Charming

Medlemmer
  • Innholdsteller

    45
  • Ble med

  • Besøkte siden sist


Nettsamfunnsomdømme

0 ProPoeng

Om Charming

  • Rang
    Nyansatt

Profile Information

  • Kjønn Kvinne
  • Sted Sandefjord

Contact Methods

  • Hjemmeside http://www.home.no/charming

Charming sin aktivitet

  1. Charming la til et emne i Digital Film   

    Konvertert AVCHD til AVI. Lyd ok, bilde ubrukelig slowmotion. HJELP!
    Jeg har filmet med et kamera som gir meg AVCHD-format på videoklippene. I forbindelse med eksamen som er bakgrunnen for filmingen må jeg imidlertid konvertere filene til enten .mkv eller .avi. AVCHD-filene spiller i utgangspunktet smertefritt i Windows Media Player på PC'en. Når jeg har konvertert de er de imidlertid ubrukelige. Lyden er OK, men filene blir myye lengre - fordi bevegelsene på filmen går så sakte at det blir ingen sammenheng lengre.

    Kan noen hjelpe meg?
    Jeg har brukt Any Video Converter til å konvertere filene..
    • 1 svar
    • visninger
  2. Charming la til et innlegg i et emne Problemer med nettverket   


    Jeg ønsker å kobles til det trådløse nettverket. For å sjekke at jeg faktisk fikk koblet til på noen som helst måte, og for å få kontakt med noen som kanskje kunne hjelpe meg brukte jeg en kabel for å teste det ut. Har så klart ikke prøvd å koble til det trådløse nettverket MED kabelen i, eller omvendt
    • 0
  3. Charming la til et emne i Generelt om nettverk   

    Problemer med nettverket
    I STAD: Alt fungerte helt fint, og har vært oppegående i flere måneder nå. I stad restartet jeg dataen min, og da jeg skrudde den på igjen var alt som het nettverkskort deaktivert. Det ville heller ikke aktiveres. Etter mye knoting og frem og tilbake fikk jeg da aktivert det. Da var problemet at dataen ikke reagerte når jeg satt inn nettverkskabel for å teste ut..

    SITUASJONEN NÅ: Jeg har fått koblet til kabelen, aktivert nettverkskortet - og jeg får opp det trådløse nettverket jeg bruker. Men det står bare "kobler til...". Så står det etter en laang stund at jeg er koblet til, men det står ikke noe om begrenset tilgang, og jeg har heller ikke internett. I praksis kan jeg ikke se at jeg er koblet til på noen måte annet enn at det står så. Det er en annen data koblet opp til det samme nettverket, og der fungerer alt fint - så det er ikke PC'en. Kjører forøvrig på Win XP. Prøvd å aktivere, deaktivere, reparere.. ja gudene vet.

    HJELP? :-)
    • 3 svar
    • visninger
  4. Charming la til et emne i Annen programvare   

    Zoomenivå endrer seg auto når jeg har to fingre på touchpad samtidig. Hjelp?
    I de fleste (alle?) webbrowsere så er det jo en sånn "zoome-nivå" knapp. Hvor mange prosent av siden du skal vise. På min nye laptop Lenovo s10e - skjer det ett eller annet mystisk med dette når jeg hviler begge fingrene på touchpaden - noe jeg ofte gjør hvis jeg skriver og ikke tenker meg om. Det skjer ikke bare i IE osv. også i f.eks MSN så endrer skriftstr i vinduet seg når dette skjer. Hva er det jeg kommer borti? Er det NOE jeg kan gjøre for å fjerne denne innstillingen eller noe? Bruker ganske mye tid om dagen på å tilbakestille det greine her hele tiden..
    • 1 svar
    • visninger
  5. Charming la til et innlegg i et emne [LØST] MSN-Virus - Klarer ikke fjerne selv etter veiledning   

    Tusen takk for hjelp! Da håper jeg det løser seg det her. Kanskje det holdt med å bytte passord - hvem vet
    Men da har jeg hvertfall helgardert meg, og får håpe ingen mottar noe mer spam fra min side
    • 0
  6. Charming la til et innlegg i et emne [LØST] MSN-Virus - Klarer ikke fjerne selv etter veiledning   

    Combofix restartet maskinen selv etter den var ferdig. Og da kom det opp en melding om en eller annen fil den ikke fant mens skjermen var "sort". Whitdriv eller noe og et nr. Rakk ikke lese det.


    Combofix etter script (klikk for å vise/skjule) ComboFix 09-05-11.08 - Andersen 12.05.2009 15:34.2 - NTFSx86
    Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.47.1044.18.1022.202 [GMT 2:00]
    Kjører fra: c:\users\Andersen\Desktop\ComboFix.exe
    Command switches brukt :: c:\users\Andersen\Desktop\CFScript.txt
    AV: Norton AntiVirus *On-access scanning enabled* (Updated)
    FW: Norton Internet Security *disabled*
    .

    ((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    .
    ((((((((((((((((((((((((((((((((((((((( Drivere/Tjenester )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    -------\Service_LBLRA
    -------\Service_NNNHAK
    -------\Service_YHIZSMWQKBV


    ((((((((((((((((((((((((((( Filer Opprettet Fra 2009-04-12 til 2009-05-12 )))))))))))))))))))))))))))))))))
    .

    2009-05-12 10:54 . 2009-05-12 11:37 -------- d-----w c:\users\Andersen\HJT
    2009-05-12 10:31 . 2009-05-12 10:31 -------- d-----w c:\users\Andersen\AppData\Roaming\Malwarebytes
    2009-05-12 10:31 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
    2009-05-12 10:31 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
    2009-05-12 10:31 . 2009-05-12 10:31 -------- d-----w c:\programdata\Malwarebytes
    2009-05-12 10:31 . 2009-05-12 10:31 -------- d-----w c:\users\All Users\Malwarebytes
    2009-05-12 10:31 . 2009-05-12 10:38 -------- d-----w c:\program files\Malwarebytes' Anti-Malware
    2009-05-12 10:21 . 2009-05-12 10:21 -------- d-----w c:\program files\CCleaner
    2009-05-08 16:30 . 2008-04-17 10:12 107368 ----a-w c:\windows\system32\GEARAspi.dll
    2009-05-08 16:30 . 2009-03-19 14:32 23400 ----a-w c:\windows\system32\drivers\GEARAspiWDM.sys
    2009-05-08 16:29 . 2009-05-08 16:29 -------- d-----w c:\program files\iPod
    2009-05-08 16:29 . 2009-05-08 16:29 -------- d-----w c:\programdata\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
    2009-05-08 16:29 . 2009-05-08 16:29 -------- d-----w c:\users\All Users\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
    2009-05-08 16:29 . 2009-05-08 16:29 -------- d-----w c:\program files\iTunes
    2009-05-08 16:26 . 2009-05-08 16:26 -------- d-----w c:\program files\Bonjour
    2009-05-08 16:24 . 2009-05-08 16:25 -------- d-----w c:\program files\QuickTime
    2009-05-05 22:38 . 2009-05-08 14:30 -------- d-----w c:\users\Andersen\AppData\Roaming\LimeWire
    2009-05-05 22:32 . 2009-05-05 22:36 -------- d-----w c:\program files\LimeWire
    2009-05-04 08:24 . 2009-05-04 08:25 -------- d-----w c:\users\Andersen\AppData\Local\Google
    2009-05-04 08:23 . 2009-05-04 08:23 -------- d-----w c:\users\Andersen\AppData\Local\Apps
    2009-05-04 08:23 . 2009-05-04 08:23 -------- d-----w c:\users\Andersen\AppData\Local\Deployment
    2009-04-22 09:34 . 2009-04-22 09:35 -------- d-----w c:\users\Andersen\AppData\Roaming\Roxio
    2009-04-17 05:12 . 2008-06-06 03:27 562176 ----a-w c:\windows\system32\msdtcprx.dll
    2009-04-17 05:12 . 2008-06-06 03:27 38912 ----a-w c:\windows\system32\xolehlp.dll
    2009-04-17 05:12 . 2008-12-06 04:42 376832 ----a-w c:\windows\system32\winhttp.dll
    2009-04-17 05:10 . 2009-03-03 04:39 551424 ----a-w c:\windows\system32\rpcss.dll
    2009-04-17 05:10 . 2009-03-03 04:46 3599328 ----a-w c:\windows\system32\ntkrnlpa.exe
    2009-04-17 05:10 . 2009-03-03 04:46 3547632 ----a-w c:\windows\system32\ntoskrnl.exe
    2009-04-17 05:10 . 2009-03-03 03:04 666624 ----a-w c:\windows\system32\printfilterpipelinesvc.exe
    2009-04-17 05:10 . 2009-03-03 04:39 26112 ----a-w c:\windows\system32\printfilterpipelineprxy.dll
    2009-04-17 05:10 . 2009-03-03 04:39 183296 ----a-w c:\windows\system32\sdohlp.dll
    2009-04-17 05:10 . 2009-03-03 04:37 98304 ----a-w c:\windows\system32\iasrecst.dll
    2009-04-17 05:10 . 2009-03-03 04:37 44032 ----a-w c:\windows\system32\iasdatastore.dll
    2009-04-17 05:10 . 2009-03-03 04:37 54784 ----a-w c:\windows\system32\iasads.dll
    2009-04-17 05:10 . 2009-03-03 02:38 17408 ----a-w c:\windows\system32\iashost.exe
    2009-04-17 05:07 . 2009-02-13 08:49 1255936 ----a-w c:\windows\system32\lsasrv.dll
    2009-04-17 05:07 . 2009-02-13 08:49 72704 ----a-w c:\windows\system32\secur32.dll
    2009-04-17 05:07 . 2009-03-17 03:38 13824 ----a-w c:\windows\system32\apilogen.dll
    2009-04-17 05:07 . 2009-03-17 03:38 24064 ----a-w c:\windows\system32\amxread.dll
    2009-04-15 22:55 . 2009-04-15 23:59 -------- d-----w C:\audiograbber

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-05-12 09:19 . 2008-12-12 02:26 27620 ----a-w c:\users\Andersen\AppData\Roaming\nvModes.dat
    2009-05-08 16:29 . 2009-01-15 16:06 -------- d-----w c:\program files\Common Files\Apple
    2009-05-08 16:19 . 2006-11-02 10:25 51200 ----a-w c:\windows\inf\infpub.dat
    2009-05-08 16:19 . 2006-11-02 10:25 86016 ----a-w c:\windows\inf\infstor.dat
    2009-05-08 16:19 . 2006-11-02 10:25 143360 ----a-w c:\windows\inf\infstrng.dat
    2009-05-06 10:06 . 2009-03-05 13:31 -------- d-----w c:\program files\Opera
    2009-05-06 09:50 . 2006-11-21 05:16 76478 ----a-w c:\windows\system32\perfc014.dat
    2009-05-06 09:50 . 2006-11-21 05:16 452334 ----a-w c:\windows\system32\perfh014.dat
    2009-04-18 01:39 . 2006-11-02 11:18 -------- d-----w c:\program files\Windows Mail
    2009-04-12 11:46 . 2009-02-05 11:08 7592 ----a-w c:\users\Andersen\AppData\Local\d3d9caps.dat
    2009-04-01 22:05 . 2007-06-22 09:50 -------- d-----w c:\program files\Java
    2009-03-31 15:01 . 2009-03-31 15:00 -------- d-----w c:\program files\BitTorrent
    2009-03-31 15:01 . 2008-12-11 12:00 -------- d-----w c:\program files\DNA
    2009-03-31 15:00 . 2009-03-31 15:00 -------- d-----w c:\program files\AskBarDis
    2009-03-31 13:35 . 2009-04-24 14:01 17160 ----a-w c:\windows\Help\OEM\scripts\HC_TotalCareAdvisorUpdate.exe
    2009-03-30 15:30 . 2009-04-24 14:01 17160 ----a-w c:\windows\Help\OEM\scripts\HC_DanzkaDubraBIOSUpdate.exe
    2009-03-29 21:17 . 2009-03-29 21:17 -------- d-----r c:\program files\Skype
    2009-03-21 18:03 . 2008-12-10 15:05 -------- d-----w c:\program files\Symantec
    2009-03-21 18:02 . 2008-12-10 15:05 805 ----a-w c:\windows\system32\drivers\SYMEVENT.INF
    2009-03-21 18:02 . 2008-12-10 15:05 7386 ----a-w c:\windows\system32\drivers\SYMEVENT.CAT
    2009-03-21 18:02 . 2008-12-10 15:05 124464 ----a-w c:\windows\system32\drivers\SYMEVENT.SYS
    2009-03-20 10:45 . 2009-03-20 10:45 -------- d-----w c:\program files\Microsoft
    2009-03-20 10:44 . 2009-03-20 10:44 -------- d-----w c:\program files\Windows Live SkyDrive
    2009-03-20 10:44 . 2008-12-11 13:19 -------- d-----w c:\program files\Windows Live
    2009-03-20 09:59 . 2009-03-20 09:59 -------- d-----w c:\program files\Common Files\Windows Live
    2009-03-09 03:19 . 2009-01-24 16:53 410984 ----a-w c:\windows\system32\deploytk.dll
    2009-03-06 16:12 . 2008-04-16 13:25 21256 ----a-w c:\windows\Help\OEM\scripts\HPScript.exe
    2009-03-05 11:29 . 2009-03-13 14:30 16648 ----a-w c:\windows\Help\OEM\scripts\HC_ProtectSmartPatch.exe
    2009-03-03 04:40 . 2009-04-17 05:09 827392 ----a-w c:\windows\system32\wininet.dll
    2009-03-03 04:37 . 2009-04-17 05:09 78336 ----a-w c:\windows\system32\ieencode.dll
    2009-03-03 02:28 . 2009-04-17 05:09 26624 ----a-w c:\windows\system32\ieUnatt.exe
    2009-02-27 11:02 . 2008-12-10 15:05 25136 ----a-r c:\windows\system32\drivers\SymIMV.sys
    2009-02-21 15:17 . 2009-02-21 14:42 1053 ----a-w c:\windows\eReg.dat
    2008-12-30 21:00 . 2006-11-02 12:50 174 --sha-w c:\program files\desktop.ini
    .

    ((((((((((((((((((((((((((((( SnapShot@2009-05-12_11.27.42 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2009-05-12 13:48 . 2009-05-12 13:48 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    - 2009-04-18 01:43 . 2009-05-08 16:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    + 2009-05-12 13:48 . 2009-05-12 13:48 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    - 2009-04-18 01:43 . 2009-05-08 16:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    .
    (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke
    REGEDIT4

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
    2008-09-29 15:24 325000 ----a-w c:\program files\AskBarDis\bar\bin\askBar.dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-09-29 325000]

    [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
    [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
    "LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-10-18 455968]
    "BitTorrent DNA"="c:\users\Andersen\Program Files\DNA\btdna.exe" [2008-12-12 342848]
    "msnmsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-02-06 3885400]
    "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
    "Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-03-11 24095528]
    "Google Update"="c:\users\Andersen\AppData\Local\Google\Update\GoogleUpdate.exe" [2009-05-04 133104]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-03-28 1045800]
    "QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2007-04-23 176128]
    "HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-06-16 75008]
    "CognizanceTS"="c:\progra~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll" [2003-12-22 17920]
    "hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-10-03 480560]
    "QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-08-01 202032]
    "SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-09-14 102400]
    "HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
    "NvSvc"="c:\windows\system32\nvsvc.dll" [2007-09-19 86016]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-09-19 8497696]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-09-19 81920]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
    "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-04-02 342312]

    c:\users\Andersen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\windows\System32\APSHook.dll

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Notification Packages REG_MULTI_SZ scecli ASWLNPkg

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
    @="FSFilter Activity Monitor"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
    @="Driver"

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
    "{D92D1A50-E7D9-4D85-AEAE-748E5D6553A8}"= c:\program files\HP\QuickPlay\QP.exe:Quick Play
    "{712AB7A2-EEC2-46C6-AE72-0B0882FCD9AD}"= c:\program files\HP\QuickPlay\QPService.exe:Quick Play Resident Program
    "TCP Query User{FC58AD16-7E71-42B1-86A2-16A1E982083D}c:\\program files\\bittorrent\\bittorrent.exe"= UDP:c:\program files\bittorrent\bittorrent.exe:BitTorrent
    "UDP Query User{BAB7F437-610F-45A3-85CE-74C11B317539}c:\\program files\\bittorrent\\bittorrent.exe"= TCP:c:\program files\bittorrent\bittorrent.exe:BitTorrent
    "TCP Query User{6611659A-D86F-42BE-9CF0-D9C0A47E7D1C}c:\\windows\\system32\\mstsc.exe"= UDP:c:\windows\system32\mstsc.exe:Tilkobling til eksternt skrivebord
    "UDP Query User{18D94AC3-54DF-4B6C-AFC3-3FD647F73E51}c:\\windows\\system32\\mstsc.exe"= TCP:c:\windows\system32\mstsc.exe:Tilkobling til eksternt skrivebord
    "TCP Query User{AF6C5185-40E0-484F-B400-FF59BE37F6AF}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "UDP Query User{DB90FE96-0B33-4721-BC1C-BF2E7A1FB27B}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "TCP Query User{88D82179-BAF7-460E-A09A-3F757E2E5647}c:\\program files\\amsn\\bin\\wish.exe"= UDP:c:\program files\amsn\bin\wish.exe:Wish Application
    "UDP Query User{EBBFE27B-EDC2-4166-9E61-A371F801CB40}c:\\program files\\amsn\\bin\\wish.exe"= TCP:c:\program files\amsn\bin\wish.exe:Wish Application
    "TCP Query User{ED167C3D-F622-49AB-98BE-27D741CFBA60}c:\\program files\\mirc\\mirc.exe"= UDP:c:\program files\mirc\mirc.exe:mIRC
    "UDP Query User{25FAD6C6-7626-4C4F-8A31-689134B92F28}c:\\program files\\mirc\\mirc.exe"= TCP:c:\program files\mirc\mirc.exe:mIRC
    "TCP Query User{B962DB26-2AA7-4081-9F57-F3DB1F1ADD1F}c:\\program files\\spotify\\spotify.exe"= UDP:c:\program files\spotify\spotify.exe:Spotify
    "UDP Query User{50BF6260-BADA-4BA2-930A-7012AB3C044F}c:\\program files\\spotify\\spotify.exe"= TCP:c:\program files\spotify\spotify.exe:Spotify
    "{06651CBB-AD40-41A9-9477-31F720C7F6AE}"= c:\program files\Skype\Phone\Skype.exe:Skype
    "{019B3556-D3F2-4C4D-9618-34C028A181A6}"= UDP:c:\program files\DNA\btdna.exe:DNA (TCP-In)
    "{9E3F54A2-5457-44F0-BDB5-F44A9BD83C44}"= TCP:c:\program files\DNA\btdna.exe:DNA (UDP-In)
    "TCP Query User{217D5390-34D4-4CB5-B866-0B3C2CA3E0C1}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "UDP Query User{B643325E-7CFD-48BD-A5BB-8D70C7668062}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "TCP Query User{A81868D7-1077-4574-B40C-585A996CA142}c:\\program files\\spotify\\spotify.exe"= UDP:c:\program files\spotify\spotify.exe:Spotify
    "UDP Query User{05421FE6-3C3A-47F2-A873-2C4CC6C561B5}c:\\program files\\spotify\\spotify.exe"= TCP:c:\program files\spotify\spotify.exe:Spotify
    "{11E72D38-1121-41CA-ACA3-845811F0C3D8}"= UDP:c:\program files\LimeWire\LimeWire.exe:LimeWire
    "{871AEE1B-FD52-4DE7-AEF5-1E24B152ABFB}"= TCP:c:\program files\LimeWire\LimeWire.exe:LimeWire
    "{ABDC0081-4A95-4D28-BCD4-357F3F9A3157}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
    "{49E2F48F-7F4F-4B99-8783-6414CD68CE73}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
    "{298F4610-541E-40D4-AF9B-6363A329858A}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
    "{23FA3139-8592-4C2F-BF5C-83A49F4D8AC8}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
    "c:\\Program Files\\BitTorrent\\bittorrent.exe"= c:\program files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent

    R0 SymEFA;Symantec Extended File Attributes;c:\windows\System32\drivers\NAV\1005000.086\SymEFA.sys [21.03.2009 20:02 310320]
    R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\System32\drivers\NAV\1005000.086\BHDrvx86.sys [21.03.2009 20:02 258608]
    R1 ccHP;Symantec Hash Provider;c:\windows\System32\drivers\NAV\1005000.086\cchpx86.sys [21.03.2009 20:02 482352]
    R1 IDSVix86;IDSVix86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090508.002\IDSvix86.sys [08.05.2009 22:23 292912]
    R2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [17.12.2008 17:03 21504]
    R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [17.12.2008 17:03 21504]
    R2 Norton AntiVirus;Norton AntiVirus;c:\program files\Norton AntiVirus\Engine\16.5.0.134\ccSvcHst.exe [21.03.2009 20:02 115560]
    R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [11.12.2008 12:13 193840]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [26.02.2009 10:30 101936]
    R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\System32\drivers\NAV\1005000.086\symndisv.sys [21.03.2009 20:02 39984]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    Cognizance REG_MULTI_SZ ASBroker ASChannel

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
    \shell\AutoRun\command - f:\wd_windows_tools\WDSetup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{17099d58-db4f-11dd-a36d-001b248812a2}]
    \shell\AutoRun\command - f:\wd_windows_tools\WDSetup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53650106-eb2b-11dd-b266-001b248812a2}]
    \shell\AutoRun\command - F:\AutoRun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53650122-eb2b-11dd-b266-001b248812a2}]
    \shell\AutoRun\command - F:\AutoRun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53650127-eb2b-11dd-b266-001b248812a2}]
    \shell\AutoRun\command - F:\AutoRun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53650134-eb2b-11dd-b266-001b248812a2}]
    \shell\AutoRun\command - F:\AutoRun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{aef77447-c770-11dd-981c-001b248812a2}]
    \shell\AutoRun\command - F:\Launch.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
    "c:\program files\Common Files\LightScribe\LSRunOnce.exe"
    .
    Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)

    2009-05-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1467269751-128970365-2921028683-1000.job
    - c:\users\Andersen\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-04 08:24]
    .
    .
    ------- Tilleggsskanning -------
    .
    uStart Page = hxxp://www.google.com/
    mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=NB_NO&c=73&bd=Pavilion&pf=laptop
    uInternet Settings,ProxyOverride = *.local
    IE: E&ksporter til Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
    .

    **************************************************************************

    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-05-12 15:50
    Windows 6.0.6001 Service Pack 1 NTFS

    skanner skjulte prosesser ...

    skanner skjulte autostart-oppføringer ...

    skanner skjulte filer ...

    skanning vellykket
    skjulte filer: 0

    **************************************************************************

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Norton AntiVirus]
    "ImagePath"="\"c:\program files\Norton AntiVirus\Engine\16.5.0.134\ccSvcHst.exe\" /s \"Norton AntiVirus\" /m \"c:\program files\Norton AntiVirus\Engine\16.5.0.134\diMaster.dll\" /prefetch:1"
    .
    --------------------- LÅSTE REGISTERNØKLER ---------------------

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    --------------------- DLL'er Lastet Av Kjørende Prosesser ---------------------

    - - - - - - - > 'lsass.exe'(652)
    c:\program files\Bioscrypt\VeriSoft\bin\ASWLNPkg.dll
    c:\program files\Bioscrypt\VeriSoft\bin\ItMsg.dll

    - - - - - - - > 'Explorer.exe'(5700)
    c:\windows\system32\APSHook.dll
    c:\program files\Bioscrypt\VeriSoft\Bin\ItClient.dll
    .
    ------------------------ Andre Kjørende Prosesser ------------------------
    .
    c:\windows\System32\audiodg.exe
    c:\windows\System32\wlanext.exe
    c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    c:\program files\Bonjour\mDNSResponder.exe
    c:\program files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
    c:\program files\Bioscrypt\VeriSoft\Bin\asghost.exe
    c:\program files\Common Files\LightScribe\LSSrvc.exe
    c:\program files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
    c:\windows\System32\drivers\XAudio.exe
    c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
    c:\windows\System32\conime.exe
    c:\windows\System32\rundll32.exe
    c:\windows\System32\rundll32.exe
    c:\windows\ehome\ehmsas.exe
    c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
    c:\program files\Hewlett-Packard\Shared\HpqToaster.exe
    c:\program files\Synaptics\SynTP\SynTPHelper.exe
    c:\program files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
    c:\program files\iPod\bin\iPodService.exe
    .
    **************************************************************************
    .
    Tidspunkt ferdig: 2009-05-12 15:56 - maskinen ble startet på nytt
    ComboFix-quarantined-files.txt 2009-05-12 13:56
    ComboFix2.txt 2009-05-12 11:33

    Pre-Run: 19 468 730 368 byte ledig
    Post-Run: 19 870 732 288 byte ledig

    293 --- E O F --- 2009-05-02 01:03


    • 0
  7. Charming la til et innlegg i et emne [LØST] MSN-Virus - Klarer ikke fjerne selv etter veiledning   

    Nå har jeg gjort alt som står i den veiledningen. Men loggene er jo eviglange da - det må sies. Jeg poster det her, så slipper jeg bry folk med ENDA en tråd ang problemet mitt. Ok?
    Skrevet Malvarebyte, Combofix og Hijackthis med fet skrift så dere har sjans til å finne det litt fort. Håper dere kan hjelpe

    Malvarebyte fant ingen infiserte filer eller feil.

    Minneprosesser infisert: 0
    Minnemoduler infisert: 0
    Registernøkler infisert: 0
    Registerverdier infisert: 0
    Registerfiler infisert: 0
    Mapper infisert: 0
    Filer infisert: 0


    Combofix-teksten:


    (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke
    REGEDIT4

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
    2008-09-29 15:24 325000 ----a-w c:\program files\AskBarDis\bar\bin\askBar.dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-09-29 325000]

    [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
    [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
    "LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-10-18 455968]
    "BitTorrent DNA"="c:\users\Andersen\Program Files\DNA\btdna.exe" [2008-12-12 342848]
    "msnmsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-02-06 3885400]
    "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
    "Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-03-11 24095528]
    "Google Update"="c:\users\Andersen\AppData\Local\Google\Update\GoogleUpdate.exe" [2009-05-04 133104]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-03-28 1045800]
    "QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2007-04-23 176128]
    "HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-06-16 75008]
    "CognizanceTS"="c:\progra~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll" [2003-12-22 17920]
    "hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-10-03 480560]
    "QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-08-01 202032]
    "SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2007-09-14 102400]
    "HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
    "NvSvc"="c:\windows\system32\nvsvc.dll" [2007-09-19 86016]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-09-19 8497696]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-09-19 81920]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
    "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-04-02 342312]

    c:\users\Andersen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\windows\System32\APSHook.dll

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Notification Packages REG_MULTI_SZ scecli ASWLNPkg

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
    @="FSFilter Activity Monitor"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
    @="Driver"

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
    "{D92D1A50-E7D9-4D85-AEAE-748E5D6553A8}"= c:\program files\HP\QuickPlay\QP.exe:Quick Play
    "{712AB7A2-EEC2-46C6-AE72-0B0882FCD9AD}"= c:\program files\HP\QuickPlay\QPService.exe:Quick Play Resident Program
    "TCP Query User{FC58AD16-7E71-42B1-86A2-16A1E982083D}c:\\program files\\bittorrent\\bittorrent.exe"= UDP:c:\program files\bittorrent\bittorrent.exe:BitTorrent
    "UDP Query User{BAB7F437-610F-45A3-85CE-74C11B317539}c:\\program files\\bittorrent\\bittorrent.exe"= TCP:c:\program files\bittorrent\bittorrent.exe:BitTorrent
    "TCP Query User{6611659A-D86F-42BE-9CF0-D9C0A47E7D1C}c:\\windows\\system32\\mstsc.exe"= UDP:c:\windows\system32\mstsc.exe:Tilkobling til eksternt skrivebord
    "UDP Query User{18D94AC3-54DF-4B6C-AFC3-3FD647F73E51}c:\\windows\\system32\\mstsc.exe"= TCP:c:\windows\system32\mstsc.exe:Tilkobling til eksternt skrivebord
    "TCP Query User{AF6C5185-40E0-484F-B400-FF59BE37F6AF}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "UDP Query User{DB90FE96-0B33-4721-BC1C-BF2E7A1FB27B}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "TCP Query User{88D82179-BAF7-460E-A09A-3F757E2E5647}c:\\program files\\amsn\\bin\\wish.exe"= UDP:c:\program files\amsn\bin\wish.exe:Wish Application
    "UDP Query User{EBBFE27B-EDC2-4166-9E61-A371F801CB40}c:\\program files\\amsn\\bin\\wish.exe"= TCP:c:\program files\amsn\bin\wish.exe:Wish Application
    "TCP Query User{ED167C3D-F622-49AB-98BE-27D741CFBA60}c:\\program files\\mirc\\mirc.exe"= UDP:c:\program files\mirc\mirc.exe:mIRC
    "UDP Query User{25FAD6C6-7626-4C4F-8A31-689134B92F28}c:\\program files\\mirc\\mirc.exe"= TCP:c:\program files\mirc\mirc.exe:mIRC
    "TCP Query User{B962DB26-2AA7-4081-9F57-F3DB1F1ADD1F}c:\\program files\\spotify\\spotify.exe"= UDP:c:\program files\spotify\spotify.exe:Spotify
    "UDP Query User{50BF6260-BADA-4BA2-930A-7012AB3C044F}c:\\program files\\spotify\\spotify.exe"= TCP:c:\program files\spotify\spotify.exe:Spotify
    "{06651CBB-AD40-41A9-9477-31F720C7F6AE}"= c:\program files\Skype\Phone\Skype.exe:Skype
    "{019B3556-D3F2-4C4D-9618-34C028A181A6}"= UDP:c:\program files\DNA\btdna.exe:DNA (TCP-In)
    "{9E3F54A2-5457-44F0-BDB5-F44A9BD83C44}"= TCP:c:\program files\DNA\btdna.exe:DNA (UDP-In)
    "TCP Query User{217D5390-34D4-4CB5-B866-0B3C2CA3E0C1}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "UDP Query User{B643325E-7CFD-48BD-A5BB-8D70C7668062}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
    "TCP Query User{A81868D7-1077-4574-B40C-585A996CA142}c:\\program files\\spotify\\spotify.exe"= UDP:c:\program files\spotify\spotify.exe:Spotify
    "UDP Query User{05421FE6-3C3A-47F2-A873-2C4CC6C561B5}c:\\program files\\spotify\\spotify.exe"= TCP:c:\program files\spotify\spotify.exe:Spotify
    "{11E72D38-1121-41CA-ACA3-845811F0C3D8}"= UDP:c:\program files\LimeWire\LimeWire.exe:LimeWire
    "{871AEE1B-FD52-4DE7-AEF5-1E24B152ABFB}"= TCP:c:\program files\LimeWire\LimeWire.exe:LimeWire
    "{ABDC0081-4A95-4D28-BCD4-357F3F9A3157}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
    "{49E2F48F-7F4F-4B99-8783-6414CD68CE73}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
    "{298F4610-541E-40D4-AF9B-6363A329858A}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
    "{23FA3139-8592-4C2F-BF5C-83A49F4D8AC8}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
    "c:\\Program Files\\BitTorrent\\bittorrent.exe"= c:\program files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent

    R0 SymEFA;Symantec Extended File Attributes;c:\windows\System32\drivers\NAV\1005000.086\SymEFA.sys [21.03.2009 20:02 310320]
    R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\System32\drivers\NAV\1005000.086\BHDrvx86.sys [21.03.2009 20:02 258608]
    R1 ccHP;Symantec Hash Provider;c:\windows\System32\drivers\NAV\1005000.086\cchpx86.sys [21.03.2009 20:02 482352]
    R1 IDSVix86;IDSVix86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090508.002\IDSvix86.sys [08.05.2009 22:23 292912]
    R2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe -k Cognizance [17.12.2008 17:03 21504]
    R2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe -k Cognizance [17.12.2008 17:03 21504]
    R2 Norton AntiVirus;Norton AntiVirus;c:\program files\Norton AntiVirus\Engine\16.5.0.134\ccSvcHst.exe [21.03.2009 20:02 115560]
    R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [11.12.2008 12:13 193840]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [26.02.2009 10:30 101936]
    R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\System32\drivers\NAV\1005000.086\symndisv.sys [21.03.2009 20:02 39984]
    S3 LBLRA;LBLRA;c:\users\Andersen\AppData\Local\Temp\LBLRA.exe --> c:\users\Andersen\AppData\Local\Temp\LBLRA.exe [?]
    S3 NNNHAK;NNNHAK;c:\users\Andersen\AppData\Local\Temp\NNNHAK.exe --> c:\users\Andersen\AppData\Local\Temp\NNNHAK.exe [?]
    S3 YHIZSMWQKBV;YHIZSMWQKBV;c:\users\Andersen\AppData\Local\Temp\YHIZSMWQKBV.exe --> c:\users\Andersen\AppData\Local\Temp\YHIZSMWQKBV.exe [?]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    Cognizance REG_MULTI_SZ ASBroker ASChannel

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
    \shell\AutoRun\command - f:\wd_windows_tools\WDSetup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{17099d58-db4f-11dd-a36d-001b248812a2}]
    \shell\AutoRun\command - f:\wd_windows_tools\WDSetup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53650106-eb2b-11dd-b266-001b248812a2}]
    \shell\AutoRun\command - F:\AutoRun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53650122-eb2b-11dd-b266-001b248812a2}]
    \shell\AutoRun\command - F:\AutoRun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53650127-eb2b-11dd-b266-001b248812a2}]
    \shell\AutoRun\command - F:\AutoRun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{53650134-eb2b-11dd-b266-001b248812a2}]
    \shell\AutoRun\command - F:\AutoRun.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{aef77447-c770-11dd-981c-001b248812a2}]
    \shell\AutoRun\command - F:\Launch.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
    "c:\program files\Common Files\LightScribe\LSRunOnce.exe"
    .
    Innholdet i mappen 'Scheduled Tasks' (planlagte oppgaver)

    2009-05-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1467269751-128970365-2921028683-1000.job
    - c:\users\Andersen\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-04 08:24]
    .
    .
    HIJACKTHIS:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:37:21, on 12.05.2009
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18226)
    Boot mode: Normal

    Running processes:
    c:\Program Files\Bioscrypt\VeriSoft\Bin\AsGHost.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\HP\QuickPlay\QPService.exe
    C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
    C:\Users\Andersen\Program Files\DNA\btdna.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Users\Andersen\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\WINDOWS\System32\rundll32.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
    C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\wuauclt.exe
    C:\Windows\Explorer.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Andersen\HJT\Test.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: Koblingshjelpeprogram for Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
    O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\16.5.0.134\IPSBHO.DLL
    O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: VeriSoft Access Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Bioscrypt\VeriSoft\Bin\ItIEAddIn.dll
    O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
    O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
    O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
    O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll,RegisterModule
    O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [synTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
    O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Users\Andersen\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Andersen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Oppslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
    O13 - Gopher Prefix:
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.1...toUploader5.cab
    O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - https://s011ld003.wideroe.no/iNotes6W.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/...NPUpldnb-no.cab
    O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab
    O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.fotoknudsen.no/upload/ImageUploader5.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab
    O20 - AppInit_DLLs: C:\WINDOWS\System32\APSHook.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Bonjour-tjeneste (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
    O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LBLRA - Unknown owner - C:\Users\Andersen\AppData\Local\Temp\LBLRA.exe (file missing)
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: NNNHAK - Unknown owner - C:\Users\Andersen\AppData\Local\Temp\NNNHAK.exe (file missing)
    O23 - Service: Norton AntiVirus - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\16.5.0.134\ccSvcHst.exe
    O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
    O23 - Service: YHIZSMWQKBV - Unknown owner - C:\Users\Andersen\AppData\Local\Temp\YHIZSMWQKBV.exe (file missing)
    • 0
  8. Charming la til et emne i Løst og inaktive saker   

    [LØST] MSN-Virus - Klarer ikke fjerne selv etter veiledning
    Hei,

    Jeg har fått et msn-virus. Jeg tenkte meg ikke om og trykket på en link til noe jeg trodde var ett bilde og var SÅ nysgjerrig at jeg registrerte meg på noe jeg trodde var en MSN-side.

    Uansett. Rootkit Revealer vil ikke kjøre på dataen min. MSN Virus Remover finner ingenting. Norton finner ingenting. Jeg forsøkte den veiledningen fra IT-pro http://itpro.no/art/12038.html <-- hvor man skulle fjerne filene. Men de filene som de henviser til. De har jeg altså ikke ser det ut til.


    Jeg har glemt mye av kunnskapen min når det gjelder PC, so keep it simpel.

    Charming.
    • 9 svar
    • visninger
  9. Charming la til et emne i Windows   

    Videoavspilling
    Jeg har nettopp fått Windows Vista Home Premium, og skulle prøve å spille av video i Windows Media Player. Jeg får lyd, men ikke bilde. Har nødvendige kodek osv. Også prøvd i Winamp, men samme problem oppstår. Lyd men intet bilde. Prøvd med diverse ulike videoer, så det er ikke filen det er noe feil med. Det fungerer med vanlig DVD'er jeg putter inn i maskinen, så det er trolig AVI eller Divx formatet jeg sliter med.

    Hjelp?
    • 2 svar
    • visninger
  10. Charming la til et innlegg i et emne Adobe Reader/Acrobat   

    Litt av poenget her var at jeg ville maile de tilbake.
    • 0
  11. Charming la til et innlegg i et emne Adobe Reader/Acrobat   

    Så jeg kan ikke gjøre NOE for å få fylt ut papirene via dataen ?
    • 0
  12. Charming la til et emne i Annen programvare   

    Adobe Reader/Acrobat
    Jeg har noen papirer (.PDF), med plass til utfylling. (Kan så klart printe ut og sende via post, men er jo enklere på nettet). Har Adobe Reader og Acrobat og god knows, men jeg klarer likevel ikke å skrive inn i dokumentet. Noen som kan hjelpe?
    • 10 svar
    • visninger
  13. Charming la til et emne i Generelt om nettverk   

    Kryptering av Trådløst LAN
    Hvordan krypterer jeg SMC Router i trådløst hjemmenettverk?


    Cathrine.
    • 9 svar
    • visninger
  14. Charming la til et innlegg i et emne "Programmet svarer ikke"   

    Det går ikke over tid, det tar maks 5 sekunder så er det "klikk" :\
    • 0
  15. Charming la til et emne i Virus og antivirus   

    "Programmet svarer ikke"
    Siste tiden får jeg "Det har oppstått en feil/Programmet svarer ikke og må avsluttes", så klikker hele programmet og henger seg. Dette virker som det skjer med de programmene jeg har hatt åpne i en viss periode. Bl. a Winamp, IE, Windows Live Messenger, AD Aware henger seg ved ett visst antall feil etc etc. Jeg har en Rescue CD jeg skulle bruke for å fikse opp her og, og den nektet å starte denne og. Samme feilmelding.

    Andre som har vært borti dette? What to do? (Har ett håp om å slippe format C:)
    • 5 svar
    • visninger