Hijackthis Logfil
Nogen der ka fixe? :bLogfile of HijackThis v1.99.1
Scan saved at 16:20:56, on 21-07-2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WIN\System32\smss.exe
C:\WIN\system32\winlogon.exe
C:\WIN\system32\services.exe
C:\WIN\system32\lsass.exe
C:\WIN\system32\Ati2evxx.exe
C:\WIN\system32\svchost.exe
C:\WIN\System32\svchost.exe
C:\WIN\system32\spoolsv.exe
C:\Programmer\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Programmer\ewido anti-malware\ewidoctrl.exe
C:\WIN\system32\gearsec.exe
C:\Programmer\LogMeIn\RaMaint.exe
C:\Programmer\LogMeIn\LogMeIn.exe
C:\PROGRA~2\TRENDM~1\INTERN~1\PcCtlCom.exe
C:\WIN\system32\svchost.exe
C:\PROGRA~2\TRENDM~1\INTERN~1\Tmntsrv.exe
C:\PROGRA~2\TRENDM~1\INTERN~1\tmproxy.exe
C:\Programmer\VentSrv\ventrilo_svc.exe
C:\Programmer\VentSrv\ventrilo_srv.exe
C:\PROGRA~2\TRENDM~1\INTERN~1\TmPfw.exe
C:\WIN\system32\Ati2evxx.exe
C:\WIN\Explorer.EXE
C:\WIN\system32\WgaTray.exe
C:\WIN\system32\dcomcfg.exe
C:\WIN\system32\ishost.exe
C:\WIN\system32\issearch.exe
C:\Programmer\Java\jre1.5.0_04\bin\jusched.exe
C:\WIN\system32\ismon.exe
C:\PROGRA~2\Sony\SONICS~1\SsAAD.exe
C:\WIN\system32\rundll32.exe
C:\Programmer\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe
C:\Programmer\Fælles filer\Sony Shared\AVLib\SSScsiSV.exe
C:\Programmer\ipwins\ipwins.exe
C:\Programmer\iPod\bin\iPodService.exe
C:\Programmer\Fælles filer\{2466A54A-0AC4-1030-0408-04041106002d}\Update.exe
C:\Programmer\Messenger\msmsgs.exe
C:\Programmer\MSN Messenger\MsnMsgr.Exe
C:\Programmer\Arto\Notifier\ArtoNotifier.exe
C:\Programmer\Real\RealPlayer\RealPlay.exe
C:\PROGRA~2\COMMON~1\CROSOF~1\logonui.exe
C:\PROGRA~2\MOZILL~1\FIREFOX.EXE
C:\WIN\?icrosoft.NET\?ttrib.exe
C:\Programmer\iTunes\iTunes.exe
C:\Programmer\TClock\TClock.exe
C:\WIN\Explorer.EXE
C:\WIN\system32\rundll32.exe
C:\WIN\system32\wuauclt.exe
C:\Documents and Settings\Jesper Møgelvang\Desktop\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
F3 - REG:win.ini: run=luiy.exe, eger.exe, qotbfkcu.exe, fmuxxrtqÓÑ Ÿ8ü, dqpweyf.exe, inkcwgv.exe, lfpet.exe, xsrn.exe, gmgohds.exe, wcmyjjitmkp.exe, mkyqawo.exe, jcmaqjy.exe, ecxbvepcbw.exe, ysxmtpt.exe, byqhrdcukn.exe, ¶‰, uhbllng.exe, ymctm.exe, jfsdq.exe, gndkwdlgkjhxe.exe, ± , pfrwit.exe, kivu.exe, jfjsbsioov.exe, mrddi.exe, twtmsbgiwiroa.exe, vlwwvxeict.exe, rtcedqf.exe, qutceckicnbwd.exe, dmbqfxd
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmer\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~2\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Programmer\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [IpWins] C:\Programmer\ipwins\ipwins.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programmer\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmer\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [qservices] C:\WIN\qservice.exe
O4 - HKCU\..\Run: [ArtoNotifier] C:\Programmer\Arto\Notifier\ArtoNotifier.exe
O4 - HKCU\..\Run: [Ocrr] "C:\PROGRA~2\COMMON~1\CROSOF~1\logonui.exe" -vt yazr
O4 - HKCU\..\Run: [Lwdpt] C:\WIN\?icrosoft.NET\?ttrib.exe
O4 - Startup: Adobe Gamma.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Programmer\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmer\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WIN\system32\shdocvw.dll
O9 - Extra button: PopupPopper Kontrol Panel - {3E94F358-9537-4BBA-8D12-D7F8A0136973} - C:\Programmer\PopupPopper\SiteList.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programmer\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programmer\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.1.2.76.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1142855340078
O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} (YazzleActiveX Control) - http://yax-download.yazzle.net/YazzleActiveX.cab?refid=1123
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~2\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - {994D478A-45D0-4DB4-AE77-288B1E346E99} - C:\Programmer\FCAdvice\FCAdvice.dll
O21 - SSODL: cinnamomum - {93ac7c30-3878-4eaa-9420-7977285df5b1} - C:\WIN\system32\pmnqguh.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programmer\Fælles filer\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WIN\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WIN\system32\ati2sgag.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Programmer\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: ewido security suite control - ewido networks - C:\Programmer\ewido anti-malware\ewidoctrl.exe
O23 - Service: gearsec - GEAR Software - C:\WIN\system32\gearsec.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmer\Fælles filer\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Programmer\iPod\bin\iPodService.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Programmer\LogMeIn\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Programmer\LogMeIn\LogMeIn.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Programmer\Fælles filer\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Programmer\Fælles filer\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - C:\PROGRA~2\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Programmer\Fælles filer\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Programmer\Fælles filer\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~2\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~2\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~2\TRENDM~1\INTERN~1\tmproxy.exe
O23 - Service: Ventrilo - Unknown owner - C:\Programmer\VentSrv\ventrilo_svc.exe
