Har så fået skaffet programmet og kørt en scan. Her er loggen: Running processes: C:WINNTSystem32smss.exe C:WINNTsystem32winlogon.exe C:WINNTsystem32services.exe C:WINNTsystem32lsass.exe C:WINNTsystem32svchost.exe C:WINNTsystem32spoolsv.exe C:ProgrammerNetropaMultimedia Keyboard hksrv.exe C:PROGRA~1GrisoftAVG6avgserv.exe C:WINNTsystem32CTsvcCDA.exe C:WINNTSystem32svchost.exe C:ProgrammerNorton AntiVirus avapsvc.exe C:ProgrammerNorton Personal FirewallNISUM.EXE C:WINNTSystem32 vsvc32.exe C:WINNTsystem32 egsvc.exe C:WINNTsystem32MSTask.exe C:WINNTsystem32stisvc.exe C:ProgrammerNorton Personal FirewallSymProxySvc.exe C:WINNTSystem32WBEMWinMgmt.exe C:WINNTExplorer.EXE C:WINNTsystem32MsPMSPSv.exe C:WINNTsystem32svchost.exe C:ProgrammerNorton Personal FirewallNISSERV.EXE C:PROGRA~1GrisoftAVG6avgcc32.exe C:PROGRA~1NORTON~1 avapw32.exe C:ProgrammerWinampWinampa.exe C:ProgrammerNorton Personal FirewallIAMAPP.EXE C:ProgrammerCreativeSBAudigy2Surround MixerCTSysVol.exe C:ProgrammerCreativeSBAudigy2DVDAudioCTDVDDet.EXE C:WINNTsystem32CTHELPER.EXE C:ProgrammerMicrosoft HardwareMousepoint32.exe C:ProgrammerNetropaMultimedia KeyboardMMKeybd.exe E:WarezAppz - cracksRefreshLock.exe C:ProgrammerFælles filerRealUpdate_OB ealsched.exe C:WINNTsystem32internat.exe C:ProgrammerCreativeMediaSourceRemoteControlRcMan.exe C:ProgrammerMSN MessengerMsnMsgr.Exe C:ProgrammerTEXTwareHotKeyTwalink.exe C:ProgrammerInterVideoCommonBinWinCinemaMgr.exe C:ProgrammerNetropaMultimedia KeyboardTrayMon.exe C:ProgrammerNetropaOnscreen DisplayOSD.exe C:ProgrammerInterVideoWinDVD4PRWinScheduler.exe C:ProgrammerInternet ExplorerIEXPLORE.EXE C:ProgrammerWinampwinamp.exe E:Privatircmirc.exe C:Documents and SettingsAdministratorSkrivebordMod spywareHijackThis.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Hyperlinks O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgrammerAdobeAcrobat 6.0ReaderActiveXAcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgrammerNorton AntiVirusNavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgrammerNorton AntiVirusNavShExt.dll O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:WINNTsystem32msdxm.ocx O4 - HKLM..Run: [Synchronization Manager] mobsync.exe /logon O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINNTSystem32NvCpl.dll,NvStartup O4 - HKLM..Run: [nwiz] nwiz.exe /install O4 - HKLM..Run: [AVG_CC] C:PROGRA~1GrisoftAVG6avgcc32.exe /STARTUP O4 - HKLM..Run: [NAV Agent] C:PROGRA~1NORTON~1 avapw32.exe O4 - HKLM..Run: [WinampAgent] "C:ProgrammerWinampWinampa.exe" O4 - HKLM..Run: [iamapp] C:ProgrammerNorton Personal FirewallIAMAPP.EXE O4 - HKLM..Run: [CTSysVol] C:ProgrammerCreativeSBAudigy2Surround MixerCTSysVol.exe O4 - HKLM..Run: [CTDVDDet] C:ProgrammerCreativeSBAudigy2DVDAudioCTDVDDet.EXE O4 - HKLM..Run: [CTHelper] CTHELPER.EXE O4 - HKLM..Run: [AsioReg] REGSVR32.EXE /S CTASIO.DLL O4 - HKLM..Run: [SBDrvDet] C:ProgrammerCreativeSB Drive DetSBDrvDet.exe /r O4 - HKLM..Run: [UpdReg] C:WINNTUpdReg.EXE O4 - HKLM..Run: [POINTER] point32.exe O4 - HKLM..Run: [MULTIMEDIA KEYBOARD] C:ProgrammerNetropaMultimedia KeyboardMMKeybd.exe O4 - HKLM..Run: [NeroFilterCheck] C:WINNTsystem32NeroCheck.exe O4 - HKLM..Run: [RefreshLock] E:WarezAppz - cracksRefreshLock.exe O4 - HKLM..Run: [TkBellExe] "C:ProgrammerFælles filerRealUpdate_OB ealsched.exe" -osboot O4 - HKLM..Run: [Symantec NetDriver Monitor] C:PROGRA~1SYMNET~1SNDMon.exe O4 - HKLM..Run: [sais] c:programmer180solutionssais.exe O4 - HKLM..Run: [SSC_UserPrompt] C:ProgrammerFælles filerSymantec SharedSecurity CenterUsrPrmpt.exe O4 - HKCU..Run: [internat.exe] internat.exe O4 - HKCU..Run: [RemoteCenter] C:ProgrammerCreativeMediaSourceRemoteControlRcMan.exe O4 - HKCU..Run: [MsnMsgr] "C:ProgrammerMSN MessengerMsnMsgr.Exe" /background O4 - HKCU..Run: [Steam] C:ProgrammerSteamSteam.exe -silent O4 - HKCU..Run: [Skype] "C:ProgrammerSkypePhoneSkype.exe" /nosplash /minimized O4 - Global Startup: HotKey.lnk = C:ProgrammerTEXTwareHotKeyTwalink.exe O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:ProgrammerInterVideoCommonBinWinCinemaMgr.exe O4 - Global Startup: InterVideo WinScheduler.lnk = C:ProgrammerInterVideoWinDVD4PRWinScheduler.exe O4 - Global Startup: Microsoft Office.lnk = C:ProgrammerMicrosoft OfficeOffice10OSA.EXE O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:PROGRA~1MICROS~3Office10EXCEL.EXE/3000 O12 - Plugin for .spop: C:ProgrammerInternet ExplorerPluginsNPDocBox.dll O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com[...] O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com[...] O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net[...] O16 - DPF: {771A1334-6B08-4A6B-AEDC-CF994BA2CEBE} (Installer Class) - http://www.ysbweb.com[...] O16 - DPF: {79849612-A98F-45B8-95E9-4D13C7B6B35C} - http://static.topconverting.com[...] O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com[...] O16 - DPF: {D3426292-3750-4D80-9D0F-2816F61A6D15} (SpeedTest Control) - http://81.19.245.211[...] O23 - Service: AVG6 Service - GRISOFT s.r.o - C:PROGRA~1GrisoftAVG6avgserv.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:WINNTsystem32CTsvcCDA.exe O23 - Service: Logical Disk Manager Administrative Service - VERITAS Software Corp. - C:WINNTSystem32dmadmin.exe O23 - Service: Norton AntiVirus Auto Protect Service - Symantec Corporation - C:ProgrammerNorton AntiVirus avapsvc.exe O23 - Service: Netropa NHK Server - Unknown - C:ProgrammerNetropaMultimedia Keyboard hksrv.exe O23 - Service: Norton Personal Firewall Service - Symantec Corporation - C:ProgrammerNorton Personal FirewallNISSERV.EXE O23 - Service: Norton Personal Firewall Accounts Manager - Symantec Corporation - C:ProgrammerNorton Personal FirewallNISUM.EXE O23 - Service: NVIDIA Display Driver Service - NVIDIA Corporation - C:WINNTSystem32 vsvc32.exe O23 - Service: ScriptBlocking Service - Symantec Corporation - C:PROGRA~1FLLESF~1SYMANT~1SCRIPT~1SBServ.exe O23 - Service: Symantec Network Drivers Service - Symantec Corporation - C:ProgrammerFælles filerSymantec SharedSNDSrvc.exe O23 - Service: Norton Personal Firewall Proxy Service - Symantec Corporation - C:ProgrammerNorton Personal FirewallSymProxySvc.exe O23 - Service: SymWMI Service - Symantec Corporation - C:ProgrammerFælles filerSymantec SharedSecurity CenterSymWSC.exe
--

Hej. Tak og godt nytår til dig også :o)! Der er kun lidt snavs i din log, så det fixer vi lige. Du fik ikke hele loggen med, men jeg kan se, du har Windows 2000, så loggen skal renses som følger. Du har ikke systemgendannelse, så det behøver vi ikke at deaktivere først. Kør bare en ny scanning med HJT og sæt flueben ved disse: O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINNTSystem32NvCpl.dll,NvStartup O4 - HKLM..Run: [WinampAgent] "C:ProgrammerWinampWinampa.exe" O4 - HKLM..Run: [CTHelper] CTHELPER.EXE O4 - HKLM..Run: [UpdReg] C:WINNTUpdReg.EXE O4 - HKLM..Run: [NeroFilterCheck] C:WINNTsystem32NeroCheck.exe O4 - HKLM..Run: [TkBellExe] "C:ProgrammerFælles filerRealUpdate_OB ealsched.exe" -osboot O4 - HKLM..Run: [sais] c:programmer180solutionssais.exe O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:ProgrammerInterVideoCommonBinWinCinemaMgr.exe O4 - Global Startup: InterVideo WinScheduler.lnk = C:ProgrammerInterVideoWinDVD4PRWinScheduler.exe O4 - Global Startup: Microsoft Office.lnk = C:ProgrammerMicrosoft OfficeOffice10OSA.EXE O16 - DPF: {771A1334-6B08-4A6B-AEDC-CF994BA2CEBE} (Installer Class) - http://www.ysbweb.com[...] O16 - DPF: {79849612-A98F-45B8-95E9-4D13C7B6B35C} - http://static.topconverting.com[...] Luk alle øvrige programvinduer så kun HJT er åben. Klik på ”Fix checked”. Luk programmet og genstart i fejlsikret tilstand. (Tryk F8 gentagne gange ved opstart) Søg og slet nedenstående filer/mapper, hvis de stadig er der. Husk at ændre mappeindstillinger så du kan se skjulte filer samt systemfiler. (Åbn en mappe, klik på Funktioner=>Mappeindstillinger=>Vis. Fjern flueben ved "Skjul beskyttede operativsystemfiler". Fjern flueben ved "Skjul filtypenavne for kendte filtyper". Sæt prik i "Vis skjulte filer og mapper".) c:\programmer\180solutions\ <<<< Slet mappen Ændr derefter mappeindstillinger tilbage til ikke at vise skjule filer og skjulte systemfiler. Genstart normalt. Kør en ny scanning med HJT v1.99.0 ( http://www.mdegn.dk[...] ) og smid HELE loggen herind til kontrol. //*Cookie
--
Make somebody else's day - commit an act of kindness ... TODAY :o)!

Logfile of HijackThis v1.99.0 Scan saved at 19:18:42, on 02-01-2005 Platform: Windows 2000 SP4 (WinNT 5.00.2195) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:WINNTSystem32smss.exe C:WINNTsystem32winlogon.exe C:WINNTsystem32services.exe C:WINNTsystem32lsass.exe C:WINNTsystem32svchost.exe C:WINNTsystem32spoolsv.exe C:ProgrammerNetropaMultimedia Keyboard hksrv.exe C:PROGRA~1GrisoftAVG6avgserv.exe C:WINNTsystem32CTsvcCDA.exe C:WINNTSystem32svchost.exe C:ProgrammerNorton AntiVirus avapsvc.exe C:ProgrammerNorton Personal FirewallNISUM.EXE C:WINNTSystem32 vsvc32.exe C:WINNTsystem32 egsvc.exe C:WINNTsystem32MSTask.exe C:WINNTsystem32stisvc.exe C:ProgrammerNorton Personal FirewallSymProxySvc.exe C:WINNTSystem32WBEMWinMgmt.exe C:WINNTsystem32MsPMSPSv.exe C:WINNTsystem32svchost.exe C:ProgrammerNorton Personal FirewallNISSERV.EXE C:WINNTExplorer.EXE C:PROGRA~1GrisoftAVG6avgcc32.exe C:PROGRA~1NORTON~1 avapw32.exe C:ProgrammerNorton Personal FirewallIAMAPP.EXE C:ProgrammerCreativeSBAudigy2Surround MixerCTSysVol.exe C:ProgrammerCreativeSBAudigy2DVDAudioCTDVDDet.EXE C:ProgrammerMicrosoft HardwareMousepoint32.exe C:ProgrammerNetropaMultimedia KeyboardMMKeybd.exe E:WarezAppz - cracksRefreshLock.exe C:ProgrammerNetropaMultimedia KeyboardTrayMon.exe C:ProgrammerNetropaOnscreen DisplayOSD.exe C:WINNTsystem32internat.exe C:ProgrammerCreativeMediaSourceRemoteControlRcMan.exe C:ProgrammerMSN MessengerMsnMsgr.Exe C:ProgrammerSteamSteam.exe C:ProgrammerTEXTwareHotKeyTwalink.exe C:ProgrammerInternet Exploreriexplore.exe C:Documents and SettingsAdministratorSkrivebordMod spywareHijackThis.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Hyperlinks O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgrammerAdobeAcrobat 6.0ReaderActiveXAcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgrammerNorton AntiVirusNavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgrammerNorton AntiVirusNavShExt.dll O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:WINNTsystem32msdxm.ocx O4 - HKLM..Run: [Synchronization Manager] mobsync.exe /logon O4 - HKLM..Run: [nwiz] nwiz.exe /install O4 - HKLM..Run: [AVG_CC] C:PROGRA~1GrisoftAVG6avgcc32.exe /STARTUP O4 - HKLM..Run: [NAV Agent] C:PROGRA~1NORTON~1 avapw32.exe O4 - HKLM..Run: [iamapp] C:ProgrammerNorton Personal FirewallIAMAPP.EXE O4 - HKLM..Run: [CTSysVol] C:ProgrammerCreativeSBAudigy2Surround MixerCTSysVol.exe O4 - HKLM..Run: [CTDVDDet] C:ProgrammerCreativeSBAudigy2DVDAudioCTDVDDet.EXE O4 - HKLM..Run: [AsioReg] REGSVR32.EXE /S CTASIO.DLL O4 - HKLM..Run: [SBDrvDet] C:ProgrammerCreativeSB Drive DetSBDrvDet.exe /r O4 - HKLM..Run: [POINTER] point32.exe O4 - HKLM..Run: [MULTIMEDIA KEYBOARD] C:ProgrammerNetropaMultimedia KeyboardMMKeybd.exe O4 - HKLM..Run: [RefreshLock] E:WarezAppz - cracksRefreshLock.exe O4 - HKLM..Run: [Symantec NetDriver Monitor] C:PROGRA~1SYMNET~1SNDMon.exe O4 - HKLM..Run: [SSC_UserPrompt] C:ProgrammerFælles filerSymantec SharedSecurity CenterUsrPrmpt.exe O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINNTsystem32NvCpl.dll,NvStartup O4 - HKCU..Run: [internat.exe] internat.exe O4 - HKCU..Run: [RemoteCenter] C:ProgrammerCreativeMediaSourceRemoteControlRcMan.exe O4 - HKCU..Run: [MsnMsgr] "C:ProgrammerMSN MessengerMsnMsgr.Exe" /background O4 - HKCU..Run: [Steam] C:ProgrammerSteamSteam.exe -silent O4 - HKCU..Run: [Skype] "C:ProgrammerSkypePhoneSkype.exe" /nosplash /minimized O4 - Global Startup: HotKey.lnk = C:ProgrammerTEXTwareHotKeyTwalink.exe O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:PROGRA~1MICROS~3Office10EXCEL.EXE/3000 O12 - Plugin for .spop: C:ProgrammerInternet ExplorerPluginsNPDocBox.dll O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com[...] O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com[...] O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net[...] O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com[...] O16 - DPF: {D3426292-3750-4D80-9D0F-2816F61A6D15} (SpeedTest Control) - http://81.19.245.211[...] O23 - Service: AVG6 Service - GRISOFT s.r.o - C:PROGRA~1GrisoftAVG6avgserv.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:WINNTsystem32CTsvcCDA.exe O23 - Service: Logical Disk Manager Administrative Service - VERITAS Software Corp. - C:WINNTSystem32dmadmin.exe O23 - Service: Norton AntiVirus Auto Protect Service - Symantec Corporation - C:ProgrammerNorton AntiVirus avapsvc.exe O23 - Service: Netropa NHK Server - Unknown - C:ProgrammerNetropaMultimedia Keyboard hksrv.exe O23 - Service: Norton Personal Firewall Service - Symantec Corporation - C:ProgrammerNorton Personal FirewallNISSERV.EXE O23 - Service: Norton Personal Firewall Accounts Manager - Symantec Corporation - C:ProgrammerNorton Personal FirewallNISUM.EXE O23 - Service: NVIDIA Display Driver Service - NVIDIA Corporation - C:WINNTSystem32 vsvc32.exe O23 - Service: ScriptBlocking Service - Symantec Corporation - C:PROGRA~1FLLESF~1SYMANT~1SCRIPT~1SBServ.exe O23 - Service: Symantec Network Drivers Service - Symantec Corporation - C:ProgrammerFælles filerSymantec SharedSNDSrvc.exe O23 - Service: Norton Personal Firewall Proxy Service - Symantec Corporation - C:ProgrammerNorton Personal FirewallSymProxySvc.exe O23 - Service: SymWMI Service - Symantec Corporation - C:ProgrammerFælles filerSymantec SharedSecurity CenterSymWSC.exe
--

#3 Flot kæmpet. Jeg kan hermed erklære din log ren :o)! ----- Du får lige nogle af mine yndlingsprogrammer til yderligere beskyttelse af din PC, selv om du sikkert kender dem i forvejen. De er alle freeware, tager det værste snavs og bør køres jævnligt. Husk at opdatere online inden brug. Ad-aware http://www.lavasoft.de[...] SpyBot S&D http://www.safer-networking.org[...] Har du i forvejen, men jeg foreslår, du vælger Immunisering samt TeaTimer, hvis ikke du allerede har gjort det. SpywareBlaster http://www.javacoolsoftware.com[...] Her skal du bruge Enable All Protection. Du får også lige en rigtig god freeware firewall (IMO bedre end Norton, som du har i forvejen, men smag og behag :o)) Sygate Personal Firewall http://download.com.com[...] //*Cookie
--
Make somebody else's day - commit an act of kindness ... TODAY :o)!

Jeg siger mange tak for hjælpen :), og der kommer nok en log om et par måneder eller noget :)
--