Sixr Skrevet 7. januar 2008 Del Skrevet 7. januar 2008 Hei, har opplevd en del problemer med at pcen "fryser" eller henger seg opp etter at jeg har installert trådløst nettverk via en USB-enhet.. Er ikke sikker på hva som er problemet med legger ut noen logger, for å se om det er noe galt med dem. Tror pcen min har litt for mange brannmurer, kanskje det kommer fram i HTJ loggen SuperAntiSpyware Logg Klikk for å se/fjerne innholdet nedenfor SUPERAntiSpyware Scan Loghttp://www.superantispyware.com Generated 05/01/2008 at 07:17 PM Application Version : 3.9.1008 Core Rules Database Version : 3356 Trace Rules Database Version: 1355 Scan type : Quick Scan Total Scan Time : 00:32:36 Memory items scanned : 460 Memory threats detected : 0 Registry items scanned : 781 Registry threats detected : 0 File items scanned : 38846 File threats detected : 4 Adware.Tracking Cookie C:\Documents and Settings\Simen Andrè\Cookies\simen_andrè@tradedoubler[1].txt C:\Documents and Settings\Gjest\Cookies\gjest@imrworldwide[1].txt Browser Hijacker.Favorites C:\DOCUMENTS AND SETTINGS\SIMEN ANDRè\FAVORITTER\ONLINE SECURITY TEST.URL Trojan.Unclassified/PackedInstaller E:\SYSTEM VOLUME INFORMATION\_RESTORE{75702F66-9AF5-4601-BC25-807292431F26}\RP220\A0067182.EXE HTJ Logg Klikk for å se/fjerne innholdet nedenfor Logfile of Trend Micro HijackThis v2.0.2Scan saved at 13:28:26, on 07.01.2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16574) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Programfiler\Bonjour\mDNSResponder.exe C:\Programfiler\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Programfiler\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Programfiler\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe C:\Programfiler\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\Programfiler\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\WINDOWS\Explorer.EXE C:\Programfiler\ESET\ESET NOD32 Antivirus\egui.exe C:\Programfiler\Windows Live\Messenger\MsnMsgr.Exe C:\Programfiler\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\WINDOWS\system32\ctfmon.exe C:\Programfiler\3Com\3Com Wireless USB Utility\Wlan.exe C:\Programfiler\Mozilla Firefox\firefox.exe C:\DOCUME~1\SIMENA~1\LOKALE~1\Temp\Rar$EX00.266\siw.exe D:\Programmer\CCleaner\ccleaner.exe C:\WINDOWS\system32\notepad.exe C:\Programfiler\Trend Micro\HijackThis\HijackThis.exe O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programfiler\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programfiler\Fellesfiler\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [egui] "C:\Programfiler\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKCU\..\Run: [MsnMsgr] "C:\Programfiler\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [steam] "d:\spill\steam\steam.exe" -silent O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Programfiler\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [3COM] "C:\Programfiler\3Com\3Com Wireless USB Utility\Wlan.exe" O4 - HKUS\S-1-5-18\..\RunOnce: [Magnify] Magnify.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [Magnify] Magnify.exe (User 'Default user') O8 - Extra context menu item: Download all links using BitComet - res://D:\Programmer\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: Download all videos using BitComet - res://D:\Programmer\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: Download link using &BitComet - res://D:\Programmer\BitComet\BitComet.exe/AddLink.htm O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.topsoftwarefeed.com/redirect.php (file missing) O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.topsoftwarefeed.com/redirect.php (file missing) O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab O16 - DPF: {5CD4310E-88FB-43C1-BE24-5F3FA9C5C9D1} (KooPlayer Control) - http://www.euchannels.net/KooPlayer.ocx O16 - DPF: {62BA437C-7712-48C6-9F0B-D251FA43192B} (SayaTV Control) - http://www.sayatv.com/download/SayaTV.cab O16 - DPF: {A903E5AB-C67E-40FB-94F1-E1305982F6E0} (KooPlayer Control) - http://www.euchannels.net/UKooPlayer.ocx O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programfiler\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FELLES~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !SASWinLogon - C:\Programfiler\SUPERAntiSpyware\SASWINLO.dll O20 - Winlogon Notify: winbue32 - winbue32.dll (file missing) O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Programfiler\Bonjour\mDNSResponder.exe O23 - Service: Eset HTTP Server (EhttpSrv) - Unknown owner - C:\Programfiler\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Programfiler\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Programfiler\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Programfiler\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\Programfiler\Symantec\LiveUpdate\LuComServer_3_4.EXE O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\Programfiler\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Programfiler\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe -- End of file - 6386 bytes ComboFix Logg Klikk for å se/fjerne innholdet nedenfor ComboFix 08-01-04.1 - Simen Andrè 2008-01-07 13:31:23.1 - NTFSx86Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1044.18.1421 [GMT 1:00] Running from: C:\Documents and Settings\Simen Andrè\Skrivebord\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\crosof~1 C:\WINDOWS\crosof~1\??crosoft\ . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\NPF ((((((((((((((((((((((((( Files Created from 2007-12-07 to 2008-01-07 ))))))))))))))))))))))))))))))) . 2008-01-07 13:31 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe 2008-01-06 21:01 . 2004-04-28 16:32 81,920 --a------ C:\WINDOWS\system32\ZDBRGDLL.dll 2008-01-06 21:01 . 2004-06-30 13:54 19,200 --a------ C:\WINDOWS\system32\ZDBRGSYS.sys 2008-01-04 09:17 . 2008-01-04 09:17 <DIR> d-------- C:\Programfiler\Opera 2008-01-04 09:17 . 2008-01-04 09:17 <DIR> d-------- C:\Programfiler\KeePass Password Safe 2008-01-04 09:17 . 2008-01-04 09:17 <DIR> d-------- C:\HammerAutosave 2008-01-03 19:39 . 2008-01-03 19:39 <DIR> d-------- C:\Programfiler\NETGEAR 2008-01-03 19:39 . 2006-07-26 23:26 36,864 --a------ C:\WINDOWS\system32\RtlGina2(2).dll 2008-01-02 21:58 . 2008-01-02 21:58 <DIR> d-------- C:\Programfiler\Trend Micro 2007-12-31 13:53 . 2005-03-28 13:24 274,432 --a------ C:\WINDOWS\system32\drivers\ZD1211U.sys 2007-12-31 13:15 . 2007-12-31 13:15 <DIR> d-------- C:\Programfiler\3Com 2007-12-31 13:15 . 2004-01-14 11:25 81,920 --a------ C:\WINDOWS\system32\ZDPN50.dll 2007-12-31 13:15 . 2005-03-18 15:35 31,744 --a------ C:\WINDOWS\system32\drivers\ZDPSp50a64.sys 2007-12-31 13:15 . 2005-06-08 18:44 29,184 --a------ C:\WINDOWS\system32\drivers\BRGSp50a64.sys 2007-12-31 13:15 . 2004-03-23 16:38 28,672 --a------ C:\WINDOWS\system32\InsDrvZD.dll 2007-12-31 13:15 . 2003-03-14 12:24 24,576 --a------ C:\WINDOWS\system32\ZyDelReg.exe 2007-12-31 13:15 . 2005-06-08 18:44 20,608 --a------ C:\WINDOWS\system32\drivers\BRGSp50.sys 2007-12-31 13:15 . 2004-10-25 13:40 17,664 --a------ C:\WINDOWS\system32\drivers\ZDPSp50.sys 2007-12-31 13:15 . 2004-01-14 11:30 17,151 --a------ C:\WINDOWS\system32\ZDPNDIS5.sys 2007-12-31 13:15 . 2005-07-12 14:44 15,872 --a------ C:\WINDOWS\system32\InsDrvZD64.DLL 2007-12-30 21:48 . 2001-08-17 20:19 96,256 --a------ C:\WINDOWS\system32\drivers\ctlsb16.sys 2007-12-30 21:48 . 2001-08-17 20:19 96,256 --a--c--- C:\WINDOWS\system32\dllcache\ctlsb16.sys 2007-12-18 17:33 . 2007-12-18 17:35 <DIR> d--hsc--- C:\Programfiler\Fellesfiler\WindowsLiveInstaller 2007-12-18 17:18 . 2007-12-18 17:18 <DIR> d-------- C:\Documents and Settings\All Users\Programdata\ESET 2007-12-18 17:10 . 2007-12-18 17:10 <DIR> d-------- C:\Programfiler\Realtek AC97 2007-12-16 17:04 . 2007-12-16 17:04 <DIR> d-------- C:\Programfiler\Ventrilo 2007-12-12 16:33 . 2007-12-12 16:33 268 --ah----- C:\sqmdata07.sqm 2007-12-12 16:33 . 2007-12-12 16:33 244 --ah----- C:\sqmnoopt07.sqm 2007-12-09 00:00 . 2007-12-09 02:15 466,903 --a------ C:\PokerStars.log.0 . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-01-07 12:23 --------- d-----w C:\Programfiler\SUPERAntiSpyware 2008-01-06 20:01 --------- d--h--w C:\Programfiler\InstallShield Installation Information 2008-01-04 08:40 --------- d-----w C:\Programfiler\Norton Security Scan 2008-01-03 19:23 --------- d-----w C:\Programfiler\PokerStars 2007-12-28 14:03 --------- d-s---w C:\Programfiler\Xfire 2007-12-21 21:53 --------- d-----w C:\Programfiler\DVDlabPro2 2007-12-18 16:33 --------- d-----w C:\Documents and Settings\All Users\Programdata\WLInstaller 2007-12-18 16:31 --------- d---a-w C:\Documents and Settings\All Users\Programdata\TEMP 2007-12-18 16:16 --------- d-----w C:\Programfiler\Fellesfiler\Symantec Shared 2007-12-18 16:11 --------- d-----w C:\Documents and Settings\All Users\Programdata\Symantec 2007-12-18 15:39 --------- d-----w C:\Programfiler\Symantec 2007-12-17 16:49 --------- d-----w C:\Programfiler\HLSW 2007-12-16 16:04 --------- d-----w C:\Programfiler\Fellesfiler\Wise Installation Wizard 2007-12-13 21:44 --------- d-----w C:\Programfiler\etwlotqf 2007-12-13 21:41 --------- d-----w C:\Documents and Settings\All Users\Programdata\Microsoft Help 2007-12-05 21:41 --------- d-----w C:\Programfiler\SopCast 2007-12-04 21:09 --------- d--h--w C:\Programfiler\Zero G Registry 2007-12-04 16:39 --------- d-sh--r C:\Programfiler\MSNCS 2007-11-30 20:08 --------- d-----w C:\Programfiler\SystemRequirementsLab 2007-11-30 19:16 22,328 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys 2007-11-30 17:06 --------- d-----w C:\Programfiler\GameSpy 2007-11-29 20:26 --------- d-----w C:\Programfiler\uTorrent 2007-11-29 17:11 359,808 ----a-w C:\WINDOWS\system32\drivers\TCPIP.SYS 2007-11-26 17:22 60,416 ----a-w C:\WINDOWS\system32\drivers\cestctc^.sys 2007-11-24 20:58 --------- d-----w C:\Programfiler\Gabest 2007-11-24 16:55 --------- d-----w C:\Programfiler\TVAnts 2007-11-23 22:36 --------- d-----w C:\Documents and Settings\All Users\Programdata\SimCity Societies 2007-11-23 19:18 --------- d-----w C:\Documents and Settings\All Users\Programdata\SUPERAntiSpyware.com 2007-11-23 19:06 --------- d-----w C:\Documents and Settings\All Users\Programdata\Spybot - Search & Destroy 2007-11-20 16:06 --------- d-----w C:\Programfiler\Recover Files 2007-11-19 15:54 --------- d-----w C:\Programfiler\QuickTime 2007-11-19 15:54 --------- d-----w C:\Programfiler\iTunes 2007-11-19 15:54 --------- d-----w C:\Programfiler\iPod 2007-11-19 15:49 32 ----a-w C:\Documents and Settings\All Users\Programdata\ezsid.dat 2007-11-19 15:49 --------- d-----w C:\Programfiler\Skype 2007-11-19 15:49 --------- d-----w C:\Programfiler\Fellesfiler\Skype 2007-11-16 15:51 --------- d-----w C:\Programfiler\BearShare Applications 2007-11-14 15:21 --------- d-----w C:\Programfiler\PartyGaming 2007-11-14 14:06 30,728 ----a-w C:\WINDOWS\system32\drivers\epfwtdir.sys 2007-11-14 14:04 27,656 ----a-w C:\WINDOWS\system32\drivers\easdrv.sys 2007-11-14 14:03 33,800 ----a-w C:\WINDOWS\system32\drivers\eamon.sys 2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys 2007-11-12 17:03 25,280 ----a-w C:\WINDOWS\system32\drivers\hamachi.sys 2007-11-11 12:07 --------- d-----w C:\Programfiler\Hamachi 2007-07-01 11:46 32 ----a-r C:\Documents and Settings\Gjest\hash.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="C:\Programfiler\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34 5724184] "Steam"="d:\spill\steam\steam.exe" [2007-11-30 15:49 1266936] "SUPERAntiSpyware"="C:\Programfiler\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-06-21 14:06 1318912] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 13:00 15360] "3COM"="C:\Programfiler\3Com\3Com Wireless USB Utility\Wlan.exe" [2005-03-23 22:03 409600] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "egui"="C:\Programfiler\ESET\ESET NOD32 Antivirus\egui.exe" [2007-11-14 15:05 1410304] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-10-04 17:14 8491008] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Magnify"="Magnify.exe" [2006-10-04 14:34 72704 C:\WINDOWS\system32\magnify.exe] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "AllowLegacyWebView"= 1 (0x1) "AllowUnhashedWebView"= 1 (0x1) [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Programfiler\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] C:\Programfiler\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Programfiler\SUPERAntiSpyware\SASWINLO.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winbue32] winbue32.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Simen Andrè^Start-meny^Programmer^Oppstart^OneNote 2007 Screen Clipper og Launcher.lnk] path=C:\Documents and Settings\Simen Andrè\Start-meny\Programmer\Oppstart\OneNote 2007 Screen Clipper og Launcher.lnk backup=C:\WINDOWS\pss\OneNote 2007 Screen Clipper og Launcher.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] 2006-10-09 10:28 139264 --a------ C:\Programfiler\Fellesfiler\Ahead\Lib\NMBgMonitor.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] 2004-08-04 13:00 15360 --a------ C:\WINDOWS\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor] 2007-08-24 07:00 33648 --a------ C:\Programfiler\Microsoft Office\Office12\GrooveMonitor.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hwmdr] E:\\EPoX\EPTP\EPTP.EXE 5000 [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2006-01-12 15:40 155648 --a------ C:\Programfiler\Fellesfiler\Ahead\Lib\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nTrayFw] 2005-02-24 16:26 266240 --a------ C:\Programfiler\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] nwiz.exe /install [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Programfiler\QuickTime\QTTask.exe -atboottime [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Programfiler\Skype\Phone\Skype.exe /nosplash /minimized [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] SOUNDMAN.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2007-03-14 02:43 83608 --a------ C:\Programfiler\Java\jre1.6.0_01\bin\jusched.exe R0 nvcchflt;NVIDIA Disk Cache Filter Driver;C:\WINDOWS\system32\DRIVERS\nvcchflt.sys [2005-02-12 02:11] R1 AmdPPM;AMD HwPState prosessordriver;C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 21:46] R1 epfwtdir;epfwtdir;C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2007-11-14 15:06] R2 fssfltr;FssFltr;C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2007-08-20 17:44] R2 fsssvc;Windows Live OneCare Family Safety;"C:\Programfiler\Windows Live\Family Safety\fsssvc.exe" [2007-08-20 17:45] R3 ZD1211U(3COM Corporation);3COM OfficeConnect Wireless 11g Compact USB Adapter(3COM Corporation);C:\WINDOWS\system32\DRIVERS\zd1211u.sys [2005-03-28 13:24] S3 AdWatchDrv;AW Realtime Driver;C:\WINDOWS\system32\drivers\AWRTPD.sys [] S3 BRGSp50;BRGSp50 NDIS Protocol Driver;C:\WINDOWS\system32\Drivers\BRGSp50.sys [2005-06-08 18:44] S3 ctlsb16;Creative SB16/AWE32/AWE64-driver (WDM);C:\WINDOWS\system32\drivers\ctlsb16.sys [2001-08-17 20:19] S3 EPScanMemory;EPScanMemory;E:\EPoX\EPTP\ScanMemory32.sys [] S3 zlportio;zlportio;D:\Spill\UltraStar\zlportio.sys [2001-09-22 09:16] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H] \Shell\AutoRun\command - H:\RunGame.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f368a2a9-f7ec-11db-a596-806d6172696f}] \Shell\AutoRun\command - F:\AUTORUN\AUTORUN.EXE . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-01-07 13:40:34 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2008-01-07 13:42:23 - machine was rebooted ComboFix-quarantined-files.txt 2008-01-07 12:42:21 . 2007-12-13 21:41:23 --- E O F --- Lenke til kommentar
Programvare Skrevet 7. januar 2008 Del Skrevet 7. januar 2008 (endret) Du kan kjøre programmet Ccleaner, som fjerner alle mulige temp-filer o.l. Ser at du har det innstallert ja. Kjører du det ofte? Endret 7. januar 2008 av Vintermåne Lenke til kommentar
Sixr Skrevet 7. januar 2008 Forfatter Del Skrevet 7. januar 2008 Du kan kjøre programmet Ccleaner, som fjerner alle mulige temp-filer o.l. Ser at du har det innstallert ja. Kjører du det ofte? Jeg kjører det 2-3 ganger i uka.. Lenke til kommentar
norbat Skrevet 7. januar 2008 Del Skrevet 7. januar 2008 Start hjt, velg "Do a system scan only", sett merke framfor følgende linjer og klikk Fix checked: O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.topsoftwarefeed.com/redirect.php (file missing) O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.topsoftwarefeed.com/redirect.php (file missing) O20 - Winlogon Notify: winbue32 - winbue32.dll (file missing) Sjekk om det trådløse adapteret har siste oppdaterte driver. Lenke til kommentar
Sixr Skrevet 7. januar 2008 Forfatter Del Skrevet 7. januar 2008 Sjekk om det trådløse adapteret har siste oppdaterte driver. Punktene er fjernet. Har laget en egen problem post om nettverket her Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå