I have checked hosts-file (hosts.sam). There is only the localhost-pointer. The sites are blocked both in MSIE and FF.
When traceing IP of the blocked sites not even my own router is found!!! Only Errors. So, it looks (?) like it's in my pc.
---------------
Logfile of HijackThis v1.99.1
Scan saved at 11:26:50, on 2006-02-25
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v5.00 (5.00.2614.3500)
Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\PROGRAM\NETVEDA\SAFETY.NET\IPCSVC.EXE
C:\PROGRAM\VANLIGA FILER\SOFTWIN\BITDEFENDER COMMUNICATOR\XCOMMSVR.EXE
D:\PROGRAM\AVAST4\ASHSERV.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\RPCSS.EXE
C:\PROGRAM\OLYMPUS\DEVICEDETECTOR\DEVDTCT2.EXE
C:\PROGRAM\NETVEDA\SAFETY.NET\IPCTRAY.EXE
D:\PROGRAM\WINPATROL\WINPATROL.EXE
D:\PROGRAM\AROVAX SHIELD\AROVAXSHIELD.EXE
D:\PROGRAM\BITDEFENDER8\BDNAGENT.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\PROGRAM\DISSPY\DISSPY.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRAM\VANLIGA FILER\SOFTWIN\BITDEFENDER SCAN SERVER\BDSS.EXE
D:\PROGRAM\BITDEFENDER8\BDMCON.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
D:\PROGRAM\FIREFOX\FIREFOX.EXE
C:\PROGRAM\WIN32PAD\WIN32PAD.EXE
C:\WINDOWS\SYSTEM\STIMON.EXE
C:\PROGRAM\WIN32PAD\WIN32PAD.EXE
D:\PROGRAM\FOXMAIL\FOXMAIL.EXE
D:\PROGRAM\AHEAD\NERO\NERO.EXE
D:\PROGRAM\QUERY APPLICATION\QUERYAPP.EXE
D:\PROGRAM\ANTIVIRUS OCH SäKERHET DIVERSE\HIJACKTHIS.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://192.168.1.1/O4 - HKLM\..\Run: [Device Detector 3] C:\Program\Olympus\DeviceDetector\DevDtct2.exe
O4 - HKLM\..\Run: [SafetyNet] C:\Program\NetVeda\Safety.Net\ipcTray.exe
O4 - HKLM\..\Run: [WinPatrol System Monitor] D:\Program\WinPatrol\WinPatrol.exe
O4 - HKLM\..\Run: [Arovax Shield] D:\PROGRAM\AROVAX SHIELD\AROVAXSHIELD.EXE /h
O4 - HKLM\..\Run: [BDMCon] "D:\Program\BitDefender8\bdmcon.exe"
O4 - HKLM\..\Run: [BDNewsAgent] "D:\Program\BitDefender8\bdnagent.exe"
O4 - HKLM\..\Run: [Aktivitetsfältet] SysTray.Exe
O4 - HKLM\..\RunServices: [ATIPOLAB] ati2evxx.exe
O4 - HKLM\..\RunServices: [ipcsvc] C:\Program\NetVeda\Safety.Net\ipcsvc.exe
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [BitDefender Communicator] "C:\Program\Vanliga filer\Softwin\BitDefender Communicator\\xcommsvr.exe"
O4 - HKLM\..\RunServices: [BitDefender Scan Server] "C:\Program\Vanliga filer\Softwin\BitDefender Scan Server\\bdss.exe"
O4 - HKLM\..\RunServices: [BitDefender Live! Init] "D:\Program\BitDefender8\bdinit.exe"
O4 - HKLM\..\RunServices: [avast!] D:\Program\Avast4\ashServ.exe
O4 - HKLM\..\RunOnce: [GrpConv] grpconv.exe -o
O4 - HKCU\..\Run: [Disspy] C:\PROGRAM\DISSPY\DISSPY.exe - silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Program\Spybot\TeaTimer.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
O15 - Trusted Zone: *.frame.crazywinnings.com
O15 - Trusted Zone: *.frame.crazywinnings.com (HKLM)
O15 - Trusted IP range:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -
http://www.bitdefend...can8/oscan8.cabO16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) -
http://www.windowsec...scan/axscan.cabO16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://www.kaspersky...ebscan_ansi.cab
Edited by defence, 25 February 2006 - 04:41 AM.