Hjælp til HiJackThis Log

Af Bruger Wessller | 27-11-2004 15:23 | 1571 visninger | 5 svar, hop til seneste

Hejsa Hol'er Er der en der er frisk på at kigge lidt på denne log: Logfile of HijackThis v1.97.7 Scan saved at 15:05:31, on 27-11-2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgrammerAheadInCDInCDsrv.exe C:WINDOWSExplorer.EXE C:WINDOWSsystem32LEXBCES.EXE C:WINDOWSsystem32spoolsv.exe C:WINDOWSsystem32LEXPPS.EXE C:ProgrammerFælles filerSymantec SharedccSetMgr.exe C:WINDOWSSystem32gearsec.exe C:ProgrammerNorton AntiVirus avapsvc.exe C:ProgrammerNorton AntiVirusAdvToolsNPROTECT.EXE C:WINDOWSSystem32svchost.exe C:ProgrammerFælles filerSymantec SharedCCPD-LCsymlcsvc.exe C:ProgrammerFælles filerSymantec SharedccEvtMgr.exe C:ProgrammerFælles filerSymantec SharedSecurity CenterSymWSC.exe C:ProgrammerNorton AntiVirusSAVScan.exe C:ProgrammerBrowser MouseBrowser Mouse1.0lwbwheel.exe C:ProgrammerFælles filerSymantec SharedccApp.exe C:ProgrammerWinampwinampa.exe C:ProgrammeriTunesiTunesHelper.exe C:ProgrammerQuickTimeqttask.exe C:ProgrammeriPodiniPodService.exe C:ProgrammerLogitechMouseWaresystemem_exec.exe C:ProgrammerAheadInCDInCD.exe C:PROGRA~1MYWEBS~1ar2.binmwsoemon.exe C:ProgrammerLexmark X5100 Serieslxbabmgr.exe C:WINDOWSsystem32RunDll32.exe C:ProgrammerLexmark X5100 Serieslxbabmon.exe C:WINDOWSSystem32P2P NetworkingP2P Networking.exe C:ProgrammerCommon filesSearchUpgraderSearchUpgrader.exe C:Program FilesAltnetPoints ManagerPoints Manager.exe C:ProgrammerFælles filerCMEIICMESys.exe C:ProgrammerMSN MessengerMsnMsgr.Exe C:PROGRA~2AltnetDOWNLO~1asm.exe C:ProgrammerFælles filerGMTGMT.exe C:PROGRA~1INCRED~1inIMApp.exe c:documents and settingsmortenlokale indstillinger empfsg_4104.exe C:ProgrammerMessengermsmsgs.exe C:HIJackThisHijackThis.exe R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://http[...] R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://www.yahoo.com[...] R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.dk[...] R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.get2net.dk[...] R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://search.yahoo.com[...] R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Hyperlinks R3 - URLSearchHook: PerfectNavBHO Class - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - C:PROGRA~1PERFEC~1BHOPERFEC~1.DLL O2 - BHO: (no name) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:ProgrammerMyWebSearchSrchAstt2.binMWSSRCAS.DLL O2 - BHO: NavErrRedir Class - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - C:PROGRA~1PERFEC~1BHOPERFEC~1.DLL O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:WINDOWSDownloaded Program FilesCONFLICT.1ycomp5_3_16_0.dll O2 - BHO: (no name) - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:ProgrammerMyWaymyBar1.binMYBAR.DLL O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgrammerAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx O2 - BHO: (no name) - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:ProgrammerMyWebSearchar2.binMWSBAR.DLL O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgrammerNorton AntiVirusNavShExt.dll O2 - BHO: (no name) - {DE614603-6320-4046-A7A7-6A69CEC26F14} - C:WINDOWS avpmc4b_1,0,0,5_navpmc.dll (file missing) O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgrammerNorton AntiVirusNavShExt.dll O3 - Toolbar: &SearchBar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:ProgrammerMyWaymyBar1.binMYBAR.DLL O3 - Toolbar: My &Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:ProgrammerMyWebSearchar2.binMWSBAR.DLL O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:WINDOWSDownloaded Program FilesCONFLICT.1ycomp5_3_16_0.dll O4 - HKLM..Run: [SiSUSBRG] C:WINDOWSSiSUSBrg.exe O4 - HKLM..Run: [SiS KHooker] C:WINDOWSSystem32khooker.exe O4 - HKLM..Run: [LWBMOUSE] C:ProgrammerBrowser MouseBrowser Mouse1.0lwbwheel.exe O4 - HKLM..Run: [ccApp] "C:ProgrammerFælles filerSymantec SharedccApp.exe" O4 - HKLM..Run: [Advanced Tools Check] C:PROGRA~1NORTON~1AdvToolsADVCHK.EXE O4 - HKLM..Run: [WinampAgent] C:ProgrammerWinampwinampa.exe O4 - HKLM..Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM..Run: [iTunesHelper] C:ProgrammeriTunesiTunesHelper.exe O4 - HKLM..Run: [QuickTime Task] "C:ProgrammerQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [InCD] C:ProgrammerAheadInCDInCD.exe O4 - HKLM..Run: [MyWebSearch Email Plugin] C:PROGRA~1MYWEBS~1ar2.binmwsoemon.exe O4 - HKLM..Run: [Lexmark X5100 Series] "C:ProgrammerLexmark X5100 Serieslxbabmgr.exe" O4 - HKLM..Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM..Run: [P2P Networking] C:WINDOWSSystem32P2P NetworkingP2P Networking.exe /AUTOSTART O4 - HKLM..Run: [KAZAA] C:ProgrammerKazaakazaa.exe /SYSTRAY O4 - HKLM..Run: [SearchUpgrader] C:ProgrammerCommon filesSearchUpgraderSearchUpgrader.exe O4 - HKLM..Run: [AltnetPointsManager] C:Program FilesAltnetPoints ManagerPoints Manager.exe -s O4 - HKLM..Run: [CMESys] "C:ProgrammerFælles filerCMEIICMESys.exe" O4 - HKLM..Run: [Trickler] "c:documents and settingsmortenlokale indstillinger empfsg_4104.exe" O4 - HKCU..Run: [cpntmgc] C:WINDOWS avpmc avpmc.exe O4 - HKCU..Run: [MyWebSearch Email Plugin] C:PROGRA~1MYWEBS~1ar2.binmwsoemon.exe O4 - HKCU..Run: [MsnMsgr] "C:ProgrammerMSN MessengerMsnMsgr.Exe" /background O4 - HKCU..Run: [IncrediMail] C:PROGRA~1INCRED~1inIncMail.exe /c O4 - Startup: MyWebSearch Email Plugin.lnk = C:ProgrammerMyWebSearchar2.binMWSOEMON.EXE O4 - Global Startup: GStartup.lnk = ? O4 - Global Startup: Microsoft Office.lnk = C:ProgrammerMicrosoft OfficeOffice10OSA.EXE O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:ProgrammerMyWebSearchar2.binMWSOEMON.EXE O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:PROGRA~1INCRED~1in esourcesWebMenuImg.htm O8 - Extra context menu item: &Search - http://bar.mywebsearch.com[...] O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000 O9 - Extra button: Messenger (HKLM) O9 - Extra 'Tools' menuitem: Windows Messenger (HKLM) O12 - Plugin for .spop: C:ProgrammerInternet ExplorerPluginsNPDocBox.dll O14 - IERESET.INF: START_PAGE_URL= http://www.get2net.dk[...] O16 - DPF: NavCab - http://www.gamextazy.com[...] O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office.microsoft.com[...] O16 - DPF: {0556834E-F56C-4545-8FAD-4F0ED25999BE} (Jackie Control) - http://www.6jackpot.com[...] O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com[...] O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://imgfarm.com[...] O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) - O16 - DPF: {2ABE804B-4D3A-41BF-A172-304627874B45} - http://akamai.downloadv3.com[...] O16 - DPF: {B33422AC-C567-4F7D-BB28-6583371EC4EE} (Microsoft CMS HTML Editor) - https://www.minskole.dk[...] O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com[...] O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} (Yahoo! Toolbar) - http://us.dl1.yimg.com[...] O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IMDownloader Class) - http://www2.incredimail.com[...] O16 - DPF: {F9408298-9658-482C-8B02-93F09A80225F} (Util Class) - https://udstedelse.certifikat.tdc.dk[...] Jeg er overbevist om at der er alt muligt "godt" der skal fjernes. På forhånd tak Wessller
--

ASUS P4PE, Celeron 2000, GeForce 4 TI4200, 3 x 80 GB HD 7200 RPM, 1024 DDR2700. DVD+CD rom

#1
Kim In Chul
Mega Supporter
27-11-2004 16:25

Rapporter til Admin

Fy for satan:S Det er en meget grim log du har der... Inden jeg overhovedet vil kigge på din log download disse 3 programmer og scan din computer: Spybot Search And Destroy 1.3: http://www.safer-networking.org[...] Ad-aware SE 1.05: http://kortlink.dk[...] CW-shredder: http://www.softpedia.com[...] Når du er færdig så kør en online viruscanning: http://housecall.trendmicro.com[...] Og slet alt det den finder... Når du har gjort det, så vil jeg kigge på din log;) //Kim In Chul
--
MSN: [email protected]

#2
Wessller
Bruger
27-11-2004 19:50

Rapporter til Admin

Så kom den til at se sådan ud: Logfile of HijackThis v1.97.7 Scan saved at 19:44:04, on 27-11-2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgrammerAheadInCDInCDsrv.exe C:WINDOWSExplorer.EXE C:ProgrammerFælles filerSymantec SharedccSetMgr.exe C:ProgrammerFælles filerSymantec SharedSPBBCSPBBCSvc.exe C:ProgrammerFælles filerSymantec SharedccEvtMgr.exe C:WINDOWSsystem32LEXBCES.EXE C:WINDOWSsystem32spoolsv.exe C:WINDOWSsystem32LEXPPS.EXE C:WINDOWSSystem32gearsec.exe C:ProgrammerNorton AntiVirus avapsvc.exe C:ProgrammerNorton AntiVirusIWPNPFMntor.exe C:WINDOWSSystem32svchost.exe C:ProgrammerFælles filerSymantec SharedCCPD-LCsymlcsvc.exe C:ProgrammerBrowser MouseBrowser Mouse1.0lwbwheel.exe C:ProgrammerWinampwinampa.exe C:ProgrammerQuickTimeqttask.exe C:ProgrammerAheadInCDInCD.exe C:ProgrammerLexmark X5100 Serieslxbabmgr.exe C:WINDOWSsystem32RunDll32.exe C:ProgrammerFælles filerSymantec SharedccApp.exe C:ProgrammerLexmark X5100 Serieslxbabmon.exe C:ProgrammerNorton AntiVirusCfgWiz.exe C:ProgrammerLogitechMouseWaresystemem_exec.exe C:ProgrammerMSN MessengerMsnMsgr.Exe C:PROGRA~1INCRED~1inIMApp.exe C:ProgrammerNorton AntiVirusNAVW32.EXE C:ProgrammerFælles filerSymantec SharedSNDSrvc.exe C:ProgrammerMessengermsmsgs.exe C:HIJackThisHijackThis.exe R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://www.yahoo.com[...] R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.dk[...] R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.get2net.dk[...] R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://search.yahoo.com[...] R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Hyperlinks O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgrammerAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:ProgrammerSpybot - Search & DestroySDHelper.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgrammerNorton AntiVirusNavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgrammerNorton AntiVirusNavShExt.dll O4 - HKLM..Run: [SiSUSBRG] C:WINDOWSSiSUSBrg.exe O4 - HKLM..Run: [LWBMOUSE] C:ProgrammerBrowser MouseBrowser Mouse1.0lwbwheel.exe O4 - HKLM..Run: [WinampAgent] C:ProgrammerWinampwinampa.exe O4 - HKLM..Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM..Run: [QuickTime Task] "C:ProgrammerQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [InCD] C:ProgrammerAheadInCDInCD.exe O4 - HKLM..Run: [Lexmark X5100 Series] "C:ProgrammerLexmark X5100 Serieslxbabmgr.exe" O4 - HKLM..Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM..Run: [ccApp] "C:ProgrammerFælles filerSymantec SharedccApp.exe" O4 - HKLM..Run: [NAV CfgWiz] "C:ProgrammerNorton AntiVirusCfgWiz.exe" /GUID {0D7956A2-5A08-4ec2-A72C-DF8495A66016} /MODE CfgWiz /CMDLINE "REBOOT" O4 - HKLM..Run: [Symantec NetDriver Monitor] C:PROGRA~1SYMNET~1SNDMon.exe O4 - HKCU..Run: [MsnMsgr] "C:ProgrammerMSN MessengerMsnMsgr.Exe" /background O4 - HKCU..Run: [IncrediMail] C:PROGRA~1INCRED~1inIncMail.exe /c O4 - Global Startup: Microsoft Office.lnk = C:ProgrammerMicrosoft OfficeOffice10OSA.EXE O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000 O9 - Extra button: Messenger (HKLM) O9 - Extra 'Tools' menuitem: Windows Messenger (HKLM) O12 - Plugin for .spop: C:ProgrammerInternet ExplorerPluginsNPDocBox.dll O14 - IERESET.INF: START_PAGE_URL= http://www.get2net.dk[...] O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office.microsoft.com[...] O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com[...] O16 - DPF: {B33422AC-C567-4F7D-BB28-6583371EC4EE} (Microsoft CMS HTML Editor) - https://www.minskole.dk[...] O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com[...] O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} (Yahoo! Toolbar) - http://us.dl1.yimg.com[...] O16 - DPF: {F9408298-9658-482C-8B02-93F09A80225F} (Util Class) - https://udstedelse.certifikat.tdc.dk[...]
--
ASUS P4PE, Celeron 2000, GeForce 4 TI4200, 3 x 80 GB HD 7200 RPM, 1024 DDR2700. DVD+CD rom

#3
Wessller
Bruger
27-11-2004 22:25

Rapporter til Admin

Kørte lige lidt flerer scaninger og så ser den sådan ud. Er der en der vil kigge på den? Logfile of HijackThis v1.97.7 Scan saved at 22:20:37, on 27-11-2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgrammerAheadInCDInCDsrv.exe C:WINDOWSExplorer.EXE C:ProgrammerFælles filerSymantec SharedccSetMgr.exe C:ProgrammerFælles filerSymantec SharedSPBBCSPBBCSvc.exe C:ProgrammerFælles filerSymantec SharedccEvtMgr.exe C:WINDOWSsystem32LEXBCES.EXE C:WINDOWSsystem32spoolsv.exe C:WINDOWSsystem32LEXPPS.EXE C:WINDOWSSystem32gearsec.exe C:ProgrammerNorton AntiVirus avapsvc.exe C:ProgrammerNorton AntiVirusIWPNPFMntor.exe C:WINDOWSSystem32svchost.exe C:ProgrammerFælles filerSymantec SharedCCPD-LCsymlcsvc.exe C:ProgrammerBrowser MouseBrowser Mouse1.0lwbwheel.exe C:ProgrammerWinampwinampa.exe C:ProgrammerQuickTimeqttask.exe C:ProgrammerAheadInCDInCD.exe C:ProgrammerLexmark X5100 Serieslxbabmgr.exe C:WINDOWSsystem32RunDll32.exe C:ProgrammerFælles filerSymantec SharedccApp.exe C:ProgrammerLexmark X5100 Serieslxbabmon.exe C:ProgrammerLogitechMouseWaresystemem_exec.exe C:ProgrammerMSN MessengerMsnMsgr.Exe C:PROGRA~1INCRED~1inIMApp.exe C:ProgrammerFælles filerSymantec SharedSNDSrvc.exe C:ProgrammerInternet Exploreriexplore.exe C:ProgrammerMessengermsmsgs.exe C:HIJackThisHijackThis.exe R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://www.yahoo.com[...] R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.dk[...] R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.get2net.dk[...] R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://search.yahoo.com[...] R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Hyperlinks O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgrammerAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:ProgrammerSpybot - Search & DestroySDHelper.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgrammerNorton AntiVirusNavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgrammerNorton AntiVirusNavShExt.dll O4 - HKLM..Run: [SiSUSBRG] C:WINDOWSSiSUSBrg.exe O4 - HKLM..Run: [LWBMOUSE] C:ProgrammerBrowser MouseBrowser Mouse1.0lwbwheel.exe O4 - HKLM..Run: [WinampAgent] C:ProgrammerWinampwinampa.exe O4 - HKLM..Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM..Run: [QuickTime Task] "C:ProgrammerQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [InCD] C:ProgrammerAheadInCDInCD.exe O4 - HKLM..Run: [Lexmark X5100 Series] "C:ProgrammerLexmark X5100 Serieslxbabmgr.exe" O4 - HKLM..Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM..Run: [ccApp] "C:ProgrammerFælles filerSymantec SharedccApp.exe" O4 - HKLM..Run: [Symantec NetDriver Monitor] C:PROGRA~1SYMNET~1SNDMon.exe O4 - HKCU..Run: [MsnMsgr] "C:ProgrammerMSN MessengerMsnMsgr.Exe" /background O4 - HKCU..Run: [IncrediMail] C:PROGRA~1INCRED~1inIncMail.exe /c O4 - Global Startup: Microsoft Office.lnk = C:ProgrammerMicrosoft OfficeOffice10OSA.EXE O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000 O9 - Extra button: Messenger (HKLM) O9 - Extra 'Tools' menuitem: Windows Messenger (HKLM) O12 - Plugin for .spop: C:ProgrammerInternet ExplorerPluginsNPDocBox.dll O14 - IERESET.INF: START_PAGE_URL= http://www.get2net.dk[...] O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office.microsoft.com[...] O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com[...] O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net[...] O16 - DPF: {B33422AC-C567-4F7D-BB28-6583371EC4EE} (Microsoft CMS HTML Editor) - https://www.minskole.dk[...] O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com[...] O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} (Yahoo! Toolbar) - http://us.dl1.yimg.com[...] O16 - DPF: {F9408298-9658-482C-8B02-93F09A80225F} (Util Class) - https://udstedelse.certifikat.tdc.dk[...]
--
ASUS P4PE, Celeron 2000, GeForce 4 TI4200, 3 x 80 GB HD 7200 RPM, 1024 DDR2700. DVD+CD rom

#4
Kim In Chul
Mega Supporter
28-11-2004 12:34

Rapporter til Admin

Det ser jo straks meget bedre ud:) Din log er faktisk næsten ren... Så de 3 programmer samt viruscanneren gjorde temmelig meget arbejde:) Der er dog stadig et par ting som kan fikses... Start med at deaktivere systemgendannelsen: Højreklik på "Denne Computer" på skrivebordet, vælg egenskaber og fanebladet "Systemgendannelse" og sæt flueben i "Deaktiver systemgendannelse". Klik ok og genstart. Kør en ny hijackthis scanning og sæt flueben ud foran: R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://search.yahoo.com[...] O4 - HKLM..Run: [QuickTime Task] "C:ProgrammerQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [InCD] C:ProgrammerAheadInCDInCD.exe O4 - Global Startup: Microsoft Office.lnk = C:ProgrammerMicrosoft OfficeOffice10OSA.EXE O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} (Yahoo! Toolbar) - http://us.dl1.yimg.com[...] Luk derefter alle browservindnuer og klik på "fix checked" Genstart og aktiver systemgendannelsen igen, for så er du nemlig færdig... //Kim In Chul
--
MSN: [email protected]

#5
Kim In Chul
Mega Supporter
28-11-2004 13:59

Rapporter til Admin

Måske skulle jeg også lige give dig resten af "pakken" Spywareguard: http://www.javacoolsoftware.net[...] Fungere lidt som Spybots Tea Timer Funktion, bare bedre og mere brugervenlig. ------------------------------------------ Spywareblaster: http://www.javacoolsoftware.net[...] Fungere lidt som Immunize hos spybot... brug "Enabled all protection" ------------------------------------------- Alle programmerne skal selvfølgelig opdateres før brug... Firewallen Sygate: http://download.com.com[...] Alle programmerne er gratis og kan bruges efter behov... Du har sikkert nogen af dem, men alligevel:) //Kim In Chul
--
MSN: [email protected]