Virus jeg ikke kan slette?

Hent "Malwarebytes' Anti-Malware" her

Eller her

Installer og start programmet, klik på fanen opdater, klik Tjek for opdatering, lav "Hurtig skan" under fanebladet "skanner"
Bagefter klik på "vis resultater", tryk på "Fjern det valgte" og send loggen herind sammen med en log fra DDS som du finder her

eller her

Den laver to logs,(DDS.txt og Attach.txt) gem dem på skrivebordet og kopier indholdet af DDS.txt  herind.

OBS - DDS skal gemmes på computeren og ikke køres fra nettet.

Mht.: Vista og Windows 7 - højreklik på filen - Kør som Administrator.

NB Når du opdaterer Malwarebytes, så klik på Tjek for opdatering til den skriver at der ikke er flere opdateringer.

Bare et spørgsmål-


Har I nogensinde oplevet at det var nødvendigt at opdaters' Malwares Anti-Malware mere end en gang, før der ikke var flere opdateringer.?
Jeg henter programmet jævnligt, men har aldrig oplevet det.

@samsonjens

Jeg oplever jævnligt at folk har programmet liggende, når de så opdaterer, får de opdateret programmet, men ikke databasen.

Derfor denne formulering.

Vis du ved hvad, virusen hedder kan du hente et lille
program til at fjerne den med her:

http://free.avg.com/us-en/virus-removal

Du skal måske køre programmet i fejlsikret tilstand.Tryk F8
under opstart.

Prøv at installerer AVG free den vil fortælle vilken virus du har fået.

Her: http://free.avg.com/us-en/download-free-antivirus

Jamen det jeg ikke helt forstår at jeg har virus program som lod det slippe igenmen som hedder ESET, Og Malware.
lige nu har jeg ikke virus Malware slettede virusen med ikke filen!
Filen ligger stadig i min mappe jeg kan hverken Slette den flytte den eller omdøbe den, der skal jeg have admin tilladelse

Prøv at gøre som jeg skrev her

Jeg prøver så, men hvordan skal jeg lige sende DDS'en med?

Skanning:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5824

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

23-02-2011 14:53:28
mbam-log-2011-02-23 (14-53-28).txt

Skanningstype: Hurtig skanning
Objekter skannet: 160073
Tid gået: 3 minut(ter), 20 sekund(er)

Hukommelses Processorer Inficeret: 0
Hukommelses Moduler Inficeret: 0
Registreringsdatabasenøgler Inficeret: 0
Registreringsdatabaseværdier Inficeret: 0
Registreringsdatabasedata Objekter Inficeret: 0
Inficerede Mapper: 0
Inficerede Filer: 0

Hukommelses Processorer Inficeret:
(Ingen skadelige objekter blev fundet)

Hukommelses Moduler Inficeret:
(Ingen skadelige objekter blev fundet)

Registreringsdatabasenøgler Inficeret:
(Ingen skadelige objekter blev fundet)

Registreringsdatabaseværdier Inficeret:
(Ingen skadelige objekter blev fundet)

Registreringsdatabasedata Objekter Inficeret:
(Ingen skadelige objekter blev fundet)

Inficerede Mapper:
(Ingen skadelige objekter blev fundet)

Inficerede Filer:
(Ingen skadelige objekter blev fundet)

DDS:



DDS (Ver_10-12-12.01) - NTFSx86 
Run by Husum at 15:00:56,44 on 23-02-2011
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Home Premium  6.1.7600.0.1252.45.1030.18.3253.1404 [GMT 1:00]

SP: SUPERAntiSpyware *Disabled/Updated* {222A897C-5018-402e-943F-7E7AC8560DA7}
AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
C:\Program Files\Tunngle\TnglCtrl.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSD.exe
C:\Program Files\Launch Manager\WButton.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\BitTorrent\BitTorrent.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Launch Manager\WisLMSvc.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Common Files\Steam\SteamService.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\SearchProtocolHost.exe
c:\program files\steam\steamapps\husumg94\counter-strike source\hl2.exe
C:\Program Files\Steam\GameOverlayUI.exe
C:\Users\Husum\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Husum\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Husum\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Husum\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Husum\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Husum\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Husum\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Husum\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Husum\Desktop\dds.pif
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://medion.msn.com
uDefault_Page_URL = hxxp://medion.msn.com
uURLSearchHooks: BitTorrentBar Toolbar: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - c:\program files\bittorrentbar\tbBitT.dll
mURLSearchHooks: BitTorrentBar Toolbar: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - c:\program files\bittorrentbar\tbBitT.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: BitTorrentBar Toolbar: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - c:\program files\bittorrentbar\tbBitT.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files\windows live\companion\companioncore.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn toolbar\platform\6.3.2322.0\npwinext.dll
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: @c:\program files\msn toolbar\platform\6.3.2322.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\program files\msn toolbar\platform\6.3.2322.0\npwinext.dll
TB: BitTorrentBar Toolbar: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - c:\program files\bittorrentbar\tbBitT.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [Google Update] "c:\users\husum\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [Steam] "c:\program files\steam\steam.exe" -silent
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [hijack] c:\users\husum\downloads\ijji_Gunz_Hack.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [BitTorrent] "c:\program files\bittorrent\BitTorrent.exe"
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [Windows Servicer] C:\Program Files
uRun: [Inicio Sistema Operativo] c:\windows\system32\microsoft corporation\Windows Update.exe
mRun: [CLMLServer] "c:\program files\cyberlink\power2go\CLMLSvc.exe"
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [RtHDVBg] c:\program files\realtek\audio\hda\RtHDVBg.exe /FORPCEE3
mRun: [HotkeyApp] "c:\program files\launch manager\HotkeyApp.exe"
mRun: [LMgrVolOSD] "c:\program files\launch manager\OSD.exe"
mRun: [Wbutton] "c:\program files\launch manager\Wbutton.exe"
mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
mRun: [LogMeIn Hamachi Ui] "c:\program files\logmein hamachi\hamachi-2-ui.exe" --auto-start
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Microsoft Actualizacion] c:\windows\system32\microsoft corporation\Windows Update.exe
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
uExplorerRun: [Policies] c:\windows\system32\microsoft corporation\Windows Update.exe
mExplorerRun: [Policies] c:\windows\system32\microsoft corporation\Windows Update.exe
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/710-91768-17534-1/4
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
TCP: {91734A2F-C336-4BE9-8362-AA7479B0E354} = 208.67.222.222,208.67.220.220
TCP: 56C6566723 = 208.67.222.222,208.67.220.220
TCP: 6457C6C627164756 = 208.67.222.222,208.67.220.220
TCP: 84B4D2745756374737 = 208.67.222.222,208.67.220.220
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:\windows\system32\nvinit.dll
mASetup: {W37446F3-S252-20K1-GXE5-RJ6GP7G6R2BS} - c:\windows\system32\microsoft corporation\Windows Update.exe Restart

============= SERVICES / DRIVERS ===============

R0 nvpciflt;nvpciflt;c:\windows\system32\drivers\nvpciflt.sys [2010-8-9 19656]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R2 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2010-12-21 137144]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2011-1-12 810144]
R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2010-12-21 95384]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\logmein hamachi\hamachi-2.exe [2010-12-6 1238408]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\intel\intel(r) rapid storage technology\IAStorDataMgrSvc.exe [2010-8-9 13336]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2010-8-9 1620584]
R2 TeamViewer6;TeamViewer 6;c:\program files\teamviewer\version6\TeamViewer_Service.exe [2010-12-5 2222376]
R2 TunngleService;TunngleService;c:\program files\tunngle\TnglCtrl.exe [2011-2-8 718072]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\intel\intel(r) management engine components\uns\UNS.exe [2010-8-9 2320920]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-8-9 132480]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\drivers\IntcDAud.sys [2010-8-9 246272]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-8-4 67624]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-4-27 64904]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-4-27 146568]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\drivers\rtl8192se.sys [2010-8-9 1006624]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\drivers\tap0901t.sys [2011-2-8 27136]
R3 WisLMSvc;WisLMSvc;c:\program files\launch manager\WisLMSvc.exe [2010-8-9 118560]
R3 X10Hid;X10 Hid Device;c:\windows\system32\drivers\x10hid.sys [2010-8-13 13720]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2010-12-2 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-9-23 1493352]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-8-9 193056]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-6-10 139776]
S3 WatAdminSvc;Tjenesten Windows Aktivering;c:\windows\system32\wat\WatAdminSvc.exe [2010-11-21 1343400]
S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]

=============== Created Last 30 ================

2011-02-23 12:24:36    --------    d-----w-    c:\users\husum\appdata\local\{0369938F-054A-4708-8ADE-34D58029FD66}
2011-02-23 09:10:34    --------    d-----w-    c:\users\husum\appdata\local\{83C833F0-3358-4B07-B0AF-55744E806BA7}
2011-02-22 12:41:00    --------    d-----w-    c:\users\husum\appdata\local\{0CB54051-24E7-4E3F-9CF2-3ED909B15BDF}
2011-02-22 12:28:26    --------    d-----w-    c:\users\husum\appdata\local\{A4A7B274-A297-49D2-9DF0-EA0DE897AD15}
2011-02-21 06:09:27    --------    d-----w-    c:\users\husum\appdata\local\{F7CA7738-0CC2-49F2-9DE8-1B41F7C12D5A}
2011-02-20 21:42:25    --------    d-----w-    c:\users\husum\appdata\roaming\Malwarebytes
2011-02-20 21:42:12    38224    ----a-w-    c:\windows\system32\drivers\mbamswissarmy.sys
2011-02-20 21:42:11    --------    d-----w-    c:\progra~2\Malwarebytes
2011-02-20 21:42:09    20952    ----a-w-    c:\windows\system32\drivers\mbam.sys
2011-02-20 21:42:09    --------    d-----w-    c:\program files\Malwarebytes' Anti-Malware
2011-02-20 21:26:44    --------    d-----w-    c:\program files\Ask.com
2011-02-20 21:26:32    --------    d-----w-    c:\users\husum\appdata\roaming\GlarySoft
2011-02-20 21:26:31    --------    d-----w-    c:\program files\Glary Registry Repair
2011-02-20 11:12:56    --------    d-----w-    c:\users\husum\appdata\local\{71C830E1-F824-41BE-AF92-5D09AB1C7D0E}
2011-02-19 17:21:13    --------    d-----w-    c:\users\husum\appdata\local\{7E705AE1-9F00-4A99-A503-04D9F841592D}
2011-02-18 13:47:23    --------    d-----w-    c:\program files\RAR Password Cracker
2011-02-18 13:36:57    --------    d-----w-    c:\users\husum\appdata\local\{3AC5DB50-53E9-4ED6-A7C2-1EC3A21DA822}
2011-02-18 11:13:10    5890896    ----a-w-    c:\progra~2\microsoft\windows defender\definition updates\{35ae9ce8-cd70-4a98-bcb2-4a4f5af2e24c}\mpengine.dll
2011-02-17 21:03:06    --------    d-----w-    c:\users\husum\appdata\local\{1BF3C5A8-EDB7-4B94-9200-2B9A043C5121}
2011-02-17 13:21:20    --------    d-----w-    c:\users\husum\appdata\local\{1E53D766-D505-44F9-938D-79972B64AAC2}
2011-02-16 23:29:15    101248    ----a-w-    c:\windows\system32\drivers\ewusbdev.sys
2011-02-16 17:30:24    --------    d-----w-    c:\users\husum\appdata\roaming\Vivox
2011-02-16 17:28:56    --------    d-----w-    c:\users\husum\appdata\roaming\IMVU
2011-02-16 17:28:39    --------    d-----w-    c:\users\husum\appdata\roaming\IMVUClient
2011-02-16 14:51:34    --------    d-----w-    c:\users\husum\appdata\local\{308CA288-ADCA-4E9B-A7A7-2A6DA7A88E49}
2011-02-15 21:51:31    --------    d-----w-    c:\users\husum\appdata\local\{6B33ED7B-EF14-4D97-8961-B0FFC99DB068}
2011-02-15 12:05:41    --------    d-----w-    c:\users\husum\.oces
2011-02-15 02:34:45    --------    d-----w-    c:\users\husum\appdata\local\{5959D2C7-8DB9-442A-A0E5-8109C03914E4}
2011-02-15 02:31:23    --------    d-sh--w-    C:\found.000
2011-02-14 12:06:13    --------    d-----w-    c:\users\husum\appdata\local\{315653DE-2752-4F9B-8A83-2E78D5104DB1}
2011-02-14 02:13:48    --------    d-----w-    c:\program files\VideoLAN
2011-02-13 21:54:20    34064    ----a-w-    c:\windows\system32\lhacm.acm
2011-02-13 18:31:08    --------    d-----w-    c:\program files\ESET
2011-02-13 16:07:46    --------    d-----w-    c:\users\husum\appdata\local\{2A7AC66A-F9F9-431E-8B39-A06740E270B5}
2011-02-12 16:26:02    --------    d-----w-    c:\users\husum\appdata\local\{C039D086-2135-4F36-995B-B7BEAF440BCF}
2011-02-11 23:21:41    --------    d-----w-    c:\users\husum\appdata\local\{27222E97-B671-4D6C-94F8-EA4B2F1C43C1}
2011-02-11 10:45:44    --------    d-----w-    c:\users\husum\appdata\local\Nem's Tools
2011-02-11 10:38:27    --------    d-----w-    c:\program files\VTFEdit
2011-02-11 10:37:50    --------    d-----w-    c:\program files\Nem's Tools
2011-02-11 09:48:24    --------    d-----w-    c:\users\husum\appdata\local\{0AF3E828-B6A7-458A-98FA-F45ECE9A21D4}
2011-02-10 10:58:12    --------    d-----w-    c:\users\husum\appdata\local\{5D217BD5-9B42-4920-BEF4-FC67CA73C2CB}
2011-02-10 10:38:13    --------    d-----w-    c:\users\husum\appdata\local\{89005686-0677-4690-84B5-E3867B3C81FF}
2011-02-09 23:01:50    --------    d-----w-    c:\users\husum\appdata\local\{5FCE0BBC-0449-4EEA-9557-0A0D0F21ACE4}
2011-02-09 14:41:04    --------    d-----w-    c:\users\husum\appdata\local\{2721EA07-FBC2-4230-AAE0-2287A07569EB}
2011-02-09 07:22:24    --------    d-----w-    c:\users\husum\appdata\local\{8D706466-2D86-4B6D-933D-44C1327FF0F6}
2011-02-08 21:25:45    --------    d-----w-    c:\users\husum\appdata\roaming\Tunngle
2011-02-08 21:25:45    --------    d-----w-    c:\progra~2\Tunngle
2011-02-08 21:25:43    27136    ----a-w-    c:\windows\system32\drivers\tap0901t.sys
2011-02-08 21:25:42    --------    d-----w-    c:\program files\Tunngle
2011-02-08 10:25:54    --------    d-----w-    c:\users\husum\appdata\local\{A2BC49C9-19A1-470A-AA70-8A30EB95A509}
2011-02-08 07:28:32    --------    d-----w-    c:\program files\common files\Intel Corporation
2011-02-07 22:12:07    --------    d-----w-    c:\users\husum\appdata\local\{8FDD886B-36F4-4212-9DD6-C3EAC7E19F44}
2011-02-07 21:38:14    --------    d-----w-    c:\users\husum\appdata\roaming\LolClient
2011-02-07 21:34:11    467984    ----a-w-    c:\windows\system32\d3dx10_39.dll
2011-02-07 21:34:11    1493528    ----a-w-    c:\windows\system32\D3DCompiler_39.dll
2011-02-07 21:34:10    3851784    ----a-w-    c:\windows\system32\D3DX9_39.dll
2011-02-07 21:29:46    --------    d-----w-    C:\Riot Games
2011-02-07 21:02:39    --------    d-----w-    c:\users\husum\appdata\local\PMB Files
2011-02-07 21:02:38    --------    d-----w-    c:\progra~2\PMB Files
2011-02-07 21:02:26    --------    d-----w-    c:\program files\Pando Networks
2011-02-07 08:58:26    --------    d-----w-    c:\users\husum\appdata\local\{3BCC7E99-53B6-4C16-B476-B0CA981FB259}
2011-02-07 07:29:10    --------    d-----w-    c:\users\husum\appdata\local\{1E966D1C-A4D0-4DAF-8324-E13472F19450}
2011-02-06 17:14:14    --------    d-----w-    c:\users\husum\appdata\local\{3D8A4AF7-73E2-4456-974D-526FC57104E7}
2011-02-06 11:18:53    --------    d-----w-    c:\users\husum\appdata\local\{C6288DDC-F737-4EBE-B8E3-1ED284356240}
2011-02-06 03:28:38    --------    d-----w-    c:\users\husum\.thumbnails
2011-02-06 00:17:37    --------    d-----w-    c:\users\husum\appdata\local\{ADCDC382-FBD4-4E8A-A1A0-1BBD2940A695}
2011-02-05 09:53:44    --------    d-----w-    c:\users\husum\appdata\local\{6B96C13F-2957-47C4-BB3F-31EF3B006F9A}
2011-02-04 21:12:48    --------    d-----w-    c:\users\husum\.gimp-2.6
2011-02-04 21:12:07    --------    d-----w-    c:\program files\GIMP-2.0
2011-02-04 17:13:02    --------    d-----w-    c:\users\husum\appdata\local\{492A4ABF-D255-4E49-8B4D-6E8CD8DCD20C}
2011-02-04 11:07:35    --------    d-----w-    c:\users\husum\appdata\local\{DA6BA053-10F0-40C3-9F80-2D3ADF73ABF3}
2011-02-03 20:45:56    --------    d-----w-    c:\program files\SystemRequirementsLab
2011-02-03 18:29:00    --------    d-----w-    c:\users\husum\appdata\local\{36863D03-F7CD-4B12-98EC-72F6BCB9C660}
2011-02-03 09:57:10    --------    d-----w-    c:\users\husum\appdata\local\{4ED96F26-27FC-445E-BF7E-0FB72324989B}
2011-02-03 08:53:36    --------    d-----w-    c:\users\husum\appdata\local\{6CE5A3FE-B6B1-4D38-BE38-961E7DD1C498}
2011-02-03 08:40:36    --------    d-----w-    c:\users\husum\appdata\local\{6B5CB12B-FD1F-4008-9DE7-4A0F34DAA976}
2011-02-03 08:29:25    --------    d-----w-    c:\users\husum\appdata\local\{540C1EB7-4478-4D1C-A7E9-015062694F3D}
2011-02-03 07:43:20    --------    d-----w-    c:\users\husum\appdata\local\{1ED84620-B399-4F04-941D-CFAAE469D7C3}
2011-02-02 17:33:08    --------    d-----w-    c:\users\husum\appdata\roaming\TS3Client
2011-02-02 17:32:41    --------    d-----w-    c:\program files\TeamSpeak 3 Client
2011-02-02 17:27:55    --------    d-----w-    c:\users\husum\appdata\local\{86619282-CA96-4693-9A4E-011A58D23D92}
2011-02-02 06:24:20    --------    d-----w-    c:\users\husum\appdata\local\{D8D6AED6-70A8-4B6E-991F-8A7862C2DC5D}
2011-02-01 11:15:47    --------    d-----w-    c:\users\husum\appdata\local\{3E80F416-6B37-40E5-BF6A-5A52F5168555}
2011-01-31 12:37:39    --------    d-----w-    c:\users\husum\appdata\local\{AD45383A-9945-4045-806C-E8CD5E303DCE}
2011-01-30 13:28:07    --------    d-----w-    c:\users\husum\appdata\local\{BB086ABA-0FDE-4589-82DA-E79FB8C9225B}
2011-01-29 14:18:54    --------    d-----w-    c:\users\husum\appdata\local\{1B2F6AE1-A6B2-45E9-8DDF-68BBA8ACA50E}
2011-01-28 10:50:24    --------    d-----w-    c:\users\husum\appdata\local\{9915B6B7-3DDA-4E51-AA82-9A842CC2D935}
2011-01-27 10:48:47    --------    d-----w-    c:\users\husum\appdata\local\{44ACC5F5-8948-4582-8DCA-50D7D785026F}
2011-01-26 23:27:16    --------    d-----w-    c:\users\husum\appdata\roaming\ManyCam
2011-01-26 23:27:14    --------    d-----w-    c:\program files\ManyCam
2011-01-26 17:32:55    --------    d-----w-    c:\users\husum\appdata\roaming\LEGO Company
2011-01-26 17:32:04    --------    d-----w-    c:\program files\LEGO Company
2011-01-26 17:32:03    --------    d-----w-    c:\program files\Unity
2011-01-26 16:37:48    --------    d-----w-    c:\users\husum\appdata\local\{18D88A70-EAEF-4CED-BEAD-A52CB1C53718}
2011-01-26 14:33:54    --------    d-----w-    c:\users\husum\appdata\local\{4E0BE705-710B-49FF-B259-15F4619E5335}
2011-01-26 12:18:05    --------    d-----w-    c:\users\husum\appdata\local\{BB4E6446-D162-4AF7-AB90-9DECA388E22D}
2011-01-26 10:21:36    --------    d-----w-    c:\users\husum\appdata\local\{7529910D-F94E-45B8-9318-B98719E3B2B0}
2011-01-25 12:29:02    --------    d-----w-    c:\users\husum\appdata\local\{5C8ABCF8-A5F9-451D-976B-CFC360D04165}
2011-01-24 15:04:47    --------    d-----w-    c:\users\husum\appdata\local\{0276C5F6-9E0D-4801-900D-4CEF5D4FA01A}

==================== Find3M  ====================

2011-01-07 07:27:11    34304    ----a-w-    c:\windows\system32\atmlib.dll
2011-01-07 05:33:11    294400    ----a-w-    c:\windows\system32\atmfd.dll
2011-01-05 05:37:33    428032    ----a-w-    c:\windows\system32\vbscript.dll
2011-01-05 03:37:38    2329088    ----a-w-    c:\windows\system32\win32k.sys
2011-01-02 16:25:23    952    --sha-w-    c:\progra~2\KGyGaAvL.sys
2010-12-18 05:32:22    981504    ----a-w-    c:\windows\system32\wininet.dll
2010-12-18 05:29:40    44544    ----a-w-    c:\windows\system32\licmgr10.dll
2010-12-18 05:29:31    541184    ----a-w-    c:\windows\system32\kerberos.dll
2010-12-18 04:20:55    386048    ----a-w-    c:\windows\system32\html.iec
2010-12-18 03:47:59    1638912    ----a-w-    c:\windows\system32\mshtml.tlb
2006-02-26 17:49:35    1313792    --sha-r-    c:\windows\system32\microsoft corporation\Windows Update.exe

============= FINISH: 15:01:39,70 ===============


Attach:



UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-12-12.01)

Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 21-11-2010 08:05:18
System Uptime: 23-02-2011 13:22:34 (2 hours ago)

Motherboard: MEDION          |  | P6624         
Processor: Intel(R) Core(TM) i3 CPU      M 370  @ 2.40GHz | CPU 1 | 2394/532mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 565 GiB total, 462,067 GiB free.
D: is FIXED (NTFS) - 30 GiB total, 3,029 GiB free.
E: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

No restore point in system.

==== Installed Programs ======================

Acrobat.com
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.3.3 MUI
Ashampoo Burning Studio
Ashampoo Photo Commander
Ashampoo Snap
Ask Toolbar
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
Bing-værktøjslinje
Bing Bar Platform
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Conduit Engine
CorelDRAW Essentials 4
CorelDRAW Essentials 4 - Content
CorelDRAW Essentials 4 - Draw
CorelDRAW Essentials 4 - Filters
CorelDRAW Essentials 4 - ICA
CorelDRAW Essentials 4 - IPM - No VBA
CorelDRAW Essentials 4 - Lang BR
CorelDRAW Essentials 4 - Lang DE
CorelDRAW Essentials 4 - Lang EN
CorelDRAW Essentials 4 - Lang ES
CorelDRAW Essentials 4 - Lang FR
CorelDRAW Essentials 4 - Lang IT
CorelDRAW Essentials 4 - Lang NL
CorelDRAW Essentials 4 - PHOTO-PAINT
CorelDRAW Essentials 4 - Windows Shell Extension
Counter-Strike: Source
CyberLink LabelPrint
CyberLink MediaShow
CyberLink MediaShow Espresso
CyberLink PhotoNow
CyberLink Power2Go
CyberLink PowerDirector
CyberLink PowerDVD 9
CyberLink PowerDVD Copy
CyberLink PowerProducer
CyberLink YouCam
D3DX10
Diablo II
Garry's Mod
GCFScape 1.8.2
GIMP 2.6.11
Glary Registry Repair 3.3.0.852
Google Chrome
HLSW v1.3.3.7b
Haali Media Splitter
IMVU Avatar Chat Software
Intel(R) Graphics Media Accelerator Driver
Intel(R) Management Engine Components
Intel(R) Rapid Storage Technology
Java Auto Updater
Java(TM) 6 Update 21
Junk Mail filter update
Launch Manager
League of Legends
LogMeIn Hamachi
Malwarebytes' Anti-Malware
Mani Admin Plugin Clients.txt Creator V.2.1
Medieval II Total War
Medion Home Cinema
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 4 Client Profile
Microsoft Age of Empires II
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
mIRC
Mobile Partner
MSVCRT
MSXML 4.0 SP2 (KB973688)
Mumble 1.2.3
NVIDIA Display Control Panel
NVIDIA Drivers
NVIDIA Updatus
Pando Media Booster
PlayReady PC Runtime x86
RAR Password Cracker 4.12
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
REALTEK Wireless LAN Driver
Renesas Electronics USB 3.0 Host Controller Driver
Skype Toolbars
Skype™ 5.1
Source SDK
StarCraft II
Steam
SUPERAntiSpyware
Synaptics Pointing Device Driver
System Requirements Lab CYRI
TeamSpeak 3 Client
TeamViewer 6
Tunngle beta
Unity Web Player (All users)
Ventrilo Client
VLC media player 1.1.7
VTFEdit 1.2.5
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX-objekt til fjernforbindelser
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Encoder 9 Series
WinRAR arkivering
X10 Hardware(TM)
YouTube Downloader 2.6.5

==== End Of File ===========================

Afinstaller Ask Toolbar. Den har et dårligt ry.

Start Malwarebytes, og under "Logs" finder du den der fjernede noget. Kopier den herind, sammen med en log fra ComboFix.

------

Hent og gem ComboFix på dit skrivebord.

Højreklik på skrivebordet og vælg ny->tekstdokument og kopier det fremhævede ind og gem filen som CFScript

Killall::
Snapshot::

Da Combofix kan konflikte med dine sikkerhedsprogrammer er det vigtigt at du deaktiverer dem.

Tag så fat i den nye fil med musen, og før den hen over ComboFix-filen, hvorefter du "giver slip" med musen.
http://www.fromsej.saknet.dk/billeder/cfscript.gif

Så skulle Combofix gerne give sig til at arbejde. Muligvis vil den kræve en genstart, hvilket du skal tillade. Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når Combofix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil: combofix.txt som ligger her C:\Combofix.txt

Indholdet af denne fil må du gerne lægge herind.

Jeg kiggede selv også lige loggen igenmen og det er ""hijack"="c:\users\Husum\Downloads\ijji_Gunz_Hack.exe" [2010-12-03 182342]" som er problemet

Men resten af loggen er her :


ComboFix 11-02-24.05 - Husum 25-02-2011  11:40:27.1.4 - x86
Microsoft Windows 7 Home Premium  6.1.7600.0.1252.45.1030.18.3253.1791 [GMT 1:00]
Kører fra: c:\users\Husum\Downloads\ComboFix.exe
Kommandoer benyttet :: c:\users\Husum\Desktop\CFScript.txt.txt
AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((((((  Andet, der er slettet  )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\Microsoft Corporation\Windows Update.exe

.
(((((((((((((((((((((((((((((  Filer skabt fra 2011-01-25 til 2011-02-25  )))))))))))))))))))))))))))))))))))
.

2011-02-25 10:48 . 2011-02-25 10:50    --------    d-----w-    c:\users\Husum\AppData\Local\temp
2011-02-25 09:55 . 2011-02-25 09:55    --------    d-----w-    c:\users\Husum\AppData\Local\{67251C19-B784-4330-8559-BBA5E8039552}
2011-02-24 17:25 . 2011-02-24 17:25    --------    d-----w-    c:\users\Husum\AppData\Local\{4C210811-CB30-4D93-B235-63087B534F9D}
2011-02-23 14:14 . 2011-01-13 09:41    5890896    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{6D0753BC-51DF-4FD7-821F-A74D8343D7D1}\mpengine.dll
2011-02-23 12:24 . 2011-02-23 12:25    --------    d-----w-    c:\users\Husum\AppData\Local\{0369938F-054A-4708-8ADE-34D58029FD66}
2011-02-23 09:10 . 2011-02-23 09:10    --------    d-----w-    c:\users\Husum\AppData\Local\{83C833F0-3358-4B07-B0AF-55744E806BA7}
2011-02-22 12:41 . 2011-02-22 12:41    --------    d-----w-    c:\users\Husum\AppData\Local\{0CB54051-24E7-4E3F-9CF2-3ED909B15BDF}
2011-02-22 12:28 . 2011-02-22 12:28    --------    d-----w-    c:\users\Husum\AppData\Local\{A4A7B274-A297-49D2-9DF0-EA0DE897AD15}
2011-02-21 06:09 . 2011-02-21 06:09    --------    d-----w-    c:\users\Husum\AppData\Local\{F7CA7738-0CC2-49F2-9DE8-1B41F7C12D5A}
2011-02-20 21:42 . 2011-02-20 21:42    --------    d-----w-    c:\users\Husum\AppData\Roaming\Malwarebytes
2011-02-20 21:42 . 2010-12-20 17:09    38224    ----a-w-    c:\windows\system32\drivers\mbamswissarmy.sys
2011-02-20 21:42 . 2011-02-20 21:42    --------    d-----w-    c:\programdata\Malwarebytes
2011-02-20 21:42 . 2011-02-20 21:42    --------    d-----w-    c:\program files\Malwarebytes' Anti-Malware
2011-02-20 21:42 . 2010-12-20 17:08    20952    ----a-w-    c:\windows\system32\drivers\mbam.sys
2011-02-20 21:26 . 2011-02-20 21:29    --------    d-----w-    c:\users\Husum\AppData\Roaming\GlarySoft
2011-02-20 21:26 . 2011-02-20 21:26    --------    d-----w-    c:\program files\Glary Registry Repair
2011-02-20 11:12 . 2011-02-20 11:13    --------    d-----w-    c:\users\Husum\AppData\Local\{71C830E1-F824-41BE-AF92-5D09AB1C7D0E}
2011-02-19 17:21 . 2011-02-19 17:21    --------    d-----w-    c:\users\Husum\AppData\Local\{7E705AE1-9F00-4A99-A503-04D9F841592D}
2011-02-18 13:47 . 2011-02-18 13:47    --------    d-----w-    c:\program files\RAR Password Cracker
2011-02-18 13:36 . 2011-02-18 13:37    --------    d-----w-    c:\users\Husum\AppData\Local\{3AC5DB50-53E9-4ED6-A7C2-1EC3A21DA822}
2011-02-17 21:03 . 2011-02-17 21:03    --------    d-----w-    c:\users\Husum\AppData\Local\{1BF3C5A8-EDB7-4B94-9200-2B9A043C5121}
2011-02-17 13:21 . 2011-02-17 13:21    --------    d-----w-    c:\users\Husum\AppData\Local\{1E53D766-D505-44F9-938D-79972B64AAC2}
2011-02-16 23:29 . 2009-07-24 14:51    101248    ----a-w-    c:\windows\system32\drivers\ewusbdev.sys
2011-02-16 17:30 . 2011-02-16 17:30    --------    d-----w-    c:\users\Husum\AppData\Roaming\Vivox
2011-02-16 17:28 . 2011-02-16 18:17    --------    d-----w-    c:\users\Husum\AppData\Roaming\IMVU
2011-02-16 14:51 . 2011-02-16 14:51    --------    d-----w-    c:\users\Husum\AppData\Local\{308CA288-ADCA-4E9B-A7A7-2A6DA7A88E49}
2011-02-15 21:51 . 2011-02-15 21:52    --------    d-----w-    c:\users\Husum\AppData\Local\{6B33ED7B-EF14-4D97-8961-B0FFC99DB068}
2011-02-15 12:05 . 2011-02-15 12:05    --------    d-----w-    c:\users\Husum\.oces
2011-02-15 02:59 . 2011-02-15 03:01    --------    d-----w-    c:\users\Husum\AppData\Roaming\dvdcss
2011-02-15 02:34 . 2011-02-15 02:35    --------    d-----w-    c:\users\Husum\AppData\Local\{5959D2C7-8DB9-442A-A0E5-8109C03914E4}
2011-02-15 02:31 . 2011-02-15 02:31    --------    d-----w-    C:\found.000
2011-02-14 12:06 . 2011-02-14 12:06    --------    d-----w-    c:\users\Husum\AppData\Local\{315653DE-2752-4F9B-8A83-2E78D5104DB1}
2011-02-14 02:14 . 2011-02-22 14:04    --------    d-----w-    c:\users\Husum\AppData\Roaming\vlc
2011-02-14 02:13 . 2011-02-14 02:13    --------    d-----w-    c:\program files\VideoLAN
2011-02-13 21:54 . 2011-02-13 21:54    --------    d-----w-    c:\users\Husum\AppData\Roaming\teamspeak2
2011-02-13 21:54 . 2011-02-13 21:54    34064    ----a-w-    c:\windows\system32\lhacm.acm
2011-02-13 18:31 . 2011-02-13 18:31    --------    d-----w-    c:\program files\ESET
2011-02-13 16:07 . 2011-02-13 16:07    --------    d-----w-    c:\users\Husum\AppData\Local\{2A7AC66A-F9F9-431E-8B39-A06740E270B5}
2011-02-12 16:26 . 2011-02-12 16:26    --------    d-----w-    c:\users\Husum\AppData\Local\{C039D086-2135-4F36-995B-B7BEAF440BCF}
2011-02-11 23:21 . 2011-02-11 23:21    --------    d-----w-    c:\users\Husum\AppData\Local\{27222E97-B671-4D6C-94F8-EA4B2F1C43C1}
2011-02-11 10:45 . 2011-02-11 10:45    --------    d-----w-    c:\users\Husum\AppData\Local\Nem's Tools
2011-02-11 10:38 . 2011-02-11 10:38    --------    d-----w-    c:\program files\VTFEdit
2011-02-11 10:37 . 2011-02-11 10:37    --------    d-----w-    c:\program files\Nem's Tools
2011-02-11 09:48 . 2011-02-11 09:48    --------    d-----w-    c:\users\Husum\AppData\Local\{0AF3E828-B6A7-458A-98FA-F45ECE9A21D4}
2011-02-10 10:58 . 2011-02-10 10:58    --------    d-----w-    c:\users\Husum\AppData\Local\{5D217BD5-9B42-4920-BEF4-FC67CA73C2CB}
2011-02-10 10:38 . 2011-02-10 10:38    --------    d-----w-    c:\users\Husum\AppData\Local\{89005686-0677-4690-84B5-E3867B3C81FF}
2011-02-09 23:01 . 2011-02-09 23:01    --------    d-----w-    c:\users\Husum\AppData\Local\{5FCE0BBC-0449-4EEA-9557-0A0D0F21ACE4}
2011-02-09 14:41 . 2011-02-09 14:41    --------    d-----w-    c:\users\Husum\AppData\Local\{2721EA07-FBC2-4230-AAE0-2287A07569EB}
2011-02-09 07:22 . 2011-02-09 07:22    --------    d-----w-    c:\users\Husum\AppData\Local\{8D706466-2D86-4B6D-933D-44C1327FF0F6}
2011-02-08 21:25 . 2011-02-20 23:00    --------    d-----w-    c:\programdata\Tunngle
2011-02-08 21:25 . 2011-02-20 23:00    --------    d-----w-    c:\users\Husum\AppData\Roaming\Tunngle
2011-02-08 21:25 . 2009-09-16 06:02    27136    ----a-w-    c:\windows\system32\drivers\tap0901t.sys
2011-02-08 21:25 . 2011-02-08 21:26    --------    d-----w-    c:\program files\Tunngle
2011-02-08 10:25 . 2011-02-08 10:26    --------    d-----w-    c:\users\Husum\AppData\Local\{A2BC49C9-19A1-470A-AA70-8A30EB95A509}
2011-02-08 07:28 . 2011-02-08 07:28    --------    d-----w-    c:\program files\Common Files\Intel Corporation
2011-02-07 22:12 . 2011-02-07 22:12    --------    d-----w-    c:\users\Husum\AppData\Local\{8FDD886B-36F4-4212-9DD6-C3EAC7E19F44}
2011-02-07 21:38 . 2011-02-07 21:38    --------    d-----w-    c:\users\Husum\AppData\Roaming\LolClient
2011-02-07 21:34 . 2008-07-12 07:18    467984    ----a-w-    c:\windows\system32\d3dx10_39.dll
2011-02-07 21:34 . 2008-07-12 07:18    1493528    ----a-w-    c:\windows\system32\D3DCompiler_39.dll
2011-02-07 21:34 . 2008-07-12 07:18    3851784    ----a-w-    c:\windows\system32\D3DX9_39.dll
2011-02-07 21:29 . 2011-02-07 21:29    --------    d-----w-    C:\Riot Games
2011-02-07 21:02 . 2011-02-07 21:55    --------    d-----w-    c:\users\Husum\AppData\Local\PMB Files
2011-02-07 21:02 . 2011-02-07 21:03    --------    d-----w-    c:\programdata\PMB Files
2011-02-07 21:02 . 2011-02-07 21:02    --------    d-----w-    c:\program files\Pando Networks
2011-02-07 08:58 . 2011-02-07 08:58    --------    d-----w-    c:\users\Husum\AppData\Local\{3BCC7E99-53B6-4C16-B476-B0CA981FB259}
2011-02-07 07:29 . 2011-02-07 07:29    --------    d-----w-    c:\users\Husum\AppData\Local\{1E966D1C-A4D0-4DAF-8324-E13472F19450}
2011-02-06 17:14 . 2011-02-06 17:14    --------    d-----w-    c:\users\Husum\AppData\Local\{3D8A4AF7-73E2-4456-974D-526FC57104E7}
2011-02-06 11:18 . 2011-02-06 11:18    --------    d-----w-    c:\users\Husum\AppData\Local\{C6288DDC-F737-4EBE-B8E3-1ED284356240}
2011-02-06 03:28 . 2011-02-06 03:28    --------    d-----w-    c:\users\Husum\.thumbnails
2011-02-06 00:17 . 2011-02-06 00:17    --------    d-----w-    c:\users\Husum\AppData\Local\{ADCDC382-FBD4-4E8A-A1A0-1BBD2940A695}
2011-02-05 09:53 . 2011-02-05 09:53    --------    d-----w-    c:\users\Husum\AppData\Local\{6B96C13F-2957-47C4-BB3F-31EF3B006F9A}
2011-02-04 21:22 . 2011-02-20 22:40    --------    d-----w-    c:\users\Husum\AppData\Roaming\gtk-2.0
2011-02-04 21:12 . 2011-02-20 22:56    --------    d-----w-    c:\users\Husum\.gimp-2.6
2011-02-04 21:12 . 2011-02-04 21:12    --------    d-----w-    c:\program files\GIMP-2.0
2011-02-04 17:13 . 2011-02-04 17:13    --------    d-----w-    c:\users\Husum\AppData\Local\{492A4ABF-D255-4E49-8B4D-6E8CD8DCD20C}
2011-02-04 11:07 . 2011-02-04 11:07    --------    d-----w-    c:\users\Husum\AppData\Local\{DA6BA053-10F0-40C3-9F80-2D3ADF73ABF3}
2011-02-03 20:45 . 2011-02-03 20:45    --------    d-----w-    c:\program files\SystemRequirementsLab
2011-02-03 20:45 . 2011-02-03 20:45    --------    d-----w-    c:\users\Husum\AppData\Roaming\SystemRequirementsLab
2011-02-03 18:29 . 2011-02-03 18:29    --------    d-----w-    c:\users\Husum\AppData\Local\{36863D03-F7CD-4B12-98EC-72F6BCB9C660}
2011-02-03 09:57 . 2011-02-03 09:57    --------    d-----w-    c:\users\Husum\AppData\Local\{4ED96F26-27FC-445E-BF7E-0FB72324989B}
2011-02-03 08:53 . 2011-02-03 08:53    --------    d-----w-    c:\users\Husum\AppData\Local\{6CE5A3FE-B6B1-4D38-BE38-961E7DD1C498}
2011-02-03 08:40 . 2011-02-03 08:40    --------    d-----w-    c:\users\Husum\AppData\Local\{6B5CB12B-FD1F-4008-9DE7-4A0F34DAA976}
2011-02-03 08:29 . 2011-02-03 08:29    --------    d-----w-    c:\users\Husum\AppData\Local\{540C1EB7-4478-4D1C-A7E9-015062694F3D}
2011-02-03 07:43 . 2011-02-03 07:43    --------    d-----w-    c:\users\Husum\AppData\Local\{1ED84620-B399-4F04-941D-CFAAE469D7C3}
2011-02-02 17:33 . 2011-02-02 17:35    --------    d-----w-    c:\users\Husum\AppData\Roaming\TS3Client
2011-02-02 17:32 . 2011-02-02 17:32    --------    d-----w-    c:\program files\TeamSpeak 3 Client
2011-02-02 17:27 . 2011-02-02 17:28    --------    d-----w-    c:\users\Husum\AppData\Local\{86619282-CA96-4693-9A4E-011A58D23D92}
2011-02-02 06:24 . 2011-02-02 06:24    --------    d-----w-    c:\users\Husum\AppData\Local\{D8D6AED6-70A8-4B6E-991F-8A7862C2DC5D}
2011-02-01 11:15 . 2011-02-01 11:16    --------    d-----w-    c:\users\Husum\AppData\Local\{3E80F416-6B37-40E5-BF6A-5A52F5168555}
2011-01-31 12:37 . 2011-01-31 12:38    --------    d-----w-    c:\users\Husum\AppData\Local\{AD45383A-9945-4045-806C-E8CD5E303DCE}
2011-01-30 13:28 . 2011-01-30 13:28    --------    d-----w-    c:\users\Husum\AppData\Local\{BB086ABA-0FDE-4589-82DA-E79FB8C9225B}
2011-01-29 14:18 . 2011-01-29 14:19    --------    d-----w-    c:\users\Husum\AppData\Local\{1B2F6AE1-A6B2-45E9-8DDF-68BBA8ACA50E}
2011-01-28 10:50 . 2011-01-28 10:50    --------    d-----w-    c:\users\Husum\AppData\Local\{9915B6B7-3DDA-4E51-AA82-9A842CC2D935}
2011-01-27 10:48 . 2011-01-27 10:49    --------    d-----w-    c:\users\Husum\AppData\Local\{44ACC5F5-8948-4582-8DCA-50D7D785026F}
2011-01-26 23:27 . 2011-02-03 08:39    --------    d-----w-    c:\users\Husum\AppData\Roaming\ManyCam
2011-01-26 23:27 . 2011-02-03 08:39    --------    d-----w-    c:\program files\ManyCam
2011-01-26 17:32 . 2011-01-26 17:32    --------    d-----w-    c:\users\Husum\AppData\Roaming\LEGO Company
2011-01-26 17:32 . 2011-01-26 17:32    --------    d-----w-    c:\program files\LEGO Company
2011-01-26 17:32 . 2011-01-26 17:32    --------    d-----w-    c:\program files\Unity
2011-01-26 16:37 . 2011-01-26 16:37    --------    d-----w-    c:\users\Husum\AppData\Local\{18D88A70-EAEF-4CED-BEAD-A52CB1C53718}
2011-01-26 14:33 . 2011-01-26 14:33    --------    d-----w-    c:\users\Husum\AppData\Local\{4E0BE705-710B-49FF-B259-15F4619E5335}
2011-01-26 12:18 . 2011-01-26 12:18    --------    d-----w-    c:\users\Husum\AppData\Local\{BB4E6446-D162-4AF7-AB90-9DECA388E22D}

.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-05 15:42 . 2010-12-14 19:35    48648    ----a-w-    c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-01-05 15:42 . 2010-12-15 20:12    335168    ----a-w-    c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-01-02 16:25 . 2010-12-02 20:04    952    --sha-w-    c:\programdata\KGyGaAvL.sys
2010-12-24 20:48 . 2010-12-03 06:09    335168    ----a-w-    c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-12-21 14:04 . 2010-12-21 14:04    137144    ----a-w-    c:\windows\system32\drivers\eamonm.sys
2010-12-21 14:04 . 2010-12-21 14:04    115008    ----a-w-    c:\windows\system32\drivers\ehdrv.sys
2010-12-21 12:47 . 2010-12-21 12:47    95384    ----a-w-    c:\windows\system32\drivers\epfwwfpr.sys
2010-12-15 20:12 . 2010-12-03 06:09    48648    ----a-w-    c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
.

(((((((((((((((((((((((((((((((((((  Start steder i reg.basen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke 
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

[HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-11-13 20:58    3913000    ----a-w-    c:\program files\ConduitEngine\ConduitEngine.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
2010-11-13 20:58    3913000    ----a-w-    c:\program files\BitTorrentBar\tbBitT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-11-13 3913000]

[HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

[HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Servicer"="C:\Program Files" [X]
"Google Update"="c:\users\Husum\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-11-21 136176]
"Steam"="c:\program files\Steam\steam.exe" [2010-11-21 1242448]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760]
"hijack"="c:\users\Husum\Downloads\ijji_Gunz_Hack.exe" [2010-12-03 182342]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2010-11-22 2424560]
"BitTorrent"="c:\program files\BitTorrent\BitTorrent.exe" [2010-12-05 4765040]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-01-03 15028104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer"="c:\program files\CyberLink\Power2Go\CLMLSvc.exe" [2009-11-02 103720]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-06-02 9222760]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RtHDVBg.exe" [2010-06-02 1481320]
"HotkeyApp"="c:\program files\Launch Manager\HotkeyApp.exe" [2009-12-14 200704]
"LMgrVolOSD"="c:\program files\Launch Manager\OSD.exe" [2009-12-11 348960]
"Wbutton"="c:\program files\Launch Manager\Wbutton.exe" [2010-06-21 436264]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-04-27 113288]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2010-12-06 1910152]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 136216]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 171032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 170520]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-01-12 2219184]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-12-20 963976]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\nvinit.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages    REG_MULTI_SZ      kerberos msv1_0 schannel wdigest tspkg pku2u livessp

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [2010-10-21 4208208]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-05-24 193056]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
R3 WatAdminSvc;Tjenesten Windows Aktivering;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-21 1343400]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2010-07-26 19656]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-12-21 115008]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-12-21 137144]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 95384]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2010-12-06 1238408]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-07-27 1620584]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2010-11-30 2222376]
S2 TunngleService;TunngleService;c:\program files\Tunngle\TnglCtrl.exe [2010-11-22 718072]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-10 2320920]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 132480]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-06-21 246272]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-03-04 67624]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-04-27 64904]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-04-27 146568]
S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys [2010-03-02 1006624]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
S3 WisLMSvc;WisLMSvc;c:\program files\Launch Manager\WisLMSvc.exe [2009-10-23 118560]
S3 X10Hid;X10 Hid Device;c:\windows\System32\Drivers\x10hid.sys [2009-05-13 13720]

.
Indhold af mappen 'Planlagte Opgaver'

2011-02-18 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-326062004-138710607-191042899-1001Core.job
- c:\users\Husum\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-21 07:41]

2011-02-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-326062004-138710607-191042899-1001UA.job
- c:\users\Husum\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-21 07:41]
.
.
------- Yderligere scanning -------
.
uStart Page = hxxp://medion.msn.com
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/710-91768-17534-1/4
TCP: {91734A2F-C336-4BE9-8362-AA7479B0E354} = 208.67.222.222,208.67.220.220
TCP: 56C6566723 = 208.67.222.222,208.67.220.220
TCP: 6457C6C627164756 = 208.67.222.222,208.67.220.220
TCP: 84B4D2745756374737 = 208.67.222.222,208.67.220.220
.
- - - - TOMME GENVEJE FJERNET - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-Inicio Sistema Operativo - c:\windows\system32\Microsoft Corporation\Windows Update.exe
HKLM-Run-SynTPEnh - %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-Microsoft Actualizacion - c:\windows\system32\Microsoft Corporation\Windows Update.exe
SafeBoot-BsScanner



[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- LÅSTE REGISTRERINGS NØGLER ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andre kørende processer ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\progra~1\COMMON~1\X10\Common\x10nets.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\taskhost.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynTPEnh.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
c:\windows\system32\DllHost.exe
c:\windows\system32\sppsvc.exe
c:\windows\system32\DllHost.exe
.
**************************************************************************
.
Gennemført tid: 2011-02-25  11:54:30 - maskinen blev genstartet
ComboFix-quarantined-files.txt  2011-02-25 10:54

Pre-Kørsel: 488.230.215.680 byte ledig
Post-Kørsel: 488.146.771.968 byte ledig

- - End Of File - - 83F9106A966FE45DF5CCE67EB9D53B2A

Drop fildeling ->
http://www.spywarefri.dk/artikel/farerne-ved-fildeling/
http://www.spywarefri.dk/forum/viewthread/40284/

------

Højreklik på skrivebordet og vælg ny->tekstdokument og kopier det fremhævede ind og gem filen som CFScript

Killall::
Snapshot::
File::
c:\users\Husum\Downloads\ijji_Gunz_Hack.exe
Folder::
c:\program files\BitTorrentBar\
c:\program files\ConduitEngine\
c:\program files\BitTorrent\
Registry::
[-HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"=-
[-HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
[-HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hijack"=-
"BitTorrent"=-

Da Combofix kan konflikte med dine sikkerhedsprogrammer er det vigtigt at du deaktiverer dem.

Tag så fat i den nye fil med musen, og før den hen over Combofix-filen, hvorefter du "giver slip" med musen.
http://www.fromsej.saknet.dk/billeder/swfcombo.gif

Så skulle Combofix gerne give sig til at arbejde. Muligvis vil den kræve en genstart, hvilket du skal tillade. Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når Combofix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil combofix.txt som ligger her C:\Combofix.txt

Indholdet af denne fil må du gerne lægge herind.

Efter jeg har kørt combofix har den deaktiveret mit Geforce grafikkort og nu kan jeg ikke få det frem igen!

Hvis du ikke lægger en log herind, har jeg ikke en jordisk mulighed for, at vide hvad der er sket!!!!

der er ingen log efter sidste scanning kan ikke finde den i C\:

er det måsle denne? er ikke sikker

ComboFix 11-02-25.02 - Husum 26-02-2011  19:20:18.2.4 - x86
Microsoft Windows 7 Home Premium  6.1.7600.0.1252.45.1030.18.3253.1762 [GMT 1:00]
Kører fra: C:\Users\Husum\Downloads\ComboFix.exe
Kommandoer benyttet :: C:\Users\Husum\Desktop\CFScript.txt.txt
AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FILE ::
"c:\users\Husum\Downloads\ijji_Gunz_Hack.exe"
.

(((((((((((((((((((((((((((((((((((((((  Andet, der er slettet  )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\ConduitEngine\
c:\program files\ConduitEngine\\appContextMenu.xml
c:\program files\ConduitEngine\\ConduitEngine.dll
c:\program files\ConduitEngine\\ConduitEngineHelper.exe
c:\program files\ConduitEngine\\ConduitEngineUninstall.exe
c:\program files\ConduitEngine\\engineContextMenu.xml
c:\program files\ConduitEngine\\EngineSettings.json
c:\program files\ConduitEngine\\INSTALL.LOG
c:\program files\ConduitEngine\\toolbar.cfg
c:\users\Husum\Downloads\ijji_Gunz_Hack.exe

.
(((((((((((((((((((((((((((((  Filer skabt fra 2011-01-26 til 2011-02-26  )))))))))))))))))))))))))))))))))))
.

2011-02-26 18:35:26 . 2011-02-26 18:35:26    --------    d-----w-    C:\Users\Husum\AppData\Local\{8356F068-E537-451F-99BE-3A231BAFE5D8}
2011-02-26 18:32:54 . 2011-02-26 18:35:17    --------    d-----w-    C:\Users\Husum\AppData\Local\temp
2011-02-26 18:32:54 . 2011-02-26 18:32:54    --------    d-----w-    C:\Users\UpdatusUser\AppData\Local\temp
2011-02-26 18:32:54 . 2011-02-26 18:32:54    --------    d-----w-    C:\Users\Default\AppData\Local\temp
2011-02-26 17:49:09 . 2011-02-26 17:49:09    --------    d-----w-    C:\Users\Husum\AppData\Local\{D6D63843-5E81-4F6D-A910-217929D49637}
2011-02-25 14:24:42 . 2011-02-11 06:54:53    5943120    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D96E0B8-A0C2-41A0-9A89-4BA1619DE0E8}\mpengine.dll
2011-02-25 09:55:14 . 2011-02-25 09:55:47    --------    d-----w-    C:\Users\Husum\AppData\Local\{67251C19-B784-4330-8559-BBA5E8039552}
2011-02-24 17:25:49 . 2011-02-24 17:25:59    --------    d-----w-    C:\Users\Husum\AppData\Local\{4C210811-CB30-4D93-B235-63087B534F9D}
2011-02-23 12:24:36 . 2011-02-23 12:25:13    --------    d-----w-    C:\Users\Husum\AppData\Local\{0369938F-054A-4708-8ADE-34D58029FD66}
2011-02-23 09:10:34 . 2011-02-23 09:10:39    --------    d-----w-    C:\Users\Husum\AppData\Local\{83C833F0-3358-4B07-B0AF-55744E806BA7}
2011-02-22 12:41:00 . 2011-02-22 12:41:11    --------    d-----w-    C:\Users\Husum\AppData\Local\{0CB54051-24E7-4E3F-9CF2-3ED909B15BDF}
2011-02-22 12:28:26 . 2011-02-22 12:28:26    --------    d-----w-    C:\Users\Husum\AppData\Local\{A4A7B274-A297-49D2-9DF0-EA0DE897AD15}
2011-02-21 06:09:27 . 2011-02-21 06:09:37    --------    d-----w-    C:\Users\Husum\AppData\Local\{F7CA7738-0CC2-49F2-9DE8-1B41F7C12D5A}
2011-02-20 21:42:25 . 2011-02-20 21:42:25    --------    d-----w-    C:\Users\Husum\AppData\Roaming\Malwarebytes
2011-02-20 21:42:12 . 2010-12-20 17:09:00    38224    ----a-w-    C:\Windows\system32\drivers\mbamswissarmy.sys
2011-02-20 21:42:11 . 2011-02-20 21:42:11    --------    d-----w-    C:\ProgramData\Malwarebytes
2011-02-20 21:42:09 . 2011-02-20 21:42:12    --------    d-----w-    C:\Program Files\Malwarebytes' Anti-Malware
2011-02-20 21:42:09 . 2010-12-20 17:08:40    20952    ----a-w-    C:\Windows\system32\drivers\mbam.sys
2011-02-20 21:26:32 . 2011-02-20 21:29:45    --------    d-----w-    C:\Users\Husum\AppData\Roaming\GlarySoft
2011-02-20 21:26:31 . 2011-02-20 21:26:49    --------    d-----w-    C:\Program Files\Glary Registry Repair
2011-02-20 11:12:56 . 2011-02-20 11:13:06    --------    d-----w-    C:\Users\Husum\AppData\Local\{71C830E1-F824-41BE-AF92-5D09AB1C7D0E}
2011-02-19 17:21:13 . 2011-02-19 17:21:24    --------    d-----w-    C:\Users\Husum\AppData\Local\{7E705AE1-9F00-4A99-A503-04D9F841592D}
2011-02-18 13:47:23 . 2011-02-18 13:47:25    --------    d-----w-    C:\Program Files\RAR Password Cracker
2011-02-18 13:36:57 . 2011-02-18 13:37:06    --------    d-----w-    C:\Users\Husum\AppData\Local\{3AC5DB50-53E9-4ED6-A7C2-1EC3A21DA822}
2011-02-17 21:03:06 . 2011-02-17 21:03:16    --------    d-----w-    C:\Users\Husum\AppData\Local\{1BF3C5A8-EDB7-4B94-9200-2B9A043C5121}
2011-02-17 13:21:20 . 2011-02-17 13:21:20    --------    d-----w-    C:\Users\Husum\AppData\Local\{1E53D766-D505-44F9-938D-79972B64AAC2}
2011-02-16 23:29:15 . 2009-07-24 14:51:38    101248    ----a-w-    C:\Windows\system32\drivers\ewusbdev.sys
2011-02-16 17:30:24 . 2011-02-16 17:30:24    --------    d-----w-    C:\Users\Husum\AppData\Roaming\Vivox
2011-02-16 17:28:56 . 2011-02-16 18:17:54    --------    d-----w-    C:\Users\Husum\AppData\Roaming\IMVU
2011-02-16 14:51:34 . 2011-02-16 14:51:45    --------    d-----w-    C:\Users\Husum\AppData\Local\{308CA288-ADCA-4E9B-A7A7-2A6DA7A88E49}
2011-02-15 21:51:31 . 2011-02-15 21:52:03    --------    d-----w-    C:\Users\Husum\AppData\Local\{6B33ED7B-EF14-4D97-8961-B0FFC99DB068}
2011-02-15 12:05:41 . 2011-02-15 12:05:42    --------    d-----w-    C:\Users\Husum\.oces
2011-02-15 02:59:06 . 2011-02-15 03:01:32    --------    d-----w-    C:\Users\Husum\AppData\Roaming\dvdcss
2011-02-15 02:34:45 . 2011-02-15 02:35:11    --------    d-----w-    C:\Users\Husum\AppData\Local\{5959D2C7-8DB9-442A-A0E5-8109C03914E4}
2011-02-15 02:31:23 . 2011-02-15 02:31:23    --------    d-----w-    C:\found.000
2011-02-14 12:06:13 . 2011-02-14 12:06:52    --------    d-----w-    C:\Users\Husum\AppData\Local\{315653DE-2752-4F9B-8A83-2E78D5104DB1}
2011-02-14 02:14:32 . 2011-02-22 14:04:04    --------    d-----w-    C:\Users\Husum\AppData\Roaming\vlc
2011-02-14 02:13:48 . 2011-02-14 02:13:48    --------    d-----w-    C:\Program Files\VideoLAN
2011-02-13 21:54:26 . 2011-02-13 21:54:26    --------    d-----w-    C:\Users\Husum\AppData\Roaming\teamspeak2
2011-02-13 21:54:20 . 2011-02-13 21:54:20    34064    ----a-w-    C:\Windows\system32\lhacm.acm
2011-02-13 18:31:08 . 2011-02-13 18:31:08    --------    d-----w-    C:\Program Files\ESET
2011-02-13 16:07:46 . 2011-02-13 16:07:56    --------    d-----w-    C:\Users\Husum\AppData\Local\{2A7AC66A-F9F9-431E-8B39-A06740E270B5}
2011-02-12 16:26:02 . 2011-02-12 16:26:36    --------    d-----w-    C:\Users\Husum\AppData\Local\{C039D086-2135-4F36-995B-B7BEAF440BCF}
2011-02-11 23:21:41 . 2011-02-11 23:21:41    --------    d-----w-    C:\Users\Husum\AppData\Local\{27222E97-B671-4D6C-94F8-EA4B2F1C43C1}
2011-02-11 10:45:44 . 2011-02-11 10:45:44    --------    d-----w-    C:\Users\Husum\AppData\Local\Nem's Tools
2011-02-11 10:38:27 . 2011-02-11 10:38:27    --------    d-----w-    C:\Program Files\VTFEdit
2011-02-11 10:37:50 . 2011-02-11 10:37:50    --------    d-----w-    C:\Program Files\Nem's Tools
2011-02-11 09:48:24 . 2011-02-11 09:48:35    --------    d-----w-    C:\Users\Husum\AppData\Local\{0AF3E828-B6A7-458A-98FA-F45ECE9A21D4}
2011-02-10 10:58:12 . 2011-02-10 10:58:22    --------    d-----w-    C:\Users\Husum\AppData\Local\{5D217BD5-9B42-4920-BEF4-FC67CA73C2CB}
2011-02-10 10:38:13 . 2011-02-10 10:38:13    --------    d-----w-    C:\Users\Husum\AppData\Local\{89005686-0677-4690-84B5-E3867B3C81FF}
2011-02-09 23:01:50 . 2011-02-09 23:01:50    --------    d-----w-    C:\Users\Husum\AppData\Local\{5FCE0BBC-0449-4EEA-9557-0A0D0F21ACE4}
2011-02-09 14:41:04 . 2011-02-09 14:41:04    --------    d-----w-    C:\Users\Husum\AppData\Local\{2721EA07-FBC2-4230-AAE0-2287A07569EB}
2011-02-09 07:22:24 . 2011-02-09 07:22:27    --------    d-----w-    C:\Users\Husum\AppData\Local\{8D706466-2D86-4B6D-933D-44C1327FF0F6}
2011-02-08 21:25:45 . 2011-02-20 23:00:51    --------    d-----w-    C:\ProgramData\Tunngle
2011-02-08 21:25:45 . 2011-02-20 23:00:50    --------    d-----w-    C:\Users\Husum\AppData\Roaming\Tunngle
2011-02-08 21:25:43 . 2009-09-16 06:02:40    27136    ----a-w-    C:\Windows\system32\drivers\tap0901t.sys
2011-02-08 21:25:42 . 2011-02-08 21:26:29    --------    d-----w-    C:\Program Files\Tunngle
2011-02-08 10:25:54 . 2011-02-08 10:26:11    --------    d-----w-    C:\Users\Husum\AppData\Local\{A2BC49C9-19A1-470A-AA70-8A30EB95A509}
2011-02-08 07:28:32 . 2011-02-08 07:28:32    --------    d-----w-    C:\Program Files\Common Files\Intel Corporation
2011-02-07 22:12:07 . 2011-02-07 22:12:39    --------    d-----w-    C:\Users\Husum\AppData\Local\{8FDD886B-36F4-4212-9DD6-C3EAC7E19F44}
2011-02-07 21:38:14 . 2011-02-07 21:38:14    --------    d-----w-    C:\Users\Husum\AppData\Roaming\LolClient
2011-02-07 21:34:11 . 2008-07-12 07:18:52    467984    ----a-w-    C:\Windows\system32\d3dx10_39.dll
2011-02-07 21:34:11 . 2008-07-12 07:18:52    1493528    ----a-w-    C:\Windows\system32\D3DCompiler_39.dll
2011-02-07 21:34:10 . 2008-07-12 07:18:52    3851784    ----a-w-    C:\Windows\system32\D3DX9_39.dll
2011-02-07 21:29:46 . 2011-02-07 21:29:46    --------    d-----w-    C:\Riot Games
2011-02-07 21:02:39 . 2011-02-07 21:55:24    --------    d-----w-    C:\Users\Husum\AppData\Local\PMB Files
2011-02-07 21:02:38 . 2011-02-07 21:03:14    --------    d-----w-    C:\ProgramData\PMB Files
2011-02-07 21:02:26 . 2011-02-07 21:02:26    --------    d-----w-    C:\Program Files\Pando Networks
2011-02-07 08:58:26 . 2011-02-07 08:58:26    --------    d-----w-    C:\Users\Husum\AppData\Local\{3BCC7E99-53B6-4C16-B476-B0CA981FB259}
2011-02-07 07:29:10 . 2011-02-07 07:29:12    --------    d-----w-    C:\Users\Husum\AppData\Local\{1E966D1C-A4D0-4DAF-8324-E13472F19450}
2011-02-06 17:14:14 . 2011-02-06 17:14:30    --------    d-----w-    C:\Users\Husum\AppData\Local\{3D8A4AF7-73E2-4456-974D-526FC57104E7}
2011-02-06 11:18:53 . 2011-02-06 11:18:53    --------    d-----w-    C:\Users\Husum\AppData\Local\{C6288DDC-F737-4EBE-B8E3-1ED284356240}
2011-02-06 03:28:38 . 2011-02-06 03:28:38    --------    d-----w-    C:\Users\Husum\.thumbnails
2011-02-06 00:17:37 . 2011-02-06 00:17:37    --------    d-----w-    C:\Users\Husum\AppData\Local\{ADCDC382-FBD4-4E8A-A1A0-1BBD2940A695}
2011-02-05 09:53:44 . 2011-02-05 09:53:54    --------    d-----w-    C:\Users\Husum\AppData\Local\{6B96C13F-2957-47C4-BB3F-31EF3B006F9A}
2011-02-04 21:22:08 . 2011-02-20 22:40:26    --------    d-----w-    C:\Users\Husum\AppData\Roaming\gtk-2.0
2011-02-04 21:12:48 . 2011-02-20 22:56:00    --------    d-----w-    C:\Users\Husum\.gimp-2.6
2011-02-04 21:12:07 . 2011-02-04 21:12:11    --------    d-----w-    C:\Program Files\GIMP-2.0
2011-02-04 17:13:02 . 2011-02-04 17:13:12    --------    d-----w-    C:\Users\Husum\AppData\Local\{492A4ABF-D255-4E49-8B4D-6E8CD8DCD20C}
2011-02-04 11:07:35 . 2011-02-04 11:07:35    --------    d-----w-    C:\Users\Husum\AppData\Local\{DA6BA053-10F0-40C3-9F80-2D3ADF73ABF3}
2011-02-03 20:45:56 . 2011-02-03 20:45:56    --------    d-----w-    C:\Program Files\SystemRequirementsLab
2011-02-03 20:45:51 . 2011-02-03 20:45:51    --------    d-----w-    C:\Users\Husum\AppData\Roaming\SystemRequirementsLab
2011-02-03 18:29:00 . 2011-02-03 18:29:33    --------    d-----w-    C:\Users\Husum\AppData\Local\{36863D03-F7CD-4B12-98EC-72F6BCB9C660}
2011-02-03 09:57:10 . 2011-02-03 09:57:10    --------    d-----w-    C:\Users\Husum\AppData\Local\{4ED96F26-27FC-445E-BF7E-0FB72324989B}
2011-02-03 08:53:36 . 2011-02-03 08:53:36    --------    d-----w-    C:\Users\Husum\AppData\Local\{6CE5A3FE-B6B1-4D38-BE38-961E7DD1C498}
2011-02-03 08:40:36 . 2011-02-03 08:40:36    --------    d-----w-    C:\Users\Husum\AppData\Local\{6B5CB12B-FD1F-4008-9DE7-4A0F34DAA976}
2011-02-03 08:29:25 . 2011-02-03 08:29:25    --------    d-----w-    C:\Users\Husum\AppData\Local\{540C1EB7-4478-4D1C-A7E9-015062694F3D}
2011-02-03 07:43:20 . 2011-02-03 07:43:20    --------    d-----w-    C:\Users\Husum\AppData\Local\{1ED84620-B399-4F04-941D-CFAAE469D7C3}
2011-02-02 17:33:08 . 2011-02-02 17:35:39    --------    d-----w-    C:\Users\Husum\AppData\Roaming\TS3Client
2011-02-02 17:32:41 . 2011-02-02 17:32:45    --------    d-----w-    C:\Program Files\TeamSpeak 3 Client
2011-02-02 17:27:55 . 2011-02-02 17:28:05    --------    d-----w-    C:\Users\Husum\AppData\Local\{86619282-CA96-4693-9A4E-011A58D23D92}
2011-02-02 06:24:20 . 2011-02-02 06:24:20    --------    d-----w-    C:\Users\Husum\AppData\Local\{D8D6AED6-70A8-4B6E-991F-8A7862C2DC5D}
2011-02-01 11:15:47 . 2011-02-01 11:16:19    --------    d-----w-    C:\Users\Husum\AppData\Local\{3E80F416-6B37-40E5-BF6A-5A52F5168555}
2011-01-31 12:37:39 . 2011-01-31 12:38:12    --------    d-----w-    C:\Users\Husum\AppData\Local\{AD45383A-9945-4045-806C-E8CD5E303DCE}
2011-01-30 13:28:07 . 2011-01-30 13:28:07    --------    d-----w-    C:\Users\Husum\AppData\Local\{BB086ABA-0FDE-4589-82DA-E79FB8C9225B}
2011-01-29 14:18:54 . 2011-01-29 14:19:10    --------    d-----w-    C:\Users\Husum\AppData\Local\{1B2F6AE1-A6B2-45E9-8DDF-68BBA8ACA50E}
2011-01-28 10:50:24 . 2011-01-28 10:50:24    --------    d-----w-    C:\Users\Husum\AppData\Local\{9915B6B7-3DDA-4E51-AA82-9A842CC2D935}

.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-02 16:11:20 . 2010-07-06 21:02:39    222080    ------w-    C:\Windows\system32\MpSigStub.exe
2011-01-05 15:42:22 . 2010-12-14 19:35:04    48648    ----a-w-    C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-01-05 15:42:18 . 2010-12-15 20:12:12    335168    ----a-w-    C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-01-02 16:25:23 . 2010-12-02 20:04:52    952    --sha-w-    C:\ProgramData\KGyGaAvL.sys
2010-12-24 20:48:42 . 2010-12-03 06:09:44    335168    ----a-w-    C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-12-21 14:04:06 . 2010-12-21 14:04:06    137144    ----a-w-    C:\Windows\system32\drivers\eamonm.sys
2010-12-21 14:04:06 . 2010-12-21 14:04:06    115008    ----a-w-    C:\Windows\system32\drivers\ehdrv.sys
2010-12-21 12:47:38 . 2010-12-21 12:47:38    95384    ----a-w-    C:\Windows\system32\drivers\epfwwfpr.sys
2010-12-15 20:12:16 . 2010-12-03 06:09:49    48648    ----a-w-    C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
.

(((((((((((((((((((((((((((((((((((  Start steder i reg.basen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Servicer"="C:\Program Files" [X]
"Google Update"="C:\Users\Husum\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-11-21 07:41:20 136176]
"Steam"="C:\Program Files\Steam\steam.exe" [2010-11-21 07:50:17 1242448]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 01:54:18 4240760]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2010-11-22 16:29:41 2424560]
"BitTorrent"="C:\Program Files\BitTorrent\BitTorrent.exe" [2010-12-05 02:20:26 4765040]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2009-07-14 01:14:38 1173504]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2011-01-03 14:44:14 15028104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer"="C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" [2009-11-02 21:21:26 103720]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-06-02 14:42:24 9222760]
"RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe" [2010-06-02 14:42:18 1481320]
"HotkeyApp"="C:\Program Files\Launch Manager\HotkeyApp.exe" [2009-12-14 18:25:00 200704]
"LMgrVolOSD"="C:\Program Files\Launch Manager\OSD.exe" [2009-12-11 22:18:16 348960]
"Wbutton"="C:\Program Files\Launch Manager\Wbutton.exe" [2010-06-21 20:53:44 436264]
"NUSB3MON"="C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-04-27 08:09:52 113288]
"LogMeIn Hamachi Ui"="C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" [2010-12-06 07:31:52 1910152]
"IgfxTray"="C:\Windows\system32\igfxtray.exe" [2010-08-25 18:45:44 136216]
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [2010-08-25 18:45:36 171032]
"Persistence"="C:\Windows\system32\igfxpers.exe" [2010-08-25 18:45:40 170520]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-01-12 15:41:24 2219184]
"Malwarebytes' Anti-Malware (reboot)"="C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" [2010-12-20 17:08:46 963976]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\Windows\System32\nvinit.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages    REG_MULTI_SZ      kerberos msv1_0 schannel wdigest tspkg pku2u livessp

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 20:16:28 130384]
R3 hwusbfake;Huawei DataCard USB Fake;C:\Windows\system32\DRIVERS\ewusbfake.sys [x]
R3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des [2010-10-21 20:06:45 4208208]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys [2010-05-24 13:46:34 193056]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 22:02:52 139776]
R3 WatAdminSvc;Tjenesten Windows Aktivering;C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-21 14:04:14 1343400]
R4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 15:33:04 51040]
S0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys [2010-07-26 14:27:00 19656]
S1 ehdrv;ehdrv;C:\Windows\system32\DRIVERS\ehdrv.sys [2010-12-21 14:04:06 115008]
S1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 18:25:48 12872]
S1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 18:41:30 67656]
S1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-13 23:52:04 48128]
S2 eamonm;eamonm;C:\Windows\system32\DRIVERS\eamonm.sys [2010-12-21 14:04:06 137144]
S2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-12 15:41:42 810144]
S2 epfwwfpr;epfwwfpr;C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-12-21 12:47:38 95384]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-12-06 07:31:48 1238408]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 03:16:06 13336]
S2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-07-27 06:05:14 1620584]
S2 TeamViewer6;TeamViewer 6;C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2010-11-30 17:08:30 2222376]
S2 TunngleService;TunngleService;C:\Program Files\Tunngle\TnglCtrl.exe [2010-11-22 21:52:46 718072]
S2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-10 19:28:50 2320920]
S3 Impcd;Impcd;C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-26 21:01:22 132480]
S3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-06-21 07:14:36 246272]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\L1C62x86.sys [2010-03-04 15:53:08 67624]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-04-27 07:27:50 64904]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-04-27 07:28:46 146568]
S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;C:\Windows\system32\DRIVERS\rtl8192se.sys [2010-03-02 11:24:58 1006624]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 06:02:40 27136]
S3 WisLMSvc;WisLMSvc;C:\Program Files\Launch Manager\WisLMSvc.exe [2009-10-23 00:05:40 118560]
S3 X10Hid;X10 Hid Device;C:\Windows\System32\Drivers\x10hid.sys [2009-05-13 19:26:26 13720]

.
Indhold af mappen 'Planlagte Opgaver'

2011-02-26 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-326062004-138710607-191042899-1001Core.job
- C:\Users\Husum\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-21 07:41:22 . 2010-11-21 07:41:20]

2011-02-26 C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-326062004-138710607-191042899-1001UA.job
- C:\Users\Husum\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-21 07:41:22 . 2010-11-21 07:41:20]
.
.
------- Yderligere scanning -------
.
uStart Page = hxxp://medion.msn.com
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/710-91768-17534-1/4
TCP: {91734A2F-C336-4BE9-8362-AA7479B0E354} = 208.67.222.222,208.67.220.220
TCP: 56C6566723 = 208.67.222.222,208.67.220.220
TCP: 6457C6C627164756 = 208.67.222.222,208.67.220.220
TCP: 84B4D2745756374737 = 208.67.222.222,208.67.220.220
.
- - - - TOMME GENVEJE FJERNET - - - -

AddRemove-conduitEngine - C:\PROGRA~1\CONDUI~1\ConduitEngineUninstall.exe

Det CFScript du har kørt, er ikke det jeg har anvist!

Jeg fulgte det du gjorde Step4step

Lad være med at tro jeg er idiot. Du har klokket i det, og da du ikke gør som jeg "siger", må du selv finde ud af det.

Over and meget "out"

Jeg afmelder dit Spørgsmål.

idiot

Lukket