Gå till innehåll

Rimat

Medlem
  • Innehållsantal

    28
  • Gick med

  • Besökte senast

Allt postat av Rimat

  1. Hej hej Jag har problem med min datorn som stänger av sig själv efter nån sekund direkt när jag startat den! problemet hände förra veckan och då tog jag ut el-kontakten och la in den igen så funkade det... Men nu så stänger den av sig direkt efter nån sekund... Men det som jag la märke till är att tiden blir längre om man låter datorn vara under några timmar utan ström! Senaste var den uppe i 10 sekunder typ. Va kan detta vara? Kortslutitning kanske!?? Har fått tips om processfläkten, inte tillräckligt med kylpasta, och även tips om moderkortet, att den strular. All svar uppskattas! MvH
  2. Jo jag testade den i annan datorn oxå, men samma sak! Aja, om ni undrar vart jag köpte min så var de i tradera! För en femhundrig kan man nog vinna den! MvH
  3. hihi! finns ju o köpa på nätet! Ja alltså de funkade rätt bra i början! MvH
  4. Så här ser de ut! Jag använde Hard Disk Low Level Format Tool! h.bmp
  5. Jo jag ser minnet men hur ska partitionera den? Hittar ej de! Jag har XP! För de första så funkade den inte som de skulle men sen när jag Körde chkdsk så kunde jag komma in på själva minnet men jag hade en skadad fil och två dolda filer så jag körde de och de flesta gav mig rådet att göra de! Det tog mycket långt tid men sen när de var klar så kommer fönstern hårdisken e inte formaterad, vill du formatera den? svarade Ja men som de går ej att slutföra hela formateringen! MvH
  6. Ähh de var så nära. Jag gick in på egenskaper och sedan maskinvara och track på drivrutinen och ändrade från snabb prestande till optimal prestande tror jag sedan körde jag ett vanligt formatering och det startade tillskillnad från förr och jag kunde formatera till NTFS då! Men problemet var innan de skulle slutföra, de var egentligen klar men så kom de upp igen: formateringen kunde inte slutföras! Provade i cmd. fick detta: Filsystemet är av typen RAW. Nytt filsystem är av typen NTFS. Verifierar 256000 MB Volymetikett (Max 11 tecken. Retur ger tom etikett)? xxx Skapar strukturer för filsystemet. Det går inte att skriva till den andra NTFS-startsektorn. Formateringen misslyckades. Aja de verkar som att den e trasig ska dock prova andra metoder till innan jag ger upp! Tack ialf! MvH
  7. Det står att "Filsystemet är av typen RAW." och jag försökte formatera det till både Fat och Fat32 men får detta medd.: "Volymen är för stor för FAT16/12." Kan jag formatera de till nåt annat? MvH
  8. Japp de vet jag! Men det gick som sagt inte! Men nu kör jag formateringen via CMD så får vi se hur de går! MvH
  9. Ja jag kopplade bort de! Och de funkar varken med snabb eller inte snabb formatering! De konstiga är att de funkade innan jag körde HDD! MvH
  10. Hej Jag körde med HDD Low Lovel format och det gick bra men nu när jag försöker öppna disken så står de att disken e inte formaterad. vill du formatera den nu? Track på Ja men när den skulle starta så kunde inte formateringen slutföras! Va ska jag kan göra nu? Nu går de inte ens att använda den utan att formatera! MvH
  11. Ja jag tänkte göra så oxå! Men nu när jag provar de så står de att det gick inte att slutföra formateringen! Ska jag testa HDD Low Level format? MvH
  12. Hej igen Tackar för alla svar, men något hände plötsligt! Körde chkdsk och ett meddelande kom upp efter att ha kört "De ogiltiga länkarna i borttappade kedjor på klustret 8189871 korrigerades" i nästan 30 min så kom detta upp efter: Vill du konvertera förlorade kedjor till filer? (J/N) n 261165440 kB diskutrymme frigjordes. Korrigeringar har gjorts i filsystemet. 262 075 840 kB diskutrymme totalt. 64 kB i 2 dolda filer. 32 kB i 1 filer. 32 kB i skadade sektorer. 262 075 552 kB diskutrymme tillgängligt. 32 768 byte i varje allokeringsenhet. 8 189 870 allokeringsenheter finns totalt på disken. 8 189 861 allokeringsenheter är tillgängliga på disken. Nu funkar de bra och kan komma in på själva minnet! Men frågan är hur jag ska hitta de 2 dolda filerna och den skadade sektoren som de visas ovan i rött? Ska jag nu köra HDD Low Level Format Tool ändå? Eller ska jag bara formatera den som vanligt? Vänar på ert svar! MvH
  13. Hej Jag har ett flashminne som inte fungerar som de ska, sedan en tid tillbaka kunde jag inte öppna minnet eftersom det stod att katalogen vara skadad, efter att ha tittat lite på nätet provade jag "chkdsk H:/ f" och de fungerade alldelles utmärkt efteråt! Men när jag en gång flyttade data till minnet var datan borta nästa dag jag öppnade filen i själva minnet! Nu när jag öppnar minnet så visar det i egenskaper att minnet är fullt nästan och bara ca 800 MB ledigt! Men de konstiga är att inga filer finns där inne! Och när jag försöker Defragmentera disken så står det att "Det gick inte att köra pga en skadad fil som heter Found.001 som jag inte ser! Försökte formatera disken oxå men det gick inte att slutföras står de! Har även provar unlocker men utan någon resultat! Har någon en bra ide eller har detta hänt er?! Alla svar uppskattas! MvH
  14. Jo men de gjorde de! inga hot hittades Tack ska du ha en gång till! MvH
  15. Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net device: opened successfully user: MBR read successfully called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll SCSIPORT.SYS nvgts.sys kernel: MBR read successfully user & kernel MBR OK
  16. ComboFix 10-10-07.02 - Rimon 2010-10-09 11:39:30.3.3 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.2047.1706 [GMT 2:00] Körs från: c:\documents and settings\Rimon\Skrivbord\ComboFix.exe Använda kommandoväxlar :: c:\documents and settings\Rimon\Skrivbord\CFScript.txt . (((((((((((((((((((((((( Filer Skapade från 2010-09-09 till 2010-10-09 )))))))))))))))))))))))))))))) . 2010-10-08 17:06 . 2010-10-09 09:35 -------- d-----w- c:\program\DAEMON Tools Toolbar 2010-10-08 17:05 . 2010-10-08 17:10 -------- d-----w- c:\documents and settings\Rimon\Application Data\DAEMON Tools Lite 2010-10-08 17:05 . 2010-10-08 17:06 -------- d-----w- c:\documents and settings\All Users\Application Data\DAEMON Tools Lite 2010-10-08 16:53 . 2010-10-08 16:53 -------- d-----w- c:\windows\system32\XPSViewer 2010-10-08 16:53 . 2010-10-08 16:53 -------- d-----w- c:\program\Reference Assemblies 2010-10-08 16:53 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll 2010-10-08 16:53 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2010-10-08 16:53 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2010-10-08 16:53 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll 2010-10-08 16:53 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2010-10-08 16:53 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll 2010-10-08 16:53 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll 2010-10-08 16:53 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2010-10-08 16:53 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe 2010-10-08 11:40 . 2010-10-08 11:40 -------- d-----w- c:\windows\system32\sv-se 2010-10-08 11:40 . 2010-10-08 11:40 -------- d-----w- c:\windows\system32\sv 2010-10-08 11:40 . 2010-10-08 11:40 -------- d-----w- c:\windows\system32\bits 2010-10-08 11:40 . 2010-10-08 11:40 -------- d-----w- c:\windows\l2schemas 2010-10-08 11:37 . 2010-10-08 11:37 -------- d-----w- c:\windows\EHome 2010-10-07 20:15 . 2009-08-06 17:23 274288 ----a-w- c:\windows\system32\mucltui.dll 2010-10-07 11:14 . 2010-10-07 11:14 -------- d-----w- c:\program\Microsoft Synchronization Services 2010-10-07 11:14 . 2010-10-07 11:14 -------- d-----w- c:\program\Microsoft SQL Server Compact Edition 2010-10-07 11:11 . 2010-10-07 11:11 -------- d-----w- c:\program\MSBuild 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\program\Microsoft Visual Studio .NET 2008 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\program\Microsoft Visual Studio .NET 2005 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\program\Microsoft.NET 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\program\Microsoft Sync Framework 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\documents and settings\All Users\Microsoft 2010-10-07 11:09 . 2010-10-07 11:09 -------- d-----w- c:\program\Microsoft Visual Studio 8 2010-10-07 11:08 . 2010-10-07 11:08 -------- d-----w- c:\program\Microsoft Analysis Services 2010-10-07 11:08 . 2010-10-07 11:10 -------- d-----w- c:\windows\SHELLNEW 2010-10-07 11:08 . 2010-10-08 17:13 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2010-10-07 11:07 . 2010-10-07 11:07 -------- d-----r- C:\MSOCache 2010-10-07 11:07 . 2010-10-07 11:07 -------- d-----w- c:\program\MSXML 6.0 2010-10-07 10:31 . 2010-10-07 10:31 0 ----a-w- c:\windows\nsreg.dat 2010-10-06 12:05 . 2010-10-06 12:05 -------- d-----w- c:\documents and settings\Rimon\Application Data\vlc 2010-10-06 12:05 . 2010-10-06 12:05 -------- d-----w- c:\program\VideoLAN 2010-10-06 10:10 . 2004-11-17 01:29 254000 -c--a-w- c:\windows\system32\dllcache\a3d.dll 2010-10-06 10:10 . 2004-11-17 01:29 254000 ----a-r- c:\windows\system32\Audio3D.dll 2010-10-06 10:10 . 2004-11-17 01:29 254000 ----a-r- c:\windows\system32\A3D.dll 2010-10-06 10:09 . 2007-04-11 07:35 331184 ------w- c:\windows\system32\difxapi.dll 2010-10-06 10:09 . 2010-10-06 10:10 -------- d-----w- c:\program\VIA 2010-10-06 10:09 . 2010-10-06 10:09 -------- d-----w- c:\program\Delade filer\InstallShield 2010-10-06 10:02 . 2008-04-14 16:04 21504 ----a-w- c:\windows\system32\hidserv.dll 2010-10-06 10:01 . 2008-04-14 15:41 14720 ----a-w- c:\windows\system32\drivers\kbdhid.sys 2010-10-06 10:01 . 2008-04-13 18:45 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2010-10-06 09:33 . 2010-10-06 09:33 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache 2010-10-06 08:38 . 2010-10-06 08:38 -------- d-----w- c:\documents and settings\Rimon\Application Data\Leadertech 2010-10-06 08:33 . 2010-10-06 08:33 -------- d-----w- c:\program\DAEMON Tools 2010-10-06 08:26 . 2010-10-08 18:48 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-10-06 08:19 . 2010-10-06 08:19 -------- d-----w- c:\program\Delade filer\Adobe 2010-10-06 08:12 . 2010-10-09 09:33 -------- d-----w- c:\documents and settings\Rimon\Tracing 2010-10-06 08:11 . 2010-10-06 08:11 -------- d-----w- c:\program\Microsoft 2010-10-06 08:11 . 2010-10-06 08:11 -------- d-----w- c:\program\Windows Live SkyDrive 2010-10-06 08:10 . 2010-10-06 08:11 -------- d-----w- c:\program\Windows Live 2010-10-06 08:08 . 2010-10-06 08:08 -------- d-----w- c:\program\Delade filer\Windows Live 2010-10-06 08:06 . 2010-10-06 08:06 -------- d-sh--w- c:\documents and settings\Rimon\IECompatCache 2010-10-06 08:06 . 2010-10-06 08:06 -------- d-sh--w- c:\documents and settings\Rimon\PrivacIE 2010-10-06 08:05 . 2010-10-06 08:05 -------- d-sh--w- c:\documents and settings\Rimon\IETldCache 2010-10-06 08:03 . 2010-10-06 08:03 -------- d-----w- c:\windows\ie8updates 2010-10-06 08:02 . 2010-10-06 08:02 -------- dc-h--w- c:\windows\ie8 2010-10-06 07:53 . 2010-06-24 12:27 599040 -c----w- c:\windows\system32\dllcache\msfeeds.dll 2010-10-06 07:53 . 2010-06-24 12:27 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll 2010-10-06 07:53 . 2010-06-24 15:57 11077120 -c----w- c:\windows\system32\dllcache\ieframe.dll 2010-10-06 07:53 . 2010-06-24 12:27 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2010-10-06 07:53 . 2010-06-24 12:27 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2010-10-06 07:53 . 2010-06-24 12:27 1986560 -c----w- c:\windows\system32\dllcache\iertutil.dll 2010-10-06 07:53 . 2010-06-24 12:27 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll 2010-10-06 07:51 . 2010-10-08 11:40 -------- d-----w- c:\windows\ServicePackFiles 2010-10-06 07:48 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe 2010-10-06 07:47 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2010-10-06 07:47 . 2010-06-21 15:27 354304 -c----w- c:\windows\system32\dllcache\srv.sys 2010-10-06 07:46 . 2009-10-15 16:33 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll 2010-10-06 07:46 . 2009-10-15 16:33 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll 2010-10-06 07:46 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll 2010-10-06 07:43 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll 2010-10-06 07:43 . 2008-06-14 17:36 272128 -c----w- c:\windows\system32\dllcache\bthport.sys 2010-10-06 07:43 . 2008-06-14 17:36 272128 ------w- c:\windows\system32\drivers\bthport.sys 2010-10-06 07:43 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys 2010-10-06 07:41 . 2010-10-06 07:41 -------- d-----w- c:\documents and settings\Rimon\Application Data\ATI 2010-10-06 07:41 . 2010-10-06 07:41 -------- d-----w- c:\documents and settings\All Users\Application Data\ATI 2010-10-06 07:37 . 2009-08-06 17:24 44768 ----a-w- c:\windows\system32\wups2.dll 2010-10-06 07:36 . 2010-10-06 07:36 -------- d-sh--w- c:\documents and settings\Rimon\UserData 2010-10-06 04:06 . 2001-08-17 21:59 3072 ----a-w- c:\windows\system32\drivers\audstub.sys 2010-10-06 04:06 . 2008-04-14 15:37 58240 ----a-w- c:\windows\system32\drivers\redbook.sys 2010-10-06 04:05 . 2008-04-14 16:04 75264 ----a-w- c:\windows\system32\usbui.dll . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-10-08 16:55 . 2004-08-04 12:00 83058 ----a-w- c:\windows\system32\perfc01D.dat 2010-10-08 16:55 . 2004-08-04 12:00 443342 ----a-w- c:\windows\system32\perfh01D.dat 2010-10-08 11:41 . 2010-10-05 20:08 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2010-10-06 12:05 . 2010-10-06 12:05 -------- d-----w- c:\documents and settings\Rimon\Application Data\vlc 2010-10-06 08:34 . 2010-10-06 08:34 -------- d-----w- c:\program\EA Sports 2010-10-05 22:08 . 2010-10-05 21:35 -------- d-----w- c:\program\ASUS 2010-10-05 22:04 . 2010-10-05 22:04 -------- d-----w- c:\program\SystemRequirementsLab 2010-10-05 21:55 . 2010-10-05 21:52 -------- d-----w- c:\program\ATI 2010-10-05 21:55 . 2010-10-05 21:52 -------- d-----w- c:\program\ATI Technologies 2010-10-05 21:53 . 2010-10-05 21:53 0 ----a-w- c:\windows\ativpsrm.bin 2010-10-05 21:39 . 2010-10-05 21:39 -------- d-----w- c:\documents and settings\Rimon\Application Data\DeviceVm 2010-10-05 21:39 . 2010-10-05 21:39 -------- d-----w- c:\documents and settings\All Users\Application Data\DeviceVm 2010-10-05 21:39 . 2010-10-05 21:39 -------- d--h--w- c:\program\DeviceVM 2010-10-05 21:36 . 2010-10-05 21:36 -------- d-----w- c:\program\AMD 2010-10-05 21:36 . 2010-10-05 21:33 -------- d--h--w- c:\program\InstallShield Installation Information 2010-10-05 21:36 . 2010-10-05 21:36 -------- d-----w- c:\documents and settings\Rimon\Application Data\InstallShield 2010-10-05 21:33 . 2010-10-05 21:33 -------- d-----w- c:\program\NVIDIA Corporation 2010-10-05 20:10 . 2010-10-05 20:10 -------- d-----w- c:\program\microsoft frontpage 2010-10-05 20:10 . 2010-10-05 20:10 -------- d-----w- c:\program\Java 2010-10-05 20:10 . 2010-10-05 20:10 -------- d-----w- c:\program\Delade filer\Java 2010-10-05 20:08 . 2010-10-05 20:08 -------- d-----w- c:\program\Onlinetjänster 2010-10-05 20:06 . 2010-10-05 20:06 21700 ----a-w- c:\windows\system32\emptyregdb.dat 2010-08-26 03:33 . 2010-10-05 21:53 5386752 ----a-w- c:\windows\system32\drivers\ati2mtag.sys 2010-08-26 02:12 . 2010-10-05 21:53 57344 ----a-w- c:\windows\system32\aticalrt.dll 2010-08-26 02:11 . 2010-10-05 21:53 53248 ----a-w- c:\windows\system32\aticalcl.dll 2010-08-26 02:10 . 2010-10-05 21:53 4390912 ----a-w- c:\windows\system32\aticaldd.dll 2010-08-26 02:03 . 2010-10-05 21:53 311296 ----a-w- c:\windows\system32\atiiiexx.dll 2010-08-26 02:01 . 2010-10-05 21:53 15876096 ----a-w- c:\windows\system32\atioglxx.dll 2010-08-26 01:57 . 2010-10-05 21:53 450560 ----a-w- c:\windows\system32\ATIDEMGX.dll 2010-08-26 01:56 . 2010-10-05 21:53 300544 ----a-w- c:\windows\system32\ati2dvag.dll 2010-08-26 01:52 . 2010-10-05 21:53 3927936 ----a-w- c:\windows\system32\ati3duag.dll 2010-08-26 01:39 . 2010-10-05 21:53 208896 ----a-w- c:\windows\system32\atipdlxx.dll 2010-08-26 01:39 . 2010-10-05 21:53 155648 ----a-w- c:\windows\system32\Oemdspif.dll 2010-08-26 01:38 . 2010-10-05 21:53 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe 2010-08-26 01:38 . 2010-10-05 21:53 43520 ----a-w- c:\windows\system32\ati2edxx.dll 2010-08-26 01:38 . 2010-10-05 21:53 159744 ----a-w- c:\windows\system32\ati2evxx.dll 2010-08-26 01:37 . 2010-10-05 21:53 2603520 ----a-w- c:\windows\system32\ativvaxx.dll 2010-08-26 01:37 . 2010-10-05 21:53 606208 ----a-w- c:\windows\system32\ati2evxx.exe 2010-08-26 01:36 . 2010-10-05 21:53 887724 ----a-w- c:\windows\system32\ativva6x.dat 2010-08-26 01:36 . 2010-10-05 21:53 3 ----a-w- c:\windows\system32\ativva5x.dat 2010-08-26 01:35 . 2010-10-05 21:53 53248 ----a-w- c:\windows\system32\ATIDDC.DLL 2010-08-26 01:34 . 2010-10-05 21:53 143360 ----a-w- c:\windows\system32\atiapfxx.exe 2010-08-26 01:30 . 2010-10-05 21:53 626688 ----a-w- c:\windows\system32\atikvmag.dll 2010-08-26 01:30 . 2010-10-05 21:53 393216 ----a-w- c:\windows\system32\atiok3x2.dll 2010-08-26 01:29 . 2010-10-05 21:53 188416 ----a-w- c:\windows\system32\atiadlxx.dll 2010-08-26 01:28 . 2010-10-05 21:53 17408 ----a-w- c:\windows\system32\atitvo32.dll 2010-08-26 01:23 . 2010-10-05 21:53 688128 ----a-w- c:\windows\system32\ati2cqag.dll 2010-08-26 01:22 . 2010-10-05 21:53 64512 ----a-w- c:\windows\system32\atimpc32.dll 2010-08-26 01:22 . 2010-10-05 21:53 64512 ----a-w- c:\windows\system32\amdpcom32.dll 2010-08-26 01:21 . 2010-10-05 21:53 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll 2010-08-17 13:17 . 2004-08-04 12:00 58880 ----a-w- c:\windows\system32\spoolsv.exe 2010-07-22 15:46 . 2004-08-04 12:00 590848 ----a-w- c:\windows\system32\rpcrt4.dll 2010-07-22 06:19 . 2008-05-05 05:25 5120 ----a-w- c:\windows\system32\xpsp4res.dll . (((((((((((((((((((((((((((((((((( Startpunkter i registret ))))))))))))))))))))))))))))))))))))))))))))))) . . *Not* Tomma poster & legitima standardposter visas inte. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HDAudDeck"="c:\program\VIA\VIAudioi\HDADeck\HDeck.exe" [2010-01-18 33714176] "ATICustomerCare"="c:\program\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296] "SunJavaUpdateSched"="c:\program\Java\jre1.5.0\bin\jusched.exe" [2010-10-05 36972] "StartCCC"="c:\program\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-08-25 98304] "BCU"="c:\program\DeviceVM\Browser Configuration Utility\BCU.exe" [2010-03-05 411864] "BCSSync"="c:\program\Microsoft Office\Office14\BCSSync.exe" [2009-08-17 85888] "Adobe Reader Speed Launcher"="c:\program\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program\Delade filer\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] 2008-04-14 16:05 15360 ----a-w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools] 2007-04-03 22:29 165784 ----a-w- c:\program\DAEMON Tools\daemon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "osppsvc"=3 (0x3) "ose"=3 (0x3) "nSvcIp"=2 (0x2) "Microsoft SharePoint Workspace Audit Service"=3 (0x3) "ForceWare Intelligent Application Manager (IAM)"=2 (0x2) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program\\EA Sports\\FIFA 11\\Game\\fifa.exe"= "c:\\Program\\Microsoft Office\\Office14\\GROOVE.EXE"= "c:\\Program\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= R2 BCUService;Browser Configuration Utility Service;c:\program\DeviceVM\Browser Configuration Utility\BCUService.exe [2010-03-05 235752] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-10-05 2106880] S3 osppsvc;Office Software Protection Platform;c:\program\Delade filer\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2009-08-21 4639136] S4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program\Microsoft Office\Office14\GROOVE.EXE [2009-08-21 30510960] S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010-10-06 691696] . . ------- Extra genomsökning ------- . uStart Page = hxxp://www.google.se/ IE: E&xport to Microsoft Excel - c:\program\MICROS~3\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\program\MICROS~3\Office14\ONBttnIE.dll/105 Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program\Delade filer\Microsoft Shared\OFFICE14\MSOXMLMF.DLL DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab FF - ProfilePath - c:\documents and settings\Rimon\Application Data\Mozilla\Firefox\Profiles\wmvoqaol.default\ FF - prefs.js: browser.search.selectedEngine - Allaannonser FF - prefs.js: browser.startup.homepage - hxxp://www.google.se/ FF - prefs.js: network.proxy.type - 0 FF - plugin: c:\program\Java\jre1.5.0\bin\NPJPI150.dll FF - plugin: c:\program\MICROS~3\Office14\NPAUTHZ.DLL FF - plugin: c:\program\MICROS~3\Office14\NPSPWRAP.DLL ---- FIREFOX POLICY ---- c:\program\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se"); c:\program\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); . . --------------------- LÅSTA REGISTERNYCKLAR --------------------- [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . --------------------- DLLer som "laddats" under processer som körs --------------------- - - - - - - - > 'winlogon.exe'(616) c:\windows\system32\Ati2evxx.dll c:\windows\system32\atiadlxx.dll . Sluttid: 2010-10-09 11:42:28 ComboFix-quarantined-files.txt 2010-10-09 09:42 ComboFix2.txt 2010-10-08 18:40 ComboFix3.txt 2010-10-08 16:40 Före genomsökningen: 63 457 841 152 byte ledigt Efter genomsökningen: 63 464 108 032 byte ledigt - - End Of File - - 1A26E37D866B11BB379C1DBD2AA6F725
  17. Oki, det blev för långt därför bifogade jag filen! Vad e SPTD ? MVH ComboFix.txt
  18. Så ja, You are the best "Cecilia"! Nu verkar de som allt funkar som de ska! Tack ska du ha! MVH
  19. ComboFix 10-10-07.02 - Rimon 2010-10-08 18:36:37.1.3 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.2047.1709 [GMT 2:00] Körs från: c:\documents and settings\Rimon\Skrivbord\ComboFix.exe . ((((((((((((((((((((((((((((((((((((((( Andra raderingar )))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\system32\sypev.dll . ((((((((((((((((((((((((((((((((((((((( Drivrutiner/Tjänster ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_ixvtupns -------\Service_ixvtupns (((((((((((((((((((((((( Filer Skapade från 2010-09-08 till 2010-10-08 )))))))))))))))))))))))))))))) . 2010-10-08 11:40 . 2010-10-08 11:40 -------- d-----w- c:\windows\system32\sv-se 2010-10-08 11:40 . 2010-10-08 11:40 -------- d-----w- c:\windows\system32\sv 2010-10-08 11:40 . 2010-10-08 11:40 -------- d-----w- c:\windows\system32\bits 2010-10-08 11:40 . 2010-10-08 11:40 -------- d-----w- c:\windows\l2schemas 2010-10-08 11:37 . 2010-10-08 11:37 -------- d-----w- c:\windows\EHome 2010-10-07 20:15 . 2009-08-06 17:23 274288 ----a-w- c:\windows\system32\mucltui.dll 2010-10-07 11:07 . 2010-10-07 11:07 -------- d-----r- C:\MSOCache 2010-10-07 11:07 . 2010-10-07 11:07 -------- d-----w- c:\program\MSXML 6.0 2010-10-07 10:31 . 2010-10-07 10:31 0 ----a-w- c:\windows\nsreg.dat 2010-10-06 12:05 . 2010-10-06 12:05 -------- d-----w- c:\documents and settings\Rimon\Application Data\vlc 2010-10-06 12:05 . 2010-10-06 12:05 -------- d-----w- c:\program\VideoLAN 2010-10-06 10:10 . 2004-11-17 01:29 254000 -c--a-w- c:\windows\system32\dllcache\a3d.dll 2010-10-06 10:10 . 2004-11-17 01:29 254000 ----a-r- c:\windows\system32\Audio3D.dll 2010-10-06 10:10 . 2004-11-17 01:29 254000 ----a-r- c:\windows\system32\A3D.dll 2010-10-06 10:09 . 2007-04-11 07:35 331184 ------w- c:\windows\system32\difxapi.dll 2010-10-06 10:09 . 2010-10-06 10:10 -------- d-----w- c:\program\VIA 2010-10-06 10:09 . 2010-10-06 10:09 -------- d-----w- c:\program\Delade filer\InstallShield 2010-10-06 10:02 . 2008-04-14 16:04 21504 ----a-w- c:\windows\system32\hidserv.dll 2010-10-06 10:01 . 2008-04-14 15:41 14720 ----a-w- c:\windows\system32\drivers\kbdhid.sys 2010-10-06 10:01 . 2008-04-13 18:45 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2010-10-06 09:33 . 2010-10-06 09:33 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache 2010-10-06 08:38 . 2010-10-06 08:38 -------- d-----w- c:\documents and settings\Rimon\Application Data\Leadertech 2010-10-06 08:33 . 2010-10-06 08:33 -------- d-----w- c:\program\DAEMON Tools 2010-10-06 08:26 . 2010-10-06 08:26 682232 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-10-06 08:19 . 2010-10-06 08:19 -------- d-----w- c:\program\Delade filer\Adobe 2010-10-06 08:12 . 2010-10-08 16:40 -------- d-----w- c:\documents and settings\Rimon\Tracing 2010-10-06 08:11 . 2010-10-06 08:11 -------- d-----w- c:\program\Microsoft 2010-10-06 08:11 . 2010-10-06 08:11 -------- d-----w- c:\program\Windows Live SkyDrive 2010-10-06 08:10 . 2010-10-06 08:11 -------- d-----w- c:\program\Windows Live 2010-10-06 08:08 . 2010-10-06 08:08 -------- d-----w- c:\program\Delade filer\Windows Live 2010-10-06 08:06 . 2010-10-06 08:06 -------- d-sh--w- c:\documents and settings\Rimon\IECompatCache 2010-10-06 08:06 . 2010-10-06 08:06 -------- d-sh--w- c:\documents and settings\Rimon\PrivacIE 2010-10-06 08:05 . 2010-10-06 08:05 -------- d-sh--w- c:\documents and settings\Rimon\IETldCache 2010-10-06 08:03 . 2010-10-06 08:03 -------- d-----w- c:\windows\ie8updates 2010-10-06 08:02 . 2010-10-06 08:02 -------- dc-h--w- c:\windows\ie8 2010-10-06 07:53 . 2010-05-06 10:36 599040 -c----w- c:\windows\system32\dllcache\msfeeds.dll 2010-10-06 07:53 . 2010-05-06 10:36 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll 2010-10-06 07:53 . 2010-05-06 10:36 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2010-10-06 07:53 . 2010-05-06 10:36 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2010-10-06 07:53 . 2010-05-06 10:36 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll 2010-10-06 07:53 . 2010-05-06 10:36 11076096 -c----w- c:\windows\system32\dllcache\ieframe.dll 2010-10-06 07:53 . 2010-05-06 10:36 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll 2010-10-06 07:51 . 2010-10-08 11:40 -------- d-----w- c:\windows\ServicePackFiles 2010-10-06 07:48 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe 2010-10-06 07:47 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2010-10-06 07:47 . 2009-12-31 16:50 353792 -c----w- c:\windows\system32\dllcache\srv.sys 2010-10-06 07:46 . 2009-10-15 16:33 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll 2010-10-06 07:46 . 2009-10-15 16:33 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll 2010-10-06 07:46 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll 2010-10-06 07:43 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll 2010-10-06 07:43 . 2008-06-14 17:36 272128 -c----w- c:\windows\system32\dllcache\bthport.sys 2010-10-06 07:43 . 2008-06-14 17:36 272128 ------w- c:\windows\system32\drivers\bthport.sys 2010-10-06 07:43 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys 2010-10-06 07:41 . 2010-10-06 07:41 -------- d-----w- c:\documents and settings\Rimon\Application Data\ATI 2010-10-06 07:41 . 2010-10-06 07:41 -------- d-----w- c:\documents and settings\All Users\Application Data\ATI 2010-10-06 07:37 . 2009-08-06 17:24 44768 ----a-w- c:\windows\system32\wups2.dll 2010-10-06 07:36 . 2010-10-06 07:36 -------- d-sh--w- c:\documents and settings\Rimon\UserData 2010-10-06 04:06 . 2001-08-17 21:59 3072 ----a-w- c:\windows\system32\drivers\audstub.sys 2010-10-06 04:06 . 2008-04-14 15:37 58240 ----a-w- c:\windows\system32\drivers\redbook.sys 2010-10-06 04:05 . 2008-04-14 16:04 75264 ----a-w- c:\windows\system32\usbui.dll . (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-10-08 12:11 . 2004-08-04 12:00 73932 ----a-w- c:\windows\system32\perfc01D.dat 2010-10-08 12:11 . 2004-08-04 12:00 404334 ----a-w- c:\windows\system32\perfh01D.dat 2010-10-08 11:41 . 2010-10-05 20:08 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2010-10-07 11:14 . 2010-10-07 11:14 -------- d-----w- c:\program\Microsoft Synchronization Services 2010-10-07 11:14 . 2010-10-07 11:14 -------- d-----w- c:\program\Microsoft SQL Server Compact Edition 2010-10-07 11:14 . 2010-10-07 11:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2010-10-07 11:11 . 2010-10-07 11:11 -------- d-----w- c:\program\MSBuild 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\program\Microsoft Visual Studio .NET 2008 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\program\Microsoft Visual Studio .NET 2005 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\program\Microsoft.NET 2010-10-07 11:10 . 2010-10-07 11:10 -------- d-----w- c:\program\Microsoft Sync Framework 2010-10-07 11:09 . 2010-10-07 11:09 -------- d-----w- c:\program\Microsoft Visual Studio 8 2010-10-07 11:08 . 2010-10-07 11:08 -------- d-----w- c:\program\Microsoft Analysis Services 2010-10-06 12:05 . 2010-10-06 12:05 -------- d-----w- c:\documents and settings\Rimon\Application Data\vlc 2010-10-06 08:34 . 2010-10-06 08:34 -------- d-----w- c:\program\EA Sports 2010-10-05 22:08 . 2010-10-05 21:35 -------- d-----w- c:\program\ASUS 2010-10-05 22:04 . 2010-10-05 22:04 -------- d-----w- c:\program\SystemRequirementsLab 2010-10-05 21:55 . 2010-10-05 21:52 -------- d-----w- c:\program\ATI 2010-10-05 21:55 . 2010-10-05 21:52 -------- d-----w- c:\program\ATI Technologies 2010-10-05 21:53 . 2010-10-05 21:53 0 ----a-w- c:\windows\ativpsrm.bin 2010-10-05 21:39 . 2010-10-05 21:39 -------- d-----w- c:\documents and settings\Rimon\Application Data\DeviceVm 2010-10-05 21:39 . 2010-10-05 21:39 -------- d-----w- c:\documents and settings\All Users\Application Data\DeviceVm 2010-10-05 21:39 . 2010-10-05 21:39 -------- d--h--w- c:\program\DeviceVM 2010-10-05 21:36 . 2010-10-05 21:36 -------- d-----w- c:\program\AMD 2010-10-05 21:36 . 2010-10-05 21:33 -------- d--h--w- c:\program\InstallShield Installation Information 2010-10-05 21:36 . 2010-10-05 21:36 -------- d-----w- c:\documents and settings\Rimon\Application Data\InstallShield 2010-10-05 21:33 . 2010-10-05 21:33 -------- d-----w- c:\program\NVIDIA Corporation 2010-10-05 20:10 . 2010-10-05 20:10 -------- d-----w- c:\program\microsoft frontpage 2010-10-05 20:10 . 2010-10-05 20:10 -------- d-----w- c:\program\Java 2010-10-05 20:10 . 2010-10-05 20:10 -------- d-----w- c:\program\Delade filer\Java 2010-10-05 20:08 . 2010-10-05 20:08 -------- d-----w- c:\program\Onlinetjänster 2010-10-05 20:06 . 2010-10-05 20:06 21700 ----a-w- c:\windows\system32\emptyregdb.dat 2010-08-26 03:33 . 2010-10-05 21:53 5386752 ----a-w- c:\windows\system32\drivers\ati2mtag.sys 2010-08-26 02:12 . 2010-10-05 21:53 57344 ----a-w- c:\windows\system32\aticalrt.dll 2010-08-26 02:11 . 2010-10-05 21:53 53248 ----a-w- c:\windows\system32\aticalcl.dll 2010-08-26 02:10 . 2010-10-05 21:53 4390912 ----a-w- c:\windows\system32\aticaldd.dll 2010-08-26 02:03 . 2010-10-05 21:53 311296 ----a-w- c:\windows\system32\atiiiexx.dll 2010-08-26 02:01 . 2010-10-05 21:53 15876096 ----a-w- c:\windows\system32\atioglxx.dll 2010-08-26 01:57 . 2010-10-05 21:53 450560 ----a-w- c:\windows\system32\ATIDEMGX.dll 2010-08-26 01:56 . 2010-10-05 21:53 300544 ----a-w- c:\windows\system32\ati2dvag.dll 2010-08-26 01:52 . 2010-10-05 21:53 3927936 ----a-w- c:\windows\system32\ati3duag.dll 2010-08-26 01:39 . 2010-10-05 21:53 208896 ----a-w- c:\windows\system32\atipdlxx.dll 2010-08-26 01:39 . 2010-10-05 21:53 155648 ----a-w- c:\windows\system32\Oemdspif.dll 2010-08-26 01:38 . 2010-10-05 21:53 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe 2010-08-26 01:38 . 2010-10-05 21:53 43520 ----a-w- c:\windows\system32\ati2edxx.dll 2010-08-26 01:38 . 2010-10-05 21:53 159744 ----a-w- c:\windows\system32\ati2evxx.dll 2010-08-26 01:37 . 2010-10-05 21:53 2603520 ----a-w- c:\windows\system32\ativvaxx.dll 2010-08-26 01:37 . 2010-10-05 21:53 606208 ----a-w- c:\windows\system32\ati2evxx.exe 2010-08-26 01:36 . 2010-10-05 21:53 887724 ----a-w- c:\windows\system32\ativva6x.dat 2010-08-26 01:36 . 2010-10-05 21:53 3 ----a-w- c:\windows\system32\ativva5x.dat 2010-08-26 01:35 . 2010-10-05 21:53 53248 ----a-w- c:\windows\system32\ATIDDC.DLL 2010-08-26 01:34 . 2010-10-05 21:53 143360 ----a-w- c:\windows\system32\atiapfxx.exe 2010-08-26 01:30 . 2010-10-05 21:53 626688 ----a-w- c:\windows\system32\atikvmag.dll 2010-08-26 01:30 . 2010-10-05 21:53 393216 ----a-w- c:\windows\system32\atiok3x2.dll 2010-08-26 01:29 . 2010-10-05 21:53 188416 ----a-w- c:\windows\system32\atiadlxx.dll 2010-08-26 01:28 . 2010-10-05 21:53 17408 ----a-w- c:\windows\system32\atitvo32.dll 2010-08-26 01:23 . 2010-10-05 21:53 688128 ----a-w- c:\windows\system32\ati2cqag.dll 2010-08-26 01:22 . 2010-10-05 21:53 64512 ----a-w- c:\windows\system32\atimpc32.dll 2010-08-26 01:22 . 2010-10-05 21:53 64512 ----a-w- c:\windows\system32\amdpcom32.dll 2010-08-26 01:21 . 2010-10-05 21:53 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll . (((((((((((((((((((((((((((((((((( Startpunkter i registret ))))))))))))))))))))))))))))))))))))))))))))))) . . *Not* Tomma poster & legitima standardposter visas inte. REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080] "DAEMON Tools"="c:\program\DAEMON Tools\daemon.exe" [2007-04-03 165784] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HDAudDeck"="c:\program\VIA\VIAudioi\HDADeck\HDeck.exe" [2010-01-18 33714176] "ATICustomerCare"="c:\program\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296] "SunJavaUpdateSched"="c:\program\Java\jre1.5.0\bin\jusched.exe" [2010-10-05 36972] "StartCCC"="c:\program\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-08-25 98304] "BCU"="c:\program\DeviceVM\Browser Configuration Utility\BCU.exe" [2010-03-05 411864] "BCSSync"="c:\program\Microsoft Office\Office14\BCSSync.exe" [2009-08-17 85888] "Adobe Reader Speed Launcher"="c:\program\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program\Delade filer\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] 2008-04-14 16:05 15360 ----a-w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "osppsvc"=3 (0x3) "ose"=3 (0x3) "nSvcIp"=2 (0x2) "Microsoft SharePoint Workspace Audit Service"=3 (0x3) "ForceWare Intelligent Application Manager (IAM)"=2 (0x2) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program\\EA Sports\\FIFA 11\\Game\\fifa.exe"= "c:\\Program\\Microsoft Office\\Office14\\GROOVE.EXE"= "c:\\Program\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "7934:TCP"= 7934:TCP:xywhrwo R2 BCUService;Browser Configuration Utility Service;c:\program\DeviceVM\Browser Configuration Utility\BCUService.exe [2010-03-05 235752] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-10-05 2106880] S2 ixvtupns;Installer Task;c:\windows\system32\svchost.exe -k netsvcs [2004-08-04 14336] S3 rrxxnbeec;rrxxnbeec;\??\c:\windows\system32\01.tmp --> c:\windows\system32\01.tmp [?] S4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program\Microsoft Office\Office14\GROOVE.EXE [2009-08-21 30510960] S4 osppsvc;Office Software Protection Platform;c:\program\Delade filer\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2009-08-21 4639136] S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010-10-06 682232] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs ixvtupns . . ------- Extra genomsökning ------- . uStart Page = hxxp://www.google.se/ IE: E&xport to Microsoft Excel - c:\program\MICROS~3\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\program\MICROS~3\Office14\ONBttnIE.dll/105 Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program\Delade filer\Microsoft Shared\OFFICE14\MSOXMLMF.DLL DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab FF - ProfilePath - c:\documents and settings\Rimon\Application Data\Mozilla\Firefox\Profiles\wmvoqaol.default\ FF - prefs.js: browser.search.selectedEngine - Allaannonser FF - prefs.js: browser.startup.homepage - hxxp://www.google.se/ FF - prefs.js: network.proxy.type - 0 FF - plugin: c:\program\Java\jre1.5.0\bin\NPJPI150.dll FF - plugin: c:\program\MICROS~3\Office14\NPAUTHZ.DLL FF - plugin: c:\program\MICROS~3\Office14\NPSPWRAP.DLL ---- FIREFOX POLICY ---- c:\program\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se"); c:\program\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); . [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\rrxxnbeec] "ImagePath"="\??\c:\windows\system32\01.tmp" [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ixvtupns] "ServiceDll"="c:\windows\system32\sypev.dll" . --------------------- LÅSTA REGISTERNYCKLAR --------------------- [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101" [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe" [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . --------------------- DLLer som "laddats" under processer som körs --------------------- - - - - - - - > 'winlogon.exe'(620) c:\windows\system32\Ati2evxx.dll c:\windows\system32\atiadlxx.dll - - - - - - - > 'explorer.exe'(2616) c:\program\MICROS~3\Office14\1033\GrooveIntlResource.dll c:\windows\system32\webcheck.dll . ------------------------ Andra processer som körs ------------------------ . c:\windows\system32\Ati2evxx.exe c:\windows\system32\Ati2evxx.exe c:\program\ATI Technologies\ATI.ACE\Core-Static\MOM.exe c:\program\ATI Technologies\ATI.ACE\Core-Static\ccc.exe c:\windows\system32\wbem\unsecapp.exe c:\windows\system32\wscntfy.exe c:\windows\system32\imapi.exe . ************************************************************************** . Sluttid: 2010-10-08 18:40:55 - datorn startades om. ComboFix-quarantined-files.txt 2010-10-08 16:40 Före genomsökningen: 63 698 358 272 byte ledigt Efter genomsökningen: 64 298 516 480 byte ledigt WindowsXP-KB310994-SP2-Home-BootDisk-SVE.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect /usepmtimer - - End Of File - - 6F9D5AA2BC25D3A0C57A80AF5D4FDCB8
  20. DDS (Ver_10-10-05.01) - NTFSx86 Run by Rimon at 15:48:53,68 on 2010-10-08 Internet Explorer: 8.0.6001.18702 Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.2047.1522 [GMT 2:00] ============== Running Processes =============== C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program\VIA\VIAudioi\HDADeck\HDeck.exe C:\Program\Java\jre1.5.0\bin\jusched.exe C:\Program\DeviceVM\Browser Configuration Utility\BCU.exe C:\Program\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program\Windows Live\Messenger\msnmsgr.exe C:\Program\DAEMON Tools\daemon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program\ATI Technologies\ATI.ACE\Core-Static\ccc.exe svchost.exe C:\Program\DeviceVM\Browser Configuration Utility\BCUService.exe C:\Program\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe C:\Program\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe C:\WINDOWS\system32\wbem\unsecapp.exe C:\Program\Windows Live\Contacts\wlcomm.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\Program\Internet Explorer\iexplore.exe C:\Program\Internet Explorer\iexplore.exe C:\Program\Internet Explorer\iexplore.exe C:\Documents and Settings\Rimon\Skrivbord\dds.scr ============== Pseudo HJT Report =============== uStart Page = hxxp://www.google.se/ uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - c:\program\devicevm\browser configuration utility\AddressBarSearch.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program\delade filer\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program\micros~3\office14\GROOVEEX.DLL BHO: Windows Live inloggningshjälpen: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program\delade filer\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\program\micros~3\office14\URLREDIR.DLL uRun: [msnmsgr] "c:\program\windows live\messenger\msnmsgr.exe" /background uRun: [DAEMON Tools] "c:\program\daemon tools\daemon.exe" -lang 1033 uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe mRun: [HDAudDeck] c:\program\via\viaudioi\hdadeck\HDeck.exe 1 mRun: [ATICustomerCare] "c:\program\ati\aticustomercare\ATICustomerCare.exe" mRun: [sunJavaUpdateSched] c:\program\java\jre1.5.0\bin\jusched.exe mRun: [startCCC] "c:\program\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun mRun: [bCU] "c:\program\devicevm\browser configuration utility\BCU.exe" mRun: [bCSSync] "c:\program\microsoft office\office14\BCSSync.exe" /DelayServices mRun: [Adobe Reader Speed Launcher] "c:\program\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [Adobe ARM] "c:\program\delade filer\adobe\arm\1.0\AdobeARM.exe" dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE IE: E&xport to Microsoft Excel - c:\program\micros~3\office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\program\micros~3\office14\ONBttnIE.dll/105 IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program\messenger\msmsgs.exe IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC} - c:\program\java\jre1.5.0\bin\npjpi150.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program\microsoft office\office14\ONBttnIE.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program\microsoft office\office14\ONBttnIELinkedNotes.dll DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1286350604000 DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1286356583828 DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program\delade filer\microsoft shared\office14\MSOXMLMF.DLL Notify: AtiExtEvent - Ati2evxx.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program\micros~3\office14\GROOVEEX.DLL ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\rimon\applic~1\mozilla\firefox\profiles\wmvoqaol.default\ FF - prefs.js: browser.search.selectedEngine - Allaannonser FF - prefs.js: browser.startup.homepage - hxxp://www.google.se/ FF - prefs.js: network.proxy.type - 0 FF - plugin: c:\program\java\jre1.5.0\bin\NPJPI150.dll FF - plugin: c:\program\micros~3\office14\NPAUTHZ.DLL FF - plugin: c:\program\micros~3\office14\NPSPWRAP.DLL ---- FIREFOX POLICIES ---- c:\program\mozilla firefox\greprefs\all.js - pref("browser.visited_color", "#551A8B"); c:\program\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se"); c:\program\mozilla firefox\defaults\pref\firefox.js - pref("browser.videoFeeds.handler", "ask"); ============= SERVICES / DRIVERS =============== R2 BCUService;Browser Configuration Utility Service;c:\program\devicevm\browser configuration utility\BCUService.exe [2010-3-5 235752] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-10-5 2106880] S2 ixvtupns;Installer Task;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program\microsoft office\office14\GROOVE.EXE [2009-8-21 30510960] S3 osppsvc;Office Software Protection Platform;c:\program\delade filer\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2009-8-21 4639136] S3 rrxxnbeec;rrxxnbeec;c:\windows\system32\01.tmp [2010-10-8 4096] =============== Created Last 30 ================ 2010-10-08 11:40:46 -------- d-----w- c:\windows\system32\sv-se 2010-10-08 11:40:46 -------- d-----w- c:\windows\system32\sv 2010-10-08 11:40:46 -------- d-----w- c:\windows\system32\bits 2010-10-08 11:40:46 -------- d-----w- c:\windows\l2schemas 2010-10-08 11:39:04 -------- d-----w- c:\windows\network diagnostic 2010-10-08 11:37:16 -------- d-----w- c:\windows\EHome 2010-10-07 20:16:29 -------- d-----w- c:\windows\pss 2010-10-07 20:15:37 17248 ----a-w- c:\windows\system32\mucltui.dll.mui 2010-10-07 20:15:36 274288 ----a-w- c:\windows\system32\mucltui.dll 2010-10-07 11:14:20 -------- d-----w- c:\program\Microsoft Synchronization Services 2010-10-07 11:14:15 -------- d-----w- c:\program\Microsoft SQL Server Compact Edition 2010-10-07 11:10:50 -------- d-----w- c:\program\Microsoft Visual Studio .NET 2008 2010-10-07 11:10:50 -------- d-----w- c:\program\Microsoft Visual Studio .NET 2005 2010-10-07 11:10:19 -------- d-----w- c:\documents and settings\all users\Microsoft 2010-10-07 11:09:27 -------- d-----w- c:\program\Microsoft Visual Studio 8 2010-10-07 11:08:49 -------- d-----w- c:\program\Microsoft Analysis Services 2010-10-07 11:08:42 -------- d-----w- c:\windows\SHELLNEW 2010-10-07 11:08:10 -------- d-----w- c:\docume~1\rimon\lokala~1\applic~1\Microsoft Help 2010-10-07 11:07:22 -------- d-----w- c:\program\MSXML 6.0 2010-10-07 10:31:13 -------- d-----w- c:\docume~1\rimon\lokala~1\applic~1\Mozilla 2010-10-06 12:05:09 -------- d-----w- c:\program\VideoLAN 2010-10-06 10:10:44 8704 ----a-r- c:\windows\system32\viahdcpl.cpl 2010-10-06 10:10:41 254000 -c--a-w- c:\windows\system32\dllcache\a3d.dll 2010-10-06 10:10:41 254000 ----a-r- c:\windows\system32\Audio3D.dll 2010-10-06 10:10:41 254000 ----a-r- c:\windows\system32\A3D.dll 2010-10-06 10:09:24 331184 ------w- c:\windows\system32\difxapi.dll 2010-10-06 10:09:23 -------- d-----w- c:\program\VIA 2010-10-06 10:09:15 -------- d-----w- c:\program\delade filer\InstallShield 2010-10-06 10:02:00 21504 ----a-w- c:\windows\system32\hidserv.dll 2010-10-06 10:01:57 14720 ----a-w- c:\windows\system32\drivers\kbdhid.sys 2010-10-06 10:01:47 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2010-10-06 09:27:55 9728 ----a-w- c:\docume~1\rimon\lokala~1\applic~1\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2010-10-06 08:33:07 -------- d-----w- c:\program\DAEMON Tools 2010-10-06 08:26:03 682232 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-10-06 08:18:27 -------- d-----w- c:\docume~1\rimon\lokala~1\applic~1\Adobe 2010-10-06 08:12:28 -------- d-----w- c:\documents and settings\rimon\Tracing 2010-10-06 08:11:17 -------- d-----w- c:\program\Microsoft 2010-10-06 08:11:03 -------- d-----w- c:\program\Windows Live SkyDrive 2010-10-06 08:08:46 -------- d-----w- c:\program\delade filer\Windows Live 2010-10-06 08:06:48 -------- d-sh--w- c:\documents and settings\rimon\IECompatCache 2010-10-06 08:06:24 -------- d-sh--w- c:\documents and settings\rimon\PrivacIE 2010-10-06 08:05:43 -------- d-sh--w- c:\documents and settings\rimon\IETldCache 2010-10-06 08:03:30 -------- d-----w- c:\windows\ie8updates 2010-10-06 08:02:18 -------- dc-h--w- c:\windows\ie8 2010-10-06 07:53:45 599040 -c----w- c:\windows\system32\dllcache\msfeeds.dll 2010-10-06 07:53:45 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll 2010-10-06 07:53:44 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll 2010-10-06 07:53:44 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2010-10-06 07:53:44 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll 2010-10-06 07:53:44 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2010-10-06 07:53:44 11076096 -c----w- c:\windows\system32\dllcache\ieframe.dll 2010-10-06 07:51:16 -------- d-----w- c:\windows\ServicePackFiles 2010-10-06 07:51:01 134 ----a-w- c:\docume~1\rimon\lokala~1\applic~1\fusioncache.dat 2010-10-06 07:51:00 -------- d-----w- c:\docume~1\rimon\lokala~1\applic~1\ApplicationHistory 2010-10-06 07:48:19 293376 ------w- c:\windows\system32\browserchoice.exe 2010-10-06 07:47:42 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2010-10-06 07:47:30 353792 -c----w- c:\windows\system32\dllcache\srv.sys 2010-10-06 07:46:58 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll 2010-10-06 07:46:58 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll 2010-10-06 07:46:53 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll 2010-10-06 07:43:55 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll 2010-10-06 07:43:26 272128 -c----w- c:\windows\system32\dllcache\bthport.sys 2010-10-06 07:43:26 272128 ------w- c:\windows\system32\drivers\bthport.sys 2010-10-06 07:43:23 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys 2010-10-06 07:41:06 -------- d-----w- c:\docume~1\rimon\lokala~1\applic~1\ATI 2010-10-06 07:40:22 -------- d-----w- c:\windows\system32\PreInstall 2010-10-06 07:37:07 22752 ----a-w- c:\windows\system32\wucltui.dll.mui 2010-10-06 07:37:07 17624 ----a-w- c:\windows\system32\wuaueng.dll.mui 2010-10-06 07:37:07 15072 ----a-w- c:\windows\system32\wuaucpl.cpl.mui 2010-10-06 07:37:07 15072 ----a-w- c:\windows\system32\wuapi.dll.mui 2010-10-06 07:37:06 -------- d-----w- c:\windows\system32\SoftwareDistribution 2010-10-06 07:36:25 -------- d-sh--w- c:\documents and settings\rimon\UserData 2010-10-06 07:36:05 70360 ----a-w- c:\docume~1\rimon\lokala~1\applic~1\GDIPFONTCACHEV1.DAT 2010-10-06 04:06:42 3072 ----a-w- c:\windows\system32\drivers\audstub.sys 2010-10-06 04:06:17 58240 ----a-w- c:\windows\system32\drivers\redbook.sys 2010-10-06 04:05:34 75264 ----a-w- c:\windows\system32\usbui.dll ==================== Find3M ==================== 2010-10-05 20:10:02 49262 ----a-w- c:\windows\system32\jpicpl32.cpl 2010-08-26 03:33:38 5386752 ----a-w- c:\windows\system32\drivers\ati2mtag.sys 2010-08-26 02:12:06 57344 ----a-w- c:\windows\system32\aticalrt.dll 2010-08-26 02:11:58 53248 ----a-w- c:\windows\system32\aticalcl.dll 2010-08-26 02:10:36 4390912 ----a-w- c:\windows\system32\aticaldd.dll 2010-08-26 02:03:38 311296 ----a-w- c:\windows\system32\atiiiexx.dll 2010-08-26 02:01:14 15876096 ----a-w- c:\windows\system32\atioglxx.dll 2010-08-26 01:57:40 450560 ----a-w- c:\windows\system32\ATIDEMGX.dll 2010-08-26 01:56:36 300544 ----a-w- c:\windows\system32\ati2dvag.dll 2010-08-26 01:52:24 3927936 ----a-w- c:\windows\system32\ati3duag.dll 2010-08-26 01:39:14 208896 ----a-w- c:\windows\system32\atipdlxx.dll 2010-08-26 01:39:02 155648 ----a-w- c:\windows\system32\Oemdspif.dll 2010-08-26 01:38:50 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe 2010-08-26 01:38:38 43520 ----a-w- c:\windows\system32\ati2edxx.dll 2010-08-26 01:38:26 159744 ----a-w- c:\windows\system32\ati2evxx.dll 2010-08-26 01:37:20 2603520 ----a-w- c:\windows\system32\ativvaxx.dll 2010-08-26 01:37:00 606208 ----a-w- c:\windows\system32\ati2evxx.exe 2010-08-26 01:35:32 53248 ----a-w- c:\windows\system32\ATIDDC.DLL 2010-08-26 01:34:32 143360 ----a-w- c:\windows\system32\atiapfxx.exe 2010-08-26 01:30:56 626688 ----a-w- c:\windows\system32\atikvmag.dll 2010-08-26 01:30:54 393216 ----a-w- c:\windows\system32\atiok3x2.dll 2010-08-26 01:29:10 188416 ----a-w- c:\windows\system32\atiadlxx.dll 2010-08-26 01:28:54 17408 ----a-w- c:\windows\system32\atitvo32.dll 2010-08-26 01:23:34 688128 ----a-w- c:\windows\system32\ati2cqag.dll 2010-08-26 01:22:08 64512 ----a-w- c:\windows\system32\atimpc32.dll 2010-08-26 01:22:08 64512 ----a-w- c:\windows\system32\amdpcom32.dll 2010-08-26 01:21:28 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll ============= FINISH: 15:49:35,95 ===============
  21. Ohh detta e inte sant! Funkade ju bra, men när jag installerade uppdateringar och startade om så har jag nu samma problem! provade net start wuauserv men tjänsten var igång utan någon problem! MVh
  22. Tror jag har löst det! Jag kan nu gå in på de sidorna ilaf! Jag körde på MCconfig och avmarkerade de okända tjänsterna o startade om datorn! Sedan gick det att nå microsoft sidan fast de stod att nån av dessa tjänster var inte på! Event Log, automatiska uppdateringar och background intelligent transfer och detta stämmde på de två sista som jag aktiverade och nu funkar det utmärkt Tack allihop för den hjälpen! MVH
×
×
  • Skapa nytt...