aovergaard> Jeg har samme problem, som de andre beskriver her. Jeg har downloadet diverse programmer og checket min maskine og håber nu på at være clean. Jeg har kørt "Hijack This" kunne du checke min log også?
Logfile of HijackThis v1.97.3
Scan saved at 07:55:38, on 05-11-2003
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
~WINDOWS\System32\smss.exe
~WINDOWS\system32\csrss.exe
~WINDOWS\system32\winlogon.exe
~WINDOWS\system32\services.exe
~WINDOWS\system32\lsass.exe
~WINDOWS\system32\svchost.exe
~WINDOWS\System32\svchost.exe
~WINDOWS\System32\svchost.exe
~WINDOWS\System32\svchost.exe
~WINDOWS\system32\spoolsv.exe
~WINDOWS\System32\alg.exe
~WINDOWS\System32\inetsrv\inetinfo.exe
~WINDOWS\System32\mgabg.exe
~Programmer\Norton AntiVirus\navapsvc.exe
~Programmer\Norton Personal Firewall\NISUM.EXE
~WINDOWS\System32\svchost.exe
~Programmer\Norton Personal Firewall\NISSERV.EXE
~Programmer\Norton Personal Firewall\SymProxySvc.exe
~WINDOWS\Explorer.EXE
~WINDOWS\System32\dslagent.exe
~PROGRA~1\NORTON~2\navapw32.exe
~Programmer\Norton Personal Firewall\IAMAPP.EXE
~Programmer\Fælles filer\Real\Update_OB\realsched.exe
~Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
~WINDOWS\System32\ctfmon.exe
~Programmer\Internet Explorer\iexplore.exe
~PROGRA~1\MICROS~2\Office10\OUTLOOK.EXE
~Programmer\WinRAR\WinRAR.exe
~DOCUME~1\gf\LOKALE~1\Temp\Rar$EX00.969\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://g.msn.dk/0SEDADK/SAOS01R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.dk/R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - ~Programmer\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {AE7CD045-E861-484f-8273-0445EE161910} - ~Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - ~Programmer\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - ~Programmer\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - ~WINDOWS\Downloaded Program Files\googlenav.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - ~Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - ~WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [SiSUSBRG] ~WINDOWS\sisUSBrg.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
O4 - HKLM\..\Run: [NAV Agent] ~PROGRA~1\NORTON~2\navapw32.exe
O4 - HKLM\..\Run: [iamapp] ~Programmer\Norton Personal Firewall\IAMAPP.EXE
O4 - HKLM\..\Run: [TkBellExe] "~Programmer\Fælles filer\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [THGuard] "~Programmer\TrojanHunter 3.7\THGuard.exe"
O4 - Startup: Tiscali connection.lnk = ?
O4 - Global Startup: Acrobat Assistant.lnk = ~Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O8 - Extra context menu item: &Google Search -
res://~WINDOWS\Downloaded Program Files\googlenav.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links -
res://~WINDOWS\Downloaded Program Files\googlenav.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page -
res://~WINDOWS\Downloaded Program Files\googlenav.dll/cmcache.html
O8 - Extra context menu item: E&ksporter til Microsoft Excel -
res://~PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000O8 - Extra context menu item: Si&milar Pages -
res://~WINDOWS\Downloaded Program Files\googlenav.dll/cmsimilar.html
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) -
http://download.macromedia.com/pub/shockwave/cabs/director/sw.cabO16 - DPF: {23B7A816-3647-49D2-9756-6F41CE8F9201} (ddm_download.ddm_control) -
http://bins.dynamicdesktopmedia.com/cab/ddm_control.CABO16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update Installation Engine) -
http://office.microsoft.com/officeupdate/content/opuc.cabO16 - DPF: {597C45C2-2D39-11D5-8D53-0050048383FE} (OPUCatalog Class) -
http://office.microsoft.com/productupdates/content/opuc.cabO16 - DPF: {6CB5E471-C305-11D3-99A8-000086395495} (Google Activate) -
http://toolbar.google.com/data/da/big/1.1.62-big/GoogleNav.cabO16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) -
http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37762.1576967593O16 - DPF: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} (Java Runtime Environment 1.4.1_02) -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{484C25FB-CA7E-4EE8-8CD4-114CD23B5A14}: NameServer = 212.54.64.170 212.54.64.171