JFM Skrevet 29. januar 2008 Skrevet 29. januar 2008 Hei. Skulle laste ned musikk med *****Wire. Klarte selvfølgelig å trykke på feilt søke-resultat. Så nå lurer jeg på om jeg kan ha fått virus. HJT-logg: Logfile of HijackThis v1.99.1 Scan saved at 18:36:44, on 29.01.2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\SpeedFan\speedfan.exe C:\WINDOWS\system32\rundll32.exe C:\Programfiler\NVIDIA Corporation\NvMixer\NVMixerTray.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Programfiler\AMD\AMDLCDKBAPP\AMDsysInfo_LCD.exe C:\Programfiler\Edimax\Common\RaUI.exe C:\Programfiler\Last.fm\LastFMHelper.exe C:\WINDOWS\System32\svchost.exe C:\Programfiler\Steam\Steam.exe C:\WINDOWS\system32\wuauclt.exe C:\Programfiler\Last.fm\LastFM.exe C:\Programfiler\MSN Messenger\msnmsgr.exe C:\Programfiler\MSN Messenger\usnsvc.exe C:\Documents and Settings\JFM\Skrivebord\Ez_System_Monitor v0.8\Ez_System_Monitor v0.8\EzLCD_System_Monitor(x86).exe C:\Programfiler\Logitech\GamePanel Software\G-series Software\LGDCore.exe C:\Programfiler\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe C:\Programfiler\Logitech\GamePanel Software\LCD Manager\Applets\LCDCountdown.exe C:\Programfiler\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe C:\Programfiler\Logitech\GamePanel Software\LCD Manager\Applets\LCDPop3.exe C:\Programfiler\Logitech\GamePanel Software\LCD Manager\LCDMon.exe G:\Programmer\Logitech\Logitech g15\mods\mylcd-0.30.4-bin-g15-win32\mylcd-0.30.4\examples\Wa.exe c:\programfiler\winamp\winamp.exe C:\Programfiler\Opera\Opera.exe C:\Programfiler\FrostWire\FrostWire.exe G:\Programmer\sikkerhet\hijackthis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://codecs.r8.org/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger O2 - BHO: Koblingshjelpeprogram for Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programfiler\Fellesfiler\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre1.5.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [NVMixerTray] "C:\Programfiler\NVIDIA Corporation\NvMixer\NVMixerTray.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Programfiler\Winamp\winampa.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [amd_dc_opt] C:\Programfiler\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [QuickTime Task] "C:\Programfiler\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Launch LCDMon] "C:\Programfiler\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" O4 - HKLM\..\Run: [Launch LGDCore] "C:\Programfiler\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Programfiler\Java\jre1.5.0_07\bin\jusched.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - Startup: Last.fm Helper.lnk = C:\Programfiler\Last.fm\LastFMHelper.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Programfiler\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Edimax Wireless Utility.lnk = C:\Programfiler\Edimax\Common\RaUI.exe O4 - Global Startup: Hurtigstart for Adobe Reader.lnk = C:\Programfiler\Adobe\Reader 8.0\Reader\reader_sl.exe O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.5.0_07\bin\npjpi150_07.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.5.0_07\bin\npjpi150_07.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1201315344875 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1201320971906 O17 - HKLM\System\CCS\Services\Tcpip\..\{91FF8489-04E9-46AD-B570-E21C46AB5F40}: NameServer = *IP-en min står her* O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Programfiler\Fellesfiler\Microsoft Shared\Help\hxds.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FELLES~1\MICROS~1\OFFICE12\MSOXMLMF.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
5-7 Skrevet 29. januar 2008 Skrevet 29. januar 2008 (endret) Du kan hvertfall ta å kjøre en ny scan og trykke Fix checked på EDIT: Altså huke av på den og trykke fix checked O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) Hent Combofix, og legg det på skrivebordet Kjør combofix.exe, og følg veiledningen. Du må ikke klikke på vinduet mens programmet kjører. Post loggfilen fra combofix (c:\combofix.txt) Endret 29. januar 2008 av 5-7
JFM Skrevet 29. januar 2008 Forfatter Skrevet 29. januar 2008 Combofix-logg: ComboFix 08-01-29.3 - JFM 2008-01-29 21:34:15.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1044.18.748 [GMT 1:00] Running from: C:\Documents and Settings\JFM\Skrivebord\ComboFix.exe * Created a new restore point WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((( Files Created from 2007-12-28 to 2008-01-29 ))))))))))))))))))))))))))))))) . 2008-01-29 18:12 . 2008-01-29 18:12 <DIR> d-------- C:\Documents and Settings\JFM\Incomplete 2008-01-29 18:10 . 2008-01-29 18:42 <DIR> d-------- C:\Documents and Settings\JFM\Programdata\FrostWire 2008-01-29 17:56 . 2006-05-03 02:56 49,265 --a------ C:\WINDOWS\system32\jpicpl32.cpl 2008-01-29 17:55 . 2008-01-29 17:56 <DIR> d-------- C:\Programfiler\Java 2008-01-29 17:55 . 2008-01-29 17:55 <DIR> d-------- C:\Programfiler\Fellesfiler\Java 2008-01-29 17:54 . 2008-01-29 17:54 <DIR> d-------- C:\Programfiler\FrostWire 2008-01-29 16:57 . 2008-01-29 16:57 <DIR> d-------- C:\Programfiler\Logitech 2008-01-29 16:57 . 2008-01-29 16:57 <DIR> d-------- C:\Documents and Settings\All Users\Programdata\Logitech 2008-01-27 14:21 . 2008-01-27 14:21 <DIR> d-------- C:\Documents and Settings\JFM\Programdata\Media Player Classic 2008-01-27 14:20 . 2008-01-27 14:20 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-01-27 14:20 . 2008-01-27 14:20 1,409 --a------ C:\WINDOWS\QTFont.for 2008-01-27 14:19 . 2008-01-27 14:19 <DIR> d-------- C:\Programfiler\QuickTime 2008-01-27 14:19 . 2008-01-27 14:19 <DIR> d-------- C:\Programfiler\Apple Software Update 2008-01-27 14:19 . 2008-01-27 14:19 <DIR> d-------- C:\Documents and Settings\All Users\Programdata\Apple Computer 2008-01-27 14:19 . 2008-01-27 14:19 <DIR> d-------- C:\Documents and Settings\All Users\Programdata\Apple 2008-01-26 19:55 . 2008-01-26 19:55 <DIR> d-------- C:\Programfiler\Ventrilo 2008-01-26 19:55 . 2008-01-26 19:55 <DIR> d-------- C:\Documents and Settings\JFM\Programdata\Ventrilo 2008-01-26 19:54 . 2008-01-29 16:01 <DIR> d-------- C:\Programfiler\Fellesfiler\Wise Installation Wizard 2008-01-26 13:43 . 2007-12-10 14:24 159,458 --a------ C:\WINDOWS\system32\nvapps.nvb 2008-01-26 13:18 . 2008-01-29 15:38 <DIR> d-------- C:\Programfiler\AMD 2008-01-26 13:18 . 2006-11-01 14:42 33,280 --a------ C:\WINDOWS\system32\drivers\AmdLLD.sys 2008-01-26 13:17 . 2008-01-26 13:17 <DIR> d-------- C:\WINDOWS\Downloaded Installations 2008-01-26 13:13 . 2002-03-27 14:54 217,088 --a------ C:\WINDOWS\system32\libmySQL.dll 2008-01-26 13:13 . 2002-03-29 10:13 102,400 --a------ C:\WINDOWS\system32\TrackerNET.dll 2008-01-26 13:10 . 2003-11-17 11:49 154,624 --a------ C:\WINDOWS\system32\fmod.dll 2008-01-26 13:10 . 1999-12-17 10:13 86,016 --a------ C:\WINDOWS\unvise32.exe 2008-01-26 12:23 . 2008-01-26 12:23 63 --a------ C:\WINDOWS\sierra.ini 2008-01-26 12:22 . 2008-01-26 13:24 <DIR> d-------- C:\Programfiler\Half-Life 2008-01-26 11:41 . 2008-01-26 12:57 <DIR> d-------- C:\Programfiler\StepMania 2008-01-26 04:54 . 2008-01-26 04:54 <DIR> d-------- C:\Programfiler\Windows Live 2008-01-26 04:54 . 2008-01-26 04:54 <DIR> d--hsc--- C:\Programfiler\Fellesfiler\WindowsLiveInstaller 2008-01-26 04:54 . 2008-01-26 04:54 <DIR> d-------- C:\Documents and Settings\All Users\Programdata\WLInstaller 2008-01-26 04:43 . 2008-01-26 05:09 <DIR> d--h----- C:\WINDOWS\$hf_mig$ 2008-01-26 04:39 . 2007-04-10 14:01 337,280 --a------ C:\WINDOWS\system32\wgatray.exe.bak 2008-01-26 04:39 . 2007-04-10 14:01 236,928 --a------ C:\WINDOWS\system32\wgalogon.dll.bak 2008-01-26 04:28 . 2008-01-26 04:28 <DIR> d-------- C:\Documents and Settings\All Users\Programdata\Office Genuine Advantage 2008-01-26 04:18 . 2004-08-03 23:08 26,496 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys 2008-01-26 02:59 . 2004-08-03 23:01 196,864 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys 2008-01-26 02:59 . 2004-08-04 01:03 40,840 --a------ C:\WINDOWS\system32\drivers\termdd.sys 2008-01-10 15:27 . 2008-01-10 15:27 90,112 --a------ C:\WINDOWS\system32\QuickTimeVR.qtx 2008-01-10 15:27 . 2008-01-10 15:27 57,344 --a------ C:\WINDOWS\system32\QuickTime.qts . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-01-29 20:34 --------- d-----w C:\Documents and Settings\JFM\Programdata\uTorrent 2008-01-29 18:33 --------- d-----w C:\Programfiler\Steam 2008-01-29 18:30 --------- d-----w C:\Programfiler\SpeedFan 2008-01-29 14:42 --------- d-----w C:\Documents and Settings\JFM\Programdata\Winamp 2008-01-26 04:11 --------- d-----w C:\Programfiler\Last.fm 2008-01-26 02:58 --------- d-----w C:\Programfiler\MSN Messenger 2008-01-26 02:56 --------- d-----w C:\Programfiler\Fellesfiler\SpeechEngines 2008-01-26 02:56 --------- d-----w C:\Programfiler\Fellesfiler\ODBC 2008-01-26 02:52 --------- d-----w C:\Documents and Settings\JFM\Programdata\vlc 2008-01-26 02:38 --------- d-----w C:\Programfiler\Fellesfiler\Adobe 2008-01-26 02:37 --------- d-----w C:\Programfiler\Alcohol Soft 2008-01-26 02:37 --------- d-----w C:\Documents and Settings\All Users\Programdata\Microsoft Help 2008-01-26 02:36 --------- d-----w C:\Programfiler\MSBuild 2008-01-26 02:36 --------- d-----w C:\Programfiler\Microsoft Works 2008-01-26 02:32 --------- d-----w C:\Programfiler\Opera 2008-01-26 02:29 --------- d-----w C:\Programfiler\uTorrent 2008-01-26 02:26 218,624 ----a-w C:\WINDOWS\system32\uxtheme.dll 2008-01-26 02:24 --------- d-----w C:\Programfiler\VideoLAN 2008-01-26 02:24 --------- d-----w C:\Documents and Settings\All Users\Programdata\Last.fm 2008-01-26 02:21 --------- d-----w C:\Programfiler\Winamp 2008-01-26 02:18 --------- d-----w C:\Programfiler\K-Lite Codec Pack 2008-01-26 02:17 21,419 ----a-w C:\WINDOWS\system32\drivers\AegisP.sys 2008-01-26 02:17 --------- d--h--w C:\Programfiler\InstallShield Installation Information 2008-01-26 02:17 --------- d-----w C:\Programfiler\Marvell 2008-01-26 02:17 --------- d-----w C:\Programfiler\Fellesfiler\InstallShield 2008-01-26 02:17 --------- d-----w C:\Programfiler\Edimax 2008-01-26 02:17 --------- d-----w C:\Documents and Settings\JFM\Programdata\InstallShield 2008-01-26 02:15 --------- d-----w C:\Programfiler\NVIDIA Corporation 2008-01-26 02:15 --------- d-----w C:\Programfiler\Fellesfiler\NVIDIA Shared 2008-01-26 02:10 --------- d--h--w C:\Programfiler\Uninstall Information 2008-01-26 02:03 --------- d-----w C:\Programfiler\microsoft frontpage 2008-01-26 02:02 --------- d-----w C:\Programfiler\Elektroniske tjenester 2008-01-26 02:01 --------- d-----w C:\Programfiler\Fellesfiler\Tjenester 2008-01-26 02:01 --------- d-----w C:\Programfiler\Fellesfiler\MSSoap 2007-12-05 01:53 356,352 ----a-w C:\WINDOWS\system32\NVUNINST.EXE 2007-12-05 00:41 81,920 ----a-w C:\WINDOWS\system32\nvwddi.dll 2007-12-05 00:41 81,920 ----a-w C:\WINDOWS\system32\nvmctray.dll 2007-12-05 00:41 8,523,776 ----a-w C:\WINDOWS\system32\nvcpl.dll 2007-12-05 00:41 753,664 ----a-w C:\WINDOWS\system32\nvcplui.exe 2007-12-05 00:41 7,435,392 ----a-w C:\WINDOWS\system32\drivers\nv4_mini.sys 2007-12-05 00:41 6,901,760 ----a-w C:\WINDOWS\system32\nvoglnt.dll 2007-12-05 00:41 6,549,504 ----a-w C:\WINDOWS\system32\nvdisps.dll 2007-12-05 00:41 5,773,568 ----a-w C:\WINDOWS\system32\nv4_disp.dll 2007-12-05 00:41 466,944 ----a-w C:\WINDOWS\system32\nvshell.dll 2007-12-05 00:41 45,056 ----a-w C:\WINDOWS\system32\nvmccsrs.dll 2007-12-05 00:41 442,368 ----a-w C:\WINDOWS\system32\nvappbar.exe 2007-12-05 00:41 425,984 ----a-w C:\WINDOWS\system32\keystone.exe 2007-12-05 00:41 385,024 ----a-w C:\WINDOWS\system32\nvapi.dll 2007-12-05 00:41 356,352 ----a-w C:\WINDOWS\system32\nvudisp.exe 2007-12-05 00:41 35,328 ----a-w C:\WINDOWS\system32\nvcodins.dll 2007-12-05 00:41 35,328 ----a-w C:\WINDOWS\system32\nvcod.dll 2007-12-05 00:41 307,200 ----a-w C:\WINDOWS\system32\nvexpbar.dll 2007-12-05 00:41 3,710,976 ----a-w C:\WINDOWS\system32\nvvitvs.dll 2007-12-05 00:41 3,420,160 ----a-w C:\WINDOWS\system32\nvgames.dll 2007-12-05 00:41 286,720 ----a-w C:\WINDOWS\system32\nvnt4cpl.dll 2007-12-05 00:41 229,376 ----a-w C:\WINDOWS\system32\nvmccs.dll 2007-12-05 00:41 2,498,560 ----a-w C:\WINDOWS\system32\nvwss.dll 2007-12-05 00:41 188,416 ----a-w C:\WINDOWS\system32\nvmccss.dll 2007-12-05 00:41 155,716 ----a-w C:\WINDOWS\system32\nvsvc32.exe 2007-12-05 00:41 147,456 ----a-w C:\WINDOWS\system32\nvcolor.exe 2007-12-05 00:41 1,703,936 ----a-w C:\WINDOWS\system32\nvwdmcpl.dll 2007-12-05 00:41 1,626,112 ----a-w C:\WINDOWS\system32\nwiz.exe 2007-12-05 00:41 1,474,560 ----a-w C:\WINDOWS\system32\nview.dll 2007-12-05 00:41 1,339,392 ----a-w C:\WINDOWS\system32\nvdspsch.exe 2007-12-05 00:41 1,228,800 ----a-w C:\WINDOWS\system32\nvmobls.dll 2007-12-05 00:41 1,089,536 ----a-w C:\WINDOWS\system32\nvcuda.dll 2007-12-05 00:41 1,019,904 ----a-w C:\WINDOWS\system32\nvwimg.dll 2007-11-07 09:30 721,920 ----a-w C:\WINDOWS\system32\lsasrv.dll 2007-10-29 22:45 1,290,752 ----a-w C:\WINDOWS\system32\quartz.dll . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:03 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 00:03 110592 C:\WINDOWS\system32\bthprops.cpl] "NVMixerTray"="C:\Programfiler\NVIDIA Corporation\NvMixer\NVMixerTray.exe" [2004-12-20 17:12 131072] "WinampAgent"="C:\Programfiler\Winamp\winampa.exe" [ ] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 01:41 8523776] "nwiz"="nwiz.exe" [2007-12-05 01:41 1626112 C:\WINDOWS\system32\nwiz.exe] "amd_dc_opt"="C:\Programfiler\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2006-11-17 16:49 77824] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-12-05 01:41 81920] "QuickTime Task"="C:\Programfiler\QuickTime\qttask.exe" [2008-01-10 15:27 385024] "Launch LCDMon"="C:\Programfiler\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2007-07-17 16:30 1687824] "Launch LGDCore"="C:\Programfiler\Logitech\GamePanel Software\G-series Software\LGDCore.exe" [2007-07-17 17:08 2094352] "SunJavaUpdateSched"="C:\Programfiler\Java\jre1.5.0_07\bin\jusched.exe" [2006-05-03 02:56 36975] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 00:03 15360] C:\Documents and Settings\JFM\Start-meny\Programmer\Oppstart\ Last.fm Helper.lnk - C:\Programfiler\Last.fm\LastFMHelper.exe [2008-01-26 03:23:32 106496] C:\Documents and Settings\All Users\Start-meny\Programmer\Oppstart\ Adobe Reader Synchronizer.lnk - C:\Programfiler\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 00:01:50 734872] Edimax Wireless Utility.lnk - C:\Programfiler\Edimax\Common\RaUI.exe [2008-01-26 03:17:52 700416] Hurtigstart for Adobe Reader.lnk - C:\Programfiler\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 01:48:20 40048] R3 RT80x86;Ralink 802.11n Wireless Driver;C:\WINDOWS\system32\DRIVERS\RT2860.sys [2007-03-13 01:07] S1 amdtools;AMD Special Tools Driver;C:\WINDOWS\system32\DRIVERS\amdtools.sys [] *Newly Created Service* - PROCEXP90 . Contents of the 'Scheduled Tasks' folder "2008-01-29 18:30:13 C:\WINDOWS\Tasks\SpeedFan.job" - C:\PROGRA~1\SpeedFan\speedfan.exe "2008-01-29 18:30:13 C:\WINDOWS\Tasks\µTorrent.job" - C:\PROGRA~1\uTorrent\uTorrent.exe . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-01-29 21:35:31 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2008-01-29 21:35:43
norbat Skrevet 29. januar 2008 Skrevet 29. januar 2008 Loggene dine ser fine ut. Ingen tegn på noe virus. Du kan imidlertid oppdatere java-en din: http://java.com/en/download/index.jsp Surf trygt!
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå