zica

Hmm...Det lät inte bra Datorn mår bra förövrigt. Har haft väldigt lite strul med den. Det kan dock komma upp ett felmeddelande ibland när man stänger ner internet explorern. Den säger att den inte kan läsa från minnet, eller ngt liknande. Det är så sällan den kommer upp. Jag får köra Combo fixen i helgen

Kunde inte tanka från din länk. Detta är visst en av sidorna jag inte har åtkomst till... Tankade här istället: http://www.bleepingcomputer.com/files/sdfix.php SDFix: Version 1.240 Run by Dan on 2008-11-25 at 19:08 Microsoft Windows XP [Version 5.1.2600] Running From: C:SDFix Checking Services : Restoring Default Security Values Restoring Default Hosts File Rebooting Checking Files : No Trojan Files Found Removing Temp Files ADS Check : Final Check : catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-25 19:18:37 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden services & system hive ... [HKEY_LOCAL_MACHINESYSTEMControlSet001EnumACPIPNP0F133&2411e6fe&0LogConf] "BasicConfigVector"=hex(a):48,00,00,00,0f,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,.. "BootConfig"=hex(8):01,00,00,00,0f,00,00,00,00,00,00,00,01,00,01,00,01,00,00,00,02,.. [HKEY_LOCAL_MACHINESYSTEMControlSet001ServicessptdCfg19659239224E364682FA4BAF72C53EA4] "p0"="C:ProgramDAEMON Tools" "h0"=dword:00000000 "khjeh"=hex:43,de,ae,69,a9,a9,6c,cb,46,48,e7,5d,0c,c2,f7,6e,1f,80,e1,5b,36,.. [HKEY_LOCAL_MACHINESYSTEMControlSet001ServicessptdCfg19659239224E364682FA4BAF72C53EA400000001] "a0"=hex:20,01,00,00,50,56,d5,97,91,80,71,09,d8,71,11,aa,04,36,a7,5d,86,.. "khjeh"=hex:f1,20,5f,e6,82,7b,d6,3a,9b,8d,13,6f,ab,75,f6,ea,0e,12,0a,46,0c,.. [HKEY_LOCAL_MACHINESYSTEMControlSet001ServicessptdCfg19659239224E364682FA4BAF72C53EA4000000010Jf40] "khjeh"=hex:cc,87,dd,91,cb,c1,86,8d,e2,8f,9a,52,1d,18,9e,71,c0,b6,cc,c2,90,.. [HKEY_LOCAL_MACHINESYSTEMControlSet002EnumACPIPNP0F133&2411e6fe&0LogConf] "BasicConfigVector"=hex(a):48,00,00,00,0f,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,.. "BootConfig"=hex(8):01,00,00,00,0f,00,00,00,00,00,00,00,01,00,01,00,01,00,00,00,02,.. [HKEY_LOCAL_MACHINESYSTEMControlSet002ServicessptdCfg0D79C293C1ED61418462E24595C90D04] "p0"="C:ProgramAlcohol SoftAlcohol 120" "h0"=dword:00000001 "ujdew"=hex:54,37,4c,15,a8,96,3d,8a,dd,ad,a1,3c,8d,39,7e,55,f1,0b,2a,bc,11,.. [HKEY_LOCAL_MACHINESYSTEMControlSet002ServicessptdCfg19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:43,de,ae,69,a9,a9,6c,cb,46,48,e7,5d,0c,c2,f7,6e,1f,80,e1,5b,36,.. "p0"="C:ProgramDAEMON Tools" [HKEY_LOCAL_MACHINESYSTEMControlSet002ServicessptdCfg19659239224E364682FA4BAF72C53EA400000001] "khjeh"=hex:f1,20,5f,e6,82,7b,d6,3a,9b,8d,13,6f,ab,75,f6,ea,0e,12,0a,46,0c,.. "a0"=hex:20,01,00,00,75,7b,12,b4,02,c0,66,bc,3d,de,05,bd,53,f1,b7,00,0b,.. [HKEY_LOCAL_MACHINESYSTEMControlSet002ServicessptdCfg19659239224E364682FA4BAF72C53EA4000000010Jf40] "khjeh"=hex:f3,9e,bb,d0,6c,c6,6c,87,26,f5,18,36,a1,1e,29,b8,cc,b2,b8,66,66,.. [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetEnumACPIPNP0F133&2411e6fe&0LogConf] "BasicConfigVector"=hex(a):48,00,00,00,0f,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,.. "BootConfig"=hex(8):01,00,00,00,0f,00,00,00,00,00,00,00,01,00,01,00,01,00,00,00,02,.. [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicessptdCfg] "s1"=dword:b518d8c9 "s2"=dword:fcae34b6 "h0"=dword:00000002 [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicessptdCfg0D79C293C1ED61418462E24595C90D04] "p0"="C:ProgramAlcohol SoftAlcohol 120" "h0"=dword:00000001 "ujdew"=hex:54,37,4c,15,a8,96,3d,8a,dd,ad,a1,3c,8d,39,7e,55,f1,0b,2a,bc,11,.. [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicessptdCfg19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:43,de,ae,69,a9,a9,6c,cb,46,48,e7,5d,0c,c2,f7,6e,1f,80,e1,5b,36,.. "p0"="C:ProgramDAEMON Tools" [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicessptdCfg19659239224E364682FA4BAF72C53EA400000001] "khjeh"=hex:f1,20,5f,e6,82,7b,d6,3a,9b,8d,13,6f,ab,75,f6,ea,0e,12,0a,46,0c,.. "a0"=hex:20,01,00,00,75,7b,12,b4,02,c0,66,bc,3d,de,05,bd,53,f1,b7,00,0b,.. [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicessptdCfg19659239224E364682FA4BAF72C53EA4000000010Jf40] "khjeh"=hex:f3,9e,bb,d0,6c,c6,6c,87,26,f5,18,36,a1,1e,29,b8,cc,b2,b8,66,66,.. [HKEY_LOCAL_MACHINESYSTEMControlSet004EnumACPIPNP0F133&2411e6fe&0LogConf] "BasicConfigVector"=hex(a):48,00,00,00,0f,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,.. "BootConfig"=hex(8):01,00,00,00,0f,00,00,00,00,00,00,00,01,00,01,00,01,00,00,00,02,.. [HKEY_LOCAL_MACHINESYSTEMControlSet004ServicessptdCfg0D79C293C1ED61418462E24595C90D04] "p0"="C:ProgramAlcohol SoftAlcohol 120" "h0"=dword:00000001 "ujdew"=hex:54,37,4c,15,a8,96,3d,8a,dd,ad,a1,3c,8d,39,7e,55,f1,0b,2a,bc,11,.. [HKEY_LOCAL_MACHINESYSTEMControlSet004ServicessptdCfg19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:43,de,ae,69,a9,a9,6c,cb,46,48,e7,5d,0c,c2,f7,6e,1f,80,e1,5b,36,.. "p0"="C:ProgramDAEMON Tools" [HKEY_LOCAL_MACHINESYSTEMControlSet004ServicessptdCfg19659239224E364682FA4BAF72C53EA400000001] "khjeh"=hex:f1,20,5f,e6,82,7b,d6,3a,9b,8d,13,6f,ab,75,f6,ea,0e,12,0a,46,0c,.. "a0"=hex:20,01,00,00,75,7b,12,b4,02,c0,66,bc,3d,de,05,bd,53,f1,b7,00,0b,.. [HKEY_LOCAL_MACHINESYSTEMControlSet004ServicessptdCfg19659239224E364682FA4BAF72C53EA4000000010Jf40] "khjeh"=hex:f3,9e,bb,d0,6c,c6,6c,87,26,f5,18,36,a1,1e,29,b8,cc,b2,b8,66,66,.. [HKEY_LOCAL_MACHINESYSTEMControlSet005EnumACPIPNP0F133&2411e6fe&0LogConf] "BasicConfigVector"=hex(a):48,00,00,00,0f,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,.. "BootConfig"=hex(8):01,00,00,00,0f,00,00,00,00,00,00,00,01,00,01,00,01,00,00,00,02,.. [HKEY_LOCAL_MACHINESYSTEMControlSet005ServicessptdCfg0D79C293C1ED61418462E24595C90D04] "p0"="C:ProgramAlcohol SoftAlcohol 120" "h0"=dword:00000001 "ujdew"=hex:54,37,4c,15,a8,96,3d,8a,dd,ad,a1,3c,8d,39,7e,55,f1,0b,2a,bc,11,.. [HKEY_LOCAL_MACHINESYSTEMControlSet005ServicessptdCfg19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:43,de,ae,69,a9,a9,6c,cb,46,48,e7,5d,0c,c2,f7,6e,1f,80,e1,5b,36,.. "p0"="C:ProgramDAEMON Tools" [HKEY_LOCAL_MACHINESYSTEMControlSet005ServicessptdCfg19659239224E364682FA4BAF72C53EA400000001] "khjeh"=hex:f1,20,5f,e6,82,7b,d6,3a,9b,8d,13,6f,ab,75,f6,ea,0e,12,0a,46,0c,.. "a0"=hex:20,01,00,00,75,7b,12,b4,02,c0,66,bc,3d,de,05,bd,53,f1,b7,00,0b,.. [HKEY_LOCAL_MACHINESYSTEMControlSet005ServicessptdCfg19659239224E364682FA4BAF72C53EA4000000010Jf40] "khjeh"=hex:f3,9e,bb,d0,6c,c6,6c,87,26,f5,18,36,a1,1e,29,b8,cc,b2,b8,66,66,.. scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 Remaining Services : Authorized Application Key Export: [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicystandardprofileauthorizedapplicationslist] "%windir%system32sessmgr.exe"="%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:ProgramKazaa Lite K++KazaaLite.kpp"="C:ProgramKazaa Lite K++KazaaLite.kpp:*:Enabled:KazaaLite" "C:ProgramBitTorrentbittorrent.exe"="C:ProgramBitTorrentbittorrent.exe:*:Enabled:BitTorrent" "C:ProgramDirect ConnectDirect Connect.exe"="C:ProgramDirect ConnectDirect Connect.exe:*:Enabled:Direct Connect" "C:ProgramDC++DCPlusPlus.exe"="C:ProgramDC++DCPlusPlus.exe:*:Enabled:DC++" "G:SpelF.E.A.RFEAR.exe"="G:SpelF.E.A.RFEAR.exe:*:Enabled:FEAR" "%windir%Network Diagnosticxpnetdiag.exe"="%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:ProgramuTorrentuTorrent.exe"="C:ProgramuTorrentuTorrent.exe:*:Enabled:æTorrent" [HKEY_LOCAL_MACHINEsystemcurrentcontrolsetservicessharedaccessparametersfirewallpolicydomainprofileauthorizedapplicationslist] "%windir%system32sessmgr.exe"="%windir%system32sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%Network Diagnosticxpnetdiag.exe"="%windir%Network Diagnosticxpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" Remaining Files : Files with Hidden Attributes : Mon 12 Jun 2006 4,348 ..SH. --- "C:Documents and SettingsAll UsersDRMDRMv1.bak" Thu 12 Apr 2007 0 A.SH. --- "C:Documents and SettingsAll UsersDRMCacheIndiv01.tmp" Sun 29 Apr 2007 857 ...HR --- "C:Documents and SettingsDanApplication DataSecuROMUserDatasecurom_v7_01.bak" Finished! -------------------------------------------------------------------------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:27:14, on 2008-11-25 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgramDelade filerSymantec SharedccSetMgr.exe C:ProgramDelade filerSymantec SharedccEvtMgr.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSExplorer.EXE C:WINDOWSsystem32spoolsv.exe C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe C:WINDOWSsystem32BrmfBAgS.exe C:ProgramDelade filerSymantec SharedccProxy.exe C:ProgramPortrait DisplaysforteManagerDTSRVC.exe C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe C:WINDOWSsystem32PnkBstrA.exe C:ProgramDelade filerSymantec SharedSNDSrvc.exe C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe C:WINDOWSsystem32svchost.exe C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe C:WINDOWSsystem32ctfmon.exe C:WINDOWSSOUNDMAN.EXE C:ProgramCyberLinkPowerDVDPDVDServ.exe C:ProgramDAPDAP.EXE C:ProgramPowerISOPWRISOVM.EXE C:ProgramJavajre1.6.0_01binjusched.exe C:ProgramScanSoftPaperPortpptd40nt.exe C:ProgramBrotherControlCenter2brctrcen.exe C:ProgramWinPortraitwpctrl.exe C:ProgramPortrait DisplaysforteManagerDTHtml.exe C:ProgramWinPortraitfloater.exe C:ProgramGigabyteET5GUI.exe C:ProgramDAEMON Toolsdaemon.exe C:ProgramATI TechnologiesATI.ACEcli.exe C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe C:ProgramDelade filerSymantec SharedccApp.exe C:ProgramMessengermsmsgs.exe C:ProgramPeerGuardian2pg2.exe C:ProgramSlySoftAnyDVDAnyDVD.exe C:ProgramuTorrentuTorrent.exe C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe C:ProgramInternet Exploreriexplore.exe C:ProgramTrend MicroHijackThiszica.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.tankafett.com/ R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Länkar O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEHelperShim.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:ProgramJavajre1.6.0_01binssv.dll O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:ProgramDelade filerSymantec SharedAdBlockingNISShExt.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgramNorton Internet SecurityNorton AntiVirusNavShExt.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:ProgramDelade filerSymantec SharedAdBlockingNISShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgramNorton Internet SecurityNorton AntiVirusNavShExt.dll O4 - HKLM..Run: [soundMan] SOUNDMAN.EXE O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [RemoteControl] C:ProgramCyberLinkPowerDVDPDVDServ.exe O4 - HKLM..Run: [DownloadAccelerator] "C:ProgramDAPDAP.EXE" /STARTUP O4 - HKLM..Run: [PWRISOVM.EXE] C:ProgramPowerISOPWRISOVM.EXE O4 - HKLM..Run: [sunJavaUpdateSched] "C:ProgramJavajre1.6.0_01binjusched.exe" O4 - HKLM..Run: [QuickTime Task] "C:ProgramQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [sSBkgdUpdate] "C:ProgramDelade filerScansoft SharedSSBkgdUpdateSSBkgdupdate.exe" -Embedding -boot O4 - HKLM..Run: [PaperPort PTD] C:ProgramScanSoftPaperPortpptd40nt.exe O4 - HKLM..Run: [indexSearch] C:ProgramScanSoftPaperPortIndexSearch.exe O4 - HKLM..Run: [ControlCenter2.0] C:ProgramBrotherControlCenter2brctrcen.exe /autorun O4 - HKLM..Run: [PivotSoftware] "C:ProgramWinPortraitwpctrl.exe" O4 - HKLM..Run: [DT Task] C:ProgramPortrait DisplaysforteManagerDTHtml.exe -startup_folder O4 - HKLM..Run: [EasyTuneV] C:ProgramGigabyteET5GUI.exe O4 - HKLM..Run: [DAEMON Tools] "C:ProgramDAEMON Toolsdaemon.exe" -lang 1033 O4 - HKLM..Run: [ATICCC] "C:ProgramATI TechnologiesATI.ACEcli.exe" runtime -Delay O4 - HKLM..Run: [Adobe Acrobat Speed Launcher] "C:ProgramAdobeAcrobat 9.0AcrobatAcrobat_sl.exe" O4 - HKLM..Run: [Acrobat Assistant 8.0] "C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe" O4 - HKLM..Run: [ccApp] "C:ProgramDelade filerSymantec SharedccApp.exe" O4 - HKLM..Run: [urlLSTCK.exe] C:ProgramNorton Internet SecurityUrlLstCk.exe O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe O4 - HKCU..Run: [MSMSGS] "C:ProgramMessengermsmsgs.exe" /background O4 - HKCU..Run: [PeerGuardian] C:ProgramPeerGuardian2pg2.exe O4 - HKCU..Run: [AnyDVD] C:ProgramSlySoftAnyDVDAnyDVD.exe O4 - HKCU..Run: [uTorrent] "C:ProgramuTorrentuTorrent.exe" O4 - HKCU..Run: [sUPERAntiSpyware] C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'LOKAL TJÄNST') O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM') O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:ProgramDelade filerAdobeCalibrationAdobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:ProgramMicrosoft OfficeOffice10OSA.EXE O8 - Extra context menu item: &Clean Traces - C:ProgramDAPPrivacy Packagedapcleanerie.htm O8 - Extra context menu item: &Download with &DAP - C:ProgramDAPdapextie.htm O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Append to Existing PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Download &all with DAP - C:ProgramDAPdapextie2.htm O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:ProgramMICROS~2Office10EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgramJavajre1.6.0_01binssv.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgramJavajre1.6.0_01binssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - http://www.lizardtech.com/download/files/w...ntrol_en_US.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1152123737687 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O20 - Winlogon Notify: !SASWinLogon - C:ProgramSUPERAntiSpywareSASWINLO.dll O23 - Service: Asset Management Daemon - Unknown owner - C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:WINDOWSsystem32ati2sgag.exe O23 - Service: Brother BidiAgent Service for Resource manager (brmfbags) - Brother Industries, Ltd. - C:WINDOWSsystem32BrmfBAgS.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccSetMgr.exe O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:ProgramPortrait DisplaysforteManagerDTSRVC.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:ProgramDelade filerMacrovision SharedFLEXnet PublisherFNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:ProgramDelade filerInstallShieldDriver11Intel 32IDriverT.exe O23 - Service: Norton AntiVirus Auto Protect-tjänst (navapsvc) - Symantec Corporation - C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:WINDOWSsystem32PnkBstrA.exe O23 - Service: SAVScan - Symantec Corporation - C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:ProgramDELADE~1SYMANT~1SCRIPT~1SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:ProgramDelade filerSymantec SharedSNDSrvc.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe -- End of file - 11340 bytes

Fortfarande problem att komma åt sidorna... Anslutningen misslyckades Firefox kan inte upprätta en anslutning till servern på www.adobe.com. Även om webbplatsen tycks vara giltig kunde inte webbläsaren etablera en anslutning med den. * Är webbplatsen kanske tillfälligt nere? Försök igen lite senare. * Kan du inte heller besöka andra webbplatser? Kontrollera datorns nätverksanslutning. * Är datorn eller nätverket skyddat av en brandvägg eller proxy? Felaktiga inställningar kan påverka webbläsning. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:45:57, on 2008-11-24 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgramDelade filerSymantec SharedccSetMgr.exe C:WINDOWSsystem32Ati2evxx.exe C:ProgramDelade filerSymantec SharedccEvtMgr.exe C:WINDOWSExplorer.EXE C:WINDOWSsystem32spoolsv.exe C:WINDOWSSOUNDMAN.EXE C:ProgramCyberLinkPowerDVDPDVDServ.exe C:ProgramDAPDAP.EXE C:ProgramPowerISOPWRISOVM.EXE C:ProgramJavajre1.6.0_01binjusched.exe C:ProgramScanSoftPaperPortpptd40nt.exe C:ProgramBrotherControlCenter2brctrcen.exe C:ProgramWinPortraitwpctrl.exe C:ProgramPortrait DisplaysforteManagerDTHtml.exe C:ProgramGigabyteET5GUI.exe C:ProgramDAEMON Toolsdaemon.exe C:ProgramATI TechnologiesATI.ACEcli.exe C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe C:ProgramDelade filerSymantec SharedccApp.exe C:WINDOWSsystem32ctfmon.exe C:ProgramMessengermsmsgs.exe C:ProgramWinPortraitfloater.exe C:ProgramPeerGuardian2pg2.exe C:ProgramSlySoftAnyDVDAnyDVD.exe C:ProgramuTorrentuTorrent.exe C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe C:WINDOWSsystem32BrmfBAgS.exe C:ProgramDelade filerSymantec SharedccProxy.exe C:ProgramPortrait DisplaysforteManagerDTSRVC.exe C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe C:WINDOWSsystem32PnkBstrA.exe C:ProgramDelade filerSymantec SharedSNDSrvc.exe C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe C:WINDOWSsystem32svchost.exe C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe C:WINDOWSsystem32wuauclt.exe C:ProgramInternet Exploreriexplore.exe C:ProgramTrend MicroHijackThiszica.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.tankafett.com/ R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Länkar O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEHelperShim.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:ProgramJavajre1.6.0_01binssv.dll O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:ProgramDelade filerSymantec SharedAdBlockingNISShExt.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgramNorton Internet SecurityNorton AntiVirusNavShExt.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:ProgramDelade filerSymantec SharedAdBlockingNISShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgramNorton Internet SecurityNorton AntiVirusNavShExt.dll O4 - HKLM..Run: [soundMan] SOUNDMAN.EXE O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [RemoteControl] C:ProgramCyberLinkPowerDVDPDVDServ.exe O4 - HKLM..Run: [DownloadAccelerator] "C:ProgramDAPDAP.EXE" /STARTUP O4 - HKLM..Run: [PWRISOVM.EXE] C:ProgramPowerISOPWRISOVM.EXE O4 - HKLM..Run: [sunJavaUpdateSched] "C:ProgramJavajre1.6.0_01binjusched.exe" O4 - HKLM..Run: [QuickTime Task] "C:ProgramQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [sSBkgdUpdate] "C:ProgramDelade filerScansoft SharedSSBkgdUpdateSSBkgdupdate.exe" -Embedding -boot O4 - HKLM..Run: [PaperPort PTD] C:ProgramScanSoftPaperPortpptd40nt.exe O4 - HKLM..Run: [indexSearch] C:ProgramScanSoftPaperPortIndexSearch.exe O4 - HKLM..Run: [ControlCenter2.0] C:ProgramBrotherControlCenter2brctrcen.exe /autorun O4 - HKLM..Run: [PivotSoftware] "C:ProgramWinPortraitwpctrl.exe" O4 - HKLM..Run: [DT Task] C:ProgramPortrait DisplaysforteManagerDTHtml.exe -startup_folder O4 - HKLM..Run: [EasyTuneV] C:ProgramGigabyteET5GUI.exe O4 - HKLM..Run: [DAEMON Tools] "C:ProgramDAEMON Toolsdaemon.exe" -lang 1033 O4 - HKLM..Run: [ATICCC] "C:ProgramATI TechnologiesATI.ACEcli.exe" runtime -Delay O4 - HKLM..Run: [Adobe Acrobat Speed Launcher] "C:ProgramAdobeAcrobat 9.0AcrobatAcrobat_sl.exe" O4 - HKLM..Run: [Acrobat Assistant 8.0] "C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe" O4 - HKLM..Run: [ccApp] "C:ProgramDelade filerSymantec SharedccApp.exe" O4 - HKLM..Run: [urlLSTCK.exe] C:ProgramNorton Internet SecurityUrlLstCk.exe O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe O4 - HKCU..Run: [MSMSGS] "C:ProgramMessengermsmsgs.exe" /background O4 - HKCU..Run: [PeerGuardian] C:ProgramPeerGuardian2pg2.exe O4 - HKCU..Run: [AnyDVD] C:ProgramSlySoftAnyDVDAnyDVD.exe O4 - HKCU..Run: [uTorrent] "C:ProgramuTorrentuTorrent.exe" O4 - HKCU..Run: [sUPERAntiSpyware] C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'LOKAL TJÄNST') O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM') O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:ProgramDelade filerAdobeCalibrationAdobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:ProgramMicrosoft OfficeOffice10OSA.EXE O8 - Extra context menu item: &Clean Traces - C:ProgramDAPPrivacy Packagedapcleanerie.htm O8 - Extra context menu item: &Download with &DAP - C:ProgramDAPdapextie.htm O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Append to Existing PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Download &all with DAP - C:ProgramDAPdapextie2.htm O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:ProgramMICROS~2Office10EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgramJavajre1.6.0_01binssv.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgramJavajre1.6.0_01binssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - http://www.lizardtech.com/download/files/w...ntrol_en_US.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1152123737687 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O20 - Winlogon Notify: !SASWinLogon - C:ProgramSUPERAntiSpywareSASWINLO.dll O23 - Service: Asset Management Daemon - Unknown owner - C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:WINDOWSsystem32ati2sgag.exe O23 - Service: Brother BidiAgent Service for Resource manager (brmfbags) - Brother Industries, Ltd. - C:WINDOWSsystem32BrmfBAgS.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccSetMgr.exe O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:ProgramPortrait DisplaysforteManagerDTSRVC.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:ProgramDelade filerMacrovision SharedFLEXnet PublisherFNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:ProgramDelade filerInstallShieldDriver11Intel 32IDriverT.exe O23 - Service: Norton AntiVirus Auto Protect-tjänst (navapsvc) - Symantec Corporation - C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:WINDOWSsystem32PnkBstrA.exe O23 - Service: SAVScan - Symantec Corporation - C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:ProgramDELADE~1SYMANT~1SCRIPT~1SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:ProgramDelade filerSymantec SharedSNDSrvc.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe -- End of file - 11373 bytes

Okunskap från min sida. Bra att ni reagerar. Toolbaren är nu borta Kunde inte tanka från din länk, men denna funkade. http://siri.geekstogo.com/SmitfraudFix.exe SmitFraudFix v2.376 Scan done at 18:22:21,34, 2008-11-24 Run from G:Backup 2006-06-04 -UNDERTEXTERSmitfraudFix OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT The filesystem type is NTFS Fix run in normal mode »»»»»»»»»»»»»»»»»»»»»»»» Process C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgramDelade filerSymantec SharedccSetMgr.exe C:WINDOWSsystem32Ati2evxx.exe C:ProgramDelade filerSymantec SharedccEvtMgr.exe C:WINDOWSExplorer.EXE C:WINDOWSsystem32spoolsv.exe C:WINDOWSSOUNDMAN.EXE C:ProgramCyberLinkPowerDVDPDVDServ.exe C:ProgramDAPDAP.EXE C:ProgramPowerISOPWRISOVM.EXE C:ProgramJavajre1.6.0_01binjusched.exe C:ProgramScanSoftPaperPortpptd40nt.exe C:ProgramBrotherControlCenter2brctrcen.exe C:ProgramWinPortraitwpctrl.exe C:ProgramDAEMON Toolsdaemon.exe C:ProgramATI TechnologiesATI.ACEcli.exe C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe C:ProgramDelade filerSymantec SharedccApp.exe C:ProgramWinPortraitfloater.exe C:WINDOWSsystem32ctfmon.exe C:ProgramMessengermsmsgs.exe C:ProgramPeerGuardian2pg2.exe C:ProgramSlySoftAnyDVDAnyDVD.exe C:ProgramuTorrentuTorrent.exe C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe C:WINDOWSsystem32BrmfBAgS.exe C:ProgramDelade filerSymantec SharedccProxy.exe C:ProgramPortrait DisplaysforteManagerDTSRVC.exe C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe C:WINDOWSsystem32PnkBstrA.exe C:ProgramDelade filerSymantec SharedSNDSrvc.exe C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe C:WINDOWSsystem32svchost.exe C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe C:ProgramInternet Exploreriexplore.exe C:WINDOWSsystem32cmd.exe »»»»»»»»»»»»»»»»»»»»»»»» hosts »»»»»»»»»»»»»»»»»»»»»»»» C: »»»»»»»»»»»»»»»»»»»»»»»» C:WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:WINDOWSsystem »»»»»»»»»»»»»»»»»»»»»»»» C:WINDOWSWeb »»»»»»»»»»»»»»»»»»»»»»»» C:WINDOWSsystem32 »»»»»»»»»»»»»»»»»»»»»»»» C:WINDOWSsystem32LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:Documents and SettingsDan »»»»»»»»»»»»»»»»»»»»»»»» C:DOCUME~1DanLOKALA~1Temp »»»»»»»»»»»»»»»»»»»»»»»» C:Documents and SettingsDanApplication Data »»»»»»»»»»»»»»»»»»»»»»»» Start Menu »»»»»»»»»»»»»»»»»»»»»»»» C:DOCUME~1DanFAVORI~1 »»»»»»»»»»»»»»»»»»»»»»»» Desktop »»»»»»»»»»»»»»»»»»»»»»»» C:Program »»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys »»»»»»»»»»»»»»»»»»»»»»»» Desktop Components [HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerDesktopComponents0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Min aktuella startsida" »»»»»»»»»»»»»»»»»»»»»»»» o4Patch !!!Attention, following keys are not inevitably infected!!! o4Patch Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» IEDFix !!!Attention, following keys are not inevitably infected!!! IEDFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» VACFix !!!Attention, following keys are not inevitably infected!!! VACFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» 404Fix !!!Attention, following keys are not inevitably infected!!! 404Fix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, following keys are not inevitably infected!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs !!!Attention, following keys are not inevitably infected!!! [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWindows] "AppInit_DLLs"="" »»»»»»»»»»»»»»»»»»»»»»»» Winlogon !!!Attention, following keys are not inevitably infected!!! [HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogon] "Userinit"="C:WINDOWSsystem32userinit.exe," "System"="" »»»»»»»»»»»»»»»»»»»»»»»» RK »»»»»»»»»»»»»»»»»»»»»»»» DNS Description: NVIDIA nForce Networking Controller - Miniport för paketschemaläggning DNS Server Search Order: 81.26.227.3 DNS Server Search Order: 195.54.122.204 DNS Server Search Order: 81.26.228.3 DNS Server Search Order: 195.54.122.198 HKLMSYSTEMCCSServicesTcpip..{A579F4BB-0435-4139-963A-3271304054F0}: DhcpNameServer=81.26.227.3 195.54.122.204 81.26.228.3 195.54.122.198 HKLMSYSTEMCS1ServicesTcpip..{A579F4BB-0435-4139-963A-3271304054F0}: DhcpNameServer=195.54.122.199 81.26.227.3 195.54.122.204 195.54.122.198 HKLMSYSTEMCS2ServicesTcpip..{A579F4BB-0435-4139-963A-3271304054F0}: DhcpNameServer=81.26.227.3 195.54.122.204 81.26.228.3 195.54.122.198 HKLMSYSTEMCS3ServicesTcpip..{A579F4BB-0435-4139-963A-3271304054F0}: DhcpNameServer=81.26.227.3 195.54.122.204 81.26.228.3 195.54.122.198 HKLMSYSTEMCCSServicesTcpipParameters: DhcpNameServer=81.26.227.3 195.54.122.204 81.26.228.3 195.54.122.198 HKLMSYSTEMCS1ServicesTcpipParameters: DhcpNameServer=195.54.122.199 81.26.227.3 195.54.122.204 195.54.122.198 HKLMSYSTEMCS2ServicesTcpipParameters: DhcpNameServer=81.26.227.3 195.54.122.204 81.26.228.3 195.54.122.198 HKLMSYSTEMCS3ServicesTcpipParameters: DhcpNameServer=81.26.227.3 195.54.122.204 81.26.228.3 195.54.122.198 »»»»»»»»»»»»»»»»»»»»»»»» Scanning for wininet.dll infection »»»»»»»»»»»»»»»»»»»»»»»» End

Felet kvarstår... Är detta ett vanligt fel att man inte kommer åt vissa sidor? zapu var ngt accelerations prog, men är nu borttaget. Har troligtvis följt med ngt online spel. Imageshack toolbar är OK. Vad gör denna? O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k Malwarebytes' Anti-Malware 1.30 Databasversion: 1419 Windows 5.1.2600 Service Pack 3 2008-11-23 20:44:21 mbam-log-2008-11-23 (20-44-21).txt Skanningstyp: Snabb skanning Antal skannade objekt: 48169 Förfluten tid: 2 minute(s), 58 second(s) Infekterade minnesprocesser: 0 Infekterade minnesmoduler: 0 Infekterade registernycklar: 2 Infekterade registervärden: 0 Infekterade registerdataposter: 0 Infekterade mappar: 0 Infekterade filer: 0 Infekterade minnesprocesser: (Inga illasinnade poster hittades) Infekterade minnesmoduler: (Inga illasinnade poster hittades) Infekterade registernycklar: HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExtStats{42f2c9ba-614f-47c0-b3e3-ecfd34eed658} (Adware.ISTBar) -> Quarantined and deleted successfully. HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionExtStats{b64f4a7c-97c9-11da-8bde-f66bad1e3f3a} (Rogue.WinAntivirus) -> Quarantined and deleted successfully. Infekterade registervärden: (Inga illasinnade poster hittades) Infekterade registerdataposter: (Inga illasinnade poster hittades) Infekterade mappar: (Inga illasinnade poster hittades) Infekterade filer: (Inga illasinnade poster hittades) ------------------------------------------------------------------------------------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:07:04, on 2008-11-23 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgramDelade filerSymantec SharedccSetMgr.exe C:WINDOWSsystem32Ati2evxx.exe C:ProgramDelade filerSymantec SharedccEvtMgr.exe C:WINDOWSsystem32spoolsv.exe C:WINDOWSExplorer.EXE C:WINDOWSSOUNDMAN.EXE C:ProgramCyberLinkPowerDVDPDVDServ.exe C:ProgramDAPDAP.EXE C:ProgramPowerISOPWRISOVM.EXE C:ProgramJavajre1.6.0_01binjusched.exe C:ProgramScanSoftPaperPortpptd40nt.exe C:ProgramBrotherControlCenter2brctrcen.exe C:ProgramWinPortraitwpctrl.exe C:ProgramPortrait DisplaysforteManagerDTHtml.exe C:ProgramGigabyteET5GUI.exe C:ProgramDAEMON Toolsdaemon.exe C:ProgramATI TechnologiesATI.ACEcli.exe C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe C:ProgramDelade filerSymantec SharedccApp.exe C:WINDOWSsystem32ctfmon.exe C:ProgramMessengermsmsgs.exe C:ProgramPeerGuardian2pg2.exe C:ProgramSlySoftAnyDVDAnyDVD.exe C:ProgramuTorrentuTorrent.exe C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe C:ProgramWinPortraitfloater.exe C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe C:WINDOWSsystem32BrmfBAgS.exe C:ProgramDelade filerSymantec SharedccProxy.exe C:ProgramPortrait DisplaysforteManagerDTSRVC.exe C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe C:WINDOWSsystem32PnkBstrA.exe C:ProgramDelade filerSymantec SharedSNDSrvc.exe C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe C:WINDOWSsystem32svchost.exe C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe C:WINDOWSsystem32wuauclt.exe C:ProgramInternet Exploreriexplore.exe C:ProgramTrend MicroHijackThiszica.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.tankafett.com/ R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Länkar O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEHelperShim.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:ProgramJavajre1.6.0_01binssv.dll O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:ProgramDelade filerSymantec SharedAdBlockingNISShExt.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgramNorton Internet SecurityNorton AntiVirusNavShExt.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O3 - Toolbar: ImageShack Toolbar - {6932D140-ABC4-4073-A44C-D4A541665E35} - C:ProgramImageShackToolbarImageShackToolbar.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:ProgramDelade filerSymantec SharedAdBlockingNISShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgramNorton Internet SecurityNorton AntiVirusNavShExt.dll O4 - HKLM..Run: [soundMan] SOUNDMAN.EXE O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [RemoteControl] C:ProgramCyberLinkPowerDVDPDVDServ.exe O4 - HKLM..Run: [DownloadAccelerator] "C:ProgramDAPDAP.EXE" /STARTUP O4 - HKLM..Run: [PWRISOVM.EXE] C:ProgramPowerISOPWRISOVM.EXE O4 - HKLM..Run: [sunJavaUpdateSched] "C:ProgramJavajre1.6.0_01binjusched.exe" O4 - HKLM..Run: [QuickTime Task] "C:ProgramQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [sSBkgdUpdate] "C:ProgramDelade filerScansoft SharedSSBkgdUpdateSSBkgdupdate.exe" -Embedding -boot O4 - HKLM..Run: [PaperPort PTD] C:ProgramScanSoftPaperPortpptd40nt.exe O4 - HKLM..Run: [indexSearch] C:ProgramScanSoftPaperPortIndexSearch.exe O4 - HKLM..Run: [ControlCenter2.0] C:ProgramBrotherControlCenter2brctrcen.exe /autorun O4 - HKLM..Run: [PivotSoftware] "C:ProgramWinPortraitwpctrl.exe" O4 - HKLM..Run: [DT Task] C:ProgramPortrait DisplaysforteManagerDTHtml.exe -startup_folder O4 - HKLM..Run: [EasyTuneV] C:ProgramGigabyteET5GUI.exe O4 - HKLM..Run: [DAEMON Tools] "C:ProgramDAEMON Toolsdaemon.exe" -lang 1033 O4 - HKLM..Run: [ATICCC] "C:ProgramATI TechnologiesATI.ACEcli.exe" runtime -Delay O4 - HKLM..Run: [Adobe Acrobat Speed Launcher] "C:ProgramAdobeAcrobat 9.0AcrobatAcrobat_sl.exe" O4 - HKLM..Run: [Acrobat Assistant 8.0] "C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe" O4 - HKLM..Run: [ccApp] "C:ProgramDelade filerSymantec SharedccApp.exe" O4 - HKLM..Run: [urlLSTCK.exe] C:ProgramNorton Internet SecurityUrlLstCk.exe O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe O4 - HKCU..Run: [MSMSGS] "C:ProgramMessengermsmsgs.exe" /background O4 - HKCU..Run: [PeerGuardian] C:ProgramPeerGuardian2pg2.exe O4 - HKCU..Run: [AnyDVD] C:ProgramSlySoftAnyDVDAnyDVD.exe O4 - HKCU..Run: [uTorrent] "C:ProgramuTorrentuTorrent.exe" O4 - HKCU..Run: [sUPERAntiSpyware] C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'LOKAL TJÄNST') O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM') O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:ProgramDelade filerAdobeCalibrationAdobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:ProgramMicrosoft OfficeOffice10OSA.EXE O8 - Extra context menu item: &Clean Traces - C:ProgramDAPPrivacy Packagedapcleanerie.htm O8 - Extra context menu item: &Download with &DAP - C:ProgramDAPdapextie.htm O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Append to Existing PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Download &all with DAP - C:ProgramDAPdapextie2.htm O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:ProgramMICROS~2Office10EXCEL.EXE/3000 O8 - Extra context menu item: Post Image to Blog - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5003 O8 - Extra context menu item: Tag This Image - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5002 O8 - Extra context menu item: Transload Image to ImageShack - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5004 O8 - Extra context menu item: Upload All Images to ImageShack - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5000 O8 - Extra context menu item: Upload Image to ImageShack - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5001 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgramJavajre1.6.0_01binssv.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgramJavajre1.6.0_01binssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - http://www.lizardtech.com/download/files/w...ntrol_en_US.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6932D140-ABC4-4073-A44C-D4A541665E35} (ImageShack Toolbar) - http://toolbar.imageshack.us/toolbar/ImageShackToolbar.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1152123737687 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O20 - Winlogon Notify: !SASWinLogon - C:ProgramSUPERAntiSpywareSASWINLO.dll O23 - Service: Asset Management Daemon - Unknown owner - C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:WINDOWSsystem32ati2sgag.exe O23 - Service: Brother BidiAgent Service for Resource manager (brmfbags) - Brother Industries, Ltd. - C:WINDOWSsystem32BrmfBAgS.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccSetMgr.exe O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:ProgramPortrait DisplaysforteManagerDTSRVC.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:ProgramDelade filerMacrovision SharedFLEXnet PublisherFNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:ProgramDelade filerInstallShieldDriver11Intel 32IDriverT.exe O23 - Service: Norton AntiVirus Auto Protect-tjänst (navapsvc) - Symantec Corporation - C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:WINDOWSsystem32PnkBstrA.exe O23 - Service: SAVScan - Symantec Corporation - C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:ProgramDELADE~1SYMANT~1SCRIPT~1SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:ProgramDelade filerSymantec SharedSNDSrvc.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe -- End of file - 12232 bytes

********************************************* 2008-12-09: Tråden är nu låst eftersom problemet är löst Tycker du att den är felaktigt låst, var god kontakta Malou ********************************************* Hej! Jag har problemet att jag inte kan komma ut på vissa internet sidor som tex: www.adobe.com www.aftonbladet.se www.apple.com "Webbsidan kan inte visas" -rutan kommer upp Dessa sidor har jag kommit ut på tidigare men det är nog 6 månader sen sist... Har testat att avinstallera Norton internet security utan resultat. Har även testat internet explorer 7, Firefox och netscape utan resultat. Kopplade in min gamla 300mhz dator med win98 och internet explorer(gammal version), och då fungerade sidorna. Så felet ligger inte hos Bredbandsbolaget. Har kört CCleaner... Har kört HiJackThis...Har jag nått junk i min burk måhända??? Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:37:42, on 2008-11-23 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgramDelade filerSymantec SharedccSetMgr.exe C:ProgramDelade filerSymantec SharedccEvtMgr.exe C:WINDOWSsystem32Ati2evxx.exe C:WINDOWSsystem32spoolsv.exe C:WINDOWSExplorer.EXE C:WINDOWSSOUNDMAN.EXE C:ProgramCyberLinkPowerDVDPDVDServ.exe C:ProgramDAPDAP.EXE C:ProgramPowerISOPWRISOVM.EXE C:ProgramJavajre1.6.0_01binjusched.exe C:ProgramScanSoftPaperPortpptd40nt.exe C:ProgramBrotherControlCenter2brctrcen.exe C:ProgramWinPortraitwpctrl.exe C:ProgramPortrait DisplaysforteManagerDTHtml.exe C:ProgramDAEMON Toolsdaemon.exe C:ProgramATI TechnologiesATI.ACEcli.exe C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe C:ProgramDelade filerSymantec SharedccApp.exe C:WINDOWSsystem32ctfmon.exe C:ProgramMessengermsmsgs.exe C:ProgramPeerGuardian2pg2.exe C:ProgramSlySoftAnyDVDAnyDVD.exe C:ProgramuTorrentuTorrent.exe C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe C:ProgramWinPortraitfloater.exe C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe C:WINDOWSsystem32BrmfBAgS.exe C:ProgramDelade filerSymantec SharedccProxy.exe C:ProgramPortrait DisplaysforteManagerDTSRVC.exe C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe C:WINDOWSsystem32PnkBstrA.exe C:ProgramDelade filerSymantec SharedSNDSrvc.exe C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe C:WINDOWSsystem32svchost.exe C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe C:ProgramInternet Exploreriexplore.exe C:ProgramTrend MicroHijackThiszica.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.tankafett.com/ R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Länkar O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEHelperShim.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:ProgramJavajre1.6.0_01binssv.dll O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:ProgramDelade filerSymantec SharedAdBlockingNISShExt.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgramNorton Internet SecurityNorton AntiVirusNavShExt.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O3 - Toolbar: ImageShack Toolbar - {6932D140-ABC4-4073-A44C-D4A541665E35} - C:ProgramImageShackToolbarImageShackToolbar.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:ProgramDelade filerSymantec SharedAdBlockingNISShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgramNorton Internet SecurityNorton AntiVirusNavShExt.dll O4 - HKLM..Run: [soundMan] SOUNDMAN.EXE O4 - HKLM..Run: [NeroFilterCheck] C:WINDOWSsystem32NeroCheck.exe O4 - HKLM..Run: [RemoteControl] C:ProgramCyberLinkPowerDVDPDVDServ.exe O4 - HKLM..Run: [DownloadAccelerator] "C:ProgramDAPDAP.EXE" /STARTUP O4 - HKLM..Run: [PWRISOVM.EXE] C:ProgramPowerISOPWRISOVM.EXE O4 - HKLM..Run: [sunJavaUpdateSched] "C:ProgramJavajre1.6.0_01binjusched.exe" O4 - HKLM..Run: [QuickTime Task] "C:ProgramQuickTimeqttask.exe" -atboottime O4 - HKLM..Run: [sSBkgdUpdate] "C:ProgramDelade filerScansoft SharedSSBkgdUpdateSSBkgdupdate.exe" -Embedding -boot O4 - HKLM..Run: [PaperPort PTD] C:ProgramScanSoftPaperPortpptd40nt.exe O4 - HKLM..Run: [indexSearch] C:ProgramScanSoftPaperPortIndexSearch.exe O4 - HKLM..Run: [ControlCenter2.0] C:ProgramBrotherControlCenter2brctrcen.exe /autorun O4 - HKLM..Run: [PivotSoftware] "C:ProgramWinPortraitwpctrl.exe" O4 - HKLM..Run: [DT Task] C:ProgramPortrait DisplaysforteManagerDTHtml.exe -startup_folder O4 - HKLM..Run: [EasyTuneV] C:ProgramGigabyteET5GUI.exe O4 - HKLM..Run: [DAEMON Tools] "C:ProgramDAEMON Toolsdaemon.exe" -lang 1033 O4 - HKLM..Run: [ATICCC] "C:ProgramATI TechnologiesATI.ACEcli.exe" runtime -Delay O4 - HKLM..Run: [Adobe Acrobat Speed Launcher] "C:ProgramAdobeAcrobat 9.0AcrobatAcrobat_sl.exe" O4 - HKLM..Run: [Acrobat Assistant 8.0] "C:ProgramAdobeAcrobat 9.0AcrobatAcrotray.exe" O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k O4 - HKLM..Run: [ccApp] "C:ProgramDelade filerSymantec SharedccApp.exe" O4 - HKLM..Run: [urlLSTCK.exe] C:ProgramNorton Internet SecurityUrlLstCk.exe O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe O4 - HKCU..Run: [MSMSGS] "C:ProgramMessengermsmsgs.exe" /background O4 - HKCU..Run: [PeerGuardian] C:ProgramPeerGuardian2pg2.exe O4 - HKCU..Run: [AnyDVD] C:ProgramSlySoftAnyDVDAnyDVD.exe O4 - HKCU..Run: [uTorrent] "C:ProgramuTorrentuTorrent.exe" O4 - HKCU..Run: [sUPERAntiSpyware] C:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'LOKAL TJÄNST') O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM') O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user') O4 - Startup: Zapu Acceleration Engine.lnk = C:ProgramZapuZapuwincm.exe O4 - Startup: Zapu.lnk = C:ProgramZapuZapuwDivi.exe O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:ProgramDelade filerAdobeCalibrationAdobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:ProgramMicrosoft OfficeOffice10OSA.EXE O8 - Extra context menu item: &Clean Traces - C:ProgramDAPPrivacy Packagedapcleanerie.htm O8 - Extra context menu item: &Download with &DAP - C:ProgramDAPdapextie.htm O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Append to Existing PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:ProgramDelade filerAdobeAcrobatActiveXAcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Download &all with DAP - C:ProgramDAPdapextie2.htm O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:ProgramMICROS~2Office10EXCEL.EXE/3000 O8 - Extra context menu item: Post Image to Blog - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5003 O8 - Extra context menu item: Tag This Image - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5002 O8 - Extra context menu item: Transload Image to ImageShack - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5004 O8 - Extra context menu item: Upload All Images to ImageShack - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5000 O8 - Extra context menu item: Upload Image to ImageShack - res://C:ProgramImageShackToolbarImageShackToolbar.dll/5001 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgramJavajre1.6.0_01binssv.dll O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:ProgramJavajre1.6.0_01binssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} (DjVuCtl Class) - http://www.lizardtech.com/download/files/w...ntrol_en_US.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6932D140-ABC4-4073-A44C-D4A541665E35} (ImageShack Toolbar) - http://toolbar.imageshack.us/toolbar/ImageShackToolbar.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1152123737687 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O20 - Winlogon Notify: !SASWinLogon - C:ProgramSUPERAntiSpywareSASWINLO.dll O23 - Service: Asset Management Daemon - Unknown owner - C:ProgramPortrait DisplaysforteManagerdtsslsrv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:WINDOWSsystem32ati2sgag.exe O23 - Service: Brother BidiAgent Service for Resource manager (brmfbags) - Brother Industries, Ltd. - C:WINDOWSsystem32BrmfBAgS.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:ProgramDelade filerSymantec SharedccSetMgr.exe O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:ProgramPortrait DisplaysforteManagerDTSRVC.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:ProgramDelade filerMacrovision SharedFLEXnet PublisherFNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:ProgramDelade filerInstallShieldDriver11Intel 32IDriverT.exe O23 - Service: Norton AntiVirus Auto Protect-tjänst (navapsvc) - Symantec Corporation - C:ProgramNorton Internet SecurityNorton AntiVirusnavapsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:WINDOWSsystem32PnkBstrA.exe O23 - Service: SAVScan - Symantec Corporation - C:ProgramNorton Internet SecurityNorton AntiVirusSAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:ProgramDELADE~1SYMANT~1SCRIPT~1SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:ProgramDelade filerSymantec SharedSNDSrvc.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:ProgramAlcohol SoftAlcohol 120StarWindStarWindService.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:ProgramDelade filerSymantec SharedSecurity CenterSymWSC.exe -- End of file - 12373 bytes Tacksam för all hjälp