Søg
Avatar billede xvid Seniormester
07. februar 2004 - 21:21 Der er 6 kommentarer og
1 løsning

High Jack This

hej er der nogen der kan checke denne fin?

Logfile of HijackThis v1.97.7
Scan saved at 20:15:57, on 07-02-2004
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\UltraVNC\WinVNC.exe
C:\Programmer\XRay\xray.srv
C:\WINDOWS\Explorer.EXE
C:\Programmer\Real\RealPlayer\RealPlay.exe
C:\Programmer\QuickTime\qttask.exe
C:\PROGRA~1\WINDOW~4\WScheduler.exe
C:\Programmer\Google\ggviewer67-4.exe
C:\Programmer\EasyPHP1-7\easyphp.exe
C:\Internet gem\tips&tricks\UniqueDisplay.exe
C:\Programmer\D-Tools\daemon.exe
C:\Programmer\SlySoft\CloneCD\CloneCDTray.exe
C:\Programmer\RO2001\RO2001.exe
C:\WINDOWS\Plaxo\1.3.1.132\InstallStub.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ypager.exe
C:\Programmer\mozilla.org\Mozilla\Mozilla.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Programmer\Webroot\Spy Sweeper\SpySweeper.exe
C:\Programmer\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
C:\Programmer\AboutTime\AboutTime.exe
C:\Programmer\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
C:\WINDOWS\System32\devldr32.exe
C:\Palm\HOTSYNC.EXE
C:\Programmer\NielsenNetratings\bin\insight.exe
C:\Programmer\TechSmith\SnagIt 6\SnagIt32.exe
C:\Programmer\WinZip\WZQKPICK.EXE
C:\Programmer\Ergosensor 2.0\Ergosensor.exe
C:\Palm\HandStory.exe
C:\Programmer\IPCheck\ipcheck.exe
C:\Programmer\shortkey\SHORTKEY.EXE
C:\Programmer\OpenOffice.org1.0.3\program\soffice.exe
C:\Programmer\SpamWeasel\spamweas.exe
C:\PROGRA~1\EASYPH~1\Apache\apache.exe
C:\Programmer\Todo\todo.exe
C:\PROGRA~1\EASYPH~1\MySql\bin\mysqld.exe
C:\Programmer\shortkey\thehint.exe
C:\PROGRA~1\EASYPH~1\Apache\apache.exe
C:\Programmer\The Bat!\thebat.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Programmer\Opera7\opera.exe
C:\Programmer\Avant Browser\iexplore.exe
C:\Programmer\Avant Browser\aHTTP.exe
C:\Programmer\Maguma Studio\Maguma_Studio.exe
C:\PROGRA~1\MAGUMA~1\tools\DBGLIS~1.EXE
C:\Programmer\FileZilla\filezilla.exe
C:\Programmer\Microsoft Office\Office10\WINWORD.EXE
C:\Programmer\Bradbury\TopStyle3\TSLite3.exe
C:\PROGRA~1\WINZIP\winzip32.exe
C:\Documents and Settings\Britt Malka.SUPERFOXLADI.001\Lokale indstillinger\Temp\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.malka.it/home/britt
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8010
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = setup.msn.com;memberservices.msn.com;brand2brand.com;www.brand2brand.com;www.pcastuces.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {4E7BD74F-2B8D-469E-92EA-EC65A294AE31} - C:\WINDOWS\DOWNLO~1\ALTAVI~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Programmer\Siber Systems\AI RoboForm\RoboForm.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmer\google\googletoolbar1.dll
O3 - Toolbar: (no name) - {ACB1E670-3217-45C4-A021-6B829A8A27CB} - (no file)
O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Programmer\Copernic Agent\CopernicAgentExt.dll
O3 - Toolbar: AltaVista Toolbar - {4E7BD74F-2B8D-469E-92EA-EC65A294AE31} - C:\WINDOWS\DOWNLO~1\ALTAVI~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmer\google\googletoolbar1.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Programmer\Siber Systems\AI RoboForm\RoboForm.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [RealTray] C:\Programmer\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmer\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WScheduler] C:\PROGRA~1\WINDOW~4\WScheduler.exe /LOGON
O4 - HKLM\..\Run: [EasyPHP] "C:\Programmer\EasyPHP1-7\easyphp.exe"
O4 - HKLM\..\Run: [UniqueDisplay] C:\Internet gem\tips&tricks\UniqueDisplay.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programmer\D-Tools\daemon.exe"  -lang 1033
O4 - HKLM\..\Run: [CloneCDTray] "C:\Programmer\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [WinVNC] "C:\Programmer\UltraVNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKCU\..\Run: [RO2001] C:\Programmer\RO2001\RO2001.exe -compact
O4 - HKCU\..\Run: [PlaxoUpdate] C:\WINDOWS\Plaxo\1.3.1.132\InstallStub.exe -a
O4 - HKCU\..\Run: [Yahoo! Pager] C:\PROGRA~1\Yahoo!\MESSEN~1\ypager.exe -quiet
O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Programmer\mozilla.org\Mozilla\Mozilla.exe" -turbo
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [SpySweeper] C:\Programmer\Webroot\Spy Sweeper\SpySweeper.exe /0
O4 - HKCU\..\Run: [RoboForm] "C:\Programmer\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - Startup: Ergosensor.lnk = C:\Programmer\Ergosensor 2.0\Ergosensor.exe
O4 - Startup: HandStory.lnk = C:\Palm\HandStory.exe
O4 - Startup: IPCheck.lnk = C:\Programmer\IPCheck\ipcheck.exe
O4 - Startup: OpenOffice.org 1.0.3.lnk = C:\Programmer\OpenOffice.org1.0.3\program\quickstart.exe
O4 - Startup: ShortKeys Lite.lnk = C:\Programmer\shortkey\SHORTKEY.EXE
O4 - Startup: SpamWeasel.lnk = C:\Programmer\SpamWeasel\spamweas.exe
O4 - Startup: Todo.lnk = C:\Programmer\Todo\todo.exe
O4 - Global Startup: AboutTime.lnk = C:\Programmer\AboutTime\AboutTime.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Programmer\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Programmer\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Nielsen NetRatings.lnk = C:\Programmer\NielsenNetratings\bin\insight.exe
O4 - Global Startup: SnagIt 6.lnk = C:\Programmer\TechSmith\SnagIt 6\SnagIt32.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Programmer\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Google Search - res://C:\Programmer\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Save To Palm - C:\Palm\HandStoryME.htm
O8 - Extra context menu item: AltaVista Search - file://C:\Programmer\Dynamic Toolbar\ALTAVISTA\Cache\SelectedContextSearch.htm
O8 - Extra context menu item: Backward &Links - res://C:\Programmer\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: C&lip To Palm - C:\Palm\HandStoryMEC.htm
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Programmer\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Convert to Palm e-Book - C:\Programmer\CnPUG-WavePDB\WavePDB.htm
O8 - Extra context menu item: Gem &formularer &[ - file://C:\Programmer\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Search Using Copernic Agent - C:\Programmer\Copernic Agent\Web\SearchExt.htm
O8 - Extra context menu item: Si&milar Pages - res://C:\Programmer\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Tilpas RF menu - file://C:\Programmer\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Translate - file://C:\Programmer\Dynamic Toolbar\ALTAVISTA\Cache\SelectedContextTranslation.htm
O8 - Extra context menu item: Translate into English - res://C:\Programmer\Google\GoogleToolbar1.dll/cmtrans.html
O8 - Extra context menu item: Udfyld formularer &] - file://C:\Programmer\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Sun Java Console (HKLM)
O9 - Extra button: Adgang for alle fjernbetjening (HKLM)
O9 - Extra 'Tools' menuitem: Adgang for alle fjernbetjening (HKLM)
O9 - Extra 'Tools' menuitem: Launch Copernic Agent (HKLM)
O9 - Extra button: Udfyld (HKLM)
O9 - Extra 'Tools' menuitem: Udfyld formularer &] (HKLM)
O9 - Extra button: Gem (HKLM)
O9 - Extra 'Tools' menuitem: Gem &formularer &[ (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger (HKLM)
O9 - Extra button: ICQ Pro (HKLM)
O9 - Extra 'Tools' menuitem: ICQ (HKLM)
O9 - Extra button: Copernic Agent (HKLM)
O9 - Extra button: Save To Palm (HKLM)
O9 - Extra 'Tools' menuitem: &Save To Palm (HKLM)
O9 - Extra button: RoboForm (HKLM)
O9 - Extra 'Tools' menuitem: RF værktøjslinie &2 (HKLM)
O9 - Extra button: Girafa (HKLM)
O9 - Extra button: Related (HKLM)
O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM)
O16 - DPF: {02BED220-FBC7-4392-93A2-3A50B056F78E} - http://down.plaxo.com/down/release/instub.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://www.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://download.yahoo.com/dl/installs/yinst0309.cab
O16 - DPF: {4E7BD74F-2B8D-469E-92EA-EC65A294AE31} (AltaVista Toolbar) - http://toolbar.altavista.com/app/toolbar/cfg/altavista.cab?r=QPYOCQ
O16 - DPF: {597C45C2-2D39-11D5-8D53-0050048383FE} (OPUCatalog Class) - http://office.microsoft.com/productupdates/content/opuc.cab
O16 - DPF: {59B18099-4C1D-4A08-A9F7-ED0554006749} (Select Class) - http://shopping.jubii.dk/foto/components/photoupload.ocx
O16 - DPF: {6CB5E471-C305-11D3-99A8-000086395495} - http://toolbar.google.com/data/da/big/1.1.62-big/GoogleNav.cab
O16 - DPF: {7AEBACC1-D7E4-4360-B520-6DA4C565B42C} (UploaderCtrl Class) - http://printservice.photocare.dk/upload-classes/Uploader.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37763.0196296296
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{981BB837-ED50-437E-8937-9E4F77B88ABD}: NameServer = 192.168.1.1
Avatar billede victor-1 Nybegynder
07. februar 2004 - 21:35 #1
Start med at hente SP1, så du kan få den installeret :)
Avatar billede xvid Seniormester
07. februar 2004 - 21:38 #2
kan det ikke gøres bagefter ?
Avatar billede victor-1 Nybegynder
07. februar 2004 - 21:39 #3
Jo da, men så får du sikkert snav ind igen og kan starte forfra.
Du finder SP1a her -
http://www.microsoft.com/windowsxp/pro/downloads/servicepacks/sp1/sp1lang.asp
Avatar billede xvid Seniormester
07. februar 2004 - 21:41 #4
jeg er ved at check den for en anden
Avatar billede victor-1 Nybegynder
07. februar 2004 - 21:41 #5
Jeg henvendte mig kun i denne tråd, med hensyn til den Service Pack.
Loggen må andre kontrollere :o)
Avatar billede xvid Seniormester
07. februar 2004 - 21:43 #6
ok tak for linket
Avatar billede xvid Seniormester
07. februar 2004 - 22:38 #7
prøver en anden katergori http://www.eksperten.dk/spm/462345
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview
Kategori
Se alle it-kurser fra Computerworld Kurser
IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.
Se alle it-kurser

Flere spørgsmål fra Andet sikkerhed kategorien

Titel Indlæg Oprettet Seneste aktivitet
Mail fra Yousee ? Svindel? Af nu_igen i Andet sikkerhed 4 13/01/202617:27 14/01/202609:36
Er det sandsynligt, at jeg har været udsat for phishing Af Slettet bruger i Andet sikkerhed 4 13/11/202515:09 14/11/202510:45
Google fake Af johp i Andet sikkerhed 3 27/10/202516:31 28/10/202506:52
Generator til strømafbrydelse Af arnepedersen i Andet sikkerhed 11 06/10/202510:26 07/10/202516:37
Sophus Scan og Clean på USB- samler den "snavs" op? Af Uvanga i Andet sikkerhed 7 24/09/202522:06 25/09/202518:27
Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Opret Log ind

Du kan også logge ind via nedenstående tjenester

Alle kategorier på Eksperten
Seneste spørgsmål Seneste aktivitet
22/0120:51 Knap til ipad Af FinnLauridsen i Excel
21/0113:53 Icloud mail via Outlook Af lbc i E-mail programmer
21/0108:32 USB NØGLE gratis Af nu_igen i Andet hardware
20/0121:11 Hvordan får jeg reCAPTCHA på min hjemmeside? Af Strawberry i PHP
20/0116:10 Tomt felt i Start Af ErikHg i Windows
White papers
Flere white papers »