Treg internett,+hHJT logg.

[Kvikksølv]

For litt siden "oppgraderte" vi fra 4mbit til 8mbits linje. Etter det har det vært veldig ustabilt, så vi skal bytte tilbake. Men det som er problemet, er at internetten på PC-en min er veldig treig når jeg går inn på en webside. Enkelte ganger går den rett inn (vanlig fart), men noen ganger bruker den opp til 40sek, før den plutselig kommer inn. Dette problemet skjedde ikke med en gang vi byttet til 8mbit. Lurer på om dette kommer av noe krøll på nettverket (vi er 3 PC'r på nettverket, og bare jeg har dette problemet), eller om jeg har noe virus e.l. Trend Micro, SUPER ANTI SPYWARE, eller Ad-Aware finner ingen ting.

Her er en HJT-logg. (beklager, fikk ikke til "skjul".

 

 

Logfile of HijackThis v1.99.1

Scan saved at 11:37:32, on 16.12.2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16574)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\System32\nvsvc32.exe

C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe

C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe

C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe

C:\WINDOWS\Explorer.EXE

C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Programfiler\Trend Micro\Internet Security 2007\pccguide.exe

D:\Programfiler\iTunes\iTunesHelper.exe

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Programfiler\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe

D:\Programfiler\iolo\System Mechanic Professional 6\SMSystemAnalyzer.exe

D:\Programfiler\DAEMON Tools\daemon.exe

D:\Programfiler\Logitech\SetPoint\SetPoint.exe

C:\Programfiler\iPod\bin\iPodService.exe

C:\PROGRA~1\TRENDM~1\INTERN~1\PcScnSrv.exe

C:\WINDOWS\System32\svchost.exe

C:\Programfiler\Fellesfiler\Logitech\KHAL\KHALMNPR.EXE

D:\Programfiler\Valve\Steam\Steam.exe

C:\Programfiler\MSN Messenger\msnmsgr.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Programfiler\Internet Explorer\iexplore.exe

C:\Programfiler\Fellesfiler\Logitech\WebColct\WebColct.exe

D:\hijackthis\haha.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.no/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koblinger

O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programfiler\Fellesfiler\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - D:\Programfiler\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programfiler\Java\jre1.6.0_03\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [pccguide.exe] "C:\Programfiler\Trend Micro\Internet Security 2007\pccguide.exe"

O4 - HKLM\..\Run: [iTunesHelper] "D:\Programfiler\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [OE] "C:\Programfiler\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe"

O4 - HKCU\..\Run: [sMSystemAnalyzer] "d:\Programfiler\iolo\System Mechanic Professional 6\SMSystemAnalyzer.exe"

O4 - HKCU\..\Run: [DAEMON Tools] "d:\Programfiler\DAEMON Tools\daemon.exe" -lang 1033

O4 - Startup: Adobe Gamma.lnk = C:\Programfiler\Fellesfiler\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

O4 - Global Startup: Logitech SetPoint.lnk = D:\Programfiler\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: Microsoft Office.lnk = D:\Programfiler\Microsoft Office\Office\OSA9.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programfiler\Java\jre1.6.0_03\bin\ssv.dll

O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - D:\Programfiler\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programfiler\Messenger\msmsgs.exe

O11 - Options group: [iNTERNATIONAL] International*

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/200705...ex/qtplugin.cab

O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.6.108.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1173478481781

O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1174028390703

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jin...ows-i586-jc.cab

O18 - Protocol: bw+0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw+0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw-0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw-0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw00 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw00s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw10 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw10s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw20 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw20s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw30 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw30s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw40 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw40s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw50 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw50s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw60 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw60s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw70 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw70s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw80 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw80s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw90 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bw90s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwa0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwa0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwb0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwb0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwc0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwc0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwd0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwd0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwe0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwe0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwf0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwf0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

O18 - Protocol: bwg0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwg0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwh0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwh0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwi0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwi0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwj0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwj0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwk0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwk0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwl0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwl0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwm0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwm0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwn0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwn0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwo0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwo0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwp0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwp0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwq0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwq0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwr0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwr0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bws0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bws0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwt0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwt0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwu0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwu0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwv0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwv0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bww0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bww0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwx0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwx0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwy0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwy0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwz0 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: bwz0s - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: offline-8876480 - {E241A91A-1789-4EBF-A04B-D9772E711F6F} - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FELLES~1\Skype\SKYPE4~1.DLL

O20 - Winlogon Notify: !SASWinLogon - D:\Programfiler\SUPERAntiSpyware\SASWINLO.DLL

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Programfiler\Fellesfiler\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programfiler\Fellesfiler\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Programfiler\iPod\bin\iPodService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe

O23 - Service: Spionprogrambeskyttelse fra Trend Micro (PcScnSrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\PcScnSrv.exe

O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe

O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe

O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe

Endret 16. desember 2007 av Kn0xville

[norbat]

Loggen viser ingen åpenbare ting, så sannsynligvis dreier dette seg ikke om spyware etc.

 

En runde med CCleaner er alltid en grei rutine

(Last ned CCleaner. Start programmet. Gå til 'Valg'->'Avansert'. Fjern avkryssingen framfor: "bare slett midlertidige filer......." Klikk på 'Renser' og deretter 'Kjør CCleaner'.)

 

Hvilken tilkobling bruker du? Trådløst/tråd. Kan det være noe der som gjør at det henger av og til?

 

Vi kan prøve en annen scanner for å se om det evt. ligger noe som hjt-loggen ikke viser:

 

Hent Combofix, og legg det på skrivebordet

 

Kjør combofix.exe, og følg veiledningen.

Du må ikke klikke på vinduet mens programmet kjører.

 

Post loggfilen fra combofix (c:\combofix.txt)

[Kvikksølv]

Beklager at det tok litt tid før jeg fikk svart på denne posten.

Bruker tråd/kabel. Har aldri hatt noe problem med internetttilkoblingen sånn sett. Nå har vår ISP fikset den trege internetten, men det er fortsatt grisetreigt hos meg.

 

Lastet ned combofox, og fikk da opp mange advarseler fra Trend Micro. Infiserte fil, mistenklige handlinger med høy risiko osv, er det combofix som prøver å gjøre jobben sin?

 

Infisert fil: dumbhive.cfexe

Navn: Freeloader Smitfraid

Endret 29. desember 2007 av Kn0xville

[norbat]

Ja, noen av-prog. reagerer på noen av prosessene som kjøres av combofix. Det greieste kan være å slå av-prog. midlertidig av.

[Kvikksølv]

VKA 2007-12-29 11:09:21.1 - NTFSx86

Microsoft Windows XP Professional 5.1.2600.2.1252.1.1044.18.1382 [GMT 1:00]

Running from: C:\Documents and Settings\VKA\Skrivebord\ComboFix.exe

* Created a new restore point

.

 

((((((((((((((((((((((((( Files Created from 2007-11-28 to 2007-12-29 )))))))))))))))))))))))))))))))

.

 

2007-12-27 18:29 . 2007-12-29 01:50 <DIR> dr-h----- C:\Documents and Settings\VKA\Siste

2007-12-25 01:51 . 2007-05-16 16:45 3,497,832 --a------ C:\WINDOWS\system32\d3dx9_34.dll

2007-12-25 01:51 . 2007-03-12 16:42 3,495,784 --a------ C:\WINDOWS\system32\d3dx9_33.dll

2007-12-25 01:51 . 2007-05-16 16:45 1,124,720 --a------ C:\WINDOWS\system32\D3DCompiler_34.dll

2007-12-25 01:51 . 2007-03-12 16:42 1,123,696 --a------ C:\WINDOWS\system32\D3DCompiler_33.dll

2007-12-25 01:51 . 2007-05-16 16:45 443,752 --a------ C:\WINDOWS\system32\d3dx10_34.dll

2007-12-25 01:51 . 2007-03-15 16:57 443,752 --a------ C:\WINDOWS\system32\d3dx10_33.dll

2007-12-25 01:51 . 2007-05-31 19:30 266,088 --a------ C:\WINDOWS\system32\xactengine2_8.dll

2007-12-25 01:51 . 2007-04-04 18:55 261,480 --a------ C:\WINDOWS\system32\xactengine2_7.dll

2007-12-25 01:51 . 2007-05-31 19:29 18,280 --a------ C:\WINDOWS\system32\x3daudio1_2.dll

2007-12-25 01:45 . 2007-12-29 01:11 22,328 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys

2007-12-25 01:45 . 2007-12-25 01:45 22,328 --a------ C:\Documents and Settings\VKA\Programdata\PnkBstrK.sys

2007-12-25 01:45 . 2007-12-25 01:45 22,328 --a------ C:\DOCUME~1\VKA\PROGRA~1\PnkBstrK.sys

2007-12-25 01:44 . 2007-12-29 01:11 107,832 --a------ C:\WINDOWS\system32\PnkBstrB.exe

2007-12-25 01:44 . 2007-12-25 02:31 66,872 --a------ C:\WINDOWS\system32\PnkBstrA.exe

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2007-12-29 01:24 --------- d-----w C:\Documents and Settings\VKA\Programdata\Skype

2007-12-29 01:24 --------- d-----w C:\DOCUME~1\VKA\PROGRA~1\Skype

2007-12-25 00:43 --------- d--h--w C:\Programfiler\InstallShield Installation Information

2007-12-21 11:41 --------- d-----w C:\Documents and Settings\VKA\Programdata\LimeWire

2007-12-21 11:41 --------- d-----w C:\DOCUME~1\VKA\PROGRA~1\LimeWire

2007-12-11 19:38 --------- d-----w C:\Documents and Settings\VKA\Programdata\OpenOffice.org2

2007-12-11 19:38 --------- d-----w C:\DOCUME~1\VKA\PROGRA~1\OpenOffice.org2

2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys

2007-11-06 20:43 --------- d-----w C:\Programfiler\Fraps

2007-11-06 16:33 --------- d---a-w C:\DOCUME~1\ALLUSE~1\PROGRA~1\TEMP

2007-10-28 20:27 --------- d-----w C:\Programfiler\RegistrySmart

2007-10-28 20:01 --------- d-----w C:\Programfiler\Java

2007-10-28 20:00 --------- d-----w C:\Programfiler\Fellesfiler\Java

2007-10-28 19:50 --------- d-----w C:\Documents and Settings\VKA\Programdata\RegistrySmart

2007-10-28 19:50 --------- d-----w C:\DOCUME~1\VKA\PROGRA~1\RegistrySmart

.

 

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 09:03]

"OE"="C:\Programfiler\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe" [2006-09-27 00:04]

"SMSystemAnalyzer"="d:\Programfiler\iolo\System Mechanic Professional 6\SMSystemAnalyzer.exe" [2006-12-20 16:47]

"DAEMON Tools"="d:\Programfiler\DAEMON Tools\daemon.exe" [2006-11-12 11:48]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"="RUNDLL32.exe" [2004-08-04 09:03 C:\WINDOWS\system32\rundll32.exe]

"nwiz"="nwiz.exe" [2006-10-21 04:32 C:\WINDOWS\system32\nwiz.exe]

"NvMediaCenter"="RUNDLL32.exe" [2004-08-04 09:03 C:\WINDOWS\system32\rundll32.exe]

"pccguide.exe"="C:\Programfiler\Trend Micro\Internet Security 2007\pccguide.exe" [2007-01-15 19:04]

"iTunesHelper"="D:\Programfiler\iTunes\iTunesHelper.exe" [2007-03-14 18:05]

"RTHDCPL"="RTHDCPL.EXE" [2007-04-05 01:37 C:\WINDOWS\RTHDCPL.exe]

"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2005-07-22 22:25 C:\WINDOWS\KHALMNPR.Exe]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 09:03]

 

C:\DOCUME~1\ALLUSE~1\START-~1\PROGRA~1\Oppstart\

Logitech Desktop Messenger.lnk - D:\Programfiler\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2007-04-24 18:56:32]

Logitech SetPoint.lnk - D:\Programfiler\Logitech\SetPoint\SetPoint.exe [2007-04-24 18:55:33]

Microsoft Office.lnk - D:\Programfiler\Microsoft Office\Office\OSA9.EXE [1999-02-17 20:05:56]

 

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]

"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= D:\Programfiler\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 11:55 77824]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]

D:\Programfiler\SUPERAntiSpyware\SASWINLO.DLL 2007-05-02 16:28 294912 D:\Programfiler\SUPERAntiSpyware\SASWINLO.DLL

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Notification Packages REG_MULTI_SZ scecli scecli

 

S3 PciCon;PciCon;D:\PciCon.sys []

S3 T5100_usb;LGE USB driver;C:\WINDOWS\system32\Drivers\T5100.sys [2004-08-19 00:48]

 

.

**************************************************************************

 

catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2007-12-29 11:12:38

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden files: 0

 

**************************************************************************

.

Completion time: 2007-12-29 11:14:31 - machine was rebooted

.

2007-12-29 01:25:32 --- E O F ---

[norbat]

Ser fint ut.

 

Du kunne ha sjekket om winsock-fila trenger et spark:

Automatisk fix: Winsockfix

[Kvikksølv]

hmm. Problemet er fortsatt ikke fikset. Det som er rart er at f.eks nettspill (WoW), funker utmerket. Bare nettleseren som er treig. Samme med firefox også

[norbat]

Prøv å 'slå av' alt som har med Trend Micro å gjøre og prøv med nettleserene igjen.

[Kvikksølv]

Trend hadde visst skylda... Vet du hvilke instillinger som må konfigureres?

[norbat]

Beklager, kjenner ikke særlig til Trend. Vil tro det kan ha noe med at nettsidene blir 'sjekket' før de får lov til å vises på skjermen, men hvilken innstillinger man skal konfigurerer (eller skru av) vet jeg ikke. Du får forske litt og gi tilbakemelding på hva som evt. løste problemet hvis ingen andre har et godt tips.

[Kvikksølv]

Det skal jeg! Takk,Norbat! Verden trenger flere slike som deg.

"Tilgangskontroller for nettsted" - AV

Endret 29. desember 2007 av Kn0xville

[norbat]

Se så, det ordnet du greit

 

Du får bare være litt forsiktig/dobbeltsjekke når du besøker nettsteder som spør om personlig info.

 

Du kan fjerne combofix ved å skrive ComboFix /u i kjørvinduet (Start->Kjør)

Endret 29. desember 2007 av norbat