Combofixin logi (tarkistakaa äkkiä!)

Discussion in 'Virukset ja haittaohjelmat - HijackThis -logit' started by peijooni, Jan 7, 2008.

  1. peijooni

    peijooni Member

    Joined:
    Oct 31, 2007
    Messages:
    56
    Likes Received:
    0
    Trophy Points:
    16
    tuli ny vähän väärään paikkaan,mut en tiä minne muuallekkaa vois näitä combofixin logeja laittaa.

    ComboFix 08-01-07.5 - SANE 2008-01-07 19:33:03.1 - NTFSx86
    Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.603 [GMT 2:00]
    Running from: C:\Documents and Settings\SANE\Desktop\ComboFix.exe
    * Created a new restore point
    .

    ((((((((((((((((((((((((( Files Created from 2007-12-07 to 2008-01-07 )))))))))))))))))))))))))))))))
    .

    2008-01-07 19:29 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe
    2008-01-06 15:33 . 2008-01-06 21:57 22,328 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys
    2008-01-06 15:32 . 2008-01-06 21:57 107,832 --a------ C:\WINDOWS\system32\PnkBstrB.exe
    2008-01-06 15:32 . 2008-01-06 15:32 66,872 --a------ C:\WINDOWS\system32\PnkBstrA.exe
    2008-01-06 13:45 . 2008-01-06 13:45 <DIR> d-------- C:\Documents and Settings\turpiin jos poistat\Application Data\MailFrontier
    2008-01-05 17:15 . 2004-08-04 09:56 15,360 --a--c--- C:\WINDOWS\system32\dllcache\ctfmon.exe.backup
    2008-01-05 16:24 . 1998-02-06 21:37 299,520 --a------ C:\WINDOWS\uninst.exe
    2008-01-05 16:23 . 2008-01-05 16:23 <DIR> d-------- C:\Documents and Settings\SANE\WINDOWS
    2008-01-05 14:44 . 2004-08-04 09:56 15,360 --a------ C:\WINDOWS\system32\ctfmon.exe.backup
    2008-01-04 19:01 . 2008-01-04 19:01 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
    2008-01-04 14:38 . 2008-01-04 14:38 <DIR> d-------- C:\Documents and Settings\SANE\Application Data\MailFrontier
    2008-01-04 14:35 . 2008-01-07 09:22 514,080 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
    2008-01-04 14:35 . 2008-01-07 09:22 6,920 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
    2008-01-04 14:25 . 2008-01-04 19:17 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\MailFrontier
    2008-01-04 14:25 . 2007-11-14 16:05 75,248 --a------ C:\WINDOWS\zllsputility.exe
    2008-01-04 14:25 . 2004-04-27 04:40 11,264 --a------ C:\WINDOWS\system32\SpOrder.dll
    2008-01-04 14:25 . 2008-01-07 18:44 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
    2008-01-04 14:22 . 2008-01-07 19:20 <DIR> d-------- C:\WINDOWS\Internet Logs
    2008-01-04 01:31 . 2008-01-04 12:31 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SecTaskMan
    2008-01-03 17:42 . 2008-01-04 12:12 4,194,426 --a------ C:\WINDOWS\pfirewall.log.old
    2008-01-03 17:26 . 2008-01-03 17:26 273 --a------ C:\WINDOWS\game.ini
    2007-12-31 12:50 . 2008-01-02 15:23 <DIR> d-------- C:\Documents and Settings\SANE\Application Data\Xfire
    2007-12-29 19:40 . 2007-12-29 19:40 <DIR> d-------- C:\Documents and Settings\turpiin jos poistat\Application Data\Comodo
    2007-12-29 15:03 . 2008-01-03 17:47 <DIR> d-------- C:\Documents and Settings\SANE\Application Data\Comodo
    2007-12-29 15:03 . 2008-01-03 17:47 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\comodo
    2007-12-27 14:47 . 2007-12-27 14:47 <DIR> dr-h----- C:\Documents and Settings\turpiin jos poistat\Application Data\SecuROM
    2007-12-26 23:29 . 2007-12-26 23:29 <DIR> d-------- C:\Documents and Settings\SANE\Application Data\BWMeterPro
    2007-12-26 14:24 . 2007-12-26 14:24 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\{0B9E3B72-FCE7-4B76-9F99-94E66A8C5760}
    2007-12-26 14:23 . 2007-12-26 14:23 <DIR> d-------- C:\Documents and Settings\SANE\Application Data\Seven Zip
    2007-12-26 14:20 . 1999-12-17 10:13 86,016 --a------ C:\WINDOWS\unvise32.exe
    2007-12-25 11:40 . 2007-12-25 11:47 <DIR> d-------- C:\Documents and Settings\SANE\OngameNetwork
    2007-12-24 15:17 . 2007-12-24 15:17 <DIR> dr-h----- C:\Documents and Settings\SANE\Application Data\SecuROM
    2007-12-24 15:17 . 2007-12-24 15:17 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll
    2007-12-24 14:50 . 2007-12-24 14:50 <DIR> d-------- C:\Program Files\Electronic Arts
    2007-12-24 14:50 . 2006-09-28 16:05 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll
    2007-12-24 14:50 . 2006-09-28 16:04 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll
    2007-12-24 14:49 . 2007-12-24 14:49 <DIR> d-------- C:\WINDOWS\system32\AGEIA
    2007-12-24 14:49 . 2007-12-24 14:49 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
    2007-12-24 14:49 . 2007-12-24 14:49 <DIR> d-------- C:\Program Files\AGEIA Technologies
    2007-12-24 14:42 . 2007-12-17 13:53 159,458 --a------ C:\WINDOWS\system32\nvapps.nvb
    2007-12-24 14:31 . 2007-12-24 14:31 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
    2007-12-24 14:31 . 2007-12-24 14:31 552 --a------ C:\WINDOWS\system32\d3d8caps.dat
    2007-12-24 00:20 . 2007-12-24 00:20 <DIR> d-------- C:\Documents and Settings\SANE\Application Data\Locktime
    2007-12-24 00:18 . 2007-12-24 00:18 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Locktime
    2007-12-23 21:50 . 2004-08-04 08:08 31,616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
    2007-12-23 21:50 . 2004-08-04 08:08 31,616 --a--c--- C:\WINDOWS\system32\dllcache\usbccgp.sys
    2007-12-23 21:50 . 2004-08-04 09:56 21,504 --a------ C:\WINDOWS\system32\hidserv.dll
    2007-12-23 21:50 . 2004-08-04 09:56 21,504 --a--c--- C:\WINDOWS\system32\dllcache\hidserv.dll
    2007-12-23 21:50 . 2004-08-04 07:58 14,848 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys
    2007-12-23 21:50 . 2004-08-04 07:58 14,848 --a--c--- C:\WINDOWS\system32\dllcache\kbdhid.sys
    2007-12-17 15:01 . 2007-12-17 15:02 <DIR> d-------- C:\Program Files\Common Files\Corel
    2007-12-17 14:54 . 2007-12-17 14:54 <DIR> d-------- C:\Program Files\MagicISO
    2007-12-16 17:08 . 2007-12-16 17:08 2,560 --a------ C:\WINDOWS\system32\bitcometres.dll
    2007-12-11 21:46 . 2007-12-11 21:46 3,596,288 --a------ C:\WINDOWS\system32\qt-dx331.dll
    2007-12-11 21:46 . 2007-12-11 21:46 524,288 --a------ C:\WINDOWS\system32\DivXsm.exe
    2007-12-11 21:46 . 2007-12-11 21:46 4,816 --a------ C:\WINDOWS\system32\divxsm.tlb
    2007-12-11 21:45 . 2007-12-11 21:45 1,044,480 --a------ C:\WINDOWS\system32\libdivx.dll
    2007-12-11 21:45 . 2007-12-11 21:45 200,704 --a------ C:\WINDOWS\system32\ssldivx.dll
    2007-12-11 21:43 . 2007-12-11 21:43 12,288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll
    2007-12-11 17:55 . 2007-12-11 21:47 <DIR> d-------- C:\Documents and Settings\turpiin jos poistat\Application Data\Winamp
    2007-12-10 17:54 . 2007-12-10 17:54 <DIR> d-------- C:\Program Files\Microsoft IntelliType Pro

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-01-07 16:44 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
    2008-01-07 15:03 3,350 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
    2008-01-06 13:31 674,600 ----a-w C:\WINDOWS\system32\pbsvc.exe
    2008-01-05 15:50 22,328 ----a-w C:\Documents and Settings\SANE\Application Data\PnkBstrK.sys
    2008-01-03 15:27 --------- d--h--w C:\Program Files\InstallShield Installation Information
    2007-12-23 13:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Messenger Plus!
    2007-12-23 11:17 --------- d-----w C:\Documents and Settings\SANE\Application Data\LimeWire
    2007-12-19 15:06 --------- d-----w C:\Program Files\MSN Messenger
    2007-12-17 19:32 --------- d-----w C:\Documents and Settings\SANE\Application Data\Corel
    2007-12-17 13:04 --------- d-----w C:\Documents and Settings\turpiin jos poistat\Application Data\Corel
    2007-12-17 13:01 --------- d-----w C:\Program Files\Corel
    2007-12-11 19:44 823,296 ----a-w C:\WINDOWS\system32\divx_xx0c.dll
    2007-12-11 19:44 823,296 ----a-w C:\WINDOWS\system32\divx_xx07.dll
    2007-12-11 19:44 81,920 ----a-w C:\WINDOWS\system32\dpl100.dll
    2007-12-11 19:44 802,816 ----a-w C:\WINDOWS\system32\divx_xx11.dll
    2007-12-11 19:44 682,496 ----a-w C:\WINDOWS\system32\DivX.dll
    2007-12-11 19:44 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
    2007-12-11 19:44 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
    2007-12-11 19:44 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
    2007-12-11 19:44 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
    2007-12-11 19:44 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
    2007-12-11 19:44 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
    2007-12-11 19:44 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
    2007-12-11 19:44 156,992 ----a-w C:\WINDOWS\system32\DivXCodecVersionChecker.exe
    2007-12-06 16:26 --------- d-----w C:\Documents and Settings\SANE\Application Data\Ahead
    2007-12-06 16:19 --------- d-----w C:\Program Files\Common Files\LightScribe
    2007-12-06 16:18 --------- d-----w C:\Program Files\Common Files\Nero
    2007-12-06 16:17 --------- d-----w C:\Program Files\Common Files\Ahead
    2007-12-06 16:17 --------- d-----w C:\Documents and Settings\All Users\Application Data\Ahead
    2007-12-05 00:53 356,352 ----a-w C:\WINDOWS\system32\NVUNINST.EXE
    2007-12-04 23:41 81,920 ----a-w C:\WINDOWS\system32\nvwddi.dll
    2007-12-04 23:41 81,920 ----a-w C:\WINDOWS\system32\nvmctray.dll
    2007-12-04 23:41 8,523,776 ----a-w C:\WINDOWS\system32\nvcpl.dll
    2007-12-04 23:41 753,664 ----a-w C:\WINDOWS\system32\nvcplui.exe
    2007-12-04 23:41 7,435,392 ----a-w C:\WINDOWS\system32\drivers\nv4_mini.sys
    2007-12-04 23:41 6,901,760 ----a-w C:\WINDOWS\system32\nvoglnt.dll
    2007-12-04 23:41 6,549,504 ----a-w C:\WINDOWS\system32\nvdisps.dll
    2007-12-04 23:41 5,773,568 ----a-w C:\WINDOWS\system32\nv4_disp.dll
    2007-12-04 23:41 466,944 ----a-w C:\WINDOWS\system32\nvshell.dll
    2007-12-04 23:41 45,056 ----a-w C:\WINDOWS\system32\nvmccsrs.dll
    2007-12-04 23:41 442,368 ----a-w C:\WINDOWS\system32\nvappbar.exe
    2007-12-04 23:41 425,984 ----a-w C:\WINDOWS\system32\keystone.exe
    2007-12-04 23:41 385,024 ----a-w C:\WINDOWS\system32\nvapi.dll
    2007-12-04 23:41 356,352 ----a-w C:\WINDOWS\system32\nvudisp.exe
    2007-12-04 23:41 35,328 ----a-w C:\WINDOWS\system32\nvcodins.dll
    2007-12-04 23:41 35,328 ----a-w C:\WINDOWS\system32\nvcod.dll
    2007-12-04 23:41 307,200 ----a-w C:\WINDOWS\system32\nvexpbar.dll
    2007-12-04 23:41 3,710,976 ----a-w C:\WINDOWS\system32\nvvitvs.dll
    2007-12-04 23:41 3,420,160 ----a-w C:\WINDOWS\system32\nvgames.dll
    2007-12-04 23:41 286,720 ----a-w C:\WINDOWS\system32\nvnt4cpl.dll
    2007-12-04 23:41 229,376 ----a-w C:\WINDOWS\system32\nvmccs.dll
    2007-12-04 23:41 2,498,560 ----a-w C:\WINDOWS\system32\nvwss.dll
    2007-12-04 23:41 188,416 ----a-w C:\WINDOWS\system32\nvmccss.dll
    2007-12-04 23:41 155,716 ----a-w C:\WINDOWS\system32\nvsvc32.exe
    2007-12-04 23:41 147,456 ----a-w C:\WINDOWS\system32\nvcolor.exe
    2007-12-04 23:41 1,703,936 ----a-w C:\WINDOWS\system32\nvwdmcpl.dll
    2007-12-04 23:41 1,626,112 ----a-w C:\WINDOWS\system32\nwiz.exe
    2007-12-04 23:41 1,474,560 ----a-w C:\WINDOWS\system32\nview.dll
    2007-12-04 23:41 1,339,392 ----a-w C:\WINDOWS\system32\nvdspsch.exe
    2007-12-04 23:41 1,228,800 ----a-w C:\WINDOWS\system32\nvmobls.dll
    2007-12-04 23:41 1,089,536 ----a-w C:\WINDOWS\system32\nvcuda.dll
    2007-12-04 23:41 1,019,904 ----a-w C:\WINDOWS\system32\nvwimg.dll
    2007-11-22 19:25 --------- d-----w C:\Program Files\Java
    2007-11-22 19:19 --------- d-----w C:\Program Files\Common Files\Java
    2007-11-19 18:50 359,808 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
    2007-11-17 22:51 --------- d-----w C:\Documents and Settings\SANE\Application Data\Publish Providers
    2007-11-17 22:51 --------- d-----w C:\Documents and Settings\SANE\Application Data\DivX
    2007-11-17 22:44 --------- d-----w C:\Program Files\Microsoft SQL Server
    2007-11-17 22:43 --------- d-----w C:\Program Files\Vstplugins
    2007-11-17 22:43 --------- d-----w C:\Documents and Settings\SANE\Application Data\Sony
    2007-11-17 22:43 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sony
    2007-11-17 22:21 --------- d-----w C:\Documents and Settings\SANE\Application Data\Sony Setup
    2007-11-17 18:54 --------- d-----w C:\Documents and Settings\turpiin jos poistat\Application Data\Talkback
    2007-11-16 16:08 60,416 ----a-w C:\WINDOWS\ALCFDRTM.EXE
    2007-11-16 15:27 --------- d-----w C:\Documents and Settings\SANE\Application Data\BSplayer
    2007-11-15 15:00 --------- d-----w C:\Program Files\MSXML 4.0
    2007-11-14 20:09 --------- d-----w C:\Program Files\Common Files\InstallShield
    2007-11-14 20:02 --------- d-----w C:\Documents and Settings\SANE\Application Data\Winamp
    2007-11-14 17:11 --------- d-----w C:\Documents and Settings\All Users\Application Data\Corel
    2007-11-14 17:03 --------- d-----w C:\Program Files\shitta
    2007-11-14 16:00 221,856,440 ----a-w C:\Program Files\PaintShopPro1120_EN_DE_FR_ES_IT_NL_CORELTBYB_ESD.exe
    2007-11-14 14:10 --------- d-----w C:\Documents and Settings\SANE\Application Data\BSplayer Pro
    2007-11-14 14:05 1,086,952 ----a-w C:\WINDOWS\system32\zpeng24.dll
    2007-11-14 13:59 --------- d-----w C:\Program Files\Windows Live
    2007-11-14 11:55 --------- d-----w C:\Documents and Settings\SANE\Application Data\Talkback
    2007-11-14 11:46 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2007-11-14 11:41 --------- d-----w C:\Documents and Settings\All Users\Application Data\Avira
    2007-11-13 20:57 --------- d-----w C:\Documents and Settings\SANE\Application Data\InstallShield
    2007-11-13 20:50 315,392 ----a-w C:\WINDOWS\HideWin.exe
    2007-11-13 19:56 --------- d-----w C:\Program Files\microsoft frontpage
    2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
    2007-10-29 22:43 1,287,680 ----a-w C:\WINDOWS\system32\quartz.dll
    2007-10-27 15:40 227,328 ----a-w C:\WINDOWS\system32\wmasf.dll
    2007-10-20 00:56 129,784 ------w C:\WINDOWS\system32\pxafs.dll
    2007-10-20 00:56 120,056 ------w C:\WINDOWS\system32\pxcpyi64.exe
    2007-10-20 00:56 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe
    .

    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55 5674352]
    "Fraps"="D:\FRAPS\FRAPS.EXE" [2006-10-26 11:44 2838528]
    "BandwidthMeterPro"="D:\BandwidthMeterPro\BWMeterPro.exe" [2007-09-16 12:21 491520]
    "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 09:56 15360]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 01:41 8523776]
    "nwiz"="nwiz.exe" [2007-12-05 01:41 1626112 C:\WINDOWS\system32\nwiz.exe]
    "avgnt"="D:\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2007-11-15 17:41 249896]
    "UnlockerAssistant"="D:\Unlocker\UnlockerAssistant.exe" [2006-09-07 19:19 15872]
    "WinampAgent"="D:\Winamp\winampa.exe" [2007-12-20 17:16 37376]
    "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-12-05 01:41 81920]
    "ZoneAlarm Client"="D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2007-11-14 16:05 919016]
    "MSConfig"="C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe" [2004-08-04 09:56 158208]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 09:56 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader]
    --a------ 2007-08-16 12:00 531272 C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
    --a------ 2004-08-04 09:56 15360 C:\WINDOWS\system32\ctfmon.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
    C:\Program Files\Microsoft IntelliPoint\ipoint.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\itype]
    --a------ 2006-07-08 01:14 576320 C:\Program Files\Microsoft IntelliType Pro\itype.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    --a------ 2001-07-09 10:50 155648 C:\WINDOWS\system32\NeroCheck.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
    --a------ 2007-10-07 12:04 2083664 D:\Spybot - Search & Destroy\TeaTimer.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    --a------ 2007-09-25 01:11 132496 C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "Spooler"=2 (0x2)
    "WmdmPmSN"=3 (0x3)
    "WZCSVC"=2 (0x2)
    "RemoteRegistry"=2 (0x2)
    "Alerter"=3 (0x3)
    "ERSvc"=2 (0x2)
    "ClipSrv"=3 (0x3)
    "TlntSvr"=3 (0x3)
    "WebClient"=2 (0x2)
    "LightScribeService"=2 (0x2)
    "SSDPSRV"=3 (0x3)
    "ALG"=3 (0x3)

    R0 avgntmgr;avgntmgr;C:\WINDOWS\system32\DRIVERS\avgntmgr.sys [2007-07-18 14:22]
    R1 avgntdd;avgntdd;C:\WINDOWS\system32\DRIVERS\avgntdd.sys [2007-08-09 13:04]
    R3 PCnetHL;AMD PCnet-Home Adapter Driver;C:\WINDOWS\system32\DRIVERS\pcntn5hl.sys [2001-08-17 14:11]

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
    \Shell\AutoRun\command - F:\Setup\rsrc\autorun.exe
    \Shell\dinstall\command - F:\Directx\dxsetup.exe

    *Newly Created Service* - PROCEXP90
    .
    **************************************************************************

    catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-01-07 19:34:40
    Windows 5.1.2600 Service Pack 2 NTFS

    scanning hidden processes ...

    scanning hidden autostart entries ...

    scanning hidden files ...

    scan completed successfully
    hidden files: 0

    **************************************************************************
    .
    --------------------- DLLs Loaded Under Running Processes ---------------------

    PROCESS: C:\WINDOWS\explorer.exe [6.00.2900.3156]
    -> D:\Unlocker\UnlockerHook.dll
    .
    Completion time: 2008-01-07 19:35:14
    .
    2007-12-12 15:14:26 --- E O F ---
     
    peijooni, Jan 7, 2008
    #1
  2. kalminen

    kalminen Regular member

    Joined:
    May 4, 2007
    Messages:
    3,915
    Likes Received:
    0
    Trophy Points:
    46
    ComboFix ei löytänyt mitään.
    Logilla ei näkynyt ylimääräisiä.
    Unlocker voi olla kuohittu HI
    Laita HJT logi jos on ongelmia
     
    kalminen, Jan 8, 2008
    #2

Share This Page