Rage
-
Innlegg
158 -
Ble med
-
Besøkte siden sist
Innholdstype
Profiler
Forum
Hendelser
Blogger
Om forumet
Innlegg skrevet av Rage
-
-
ComboFix 08-07-27.6 - JPS 2008-07-28 22:40:17.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1044.18.1434 [GMT 2:00]
Running from: C:\Documents and Settings\JPS\Skrivebord\ComboFix.exe
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((( Files Created from 2008-06-28 to 2008-07-28 )))))))))))))))))))))))))))))))
.
2008-07-28 21:15 . 2008-07-28 21:15 <DIR> dr-h----- C:\Documents and Settings\JPS\Siste
2008-07-28 20:06 . 2008-07-28 20:06 <DIR> d-------- C:\Programfiler\Malwarebytes' Anti-Malware
2008-07-28 20:06 . 2008-07-28 20:06 <DIR> d-------- C:\Documents and Settings\JPS\Programdata\Malwarebytes
2008-07-28 20:06 . 2008-07-28 20:06 <DIR> d-------- C:\Documents and Settings\All Users\Programdata\Malwarebytes
2008-07-28 20:06 . 2008-07-23 20:09 38,472 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-07-28 20:06 . 2008-07-23 20:09 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-07-28 20:02 . 2008-07-28 20:02 <DIR> d-------- C:\Programfiler\CCleaner
2008-07-28 09:46 . 2008-07-28 09:46 105,472 --a------ C:\WINDOWS\system32\vtrsodcw.dll
2008-07-28 09:46 . 2008-07-28 09:46 105,472 --a------ C:\WINDOWS\system32\vprohy.dll
2008-07-28 09:46 . 2008-07-28 09:46 83,456 --a------ C:\WINDOWS\system32\glspljwv.dll
2008-07-28 08:41 . 2007-08-01 22:47 102,664 --a------ C:\WINDOWS\system32\drivers\tmcomm.sys
2008-07-27 15:39 . 2008-07-27 16:33 <DIR> d-------- C:\Documents and Settings\lg\.housecall6.6
2008-07-27 09:45 . 2008-07-27 09:45 105,472 --a------ C:\WINDOWS\system32\ndaogthp.dll
2008-07-27 09:45 . 2008-07-27 09:45 105,472 --a------ C:\WINDOWS\system32\etthtv.dll
2008-07-27 09:45 . 2008-07-27 09:45 91,648 --a------ C:\WINDOWS\system32\yoarpuux.dll
2008-07-27 09:43 . 2008-07-27 09:43 105,472 --a------ C:\WINDOWS\system32\xyyrjs.dll
2008-07-27 09:43 . 2008-07-27 09:43 105,472 --a------ C:\WINDOWS\system32\xlwtdfvy.dll
2008-07-27 09:42 . 2008-07-27 09:42 91,648 --a------ C:\WINDOWS\system32\yidnkjew.dll
2008-07-27 08:18 . 2008-07-27 08:18 <DIR> d-------- C:\Programfiler\Windows Defender
2008-07-26 15:37 . 2008-07-26 15:55 <DIR> d-------- C:\Programfiler\Windows Live Safety Center
2008-07-26 09:40 . 2008-07-26 09:40 268 --ah----- C:\sqmdata00.sqm
2008-07-26 09:40 . 2008-07-26 09:40 244 --ah----- C:\sqmnoopt00.sqm
2008-07-26 09:11 . 2008-07-26 09:11 105,472 --a------ C:\WINDOWS\system32\sxfyvkka.dll
2008-07-26 09:11 . 2008-07-26 09:11 105,472 --a------ C:\WINDOWS\system32\mqfobu.dll
2008-07-26 09:11 . 2008-07-26 09:11 91,648 --a------ C:\WINDOWS\system32\cfoaskoa.dll
2008-07-25 08:08 . 2008-07-25 08:08 105,472 --a------ C:\WINDOWS\system32\lvlljxou.dll
2008-07-25 08:08 . 2008-07-25 08:08 105,472 --a------ C:\WINDOWS\system32\jilzns.dll
2008-07-25 08:05 . 2008-07-25 08:05 91,648 --a------ C:\WINDOWS\system32\jvojuyxh.dll
2008-07-22 06:13 . 2008-07-22 07:52 <DIR> d-------- C:\Documents and Settings\JPS\.housecall6.6
2008-07-21 10:05 . 2008-07-21 10:05 0 --a------ C:\WINDOWS\system32\jhJmLCfV.exe.a_a
2008-07-21 10:00 . 2008-07-21 10:00 <DIR> dr------- C:\Documents and Settings\NetworkService\Favoritter
2008-07-21 08:05 . 2008-07-22 07:39 35,842 --a------ C:\WINDOWS\system32\jhJmLCfV.exe
2008-07-21 07:54 . 2008-07-21 07:53 29,760 --a------ C:\WINDOWS\system32\6R4gOXaA.exe
2008-07-21 07:54 . 2008-07-21 07:54 0 --a------ C:\WINDOWS\system32\6R4gOXaA.exe.a_a
2008-07-20 12:05 . 2008-07-20 12:05 <DIR> d-------- C:\Programfiler\Fellesfiler\PCSuite
2008-07-20 12:05 . 2008-07-20 12:05 <DIR> d-------- C:\Programfiler\Fellesfiler\Nokia
2008-07-20 12:05 . 2007-09-17 15:53 21,632 --a------ C:\WINDOWS\system32\drivers\pccsmcfd.sys
2008-07-20 12:04 . 2008-07-20 12:04 <DIR> d-------- C:\Programfiler\PC Connectivity Solution
2008-07-20 10:18 . 2008-07-20 10:18 <DIR> d-------- C:\Programfiler\ToniArts
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-27 13:33 --------- d-----w C:\Programfiler\Trend Micro
2008-07-24 14:28 --------- d-----w C:\Programfiler\Azureus
2008-07-20 10:05 --------- d-----w C:\Programfiler\Nokia
2008-07-20 10:03 --------- d-----w C:\Documents and Settings\All Users\Programdata\Installations
2008-07-20 08:24 --------- d-----w C:\Documents and Settings\JPS\Programdata\Azureus
2008-07-20 08:18 --------- d--h--w C:\Programfiler\InstallShield Installation Information
2008-06-21 12:43 --------- d-----w C:\Programfiler\Google
2008-06-20 17:43 246,784 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 10:45 360,320 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 10:44 138,368 ----a-w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 09:52 225,920 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-14 18:00 272,256 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-06-02 17:27 --------- d-----w C:\Programfiler\Microsoft SQL Server
2008-06-02 17:25 --------- d-----w C:\Programfiler\Windows Live
2008-05-07 05:16 1,290,752 ----a-w C:\WINDOWS\system32\quartz.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TOSCDSPD"="C:\Programfiler\TOSHIBA\TOSCDSPD\toscdspd.exe" [2005-04-12 11:57 65536]
"MsnMsgr"="C:\Programfiler\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 12:34 5724184]
"MSMSGS"="C:\Programfiler\Messenger\msmsgs.exe" [2004-10-13 18:24 1694208]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 12:00 15360]
"PC Suite Tray"="C:\Programfiler\Nokia\Nokia PC Suite 6\PCSuite.exe" [2008-04-16 12:53 1079808]
"Nokia.PCSync"="C:\Programfiler\Nokia\Nokia PC Suite 6\PCSync2.exe" [2008-03-26 18:41 1232896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2007-04-10 00:01 138008]
"00THotkey"="C:\WINDOWS\system32\00THotkey.exe" [2006-08-14 13:54 253952]
"Apoint"="C:\Programfiler\Apoint2K\Apoint.exe" [2004-03-24 07:40 196608]
"DpUtil"="C:\Programfiler\TOSHIBA\DualPointUtility\TEDTray.exe" [2005-08-08 15:43 155648]
"TouchED"="C:\Programfiler\TOSHIBA\TouchED\TouchED.exe" [2005-09-01 15:26 102400]
"SmoothView"="C:\Programfiler\TOSHIBA\TOSHIBA zoom\SmoothView.exe" [2007-05-11 12:13 143360]
"TMERzCtl.EXE"="C:\Programfiler\TOSHIBA\TME3\TMERzCtl.EXE" [2006-09-01 13:21 90112]
"TMESRV.EXE"="C:\Programfiler\TOSHIBA\TME3\TMESRV31.EXE" [2006-01-19 19:53 118784]
"TosHKCW.exe"="C:\Programfiler\TOSHIBA\Wireless Hotkey\TosHKCW.exe" [2005-05-17 11:42 49152]
"TAudEffect"="C:\Programfiler\TOSHIBA\TAudEffect\TAudEff.exe" [2006-08-09 19:48 344144]
"DDWMon"="C:\Programfiler\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe" [2007-04-26 11:49 495616]
"PSQLLauncher"="C:\Programfiler\Protector Suite QL\launcher.exe" [2006-05-05 17:36 30208]
"topi"="C:\Programfiler\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-04-02 12:48 577536]
"OfficeScanNT Monitor"="C:\Programfiler\Trend Micro\Client Server Security Agent\pccntmon.exe" [2005-11-03 00:32 372813]
"RTHDCPL"="RTHDCPL.EXE" [2007-03-13 02:05 16125440 C:\WINDOWS\RTHDCPL.exe]
"TFNF5"="TFNF5.exe" [2006-04-11 03:14 622592 C:\WINDOWS\system32\TFNF5.exe]
"TPSODDCtl"="TPSODDCtl.exe" [2007-04-20 16:28 102400 C:\WINDOWS\system32\TPSODDCtl.exe]
"TPSMain"="TPSMain.exe" [2007-04-20 16:28 299008 C:\WINDOWS\system32\TPSMain.exe]
"TOSDCR"="TOSDCR.EXE" [2005-12-12 18:54 57344 C:\WINDOWS\system32\TOSDCR.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 12:00 15360]
"Nokia.PCSync"="C:\Programfiler\Nokia\Nokia PC Suite 6\PcSync2.exe" [2008-03-26 18:41 1232896]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2006-05-05 17:48 40448 C:\WINDOWS\system32\psqlpwd.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\TosBtNP]
2006-07-22 04:54 65536 C:\WINDOWS\system32\TosBtNP.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\TrendFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Programfiler\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Programfiler\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Programfiler\\Messenger\\msmsgs.exe"=
"C:\\Programfiler\\uTorrent\\uTorrent.exe"=
R0 Thpdrv;TOSHIBA HDD Protection Driver;C:\WINDOWS\system32\DRIVERS\thpdrv.sys [2007-03-22 13:07]
R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;C:\WINDOWS\system32\DRIVERS\Thpevm.SYS [2007-03-09 15:23]
R1 TMEI3E;TMEI3E;C:\WINDOWS\system32\Drivers\TMEI3E.SYS [2004-06-16 11:08]
R2 FdRedir;FdRedir;C:\Programfiler\Fellesfiler\Protector Suite QL\Drivers\FdRedir.sys [2006-05-05 18:00]
R2 FileDisk2;FileDisk Protector Kernel Driver;C:\Programfiler\Fellesfiler\Protector Suite QL\Drivers\filedisk.sys [2006-05-05 17:59]
R2 smihlp;SMI helper driver;C:\Programfiler\Protector Suite QL\smihlp.sys [2006-05-05 17:33]
R2 tdudf;TOSHIBA UDF File System Driver;C:\WINDOWS\system32\DRIVERS\tdudf.sys [2007-03-26 12:22]
R2 trudf;TOSHIBA DVD-RAM UDF File System Driver;C:\WINDOWS\system32\DRIVERS\trudf.sys [2007-02-19 12:15]
R3 IFXTPM;IFXTPM;C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2005-06-10 22:26]
R3 TEchoCan;Toshiba Audio Effect;C:\WINDOWS\system32\DRIVERS\TEchoCan.sys [2007-02-21 18:20]
.
Contents of the 'Scheduled Tasks' folder
2008-07-28 C:\WINDOWS\Tasks\At13.job
- C:\WINDOWS\system32\6R4gOXaA.exe [2008-07-21 07:53]
2008-07-28 C:\WINDOWS\Tasks\MP Scheduled Scan.job
- C:\Programfiler\Windows Defender\MpCmdRun.exe [2006-11-03 19:20]
.
.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.startsiden.no/
R1 -: HKCU-Internet Settings,ProxyServer = hxxp://WS-SRV-01:8080
O8 -: E&ksporter til Microsoft Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-28 22:41:19
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-07-28 22:42:26
ComboFix-quarantined-files.txt 2008-07-28 20:42:23
ComboFix2.txt 2008-07-28 19:11:59
ComboFix3.txt 2008-07-28 17:53:52
Pre-Run: 21,312,212,992 byte ledig
Post-Run: 21,308,354,560 byte ledig
159 --- E O F --- 2008-07-28 17:57:10
-
Malwarebytes' Anti-Malware 1.23
Database versjon: 1002
Windows 5.1.2600 Service Pack 2
22:39:23 2008-07-28
mbam-log-7-28-2008 (22-39-23).txt
Skanntype: Rask Skann
Objekter skannet: 45223
Tid tilbakelagt: 4 minute(s), 21 second(s)
Minneprosesser infisert: 0
Minnemoduler infisert: 0
Registernøkler infisert: 0
Registerverdier infisert: 0
Registerfiler infisert: 0
Mapper infisert: 0
Filer infisert: 0
Minneprosesser infisert:
(Ingen mistenkelige filer funnet)
Minnemoduler infisert:
(Ingen mistenkelige filer funnet)
Registernøkler infisert:
(Ingen mistenkelige filer funnet)
Registerverdier infisert:
(Ingen mistenkelige filer funnet)
Registerfiler infisert:
(Ingen mistenkelige filer funnet)
Mapper infisert:
(Ingen mistenkelige filer funnet)
Filer infisert:
(Ingen mistenkelige filer funnet)
ComboFix log kommer
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:20, on 2008-07-28
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Safe mode with network support
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Programfiler\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\explorer.exe
C:\Programfiler\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programfiler\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startsiden.no/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http://WS-SRV-01:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programfiler\Fellesfiler\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [00THotkey] C:\WINDOWS\system32THotkey.exe
O4 - HKLM\..\Run: [Apoint] C:\Programfiler\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [DpUtil] C:\Programfiler\TOSHIBA\DualPointUtility\TEDTray.exe
O4 - HKLM\..\Run: [TouchED] C:\Programfiler\TOSHIBA\TouchED\TouchED.exe
O4 - HKLM\..\Run: [TFNF5] TFNF5.exe
O4 - HKLM\..\Run: [smoothView] C:\Programfiler\TOSHIBA\TOSHIBA zoom\SmoothView.exe
O4 - HKLM\..\Run: [TPSODDCtl] TPSODDCtl.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [TMERzCtl.EXE] C:\Programfiler\TOSHIBA\TME3\TMERzCtl.EXE /Service
O4 - HKLM\..\Run: [TMESRV.EXE] C:\Programfiler\TOSHIBA\TME3\TMESRV31.EXE /Logon
O4 - HKLM\..\Run: [TOSDCR] TOSDCR.EXE
O4 - HKLM\..\Run: [TosHKCW.exe] "C:\Programfiler\TOSHIBA\Wireless Hotkey\TosHKCW.exe"
O4 - HKLM\..\Run: [TAudEffect] C:\Programfiler\TOSHIBA\TAudEffect\TAudEff.exe /run
O4 - HKLM\..\Run: [DDWMon] C:\Programfiler\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe
O4 - HKLM\..\Run: [PSQLLauncher] "C:\Programfiler\Protector Suite QL\launcher.exe" /startup
O4 - HKLM\..\Run: [topi] C:\Programfiler\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Programfiler\Trend Micro\Client Server Security Agent\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon
O4 - HKCU\..\Run: [TOSCDSPD] C:\Programfiler\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programfiler\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Programfiler\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Programfiler\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Nokia.PCSync] "C:\Programfiler\Nokia\Nokia PC Suite 6\PCSync2.exe" /NoDialog
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETTVERKSTJENESTE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0\bin\ssv.dll
O9 - Extra button: Oppslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/sit...b?1217078833484
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase5036.cab
O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_install/_a...asyInstallX.CAB
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = WorkSelect.local
O17 - HKLM\Software\..\Telephony: DomainName = WorkSelect.local
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = WorkSelect.local
O20 - Winlogon Notify: TosBtNP - C:\WINDOWS\SYSTEM32\TosBtNP.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Programfiler\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Trend Micro Client/Server Security Agent RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Programfiler\Trend Micro\Client Server Security Agent\ntrtscan.exe
O23 - Service: Trend Micro Client/Server Security Agent Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Programfiler\Trend Micro\Client Server Security Agent\OfcPfwSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programfiler\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TOSHIBA Harddiskbeskyttelse (Thpsrv) - TOSHIBA Corporation - C:\WINDOWS\system32\ThpSrv.exe
O23 - Service: Tmesrv3 (Tmesrv) - TOSHIBA - C:\Programfiler\TOSHIBA\TME3\Tmesrv31.exe
O23 - Service: Trend Micro Client/Server Security Agent Listener (tmlisten) - Trend Micro Inc. - C:\Programfiler\Trend Micro\Client Server Security Agent\tmlisten.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\WINDOWS\system32\TODDSrv.exe
--
End of file - 7403 bytes
-
ComboFix 08-07-27.6 - JPS 2008-07-28 19:44:23.1 - NTFSx86 NETWORK
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1044.18.1742 [GMT 2:00]
Running from: C:\Documents and Settings\JPS\Skrivebord\ComboFix.exe
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\lg\Programdata\macromedia\Flash Player\#SharedObjects\834357HL\interclick.com
C:\Documents and Settings\lg\Programdata\macromedia\Flash Player\#SharedObjects\834357HL\interclick.com\ud.sol
C:\Documents and Settings\lg\Programdata\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#interclick.com
C:\Documents and Settings\lg\Programdata\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#interclick.com\settings.sol
C:\WINDOWS\BM4f6f64ed.txt
C:\WINDOWS\cookies.ini
C:\WINDOWS\pskt.ini
C:\WINDOWS\system32\beitbi.dll
C:\WINDOWS\system32\bumcklur.ini
C:\WINDOWS\system32\bxkwdqxb.dll
C:\WINDOWS\system32\byXQKbAs.dll
C:\WINDOWS\system32\fackymor.ini
C:\WINDOWS\system32\fccyXpPI.dll
C:\WINDOWS\system32\fewciwxy.ini
C:\WINDOWS\system32\folxpptv.ini
C:\WINDOWS\system32\ftelsvlr.dll
C:\WINDOWS\system32\hklzoh.dll
C:\WINDOWS\system32\ilgjcmyj.dll
C:\WINDOWS\system32\ivqbgjvo.dll
C:\WINDOWS\system32\JH1M03F6.dll
C:\WINDOWS\system32\khfccaAr.dll
C:\WINDOWS\system32\lnhsxnqb.ini
C:\WINDOWS\system32\lumwvf.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\mdomxwhr.dll
C:\WINDOWS\system32\mhqivefd.ini
C:\WINDOWS\system32\mujfsnew.ini
C:\WINDOWS\system32\navaaqru.ini
C:\WINDOWS\system32\omihlq.dll
C:\WINDOWS\system32\opnOfCrS.dll
C:\WINDOWS\system32\qdflaynb.dll
C:\WINDOWS\system32\qktjho.dll
C:\WINDOWS\system32\ramtnrly.dll
C:\WINDOWS\system32\saqosurr.dll
C:\WINDOWS\system32\shjhdsip.dll
C:\WINDOWS\system32\ssqNFywT.dll
C:\WINDOWS\system32\sxkhbqqx.dll
C:\WINDOWS\system32\tpmmqytp.dll
C:\WINDOWS\system32\tuvVOGaB.dll
C:\WINDOWS\system32\TwyFNqss.ini
C:\WINDOWS\system32\TwyFNqss.ini2
C:\WINDOWS\system32\uxcqurpi.dll
C:\WINDOWS\system32\vmmjusbu.ini
C:\WINDOWS\system32\vwjlpslg.ini
C:\WINDOWS\system32\wlqkuycn.ini
C:\WINDOWS\system32\wvUoLDtT.dll
C:\WINDOWS\system32\xanknsik.dll
C:\WINDOWS\system32\xdceyv.dll
C:\WINDOWS\system32\yuigmefm.dll
.
((((((((((((((((((((((((( Files Created from 2008-06-28 to 2008-07-28 )))))))))))))))))))))))))))))))
.
2008-07-28 09:46 . 2008-07-28 09:46 105,472 --a------ C:\WINDOWS\system32\vtrsodcw.dll
2008-07-28 09:46 . 2008-07-28 09:46 105,472 --a------ C:\WINDOWS\system32\vprohy.dll
2008-07-28 09:46 . 2008-07-28 09:46 91,648 --a------ C:\WINDOWS\system32\pklhdxlm.dll
2008-07-28 09:46 . 2008-07-28 09:46 83,456 --a------ C:\WINDOWS\system32\glspljwv.dll
2008-07-28 08:41 . 2007-08-01 22:47 102,664 --a------ C:\WINDOWS\system32\drivers\tmcomm.sys
2008-07-27 15:39 . 2008-07-27 16:33 <DIR> d-------- C:\Documents and Settings\lg\.housecall6.6
2008-07-27 09:45 . 2008-07-27 09:45 105,472 --a------ C:\WINDOWS\system32\ndaogthp.dll
2008-07-27 09:45 . 2008-07-27 09:45 105,472 --a------ C:\WINDOWS\system32\etthtv.dll
2008-07-27 09:45 . 2008-07-27 09:45 91,648 --a------ C:\WINDOWS\system32\yoarpuux.dll
2008-07-27 09:43 . 2008-07-27 09:43 105,472 --a------ C:\WINDOWS\system32\xyyrjs.dll
2008-07-27 09:43 . 2008-07-27 09:43 105,472 --a------ C:\WINDOWS\system32\xlwtdfvy.dll
2008-07-27 09:42 . 2008-07-27 09:42 91,648 --a------ C:\WINDOWS\system32\yidnkjew.dll
2008-07-27 08:18 . 2008-07-27 08:18 <DIR> d-------- C:\Programfiler\Windows Defender
2008-07-26 15:37 . 2008-07-26 15:55 <DIR> d-------- C:\Programfiler\Windows Live Safety Center
2008-07-26 09:40 . 2008-07-26 09:40 268 --ah----- C:\sqmdata00.sqm
2008-07-26 09:40 . 2008-07-26 09:40 244 --ah----- C:\sqmnoopt00.sqm
2008-07-26 09:11 . 2008-07-26 09:11 105,472 --a------ C:\WINDOWS\system32\sxfyvkka.dll
2008-07-26 09:11 . 2008-07-26 09:11 105,472 --a------ C:\WINDOWS\system32\mqfobu.dll
2008-07-26 09:11 . 2008-07-26 09:11 91,648 --a------ C:\WINDOWS\system32\cfoaskoa.dll
2008-07-25 08:08 . 2008-07-25 08:08 105,472 --a------ C:\WINDOWS\system32\lvlljxou.dll
2008-07-25 08:08 . 2008-07-25 08:08 105,472 --a------ C:\WINDOWS\system32\jilzns.dll
2008-07-25 08:05 . 2008-07-25 08:05 91,648 --a------ C:\WINDOWS\system32\jvojuyxh.dll
2008-07-22 06:13 . 2008-07-22 07:52 <DIR> d-------- C:\Documents and Settings\JPS\.housecall6.6
2008-07-21 23:12 . 2008-07-28 17:14 <DIR> dr-h----- C:\Documents and Settings\JPS\Siste
2008-07-21 10:05 . 2008-07-21 10:05 0 --a------ C:\WINDOWS\system32\jhJmLCfV.exe.a_a
2008-07-21 10:00 . 2008-07-21 10:00 <DIR> dr------- C:\Documents and Settings\NetworkService\Favoritter
2008-07-21 08:05 . 2008-07-22 07:39 35,842 --a------ C:\WINDOWS\system32\jhJmLCfV.exe
2008-07-21 07:54 . 2008-07-21 07:53 29,760 --a------ C:\WINDOWS\system32\6R4gOXaA.exe
2008-07-21 07:54 . 2008-07-21 07:54 0 --a------ C:\WINDOWS\system32\6R4gOXaA.exe.a_a
2008-07-20 12:05 . 2008-07-20 12:05 <DIR> d-------- C:\Programfiler\Fellesfiler\PCSuite
2008-07-20 12:05 . 2008-07-20 12:05 <DIR> d-------- C:\Programfiler\Fellesfiler\Nokia
2008-07-20 12:05 . 2007-09-17 15:53 21,632 --a------ C:\WINDOWS\system32\drivers\pccsmcfd.sys
2008-07-20 12:04 . 2008-07-20 12:04 <DIR> d-------- C:\Programfiler\PC Connectivity Solution
2008-07-20 10:18 . 2008-07-20 10:18 <DIR> d-------- C:\Programfiler\ToniArts
2008-07-18 07:32 . 2008-07-28 19:49 111,618 --a------ C:\WINDOWS\BM4f6f64ed.xml
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-27 13:33 --------- d-----w C:\Programfiler\Trend Micro
2008-07-24 14:28 --------- d-----w C:\Programfiler\Azureus
2008-07-20 10:05 --------- d-----w C:\Programfiler\Nokia
2008-07-20 10:03 --------- d-----w C:\Documents and Settings\All Users\Programdata\Installations
2008-07-20 08:24 --------- d-----w C:\Documents and Settings\JPS\Programdata\Azureus
2008-07-20 08:18 --------- d--h--w C:\Programfiler\InstallShield Installation Information
2008-06-21 12:43 --------- d-----w C:\Programfiler\Google
2008-06-20 10:45 360,320 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 10:44 138,368 ----a-w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 09:52 225,920 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-14 18:00 272,256 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-06-02 17:27 --------- d-----w C:\Programfiler\Microsoft SQL Server
2008-06-02 17:25 --------- d-----w C:\Programfiler\Windows Live
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{add445c2-f58c-4440-9110-cb803d5bd31b}]
2008-07-28 09:46 105472 --a------ C:\WINDOWS\system32\vprohy.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TOSCDSPD"="C:\Programfiler\TOSHIBA\TOSCDSPD\toscdspd.exe" [2005-04-12 11:57 65536]
"MsnMsgr"="C:\Programfiler\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 12:34 5724184]
"MSMSGS"="C:\Programfiler\Messenger\msmsgs.exe" [2004-10-13 18:24 1694208]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 12:00 15360]
"PC Suite Tray"="C:\Programfiler\Nokia\Nokia PC Suite 6\PCSuite.exe" [2008-04-16 12:53 1079808]
"Nokia.PCSync"="C:\Programfiler\Nokia\Nokia PC Suite 6\PCSync2.exe" [2008-03-26 18:41 1232896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2007-04-10 00:01 138008]
"00THotkey"="C:\WINDOWS\system32\00THotkey.exe" [2006-08-14 13:54 253952]
"Apoint"="C:\Programfiler\Apoint2K\Apoint.exe" [2004-03-24 07:40 196608]
"DpUtil"="C:\Programfiler\TOSHIBA\DualPointUtility\TEDTray.exe" [2005-08-08 15:43 155648]
"TouchED"="C:\Programfiler\TOSHIBA\TouchED\TouchED.exe" [2005-09-01 15:26 102400]
"SmoothView"="C:\Programfiler\TOSHIBA\TOSHIBA zoom\SmoothView.exe" [2007-05-11 12:13 143360]
"TMERzCtl.EXE"="C:\Programfiler\TOSHIBA\TME3\TMERzCtl.EXE" [2006-09-01 13:21 90112]
"TMESRV.EXE"="C:\Programfiler\TOSHIBA\TME3\TMESRV31.EXE" [2006-01-19 19:53 118784]
"TosHKCW.exe"="C:\Programfiler\TOSHIBA\Wireless Hotkey\TosHKCW.exe" [2005-05-17 11:42 49152]
"TAudEffect"="C:\Programfiler\TOSHIBA\TAudEffect\TAudEff.exe" [2006-08-09 19:48 344144]
"DDWMon"="C:\Programfiler\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe" [2007-04-26 11:49 495616]
"PSQLLauncher"="C:\Programfiler\Protector Suite QL\launcher.exe" [2006-05-05 17:36 30208]
"topi"="C:\Programfiler\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-04-02 12:48 577536]
"OfficeScanNT Monitor"="C:\Programfiler\Trend Micro\Client Server Security Agent\pccntmon.exe" [2005-11-03 00:32 372813]
"BM4f6f64ed"="C:\WINDOWS\system32\pklhdxlm.dll" [2008-07-28 09:46 91648]
"RTHDCPL"="RTHDCPL.EXE" [2007-03-13 02:05 16125440 C:\WINDOWS\RTHDCPL.exe]
"TFNF5"="TFNF5.exe" [2006-04-11 03:14 622592 C:\WINDOWS\system32\TFNF5.exe]
"TPSODDCtl"="TPSODDCtl.exe" [2007-04-20 16:28 102400 C:\WINDOWS\system32\TPSODDCtl.exe]
"TPSMain"="TPSMain.exe" [2007-04-20 16:28 299008 C:\WINDOWS\system32\TPSMain.exe]
"TOSDCR"="TOSDCR.EXE" [2005-12-12 18:54 57344 C:\WINDOWS\system32\TOSDCR.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 12:00 15360]
"Nokia.PCSync"="C:\Programfiler\Nokia\Nokia PC Suite 6\PcSync2.exe" [2008-03-26 18:41 1232896]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\psfus]
2006-05-05 17:48 40448 C:\WINDOWS\system32\psqlpwd.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\TosBtNP]
2006-07-22 04:54 65536 C:\WINDOWS\system32\TosBtNP.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\TrendFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Programfiler\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Programfiler\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Programfiler\\Messenger\\msmsgs.exe"=
"C:\\Programfiler\\uTorrent\\uTorrent.exe"=
R0 Thpdrv;TOSHIBA HDD Protection Driver;C:\WINDOWS\system32\DRIVERS\thpdrv.sys [2007-03-22 13:07]
R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver;C:\WINDOWS\system32\DRIVERS\Thpevm.SYS [2007-03-09 15:23]
R1 TMEI3E;TMEI3E;C:\WINDOWS\system32\Drivers\TMEI3E.SYS [2004-06-16 11:08]
R2 FdRedir;FdRedir;C:\Programfiler\Fellesfiler\Protector Suite QL\Drivers\FdRedir.sys [2006-05-05 18:00]
R2 FileDisk2;FileDisk Protector Kernel Driver;C:\Programfiler\Fellesfiler\Protector Suite QL\Drivers\filedisk.sys [2006-05-05 17:59]
R2 smihlp;SMI helper driver;C:\Programfiler\Protector Suite QL\smihlp.sys [2006-05-05 17:33]
R2 tdudf;TOSHIBA UDF File System Driver;C:\WINDOWS\system32\DRIVERS\tdudf.sys [2007-03-26 12:22]
R2 trudf;TOSHIBA DVD-RAM UDF File System Driver;C:\WINDOWS\system32\DRIVERS\trudf.sys [2007-02-19 12:15]
R3 IFXTPM;IFXTPM;C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2005-06-10 22:26]
R3 TEchoCan;Toshiba Audio Effect;C:\WINDOWS\system32\DRIVERS\TEchoCan.sys [2007-02-21 18:20]
.
Contents of the 'Scheduled Tasks' folder
2008-07-28 C:\WINDOWS\Tasks\At13.job
- C:\WINDOWS\system32\6R4gOXaA.exe [2008-07-21 07:53]
2008-07-28 C:\WINDOWS\Tasks\MP Scheduled Scan.job
- C:\Programfiler\Windows Defender\MpCmdRun.exe [2006-11-03 19:20]
.
.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.startsiden.no/
R1 -: HKCU-Internet Settings,ProxyServer = hxxp://WS-SRV-01:8080
O8 -: E&ksporter til Microsoft Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-28 19:48:29
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
C:\WINDOWS\pskt.ini 21 bytes
C:\WINDOWS\BM4f6f64ed.txt 208 bytes
scan completed successfully
hidden files: 2
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Programfiler\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Programfiler\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Programfiler\Trend Micro\Client Server Security Agent\NTRtScan.exe
C:\WINDOWS\system32\ThpSrv.exe
C:\Programfiler\Trend Micro\Client Server Security Agent\TmListen.exe
C:\WINDOWS\system32\TODDSrv.exe
C:\Programfiler\Trend Micro\Client Server Security Agent\OfcPfwSvc.exe
C:\WINDOWS\temp\PZ3F41.EXE
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxext.exe
C:\Programfiler\TOSHIBA\TME3\TMEEJME.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Programfiler\TOSHIBA\TOSHIBA Direct Disc Writer\DDWMon.exe
C:\Programfiler\Apoint2K\ApntEx.exe
C:\Programfiler\Protector Suite QL\psqltray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programfiler\PC Connectivity Solution\ServiceLayer.exe
C:\Programfiler\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Programfiler\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Programfiler\Fellesfiler\Nokia\MPAPI\MPAPI3s.exe
C:\Programfiler\Windows Live\Messenger\usnsvc.exe
.
**************************************************************************
.
Completion time: 2008-07-28 19:53:51 - machine was rebooted
ComboFix-quarantined-files.txt 2008-07-28 17:53:48
Pre-Run: 22,327,250,944 byte ledig
Post-Run: 21,295,726,592 byte ledig
235 --- E O F --- 2008-07-10 10:30:31
-
Ser ut som det gjorde susen foreløpig.
Tusen takk!
Poster igjen hvis det skulle dukke opp noe mer de neste par dagene.
-
Noen som kan se igjennom combofix loggen min?
All hjelp taes imot med takk!
ComboFix 08-06-30.2 - Andreas 2008-07-03 1:28:28.4 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1630 [GMT 2:00]
Running from: C:\Documents and Settings\Andreas\Desktop\ComboFix.exe
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\pskt.ini
C:\WINDOWS\system32\nysbsl.dll
C:\WINDOWS\system32\rakvkdvs.dll
C:\WINDOWS\system32\rvwhnocn.dll
.
((((((((((((((((((((((((( Files Created from 2008-06-02 to 2008-07-02 )))))))))))))))))))))))))))))))
.
2008-07-03 01:09 . 2008-07-03 01:09 <DIR> d-------- C:\Program Files\Trend Micro
2008-07-03 00:44 . 2008-07-03 00:44 <DIR> d-------- C:\Documents and Settings\Andreas\Application Data\Malwarebytes
2008-07-02 09:48 . 2008-07-02 09:48 285,184 --a------ C:\WINDOWS\system32\mlJYSjhe.dll_old
2008-06-24 02:36 . 2008-06-24 02:36 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-06-24 02:36 . 2008-06-24 02:36 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-06-24 02:36 . 2008-06-24 02:36 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
2008-06-24 02:36 . 2008-06-19 17:55 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys
2008-06-24 02:36 . 2008-06-19 17:55 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-06-24 02:35 . 2008-06-24 02:35 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-06-24 02:33 . 2008-06-24 02:34 <DIR> d-------- C:\Spyware
2008-06-24 01:21 . 2008-06-24 05:32 <DIR> d-------- C:\Program Files\Enigma Software Group
2008-06-24 00:42 . 2008-07-02 10:11 557 --a------ C:\WINDOWS\wininit.ini
2008-06-23 15:11 . 2008-06-23 15:11 <DIR> d-------- C:\WINDOWS\system32\RI
2008-06-23 15:11 . 2008-07-02 22:41 <DIR> d-------- C:\WINDOWS\system32\ert
2008-06-23 15:11 . 2008-07-02 22:41 <DIR> d--hs---- C:\WINDOWS\QW5kcmVhcyBO5nJpc3RvcnA
2008-06-23 15:11 . 2008-06-23 15:11 <DIR> d-------- C:\Temp\syschk3
2008-06-23 15:11 . 2008-06-24 02:40 <DIR> d-------- C:\Temp
2008-06-22 14:14 . 2008-06-22 14:14 <DIR> d--h----- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2008-06-22 14:14 . 2008-06-22 14:14 <DIR> d--h----- C:\Program Files\CanonBJ
2008-06-22 14:14 . 2008-06-22 14:14 <DIR> d--h----- C:\Documents and Settings\All Users\Application Data\CanonBJ
2008-06-22 14:14 . 2007-04-16 14:00 215,040 --a------ C:\WINDOWS\system32\CNMLM8V.DLL
2008-06-22 14:12 . 2008-04-14 00:17 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-06-22 14:12 . 2008-04-14 00:17 25,856 --a--c--- C:\WINDOWS\system32\dllcache\usbprint.sys
2008-06-22 04:05 . 2008-03-12 01:44 1,168,824 --a------ C:\WINDOWS\system32\NMSDVDXU.dll
2008-06-22 04:05 . 2005-06-01 12:11 877,568 --a------ C:\WINDOWS\system32\NCTAudioFile2.dll
2008-06-22 04:05 . 2002-04-07 22:14 724,992 --a------ C:\WINDOWS\system32\ebCrypt.dll
2008-06-22 04:05 . 2003-05-15 12:07 389,120 --a------ C:\WINDOWS\system32\actskn43.ocx
2008-06-22 04:05 . 2007-01-04 22:47 376,832 --a------ C:\WINDOWS\system32\cmd22.dll
2008-06-22 04:05 . 2003-10-29 22:43 253,952 --a------ C:\WINDOWS\system32\SkinBoxer43.dll
2008-06-22 04:05 . 2000-01-28 13:58 102,400 --a------ C:\WINDOWS\system32\ccrpprg6.ocx
2008-06-16 20:35 . 2008-06-16 20:35 <DIR> d--h----- C:\WINDOWS\system32\GroupPolicy
2008-06-11 01:54 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys
2008-06-11 01:44 . 2008-06-13 13:05 272,128 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-02 23:14 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-06-23 23:27 --------- d-----w C:\Program Files\Windows Live
2008-06-22 23:04 --------- d-----w C:\Documents and Settings\Andreas\Application Data\uTorrent
2008-06-13 11:05 272,128 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-05-29 13:03 --------- d-----w C:\Program Files\Java
2008-05-29 13:03 --------- d-----w C:\Program Files\Common Files\Java
2008-05-29 13:00 --------- d-----w C:\Program Files\TV-Browser
2008-05-24 15:50 --------- d-----w C:\Program Files\QuickTime
2008-05-23 16:07 --------- d-----w C:\Program Files\Common Files\Adobe
2008-05-23 15:36 --------- d-----w C:\Documents and Settings\All Users\Application Data\Adobe Systems
2008-05-23 15:35 --------- d-----w C:\Program Files\Common Files\Adobe Systems Shared
2008-05-22 10:12 --------- d-----w C:\Program Files\Microsoft Silverlight
2008-05-21 20:45 --------- d-----w C:\Program Files\illiminable
2008-05-19 01:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-05-19 00:38 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-05-19 00:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-05-19 00:09 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-19 00:09 --------- d-----w C:\Program Files\ASUS
2008-05-15 01:01 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-05-08 14:02 203,136 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
2008-05-07 05:12 1,288,192 ----a-w C:\WINDOWS\system32\quartz.dll
2008-04-21 06:44 666,112 ----a-w C:\WINDOWS\system32\wininet.dll
2008-04-14 03:55 1,804 ----a-w C:\WINDOWS\system32\dcache.bin
2008-04-14 03:46 329,728 ----a-w C:\WINDOWS\system32\netsetup.exe
2008-04-14 03:43 92,424 ----a-w C:\WINDOWS\system32\rdpdd.dll
2008-04-14 03:43 87,176 ----a-w C:\WINDOWS\system32\rdpwsx.dll
2008-04-14 03:43 299,520 ----a-w C:\WINDOWS\system32\drmclien.dll
2008-04-14 03:43 12,168 ----a-w C:\WINDOWS\system32\tsddd.dll
2008-04-14 03:41 98,304 ----a-w C:\WINDOWS\system32\actxprxy.dll
2008-04-14 03:40 53,279 ----a-w C:\WINDOWS\system32\odbcji32.dll
2008-04-14 03:40 4,126 ----a-w C:\WINDOWS\system32\msdxmlc.dll
2008-04-14 03:40 3,584 ----a-w C:\WINDOWS\system32\msafd.dll
2008-04-13 23:00 1,845,632 ----a-w C:\WINDOWS\system32\win32k.sys
2008-04-13 22:57 2,188,928 ----a-w C:\WINDOWS\system32\ntoskrnl.exe
2008-04-13 22:15 17,664 ----a-w C:\WINDOWS\system32\watchdog.sys
2008-04-13 22:13 9,728 ----a-w C:\WINDOWS\system32\comsdupd.exe
2008-04-13 22:13 12,800 ----a-w C:\WINDOWS\system32\spiisupd.exe
2008-04-13 22:01 7,424 ----a-w C:\WINDOWS\system32\kd1394.dll
2008-04-13 22:01 2,065,792 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe
2008-04-13 22:00 61,440 ------w C:\WINDOWS\system32\msvcrt40.dll
2008-04-13 21:45 76,800 ----a-w C:\WINDOWS\system32\msshavmsg.dll
2008-04-13 21:09 438,784 ----a-w C:\WINDOWS\system32\xpob2res.dll
2008-04-13 21:09 2,897,920 ----a-w C:\WINDOWS\system32\xpsp2res.dll
2008-04-13 21:09 187,392 ----a-w C:\WINDOWS\system32\xpsp1res.dll
2008-04-13 21:07 208,384 ----a-w C:\WINDOWS\system32\rsaenh.dll
2008-04-13 21:07 138,752 ----a-w C:\WINDOWS\system32\dssenh.dll
2008-04-13 20:57 79,872 ----a-w C:\WINDOWS\system32\msxml6r.dll
2008-04-13 20:56 94,208 ----a-w C:\WINDOWS\system32\odbcint.dll
2008-04-13 20:56 12,288 ----a-w C:\WINDOWS\system32\odbcp32r.dll
2008-04-13 20:56 12,288 ----a-w C:\WINDOWS\system32\mscpx32r.dll
2008-04-13 20:54 20,480 ----a-w C:\WINDOWS\system32\msorc32r.dll
2008-04-13 20:51 733,696 ----a-w C:\WINDOWS\system32\qedwipes.dll
2008-04-13 20:39 4,096 ----a-w C:\WINDOWS\system32\dsprpres.dll
2008-04-13 20:33 63,488 ----a-w C:\WINDOWS\system32\browselc.dll
2008-04-13 20:33 549,376 ----a-w C:\WINDOWS\system32\shdoclc.dll
2008-04-13 20:18 1,647,616 ----a-w C:\WINDOWS\system32\winbrand.dll
2008-04-13 20:15 216,064 ----a-w C:\WINDOWS\system32\moricons.dll
2008-04-13 19:56 56,832 ----a-w C:\WINDOWS\system32\mshtmler.dll
2008-04-13 19:53 48,128 ----a-w C:\WINDOWS\system32\msprivs.dll
2008-04-13 19:52 48,128 ----a-w C:\WINDOWS\system32\inetres.dll
2008-04-13 19:09 884,736 ----a-w C:\WINDOWS\system32\msimsg.dll
2005-07-29 14:24 472 --sha-r C:\WINDOWS\QW5kcmVhcyBO5nJpc3RvcnA\kqc4wAp1wV1icBLDwalSwBE.vbs
.
((((((((((((((((((((((((((((( snapshot@2008-06-24_ 2.51.09,57 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-06-24 00:46:11 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-07-02 23:31:02 2,048 --s-a-w C:\WINDOWS\bootstat.dat
- 2006-10-25 11:18:06 385,536 ----a-w C:\WINDOWS\Downloaded Program Files\Housecall_ActiveX.dll
+ 2008-05-02 12:22:56 385,536 ----a-w C:\WINDOWS\Downloaded Program Files\Housecall_ActiveX.dll
- 2008-06-23 23:17:32 40,972 ----a-w C:\WINDOWS\system32\perfc009.dat
+ 2008-07-02 23:21:49 40,972 ----a-w C:\WINDOWS\system32\perfc009.dat
- 2008-06-23 23:17:32 314,644 ----a-w C:\WINDOWS\system32\perfh009.dat
+ 2008-07-02 23:21:49 314,644 ----a-w C:\WINDOWS\system32\perfh009.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StatBar"="D:\Apps\statusbar\StatBar.exe" [2002-04-01 02:30 245760]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184]
"IE New Window Maximizer"="C:\Program Files\IE New Window Maximizer\iemaximizer.exe" [2005-02-09 00:06 356352]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 05:42 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" [2005-10-28 16:25 94208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MBM 5"="C:\Program Files\Motherboard Monitor 5\MBM5.EXE" [2004-06-12 10:40 594944]
"IRC for EFNET"="C:\ircN for EFnet\SYSTEM\mirc.exe" [2005-11-29 13:34 1949696]
"Launch LCDMon"="C:\Program Files\Common Files\Logitech\LCD Manager\lcdmon.exe" [2006-11-09 13:45 549376]
"Launch LGDCore"="C:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe" [2006-11-09 14:10 1126400]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2004-10-29 16:50 4620288]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 05:42 15360]
C:\Documents and Settings\Andreas\Start Menu\Programs\Startup\
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [3/16/2005 7:16:50 PM 113664]
OneNote 2007 Screen Clipper and Launcher.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [8/24/2007 5:45:42 AM 101784]
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
backup=C:\WINDOWS\pss\Adobe Reader Synchronizer.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Andreas^Start Menu^Programs^Startup^PowerReg Scheduler.exe]
path=C:\Documents and Settings\Andreas\Start Menu\Programs\Startup\PowerReg Scheduler.exe
backup=C:\WINDOWS\pss\PowerReg Scheduler.exeStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools-1033]
--a------ 2003-10-02 03:20 81920 C:\Program Files\D-Tools\daemon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
---hs---- 2008-04-14 05:42 1695232 C:\Program Files\Messenger\msmsgs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
--a------ 2001-07-09 10:50 155648 C:\WINDOWS\system32\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2004-10-29 16:50 86016 C:\WINDOWS\system32\nvmctray.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
--a------ 2007-02-13 20:29 35328 C:\Program Files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2004-10-29 16:50 921600 C:\WINDOWS\system32\nwiz.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ptipbmf]
--a------ 2003-06-20 15:06 118784 C:\WINDOWS\system32\ptipbmf.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
--a------ 2005-02-02 11:47 77824 C:\WINDOWS\SOUNDMAN.EXE
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\uTorrent\\utorrent.exe"=
"C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\ircN for EFnet\\SYSTEM\\mirc.exe"=
"D:\\ircN\\SYSTEM\\mirc.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"K:\\Quake2\\quake2.exe.exe"=
"C:\\Program Files\\Internet Explorer\\iexplore.exe"=
R0 pnpshark;pnpshark;C:\WINDOWS\system32\DRIVERS\pnpshark.sys [2003-10-02 04:16]
R0 SI3112r;Silicon Image SiI 3512 SATARaid Controller;C:\WINDOWS\system32\DRIVERS\SI3112r.sys [2007-08-29 04:04]
R0 st3shark;st3shark;C:\WINDOWS\system32\DRIVERS\st3shark.sys [2003-09-27 15:37]
R0 viasraid;viasraid;C:\WINDOWS\system32\DRIVERS\viasraid.sys [2003-10-31 12:22]
R0 videX32;videX32;C:\WINDOWS\system32\DRIVERS\videX32.sys [2006-10-17 21:22]
S3 amdtools;AMD Special Tools Driver;C:\WINDOWS\system32\DRIVERS\AmdTools.sys []
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{28de26ab-f789-11dc-b687-0008a188dbf2}]
\Shell\Auto\command - F:\Start.exe
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Start.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9153d6df-f522-11dc-b686-0008a188dbf2}]
\Shell\Auto\command - E:\Start.exe
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Start.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fa7bf37a-1398-11dc-b664-0008a188dbf2}]
\Shell\AutoRun\command - M:\wd_windows_tools\setup.exe
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-03 01:31:30
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDClock.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
.
**************************************************************************
.
Completion time: 2008-07-03 1:35:00 - machine was rebooted
ComboFix-quarantined-files.txt 2008-07-02 23:34:57
ComboFix2.txt 2008-07-02 10:03:53
ComboFix3.txt 2008-07-02 08:30:25
ComboFix4.txt 2008-06-24 00:51:55
Pre-Run: 20,417,896,448 bytes free
Post-Run: 20,444,196,864 bytes free
227 --- E O F --- 2008-06-21 01:00:51
-
Du har IHVERTFALL ikke kjørt rwd bil på glatta.
Hvis du ligger i sladd med en rwd\4wd bil og trår inn clutchen, hva skjer?
Vips du har rompa i autovernet.
Skal du rette en bil så GI GASS, ikke gå av gassen, da slipper du en overraskende kontra. Alternativt kan du slakke gassen, men ikke gå helt av gassen i sladd.
-
Ta det i dusjen, la det tørke noen dager. Beste trikset, så slipper du å pelle ut alle knapper osv.
-
Har 2 kontrollere på kortet. Jeg får kun disablet den kontrolleren jeg bruker, så det blir litt vanskelig.
-
Nå har jeg kjøpt et annet kontroller kort. Det fungerer fint, men når jeg har det koblet til maskinen, så fungerer ikke kontrolleren som hele tiden har funket som den skal.
Tar jeg det ut, virker det som normalt. Biosen på det nye kortet poster altså, men ikke det gamle. Får også melding om at "The Device Cannot Start, Code 10" på det integrerte kortet. (Som hele tiden har funket)
-
Får melding under oppstart at jeg må sjekke hardware, trykk G for å fortsette.
Kommer inn i Windows, hvor jeg får "the device cannot start. Code 10"
Tips?
Er et Asus A8V-Deluxe kort.
Takk for all hjelp.
-
Hva med å legge batch filen under oppstart da? Da vil den slette innholdet i prefetch hver gang du rebooter uten å måtte kjøre den manuelt. (Lenge leve latskapen..)
-
-
Jeg har testet netgear sitt system som skal gi 85mbps, det gav ikke 4 engang. 2 uttak ca 4 meter ved siden av hverandre.
Måtte også ha de på samme kurs, hvis ikke funket det ikke.
-
Lot den gå i en halvtime, uten at det skjedde noe. Lastet og installerte activex kontrollen og.
-
Kjøp en boks med "luft-på-boks" og blås det rent.
Med mindre du skal vaske det for væske som har blitt sølt på det da?
-
Du kan prøve å skaffe deg en fingeravtrykk avleser, og ha det som "passord." Slik at du må scanne fingeren hver gang du logger på.
-
Sverger heller til MX500 \ MX518 enn den shitty G5. No way at jeg skal ha den igjen ... IKKE fornøyd.
-
Viste seg at outlook genererer en mappe som heter Temp i mappen hvor den vanligvis legger alle filer man åpner via outlook. (Den vanlige temp mappen.)
I Temp ligger det kun korrupte filer, og når du da prøver å åpne filer lik den som har vært korrupt leser den utifra feil mappe.
Kall det en bug?
Fant løsningen i alle fall
-
Visa og Mastercard er pliktig til å erstatte alle varer kjøpt i utlandet man enten ikke er fornøyd med, eller ikke har motatt.
Er ingen big deal å ringe de når ting ikke kommer fram.
-
Får en feilmelding som er rimelig irriterende ved åpning av pdf filer fra en spesifik mottaker.
Har prøvd Adobe Acrobat Reader versjon 5, 6, 7 og 8. Hjalp ingenting.
Har også prøvd en annen PDF leser, Foxit Reader.
Noen som vet grunnen til dette?
Får heller ikke kopiert ut filen fra mailen, eller lagret den.
Se bilde.
-
Prøv å installer driver for CPU'en din fra AMD sine sider.
http://www.amd.com/us-en/Processors/Techni...182_871,00.html
-
Dere kan jo prøve å hoste et så stort forum ut av deres egen lomme dere og.
Maken til utakknemmelighet på noen av dere.
Gutta jobber for å få det opp, og ting kan ta tid.
Be patient. Det finnes hundrevis av andre bilforumer man kan lese
-
chkdsk /p og fixboot.
Så rebooter du. Pleier å løse sånne feil.
Noen som kan se på denne combofix loggen?
i IKT-drift og sikkerhet
Skrevet
Har gjort prossessen før, og jeg gjorde det som beskrevet over. Kan prøve igjen..