Søg
Avatar billede klangens Nybegynder
15. juli 2007 - 20:00 Der er 18 kommentarer og
1 løsning

Hijack this

Er der en der vil kikke på denne? På forhånd tak

Logfile of HijackThis v1.99.1
Scan saved at 19:57:48, on 15-07-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmer\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Fælles filer\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Programmer\HP\HP Software Update\HPWuSchd2.exe
C:\Programmer\Picasa2\PicasaMediaDetector.exe
C:\Programmer\Adobe\Photoshop Elements 5.0\apdproxy.exe
C:\Programmer\Fælles filer\LogiShrd\LComMgr\Communications_Helper.exe
C:\Programmer\Logitech\QuickCam10\QuickCam10.exe
C:\Programmer\SPAMfighter\SFAgent.exe
C:\Programmer\Microsoft ActiveSync\wcescomm.exe
C:\Programmer\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Programmer\xampp\FileZillaFTP\FileZillaServer.exe
C:\Programmer\Fælles filer\LogiShrd\LVCOMSER\LVComSer.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Alwil Software\Avast4\ashMaiSv.exe
C:\Programmer\Alwil Software\Avast4\ashWebSv.exe
C:\Programmer\Fælles filer\Logishrd\LQCVFX\COCIManager.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\LogiShrd\LVCOMSER\LVComSer.exe
C:\Programmer\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Programmer\Support.com\bin\tgcmd.exe
C:\Programmer\Internet Explorer\iexplore.exe
C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WLLoginProxy.exe
D:\Dokumenter Søren\Computersikkerhed\Langsom computer\hjt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Control Popups in Internet Explorer - {41353F8B-78CE-48A5-BE44-153ED293D192} - C:\Programmer\PopupPopper\PopLib.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmer\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmer\google\googletoolbar4.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmer\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmer\google\googletoolbar4.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [HP Software Update] C:\Programmer\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Programmer\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Programmer\Adobe\Photoshop Elements 5.0\apdproxy.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Programmer\Fælles filer\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Programmer\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Programmer\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [hcenter] "C:\Programmer\Support.com\bin\tgcmd.exe" /server /startmonitor
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programmer\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Programmer\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O8 - Extra context menu item: &Google Search - res://C:\Programmer\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\Programmer\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://C:\Programmer\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Programmer\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://C:\Programmer\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Programmer\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Opret Foretrukken på den mobile enhed... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: PopupPopper Kontrol Panel - {3E94F358-9537-4BBA-8D12-D7F8A0136973} - C:\Programmer\PopupPopper\SiteList.exe
O9 - Extra button: Opslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: *.stumbleupon.com
O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} - http://www.lizardtech.com/download/files/win/djvuplugin/en_US/DjVuControl_en_US.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {18D9C485-7EEC-4395-95DA-DC3875B10E81} (TEInstallPlugIn) - http://www.skylinesoft.com/interactive/terraexplorer/install/TEInstallPlugIn.cab
O16 - DPF: {3D2CB570-D425-11D5-ABD0-00008369C46F} (CSMenu Class) - https://netbank.danskebank.dk/html/activex/DB/Menu.cab
O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/15.13/uploader2.cab
O16 - DPF: {4A026B12-94F3-4D2F-A468-96AA55DE20A5} (NetCamPlayerWeb11g Control) - http://multi.ourlinksys.com/img/NetCamPlayerWeb11g.ocx
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://klangs.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1132765360582
O16 - DPF: {6BEA1C48-1850-486C-8F58-C7354BA3165E} (Install Class) - http://updates.lifescapeinc.com/installers/pinstall/pinstall.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1132765352097
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.gabs.dk/imageuploader/ImageUploader3.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {D216644A-C6DB-49D9-BBCF-D38FE7991BF2} (Util Class) - https://udstedelse.certifikat.tdc.dk/csp/authenticode/tdccsp-0506.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} (e-Safekey) - https://netbank.danskebank.dk/html/activex/e-Safekey/DB/e-Safekey.cab
O16 - DPF: {E56347B0-6C2B-4C2E-939F-EE513EAC80BC} (Creative Product Registration ActiveX Control Module) - http://www.creative.com/register/OCXs/CtORWebClientNoMFC.cab
O16 - DPF: {F6A56D95-A3A3-11D2-AC26-400000058481} (Danske e-Sec) - https://netbank.danskebank.dk/html/activex/danskesikker/DB/DanskeSikker.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programmer\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Programmer\Fælles filer\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Programmer\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Programmer\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Programmer\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Programmer\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - Unknown owner - C:\Programmer\xampp\FileZillaFTP\FileZillaServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmer\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmer\Fælles filer\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Programmer\Fælles filer\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Programmer\Fælles filer\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Programmer\Fælles filer\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Avatar billede fromsej Praktikant
15. juli 2007 - 20:04 #1
Den her undrer mig lidt: ProxyServer = 
Har du selv en idé om hvad det er?
Avatar billede klangens Nybegynder
15. juli 2007 - 20:23 #2
Nej overhovedet ikke
Avatar billede klangens Nybegynder
15. juli 2007 - 21:36 #3
Kan det være skyld i at mit internet kører meget langsomt?
Avatar billede fromsej Praktikant
15. juli 2007 - 21:50 #4
Ja.
Så fjerner vi den da bare.

Hent Crapcleaner her:
http://www.filehippo.com/download_ccleaner/
---------------------------------------
Hent og installer denne scanner:
http://www.superantispyware.com/downloads/SUPERAntiSpyware1241.exe

Start programmet, klik på Check for updates, når det er opdateret, luk programmet, du skal ikke scanne endnu.
---------------------------------------
Kør Hijackthis, scan, sæt flueben ved linierne listet her, luk alle vinduer undtaget Hijackthis, klik på fix checked, genstart i fejlsikret (tryk på <F8> under opstarten), kør SaS.

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O15 - Trusted Zone: *.stumbleupon.com
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programmer\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

---------------------------------------
Start SuperAntiSpyware, klik på Scan your Computer, sæt flueben i de drev der skal scannes.
(Fixed disk betyder harddisk)
Flyt prikken til Perform complete scan og klik på Næste, så kører scanningen.

Når den er færdig kommer der et vindue med en opsummering, klik på OK, klik så på næste og så på Udfør.

Der kommer et vindue med Quarantine and removal Complete, klik på OK, klik på Udfør.
Luk programmet, genstart normalt.
---------------------------------------
Installer Crapcleaner, husk at fjerne fluebenet udfor installation af Yahoo toolbar.
Start programmet, fjern fluebenet i cookies.
Klik på kør Cleaner og lad den fjerne hvad den finder.
Klik så på Problemer ovre i venstre side (den blå terning), klik på Skan efter problemer, når den er færdig, klik på Udbedre valgte problemer, lav evt. en backup af registreringsdatabasen, klik så på udbedre alle valgte problemer.
Klik på OK, klik på Luk når den er færdig.
---------------------------------------
Start SuperAntiSpyware igen, klik på Preferences, skift til fanebladet Statistics/Logs, i vinduet dobbeltklikker du på SUPERAntiSpyware Scan Log, den åbner i notesblok, kopier resultatet herind.
Vi skal også se en frisk hijackthislog.
Avatar billede klangens Nybegynder
16. juli 2007 - 19:32 #5
Første del her:

SUPERAntiSpyware Scan Log
Generated 07/16/2007 at 04:57 PM

Application Version : 3.5.1016

Core Rules Database Version : 3269
Trace Rules Database Version: 1280

Scan type      : Complete Scan
Total Scan Time : 01:21:56

Memory items scanned      : 454
Memory threats detected  : 0
Registry items scanned    : 7982
Registry threats detected : 6
File items scanned        : 59134
File threats detected    : 81

Adware.Tracking Cookie
    C:\Documents and Settings\Søren\Cookies\søren@ad.yieldmanager[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@stat.postdanmark[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@adserving.cpxinteractive[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@ads.cnn[1].txt
    C:\Documents and Settings\Søren\Cookies\søren@tripod[1].txt
    C:\Documents and Settings\Søren\Cookies\søren@adserver.easyad[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@ad1.emediate[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@apmebf[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@postclicktracking[1].txt
    C:\Documents and Settings\Søren\Cookies\søren@adfarm1.adition[1].txt
    C:\Documents and Settings\Søren\Cookies\søren@e2.emediate[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@tacoda[1].txt
    C:\Documents and Settings\Søren\Cookies\søren@bonnier.banneradministration[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@fortunecity[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@eas.apm.emediate[1].txt
    C:\Documents and Settings\Søren\Cookies\søren@adserver.banneradministration[2].txt
    C:\Documents and Settings\Søren\Cookies\søren@vhost.oddcast[2].txt
    C:\Documents and Settings\Lene\Cookies\lene@ad1.emediate[1].txt
    C:\Documents and Settings\Lene\Cookies\lene@adfair[1].txt
    C:\Documents and Settings\Lene\Cookies\lene@ads.estart[1].txt
    C:\Documents and Settings\Lene\Cookies\lene@ads2.jubii[1].txt
    C:\Documents and Settings\Lene\Cookies\lene@adserver.banneradministration[2].txt
    C:\Documents and Settings\Lene\Cookies\lene@bannere.fyens[2].txt
    C:\Documents and Settings\Lene\Cookies\lene@doubleclick[1].txt
    C:\Documents and Settings\Lene\Cookies\lene@e2.emediate[2].txt
    C:\Documents and Settings\Lene\Cookies\lene@indextools[1].txt
    C:\Documents and Settings\Lene\Cookies\lene@stat.inleadmedia[1].txt
    C:\Documents and Settings\Lene\Cookies\lene@stat.postdanmark[2].txt
    C:\Documents and Settings\Lene\Cookies\lene@www.zanox-affiliate[1].txt
    C:\Documents and Settings\Lene\Cookies\lene@yourmedia[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@007.free-counter.co[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@4.adbrite[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@ad.econet[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@ad.ifrance[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@ad1.emediate[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@adfair[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@ads.cooperhosting[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@ads.dailyrush[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@ads.freeonlinegames[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@ads.newgrounds[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@ads.wowhead[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@adserver.banneradministration[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@adserver.easyad[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@adserver.incgamers[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@apmebf[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@atwola[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@audit.median[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@bannere.fyens[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@campaign.indieclick[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@chaosexiles.solutionz[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@drivecleaner[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@e2.emediate[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@gms.adbureau[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@gtb1.acecounter[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@indextools[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@kanoodle[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@keywordmax[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@media.pc.ign[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@messenger.adtech[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@netmediagroup[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@nextag[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@partypoker[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@server.cpmstar[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@stat.inleadmedia[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@toplist[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@webstats4u[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@www.0stats[2].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@www.bravia-advert[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@www.chaosexiles.solutionz[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@www.ourmedia[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@xiti[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@yourdailymedia[1].txt
    C:\Documents and Settings\Thomas\Cookies\thomas@yourmedia[1].txt
    C:\Documents and Settings\Trine\Cookies\trine@ad1.emediate[1].txt
    C:\Documents and Settings\Trine\Cookies\trine@adserver.banneradministration[2].txt
    C:\Documents and Settings\Trine\Cookies\trine@adserver.heavymetal[1].txt
    C:\Documents and Settings\Trine\Cookies\trine@bannere.fyens[2].txt
    C:\Documents and Settings\Trine\Cookies\trine@bonnier.banneradministration[2].txt
    C:\Documents and Settings\Trine\Cookies\trine@e2.emediate[2].txt
    C:\Documents and Settings\Trine\Cookies\trine@fixionmedia[1].txt
    C:\Documents and Settings\Trine\Cookies\trine@indextools[1].txt

Trojan.ErrorSafe
    HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}
    HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0
    HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0\0
    HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0\0\win32
    HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0\FLAGS
    HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0\HELPDIR
Avatar billede klangens Nybegynder
16. juli 2007 - 19:39 #6
Jeg får Windows sikkerhedsadvarsel i menulinen nederst til højre på skrivebordet. Jeg mener jeg har firewall slået til , og kører også med avast..!
Nå men her er anden del, (jeg kan allerede mærke forandring på internethastigheden)

Logfile of HijackThis v1.99.1
Scan saved at 19:34:38, on 16-07-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmer\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Fælles filer\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Programmer\xampp\FileZillaFTP\FileZillaServer.exe
C:\Programmer\Fælles filer\LogiShrd\LVCOMSER\LVComSer.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Alwil Software\Avast4\ashMaiSv.exe
C:\Programmer\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Programmer\HP\HP Software Update\HPWuSchd2.exe
C:\Programmer\Picasa2\PicasaMediaDetector.exe
C:\Programmer\Adobe\Photoshop Elements 5.0\apdproxy.exe
C:\Programmer\Fælles filer\LogiShrd\LComMgr\Communications_Helper.exe
C:\Programmer\Logitech\QuickCam10\QuickCam10.exe
C:\Programmer\SPAMfighter\SFAgent.exe
C:\Programmer\Support.com\bin\tgcmd.exe
C:\Programmer\Microsoft ActiveSync\wcescomm.exe
C:\Programmer\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Logishrd\LQCVFX\COCIManager.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Søren\Skrivebord\hjt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Control Popups in Internet Explorer - {41353F8B-78CE-48A5-BE44-153ED293D192} - C:\Programmer\PopupPopper\PopLib.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmer\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmer\google\googletoolbar4.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmer\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmer\google\googletoolbar4.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HP Software Update] C:\Programmer\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Programmer\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Programmer\Adobe\Photoshop Elements 5.0\apdproxy.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Programmer\Fælles filer\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Programmer\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Programmer\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [hcenter] "C:\Programmer\Support.com\bin\tgcmd.exe" /server /startmonitor
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programmer\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Programmer\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O8 - Extra context menu item: &Google Search - res://C:\Programmer\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\Programmer\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://C:\Programmer\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Programmer\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://C:\Programmer\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Programmer\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Opret Foretrukken på den mobile enhed... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: PopupPopper Kontrol Panel - {3E94F358-9537-4BBA-8D12-D7F8A0136973} - C:\Programmer\PopupPopper\SiteList.exe
O9 - Extra button: Opslag - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} - http://www.lizardtech.com/download/files/win/djvuplugin/en_US/DjVuControl_en_US.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {18D9C485-7EEC-4395-95DA-DC3875B10E81} (TEInstallPlugIn) - http://www.skylinesoft.com/interactive/terraexplorer/install/TEInstallPlugIn.cab
O16 - DPF: {3D2CB570-D425-11D5-ABD0-00008369C46F} (CSMenu Class) - https://netbank.danskebank.dk/html/activex/DB/Menu.cab
O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/15.13/uploader2.cab
O16 - DPF: {4A026B12-94F3-4D2F-A468-96AA55DE20A5} (NetCamPlayerWeb11g Control) - http://multi.ourlinksys.com/img/NetCamPlayerWeb11g.ocx
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://klangs.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1132765360582
O16 - DPF: {6BEA1C48-1850-486C-8F58-C7354BA3165E} (Install Class) - http://updates.lifescapeinc.com/installers/pinstall/pinstall.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1132765352097
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.gabs.dk/imageuploader/ImageUploader3.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {D216644A-C6DB-49D9-BBCF-D38FE7991BF2} (Util Class) - https://udstedelse.certifikat.tdc.dk/csp/authenticode/tdccsp-0506.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} (e-Safekey) - https://netbank.danskebank.dk/html/activex/e-Safekey/DB/e-Safekey.cab
O16 - DPF: {E56347B0-6C2B-4C2E-939F-EE513EAC80BC} (Creative Product Registration ActiveX Control Module) - http://www.creative.com/register/OCXs/CtORWebClientNoMFC.cab
O16 - DPF: {F6A56D95-A3A3-11D2-AC26-400000058481} (Danske e-Sec) - https://netbank.danskebank.dk/html/activex/danskesikker/DB/DanskeSikker.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Programmer\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Programmer\Fælles filer\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Programmer\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Programmer\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Programmer\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Programmer\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: FileZilla Server FTP server (FileZilla Server) - Unknown owner - C:\Programmer\xampp\FileZillaFTP\FileZillaServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmer\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmer\Fælles filer\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Programmer\Fælles filer\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Programmer\Fælles filer\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Programmer\Fælles filer\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Avatar billede klangens Nybegynder
16. juli 2007 - 20:09 #7
TDC´s hastighedstest siger lige nu: Download: 30kbits upload: 129 kbits.
Det er jo ikke overvældende med adsl!
Avatar billede fromsej Praktikant
16. juli 2007 - 21:50 #8
Nej, det skal det ikke have skyld for.

Loggen er ren, men vi har da et par skud mere i bøssen.
Hent Combofix, og gem den på dit skrivebord:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

-- Kør så combofix.exe, og følg anvisningerne.
Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når combofix er færdig, og efter det har genstartet, skulle der gerne åbnes en logfil: combofix.txt
Indholdet af denne fil må du gerne lægge herind.
Avatar billede klangens Nybegynder
16. juli 2007 - 22:39 #9
Du ved vel ikke hvorfor jeg får den windows sikkerhedsadvarsel jeg nævner længere oppe?
Avatar billede klangens Nybegynder
16. juli 2007 - 23:01 #10
"S›ren" - 2007-07-16 22:47:01 - ComboFix 07-07-14.6 - Service Pack 2  NTFS 


(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))


C:\DOCUME~1\SREN~1\SKRIVE~1\internet.lnk


(((((((((((((((((((((((((((((((((((((((  Drivers/Services  )))))))))))))))))))))))))))))))))))))))))))))))))


-------\LEGACY_NPF


(((((((((((((((((((((((((  Files Created from 2007-06-16 to 2007-07-16  )))))))))))))))))))))))))))))))


2007-07-16 22:46    51,200    --a------    C:\WINDOWS\nircmd.exe
2007-07-16 06:37    <DIR>    d--------    C:\Programmer\SUPERAntiSpyware
2007-07-16 06:37    <DIR>    d--------    C:\DOCUME~1\SREN~1\APPLIC~1\SUPERAntiSpyware.com
2007-07-16 06:37    <DIR>    d--------    C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
2007-07-15 19:05    <DIR>    d--------    C:\Programmer\SupportSoft
2007-07-15 19:05    <DIR>    d--------    C:\Programmer\Support.com
2007-07-15 19:05    <DIR>    d--------    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Support.com
2007-07-15 13:17    <DIR>    d--------    C:\Programmer\CCleaner
2007-07-14 08:41    <DIR>    d--------    C:\Garmin
2007-07-12 06:53    <DIR>    d--------    C:\Programmer\bfgclient
2007-07-12 06:53    <DIR>    d--------    C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
2007-06-29 08:08    <DIR>    d--------    C:\WINDOWS\system32\Quicktime
2007-06-29 08:08    <DIR>    d--------    C:\Programmer\F‘lles filer\DeskShare Shared
2007-06-29 08:07    <DIR>    d--------    C:\Programmer\Deskshare
2007-06-28 07:22    <DIR>    d--------    C:\Programmer\SpeedFan
2007-06-27 07:35    719,872    --a------    C:\WINDOWS\system32\Devil.dll
2007-06-27 07:35    <DIR>    d--------    C:\Programmer\PSP ToolKit
2007-06-27 07:26    <DIR>    d--------    C:\Programmer\Mpeg2Decoder
2007-06-27 07:24    258,352    --a------    C:\WINDOWS\system32\Unicows.dll
2007-06-27 07:24    <DIR>    d-a------    C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
2007-06-27 06:10    <DIR>    d--------    C:\Programmer\F‘lles filer\Ankiro
2007-06-27 06:09    <DIR>    d--------    C:\Programmer\SPAMfighter
2007-06-27 06:09    <DIR>    d--------    C:\Programmer\F‘lles filer\Application
2007-06-25 15:04    1,184,400    --a------    C:\WINDOWS\system32\FreeImage.dll
2007-06-25 08:09    <DIR>    d--------    C:\Programmer\iTunes
2007-06-25 08:09    <DIR>    d--------    C:\Programmer\iPod
2007-06-25 08:08    <DIR>    d--------    C:\Programmer\QuickTime
2007-06-25 08:08    <DIR>    d--------    C:\Programmer\Apple Software Update
2007-06-22 22:28    <DIR>    d--------    C:\DOCUME~1\SREN~2\APPLIC~1\SecondLife
2007-06-22 22:28    <DIR>    d--------    C:\DOCUME~1\SREN~1\APPLIC~1\SecondLife
2007-06-22 15:54    11,010,048    --a------    C:\DOCUME~1\SREN~1\ntuser.dat
2007-06-19 19:37    <DIR>    d--------    C:\WINDOWS\system32\SoftwareDistribution


((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-07-16 04:37:06    --------    d-----w    C:\Programmer\Fælles filer\Wise Installation Wizard
2007-07-14 06:41:47    --------    d--h--w    C:\Programmer\InstallShield Installation Information
2007-07-11 04:05:15    86,300    ----a-w    C:\WINDOWS\system32\perfc006.dat
2007-07-11 04:05:15    483,154    ----a-w    C:\WINDOWS\system32\perfh006.dat
2007-06-30 06:32:47    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\HP
2007-06-29 14:21:52    --------    d-----w    C:\Programmer\Picasa2
2007-06-29 06:08:01    --------    d-----w    C:\Programmer\Fælles filer\DeskShare Shared
2007-06-29 05:16:52    --------    d-----w    C:\Programmer\Fælles filer
2007-06-27 04:10:40    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\SPAMfighter
2007-06-27 04:10:03    --------    d-----w    C:\Programmer\Fælles filer\Ankiro
2007-06-27 04:09:19    --------    d-----w    C:\Programmer\Fælles filer\Application
2007-06-22 08:56:02    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\AdobeUM
2007-06-15 10:58:16    --------    d-----w    C:\Programmer\Omnidrive
2007-06-15 04:20:38    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\wsInspector
2007-06-14 03:53:16    --------    d-----w    C:\Programmer\Fælles filer\System
2007-06-11 05:46:58    --------    d-----w    C:\Programmer\Yahoo!
2007-06-11 05:42:58    --------    d-----w    C:\Programmer\FeedReader30
2007-06-07 05:06:49    --------    d-----w    C:\Programmer\RXToolBar
2007-06-06 12:00:35    --------    d-----w    C:\Programmer\Fælles filer\LogiShrd
2007-06-06 11:54:05    --------    d-----w    C:\Programmer\Logitech
2007-06-02 17:11:01    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\Kybtec Software
2007-06-02 17:10:43    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\MipKukSoft
2007-06-01 22:12:03    --------    d-----w    C:\Programmer\Fælles filer\Adobe Systems Shared
2007-05-25 08:12:10    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\PixVue
2007-05-25 07:42:03    --------    d-----w    C:\Programmer\NCH Swift Sound
2007-05-25 07:42:02    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\NCH Swift Sound
2007-05-25 07:39:54    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\StumbleUpon
2007-05-25 07:20:50    --------    d-----w    C:\Programmer\Vstep
2007-05-25 07:19:32    --------    d-----w    C:\Programmer\RegistryFix
2007-05-19 17:38:21    --------    d-----w    C:\Programmer\Creative
2007-05-17 18:46:04    --------    d-----w    C:\Programmer\DivX
2007-05-17 08:52:24    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\Roxio
2007-05-17 08:26:33    --------    d-----w    C:\Programmer\NimoCodec Pack
2007-05-17 07:38:32    --------    d-----w    C:\Programmer\DScaler5
2007-05-16 18:21:48    --------    d-----w    C:\Programmer\K-Lite Codec Pack
2007-05-16 15:14:25    683,520    ----a-w    C:\WINDOWS\system32\inetcomm.dll
2007-05-16 05:20:50    --------    d-----w    C:\DOCUME~1\SREN~1\APPLIC~1\DivX
2007-05-16 04:55:29    --------    d-----w    C:\Programmer\KC Softwares
2007-05-12 00:31:22    465,696    ----a-w    C:\WINDOWS\system32\LVUI2RC.dll
2007-05-12 00:31:12    490,272    ----a-w    C:\WINDOWS\system32\LVUI2.dll
2007-05-12 00:28:20    416,544    ----a-w    C:\WINDOWS\system32\LVCodec2.dll
2007-05-10 04:48:28    195,360    ----a-w    C:\WINDOWS\system32\lvci1100.dll
2007-05-10 03:37:30    15,558    ----a-w    C:\WINDOWS\system32\Repository.reg
2007-04-30 15:46:10    745,600    ----a-w    C:\WINDOWS\system32\aswBoot.exe
2007-04-30 15:35:28    95,872    ----a-w    C:\WINDOWS\system32\AVASTSS.scr
2007-04-30 05:37:47    64    ----a-w    C:\WINDOWS\system32\BurnData.bin
2007-04-25 14:22:43    144,896    ----a-w    C:\WINDOWS\system32\schannel.dll
2007-04-25 07:43:13    267,776    ----a-w    C:\WINDOWS\system32\iertutil(2).dll
2007-04-23 00:15:24    129,784    ------w    C:\WINDOWS\system32\pxafs.dll
2007-04-23 00:15:24    116,472    ------w    C:\WINDOWS\system32\PxCpyI64.exe
2007-04-19 12:14:14    208,896    ----a-w    C:\WINDOWS\system32\NVUNINST.EXE
2007-04-19 12:14:14    208,896    ----a-w    C:\WINDOWS\system32\nvudisp.exe
2007-04-18 16:14:26    2,854,400    ----a-w    C:\WINDOWS\system32\msi.dll
2007-04-18 15:59:46    14    ----a-w    C:\WINDOWS\sys40d3.dat
2007-04-17 05:12:14    2,874,926    ----a-w    C:\Programmer\FLV PlayerRCATSetup.exe
2007-04-17 05:11:45    737,280    ----a-w    C:\WINDOWS\iun6002.exe
2007-04-17 05:11:45    25,980,320    ----a-w    C:\Programmer\FLV PlayerRCSetup.exe
2007-04-16 20:47:36    33,624    ----a-w    C:\WINDOWS\system32\wups.dll
2007-04-16 20:45:54    1,710,936    ----a-w    C:\WINDOWS\system32\wuaueng.dll
2007-04-16 20:45:48    549,720    ----a-w    C:\WINDOWS\system32\wuapi.dll
2007-04-16 20:45:42    325,976    ----a-w    C:\WINDOWS\system32\wucltui.dll
2007-04-16 20:45:36    203,096    ----a-w    C:\WINDOWS\system32\wuweb.dll
2007-04-16 20:45:28    92,504    ----a-w    C:\WINDOWS\system32\cdm.dll
2007-04-16 20:45:20    53,080    ----a-w    C:\WINDOWS\system32\wuauclt.exe
2007-04-16 20:45:20    43,352    ----a-w    C:\WINDOWS\system32\wups2.dll
2007-04-16 20:44:20    271,224    ----a-w    C:\WINDOWS\system32\mucltui.dll
2007-04-16 20:44:18    208,248    ----a-w    C:\WINDOWS\system32\muweb.dll
2006-09-11 16:13:43    5,348    ----a-w    C:\Programmer\IkeCrash.log
2006-09-11 16:13:43    4,772    ----a-w    C:\Programmer\Ike.log
2006-09-11 16:13:38    21    ----a-w    C:\Programmer\unlocked_missions.xml
2006-09-11 16:13:38    19    ----a-w    C:\Programmer\unlocked_heroes.xml
2006-09-11 16:13:36    14    ----a-w    C:\Programmer\best_times.xml
2003-08-27 12:19:18    36,963    ----a-r    C:\Programmer\Fælles filer\SM1updtr.dll
2001-11-10 00:58:40    8,495    ----a-w    C:\Programmer\SetupReg.exe
2001-11-10 00:58:40    329    ----a-w    C:\Programmer\setup.bat
2001-11-10 00:49:46    113,480,648    ----a-w    C:\Programmer\rsb.uha
2001-11-10 00:23:46    15,873,229    ----a-w    C:\Programmer\myth.pak
2001-11-10 00:23:16    5,757,681    ----a-w    C:\Programmer\GhostRecon.exe
2001-10-01 14:51:00    5,427,265    ----a-w    C:\Programmer\igor.exe
2001-09-28 19:16:24    19,748    ----a-w    C:\Programmer\ReadMe.txt
2001-09-28 14:16:34    10,134    ----a-w    C:\Programmer\ubicom.ico
2001-09-20 15:42:44    3,434    ----a-w    C:\Programmer\IgorHelp.txt
2001-09-18 18:24:56    98,304    ----a-r    C:\Programmer\eax.dll
2001-09-18 18:24:56    413,766    ----a-r    C:\Programmer\ScriptEd.dll
2001-09-18 18:24:56    31,678    ----a-r    C:\Programmer\IgorScripting.txt
2001-09-18 18:24:56    24,708    ----a-r    C:\Programmer\ike.sdf
2001-09-18 14:07:50    766    ----a-w    C:\Programmer\RSEblack.ico
2001-09-18 14:07:50    7,078    ----a-w    C:\Programmer\Ghost.ico
2001-08-10 07:27:10    163,088    ----a-r    C:\Programmer\dbghelp.dll
2001-02-24 15:43:16    56,832    ----a-w    C:\Programmer\mythxuha.exe
2000-08-06 22:11:04    20,992    ----a-w    C:\Programmer\mythxpak.exe
1998-09-01 13:28:18    297,984    ----a-w    C:\Programmer\myth.acm
2006-01-19 17:55:40    56    --sh--r    C:\WINDOWS\system32\F6A1580A5C.sys
2006-01-19 17:55:45    3,350    --sha-w    C:\WINDOWS\system32\KGyGaAvL.sys


(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2003-11-04 00:17    54248    --a------    C:\Programmer\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41353F8B-78CE-48A5-BE44-153ED293D192}]
2003-02-15 09:35    65024    --a------    C:\Programmer\PopupPopper\PopLib.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
2005-05-31 01:04    853672    --a------    C:\PROGRA~1\SPYBOT~1\SDHelper.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
2006-10-12 04:25    434279    --a------    C:\Programmer\Java\jre1.5.0_09\bin\ssv.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
            C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
2007-01-20 00:55    2403392    -ra------    c:\programmer\google\googletoolbar4.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
2003-05-15 01:03    147456    --a------    C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
2007-06-29 08:51    325048    --a------    C:\Programmer\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
"HP Software Update"="C:\Programmer\HP\HP Software Update\HPWuSchd2.exe" [2005-05-12 00:12]
"Picasa Media Detector"="C:\Programmer\Picasa2\PicasaMediaDetector.exe" [2007-06-16 01:15]
"Adobe Photo Downloader"="C:\Programmer\Adobe\Photoshop Elements 5.0\apdproxy.exe" [2006-12-22 07:29]
"LogitechCommunicationsManager"="C:\Programmer\Fælles filer\LogiShrd\LComMgr\Communications_Helper.exe" []
"LogitechQuickCamRibbon"="C:\Programmer\Logitech\QuickCam10\QuickCam10.exe" [2007-05-17 10:53]
"SPAMfighter Agent"="C:\Programmer\SPAMfighter\SFAgent.exe" [2007-06-25 15:03]
"hcenter"="C:\Programmer\Support.com\bin\tgcmd.exe" [2005-04-08 12:38]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"H/PC Connection Agent"="C:\Programmer\Microsoft ActiveSync\wcescomm.exe" [2005-11-15 21:46]
"MSMSGS"="C:\Programmer\Messenger\msmsgs.exe" [2004-10-13 18:24]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-27 02:53]
"swg"="C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-29 08:51]
"SUPERAntiSpyware"="C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-01-10 15:14]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"NoColorChoice"=0 (0x0)
"NoSizeChoice"=0 (0x0)
"NoDispScrSavPage"=0 (0x0)
"NoDispCPL"=0 (0x0)
"NoVisualStyleChoice"=0 (0x0)
"NoDispSettingsPage"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSaveSettings"=0 (0x0)
"NoThemesTab"=0 (0x0)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="C:\Programmer\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll" [2007-07-15 15:28]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"="C:\Programmer\SUPERAntiSpyware\SASSEH.DLL" [2006-12-20 12:55]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Programmer\SUPERAntiSpyware\SASWINLO.dll --a------ 2006-10-19 09:12 258048 C:\Programmer\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Guard]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menuen Start^Programmer^Start^Acrobat Assistant.lnk]
path=C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\Acrobat Assistant.lnk
backup=C:\WINDOWS\pss\Acrobat Assistant.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menuen Start^Programmer^Start^Harman Kardon TC 30 Remote.lnk]
path=C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\Harman Kardon TC 30 Remote.lnk
backup=C:\WINDOWS\pss\Harman Kardon TC 30 Remote.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menuen Start^Programmer^Start^HP Image Zone Hurtig start.lnk]
path=C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\HP Image Zone Hurtig start.lnk
backup=C:\WINDOWS\pss\HP Image Zone Hurtig start.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menuen Start^Programmer^Start^Logitech Desktop Messenger.lnk]
path=C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\Logitech Desktop Messenger.lnk
backup=C:\WINDOWS\pss\Logitech Desktop Messenger.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menuen Start^Programmer^Start^Microsoft Hurtig søgning.lnk]
path=C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\Microsoft Hurtig søgning.lnk
backup=C:\WINDOWS\pss\Microsoft Hurtig søgning.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Søren^Menuen Start^Programmer^Start^Picture Motion Browser Media Check Tool.lnk]
path=C:\Documents and Settings\Søren\Menuen Start\Programmer\Start\Picture Motion Browser Media Check Tool.lnk
backup=C:\WINDOWS\pss\Picture Motion Browser Media Check Tool.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"C:\Programmer\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Hardware Abstraction Layer]
KHALMNPR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
"C:\Programmer\Logitech\QuickCam10\QuickCam10.exe" /hide

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
"C:\Programmer\Fælles filer\Logitech\LComMgr\LVComSX.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Programmer\QuickTime\qttask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc]
"C:\Programmer\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\{0228e555-4f9c-4e35-a3ec-b109a192b4c2}]
C:\Programmer\Google\Gmail Notifier\gnotify.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"ERSvc"=2 (0x2)
"PixVue"=2 (0x2)
"iPod Service"=3 (0x3)
"AdobeActiveFileMonitor5.0"=2 (0x2)


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5455027a-822a-11db-91b7-005070c841f4}]
AutoRun\command- L:\setupSNK.exe


Contents of the 'Scheduled Tasks' folder
2007-07-03 04:43:00  C:\WINDOWS\tasks\AppleSoftwareUpdate.job
2007-07-16 13:25:11  C:\WINDOWS\tasks\User_Feed_Synchronization-{4EA74684-89A0-4E29-B18D-713D2D49354E}.job

**************************************************************************

catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-16 22:53:35
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-07-16 22:54:40 - machine was rebooted
C:\ComboFix-quarantined-files.txt ... 2007-07-16 22:54

    --- E O F ---
Avatar billede fromsej Praktikant
17. juli 2007 - 11:04 #11
Åbn Stifinder, klik på Funktioner=>Mappeindstillinger=>Vis.
Fjern flueben ved "Skjul beskyttede operativsystemfiler".
Fjern flueben ved "Skjul filtypenavne for kendte filtyper".
Sæt prik i "Vis skjulte filer og mapper".
Slet denne mappe:
C:\Programmer\RXToolBar\

Upload denne fil hos Jotti eller Virustotal: C:\WINDOWS\system32\F6A1580A5C.sys
http://virusscan.jotti.org/ http://www.virustotal.com/en/indexf.html
Fortæl resultatet.
Avatar billede fromsej Praktikant
17. juli 2007 - 11:05 #12
Den sikkerhedsadvarsel, forsvinder den ikke igen ret hurtigt?
Avatar billede klangens Nybegynder
17. juli 2007 - 17:52 #13
Vedr Virustotal: Alt er i orden. Mht sikkerhedsadvarsel, den er der hele tiden:
Avatar billede klangens Nybegynder
17. juli 2007 - 19:14 #14
Hold da k... mand, jeg ringede til TDC da nethastigheden gik helt i bund. Manden jeg talte med kunne lynhurtigt konstatere at man havde forsøgt at give mig en 2mbit forbindelse, som mit sølle "kobber" slet ikke kan kapere, 2 minutter efter var jeg kørende på fuld skrald på min gamle forbindelse..!! Du skal have point, men kan ikke helt huske hvordan - sikkerhedsadvarsel er der stadig, jeg kan ikke få lov at ændre sikkerhedsindstillingerne.
Avatar billede fromsej Praktikant
17. juli 2007 - 19:55 #15
Det var da godt at TDC kunne løse det så hurtigt, ros til dem.

Lad os prøve at nulstille sikkerhedscenter.
Prøv dette:
Hent denne fil, og pak indholdet ud på skrivebordet:
http://www.sitecenter.dk/secure/nss-folder/mappe/reset.zip

1. Åbn mappen FW_reset. Dobbeltklik regfilen del_Wf, og sig ok til regeditor. Gør det samme med de 3 andre. Genstart maskinen. Gå i Start/Kør, skriv NETSH FIREWALL RESET og tryk <enter>

2. Åbn mappen SC_reset. Dobbeltklik regfilen, og sig ok til regeditor. Genstart maskinen.

Hjalp det?
Avatar billede klangens Nybegynder
18. juli 2007 - 22:04 #16
Det ser ud til at være i orden, tak for hjælpen. Jeg prøver om jeg kan uddele point korrwkt..!
Avatar billede klangens Nybegynder
18. juli 2007 - 22:08 #17
Øh... hvordan gør jeg?
Avatar billede fromsej Praktikant
18. juli 2007 - 22:53 #18
Du venter på at jeg får nosset mig sammen til at lægge et svar, så markerer du mit navn i boksen der fremkommer, og klikker på Accepter. :-)
Avatar billede fromsej Praktikant
19. juli 2007 - 10:15 #19
Tak for point. :-)
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview
Kategori
Se alle it-kurser fra Computerworld Kurser
IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.
Se alle it-kurser

Flere spørgsmål fra Virus kategorien

Titel Indlæg Oprettet Seneste aktivitet
Vil skrifte antivirusprogram. Af ErikHg i Virus 22 26/11/202510:42 23/12/202514:29
Er gratis Bitdefender værd at installere ? Af Ikke-ekspert i Virus 8 31/08/202519:08 01/09/202514:18
Ukendte filer på min Pc Af jonpet i Virus 10 03/02/202514:20 04/02/202511:05
mulig ukendt virus Af jackie18 i Virus 3 18/01/202514:07 18/01/202516:39
virus popper op med jævne mellemrum Af Malm i Virus 13 18/01/202511:40 20/01/202517:53
Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Opret Log ind

Du kan også logge ind via nedenstående tjenester

Alle kategorier på Eksperten
Seneste spørgsmål Seneste aktivitet
I går 13:08 Bruge PHP til at hente hjemmeside med fsockopen Af Strawberry i PHP
28/0113:36 godt råd søges Alternativ styresystem på Mac pc Af luffe1955 i Andre styresystemer
28/0111:32 Hjælp til kontrol af sygefravær Af Maja i Excel
27/0113:59 2 skærme til en stationær computer Af BIRGER i Skærme
26/0119:26 Opstart af ny computer Af Bent i Windows
White papers
Flere white papers »