Avatar billede rudnicki Nybegynder
13. april 2008 - 11:47 Der er 4 kommentarer

hijackthis logfile

please!!!!! er der nogen der kan kigge på den her log og hjælpe med hvordan man reder den her pc


please please please

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:43:31, on 13-04-2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmer\Fælles filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Programmer\IVT Corporation\BlueSoleil\BTNtService.exe
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Programmer\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Programmer\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\WINDOWS\system32\FreezeScreenSaver.exe
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmer\Zumie\zumie.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Programmer\Internet Explorer\IEXPLORE.EXE
C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Programmer\Hotbar\bin\10.2.191.0\Srv.exe
C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Programmer\Giganology\Gigaget\Gigaget.exe
C:\Documents and Settings\Tobias\Skrivebord\hijackthis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my2.freeze.com/?AcquisitionID=3977943f-42ed-459b-8ed1-19ea982b9700&s=&ipc=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = file://C:\APPS\IE\offline\dan.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmer\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmer\google\googletoolbar2.dll
O3 - Toolbar: Hotbar - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - C:\Programmer\Hotbar\bin\10.2.191.0\HostIE.dll
O3 - Toolbar: Home Extension - {F090BE08-2E7E-4D60-8FAB-98ABFA425136} - C:\PROGRA~1\AUKTIO~1\HOMEEX~1.DLL
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Genvej til egenskabsside for High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Programmer\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmer\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Programmer\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Game Service] C:\PROGRA~1\ubi.com\Core\GS4.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Programmer\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [RegistrySmart] C:\Programmer\RegistrySmart\RegistrySmart.exe
O4 - HKLM\..\Run: [HotbarOE] C:\Programmer\Hotbar\bin\10.2.191.0\OEAddOn.exe
O4 - HKLM\..\Run: [HotbarSA] "C:\Programmer\Hotbar\bin\10.2.191.0\HotbarSA.exe"
O4 - HKLM\..\Run: [Gigaget] "C:\Programmer\Giganology\Gigaget\GigagetShell.exe" /s
O4 - HKLM\..\Run: [DriveCleaner Free] "C:\Programmer\DriveCleaner Free\UDC.exe" /min
O4 - HKLM\..\Run: [WA6PK_Check] "C:\Programmer\Fælles filer\DriveCleaner Free\udcwap.exe"
O4 - HKLM\..\Run: [System Doctor Free] C:\Programmer\System Doctor Free\systemdoc.exe -scan
O4 - HKLM\..\Run: [Salestart] "C:\Programmer\Fælles filer\System Doctor\dcmon.exe"
O4 - HKLM\..\Run: [SystemDoctor Free] C:\Programmer\System Doctor Free\systemdoc.exe /min
O4 - HKLM\..\Run: [fcfaa2c9] rundll32.exe "C:\WINDOWS\system32\teifmynq.dll",b
O4 - HKLM\..\Run: [WinAntiVirus Pro 2007] C:\Programmer\WinAntiVirus Pro 2007\WinAV.exe
O4 - HKLM\..\Run: [uwa7pcw] "C:\Programmer\Fælles filer\WinAntiVirus Pro 2007\uwa7pcw.exe" -c
O4 - HKLM\..\Run: [BMffc99155] Rundll32.exe "C:\WINDOWS\system32\bjvrmtnj.dll",s
O4 - HKCU\..\Run: [updateMgr] C:\Programmer\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [swg] C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmer\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [WeatherDPA] "C:\Programmer\Hotbar\bin\10.2.191.0\Weather.exe" -auto
O4 - HKCU\..\Run: [AROReminder] C:\Programmer\Advanced Registry Optimizer\aro.exe -rem
O4 - HKCU\..\Run: [AdVantage] "C:\Programmer\AdVantage\AdVantage.exe"
O4 - HKCU\..\Run: [Disk Cleaner] "C:\Programmer\Disk Cleaner\DiskCleaner.Exe" /boot
O4 - HKCU\..\Run: [uwa7pcw] "C:\Programmer\Fælles filer\WinAntiVirus Pro 2007\uwa7pcw.exe" -c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETVÆRKSTJENESTE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Hurtigstart.lnk = C:\Programmer\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Programmer\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: WG111v2 Smart Wizard Wireless Setting.lnk = ?
O8 - Extra context menu item: &Download All by Gigaget - C:\Programmer\Giganology\Gigaget\getallurl.htm
O8 - Extra context menu item: &Download by Gigaget - C:\Programmer\Giganology\Gigaget\geturl.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Programmer\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: amazon Suche - C:\Programmer\Auktionsfreund\Searchamazon.htm
O8 - Extra context menu item: amazon Suche starten - C:\Programmer\Auktionsfreund\Searchamazon.htm
O8 - Extra context menu item: Download All by FlashGet - C:\PROGRA~1\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\PROGRA~1\FlashGet\jc_link.htm
O8 - Extra context menu item: eBay - Mein eBay - C:\Programmer\Auktionsfreund\SearchEbaymein.htm
O8 - Extra context menu item: eBay - Powersuche - C:\Programmer\Auktionsfreund\SearchEbaypower.htm
O8 - Extra context menu item: eBay - Startseite - C:\Programmer\Auktionsfreund\SearchEbay.htm
O8 - Extra context menu item: eBay Suche starten - C:\Programmer\Auktionsfreund\SearchEbay.htm
O8 - Extra context menu item: Google Suche - C:\Programmer\Auktionsfreund\SearchGoogle.htm
O8 - Extra context menu item: Google Suche starten - C:\Programmer\Auktionsfreund\SearchGoogle.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Blog det - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmer\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog det i Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmer\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PacificPoker - {94EDF7B4-4272-4af3-8F8B-4E2F68E225B7} - C:\PROGRA~1\PACIFI~1\pacificpoker.exe (file missing)
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Programmer\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Programmer\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\dan.htm
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programmer\Fælles filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Programmer\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Programmer\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FreezeScreenSaver - Unknown owner - C:\WINDOWS\system32\FreezeScreenSaver.exe
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmer\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programmer\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Zumie Search Service - Zumie.com - C:\Programmer\Zumie\zumie.exe
O24 - Desktop Component 0: (no name) - http://medias.forum-auto.com/uploads/200410/olio_1096973852_liopleurodon__1024_x_768_.jpg
O24 - Desktop Component 1: (no name) - http://members.home.nl/fredmens/nephews.gif
O24 - Desktop Component 2: (no name) - http://www.dr.dk/yallahrup/img/wallpaper/ali_og_hassan_med_logo_1920.jpg
O24 - Desktop Component 3: (no name) - http://c.wrzuta.pl/wm8079/975cfe770006723b468659a3/2Pac%20tapeta20?type=i&key=2Agg3k1bjJ&ft=d
O24 - Desktop Component 5: (no name) - http://www.gratis-ting.dk/ny/spil/vis_klik.php?id=2213

--
End of file - 12182 bytes
13. april 2008 - 12:58 #1
Tja - *SUK* - der er jo en del - jeg ser på den...
Avatar billede rudnicki Nybegynder
13. april 2008 - 13:09 #2
det er min elevs computer, jeg er ellers macmand, og har ikke det store begreb om pc, men jeg sætter stor pris på den hjælp du nu engang kan give... god søndag!!!
13. april 2008 - 13:13 #3
Afinstaller (hvis det er der?)

* Winantiviruspro2006
* Weather
* System Doctor Free
* ShopperReports
* Disk Cleaner
* AdVantage
* Gigaget
* Hotbar
* Game Service
* DriveCleaner Free
* Advanced Registry Optimizer
* Auktionsfreund
* Zumie

via
[Start][Indstilninger][Kontrolpanel][Tilføj/fjern programmer]

Genstart for at fuldføre afinstalationen...

---------------------------------------

-- Hent Avenger her:
http://swandog46.geekstogo.com/avenger.zip

-- Pak Avenger-programmet ud og dobbeltklik på avenger.exe

-- Der dukker et vindue op, hvor du skal kopiere indholdet mellem ~~~ skrift ind:

~~~~~~~~~~~~~~~~~~
Files to delete:
C:\WINDOWS\system32\teifmynq.dll
C:\WINDOWS\system32\bjvrmtnj.dll
C:\WINDOWS\system32\FreezeScreenSaver.exe

Folders to delete:
C:\Programmer\Hotbar\
C:\PROGRA~1\AUKTIO~1\
C:\APPS\EmailChecker\
C:\PROGRA~1\ubi.com\
C:\Programmer\RegistrySmart\
C:\Programmer\Giganology\
C:\Programmer\DriveCleaner Free\
C:\Programmer\System Doctor Free\
C:\Programmer\WinAntiVirus Pro 2007\
C:\Programmer\Advanced Registry Optimizer\
C:\Programmer\AdVantage\
C:\Programmer\Disk Cleaner\
C:\Programmer\Giganology\
C:\Programmer\Auktionsfreund\
C:\PROGRA~1\FlashGet\
C:\PROGRA~1\PACIFI~1\
C:\Programmer\ShoppingReport\
C:\Programmer\Zumie\
~~~~~~~~~~~~~~~~~~

--- Klik på EXECUTE - og la' PC'en selv genstarte.

-- Efter genstarten vil der dukke et notepad-vindue op, med en log for Avengers handlinger. Den må du gerne lægge ind i dit næste svar.

-- Kør Hijackthis, vælg "Do a system scan only", sæt flueben ved linierne listet her, luk alle vinduer undtaget Hijackthis, klik på fix checked.

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my2.freeze.com/?AcquisitionID=3977943f-42ed-459b-8ed1-19ea982b9700&s=&ipc=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = file://C:\APPS\IE\offline\dan.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
O3 - Toolbar: Hotbar - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - C:\Programmer\Hotbar\bin\10.2.191.0\HostIE.dll
O3 - Toolbar: Home Extension - {F090BE08-2E7E-4D60-8FAB-98ABFA425136} - C:\PROGRA~1\AUKTIO~1\HOMEEX~1.DLL
O4 - HKLM\..\Run: [EmailChecker] C:\APPS\EmailChecker\ech.exe
O4 - HKLM\..\Run: [Game Service] C:\PROGRA~1\ubi.com\Core\GS4.exe
O4 - HKLM\..\Run: [RegistrySmart] C:\Programmer\RegistrySmart\RegistrySmart.exe
O4 - HKLM\..\Run: [HotbarOE] C:\Programmer\Hotbar\bin\10.2.191.0\OEAddOn.exe
O4 - HKLM\..\Run: [HotbarSA] "C:\Programmer\Hotbar\bin\10.2.191.0\HotbarSA.exe"
O4 - HKLM\..\Run: [Gigaget] "C:\Programmer\Giganology\Gigaget\GigagetShell.exe" /s
O4 - HKLM\..\Run: [DriveCleaner Free] "C:\Programmer\DriveCleaner Free\UDC.exe" /min
O4 - HKLM\..\Run: [WA6PK_Check] "C:\Programmer\Fælles filer\DriveCleaner Free\udcwap.exe"
O4 - HKLM\..\Run: [System Doctor Free] C:\Programmer\System Doctor Free\systemdoc.exe -scan
O4 - HKLM\..\Run: [Salestart] "C:\Programmer\Fælles filer\System Doctor\dcmon.exe"
O4 - HKLM\..\Run: [SystemDoctor Free] C:\Programmer\System Doctor Free\systemdoc.exe /min
O4 - HKLM\..\Run: [fcfaa2c9] rundll32.exe "C:\WINDOWS\system32\teifmynq.dll",b
O4 - HKLM\..\Run: [WinAntiVirus Pro 2007] C:\Programmer\WinAntiVirus Pro 2007\WinAV.exe
O4 - HKLM\..\Run: [uwa7pcw] "C:\Programmer\Fælles filer\WinAntiVirus Pro 2007\uwa7pcw.exe" -c
O4 - HKLM\..\Run: [BMffc99155] Rundll32.exe "C:\WINDOWS\system32\bjvrmtnj.dll",s
O4 - HKCU\..\Run: [WeatherDPA] "C:\Programmer\Hotbar\bin\10.2.191.0\Weather.exe" -auto
O4 - HKCU\..\Run: [AROReminder] C:\Programmer\Advanced Registry Optimizer\aro.exe -rem
O4 - HKCU\..\Run: [AdVantage] "C:\Programmer\AdVantage\AdVantage.exe"
O4 - HKCU\..\Run: [Disk Cleaner] "C:\Programmer\Disk Cleaner\DiskCleaner.Exe" /boot
O4 - HKCU\..\Run: [uwa7pcw] "C:\Programmer\Fælles filer\WinAntiVirus Pro 2007\uwa7pcw.exe" -c
O8 - Extra context menu item: &Download All by Gigaget - C:\Programmer\Giganology\Gigaget\getallurl.htm
O8 - Extra context menu item: &Download by Gigaget - C:\Programmer\Giganology\Gigaget\geturl.htm
O8 - Extra context menu item: amazon Suche - C:\Programmer\Auktionsfreund\Searchamazon.htm
O8 - Extra context menu item: amazon Suche starten - C:\Programmer\Auktionsfreund\Searchamazon.htm
O8 - Extra context menu item: Download All by FlashGet - C:\PROGRA~1\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\PROGRA~1\FlashGet\jc_link.htm
O8 - Extra context menu item: eBay - Mein eBay - C:\Programmer\Auktionsfreund\SearchEbaymein.htm
O8 - Extra context menu item: eBay - Powersuche - C:\Programmer\Auktionsfreund\SearchEbaypower.htm
O8 - Extra context menu item: eBay - Startseite - C:\Programmer\Auktionsfreund\SearchEbay.htm
O8 - Extra context menu item: eBay Suche starten - C:\Programmer\Auktionsfreund\SearchEbay.htm
O8 - Extra context menu item: Google Suche - C:\Programmer\Auktionsfreund\SearchGoogle.htm
O8 - Extra context menu item: Google Suche starten - C:\Programmer\Auktionsfreund\SearchGoogle.htm
O9 - Extra button: PacificPoker - {94EDF7B4-4272-4af3-8F8B-4E2F68E225B7} - C:\PROGRA~1\PACIFI~1\pacificpoker.exe (file missing)
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Programmer\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Programmer\ShoppingReport\Bin\2.0.24\ShoppingReport.dll
O23 - Service: FreezeScreenSaver - Unknown owner - C:\WINDOWS\system32\FreezeScreenSaver.exe
O23 - Service: Zumie Search Service - Zumie.com - C:\Programmer\Zumie\zumie.exe
O24 - Desktop Component 0: (no name) - http://medias.forum-auto.com/uploads/200410/olio_1096973852_liopleurodon__1024_x_768_.jpg
O24 - Desktop Component 1: (no name) - http://members.home.nl/fredmens/nephews.gif
O24 - Desktop Component 2: (no name) - http://www.dr.dk/yallahrup/img/wallpaper/ali_og_hassan_med_logo_1920.jpg
O24 - Desktop Component 3: (no name) - http://c.wrzuta.pl/wm8079/975cfe770006723b468659a3/2Pac%20tapeta20?type=i&key=2Agg3k1bjJ&ft=d
O24 - Desktop Component 5: (no name) - http://www.gratis-ting.dk/ny/spil/vis_klik.php?id=2213

Genstart computeren, og lav en ny log med Hijackthis, som du lægger herind sammen med loggen fra Avenger.

---------------------------------------

Registreringsdatabase oprydning kan anbefales ->
RegCleaner http://www.ccleaner.com/ + http://www.spywarefri.dk/manualer/ccleaner-manual.htm (Specielt punktet [Register]...)
Under installationen får du tilbudt [Yahoo Toolbar]. Du kan sige ja eller nej til den.
Avatar billede rudnicki Nybegynder
13. april 2008 - 14:24 #4
jeg er i fuld gang, det er jo en større omgang, og jeg sætter pris på hjælpen:-)
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview
Kategori
IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Du kan også logge ind via nedenstående tjenester