Spioner

[BeSon]

God morgon KUNNIGHETEN.

Så fort jag varit uppkopplad med modem får jag en massa SPAM.

Vet ni vilket eller vilka prog. Som visar min E-post adress för dem?

Bifogar filen HIJACKTHIS- v1.97.7 från i dag.

Har Panda Platinium och kör AD-AVARE samt uppdaterar varje gång jag varit och är uppkopplad.

Hoppas jag kan få bort dem.

Ha en bra da

 

C:\Program\Ahead\InCD\InCD.exe

C:\WINDOWS\system32\ntvdm.exe

C:\Program\Launch Manager\HotkeyApp.exe

C:\Program\Launch Manager\CtrlVol.exe

C:\Program\Messenger\msmsgs.exe

C:\Palm\HOTSYNC.EXE

C:\Program\InterVideo\Common\Bin\WinCinemaMgr.exe

C:\Program\Panda Software\Panda Antivirus Platinum\pavProxy.exe

C:\WINDOWS\System32\ctfmon.exe

C:\Documents and Settings\Bertil.MINDATOR\Mina dokument\Diverse\Div bilder fr Internet\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www2.teliamobile.se/ct/web_ssologin.jsp?protected_login=true&ct_orig_uri=/tmbox/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar

O2 - BHO: (no name) - {029CA12C-89C1-46a7-A3C7-82F2F98635CB} - C:\Program\Kontiki\bin\bh304181.dll (file missing)

O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program\google\googletoolbar1.dll

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program\google\googletoolbar1.dll

O4 - HKLM\..\Run: [WinampAgent] "C:\Program\Winamp3\winampa.exe"

O4 - HKLM\..\Run: [WheelMouse] C:\Program\A4Tech\Mouse\Amoumain.exe

O4 - HKLM\..\Run: [Wbutton] "C:\Program\Launch Manager\Wbutton.exe"

O4 - HKLM\..\Run: [synTPLpr] C:\Program\Synaptics\SynTP\SynTPLpr.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Program\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [sCANINICIO] "C:\Program\Panda Software\Panda Antivirus Platinum\Inicio.exe"

O4 - HKLM\..\Run: [PCLEPCI] C:\Program\Pinnacle\PPE\ppe.exe

O4 - HKLM\..\Run: [OmniPage] C:\Program\Caere\OmniPagePro90\opware32.exe

O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe

O4 - HKLM\..\Run: [LaunchAp] C:\Program\Launch Manager\LaunchAp.exe

O4 - HKLM\..\Run: [inCD] C:\Program\Ahead\InCD\InCD.exe

O4 - HKLM\..\Run: [HotkeyApp] C:\Program\Launch Manager\HotkeyApp.exe

O4 - HKLM\..\Run: [CtrlVol] C:\Program\Launch Manager\CtrlVol.exe

O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe

O4 - HKLM\..\Run: [APVXDWIN] "C:\Program\Panda Software\Panda Antivirus Platinum\APVXDWIN.EXE" /s

O4 - HKCU\..\Run: [MSMSGS] "C:\Program\Messenger\msmsgs.exe" /background

O4 - Global Startup: Adobe Gamma Loader.exe.lnk = ?

O4 - Global Startup: HotSync Manager.lnk = ?

O4 - Global Startup: InterVideo WinCinema Manager.lnk = ?

O4 - Global Startup: Microsoft Office.lnk = ?

O8 - Extra context menu item: &Google Search - res://C:\Program\Google\GoogleToolbar1.dll/cmsearch.html

O8 - Extra context menu item: Backward &Links - res://C:\Program\Google\GoogleToolbar1.dll/cmbacklinks.html

O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program\Google\GoogleToolbar1.dll/cmcache.html

O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:\Program\MICROS~4\Office10\EXCEL.EXE/3000

O8 - Extra context menu item: Si&milar Pages - res://C:\Program\Google\GoogleToolbar1.dll/cmsimilar.html

O9 - Extra button: Messenger (HKLM)

O9 - Extra 'Tools' menuitem: Messenger (HKLM)

O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab

O16 - DPF: {597C45C2-2D39-11D5-8D53-0050048383FE} (OPUCatalog Class) - http://office.microsoft.com/productupdates/content/opuc.cab

O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/bff3af7d050da5/housecall.antivirus.com/housecall/xscan53.cab

O16 - DPF: {7C3DCDB2-F723-44C9-9D15-79AECAF10BD2} (sbocx.sbreader) - http://www.infosoc.se/online/sbocx.CAB'>http://www.infosoc.se/online/sbocx.CAB

O16 - DPF: {7D570E68-E085-4A20-85AB-B384DECFE3DE} (sbocx.sbreader) - http://www.infosoc.se/online/sbocx.CAB

O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installengine.com/engine/isetup.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab

O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37863.9390972222

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

 

 

[Mij]

Hej B.

 

Stäng din webbläsare och starta HJT igen.

 

Bocka i följande:

[FET]

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar

O2 - BHO: (no name) - {029CA12C-89C1-46a7-A3C7-82F2F98635CB} - C:\Program\Kontiki\bin\bh304181.dll (file missing)

O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installengine.com/engine/isetup.cab

[/FET]

Klicka sedan på "Fix checked".

 

Följande tycker jag verkar konstigt, men jag hittar ingen info om det:

[FET]

O16 - DPF: {7C3DCDB2-F723-44C9-9D15-79AECAF10BD2} (sbocx.sbreader) - http://www.infosoc.se/online/sbocx.CAB'>http://www.infosoc.se/online/sbocx.CAB

O16 - DPF: {7D570E68-E085-4A20-85AB-B384DECFE3DE} (sbocx.sbreader) - http://www.infosoc.se/online/sbocx.CAB

[/FET]

De sista filerna vågar jag inte uttala mig om som det är nu.

 

 

 

[BeSon]

Morn Mij.

Tack för hjälpen, får se om det fungerar.

Ska kontroller i forsättningen om de dyker upp igen.

Ha en bra da

B

 

[Mij]

Dagens B..

 

Hoppas att du slipper en del av det i framtiden..

 

Tack för poängen.