Check af Hijackthis log
Logfile of HijackThis v1.97.7Scan saved at 5:43:06 AM, on 6/15/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Fælles filer\Symantec Shared\ccSetMgr.exe
C:\Programmer\Norton Internet Security\NISUM.EXE
C:\Programmer\Fælles filer\Symantec Shared\ccEvtMgr.exe
C:\Programmer\Fælles filer\Symantec Shared\ccProxy.exe
C:\Programmer\Norton Internet Security\ccPxySvc.exe
C:\WINDOWS\System32\hffsrv.exe
C:\Programmer\Fælles filer\Microsoft Shared\VS7Debug\mdm.exe
C:\Programmer\Norton AntiVirus\navapsvc.exe
C:\Programmer\VeriSign\NAVI\naviagent.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Fælles filer\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Programmer\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\RUNDLL32.EXE
C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe
C:\Programmer\USB Flash Disk Utility\UFD Utility\UFDMon.exe
C:\Programmer\USB Flash Disk Utility\UFD Utility\USBTD.exe
C:\Programmer\Overnet\Overnet.exe
C:\Programmer\Java\j2re1.4.2_04\bin\jusched.exe
C:\WINDOWS\System32\rundll32.exe
C:\Programmer\MSN Messenger\MsnMsgr.Exe
C:\Programmer\Skype\Phone\Skype.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Programmer\Meaya\Popup Ad Filter\PopFilter.exe
C:\Programmer\BigFix\BigFix.exe
C:\Programmer\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Documents and Settings\Flemming\Menuen Start\Programmer\Start\Agent.exe
C:\Programmer\Internet Explorer\iexplore.exe
C:\Documents and Settings\Flemming\Skrivebord\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.verdensnavle.dk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = AMD und ATI Board
O1 - Hosts: www.verdensnavle.dk 80.196.101.23
O1 - Hosts: www.amadeus.net 195.27.162.44
O1 - Hosts: www.bentleycollection.com 194.145.147.137
O1 - Hosts: www.bullguard.com 193.15.14.214
O1 - Hosts: www.cdmediaworld.com 207.142.136.101
O1 - Hosts: cd-rw.org 64.246.30.109
O1 - Hosts: www.cdrinfo.com 204.157.6.180
O1 - Hosts: www.kopfbedeckung.de 195.20.225.3
O1 - Hosts: www.danmarkbynight.dk 195.184.98.23
O1 - Hosts: www.download.dk 212.130.48.52
O1 - Hosts: www.computergames.ro 62.231.114.188
O1 - Hosts: www.driverguide.com 209.68.46.122
O1 - Hosts: www.templatehunter.com 205.214.66.240
O1 - Hosts: www.freewebtemplates.com 64.246.15.24
O1 - Hosts: www.free-webhosts.com 12.129.224.162
O1 - Hosts: www.gamefaqs.com 206.16.1.134
O1 - Hosts: www.gamefaqs.com 206.16.1.134
O1 - Hosts: www.guistuff.com 216.92.255.112
O1 - Hosts: www.hp.com 192.6.234.10
O1 - Hosts: members.brabant.chello.nl 213.46.226.40
O1 - Hosts: www.jldf.dk 80.196.101.24
O1 - Hosts: www.jv.jobzonen.dk 80.80.12.102
O1 - Hosts: www.kandu.dk 195.184.113.135
O1 - Hosts: www.konkurrence-siden.dk 212.97.132.102
O1 - Hosts: www.megagames.com 66.118.166.60
O1 - Hosts: www.microsoft.com 213.161.82.35
O1 - Hosts: www.nordicos.org 147.29.115.199
O1 - Hosts: www.pcworld.com 65.220.224.30
O1 - Hosts: www.politiet.dk 147.29.40.19
O1 - Hosts: www.roxio.com 65.200.194.132
O1 - Hosts: www.svend-bent.dk 80.161.24.50
O1 - Hosts: www.solutions2all.dk 130.228.4.104
O1 - Hosts: tdckabeltv.dk 194.239.10.110
O1 - Hosts: tdconline.dk 194.192.82.30
O1 - Hosts: www.trafiksjov.dk 195.184.96.46
O1 - Hosts: www.imvamp.com 212.199.222.99
O1 - Hosts: www.mybanker.dk 194.192.15.53
O1 - Hosts: www.villainsupply.com 66.250.34.5
O1 - Hosts: www.zeroweb.org 64.246.15.24
O1 - Hosts: www.halflife.dk 81.7.129.235
O1 - Hosts: www.coolpool.dk 80.80.7.202
O1 - Hosts: www.dbfreak.frac.dk 213.113.10.213
O1 - Hosts: www.godjon.subnet.dk 212.242.41.189
O1 - Hosts: dbuc.dcginternet.co.uk 66.139.78.99
O1 - Hosts: www.dragonballvillage.com 216.58.227.227
O1 - Hosts: www.dbzgtlegacy.com 69.57.158.12
O1 - Hosts: www.densejeside.dk 212.242.40.82
O1 - Hosts: dragonball.llabnogard.dk 195.249.40.107
O1 - Hosts: www.fdf.dk 213.150.33.188
O1 - Hosts: www.verdensnavle.dk 80.196.101.23
O1 - Hosts: db-ownz.webbyen.dk 81.19.232.245
O1 - Hosts: dragonball-palace.webbyen.dk 81.19.232.245
O1 - Hosts: www.animezone.webbyen.dk 81.19.232.244
O1 - Hosts: www.dbz-world.webbyen.dk 81.19.232.243
O1 - Hosts: www.dragonball-goku.webbyen.dk 81.19.232.242
O1 - Hosts: www.dragonballgt.webbyen.dk 81.19.232.243
O1 - Hosts: www.dragonballmystery.webbyen.dk 81.19.232.244
O1 - Hosts: www.greatdragonball.webbyen.dk 81.19.232.244
O1 - Hosts: www.thedragonball.webbyen.dk 81.19.232.245
O1 - Hosts: www.kidsdomain.com 216.220.61.166
O1 - Hosts: megasygt.tk 195.20.32.86
O1 - Hosts: www.paperdoll.dk 194.239.143.134
O1 - Hosts: members.tripod.com 209.202.196.70
O1 - Hosts: www.paperdoll.dk 194.239.143.134
O1 - Hosts: www.fest.i.dk 195.249.40.76
O1 - Hosts: epsilon.esbkomm.dk 195.249.137.190
O1 - Hosts: www.ferieabc.dk 193.88.113.20
O1 - Hosts: bolig.jubii.dk 212.112.128.30
O1 - Hosts: www.karmdal.dk 194.255.126.32
O1 - Hosts: www.krummeklubben.dk 212.242.120.232
O1 - Hosts: www.hvidesande.dk 80.80.7.244
O1 - Hosts: www.maduniverset.dk 212.130.12.142
O1 - Hosts: www.sandormskiosken.dk 80.80.7.244
O1 - Hosts: www.sportsfiskeren.dk 212.130.96.226
O1 - Hosts: vind.tv2.dk 193.88.89.10
O1 - Hosts: www.boligsiden.dk 131.165.67.38
O1 - Hosts: www.edonkey2000.com 66.118.150.158
O1 - Hosts: www.file-finder.com 212.43.245.118
O1 - Hosts: www.filedonkey.com 213.232.80.115
O1 - Hosts: www.filenexus.com 62.212.91.51
O1 - Hosts: forumrules.n3.net 64.119.201.98
O1 - Hosts: www.thedonkeynetwork.com 62.2.175.52
O1 - Hosts: mldonkey.berlios.de 195.37.77.138
O1 - Hosts: www.sharereactor.com 212.249.10.247
O1 - Hosts: homepage.swissonline.net 62.2.95.18
O1 - Hosts: www.emule-portalen.com 195.129.104.107
O1 - Hosts: ed2k.2x4u.de 217.115.142.116
O1 - Hosts: tdn-serverlist.no-ip.org 62.2.175.52
O1 - Hosts: www.atlasf1.com 207.168.2.180
O1 - Hosts: home.arcor.de 151.189.4.124
O1 - Hosts: www.dtc-net.dk 80.62.39.85
O1 - Hosts: f1.racing-live.com 213.236.199.88
O1 - Hosts: www.f1.on.net 203.16.214.207
O1 - Hosts: www.f1racing.net 217.114.97.189
O1 - Hosts: f3000.flagworld.com 207.96.225.48
O1 - Hosts: www.starpics.ch 193.193.135.146
O1 - Hosts: www.formel-1.com 217.160.154.4
O1 - Hosts: www.formel-1.dk 195.249.40.31
O1 - Hosts: www.f-1.dk 212.242.40.147
O1 - Hosts: www.golden.frac.dk 213.113.10.213
O1 - Hosts: www.grandprixtours.dk 194.255.42.24
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {A9EEF0D7-5695-45BA-8943-ED3B95A50BD2} - C:\WINDOWS\System32\CheckUrl.dll
O2 - BHO: (no name) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O2 - BHO: (no name) - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Programmer\VeriSign\i-Nav\i-nav_4_1_4.dll
O2 - BHO: (no name) - {F195A1A9-4033-4E5B-B85C-848C3E31A83A} - C:\WINDOWS\system32\syslibie.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Programmer\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmer\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ccApp] "C:\Programmer\Fælles filer\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [UFD Monitor] C:\Programmer\USB Flash Disk Utility\UFD Utility\UFDMon.exe
O4 - HKLM\..\Run: [UFD Utility] C:\Programmer\USB Flash Disk Utility\UFD Utility\USBTD.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [Overnet] C:\Programmer\Overnet\Overnet.exe -t
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmer\Java\j2re1.4.2_04\bin\jusched.exe
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [CleanEasyImg] c:\apps\easydvd\cleanall.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmer\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Programmer\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Popup Ad Filter] C:\Programmer\Meaya\Popup Ad Filter\PopFilter.exe
O4 - HKCU\..\Run: [Window Washer] C:\Program Files\Webroot\Washer\wwDisp.exe /startup
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - HKCU\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\Symantec\LIVEUP~1\SNDMon.EXE
O4 - HKLM\..\RunOnce: [Index Washer] C:\Program Files\Webroot\Washer\WashIdx.exe "Flemming"
O4 - HKCU\..\RunOnce: [Index Washer] C:\Program Files\Webroot\Washer\WashIdx.exe "Flemming"
O4 - Startup: Agent.exe
O4 - Global Startup: BigFix.lnk = C:\Programmer\BigFix\BigFix.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Programmer\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmer\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra 'Tools' menuitem: Sun Java Console (HKLM)
O9 - Extra button: Real.com (HKLM)
O9 - Extra button: i-Nav Hjælp (HKLM)
O9 - Extra 'Tools' menuitem: i-Nav Hjælp (HKLM)
O9 - Extra 'Tools' menuitem: i-Nav Indstillinger (HKLM)
O9 - Extra button: Money Viewer (HKLM)
O9 - Extra button: TvGuide (HKLM)
O9 - Extra 'Tools' menuitem: TvGuide.dk (HKLM)
O15 - Trusted Zone: *.danskebank.dk
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://www.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://imgfarm.com/images/nocache/funwebproducts/SmileyCentralInitialSetup1.0.0.6.cab
O16 - DPF: {A590956F-AE99-4419-BB39-3C721276C625} (Util Class) - https://udstedelse.certifikat.tdc.dk/csp/authenticode/PrimeInkCSP-0504.exe