Jump to content

Irriterande Pop ups


pallevalla
 Share

Recommended Posts

Vid varje uppstart erhåller jag två fönster som jag inte inaktiverat:

;D. SSDIAG, ett DOS-fönster. Har det någon viktig funktion eller kan jag avmarkera i msconfig?

???. Client Security Wizard. Jag använder inte password och förstår inte varför den plötsligt har börjat dyka upp. Hittar inte ett sätt att avaktivera.

Link to comment
Share on other sites

Kan vara dags för en PC-städning kanske !?

Kanske skulle tala med Malou i forum: Spyware/Trojaner/Virus

http://www.alltomxp.se/forum/index.php?topic=8203.0

Har du SSDIAG.EXE liggande här du också ?

I found ssdiag.exe on my computer at c:programSonicDLAinstallssdiag.exe.

Troligen använder cyberbully(s) detta trojan virus...

Link to comment
Share on other sites

8)Tack

Ja, SSDIAG-filen har jag lyckats ta bort m. hj. av programmet "Autoruns"

Den andra Wizard pop up'n retas på!

Här kommer HTJ-log resultatet, hur man nu kan förstå detta,/ Paul:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15:09:26, on 2007-11-23

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Boot mode: Normal

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:ProgramDelade filerVirtual Tokenvtserver.exe

C:WINDOWSsystem32ibmpmsvc.exe

C:WINDOWSsystem32Ati2evxx.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSsystem32svchost.exe

C:ProgramIntelWirelessBinEvtEng.exe

C:ProgramIntelWirelessBinS24EvMon.exe

C:WINDOWSsystem32spoolsv.exe

C:WINDOWSsystem32Ati2evxx.exe

C:WINDOWSExplorer.EXE

C:ProgramSynapticsSynTPSynTPLpr.exe

C:ProgramSynapticsSynTPSynTPEnh.exe

C:WINDOWSsystem32TpShocks.exe

C:ProgramThinkPadUTILIT~1EzEjMnAp.Exe

C:ProgramLenovoPkgMgrHOTKEYTPHKMGR.exe

C:ProgramLenovoPkgMgrHOTKEYTPONSCR.exe

C:ProgramLenovoPkgMgrHOTKEY_1TpScrex.exe

C:ProgramTHINKV~2PrdCtrLPMGR.exe

C:ProgramIBM ThinkVantageClient Security Solutioncssauth.exe

C:ProgramIBM ThinkVantageSafeGuard PrivateDiskpdservice.exe

C:ProgramThinkPadConnectUtilitiesQCWLICON.EXE

C:ProgramAdobeAdobe Photoshop Elements 5.0PhotoshopElementsFileAgent.exe

C:WINDOWSsystem32rundll32.exe

C:ProgramAdobeAcrobat 7.0DistillrAcrotray.exe

C:ProgramScanSoftOmniPageSE2.0OpwareSE2.exe

C:ProgramThinkPadBluetooth Softwarebinbtwdins.exe

C:ProgramLogitechiTouchiTouch.exe

C:ProgramThinkPadUTILIT~1NPDTray.exe

C:ProgramTeliaTelias SakerhetstjansterCommonFSM32.EXE

C:ProgramDiskeeper CorporationDiskeeperDkService.exe

C:WINDOWSsystem32iid.exe

C:ProgramTeliaTelias SakerhetstjansterAnti-Virusfsgk32st.exe

C:ProgramDelade filerLenovoSchedulerscheduler_proxy.exe

C:WINDOWSsystem32ctfmon.exe

C:ProgramThinkVantageAMSGAmsg.exe

C:ProgramTeliaTelias SakerhetstjansterCommonFSMA32.EXE

C:ProgramWindows Media PlayerWMPNSCFG.exe

C:ProgramTeliaTelias SakerhetstjansterAnti-VirusFSGK32.EXE

C:ProgramGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe

C:ProgramThinkPadBluetooth SoftwareBTTray.exe

C:ProgramDigital Line DetectDLG.exe

C:WINDOWSSystem32svchost.exe

C:ProgramNikonPictureProjectNkbMonitor.exe

C:ProgramPersonalbinPersonal.exe

C:ProgramTeliaTelias SakerhetstjansterCommonFSMB32.EXE

C:ProgramDelade filerMicrosoft SharedVS7DEBUGMDM.EXE

C:WINDOWSSystem32QCONSVC.EXE

C:ProgramTeliaTelias SakerhetstjansterCommonFCH32.EXE

C:ProgramIntelWirelessBinRegSrvc.exe

C:WINDOWSsystem32svchost.exe

c:programlenovosystem updatesuservice.exe

C:WINDOWSSystem32TPHDEXLG.EXE

C:WINDOWSsystem32TpKmpSVC.exe

C:ProgramIBM ThinkVantageRescue and Recoveryrrservice.exe

C:ProgramDelade filerLenovoSchedulertvtsched.exe

C:ProgramTeliaTelias SakerhetstjansterCommonFAMEH32.EXE

C:ProgramTeliaTelias SakerhetstjansterAnti-Virusfsqh.exe

C:ProgramTeliaTelias SakerhetstjansterFSGUIfsguidll.exe

C:ProgramTeliaTelias SakerhetstjansterAnti-Virusfssm32.exe

C:ProgramTeliaTelias SakerhetstjansterFSAUAprogramfsaua.exe

C:ProgramTeliaTelias SakerhetstjansterFWESProgramfsdfwd.exe

C:WINDOWSsystem32wbemwmiapsrv.exe

C:ProgramTeliaTelias SakerhetstjansterFSAUAprogramfsus.exe

C:ProgramTeliaTelias SakerhetstjansterAnti-Virusfsav32.exe

C:ProgramInternet Exploreriexplore.exe

C:ProgramTrend MicroHijackThisHijackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://g.msn.se/0SESVSE/SAOS02

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.svd.se/

R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyServer = ftp=1.877.telia.com;http=10.40.0.232:80

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Länkar

O2 - BHO: Länkhjälp till Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgramDelade filerAdobeAcrobatActiveXAcroIEHelper.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:programgooglegoogletoolbar1.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:programgooglegoogletoolbar1.dll

O4 - HKLM..Run: [synTPLpr] C:ProgramSynapticsSynTPSynTPLpr.exe

O4 - HKLM..Run: [synTPEnh] C:ProgramSynapticsSynTPSynTPEnh.exe

O4 - HKLM..Run: [TpShocks] TpShocks.exe

O4 - HKLM..Run: [TP4EX] tp4ex.exe

O4 - HKLM..Run: [EZEJMNAP] C:ProgramThinkPadUTILIT~1EzEjMnAp.Exe

O4 - HKLM..Run: [TPHOTKEY] C:ProgramLenovoPkgMgrHOTKEYTPHKMGR.exe

O4 - HKLM..Run: [ATIPTA] "C:ProgramATI TechnologiesATI Control Panelatiptaxx.exe"

O4 - HKLM..Run: [LPManager] C:ProgramTHINKV~2PrdCtrLPMGR.exe

O4 - HKLM..Run: [iSUSPM Startup] c:ProgramDELADE~1INSTAL~1UPDATE~1ISUSPM.exe -startup

O4 - HKLM..Run: [iSUSScheduler] "c:ProgramDelade filerInstallShieldUpdateServiceissch.exe" -start

O4 - HKLM..Run: [cssauth] "C:ProgramIBM ThinkVantageClient Security Solutioncssauth.exe" silent

O4 - HKLM..Run: [PDService.exe] "C:ProgramIBM ThinkVantageSafeGuard PrivateDiskpdservice.exe"

O4 - HKLM..Run: [DiskeeperSystray] "C:ProgramDiskeeper CorporationDiskeeperDkIcon.exe"

O4 - HKLM..Run: [QCWLICON] C:ProgramThinkPadConnectUtilitiesQCWLICON.EXE

O4 - HKLM..Run: [PWRMGRTR] rundll32 C:ProgramThinkPadUTILIT~1PWRMGRTR.DLL,PwrMgrBkGndMonitor

O4 - HKLM..Run: [bLOG] rundll32 C:ProgramThinkPadUTILIT~1BatLogEx.DLL,StartBattLog

O4 - HKLM..Run: [TPKMAPHELPER] C:ProgramThinkPadProgramTpKmapAp.exe -helper

O4 - HKLM..Run: [Acrobat Assistant 7.0] "C:ProgramAdobeAcrobat 7.0DistillrAcrotray.exe"

O4 - HKLM..Run: [OpwareSE2] "C:ProgramScanSoftOmniPageSE2.0OpwareSE2.exe"

O4 - HKLM..Run: [zBrowser Launcher] C:ProgramLogitechiTouchiTouch.exe

O4 - HKLM..Run: [NPDTRAY] C:ProgramThinkPadUTILIT~1NPDTray.exe

O4 - HKLM..Run: [F-Secure Manager] "C:ProgramTeliaTelias SakerhetstjansterCommonFSM32.EXE" /splash

O4 - HKLM..Run: [F-Secure TNB] "C:ProgramTeliaTelias SakerhetstjansterFSGUITNBUtil.exe" /CHECKALL /WAITFORSW

O4 - HKLM..Run: [Net iD] C:WINDOWSsystem32iid.exe

O4 - HKLM..Run: [zzz_ImInstaller_IncrediMail] C:DOCUME~1PaulLOKALA~1TempImInstallerIncrediMailincredimail_install.exe -startup -product IncrediMail -cluster 2

O4 - HKLM..Run: [NeroFilterCheck] C:ProgramDelade filerAheadLibNeroCheck.exe

O4 - HKLM..Run: [Adobe Reader Speed Launcher] "C:ProgramAdobeReader 8.0ReaderReader_sl.exe"

O4 - HKLM..Run: [TVT Scheduler Proxy] C:ProgramDelade filerLenovoSchedulerscheduler_proxy.exe

O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe

O4 - HKCU..Run: [amsg] C:ProgramThinkVantageAMSGAmsg.exe

O4 - HKCU..Run: [updateMgr] "C:ProgramAdobeAcrobat 7.0ReaderAdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1

O4 - HKCU..Run: [WMPNSCFG] C:ProgramWindows Media PlayerWMPNSCFG.exe

O4 - HKCU..Run: [swg] C:ProgramGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe

O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'LOKAL TJÄNST')

O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM')

O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user')

O4 - Startup: Adobe Gamma.lnk = C:ProgramDelade filerAdobeCalibrationAdobe Gamma Loader.exe

O4 - Global Startup: AutorunsDisabled

O4 - Global Startup: BTTray.lnk = ?

O4 - Global Startup: Digital Line Detect.lnk = C:ProgramDigital Line DetectDLG.exe

O4 - Global Startup: NkbMonitor.exe.lnk = C:ProgramNikonPictureProjectNkbMonitor.exe

O4 - Global Startup: Personal.lnk = C:ProgramPersonalbinPersonal.exe

O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: Convert link target to existing PDF - res://C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECaptureSelLinks.html

O8 - Extra context menu item: Convert selected links to existing PDF - res://C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIEAppendSelLinks.html

O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: Convert selection to existing PDF - res://C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: Convert to Adobe PDF - res://C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: Convert to existing PDF - res://C:ProgramAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:ProgramMICROS~2OFFICE11EXCEL.EXE/3000

O8 - Extra context menu item: Skicka till &Bluetooth - C:ProgramThinkPadBluetooth Softwarebtsendto_ie_ctx.htm

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesIBMJava142jrebinNPJPI142.dll

O9 - Extra 'Tools' menuitem: IBM Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesIBMJava142jrebinNPJPI142.dll

O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:ProgramMICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: Uppdatera ThinkPad-program - {D1A4DEBD-C2EE-449f-B9FB-E8409F9A0BC5} - C:ProgramLenovoPkgMgrPkgMgr.exe

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgramMessengermsmsgs.exe

O11 - Options group: [JAVA_IBM] Java (IBM)

O16 - DPF: {01010E00-5E80-11D8-9E86-0007E96C65AE} (SupportSoft SmartIssue) - http://kc.support.telia.se/sdccommon/download/tgctlsi.cab

O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} (Support.com Configuration Class) - http://kc.support.telia.se/sdccommon/download/tgctlcm.cab

O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab

O16 - DPF: {2DAD3559-2923-4935-AD49-B673D2539944} (IASRunner Class) - http://download.boulder.ibm.com/ibmdl/pub/...bp_pc/acpir.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1180116405127

O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.fujicolordigital.se/aurigma/ImageUploader4.cab

O16 - DPF: {6F7864F9-DB33-11D3-8166-0060B0F885E6} (VSPTA Class) - https://eleg.trust.telia.com/vspta3.cab

O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support) - http://www-307.ibm.com/pc/support/IbmEgath.cab

O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) - http://ax.emsisoft.com/asquared.cab

O23 - Service: Adobe LM Service - Adobe Systems - C:ProgramDelade filerAdobe Systems SharedServiceAdobelmsvc.exe

O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:ProgramAdobeAdobe Photoshop Elements 5.0PhotoshopElementsFileAgent.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:ProgramThinkPadBluetooth Softwarebinbtwdins.exe

O23 - Service: Diskeeper - Diskeeper Corporation - C:ProgramDiskeeper CorporationDiskeeperDkService.exe

O23 - Service: EvtEng - Intel Corporation - C:ProgramIntelWirelessBinEvtEng.exe

O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corporation - C:ProgramTeliaTelias SakerhetstjansterAnti-Virusfsgk32st.exe

O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:ProgramTeliaTelias SakerhetstjansterFSAUAprogramfsaua.exe

O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:ProgramTeliaTelias SakerhetstjansterFWESProgramfsdfwd.exe

O23 - Service: FSMA - F-Secure Corporation - C:ProgramTeliaTelias SakerhetstjansterCommonFSMA32.EXE

O23 - Service: Google Updater Service (gusvc) - Google - C:ProgramGoogleCommonGoogle UpdaterGoogleUpdaterService.exe

O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:WINDOWSsystem32ibmpmsvc.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:ProgramDelade filerInstallShieldDriver1150Intel 32IDriverT.exe

O23 - Service: IPS Core Service (IPSSVC) - Lenovo Ltd. - C:WINDOWSsystem32IPSSVC.EXE

O23 - Service: QCONSVC - Lenovo - C:WINDOWSSystem32QCONSVC.EXE

O23 - Service: RegSrvc - Intel Corporation - C:ProgramIntelWirelessBinRegSrvc.exe

O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:ProgramIntelWirelessBinS24EvMon.exe

O23 - Service: ServiceLayer - Nokia. - C:ProgramPC Connectivity SolutionServiceLayer.exe

O23 - Service: System Update (SUService) - Lenovo Group Limited - c:programlenovosystem updatesuservice.exe

O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:WINDOWSSystem32TPHDEXLG.EXE

O23 - Service: IBM KCU Service (TpKmpSVC) - Unknown owner - C:WINDOWSsystem32TpKmpSVC.exe

O23 - Service: TSS Core Service (TSSCoreService) - IBM - C:ProgramIBM ThinkVantageClient Security Solutionibmtcsd.exe

O23 - Service: TVT Backup Service - Unknown owner - C:ProgramIBM ThinkVantageRescue and Recoveryrrservice.exe

O23 - Service: TVT Scheduler - Lenovo Group Limited - C:ProgramDelade filerLenovoSchedulertvtsched.exe

O23 - Service: Protector Suite Virtual Token (vtserver) - UPEK Inc. - C:ProgramDelade filerVirtual Tokenvtserver.exe

--

End of file - 14830 bytes

Link to comment
Share on other sites

Du har "Client Security Solution" från IMB installerad. Eftersom du får upp Wizzard kanske du skulle kolla

inställningarna igen. Alternativt av/installera den.

Den ligger annars både i :

O4 - HKLM..Run: [cssauth] "C:ProgramIBM ThinkVantageClient Security Solutioncssauth.exe" silent

(inte speciellt tyst...)

och som Tjänst (Service):

O23 - Service: TSS Core Service (TSSCoreService) - IBM - C:ProgramIBM ThinkVantageClient Security Solutionibmtcsd.exe

Du har även en referens till IBM Support sida:

O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support) - http://www-307.ibm.com/pc/support/IbmEgath.cab

Link to comment
Share on other sites

Tack för svaret.

Jag har lagt in ett lösenord, som en eftergift till programmets starka vilja.

Dock dyker lösenords-Wizard upp fortfarande.

Jag har kollat inställningarna i alla hörn och dom verkar ok, med avaktiverad e lägen!!!1

Helst vill jag inte avinstallera, eftersom programmet är en OEM-version och kanske blir svårt att återskapa vid ev. behov.

Hämtade IBM-filen IBMEgath som anges som en Cab-fil. Vad som händer om den installeras förstår jag inte.

Hälsningar

Link to comment
Share on other sites

Du kan läsa om produkten här:

http://www.pc.ibm.com/europe/think/en/secu...e&cc=europe

Uppgradering och drivrutiner ThinkVantage Client Security Solution 8.0:

http://www-307.ibm.com/pc/support/site.wss...ocid=MIGR-46391

Jag har svårt att lotsa dig igenom denna applikation.

Du skulle kunna ringa IBM Support eller välja att uppgradera om du inte har senaste version.

Link to comment
Share on other sites

Mycket tack för ditt engagemang.

Jag har redan uppgraderat, utan resultat.

Kommer att installera en extra hårddisk för att skapa lite mer utrymme för säkerhetskopia och därefter experimentera vidare. Tyvärr är IBM-Lenovo ganska torra när det gäller personlig service, "onåbara".

Om jag kommer vidare meddelar jag resultatet på den här sidan.

Hälsningar/Paul

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
 Share

×
×
  • Create New...