Just nu i M3-nätverket
Gå till innehåll

tankado

Medlem
  • Antal inlägg

    132
  • Gick med

  • Senaste besök

Allt postat av tankado

  1. När ska detta sluta? Jag mistänker nu att jag har, ännu en gång fått virus på något mystiskt sätt. Jag bifogar HiJackThis logg. [log]Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:20:11, on 2008-11-25 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program\TGTSoft\StyleXP\StyleXPService.exe C:\WINDOWS\system32\spoolsv.exe C:\Program\Delade filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program\Bonjour\mDNSResponder.exe C:\Program\Eset\nod32krn.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe c:\Program\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\WINDOWS\system32\svchost.exe C:\Program\Delade filer\Ahead\Lib\NMIndexingService.exe C:\Program\iPod\bin\iPodService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\winlogon.exe C:\Program\Delade filer\Stardock\SDMCP.exe C:\WINDOWS\Explorer.EXE C:\Program\Delade filer\Stardock\TrayServer.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program\Analog Devices\Core\smax4pnp.exe C:\Program\Eset\nod32kui.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE C:\WINDOWS\system32\LVCOMSX.EXE C:\Program\Logitech\Video\LogiTray.exe C:\Program\Java\jre1.6.0_07\bin\jusched.exe C:\Program\PowerISO\PWRISOVM.EXE C:\Program\iTunes\iTunesHelper.exe C:\Program\Alarm Me\AlarmMe.exe C:\WINDOWS\system32\ctfmon.exe C:\Program\Skype\Phone\Skype.exe C:\Program\MSN Messenger\MsnMsgr.Exe C:\Program\Messenger\msmsgs.exe C:\Program\DAEMON Tools\daemon.exe C:\Program\Delade filer\Ahead\Lib\NMBgMonitor.exe C:\Program\Electronic Arts\EADM\Core.exe C:\Program\TGTSoft\StyleXP\StyleXP.exe C:\program\valve\steam\steam.exe C:\Program\Spybot - Search & Destroy\TeaTimer.exe C:\Program\Delade filer\Ahead\Lib\NMIndexStoreSvr.exe C:\Program\Logitech\SetPoint\SetPoint.exe C:\Program\Delade filer\Logishrd\KHAL2\KHALMNPR.EXE C:\Program\Logitech\Video\FxSvr2.exe C:\WINDOWS\system32\wuauclt.exe C:\Program\Skype\Plugin Manager\skypePM.exe C:\Program\Xfire\Xfire.exe C:\Program\MSN Messenger\usnsvc.exe C:\WINDOWS\system32\PnkBstrB.exe C:\Program\uTorrent\uTorrent.exe C:\Program\Mozilla Firefox\firefox.exe E:\Mattias\Program\HiJackThis (stäng av virusskydd)\HiJackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program\Delade filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [1A:Stardock TrayMonitor] "C:\Program\Delade filer\Stardock\TrayServer.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [soundMAXPnP] C:\Program\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [nod32kui] "C:\Program\Eset\nod32kui.exe" /WAITSERVICE O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O6 "USB001" /M "Stylus Photo RX420" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program\Delade filer\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program\PowerISO\PWRISOVM.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [AlarmMe] "C:\Program\Alarm Me\AlarmMe.exe" "-h" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [skype] "C:\Program\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [MsnMsgr] "C:\Program\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [LogitechSoftwareUpdate] C:\Program\Logitech\Video\ManifestEngine.exe boot O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program\Delade filer\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [EA Core] C:\Program\Electronic Arts\EADM\Core.exe -silent O4 - HKCU\..\Run: [sTYLEXP] C:\Program\TGTSoft\StyleXP\StyleXP.exe -Hide O4 - HKCU\..\Run: [steam] "c:\program\valve\steam\steam.exe" -silent O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-21-2025429265-790525478-839522115-1004\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Therese') O4 - HKUS\S-1-5-21-2025429265-790525478-839522115-1004\..\Run: [LogitechSoftwareUpdate] C:\Program\Logitech\Video\ManifestEngine.exe boot (User 'Therese') O4 - HKUS\S-1-5-21-2025429265-790525478-839522115-1004\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program\Delade filer\Ahead\Lib\NMBgMonitor.exe" (User 'Therese') O4 - HKUS\S-1-5-21-2025429265-790525478-839522115-1004\..\Run: [msnmsgr] "C:\Program\MSN Messenger\msnmsgr.exe" /background (User 'Therese') O4 - HKUS\S-1-5-21-2025429265-790525478-839522115-1004\..\Run: [MSMSGS] "C:\Program\Messenger\msmsgs.exe" /background (User 'Therese') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Logitech-produktregistrering.lnk = C:\Program\Delade filer\Logishrd\eReg\SetPoint\eReg.exe O4 - Startup: Xfire.lnk = C:\Program\Xfire\xfire.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl.sun.com/webapps/download/AutoDL?BundleId=23100 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program\DELADE~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: winwly32 - winwly32.dll (file missing) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program\Delade filer\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program\Delade filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-tjänst (Bonjour Service) - Apple Inc. - C:\Program\Bonjour\mDNSResponder.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program\Delade filer\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program\Delade filer\Logishrd\Bluetooth\LBTServ.exe O23 - Service: NBService - Nero AG - C:\Program\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program\Delade filer\Ahead\Lib\NMIndexingService.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program\Eset\nod32krn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe O23 - Service: StyleXPService - Unknown owner - C:\Program\TGTSoft\StyleXP\StyleXPService.exe -- End of file - 9955 bytes[/log] Tack på förhand
  2. Så det finns inget annat sätt att göra detta på då?
  3. Hej! Det är så att jag snart ska på LAN. Jag har fetast högtalare av alla så vi tänkte att vi kunde ha lite musik från mina högtalare under lanet. Problemet då är ju att jag inte vill höra musiken i mitt headset samtidigt som jag inte vill höra mitt spel/ventrilo ljud i högtalarna. Någon idé om hur jag löser detta? =) Mvh Mattias
  4. Okej jag har lyckats få igång det på en annan dator. Men hur gör man för att få det att funka på tre datorer? [inlägget ändrat 2008-08-02 18:53:50 av tankado]
  5. Hejsan! Jag undrar om det går att med något smart program starta en online BIO session eller vad man ska kalla det. Jag tänker mig att alla mina 3 kompisar inkl jag ska kunna se en film på varsin dator som jag liksom hostar på min dator. Säg till om ni inte förstår så försöker jag förklara bättre. Tack på förhand!
  6. Okej =) Tack för hjälpen =)
  7. Jag förstår inte riktigt flora.. Menar du att jag är utsatt för risk nu eller? [inlägget ändrat 2008-07-12 22:47:35 av tankado]
  8. Okej, allt verkar fungera men jag är orolig för en sak. Kommer andra att kunna komma åt min skrivare och mina delade dokument eller bara dom som är anslutna till min router? Och jag måste väll välja att dela ut om mina mappar ska få ses på den bärbara datorn? Tack på förhand! [inlägget ändrat 2008-07-12 20:24:11 av tankado]
  9. Hejsan! Detta är säkert en väldigt vanlig fråga här men jag hittar inte riktigt svar på just mitt problem. Jag har två datorer här hemma. En Dell stationär och en Fujitsu Siemens bärbar. Jag har en router som är av typen Netgear Wireless WGR614. Den stationära är ansluten med en sladd och den bärbara ansluter trådlöst. Jag vill nu kunna ha ett hemnätverk så att vi kan utbyta filer + att den bärbara också kan använda min skrivare. Som är en EPSON STYLUS PHOTO RX425. Min internetleverantör är Com Hem och vad jag vet så utdelas det en dynamisk IP adress (tror jag). Tacksam för all hjälp jag kan få! Mch Mattias
  10. Jag känner inte igen dom men när jag trycker på dom står det "Redigera Säkerhet"
  11. Men problem kvarstår, hon skickar fortfarande iväg konstiga länkar på msn.
  12. Main.txt [log]Deckard's System Scanner v20071014.68 Run by Sandra Lilja on 2008-07-06 19:15:39 Computer is in Normal Mode. -------------------------------------------------------------------------------- Backed up registry hives. Performed disk cleanup. -- HijackThis (run as Sandra Lilja.exe) ---------------------------------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:17:23, on 2008-07-06 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16681) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Windows\System32\rundll32.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\PC-TV\WinManager\WinManager.exe C:\Windows\System32\rundll32.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Windows\system32\conime.exe C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe C:\Users\Sandra Lilja\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JNCLFWI1\dss[1].exe C:\Windows\system32\DllHost.exe C:\PROGRA~1\TRENDM~1\HIJACK~1\Sandra Lilja.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKAL TJÄNST') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKAL TJÄNST') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NÄTVERKSTJÄNST') O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user') O4 - Startup: MailWasherPro.lnk = C:\Users\Sandra Lilja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MailWasher.exe O4 - Global Startup: WinManager.lnk = C:\Program Files\PC-TV\WinManager\WinManager.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Blogga detta - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blogga detta i Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Skicka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Ski&cka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O13 - Gopher Prefix: O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab2.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - C:\Program\RealVNC\VNC4\WinVNC4.exe -- End of file - 7524 bytes -- File Associations ----------------------------------------------------------- All associations okay. -- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------- All drivers whitelisted. -- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled -------------------- All services whitelisted. -- Device Manager: Disabled ---------------------------------------------------- No disabled devices found. -- Scheduled Tasks ------------------------------------------------------------- 2008-07-06 18:02:27 422 --a------ C:\Windows\Tasks\Norton Security Scan.job 2007-11-23 17:57:22 268 --a------ C:\Windows\Tasks\Kontrollera uppdateringar för Windows Live Toolbar.job -- Files created between 2008-06-06 and 2008-07-06 ----------------------------- 2008-07-06 18:16:31 0 d-------- C:\327882R2FWJFW 2008-07-06 18:03:43 0 d-------- C:\Program Files\Trend Micro 2008-07-01 09:22:23 0 d-------- C:\Program Files\EA GAMES 2008-06-26 13:58:07 0 d-------- C:\084394d2d6ac1c9543 2008-06-21 10:00:37 0 d-------- C:\Windows\system32\Adobe -- Find3M Report --------------------------------------------------------------- 2008-07-06 18:00:02 0 d-------- C:\Program Files\Norton Security Scan 2008-07-06 12:33:15 15 --a------ C:\ScanSectorLog.dat 2008-06-29 18:03:10 0 d-------- C:\Program Files\Common Files\Symantec Shared 2008-06-21 10:45:48 0 d-------- C:\Users\Sandra Lilja\AppData\Roaming\MailWasherPro 2008-06-21 10:04:04 0 d-------- C:\Program Files\Java 2008-06-21 09:55:58 0 d-------- C:\Program Files\Microsoft Silverlight 2008-06-13 03:17:33 0 d-------- C:\Program Files\Windows Mail 2008-06-03 07:58:55 472176 --a------ C:\Windows\system32\perfh01D.dat 2008-06-03 07:58:55 81308 --a------ C:\Windows\system32\perfc01D.dat -- Registry Dump --------------------------------------------------------------- *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-11-23 17:19] "ZoneAlarm Client"="C:\Program\Zone Labs\ZoneAlarm\zlclient.exe" [2007-06-04 06:24] "GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 08:00] "NvSvc"="C:\Windows\system32\nvsvc.dll" [2007-09-12 06:28] "NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2007-09-12 06:28] "NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2007-09-12 06:28] "Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 09:16] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25] "Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-22 16:09] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 23:16] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 12:35] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-11-24 18:42] "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 14:36] [HKEY_USERS\.default\software\microsoft\windows\currentversion\run] "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"=2 (0x2) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "disableregistrytools"=0 (0x0) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] @="Volume shadow copy" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] @="IEEE 1394 Bus host controllers" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] @="SBP2 IEEE 1394 Devices" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] @="SecurityDevices" [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalService nsi lltdsvc SSDPSRV upnphost SCardSvr w32time EventSystem RemoteRegistry WinHttpAutoProxySvc lanmanworkstation TBS SLUINotify THREADORDER fdrespub netprofm fdphost wcncsvc QWAVE WebClient LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc CscService TabletInputService UmRdpService wlansvc WPDBusEnum EMDMgmt LocalServiceNoNetwork PLA DPS BFE mpssvc LocalServiceNetworkRestricted DHCP eventlog AudioSrv LmHosts wscsvc p2pimsvc PNRPSvc p2psvc PnrpAutoReg [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{75c7a96c-99c0-11dc-9e66-806e6f6e6963}] AutoRun\command- E:\Autorun.exe *Newly Created Service* - ERASERUTILDRV10741 [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] C:\Windows\system32\unregmp2.exe /ShowWMP [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] %SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI -- End of Deckard's System Scanner: finished at 2008-07-06 19:20:22 ------------ [/log]
  13. Jag har stängt av Virus skyddet och sånt och ComboFix vägrar starta. Testat att köra under kompabilitetsläge för Xp SP2 och även att köra som admin. What to do?
  14. Tjenare! Här kommer jag igen och vill ha hjälp med virus och folk som t ex Cecilia kommer säkert höja ögonbrynen. Men jag får faktiskt stolt säga att denna gången är det inte min datorn som klyddar! Okej till problemet. Jag skrev för några månader sedan om ett Msn Messenger problem i denna tråd: //eforum.idg.se/viewmsg.asp?EntriesId=1026599. Det löste sig och allt fungerade efter deras hjälp. När då min kompis visade att hon hade ett liknande problem så tänkte jag att det är bara och gå tillbaka och titta hur jag gjorde sist. Men självklart var det inte så enkelt. I mitt tidigare problem så var det att min dator skickade olika ZIP filer som innehöll virus. Här är det annorlunda, på hennes dator så skickar hennes msn olika länkar till sidor som jag tror är virus sidor. Det sker då hon är utloggad. Jag bifogar en HiJackThis logg som ni kan kolla på: [log]Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:04:28, on 2008-07-06 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16681) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Windows\System32\rundll32.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\PC-TV\WinManager\WinManager.exe C:\Windows\System32\rundll32.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Windows\system32\Macromed\Flash\FlashUtil9d.exe C:\Windows\system32\taskeng.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Windows\system32\SearchFilterHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKAL TJÄNST') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKAL TJÄNST') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NÄTVERKSTJÄNST') O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user') O4 - Startup: MailWasherPro.lnk = C:\Users\Sandra Lilja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MailWasher.exe O4 - Global Startup: WinManager.lnk = C:\Program Files\PC-TV\WinManager\WinManager.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Blogga detta - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blogga detta i Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Skicka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Ski&cka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O13 - Gopher Prefix: O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab2.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - C:\Program\RealVNC\VNC4\WinVNC4.exe -- End of file - 7553 bytes [/log] Tackar för snabb hjälp då jag är här på besök endast ikväll! /Tankado
  15. Det har jag inte tänkt på och du kan ha en poäng då jag sitter på LAN med datorn igång hela tiden bland andra datorer i ett litet rum, Jag ska testa att köra nu när den är nystartad.
  16. Ja jag installerade en Nvidia uppdatering i samband med att jag installerade Frontlines: Fuel Of War. Så det är nog inget konstigt med den. Tack för hjälpen, Än en gång ;-)
  17. Jag råkade trycka på en okänd fil och nu är jag rädd att den infekterat datorn. Här är loggar om någon skulle vara snälla tt kolla upp dem. HiJack logg: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:37:56, on 2008-06-18 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\ATKKBService.exe C:\Program\Eset\nod32krn.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe c:\Program\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE C:\WINDOWS\system32\LVCOMSX.EXE C:\Program\Logitech\Video\LogiTray.exe C:\Program\Analog Devices\Core\smax4pnp.exe C:\Program\Java\jre1.6.0_05\bin\jusched.exe C:\Program\Eset\nod32kui.exe C:\Program\PowerISO\PWRISOVM.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program\Delade filer\Ahead\Lib\NMBgMonitor.exe C:\Program\MSN Messenger\MsnMsgr.Exe C:\Program\Skype\Phone\Skype.exe C:\Program\Delade filer\Ahead\Lib\NMIndexingService.exe C:\Program\DAEMON Tools\daemon.exe C:\Program\Delade filer\Ahead\Lib\NMIndexStoreSvr.exe C:\Program\Logitech\Video\FxSvr2.exe C:\Program\Skype\Plugin Manager\skypePM.exe C:\PROGRAM\MOZILL~1\FIREFOX.EXE C:\Program\Eset\nod32.exe G:\Anti skit dator fiskigt\Hijack\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program\Delade filer\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O6 "USB001" /M "Stylus Photo RX420" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [nod32kui] "C:\Program\Eset\nod32kui.exe" /WAITSERVICE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program\PowerISO\PWRISOVM.EXE O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program\Delade filer\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [skype] "C:\Program\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [LogitechSoftwareUpdate] C:\Program\Logitech\Video\ManifestEngine.exe boot O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJÄNST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.euro.dell.com/systemprofiler/SysPro.CAB O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O23 - Service: Adobe LM Service - Adobe Systems - C:\Program\Delade filer\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program\Delade filer\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program\Delade filer\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: NBService - Nero AG - C:\Program\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program\Delade filer\Ahead\Lib\NMIndexingService.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program\Eset\nod32krn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe -- End of file - 6337 bytes Här är ComboFix logg: ComboFix 08-06-16.5 - Mattias 2008-06-18 21:01:31.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1053.18.448 [GMT 2:00] Running from: C:\Documents and Settings\Mattias\Skrivbord\ComboFix.exe * Created a new restore point * Resident AV is active WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((( Files Created from 2008-05-18 to 2008-06-18 ))))))))))))))))))))))))))))))) . 2008-06-18 18:13 . 2008-06-18 19:50 <KAT> d-------- C:\WINDOWS\NV21842692.TMP 2008-06-18 18:00 . 2008-06-18 18:13 <KAT> d-------- C:\WINDOWS\nvidia icons 2008-06-18 18:00 . 2008-06-18 19:50 <KAT> d-------- C:\WINDOWS\NV7123904.TMP 2008-06-18 18:00 . 2008-03-24 19:52 175,336 --a------ C:\WINDOWS\system32\nvapps.nvb 2008-06-18 17:49 . 2008-06-18 17:49 <KAT> d-------- C:\WINDOWS\system32\sv-SE 2008-06-18 10:07 . 2008-06-18 10:07 <KAT> d-------- C:\Program\Aerosoft 2008-06-17 12:10 . 2008-06-17 12:10 <KAT> d-------- C:\WINDOWS\system32\AGEIA 2008-06-17 12:10 . 2008-06-17 12:11 <KAT> d-------- C:\Program\AGEIA Technologies 2008-06-17 11:51 . 2008-06-17 11:51 <KAT> d-------- C:\Program\THQ 2008-06-15 14:33 . 2008-06-15 14:33 0 --ah----- C:\WINDOWS\SwSys2.bmp 2008-06-15 14:33 . 2008-06-15 14:33 0 --ah----- C:\WINDOWS\SwSys1.bmp 2008-06-15 14:30 . 2008-06-15 14:30 <KAT> d-------- C:\Program\Game_Maker7 2008-06-15 13:05 . 2008-06-17 01:04 <KAT> d-------- C:\Program\Octoshape Streaming Services 2008-06-14 10:49 . 2008-06-16 10:24 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-06-14 10:49 . 2008-06-14 10:49 1,409 --a------ C:\WINDOWS\QTFont.for 2008-06-11 16:43 . 2008-06-11 16:43 <KAT> d-------- C:\Program\Microsoft Games 2008-06-11 15:54 . 2008-06-11 15:54 <KAT> d-------- C:\Program\PowerISO 2008-06-11 14:33 . 2008-04-14 17:53 272,128 --------- C:\WINDOWS\system32\drivers\bthport.sys 2008-06-11 14:33 . 2008-04-14 17:53 272,128 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys 2008-06-11 08:00 . 2008-06-11 08:00 <KAT> d-------- C:\Documents and Settings\Päronen\Application Data\mIRC 2008-06-10 18:52 . 2004-08-04 01:18 14,848 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys 2008-06-10 18:52 . 2004-08-04 01:18 14,848 --a--c--- C:\WINDOWS\system32\dllcache\kbdhid.sys 2008-06-10 18:52 . 2001-09-06 19:55 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys 2008-06-10 18:52 . 2001-09-06 19:55 12,160 --a--c--- C:\WINDOWS\system32\dllcache\mouhid.sys 2008-06-10 18:51 . 2004-04-14 11:08 44,064 --a------ C:\WINDOWS\system32\drivers\WmXlCore.sys 2008-06-10 18:51 . 2004-04-14 11:08 21,280 --a------ C:\WINDOWS\system32\drivers\WmFilter.sys 2008-06-10 18:51 . 2004-04-14 11:08 10,144 --a------ C:\WINDOWS\system32\drivers\WmBEnum.sys 2008-06-10 18:51 . 2004-04-14 11:08 5,600 --a------ C:\WINDOWS\system32\drivers\WmVirHid.sys 2008-06-10 18:23 . 2001-08-17 22:02 9,600 --a------ C:\WINDOWS\system32\drivers\hidusb.sys 2008-06-10 18:23 . 2001-08-17 22:02 9,600 --a--c--- C:\WINDOWS\system32\dllcache\hidusb.sys 2008-06-10 13:15 . 2008-06-10 13:27 <KAT> d-------- C:\Program\URUSoft 2008-06-09 18:20 . 2008-06-09 18:20 352,256 --a------ C:\WINDOWS\eSellerateEngine.dll 2008-06-09 18:19 . 2008-06-09 18:19 <KAT> d-------- C:\Program\Delade filer\DeskShare Shared 2008-06-08 18:30 . 2008-06-08 18:33 <KAT> d-------- C:\Program\particleIllusion_3 2008-06-08 18:30 . 2008-06-08 18:30 <KAT> d-------- C:\Documents and Settings\Mattias\WINDOWS 2008-06-08 18:30 . 1997-11-19 15:49 303,616 --a------ C:\WINDOWS\IsUninst.exe 2008-06-07 11:45 . 2004-08-03 22:58 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys 2008-06-07 11:45 . 2004-08-03 22:58 15,104 --a--c--- C:\WINDOWS\system32\dllcache\usbscan.sys 2008-06-03 16:04 . 2008-06-16 14:03 <KAT> d-------- C:\Documents and Settings\All Users\Application Data\TrackMania 2008-06-03 16:00 . 2008-06-03 16:03 <KAT> d-------- C:\Program\TmNationsForever 2008-06-01 18:08 . 1997-11-11 16:00 773,120 --------- C:\WINDOWS\system32\ir41_32.dll 2008-05-30 16:54 . 2008-05-30 16:54 <KAT> d-------- C:\Documents and Settings\All Users\Application Data\Macrovision 2008-05-30 16:50 . 2008-05-30 16:50 <KAT> d-------- C:\Program\Delade filer\Macromedia Shared 2008-05-30 16:50 . 2008-05-30 16:50 <KAT> d-------- C:\Program\Delade filer\Macromedia 2008-05-30 16:50 . 2003-07-30 18:28 974,848 --a------ C:\WINDOWS\system32\mfc70.dll 2008-05-30 16:50 . 2003-07-30 18:28 487,424 --a------ C:\WINDOWS\system32\msvcp70.dll 2008-05-30 16:48 . 2008-05-30 16:50 <KAT> d-------- C:\Program\Macromedia 2008-05-28 22:19 . 2008-05-28 22:19 7,680 --ahs---- C:\WINDOWS\Thumbs.db 2008-05-26 16:55 . 2008-05-26 16:55 <KAT> d-------- C:\Program\LoMan 2008-05-26 16:55 . 2008-05-26 16:55 737,280 --a------ C:\WINDOWS\iun6002.exe 2008-05-23 19:22 . 2004-03-05 01:13 644,400 --a------ C:\WINDOWS\system32\MSCOMCT2.OCX 2008-05-22 19:35 . 2008-05-22 19:35 <KAT> d-------- C:\Program\Foolish Entertainment . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-18 19:01 --------- d-----w C:\Program\ESET 2008-06-18 18:55 --------- d-----w C:\Documents and Settings\Mattias\Application Data\Skype 2008-06-18 18:44 --------- d-----w C:\Documents and Settings\Mattias\Application Data\SiteAdvisor 2008-06-18 17:51 196,608 ----a-w C:\WINDOWS\system32\drivers\nStandard.bin 2008-06-18 17:49 --------- d-----w C:\Documents and Settings\Mattias\Application Data\uTorrent 2008-06-18 17:48 --------- d-----w C:\Documents and Settings\Mattias\Application Data\mIRC 2008-06-18 17:46 --------- d-----w C:\Program\mIRC 2008-06-18 16:23 22,328 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys 2008-06-18 16:20 107,832 ----a-w C:\WINDOWS\system32\PnkBstrB.exe 2008-06-18 08:37 --------- d--h--w C:\Program\InstallShield Installation Information 2008-06-17 10:10 --------- d-----w C:\Program\Delade filer\Wise Installation Wizard 2008-06-16 23:12 --------- d-----w C:\Program\ubi.com 2008-06-16 09:08 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP 2008-06-12 15:58 --------- d-----w C:\Program\EA GAMES 2008-06-10 16:51 --------- d-----w C:\Program\Logitech 2008-06-10 16:51 --------- d-----w C:\Program\Delade filer\Logitech 2008-06-06 11:43 --------- d-----w C:\Documents and Settings\Mattias\Application Data\codeblocks 2008-05-31 18:05 --------- d-----w C:\Program\SystemRequirementsLab 2008-05-31 18:05 --------- d-----w C:\Documents and Settings\Mattias\Application Data\SystemRequirementsLab 2008-05-16 18:09 --------- d-----w C:\Documents and Settings\Mattias\Application Data\Publish Providers 2008-05-15 14:07 --------- d-----w C:\Program\epson 2008-05-12 17:01 --------- d-----w C:\Documents and Settings\Mattias\Application Data\AdobeUM 2008-05-08 12:28 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys 2008-05-07 05:16 1,289,728 ----a-w C:\WINDOWS\system32\quartz.dll 2008-05-06 19:24 --------- d-----w C:\Program\Windows Media Components 2008-05-05 16:26 --------- d-----w C:\Program\Thoosje Sidebar V2.3 2008-05-05 14:01 --------- d-----w C:\Program\Ventrilo 2008-05-05 13:58 --------- d-----w C:\Documents and Settings\Mattias\Application Data\Ventrilo 2008-05-04 19:18 --------- d-----w C:\Program\Disc2Phone 2008-05-01 10:04 585,728 ----a-w C:\WINDOWS\system32\bsratswf.dll 2008-05-01 10:04 147,456 ----a-w C:\WINDOWS\system32\bsratwmv.dll 2008-05-01 08:18 --------- d-----w C:\Documents and Settings\Mattias\Application Data\LimeWire 2008-04-29 18:34 --------- d-----w C:\Documents and Settings\Mattias\Application Data\Apple Computer 2008-04-29 18:27 --------- d-----w C:\Program\QuickTime 2008-04-29 18:27 --------- d-----w C:\Program\Apple Software Update 2008-04-29 18:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer 2008-04-29 18:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple 2008-04-29 17:41 --------- d-----w C:\Documents and Settings\Mattias\Application Data\Sony 2008-04-29 17:41 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sony 2008-04-29 17:36 --------- d-----w C:\Program\Microsoft.NET 2008-04-29 17:36 --------- d-----w C:\Program\Microsoft SQL Server 2008-04-29 17:22 --------- d-----w C:\Program\Sony Setup 2008-04-28 19:28 92,728 ----a-w C:\WINDOWS\system32\bass.dll 2008-04-27 19:55 --------- d-----w C:\Documents and Settings\Mattias\Application Data\Dev-Cpp 2008-04-27 19:50 --------- d-----w C:\Program\CodeBlocks 2008-04-26 10:28 --------- d-----w C:\Documents and Settings\Mattias\Application Data\ubi.com 2008-04-26 10:20 --------- d-----w C:\Program\XviD 2008-04-26 10:20 --------- d-----w C:\Program\Notepad++ 2008-04-26 10:20 --------- d-----w C:\Documents and Settings\Mattias\Application Data\Notepad++ 2008-04-26 09:38 --------- d-----w C:\Program\Ubisoft(2) 2008-04-26 08:48 --------- d-----w C:\Program\Ubisoft 2008-04-25 15:20 --------- d-----w C:\Documents and Settings\Päronen\Application Data\AdobeUM 2008-04-22 17:11 --------- d--h--r C:\Documents and Settings\Mattias\Application Data\SecuROM 2008-04-22 14:25 107,888 ----a-w C:\WINDOWS\system32\CmdLineExt.dll 2008-04-22 14:25 --------- d--h--r C:\Documents and Settings\Therese\Application Data\SecuROM 2008-04-21 07:03 659,968 ----a-w C:\WINDOWS\system32\wininet.dll 2008-04-20 12:27 --------- d-----w C:\Program\Guitar Pro 5 2008-04-18 15:56 --------- d-----w C:\Program\Skype Recorder 2008-04-18 14:53 --------- d-----w C:\Program\DAEMON Tools 2008-04-18 14:49 646,392 ----a-w C:\WINDOWS\system32\drivers\sptd.sys 2008-04-18 12:53 --------- d-----w C:\Program\Monsters 2008-04-18 11:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\SiteAdvisor 2008-04-18 11:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\McAfee 2008-04-11 17:39 674,600 ----a-w C:\WINDOWS\system32\pbsvc.exe 2008-04-11 17:39 66,872 ----a-w C:\WINDOWS\system32\PnkBstrA.exe 2008-04-11 17:39 22,328 ----a-w C:\Documents and Settings\Mattias\Application Data\PnkBstrK.sys 2008-04-10 20:35 298,104 ----a-w C:\WINDOWS\system32\imon.dll 2008-03-25 04:52 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll 2008-03-25 04:52 162,592 ----a-w C:\WINDOWS\system32\msjint40.dll 2008-03-24 17:52 86,016 ----a-w C:\WINDOWS\system32\nvmctray.dll 2008-03-24 09:27 442,368 ----a-w C:\WINDOWS\system32\NVUNINST.EXE 2008-03-20 08:10 1,845,248 ----a-w C:\WINDOWS\system32\win32k.sys . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:34 15360] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program\Delade filer\Ahead\Lib\NMBgMonitor.exe" [2007-03-12 13:49 153136] "MsnMsgr"="C:\Program\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:54 5674352] "Skype"="C:\Program\Skype\Phone\Skype.exe" [2007-09-13 13:31 22880040] "LogitechSoftwareUpdate"="C:\Program\Logitech\Video\ManifestEngine.exe" [2005-06-08 14:44 196608] "DAEMON Tools"="C:\Program\DAEMON Tools\daemon.exe" [2006-11-12 12:48 157592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2008-03-24 19:52 13524992] "nwiz"="nwiz.exe" [2008-03-24 19:52 1626112 C:\WINDOWS\system32\nwiz.exe] "ASUSGamerOSD"="C:\Program Files\ASUS\GamerOSD\GamerOSD.exe" [ ] "NeroFilterCheck"="C:\Program\Delade filer\Ahead\Lib\NeroCheck.exe" [2007-03-09 18:53 153136] "EPSON Stylus Photo RX420 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.exe" [2004-04-09 05:00 98304] "LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2005-07-19 17:32 221184] "LogitechVideoRepair"="C:\Program\Logitech\Video\ISStart.exe" [2005-06-08 15:24 458752] "LogitechVideoTray"="C:\Program\Logitech\Video\LogiTray.exe" [2005-06-08 15:14 217088] "SoundMAXPnP"="C:\Program\Analog Devices\Core\smax4pnp.exe" [2004-10-14 14:42 1404928] "SunJavaUpdateSched"="C:\Program\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784] "nod32kui"="C:\Program\Eset\nod32kui.exe" [2008-04-10 22:35 949376] "QuickTime Task"="C:\Program\QuickTime\qttask.exe" [2008-03-28 23:37 413696] "PWRISOVM.EXE"="C:\Program\PowerISO\PWRISOVM.EXE" [2007-08-07 02:05 200704] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2008-03-24 19:52 86016] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 01:34 15360] C:\Documents and Settings\All Users\Start-meny\Program\Autostart\ Adobe Reader Speed Launch.lnk - C:\Program\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 22:05:26 29696] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program\\uTorrent\\uTorrent.exe"= "C:\\Program\\MSN Messenger\\msnmsgr.exe"= "C:\\Program\\MSN Messenger\\livecall.exe"= "C:\\Program\\EA GAMES\\Battlefield 2\\BF2.exe"= "C:\\WINDOWS\\system32\\PnkBstrA.exe"= "C:\\WINDOWS\\system32\\PnkBstrB.exe"= "C:\\Program\\Mozilla Firefox\\firefox.exe"= "C:\\Program\\EA GAMES\\Battlefield 2\\bf2_w32ded.exe"= "C:\\Program\\mIRC\\mirc.exe"= "C:\\WINDOWS\\system32\\dplaysvr.exe"= "C:\\Program\\TmNationsForever\\TmForever.exe"= "C:\\Program\\Microsoft Games\\Microsoft Flight Simulator X\\fsx.exe"= "C:\\Program\\THQ\\Frontlines-Fuel of War\\Binaries\\FFOW.exe"= "C:\\Program\\Skype\\Phone\\Skype.exe"= R3 asusgsb;ASUS Virtual Video Capture Device Driver;C:\WINDOWS\system32\drivers\asusgsb.sys [2007-07-12 10:03] R3 Video3D;ASUS Video3D Service;C:\WINDOWS\system32\Drivers\Video3D32.sys [2007-07-12 10:03] S3 MSSQL$SONY_MEDIAMGR2;SQL Server (SONY_MEDIAMGR2);"c:\Program\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSONY_MEDIAMGR2 [] *Newly Created Service* - CATCHME . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-18 21:09:20 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2008-06-18 21:10:13 ComboFix-quarantined-files.txt 2008-06-18 19:10:05 Pre-Run: 23,986,212,864 byte ledigt Post-Run: 25,003,442,176 byte ledigt 204 --- E O F --- 2008-06-11 14:19:29 mvh matte
  18. Det menas med att skärmen blir svart och jag måste stänga av på strömbrytaren och sedan köra igång igen.
  19. Hejsan! Jag har precis införskaffat Frontlines - Fuel Of War. Ett fantastiskt spel. Däremot har jag ett problem som är ganska störigt. Det händer då och då (ganska ofta) att skärmen bara blir svart och allt stängs ner. Jag har testat min dator på Can You Run It och den klarade iallafall Minimum requirements. Jag kör på grafik inställning Very Low så det borde ju inte vara det som är vajsing, eller? Mitt grafikkort är också ganska nytt så det vore surt om det redan är utdaterat. Spel som också rullar i maskinen: Battlefield 2 - HIGH SPECS The Sims 2 - HIGH SPECS Crysis - MEDIUM SPECS Microsoft Flight Simulator X Accelerator - HIGH SPECS Track Mania Nations Forever - HIGH SPECS Grand Theft Auto San Andreas - HIGH SPECS Driver: Parallel Lines - HIGH SPECS World Of Warcraft - HIGH SPECS Spec: Dell Dimension 8400 Windows XP Professional Intel Pentium 4 3.00 GHz 1024 GB RAM 150 GB S-ATA Hard Drive nVIDIA GeForce 8600GT EXTREME [inlägget ändrat 2008-06-18 01:13:30 av tankado]
  20. Okej, vilken är den bästa processorn till min dator då?
  21. Går det inte att uppdatera till en Quad-stödjande BIOS då?
  22. Som jag fattar det har jag BIOS "Revision A05". Går det att uppdatera BIOS så att det funkar med quad processorn?
  23. Hej! Jag hade tänkt uppgradera min Dell Dimension 8400. Just nu har jag följande: Intel Pentium 4 CPU 3.00 GHz Windows Vista Ultimate Edition 1024 Mb RAM 150 Gb S-ATA hårddisk 250 Gb IOMEGA Extern Hårddisk ASUS Nvidia GeForce 8600GT 512 Mb EXTREME (Detta är uppgraderat, hade ett kort från Nvidia 6 seien tidigare) DirectX 10 SoundMAX Sound Card Philips 5.1 Högtalare Jag spelar mycket Battlefield 2 och Crysis men vill ha lite utrymme att klara av kommande spel också. Just nu är det väldigt laggigt på spelen sedan jag uppgraderade till vista. Jag har tänkt mig att uppgradera RAM minnet då vista går segt med 1024. Då har jag tänkt mig ett Crucial minne: http://www.komplett.se/k/ki.aspx?sku=300182 Jag har också börjat fundera att iallafall så småningom uppgradera till en Intel Core 2 Quad Q6600 processor: http://www.komplett.se/k/ki.aspx?sku=330169 Är det något mer som jag borde ordna med? Är det något som borde ändras av ovanstående exempel? Kan ni ge tips på något ställe där man lär sig stoppa in dessa sakerna i burken? Och till sist undrar jag hur det är med kylning, någon som kan ge tips på en bra fläkt och även där någon guide på hur man stoppar in den.
  24. Hejsan! Jag har Windows Vista Ultimate men ingen Aero? Någon som kan hjälpa till? Specifikationer: Dell Dimension 8400 Intel Pentium 4 CPU 3.00 GHz Windows Vista Ultimate Edition 150 GB S-ATA hårddisk 1024 MB RAM ASUS GeForce 8600GT Extreme SoundMAX Sound Card Mvh Mattias
×
×
  • Skapa nytt...