Just nu i M3-nätverket
Jump to content

Är Adware.PTech virus?


Din_Parla

Recommended Posts

Hej!

 

När jag scannade med Super AntiSpyware så hittade den nåt som hette Adware.PTech.

Är detta ett virus och vad ska jag i så fall göra?

 

 

Tacksam för svar!

 

Mvh Annika

 

Här kommer loggarna:

 

DDS logg:

 

DDS (Ver_10-11-26.01) - NTFS_AMD64

Run by Annika at 11:16:57,57 on 2010-11-26

Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_22

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.46.1053.18.3067.1715 [GMT 1:00]

 

SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}

 

============== Running Processes ===============

 

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\atieclxx.exe

C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

C:\Windows\system32\WLANExt.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\taskhost.exe

C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

C:\Program Files (x86)\Launch Manager\dsiwmis.exe

C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe

C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe

C:\Program Files (x86)\iWin Games\iWinTrusted.exe

C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Windows\PLFSetI.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe

C:\Windows\WindowsMobile\wmdc.exe

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe

C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe

C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe

C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe

C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin

C:\Windows\SysWOW64\IoctlSvc.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files (x86)\Launch Manager\LManager.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe

C:\Program Files (x86)\Launch Manager\LMworker.exe

C:\Program Files\Alwil Software\Avast5\AvastUI.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\svchost.exe -k WindowsMobile

C:\Windows\system32\SearchIndexer.exe

C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files\eMachines\eMachines Power Management\ePowerEvent.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\notepad.exe

C:\Windows\System32\notepad.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe

C:\Program Files (x86)\Windows Live\Companion\companionuser.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Users\Annika\Desktop\dds.scr

C:\Windows\system32\conhost.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

 

============== Pseudo HJT Report ===============

 

uStart Page = hxxp://www.nordea.se/

uDefault_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=041d&m=eme640g&r=273608104915l0474z1j5r4622r548

mDefault_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=041d&m=eme640g&r=273608104915l0474z1j5r4622r548

mStart Page = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=041d&m=eme640g&r=273608104915l0474z1j5r4622r548

mWinlogon: Userinit=userinit.exe

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

uRun: [skype] "C:\Program Files (x86)\Skype\\Phone\Skype.exe" /nosplash /minimized

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

uRun: [sony Ericsson PC Suite] "C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon

uRun: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020

mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

mRun: [NBKeyScan] "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

StartupFolder: C:\Users\Annika\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab

DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{AA58ED58-01DD-4d91-8333-CF10577473F7}

{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}

{2318C2B1-4965-11d4-9B18-009027A5CD4F}

TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

mRun-x64: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

mRun-x64: [PLFSetI] C:\Windows\PLFSetI.exe

mRun-x64: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

mRun-x64: [Acer ePower Management] C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe

mRun-x64: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe

 

================= FIREFOX ===================

 

FF - ProfilePath - C:\Users\Annika\AppData\Roaming\Mozilla\Firefox\Profiles\ng23ft0k.default\

FF - prefs.js: browser.startup.homepage - www.nordea.se

FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Sony\Media Go\npmediago.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

 

============= SERVICES / DRIVERS ===============

 

R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2010-10-3 121936]

R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2010-2-17 14920]

R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2010-2-17 12360]

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-14 59904]

R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2010-6-29 128752]

R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2010-4-7 202752]

R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2010-10-3 20048]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2010-10-3 61008]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-10-3 40384]

R2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-4-3 325200]

R2 ePowerSvc;Acer ePower Service;C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe [2010-6-1 866336]

R2 GREGService;GREGService;C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe [2010-1-8 23584]

R2 iWinTrusted;iWinTrusted;C:\Program Files (x86)\iWin Games\iWinTrusted.exe [2010-9-2 176408]

R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-6 144640]

R2 OMSI download service;Sony Ericsson OMSI download service;C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2010-9-25 90112]

R2 Updater Service;Updater Service;C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [2010-4-3 243232]

R3 amdkmdag;amdkmdag;C:\Windows\System32\drivers\atipmdag.sys [2010-4-7 6405632]

R3 amdkmdap;amdkmdap;C:\Windows\System32\drivers\atikmpag.sys [2010-4-7 188928]

R3 avast! Mail Scanner;avast! Mail Scanner;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-10-3 40384]

R3 avast! Web Scanner;avast! Web Scanner;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-10-3 40384]

R3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\k57nd60a.sys [2010-4-3 321064]

R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2010-6-1 38456]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Tjänsten Google Update (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-8-5 135664]

S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2010-10-21 48488]

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-22 1493352]

S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-6 50432]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2010-4-3 239136]

S3 WatAdminSvc;Aktiveringsteknologier för Windows-tjänst;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-8-6 1255736]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

 

=============== Created Last 30 ================

 

2010-11-26 09:23:44 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{8A041AD5-43D9-4427-9D3B-D60C2763BBF3}\mpengine.dll

2010-11-25 11:44:16 7680 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll

2010-11-25 11:44:16 7680 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll

2010-11-17 22:21:25 -------- d-----w- C:\Users\Annika\AppData\Local\Nero

2010-11-17 22:01:08 -------- d-----w- C:\Program Files (x86)\Nero

2010-11-17 21:53:46 1414440 ----a-w- C:\Windows\SysWow64\ShellManager310E2D762.dll

2010-11-17 21:47:43 -------- d-----w- C:\Users\Annika\AppData\Local\CrashDumps

2010-11-17 21:42:46 -------- d-----w- C:\Users\Annika\AppData\Local\Ahead

2010-11-17 21:42:45 -------- d-----w- C:\Program Files (x86)\NeroInstall.bak

2010-11-16 20:32:45 -------- d-----w- C:\Users\Annika\AppData\Roaming\OpenOffice.org

2010-11-16 20:30:48 -------- d-----w- C:\Program Files (x86)\JRE

2010-11-16 20:30:45 -------- d-----w- C:\Program Files (x86)\OpenOffice.org 3

2010-11-14 10:58:06 -------- d-----w- C:\Poker

2010-11-06 10:37:34 103864 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll

2010-11-06 10:37:34 103864 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll

2010-11-01 20:54:46 -------- d-----w- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)

2010-10-27 19:05:57 961024 ----a-w- C:\Windows\System32\CPFilters.dll

2010-10-27 19:05:57 641536 ----a-w- C:\Windows\SysWow64\CPFilters.dll

2010-10-27 19:05:57 552960 ----a-w- C:\Windows\System32\msdri.dll

2010-10-27 19:05:57 288256 ----a-w- C:\Windows\System32\MSNP.ax

2010-10-27 19:05:57 258560 ----a-w- C:\Windows\System32\mpg2splt.ax

2010-10-27 19:05:57 204288 ----a-w- C:\Windows\SysWow64\MSNP.ax

2010-10-27 19:05:57 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax

2010-10-27 18:59:09 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys

 

==================== Find3M ====================

 

2010-10-19 09:41:44 270720 ------w- C:\Windows\System32\MpSigStub.exe

2010-09-25 15:52:15 148736 ----a-w- C:\PROGRA~3\hpe3A71.dll

2010-09-22 22:47:28 49016 ----a-w- C:\Windows\SysWow64\sirenacm.dll

2010-09-22 22:36:48 48488 ----a-w- C:\Windows\System32\drivers\fssfltr.sys

2010-09-22 22:32:56 301936 ----a-w- C:\Windows\WLXPGSS.SCR

2010-09-21 12:49:02 252800 ----a-w- C:\Windows\System32\LIVESSP.DLL

2010-09-21 12:03:14 208768 ----a-w- C:\Windows\SysWow64\LIVESSP.DLL

2010-09-15 03:50:37 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2010-09-10 05:35:44 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll

2010-09-10 05:35:43 347648 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll

2010-09-08 05:36:17 1192960 ----a-w- C:\Windows\System32\wininet.dll

2010-09-08 05:34:34 57856 ----a-w- C:\Windows\System32\licmgr10.dll

2010-09-08 04:30:04 978432 ----a-w- C:\Windows\SysWow64\wininet.dll

2010-09-08 04:28:15 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll

2010-09-08 04:16:38 482816 ----a-w- C:\Windows\System32\html.iec

2010-09-08 03:35:30 1638912 ----a-w- C:\Windows\System32\mshtml.tlb

2010-09-08 03:22:31 386048 ----a-w- C:\Windows\SysWow64\html.iec

2010-09-08 02:48:16 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2010-09-07 15:12:17 38848 ----a-w- C:\Windows\avastSS.scr

2010-09-07 14:47:33 61008 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2010-09-01 05:12:09 12625920 ----a-w- C:\Windows\System32\wmploc.DLL

2010-09-01 04:23:49 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL

2010-09-01 02:58:34 3123712 ----a-w- C:\Windows\System32\win32k.sys

2010-08-31 04:32:30 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll

2010-08-31 04:32:30 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll

 

============= FINISH: 11:17:45,56 ===============

 

 

Super AntiSpyware logg:

Generated 11/26/2010 at 10:38 AM

 

Application Version : 4.41.1000

 

Core Rules Database Version : 5917

Trace Rules Database Version: 3729

 

Scan type : Complete Scan

Total Scan Time : 00:49:31

 

Memory items scanned : 503

Memory threats detected : 0

Registry items scanned : 14751

Registry threats detected : 1

File items scanned : 32373

File threats detected : 22

 

Adware.Tracking Cookie

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\annika@serving-sys[1].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\annika@bs.serving-sys[1].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\annika@atdmt[1].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\annika@adform[1].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\annika@track.adform[2].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\annika@imrworldwide[2].txt

aka-cdn-ns.adtech.de [ C:\Users\Annika\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\6KFCBLFD ]

ia.media-imdb.com [ C:\Users\Annika\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\6KFCBLFD ]

media1.break.com [ C:\Users\Annika\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\6KFCBLFD ]

msnbcmedia.msn.com [ C:\Users\Annika\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\6KFCBLFD ]

track.adform.net [ C:\Users\Annika\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\6KFCBLFD ]

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\annika@serving-sys[2].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\Low\annika@nordea.112.2o7[1].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\Low\annika@atdmt[2].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\Low\annika@adform[1].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\Low\annika@track.adform[2].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\Low\annika@adtech[1].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\Low\annika@statse.webtrendslive[2].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\Low\annika@doubleclick[1].txt

C:\Users\Annika\AppData\Roaming\Microsoft\Windows\Cookies\Low\annika@adinterax[2].txt

statse.webtrendslive.com [ C:\Users\Annika\AppData\Roaming\Mozilla\Firefox\Profiles\ng23ft0k.default\cookies.sqlite ]

.nordea.112.2o7.net [ C:\Users\Annika\AppData\Roaming\Mozilla\Firefox\Profiles\ng23ft0k.default\cookies.sqlite ]

 

Adware.PTech

(x86) HKU\S-1-5-21-318746574-1472847776-676579199-1000\Software\PTech

 

Attach.txt

Link to comment
Share on other sites

SUPERAntiSpywares förklaring http://www.fileresearchcenter.com/A/ATINMA.EXE-4746.html men i ditt fall är det ingen fil utan bara en rad i registret. Kanske någon rest efter en avinstallation?

 

Jag kan inte se något skadligt i DDS-loggarna.

 

Avinstallera Java™ 6 Update 18 med alla webbläsare avstängda. Starta sedan Firefox och kontrollera i Verktyg - Tillägg - Insticksmoduler att det bara finns Java-insticksmoduler som innehåller antingen 6 U22 eller 6.0.220 i namnet. Om där finns kvar något av tidigare version så inaktivera dem.

Link to comment
Share on other sites

Har avinstallerat java 6 update 18 och kollat Java-insticksmodulerna.

Ska jag låta Super AntiSpyware lägga Adware.PTech i karantän och sen ta bort den eller ska den finnas kvar+

 

Tack för hjälpen!

 

//Annika

Link to comment
Share on other sites

Låt du SUPERAntiSpyware lägga Adware.PTech i karantän och om någon vecka när du ser att inget program klagar på att det saknas något kan du ta bort den ur karantänen.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.



×
×
  • Create New...