekter skannet: 144921 Tid tilbakelagt: 3 minutt(er), 33 sekund(er) Minneprosesser infisert: 0 Minnemoduler infisert: 0 Registernøkler infisert: 0 Registerverdier infisert: 0 Registerfiler infisert: 0 Mapper infisert: 0 Filer infisert 0 Minneprosesser infisert: (Ingen skadelige objekter funnet) Minnemoduler infisert: (Ingen skadelige objekter funnet) Registernøkler infisert: (Ingen skadelige objekter funnet) Registerverdier infisert: (Ingen skadelige objekter funnet) Registerfiler infisert: (Ingen skadelige objekter funnet) Mapper infisert: (Ingen skadelige objekter funnet) Filer infisert (Ingen skadelige objekter funnet) DDS.scr DDS (Ver_10-10-10.01) - NTFS_AMD64 Run by Vetting at 19:54:44,38 on 09.10.2010 Internet Explorer: 8.0.6001.18943 Microsoft® Windows Vista™ Ultimate 6.0.6002.2.1252.47.1033.18.8190.4766 [GMT 2:00] SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} SP: SUPERAntiSpyware *enabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7} ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Program Files (x86)\AVG\AVG9\avgchsva.exe C:\Program Files (x86)\AVG\AVG9\avgrsa.exe C:\Windows\system32\lsm.exe C:\Program Files (x86)\AVG\AVG9\avgcsrva.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WUDFHost.exe C:\Windows\system32\taskeng.exe C:\Windows\System32\spoolsv.exe C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\atieclxx.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe C:\Program Files (x86)\AVG\AVG9\avgfws9.exe C:\Program Files (x86)\Bonjour\mDNSResponder.exe C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe C:\Voddler\service\voddler.exe C:\Program Files (x86)\TeamViewer\Version5\TeamViewer.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files (x86)\AVG\AVG9\avgam.exe C:\Program Files (x86)\AVG\AVG9\avgnsa.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\DRIVERS\xaudio64.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\System32\alg.exe C:\Program Files (x86)\AVG\AVG9\avgcsrva.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\RAVCpl64.exe C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehmsas.exe C:\Program Files (x86)\uTorrent\uTorrent.exe C:\Program Files (x86)\U-ABIT\uGuru\uGuru.exe C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDCountdown.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe C:\Program Files (x86)\Squeezebox\SqueezeTray.exe C:\Program Files (x86)\AVG\AVG9\avgtray.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\taskeng.exe C:\PROGRA~2\SQUEEZ~2\server\SQUEEZ~3.EXE C:\Program Files (x86)\Opera\opera.exe C:\Program Files (x86)\Adobe\Reader 8.0\Reader\AcroRd32.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Windows\splwow64.exe C:\Program Files (x86)\DVD Profiler\dvdpro.exe C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe C:\Program Files (x86)\SlySoft\AnyDVD\ADvdDiscHlp64.exe C:\Program Files (x86)\MakeMKV\makemkv.exe C:\Program Files (x86)\MakeMKV\makemkvcon64.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\svchost.exe -k SDRSVC C:\Users\Vetting\Desktop\dds.scr C:\Windows\SysWOW64\conime.exe C:\Windows\system32\wbem\wmiprvse.exe ============== Pseudo HJT Report =============== uInternet Settings,ProxyOverride = localhost;*.local uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll mWinlogon: Userinit=userinit.exe BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll BHO: {BC2471D2-B720-38D6-9A61-C780EFC93A81} - No File BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun uRun: [ABIT uGuruIII] C:\Program Files (x86)\U-ABIT\uGuru\LaunchuGuru.exe uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe uRun: [sUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe uRun: [MsnMsgr] "C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe" /background uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" uRun: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe mRun: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe mRun: [NWEReboot] mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun: [AVG9_TRAY] C:\PROGRA~2\AVG\AVG9\avgtray.exe StartupFolder: C:\Users\Vetting\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Stickies.lnk - C:\Program Files (x86)\Stickies\stickies.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\VERKTY~1.LNK - C:\Program Files (x86)\Squeezebox\SqueezeTray.exe mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {C36661D7-3590-45B1-80B5-520839E94DAD} - hxxp://simcity.ea.com/update/MaxisSimCity4PatcherX.cab DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab TCP: {76C1AAC3-33AE-4C83-A8B7-1D45E1185CF9} = 192.168.11.1 TCP: {FDBBA50E-58D3-4FD7-A773-EB91CCD99A1C} = 192.168.11.1 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.DLL SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} {9030D464-4C02-4ABF-8ECC-5164760863C6} TB-X64: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File TB-X64: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File mRun-x64: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide mRun-x64: [RtHDVCpl] RAVCpl64.exe mRun-x64: [skytel] Skytel.exe mRun-x64: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE mRun-x64: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" mRun-x64: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE AppInit_DLLs-X64: avgrssta.dll STS-X64: {E31004D1-A431-41B8-826F-E902F9D95C81}: Windows DreamScene ============= SERVICES / DRIVERS =============== R0 AVGIDSErHrvta;AVG9IDSErHr;C:\Windows\System32\drivers\AVGIDSva.sys [2009-11-21 27216] R0 AvgRkx64;avgrkx64.sys;C:\Windows\System32\drivers\avgrkx64.sys [2009-11-21 56008] R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2009-3-2 52856] R1 Avgfwfd;AVG network filter service;C:\Windows\System32\drivers\avgfwd6a.sys [2009-11-21 29976] R1 AvgLdx64;AVG AVI Loader Driver x64;C:\Windows\System32\drivers\avgldx64.sys [2009-11-21 269904] R1 AvgMfx64;AVG On-access Scanner Minifilter Driver x64;C:\Windows\System32\drivers\avgmfx64.sys [2009-11-21 35536] R1 AvgTdiA;AVG Network Redirector x64;C:\Windows\System32\drivers\avgtdia.sys [2009-11-21 317520] R1 UGURU;UGURU;C:\Windows\System32\drivers\uGuru.sys [2008-10-10 22064] R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-9-16 169312] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2009-8-14 203264] R2 avg9wd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe [2010-8-15 308136] R2 avgfws9;AVG Firewall;C:\Program Files (x86)\AVG\AVG9\avgfws9.exe [2010-8-15 2331544] R2 AVGIDSAgent;AVG9IDSAgent;C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2010-8-15 5897808] R2 BWH32S;BWH32S;C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe [2008-10-10 57912] R2 StarWindServiceAE;StarWind AE Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-5-28 275968] R2 TeamViewer5;TeamViewer 5;C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-3-18 172328] R2 VoddlerNet;VoddlerNet;C:\Voddler\service\voddler.exe [2010-8-24 1194192] R3 amdkmdag;amdkmdag;C:\Windows\System32\drivers\atikmdag.sys [2010-8-4 7451648] R3 amdkmdap;amdkmdap;C:\Windows\System32\drivers\atikmpag.sys [2010-8-4 268288] R3 AVGIDSDrivervta;AVG9IDSDriver;C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista64\AVGIDSDriver.sys [2009-11-21 132688] R3 AVGIDSFiltervta;AVG9IDSFilter;C:\Program Files (x86)\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista64\AVGIDSFilter.sys [2009-11-21 35920] R3 rt61x64;RT61 Wireless Driver for Windows Vista;C:\Windows\System32\drivers\netr6164.sys [2008-11-26 390144] S1 SASDIFSV;SASDIFSV;C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS [2008-9-3 12872] S1 SASKUTIL;SASKUTIL;C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.SYS [2008-9-3 67656] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 SqueezeMySQL;SqueezeMySQL;C:\PROGRA~2\SQUEEZ~2\server\Bin\MSWIN3~1\mysqld.exe --defaults-file=C:\PROGRA~3\SQUEEZ~2\Cache\my.cnf SqueezeMySQL --> C:\PROGRA~2\SQUEEZ~2\server\Bin\MSWIN3~1\mysqld.exe --defaults-file=C:\PROGRA~3\SQUEEZ~2\Cache\my.cnf SqueezeMySQL [?] S3 AVG Security Toolbar Service;AVG Security Toolbar Service;C:\Program Files (x86)\AVG\AVG9\Toolbar\ToolbarBroker.exe [2010-8-17 430152] S3 CAXHWBS2;CAXHWBS2;C:\Windows\System32\drivers\CAXHWBS2.sys [2007-4-26 408576] S3 FontCache;Windows Font Cache Service;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 27648] S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-21 19968] S3 RivaTuner64;RivaTuner64;C:\Program Files (x86)\RivaTuner v2.11\RivaTuner64.sys [2008-9-16 19952] S3 SASENUM;SASENUM;C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS [2008-9-3 12872] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2010-4-19 50688] S3 VST64_DPV;VST64_DPV;C:\Windows\System32\drivers\VSTDPV6.SYS [2008-1-21 1523712] S3 VST64HWBS2;VST64HWBS2;C:\Windows\System32\drivers\VSTBS26.SYS [2008-1-21 392704] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-3-18 1020768] S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-10-20 89920] ============== File Associations =============== JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %* =============== Created Last 30 ================ 2010-10-09 16:42:22 -------- d-----w- C:\Users\Vetting\AppData\Roaming\Malwarebytes 2010-10-09 16:42:12 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys 2010-10-09 16:42:12 -------- d-----w- C:\PROGRA~3\Malwarebytes 2010-10-09 16:42:11 24664 ----a-w- C:\Windows\System32\drivers\mbam.sys 2010-10-09 16:42:11 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2010-10-07 12:24:15 -------- d-----w- C:\Windows\SysWow64\Adobe 2010-10-05 18:17:42 614136 ----a-w- C:\PROGRA~3\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2010-10-04 09:39:40 -------- d-----w- C:\Windows\SysWow64\wbem\fr-FR 2010-10-04 09:39:39 -------- d-----w- C:\Windows\System32\wbem\fr-FR 2010-10-03 21:52:10 -------- d-----w- C:\Users\Vetting\voddler 2010-10-03 14:15:31 -------- d-----w- C:\Program Files (x86)\SopCast 2010-10-03 13:52:26 -------- d-----w- C:\Program Files (x86)\Veetle 2010-09-30 14:50:14 2048 ----a-w- C:\Windows\SysWow64\tzres.dll 2010-09-30 14:50:14 2048 ----a-w- C:\Windows\System32\tzres.dll 2010-09-30 14:48:27 13312 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll 2010-09-30 14:48:27 13312 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll 2010-09-26 16:53:03 -------- d-----w- C:\Program Files (x86)\MakeMKV 2010-09-26 12:19:54 -------- d-----w- C:\Program Files\iPod 2010-09-26 12:19:53 -------- d-----w- C:\Program Files\iTunes 2010-09-26 12:19:03 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin7.dll 2010-09-26 12:19:03 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin6.dll 2010-09-26 12:19:03 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin5.dll 2010-09-26 12:19:03 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin4.dll 2010-09-26 12:19:03 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin3.dll 2010-09-26 12:19:03 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin2.dll 2010-09-26 12:19:03 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin.dll 2010-09-26 12:18:16 -------- d-----w- C:\Program Files\Bonjour 2010-09-26 12:18:16 -------- d-----w- C:\Program Files (x86)\Bonjour 2010-09-19 11:29:42 -------- d-----w- C:\Program Files (x86)\Maxis 2010-09-15 05:18:52 317952 ----a-w- C:\Windows\SysWow64\MP4SDECD.DLL 2010-09-15 05:18:52 295424 ----a-w- C:\Windows\System32\MP4SDECD.DLL 2010-09-15 05:18:52 273920 ----a-w- C:\Windows\System32\spoolsv.exe 2010-09-15 05:18:51 975360 ----a-w- C:\Windows\System32\inetcomm.dll 2010-09-15 05:18:51 2409784 ----a-w- C:\Program Files\Windows Mail\OESpamFilter.dat 2010-09-15 05:18:51 2409784 ----a-w- C:\Program Files (x86)\Windows Mail\OESpamFilter.dat 2010-09-15 05:18:50 739328 ----a-w- C:\Windows\SysWow64\inetcomm.dll 2010-09-15 05:18:50 621568 ----a-w- C:\Windows\System32\usp10.dll 2010-09-15 05:18:49 502272 ----a-w- C:\Windows\SysWow64\usp10.dll 2010-09-14 22:46:55 -------- d-----w- C:\Users\Vetting\AppData\Local\DVD Profiler 2010-09-14 22:45:33 -------- d-----w- C:\Program Files (x86)\DVD Profiler ==================== Find3M ==================== 2010-09-08 09:17:46 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx 2010-09-08 09:17:46 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts 2010-08-15 12:49:51 317520 ----a-w- C:\Windows\System32\drivers\avgtdia.sys 2010-08-15 12:49:50 13048 ----a-w- C:\Windows\System32\avgrssta.dll 2010-08-15 12:49:45 27216 ----a-w- C:\Windows\System32\drivers\AVGIDSva.sys 2010-08-15 12:49:42 269904 ----a-w- C:\Windows\System32\drivers\avgldx64.sys 2010-08-04 00:07:14 20817408 ----a-w- C:\Windows\System32\atio6axx.dll 2010-08-03 23:55:02 143360 ----a-w- C:\Windows\System32\atiapfxx.exe 2010-08-03 23:54:52 519680 ----a-w- C:\Windows\SysWow64\aticfx32.dll 2010-08-03 23:54:02 598528 ----a-w- C:\Windows\System32\aticfx64.dll 2010-08-03 23:52:06 450560 ----a-w- C:\Windows\System32\ATIDEMGX.dll 2010-08-03 23:51:56 461824 ----a-w- C:\Windows\System32\atieclxx.exe 2010-08-03 23:51:22 203264 ----a-w- C:\Windows\System32\atiesrxx.exe 2010-08-03 23:50:16 120320 ----a-w- C:\Windows\System32\atitmm64.dll 2010-08-03 23:49:58 421376 ----a-w- C:\Windows\System32\atipdl64.dll 2010-08-03 23:49:52 356352 ----a-w- C:\Windows\SysWow64\atipdlxx.dll 2010-08-03 23:49:50 15845888 ----a-w- C:\Windows\SysWow64\atioglxx.dll 2010-08-03 23:49:42 278528 ----a-w- C:\Windows\SysWow64\Oemdspif.dll 2010-08-03 23:49:38 12288 ----a-w- C:\Windows\System32\atimuixx.dll 2010-08-03 23:49:34 59392 ----a-w- C:\Windows\System32\atiedu64.dll 2010-08-03 23:49:28 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll 2010-08-03 23:46:34 3899392 ----a-w- C:\Windows\SysWow64\atidxx32.dll 2010-08-03 23:37:48 4554240 ----a-w- C:\Windows\System32\atidxx64.dll 2010-08-03 23:28:32 3077120 ----a-w- C:\Windows\System32\atiumd6a.dll 2010-08-03 23:28:28 4021760 ----a-w- C:\Windows\SysWow64\atiumdag.dll 2010-08-03 23:26:04 51200 ----a-w- C:\Windows\System32\aticalrt64.dll 2010-08-03 23:26:02 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll 2010-08-03 23:25:56 44544 ----a-w- C:\Windows\System32\aticalcl64.dll 2010-08-03 23:25:52 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll 2010-08-03 23:25:44 5394432 ----a-w- C:\Windows\System32\aticaldd64.dll 2010-08-03 23:24:36 4341248 ----a-w- C:\Windows\SysWow64\aticaldd.dll 2010-08-03 23:23:46 56832 ----a-w- C:\Windows\System32\coinst.dll 2010-08-03 23:22:36 5167104 ----a-w- C:\Windows\System32\atiumd64.dll 2010-08-03 23:21:40 3324416 ----a-w- C:\Windows\SysWow64\atiumdva.dll 2010-08-03 23:16:16 337920 ----a-w- C:\Windows\System32\atiadlxx.dll 2010-08-03 23:16:08 241664 ----a-w- C:\Windows\SysWow64\atiadlxy.dll 2010-08-03 23:16:00 14848 ----a-w- C:\Windows\System32\atig6pxx.dll 2010-08-03 23:15:56 12800 ----a-w- C:\Windows\SysWow64\atiglpxx.dll 2010-08-03 23:15:56 12800 ----a-w- C:\Windows\System32\atiglpxx.dll 2010-08-03 23:15:54 18432 ----a-w- C:\Windows\System32\atig6txx.dll 2010-08-03 23:15:50 16896 ----a-w- C:\Windows\SysWow64\atigktxx.dll 2010-08-03 23:15:10 39424 ----a-w- C:\Windows\System32\atiuxp64.dll 2010-08-03 23:15:04 30208 ----a-w- C:\Windows\SysWow64\atiuxpag.dll 2010-08-03 23:14:58 36864 ----a-w- C:\Windows\System32\atiu9p64.dll 2010-08-03 23:14:50 27648 ----a-w- C:\Windows\SysWow64\atiu9pag.dll 2010-08-03 23:14:32 26112 ----a-w- C:\Windows\System32\atitmp64.dll 2010-08-03 23:09:30 54784 ----a-w- C:\Windows\System32\atimpc64.dll 2010-08-03 23:09:30 54784 ----a-w- C:\Windows\System32\amdpcom64.dll 2010-08-03 23:09:24 52736 ----a-w- C:\Windows\SysWow64\atimpc32.dll 2010-08-03 23:09:24 52736 ----a-w- C:\Windows\SysWow64\amdpcom32.dll 2010-07-27 16:55:50 95520 ----a-w- C:\Windows\System32\dnssd.dll 2010-07-27 16:55:50 119584 ----a-w- C:\Windows\System32\dns-sd.exe 2010-07-27 16:44:10 91424 ----a-w- C:\Windows\SysWow64\dnssd.dll 2010-07-27 16:44:10 107808 ----a-w- C:\Windows\SysWow64\dns-sd.exe 2008-01-21 03:21:14 174 --sha-w- C:\Program Files\desktop.ini 2008-01-21 03:21:14 174 --sha-w- C:\Program Files (x86)\desktop.ini ============= FINISH: 19:55:04,92 =============== Lenke til kommentar
norbat Skrevet 13. oktober 2010 Del Skrevet 13. oktober 2010 Har problemet fortsatt etter at du byttet passord? Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå