Just nu i M3-nätverket
Gå till innehåll

adense

Medlem
  • Antal inlägg

    3
  • Gick med

  • Senaste besök

  1. Okej, tack så väldigt mycket. Jag ska pröva detta. Bara en snabb fråga dock, gör det någon skillnad ifall man startar Farbar direkt från skrivbordet (om man sparar filen där),eller måste den startas från ett USB-minne? Och isåfall, vad är det som gör att detta krävs? (bara lite intresserad, försöker lära mig)
  2. Okej tack för instruktionerna! Resultatet från RogueKiller är detta: ----------------------------------------------------------------------------------------------------------- RogueKiller V8.4.2 _x64_ [Dec 31 2012] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo...13-roguekiller/ Website : http://tigzy.geeksto...roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : STX Admin [Admin rights] Mode : Scan -- Date : 01/01/2013 21:41:46 ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 4 ¤¤¤ [HJ DESK] HKCU\[...]\Services\Microsoft\ClassicStartMenu : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> FOUND [HJ DESK] HKCU\[...]\Services\Microsoft\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\Services\Microsoft\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\Services\Microsoft\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED] ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 ereg.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 wip3.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 adobe-dns.adobe.com 127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com 127.0.0.1 ereg.wip3.adobe.com 127.0.0.1 activate-sea.adobe.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 adobe.activate.com 127.0.0.1 adobeereg.com 127.0.0.1 www.adobeereg.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 125.252.224.90 127.0.0.1 125.252.224.91 [...] ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: OCZ-AGILITY3 +++++ --- User --- [MBR] fa2e2bdfe1037cacdb90fb857db71e5c [bSP] c88308535db8373eca071caa5632c90d : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 200 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 411648 | Size: 57040 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: WDC WD10EARX-00N0YB0 +++++ --- User --- [MBR] 5b1057f739199aa782abde507e0cdec2 [bSP] f53de617518cb8dbf2e389fab32f6a25 : Windows 7/8 MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 953867 Mo User = LL1 ... OK! User = LL2 ... OK! Finished : << RKreport[1]_S_01012013_02d2141.txt >> RKreport[1]_S_01012013_02d2141.txt ----------------------------------------------------------------------------------------------------------- Och här följer även resultatet från ESET Online Scanner: C:\ProgramData\dsgsdgdsgdsgw.js JS/Agent.NID trojan C:\Users\All Users\dsgsdgdsgdsgw.js JS/Agent.NID trojan C:\Users\STX Admin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\44e6492-3fe68fde Java/Agent.FH trojan C:\Users\STX Admin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\630be71e-16858c00 a variant of Java/Exploit.CVE-2012-4681.CD trojan (Kan tillägga att datum då dessa filer lades till i min dator stämmer exakt överrens med när jag tror mig ha fått viruset) Vad rekommenderar du att jag nu gör? EDIT: Jag tog manuellt bort (SHIFT+DEL) de filer som ESET hittade. Där fanns även några filer som inte gav utslag i samma mapp, som lagts till exakt vid samma tidpunkt, så jag tog bort dom också. Scannade med ESET igen, och nu hittar den ingenting alls. Men jag har som sagt fortfarande ingen aning om dator är säker.
  3. Hej! För två dagar sen råkade jag klicka på en länk som ledde mig in på en sida, vilket i sin tur ledde till att en sorts "polisvarning" dök upp och täckte hela skärmen. Kan ej minnas om den var på svenska eller engelska då jag snabbt använde mig genast av CTRL+ALT+DEL och valde i menyn som dyker upp (Windows 7) att Logga ut från min användare. Detta lyckades, och jag loggade in igen. Allt verkade fungera som vanligt. Jag körde en scan med Norman och hittade 2 eller 3 filer, vilka sattes i karantän. Sedan tänkte jag inte mer på det. Tidigare idag, dock, upptäckte jag att när jag startade Aktivitetshanteraren så stängdes den av direkt igen. Jag scannade igen och hittade filen "WGSDGSDGDSGSD.DLL". Norman kunde inte ta bort den. Jag laddade sedan ner MalwareByte och scannade med det. Den hittade några dll filer till som oskadliggjordes, men tog INTE bort "WGSDGSDGDSGSD.DLL". Jag laddade sen ner "SUPERAntiSpyware Free Edition" och aktiverade en Trial på betalversionen. Jag scannade sedan med denna, hittade några smågrejer (inget allvarligt tror jag, ca 135st). Detta program tog även bort "WGSDGSDGDSGSD.DLL". Aktivitetshanteraren funger nu utan problem. Jag har kört scanner igen med dessa program, de hittar ingenting. Har även rensat registret och bland filer med CCleaner. Installerade om Java också, då jag misstänkte att det kanske var ett Java-script som fixade in viruset. Sist men inte minst använde jag DDS och fick dessa resultat: DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.9.2 Run by STX Admin at 18:25:52 on 2013-01-01 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.46.1053.18.8169.6029 [GMT 1:00] . AV: Norman Security Suite *Enabled/Updated* {D038CA80-26F3-90BF-94AA-03C4D945E661} SP: Norman Security Suite *Enabled/Updated* {6B592B64-00C9-9F31-AE1A-38B6A2C2ACDC} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files\Norman\Npm\Bin\elogsvc.exe C:\Program Files\Norman\Ngs\Bin\Nnf.exe C:\Windows\system32\nvvsvc.exe C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\Norman\Npm\Bin\Zanda.exe C:\Program Files\Norman\npm\bin\nvoy.exe C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\Explorer.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Bluetooth Suite\adminservice.exe C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe C:\Program Files\Norman\Nvc\bin\nhs.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Program Files\Cyberlink\Shared files\RichVideo64.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Windows\system32\WUDFHost.exe C:\Program Files\Norman\Npm\Bin\zlh.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\svchost.exe -k bthsvcs C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Norman\Npm\Bin\scheduler.exe C:\Program Files\Norman\Npm\Bin\Njeeves.exe C:\Program Files\Norman\Nse\Bin\NSESVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files\Norman\Nvc\Bin\nvcoas.exe C:\Program Files\Norman\Nvc\Bin\cclaw.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Windows\system32\wuauclt.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\taskeng.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\STX Admin\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.liontech.se uDefault_Page_URL = hxxp://www.liontech.se uURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll mURLSearchHooks: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll mWinlogon: Userinit = userinit.exe, BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll TB: uTorrentBar Toolbar: {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files (x86)\uTorrentBar\prxtbuTo0.dll uRun: [Google Update] "C:\Users\STX Admin\AppData\Local\Google\Update\GoogleUpdate.exe" /c uRun: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart uRun: [AdobeBridge] <no file> mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [Norman ZANDA] "C:\Program Files\Norman\Npm\Bin\ZLH.EXE" /LOAD /SPLASH mRun: [VersionCheck] "C:\Program Files (x86)\Onlineeye Pro\vcheck.exe" mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab TCP: NameServer = 130.244.127.161 130.244.127.169 TCP: Interfaces\{74F67721-03A1-4B43-AC3F-62AC73AAAE64} : DHCPNameServer = 130.244.127.161 130.244.127.169 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll SSODL: WebCheck - <orphaned> x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s x64-Run: [AtherosBtStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" x64-Run: [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe" x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-SSODL: WebCheck - <orphaned> . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\STX Admin\AppData\Roaming\Mozilla\Firefox\Profiles\zzz55jsn.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.icefilms.info/tv/series/1/175.html FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll FF - plugin: C:\Users\STX Admin\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: C:\Users\STX Admin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll FF - plugin: C:\Windows\SysWOW64\npmproxy.dll . ============= SERVICES / DRIVERS =============== . R0 mv91xx;mv91xx;C:\Windows\System32\drivers\mv91xx.sys [2010-11-22 303408] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2011-12-12 279616] R1 NGS;Norman General Security Driver;C:\Program Files\Norman\Ngs\Bin\ngs64.sys [2012-6-1 22368] R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928] R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368] R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2012-7-11 140672] R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2010-10-27 52896] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-10 13336] R2 NHS;Norman Hash Server;C:\Program Files\Norman\Nvc\Bin\nhs.exe [2012-6-2 793520] R2 NNFSVC;Norman Network Filtering service;C:\Program Files\Norman\Ngs\Bin\nnf.exe [2012-6-1 231216] R2 Norman ZANDA;Norman ZANDA;C:\Program Files\Norman\Npm\Bin\zanda.exe [2012-6-1 431320] R2 nregsec;Norman Registry Security driver;C:\Program Files\Norman\Ngs\Bin\nregsec64.sys [2012-6-1 63032] R2 NVOY;Norman Resource Provider;C:\Program Files\Norman\Npm\Bin\nvoy.exe [2012-6-1 100936] R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS);C:\Program Files\Cyberlink\Shared files\RichVideo64.exe [2012-7-10 386344] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-5-15 382272] R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-2-24 126952] R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-2-24 389608] R3 AthBTPort;Atheros Virtual Bluetooth Class;C:\Windows\System32\drivers\btath_flt.sys [2010-10-27 38248] R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\System32\drivers\btath_a2dp.sys [2010-10-27 301680] R3 BTATH_BUS;Atheros Bluetooth Bus;C:\Windows\System32\drivers\btath_bus.sys [2010-10-27 31080] R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\drivers\btath_hcrp.sys [2010-10-27 203624] R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\drivers\btath_lwflt.sys [2010-10-27 58992] R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\System32\drivers\btath_rcp.sys [2010-10-27 156520] R3 BtFilter;BtFilter;C:\Windows\System32\drivers\btfilter.sys [2010-10-27 279152] R3 nsesvc;Norman Scanner Engine Service;C:\Program Files\Norman\Nse\Bin\nsesvc.exe [2012-8-22 426344] R3 NvcMFlt;NvcMFlt;C:\Windows\System32\drivers\nvcv64mf.sys [2012-9-12 57952] R3 nvcoas;Norman Virus Control on-access component;C:\Program Files\Norman\Nvc\Bin\nvcoas.exe [2012-7-4 287312] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240] R3 Scheduler;Norman Scheduler Service;C:\Program Files\Norman\Npm\Bin\scheduler.exe [2012-6-1 148240] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944] S3 androidusb;ADB Interface Driver;C:\Windows\System32\drivers\androidusb.sys [2010-10-18 38424] S3 ATHDFU;Atheros Valkyrie USB BootROM;C:\Windows\System32\drivers\AthDfu.sys [2010-10-27 55336] S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver;C:\Windows\System32\drivers\nvstusb.sys [2011-7-22 277096] S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392] S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 WatAdminSvc;Aktiveringsteknologier för Windows-tjänst;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-12-9 1255736] S3 zghsmdm;ZTE General Handset USB Modem Proprietary;C:\Windows\System32\drivers\zghsmdm.sys [2011-1-13 122624] . =============== Created Last 30 ================ . 2013-01-01 17:03:52 -------- d-----w- C:\Users\STX Admin\AppData\Roaming\SUPERAntiSpyware.com 2013-01-01 17:03:49 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com 2013-01-01 17:03:49 -------- d-----w- C:\Program Files\SUPERAntiSpyware 2013-01-01 16:28:57 -------- d-----w- C:\Users\STX Admin\AppData\Roaming\Malwarebytes 2013-01-01 16:28:13 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-01-01 16:28:13 -------- d-----w- C:\ProgramData\Malwarebytes 2013-01-01 16:28:13 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-01-01 16:27:57 -------- d-----w- C:\Users\STX Admin\AppData\Local\Programs 2012-12-23 12:45:42 55808 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\ZIMFPRNT.DLL . ==================== Find3M ==================== . 2012-11-01 10:53:26 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-11-01 10:53:26 696760 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe . ============= FINISH: 18:25:59,45 =============== OCH . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 2011-12-06 18:14:40 System Uptime: 2013-01-01 18:01:14 (0 hours ago) . Motherboard: ASUSTeK Computer INC. | | P8P67 REV 3.1 Processor: Intel® Core™ i7-2600 CPU @ 3.40GHz | LGA1155 | 3401/100mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 56 GiB total, 7,513 GiB free. D: is FIXED (NTFS) - 932 GiB total, 339,242 GiB free. E: is CDROM () F: is Removable G: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . Update for Microsoft Office 2007 (KB2508958) Adobe After Effects CS6 Adobe AIR Adobe Flash Player 11 ActiveX 64-bit Adobe Flash Player 11 Plugin Adobe Help Manager Adobe Media Player Adobe Photoshop CS5 Adobe Reader X (10.1.4) - Svenska Advertising Center Amnesia - The Dark Descent Angry Birds Space Apple Application Support Apple Software Update Art Effects for PDR10 Asmedia ASM104x USB 3.0 Host Controller Driver µTorrent Audacity 1.3.14 (Unicode) Auslogics BoostSpeed Auslogics Disk Defrag Bluetooth Win7 Suite (64) CCleaner ConvertHelper 2.2 Creation Kit CryEngine®2 Sandbox™2 Crysis® Crysis® 2 CyberLink Holiday Pack Vol. 3 CyberLink PowerDirector 10 CyberLink PowerDirector 10 Content Pack II CyberLink WaveEditor D3DX10 DAEMON Tools Lite DivX Web Player DolbyFiles Fraps (remove only) Free Window Registry Repair Google Chrome Google Drive Google Earth Google Update Helper HD Tune Pro 5.00 ImagXpress Intel® Management Engine Components Intel® Rapid Storage Technology Java 7 Update 9 Java Auto Updater Java™ 6 Update 30 LAME v3.99.3 (for Windows) Malwarebytes Anti-Malware version 1.70.0.1100 marvell 91xx driver Mass Effect Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile Language Pack - SVE Microsoft .NET Framework 4 Client Profile SVE Language Pack Microsoft Application Error Reporting Microsoft Games for Windows - LIVE Redistributable Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Swedish) 2007 Microsoft Office Excel 2007 Help Uppdatering (KB963678) Microsoft Office Excel MUI (English) 2007 Microsoft Office Excel MUI (Swedish) 2007 Microsoft Office Groove MUI (Swedish) 2007 Microsoft Office InfoPath MUI (Swedish) 2007 Microsoft Office Language Pack 2007 - Swedish/svenska Microsoft Office O MUI (Swedish) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office OneNote MUI (Swedish) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office Outlook MUI (Swedish) 2007 Microsoft Office Powerpoint 2007 Help Uppdatering (KB963669) Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office PowerPoint MUI (Swedish) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (Finnish) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proof (Swedish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing (Swedish) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Swedish) 2007 Microsoft Office Shared 64-bit MUI (English) 2007 Microsoft Office Shared 64-bit MUI (Swedish) 2007 Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared MUI (Swedish) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) Microsoft Office SharePoint Designer MUI (Swedish) 2007 Microsoft Office Standard 2007 Microsoft Office Visio 2007 Service Pack 3 (SP3) Microsoft Office Visio Language Pack 2007 - Swedish/svenska Microsoft Office Visio MUI (English) 2007 Microsoft Office Visio MUI (Swedish) 2007 Microsoft Office Visio Standard 2007 Microsoft Office VisMUI (Swedish) 2007 Microsoft Office Word 2007 Help Uppdatering (KB963665) Microsoft Office Word MUI (English) 2007 Microsoft Office Word MUI (Swedish) 2007 Microsoft Office X MUI (Swedish) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft_VC80_ATL_x86_x64 Microsoft_VC80_CRT_x86 Microsoft_VC80_CRT_x86_x64 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFC_x86_x64 Microsoft_VC80_MFCLOC_x86 Microsoft_VC80_MFCLOC_x86_x64 Microsoft_VC90_ATL_x86 Microsoft_VC90_ATL_x86_x64 Microsoft_VC90_CRT_x86 Microsoft_VC90_CRT_x86_x64 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFC_x86_x64 MIKSOFT Mobile Media Converter Minecraft Cracked Morrowind Mozilla Firefox 15.0.1 (x86 en-US) Mozilla Maintenance Service MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 9 Essentials Nero BurnRights Nero BurnRights Help Nero ControlCenter Nero CoverDesigner Nero CoverDesigner Help Nero Disc Copy Gadget Nero Disc Copy Gadget Help Nero DiscSpeed Nero DiscSpeed Help Nero DriveSpeed Nero DriveSpeed Help Nero Express Help Nero InfoTool Nero InfoTool Help Nero Installer Nero Online Upgrade Nero PhotoSnap Nero PhotoSnap Help Nero Recode Nero Recode Help Nero ShowTime Nero StartSmart Nero StartSmart Help Nero StartSmart OEM Nero Vision Nero Vision Help NeroExpress neroxml Nexus Mod Manager NifSkope (remove only) Norman Security Suite Notepad++ NVIDIA-uppdatering 1.8.15 NVIDIA 3D Vision Controller Driver NVIDIA 3D Vision drivrutin 301.42 NVIDIA 3D Vision drivrutin för styrenhet 301.42 NVIDIA Grafikdrivrutin 301.42 NVIDIA HD audiodrivrutin 1.3.16.0 NVIDIA Install Application NVIDIA Photoshop Plug-ins 64 bit NVIDIA PhysX NVIDIA PhysX systemprogramvara 9.12.0213 NVIDIA Stereoscopic 3D Driver NVIDIA Update Components NVIDIAs kontrollpanel 301.42 Onlineeye Pro Pando Media Booster PDF reDirect (remove only) PDF Settings CS5 Prototype™ PunkBuster Services QuickTime Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile Language Pack - SVE (KB2518870) Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition Skype™ 5.10 SmartSound Quicktracks 5 Steam SUPERAntiSpyware TES Construction Set The Elder Scrolls V: Skyrim Unity Web Player Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Visio 2007 Help (KB963666) Update for Microsoft Office Word 2007 Help (KB963665) uTorrentBar Toolbar Warcraft III Warcraft III: All Products VC80CRTRedist - 8.0.50727.762 Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Messenger Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack WinRAR archiver VLC media player 2.0.2 . ==== End Of File =========================== Det jag nu undrar är om min dator är säker. Tror ni att det fortfarande kan finnas något virus/trojan/keylogger/vad vet jag kvar på datorn? Bör jag vidta fler åtgärder? Tack på förhand!
×
×
  • Skapa nytt...