haakka
-
Innlegg
581 -
Ble med
-
Besøkte siden sist
Innholdstype
Profiler
Forum
Hendelser
Blogger
Om forumet
Innlegg skrevet av haakka
-
-
Banner Slimda for å bruke sangtekster fra Ayreon i signaturen sin
-
Si meg, når begynte VG nett å reklamere for porno?
Jeg satt å leste en artikkel, så ser jeg plutselig reklame for Pirates, og Island feaver.
På høyre side, under "Prøvekjøres nå"
-
Jeg tenker på å selge min HTC Touch. Hva kan jeg forvente å få for den? er 2500 en urimelig pris? Har nettopp byttet skjerm på den.
-
Jeg har da skaffet meg en htc touch, men jeg har litt problemer med den.
Jeg får ikke koplet meg til GPRS.
Jeg har TELE2 som operatør. Har prøvd å få tilsendt oppsett flere ganger, kjørt veiviser for tilkopling flere ganger, men ingenting hjelper.
-
HJT:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:01:45 PM, on 6/14/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\Ati2evxx.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\Ati2evxx.exe
F:\WINDOWS\Explorer.EXE
F:\WINDOWS\system32\spoolsv.exe
F:\WINDOWS\SOUNDMAN.EXE
F:\Program Files\LClock\LClock.exe
F:\PROGRA~1\Grisoft\AVG7\avgcc.exe
F:\PROGRA~1\MI948F~1\GAMECO~1\common\swtrayv4.exe
F:\Program Files\iTunes\iTunesHelper.exe
F:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
F:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
F:\Program Files\DAEMON Tools\daemon.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
F:\Program Files\Launchy\Launchy.exe
F:\Program Files\Logitech\SetPoint\SetPoint.exe
F:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
F:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
F:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
F:\PROGRA~1\Grisoft\AVG7\avgemc.exe
F:\Program Files\Bonjour\mDNSResponder.exe
F:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
F:\WINDOWS\system32\svchost.exe
F:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
F:\Program Files\iPod\bin\iPodService.exe
F:\Program Files\Windows Live\Messenger\usnsvc.exe
F:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
F:\Program Files\Opera\opera.exe
F:\Program Files\foobar2000\foobar2000.exe
F:\PROGRA~1\Grisoft\AVG7\avgwb.dat
F:\WINDOWS\system32\NOTEPAD.EXE
F:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://norwegian.ircfast2.com/index.php?mi...=44577&c=US
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7BB07DEF-FB3D-4E49-AEB6-89773CA08F3A} - F:\WINDOWS\system32\urqPgDTL.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {948ED74F-0B10-4453-AE31-2AF8B87A2692} - F:\WINDOWS\system32\tuvuurQG.dll (file missing)
O2 - BHO: QXK Olive - {D708B23A-8C56-442F-9FD7-6237FC253E46} - F:\WINDOWS\boqnrwdmsvr.dll (file missing)
O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [LClock] F:\Program Files\LClock\LClock.exe
O4 - HKLM\..\Run: [ATIPTA] "F:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] F:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVG7_CC] F:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [sideWinderTrayV4] F:\PROGRA~1\MI948F~1\GAMECO~1\common\swtrayv4.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "F:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "F:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [94a8d052] rundll32.exe "F:\WINDOWS\system32\wlqgngpr.dll",b
O4 - HKLM\..\Run: [DelayLoad] F:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msprint.exe
O4 - HKCU\..\Run: [MsnMsgr] "F:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools] "F:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [spybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [spybotDeletingB3547] command /c del "F:\WINDOWS\system32\urqPgDTL.dll"
O4 - HKCU\..\RunOnce: [spybotDeletingD5064] cmd /c del "F:\WINDOWS\system32\urqPgDTL.dll"
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = F:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Launchy.lnk = F:\Program Files\Launchy\Launchy.exe
O4 - Global Startup: Logitech SetPoint.lnk = F:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://F:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O20 - Winlogon Notify: pmnkHYrr - F:\WINDOWS\
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - F:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - F:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - F:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Bonjour Service - Apple Inc. - F:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod Service - Apple Inc. - F:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - F:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
--
End of file - 7648 bytes
Malvarebytes
Malwarebytes' Anti-Malware 1.17
Database versjon: 853
3:01:07 PM 6/14/2008
mbam-log-6-14-2008 (15-01-07).txt
Skann type: Full Skann (C:\|F:\|H:\|J:\|)
Objekter skannet: 111417
Tid tilbakelagt: 24 minute(s), 28 second(s)
Minneprosesser infisert: 0
Minnemoduler infisert: 0
Registernøkler infisert: 0
Registerverdier infisert: 2
Registerfiler infisert: 0
Mapper infisert: 0
Filer infisert: 0
Minneprosesser infisert:
(Ingen mistenkelige filer funnet)
Minnemoduler infisert:
(Ingen mistenkelige filer funnet)
Registernøkler infisert:
(Ingen mistenkelige filer funnet)
Registerverdier infisert:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run\DelayLoad (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\94a8d052 (Trojan.Agent) -> Quarantined and deleted successfully.
Registerfiler infisert:
(Ingen mistenkelige filer funnet)
Mapper infisert:
(Ingen mistenkelige filer funnet)
Filer infisert:
(Ingen mistenkelige filer funnet)
-
ComboFix 08-06-11.3 - Administrator 2008-06-13 13:18:30.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.283 [GMT 2:00]
Running from: F:\Documents and Settings\Administrator\Desktop\ComboFix.exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
F:\WINDOWS\system32\axtuannm.dll
F:\WINDOWS\system32\eyggmjdj.ini
F:\WINDOWS\system32\GQruuvut.ini
F:\WINDOWS\system32\GQruuvut.ini2
F:\WINDOWS\system32\iQqAyJlm.ini
F:\WINDOWS\system32\iQqAyJlm.ini2
F:\WINDOWS\system32\jdjmggye.dll
F:\WINDOWS\system32\klqdlbkj.ini
F:\WINDOWS\system32\LTDgPqru.ini
F:\WINDOWS\system32\LTDgPqru.ini2
F:\WINDOWS\system32\mjpqjhjw.ini
F:\WINDOWS\system32\mlJyAqQi.dll
F:\WINDOWS\system32\mnnautxa.ini
F:\WINDOWS\system32\mrpyqjda.ini
F:\WINDOWS\system32\pmnkHYrr.dll
F:\WINDOWS\system32\rpgngqlw.ini
F:\WINDOWS\system32\usggmrcv.ini
F:\WINDOWS\system32\vcrmggsu.dll
F:\WINDOWS\system32\wjhjqpjm.dll
.
((((((((((((((((((((((((( Files Created from 2008-05-13 to 2008-06-13 )))))))))))))))))))))))))))))))
.
2008-06-13 12:10 . 2008-06-13 12:10 <DIR> d-------- F:\Program Files\Trend Micro
2008-06-13 11:37 . 2008-06-13 11:37 <DIR> d-------- F:\Program Files\Apple Software Update
2008-06-08 23:07 . 2004-08-04 00:56 159,232 --a------ F:\WINDOWS\system32\ptpusd.dll
2008-06-08 23:07 . 2001-08-17 22:36 5,632 --a------ F:\WINDOWS\system32\ptpusb.dll
2008-06-05 13:29 . 2008-06-05 13:29 91 --a------ F:\WINDOWS\wininit.ini
2008-06-03 16:19 . 2004-08-03 22:58 15,104 --a------ F:\WINDOWS\system32\drivers\usbscan.sys
2008-06-03 16:15 . 2008-06-03 16:15 <DIR> d-------- F:\Program Files\Canon
2008-06-03 16:15 . 2003-07-23 14:18 159,744 --a------ F:\WINDOWS\system32\CNDUK170.dll
2008-06-03 16:15 . 2003-07-24 19:45 81,920 --a------ F:\WINDOWS\system32\PSCLK170.dll
2008-06-03 16:15 . 2003-07-23 14:18 81,920 --a------ F:\WINDOWS\system32\CNDCK170.dll
2008-06-03 16:15 . 2003-07-23 16:27 40,960 --a------ F:\WINDOWS\system32\CNDNDlg.exe
2008-06-02 02:50 . 2008-06-02 02:50 <DIR> d-------- F:\WINDOWS\Sun
2008-06-01 18:54 . 2008-02-22 02:33 69,632 --a------ F:\WINDOWS\system32\javacpl.cpl
2008-06-01 18:52 . 2008-06-01 18:52 <DIR> d-------- F:\Program Files\ordrumbox
2008-05-28 00:16 . 2008-05-28 00:27 <DIR> d-------- F:\Program Files\Monopoly 3
2008-05-27 23:57 . 2008-05-28 00:16 <DIR> d-------- F:\Documents and Settings\Administrator\Application Data\GetRightToGo
2008-05-26 13:57 . 2008-06-13 13:23 54,156 --ah----- F:\WINDOWS\QTFont.qfn
2008-05-26 13:57 . 2008-05-26 13:57 1,409 --a------ F:\WINDOWS\QTFont.for
2008-05-26 13:53 . 2008-05-26 13:53 <DIR> d-------- F:\Program Files\iTunes
2008-05-26 13:53 . 2008-05-26 13:53 <DIR> d-------- F:\Program Files\iPod
2008-05-26 13:53 . 2008-05-26 13:53 <DIR> d-------- F:\Program Files\Bonjour
2008-05-26 13:53 . 2008-05-26 13:53 <DIR> d-------- F:\Documents and Settings\Administrator\Application Data\Apple Computer
2008-05-26 13:52 . 2008-05-26 13:53 <DIR> d-------- F:\Program Files\QuickTime
2008-05-26 13:52 . 2008-05-26 13:52 <DIR> d-------- F:\Program Files\Common Files\Apple
2008-05-26 13:52 . 2008-05-26 13:53 <DIR> d-------- F:\Documents and Settings\All Users\Application Data\Apple Computer
2008-05-26 13:52 . 2008-05-26 13:52 <DIR> d-------- F:\Documents and Settings\All Users\Application Data\Apple
2008-05-26 13:52 . 2008-02-18 11:16 30,464 --a------ F:\WINDOWS\system32\drivers\usbaapl.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-13 09:50 --------- d-----w F:\Documents and Settings\Administrator\Application Data\uTorrent
2008-06-13 09:43 --------- d-----w F:\Documents and Settings\Administrator\Application Data\foobar2000
2008-06-13 06:49 --------- d-----w F:\Documents and Settings\Administrator\Application Data\AVG7
2008-06-11 16:02 --------- d-----w F:\Program Files\Opera
2008-06-03 14:15 --------- d--h--w F:\Program Files\InstallShield Installation Information
2008-06-03 14:14 --------- d-----w F:\Program Files\Common Files\InstallShield
2008-06-03 12:55 --------- d-----w F:\Program Files\Java
2008-05-27 23:04 --------- d---a-w F:\Documents and Settings\All Users\Application Data\TEMP
2008-05-17 22:21 --------- d-----w F:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-04-30 14:29 0 ---ha-w F:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-04-30 14:29 0 ---ha-w F:\WINDOWS\system32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf
2008-04-30 14:29 0 ---ha-w F:\WINDOWS\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
2008-04-30 14:29 --------- d-----w F:\Documents and Settings\All Users\Application Data\LogiShrd
2008-04-30 14:29 --------- d-----w F:\Documents and Settings\Administrator\Application Data\Logitech
2008-04-30 14:28 --------- d-----w F:\Program Files\Common Files\Logishrd
2008-04-30 14:28 --------- d-----w F:\Documents and Settings\All Users\Application Data\Logitech
2008-04-30 14:27 --------- d-----w F:\Program Files\Logitech
2008-04-30 14:27 --------- d-----w F:\Documents and Settings\Administrator\Application Data\InstallShield
2008-04-23 13:57 --------- d-----w F:\Program Files\Lavasoft
2008-04-23 13:55 --------- d-----w F:\Program Files\EULAlyzer
2008-04-23 13:53 --------- d-----w F:\Documents and Settings\All Users\Application Data\Lavasoft
2008-04-23 13:52 --------- d-----w F:\Program Files\Common Files\Wise Installation Wizard
2008-04-23 13:51 --------- d-----w F:\Program Files\Eusing Free Registry Cleaner
2008-04-23 13:48 --------- d-----w F:\Program Files\Spybot - Search & Destroy
2008-04-23 13:14 --------- d-----w F:\Program Files\MSXML 6.0
2008-04-23 13:08 --------- d-----w F:\Program Files\Launchy
2008-04-23 13:04 --------- d-----w F:\Documents and Settings\Administrator\Application Data\Launchy
2008-04-23 12:30 --------- d-----w F:\Program Files\Google
2008-04-23 12:30 --------- d-----w F:\Program Files\Commandos II
2008-04-23 01:08 --------- d-----w F:\Program Files\MSBuild
2008-04-23 01:06 --------- d-----w F:\Program Files\Reference Assemblies
2008-04-22 23:58 --------- d-----w F:\Program Files\foobar2000
2008-04-22 17:30 --------- d-----w F:\Program Files\PeerGuardian2
2008-04-19 19:10 --------- d-----w F:\Documents and Settings\All Users\Application Data\TrackMania
2008-04-16 13:03 --------- d-----w F:\Program Files\TmNationsForever
2008-04-13 18:17 107,888 ----a-w F:\WINDOWS\system32\CmdLineExt.dll
2008-04-13 18:17 --------- d--h--r F:\Documents and Settings\Administrator\Application Data\SecuROM
2008-03-27 08:12 151,583 ----a-w F:\WINDOWS\system32\msjint40.dll
2008-03-19 09:40 1,845,888 ----a-w F:\WINDOWS\system32\win32k.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F26BEDB-D89B-44A1-948B-5D523292DADF}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7BB07DEF-FB3D-4E49-AEB6-89773CA08F3A}]
F:\WINDOWS\system32\urqPgDTL.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{948ED74F-0B10-4453-AE31-2AF8B87A2692}]
F:\WINDOWS\system32\tuvuurQG.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D708B23A-8C56-442F-9FD7-6237FC253E46}]
F:\WINDOWS\boqnrwdmsvr.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="F:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2008-04-23 15:38 5724184]
"DAEMON Tools"="F:\Program Files\DAEMON Tools\daemon.exe" [2007-09-18 16:16 171464]
"ctfmon.exe"="F:\WINDOWS\system32\ctfmon.exe" [2002-12-31 14:00 15360]
"SpybotSD TeaTimer"="F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43 2097488]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SpybotDeletingB3547"="command /c del F:\WINDOWS\system32\urqPgDTL.dll" [ ]
"SpybotDeletingD5064"="cmd /c del F:\WINDOWS\system32\urqPgDTL.dll" [ ]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2005-10-24 15:45 90112 F:\WINDOWS\SOUNDMAN.EXE]
"LClock"="F:\Program Files\LClock\LClock.exe" [2004-09-19 12:27 65536]
"ATIPTA"="F:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-10-28 21:05 344064]
"NeroFilterCheck"="F:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648]
"AVG7_CC"="F:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2008-04-23 08:27 579584]
"SideWinderTrayV4"="F:\PROGRA~1\MI948F~1\GAMECO~1\common\swtrayv4.exe" [1999-07-04 01:37 24650]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-11-29 02:17 55824 F:\WINDOWS\KHALMNPR.Exe]
"QuickTime Task"="F:\Program Files\QuickTime\QTTask.exe" [2008-03-28 23:37 413696]
"iTunesHelper"="F:\Program Files\iTunes\iTunesHelper.exe" [2008-03-30 10:36 267048]
"SunJavaUpdateSched"="F:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00 132496]
"94a8d052"="F:\WINDOWS\system32\wlqgngpr.dll" [ ]
"DelayLoad"="F:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msprint.exe" [ ]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"AVG7_Run"="F:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2007-10-25 18:11 219136]
F:\Documents and Settings\Administrator\Start Menu\Programs\Startup\
Adobe Gamma.lnk - F:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 19:16:50 113664]
F:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Launchy.lnk - F:\Program Files\Launchy\Launchy.exe [2008-04-23 15:08:05 274432]
Logitech SetPoint.lnk - F:\Program Files\Logitech\SetPoint\SetPoint.exe [2008-04-30 16:28:12 789008]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
f:\program files\common files\logishrd\bluetooth\LBTWlgn.dll 2008-01-09 12:30 72208 f:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\pmnkHYrr]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.divxa32"= msaud32_divx.acm
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\djP27.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"F:\\Program Files\\Grisoft\\AVG7\\avginet.exe"=
"F:\\Program Files\\Grisoft\\AVG7\\avgamsvr.exe"=
"F:\\Program Files\\Grisoft\\AVG7\\avgcc.exe"=
"F:\\Program Files\\Grisoft\\AVG7\\avgemc.exe"=
"F:\\Program Files\\uTorrent\\uTorrent.exe"=
"F:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"F:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"F:\\Program Files\\TmNationsForever\\TmForever.exe"=
"F:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"F:\\Program Files\\iTunes\\iTunes.exe"=
R0 nvcchflt;NVIDIA Disk Cache Filter Driver;F:\WINDOWS\system32\DRIVERS\nvcchflt.sys [2005-02-11 18:11]
R3 portio;WinPic800 IO Drivers;F:\WINDOWS\system32\DRIVERS\WP800IO.sys [2007-08-26 10:51]
S0 djP27;djP27;F:\WINDOWS\system32\Drivers\djP27.sys []
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{09fc6182-946b-11dc-9688-001109288d5e}]
\Shell\AutoRun\command - K:\Installer.exe
.
Contents of the 'Scheduled Tasks' folder
"2008-06-13 09:37:58 F:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- F:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-13 13:22:15
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
F:\WINDOWS\system32\ati2evxx.exe
F:\WINDOWS\system32\ati2evxx.exe
F:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
F:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
F:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
F:\PROGRA~1\Grisoft\AVG7\avgemc.exe
F:\Program Files\Bonjour\mDNSResponder.exe
F:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
F:\Program Files\iPod\bin\iPodService.exe
F:\Program Files\iTunes\iTunes.exe
F:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
F:\Program Files\Windows Live\Messenger\usnsvc.exe
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
.
**************************************************************************
.
Completion time: 2008-06-13 13:28:02 - machine was rebooted
ComboFix-quarantined-files.txt 2008-06-13 11:27:57
Pre-Run: 2,956,603,392 bytes free
Post-Run: 4,151,812,096 bytes free
209 --- E O F --- 2008-05-17 01:06:52
-
HJT logg:
Klikk for å se/fjerne innholdet nedenforLogfile of Trend Micro HijackThis v2.0.2Scan saved at 12:11:07 PM, on 6/13/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\Ati2evxx.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\Ati2evxx.exe
F:\WINDOWS\Explorer.EXE
F:\WINDOWS\system32\spoolsv.exe
F:\WINDOWS\SOUNDMAN.EXE
F:\Program Files\LClock\LClock.exe
F:\PROGRA~1\Grisoft\AVG7\avgcc.exe
F:\PROGRA~1\MI948F~1\GAMECO~1\common\swtrayv4.exe
F:\Program Files\iTunes\iTunesHelper.exe
F:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
F:\WINDOWS\system32\rundll32.exe
F:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
F:\Program Files\DAEMON Tools\daemon.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
F:\Program Files\Launchy\Launchy.exe
F:\Program Files\Logitech\SetPoint\SetPoint.exe
F:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
F:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
F:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
F:\PROGRA~1\Grisoft\AVG7\avgemc.exe
F:\Program Files\Bonjour\mDNSResponder.exe
F:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
F:\WINDOWS\system32\svchost.exe
F:\Program Files\iPod\bin\iPodService.exe
F:\Program Files\Windows Live\Messenger\usnsvc.exe
F:\Program Files\iTunes\iTunes.exe
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
F:\Program Files\Opera\opera.exe
F:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://norwegian.ircfast2.com/index.php?mi...=44577&c=US
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [LClock] F:\Program Files\LClock\LClock.exe
O4 - HKLM\..\Run: [ATIPTA] "F:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] F:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVG7_CC] F:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [sideWinderTrayV4] F:\PROGRA~1\MI948F~1\GAMECO~1\common\swtrayv4.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "F:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "F:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [DelayLoad] F:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msprint.exe
O4 - HKLM\..\Run: [94a8d052] rundll32.exe "F:\WINDOWS\system32\axtuannm.dll",b
O4 - HKCU\..\Run: [MsnMsgr] "F:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools] "F:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [spybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [spybotDeletingB3547] command /c del "F:\WINDOWS\system32\urqPgDTL.dll"
O4 - HKCU\..\RunOnce: [spybotDeletingD5064] cmd /c del "F:\WINDOWS\system32\urqPgDTL.dll"
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] F:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = F:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Launchy.lnk = F:\Program Files\Launchy\Launchy.exe
O4 - Global Startup: Logitech SetPoint.lnk = F:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://F:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O21 - SSODL: vregfwlx - {7A72B31E-9D61-4E2D-9DE2-A9771BC00C6E} - (no file)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - F:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - F:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - F:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - F:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Bonjour Service - Apple Inc. - F:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod Service - Apple Inc. - F:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - F:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
--
End of file - 6648 bytes
-
Bildet er tatt på flyplassen i Hamburg!
Vet ikke helt hvordan denne er hengt opp, men det var en fullsize bil med motor og interiør!
-
Eneste jeg kan se som er forskjell, er at mealtech inneholder litt mindre karbo, og litt mer ess. fettsyrer.
Og Pro-45 står annonsert som en måltidserstatning på TN i alle fall.
-
Hehe ja, det så jeg jo, men jeg tenker mer på om det vil lønne seg å kjøpe Mealtech, for hvis det er marginale ting som skiller de, så kjøper jeg heller Pro-45, som koster det samme, men inneholder 2,4Kg mer enn Mealtech
-
Jeg er igang med å endre kostholdet mitt, og har planer om å droppe et par kilo.
Så jeg lurer på om det er store forskjeller på Pro-45 Balance, og Mealtech måltidserstatter? Pro-45 koster jo 1/3 av det mealtech koster.
-
Jeg trener 5 dager i uka.
2 dager med Krav maga, og 3 dager på 3T med Squash, jogging og styrke.
Har ikke trent skikkelig på en alt for lang periode, så jeg måtte ta meg selv skikkelig i nakkeskinnet. Men nå har jeg komme igang med trening for fullt, og jeg må si det er godt å være tilbake
-
Betaler 1.305 inkludert frakt og MVA og toll
-
Jeg har store planer om å lyddempe bilen min. det er en Peugeot 405 GRi 1989 modell.
Hvor mye dempemateriale trenger jeg for å dempe det meste av bilen?
Jeg skal kjøpe B-quiet fra USA, da det blir billigere enn å kjøpe i norge, men de rullene kommer i 50sq.ft. (ca 4.6Kvm)
Hvor langt kommer jeg med det?
Jeg har hovedsaklig planer om å dempe bagasjerommet, dørene, og taket. Rekker det med 4.6 KVm?
-
mao: Du vil prøve å lure noen til å kjøpe for overpris?
-
Hvis gud skapte mennesket, et nytelsesdyr, og gud annser sodomy som en synd, hvorfor plasserte han nytelsespunktet på mennesket i rompa?
-
Jeg har planer om å kjøpe meg en boksesekk.
Sekken er ufyllt, så vekt bestemmer jeg selv med valg av materialer.
Men saken er at jeg har begrenset med plass, og den eneste plassen jeg har plass, er på soverommet.
Der har jeg ei pipe i murstein som står ut fra veggen, og der har jeg tenkt å henge boksesekken, men jeg er usikker på hvor mye belastning den tåler hvis jeg har 8 ankerpunkt.
Noen som har formening om det?
-
Jeg er 20 år, 183cm, og veier 88 Kg.
Den siste tiden har det blitt veldig mye daffing, da jeg har vært arbeidsledig i et halvår.
Har merka at jeg har lagt på meg litt, og jeg liker det ikke
Problemet mitt er at jeg spiser for skjeldent, og feil. er dager jeg spiser kun 2 brødskiver.
Jeg var veldig fokuser på kosthold for en liten tid tilbake, da jeg trente styrke og slik på skolen, men etter at jeg slutta på skolen, har jeg ikke hadd muligheten til det lenger.
Jeg prøver å jogge endel, men sliter med sting, så det er lite fristende.
+ at jeg har mistet motet når det kommer til sunt kosthold.
Noen som har noen gode tips om hvordan jeg kan få matvanene mine på rett kjøl igjen?
Har tenkt tanken på å skaffe meg ei stoppeklokke som varsler hver 4 time eller noe, men tips taes imot med åpne armer.
Man sier jo at man skal spise sunt og variert, men jeg har mye annet å tenke på, enn å telle kalorier. kan noen kan gi meg noen tips til hva jeg bør kjøpe av varer, og hva jeg bør få i meg i løpet av dagen?
-
Du glemer jo en EP-en de ga ut i 2005. Deadly decadence. Den er jo verd å ha med.
-
Julebrus i Oktober suger max.
-
Tjaaa... hvis man er ute på båt i noen dager/uker, med begrensede dusj-muligheter + at man jobber endel, så kan dette for være tilfellet. Har funnet ut det et par ganger på festival for å si det sånn
-
Det som den bra jenta mest sansynligvis har mellom beina? Hvis du legger på svømmetur...
-
An indian walked in to town, and visited the local convinience store, and asked the keep if he had any toilet paper.
The keep responded: "Iv`e got 3 kinds of toilet paper. I got one called "paradise", wich is the most expensive, and best paper, and ive got this one called Heaven, wich is less expensive, and a bit worse then paradise, and the last one has no name, and is the chepest one.
The indian said; "Il take the one with no name", payed for it, and left the shop.
The next day, the indian returned to the shop, and talked to the shopkeep.
"Ive got a name for your toiletpaper. You can call it john Wayne. Its rough, and tough, and takes no shit from indians"
Og enda en.
To gutter var på epleslang til en gammel bonde. de hadde stått å plukket epler i 10 minutter, før de hørte bonden rope å skrike etter de.
De tok bena fatt, og hadde genserne fulle av epler. så sa den ene til den andre: "Jeg vet om et perfekt skjulested der vi kan fordele eplene. Vi gjemmer oss i klokketårnet i kirka".
Så da løp de mot kirka så fort de klarte, og mistet et par epler her og der. Så kom de til kirka, og begynnte å klatre opp den lange trappen opp til tårnet. De åpnet luka til klokketårnet, og mistet et par epler øverst i trappa.
Så satte de seg ned, tømte ut alle eplene fra geneserene sine, og begynnte å fordele.
"en til deg, og en til meg. en til deg, og en til meg. en til deg, og en til meg. en til deg, og en til meg osv."
Mens de delte eplene, så gikk klokkeren sin daglige runde, og gikk opp trappa til tårnet der guttene satt, og hørte at de satt å fordelte epler. Klokkeren ble da livredd, sprang ned trappa, og løp til presten. "Fader, Satan og St.peter sitter i klokketårnet og fordeler sjeler mellom seg."
Presten bli bekymret, og ble med klokkeren opp til tårnet. Da hørte de guttene: "en til deg, og en til meg. en til deg, og en til meg. en til deg, og en til meg. en til deg, og en til meg. Det var vist alle vi hadde. "Nei" sa den andre gutten. "vi har glemt de to i trappa"
-
Jeg rensa med masse renseshampoo i vannet.
Metal: A Headbanger's Guide
i Musikk
Skrevet
Piledriver kommer med ny plate straks, under navnet The Exhaultet Piledriver