Just nu i M3-nätverket
Gå till innehåll

angelfalls

Medlem
  • Antal inlägg

    177
  • Gick med

  • Senaste besök

Om angelfalls

  • Medlemstitel
    Aktiv
  • Födelsedag 1985-02-13

Profil

  • Ort
    Stockholm
  1. det verkar som varnings pop up meddelande är borta nu, har inte sett den än. det måste nog vara en infekterad fil som gjorde att meddelande dök upp var 10:e sekund, men nu verkar problemet löst. jag såg även i combofix att den raderade lspvt32.exe filen. hur skulle jag ha klarat att lösa det här utan dig, det är så onödigt att formatera om datorn och spara allt på nytt och sedan installera. du är riktig duktig när det gäller datorer, tack så mycket för hjälpen . juste gällande combofix, den är kanske bra att behålla ifall man misstänker någon infekterad fil, då kan man köra igång den så den raderar virus eller infekterade filer eller vad säger du?
  2. combofix log [log]ComboFix 09-04-15.08 - a i s h a 2009-04-15 22:51.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.1014.482 [GMT 2:00] Körs från: c:\documents and settings\a i s h a\Skrivbord\ComboFix.exe Använda kommandoväxlar :: c:\documents and settings\a i s h a\Skrivbord\CFScript.txt AV: McAfee VirusScan *On-access scanning enabled* (Updated) FW: McAfee Personal Firewall *enabled* * Skapade en ny återställningspunkt * Resident AV is active FILE :: c:\windows\pad.htm c:\windows\system32\lspvt32.exe . ((((((((((((((((((((((((((((((((((((((( Andra raderingar )))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\system32\lspvt32.exe . (((((((((((((((((((((((( Filer Skapade från 2009-03-15 till 2009-04-15 )))))))))))))))))))))))))))))) . 2009-04-15 20:51 . 2009-04-15 20:51 -------- d-----w c:\documents and settings\ComboFix 2009-04-15 12:44 . 2009-04-15 12:44 148 ----a-w C:\pch.bat 2009-04-15 12:38 . 2009-04-15 12:38 2 ---h--w c:\windows\t55ft2829f44.dat 2009-04-15 12:38 . 2009-04-15 12:38 2 ---h--w c:\windows\t55ft2772f44.dat 2009-04-15 12:09 . 2009-04-15 12:09 -------- d-----w c:\documents and settings\a i s h a\Application Data\DivX 2009-04-15 12:06 . 2008-12-13 18:01 77824 ----a-w c:\windows\system32\xvid.ax 2009-04-15 12:06 . 2008-12-04 19:42 815104 ----a-w c:\windows\system32\xvidcore.dll 2009-04-15 12:06 . 2008-12-04 19:46 180224 ----a-w c:\windows\system32\xvidvfw.dll 2009-04-15 12:05 . 2008-09-16 19:23 168448 ----a-w c:\windows\system32\unrar.dll 2009-04-15 12:05 . 2009-04-15 12:05 36734 ----a-w c:\windows\system32\OggDSuninst.exe 2009-04-15 12:03 . 2000-06-23 12:05 136704 ----a-w c:\windows\system32\iacenc.dll 2009-04-15 12:03 . 2000-06-22 11:09 56320 ------w c:\windows\system32\iyvu9_32.dll 2009-04-15 12:02 . 1998-10-29 17:45 306688 ----a-w c:\windows\IsUninst.exe 2009-04-14 12:55 . 2009-04-15 19:15 -------- d-----w c:\documents and settings\a i s h a\Application Data\c1 2009-04-13 21:25 . 2009-04-13 21:25 -------- d--h--w c:\documents and settings\All Users\Application Data\CanonBJ 2009-04-13 21:24 . 2008-04-02 18:00 198656 ----a-w c:\windows\system32\CNMLM82.DLL 2009-04-13 21:23 . 2008-04-13 22:17 25856 -c--a-w c:\windows\system32\dllcache\usbprint.sys 2009-04-13 21:23 . 2008-04-13 22:17 25856 ----a-w c:\windows\system32\drivers\usbprint.sys 2009-04-13 21:20 . 2008-04-13 22:15 15104 -c--a-w c:\windows\system32\dllcache\usbscan.sys 2009-04-13 21:20 . 2008-04-13 22:15 15104 ----a-w c:\windows\system32\drivers\usbscan.sys 2009-04-13 20:28 . 2009-03-30 18:01 50688 ----a-w c:\windows\system32\ff_acm.acm 2009-04-13 18:14 . 2009-04-15 15:46 -------- d-----w c:\documents and settings\a i s h a\Application Data\c2 2009-04-13 17:26 . 2009-04-13 17:26 32 ----a-w c:\windows\hip 2009-04-13 17:19 . 2009-04-13 17:19 56 ----a-w c:\windows\MyProg.ini 2009-04-13 16:23 . 2009-04-13 16:27 -------- d-----w c:\windows\WinRAR 2009-04-13 14:07 . 2009-04-13 14:07 -------- d-s---w c:\documents and settings\a i s h a\UserData 2009-04-06 16:19 . 2008-10-16 12:06 208744 ----a-w c:\windows\system32\muweb.dll 2009-04-06 16:19 . 2008-10-16 12:06 27496 ----a-w c:\windows\system32\mucltui.dll.mui 2009-04-06 16:19 . 2008-10-16 12:06 268648 ----a-w c:\windows\system32\mucltui.dll 2009-04-04 11:49 . 2009-04-04 11:53 -------- d-----w c:\documents and settings\a i s h a\Application Data\Winamp 2009-04-04 11:30 . 2006-10-26 17:56 32592 ----a-w c:\windows\system32\msonpmon.dll 2009-04-04 11:20 . 2009-04-04 11:26 -------- d-----w c:\windows\SHELLNEW 2009-04-04 11:19 . 2009-04-04 11:19 -------- d-----w c:\documents and settings\a i s h a\Lokala inställningar\Application Data\Microsoft Help 2009-04-04 11:18 . 2009-04-06 17:15 -------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help 2009-04-04 11:18 . 2009-04-04 11:18 -------- d--h--r C:\MSOCache 2009-04-03 14:19 . 2009-04-03 14:19 -------- d-----w c:\documents and settings\All Users\Application Data\Broderbund 2009-04-03 14:19 . 2009-04-03 14:19 -------- d-----w c:\documents and settings\a i s h a\Application Data\Broderbund 2009-04-03 13:53 . 2009-04-03 13:54 -------- d-----w c:\documents and settings\a i s h a\Application Data\TypingMaster7 2009-04-02 23:03 . 2009-04-02 23:03 -------- d-----w c:\documents and settings\a i s h a\Lokala inställningar\Application Data\Identities 2009-03-23 05:43 . 2009-03-23 05:43 -------- d-----w c:\documents and settings\a i s h a\Application Data\Samsung 2009-03-21 13:17 . 2009-03-21 13:17 2 ---h--w c:\windows\t55ft2808f44.dat . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-04-15 20:50 . 2009-03-11 12:29 -------- d-----w c:\documents and settings\a i s h a\Application Data\uTorrent 2009-04-15 12:06 . 2009-04-15 12:06 -------- d-----w c:\program\Xvid 2009-04-15 12:06 . 2009-04-15 12:05 -------- d-----w c:\program\K-Lite Codec Pack 2009-04-15 12:04 . 2009-04-13 20:30 -------- d-----w c:\program\XP Codec Pack 2009-04-15 12:03 . 2009-04-15 12:03 -------- d-----w c:\program\Ligos 2009-04-15 12:01 . 2009-04-15 12:01 -------- d-----w c:\program\DScaler5 2009-04-15 12:00 . 2009-04-15 11:58 -------- d-----w c:\program\DivX 2009-04-15 11:59 . 2009-04-15 11:58 -------- d-----w c:\program\Delade filer\DivX Shared 2009-04-13 20:28 . 2009-04-13 20:28 -------- d-----w c:\program\ffdshow 2009-04-13 17:30 . 2009-04-13 17:26 -------- d-----w c:\program\Hide IP 2009-04-11 17:44 . 2009-04-11 17:44 -------- d-----w c:\program\Windows Live Safety Center 2009-04-04 14:44 . 2009-03-09 21:16 68448 ----a-w c:\documents and settings\a i s h a\Lokala inställningar\Application Data\GDIPFONTCACHEV1.DAT 2009-04-04 11:53 . 2009-04-04 11:49 -------- d-----w c:\program\Winamp 2009-04-04 11:27 . 2009-04-04 11:27 -------- d-----w c:\program\Microsoft Works 2009-04-04 11:27 . 2009-04-04 11:27 -------- d-----w c:\program\MSBuild 2009-04-03 13:53 . 2009-04-03 13:53 -------- d-----r c:\program\TypingMaster 2009-03-29 10:21 . 2008-12-31 19:54 48190 ----a-w c:\windows\system32\perfc01D.dat 2009-03-29 10:21 . 2008-12-31 19:54 315576 ----a-w c:\windows\system32\perfh01D.dat 2009-03-25 08:09 . 2008-12-31 12:25 -------- d-----w c:\program\McAfee 2009-03-24 10:05 . 2008-12-31 12:25 -------- d-----w c:\documents and settings\All Users\Application Data\McAfee 2009-03-15 13:46 . 2009-03-15 13:45 -------- d-----w c:\documents and settings\a i s h a\Application Data\vlc 2009-03-15 13:44 . 2009-03-15 13:44 -------- d-----w c:\program\VideoLAN 2009-03-13 21:16 . 2008-12-31 12:12 76487 ----a-w c:\windows\pchealth\helpctr\OfflineCache\index.dat 2009-03-11 13:38 . 2009-03-11 13:38 -------- d-----w c:\program\DIFX 2009-03-11 13:37 . 2008-12-31 12:19 -------- d--h--w c:\program\InstallShield Installation Information 2009-03-11 13:30 . 2008-12-31 12:19 -------- d-----w c:\program\Samsung 2009-03-11 12:31 . 2009-03-11 12:31 -------- d-----w c:\program\uTorrent 2009-03-10 15:00 . 2009-03-10 15:00 -------- d-----w c:\documents and settings\All Users\Application Data\Azureus 2009-03-10 13:45 . 2009-03-10 13:45 -------- d-----w c:\program\Windows Media Connect 2 2009-03-10 13:14 . 2009-03-10 13:12 -------- d-----w c:\program\Thoosje Vista Sidebar 2009-03-10 13:06 . 2009-03-09 21:53 -------- d-----w c:\documents and settings\All Users\Application Data\Yahoo! 2009-03-10 03:01 . 2009-03-10 03:01 -------- d-----w c:\program\WIDCOMM 2009-03-10 03:01 . 2009-03-10 03:01 0 ----a-w c:\windows\system32\drivers\144D_SAMSUNG_N_NC10_04CA.mrk 2009-03-09 21:58 . 2009-03-09 21:57 -------- d-----w c:\program\Windows Live 2009-03-09 21:57 . 2009-03-09 21:57 -------- d-----w c:\program\Microsoft 2009-03-09 21:57 . 2009-03-09 21:57 -------- d-----w c:\program\Windows Live SkyDrive 2009-03-09 21:53 . 2009-03-09 21:53 -------- d-----w c:\program\Yahoo! 2009-03-09 21:53 . 2009-03-09 21:53 -------- d-----w c:\program\RocketDock 2009-03-09 21:43 . 2009-03-09 21:43 -------- d-----w c:\program\Delade filer\Windows Live 2009-02-24 19:35 . 2009-04-15 12:00 9464 ------w c:\windows\system32\drivers\cdralw2k.sys 2009-02-24 19:35 . 2009-04-15 12:00 9336 ------w c:\windows\system32\drivers\cdr4_xp.sys 2009-02-24 19:35 . 2009-04-15 12:00 43528 ------w c:\windows\system32\drivers\PxHelp20.sys 2009-02-24 19:35 . 2009-04-15 12:00 120056 ------w c:\windows\system32\pxcpyi64.exe 2009-02-24 19:35 . 2009-04-15 12:00 118520 ------w c:\windows\system32\pxinsi64.exe 2009-02-24 19:35 . 2009-04-15 12:00 129784 ------w c:\windows\system32\pxafs.dll 2009-02-24 19:34 . 2009-02-24 19:34 90112 ----a-w c:\windows\system32\dpl100.dll 2009-02-24 19:34 . 2009-02-24 19:34 823296 ----a-w c:\windows\system32\divx_xx0c.dll 2009-02-24 19:34 . 2009-02-24 19:34 823296 ----a-w c:\windows\system32\divx_xx07.dll 2009-02-24 19:34 . 2009-02-24 19:34 815104 ----a-w c:\windows\system32\divx_xx0a.dll 2009-02-24 19:34 . 2009-02-24 19:34 802816 ----a-w c:\windows\system32\divx_xx11.dll 2009-02-24 19:34 . 2009-02-24 19:34 684032 ----a-w c:\windows\system32\DivX.dll 2009-02-09 14:07 . 2008-12-31 19:54 1846784 ----a-w c:\windows\system32\win32k.sys 2009-02-06 17:52 . 2009-02-06 17:52 49504 ----a-w c:\windows\system32\sirenacm.dll 2009-01-16 17:34 . 2009-03-11 13:48 499712 ----a-w c:\windows\system32\msvcp71.dll 2009-02-24 19:2009-02-24 19:34 34:32 . c:\program\mozilla firefox\plugins\libdivx.dll 2009-02-24 19:2009-02-24 19:34 34:32 . c:\program\mozilla firefox\plugins\ssldivx.dll . ((((((((((((((((((((((((((((( SnapShot@2009-04-15_19.03.46 ))))))))))))))))))))))))))))))))))))))))) . + 2008-12-31 12:15 . 2009-04-15 20:15 32768 c:\windows\system32\config\systemprofile\Lokala inställningar\Tidigare\History.IE5\index.dat - 2008-12-31 12:15 . 2009-04-15 15:42 32768 c:\windows\system32\config\systemprofile\Lokala inställningar\Tidigare\History.IE5\index.dat + 2008-12-31 12:15 . 2009-04-15 20:15 32768 c:\windows\system32\config\systemprofile\Lokala inställningar\Temporary Internet Files\Content.IE5\index.dat - 2008-12-31 12:15 . 2009-04-15 15:42 32768 c:\windows\system32\config\systemprofile\Lokala inställningar\Temporary Internet Files\Content.IE5\index.dat + 2008-12-31 12:15 . 2009-04-15 20:15 32768 c:\windows\system32\config\systemprofile\Cookies\index.dat - 2008-12-31 12:15 . 2009-04-15 15:42 32768 c:\windows\system32\config\systemprofile\Cookies\index.dat . (((((((((((((((((((((((((((((((((( Startpunkter i registret ))))))))))))))))))))))))))))))))))))))))))))))) . . *Not* Tomma poster & legitima standardposter visas inte. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RocketDock"="c:\program\RocketDock\RocketDock.exe" [2007-09-02 495616] "Vidalia"="c:\program\Vidalia Bundle\Vidalia\vidalia.exe" [bU] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-15 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="c:\program\Java\jre1.5.0\bin\jusched.exe" [2008-12-31 36972] "EDS"="c:\program\Samsung\Samsung EDS\EDSAgent.exe" [2007-12-20 659456] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752] "SynTPEnh"="c:\program\Synaptics\SynTP\SynTPEnh.exe" [2008-08-28 1044480] "Adobe Reader Speed Launcher"="c:\program\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "DMHotKey"="c:\program\Samsung\Easy Display Manager\DMLoader.exe" [2006-12-27 466944] "BatteryManager"="c:\program\Samsung\Samsung Battery Manager\BatteryManager.exe" [2008-10-20 2768896] "MagicKeyboard"="c:\program\SAMSUNG\MagicKBD\PreMKBD.exe" [2006-05-14 151552] "mcagent_exe"="c:\program\McAfee.com\Agent\mcagent.exe" [2009-01-08 645328] "GrooveMonitor"="c:\program\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2008-08-26 16851456] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360] c:\documents and settings\a i s h a\Start-meny\Program\AutostartThoosje Sidebar.lnk - c:\program\Thoosje Vista Sidebar\Thoosje Sidebar.exe [2008-8-18 605696] c:\documents and settings\All Users\Start-meny\Program\AutostartBTTray.lnk - c:\program\WIDCOMM\Bluetooth Software\BTTray.exe [2008-9-17 580200] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.FFDS"= ffdshow.ax "msacm.avis"= ff_acm.acm [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Program\\Yahoo!\\Messenger\\YahooMessenger.exe"= "c:\\Program\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program\\uTorrent\\uTorrent.exe"= "c:\\Program\\Delade filer\\McAfee\\MNA\\McNASvc.exe"= "c:\\Program\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program\\Microsoft Office\\Office12\\GROOVE.EXE"= "c:\\Program\\Microsoft Office\\Office12\\ONENOTE.EXE"= . Innehållet i mappen 'Schemalagda aktiviteter': 2009-04-14 c:\windows\Tasks\McDefragTask.job - c:\program\mcafee\mqc\QcConsol.exe [2008-12-31 09:53] 2008-12-31 c:\windows\Tasks\McQcTask.job - c:\program\mcafee\mqc\QcConsol.exe [2008-12-31 09:53] . . ------- Extra genomsökning ------- . uStart Page = hxxp://google.com/ IE: E&xport to Microsoft Excel - c:\program\MICROS~3\Office12\EXCEL.EXE/3000 IE: Skicka till &Bluetooth-enhet... - c:\program\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: Skicka till Bluetooth - c:\program\WIDCOMM\Bluetooth Software\btsendto_ie.htm FF - ProfilePath - c:\documents and settings\a i s h a\Application Data\Mozilla\Firefox\Profiles\2b17uj1m.defaultFF - plugin: c:\program\Java\jre1.5.0\bin\NPJava11.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJava12.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJava13.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJava14.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJava32.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJPI150.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPOJI610.dll FF - plugin: c:\program\Mozilla Firefox\plugins\np-mswmp.dll ---- FIREFOX POLICY ---- c:\program\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se"); . ************************************************************************** catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-04-15 22:54 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Sluttid: 2009-04-15 22:56 ComboFix-quarantined-files.txt 2009-04-15 20:56 ComboFix2.txt 2009-04-15 19:05 Före genomsökningen: 35 505 913 856 byte ledigt Efter genomsökningen: 35 479 298 048 byte ledigt 221 --- E O F --- 2009-04-06 17:15 [/log] DDS [log] DDS (Ver_09-03-16.01) - NTFSx86 Run by a i s h a at 22:56:28,00 on 2009-04-15 Internet Explorer: 6.0.2900.5512 Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.1014.565 [GMT 2:00] AV: McAfee VirusScan *On-access scanning enabled* (Updated) FW: McAfee Personal Firewall *enabled* ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\Program\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program\McAfee\MSC\mcmscsvc.exe c:\program\DELADE~1\mcafee\mna\mcnasvc.exe c:\program\DELADE~1\mcafee\mcproxy\mcproxy.exe C:\Program\McAfee\VIRUSS~1\mcshield.exe C:\Program\McAfee\MPF\MPFSrv.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program\Java\jre1.5.0\bin\jusched.exe C:\WINDOWS\RTHDCPL.EXE C:\Program\Samsung\Samsung EDS\EDSAgent.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\igfxpers.exe C:\Program\Synaptics\SynTP\SynTPEnh.exe C:\Program\McAfee.com\Agent\mcagent.exe C:\Program\Microsoft Office\Office12\GrooveMonitor.exe C:\Program\RocketDock\RocketDock.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\system32\ctfmon.exe C:\Program\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program\SAMSUNG\MagicKBD\MagicKBD.exe C:\Program\WIDCOMM\BLUETO~1\BTSTAC~1.EXE C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\Program\uTorrent\uTorrent.exe C:\WINDOWS\system32\notepad.exe C:\WINDOWS\explorer.exe C:\Documents and Settings\a i s h a\Skrivbord\dds.scr ============== Pseudo HJT Report =============== uStart Page = hxxp://google.com/ BHO: Länkhjälp till Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program\delade filer\adobe\acrobat\activex\AcroIEHelper.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program\microsoft office\office12\GrooveShellExtensions.dll BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program\mcafee\viruss~1\scriptsn.dll BHO: Windows Live inloggningshjälpen: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program\delade filer\microsoft shared\windows live\WindowsLiveLogin.dll uRun: [RocketDock] "c:\program\rocketdock\RocketDock.exe" uRun: [Vidalia] "c:\program\vidalia bundle\vidalia\vidalia.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [sunJavaUpdateSched] c:\program\java\jre1.5.0\bin\jusched.exe mRun: [RTHDCPL] RTHDCPL.EXE mRun: [EDS] c:\program\samsung\samsung eds\EDSAgent.exe mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [synTPEnh] c:\program\synaptics\syntp\SynTPEnh.exe mRun: [Adobe Reader Speed Launcher] "c:\program\adobe\reader 8.0\reader\Reader_sl.exe" mRun: [DMHotKey] c:\program\samsung\easy display manager\DMLoader.exe mRun: [batteryManager] c:\program\samsung\samsung battery manager\BatteryManager.exe mRun: [MagicKeyboard] c:\program\samsung\magickbd\PreMKBD.exe mRun: [mcagent_exe] "c:\program\mcafee.com\agent\mcagent.exe" /runkey mRun: [GrooveMonitor] "c:\program\microsoft office\office12\GrooveMonitor.exe" dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE StartupFolder: c:\docume~1\aisha~1\start-~1\program\autost~1\thoosj~1.lnk - c:\program\thoosje vista sidebar\Thoosje Sidebar.exe StartupFolder: c:\docume~1\alluse~1\start-~1\program\autost~1\bttray.lnk - c:\program\widcomm\bluetooth software\BTTray.exe IE: E&xport to Microsoft Excel - c:\program\micros~3\office12\EXCEL.EXE/3000 IE: Skicka till &Bluetooth-enhet... - c:\program\widcomm\bluetooth software\btsendto_ie_ctx.htm IE: Skicka till Bluetooth - c:\program\widcomm\bluetooth software\btsendto_ie.htm IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program\widcomm\bluetooth software\btsendto_ie.htm IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program\messenger\msmsgs.exe IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program\micros~3\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\program\micros~3\office12\REFIEBAR.DLL DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program\microsoft office\office12\GrooveSystemServices.dll Notify: igfxcui - igfxdev.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program\microsoft office\office12\GrooveShellExtensions.dll ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\aisha~1\applic~1\mozilla\firefox\profiles\2b17uj1m.defaultFF - plugin: c:\program\java\jre1.5.0\bin\NPJava11.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJava12.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJava13.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJava14.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJava32.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJPI150.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPOJI610.dll ---- FIREFOX POLICIES ---- c:\program\mozilla firefox\greprefs\all.js - pref("browser.visited_color", "#551A8B"); c:\program\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se"); c:\program\mozilla firefox\defaults\pref\firefox.js - pref("browser.videoFeeds.handler", "ask"); ============= SERVICES / DRIVERS =============== R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2008-12-31 213640] R2 DOSMEMIO;MEMIO;c:\windows\system32\MEMIO.SYS [2008-12-31 4300] R2 McProxy;McAfee Proxy Service;c:\program\delade~1\mcafee\mcproxy\mcproxy.exe [2008-12-31 359952] R2 McShield;McAfee Real-time Scanner;c:\program\mcafee\viruss~1\mcshield.exe [2008-12-31 144704] R3 DNSeFilter;DNSeFilter;c:\windows\system32\drivers\SamsungEDS.SYS [2008-1-14 30208] R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2008-12-31 79304] R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2008-12-31 35272] R3 VMC326;Vimicro Camera Service VMC326;c:\windows\system32\drivers\VMC326.sys [2008-12-31 238464] S2 yksvc;Marvell Yukon Service;RUNDLL32.EXE ykx32mpcoinst,serviceStartProc --> RUNDLL32.EXE ykx32mpcoinst,serviceStartProc [?] S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2008-12-31 34216] S3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2008-12-31 40552] S4 McSysmon;McAfee SystemGuards;c:\program\mcafee\viruss~1\mcsysmon.exe [2008-12-31 606736] =============== Created Last 30 ================ 2009-04-15 20:59 <DIR> a-dshr-- C:\cmdcons 2009-04-15 20:57 259,072 a------- c:\windows\vFind.exe 2009-04-15 20:57 161,792 a------- c:\windows\SWREG.exe 2009-04-15 20:57 98,816 a------- c:\windows\sed.exe 2009-04-15 14:44 148 a------- C:\pch.bat 2009-04-15 14:38 2 ----h--- c:\windows\t55ft2829f44.dat 2009-04-15 14:38 2 ----h--- c:\windows\t55ft2772f44.dat 2009-04-15 14:06 815,104 a------- c:\windows\system32\xvidcore.dll 2009-04-15 14:06 77,824 a------- c:\windows\system32\xvid.ax 2009-04-15 14:06 180,224 a------- c:\windows\system32\xvidvfw.dll 2009-04-15 14:06 <DIR> --d----- c:\program\Xvid 2009-04-15 14:05 168,448 a------- c:\windows\system32\unrar.dll 2009-04-15 14:05 <DIR> --d----- c:\program\K-Lite Codec Pack 2009-04-15 14:05 36,734 a------- c:\windows\system32\OggDSuninst.exe 2009-04-15 14:03 136,704 a------- c:\windows\system32\iacenc.dll 2009-04-15 14:03 56,320 -------- c:\windows\system32\iyvu9_32.dll 2009-04-15 14:03 <DIR> --d----- c:\program\Ligos 2009-04-15 14:02 306,688 a------- c:\windows\IsUninst.exe 2009-04-15 14:01 <DIR> --d----- c:\program\DScaler5 2009-04-15 13:58 <DIR> --d----- c:\program\delade filer\DivX Shared 2009-04-15 13:58 <DIR> --d----- c:\program\DivX 2009-04-14 14:55 <DIR> --d----- c:\docume~1\aisha~1\applic~1\c1 2009-04-13 23:24 198,656 a------- c:\windows\system32\CNMLM82.DLL 2009-04-13 23:23 25,856 ac------ c:\windows\system32\dllcache\usbprint.sys 2009-04-13 23:23 25,856 a------- c:\windows\system32\drivers\usbprint.sys 2009-04-13 23:20 15,104 ac------ c:\windows\system32\dllcache\usbscan.sys 2009-04-13 23:20 15,104 a------- c:\windows\system32\drivers\usbscan.sys 2009-04-13 22:30 <DIR> --d----- c:\program\XP Codec Pack 2009-04-13 22:28 50,688 a------- c:\windows\system32\ff_acm.acm 2009-04-13 22:28 <DIR> --d----- c:\program\ffdshow 2009-04-13 20:14 <DIR> --d----- c:\docume~1\aisha~1\applic~1\c2 2009-04-13 19:26 32 a------- c:\windows\hip 2009-04-13 19:26 <DIR> --d----- c:\program\Hide IP 2009-04-13 19:19 56 a------- c:\windows\MyProg.ini 2009-04-13 18:23 <DIR> --d----- c:\windows\WinRAR 2009-04-13 16:07 <DIR> --ds---- c:\documents and settings\a i s h a\UserData 2009-04-06 18:19 208,744 a------- c:\windows\system32\muweb.dll 2009-04-06 18:19 27,496 a------- c:\windows\system32\mucltui.dll.mui 2009-04-06 18:19 268,648 a------- c:\windows\system32\mucltui.dll 2009-04-04 13:30 32,592 a------- c:\windows\system32\msonpmon.dll 2009-04-04 13:20 <DIR> --d----- c:\windows\SHELLNEW 2009-04-03 16:19 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Broderbund 2009-04-03 16:19 <DIR> --d----- c:\docume~1\aisha~1\applic~1\Broderbund 2009-04-03 15:53 <DIR> --d----- c:\docume~1\aisha~1\applic~1\TypingMaster7 2009-04-03 15:53 <DIR> --d--r-- c:\program\TypingMaster 2009-03-23 07:43 <DIR> --d----- c:\docume~1\aisha~1\applic~1\Samsung 2009-03-21 15:17 2 ----h--- c:\windows\t55ft2808f44.dat ==================== Find3M ==================== 2009-03-29 12:21 315,576 a------- c:\windows\system32\perfh01D.dat 2009-03-29 12:21 48,190 a------- c:\windows\system32\perfc01D.dat 2009-03-13 23:16 76,487 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat 2009-03-10 05:01 0 a------- c:\windows\system32\drivers\144D_SAMSUNG_N_NC10_04CA.mrk 2009-02-24 21:35 129,784 -------- c:\windows\system32\pxafs.dll 2009-02-24 21:35 120,056 -------- c:\windows\system32\pxcpyi64.exe 2009-02-24 21:35 118,520 -------- c:\windows\system32\pxinsi64.exe 2009-02-24 21:35 43,528 -------- c:\windows\system32\drivers\PxHelp20.sys 2009-02-24 21:35 9,464 -------- c:\windows\system32\drivers\cdralw2k.sys 2009-02-24 21:35 9,336 -------- c:\windows\system32\drivers\cdr4_xp.sys 2009-02-24 21:34 90,112 a------- c:\windows\system32\dpl100.dll 2009-02-24 21:34 823,296 a------- c:\windows\system32\divx_xx0c.dll 2009-02-24 21:34 823,296 a------- c:\windows\system32\divx_xx07.dll 2009-02-24 21:34 815,104 a------- c:\windows\system32\divx_xx0a.dll 2009-02-24 21:34 802,816 a------- c:\windows\system32\divx_xx11.dll 2009-02-24 21:34 684,032 a------- c:\windows\system32\DivX.dll 2009-02-09 16:07 1,846,784 a------- c:\windows\system32\win32k.sys 2009-02-06 19:52 49,504 a------- c:\windows\system32\sirenacm.dll 2009-01-16 19:34 499,712 a------- c:\windows\system32\msvcp71.dll ============= FINISH: 22:57:33,42 =============== [/log] ATTACH [log] UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_09-03-16.01) Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume2 Install Date: 2009-03-10 04:00:34 System Uptime: 2009-04-15 21:41:55 (1 hours ago) Motherboard: SAMSUNG ELECTRONICS CO., LTD. | | NC10 Processor: Intel® Atom CPU N270 @ 1.60GHz | U2E1 | 1596/mhz ==== Disk Partitions ========================= C: is FIXED (NTFS) - 71 GiB total, 33,098 GiB free. D: is FIXED (NTFS) - 72 GiB total, 71,912 GiB free. ==== Disabled Device Manager Items ============= Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318} Description: Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller Device ID: PCI\VEN_11AB&DEV_4354&SUBSYS_CA00144D&REV_13\4&2803E7C1&0&00E2 Manufacturer: Marvell Name: Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller PNP Device ID: PCI\VEN_11AB&DEV_4354&SUBSYS_CA00144D&REV_13\4&2803E7C1&0&00E2 Service: yukonwxp ==== System Restore Points =================== RP1: 2009-03-10 04:00:39 - Systemkontrollpunkt RP2: 2009-03-10 04:02:52 - Installed Play Camera RP3: 2009-03-10 14:09:36 - Installed Zune Desktop Theme RP4: 2009-03-10 14:13:03 - Software Distribution Service 3.0 RP5: 2009-03-10 14:37:28 - Software Distribution Service 3.0 RP6: 2009-03-10 14:46:12 - Installed Windows XP MSCompPackV1. RP7: 2009-03-10 14:54:01 - Software Distribution Service 3.0 RP8: 2009-03-11 14:30:56 - Installerad Samsung PC Studio 3 USB Driver Installer RP9: 2009-03-11 14:37:13 - Installerad Samsung PC Studio 3 RP10: 2009-03-11 14:48:01 - Shockwave Player RP11: 2009-03-12 10:44:58 - Software Distribution Service 3.0 RP12: 2009-03-13 22:14:13 - Systemkontrollpunkt RP13: 2009-03-14 11:57:33 - Shockwave Player RP14: 2009-03-15 12:33:22 - Systemkontrollpunkt RP15: 2009-03-19 15:15:35 - Systemkontrollpunkt RP16: 2009-03-20 14:18:27 - Software Distribution Service 3.0 RP17: 2009-03-21 14:41:31 - Systemkontrollpunkt RP18: 2009-03-21 21:43:48 - Removed Zune Desktop Theme RP19: 2009-03-23 06:35:46 - Systemkontrollpunkt RP20: 2009-03-28 12:21:09 - Systemkontrollpunkt RP21: 2009-03-29 13:55:56 - Installed Windows Media Player Firefox Plugin RP22: 2009-04-03 16:19:17 - Installed Mavis Beacon Teaches Typing Platinum 20. RP23: 2009-04-03 16:21:04 - Removed Mavis Beacon Teaches Typing Platinum 20. RP24: 2009-04-04 13:17:58 - Installed Microsoft Office Enterprise 2007 RP25: 2009-04-04 13:30:44 - Skrivardrivrutinen Send To Microsoft OneNote Driver installerad RP26: 2009-04-06 19:03:24 - Software Distribution Service 3.0 RP27: 2009-04-13 12:45:28 - Installed Zune Desktop Theme RP28: 2009-04-15 14:05:36 - Installed K-Lite Codec Pack RP29: 2009-04-15 20:58:11 - ComboFix created restore point RP30: 2009-04-15 22:50:30 - ComboFix created restore point ==== Installed Programs ====================== 2007 Microsoft Office Suite Service Pack 1 (SP1) AAC Decoder Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 8.1.2 - Svenska Adobe Shockwave Player 11.5 Atheros WLAN Client µTorrent AutoUpdate Choice Guard Direct Show Ogg Vorbis Filter (remove only) DivX Codec DivX Converter DivX Player DivX Plus DirectShow Filters DivX Web Player DivX Version Checker DScaler 5 Mpeg Decoders Easy Display Manager Easy Network Manager ffdshow [rev 2844] [2009-03-30] H.264 Decoder Hotfix for Windows Media Format 11 SDK (KB929399) imagine digital freedom - Samsung Indeo® Software Intel® Graphics Media Accelerator Driver J2SE Runtime Environment 5.0 Junk Mail filter update K-Lite Codec Pack 4.7.5 (Basic) Magic Keyboard Marvell Miniport Driver McAfee SecurityCenter Microsoft Application Error Reporting Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Software Update for Web Folders (English) 12 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable MKV Splitter Mozilla Firefox (3.0.8) MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 Parser and SDK Namuga 1.3M Webcam Play Camera Realtek High Definition Audio Driver RocketDock 1.3.5 Samsung Battery Manager Samsung EDS Samsung Magic Doctor SAMSUNG Mobile Composite Device Software SAMSUNG Mobile Modem Driver Set Samsung Mobile phone USB driver Software SAMSUNG Mobile USB Modem 1.0 Software SAMSUNG Mobile USB Modem Software Samsung PC Studio 3 Samsung PC Studio 3 USB Driver Installer Samsung Recovery Solution III Samsung Update Plus Samsung Wallpaper Security Update for 2007 Microsoft Office System (KB951550) Security Update for 2007 Microsoft Office System (KB951944) Security Update for 2007 Microsoft Office System (KB958439) Security Update for Microsoft Office Excel 2007 (KB958437) Security Update for Microsoft Office OneNote 2007 (KB950130) Security Update for Microsoft Office PowerPoint 2007 (KB951338) Security Update for Microsoft Office Publisher 2007 (KB950114) Security Update for Microsoft Office system 2007 (KB954326) Security Update for Microsoft Office system 2007 (KB956828) Security Update for Microsoft Office Word 2007 (KB956358) Segoe UI Snabbkorrigering för Windows Media Player 11 (KB939683) Snabbkorrigering för Windows XP (KB952287) Säkerhetsuppdatering för Windows Media Player (KB952069) Säkerhetsuppdatering för Windows Media Player 11 (KB936782) Säkerhetsuppdatering för Windows Media Player 11 (KB954154) Säkerhetsuppdatering för Windows XP (KB938464-v2) Säkerhetsuppdatering för Windows XP (KB941569) Säkerhetsuppdatering för Windows XP (KB946648) Säkerhetsuppdatering för Windows XP (KB950760) Säkerhetsuppdatering för Windows XP (KB950762) Säkerhetsuppdatering för Windows XP (KB950974) Säkerhetsuppdatering för Windows XP (KB951066) Säkerhetsuppdatering för Windows XP (KB951376-v2) Säkerhetsuppdatering för Windows XP (KB951698) Säkerhetsuppdatering för Windows XP (KB951748) Säkerhetsuppdatering för Windows XP (KB952954) Säkerhetsuppdatering för Windows XP (KB954211) Säkerhetsuppdatering för Windows XP (KB954459) Säkerhetsuppdatering för Windows XP (KB954600) Säkerhetsuppdatering för Windows XP (KB955069) Säkerhetsuppdatering för Windows XP (KB956802) Säkerhetsuppdatering för Windows XP (KB956803) Säkerhetsuppdatering för Windows XP (KB956841) Säkerhetsuppdatering för Windows XP (KB957097) Säkerhetsuppdatering för Windows XP (KB958215) Säkerhetsuppdatering för Windows XP (KB958644) Säkerhetsuppdatering för Windows XP (KB958687) Säkerhetsuppdatering för Windows XP (KB958690) Säkerhetsuppdatering för Windows XP (KB960225) Säkerhetsuppdatering för Windows XP (KB960714) Säkerhetsuppdatering för Windows XP (KB960715) Synaptics Pointing Device Driver Thoosje Vista Sidebar TypingMaster Pro Update for Microsoft Office Outlook 2007 (KB952142) Update for Office 2007 (KB946691) Update for Outlook 2007 Junk Email Filter (kb962871) Uppdatering för Windows XP (KB898461) Uppdatering för Windows XP (KB951978) Uppdatering för Windows XP (KB955839) Uppdatering för Windows XP (KB967715) User Guide VC80CRTRedist - 8.0.50727.762 WebFldrs XP WIDCOMM Bluetooth Software Viktig uppdatering för Windows Media Player 11 (KB959772) Winamp Windows-drivrutinspaket - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0) Windows-drivrutinspaket - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0) Windows Live Communications Platform Windows Live Essentials Windows Live inloggningsassistenten Windows Live Mail Windows Live Messenger Windows Live OneCare safety scanner Windows Live Upload Tool Windows Media Format 11 runtime Windows Media Player 11 Windows Media Player Firefox Plugin WinRAR archiver VLC media player 0.9.8a Xvid 1.2.1 final uninstall XviD MPEG-4 Codec Yahoo! Messenger Zune Desktop Theme ==== End Of File =========================== [/log]
  3. ComboFix LOG [log]ComboFix 09-04-15.08 - a i s h a 2009-04-15 21:00.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.1014.442 [GMT 2:00] Körs från: c:\documents and settings\a i s h a\Skrivbord\ComboFix.exe AV: McAfee VirusScan *On-access scanning enabled* (Updated) FW: McAfee Personal Firewall *enabled* * Skapade en ny återställningspunkt * Resident AV is active . ((((((((((((((((((((((((((((((((((((((( Andra raderingar )))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\msetup c:\windows\msetup\MSetup.exe c:\windows\system32\pthreadGC2.dll . (((((((((((((((((((((((( Filer Skapade från 2009-03-15 till 2009-04-15 )))))))))))))))))))))))))))))) . 2009-04-15 19:00 . 2009-04-15 19:03 162 ----a-w c:\windows\pad.htm 2009-04-15 12:44 . 2009-04-15 12:44 148 ----a-w C:\pch.bat 2009-04-15 12:38 . 2009-04-15 12:38 2 ---h--w c:\windows\t55ft2829f44.dat 2009-04-15 12:38 . 2009-04-15 12:38 2 ---h--w c:\windows\t55ft2772f44.dat 2009-04-15 12:09 . 2009-04-15 12:09 -------- d-----w c:\documents and settings\a i s h a\Application Data\DivX 2009-04-15 12:06 . 2008-12-13 18:01 77824 ----a-w c:\windows\system32\xvid.ax 2009-04-15 12:06 . 2008-12-04 19:42 815104 ----a-w c:\windows\system32\xvidcore.dll 2009-04-15 12:06 . 2008-12-04 19:46 180224 ----a-w c:\windows\system32\xvidvfw.dll 2009-04-15 12:05 . 2008-09-16 19:23 168448 ----a-w c:\windows\system32\unrar.dll 2009-04-15 12:05 . 2009-04-15 12:05 36734 ----a-w c:\windows\system32\OggDSuninst.exe 2009-04-15 12:03 . 2000-06-23 12:05 136704 ----a-w c:\windows\system32\iacenc.dll 2009-04-15 12:03 . 2000-06-22 11:09 56320 ------w c:\windows\system32\iyvu9_32.dll 2009-04-15 12:02 . 1998-10-29 17:45 306688 ----a-w c:\windows\IsUninst.exe 2009-04-14 12:55 . 2009-04-15 19:03 -------- d-----w c:\documents and settings\a i s h a\Application Data\c1 2009-04-13 21:25 . 2009-04-13 21:25 -------- d--h--w c:\documents and settings\All Users\Application Data\CanonBJ 2009-04-13 21:24 . 2008-04-02 18:00 198656 ----a-w c:\windows\system32\CNMLM82.DLL 2009-04-13 21:23 . 2008-04-13 22:17 25856 -c--a-w c:\windows\system32\dllcache\usbprint.sys 2009-04-13 21:23 . 2008-04-13 22:17 25856 ----a-w c:\windows\system32\drivers\usbprint.sys 2009-04-13 21:20 . 2008-04-13 22:15 15104 -c--a-w c:\windows\system32\dllcache\usbscan.sys 2009-04-13 21:20 . 2008-04-13 22:15 15104 ----a-w c:\windows\system32\drivers\usbscan.sys 2009-04-13 20:28 . 2009-03-30 18:01 50688 ----a-w c:\windows\system32\ff_acm.acm 2009-04-13 18:14 . 2009-04-15 15:46 -------- d-----w c:\documents and settings\a i s h a\Application Data\c2 2009-04-13 17:26 . 2009-04-13 17:26 32 ----a-w c:\windows\hip 2009-04-13 17:19 . 2009-04-13 17:19 56 ----a-w c:\windows\MyProg.ini 2009-04-13 17:09 . 2009-04-18 09:18 25620992 ----a-w c:\windows\system32\lspvt32.exe 2009-04-13 16:23 . 2009-04-13 16:27 -------- d-----w c:\windows\WinRAR 2009-04-13 14:07 . 2009-04-13 14:07 -------- d-s---w c:\documents and settings\a i s h a\UserData 2009-04-06 16:19 . 2008-10-16 12:06 208744 ----a-w c:\windows\system32\muweb.dll 2009-04-06 16:19 . 2008-10-16 12:06 27496 ----a-w c:\windows\system32\mucltui.dll.mui 2009-04-06 16:19 . 2008-10-16 12:06 268648 ----a-w c:\windows\system32\mucltui.dll 2009-04-04 11:49 . 2009-04-04 11:53 -------- d-----w c:\documents and settings\a i s h a\Application Data\Winamp 2009-04-04 11:30 . 2006-10-26 17:56 32592 ----a-w c:\windows\system32\msonpmon.dll 2009-04-04 11:20 . 2009-04-04 11:26 -------- d-----w c:\windows\SHELLNEW 2009-04-04 11:19 . 2009-04-04 11:19 -------- d-----w c:\documents and settings\a i s h a\Lokala inställningar\Application Data\Microsoft Help 2009-04-04 11:18 . 2009-04-06 17:15 -------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help 2009-04-04 11:18 . 2009-04-04 11:18 -------- d--h--r C:\MSOCache 2009-04-03 14:19 . 2009-04-03 14:19 -------- d-----w c:\documents and settings\All Users\Application Data\Broderbund 2009-04-03 14:19 . 2009-04-03 14:19 -------- d-----w c:\documents and settings\a i s h a\Application Data\Broderbund 2009-04-03 13:53 . 2009-04-03 13:54 -------- d-----w c:\documents and settings\a i s h a\Application Data\TypingMaster7 2009-04-02 23:03 . 2009-04-02 23:03 -------- d-----w c:\documents and settings\a i s h a\Lokala inställningar\Application Data\Identities 2009-03-23 05:43 . 2009-03-23 05:43 -------- d-----w c:\documents and settings\a i s h a\Application Data\Samsung 2009-03-21 13:17 . 2009-03-21 13:17 2 ---h--w c:\windows\t55ft2808f44.dat . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-04-15 19:00 . 2009-03-11 12:29 -------- d-----w c:\documents and settings\a i s h a\Application Data\uTorrent 2009-04-15 12:06 . 2009-04-15 12:06 -------- d-----w c:\program\Xvid 2009-04-15 12:06 . 2009-04-15 12:05 -------- d-----w c:\program\K-Lite Codec Pack 2009-04-15 12:04 . 2009-04-13 20:30 -------- d-----w c:\program\XP Codec Pack 2009-04-15 12:03 . 2009-04-15 12:03 -------- d-----w c:\program\Ligos 2009-04-15 12:01 . 2009-04-15 12:01 -------- d-----w c:\program\DScaler5 2009-04-15 12:00 . 2009-04-15 11:58 -------- d-----w c:\program\DivX 2009-04-15 11:59 . 2009-04-15 11:58 -------- d-----w c:\program\Delade filer\DivX Shared 2009-04-13 20:28 . 2009-04-13 20:28 -------- d-----w c:\program\ffdshow 2009-04-13 17:30 . 2009-04-13 17:26 -------- d-----w c:\program\Hide IP 2009-04-11 17:44 . 2009-04-11 17:44 -------- d-----w c:\program\Windows Live Safety Center 2009-04-04 14:44 . 2009-03-09 21:16 68448 ----a-w c:\documents and settings\a i s h a\Lokala inställningar\Application Data\GDIPFONTCACHEV1.DAT 2009-04-04 11:53 . 2009-04-04 11:49 -------- d-----w c:\program\Winamp 2009-04-04 11:27 . 2009-04-04 11:27 -------- d-----w c:\program\Microsoft Works 2009-04-04 11:27 . 2009-04-04 11:27 -------- d-----w c:\program\MSBuild 2009-04-03 13:53 . 2009-04-03 13:53 -------- d-----r c:\program\TypingMaster 2009-03-29 10:21 . 2008-12-31 19:54 48190 ----a-w c:\windows\system32\perfc01D.dat 2009-03-29 10:21 . 2008-12-31 19:54 315576 ----a-w c:\windows\system32\perfh01D.dat 2009-03-25 08:09 . 2008-12-31 12:25 -------- d-----w c:\program\McAfee 2009-03-24 10:05 . 2008-12-31 12:25 -------- d-----w c:\documents and settings\All Users\Application Data\McAfee 2009-03-15 13:46 . 2009-03-15 13:45 -------- d-----w c:\documents and settings\a i s h a\Application Data\vlc 2009-03-15 13:44 . 2009-03-15 13:44 -------- d-----w c:\program\VideoLAN 2009-03-13 21:16 . 2008-12-31 12:12 76487 ----a-w c:\windows\pchealth\helpctr\OfflineCache\index.dat 2009-03-11 13:38 . 2009-03-11 13:38 -------- d-----w c:\program\DIFX 2009-03-11 13:37 . 2008-12-31 12:19 -------- d--h--w c:\program\InstallShield Installation Information 2009-03-11 13:30 . 2008-12-31 12:19 -------- d-----w c:\program\Samsung 2009-03-11 12:31 . 2009-03-11 12:31 -------- d-----w c:\program\uTorrent 2009-03-10 15:00 . 2009-03-10 15:00 -------- d-----w c:\documents and settings\All Users\Application Data\Azureus 2009-03-10 13:45 . 2009-03-10 13:45 -------- d-----w c:\program\Windows Media Connect 2 2009-03-10 13:14 . 2009-03-10 13:12 -------- d-----w c:\program\Thoosje Vista Sidebar 2009-03-10 13:06 . 2009-03-09 21:53 -------- d-----w c:\documents and settings\All Users\Application Data\Yahoo! 2009-03-10 03:01 . 2009-03-10 03:01 -------- d-----w c:\program\WIDCOMM 2009-03-10 03:01 . 2009-03-10 03:01 0 ----a-w c:\windows\system32\drivers\144D_SAMSUNG_N_NC10_04CA.mrk 2009-03-09 21:58 . 2009-03-09 21:57 -------- d-----w c:\program\Windows Live 2009-03-09 21:57 . 2009-03-09 21:57 -------- d-----w c:\program\Microsoft 2009-03-09 21:57 . 2009-03-09 21:57 -------- d-----w c:\program\Windows Live SkyDrive 2009-03-09 21:53 . 2009-03-09 21:53 -------- d-----w c:\program\Yahoo! 2009-03-09 21:53 . 2009-03-09 21:53 -------- d-----w c:\program\RocketDock 2009-03-09 21:43 . 2009-03-09 21:43 -------- d-----w c:\program\Delade filer\Windows Live 2009-02-24 19:35 . 2009-04-15 12:00 9464 ------w c:\windows\system32\drivers\cdralw2k.sys 2009-02-24 19:35 . 2009-04-15 12:00 9336 ------w c:\windows\system32\drivers\cdr4_xp.sys 2009-02-24 19:35 . 2009-04-15 12:00 43528 ------w c:\windows\system32\drivers\PxHelp20.sys 2009-02-24 19:35 . 2009-04-15 12:00 120056 ------w c:\windows\system32\pxcpyi64.exe 2009-02-24 19:35 . 2009-04-15 12:00 118520 ------w c:\windows\system32\pxinsi64.exe 2009-02-24 19:35 . 2009-04-15 12:00 129784 ------w c:\windows\system32\pxafs.dll 2009-02-24 19:34 . 2009-02-24 19:34 90112 ----a-w c:\windows\system32\dpl100.dll 2009-02-24 19:34 . 2009-02-24 19:34 823296 ----a-w c:\windows\system32\divx_xx0c.dll 2009-02-24 19:34 . 2009-02-24 19:34 823296 ----a-w c:\windows\system32\divx_xx07.dll 2009-02-24 19:34 . 2009-02-24 19:34 815104 ----a-w c:\windows\system32\divx_xx0a.dll 2009-02-24 19:34 . 2009-02-24 19:34 802816 ----a-w c:\windows\system32\divx_xx11.dll 2009-02-24 19:34 . 2009-02-24 19:34 684032 ----a-w c:\windows\system32\DivX.dll 2009-02-09 14:07 . 2008-12-31 19:54 1846784 ----a-w c:\windows\system32\win32k.sys 2009-02-06 17:52 . 2009-02-06 17:52 49504 ----a-w c:\windows\system32\sirenacm.dll 2009-01-16 17:34 . 2009-03-11 13:48 499712 ----a-w c:\windows\system32\msvcp71.dll 2009-02-24 19:2009-02-24 19:34 34:32 . c:\program\mozilla firefox\plugins\libdivx.dll 2009-02-24 19:2009-02-24 19:34 34:32 . c:\program\mozilla firefox\plugins\ssldivx.dll . (((((((((((((((((((((((((((((((((( Startpunkter i registret ))))))))))))))))))))))))))))))))))))))))))))))) . . *Not* Tomma poster & legitima standardposter visas inte. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RocketDock"="c:\program\RocketDock\RocketDock.exe" [2007-09-02 495616] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-15 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="c:\program\Java\jre1.5.0\bin\jusched.exe" [2008-12-31 36972] "EDS"="c:\program\Samsung\Samsung EDS\EDSAgent.exe" [2007-12-20 659456] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752] "SynTPEnh"="c:\program\Synaptics\SynTP\SynTPEnh.exe" [2008-08-28 1044480] "Adobe Reader Speed Launcher"="c:\program\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "DMHotKey"="c:\program\Samsung\Easy Display Manager\DMLoader.exe" [2006-12-27 466944] "BatteryManager"="c:\program\Samsung\Samsung Battery Manager\BatteryManager.exe" [2008-10-20 2768896] "MagicKeyboard"="c:\program\SAMSUNG\MagicKBD\PreMKBD.exe" [2006-05-14 151552] "mcagent_exe"="c:\program\McAfee.com\Agent\mcagent.exe" [2009-01-08 645328] "GrooveMonitor"="c:\program\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648] "Microsoft ALU manager"="c:\windows\system32\lspvt32.exe" [2009-04-18 25620992] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2008-08-26 16851456] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360] c:\documents and settings\a i s h a\Start-meny\Program\AutostartThoosje Sidebar.lnk - c:\program\Thoosje Vista Sidebar\Thoosje Sidebar.exe [2008-8-18 605696] c:\documents and settings\All Users\Start-meny\Program\AutostartBTTray.lnk - c:\program\WIDCOMM\Bluetooth Software\BTTray.exe [2008-9-17 580200] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.FFDS"= ffdshow.ax "msacm.avis"= ff_acm.acm [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\regedit.exe] "Debugger"=0 [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\taskmgr.exe] "Debugger"=0 [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Program\\Yahoo!\\Messenger\\YahooMessenger.exe"= "c:\\Program\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program\\uTorrent\\uTorrent.exe"= "c:\\Program\\Delade filer\\McAfee\\MNA\\McNASvc.exe"= "c:\\Program\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program\\Microsoft Office\\Office12\\GROOVE.EXE"= "c:\\Program\\Microsoft Office\\Office12\\ONENOTE.EXE"= R2 yksvc;Marvell Yukon Service; [x] S2 DOSMEMIO;MEMIO;c:\windows\system32\MEMIO.SYS [2005-10-27 4300] S3 DNSeFilter;DNSeFilter;c:\windows\system32\drivers\SamsungEDS.sys [2008-01-14 30208] S3 VMC326;Vimicro Camera Service VMC326;c:\windows\system32\Drivers\VMC326.sys [2008-09-23 238464] . Innehållet i mappen 'Schemalagda aktiviteter': 2009-04-14 c:\windows\Tasks\McDefragTask.job - c:\program\mcafee\mqc\QcConsol.exe [2008-12-31 09:53] 2008-12-31 c:\windows\Tasks\McQcTask.job - c:\program\mcafee\mqc\QcConsol.exe [2008-12-31 09:53] . - - - - FÖRÄLDRALÖSA POSTER SOM TAGITS BORT - - - - HKCU-Run-Vidalia - c:\program\Vidalia Bundle\Vidalia\vidalia.exe . ------- Extra genomsökning ------- . uStart Page = hxxp://google.com/ IE: E&xport to Microsoft Excel - c:\program\MICROS~3\Office12\EXCEL.EXE/3000 IE: Skicka till &Bluetooth-enhet... - c:\program\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: Skicka till Bluetooth - c:\program\WIDCOMM\Bluetooth Software\btsendto_ie.htm FF - ProfilePath - c:\documents and settings\a i s h a\Application Data\Mozilla\Firefox\Profiles\2b17uj1m.defaultFF - plugin: c:\program\Java\jre1.5.0\bin\NPJava11.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJava12.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJava13.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJava14.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJava32.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPJPI150.dll FF - plugin: c:\program\Java\jre1.5.0\bin\NPOJI610.dll FF - plugin: c:\program\Mozilla Firefox\plugins\np-mswmp.dll ---- FIREFOX POLICY ---- c:\program\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se"); . ************************************************************************** catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-04-15 21:03 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Sluttid: 2009-04-15 21:05 ComboFix-quarantined-files.txt 2009-04-15 19:05 Före genomsökningen: 34 088 329 216 byte ledigt Efter genomsökningen: 34 115 874 816 byte ledigt WindowsXP-KB310994-SP2-Home-BootDisk-SVE.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect 227 --- E O F --- 2009-04-06 17:15 [/log]
  4. c:\docume~1\aisha~1\applic~1\c1 mappen är tom, finns ingenting där. c:\windows\ld08.exe hittades ej i virustotal.com c:\windows\system32\MEMIO.SYS kolla log: [log] Fil MEMIO.SYS mottagen 2009.04.03 13:05:25 (CET) Närvarande status: genomförd Resultat: 1/40 (2.50%) Compact Skriv ut resultat Antivirus Version Senaste Uppdatering Resultat a-squared 4.0.0.101 2009.04.03 - AhnLab-V3 5.0.0.2 2009.04.03 - AntiVir 7.9.0.129 2009.04.03 - Antiy-AVL 2.0.3.1 2009.04.03 - Authentium 5.1.2.4 2009.04.03 - Avast 4.8.1335.0 2009.04.02 - AVG 8.5.0.285 2009.04.03 - BitDefender 7.2 2009.04.03 - CAT-QuickHeal 10.00 2009.04.03 - ClamAV 0.94.1 2009.04.03 - Comodo 1097 2009.04.03 - DrWeb 4.44.0.09170 2009.04.03 - eSafe 7.0.17.0 2009.04.02 - eTrust-Vet 31.6.6434 2009.04.03 - F-Prot 4.4.4.56 2009.04.02 - F-Secure 8.0.14470.0 2009.04.03 - Fortinet 3.117.0.0 2009.04.03 - GData 19 2009.04.03 - Ikarus T3.1.1.49.0 2009.04.03 - K7AntiVirus 7.10.690 2009.04.01 - Kaspersky 7.0.0.125 2009.04.03 - McAfee 5572 2009.04.02 - McAfee+Artemis 5572 2009.04.02 - McAfee-GW-Edition 6.7.6 2009.04.03 BlockReason.0 Microsoft 1.4502 2009.04.03 - NOD32 3985 2009.04.03 - Norman 6.00.06 2009.04.02 - nProtect 2009.1.8.0 2009.04.03 - Panda 10.0.0.14 2009.04.03 - PCTools 4.4.2.0 2009.04.02 - Prevx1 V2 2009.04.03 - Rising 21.23.41.00 2009.04.03 - Sophos 4.40.0 2009.04.03 - Sunbelt 3.2.1858.2 2009.04.03 - Symantec 1.4.4.12 2009.04.03 - TheHacker 6.3.4.0.300 2009.04.03 - TrendMicro 8.700.0.1004 2009.04.03 - VBA32 3.12.10.2 2009.04.02 - ViRobot 2009.4.3.1676 2009.04.03 - VirusBuster 4.6.5.0 2009.04.02 - Övrig information File size: 4300 bytes MD5...: 8a4cb9438571814b128b6dc30d698064 SHA1..: d62d435a5d9b799e36d05fc32237397602b3dd8c SHA256: 2ce7dc464723c427c88e6ffb086330719dfe57f9ef0fe31ae9e0d8d0c910c388 SHA512: 3844a13d66411142a11e987f534de36c493e4e647c3b4e4f35187e01d89495ea 5ebaeb956e6c8bc00ca81d6167b98c4acd7024d2373c37ee95c0c19432c10ec4 ssdeep: 96:10rzOx7yxqQvQlwSBEhE9v1eNbsh+8i1T:Wrz87yxq/5EiA/BT PEiD..: - TrID..: File type identification Generic Win/DOS Executable (49.9%) DOS Executable Generic (49.8%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%) PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x536 timedatestamp.....: 0x39a3f999 (Wed Aug 23 16:19:37 2000) machinetype.......: 0x14c (I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x260 0x3d4 0x3e0 5.56 cff4fa2b6a2447cdaafb75c219574d08 INIT 0x640 0x1c8 0x1e0 4.69 f74ffb39ec6562bc6e4dd88d6efb84a0 .reloc 0x820 0x62 0x80 2.84 83b34193848d7c2bab1ad0d9fee784a4 ( 2 imports ) > ntoskrnl.exe: RtlInitUnicodeString, IoCreateDevice, IoCreateSymbolicLink, IofCompleteRequest, IoDeleteDevice, MmUnmapIoSpace, IoDeleteSymbolicLink, MmMapIoSpace > HAL.dll: READ_PORT_UCHAR, READ_PORT_ULONG, WRITE_PORT_USHORT, HalTranslateBusAddress, READ_PORT_USHORT, WRITE_PORT_UCHAR, WRITE_PORT_ULONG ( 0 exports ) RDS...: NSRL Reference Data Set - [/log]
  5. FRÅN ATTACH FILEN [log] UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_09-03-16.01) Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume2 Install Date: 2009-03-10 04:00:34 System Uptime: 2009-04-15 18:14:12 (1 hours ago) Motherboard: SAMSUNG ELECTRONICS CO., LTD. | | NC10 Processor: Intel® Atom CPU N270 @ 1.60GHz | U2E1 | 1595/mhz ==== Disk Partitions ========================= C: is FIXED (NTFS) - 71 GiB total, 32,856 GiB free. D: is FIXED (NTFS) - 72 GiB total, 71,912 GiB free. ==== Disabled Device Manager Items ============= Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318} Description: Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller Device ID: PCI\VEN_11AB&DEV_4354&SUBSYS_CA00144D&REV_13\4&2803E7C1&0&00E2 Manufacturer: Marvell Name: Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller PNP Device ID: PCI\VEN_11AB&DEV_4354&SUBSYS_CA00144D&REV_13\4&2803E7C1&0&00E2 Service: yukonwxp ==== System Restore Points =================== RP1: 2009-03-10 04:00:39 - Systemkontrollpunkt RP2: 2009-03-10 04:02:52 - Installed Play Camera RP3: 2009-03-10 14:09:36 - Installed Zune Desktop Theme RP4: 2009-03-10 14:13:03 - Software Distribution Service 3.0 RP5: 2009-03-10 14:37:28 - Software Distribution Service 3.0 RP6: 2009-03-10 14:46:12 - Installed Windows XP MSCompPackV1. RP7: 2009-03-10 14:54:01 - Software Distribution Service 3.0 RP8: 2009-03-11 14:30:56 - Installerad Samsung PC Studio 3 USB Driver Installer RP9: 2009-03-11 14:37:13 - Installerad Samsung PC Studio 3 RP10: 2009-03-11 14:48:01 - Shockwave Player RP11: 2009-03-12 10:44:58 - Software Distribution Service 3.0 RP12: 2009-03-13 22:14:13 - Systemkontrollpunkt RP13: 2009-03-14 11:57:33 - Shockwave Player RP14: 2009-03-15 12:33:22 - Systemkontrollpunkt RP15: 2009-03-19 15:15:35 - Systemkontrollpunkt RP16: 2009-03-20 14:18:27 - Software Distribution Service 3.0 RP17: 2009-03-21 14:41:31 - Systemkontrollpunkt RP18: 2009-03-21 21:43:48 - Removed Zune Desktop Theme RP19: 2009-03-23 06:35:46 - Systemkontrollpunkt RP20: 2009-03-28 12:21:09 - Systemkontrollpunkt RP21: 2009-03-29 13:55:56 - Installed Windows Media Player Firefox Plugin RP22: 2009-04-03 16:19:17 - Installed Mavis Beacon Teaches Typing Platinum 20. RP23: 2009-04-03 16:21:04 - Removed Mavis Beacon Teaches Typing Platinum 20. RP24: 2009-04-04 13:17:58 - Installed Microsoft Office Enterprise 2007 RP25: 2009-04-04 13:30:44 - Skrivardrivrutinen Send To Microsoft OneNote Driver installerad RP26: 2009-04-06 19:03:24 - Software Distribution Service 3.0 RP27: 2009-04-13 12:45:28 - Installed Zune Desktop Theme RP28: 2009-04-15 14:05:36 - Installed K-Lite Codec Pack ==== Installed Programs ====================== 2007 Microsoft Office Suite Service Pack 1 (SP1) AAC Decoder Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 8.1.2 - Svenska Adobe Shockwave Player 11.5 Atheros WLAN Client µTorrent AutoUpdate Choice Guard Direct Show Ogg Vorbis Filter (remove only) DivX Codec DivX Converter DivX Player DivX Plus DirectShow Filters DivX Web Player DivX Version Checker DScaler 5 Mpeg Decoders Easy Display Manager Easy Network Manager ffdshow [rev 2844] [2009-03-30] H.264 Decoder Hotfix for Windows Media Format 11 SDK (KB929399) imagine digital freedom - Samsung Indeo® Software Intel® Graphics Media Accelerator Driver J2SE Runtime Environment 5.0 Junk Mail filter update K-Lite Codec Pack 4.7.5 (Basic) Magic Keyboard Marvell Miniport Driver McAfee SecurityCenter Microsoft Application Error Reporting Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Software Update for Web Folders (English) 12 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable MKV Splitter Mozilla Firefox (3.0.8) MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 Parser and SDK Namuga 1.3M Webcam Play Camera Realtek High Definition Audio Driver RocketDock 1.3.5 Samsung Battery Manager Samsung EDS Samsung Magic Doctor SAMSUNG Mobile Composite Device Software SAMSUNG Mobile Modem Driver Set Samsung Mobile phone USB driver Software SAMSUNG Mobile USB Modem 1.0 Software SAMSUNG Mobile USB Modem Software Samsung PC Studio 3 Samsung PC Studio 3 USB Driver Installer Samsung Recovery Solution III Samsung Update Plus Samsung Wallpaper Security Update for 2007 Microsoft Office System (KB951550) Security Update for 2007 Microsoft Office System (KB951944) Security Update for 2007 Microsoft Office System (KB958439) Security Update for Microsoft Office Excel 2007 (KB958437) Security Update for Microsoft Office OneNote 2007 (KB950130) Security Update for Microsoft Office PowerPoint 2007 (KB951338) Security Update for Microsoft Office Publisher 2007 (KB950114) Security Update for Microsoft Office system 2007 (KB954326) Security Update for Microsoft Office system 2007 (KB956828) Security Update for Microsoft Office Word 2007 (KB956358) Segoe UI Snabbkorrigering för Windows Media Player 11 (KB939683) Snabbkorrigering för Windows XP (KB952287) Säkerhetsuppdatering för Windows Media Player (KB952069) Säkerhetsuppdatering för Windows Media Player 11 (KB936782) Säkerhetsuppdatering för Windows Media Player 11 (KB954154) Säkerhetsuppdatering för Windows XP (KB938464-v2) Säkerhetsuppdatering för Windows XP (KB941569) Säkerhetsuppdatering för Windows XP (KB946648) Säkerhetsuppdatering för Windows XP (KB950760) Säkerhetsuppdatering för Windows XP (KB950762) Säkerhetsuppdatering för Windows XP (KB950974) Säkerhetsuppdatering för Windows XP (KB951066) Säkerhetsuppdatering för Windows XP (KB951376-v2) Säkerhetsuppdatering för Windows XP (KB951698) Säkerhetsuppdatering för Windows XP (KB951748) Säkerhetsuppdatering för Windows XP (KB952954) Säkerhetsuppdatering för Windows XP (KB954211) Säkerhetsuppdatering för Windows XP (KB954459) Säkerhetsuppdatering för Windows XP (KB954600) Säkerhetsuppdatering för Windows XP (KB955069) Säkerhetsuppdatering för Windows XP (KB956802) Säkerhetsuppdatering för Windows XP (KB956803) Säkerhetsuppdatering för Windows XP (KB956841) Säkerhetsuppdatering för Windows XP (KB957097) Säkerhetsuppdatering för Windows XP (KB958215) Säkerhetsuppdatering för Windows XP (KB958644) Säkerhetsuppdatering för Windows XP (KB958687) Säkerhetsuppdatering för Windows XP (KB958690) Säkerhetsuppdatering för Windows XP (KB960225) Säkerhetsuppdatering för Windows XP (KB960714) Säkerhetsuppdatering för Windows XP (KB960715) Synaptics Pointing Device Driver Thoosje Vista Sidebar TypingMaster Pro Update for Microsoft Office Outlook 2007 (KB952142) Update for Office 2007 (KB946691) Update for Outlook 2007 Junk Email Filter (kb962871) Uppdatering för Windows XP (KB898461) Uppdatering för Windows XP (KB951978) Uppdatering för Windows XP (KB955839) Uppdatering för Windows XP (KB967715) User Guide VC80CRTRedist - 8.0.50727.762 WebFldrs XP WIDCOMM Bluetooth Software Viktig uppdatering för Windows Media Player 11 (KB959772) Winamp Windows-drivrutinspaket - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0) Windows-drivrutinspaket - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0) Windows Live Communications Platform Windows Live Essentials Windows Live inloggningsassistenten Windows Live Mail Windows Live Messenger Windows Live OneCare safety scanner Windows Live Upload Tool Windows Media Format 11 runtime Windows Media Player 11 Windows Media Player Firefox Plugin WinRAR archiver VLC media player 0.9.8a Xvid 1.2.1 final uninstall XviD MPEG-4 Codec Yahoo! Messenger Zune Desktop Theme ==== End Of File =========================== [/log]
  6. DDS [log] DDS (Ver_09-03-16.01) - NTFSx86 Run by a i s h a at 19:14:45,23 on 2009-04-15 Internet Explorer: 6.0.2900.5512 Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.1014.472 [GMT 2:00] AV: McAfee VirusScan *On-access scanning enabled* (Updated) FW: McAfee Personal Firewall *enabled* ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\Program\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program\McAfee\MSC\mcmscsvc.exe C:\WINDOWS\Explorer.EXE c:\program\DELADE~1\mcafee\mna\mcnasvc.exe c:\program\DELADE~1\mcafee\mcproxy\mcproxy.exe C:\Program\McAfee\VIRUSS~1\mcshield.exe C:\Program\McAfee\MPF\MPFSrv.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\RUNDLL32.EXE c:\program\mcafee.com\agent\mcagent.exe C:\Program\Java\jre1.5.0\bin\jusched.exe C:\WINDOWS\RTHDCPL.EXE C:\Program\Samsung\Samsung EDS\EDSAgent.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program\Synaptics\SynTP\SynTPEnh.exe C:\Program\Samsung\Samsung Battery Manager\BatteryManager.exe C:\Program\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\system32\lspvt32.exe C:\Program\RocketDock\RocketDock.exe C:\WINDOWS\system32\ctfmon.exe C:\Program\Samsung\Easy Display Manager\dmhkcore.exe C:\Program\SAMSUNG\MagicKBD\MagicKBD.exe C:\Program\SAMSUNG\MagicKBD\PerformanceManager.exe C:\WINDOWS\system32\igfxext.exe C:\Program\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program\Thoosje Vista Sidebar\Thoosje Sidebar.exe C:\Program\WIDCOMM\BLUETO~1\BTSTAC~1.EXE C:\Program\Mozilla Firefox\firefox.exe c:\program\mcafee\VIRUSS~1\mcvsshld.exe C:\Program\Internet Explorer\iexplore.exe C:\Documents and Settings\a i s h a\Skrivbord\dds.scr ============== Pseudo HJT Report =============== uStart Page = hxxp://google.com/ uSearch Page = hxxp://search.live.com mSearchAssistant = hxxp://search.live.com/sphome.aspx BHO: Länkhjälp till Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program\delade filer\adobe\acrobat\activex\AcroIEHelper.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program\microsoft office\office12\GrooveShellExtensions.dll BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program\mcafee\viruss~1\scriptsn.dll BHO: Windows Live inloggningshjälpen: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program\delade filer\microsoft shared\windows live\WindowsLiveLogin.dll uRun: [RocketDock] "c:\program\rocketdock\RocketDock.exe" uRun: [Vidalia] "c:\program\vidalia bundle\vidalia\vidalia.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [sunJavaUpdateSched] c:\program\java\jre1.5.0\bin\jusched.exe mRun: [RTHDCPL] RTHDCPL.EXE mRun: [Alcmtr] ALCMTR.EXE mRun: [<NO NAME>] mRun: [EDS] c:\program\samsung\samsung eds\EDSAgent.exe mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [synTPEnh] c:\program\synaptics\syntp\SynTPEnh.exe mRun: [Adobe Reader Speed Launcher] "c:\program\adobe\reader 8.0\reader\Reader_sl.exe" mRun: [DMHotKey] c:\program\samsung\easy display manager\DMLoader.exe mRun: [batteryManager] c:\program\samsung\samsung battery manager\BatteryManager.exe mRun: [MagicKeyboard] c:\program\samsung\magickbd\PreMKBD.exe mRun: [mcagent_exe] "c:\program\mcafee.com\agent\mcagent.exe" /runkey mRun: [sysldtray] c:\windows\ld08.exe mRun: [GrooveMonitor] "c:\program\microsoft office\office12\GrooveMonitor.exe" mRun: [Microsoft ALU manager] c:\windows\system32\lspvt32.exe dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE StartupFolder: c:\docume~1\aisha~1\start-~1\program\autost~1\thoosj~1.lnk - c:\program\thoosje vista sidebar\Thoosje Sidebar.exe StartupFolder: c:\docume~1\alluse~1\start-~1\program\autost~1\bttray.lnk - c:\program\widcomm\bluetooth software\BTTray.exe IE: E&xport to Microsoft Excel - c:\program\micros~3\office12\EXCEL.EXE/3000 IE: Skicka till &Bluetooth-enhet... - c:\program\widcomm\bluetooth software\btsendto_ie_ctx.htm IE: Skicka till Bluetooth - c:\program\widcomm\bluetooth software\btsendto_ie.htm IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program\widcomm\bluetooth software\btsendto_ie.htm IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program\messenger\msmsgs.exe IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program\micros~3\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\program\micros~3\office12\REFIEBAR.DLL DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program\microsoft office\office12\GrooveSystemServices.dll Notify: igfxcui - igfxdev.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program\microsoft office\office12\GrooveShellExtensions.dll ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\aisha~1\applic~1\mozilla\firefox\profiles\2b17uj1m.defaultFF - plugin: c:\program\java\jre1.5.0\bin\NPJava11.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJava12.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJava13.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJava14.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJava32.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPJPI150.dll FF - plugin: c:\program\java\jre1.5.0\bin\NPOJI610.dll ---- FIREFOX POLICIES ---- c:\program\mozilla firefox\greprefs\all.js - pref("browser.visited_color", "#551A8B"); c:\program\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se"); c:\program\mozilla firefox\defaults\pref\firefox.js - pref("browser.videoFeeds.handler", "ask"); ============= SERVICES / DRIVERS =============== R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2008-12-31 213640] R2 DOSMEMIO;MEMIO;c:\windows\system32\MEMIO.SYS [2008-12-31 4300] R2 McProxy;McAfee Proxy Service;c:\program\delade~1\mcafee\mcproxy\mcproxy.exe [2008-12-31 359952] R2 McShield;McAfee Real-time Scanner;c:\program\mcafee\viruss~1\mcshield.exe [2008-12-31 144704] R2 yksvc;Marvell Yukon Service;RUNDLL32.EXE ykx32mpcoinst,serviceStartProc --> RUNDLL32.EXE ykx32mpcoinst,serviceStartProc [?] R3 DNSeFilter;DNSeFilter;c:\windows\system32\drivers\SamsungEDS.SYS [2008-1-14 30208] R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2008-12-31 79304] R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2008-12-31 35272] R3 VMC326;Vimicro Camera Service VMC326;c:\windows\system32\drivers\VMC326.sys [2008-12-31 238464] S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2008-12-31 34216] S3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2008-12-31 40552] S4 McSysmon;McAfee SystemGuards;c:\program\mcafee\viruss~1\mcsysmon.exe [2008-12-31 606736] =============== Created Last 30 ================ 2009-04-15 14:44 148 a------- C:\pch.bat 2009-04-15 14:38 2 ----h--- c:\windows\t55ft2829f44.dat 2009-04-15 14:38 2 ----h--- c:\windows\t55ft2772f44.dat 2009-04-15 14:06 815,104 a------- c:\windows\system32\xvidcore.dll 2009-04-15 14:06 77,824 a------- c:\windows\system32\xvid.ax 2009-04-15 14:06 180,224 a------- c:\windows\system32\xvidvfw.dll 2009-04-15 14:06 <DIR> --d----- c:\program\Xvid 2009-04-15 14:05 168,448 a------- c:\windows\system32\unrar.dll 2009-04-15 14:05 <DIR> --d----- c:\program\K-Lite Codec Pack 2009-04-15 14:05 36,734 a------- c:\windows\system32\OggDSuninst.exe 2009-04-15 14:03 136,704 a------- c:\windows\system32\iacenc.dll 2009-04-15 14:03 56,320 -------- c:\windows\system32\iyvu9_32.dll 2009-04-15 14:03 <DIR> --d----- c:\program\Ligos 2009-04-15 14:02 306,688 a------- c:\windows\IsUninst.exe 2009-04-15 14:01 <DIR> --d----- c:\program\DScaler5 2009-04-15 13:58 <DIR> --d----- c:\program\delade filer\DivX Shared 2009-04-15 13:58 <DIR> --d----- c:\program\DivX 2009-04-14 14:55 <DIR> --d----- c:\docume~1\aisha~1\applic~1\c1 2009-04-13 23:24 198,656 a------- c:\windows\system32\CNMLM82.DLL 2009-04-13 23:23 25,856 ac------ c:\windows\system32\dllcache\usbprint.sys 2009-04-13 23:23 25,856 a------- c:\windows\system32\drivers\usbprint.sys 2009-04-13 23:20 15,104 ac------ c:\windows\system32\dllcache\usbscan.sys 2009-04-13 23:20 15,104 a------- c:\windows\system32\drivers\usbscan.sys 2009-04-13 22:30 <DIR> --d----- c:\program\XP Codec Pack 2009-04-13 22:28 50,688 a------- c:\windows\system32\ff_acm.acm 2009-04-13 22:28 60,273 a------- c:\windows\system32\pthreadGC2.dll 2009-04-13 22:28 <DIR> --d----- c:\program\ffdshow 2009-04-13 20:14 <DIR> --d----- c:\docume~1\aisha~1\applic~1\c2 2009-04-13 19:26 32 a------- c:\windows\hip 2009-04-13 19:26 <DIR> --d----- c:\program\Hide IP 2009-04-13 19:19 56 a------- c:\windows\MyProg.ini 2009-04-13 19:09 25,620,992 a------- c:\windows\system32\lspvt32.exe 2009-04-13 18:23 <DIR> --d----- c:\windows\WinRAR 2009-04-13 16:07 <DIR> --ds---- c:\documents and settings\a i s h a\UserData 2009-04-06 18:19 208,744 a------- c:\windows\system32\muweb.dll 2009-04-06 18:19 27,496 a------- c:\windows\system32\mucltui.dll.mui 2009-04-06 18:19 268,648 a------- c:\windows\system32\mucltui.dll 2009-04-04 13:30 32,592 a------- c:\windows\system32\msonpmon.dll 2009-04-04 13:20 <DIR> --d----- c:\windows\SHELLNEW 2009-04-03 16:19 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Broderbund 2009-04-03 16:19 <DIR> --d----- c:\docume~1\aisha~1\applic~1\Broderbund 2009-04-03 15:53 <DIR> --d----- c:\docume~1\aisha~1\applic~1\TypingMaster7 2009-04-03 15:53 <DIR> --d--r-- c:\program\TypingMaster 2009-03-23 07:43 <DIR> --d----- c:\docume~1\aisha~1\applic~1\Samsung 2009-03-21 15:17 2 ----h--- c:\windows\t55ft2808f44.dat ==================== Find3M ==================== 2009-03-29 12:21 315,576 a------- c:\windows\system32\perfh01D.dat 2009-03-29 12:21 48,190 a------- c:\windows\system32\perfc01D.dat 2009-03-13 23:16 76,487 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat 2009-03-10 05:01 0 a------- c:\windows\system32\drivers\144D_SAMSUNG_N_NC10_04CA.mrk 2009-02-24 21:35 129,784 -------- c:\windows\system32\pxafs.dll 2009-02-24 21:35 120,056 -------- c:\windows\system32\pxcpyi64.exe 2009-02-24 21:35 118,520 -------- c:\windows\system32\pxinsi64.exe 2009-02-24 21:35 43,528 -------- c:\windows\system32\drivers\PxHelp20.sys 2009-02-24 21:35 9,464 -------- c:\windows\system32\drivers\cdralw2k.sys 2009-02-24 21:35 9,336 -------- c:\windows\system32\drivers\cdr4_xp.sys 2009-02-24 21:34 90,112 a------- c:\windows\system32\dpl100.dll 2009-02-24 21:34 823,296 a------- c:\windows\system32\divx_xx0c.dll 2009-02-24 21:34 823,296 a------- c:\windows\system32\divx_xx07.dll 2009-02-24 21:34 815,104 a------- c:\windows\system32\divx_xx0a.dll 2009-02-24 21:34 802,816 a------- c:\windows\system32\divx_xx11.dll 2009-02-24 21:34 684,032 a------- c:\windows\system32\DivX.dll 2009-02-09 16:07 1,846,784 a------- c:\windows\system32\win32k.sys 2009-02-06 19:52 49,504 a------- c:\windows\system32\sirenacm.dll 2009-01-16 19:34 499,712 a------- c:\windows\system32\msvcp71.dll ============= FINISH: 19:15:40,70 =============== [/log]
  7. jag provade att skicka fil via virustotal.com jag klistrade in C:\windows\system32\lspvt32.exe sedan klickade på skicka fil. tog lite tid,.. men sedan dök upp denna meddelande: Bigger than max permited size / Mayor del tamaño máximo permitido.
  8. jag försökte hitta filen i windows/system32 men hittar ej. jag ser alla andra dolda filer, men hittar inte just den här filen. kan inte heller få igång regedit av någon konstig anledning. vad gör jag nu? [bild bifogad 2009-04-15 18:08:46 av angelfalls]
  9. jag gjorde precis som du skrev. bifogar bilden.. [bild bifogad 2009-04-15 17:18:52 av angelfalls]
  10. finns det någon här som vet hur jag får bort den,.. den dyker upp hela tiden och försvinner av sig själv, sen dyker upp igen. hur får jag stop på den??
  11. Det dyker upp meddelande var 10:e sekund på skrivbordet, där det står: det gick inte att hitta file ///C:/WINDOWS/pad.htm. Kontrollera att du har angett rätt sökväg eller internet adress. Förstår inte varför den dyker upp. Hur får jag bort denna meddelande? Den dyker upp var 10:e sekund så himla irriterande. Please help..!!!! Kolla bifogat fil. [bild bifogad 2009-04-13 21:54:01 av angelfalls]
  12. Dator modell är: Toshiba Satellite A300-1B9 PSAJ4E-02P00WN5 Har formaterat om datorn (vista är installerat) Har problem med ljudet eller ljudkortet vet ej, hörlurar uttaget fungerar inte som den ska. Normalt när man kopplar in hörlurar då ska man ej höra ljudet från högtalaren, men när jag kopplar in hörlurar då hör jag fortfarande ljudet via högtalaren men ej via hörlurar. Har provat o installera dem senaste drivrutiner via toshibas hemsida: Conexant conexant high definition smart audio 221 men det hjälper inte. Dem är redan installerade sen när jag försöker uppgradera sound driver så får jag failure meddelandet. För att få ljudet via hörlurar uttaget måste jag ändra inställningar via kontrollpanelen vilket är jobbigt. Vilken är den bästa lösning?? Vad ska jag göra för att ljudet/ljudkortet ska fungerar som den ska så man slipper ändra inställningar hela tiden. [bild raderad 2008-12-29 16:27:01 av angelfalls] [bild bifogad 2008-12-29 16:27:36 av angelfalls]
  13. Den enda lösning som finns är nog att formatera om datorn, det går varken att ta bort filen eller ersätta filen dvs. eshell filen. :( finns det möjlighet o få gratis support via microsoft eller??
  14. Nu har jag inaktiverat UAC och startade om datorn. Men filen fungerar fortfarande inte och jag får fortfarande upp samma meddelande. Hur öppnar jag registret för att sätta värde för EnableLUA till 0. Hur kommer jag åt registret,.. är det via kör eller?? Jag har vista home premium 32-bit. Skulle du kunna kopiera hela mappen istället och zippa in och maila den till mig,.. kanske det hjälper eller?? Vad kan man annars göra??
×
×
  • Skapa nytt...