kan ikke finde den log fra SmitfraudFix.. Muligvis en fejl 40
hijackthis
Logfile of HijackThis v1.99.1
Scan saved at 08:09:34, on 22-09-2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Symantec\pcAnywhere\awhost32.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\VIRUSfighter\Bin\Zanda.exe
C:\BMWgroup\ETKLokal\transbase\tbmux32.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Analog Devices\Core\smax4pnp.exe
C:\Programmer\Java\jre1.5.0_06\bin\jusched.exe
C:\Programmer\Real\RealPlayer\RealPlay.exe
C:\VIRUSfighter\bin\ZLH.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\VIRUSfighter\Nvc\BIN\NIP.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Programmer\Messenger\msmsgs.exe
C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Programmer\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\VIRUSfighter\Nvc\BIN\NVCSCHED.EXE
C:\VIRUSfighter\Nvc\BIN\nipsvc.exe
C:\VIRUSfighter\bin\NJEEVES.EXE
C:\VIRUSfighter\Nvc\bin\nvcoas.exe
C:\WINDOWS\System32\alg.exe
C:\VIRUSfighter\Nvc\bin\cclaw.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Programmer\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\hbn\Lokale indstillinger\Temporary Internet Files\Content.IE5\9COFHL4L\hjtspecial[1].exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmer\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Programmer\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmer\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [RealTray] C:\Programmer\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [Norman ZANDA] C:\VIRUSfighter\bin\ZLH.EXE /LOAD /SPLASH
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programmer\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Adobe Reader Hurtigstart.lnk = C:\Programmer\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BMW KeyReader.lnk = C:\programme\BMW KeyReader\Keyreader.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: PCANotify - C:\WINDOWS\SYSTEM32\PCANotify.dll
O20 - Winlogon Notify: SASWinLogon - C:\Programmer\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: pcAnywhere Host Service (awhost32) - Symantec Corporation - C:\Programmer\Symantec\pcAnywhere\awhost32.exe
O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\VIRUSfighter\Nvc\BIN\nipsvc.exe
O23 - Service: Norman NJeeves - Unknown owner - C:\VIRUSfighter\bin\NJEEVES.EXE
O23 - Service: Norman ZANDA - Unknown owner - C:\VIRUSfighter\Bin\Zanda.exe
O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman ASA - C:\VIRUSfighter\Nvc\bin\nvcoas.exe
O23 - Service: Norman Virus Control Scheduler (NVCScheduler) - Norman Data Defense Systems - C:\VIRUSfighter\Nvc\BIN\NVCSCHED.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPZipm12.exe
O23 - Service: Transbase - Transaction Software, D 81737 Munich - C:\BMWgroup\ETKLokal\transbase\tbmux32.exe
SuperAnti
SUPERAntiSpyware Scan Log
Generated 09/22/2006 at 07:56 AM
Core Rules Database Version : 3089
Trace Rules Database Version: 1118
Memory threats detected : 0
Registry threats detected : 0
File threats detected : 32
Adware.Tracking Cookie
C:\Documents and Settings\hbn\Cookies\hbn@malwarewipe[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@stats1.reliablestats[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@
www.winantivirus[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@
www.virusburst[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@e2.emediate[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@
www.theuptodatesafety[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@scanner[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@dk.winantivirus[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@indextools[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@drivecleaner[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@indexstats[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@winantivirus[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@ex=0[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@2006[3].txt
C:\Documents and Settings\hbn\Cookies\hbn@go.winantivirus[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@1071214352[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@revsci[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@1071183736[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@toplist[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@1070847646[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@ad1.emediate[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@ex=1_[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@
www.pesttrap[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@go.drivecleaner[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@
www.drivecleaner[1].txt
C:\Documents and Settings\hbn\Cookies\hbn@track.adform[2].txt
C:\Documents and Settings\hbn\Cookies\hbn@
www.thespyguard[1].txt
Browser Hijacker.Favorites
C:\Documents and Settings\hbn\Foretrukne\Online Security Test.url
C:\RECYCLER\S-1-5-21-927975177-3253629412-3977492507-1006\Dc6.url
Malware.VirusBurst
C:\powerweb certifikat\vb_distrib.exe
Trojan.ErrorSafe
C:\WINDOWS\Downloaded Program Files\UERSK_0001_N91M2407NetInstaller.exe