HiJackThis Logfile

Ik heb heel veel last van wisselende portals en van die dingen…

Kunnen jullie even naar mijn Logfile kijken en kijken wat er weg kan ?

Logfile of HijackThis v1.97.7

Scan saved at 15:17:19, on 9-4-2004

Platform: Windows XP SP1 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSSystem32Ati2evxx.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSSystem32svchost.exe

C:Program FilesCommon FilesSymantec SharedccSetMgr.exe

C:WINDOWSsystem32Ati2evxx.exe

C:WINDOWSExplorer.EXE

C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe

C:Program FilesCommon FilesRealUpdate_OBrealsched.exe

C:PROGRA~1LycosIEagentLoader.exe

C:Program FilesCommon FilesSymantec SharedccApp.exe

C:WINDOWSsystem32spoolsv.exe

C:Program FilesCommon FilesSymantec SharedccProxy.exe

C:Program FilesNorton Internet SecurityNorton AntiVirusnavapsvc.exe

C:WINDOWSSystem32devldr32.exe

C:Program FilesNorton Internet SecurityNorton AntiVirusSAVScan.exe

C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe

C:WINDOWSSystem32svchost.exe

C:Program FilesMessenger Plus! 2MsgPlus.exe

C:Program FilesMSN Messengermsnmsgr.exe

C:Program FilesMessengermsmsgs.exe

C:WINDOWSSystem32wisptis.exe

C:Program FilesLavasoftAd-aware 6Ad-aware.exe

C:Documents and SettingsDukeBureaubladHijackThis.exe

R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://hot-searches.com/index.php?v=6&aff=3185209

R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.evilgamerz.com/

R1 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *hot-searches.com*;*lender-search.com*

R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Koppelingen

R3 – Default URLSearchHook is missing

O1 – Hosts file is located at: C:WINDOWSnsdbhosts

O1 – Hosts: 81.211.105.69 lender-search.com

O1 – Hosts: 81.211.105.68 hot-searches.com

O2 – BHO: IE Agent – {00000000-0000-0000-0000-000000000221} – C:Program FilesLycosIEagentCSIE.DLL

O2 – BHO: Web assistant – {9ECB9560-04F9-4bbc-943D-298DDF1699E1} – C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll

O2 – BHO: NAV Helper – {BDF3E430-B101-42AD-A544-FADC6B084872} – C:Program FilesNorton Internet SecurityNorton AntiVirusNavShExt.dll

O3 – Toolbar: &Radio – {8E718888-423F-11D2-876E-00A0C9082467} – C:WINDOWSSystem32msdxm.ocx

O3 – Toolbar: Web assistant – {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} – C:Program FilesCommon FilesSymantec SharedAdBlockingNISShExt.dll

O3 – Toolbar: Norton AntiVirus – {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} – C:Program FilesNorton Internet SecurityNorton AntiVirusNavShExt.dll

O4 – HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k

O4 – HKLM..Run: [TkBellExe] “C:Program FilesCommon FilesRealUpdate_OBrealsched.exe” -osboot

O4 – HKLM..Run: [dYEo.exe] C:windowstempdYEo.exe

O4 – HKLM..Run: [ccApp] “C:Program FilesCommon FilesSymantec SharedccApp.exe”

O4 – HKLM..Run: [URLLSTCK.exe] C:Program FilesNorton Internet SecurityUrlLstCk.exe

O4 – HKLM..Run: [MessengerPlus2] “C:Program FilesMessenger Plus! 2MsgPlus.exe”

O4 – HKCU..Run: [MsnMsgr] “C:Program FilesMSN MessengerMsnMsgr.Exe” /background

O4 – HKCU..Run: [SigX] C:Program FilesSigXsigx.exe

O16 – DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) – http://fpdownload.macromedia.com/pub/shockwave/cabs/director/swdir.cab

O16 – DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} – http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralInitialSetup1.0.0.8.cab

O16 – DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) – http://games-dl.real.com/gameconsole/Bundler/CAB/RealArcadeRdxIE.cab

O16 – DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) – http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab