Kontrol af HJT log

Afinstaller

* MessengerPlus3
* SweetIM

via
[Start][Indstilninger][Kontrolpanel][Tilføj/fjern programmer]

Genstart for at fuldføre afinstalationen...

---------------------------------------

Er der nogen grund til at du ikke har install M$ ServicePack2 + ~90 efterfølgende opdateringer ?

MessengerPlus3 og SweetIM er blevet fjernet.

Grunden til at SP2, samt opdateringer, ikke var installeret er, at det er en venindes computer, som fejlagtigt har troet der var tale om mistænkelige programmer...

Der har tidligere været problemer med bl.a. Trojan horse Generic9, men er ikke blevet fjernet korrekt, da AVG stadig kommer med fund ved kørsel.

... så skal du igang med http://www.eksperten.dk/artikler/1123 !!!

Nævnte SP2 _skal_ først på EFTER denne renselse.

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/09/2007 at 01:44 PM

Application Version : 3.9.1008

Core Rules Database Version : 3358
Trace Rules Database Version: 1357

Scan type      : Complete Scan
Total Scan Time : 01:46:12

Memory items scanned      : 162
Memory threats detected  : 0
Registry items scanned    : 5519
Registry threats detected : 0
File items scanned        : 83828
File threats detected    : 14

Adware.Tracking Cookie
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@atdmt[2].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@metacafe.122.2o7[1].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@tradedoubler[2].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@cgi-bin[1].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@advertising[1].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@doubleclick[2].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@rocku.adbureau[2].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@specificclick[1].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@41683706[1].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@server.lon.liveperson[1].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@adtech[1].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@zedo[2].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@msnportal.112.2o7[1].txt
    C:\Documents and Settings\Pernille Ohlsson\Cookies\pernille ohlsson@track.adform[2].txt

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:45:11, on 09-12-2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Safe mode

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Programmer\HJTrenamed.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.euro.dell.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Data\Download\skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Programmer\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmer\google\googletoolbar3.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmer\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmer\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\da\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmer\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\da\msntb.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmer\google\googletoolbar3.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [PCMService] "C:\Programmer\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Programmer\Fælles filer\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [WinampAgent] C:\Programmer\Winamp\winampa.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmer\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmer\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programmer\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETVÆRKSTJENESTE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETVÆRKSTJENESTE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Acrobat Assistant.lnk = C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Cisco Systems VPN Client.lnk = C:\Programmer\Cisco Systems\VPN Client\vpngui.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmer\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Service Manager.lnk = C:\Programmer\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O4 - Global Startup: Vinduet Status for Canon LBP3200.LNK = C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\CAP4LAK.EXE
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Data\Download\skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Programmer\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {90A29DA5-D020-4B18-8660-6689520C7CD7} (DmiReader Class) - http://support.euro.dell.com/global/apps/systemprofiler/PROFILER.CAB
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} (e-Safekey) - https://netbank.danskebank.dk/html/activex/e-Safekey/DB/e-Safekey.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FÆLLES~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Programmer\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\System32\CTsvcCDA.EXE (file missing)
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Programmer\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmer\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmer\Fælles filer\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Programmer\iPod\bin\iPodService.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Programmer\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Programmer\Intel\NCS\Sync\NetSvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

--
End of file - 7615 bytes

********************************* ROOTCHK-(5-12-07)-LOG, by ejvindh
09-12-2007 11:10:44,90

The rootkits that are detected by this tool were not found.

********************************* ROOTCHK-LOG-end


catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-09 11:10:45
Windows 5.1.2600 Service Pack 2
scanning hidden processes ...
IPC error: 2 Den angivne fil blev ikke fundet.

scanning hidden services & system hive ...
IPC error: 2 Den angivne fil blev ikke fundet.

scanning hidden registry entries ...

scanning hidden files ...
IPC error: 2 Den angivne fil blev ikke fundet.

hidden processes: 0
hidden services: 0
hidden files: 0

ComboFix 07-12-09.1 - Pernille Ohlsson 2007-12-09 11:23:56.1 - NTFSx86
Microsoft Windows XP Home Edition  5.1.2600.2.1252.1.1030.18.58 [GMT 1:00]
Running from: C:\Data\2007\sikkerhed\ComboFix.exe
* Created a new restore point
.

(((((((((((((((((((((((((  Files Created from 2007-11-09 to 2007-12-09  )))))))))))))))))))))))))))))))
.

2007-12-08 17:48 . 2007-12-08 19:11    1,374    --a------    C:\WINDOWS\imsins.BAK
2007-12-08 17:44 . 2004-08-27 01:53    221,184    --a------    C:\WINDOWS\SYSTEM32\wmpns.dll
2007-12-08 17:39 . 2007-12-08 17:39    <DIR>    d--------    C:\WINDOWS\provisioning
2007-12-08 17:39 . 2007-12-08 17:39    <DIR>    d--------    C:\WINDOWS\peernet
2007-12-08 17:36 . 2007-12-08 17:36    <DIR>    d--------    C:\WINDOWS\ServicePackFiles
2007-12-08 17:28 . 2007-12-08 17:28    <DIR>    d--------    C:\WINDOWS\EHome
2007-12-08 12:52 . 2007-12-08 12:57    <DIR>    d--------    C:\Programmer\SUPERAntiSpyware
2007-12-08 12:52 . 2007-12-08 12:52    <DIR>    d--------    C:\Documents and Settings\Pernille Ohlsson\Application Data\SUPERAntiSpyware.com
2007-12-08 12:52 . 2007-12-08 12:52    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2007-12-08 12:51 . 2007-12-08 12:51    <DIR>    d--------    C:\Programmer\Fælles filer\Wise Installation Wizard
2007-12-08 12:43 . 2007-12-08 12:43    <DIR>    d--------    C:\Programmer\CCleaner
2007-12-08 12:32 . 2007-07-06 18:39    401,720    --a------    C:\Programmer\HJTrenamed.exe
2007-12-06 21:30 . 2007-12-06 21:30    <DIR>    d--------    C:\Programmer\Lavasoft
2007-11-24 21:43 . 2007-11-24 21:48    <DIR>    d--------    C:\Documents and Settings\Pernille Ohlsson\Application Data\Winamp
2007-11-24 21:43 . 2007-03-08 00:51    129,784    ---------    C:\WINDOWS\SYSTEM32\pxafs.dll
2007-11-24 21:43 . 2007-03-08 00:51    9,464    ---------    C:\WINDOWS\SYSTEM32\DRIVERS\cdralw2k.sys
2007-11-24 21:43 . 2007-03-08 00:51    9,336    ---------    C:\WINDOWS\SYSTEM32\DRIVERS\cdr4_xp.sys
2007-11-24 21:41 . 2007-11-24 21:47    <DIR>    d--------    C:\Programmer\Winamp
2007-11-14 18:16 . 2007-11-14 18:16    <DIR>    d--h-----    C:\WINDOWS\PIF

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-12-09 08:06    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\AVG7
2007-12-08 19:36    ---------    d-----w    C:\Programmer\MSN Messenger
2007-12-08 11:51    ---------    d-----w    C:\Programmer\Macrogaming
2007-12-08 11:33    9,635    ----a-w    C:\Programmer\hijackthis.log
2007-12-07 22:11    ---------    d-----w    C:\Documents and Settings\Pernille Ohlsson\Application Data\AdobeUM
2007-12-06 20:33    ---------    d-----w    C:\Documents and Settings\Pernille Ohlsson\Application Data\Lavasoft
2007-11-12 20:44    ---------    d-----w    C:\Documents and Settings\Pernille Ohlsson\Application Data\AVG7
2005-01-04 16:29    28,496    ----a-w    C:\Documents and Settings\Pernille Ohlsson\Application Data\GDIPFONTCACHEV1.DAT
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-27 01:53]
"Sonic RecordNow!"="" []
"MSMSGS"="C:\Programmer\Messenger\msmsgs.exe" [2004-08-27 01:53]
"swg"="C:\Programmer\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-24 10:09]
"SUPERAntiSpyware"="C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-06-21 14:06]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="RUNDLL32.exe" [2004-08-27 01:53 C:\WINDOWS\SYSTEM32\rundll32.exe]
"dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [2003-08-06 02:04]
"PCMService"="C:\Programmer\Dell\Media Experience\PCMService.exe" [2003-08-26 20:47]
"DVDSentry"="C:\WINDOWS\System32\DSentry.exe" [2003-08-13 11:27]
"UpdateManager"="C:\Programmer\Fælles filer\Sonic\Update Manager\sgtray.exe" [2003-08-19 00:01]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2007-10-22 17:13]
"WinampAgent"="C:\Programmer\Winamp\winampa.exe" [2007-10-10 06:28]
"QuickTime Task"="C:\Programmer\QuickTime\qttask.exe" [2007-02-02 11:26]
"iTunesHelper"="C:\Programmer\iTunes\iTunesHelper.exe" [2006-10-30 09:36]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-27 01:53]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2007-10-22 17:13]

C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\
Acrobat Assistant.lnk - C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe [2003-05-15 00:19:50]
Cisco Systems VPN Client.lnk - C:\Programmer\Cisco Systems\VPN Client\vpngui.exe [2007-10-03 21:51:58]
Microsoft Office.lnk - C:\Programmer\Microsoft Office\Office10\OSA.EXE [2001-02-13 09:01:04]
Service Manager.lnk - C:\Programmer\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe [2002-12-17 17:23:32]
Vinduet Status for Canon LBP3200.LNK - C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\CAP4LAK.EXE [2004-10-09 17:54:20]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Programmer\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Programmer\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Programmer\SUPERAntiSpyware\SASWINLO.dll

R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys
R1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys
S3 MSSQL$CAMBRIDGESOFT;MSSQL$CAMBRIDGESOFT;C:\Programmer\Microsoft SQL Server\MSSQL$CAMBRIDGESOFT\Binn\sqlservr.exe -sCAMBRIDGESOFT
S3 SQLAgent$CAMBRIDGESOFT;SQLAgent$CAMBRIDGESOFT;C:\Programmer\Microsoft SQL Server\MSSQL$CAMBRIDGESOFT\Binn\sqlagent.EXE -i CAMBRIDGESOFT
S4 viaagp;VIA AGP-busfilter;C:\WINDOWS\system32\DRIVERS\viaagp.sys

*Newly Created Service* - CATCHME
*Newly Created Service* - PROCEXP90
.
Contents of the 'Scheduled Tasks' folder
"2007-02-02 10:56:01 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Programmer\Apple Software Update\SoftwareUpdate.exe
"2004-03-23 15:14:36 C:\WINDOWS\Tasks\Symantec NetDetect.job"
- C:\Programmer\Symantec\LiveUpdate\NDETECT.EXE
.
**************************************************************************

catchme 0.3.1331 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-09 11:28:52
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-12-09 11:30:18
.
    --- E O F ---

Så er det tid for MS ServicePack2 !!!

http://www.comon.dk/index.php/news/show/id=18812

Du kan hente ServicePack2 (SP2) her som 'løs' fil (~280Mb):
http://intern.sdu.dk/it-service/tjenester/ftphotel/ftpindhold/
Download/copy til et passende sted på din PC
Afbryd fra det 'farlige' internet (stikket fysisk UD).
Instaler SP2 pakken.
Når det er så gået godt og efter en genstart eller to - først DA tilslut internettet igen og gå i start ->programmer ->Windowsupdate og lade din maskine scanne for nyeste opdateringer. Installer dem du får anbefalet.
Der skal nok være mere end 90 'pakker' ...