Yeps, så er den også gal på min computer. Mysearchbaren har indvaderet min browser, og køn er den ikke just, så hvis der er en venlig sjæl der vil hjælpe mig, vil jeg blive enormt taknemlig. Har kørt diverse adwareprogrammer, men de kan ikke få bugt med den, så nu har jeg kørt hjt, og min log er som følger:
Logfile of HijackThis v1.98.2
Scan saved at 14:48:19, on 28-09-2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:WINNTSystem32smss.exe
C:WINNTsystem32csrss.exe
C:WINNTsystem32winlogon.exe
C:WINNTsystem32services.exe
C:WINNTsystem32lsass.exe
C:WINNTsystem32svchost.exe
C:WINNTSystem32svchost.exe
C:WINNTsystem32spoolsv.exe
C:ProgrammerFælles filerSymantec SharedccEvtMgr.exe
C:WINNTSystem32Ati2evxx.exe
C:WINNTsystem32hidserv.exe
C:ProgrammerFælles filerMicrosoft SharedVS7Debugmdm.exe
C:ProgrammerNorton SystemWorksNorton AntiVirus
avapsvc.exe
C:WINNTsystem32
egsvc.exe
C:WINNTsystem32MSTask.exe
C:WINNTsystem32slserv.exe
C:WINNTsystem32stisvc.exe
C:WINNTSystem32WBEMWinMgmt.exe
C:WINNTsystem32MsPMSPSv.exe
C:WINNTsystem32svchost.exe
C:WINNTSystem32svchost.exe
C:WINNTExplorer.EXE
C:ProgrammerFælles filerSymantec SharedSymTray.exe
C:WINNTSOUNDMAN.EXE
C:ProgrammerEzButtonCplBCL50.EXE
C:WINNTsystem32PRPCUI.exe
C:ProgrammerApoint2KApoint.exe
C:WINNTsystem32MMTray.exe
C:WINNTsystem32MMTray2k.exe
C:WINNTsystem32MMTrayLSI.exe
C:ProgrammerApoint2KApntex.exe
C:ProgrammerD-Toolsdaemon.exe
C:ProgrammerFælles filerAdaptec SharedCreateCDCreateCD50.exe
C:ProgrammerRoxioEasy CD Creator 5DirectCDDirectCD.exe
C:ProgrammerLogitechMouseWaresystemem_exec.exe
C:ProgrammerQuickTimeqttask.exe
C:PROGRA~1PHILIP~1VProperty.exe
C:WINNTsystem32UMonit2k.exe
C:ProgrammerMessenger Plus! 3MsgPlus.exe
C:ProgrammerMSN AppsUpdater 1.02.3000.1001damsnappau.exe
C:ProgrammerICQICQ.exe
C:ProgrammerFælles filerSymantec SharedccApp.exe
C:WINNTsystem32ctfmon.exe
C:ProgrammerMSN Messengermsnmsgr.exe
C:ProgrammerWebrootSpy SweeperSpySweeper.exe
C:ProgrammerInternet Exploreriexplore.exe
c:progra~1intern~1iexplore.exe
C:DOCUME~1ADMINI~1LOKALE~1TempRar$EX00.792HijackThis.exe
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page =
http://www.mvgkfjrlpgnqflqlnzchujt.com[...]
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
http://nxfcaplwaxocqqs.com[...]
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Hyperlinks
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:ProgrammerSpybot - Search & DestroySDHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:ProgrammerMSN AppsST 1.02.3000.1001en-xustmain.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:PROGRA~1FlashGetjccatch.dll
O2 - BHO: (no name) - {B96F9700-5A3D-222E-C384-85B1587649A6} - C:PROGRA~1SHIMDE~1acid bind.exe
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:ProgrammerMSN AppsMSN Toolbar 1.02.3000.1001damsntb.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgrammerNorton SystemWorksNorton AntiVirusNavShExt.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:WINNTSystem32msdxm.ocx
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:PROGRA~1FlashGetfgiebar.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:ProgrammerMSN AppsMSN Toolbar 1.02.3000.1001damsntb.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgrammerNorton SystemWorksNorton AntiVirusNavShExt.dll
O4 - HKLM..Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM..Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM..Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM..Run: [CplBCL50] C:ProgrammerEzButtonCplBCL50.EXE
O4 - HKLM..Run: [PRPCMonitor] PRPCUI.exe
O4 - HKLM..Run: [Apoint] C:ProgrammerApoint2KApoint.exe
O4 - HKLM..Run: [MMTray] MMTray.exe
O4 - HKLM..Run: [MMTray2K] MMTray2k.exe
O4 - HKLM..Run: [MMTrayLSI] MMTrayLSI.exe
O4 - HKLM..Run: [DAEMON Tools-1033] "C:ProgrammerD-Toolsdaemon.exe" -lang 1033
O4 - HKLM..Run: [Tweak UI] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - HKLM..Run: [Mirabilis ICQ] C:ProgrammerICQICQNet.exe
O4 - HKLM..Run: [CreateCD50] "C:ProgrammerFælles filerAdaptec SharedCreateCDCreateCD50.exe" -r
O4 - HKLM..Run: [AdaptecDirectCD] "C:ProgrammerRoxioEasy CD Creator 5DirectCDDirectCD.exe"
O4 - HKLM..Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM..Run: [QuickTime Task] "C:ProgrammerQuickTimeqttask.exe" -atboottime
O4 - HKLM..Run: [ToUcamVProperty] C:PROGRA~1PHILIP~1VProperty.exe
O4 - HKLM..Run: [Gene USB Monitor] C:WINNTsystem32UMonit2k.exe
O4 - HKLM..Run: [MessengerPlus3] "C:ProgrammerMessenger Plus! 3MsgPlus.exe"
O4 - HKLM..Run: [msnappau] "C:ProgrammerMSN AppsUpdater 1.02.3000.1001damsnappau.exe"
O4 - HKLM..Run: [ccApp] "C:ProgrammerFælles filerSymantec SharedccApp.exe"
O4 - HKLM..Run: [ccRegVfy] "C:ProgrammerFælles filerSymantec SharedccRegVfy.exe"
O4 - HKLM..Run: [SymTray - Norton SystemWorks] C:ProgrammerFælles filerSymantec SharedSymtray.exe SetReg
O4 - HKLM..Run: [PeakStore] C:PROGRA~1Four Date TeamDebug Draw Balm.exe
O4 - HKLM..Run: [REGS BAGS BASH 1] C:Documents and SettingsAll UsersApplication DataPlatform hole regs bagsjoy kind.exe
O4 - HKLM..RunOnce: [SymTray - Norton SystemWorks] C:ProgrammerFælles filerSymantec SharedSymtrdr.exe
O4 - HKCU..Run: [StatBar] C:ProgrammerGlobe SoftwareStatBarStatBar.exe
O4 - HKCU..Run: [ctfmon.exe] ctfmon.exe
O4 - HKCU..Run: [MessengerPlus3] "C:ProgrammerMessenger Plus! 3MsgPlus.exe" /WinStart
O4 - HKCU..Run: [msnmsgr] "C:ProgrammerMSN Messengermsnmsgr.exe" /background
O4 - HKCU..Run: [SpySweeper] "C:ProgrammerWebrootSpy SweeperSpySweeper.exe" /0
O4 - HKCU..RunOnce: [ICQ] C:ProgrammerICQICQ.exe -trayboot
O4 - Global Startup: AutoStart IR.lnk = C:ProgrammerWinTVIr.exe
O4 - Global Startup: Microsoft Office.lnk = C:ProgrammerMicrosoft OfficeOffice10OSA.EXE
O8 - Extra context menu item: Download All by FlashGet - C:ProgrammerFlashGetjc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:ProgrammerFlashGetjc_link.htm
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:ProgrammerICQICQ.exe
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:ProgrammerICQICQ.exe
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:PROGRA~1FlashGetflashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:PROGRA~1FlashGetflashget.exe
O16 - DPF: Profile CAPI 7,0,0,478 -
https://udstedelse.certifikat.tdc.dk[...]
O16 - DPF: {18D9C485-7EEC-4395-95DA-DC3875B10E81} (TEInstallPlugIn) -
http://www.skylinesoft.com[...]
O16 - DPF: {243C1935-293B-4592-88C2-1F2B67AA96A4} -
http://www.sportsim.com[...]
O16 - DPF: {3D2CB570-D425-11D5-ABD0-00008369C46F} (CSMenu Class) -
https://netbank.danskebank.dk[...]
O16 - DPF: {53B3ABEA-4445-44D9-A01E-088144CAABD9} (FileSharingCtrl Class) -
http://appdirectory.messenger.msn.com[...]
O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} -
http://www.xblock.com[...]
O16 - DPF: {63DF43C2-469A-41F3-B119-17B1ACE8BB34} (Sony SNC-RZ30 Image Viewer) -
http://151.204.174.24[...]
O16 - DPF: {A590956F-AE99-4419-BB39-3C721276C625} (Util Class) -
https://udstedelse.certifikat.tdc.dk[...]
O16 - DPF: {AABB591F-CEB3-404A-A979-AA30B16CB914} (IPLabs Image Uploader 2.5) -
http://asp02.photoprintit.de[...]
O16 - DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} (e-Safekey®) -
https://netbank.danskebank.dk[...]
O16 - DPF: {F6A56D95-A3A3-11D2-AC26-400000058481} (Danske e-Sec) -
https://netbank.danskebank.dk[...]
Håber der er en der kan hjælpe.
På forhånd tak.
M.
--
"Det er ikke fordi ting er vanskelige, vi ikke tør. Det er fordi, vi ikke tør, ting er vanskelige."