Notifikationer

Markér alle som læst Log ud

urup Nybegynder

25. februar 2007 - 00:39 Der er 14 kommentarer og
1 løsning

Fryser og kan ikke gøre noget

Min pc fryser når jeg er på nette efter 10-30 min...kan kun gøre en ting...slukke for strømmen til pcen.

Hvad kan jeg gøre ???

Synes godt om

levich Nybegynder

25. februar 2007 - 00:42 #1

Hent http://www.spychecker.com/program/hijackthis.html.
Kør HijackThis, klik på scan, kopier loggens tekst og smidt den herind.

Synes godt om

urup Nybegynder

25. februar 2007 - 00:55 #2

Logfile of HijackThis v1.99.1
Scan saved at 00:54:41, on 25-02-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\ccProxy.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
C:\Programmer\Norton Internet Security\ISSVC.exe
C:\Programmer\Fælles filer\Symantec Shared\SNDSrvc.exe
C:\Programmer\Fælles filer\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Programmer\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Programmer\Norton Utilities\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmer\Speed Disk\nopdb.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Programmer\RealVNC\VNC4\WinVNC4.exe
C:\Programmer\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\FLLESF~1\XCPCSync\TRANSL~1\ErPhn2\ErTray.exe
C:\Programmer\SlySoft\CloneCD\CloneCDTray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programmer\Qxl Ricardo\Qxl Ricardo Tools\QXLDeamon.exe
C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe
C:\Programmer\D-Tools\daemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\SONYER~1\Mobile\MOBILE~1\EPMWOR~1.EXE
C:\Programmer\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Programmer\Norton Utilities\SYSDOC32.EXE
C:\Programmer\Fælles filer\Sonic Shared\cinetray.exe
C:\Programmer\SpywareGuard\sgmain.exe
C:\Programmer\SpywareGuard\sgbhp.exe
C:\Programmer\MSN Messenger\msnmsgr.exe
C:\Programmer\Messenger\msmsgs.exe
C:\Documents and Settings\abc123\Skrivebord\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Programmer\SpywareGuard\dlprotect.dll
O3 - Toolbar: Qxl Ricardo Toolbar - {DAA9F4A6-996D-44d7-AE05-E5449D517DF6} - C:\PROGRA~1\QXLRIC~1\QXLRIC~1\QXLTOO~1.DLL
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Programmer\Fælles filer\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmer\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmer\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [CloneDVDElbyDelay] "C:\Programmer\Elaborate Bytes\CloneDVD\ElbyCheck.exe" /L ElbyDelay
O4 - HKLM\..\Run: [ElbyCheckAnyDVD] "C:\Programmer\SlySoft\AnyDVD\ElbyCheck.exe" /L AnyDVD
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [XTNDConnect PC - ErPhn2] C:\PROGRA~1\FLLESF~1\XCPCSync\TRANSL~1\ErPhn2\ErTray.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Programmer\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [QXLDeamon] C:\Programmer\Qxl Ricardo\Qxl Ricardo Tools\QXLDeamon.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programmer\D-Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Programmer\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - Startup: SpywareGuard.lnk = C:\Programmer\SpywareGuard\sgmain.exe
O4 - Global Startup: Adobe Reader Hurtigstart.lnk = C:\Programmer\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Norton System Doctor.lnk = C:\Programmer\Norton Utilities\SYSDOC32.EXE
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = ?
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_11\bin\npjpi150_11.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_11\bin\npjpi150_11.dll
O9 - Extra button: Opslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O12 - Plugin for .UVR: C:\Programmer\Internet Explorer\Plugins\NPUPano.dll
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://downol.dr.dk/download/netradio/Rawflow.cab
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/SSC/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {3D6DDD23-870A-4FC8-B3AF-5F67C935A9B7} (Util Class) - https://udstedelse.certifikat.tdc.dk/csp/authenticode/PrimeInkCSP-1204.exe
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab
O16 - DPF: {EF81B8CF-FCB2-11D2-A9DE-00C0268E5C48} (Matchware Download Manager) - http://www.vvsu.dk/energi/MwDownload.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Automatisk LiveUpdate-planlægning - Symantec Corporation - C:\Programmer\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmer\Fælles filer\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Programmer\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect-tjeneste (navapsvc) - Symantec Corporation - C:\Programmer\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Programmer\Norton Utilities\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Programmer\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FLLESF~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\Programmer\Speed Disk\nopdb.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Programmer\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

Synes godt om

levich Nybegynder

25. februar 2007 - 01:06 #3

Øjeblik, jeg ser på det.

Synes godt om

urup Nybegynder

25. februar 2007 - 01:07 #4

Skønt

Synes godt om

levich Nybegynder

25. februar 2007 - 01:21 #5

Læs alle punkterne inden du gør noget.

(1)
Hent AVG Anti-Spyware her: http://www.ewido.net/en/download.
Installer programmer og opdater det, men vent med at scanne.

(2)
Genstart computeren i fejlsikret tilstand (tryk F8 når Windows starter op), og fix følgende linjer med HijackThis:
O3 - Toolbar: Qxl Ricardo Toolbar - {DAA9F4A6-996D-44d7-AE05-E5449D517DF6} - C:\PROGRA~1\QXLRIC~1\QXLRIC~1\QXLTOO~1.DLL

(3)
Scan med AVG Anti-Spyware, fix de ting som den finder og gem loggen, f.eks. på skrivebordet.

(4)
Åbn "denne computer", i menuen skal du klikke på Funktioner -> Mappeindstillinger -> Vis.
Fjern flueben ved "Skjul beskyttede operativsystemfiler" og ved "Skjul filtypenavne for kendte filtyper", sæt prik i "Vis skjulte filer og mapper". Husk at trykke på knappen "Anvend på alle mapper" i stedet for "ok".

søg efter og slet følgende mappe(r):
C:\PROGRA~1\QXLRIC~1\

(5)
Start -> kør -> skriv "cleanmgr" -> Slet Temporary internet files, papirkurv og midlertidige filer. Gentag for alle dine drev.

(6)
Genstart computeren normalt. Lav en ny log med HijackThis, og send den herind sammen med loggen fra AVG Anti-Spyware.

Synes godt om

levich Nybegynder

25. februar 2007 - 01:23 #6

Det tager nogen tid at komme igennem punkter og jeg er på vej i seng. Vi snakkes videre i morgen.

Synes godt om

urup Nybegynder

25. februar 2007 - 01:27 #7

tak...sov godt

Synes godt om

urup Nybegynder

25. februar 2007 - 09:32 #8

Godmorgen du ......Håber du har sovet godt *s*

Logfile of HijackThis v1.99.1
Scan saved at 09:31:23, on 25-02-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\ccProxy.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
C:\Programmer\Norton Internet Security\ISSVC.exe
C:\Programmer\Fælles filer\Symantec Shared\SNDSrvc.exe
C:\Programmer\Fælles filer\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Programmer\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Programmer\Norton Utilities\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmer\Speed Disk\nopdb.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Programmer\RealVNC\VNC4\WinVNC4.exe
C:\Programmer\Java\jre1.5.0_11\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\FLLESF~1\XCPCSync\TRANSL~1\ErPhn2\ErTray.exe
C:\Programmer\SlySoft\CloneCD\CloneCDTray.exe
C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe
C:\Programmer\D-Tools\daemon.exe
C:\PROGRA~1\SONYER~1\Mobile\MOBILE~1\EPMWOR~1.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmer\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Programmer\Norton Utilities\SYSDOC32.EXE
C:\Programmer\Fælles filer\Sonic Shared\cinetray.exe
C:\Programmer\SpywareGuard\sgmain.exe
C:\Programmer\SpywareGuard\sgbhp.exe
C:\Programmer\Internet Explorer\iexplore.exe
C:\Programmer\Messenger\msmsgs.exe
C:\Programmer\Symantec\LiveUpdate\AUpdate.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\Programmer\Symantec\LiveUpdate\LuCallbackProxy.exe
C:\Programmer\Symantec\LiveUpdate\LuCallbackProxy.exe
C:\Programmer\Symantec\LiveUpdate\LuCallbackProxy.exe
C:\Programmer\Symantec\LiveUpdate\LuCallbackProxy.exe
C:\Programmer\Symantec\LiveUpdate\LuCallbackProxy.exe
C:\Documents and Settings\abc123\Skrivebord\hijackthis.exe
C:\Programmer\Symantec\LiveUpdate\LuCallbackProxy.exe
C:\Programmer\Symantec\LiveUpdate\LuCallbackProxy.exe
C:\Programmer\Symantec\LiveUpdate\LuCallbackProxy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Programmer\SpywareGuard\dlprotect.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Programmer\Fælles filer\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmer\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmer\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [CloneDVDElbyDelay] "C:\Programmer\Elaborate Bytes\CloneDVD\ElbyCheck.exe" /L ElbyDelay
O4 - HKLM\..\Run: [ElbyCheckAnyDVD] "C:\Programmer\SlySoft\AnyDVD\ElbyCheck.exe" /L AnyDVD
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [XTNDConnect PC - ErPhn2] C:\PROGRA~1\FLLESF~1\XCPCSync\TRANSL~1\ErPhn2\ErTray.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Programmer\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [QXLDeamon] C:\Programmer\Qxl Ricardo\Qxl Ricardo Tools\QXLDeamon.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programmer\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Programmer\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - Startup: SpywareGuard.lnk = C:\Programmer\SpywareGuard\sgmain.exe
O4 - Global Startup: Adobe Reader Hurtigstart.lnk = C:\Programmer\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Norton System Doctor.lnk = C:\Programmer\Norton Utilities\SYSDOC32.EXE
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = ?
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_11\bin\npjpi150_11.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_11\bin\npjpi150_11.dll
O9 - Extra button: Opslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O12 - Plugin for .UVR: C:\Programmer\Internet Explorer\Plugins\NPUPano.dll
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://downol.dr.dk/download/netradio/Rawflow.cab
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/SSC/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {3D6DDD23-870A-4FC8-B3AF-5F67C935A9B7} (Util Class) - https://udstedelse.certifikat.tdc.dk/csp/authenticode/PrimeInkCSP-1204.exe
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab
O16 - DPF: {EF81B8CF-FCB2-11D2-A9DE-00C0268E5C48} (Matchware Download Manager) - http://www.vvsu.dk/energi/MwDownload.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Automatisk LiveUpdate-planlægning - Symantec Corporation - C:\Programmer\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmer\Fælles filer\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Programmer\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect-tjeneste (navapsvc) - Symantec Corporation - C:\Programmer\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Programmer\Norton Utilities\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Programmer\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FLLESF~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\Programmer\Speed Disk\nopdb.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Programmer\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

//==<AVG AntiSpyware 7.5.0.50>===================================
Exception code: C0000005 ACCESS_VIOLATION
Fault address: 00427782 01:00026782 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
Module Date: 10/07/2006 13:19:56
File Version of C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe: 7.5.0.50
Exception Date: 02/25/2007 09:08:30

MiniDump Information Saved to .dmp

Registers:
EAX:0012EBA4
EBX:00FA8700
ECX:0012EBBC
EDX:22FE0001
ESI:77D3B8BA
EDI:01123004
CS:EIP:001B:00427782
SS:ESP:0023:0012EA70 EBP:0012EC04
DS:0023 ES:0023 FS:003B GS:0000
Flags:00010246

Intel specific method

Call stack:
Address Frame Param 0 Param 1 Param 2 Param 3 Logical addr Module
00427782 0012EC04 0001062B 0012EC30 00000001 000004EA 0001:00026782 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
004284F4 0012EC4C 00431DA8 000101E4 00000000 00000001 0001:000274F4 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00428734 0012EC78 000101E4 000004EA 00000000 00000001 0001:00027734 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00431C50 0012EC9C 000101E4 000004EA 00000000 00000001 0001:00030C50 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
77D38734 0012ECC8 00431BFC 000101E4 000004EA 00000000 0001:00007734 C:\WINDOWS\system32\USER32.dll
77D38816 0012ED30 00000000 00431BFC 000101E4 000004EA 0001:00007816 C:\WINDOWS\system32\USER32.dll
77D3B4C0 0012ED84 00C0ADA8 000004EA 00000000 00000001 0001:0000A4C0 C:\WINDOWS\system32\USER32.dll
77D3B50C 0012EDAC 0012EDBC 00000018 00C0ADA8 000004EA 0001:0000A50C C:\WINDOWS\system32\USER32.dll
7C90EAE3 0012EDF0 0012EE2C 00000000 00000000 00000000 0001:0000DAE3 C:\WINDOWS\system32\ntdll.dll
004033A7 0012FE98 00400000 00000000 000207F6 00000001 0001:000023A7 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00483185 0012FFC0 00390032 00390038 7FFD5000 8054A938 0001:00082185 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
7C816FD7 0012FFF0 00483002 00000000 78746341 00000020 0001:00015FD7 C:\WINDOWS\system32\kernel32.dll

ImageHelp specific method

Call stack:
Address Frame Param 0 Param 1 Param 2 Param 3 Symbol/Logical address
00427782 0012EC04 0001062B 0012EC30 00000001 000004EA 0001:00026782 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
004284F4 0012EC4C 00431DA8 000101E4 00000000 00000001 0001:000274F4 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00428734 0012EC78 000101E4 000004EA 00000000 00000001 0001:00027734 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00431C50 0012EC9C 000101E4 000004EA 00000000 00000001 0001:00030C50 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
77D38734 0012ECC8 00431BFC 000101E4 000004EA 00000000 GetDC+6D
77D38816 0012ED30 00000000 00431BFC 000101E4 000004EA GetDC+14F
77D3B4C0 0012ED84 00C0ADA8 000004EA 00000000 00000001 DefWindowProcW+184
77D3B50C 0012EDAC 0012EDBC 00000018 00C0ADA8 000004EA DefWindowProcW+1D0
7C90EAE3 0012EDF0 0012EE2C 00000000 00000000 00000000 KiUserCallbackDispatcher+13
004033A7 0012FE98 00400000 00000000 000207F6 00000001 0001:000023A7 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00483185 0012FFC0 00390032 00390038 7FFD5000 8054A938 0001:00082185 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
7C816FD7 0012FFF0 00483002 00000000 78746341 00000020 RegisterWaitForInputIdle+49

Loaded Modules:
Base Size Module
00400000 605000 7.05.0000.0050 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
7C900000 0B2000 5.01.2600.2180 C:\WINDOWS\system32\ntdll.dll
7C800000 0F8000 5.01.2600.2945 C:\WINDOWS\system32\kernel32.dll
76BE0000 00B000 5.01.2600.2180 C:\WINDOWS\system32\PSAPI.DLL
10000000 0DD000 4.02.0000.0015 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\engine.dll
76770000 009000 6.00.2900.2180 C:\WINDOWS\system32\SHFOLDER.dll
77C00000 058000 7.00.2600.2180 C:\WINDOWS\system32\msvcrt.dll
77DC0000 0AB000 5.01.2600.2180 C:\WINDOWS\system32\ADVAPI32.dll
77E70000 091000 5.01.2600.2180 C:\WINDOWS\system32\RPCRT4.dll
77F60000 076000 6.00.2900.3059 C:\WINDOWS\system32\SHLWAPI.dll
77F10000 047000 5.01.2600.2818 C:\WINDOWS\system32\GDI32.dll
77D30000 090000 5.01.2600.2622 C:\WINDOWS\system32\USER32.dll
76B30000 02E000 5.01.2600.2180 C:\WINDOWS\system32\WINMM.dll
76360000 005000 5.01.2600.2180 C:\WINDOWS\system32\MSIMG32.dll
76390000 049000 6.00.2900.2180 C:\WINDOWS\system32\comdlg32.dll
773C0000 103000 6.00.2900.2982 C:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\COMCTL32.dll
7C9C0000 818000 6.00.2900.3051 C:\WINDOWS\system32\SHELL32.dll
774D0000 13D000 5.01.2600.2726 C:\WINDOWS\system32\ole32.dll
71AA0000 00A000 5.01.2600.2180 C:\WINDOWS\system32\WSOCK32.dll
71A80000 017000 5.01.2600.2180 C:\WINDOWS\system32\WS2_32.dll
71A70000 008000 5.01.2600.2180 C:\WINDOWS\system32\WS2HELP.dll
76D50000 019000 5.01.2600.2912 C:\WINDOWS\system32\iphlpapi.dll
77BF0000 008000 5.01.2600.2180 C:\WINDOWS\system32\VERSION.dll
5B250000 038000 6.00.2900.2180 C:\WINDOWS\system32\UxTheme.dll
77B30000 022000 5.01.2600.2180 C:\WINDOWS\system32\appHelp.dll
76FC0000 07F000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL
77040000 0C8000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
77110000 08C000 5.01.2600.2180 C:\WINDOWS\system32\OLEAUT32.dll
77A10000 054000 5.01.2600.2180 C:\WINDOWS\System32\cscui.dll
765E0000 01D000 5.01.2600.2180 C:\WINDOWS\System32\CSCDLL.dll
77910000 0F5000 5.01.2600.2180 C:\WINDOWS\system32\SETUPAPI.dll
76970000 008000 5.01.2600.2751 C:\WINDOWS\system32\LINKINFO.dll
76980000 025000 5.01.2600.2180 C:\WINDOWS\system32\ntshrui.dll
76B10000 011000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL
60930000 054000 5.01.2600.2976 C:\WINDOWS\system32\NETAPI32.dll
769B0000 0B4000 5.01.2600.2180 C:\WINDOWS\system32\USERENV.dll
71A20000 040000 5.01.2600.2180 C:\WINDOWS\system32\mswsock.dll
62F70000 058000 5.01.2600.2180 C:\WINDOWS\system32\hnetcfg.dll
71A60000 008000 5.01.2600.2180 C:\WINDOWS\System32\wshtcpip.dll
59F30000 0A1000 5.01.2600.2180 C:\WINDOWS\system32\DBGHELP.DLL

//==<AVG AntiSpyware 7.5.0.50>===================================
Exception code: C0000005 ACCESS_VIOLATION
Fault address: 00427782 01:00026782 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
Module Date: 10/07/2006 13:19:56
File Version of C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe: 7.5.0.50
Exception Date: 02/25/2007 09:13:33

MiniDump Information Saved to .dmp

Registers:
EAX:0012EBA4
EBX:00FA8700
ECX:0012EBBC
EDX:E5910001
ESI:77D3B8BA
EDI:01123004
CS:EIP:001B:00427782
SS:ESP:0023:0012EA70 EBP:0012EC04
DS:0023 ES:0023 FS:003B GS:0000
Flags:00010246

Intel specific method

Call stack:
Address Frame Param 0 Param 1 Param 2 Param 3 Logical addr Module
00427782 0012EC04 00012AA7 0012EC30 00000001 000004EA 0001:00026782 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
004284F4 0012EC4C 00431DA8 000400F6 00000000 00000001 0001:000274F4 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00428734 0012EC78 000400F6 000004EA 00000000 00000001 0001:00027734 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00431C50 0012EC9C 000400F6 000004EA 00000000 00000001 0001:00030C50 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
77D38734 0012ECC8 00431BFC 000400F6 000004EA 00000000 0001:00007734 C:\WINDOWS\system32\USER32.dll
77D38816 0012ED30 00000000 00431BFC 000400F6 000004EA 0001:00007816 C:\WINDOWS\system32\USER32.dll
77D3B4C0 0012ED84 00BF2528 000004EA 00000000 00000001 0001:0000A4C0 C:\WINDOWS\system32\USER32.dll
77D3B50C 0012EDAC 0012EDBC 00000018 00BF2528 000004EA 0001:0000A50C C:\WINDOWS\system32\USER32.dll
7C90EAE3 0012EDF0 0012EE2C 00000000 00000000 00000000 0001:0000DAE3 C:\WINDOWS\system32\ntdll.dll
004033A7 0012FE98 00400000 00000000 000207F6 00000001 0001:000023A7 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00483185 0012FFC0 00390032 00390038 7FFDE000 8054A938 0001:00082185 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
7C816FD7 0012FFF0 00483002 00000000 78746341 00000020 0001:00015FD7 C:\WINDOWS\system32\kernel32.dll

ImageHelp specific method

Call stack:
Address Frame Param 0 Param 1 Param 2 Param 3 Symbol/Logical address
00427782 0012EC04 00012AA7 0012EC30 00000001 000004EA 0001:00026782 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
004284F4 0012EC4C 00431DA8 000400F6 00000000 00000001 0001:000274F4 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00428734 0012EC78 000400F6 000004EA 00000000 00000001 0001:00027734 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00431C50 0012EC9C 000400F6 000004EA 00000000 00000001 0001:00030C50 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
77D38734 0012ECC8 00431BFC 000400F6 000004EA 00000000 GetDC+6D
77D38816 0012ED30 00000000 00431BFC 000400F6 000004EA GetDC+14F
77D3B4C0 0012ED84 00BF2528 000004EA 00000000 00000001 DefWindowProcW+184
77D3B50C 0012EDAC 0012EDBC 00000018 00BF2528 000004EA DefWindowProcW+1D0
7C90EAE3 0012EDF0 0012EE2C 00000000 00000000 00000000 KiUserCallbackDispatcher+13
004033A7 0012FE98 00400000 00000000 000207F6 00000001 0001:000023A7 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
00483185 0012FFC0 00390032 00390038 7FFDE000 8054A938 0001:00082185 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
7C816FD7 0012FFF0 00483002 00000000 78746341 00000020 RegisterWaitForInputIdle+49

Loaded Modules:
Base Size Module
00400000 605000 7.05.0000.0050 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
7C900000 0B2000 5.01.2600.2180 C:\WINDOWS\system32\ntdll.dll
7C800000 0F8000 5.01.2600.2945 C:\WINDOWS\system32\kernel32.dll
76BE0000 00B000 5.01.2600.2180 C:\WINDOWS\system32\PSAPI.DLL
10000000 0DD000 4.02.0000.0015 C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\engine.dll
76770000 009000 6.00.2900.2180 C:\WINDOWS\system32\SHFOLDER.dll
77C00000 058000 7.00.2600.2180 C:\WINDOWS\system32\msvcrt.dll
77DC0000 0AB000 5.01.2600.2180 C:\WINDOWS\system32\ADVAPI32.dll
77E70000 091000 5.01.2600.2180 C:\WINDOWS\system32\RPCRT4.dll
77F60000 076000 6.00.2900.3059 C:\WINDOWS\system32\SHLWAPI.dll
77F10000 047000 5.01.2600.2818 C:\WINDOWS\system32\GDI32.dll
77D30000 090000 5.01.2600.2622 C:\WINDOWS\system32\USER32.dll
76B30000 02E000 5.01.2600.2180 C:\WINDOWS\system32\WINMM.dll
76360000 005000 5.01.2600.2180 C:\WINDOWS\system32\MSIMG32.dll
76390000 049000 6.00.2900.2180 C:\WINDOWS\system32\comdlg32.dll
773C0000 103000 6.00.2900.2982 C:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\COMCTL32.dll
7C9C0000 818000 6.00.2900.3051 C:\WINDOWS\system32\SHELL32.dll
774D0000 13D000 5.01.2600.2726 C:\WINDOWS\system32\ole32.dll
71AA0000 00A000 5.01.2600.2180 C:\WINDOWS\system32\WSOCK32.dll
71A80000 017000 5.01.2600.2180 C:\WINDOWS\system32\WS2_32.dll
71A70000 008000 5.01.2600.2180 C:\WINDOWS\system32\WS2HELP.dll
76D50000 019000 5.01.2600.2912 C:\WINDOWS\system32\iphlpapi.dll
77BF0000 008000 5.01.2600.2180 C:\WINDOWS\system32\VERSION.dll
5B250000 038000 6.00.2900.2180 C:\WINDOWS\system32\UxTheme.dll
77B30000 022000 5.01.2600.2180 C:\WINDOWS\system32\appHelp.dll
76FC0000 07F000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL
77040000 0C8000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
77110000 08C000 5.01.2600.2180 C:\WINDOWS\system32\OLEAUT32.dll
77A10000 054000 5.01.2600.2180 C:\WINDOWS\System32\cscui.dll
765E0000 01D000 5.01.2600.2180 C:\WINDOWS\System32\CSCDLL.dll
77910000 0F5000 5.01.2600.2180 C:\WINDOWS\system32\SETUPAPI.dll
76970000 008000 5.01.2600.2751 C:\WINDOWS\system32\LINKINFO.dll
76980000 025000 5.01.2600.2180 C:\WINDOWS\system32\ntshrui.dll
76B10000 011000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL
60930000 054000 5.01.2600.2976 C:\WINDOWS\system32\NETAPI32.dll
769B0000 0B4000 5.01.2600.2180 C:\WINDOWS\system32\USERENV.dll
59F30000 0A1000 5.01.2600.2180 C:\WINDOWS\system32\DBGHELP.DLL

Synes godt om

levich Nybegynder

25. februar 2007 - 11:10 #9

Godmorgen. Den problematiske linje fra den først hijackthis-log er væk, hvilket er godt. Jeg har imidlertid overset en anden linje, som også angiver noget snavs. Derfor gentag punkterne (2) til (6) i ovenstående vejledning, hvor du fjernes linjen O12 - Plugin for .UVR: C:\Programmer\Internet Explorer\Plugins\NPUPano.dll i punkt (2) og sletter filen C:\Programmer\Internet Explorer\Plugins\NPUPano.dll i punkt (4).

Endvidere, jeg tror, at du har sat den forkerte log fra AVG Antispyware herind. Den skal se ud som f.eks. vist her: http://www.hardwareonline.dk/traad.aspx?fid=26&tid=378626.

Synes godt om

urup Nybegynder

25. februar 2007 - 14:06 #10

Sådan.....

Logfile of HijackThis v1.99.1
Scan saved at 14:04:33, on 25-02-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\ccProxy.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
C:\Programmer\Norton Internet Security\ISSVC.exe
C:\Programmer\Fælles filer\Symantec Shared\SNDSrvc.exe
C:\Programmer\Fælles filer\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Programmer\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Programmer\Norton Utilities\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmer\Speed Disk\nopdb.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Programmer\RealVNC\VNC4\WinVNC4.exe
C:\Programmer\Java\jre1.5.0_11\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\FLLESF~1\XCPCSync\TRANSL~1\ErPhn2\ErTray.exe
C:\Programmer\SlySoft\CloneCD\CloneCDTray.exe
C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe
C:\Programmer\D-Tools\daemon.exe
C:\PROGRA~1\SONYER~1\Mobile\MOBILE~1\EPMWOR~1.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmer\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Programmer\Norton Utilities\SYSDOC32.EXE
C:\Programmer\Fælles filer\Sonic Shared\cinetray.exe
C:\Programmer\SpywareGuard\sgmain.exe
C:\Programmer\SpywareGuard\sgbhp.exe
C:\Programmer\Messenger\msmsgs.exe
C:\Documents and Settings\abc123\Skrivebord\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: SpywareGuardDLBLOCK.CBrowserHelper - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Programmer\SpywareGuard\dlprotect.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Programmer\Fælles filer\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmer\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmer\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [CloneDVDElbyDelay] "C:\Programmer\Elaborate Bytes\CloneDVD\ElbyCheck.exe" /L ElbyDelay
O4 - HKLM\..\Run: [ElbyCheckAnyDVD] "C:\Programmer\SlySoft\AnyDVD\ElbyCheck.exe" /L AnyDVD
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [XTNDConnect PC - ErPhn2] C:\PROGRA~1\FLLESF~1\XCPCSync\TRANSL~1\ErPhn2\ErTray.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Programmer\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [QXLDeamon] C:\Programmer\Qxl Ricardo\Qxl Ricardo Tools\QXLDeamon.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programmer\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Programmer\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - Startup: SpywareGuard.lnk = C:\Programmer\SpywareGuard\sgmain.exe
O4 - Global Startup: Adobe Reader Hurtigstart.lnk = C:\Programmer\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Norton System Doctor.lnk = C:\Programmer\Norton Utilities\SYSDOC32.EXE
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = ?
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_11\bin\npjpi150_11.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_11\bin\npjpi150_11.dll
O9 - Extra button: Opslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmer\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://downol.dr.dk/download/netradio/Rawflow.cab
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/SSC/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {3D6DDD23-870A-4FC8-B3AF-5F67C935A9B7} (Util Class) - https://udstedelse.certifikat.tdc.dk/csp/authenticode/PrimeInkCSP-1204.exe
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab
O16 - DPF: {EF81B8CF-FCB2-11D2-A9DE-00C0268E5C48} (Matchware Download Manager) - http://www.vvsu.dk/energi/MwDownload.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Automatisk LiveUpdate-planlægning - Symantec Corporation - C:\Programmer\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Programmer\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmer\Fælles filer\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Programmer\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect-tjeneste (navapsvc) - Symantec Corporation - C:\Programmer\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Programmer\Norton Utilities\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Programmer\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FLLESF~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\Programmer\Speed Disk\nopdb.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Programmer\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 13:51:43 25-02-2007

+ Scan result:

C:\System Volume Information\_restore{0E297173-E3D1-49AB-BACC-75ED7C245C8B}\RP619\A0164216.exe -> Downloader.Agent.anw : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{0E297173-E3D1-49AB-BACC-75ED7C245C8B}\RP603\A0158546.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Ignored.
C:\System Volume Information\_restore{0E297173-E3D1-49AB-BACC-75ED7C245C8B}\RP619\A0164210.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Ignored.

::Report end

Synes godt om

urup Nybegynder

25. februar 2007 - 19:25 #11

Kommer der noget ????Ikke for at presse på !!

Synes godt om

levich Nybegynder

25. februar 2007 - 19:29 #12

Nu ser det fint ud. Hvordan kører PC'en?

Synes godt om

urup Nybegynder

25. februar 2007 - 19:32 #13

Det finder jeg nok ud af i aften......er der ikke mere på den ??

Synes godt om

levich Nybegynder

25. februar 2007 - 19:35 #14

Jeg kan ikke se mere snavs i loggen. Hvis den samtidig kører som den skal, så er det to gode tegn på, at der ikke er mere på den. 100 % garanti kan jeg ikke give.

Synes godt om

urup Nybegynder

25. februar 2007 - 19:52 #15

TAK FOR HJÆLPEN....

Synes godt om

Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Følg dette spørgsmål

Opret Preview

Se alle it-kurser fra Computerworld Kurser

IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.

Se alle it-kurser

Flere spørgsmål fra Virus kategorien

Titel	Indlæg	Oprettet	Seneste aktivitet
Vil skrifte antivirusprogram. Af ErikHg i Virus	22	26/11/202510:42	23/12/202514:29
Er gratis Bitdefender værd at installere ? Af Ikke-ekspert i Virus	8	31/08/202519:08	01/09/202514:18
Ukendte filer på min Pc Af jonpet i Virus	10	03/02/202514:20	04/02/202511:05
mulig ukendt virus Af jackie18 i Virus	3	18/01/202514:07	18/01/202516:39
virus popper op med jævne mellemrum Af Malm i Virus	13	18/01/202511:40	20/01/202517:53

Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Du kan også logge ind via nedenstående tjenester

Alle kategorier på Eksperten

Seneste artiklerRSS

03/04

Podcasten Hard Fork giver et skarpt blik på ugens vigtigste tech-historier

03/04

Nørgaard: Læs skideballen fra en ukrainer til Rheinmetal - og derfor trender #MadeByHousewives

03/04

Læs hele Computerworlds løn-magasin: Så meget får danske it-folk i løn

02/04

Sådan kan du implementere ansvarlig AI i din organisation

01/04

Vi tester to udgaver af Denons Home-højttalere - og vi er ikke i tvivl om dommen

01/04

Som slagterlærling traf Rasmus et livsændrende valg: Nu er han udviklingschef i kæmpe energivirksomhed

01/04

Hård kritik efter tirsdagens stor-nedbrud: MitID er som en stor hullet ost og kan udvikle sig til en national katastrofe

01/04

OpenAI får kæmpemæssig kapitaltilførsel: Bliver værdisat til 5.500 milliarder kroner

01/04

Anthropic-medarbejder har ved et uheld lækket hele Claude Codes kildekode: 500.000 linier kode sluppet fri

01/04

Mørklægger årsag til tirsdagens timelange MitID-nedbrud: Vil intet fortælle af 'sikkerhedsmæssige årsager'

01/04

Hver fjerde forventer nul kroner i lønforhøjelse: It-testerne er blandt branchens mest pessimistiske for tredje år i træk

Vis flere artikler

IT-JOB

Weilbach A/S

Head of Operations Support

Forsvarsministeriets Materiel- og Indkøbsstyrelse

Netværksteknikere til design, drift og vedligehold ved Cyberdivisionen

DLA Piper

IT Sikkerhedsarkitekt – DLA Piper Aarhus/København

Semler Gruppen

IT Service Manager til Semler IT

KMD A/S

EDI Specialist til KMD Connect

Vis flere jobs

Seneste spørgsmål Seneste aktivitet

04/0409:43	AI google.com Af Peter Olsen i Andre onlineløsninger
31/0310:22	Makro der gemmer vedhæftet fil fra Msg og omdøber filen Af lokesa i Excel
30/0313:45	Kablet forbindelse mellem android telefon og windows 11 pc Af 1Dorte i Android
30/0312:04	Elementtype vises - og ikke billedet? Af hkprofil i Billedbehandling
29/0312:08	Problemer med replay af købte kursusvideoer Af annam i Browsere

White papers

Samarbejde mellem AI og mennesker styrker sikkerheden
Konica Minolta
Undgå at printeren bliver svageste led i sikkerheden
Konica Minolta
Arctic Wolf Security Operations Report 2025: Indblik i moderne sikkerhedsdrift
Arctic Wolf
Arctic Wolf Threat Report 2026: Sådan ændrer ransomware-landskabet sig
Arctic Wolf

Flere white papers »