Mystisk problem med internetten

[haarod]

Har et litt rart problem med internetten. Har problemer med at jeg må trykke på linker mange ganger før siden laster inn. De fleste gangene starter den å laste inn såvidt før operasjonen blir avbrutt.

Torrent-nedlastning funker heller ikke, men det som er litt rart er at alt egentlig kom plutselig uten at jeg hadde lasta ned noe spesielt eller vært inne på noen uvanlige sider. Det gjelder også bare min pc i nettverket.

 

Her er den opprinnelige tråden:

https://www.diskusjon.no/index.php?showtopi...;#entry10344271

 

Skal legge ut en logg fra HiJackThis her, så hvis noen her har peil på hva som kan være galt ville det vært flott og fått hjelp:

 

Klikk for å se/fjerne innholdet nedenfor

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 21:56:11, on 13.01.2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16574)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Programfiler\Intel\Wireless\Bin\EvtEng.exe

C:\Programfiler\Intel\Wireless\Bin\S24EvMon.exe

C:\Programfiler\Intel\Wireless\Bin\WLKeeper.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\WINDOWS\System32\svchost.exe

C:\Programfiler\Fellesfiler\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Programfiler\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

C:\Programfiler\Trend Micro\OfficeScan Client\ntrtscan.exe

C:\Programfiler\Intel\Wireless\Bin\RegSrvc.exe

C:\Programfiler\Trend Micro\OfficeScan Client\tmlisten.exe

C:\Programfiler\Trend Micro\OfficeScan Client\OfcPfwSvc.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\stsystra.exe

C:\Programfiler\Dell\QuickSet\quickset.exe

C:\Programfiler\Synaptics\SynTP\SynTPEnh.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\WINDOWS\system32\igfxpers.exe

C:\WINDOWS\system32\TDxVGAUTIL.EXE

C:\Programfiler\Java\jre1.6.0_03\bin\jusched.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Programfiler\Intel\Wireless\bin\ZCfgSvc.exe

C:\Programfiler\Intel\Wireless\Bin\ifrmewrk.exe

C:\Programfiler\Intel\Wireless\Bin\EOUWiz.exe

C:\Programfiler\Trend Micro\OfficeScan Client\Pccntmon.exe

C:\Programmer\iTunes\iTunesHelper.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Programfiler\DAEMON Tools\daemon.exe

C:\Programfiler\MSN Messenger\msnmsgr.exe

C:\Programfiler\My Book\WD Backup\uBBMonitor.exe

C:\Programmer\Last.fm\LastFMHelper.exe

C:\WINDOWS\TEMP\SQ7B2B.EXE

C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe

C:\Programfiler\Trend Micro\OfficeScan Client\pccntupd.exe

C:\Programfiler\iPod\bin\iPodService.exe

C:\Programfiler\Mozilla Firefox\firefox.exe

C:\Programmer\Utorrent\utorrent.exe

C:\Programfiler\InterVideo\WinDVD\WinDVD.exe

C:\Mediamonkey 3\MediaMonkey (non-skinned).exe

C:\Programmer\Last.fm\LastFM.exe

C:\Program Files\Trend Micro\Tingtang\HijackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fronter.com/ostfoldvgs/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://fronter.com/ostfoldvgs/

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programfiler\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Mine Dokumenter\Privat\S&S\SDHelper.dll (file missing)

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre1.6.0_03\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe

O4 - HKLM\..\Run: [Dell QuickSet] C:\Programfiler\Dell\QuickSet\quickset.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Programfiler\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [TDxVGAUTIL] C:\WINDOWS\system32\TDxVGAUTIL.EXE

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Programfiler\Java\jre1.6.0_03\bin\jusched.exe"

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [intelZeroConfig] "C:\Programfiler\Intel\Wireless\bin\ZCfgSvc.exe"

O4 - HKLM\..\Run: [intelWireless] "C:\Programfiler\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless

O4 - HKLM\..\Run: [EOUApp] "C:\Programfiler\Intel\Wireless\Bin\EOUWiz.exe"

O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Programfiler\Trend Micro\OfficeScan Client\Pccntmon.exe" -HideWindow

O4 - HKLM\..\Run: [QuickTime Task] "C:\Programfiler\Quicktime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmer\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [DAEMON Tools] "C:\Programfiler\DAEMON Tools\daemon.exe" -lang 1033

O4 - HKCU\..\Run: [msnmsgr] "C:\Programfiler\MSN Messenger\msnmsgr.exe" /background

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJENESTE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETTVERKSTJENESTE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: Last.fm Helper.lnk = C:\Programmer\Last.fm\LastFMHelper.exe

O4 - Global Startup: WD Backup Monitor.lnk = C:\Programfiler\My Book\WD Backup\uBBMonitor.exe

O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra button: Oppslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe

O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab

O16 - DPF: {358DFA15-D48C-4296-8D16-7405F918333B} (Fronter Open-Edit-Save Control (VersionControl)) - http://fronter.com/ostfoldvgs/links/Fronter_oes_prj.cab

O16 - DPF: {35C3D91E-401A-4E45-88A5-F3B32CD72DF4} (Encrypt Class) - http://139.98.9.3/officescan/console/html/AtxEnc.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1145621877054

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://locator1.CD-en.imagesrvr.com/sites/...eInstall_no.cab

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programfiler\Fellesfiler\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\EvtEng.exe

O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Programfiler\iPod\bin\iPodService.exe

O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Programfiler\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Programfiler\Trend Micro\OfficeScan Client\ntrtscan.exe

O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Programfiler\Trend Micro\OfficeScan Client\OfcPfwSvc.exe

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\RegSrvc.exe

O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Programfiler\Intel\Wireless\Bin\S24EvMon.exe

O23 - Service: OfficeScanNT Listener (tmlisten) - Trend Micro Inc. - C:\Programfiler\Trend Micro\OfficeScan Client\tmlisten.exe

O23 - Service: Intel® PROSet/Wireless SSO Service (WLANKEEPER) - Intel® Corporation - C:\Programfiler\Intel\Wireless\Bin\WLKeeper.exe

 

--

End of file - 8924 bytes

[norbat]

Du kan fix følgende linje med hjt: (start hjt, sett merke framfor linja og klikk Fix checked)

O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://locator1.CD-en.imagesrvr.com/sites/...eInstall_no.cab

 

Kjør en rens med CCleaner:

Last ned CCleaner. Start programmet. Gå til 'Valg'->'Avansert'. Fjern avkryssingen framfor: "bare slett midlertidige filer......." Klikk på 'Renser' og deretter 'Kjør CCleaner'.

 

Bruker du IE?

Klikk Verktøy->Avansert

Klikk på knappen 'Tilbakestill...' (Tilbakestill IE- innstillinger...)

 

Restart pc og sjekk om ting og tang fungerer bedre.

 

Fortsatt probl.?

 

Hent Combofix, og legg det på skrivebordet

 

Kjør combofix.exe, og følg veiledningen.

Du må ikke klikke på vinduet mens programmet kjører.

 

Post loggfilen fra combofix (c:\combofix.txt)

[haarod]

Den ene torrenten ville starte etter at jeg hadde kjørt combofix, men det var også bare den.

 

Her er loggen:

 

Klikk for å se/fjerne innholdet nedenfor

ComboFix 08-01-15.4 - haarod 2008-01-15 15:09:34.1 - NTFSx86

Microsoft Windows XP Professional 5.1.2600.2.1252.1.1044.18.155 [GMT 1:00]

Running from: C:\Documents and Settings\haarod\Skrivebord\ComboFix.exe

* Created a new restore point

 

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!

.

 

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

C:\Programfiler\myglobalsearch

F:\Autorun.inf

 

.

((((((((((((((((((((((((( Files Created from 2007-12-15 to 2008-01-15 )))))))))))))))))))))))))))))))

.

 

2008-01-15 15:05 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe

2008-01-14 22:09 . 2008-01-15 14:38 <DIR> dr-h----- C:\Documents and Settings\haarod\Siste

2008-01-14 19:36 . 2008-01-14 19:36 <DIR> d-------- C:\Programfiler\CCleaner

2008-01-13 21:55 . 2008-01-13 21:55 <DIR> d-------- C:\Program Files

2008-01-11 14:46 . 2008-01-11 14:46 <DIR> d-------- C:\Temp\Unforgiven

2008-01-11 14:46 . 2008-01-11 14:46 <DIR> d-------- C:\Temp\The Magnificent Seven

2008-01-06 18:30 . 2008-01-06 18:30 664 --a------ C:\WINDOWS\system32\d3d9caps.dat

2008-01-03 11:38 . 2008-01-03 11:38 <DIR> d-------- C:\Mediamonkey 3

2007-12-25 23:24 . 2008-01-11 14:46 <DIR> d-------- C:\Temp

2007-12-25 15:34 . 2007-12-25 15:34 <DIR> d-------- C:\Documents and Settings\haarod\Programdata\Apple Computer

2007-12-25 15:34 . 2008-01-15 14:36 54,156 --ah----- C:\WINDOWS\QTFont.qfn

2007-12-25 15:34 . 2007-12-25 15:34 1,409 --a------ C:\WINDOWS\QTFont.for

2007-12-25 15:33 . 2007-12-25 15:33 <DIR> d-------- C:\Programfiler\iPod

2007-12-25 15:31 . 2007-12-25 15:32 <DIR> d-------- C:\Programfiler\Quicktime

2007-12-25 15:31 . 2007-12-25 15:33 <DIR> d-------- C:\Documents and Settings\All Users\Programdata\Apple Computer

2007-12-25 15:29 . 2007-12-25 15:29 <DIR> d-------- C:\Programfiler\Apple Software Update

2007-12-25 15:28 . 2007-10-31 14:09 30,464 --a------ C:\WINDOWS\system32\drivers\usbaapl.sys

2007-12-25 15:21 . 2007-12-25 15:21 <DIR> d-------- C:\Programfiler\Fellesfiler\Apple

2007-12-19 09:17 . 2004-08-03 23:01 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys

2007-12-19 09:17 . 2004-08-03 23:01 25,856 --a--c--- C:\WINDOWS\system32\dllcache\usbprint.sys

2007-12-16 21:59 . 2007-12-16 21:59 <DIR> d-------- C:\Documents and Settings\Kristin\Programdata\vlc

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-01-15 14:05 --------- d-----w C:\Documents and Settings\haarod\Programdata\uTorrent

2008-01-14 18:48 --------- d-----w C:\Documents and Settings\All Users\Programdata\Spybot - Search & Destroy

2008-01-13 19:42 --------- d-----w C:\Documents and Settings\haarod\Programdata\dvdcss

2008-01-09 20:35 --------- d-----w C:\Documents and Settings\haarod\Programdata\LimeWire

2007-12-14 15:33 --------- d-----w C:\Documents and Settings\Kristin\Programdata\ArcSoft

2007-11-07 09:30 721,920 ----a-w C:\WINDOWS\system32\lsasrv.dll

2007-10-29 22:45 1,290,752 ----a-w C:\WINDOWS\system32\quartz.dll

2007-10-25 08:28 222,720 ----a-w C:\WINDOWS\system32\wmasf.dll

2005-07-14 11:31 27,648 --sha-r C:\WINDOWS\system32\AVSredirect.dll

2005-06-26 14:32 616,448 --sha-r C:\WINDOWS\system32\cygwin1.dll

2005-06-21 21:37 45,568 --sha-r C:\WINDOWS\system32\cygz.dll

2005-02-28 12:16 240,128 --sha-r C:\WINDOWS\system32\x.264.exe

.

 

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 13:00 15360]

"DAEMON Tools"="C:\Programfiler\DAEMON Tools\daemon.exe" [2006-11-12 11:48 157592]

"msnmsgr"="C:\Programfiler\MSN Messenger\msnmsgr.exe" [2007-01-19 11:54 5674352]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SigmatelSysTrayApp"="stsystra.exe" [2005-08-24 06:42 393216 C:\WINDOWS\stsystra.exe]

"Dell QuickSet"="C:\Programfiler\Dell\QuickSet\quickset.exe" [2005-08-01 15:00 610304]

"SynTPEnh"="C:\Programfiler\Synaptics\SynTP\SynTPEnh.exe" [2005-06-24 13:36 729178]

"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2005-10-14 13:49 94208]

"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2005-10-14 13:46 77824]

"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2005-10-14 13:50 114688]

"TDxVGAUTIL"="C:\WINDOWS\system32\TDxVGAUTIL.EXE" [2005-07-29 13:52 69632]

"SunJavaUpdateSched"="C:\Programfiler\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11 132496]

"dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [2004-08-13 00:05 122939]

"IntelZeroConfig"="C:\Programfiler\Intel\Wireless\bin\ZCfgSvc.exe" [2006-04-14 10:51 667718]

"IntelWireless"="C:\Programfiler\Intel\Wireless\Bin\ifrmewrk.exe" [2006-04-14 10:52 602182]

"EOUApp"="C:\Programfiler\Intel\Wireless\Bin\EOUWiz.exe" [2006-04-14 10:56 569413]

"OfficeScanNT Monitor"="C:\Programfiler\Trend Micro\OfficeScan Client\Pccntmon.exe" [2006-02-07 15:16 356352]

"QuickTime Task"="C:\Programfiler\Quicktime\QTTask.exe" [2007-12-11 10:56 286720]

"iTunesHelper"="C:\Programmer\iTunes\iTunesHelper.exe" [2007-12-11 12:10 267048]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 13:00 15360]

 

C:\Documents and Settings\haarod\Start-meny\Programmer\Oppstart\

Last.fm Helper.lnk - C:\Programmer\Last.fm\LastFMHelper.exe [2007-11-27 21:15:39]

 

C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart\

WD Backup Monitor.lnk - C:\Programfiler\My Book\WD Backup\uBBMonitor.exe [2007-01-18 15:01:23]

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start-meny^Programmer^Oppstart^Adobe Reader Speed Launch.lnk]

path=C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart\Adobe Reader Speed Launch.lnk

backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]

--a------ 2005-06-06 23:46 57344 C:\Programfiler\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

--a------ 2007-01-19 11:54 5674352 C:\Programfiler\MSN Messenger\MsnMsgr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

--a------ 2007-12-11 10:56 286720 C:\Programfiler\Quicktime\qttask.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]

--a------ 2006-03-30 16:45 313472 C:\Programfiler\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]

--------- 2006-11-15 09:46 204288 C:\Programfiler\Windows Media Player\WMPNSCFG.exe

 

R3 TdxMrMINI;TdxMrMINI;C:\WINDOWS\system32\DRIVERS\TdxMrMini.sys [2005-06-23 16:00]

R3 TdxVGAMINI;TdxVGAMINI;C:\WINDOWS\system32\DRIVERS\TdxVgaMini.sys [2005-06-23 16:01]

R3 WinDriver6;WinDriver6;C:\WINDOWS\system32\drivers\windrvr6.sys [2004-03-17 13:09]

S3 ADM851X;ADM851X USB To Fast Ethernet Adapter;C:\WINDOWS\system32\DRIVERS\ADM851X.SYS [2003-12-19 12:44]

S3 TdxVGAUSB;TARGUS USB2.0 VGA DOCK DEVICE(USB);C:\WINDOWS\system32\drivers\TdxVGAUSB.sys [2005-06-23 10:19]

S3 USBAAPL;Apple Mobile USB Driver;C:\WINDOWS\system32\Drivers\usbaapl.sys [2007-10-31 14:09]

 

*Newly Created Service* - PROCEXP90

.

Contents of the 'Scheduled Tasks' folder

"2008-01-08 17:13:11 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"

- C:\Programfiler\Apple Software Update\SoftwareUpdate.exe

.

**************************************************************************

 

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-01-15 15:14:34

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

disk error: C:\WINDOWS\

 

**************************************************************************

.

Completion time: 2008-01-15 15:17:37

ComboFix-quarantined-files.txt 2008-01-15 14:16:44

.

2008-01-10 02:03:12 --- E O F ---

 

Stussa litt på den "disk error: C:\WINDOWS\", men jeg har ikke peiling på dette.

 

 

EDIT: Har ikke merket noe særlig til det første problemet i det siste. Nå er det først og fremst torrents/P2P som er problemet.

Håper noen kan hjelpe

Endret 15. januar 2008 av haarod

[norbat]

Hvis prog. ikke får adminrettigheter, så kan det gi melding om disk error .... Ingen bekymring, altså.

 

Loggen ser grei ut. Hva problemet med torrents/P2P er, vet jeg ikke. Du kunne ha prøvd en systemgjenoppretting til før dette problemet oppsto (tilbehør->systemverktøy->systemgjenoppretting). Prog. som er installert etter valgt punkt må evt. reinstalleres.

[haarod]

Tror jeg bare kjører en god gammeldags formatering, da ikke noe annet ser ut til å virke. Er bare litt styr i og med at dette er skolepcen.

 

Takk for all hjelp