Portscanning

[Louise89]

Hej

Min dator verkar göra portscanning i mitt hemnätverk. Jag testade att göra en fullständig genomsökning med McAfee Security center, men den hittade inget konstigt. Vad ska jag göra?

Mvh Louise

 

 

DDS (Ver_10-11-08.01) - NTFS_AMD64

Run by Louise at 16:09:22,35 on 2010-11-08

Internet Explorer: 8.0.6001.18975 BrowserJavaVersion: 1.6.0_21

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.46.1053.18.4057.2692 [GMT 1:00]

 

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

 

============== Running Processes ===============

 

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\WLTRYSVC.EXE

C:\Windows\System32\bcmwltry.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe

C:\Windows\SysWOW64\svchost.exe -k Akamai

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Windows\system32\lxeacoms.exe

C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\RUNDLL32.EXE

C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe

C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Program Files\DellTPad\Apoint.exe

C:\Windows\system32\igfxsrvc.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\WLTRAY.EXE

C:\Program Files\DellTPad\ApMsgFwd.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\IDT\WDM\sttray64.exe

C:\Program Files (x86)\Lexmark S300-S400 Series\lxeamon.exe

C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe

C:\Program Files\DellTPad\HidFind.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\DellTPad\Apntex.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe

C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe

C:\Program Files (x86)\Net iD\iid.exe

C:\Program Files\McAfee.com\Agent\mcagent.exe

C:\Windows\explorer.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10h_ActiveX.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Louise\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XC8ULRS1\dds[1].scr

C:\Windows\SysWOW64\conime.exe

C:\Windows\system32\wbem\wmiprvse.exe

 

============== Pseudo HJT Report ===============

 

uStart Page = hxxp://www.google.se/

mWinlogon: Userinit=userinit.exe

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20100913211154.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Lexmark : {d2c5e510-be6d-42cc-9f61-e4f939078474} - C:\Program Files\Lexmark Printable Web\bho.dll

BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll

BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB: @C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll

TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe

mRun: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m

mRun: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume

mRun: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"

mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

mRun: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [Net iD] "C:\Program Files (x86)\Net iD\iid.exe"

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

StartupFolder: C:\Users\Louise\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Louise\AppData\Roaming\Dropbox\bin\Dropbox.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BANKID~1.LNK - C:\Program Files (x86)\Personal\bin\Personal.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: E&xportera till Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

Trusted Zone: studentportalen.uu.se

Trusted Zone: telia.com\cve.trust

Trusted Zone: webmail4.uu.se

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} - hxxp://gfx2.hotmail.com/mail/w4/m3/photouploadcontrol/VistaMSNPUpldsv-se.cab

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

{27B4851A-3207-45A2-B947-BE8AFE6163AB}

{7DB2D5A0-7241-4E79-B68D-6309F01C5231}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

mRun-x64: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

mRun-x64: [Apoint] C:\Program Files\DellTPad\Apoint.exe

mRun-x64: [igfxTray] C:\Windows\system32\igfxtray.exe

mRun-x64: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

mRun-x64: [Persistence] C:\Windows\system32\igfxpers.exe

mRun-x64: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"

mRun-x64: [broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe

mRun-x64: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe

mRun-x64: [iAAnotif] "C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe"

mRun-x64: [sysTrayApp] %ProgramFiles%\IDT\WDM\sttray64.exe

mRun-x64: [lxeamon.exe] "C:\Program Files (x86)\Lexmark S300-S400 Series\lxeamon.exe"

mRun-x64: [EzPrint] "C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe"

 

================= FIREFOX ===================

 

FF - ProfilePath - C:\Users\Louise\AppData\Roaming\Mozilla\Firefox\Profiles\o0epwdux.default\

FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.23\npGoogleOneClick8.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npiidplg.dll

FF - plugin: C:\Program Files (x86)\Personal\bin\np_prsnl.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

 

---- FIREFOX POLICIES ----

C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("browser.visited_color", "#551A8B");

C:\Program Files (x86)\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se");

C:\Program Files (x86)\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.videoFeeds.handler", "ask");

 

============= SERVICES / DRIVERS ===============

 

R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2010-9-13 528616]

R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2009-8-16 53488]

R1 mfenlfk;McAfee NDIS Light Filter;C:\Windows\System32\drivers\mfenlfk.sys [2010-9-13 75288]

R1 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2010-9-13 279752]

R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe [2009-8-16 89600]

R2 Akamai;Akamai NetSession Interface;C:\Windows\System32\svchost.exe -k Akamai [2008-1-21 27648]

R2 lxea_device;lxea_device;C:\Windows\system32\lxeacoms.exe -service --> C:\Windows\system32\lxeacoms.exe -service [?]

R2 McMPFSvc;McAfee Personal Firewall Service;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [2010-9-13 355440]

R2 McNaiAnn;McAfee VirusScan Announcer;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [2010-9-13 355440]

R2 McProxy;McAfee Proxy Service;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [2010-9-13 355440]

R2 McShield;McShield;C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe [2010-9-13 199032]

R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [2010-9-13 244840]

R2 mfevtp;McAfee Validation Trust Protection Service;C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-9-13 148520]

R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2009-8-16 636144]

R2 yksvc;Marvell Yukon Service;RUNDLL32.EXE ykx64coinst,serviceStartProc --> RUNDLL32.EXE ykx64coinst,serviceStartProc [?]

R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2010-9-13 62416]

R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2009-8-16 172032]

R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2010-9-13 189880]

R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2010-9-13 440688]

R3 OA009Ufd;Creative Camera OA009 Upper Filter Driver;C:\Windows\System32\drivers\OA009Ufd.sys [2009-3-6 159840]

R3 OA009Vid;Creative Camera OA009 Function Driver;C:\Windows\System32\drivers\OA009Vid.sys [2009-3-19 311296]

R3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk60x64.sys [2009-8-16 392192]

S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-1-24 135664]

S2 lxeaCATSCustConnectService;lxeaCATSCustConnectService;C:\Windows\System32\spool\drivers\x64\3\lxeaserv.exe [2010-1-15 33960]

S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-12-5 89920]

S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-9-2 1030600]

S3 FontCache;Windows Font Cache Service;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 27648]

S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\System32\drivers\mferkdet.sys [2010-9-13 93840]

S3 nmwcdcx64;Nokia USB Generic;C:\Windows\System32\drivers\ccdcmbox64.sys [2010-2-26 25088]

S3 nmwcdx64;Nokia USB Phone Parent;C:\Windows\System32\drivers\ccdcmbx64.sys [2010-2-26 19456]

S3 PerfHost;Värd för prestandaräknar-DLL;C:\Windows\SysWOW64\perfhost.exe [2008-1-21 19968]

 

=============== File Associations ===============

 

JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*

 

=============== Created Last 30 ================

 

2010-10-27 10:41:56 1927680 ----a-w- C:\Windows\System32\gameux.dll

2010-10-27 10:41:56 1696256 ----a-w- C:\Windows\SysWow64\gameux.dll

2010-10-27 10:41:55 4240384 ----a-w- C:\Windows\SysWow64\GameUXLegacyGDFs.dll

2010-10-27 10:41:55 4240384 ----a-w- C:\Windows\System32\GameUXLegacyGDFs.dll

2010-10-27 10:41:55 32256 ----a-w- C:\Windows\System32\Apphlpdm.dll

2010-10-27 10:41:55 28672 ----a-w- C:\Windows\SysWow64\Apphlpdm.dll

2010-10-14 14:35:56 8147456 ----a-w- C:\Windows\SysWow64\wmploc.DLL

2010-10-14 14:34:55 343040 ----a-w- C:\Windows\System32\schannel.dll

2010-10-14 14:34:55 274944 ----a-w- C:\Windows\SysWow64\schannel.dll

2010-10-14 14:34:53 867328 ----a-w- C:\Windows\SysWow64\wmpmde.dll

2010-10-14 14:34:53 1090048 ----a-w- C:\Windows\System32\wmpmde.dll

2010-10-12 16:20:51 -------- d-----w- C:\Windows\sv

2010-10-12 16:16:50 -------- d-----w- C:\Program Files (x86)\MSN Toolbar

2010-10-12 16:16:15 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll

2010-10-12 16:16:15 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll

2010-10-12 16:16:14 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll

2010-10-12 16:16:14 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll

2010-10-12 16:13:56 469256 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\754a97d01cb6a2809\InstallManager_WLE_WLE.exe

2010-10-12 16:13:41 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\6f319e701cb6a2808\DSETUP.dll

2010-10-12 16:13:41 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\6f319e701cb6a2808\DXSETUP.exe

2010-10-12 16:13:41 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\6f319e701cb6a2808\dsetup32.dll

2010-10-12 16:13:25 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\648f4c601cb6a2807\DSETUP.dll

2010-10-12 16:13:25 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\648f4c601cb6a2807\DXSETUP.exe

2010-10-12 16:13:25 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\648f4c601cb6a2807\dsetup32.dll

2010-10-12 16:13:22 6260088 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\61e366401cb6a2806\Silverlight.4.0.exe

2010-10-12 16:12:30 -------- d-----w- C:\Users\Louise\AppData\Local\Windows Live

 

==================== Find3M ====================

 

2010-09-22 22:47:28 49016 ----a-w- C:\Windows\SysWow64\sirenacm.dll

2010-09-22 22:32:56 301936 ----a-w- C:\Windows\WLXPGSS.SCR

2010-09-13 14:32:37 8147968 ----a-w- C:\Windows\System32\wmploc.DLL

2010-09-08 06:41:05 1147904 ----a-w- C:\Windows\System32\wininet.dll

2010-09-08 06:36:53 56832 ----a-w- C:\Windows\System32\licmgr10.dll

2010-09-08 06:36:38 1538560 ----a-w- C:\Windows\System32\inetcpl.cpl

2010-09-08 06:36:24 132096 ----a-w- C:\Windows\System32\iesysprep.dll

2010-09-08 06:36:23 77312 ----a-w- C:\Windows\System32\iesetup.dll

2010-09-08 06:01:28 916480 ----a-w- C:\Windows\SysWow64\wininet.dll

2010-09-08 05:57:18 43520 ----a-w- C:\Windows\SysWow64\licmgr10.dll

2010-09-08 05:57:05 1469440 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2010-09-08 05:56:53 71680 ----a-w- C:\Windows\SysWow64\iesetup.dll

2010-09-08 05:56:53 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll

2010-09-08 05:36:07 479232 ----a-w- C:\Windows\System32\html.iec

2010-09-08 05:04:36 385024 ----a-w- C:\Windows\SysWow64\html.iec

2010-09-08 04:51:18 162816 ----a-w- C:\Windows\System32\ieUnatt.exe

2010-09-08 04:49:56 1638912 ----a-w- C:\Windows\System32\mshtml.tlb

2010-09-08 04:26:46 133632 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2010-09-08 04:25:15 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2010-09-06 18:28:38 179712 ----a-w- C:\Windows\System32\srvsvc.dll

2010-09-06 18:28:38 12288 ----a-w- C:\Windows\System32\sscore.dll

2010-09-06 18:27:03 17920 ----a-w- C:\Windows\System32\netevent.dll

2010-09-06 16:20:29 9728 ----a-w- C:\Windows\SysWow64\sscore.dll

2010-09-06 16:19:06 17920 ----a-w- C:\Windows\SysWow64\netevent.dll

2010-09-06 15:34:14 451584 ----a-w- C:\Windows\System32\drivers\srv.sys

2010-09-06 15:33:51 175104 ----a-w- C:\Windows\System32\drivers\srv2.sys

2010-09-06 15:33:49 145920 ----a-w- C:\Windows\System32\drivers\srvnet.sys

2010-09-03 09:32:24 423656 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2010-08-31 17:27:07 633856 ----a-w- C:\Windows\System32\comctl32.dll

2010-08-31 15:46:37 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll

2010-08-31 15:46:37 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll

2010-08-31 15:44:31 531968 ----a-w- C:\Windows\SysWow64\comctl32.dll

2010-08-31 14:57:39 2753024 ----a-w- C:\Windows\System32\win32k.sys

2010-08-26 17:46:52 189952 ----a-w- C:\Windows\System32\t2embed.dll

2010-08-26 17:40:08 100352 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll

2010-08-26 17:40:07 331776 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll

2010-08-26 17:40:07 284672 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll

2010-08-26 16:37:45 157184 ----a-w- C:\Windows\SysWow64\t2embed.dll

2010-08-26 16:33:06 173056 ----a-w- C:\Windows\apppatch\AcXtrnal.dll

2010-08-26 16:33:04 542720 ----a-w- C:\Windows\apppatch\AcLayers.dll

2010-08-26 16:33:04 458752 ----a-w- C:\Windows\apppatch\AcSpecfc.dll

2010-08-26 16:33:04 2159616 ----a-w- C:\Windows\apppatch\AcGenral.dll

2010-08-17 14:54:20 273920 ----a-w- C:\Windows\System32\spoolsv.exe

 

============= FINISH: 16:10:41,47 ===============

Attach.txt

[Cecilia]

Vad är det som får dig att tro att datorn gör portskanning?

 

Jag ser inget skadligt i loggen, men det finns mycket skadligt som inte syns i en DDS-logg. Däremot har du en del program i gamla versioner med säkerhetshål.

[Louise89]

ZoneAlarm på den andra datorn stoppade försök till portscanning kl 23.30 i fredags (5/11)

 

 

[Cecilia]

Är det enda gången som ZoneAlarm har stoppat portskanning?

Kan du klistra in meddelandet från ZoneAlarm?

[Louise89]

192.168.0.67 är min dator, 192.168.0.70 är den andra. Jag var bara där på besök, därför har det inte haft möjlighet att hända tidigare.

Jag bifogar skärmdumpar från zone alarm

Utdrag fr..1.docx

[Cecilia]

Jag har inte MS Office utan OpenOffice.org och den klarar inte av att visa skärmdumparna i dokumentet. Det bör gå bra att ladda upp skärmdumparna var för sig direkt i forumet utan att klistra in dem i ett dokument.

[Louise89]

Jag hittade inget sätt att ladda upp bilderna var för sig så jag sparade dokumentet som pdf istället. Kan du läsa det?

Utdrag fr..pdf

[Cecilia]

Pdf-filer går utmärkt, tack

 

Första och andra bilden visar att din dator försöker etablera ett lokalt nätverk med fil- och skrivardelning med den andra datorn. Således inget att bekymra sig för.

 

-----------

Eftersom det inte beror på något skadligt program flyttar jag tråden från "Virus, skadliga program & botemedel" till "Brandväggar".

 

Cecilia

Moderator

[Louise89]

Tack så mycket. Då är jag lugn