Rajcapone Skrevet 27. april 2007 Del Skrevet 27. april 2007 (endret) Hei Maskinen går nesten i toltal vranglås(!) når jeg laster ned filer, eller høy internett aktivitet gennerelt. Følger Norbat sine råd, og har kjørt CCleaner, Hijack this, og SAS i skrivende stund. Kan nevne at jeg kjørte SAS for noen dager siden, og fant- slettet noe soyware, men ser nå at jeg har fått ny rasjon med møkker SAS har hittil funnet : Adaware Tracking cookie 3 Browser Hijacker Favorites 1 Malware Spylocked 1 HELP ! Logg fra Hijackthis Klikk for å se/fjerne innholdet nedenfor Logfile of HijackThis v1.99.1Scan saved at 22:10:13, on 27.04.2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Norman\Npm\bin\ELOGSVC.EXE C:\Norman\Npm\Bin\Zanda.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programfiler\Lavasoft\Ad-Aware Pro\aawservice.exe C:\Programfiler\NVIDIA Corporation\nTune\nTuneService.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\wdfmgr.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\Norman\Npm\bin\ZLH.EXE C:\WINDOWS\RTHDCPL.EXE C:\Programfiler\ASUS\ASUS DH Remote\AsRc.exe C:\Programfiler\DAEMON Tools\daemon.exe C:\Programfiler\Java\jre1.6.0_01\bin\jusched.exe C:\Programfiler\Logitech\G-series Software\LGDCore.exe C:\Programfiler\Logitech\G-series Software\LCDMon.exe C:\Programfiler\Fellesfiler\Ahead\Lib\NMBgMonitor.exe C:\Programfiler\Logitech\G-series Software\Applets\LCDMedia.exe C:\Programfiler\Logitech\G-series Software\Applets\LCDClock.exe C:\Programfiler\ASUS\ASUS DH Remote\AsDhRemote.exe C:\Programfiler\MSN Messenger\MsnMsgr.Exe C:\Programfiler\Fellesfiler\Ahead\Lib\NMIndexStoreSvr.exe C:\WINDOWS\System32\svchost.exe C:\Programfiler\Logitech\SetPoint\SetPoint.exe C:\Programfiler\Fellesfiler\Logitech\KHAL\KHALMNPR.EXE C:\Norman\Npm\bin\NJEEVES.EXE C:\Norman\Nvc\BIN\NIP.EXE C:\Norman\Npf\BIN\npfmsg2.exe C:\Norman\Nvc\BIN\NVCSCHED.EXE C:\Norman\Nvc\bin\nvcoas.exe C:\Norman\Npf\BIN\NPFSVICE.EXE C:\Norman\Nvc\bin\cclaw.exe C:\Programfiler\MSN Messenger\usnsvc.exe C:\Programfiler\Windows Media Player\wmplayer.exe C:\Program Files\HijackThis\hjtest.exe.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startsiden.no/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Programfiler\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programfiler\Fellesfiler\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre1.6.0_01\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programfiler\google\googletoolbar1.dll O4 - HKLM\..\Run: [Norman ZANDA] C:\Norman\Npm\bin\ZLH.EXE /LOAD /SPLASH O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Ai Quicker Help] "C:\Programfiler\ASUS\ASUS DH Remote\AsRc.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [DAEMON Tools] "C:\Programfiler\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Programfiler\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [Launch LGDCore] "C:\Programfiler\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE O4 - HKLM\..\Run: [Launch LCDMon] "C:\Programfiler\Logitech\G-series Software\LCDMon.exe" O4 - HKLM\..\Run: [NVIDIA nTune] "C:\Programfiler\NVIDIA Corporation\nTune\nTuneCmd.exe" clear O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programfiler\Fellesfiler\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [EA Core] "C:\Programfiler\Electronic Arts\EA Link\Core.exe" -silent O4 - HKCU\..\Run: [MsnMsgr] "C:\Programfiler\MSN Messenger\MsnMsgr.Exe" /background O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Programfiler\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Programfiler\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Programfiler\Logitech\SetPoint\SetPoint.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} - http://www.superadblocker.com/activex/sabspx.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Programfiler\Lavasoft\Ad-Aware Pro\aawservice.exe O23 - Service: Norman eLogger service 6 (eLoggerSvc6) - Norman ASA - C:\Norman\Npm\bin\ELOGSVC.EXE O23 - Service: Google Updater Service (gusvc) - Google - C:\Programfiler\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Norman NJeeves - Unknown owner - C:\Norman\Npm\bin\NJEEVES.EXE O23 - Service: Norman Type-R - Unknown owner - C:\Norman\Npf\BIN\NPFSVICE.EXE O23 - Service: Norman ZANDA - Norman ASA - C:\Norman\Npm\Bin\Zanda.exe O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Programfiler\NVIDIA Corporation\nTune\nTuneService.exe O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman ASA - C:\Norman\Nvc\bin\nvcoas.exe O23 - Service: Norman Virus Control Scheduler (NVCScheduler) - Norman ASA - C:\Norman\Nvc\BIN\NVCSCHED.EXE O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe SAS logg er under veis Endret 3. mai 2007 av Rajcapone Lenke til kommentar
norbat Skrevet 27. april 2007 Del Skrevet 27. april 2007 HJT-loggen ser grei ut. Det kan være interessant å se hva SAS har fant. Gjør også dette når du først er så godt i gang : Du bør sjekke for Rootkit og kan bruke en rask scanner ved å hente Rootchk.exe. Legg det på skrivebordet og kjør programmet. Det lages noen logger som du poster. Lenke til kommentar
Rajcapone Skrevet 27. april 2007 Forfatter Del Skrevet 27. april 2007 HJT-loggen ser grei ut. Det kan være interessant å se hva SAS har fant. Gjør også dette når du først er så godt i gang : Du bør sjekke for Rootkit og kan bruke en rask scanner ved å hente Rootchk.exe. Legg det på skrivebordet og kjør programmet. Det lages noen logger som du poster. 8487986[/snapback] SAS logg Klikk for å se/fjerne innholdet nedenfor SUPERAntiSpyware Scan LogGenerated 04/27/2007 at 11:02 PM Application Version : 3.6.1000 Core Rules Database Version : 3226 Trace Rules Database Version: 1237 Scan type : Complete Scan Total Scan Time : 00:38:26 Memory items scanned : 531 Memory threats detected : 0 Registry items scanned : 4743 Registry threats detected : 0 File items scanned : 30900 File threats detected : 5 Adware.Tracking Cookie C:\Documents and Settings\Robin & Nadia\Cookies\robin & [email protected][2].txt C:\Documents and Settings\Robin & Nadia\Cookies\robin & [email protected][1].txt C:\Documents and Settings\Robin & Nadia\Cookies\robin & [email protected][1].txt Browser Hijacker.Favorites C:\DOCUMENTS AND SETTINGS\ROBIN & NADIA\FAVORITTER\ONLINE SECURITY TEST.URL Malware.SpyLocked C:\SYSTEM VOLUME INFORMATION\_RESTORE{92DDC9A9-0BD7-4183-B656-1F47567C7157}\RP66\A0014725.DLL Prøvde å kjøre Rootkit, men ingen ting skjedde. (?) Lenke til kommentar
norbat Skrevet 27. april 2007 Del Skrevet 27. april 2007 Ser ikke ille ut dette, Rajcapone Hent Combofix, og legg det på skrivebordet Combofix Kjør combofix.exe, og følg veiledningen. Du må ikke klikke på vinduet mens programmet kjører. Loggen den lager poster du. Fortell også hvordan pc'n kjører. Lenke til kommentar
Rajcapone Skrevet 27. april 2007 Forfatter Del Skrevet 27. april 2007 (endret) Ser ikke ille ut dette, Rajcapone Hent Combofix, og legg det på skrivebordet Combofix Kjør combofix.exe, og følg veiledningen. Du må ikke klikke på vinduet mens programmet kjører. Loggen den lager poster du. Fortell også hvordan pc'n kjører. 8488168[/snapback] Combofix logg Klikk for å se/fjerne innholdet nedenfor "Robin & Nadia" - 07-04-27 23:26:03 Service Pack 2 ComboFix 07-04-25.4V - Running from: "C:\Documents and Settings\Robin & Nadia\Skrivebord\" ((((((((((((((((((((((((((((((( Files Created from 2007-03-27 to 2007-04-27 )))))))))))))))))))))))))))))))))) 2007-04-27 22:09 <DIR> dr-h----- C:\DOCUME~1\ROBIN&~1\Siste 2007-04-25 18:27 <DIR> d-------- C:\WINDOWS\Downloaded Installations 2007-04-25 18:27 <DIR> d-------- C:\Programfiler\SoftBusters 2007-04-22 19:12 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\PROGRA~1\Ahead 2007-04-18 23:32 22,584 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys 2007-04-18 16:03 <DIR> d-------- C:\DOCUME~1\NETWOR~1\Start-meny 2007-04-17 20:38 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2007-04-17 19:49 <DIR> d-------- C:\Programfiler\MSN Messenger 2007-04-16 21:54 356,352 --a------ C:\WINDOWS\system32\nvudisp.exe 2007-04-16 21:54 <DIR> d-------- C:\WINDOWS\nview 2007-04-16 21:52 356,352 --a------ C:\WINDOWS\system32\NVUNINST.EXE 2007-04-16 21:51 <DIR> d-------- C:\NVIDIA 2007-04-16 21:36 <DIR> d-------- C:\Programfiler\Driver Cleaner Pro 2007-04-16 21:10 <DIR> d-------- C:\Programfiler\THQ 2007-04-16 00:12 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\Incomplete 2007-04-16 00:10 <DIR> d-------- C:\Programfiler\LimeWire 2007-04-15 21:21 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\PROGRA~1\Command & Conquer 3 Tiberium Wars 2007-04-15 19:19 <DIR> d-------- C:\Programfiler\BF2142G15Mod 2007-04-15 12:44 <DIR> d-------- C:\Programfiler\SUPERAntiSpyware 2007-04-15 12:44 <DIR> d-------- C:\Program Files 2007-04-15 12:44 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\PROGRA~1\SUPERAntiSpyware.com 2007-04-15 12:44 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\SUPERAntiSpyware.com 2007-04-15 12:43 <DIR> d-------- C:\Programfiler\Fellesfiler\Wise Installation Wizard 2007-04-15 12:36 <DIR> d-------- C:\Programfiler\Intel Corporation 2007-04-14 16:58 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\PROGRA~1\IDS_COMPANY 2007-04-12 22:45 <DIR> d-------- C:\Programfiler\NVIDIA Corporation 2007-04-12 22:39 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\NVIDIA 2007-04-12 22:18 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\Logitech 2007-04-12 21:37 <DIR> d-------- C:\Programfiler\EA GAMES 2007-04-10 21:10 99,904 --a------ C:\WINDOWS\system32\PnkBstrB.exe 2007-04-10 21:09 63,040 --a------ C:\WINDOWS\system32\PnkBstrA.exe 2007-04-10 21:09 <DIR> d-------- C:\WINDOWS\system32\LogFiles 2007-04-10 20:52 <DIR> d-------- C:\Programfiler\Fellesfiler\PACE Anti-Piracy 2007-04-10 20:52 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\PROGRA~1\PACE Anti-Piracy 2007-04-10 20:52 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\PACE Anti-Piracy 2007-04-10 19:58 <DIR> d-------- C:\Programfiler\Google 2007-04-10 19:58 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\PROGRA~1\Google 2007-04-10 19:58 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\Google 2007-04-10 18:08 <DIR> d---s---- C:\DOCUME~1\ROBIN&~1\UserData 2007-04-10 01:37 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\PROGRA~1\vlc 2007-04-10 01:34 <DIR> d--h----- C:\WINDOWS\PIF 2007-04-09 22:02 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\PROGRA~1\Logitech 2007-04-09 21:49 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll 2007-04-09 21:49 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll 2007-04-09 21:49 3,426,072 --a------ C:\WINDOWS\system32\d3dx9_32.dll 2007-04-09 21:49 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll 2007-04-09 21:49 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll 2007-04-09 21:49 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll 2007-04-09 21:49 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll 2007-04-09 21:49 15,128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll 2007-04-09 21:48 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll 2007-04-09 21:48 108,144 --a------ C:\WINDOWS\system32\CmdLineExt.dll 2007-04-09 21:37 262,144 --a------ C:\DOCUME~1\ALLUSE~1\ntuser.dat 2007-04-09 21:34 <DIR> d-------- C:\Programfiler\DAEMON Tools 2007-04-09 21:16 36,528 --------- C:\WINDOWS\system32\drivers\PxHelp20.sys 2007-04-09 21:16 2,560 --------- C:\WINDOWS\system32\drivers\cdralw2k.sys 2007-04-09 21:16 2,432 --------- C:\WINDOWS\system32\drivers\cdr4_xp.sys 2007-04-09 21:16 129,784 --------- C:\WINDOWS\system32\pxafs.dll 2007-04-09 21:16 115,880 --------- C:\WINDOWS\system32\pxinsi64.exe 2007-04-09 21:14 <DIR> d-------- C:\WINDOWS\RegisteredPackages 2007-04-09 21:13 <DIR> d-------- C:\Programfiler\Winamp 2007-04-09 21:12 68,864 --a------ C:\WINDOWS\system32\drivers\LMouKE.Sys 2007-04-09 21:12 55,040 --a------ C:\WINDOWS\system32\drivers\L8042MOU.SYS 2007-04-09 21:12 13,440 --a------ C:\WINDOWS\system32\drivers\L8042Kbd.SYS 2007-04-09 21:11 28,160 --a------ C:\WINDOWS\KHALMNPR.Exe 2007-04-09 21:11 26,112 --a------ C:\WINDOWS\system32\drivers\LHidKE.Sys 2007-04-09 21:11 258,352 --a------ C:\WINDOWS\system32\unicows.dll 2007-04-09 21:11 1,060,864 --a------ C:\WINDOWS\system32\MFC71.dll 2007-04-09 21:11 1,047,552 --a------ C:\WINDOWS\system32\MFC71u.dll 2007-04-09 21:11 <DIR> d-------- C:\Programfiler\Logitech 2007-04-09 21:11 <DIR> d-------- C:\Programfiler\Fellesfiler\Logitech 2007-04-09 21:05 <DIR> d-------- C:\Programfiler\Electronic Arts 2007-04-09 21:05 <DIR> d-------- C:\ProgramData 2007-04-09 20:57 <DIR> d--hs---- C:\RECYCLER 2007-04-09 20:56 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys 2007-04-09 20:56 21,504 --a------ C:\WINDOWS\system32\hidserv.dll 2007-04-09 20:55 74,240 --a------ C:\WINDOWS\system32\usbui.dll 2007-04-09 20:55 6,400 --a------ C:\WINDOWS\system32\drivers\enum1394.sys 2007-04-09 20:55 57,344 --a------ C:\WINDOWS\system32\drivers\redbook.sys 2007-04-09 20:54 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL 2007-04-09 20:54 9,008 --a------ C:\WINDOWS\system\VER.DLL 2007-04-09 20:54 85,020 --a------ C:\WINDOWS\system32\dgsetup.dll 2007-04-09 20:54 82,944 --a------ C:\WINDOWS\system\OLECLI.DLL 2007-04-09 20:54 8,704 --a------ C:\WINDOWS\system32\batt.dll 2007-04-09 20:54 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll 2007-04-09 20:54 7,168 -ra------ C:\WINDOWS\system32\kbdcz.dll 2007-04-09 20:54 69,824 --a------ C:\WINDOWS\system\AVICAP.DLL 2007-04-09 20:54 69,120 --a------ C:\WINDOWS\NOTEPAD.EXE 2007-04-09 20:54 68,976 --a------ C:\WINDOWS\system\MMSYSTEM.DLL 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdycl.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdsl1.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdsl.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdpl.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdhu.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdcz2.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdcz1.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\kbdcr.dll 2007-04-09 20:54 6,656 -ra------ C:\WINDOWS\system32\KBDAL.DLL 2007-04-09 20:54 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll 2007-04-09 20:54 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll 2007-04-09 20:54 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll 2007-04-09 20:54 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll 2007-04-09 20:54 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll 2007-04-09 20:54 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll 2007-04-09 20:54 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdro.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdpl1.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdhu1.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll 2007-04-09 20:54 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll 2007-04-09 20:54 5,120 --a------ C:\WINDOWS\system\SHELL.DLL 2007-04-09 20:54 33,072 --a------ C:\WINDOWS\system\COMMDLG.DLL 2007-04-09 20:54 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll 2007-04-09 20:54 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL 2007-04-09 20:54 19,200 --a------ C:\WINDOWS\system\TAPI.DLL 2007-04-09 20:54 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll 2007-04-09 20:54 15,360 --a------ C:\WINDOWS\TASKMAN.EXE 2007-04-09 20:54 13,312 --a------ C:\WINDOWS\system32\irclass.dll 2007-04-09 20:54 126,912 --a------ C:\WINDOWS\system\MSVIDEO.DLL 2007-04-09 20:54 11,264 --a------ C:\WINDOWS\system32\drivers\irenum.sys 2007-04-09 20:54 109,488 --a------ C:\WINDOWS\system\AVIFILE.DLL 2007-04-09 20:54 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll 2007-04-09 20:54 <DIR> dr------- C:\Programfiler 2007-04-09 20:54 <DIR> d--hs---- C:\WINDOWS\Installer 2007-04-09 20:54 <DIR> d-------- C:\Programfiler\Fellesfiler\SpeechEngines 2007-04-09 20:54 <DIR> d-------- C:\Programfiler\Fellesfiler\ODBC 2007-04-09 20:53 74,752 --a------ C:\WINDOWS\system32\storprop.dll 2007-04-09 20:53 <DIR> dr-h----- C:\DOCUME~1\DEFAUL~1\Lokale innstillinger 2007-04-09 20:53 <DIR> dr------- C:\DOCUME~1\DEFAUL~1\Start-meny 2007-04-09 20:53 <DIR> dr------- C:\DOCUME~1\ALLUSE~1\Start-meny 2007-04-09 20:53 <DIR> dr------- C:\DOCUME~1\ALLUSE~1\Dokumenter 2007-04-09 20:53 <DIR> d--h----- C:\DOCUME~1\DEFAUL~1\Skrivere 2007-04-09 20:53 <DIR> d--h----- C:\DOCUME~1\DEFAUL~1\Siste 2007-04-09 20:53 <DIR> d--h----- C:\DOCUME~1\DEFAUL~1\Maler 2007-04-09 20:53 <DIR> d--h----- C:\DOCUME~1\DEFAUL~1\AndrMask 2007-04-09 20:53 <DIR> d--h----- C:\DOCUME~1\ALLUSE~1\Maler 2007-04-09 20:53 <DIR> d-------- C:\DOCUME~1\DEFAUL~1\Skrivebord 2007-04-09 20:53 <DIR> d-------- C:\DOCUME~1\DEFAUL~1\Mine dokumenter 2007-04-09 20:53 <DIR> d-------- C:\DOCUME~1\DEFAUL~1\Favoritter 2007-04-09 20:53 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\Skrivebord 2007-04-09 20:53 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\Favoritter 2007-04-09 20:52 <DIR> dr-h----- C:\DOCUME~1\DEFAUL~1\Programdata 2007-04-09 20:52 <DIR> dr-h----- C:\DOCUME~1\ALLUSE~1\Programdata 2007-04-09 20:52 <DIR> d-------- C:\WINDOWS\system32\CatRoot2 2007-04-09 20:52 <DIR> d-------- C:\WINDOWS\system32\CatRoot 2007-04-09 20:52 <DIR> d-------- C:\WINDOWS\system32\appmgmt 2007-04-09 20:51 <DIR> d--hs---- C:\System Volume Information 2007-04-09 20:51 <DIR> d-------- C:\WINDOWS\system32\URTTEMP 2007-04-09 20:51 <DIR> d-------- C:\Documents and Settings 2007-04-09 20:47 <DIR> dr-hsc--- C:\WINDOWS\system32\dllcache 2007-04-09 20:47 <DIR> dr--s---- C:\WINDOWS\Fonts 2007-04-09 20:47 <DIR> dr------- C:\WINDOWS\Web 2007-04-09 20:47 <DIR> d--h----- C:\WINDOWS\inf 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\WinSxS 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\twain_32 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\wins 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\wbem 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\usmt 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\spool 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\ShellExt 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\Setup 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\ras 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\oobe 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\npp 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\mui 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\inetsrv 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\IME 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\icsxml 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\ias 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\export 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\drivers\etc 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\drivers\disdn 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\drivers 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\dhcp 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\config 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\3com_dmi 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\3076 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\2052 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1054 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1044 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1042 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1041 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1037 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1033 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1031 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1028 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32\1025 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system32 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\system 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\security 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Resources 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\repair 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Provisioning 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\PeerNet 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\pchealth 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\mui 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\msapps 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\msagent 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Media 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\ime 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Help 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\ehome 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Driver Cache 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Debug 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Cursors 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Connection Wizard 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\Config 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\AppPatch 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS\addins 2007-04-09 20:47 <DIR> d-------- C:\WINDOWS 2007-04-09 20:47 <DIR> d-------- C:\Programfiler\MSBuild 2007-04-09 20:46 <DIR> d-------- C:\WINDOWS\system32\XPSViewer 2007-04-09 20:45 14,048 --------- C:\WINDOWS\system32\spmsg2.dll 2007-04-09 20:45 <DIR> d-------- C:\Programfiler\Reference Assemblies 2007-04-09 20:31 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE 2007-04-09 20:31 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\Contacts 2007-04-09 20:28 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\Spybot - Search & Destroy 2007-04-09 20:26 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\Windows Genuine Advantage 2007-04-09 20:25 <DIR> d-------- C:\Programfiler\Lavasoft 2007-04-09 20:25 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\Lavasoft 2007-04-09 20:22 <DIR> d-------- C:\Programfiler\Yahoo! 2007-04-09 20:22 <DIR> d-------- C:\Programfiler\CCleaner 2007-04-09 20:22 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\PROGRA~1\Yahoo! Companion 2007-04-09 20:21 <DIR> d-------- C:\DOCUME~1\LOCALS~1\Start-meny 2007-04-09 20:19 <DIR> d--h----- C:\WINDOWS\$hf_mig$ 2007-04-09 20:19 <DIR> d-------- C:\WINDOWS\system32\PreInstall 2007-04-09 20:18 18,488 --a------ C:\WINDOWS\system32\drivers\nvcw32mf.sys 2007-04-09 20:17 5 --a------ C:\NPF_USER.DAT 2007-04-09 20:16 <DIR> d-------- C:\WINDOWS\system32\Lang 2007-04-09 20:14 606,848 --a------ C:\WINDOWS\flashax.exe 2007-04-09 20:14 12,288 --a------ C:\WINDOWS\impborl.dll 2007-04-09 20:12 5,685 -ra------ C:\WINDOWS\system32\drivers\AsIO.sys 2007-04-09 20:12 24,576 -ra------ C:\WINDOWS\system32\AsIO.dll 2007-04-09 20:12 12,096 --a------ C:\WINDOWS\system32\drivers\AsInsHelp64.sys 2007-04-09 20:12 10,304 --a------ C:\WINDOWS\system32\drivers\AsInsHelp32.sys 2007-04-09 20:12 <DIR> d-------- C:\WINDOWS\system32\SoftwareDistribution 2007-04-09 20:12 <DIR> d-------- C:\Programfiler\ASUS 2007-04-09 20:11 82,944 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys 2007-04-09 20:11 7,552 --a------ C:\WINDOWS\system32\drivers\MSKSSRV.sys 2007-04-09 20:11 60,800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys 2007-04-09 20:11 6,400 --a------ C:\WINDOWS\system32\drivers\splitter.sys 2007-04-09 20:11 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys 2007-04-09 20:11 52,864 --a------ C:\WINDOWS\system32\drivers\DMusic.sys 2007-04-09 20:11 5,376 --a------ C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2007-04-09 20:11 40,960 -ra------ C:\WINDOWS\system32\ChCfg.exe 2007-04-09 20:11 4,992 --a------ C:\WINDOWS\system32\drivers\MSPQM.sys 2007-04-09 20:11 2,944 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys 2007-04-09 20:11 172,416 --a------ C:\WINDOWS\system32\drivers\kmixer.sys 2007-04-09 20:11 142,464 --a------ C:\WINDOWS\system32\drivers\aec.sys 2007-04-09 20:11 135,168 --a------ C:\WINDOWS\system32\RtlCPAPI.dll 2007-04-09 20:11 <DIR> d-------- C:\WINDOWS\system32\RTCOM 2007-04-09 20:11 <DIR> d-------- C:\Programfiler\Marvell 2007-04-09 20:10 9,711,104 -ra------ C:\WINDOWS\RTLCPL.exe 2007-04-09 20:10 86,016 -ra------ C:\WINDOWS\SoundMan.exe 2007-04-09 20:10 69,632 -ra------ C:\WINDOWS\Alcmtr.exe 2007-04-09 20:10 60,288 --a------ C:\WINDOWS\system32\drivers\drmk.sys 2007-04-09 20:10 487,424 -ra------ C:\WINDOWS\RtlExUpd.dll 2007-04-09 20:10 4,262,912 -ra------ C:\WINDOWS\system32\drivers\RtkHDAud.Sys 2007-04-09 20:10 4,096 --a------ C:\WINDOWS\system32\ksuser.dll 2007-04-09 20:10 364,544 -ra------ C:\WINDOWS\RtlUpd.exe 2007-04-09 20:10 23,856 --a------ C:\WINDOWS\system32\spupdsvc.exe 2007-04-09 20:10 2,809,344 -ra------ C:\WINDOWS\alcwzrd.exe 2007-04-09 20:10 2,158,592 -ra------ C:\WINDOWS\MicCal.exe 2007-04-09 20:10 16,143,872 -ra------ C:\WINDOWS\RTHDCPL.exe 2007-04-09 20:10 <DIR> d-------- C:\Programfiler\Realtek 2007-04-09 20:08 53,320 --a------ C:\WINDOWS\system32\drivers\Ndis_rd.sys 2007-04-09 20:08 32,176 --a------ C:\WINDOWS\system32\drivers\Tdi_rd.sys 2007-04-09 20:08 <DIR> d--h----- C:\Programfiler\InstallShield Installation Information 2007-04-09 20:08 <DIR> d-------- C:\WINDOWS\system32\ReinstallBackups 2007-04-09 20:08 <DIR> d-------- C:\Programfiler\Intel 2007-04-09 20:08 <DIR> d-------- C:\Norman 2007-04-09 20:07 5,824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS 2007-04-09 20:07 5,810 -ra------ C:\WINDOWS\system32\drivers\ASACPI.sys 2007-04-09 20:07 <DIR> d-------- C:\WINDOWS\ASUSInstAll 2007-04-09 20:06 <DIR> d-------- C:\Programfiler\Nero 2007-04-09 20:06 <DIR> d-------- C:\Programfiler\Fellesfiler\Ahead 2007-04-09 20:03 639,224 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2007-04-09 20:03 <DIR> d-------- C:\Programfiler\BitLord 2007-04-09 20:03 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\.limewire 2007-04-09 20:02 <DIR> d-------- C:\Programfiler\VideoLAN 2007-04-09 20:00 <DIR> d-------- C:\Programfiler\Fellesfiler\InstallShield 2007-04-09 19:57 786,432 --ah----- C:\DOCUME~1\LOCALS~1\NTUSER.DAT 2007-04-09 19:57 2,883,584 --ah----- C:\DOCUME~1\ROBIN&~1\NTUSER.DAT 2007-04-09 19:57 <DIR> dr-h----- C:\DOCUME~1\ROBIN&~1\Programdata 2007-04-09 19:57 <DIR> dr------- C:\DOCUME~1\ROBIN&~1\Start-meny 2007-04-09 19:57 <DIR> dr------- C:\DOCUME~1\ROBIN&~1\Mine dokumenter 2007-04-09 19:57 <DIR> dr------- C:\DOCUME~1\ROBIN&~1\Favoritter 2007-04-09 19:57 <DIR> d--h----- C:\DOCUME~1\ROBIN&~1\Skrivere 2007-04-09 19:57 <DIR> d--h----- C:\DOCUME~1\ROBIN&~1\Maler 2007-04-09 19:57 <DIR> d--h----- C:\DOCUME~1\ROBIN&~1\Lokale innstillinger 2007-04-09 19:57 <DIR> d--h----- C:\DOCUME~1\ROBIN&~1\AndrMask 2007-04-09 19:57 <DIR> d--h----- C:\DOCUME~1\LOCALS~1\Lokale innstillinger 2007-04-09 19:57 <DIR> d-------- C:\WINDOWS\SoftwareDistribution 2007-04-09 19:57 <DIR> d-------- C:\WINDOWS\Prefetch 2007-04-09 19:57 <DIR> d-------- C:\DOCUME~1\ROBIN&~1\Skrivebord 2007-04-09 19:57 <DIR> d-------- C:\DOCUME~1\LOCALS~1\Programdata 2007-04-09 19:56 786,432 --ah----- C:\DOCUME~1\NETWOR~1\NTUSER.DAT 2007-04-09 19:56 <DIR> d--h----- C:\DOCUME~1\NETWOR~1\Lokale innstillinger 2007-04-09 19:56 <DIR> d-------- C:\DOCUME~1\NETWOR~1\Programdata 2007-04-09 19:54 225,280 ---h----- C:\DOCUME~1\DEFAUL~1\NTUSER.DAT 2007-04-09 19:54 112,128 --a------ C:\WINDOWS\system32\mapi32.dll 2007-04-09 19:54 0 -rahs---- C:\MSDOS.SYS 2007-04-09 19:54 0 -rahs---- C:\IO.SYS 2007-04-09 19:54 0 --a------ C:\CONFIG.SYS 2007-04-09 19:54 0 --a------ C:\AUTOEXEC.BAT 2007-04-09 19:54 <DIR> d-------- C:\WINDOWS\system32\xircom 2007-04-09 19:54 <DIR> d-------- C:\Programfiler\microsoft frontpage 2007-04-09 19:53 8,192 --a------ C:\WINDOWS\system32\bitsprx2.dll 2007-04-09 19:53 7,168 --a------ C:\WINDOWS\system32\bitsprx3.dll 2007-04-09 19:53 64,512 --a------ C:\WINDOWS\system32\acctres.dll 2007-04-09 19:53 6,656 --a------ C:\WINDOWS\system32\wuauserv.dll 2007-04-09 19:53 465,176 --a------ C:\WINDOWS\system32\wuapi.dll 2007-04-09 19:53 41,240 --a------ C:\WINDOWS\system32\wups.dll 2007-04-09 19:53 382,464 --a------ C:\WINDOWS\system32\qmgr.dll 2007-04-09 19:53 194,840 --a------ C:\WINDOWS\system32\wuaueng1.dll 2007-04-09 19:53 18,944 --a------ C:\WINDOWS\system32\qmgrprxy.dll 2007-04-09 19:53 174,360 --a------ C:\WINDOWS\system32\wuauclt1.exe 2007-04-09 19:53 173,536 --a------ C:\WINDOWS\system32\wuweb.dll 2007-04-09 19:53 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll 2007-04-09 19:53 127,768 --a------ C:\WINDOWS\system32\wucltui.dll 2007-04-09 19:53 124,696 --a------ C:\WINDOWS\system32\wuauclt.exe 2007-04-09 19:53 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll 2007-04-09 19:53 11,264 --a------ C:\WINDOWS\system32\atrace.dll 2007-04-09 19:53 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll 2007-04-09 19:53 <DIR> dr------- C:\WINDOWS\Offline Web Pages 2007-04-09 19:53 <DIR> d--hs---- C:\DOCUME~1\ALLUSE~1\DRM 2007-04-09 19:53 <DIR> d--h----- C:\Programfiler\WindowsUpdate 2007-04-09 19:53 <DIR> d---s---- C:\WINDOWS\Tasks 2007-04-09 19:53 <DIR> d---s---- C:\WINDOWS\Downloaded Program Files 2007-04-09 19:53 <DIR> d-------- C:\WINDOWS\system32\Macromed 2007-04-09 19:53 <DIR> d-------- C:\WINDOWS\system32\DirectX 2007-04-09 19:53 <DIR> d-------- C:\WINDOWS\srchasst 2007-04-09 19:53 <DIR> d-------- C:\Programfiler\Fellesfiler\Tjenester 2007-04-09 19:53 <DIR> d-------- C:\Programfiler\Fellesfiler\MSSoap 2007-04-09 19:53 <DIR> d-------- C:\Programfiler\Elektroniske tjenester 2007-04-09 19:52 81,920 --a------ C:\WINDOWS\system32\isign32.dll 2007-04-09 19:52 81,920 --a------ C:\WINDOWS\system32\ils.dll 2007-04-09 19:52 73,728 --a------ C:\WINDOWS\system32\icwdial.dll 2007-04-09 19:52 73,344 --a------ C:\WINDOWS\system32\drivers\sr.sys 2007-04-09 19:52 69,632 --a------ C:\WINDOWS\system32\msconf.dll 2007-04-09 19:52 679,424 --a------ C:\WINDOWS\system32\inetcomm.dll 2007-04-09 19:52 67,584 --a------ C:\WINDOWS\system32\srclient.dll 2007-04-09 19:52 65,536 --a------ C:\WINDOWS\system32\icwphbk.dll 2007-04-09 19:52 5,632 --a------ C:\WINDOWS\system32\write.exe 2007-04-09 19:52 47,616 --a------ C:\WINDOWS\system32\inetres.dll 2007-04-09 19:52 45,568 --a------ C:\WINDOWS\system32\safrslv.dll 2007-04-09 19:52 43,520 --a------ C:\WINDOWS\system32\safrcdlg.dll 2007-04-09 19:52 43,520 --a------ C:\WINDOWS\system32\racpldlg.dll 2007-04-09 19:52 34,560 --a------ C:\WINDOWS\system32\mnmdd.dll 2007-04-09 19:52 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe 2007-04-09 19:52 32,768 --a------ C:\WINDOWS\system32\isrdbg32.dll 2007-04-09 19:52 29,696 --a------ C:\WINDOWS\system32\safrdm.dll 2007-04-09 19:52 28,672 --a------ C:\WINDOWS\system32\nmmkcert.dll 2007-04-09 19:52 278,528 --a------ C:\WINDOWS\system32\inetcfg.dll 2007-04-09 19:52 275,968 --a------ C:\WINDOWS\system32\mstask.dll 2007-04-09 19:52 252,928 --a------ C:\WINDOWS\system32\msoeacct.dll 2007-04-09 19:52 240,128 --a------ C:\WINDOWS\system32\srrstr.dll 2007-04-09 19:52 23,040 --a------ C:\WINDOWS\system32\fltmc.exe 2007-04-09 19:52 21,704 --a------ C:\WINDOWS\system32\emptyregdb.dat 2007-04-09 19:52 190,976 --a------ C:\WINDOWS\system32\schedsvc.dll 2007-04-09 19:52 170,496 --a------ C:\WINDOWS\system32\srsvc.dll 2007-04-09 19:52 16,896 --a------ C:\WINDOWS\system32\fltlib.dll 2007-04-09 19:52 128,896 --a------ C:\WINDOWS\system32\drivers\fltmgr.sys 2007-04-09 19:52 12,288 --a------ C:\WINDOWS\system32\mstinit.exe 2007-04-09 19:52 105,984 --a------ C:\WINDOWS\system32\msoert2.dll 2007-04-09 19:52 <DIR> d-------- C:\WINDOWS\system32\Restore 2007-04-09 19:52 <DIR> d-------- C:\WINDOWS\Registration 2007-04-09 19:52 <DIR> d-------- C:\Programfiler\MSN Gaming Zone 2007-04-09 19:52 <DIR> d-------- C:\Programfiler\Movie Maker 2007-04-09 19:52 <DIR> d-------- C:\Programfiler\Messenger 2007-04-09 19:51 97,792 --a------ C:\WINDOWS\system32\comrepl.dll 2007-04-09 19:51 956,416 --a------ C:\WINDOWS\system32\msdtctm.dll 2007-04-09 19:51 93,696 --a------ C:\WINDOWS\system32\tscfgwmi.dll 2007-04-09 19:51 91,136 --a------ C:\WINDOWS\system32\mtxoci.dll 2007-04-09 19:51 9,728 --a------ C:\WINDOWS\system32\reset.exe 2007-04-09 19:51 87,176 --a------ C:\WINDOWS\system32\rdpwsx.dll 2007-04-09 19:51 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll 2007-04-09 19:51 80,384 --a------ C:\WINDOWS\system32\charmap.exe 2007-04-09 19:51 73,216 --a------ C:\WINDOWS\system32\avwav.dll 2007-04-09 19:51 67,072 --a------ C:\WINDOWS\system32\rdshost.exe 2007-04-09 19:51 655,360 --a------ C:\WINDOWS\system32\mstscax.dll 2007-04-09 19:51 625,152 --a------ C:\WINDOWS\system32\catsrvut.dll 2007-04-09 19:51 62,464 --a------ C:\WINDOWS\system32\rdpclip.exe 2007-04-09 19:51 605,696 --a------ C:\WINDOWS\system32\getuname.dll 2007-04-09 19:51 60,928 --a------ C:\WINDOWS\system32\remotepg.dll 2007-04-09 19:51 60,416 --a------ C:\WINDOWS\system32\colbact.dll 2007-04-09 19:51 6,144 --a------ C:\WINDOWS\system32\msdtc.exe 2007-04-09 19:51 58,880 --a------ C:\WINDOWS\system32\msdtclog.dll 2007-04-09 19:51 58,880 --a------ C:\WINDOWS\system32\licwmi.dll 2007-04-09 19:51 56,832 --a------ C:\WINDOWS\system32\sol.exe 2007-04-09 19:51 56,320 --a------ C:\WINDOWS\system32\servdeps.dll 2007-04-09 19:51 55,296 --a------ C:\WINDOWS\system32\freecell.exe 2007-04-09 19:51 540,160 --a------ C:\WINDOWS\system32\comuid.dll 2007-04-09 19:51 54,272 --a------ C:\WINDOWS\system32\stclient.dll 2007-04-09 19:51 538,624 --a------ C:\WINDOWS\system32\spider.exe 2007-04-09 19:51 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe 2007-04-09 19:51 498,688 --a------ C:\WINDOWS\system32\clbcatq.dll 2007-04-09 19:51 44,544 --a------ C:\WINDOWS\system32\tscupgrd.exe 2007-04-09 19:51 44,544 --a------ C:\WINDOWS\system32\hticons.dll 2007-04-09 19:51 426,496 --a------ C:\WINDOWS\system32\msdtcprx.dll 2007-04-09 19:51 408,064 --a------ C:\WINDOWS\system32\mstsc.exe 2007-04-09 19:51 40,840 --a------ C:\WINDOWS\system32\drivers\termdd.sys 2007-04-09 19:51 4,096 --a------ C:\WINDOWS\system32\rdpcfgex.dll 2007-04-09 19:51 4,096 --a------ C:\WINDOWS\system32\mtxex.dll 2007-04-09 19:51 38,912 --a------ C:\WINDOWS\system32\cfgbkend.dll 2007-04-09 19:51 35,328 --a------ C:\WINDOWS\system32\winchat.exe 2007-04-09 19:51 348,672 --a------ C:\WINDOWS\system32\hypertrm.dll 2007-04-09 19:51 344,064 --a------ C:\WINDOWS\system32\mspaint.exe 2007-04-09 19:51 33,792 --a------ C:\WINDOWS\system32\regini.exe 2007-04-09 19:51 294,912 --a------ C:\WINDOWS\system32\termsrv.dll 2007-04-09 19:51 25,600 --a------ C:\WINDOWS\system32\comaddin.dll 2007-04-09 19:51 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll 2007-04-09 19:51 228,864 --a------ C:\WINDOWS\system32\avtapi.dll 2007-04-09 19:51 225,792 --a------ C:\WINDOWS\system32\catsrv.dll 2007-04-09 19:51 22,528 --a------ C:\WINDOWS\system32\qwinsta.exe 2007-04-09 19:51 21,896 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys 2007-04-09 19:51 20,992 --a------ C:\WINDOWS\system32\msg.exe 2007-04-09 19:51 20,480 --a------ C:\WINDOWS\system32\qprocess.exe 2007-04-09 19:51 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll 2007-04-09 19:51 196,864 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys 2007-04-09 19:51 19,968 --a------ C:\WINDOWS\system32\rdpsnd.dll 2007-04-09 19:51 186,368 --a------ C:\WINDOWS\system32\cmprops.dll 2007-04-09 19:51 185,344 --a------ C:\WINDOWS\system32\accwiz.exe 2007-04-09 19:51 17,408 --a------ C:\WINDOWS\system32\qappsrv.exe 2007-04-09 19:51 17,408 --a------ C:\WINDOWS\system32\mmfutil.dll 2007-04-09 19:51 161,280 --a------ C:\WINDOWS\system32\msdtcuiu.dll 2007-04-09 19:51 16,896 --a------ C:\WINDOWS\system32\tsshutdn.exe 2007-04-09 19:51 16,384 --a------ C:\WINDOWS\system32\tskill.exe 2007-04-09 19:51 16,384 --a------ C:\WINDOWS\system32\avmeter.dll 2007-04-09 19:51 15,872 --a------ C:\WINDOWS\system32\rwinsta.exe 2007-04-09 19:51 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll 2007-04-09 19:51 15,360 --a------ C:\WINDOWS\system32\logoff.exe 2007-04-09 19:51 147,968 --a------ C:\WINDOWS\system32\rdchost.dll 2007-04-09 19:51 147,456 --a------ C:\WINDOWS\system32\comsnap.dll 2007-04-09 19:51 140,288 --a------ C:\WINDOWS\system32\sessmgr.exe 2007-04-09 19:51 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe 2007-04-09 19:51 14,848 --a------ C:\WINDOWS\system32\tscon.exe 2007-04-09 19:51 14,848 --a------ C:\WINDOWS\system32\shadow.exe 2007-04-09 19:51 139,528 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys 2007-04-09 19:51 139,264 --a------ C:\WINDOWS\system32\sndvol32.exe 2007-04-09 19:51 131,584 --a------ C:\WINDOWS\system32\sndrec32.exe 2007-04-09 19:51 13,824 --a------ C:\WINDOWS\system32\rdsaddin.exe 2007-04-09 19:51 127,488 --a------ C:\WINDOWS\system32\mshearts.exe 2007-04-09 19:51 123,392 --a------ C:\WINDOWS\system32\mplay32.exe 2007-04-09 19:51 12,040 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys 2007-04-09 19:51 119,808 --a------ C:\WINDOWS\system32\winmine.exe 2007-04-09 19:51 114,688 --a------ C:\WINDOWS\system32\calc.exe 2007-04-09 19:51 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll 2007-04-09 19:51 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll 2007-04-09 19:51 11,264 --a------ C:\WINDOWS\system32\icaapi.dll 2007-04-09 19:51 102,912 --a------ C:\WINDOWS\system32\clipbrd.exe 2007-04-09 19:51 1,267,200 --a------ C:\WINDOWS\system32\comsvcs.dll 2007-04-09 19:51 1,161 --a------ C:\WINDOWS\system32\usrlogon.cmd 2007-04-09 19:51 <DIR> d-------- C:\WINDOWS\system32\MsDtc 2007-04-09 19:51 <DIR> d-------- C:\WINDOWS\system32\Com 2007-04-09 19:51 <DIR> d-------- C:\Programfiler\Windows NT 2007-04-04 14:51 5,632 --a------ C:\WINDOWS\system32\drivers\AWRTPD.sys (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-04-10 18:08 78702 --a------ C:\WINDOWS\system32\perfc014.dat 2007-04-10 18:08 439140 --a------ C:\WINDOWS\system32\perfh014.dat 2007-04-09 20:53 62 --ahs---- C:\DOCUME~1\ROBIN&~1\PROGRA~1\desktop.ini 2007-03-23 06:07 583504 --------- C:\WINDOWS\system32\xpsshhdr.dll 2007-03-23 06:07 1683280 --------- C:\WINDOWS\system32\xpssvcs.dll 2007-03-22 20:25 124928 --------- C:\WINDOWS\system32\prntvpt.dll 2007-03-17 15:45 292864 --a------ C:\WINDOWS\system32\winsrv.dll 2007-03-08 17:39 577536 --a------ C:\WINDOWS\system32\user32.dll 2007-03-08 17:39 40960 --a------ C:\WINDOWS\system32\mf3216.dll 2007-03-08 17:39 281600 --a------ C:\WINDOWS\system32\gdi32.dll 2007-03-08 17:38 1843584 --a------ C:\WINDOWS\system32\win32k.sys 2007-02-23 11:25 888832 --a------ C:\WINDOWS\system32\nvmobls.dll 2007-02-23 11:25 81920 --a------ C:\WINDOWS\system32\nvwddi.dll 2007-02-23 11:25 81920 --a------ C:\WINDOWS\system32\nvmctray.dll 2007-02-23 11:25 806912 --a------ C:\WINDOWS\system32\nvcplui.exe 2007-02-23 11:25 7774208 --a------ C:\WINDOWS\system32\nvcpl.dll 2007-02-23 11:25 6500352 --a------ C:\WINDOWS\system32\nvoglnt.dll 2007-02-23 11:25 581632 --a------ C:\WINDOWS\system32\nvhwvid.dll 2007-02-23 11:25 5747200 --a------ C:\WINDOWS\system32\nv4_disp.dll 2007-02-23 11:25 5623808 --a------ C:\WINDOWS\system32\nvdisps.dll 2007-02-23 11:25 5246976 --a------ C:\WINDOWS\system32\nvdispsr.dll 2007-02-23 11:25 466944 --a------ C:\WINDOWS\system32\nvshell.dll 2007-02-23 11:25 458752 --a------ C:\WINDOWS\system32\nvmccssr.dll 2007-02-23 11:25 45056 --a------ C:\WINDOWS\system32\nvmccsrs.dll 2007-02-23 11:25 442368 --a------ C:\WINDOWS\system32\nvappbar.exe 2007-02-23 11:25 425984 --a------ C:\WINDOWS\system32\keystone.exe 2007-02-23 11:25 35840 --a------ C:\WINDOWS\system32\nvcodins.dll 2007-02-23 11:25 35840 --a------ C:\WINDOWS\system32\nvcod.dll 2007-02-23 11:25 335872 --a------ C:\WINDOWS\system32\nvwrses.dll 2007-02-23 11:25 335872 --a------ C:\WINDOWS\system32\nvwrsel.dll 2007-02-23 11:25 327680 --a------ C:\WINDOWS\system32\nvwrsfr.dll 2007-02-23 11:25 327680 --a------ C:\WINDOWS\system32\nvwrsesm.dll 2007-02-23 11:25 327680 --a------ C:\WINDOWS\system32\nvrsar.dll 2007-02-23 11:25 323584 --a------ C:\WINDOWS\system32\nvwrspt.dll 2007-02-23 11:25 323584 --a------ C:\WINDOWS\system32\nvwrsit.dll 2007-02-23 11:25 323584 --a------ C:\WINDOWS\system32\nvrshe.dll 2007-02-23 11:25 3211264 --a------ C:\WINDOWS\system32\nvgamesr.dll 2007-02-23 11:25 319488 --a------ C:\WINDOWS\system32\nvwrsptb.dll 2007-02-23 11:25 319488 --a------ C:\WINDOWS\system32\nvwrsnl.dll 2007-02-23 11:25 315392 --a------ C:\WINDOWS\system32\nvwrsru.dll 2007-02-23 11:25 315392 --a------ C:\WINDOWS\system32\nvwrshu.dll 2007-02-23 11:25 311296 --a------ C:\WINDOWS\system32\nvwrsde.dll 2007-02-23 11:25 3072000 --a------ C:\WINDOWS\system32\nvgames.dll 2007-02-23 11:25 307200 --a------ C:\WINDOWS\system32\nvexpbar.dll 2007-02-23 11:25 303104 --a------ C:\WINDOWS\system32\nvwrstr.dll 2007-02-23 11:25 303104 --a------ C:\WINDOWS\system32\nvwrssl.dll 2007-02-23 11:25 303104 --a------ C:\WINDOWS\system32\nvwrsfi.dll 2007-02-23 11:25 3006464 --a------ C:\WINDOWS\system32\nvvitvsr.dll 2007-02-23 11:25 299008 --a------ C:\WINDOWS\system32\nvwrssk.dll 2007-02-23 11:25 299008 --a------ C:\WINDOWS\system32\nvwrsno.dll 2007-02-23 11:25 294912 --a------ C:\WINDOWS\system32\nvwrssv.dll 2007-02-23 11:25 294912 --a------ C:\WINDOWS\system32\nvwrspl.dll 2007-02-23 11:25 294912 --a------ C:\WINDOWS\system32\nvwrsda.dll 2007-02-23 11:25 2932736 --a------ C:\WINDOWS\system32\nvvitvs.dll 2007-02-23 11:25 286720 --a------ C:\WINDOWS\system32\nvwrseng.dll 2007-02-23 11:25 286720 --a------ C:\WINDOWS\system32\nvwrscs.dll 2007-02-23 11:25 286720 --a------ C:\WINDOWS\system32\nvnt4cpl.dll 2007-02-23 11:25 2854912 --a------ C:\WINDOWS\system32\nvmoblsr.dll 2007-02-23 11:25 282624 --a------ C:\WINDOWS\system32\nvwrsar.dll 2007-02-23 11:25 282624 --a------ C:\WINDOWS\system32\nvrsfr.dll 2007-02-23 11:25 278528 --a------ C:\WINDOWS\system32\nvwrshe.dll 2007-02-23 11:25 278528 --a------ C:\WINDOWS\system32\nvrsit.dll 2007-02-23 11:25 278528 --a------ C:\WINDOWS\system32\nvrses.dll 2007-02-23 11:25 278528 --a------ C:\WINDOWS\system32\nvrsel.dll 2007-02-23 11:25 274432 --a------ C:\WINDOWS\system32\nvrsde.dll 2007-02-23 11:25 274432 --a------ C:\WINDOWS\system32\nvapi.dll 2007-02-23 11:25 270336 --a------ C:\WINDOWS\system32\nvrspt.dll 2007-02-23 11:25 270336 --a------ C:\WINDOWS\system32\nvrsnl.dll 2007-02-23 11:25 270336 --a------ C:\WINDOWS\system32\nvrsesm.dll 2007-02-23 11:25 266240 --a------ C:\WINDOWS\system32\nvrsru.dll 2007-02-23 11:25 266240 --a------ C:\WINDOWS\system32\nvrsja.dll 2007-02-23 11:25 262144 --a------ C:\WINDOWS\system32\nvrsptb.dll 2007-02-23 11:25 258048 --a------ C:\WINDOWS\system32\nvrsko.dll 2007-02-23 11:25 253952 --a------ C:\WINDOWS\system32\nvrstr.dll 2007-02-23 11:25 253952 --a------ C:\WINDOWS\system32\nvrssl.dll 2007-02-23 11:25 253952 --a------ C:\WINDOWS\system32\nvrssk.dll 2007-02-23 11:25 253952 --a------ C:\WINDOWS\system32\nvrspl.dll 2007-02-23 11:25 253952 --a------ C:\WINDOWS\system32\nvrshu.dll 2007-02-23 11:25 249856 --a------ C:\WINDOWS\system32\nvrssv.dll 2007-02-23 11:25 249856 --a------ C:\WINDOWS\system32\nvrsno.dll 2007-02-23 11:25 249856 --a------ C:\WINDOWS\system32\nvrsda.dll 2007-02-23 11:25 2465792 --a------ C:\WINDOWS\system32\nvwssr.dll 2007-02-23 11:25 245760 --a------ C:\WINDOWS\system32\nvrsfi.dll 2007-02-23 11:25 245760 --a------ C:\WINDOWS\system32\nvrseng.dll 2007-02-23 11:25 245760 --a------ C:\WINDOWS\system32\nvrscs.dll 2007-02-23 11:25 229376 --a------ C:\WINDOWS\system32\nvmccs.dll 2007-02-23 11:25 221184 --a------ C:\WINDOWS\system32\nvrszhc.dll 2007-02-23 11:25 212992 --a------ C:\WINDOWS\system32\nvwrsja.dll 2007-02-23 11:25 2043904 --a------ C:\WINDOWS\system32\nvwss.dll 2007-02-23 11:25 196608 --a------ C:\WINDOWS\system32\nvwrsko.dll 2007-02-23 11:25 188416 --a------ C:\WINDOWS\system32\nvmccss.dll 2007-02-23 11:25 168004 --a------ C:\WINDOWS\system32\nvsvc32.exe 2007-02-23 11:25 167936 --a------ C:\WINDOWS\system32\nvwrszht.dll 2007-02-23 11:25 1662976 --a------ C:\WINDOWS\system32\nvwdmcpl.dll 2007-02-23 11:25 163840 --a------ C:\WINDOWS\system32\nvwrszhc.dll 2007-02-23 11:25 1622016 --a------ C:\WINDOWS\system32\nwiz.exe 2007-02-23 11:25 147456 --a------ C:\WINDOWS\system32\nvcolor.exe 2007-02-23 11:25 1470464 --a------ C:\WINDOWS\system32\nview.dll 2007-02-23 11:25 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe 2007-02-23 11:25 122880 --a------ C:\WINDOWS\system32\nvrszht.dll 2007-02-23 11:25 1081344 --a------ C:\WINDOWS\system32\nvcpluir.dll 2007-02-23 11:25 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll 2007-02-05 22:19 185344 --a------ C:\WINDOWS\system32\upnphost.dll 2007-01-28 09:03 231000 --a------ C:\WINDOWS\system32\lvkrn14n.dll 2007-01-28 09:03 1366104 --a------ C:\WINDOWS\system32\ltwen14n.dll 2007-01-28 09:03 1328728 --a------ C:\WINDOWS\system32\ltwvc14n.dll 2007-01-28 09:02 439896 --a------ C:\WINDOWS\system32\ltkrn14n.dll 2007-01-28 09:02 267864 --a------ C:\WINDOWS\system32\ltdis14n.dll 2007-01-28 09:02 1705560 --a------ C:\WINDOWS\system32\ltclr14n.dll 2007-01-28 09:02 161368 --a------ C:\WINDOWS\system32\ltfil14n.dll 2007-01-28 09:02 157272 --a------ C:\WINDOWS\system32\ltsgm14n.dll 2007-01-28 09:02 1087064 --a------ C:\WINDOWS\system32\ltimg14n.dll 2007-01-28 09:01 58968 --a------ C:\WINDOWS\system32\lfpcx14n.dll 2007-01-28 09:01 38488 --a------ C:\WINDOWS\system32\lfwmf14n.dll 2007-01-28 09:01 34392 --a------ C:\WINDOWS\system32\lftga14n.dll 2007-01-28 09:01 181848 --a------ C:\WINDOWS\system32\lfpng14n.dll 2007-01-28 09:01 153176 --a------ C:\WINDOWS\system32\lftif14n.dll 2007-01-28 09:00 91736 --a------ C:\WINDOWS\system32\lffax14n.dll 2007-01-28 09:00 75352 --a------ C:\WINDOWS\system32\lfjbg14n.dll 2007-01-28 09:00 46680 --a------ C:\WINDOWS\system32\lfgif14n.dll 2007-01-28 09:00 140888 --a------ C:\WINDOWS\system32\lfdxf14n.dll 2007-01-28 08:59 42584 --a------ C:\WINDOWS\system32\lfbmp14n.dll 2007-01-28 08:59 423512 --a------ C:\WINDOWS\system32\lfcmw14n.dll 2007-01-28 08:59 370264 --a------ C:\WINDOWS\system32\lfcmp14n.dll 2007-01-28 04:53 593920 --a------ C:\WINDOWS\system32\ltdlgfile14n.dll 2007-01-28 04:53 45056 --a------ C:\WINDOWS\system32\ltdlgcom14n.dll 2007-01-28 04:53 110592 --a------ C:\WINDOWS\system32\ltdlgefx14n.dll 2007-01-28 04:52 864256 --a------ C:\WINDOWS\system32\ltdlgctrl14n.dll 2007-01-28 04:52 69632 --a------ C:\WINDOWS\system32\ltdlgutl14n.dll 2007-01-28 04:52 155648 --a------ C:\WINDOWS\system32\ltdlgkrn14n.dll (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects] {02478D38-C3F9-4EFB-9B51-7695ECA05670} C:\Programfiler\Yahoo!\Companion\Installs\cpn\yt.dll {53707962-6F74-2D53-2644-206D7942484F} C:\PROGRA~1\SPYBOT~1\SDHelper.dll {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} C:\Programfiler\Java\jre1.6.0_01\bin\ssv.dll {AA58ED58-01DD-4d91-8333-CF10577473F7} c:\programfiler\google\googletoolbar1.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "Norman ZANDA"="C:\\Norman\\Npm\\bin\\ZLH.EXE /LOAD /SPLASH" "RTHDCPL"="RTHDCPL.EXE" "Alcmtr"="ALCMTR.EXE" "Ai Quicker Help"="\"C:\\Programfiler\\ASUS\\ASUS DH Remote\\AsRc.exe\"" "Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" "DAEMON Tools"="\"C:\\Programfiler\\DAEMON Tools\\daemon.exe\" -lang 1033" "SunJavaUpdateSched"="\"C:\\Programfiler\\Java\\jre1.6.0_01\\bin\\jusched.exe\"" "Launch LGDCore"="\"C:\\Programfiler\\Logitech\\G-series Software\\LGDCore.exe\" /SHOWHIDE" "Launch LCDMon"="\"C:\\Programfiler\\Logitech\\G-series Software\\LCDMon.exe\"" "NVIDIA nTune"="\"C:\\Programfiler\\NVIDIA Corporation\\nTune\\nTuneCmd.exe\" clear" "NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup" "nwiz"="nwiz.exe /install" "NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="\"C:\\Programfiler\\Fellesfiler\\Ahead\\Lib\\NMBgMonitor.exe\"" "EA Core"="\"C:\\Programfiler\\Electronic Arts\\EA Link\\Core.exe\" -silent" "MsnMsgr"="\"C:\\Programfiler\\MSN Messenger\\MsnMsgr.Exe\" /background" "SUPERAntiSpyware"="C:\\Programfiler\\SUPERAntiSpyware\\SUPERAntiSpyware.exe" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"="" HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa Authentication Packages REG_MULTI_SZ msv1_0\0\0 Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0 Notification Packages REG_MULTI_SZ scecli\0\0 [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] HTTPFilter REG_MULTI_SZ HTTPFilter\0\0 LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0 NetworkService REG_MULTI_SZ DnsCache\0\0 DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0 rpcss REG_MULTI_SZ RpcSs\0\0 imgsvc REG_MULTI_SZ StiSvc\0\0 termsvcs REG_MULTI_SZ TermService\0\0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E] Shell\AutoRun\command E:\LCD.exe [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G] Shell\AutoRun\command G:\setup.exe [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H] Shell\AutoRun\command H:\autorun.exe *newlycreated* - HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\LEGACY_SASDIFSV ******************************************************************** catchme 0.3.660 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-04-27 23:27:31 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden services ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 ******************************************************************** Completion time: 07-04-27 23:27:32 C:\ComboFix-quarantined-files.txt ... 07-04-27 23:27 Edit: Kan forøvrig si at jeg såvidt prøvde Bitlord istad, men alt gikk i fullstendig slowmotion. Enda en Edit: Kan bare ha oppe ett internett vindu av gangen nå. Med en gang jeg prøver å starte en ny browser, så lukkes den jeg har oppe fra før av! Endret 27. april 2007 av Rajcapone Lenke til kommentar
norbat Skrevet 27. april 2007 Del Skrevet 27. april 2007 (endret) Loggen ser grei ut. Lukk alle programmer og prøv å kjøre rootchk.exe en gang til. Tregheten, er den kun knyttet til når du bruker internett eller er det et generelt problem? Endret 27. april 2007 av norbat Lenke til kommentar
Rajcapone Skrevet 27. april 2007 Forfatter Del Skrevet 27. april 2007 (endret) Loggen ser grei ut. Lukk alle programmer og prøv å kjøre rootchk.exe en gang til. Tregheten, er den kun knyttet til når du bruker internett eller er det et generelt problem? 8488317[/snapback] Viirker som det er kunn når det blir høy internett "opp/ned aktivitet " Prøver rootkit, men det blir bare ett "flash" så lukker det seg igjen Hvor lagrer rootkit loggen seg da? Endret 27. april 2007 av Rajcapone Lenke til kommentar
norbat Skrevet 27. april 2007 Del Skrevet 27. april 2007 Programmet åpner cmd.exe og kjører derfra. Loggen som lages ligger rett under C: (C:\rootlog.txt). Lenke til kommentar
Rajcapone Skrevet 27. april 2007 Forfatter Del Skrevet 27. april 2007 (endret) Programmet åpner cmd.exe og kjører derfra. Loggen som lages ligger rett under C: (C:\rootlog.txt). 8488413[/snapback] Oki. Ingen ting der, men fant en combofix logg til : Klikk for å se/fjerne innholdet nedenfor S›kebane Volumserienummeret er B47F-3E74 C:\QOOBOX \---Quarantine \---Registry_backups Fant ut nå at rootkit fila var blokkert. Fjernet blokkeringen, og prøver på nytt... Edit : -Mislykket Endret 27. april 2007 av Rajcapone Lenke til kommentar
norbat Skrevet 27. april 2007 Del Skrevet 27. april 2007 Det siste er ei mappe som combofix oppretter (til backup), kan slettes om du ønsker. Er litt i tvil om dette egentlig skyldes spyware...., men er det rootkit, kan det være litt pes å oppdage. La meg spørre, bruker du IE som nettleser? Hvis, så kan vi fixe div. ved å kjøre følgende fix: Hent IEreg.zip, pakk det ut på skrivebordet. Kjør fixet ved å dobbeltklikke på IEReg.bat. Restart pc'n, og sjekk om det fortsatt er problemer med flere vinduer åpne. Lenke til kommentar
Rajcapone Skrevet 27. april 2007 Forfatter Del Skrevet 27. april 2007 (endret) Det siste er ei mappe som combofix oppretter (til backup), kan slettes om du ønsker. Er litt i tvil om dette egentlig skyldes spyware...., men er det rootkit, kan det være litt pes å oppdage. La meg spørre, bruker du IE som nettleser? Hvis, så kan vi fixe div. ved å kjøre følgende fix: Hent IEreg.zip, pakk det ut på skrivebordet. Kjør fixet ved å dobbeltklikke på IEReg.bat. Restart pc'n, og sjekk om det fortsatt er problemer med flere vinduer åpne. 8488503[/snapback] Bruker IE ja. Oki da gjør vi d Edit : Får bare 1 browser opp ennå Endret 27. april 2007 av Rajcapone Lenke til kommentar
norbat Skrevet 28. april 2007 Del Skrevet 28. april 2007 (endret) Sjekk om det er noen systemfile som er litt i ulage: Klikk: Start -> Kjør Skriv: sfc /scannow (mellomrom mellom sfc og / ) Du trenger WinXp cd'n. I windows update ligger siste utgave av IE klar for nedlasting. Denne nettleseren ser litt annerledes ut, men det anbefales å benytte seg av siste versjon. ---------------------- Får du fortsatt ikke kjørt rootchk.exe? Last ned SDFix.exe. Pakk ut programmet. Restart i sikker modus (tapp f8 under oppstart) Kjør RunThis.bat i SDfix-mappa. Det lages en rapport (Report.txt) Post den sammen med en ny HTJ-logg. Endret 28. april 2007 av norbat Lenke til kommentar
Rajcapone Skrevet 28. april 2007 Forfatter Del Skrevet 28. april 2007 (endret) Sjekk om det er noen systemfile som er litt i ulage: Klikk: Start -> Kjør Skriv: sfc /scannow (mellomrom mellom sfc og / ) Du trenger WinXp cd'n. I windows update ligger siste utgave av IE klar for nedlasting. Denne nettleseren ser litt annerledes ut, men det anbefales å benytte seg av siste versjon. ---------------------- Får du fortsatt ikke kjørt rootchk.exe? Last ned SDFix.exe. Pakk ut programmet. Restart i sikker modus (tapp f8 under oppstart) Kjør RunThis.bat i SDfix-mappa. Det lages en rapport (Report.txt) Post den sammen med en ny HTJ-logg. 8490074[/snapback] Erhm Windows cd jah... Får vel kjøpe Vista snart sfc /scannow operasjonen spurte etter XP cd`n ett 20 talls ganger ang. dll filer Får fortsatt ikke kjørt Rootchk.exe SDfix logg Klikk for å se/fjerne innholdet nedenfor SDFix: Version 1.80 Run by Robin Microsoft Windows XP [Versjon 5.1.2600] Running From: C:\SDFix Safe Mode: Checking Services: Modified mswsock.dll Found! File Locations: C:\WINDOWS\system32\mswsock.dll C:\WINDOWS\system32\dllcache\mswsock.dll Infected files: Restoring Windows Registry Values Restoring Windows Default Hosts File Rebooting... Normal Mode: Checking Files: No Trojan Files Found... Removing Temp Files ADS Check: Checking if ADS is attached to system32 Folder C:\WINDOWS\system32 No streams found. Checking if ADS is attached to svchost.exe C:\WINDOWS\system32\svchost.exe No streams found. Final Check: Remaining Services: ------------------ Authorized Application Key Export: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Programfiler\\LimeWire\\LimeWire.exe"="C:\\Programfiler\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" Remaining Files: --------------- Checking For Files with Hidden Attributes: C:\Documents and Settings\Robin & Nadia\Lokale innstillinger\Programdata\Microsoft\Messenger\[email protected]\Sharing Folders\[email protected]\Thumbs.db C:\Documents and Settings\Robin & Nadia\Lokale innstillinger\Programdata\Microsoft\Messenger\[email protected]\Sharing Folders\[email protected]\Thumbs.db C:\Documents and Settings\Robin & Nadia\Lokale innstillinger\Programdata\Microsoft\Messenger\[email protected]\Sharing Folders\[email protected]\Thumbs.db C:\Documents and Settings\All Users\Programdata\PACE Anti-Piracy\AgwBE8z7JnziEx\GAp9RntbfB0.tmp Finished HJT Logg Klikk for å se/fjerne innholdet nedenfor Logfile of HijackThis v1.99.1Scan saved at 20:36:26, on 28.04.2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Norman\Npm\bin\ELOGSVC.EXE C:\Norman\Npm\Bin\Zanda.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programfiler\Lavasoft\Ad-Aware Pro\aawservice.exe C:\Norman\Npf\BIN\NPFSVICE.EXE C:\Programfiler\NVIDIA Corporation\nTune\nTuneService.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\wdfmgr.exe C:\Norman\Npm\bin\NJEEVES.EXE C:\Norman\Nvc\BIN\NVCSCHED.EXE C:\Norman\Nvc\bin\nvcoas.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\notepad.exe C:\Norman\Npm\bin\ZLH.EXE C:\WINDOWS\RTHDCPL.EXE C:\Programfiler\ASUS\ASUS DH Remote\AsRc.exe C:\Programfiler\DAEMON Tools\daemon.exe C:\Programfiler\Java\jre1.6.0_01\bin\jusched.exe C:\Programfiler\Logitech\G-series Software\LGDCore.exe C:\Programfiler\Logitech\G-series Software\LCDMon.exe C:\Norman\Nvc\BIN\NIP.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Programfiler\Fellesfiler\Ahead\Lib\NMBgMonitor.exe C:\Programfiler\MSN Messenger\MsnMsgr.Exe C:\Norman\Npf\BIN\npfmsg2.exe C:\Norman\Nvc\bin\cclaw.exe C:\Programfiler\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Programfiler\Logitech\G-series Software\Applets\LCDMedia.exe C:\Programfiler\Logitech\G-series Software\Applets\LCDClock.exe C:\Programfiler\Fellesfiler\Ahead\Lib\NMIndexStoreSvr.exe C:\WINDOWS\System32\svchost.exe C:\Programfiler\ASUS\ASUS DH Remote\AsDhRemote.exe C:\Programfiler\Internet Explorer\IEXPLORE.EXE C:\Programfiler\Logitech\SetPoint\SetPoint.exe C:\Programfiler\Fellesfiler\Logitech\KHAL\KHALMNPR.EXE C:\Program Files\HijackThis\hjtest.exe.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startsiden.no/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Programfiler\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programfiler\Fellesfiler\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre1.6.0_01\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programfiler\google\googletoolbar1.dll O4 - HKLM\..\Run: [Norman ZANDA] C:\Norman\Npm\bin\ZLH.EXE /LOAD /SPLASH O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Ai Quicker Help] "C:\Programfiler\ASUS\ASUS DH Remote\AsRc.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [DAEMON Tools] "C:\Programfiler\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Programfiler\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [Launch LGDCore] "C:\Programfiler\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE O4 - HKLM\..\Run: [Launch LCDMon] "C:\Programfiler\Logitech\G-series Software\LCDMon.exe" O4 - HKLM\..\Run: [NVIDIA nTune] "C:\Programfiler\NVIDIA Corporation\nTune\nTuneCmd.exe" clear O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programfiler\Fellesfiler\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [EA Core] "C:\Programfiler\Electronic Arts\EA Link\Core.exe" -silent O4 - HKCU\..\Run: [MsnMsgr] "C:\Programfiler\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Programfiler\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Programfiler\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Programfiler\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Programfiler\Logitech\SetPoint\SetPoint.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} - http://www.superadblocker.com/activex/sabspx.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: !SASWinLogon - C:\Programfiler\SUPERAntiSpyware\SASWINLO.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Programfiler\Lavasoft\Ad-Aware Pro\aawservice.exe O23 - Service: Norman eLogger service 6 (eLoggerSvc6) - Norman ASA - C:\Norman\Npm\bin\ELOGSVC.EXE O23 - Service: Google Updater Service (gusvc) - Google - C:\Programfiler\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Norman NJeeves - Unknown owner - C:\Norman\Npm\bin\NJEEVES.EXE O23 - Service: Norman Type-R - Unknown owner - C:\Norman\Npf\BIN\NPFSVICE.EXE O23 - Service: Norman ZANDA - Norman ASA - C:\Norman\Npm\Bin\Zanda.exe O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Programfiler\NVIDIA Corporation\nTune\nTuneService.exe O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman ASA - C:\Norman\Nvc\bin\nvcoas.exe O23 - Service: Norman Virus Control Scheduler (NVCScheduler) - Norman ASA - C:\Norman\Nvc\BIN\NVCSCHED.EXE O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe Endret 28. april 2007 av Rajcapone Lenke til kommentar
mongojarle Skrevet 28. april 2007 Del Skrevet 28. april 2007 Jeg ville høre med de du får internett fra om det er noe kryptering på nettet. Selv sitter jeg på en veldig sterk kryptering, og kommer jeg over 2mb/s ned eller opp så er CPU bruken på 100%, og alt annet går rævva tregt. Lenke til kommentar
Rajcapone Skrevet 28. april 2007 Forfatter Del Skrevet 28. april 2007 Jeg ville høre med de du får internett fra om det er noe kryptering på nettet. Selv sitter jeg på en veldig sterk kryptering, og kommer jeg over 2mb/s ned eller opp så er CPU bruken på 100%, og alt annet går rævva tregt. 8493438[/snapback] Har hatt samme nett leverandør i over 2 år, og har lastet ned over 10 Mbit/sek()fiber optikk) uten at det har vert noen problem tiligere. Så trur ikke at det er det som er problemet, med mindre di har endret noe dah. Lenke til kommentar
norbat Skrevet 28. april 2007 Del Skrevet 28. april 2007 Du kan se om du får kjørt rootchk fra sikker modus (tapp F8 under oppstart). Jeg mener problemet ditt skyldes at det er noen systemfiler som ikke fungerer optimalt. Den fila som SDfix nevner er modifisert, mswsock.dll, har tilknytning til winsock som har absolutt noe med internettilkobling å gjøre. Hvorfor den er modifisert, vet jeg ikke, men sfc kunne ha kanskje ordnet opp. "Erhm Windows cd jah... Får vel kjøpe Vista snart". Du kan låne deg en winxp cd'n (samme versjon). Men, kan jeg spørre grunnen til at du IKKE har egen Windows cd'n? Lenke til kommentar
Rajcapone Skrevet 30. april 2007 Forfatter Del Skrevet 30. april 2007 Du kan se om du får kjørt rootchk fra sikker modus (tapp F8 under oppstart). Jeg mener problemet ditt skyldes at det er noen systemfiler som ikke fungerer optimalt. Den fila som SDfix nevner er modifisert, mswsock.dll, har tilknytning til winsock som har absolutt noe med internettilkobling å gjøre. Hvorfor den er modifisert, vet jeg ikke, men sfc kunne ha kanskje ordnet opp. "Erhm Windows cd jah... Får vel kjøpe Vista snart". Du kan låne deg en winxp cd'n (samme versjon). Men, kan jeg spørre grunnen til at du IKKE har egen Windows cd'n? 8493531[/snapback] Får ikke kjørt rootchk under sikker modus heller. Har fått lånt meg en XP cd, (WinXP pro SP2) som er den versjonen jeg har innstallert. Kjøre SDfix nå? Ang at jeg ikke har windows -Er vel med meg som mange andre, som har en kompis med windows.. Lenke til kommentar
norbat Skrevet 1. mai 2007 Del Skrevet 1. mai 2007 Hvis du har winXP-cd'n prøver du å kjøre sfc /scannow Lenke til kommentar
Rajcapone Skrevet 1. mai 2007 Forfatter Del Skrevet 1. mai 2007 Hvis du har winXP-cd'n prøver du å kjøre sfc /scannow 8509476[/snapback] Sfc / scannow spør ennå etter XP cd`n ennå jeg har den i Lenke til kommentar
norbat Skrevet 2. mai 2007 Del Skrevet 2. mai 2007 Gå til windows update og sjekk for oppdateringer. Last også inn IE 7 og sjekk om du kan ha flere faner oppe. Hvis du overhode ikke liker IE 7, kan du bare avinstallere det etterpå. Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå