Hej Alle .
Har lidt problemer som bliver ved med at komme igen. Bla Hitbox, advertising og doubleclick.
Kører jævnligt Spyboot og Adware SE, men de kommer bare igen, er der nogen måde jeg kan lukke af for dem.
Vedlægger også lige en HJ-Log.
Logfile of HijackThis v1.98.2
Scan saved at 09:17:10, on 09-09-2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSSYSTEM32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:ProgrammerNetropaMultimedia Keyboard
hksrv.exe
C:ProgrammerAlwil SoftwareAvast4aswUpdSv.exe
C:ProgrammerAlwil SoftwareAvast4ashServ.exe
C:ProgrammerCanonMultiPASS4MPSERVIC.EXE
C:WINDOWSsystem32
vsvc32.exe
C:WINDOWSSystem32svchost.exe
C:ProgrammerAlwil SoftwareAvast4ashMaiSv.exe
C:ProgrammerAlwil SoftwareAvast4ashWebSv.exe
C:WINDOWSExplorer.EXE
C:ProgrammerCanonMultiPASS4MPTBox.exe
C:ProgrammerJavajre1.5.0_02injusched.exe
C:ProgrammeriTunesiTunesHelper.exe
C:ProgrammerQuickTimeqttask.exe
C:WINDOWSsystem32RunDll32.exe
C:ProgrammeriPodiniPodService.exe
C:WINDOWSVM_STI.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:ProgrammerNetropaMultimedia KeyboardMMKeybd.exe
C:ProgrammerNetropaMultimedia KeyboardTrayMon.exe
C:ProgrammerFælles filerPCSuiteDataLayerDataLayer.exe
C:ProgrammerNetropaOnscreen DisplayOSD.exe
C:ProgrammerFælles filerNokiaToolsNclTray.exe
C:PROGRA~1ALWILS~1Avast4ashDisp.exe
C:ProgrammerMessengermsmsgs.exe
C:WINDOWSsystem32
undll32.exe
C:ProgrammerFælles filerPCSuiteServicesServiceLayer.exe
C:ProgrammerInterVideoCommonBinWinCinemaMgr.exe
C:ProgrammerMozilla Firefoxfirefox.exe
D:RoxyBackup fra C drevDocuments and settingsAdministratorLokale indstillingerTempMidlertidig mappe 1 for hijackthis.zipHijackThis.exe
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page =
https://www.portalbank.dk[...]
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Hyperlinks
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgrammerAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O4 - HKLM..Run: [MPTBox] C:ProgrammerCanonMultiPASS4MPTBox.exe
O4 - HKLM..Run: [SunJavaUpdateSched] C:ProgrammerJavajre1.5.0_02injusched.exe
O4 - HKLM..Run: [iTunesHelper] "C:ProgrammeriTunesiTunesHelper.exe"
O4 - HKLM..Run: [QuickTime Task] "C:ProgrammerQuickTimeqttask.exe" -atboottime
O4 - HKLM..Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe
O4 - HKLM..Run: [BigDogPath] C:WINDOWSVM_STI.EXE USB PC Camera 301P
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [nwiz] nwiz.exe /install
O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit
O4 - HKLM..Run: [MULTIMEDIA KEYBOARD] C:ProgrammerNetropaMultimedia KeyboardMMKeybd.exe
O4 - HKLM..Run: [DataLayer] C:ProgrammerFælles filerPCSuiteDataLayerDataLayer.exe
O4 - HKLM..Run: [Nokia Tray Application] C:ProgrammerFælles filerNokiaToolsNclTray.exe
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKCU..Run: [MSN7 Startup] msn7.exe
O4 - HKCU..Run: [MSMSGS] "C:ProgrammerMessengermsmsgs.exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Hurtigstart.lnk = C:ProgrammerAdobeAcrobat 7.0Reader
eader_sl.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:ProgrammerInterVideoCommonBinWinCinemaMgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:ProgrammerMicrosoft OfficeOfficeOSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgrammerJavajre1.5.0_02in
pjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgrammerJavajre1.5.0_02in
pjpi150_02.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgrammerMessengermsmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgrammerMessengermsmsgs.exe
O12 - Plugin for .pdf: C:ProgrammerInternet ExplorerPLUGINS
ppdf32.dll
O15 - Trusted Zone: http://*.windowsupdate.com
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) -
http://housecall60.trendmicro.com[...]
O16 - DPF: {3D6DDD23-870A-4FC8-B3AF-5F67C935A9B7} (Util Class) -
https://udstedelse.certifikat.tdc.dk[...]
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://v5.windowsupdate.microsoft.com[...]
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://www.pandasoftware.com[...]
Hilsen Roxy
--
Mere Heavy Metal, eller vi skider på gulvet!!!!!