HiJack log - hjælp!!!

Af Gæst Æ man | 01-01-2005 01:31 | 1402 visninger | 3 svar, hop til seneste

Hej og godt Nytår har hørt at dette forum skulle være STEDET hvis man skulle have renset sin PC for snavs. Ja - så må vi se om jeg kan få hjælp her er min Log Logfile of HijackThis v1.99.0 Scan saved at 01:30:01, on 01-01-2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32csrss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32svchost.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:WINDOWSSystem32svchost.exe C:WINDOWSSystem32svchost.exe C:WINDOWSExplorer.EXE C:WINDOWSsystem32spoolsv.exe C:WINDOWSsystem32RunDll32.exe C:Program FilesWinamp3winampa.exe C:WINDOWSSystem32spooldriversw32x863hpztsb06.exe C:Program FilesQuickTimeqttask.exe C:Program FilesSlySoftAnyDVDAnyDVD.exe C:PROGRA~1GrisoftAVGFRE~1avgcc.exe C:Program FilesMSN MessengerMsnMsgr.Exe C:Program FilesSpyware Doctorswdoctor.exe C:Program FilesAdobeAcrobat 5.0DistillrAcroTray.exe C:PROGRA~1GrisoftAVGFRE~1avgamsvr.exe C:PROGRA~1GrisoftAVGFRE~1avgupsvc.exe C:WINDOWSSystem32 vsvc32.exe C:WINDOWSSystem32svchost.exe C:WINDOWSSystem32alg.exe C:Program FilesTrojanHunter 4.0TrojanHunter.exe C:Program FilesInternet Exploreriexplore.exe C:Documents and SettingsJohn HansenDesktophijackhjt.exe R1 - HKCUSoftwareMicrosoftInternet Explorer,SearchURL = http://www.hotsearchbox.com[...] R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.dybbol-iu.dk[...] R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,SearchURL = http://www.hotsearchbox.com[...] R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant = R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch = R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://red.clientapps.yahoo.com[...] R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSabout.htm R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page = O2 - BHO: BTGrabObj Class - {00000000-F09C-02B4-6EC2-AD0300000000} - C:WINDOWSBTGrab.dll O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:Program FilesYahoo!CompanionInstallscpnycomp5_5_5_0.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 5.0AcrobatActiveXAcroIEHelper.ocx O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:PROGRA~1SPYWAR~1 oolsiesdsg.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:PROGRA~1SPYWAR~1 oolsiesdpb.dll O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:Program FilesYahoo!CompanionInstallscpnycomp5_5_5_0.dll O4 - HKLM..Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM..Run: [WinampAgent] C:Program FilesWinamp3winampa.exe O4 - HKLM..Run: [CloneCDElbyCDFL] "C:Program FilesElaborate BytesCloneCDElbyCheck.exe" /L ElbyCDFL O4 - HKLM..Run: [HPDJ Taskbar Utility] C:WINDOWSSystem32spooldriversw32x863hpztsb06.exe O4 - HKLM..Run: [QuickTime Task] "C:Program FilesQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [spp] regedit -s C:spp.reg O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartup O4 - HKLM..Run: [ElbyCheckAnyDVD] "C:Program FilesSlySoftAnyDVDElbyCheck.exe" /L AnyDVD O4 - HKLM..Run: [AnyDVD] "C:Program FilesSlySoftAnyDVDAnyDVD.exe" O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [sbwzwzrirkxo] C:WINDOWSSystem32lxcomi.exe O4 - HKLM..Run: [AVG7_CC] C:PROGRA~1GrisoftAVGFRE~1avgcc.exe /STARTUP O4 - HKLM..Run: [THGuard] "C:Program FilesTrojanHunter 4.0THGuard.exe" O4 - HKCU..Run: [MsnMsgr] "C:Program FilesMSN MessengerMsnMsgr.Exe" /background O4 - HKCU..Run: [Spyware Doctor] "C:Program FilesSpyware Doctorswdoctor.exe" /Q O4 - Global Startup: Acrobat Assistant.lnk = C:Program FilesAdobeAcrobat 5.0DistillrAcroTray.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:Program FilesCommon FilesAdobeCalibrationAdobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOffice10OSA.EXE O4 - Global Startup: PrecisionTime.lnk = C:Program FilesPrecisionTimePrecisionTime.exe O8 - Extra context menu item: &Dictionary - http://www.ezreference.com[...] O8 - Extra context menu item: &Encyclopedia - http://www.ezreference.com[...] O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000 O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:PROGRA~1SPYWAR~1 oolsiesdpb.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe O12 - Plugin for .spop: C:Program FilesInternet ExplorerPluginsNPDocBox.dll O15 - Trusted Zone: http://www.dbunet.dk[...] O16 - DPF: {086A694F-91FB-4068-B44C-124FB69BF05D} - http://www.searchwww.com[...] O16 - DPF: {1A8790BD-AEBD-11BD-A2BD-00619BD00001} (Sydbanks NetBank) - https://netbank.sydbank.dk[...] O16 - DPF: {1E5592CB-8F5B-46F8-9EA6-65C01213808A} (InstaladorBetyByte Control) - http://www2.redzone.dk[...] O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com[...] O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com[...] O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net[...] O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com[...] O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net[...] O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com[...] O16 - DPF: {9E98E84C-79E1-49C3-82EB-798FCD552EFB} (VacPro.internazionale_ver4) - http://advnt01.com[...] O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com[...] O16 - DPF: {D3426292-3750-4D80-9D0F-2816F61A6D15} (SpeedTest Control) - http://81.19.245.211[...] O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://register3.valueactive.com[...] O16 - DPF: {F48EAB92-8BCE-4C77-BE98-D10060BD8590} (Project1.SBDownloader) - http://www.spybouncer.com[...] O23 - Service: AVG7 Alert Manager Server - GRISOFT, s.r.o. - C:PROGRA~1GrisoftAVGFRE~1avgamsvr.exe O23 - Service: AVG7 Update Service - GRISOFT, s.r.o. - C:PROGRA~1GrisoftAVGFRE~1avgupsvc.exe O23 - Service: NVIDIA Display Driver Service - NVIDIA Corporation - C:WINDOWSSystem32 vsvc32.exe O23 - Service: TrueVector Internet Monitor - Zone Labs Inc. - C:WINDOWSsystem32oneLabsvsmon.exe MVH Æ man
--

Gæstebruger, opret dit eget login og få din egen signatur.

#1
Teffer
Ny på siden
01-01-2005 01:53

Rapporter til Admin

må jeg spørge hvad hijack er:S... har hørt navnet mange steder men hva er det?... undskyld for ot !
--

#2
*Cookie
Monsterbruger
01-01-2005 16:40

Rapporter til Admin

#1 Vi er lidt O/T i en andens tråd, men du får lige et svar alligevel :o). Her kan du læse lidt om, hvad HJT er: http://www.hol.dk[...] #0 Undskyld, vi lånte din tråd. Jeg vil meget gerne hjælpe dig med loggen, men må indrømme, at det nok ikke bliver i dag. Har stadig "bivirkninger" fra i nat, så hovedet klarer ikke nye log-rensninger i dag. Jeg når kun dem, jeg var begyndt på at rense. Sorry, men håber, du kan vente så længe - eller at en anden kan hjælpe dig inden da. Godt nytår alligevel :o)! //*Cookie
--
Make somebody else's day - commit an act of kindness ... TODAY :o)!

#3
*Cookie
Monsterbruger
02-01-2005 13:00

Rapporter til Admin

#0 Se svar i din anden tråd: http://www.hol.dk[...] ! //*Cookie
--
Make somebody else's day - commit an act of kindness ... TODAY :o)!