HJT-log

Helt enig - der er en del 'snyde' UØNSKEDE elementer ...

Afinstaler (hvis den er der)

* p2p networking

Gennemfør proceduren herfra -> http://www.eksperten.dk/artikler/1123 - så lader vi ComboFix mm. tygge på resten...

Her kommer hele baduljen:

********************************* ROOTCHK-(28-12-07)-LOG, by ejvindh
05-02-2008 10:05:18,59

NOTICE!! Rootchk is not being updated anymore, and is thus gradually getting outdated.
Last update was made 28-12-07

The rootkits that are detected by this tool were not found.

********************************* ROOTCHK-LOG-end


catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-05 10:06:04
Windows 5.1.2600 Service Pack 2
scanning hidden processes ...
IPC error: 2 Den angivne fil blev ikke fundet.

scanning hidden services ...

scanning hidden autostart entries ...

scanning hidden files ...
IPC error: 2 Den angivne fil blev ikke fundet.

hidden processes: 0
hidden services: 0
hidden files: 0

*******************************HJT

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:04:38, on 05-02-2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Acer\Empowering Technology\admServ.exe
C:\Acer\Empowering Technology\admtray.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\a?sembly\r?gsvr32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\DOCUME~1\ejer\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\ejer\Desktop\hjt\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://da.intl.acer.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\RunServices: [p2p networking] p2pnetworking.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Uzbhxg] "C:\Program Files\Common Files\a?sembly\r?gsvr32.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} (e-Safekey) - https://netbank.danskebank.dk/html/activex/e-Safekey/DB/e-Safekey.cab
O16 - DPF: {DC6FEBC5-0A2D-458A-A01B-5DB15EEC4305} (IlosoftImageUploadCtl Class) - http://webc.escortromantica.dk/controls/IlosoftImageUpload.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: qomjjih - qomjjih.dll (file missing)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 8661 bytes
*****************************HJT END

*****************************SuperAntiSpyware

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 02/05/2008 at 09:56 AM

Application Version : 3.7.1018

Core Rules Database Version : 3395
Trace Rules Database Version: 1387

Scan type      : Complete Scan
Total Scan Time : 01:03:48

Memory items scanned      : 167
Memory threats detected  : 0
Registry items scanned    : 5882
Registry threats detected : 2
File items scanned        : 38944
File threats detected    : 18

Adware.Vundo Variant
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks#{8CEFE835-8EBF-420F-AFA2-807008E32917}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks#{178D4E6A-BA5A-4ECB-8521-F7B8393FDB97}

Adware.ClickSpring/Outer Info Network
    C:\Program Files\Outerinfo\Terms.rtf
    C:\Program Files\Outerinfo\OiUninstaller.exe
    C:\Program Files\Outerinfo\outerinfo.ico
    C:\Program Files\Outerinfo

Trojan.Unknown Origin
    C:\WINDOWS\SYSTEM32\WINTICOM.EXE

Trojan.Downloader-Gen/BundleBase
    C:\WINDOWS\SYSTEM32\ARDCO07\ARDCO071084.EXE
    C:\WINDOWS\Prefetch\ARDCO071084.EXE-3B4CE526.pf

Adware.Vundo-Variant/Small
    C:\WINDOWS\SYSTEM32\IIFCDBA.DLL

Adware.AdRotator/RightOnz
    C:\WINDOWS\SYSTEM32\RIGHTONADZ-UNINST.EXE

Adware.Vundo Variant/Rel
    C:\WINDOWS\SYSTEM32\STUTV.INI
    C:\WINDOWS\SYSTEM32\STUTV.BAK1
    C:\WINDOWS\SYSTEM32\HJKMP.BAK1
    C:\WINDOWS\SYSTEM32\HJKMP.INI2

Adware.ClickSpring/Yazzle
    C:\WINDOWS\PREFETCH\YAZZLE1396OINADMIN.EXE-0D157DE0.PF
    C:\PROGRAM FILES\COMMON FILES\YAZZLE1396OINADMIN.EXE

Trojan.Downloader-Gen/MROFIN
    C:\WINDOWS\MROFINU1000137.EXE
    C:\WINDOWS\Prefetch\MROFINU1000137.EXE-09A09DEE.pf

Trojan.Unclassified/PackedInstaller
    C:\DOCUMENTS AND SETTINGS\EJER\APP.EXE

********************************************SuperAntiSpyware END

********************************************Combofix

ComboFix 08-02.05.3 - ejer 2008-02-05 10:12:15.1 - FAT32x86
Microsoft Windows XP Professional  5.1.2600.2.1252.45.1033.18.95 [GMT 1:00]
Running from: C:\Documents and Settings\ejer\Desktop\hjt\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\ejer\Application Data\WNSXS~1
C:\Documents and Settings\ejer\My Documents\MANTEC~1
C:\Documents and Settings\ejer\My Documents\MANTEC~1\??mantec\
C:\Program Files\Common Files\asembl~1
C:\Program Files\Common Files\asembl~1\r?gsvr32.exe
C:\Program Files\Common Files\fnts~1
C:\Program Files\Common Files\sks~1
C:\Program Files\ContextTool
C:\Program Files\ContextTool\ContextHelper.dat
C:\Program Files\ContextTool\pcre3.dll
C:\Program Files\ContextTool\uninstall.exe
C:\Program Files\Insider
C:\Program Files\Insider\Insider.exe
C:\Program Files\Insider\UnInstall.exe
C:\Program Files\Temporary
C:\Program Files\WinAble
C:\Temp\1cb
C:\Temp\1cb\syscheck.log
C:\Temp\xOe
C:\Temp\xOe\tOasF.log
C:\WINDOWS\cookies.ini
C:\WINDOWS\Fonts\a.zip
C:\WINDOWS\system32\CMMGR32.EXE
C:\WINDOWS\system32\dobe~1
C:\WINDOWS\system32\F15
C:\WINDOWS\system32\jodpviuo.ini
C:\WINDOWS\system32\ldinfo.ldr
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\oqtss.bak1
C:\WINDOWS\system32\oqtss.bak2
C:\WINDOWS\system32\oqtss.ini
C:\WINDOWS\system32\pac.txt
C:\WINDOWS\system32\rtvwa.bak1
C:\WINDOWS\system32\rtvwa.bak2
C:\WINDOWS\system32\rtvwa.ini
C:\WINDOWS\system32\stutv.bak2
C:\WINDOWS\system32\stutv.ini2
C:\WINDOWS\system32\stutv.tmp
C:\WINDOWS\system32\vMW04a
C:\WINDOWS\system32\vMW07a
C:\WINDOWS\system32\winlogo.exe
C:\WINDOWS\system32\ybdurfsg.ini2
C:\WINDOWS\system32\ybdurfsg.tmp
C:\WINDOWS\Fonts\'

.
(((((((((((((((((((((((((  Files Created from 2008-01-05 to 2008-02-05  )))))))))))))))))))))))))))))))
.

2008-02-05 08:40 . 2008-02-05 08:40    <DIR>    d--------    C:\Program Files\CCleaner
2008-02-05 00:03 . 2008-02-05 00:03    <DIR>    d--------    C:\Program Files\SpywareBlaster
2008-02-04 23:13 . 2008-02-04 23:13    <DIR>    d--hs----    C:\FOUND.002
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Program Files\Lavasoft
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-04 22:44 . 2008-02-04 22:44    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-04 20:33 . 2008-02-04 20:33    <DIR>    d--------    C:\Program Files\Spybot - Search & Destroy
2008-02-04 20:33 . 2008-02-04 20:33    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-02-04 20:30 . 2007-12-04 14:04    837,496    --a------    C:\WINDOWS\system32\aswBoot.exe
2008-02-04 20:30 . 2004-01-09 10:13    380,928    --a------    C:\WINDOWS\system32\actskin4.ocx
2008-02-04 20:30 . 2007-12-04 13:54    95,608    --a------    C:\WINDOWS\system32\AvastSS.scr
2008-02-04 20:30 . 2007-12-04 15:55    94,544    --a------    C:\WINDOWS\system32\drivers\aswmon2.sys
2008-02-04 20:30 . 2007-12-04 15:56    93,264    --a------    C:\WINDOWS\system32\drivers\aswmon.sys
2008-02-04 20:30 . 2007-12-04 15:51    42,912    --a------    C:\WINDOWS\system32\drivers\aswTdi.sys
2008-02-04 20:30 . 2007-12-04 15:49    26,624    --a------    C:\WINDOWS\system32\drivers\aavmker4.sys
2008-02-04 20:30 . 2007-12-04 15:53    23,152    --a------    C:\WINDOWS\system32\drivers\aswRdr.sys
2008-02-04 20:29 . 2008-02-04 20:30    <DIR>    d--------    C:\Program Files\Alwil Software
2008-02-04 20:16 . 2008-02-04 20:12    6,614    --ahs----    C:\WINDOWS\system32\hjkmp.ini
2008-02-04 19:24 . 2008-02-04 19:24    157    --a------    C:\WINDOWS\wininit.ini
2008-02-04 19:14 . 2007-09-24 23:31    69,632    --a------    C:\WINDOWS\system32\javacpl.cpl
2008-02-04 19:14 . 2008-02-04 19:31    6,560    ---hs----    C:\WINDOWS\system32\hjkmp.tmp
2008-02-04 19:11 . 2003-04-17 21:26    79    --a------    C:\WINDOWS\delay2.reg

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-04 21:55    9,344    ----a-w    C:\WINDOWS\system32\drivers\NSDriver.sys
2008-02-04 21:55    8,320    ----a-w    C:\WINDOWS\system32\drivers\AWRTRD.sys
2008-02-04 21:55    12,632    ----a-w    C:\WINDOWS\system32\lsdelete.exe
2008-02-04 19:19    25,214    ----a-w    C:\Program Files\B.ico
2008-02-04 19:19    25,214    ----a-w    C:\Program Files\A.ico
2008-02-04 19:19    218,486    ----a-w    C:\Program Files\c.zip
2008-02-04 19:19    217,586    ----a-w    C:\Program Files\b.zip
2008-02-04 19:19    217,586    ----a-w    C:\Program Files\a.zip
2007-12-30 09:57    224,242    ----a-w    C:\WINDOWS\system32\ste.exe
2007-12-11 07:09    ---------    d-----w    C:\Program Files\Lame MP3 Codec
2007-12-11 07:08    65,024    ----a-w    C:\WINDOWS\IFinst26.exe
2007-12-11 07:08    ---------    d-----w    C:\Program Files\XviD
2007-12-11 07:08    ---------    d-----w    C:\Program Files\MarkAny
2007-12-11 07:07    ---------    d-----w    C:\Program Files\Samsung
2007-12-10 12:48    ---------    d-----w    C:\Documents and Settings\ejer\Application Data\Creative
2007-12-10 12:42    ---------    d-----w    C:\Program Files\Creative
2007-12-07 09:49    ---------    d-----w    C:\Program Files\Google
2007-12-06 10:44    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\e-Safekey
2007-11-14 14:26    36,864    ----a-w    C:\Documents and Settings\ejer\winlogo.exe
2007-11-14 14:26    164    ----a-w    C:\Documents and Settings\ejer\0.bat
2007-11-10 09:03    218,486    ----a-w    C:\Program Files\zia03384
2007-11-07 09:26    721,920    ----a-w    C:\WINDOWS\system32\lsasrv.dll
2007-11-07 09:26    721,920    ----a-w    C:\WINDOWS\system32\dllcache\lsasrv.dll
2007-10-27 08:02    9,814    ----a-w    C:\Documents and Settings\ejer\rev.exe
2007-10-25 18:05    255    ----a-w    C:\Documents and Settings\ejer\6137.bat
2007-10-25 17:50    255    ----a-w    C:\Documents and Settings\ejer\7444.bat
2007-10-25 17:35    255    ----a-w    C:\Documents and Settings\ejer\8248.bat
2007-10-25 17:20    255    ----a-w    C:\Documents and Settings\ejer\6777.bat
2007-10-25 15:09    255    ----a-w    C:\Documents and Settings\ejer\9593.bat
2007-10-25 14:54    255    ----a-w    C:\Documents and Settings\ejer\4141.bat
2007-10-25 14:39    255    ----a-w    C:\Documents and Settings\ejer\3668.bat
2007-10-25 10:14    255    ----a-w    C:\Documents and Settings\ejer\1111.bat
2007-10-25 09:59    255    ----a-w    C:\Documents and Settings\ejer\9247.bat
2007-10-25 09:44    255    ----a-w    C:\Documents and Settings\ejer\4811.bat
2007-10-25 09:29    255    ----a-w    C:\Documents and Settings\ejer\8778.bat
2007-10-25 09:14    255    ----a-w    C:\Documents and Settings\ejer\3373.bat
2007-10-25 08:59    255    ----a-w    C:\Documents and Settings\ejer\5149.bat
2007-10-25 08:43    255    ----a-w    C:\Documents and Settings\ejer\1948.bat
2007-10-25 08:28    255    ----a-w    C:\Documents and Settings\ejer\2860.bat
2007-10-25 08:13    255    ----a-w    C:\Documents and Settings\ejer\4245.bat
2007-10-25 07:58    255    ----a-w    C:\Documents and Settings\ejer\9179.bat
2007-10-25 07:43    255    ----a-w    C:\Documents and Settings\ejer\4218.bat
2007-10-25 07:28    255    ----a-w    C:\Documents and Settings\ejer\8468.bat
2007-10-25 07:13    209    ----a-w    C:\Documents and Settings\ejer\9300.bat
2007-10-24 22:43    209    ----a-w    C:\Documents and Settings\ejer\9721.bat
2007-10-24 22:28    209    ----a-w    C:\Documents and Settings\ejer\5777.bat
2007-10-24 16:40    209    ----a-w    C:\Documents and Settings\ejer\9102.bat
2007-10-24 16:12    209    ----a-w    C:\Documents and Settings\ejer\4246.bat
2007-10-24 15:55    209    ----a-w    C:\Documents and Settings\ejer\7307.bat
2007-10-24 15:40    209    ----a-w    C:\Documents and Settings\ejer\6547.bat
2007-10-24 15:25    209    ----a-w    C:\Documents and Settings\ejer\1874.bat
2007-10-24 15:10    209    ----a-w    C:\Documents and Settings\ejer\7656.bat
2007-10-24 14:55    209    ----a-w    C:\Documents and Settings\ejer\5406.bat
2007-10-24 14:40    209    ----a-w    C:\Documents and Settings\ejer\4926.bat
2007-10-24 10:59    209    ----a-w    C:\Documents and Settings\ejer\9771.bat
2007-10-24 10:29    209    ----a-w    C:\Documents and Settings\ejer\9189.bat
2007-10-24 10:14    209    ----a-w    C:\Documents and Settings\ejer\7192.bat
2007-10-24 09:59    209    ----a-w    C:\Documents and Settings\ejer\9269.bat
2007-10-23 19:10    209    ----a-w    C:\Documents and Settings\ejer\7652.bat
2007-10-23 16:44    167    ----a-w    C:\Documents and Settings\ejer\1512.bat
2007-10-23 06:39    167    ----a-w    C:\Documents and Settings\ejer\8475.bat
2007-10-22 08:45    167    ----a-w    C:\Documents and Settings\ejer\5063.bat
2007-10-21 16:41    167    ----a-w    C:\Documents and Settings\ejer\1879.bat
2007-10-20 18:11    213    ----a-w    C:\Documents and Settings\ejer\7729.bat
2007-10-20 17:56    213    ----a-w    C:\Documents and Settings\ejer\4087.bat
2007-10-20 17:40    213    ----a-w    C:\Documents and Settings\ejer\8839.bat
2007-10-20 17:25    213    ----a-w    C:\Documents and Settings\ejer\9423.bat
2007-10-20 17:10    213    ----a-w    C:\Documents and Settings\ejer\4871.bat
2007-10-20 16:55    213    ----a-w    C:\Documents and Settings\ejer\5848.bat
2007-10-20 16:40    213    ----a-w    C:\Documents and Settings\ejer\1995.bat
2007-10-20 13:56    213    ----a-w    C:\Documents and Settings\ejer\8532.bat
2007-10-20 13:31    213    ----a-w    C:\Documents and Settings\ejer\7846.bat
2007-10-20 13:16    213    ----a-w    C:\Documents and Settings\ejer\5055.bat
2007-10-20 13:01    213    ----a-w    C:\Documents and Settings\ejer\4638.bat
2007-10-20 12:46    213    ----a-w    C:\Documents and Settings\ejer\4474.bat
2007-10-20 12:31    213    ----a-w    C:\Documents and Settings\ejer\2482.bat
2007-10-20 12:16    213    ----a-w    C:\Documents and Settings\ejer\1253.bat
2007-10-20 12:01    213    ----a-w    C:\Documents and Settings\ejer\6732.bat
2007-10-20 11:46    213    ----a-w    C:\Documents and Settings\ejer\9754.bat
2007-10-20 11:31    213    ----a-w    C:\Documents and Settings\ejer\5815.bat
2007-10-20 11:16    213    ----a-w    C:\Documents and Settings\ejer\2290.bat
2007-10-20 11:01    213    ----a-w    C:\Documents and Settings\ejer\8448.bat
2007-10-20 10:46    213    ----a-w    C:\Documents and Settings\ejer\7437.bat
2007-10-20 10:31    213    ----a-w    C:\Documents and Settings\ejer\8308.bat
2007-10-20 10:16    213    ----a-w    C:\Documents and Settings\ejer\4184.bat
2007-10-20 10:01    213    ----a-w    C:\Documents and Settings\ejer\5734.bat
2007-10-20 09:46    213    ----a-w    C:\Documents and Settings\ejer\8631.bat
2007-10-20 09:30    213    ----a-w    C:\Documents and Settings\ejer\9515.bat
2007-10-20 09:00    213    ----a-w    C:\Documents and Settings\ejer\5253.bat
2007-10-20 08:45    213    ----a-w    C:\Documents and Settings\ejer\6792.bat
2007-10-20 08:30    213    ----a-w    C:\Documents and Settings\ejer\7675.bat
2007-10-20 08:15    213    ----a-w    C:\Documents and Settings\ejer\3320.bat
2007-10-20 08:00    213    ----a-w    C:\Documents and Settings\ejer\3158.bat
2007-10-20 00:28    213    ----a-w    C:\Documents and Settings\ejer\4480.bat
2007-10-20 00:13    213    ----a-w    C:\Documents and Settings\ejer\9311.bat
2007-10-19 23:58    213    ----a-w    C:\Documents and Settings\ejer\4734.bat
2007-10-19 23:43    213    ----a-w    C:\Documents and Settings\ejer\3490.bat
2007-10-19 23:28    213    ----a-w    C:\Documents and Settings\ejer\2421.bat
2007-10-19 22:58    213    ----a-w    C:\Documents and Settings\ejer\3681.bat
2007-10-19 22:43    213    ----a-w    C:\Documents and Settings\ejer\8086.bat
2007-09-12 17:53    6,480    --sh--w    C:\WINDOWS\system32\gjkkj.bak1
2007-09-14 13:14    6,480    --sh--w    C:\WINDOWS\system32\mmllm.bak1
2007-09-14 19:02    6,775    --sh--w    C:\WINDOWS\system32\gjkkj.bak2
2007-09-15 17:36    6,440    --sh--w    C:\WINDOWS\system32\knnmp.bak1
2007-09-16 11:41    7,775    --sh--w    C:\WINDOWS\system32\hjllm.bak2
2007-09-17 11:42    7,832    --sh--w    C:\WINDOWS\system32\hjllm.bak1
2007-09-19 19:27    7,552    --sh--w    C:\WINDOWS\system32\knnmp.bak2
2007-09-23 08:33    317    --sh--w    C:\WINDOWS\system32\knnmp.ini2
2007-09-28 07:12    6,440    --sh--w    C:\WINDOWS\system32\gjjlm.bak1
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 20:00 15360]
"Uzbhxg"="C:\Program Files\Common Files\a?sembly\r?gsvr32.exe" [ ]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-12-18 19:52 68856]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-04-23 15:46 1318128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2006-03-23 12:17 94208]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2006-03-23 12:13 77824]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2006-03-23 12:17 118784]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 00:56 110592 C:\WINDOWS\system32\bthprops.cpl]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:56 64512]
"LaunchApp"="Alaunch" []
"RTHDCPL"="RTHDCPL.EXE" [2006-06-28 14:54 16248320 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [2006-05-16 18:04 2879488 C:\WINDOWS\SkyTel.exe]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [2005-12-21 15:02 53248]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 13:07 761946]
"ntiMUI"="C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2006-05-15 11:15 45056]
"ADMTray.exe"="C:\Acer\Empowering Technology\admtray.exe" [2005-10-24 16:45 2462208]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2005-12-27 15:50 69632]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-10 20:00 208952]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-10 20:00 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 20:00 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 20:00 455168]
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-08-10 19:29 352256]
"Acer ePower Management"="C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe" [2006-05-22 12:54 3080704]
"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2006-07-20 22:15 593920]
"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\Monitor.exe" [2006-01-24 18:00 397312]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 13:20 227328]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"SMSTray"="C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe" [2006-07-21 08:32 126976]
"MAAgent"="C:\Program Files\MarkAny\ContentSafer\MAAgent.exe" [2006-06-02 14:39 57344]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 20:00 15360]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 15:58 1744896]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [2002-02-04 22:17:13 65588]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"= C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL [2004-11-23 16:51 192512]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\qomjjih]
qomjjih.dll

R0 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 17:14]
R0 viaagp;VIA AGP Bus Filter;C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-03 23:07]
R1 OsaFsLoc;OsaFsLoc;C:\WINDOWS\system32\drivers\OsaFsLoc.sys [2005-10-15 18:20]
R2 int15.sys;int15.sys;C:\Acer\Empowering Technology\eRecovery\int15.sys [2005-01-13 14:46]
R2 osaio;osaio;C:\WINDOWS\system32\drivers\osaio.sys [2005-06-30 16:58]
R2 osanbm;osanbm;C:\WINDOWS\system32\drivers\osanbm.sys [2005-01-14 15:57]
R3 NdisFilt;OSA NdisFilter Protocol;C:\WINDOWS\system32\Drivers\NdisFilt.sys [2005-09-13 15:34]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{333c5bd6-50a8-11dc-98cb-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{333c5bd7-50a8-11dc-98cb-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c46f5c36-4ce6-11dc-98c4-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-05 10:17:42
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
"MAAgent"="C:\\Program Files\\MarkAny\\ContentSafer\\MAAgent.exe"
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\DOCUME~1\ejer\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Completion time: 2008-02-05 10:20:34 - machine was rebooted
ComboFix-quarantined-files.txt  2008-02-05 09:20:28
.
2008-02-04 23:23:01    --- E O F ---

Yffer Pyffer *** ComboFix har deleted en del 'snavs' samt fremvist en del andre underlige elementer mm.

Her er en længerer procedure ->

------------------

-- Hent Avenger her:
http://swandog46.geekstogo.com/avenger.zip

-- Pak Avenger-programmet ud og dobbeltklik på avenger.exe

-- Sæt en prik i "Input Script Manually" og klik på Luppen - nu dukker der et lille vindue op, hvor du skal kopiere indholdet mellem ~~~ skrift ind:

~~~~~~~~~~~~~~~~~~
Files to delete:

C:\Program Files\B.ico
C:\Program Files\A.ico
C:\Program Files\c.ico
C:\Program Files\b.ico
C:\Program Files\a.ico
C:\WINDOWS\system32\ste.exe
C:\WINDOWS\IFinst26.exe
C:\Documents and Settings\ejer\winlogo.exe
C:\Documents and Settings\ejer\0.bat
C:\Program Files\zia03384
C:\Documents and Settings\ejer\rev.exe
C:\WINDOWS\Fonts\svchost.exe
C:\DOCUME~1\ejer\MYDOCU~1\MANTEC~1\explorer.exe
C:\Documents and Settings\ejer\6137.bat
C:\Documents and Settings\ejer\7444.bat
C:\Documents and Settings\ejer\8248.bat
C:\Documents and Settings\ejer\6777.bat
C:\Documents and Settings\ejer\9593.bat
C:\Documents and Settings\ejer\4141.bat
C:\Documents and Settings\ejer\3668.bat
C:\Documents and Settings\ejer\1111.bat
C:\Documents and Settings\ejer\9247.bat
C:\Documents and Settings\ejer\4811.bat
C:\Documents and Settings\ejer\8778.bat
C:\Documents and Settings\ejer\3373.bat
C:\Documents and Settings\ejer\5149.bat
C:\Documents and Settings\ejer\1948.bat
C:\Documents and Settings\ejer\2860.bat
C:\Documents and Settings\ejer\4245.bat
C:\Documents and Settings\ejer\9179.bat
C:\Documents and Settings\ejer\4218.bat
C:\Documents and Settings\ejer\8468.bat
C:\Documents and Settings\ejer\9300.bat
C:\Documents and Settings\ejer\9721.bat
C:\Documents and Settings\ejer\5777.bat
C:\Documents and Settings\ejer\9102.bat
C:\Documents and Settings\ejer\4246.bat
C:\Documents and Settings\ejer\7307.bat
C:\Documents and Settings\ejer\6547.bat
C:\Documents and Settings\ejer\1874.bat
C:\Documents and Settings\ejer\7656.bat
C:\Documents and Settings\ejer\5406.bat
C:\Documents and Settings\ejer\4926.bat
C:\Documents and Settings\ejer\9771.bat
C:\Documents and Settings\ejer\9189.bat
C:\Documents and Settings\ejer\7192.bat
C:\Documents and Settings\ejer\9269.bat
C:\Documents and Settings\ejer\7652.bat
C:\Documents and Settings\ejer\1512.bat
C:\Documents and Settings\ejer\8475.bat
C:\Documents and Settings\ejer\5063.bat
C:\Documents and Settings\ejer\1879.bat
C:\Documents and Settings\ejer\7729.bat
C:\Documents and Settings\ejer\4087.bat
C:\Documents and Settings\ejer\8839.bat
C:\Documents and Settings\ejer\9423.bat
C:\Documents and Settings\ejer\4871.bat
C:\Documents and Settings\ejer\5848.bat
C:\Documents and Settings\ejer\1995.bat
C:\Documents and Settings\ejer\8532.bat
C:\Documents and Settings\ejer\7846.bat
C:\Documents and Settings\ejer\5055.bat
C:\Documents and Settings\ejer\4638.bat
C:\Documents and Settings\ejer\4474.bat
C:\Documents and Settings\ejer\2482.bat
C:\Documents and Settings\ejer\1253.bat
C:\Documents and Settings\ejer\6732.bat
C:\Documents and Settings\ejer\9754.bat
C:\Documents and Settings\ejer\5815.bat
C:\Documents and Settings\ejer\2290.bat
C:\Documents and Settings\ejer\8448.bat
C:\Documents and Settings\ejer\7437.bat
C:\Documents and Settings\ejer\8308.bat
C:\Documents and Settings\ejer\4184.bat
C:\Documents and Settings\ejer\5734.bat
C:\Documents and Settings\ejer\8631.bat
C:\Documents and Settings\ejer\9515.bat
C:\Documents and Settings\ejer\5253.bat
C:\Documents and Settings\ejer\6792.bat
C:\Documents and Settings\ejer\7675.bat
C:\Documents and Settings\ejer\3320.bat
C:\Documents and Settings\ejer\3158.bat
C:\Documents and Settings\ejer\4480.bat
C:\Documents and Settings\ejer\9311.bat
C:\Documents and Settings\ejer\4734.bat
C:\Documents and Settings\ejer\3490.bat
C:\Documents and Settings\ejer\2421.bat
C:\Documents and Settings\ejer\3681.bat
C:\Documents and Settings\ejer\8086.bat
C:\WINDOWS\system32\gjkkj.bak1
C:\WINDOWS\system32\mmllm.bak1
C:\WINDOWS\system32\gjkkj.bak2
C:\WINDOWS\system32\knnmp.bak1
C:\WINDOWS\system32\hjllm.bak2
C:\WINDOWS\system32\hjllm.bak1
C:\WINDOWS\system32\knnmp.bak2
C:\WINDOWS\system32\knnmp.ini2
C:\WINDOWS\system32\gjjlm.bak1

C:\WINDOWS\system32\dllhost.exe

Folders to delete:
C:\Program Files\Common Files\a?sembly\

~~~~~~~~~~~~~~~~~~

------------------

-- Klik på Trafiklyset i Avenger. Programmet vil opfordre dig til at genstarte computeren straks, hvilket du skal gøre. Programmet vil lukke din computer, slette filerne og starte computeren igen.

-- Efter genstarten vil der dukke et notepad-vindue op, med en log for Avengers handlinger. Den må du gerne lægge ind i dit næste svar.

-- Kør Hijackthis, vælg "Do a system scan only", sæt flueben ved linierne listet her, luk alle vinduer undtaget Hijackthis, klik på fix checked.

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://da.intl.acer.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll

O4 - HKLM\..\Run: [Host Process] C:\WINDOWS\Fonts\svchost.exe
O4 - HKCU\..\Run: [Etrh] "C:\DOCUME~1\ejer\MYDOCU~1\MANTEC~1\explorer.exe" -vt yazb
O4 - HKLM\..\RunServices: [p2p networking] p2pnetworking.exe
O4 - HKCU\..\Run: [Uzbhxg] "C:\Program Files\Common Files\a?sembly\r?gsvr32.exe"

O20 - Winlogon Notify: qomjjih - qomjjih.dll (file missing)


Genstart computeren, og lav en ny log med Hijackthis, som du lægger herind sammen med loggen fra Avenger.

Her kommer de to logs:

*****************HJT******************

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:47:27, on 05-02-2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Acer\Empowering Technology\admtray.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\DOCUME~1\ejer\LOCALS~1\Temp\RtkBtMnt.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Documents and Settings\ejer\Desktop\hjt\HiJackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} (e-Safekey) - https://netbank.danskebank.dk/html/activex/e-Safekey/DB/e-Safekey.cab
O16 - DPF: {DC6FEBC5-0A2D-458A-A01B-5DB15EEC4305} (IlosoftImageUploadCtl Class) - http://webc.escortromantica.dk/controls/IlosoftImageUpload.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: COM+ System Application (COMSysApp) - Unknown owner - C:\WINDOWS\system32\dllhost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: MS Software Shadow Copy Provider (SwPrv) - Unknown owner - C:\WINDOWS\system32\dllhost.exe (file missing)
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 7762 bytes

**********************HJT END**********************

**********************AVENGER**********************

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\qoquwrnb

*******************

Script file located at: \??\C:\WINDOWS\system32\aqbcuaxe.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

File C:\Program Files\B.ico deleted successfully.
File C:\Program Files\A.ico deleted successfully.


File C:\Program Files\c.ico not found!
Deletion of file C:\Program Files\c.ico failed!

Could not process line:
C:\Program Files\c.ico
Status: 0xc0000034



File C:\Program Files\b.ico not found!
Deletion of file C:\Program Files\b.ico failed!

Could not process line:
C:\Program Files\b.ico
Status: 0xc0000034



File C:\Program Files\a.ico not found!
Deletion of file C:\Program Files\a.ico failed!

Could not process line:
C:\Program Files\a.ico
Status: 0xc0000034

File C:\WINDOWS\system32\ste.exe deleted successfully.
File C:\WINDOWS\IFinst26.exe deleted successfully.
File C:\Documents and Settings\ejer\winlogo.exe deleted successfully.


Could not open file C:\Documents and Settings\ejer\0.bat for deletion
Deletion of file C:\Documents and Settings\ejer\0.bat failed!

Could not process line:
C:\Documents and Settings\ejer\0.bat
Status: 0xc0000033

File C:\Program Files\zia03384 deleted successfully.
File C:\Documents and Settings\ejer\rev.exe deleted successfully.


File C:\WINDOWS\Fonts\svchost.exe not found!
Deletion of file C:\WINDOWS\Fonts\svchost.exe failed!

Could not process line:
C:\WINDOWS\Fonts\svchost.exe
Status: 0xc0000034



Could not open file C:\DOCUME~1\ejer\MYDOCU~1\MANTEC~1\explorer.exe for deletion
Deletion of file C:\DOCUME~1\ejer\MYDOCU~1\MANTEC~1\explorer.exe failed!

Could not process line:
C:\DOCUME~1\ejer\MYDOCU~1\MANTEC~1\explorer.exe
Status: 0xc000003a

File C:\Documents and Settings\ejer\6137.bat deleted successfully.
File C:\Documents and Settings\ejer\7444.bat deleted successfully.
File C:\Documents and Settings\ejer\8248.bat deleted successfully.
File C:\Documents and Settings\ejer\6777.bat deleted successfully.
File C:\Documents and Settings\ejer\9593.bat deleted successfully.
File C:\Documents and Settings\ejer\4141.bat deleted successfully.
File C:\Documents and Settings\ejer\3668.bat deleted successfully.
File C:\Documents and Settings\ejer\1111.bat deleted successfully.
File C:\Documents and Settings\ejer\9247.bat deleted successfully.
File C:\Documents and Settings\ejer\4811.bat deleted successfully.
File C:\Documents and Settings\ejer\8778.bat deleted successfully.
File C:\Documents and Settings\ejer\3373.bat deleted successfully.
File C:\Documents and Settings\ejer\5149.bat deleted successfully.
File C:\Documents and Settings\ejer\1948.bat deleted successfully.
File C:\Documents and Settings\ejer\2860.bat deleted successfully.
File C:\Documents and Settings\ejer\4245.bat deleted successfully.
File C:\Documents and Settings\ejer\9179.bat deleted successfully.
File C:\Documents and Settings\ejer\4218.bat deleted successfully.
File C:\Documents and Settings\ejer\8468.bat deleted successfully.
File C:\Documents and Settings\ejer\9300.bat deleted successfully.
File C:\Documents and Settings\ejer\9721.bat deleted successfully.
File C:\Documents and Settings\ejer\5777.bat deleted successfully.
File C:\Documents and Settings\ejer\9102.bat deleted successfully.
File C:\Documents and Settings\ejer\4246.bat deleted successfully.
File C:\Documents and Settings\ejer\7307.bat deleted successfully.
File C:\Documents and Settings\ejer\6547.bat deleted successfully.
File C:\Documents and Settings\ejer\1874.bat deleted successfully.
File C:\Documents and Settings\ejer\7656.bat deleted successfully.
File C:\Documents and Settings\ejer\5406.bat deleted successfully.
File C:\Documents and Settings\ejer\4926.bat deleted successfully.
File C:\Documents and Settings\ejer\9771.bat deleted successfully.
File C:\Documents and Settings\ejer\9189.bat deleted successfully.
File C:\Documents and Settings\ejer\7192.bat deleted successfully.
File C:\Documents and Settings\ejer\9269.bat deleted successfully.
File C:\Documents and Settings\ejer\7652.bat deleted successfully.
File C:\Documents and Settings\ejer\1512.bat deleted successfully.
File C:\Documents and Settings\ejer\8475.bat deleted successfully.
File C:\Documents and Settings\ejer\5063.bat deleted successfully.
File C:\Documents and Settings\ejer\1879.bat deleted successfully.
File C:\Documents and Settings\ejer\7729.bat deleted successfully.
File C:\Documents and Settings\ejer\4087.bat deleted successfully.
File C:\Documents and Settings\ejer\8839.bat deleted successfully.
File C:\Documents and Settings\ejer\9423.bat deleted successfully.
File C:\Documents and Settings\ejer\4871.bat deleted successfully.
File C:\Documents and Settings\ejer\5848.bat deleted successfully.
File C:\Documents and Settings\ejer\1995.bat deleted successfully.
File C:\Documents and Settings\ejer\8532.bat deleted successfully.
File C:\Documents and Settings\ejer\7846.bat deleted successfully.
File C:\Documents and Settings\ejer\5055.bat deleted successfully.
File C:\Documents and Settings\ejer\4638.bat deleted successfully.
File C:\Documents and Settings\ejer\4474.bat deleted successfully.
File C:\Documents and Settings\ejer\2482.bat deleted successfully.
File C:\Documents and Settings\ejer\1253.bat deleted successfully.
File C:\Documents and Settings\ejer\6732.bat deleted successfully.
File C:\Documents and Settings\ejer\9754.bat deleted successfully.
File C:\Documents and Settings\ejer\5815.bat deleted successfully.
File C:\Documents and Settings\ejer\2290.bat deleted successfully.
File C:\Documents and Settings\ejer\8448.bat deleted successfully.
File C:\Documents and Settings\ejer\7437.bat deleted successfully.
File C:\Documents and Settings\ejer\8308.bat deleted successfully.
File C:\Documents and Settings\ejer\4184.bat deleted successfully.
File C:\Documents and Settings\ejer\5734.bat deleted successfully.
File C:\Documents and Settings\ejer\8631.bat deleted successfully.
File C:\Documents and Settings\ejer\9515.bat deleted successfully.
File C:\Documents and Settings\ejer\5253.bat deleted successfully.
File C:\Documents and Settings\ejer\6792.bat deleted successfully.
File C:\Documents and Settings\ejer\7675.bat deleted successfully.
File C:\Documents and Settings\ejer\3320.bat deleted successfully.
File C:\Documents and Settings\ejer\3158.bat deleted successfully.
File C:\Documents and Settings\ejer\4480.bat deleted successfully.
File C:\Documents and Settings\ejer\9311.bat deleted successfully.
File C:\Documents and Settings\ejer\4734.bat deleted successfully.
File C:\Documents and Settings\ejer\3490.bat deleted successfully.
File C:\Documents and Settings\ejer\2421.bat deleted successfully.
File C:\Documents and Settings\ejer\3681.bat deleted successfully.
File C:\Documents and Settings\ejer\8086.bat deleted successfully.
File C:\WINDOWS\system32\gjkkj.bak1 deleted successfully.
File C:\WINDOWS\system32\mmllm.bak1 deleted successfully.
File C:\WINDOWS\system32\gjkkj.bak2 deleted successfully.
File C:\WINDOWS\system32\knnmp.bak1 deleted successfully.
File C:\WINDOWS\system32\hjllm.bak2 deleted successfully.
File C:\WINDOWS\system32\hjllm.bak1 deleted successfully.
File C:\WINDOWS\system32\knnmp.bak2 deleted successfully.
File C:\WINDOWS\system32\knnmp.ini2 deleted successfully.
File C:\WINDOWS\system32\gjjlm.bak1 deleted successfully.
File C:\WINDOWS\system32\dllhost.exe deleted successfully.


Could not open folder C:\Program Files\Common Files\a?sembly for deletion
Deletion of folder C:\Program Files\Common Files\a?sembly failed!

Could not process line:
C:\Program Files\Common Files\a?sembly
Status: 0xc0000033


Completed script processing.

*******************

Finished!  Terminate.

***********************AVENGER END****************

Klik på Start->Kør skriv Services.msc og klik OK.
Find Tjenesten (Hvis den er der)
* COM+ System Application (COMSysApp)
* MS Software Shadow Copy Provider (SwPrv)
stop den hvis den kører, højreklik på den og vælg Starttype Deaktiveret.

------------------------------------------------------------------------

Kør en scanning med Hijackthis,
Du får herunder nogle filer, som du skal fixe. Det, du skal gøre, er at sætte et flueben ud for disse filer. Når du har gjort det, så lukker du alle andre vinduer ned. Det er meget vigtigt at det eneste vindue, som er åbent er HijackThis vinduet. Husk også at lukke dette vindue, når du har markeret filerne. Nu må du fixe. Klik på Fix checked.

Det er disse, som skal fixes:

O23 - Service: COM+ System Application (COMSysApp) - Unknown owner - C:\WINDOWS\system32\dllhost.exe (file missing)
O23 - Service: MS Software Shadow Copy Provider (SwPrv) - Unknown owner - C:\WINDOWS\system32\dllhost.exe (file missing)

------------------------------------------------------------------------

Registreringsdatabase oprydning ->
RegCleaner http://www.ccleaner.com/ + http://www.spywarefri.dk/manualer/ccleaner-manual.htm (Specielt punktet [Register]...)
Under installationen får du tilbudt [Yahoo Toolbar]. Du kan sige ja eller NEJ til den.

------------------------------------------------------------------------

Hvordan kører PC'en så nu ?

Når man tænker på at man slet ikke kunne komme ind i den, da jeg fik den, så går det jo betydligt bedre nu. Den er lidt langsom i starten og når den skal lukke ned. Men det kan være mig der har fjernet nogle filer der ikke skulle fjernes. Deletede en masse filer da jeg rensede den for win32 virus. Men det er bare at få fat i en skive (hader de der forinstallerede OEM versioner) og køre en repair.

Men jeg tager det sidste når jeg kommer hjem. Læg bare et svar og TUSINDE tak for hjælpen.

Lav lige en frisk Combofixlog, der kan være rystet noget skidt løst, som først kan ses nu.

De to filer i registreringsdatabasen var sat til manuel og fandtes heller ikke i HJT. Men de er deaktiveret nu.

******************HJT***********************

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:46:36, on 06-02-2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Acer\Empowering Technology\admtray.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\DOCUME~1\ejer\LOCALS~1\Temp\RtkBtMnt.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Documents and Settings\ejer\Desktop\hjt\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} (e-Safekey) - https://netbank.danskebank.dk/html/activex/e-Safekey/DB/e-Safekey.cab
O16 - DPF: {DC6FEBC5-0A2D-458A-A01B-5DB15EEC4305} (IlosoftImageUploadCtl Class) - http://webc.escortromantica.dk/controls/IlosoftImageUpload.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

--
End of file - 7648 bytes

**************************HJT END********************

***********************ComboFix******************

ComboFix 08-02.05.3 - ejer 2008-02-06 18:52:49.2 - FAT32x86
Microsoft Windows XP Professional  5.1.2600.2.1252.45.1033.18.122 [GMT 1:00]
Running from: C:\Documents and Settings\ejer\Desktop\hjt\ComboFix.exe

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

(((((((((((((((((((((((((  Files Created from 2008-01-06 to 2008-02-06  )))))))))))))))))))))))))))))))
.

2008-02-05 10:44 . 2007-12-04 14:04    837,496    --a------    C:\WINDOWS\system32\aswBoot.exe
2008-02-05 10:44 . 2004-01-09 10:13    380,928    --a------    C:\WINDOWS\system32\actskin4.ocx
2008-02-05 10:44 . 2007-12-04 13:54    95,608    --a------    C:\WINDOWS\system32\AvastSS.scr
2008-02-05 10:44 . 2007-12-04 15:55    94,544    --a------    C:\WINDOWS\system32\drivers\aswmon2.sys
2008-02-05 10:44 . 2007-12-04 15:56    93,264    --a------    C:\WINDOWS\system32\drivers\aswmon.sys
2008-02-05 10:44 . 2007-12-04 15:51    42,912    --a------    C:\WINDOWS\system32\drivers\aswTdi.sys
2008-02-05 10:44 . 2007-12-04 15:49    26,624    --a------    C:\WINDOWS\system32\drivers\aavmker4.sys
2008-02-05 10:44 . 2007-12-04 15:53    23,152    --a------    C:\WINDOWS\system32\drivers\aswRdr.sys
2008-02-05 08:40 . 2008-02-05 08:40    <DIR>    d--------    C:\Program Files\CCleaner
2008-02-05 00:03 . 2008-02-05 00:03    <DIR>    d--------    C:\Program Files\SpywareBlaster
2008-02-04 23:13 . 2008-02-04 23:13    <DIR>    d--hs----    C:\FOUND.002
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Program Files\Lavasoft
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-04 22:44 . 2008-02-04 22:44    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-04 20:33 . 2008-02-04 20:33    <DIR>    d--------    C:\Program Files\Spybot - Search & Destroy
2008-02-04 20:33 . 2008-02-04 20:33    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-02-04 20:29 . 2008-02-04 20:30    <DIR>    d--------    C:\Program Files\Alwil Software
2008-02-04 20:16 . 2008-02-04 20:12    6,614    --ahs----    C:\WINDOWS\system32\hjkmp.ini
2008-02-04 19:24 . 2008-02-04 19:24    157    --a------    C:\WINDOWS\wininit.ini
2008-02-04 19:14 . 2007-09-24 23:31    69,632    --a------    C:\WINDOWS\system32\javacpl.cpl
2008-02-04 19:14 . 2008-02-04 19:31    6,560    ---hs----    C:\WINDOWS\system32\hjkmp.tmp
2008-02-04 19:11 . 2003-04-17 21:26    79    --a------    C:\WINDOWS\delay2.reg

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-04 21:55    9,344    ----a-w    C:\WINDOWS\system32\drivers\NSDriver.sys
2008-02-04 21:55    8,320    ----a-w    C:\WINDOWS\system32\drivers\AWRTRD.sys
2008-02-04 21:55    12,632    ----a-w    C:\WINDOWS\system32\lsdelete.exe
2008-02-04 19:19    218,486    ----a-w    C:\Program Files\c.zip
2008-02-04 19:19    217,586    ----a-w    C:\Program Files\b.zip
2008-02-04 19:19    217,586    ----a-w    C:\Program Files\a.zip
2007-12-11 07:09    ---------    d-----w    C:\Program Files\Lame MP3 Codec
2007-12-11 07:08    ---------    d-----w    C:\Program Files\XviD
2007-12-11 07:08    ---------    d-----w    C:\Program Files\MarkAny
2007-12-11 07:07    ---------    d-----w    C:\Program Files\Samsung
2007-12-10 12:48    ---------    d-----w    C:\Documents and Settings\ejer\Application Data\Creative
2007-12-10 12:42    ---------    d-----w    C:\Program Files\Creative
2007-12-07 09:49    ---------    d-----w    C:\Program Files\Google
2007-12-06 10:44    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\e-Safekey
2007-11-14 14:26    164    ----a-w    C:\Documents and Settings\ejer\0.bat
2007-11-07 09:26    721,920    ----a-w    C:\WINDOWS\system32\lsasrv.dll
2007-11-07 09:26    721,920    ----a-w    C:\WINDOWS\system32\dllcache\lsasrv.dll
2007-10-19 22:28    213    ----a-w    C:\Documents and Settings\ejer\3162.bat
2007-10-19 22:12    213    ----a-w    C:\Documents and Settings\ejer\3708.bat
2007-10-19 21:57    213    ----a-w    C:\Documents and Settings\ejer\4406.bat
2007-10-19 21:42    213    ----a-w    C:\Documents and Settings\ejer\3658.bat
2007-10-19 21:27    213    ----a-w    C:\Documents and Settings\ejer\3874.bat
2007-10-19 21:12    213    ----a-w    C:\Documents and Settings\ejer\5008.bat
2007-10-19 20:57    213    ----a-w    C:\Documents and Settings\ejer\2148.bat
2007-10-19 20:42    213    ----a-w    C:\Documents and Settings\ejer\7013.bat
2007-10-19 20:27    213    ----a-w    C:\Documents and Settings\ejer\6699.bat
2007-10-19 20:12    213    ----a-w    C:\Documents and Settings\ejer\4253.bat
2007-10-19 19:57    213    ----a-w    C:\Documents and Settings\ejer\6581.bat
2007-10-19 19:42    213    ----a-w    C:\Documents and Settings\ejer\7248.bat
2007-10-19 19:27    213    ----a-w    C:\Documents and Settings\ejer\4046.bat
2007-10-19 19:11    213    ----a-w    C:\Documents and Settings\ejer\6822.bat
2007-10-19 18:56    213    ----a-w    C:\Documents and Settings\ejer\5671.bat
2007-10-19 18:41    213    ----a-w    C:\Documents and Settings\ejer\1040.bat
2007-10-19 18:26    213    ----a-w    C:\Documents and Settings\ejer\4674.bat
2007-10-19 18:11    213    ----a-w    C:\Documents and Settings\ejer\4250.bat
2007-10-19 17:56    213    ----a-w    C:\Documents and Settings\ejer\9897.bat
2007-10-19 10:39    213    ----a-w    C:\Documents and Settings\ejer\3746.bat
2007-10-19 10:24    213    ----a-w    C:\Documents and Settings\ejer\9700.bat
2007-10-19 10:09    213    ----a-w    C:\Documents and Settings\ejer\9098.bat
2007-10-19 09:54    213    ----a-w    C:\Documents and Settings\ejer\1616.bat
2007-10-19 09:39    213    ----a-w    C:\Documents and Settings\ejer\1397.bat
2007-10-19 09:24    213    ----a-w    C:\Documents and Settings\ejer\6862.bat
2007-10-18 11:57    213    ----a-w    C:\Documents and Settings\ejer\3371.bat
2007-10-18 11:46    213    ----a-w    C:\Documents and Settings\ejer\9186.bat
2007-10-18 11:25    213    ----a-w    C:\Documents and Settings\ejer\4288.bat
2007-10-18 11:00    213    ----a-w    C:\Documents and Settings\ejer\6164.bat
2007-10-18 10:33    213    ----a-w    C:\Documents and Settings\ejer\2773.bat
2007-10-18 10:18    213    ----a-w    C:\Documents and Settings\ejer\9750.bat
2007-10-18 10:03    213    ----a-w    C:\Documents and Settings\ejer\5829.bat
2007-10-18 09:48    213    ----a-w    C:\Documents and Settings\ejer\9167.bat
2007-10-18 09:33    213    ----a-w    C:\Documents and Settings\ejer\8013.bat
2007-10-18 09:18    213    ----a-w    C:\Documents and Settings\ejer\9865.bat
2007-10-18 09:02    213    ----a-w    C:\Documents and Settings\ejer\4726.bat
2007-10-18 08:47    213    ----a-w    C:\Documents and Settings\ejer\2059.bat
2007-10-18 08:32    213    ----a-w    C:\Documents and Settings\ejer\5372.bat
2007-10-18 08:17    213    ----a-w    C:\Documents and Settings\ejer\3228.bat
2007-10-18 08:02    213    ----a-w    C:\Documents and Settings\ejer\4716.bat
2007-10-18 07:47    213    ----a-w    C:\Documents and Settings\ejer\4202.bat
2007-10-18 07:32    213    ----a-w    C:\Documents and Settings\ejer\4254.bat
2007-10-17 21:03    213    ----a-w    C:\Documents and Settings\ejer\7381.bat
2007-10-17 20:11    255    ----a-w    C:\Documents and Settings\ejer\8940.bat
2007-10-17 19:47    255    ----a-w    C:\Documents and Settings\ejer\3512.bat
2007-10-17 19:32    255    ----a-w    C:\Documents and Settings\ejer\3356.bat
2007-10-17 19:17    255    ----a-w    C:\Documents and Settings\ejer\7770.bat
2007-10-17 19:02    255    ----a-w    C:\Documents and Settings\ejer\7552.bat
2007-10-17 18:47    255    ----a-w    C:\Documents and Settings\ejer\6902.bat
2007-10-17 18:32    255    ----a-w    C:\Documents and Settings\ejer\6741.bat
2007-10-17 18:17    255    ----a-w    C:\Documents and Settings\ejer\6374.bat
2007-10-17 18:02    255    ----a-w    C:\Documents and Settings\ejer\9390.bat
2007-10-17 17:47    255    ----a-w    C:\Documents and Settings\ejer\7404.bat
2007-10-17 17:32    255    ----a-w    C:\Documents and Settings\ejer\2756.bat
2007-10-17 17:17    255    ----a-w    C:\Documents and Settings\ejer\4493.bat
2007-10-17 17:01    255    ----a-w    C:\Documents and Settings\ejer\4786.bat
2007-10-17 16:46    255    ----a-w    C:\Documents and Settings\ejer\4160.bat
2007-10-17 16:31    255    ----a-w    C:\Documents and Settings\ejer\5837.bat
2007-10-17 16:16    255    ----a-w    C:\Documents and Settings\ejer\7236.bat
2007-10-17 16:01    255    ----a-w    C:\Documents and Settings\ejer\1700.bat
2007-10-17 15:46    255    ----a-w    C:\Documents and Settings\ejer\6139.bat
2007-10-17 15:31    255    ----a-w    C:\Documents and Settings\ejer\7217.bat
2007-10-17 15:16    255    ----a-w    C:\Documents and Settings\ejer\6365.bat
2007-10-17 15:01    255    ----a-w    C:\Documents and Settings\ejer\6221.bat
2007-10-17 14:31    255    ----a-w    C:\Documents and Settings\ejer\3456.bat
2007-10-17 14:16    255    ----a-w    C:\Documents and Settings\ejer\1390.bat
2007-10-17 14:01    255    ----a-w    C:\Documents and Settings\ejer\1220.bat
2007-10-17 13:46    255    ----a-w    C:\Documents and Settings\ejer\5653.bat
2007-10-17 13:31    255    ----a-w    C:\Documents and Settings\ejer\1338.bat
2007-10-17 13:16    255    ----a-w    C:\Documents and Settings\ejer\5925.bat
2007-10-17 13:01    255    ----a-w    C:\Documents and Settings\ejer\5417.bat
2007-10-17 12:46    255    ----a-w    C:\Documents and Settings\ejer\4723.bat
2007-10-17 12:31    255    ----a-w    C:\Documents and Settings\ejer\4363.bat
2007-10-17 12:16    255    ----a-w    C:\Documents and Settings\ejer\6090.bat
2007-10-17 12:01    255    ----a-w    C:\Documents and Settings\ejer\7550.bat
2007-10-17 11:46    255    ----a-w    C:\Documents and Settings\ejer\1649.bat
2007-10-17 11:31    255    ----a-w    C:\Documents and Settings\ejer\2759.bat
2007-10-17 11:16    255    ----a-w    C:\Documents and Settings\ejer\3695.bat
2007-10-17 11:01    255    ----a-w    C:\Documents and Settings\ejer\4883.bat
2007-10-17 10:46    255    ----a-w    C:\Documents and Settings\ejer\8679.bat
2007-10-17 10:31    255    ----a-w    C:\Documents and Settings\ejer\3757.bat
2007-10-17 10:16    255    ----a-w    C:\Documents and Settings\ejer\8724.bat
2007-10-17 10:01    255    ----a-w    C:\Documents and Settings\ejer\5787.bat
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 20:00 15360]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-12-18 19:52 68856]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-04-23 15:46 1318128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2006-03-23 12:17 94208]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2006-03-23 12:13 77824]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2006-03-23 12:17 118784]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 00:56 110592 C:\WINDOWS\system32\bthprops.cpl]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:56 64512]
"LaunchApp"="Alaunch" []
"RTHDCPL"="RTHDCPL.EXE" [2006-06-28 14:54 16248320 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [2006-05-16 18:04 2879488 C:\WINDOWS\SkyTel.exe]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [2005-12-21 15:02 53248]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 13:07 761946]
"ntiMUI"="C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2006-05-15 11:15 45056]
"ADMTray.exe"="C:\Acer\Empowering Technology\admtray.exe" [2005-10-24 16:45 2462208]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2005-12-27 15:50 69632]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-10 20:00 208952]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-10 20:00 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 20:00 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 20:00 455168]
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-08-10 19:29 352256]
"Acer ePower Management"="C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe" [2006-05-22 12:54 3080704]
"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2006-07-20 22:15 593920]
"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\Monitor.exe" [2006-01-24 18:00 397312]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 13:20 227328]
"SMSTray"="C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe" [2006-07-21 08:32 126976]
"MAAgent"="C:\Program Files\MarkAny\ContentSafer\MAAgent.exe" [2006-06-02 14:39 57344]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 20:00 15360]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 15:58 1744896]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [2002-02-04 22:17:13 65588]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"= C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL [2004-11-23 16:51 192512]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

R0 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 17:14]
R0 viaagp;VIA AGP Bus Filter;C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-03 23:07]
R1 OsaFsLoc;OsaFsLoc;C:\WINDOWS\system32\drivers\OsaFsLoc.sys [2005-10-15 18:20]
R2 int15.sys;int15.sys;C:\Acer\Empowering Technology\eRecovery\int15.sys [2005-01-13 14:46]
R2 osaio;osaio;C:\WINDOWS\system32\drivers\osaio.sys [2005-06-30 16:58]
R2 osanbm;osanbm;C:\WINDOWS\system32\drivers\osanbm.sys [2005-01-14 15:57]
R3 NdisFilt;OSA NdisFilter Protocol;C:\WINDOWS\system32\Drivers\NdisFilt.sys [2005-09-13 15:34]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{333c5bd6-50a8-11dc-98cb-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{333c5bd7-50a8-11dc-98cb-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c46f5c36-4ce6-11dc-98c4-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

*Newly Created Service* - INT15.SYS
*Newly Created Service* - SWPRV
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-06 18:54:06
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
"MAAgent"="C:\\Program Files\\MarkAny\\ContentSafer\\MAAgent.exe"
.
Completion time: 2008-02-06 18:55:06
ComboFix-quarantined-files.txt  2008-02-06 17:55:00
ComboFix2.txt  2008-02-05 09:20:36
.
2008-02-04 23:23:01    --- E O F --- 


*******************ComboFix END********************

Hvad F* sker der her ?
Der er vist noget der er 'rystet løst' *S*

Fromsej ?
(Jeg har ikke selv hoved til det idag...)

Hent denne batfil, gem den på skrivebordet.
http://www.fromsej.saknet.dk/download/delbat.bat
Dobbeltklik på batfilen, der åbner et sort vindue, når det er lukket ned igen, genstart.


Kopiér indholdet mellem de bølgede linier ind i et notepad-vindue, og gem indholdet i samme mappe, som Combofix ligger med navnet CFScript.txt. Når du gemmer, skal du sikre, at der under "filtyper" står "alle filer".

~~~~~~~~~~~~~~~~~~~~~~~~~~

Killall::

File::
C:\Program Files\c.zip
C:\Program Files\b.zip
C:\Program Files\a.zip
C:\WINDOWS\system32\hjkmp.ini
C:\WINDOWS\system32\hjkmp.tmp

~~~~~~~~~~~~~~~~~~~~~~~~~~
Tag så fat i den nye fil med musen, og før den hen over Combofix-filen, hvorefter du "giver slip" med musen. - http://www.fromsej.saknet.dk/billeder/cfscript.gif
Så skulle Combofix gerne give sig til at arbejde. Muligvis vil den kræve en genstart, hvilket du skal tillade. Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.

Kopier den friske Combofixlog herind.

Hehe, jeg må nok sige at det er beskrivende forklaringer i kommer med.

ComboFix 08-02.05.3 - ejer 2008-02-06 21:31:14.3 - FAT32x86
Microsoft Windows XP Professional  5.1.2600.2.1252.45.1033.18.231 [GMT 1:00]
Running from: C:\Documents and Settings\ejer\Desktop\hjt\ComboFix.exe
Command switches used :: C:\Documents and Settings\ejer\Desktop\hjt\CFScript.txt
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!

FILE
C:\Program Files\a.zip
C:\Program Files\b.zip
C:\Program Files\c.zip
C:\WINDOWS\system32\hjkmp.ini
C:\WINDOWS\system32\hjkmp.tmp
.

(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Program Files\a.zip
C:\Program Files\b.zip
C:\Program Files\c.zip
C:\WINDOWS\system32\hjkmp.ini
C:\WINDOWS\system32\hjkmp.tmp

.
(((((((((((((((((((((((((  Files Created from 2008-01-06 to 2008-02-06  )))))))))))))))))))))))))))))))
.

2008-02-06 18:52 . 2004-08-10 20:00    388,608    --a------    C:\kmd.exe
2008-02-05 10:44 . 2007-12-04 14:04    837,496    --a------    C:\WINDOWS\system32\aswBoot.exe
2008-02-05 10:44 . 2004-01-09 10:13    380,928    --a------    C:\WINDOWS\system32\actskin4.ocx
2008-02-05 10:44 . 2007-12-04 13:54    95,608    --a------    C:\WINDOWS\system32\AvastSS.scr
2008-02-05 10:44 . 2007-12-04 15:55    94,544    --a------    C:\WINDOWS\system32\drivers\aswmon2.sys
2008-02-05 10:44 . 2007-12-04 15:56    93,264    --a------    C:\WINDOWS\system32\drivers\aswmon.sys
2008-02-05 10:44 . 2007-12-04 15:51    42,912    --a------    C:\WINDOWS\system32\drivers\aswTdi.sys
2008-02-05 10:44 . 2007-12-04 15:49    26,624    --a------    C:\WINDOWS\system32\drivers\aavmker4.sys
2008-02-05 10:44 . 2007-12-04 15:53    23,152    --a------    C:\WINDOWS\system32\drivers\aswRdr.sys
2008-02-05 08:40 . 2008-02-05 08:40    <DIR>    d--------    C:\Program Files\CCleaner
2008-02-05 00:03 . 2008-02-05 00:03    <DIR>    d--------    C:\Program Files\SpywareBlaster
2008-02-04 23:13 . 2008-02-04 23:13    <DIR>    d--hs----    C:\FOUND.002
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Program Files\Lavasoft
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-04 22:44 . 2008-02-04 22:44    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-04 20:33 . 2008-02-04 20:33    <DIR>    d--------    C:\Program Files\Spybot - Search & Destroy
2008-02-04 20:33 . 2008-02-04 20:33    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-02-04 20:29 . 2008-02-04 20:30    <DIR>    d--------    C:\Program Files\Alwil Software
2008-02-04 19:24 . 2008-02-04 19:24    157    --a------    C:\WINDOWS\wininit.ini
2008-02-04 19:14 . 2007-09-24 23:31    69,632    --a------    C:\WINDOWS\system32\javacpl.cpl
2008-02-04 19:11 . 2003-04-17 21:26    79    --a------    C:\WINDOWS\delay2.reg

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-04 21:55    9,344    ----a-w    C:\WINDOWS\system32\drivers\NSDriver.sys
2008-02-04 21:55    8,320    ----a-w    C:\WINDOWS\system32\drivers\AWRTRD.sys
2008-02-04 21:55    12,632    ----a-w    C:\WINDOWS\system32\lsdelete.exe
2007-12-11 07:09    ---------    d-----w    C:\Program Files\Lame MP3 Codec
2007-12-11 07:08    ---------    d-----w    C:\Program Files\XviD
2007-12-11 07:08    ---------    d-----w    C:\Program Files\MarkAny
2007-12-11 07:07    ---------    d-----w    C:\Program Files\Samsung
2007-12-10 12:48    ---------    d-----w    C:\Documents and Settings\ejer\Application Data\Creative
2007-12-10 12:42    ---------    d-----w    C:\Program Files\Creative
2007-12-07 09:49    ---------    d-----w    C:\Program Files\Google
2007-12-06 10:44    ---------    d-----w    C:\Documents and Settings\All Users\Application Data\e-Safekey
2007-11-07 09:26    721,920    ----a-w    C:\WINDOWS\system32\lsasrv.dll
2007-11-07 09:26    721,920    ----a-w    C:\WINDOWS\system32\dllcache\lsasrv.dll
2007-10-09 16:48    7,740    ----a-w    C:\Documents and Settings\ejer\z.dat
2007-10-09 16:48    7,355    ----a-w    C:\Documents and Settings\ejer\x.dat
2007-10-09 16:48    126,976    ----a-w    C:\Documents and Settings\ejer\psw.exe
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 20:00 15360]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-12-18 19:52 68856]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-04-23 15:46 1318128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2006-03-23 12:17 94208]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2006-03-23 12:13 77824]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2006-03-23 12:17 118784]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 00:56 110592 C:\WINDOWS\system32\bthprops.cpl]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:56 64512]
"LaunchApp"="Alaunch" []
"RTHDCPL"="RTHDCPL.EXE" [2006-06-28 14:54 16248320 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [2006-05-16 18:04 2879488 C:\WINDOWS\SkyTel.exe]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [2005-12-21 15:02 53248]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 13:07 761946]
"ntiMUI"="C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2006-05-15 11:15 45056]
"ADMTray.exe"="C:\Acer\Empowering Technology\admtray.exe" [2005-10-24 16:45 2462208]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2005-12-27 15:50 69632]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-10 20:00 208952]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-10 20:00 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 20:00 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 20:00 455168]
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-08-10 19:29 352256]
"Acer ePower Management"="C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe" [2006-05-22 12:54 3080704]
"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2006-07-20 22:15 593920]
"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\Monitor.exe" [2006-01-24 18:00 397312]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 13:20 227328]
"SMSTray"="C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe" [2006-07-21 08:32 126976]
"MAAgent"="C:\Program Files\MarkAny\ContentSafer\MAAgent.exe" [2006-06-02 14:39 57344]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 20:00 15360]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 15:58 1744896]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [2002-02-04 22:17:13 65588]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"= C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL [2004-11-23 16:51 192512]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

R0 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 17:14]
R0 viaagp;VIA AGP Bus Filter;C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-03 23:07]
R1 OsaFsLoc;OsaFsLoc;C:\WINDOWS\system32\drivers\OsaFsLoc.sys [2005-10-15 18:20]
R2 int15.sys;int15.sys;C:\Acer\Empowering Technology\eRecovery\int15.sys [2005-01-13 14:46]
R2 osaio;osaio;C:\WINDOWS\system32\drivers\osaio.sys [2005-06-30 16:58]
R2 osanbm;osanbm;C:\WINDOWS\system32\drivers\osanbm.sys [2005-01-14 15:57]
R3 NdisFilt;OSA NdisFilter Protocol;C:\WINDOWS\system32\Drivers\NdisFilt.sys [2005-09-13 15:34]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{333c5bd6-50a8-11dc-98cb-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{333c5bd7-50a8-11dc-98cb-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c46f5c36-4ce6-11dc-98c4-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-06 21:38:10
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
"MAAgent"="C:\\Program Files\\MarkAny\\ContentSafer\\MAAgent.exe"
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\DOCUME~1\ejer\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Completion time: 2008-02-06 21:40:03 - machine was rebooted
ComboFix-quarantined-files.txt  2008-02-06 20:39:58
ComboFix3.txt  2008-02-05 09:20:36
ComboFix2.txt  2008-02-06 17:55:08
.
2008-02-04 23:23:01    --- E O F ---

Det pyntede ganske meget. *S*
Hent og kør denne batfil:
http://www.fromsej.saknet.dk/download/dir.bat
Notesblok åbner, kopier teksten herind.

Disken i drev C er ACER
Diskens serienummer er 1D0F-11D5

Indhold af C:\Documents and Settings\ejer

18-12-2006  00:17    <DIR>          .
18-12-2006  00:17    <DIR>          ..
22-09-2006  00:05    <DIR>          Start Menu
06-02-2008  22:42                0 dir.txt
21-12-2007  09:29    <DIR>          My Documents
18-12-2006  00:18    <DIR>          Favorites
18-12-2006  00:18    <DIR>          Desktop
26-01-2007  11:33    <DIR>          Contacts
01-02-2007  07:58    <DIR>          .limewire
01-02-2007  08:00    <DIR>          Incomplete
01-02-2007  08:00    <DIR>          Shared
01-02-2007  08:26              437 Genvej til Shared.lnk
09-09-2007  19:37    <DIR>          Phone Browser
09-10-2007  17:48          126.976 psw.exe
09-10-2007  17:48            7.740 z.dat
09-10-2007  17:48            7.355 x.dat
06-02-2008  21:35        4.194.304 ntuser.dat
              6 fil(er)        4.336.812 byte
              11 mappe(r)  16.829.054.976 byte ledig

Så kom årsagen også frem.
Afinstaller Limewire i Tilføj/Fjern programmer, hvis det stadig er installeret.

Lav og kør dette CFScript:

~~~~~~~~~~~~~~~~~~~~

Killall::

File::
"C:\Documents and Settings\ejer\psw.exe"
"C:\Documents and Settings\ejer\z.dat"
"C:\Documents and Settings\ejer\x.dat"

Folder::
"C:\Documents and Settings\ejer\.limewire"
"C:\Documents and Settings\ejer\Incomplete"
"C:\Documents and Settings\ejer\Shared"

~~~~~~~~~~~~~~~~~~~~

Når det er færdigt, kopier den nye Combofixlog herind, sammen med en ny Hijackthislog, men vi burde være i bund nu.

Jeg har så overset at der kører netbank på maskinen, se at få skiftet koden, de trojanere osv. der har været på kan sagtens have opsnappet login og kode til netbank.
Fildeling er generelt en dårlig idé, men fildeling og netbank på samme maskine, det er en ekstrem dårlig idé.

Det var det første jeg afinstallerede da jeg fik maskinen igang. Og har også sagt til søster at hun skal separere ungernes fildeling og netbank ;o)

Så, nu græder mine niecer nok ;o)

Hvem ville have point her. I har begge fortjent en million point ;o)

ComboFix 08-02.05.3 - ejer 2008-02-07 17:28:00.4 - FAT32x86
Microsoft Windows XP Professional  5.1.2600.2.1252.45.1033.18.220 [GMT 1:00]
Running from: C:\Documents and Settings\ejer\Desktop\hjt\ComboFix.exe
Command switches used :: C:\Documents and Settings\ejer\Desktop\hjt\CFScript.txt
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!

FILE
"C:\Documents and Settings\ejer\psw.exe"
"C:\Documents and Settings\ejer\x.dat"
"C:\Documents and Settings\ejer\z.dat"
.

(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\ejer\.limewire
C:\Documents and Settings\ejer\.limewire\.NetworkShare\Incomplete\LimeWireWinInstaller.exe.info
C:\Documents and Settings\ejer\.limewire\.NetworkShare\Incomplete\LimeWireWinInstaller.exe.part
C:\Documents and Settings\ejer\.limewire\.NetworkShare\LimeWireWin4.14.12.exe
C:\Documents and Settings\ejer\.limewire\412splashfree.png
C:\Documents and Settings\ejer\.limewire\414splashfree.png
C:\Documents and Settings\ejer\.limewire\active.mojito
C:\Documents and Settings\ejer\.limewire\createtimes.cache
C:\Documents and Settings\ejer\.limewire\data.ser
C:\Documents and Settings\ejer\.limewire\fileurns.bak
C:\Documents and Settings\ejer\.limewire\fileurns.cache
C:\Documents and Settings\ejer\.limewire\filters.props
C:\Documents and Settings\ejer\.limewire\gnutella.net
C:\Documents and Settings\ejer\.limewire\installation.props
C:\Documents and Settings\ejer\.limewire\library.dat
C:\Documents and Settings\ejer\.limewire\limewire.props
C:\Documents and Settings\ejer\.limewire\mojito.props
C:\Documents and Settings\ejer\.limewire\passive.mojito
C:\Documents and Settings\ejer\.limewire\pub1.key
C:\Documents and Settings\ejer\.limewire\public.key
C:\Documents and Settings\ejer\.limewire\questions.props
C:\Documents and Settings\ejer\.limewire\responses.cache
C:\Documents and Settings\ejer\.limewire\secureMessage.key
C:\Documents and Settings\ejer\.limewire\simpp.xml
C:\Documents and Settings\ejer\.limewire\spam.dat
C:\Documents and Settings\ejer\.limewire\tables.props
C:\Documents and Settings\ejer\.limewire\themes\black_theme.lwtp
C:\Documents and Settings\ejer\.limewire\themes\black_theme\01_star.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\02_star.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\03_star.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\04_star.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\05_star.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\chat.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\dir_closed.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\dir_open.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\forward_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\forward_up.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\kill.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\kill_on.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\lime.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\logo.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\notsearching.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\pause_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\pause_up.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\play_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\play_up.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\question.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\rewind_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\rewind_up.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\searching.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\splash.png
C:\Documents and Settings\ejer\.limewire\themes\black_theme\splashpro.png
C:\Documents and Settings\ejer\.limewire\themes\black_theme\stop_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\stop_up.gif
C:\Documents and Settings\ejer\.limewire\themes\black_theme\theme.txt
C:\Documents and Settings\ejer\.limewire\themes\black_theme\version.txt
C:\Documents and Settings\ejer\.limewire\themes\black_theme\warning.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme.lwtp
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\01_star.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\02_star.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\03_star.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\04_star.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\05_star.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\chat.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\dir_closed.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\dir_open.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\forward_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\forward_up.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\kill.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\logo.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\notsearching.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\pause_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\pause_up.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\play_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\play_up.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\question.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\rewind_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\rewind_up.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\search.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\searching.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\splash.png
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\splashpro.png
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\stop_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\stop_up.gif
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\theme.txt
C:\Documents and Settings\ejer\.limewire\themes\classic_theme\warning.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme.lwtp
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\01_star.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\02_star.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\03_star.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\04_star.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\05_star.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\chat.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\dir_closed.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\dir_open.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\forward_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\forward_up.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\kill.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\kill_on.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\lime.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\logo.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\notsearching.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\pause_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\pause_up.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\play_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\play_up.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\question.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\rewind_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\rewind_up.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\searching.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\splash.png
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\splashpro.png
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\stop_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\stop_up.gif
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\theme.txt
C:\Documents and Settings\ejer\.limewire\themes\limewire_theme\warning.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme.lwtp
C:\Documents and Settings\ejer\.limewire\themes\other_theme\01_star.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\02_star.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\03_star.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\04_star.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\05_star.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\chat.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\forward_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\forward_up.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\kill.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\kill_on.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\logo.png
C:\Documents and Settings\ejer\.limewire\themes\other_theme\name.txt
C:\Documents and Settings\ejer\.limewire\themes\other_theme\notsearching.png
C:\Documents and Settings\ejer\.limewire\themes\other_theme\pause_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\pause_up.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\play_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\play_up.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\question.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\rewind_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\rewind_up.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\searching.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\splash.png
C:\Documents and Settings\ejer\.limewire\themes\other_theme\splashpro.png
C:\Documents and Settings\ejer\.limewire\themes\other_theme\stop_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\stop_up.gif
C:\Documents and Settings\ejer\.limewire\themes\other_theme\theme.txt
C:\Documents and Settings\ejer\.limewire\themes\other_theme\warning.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme.lwtp
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\01_star.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\02_star.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\03_star.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\04_star.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\05_star.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\chat.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\forward_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\forward_up.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\kill.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\kill_on.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\logo.png
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\notsearching.png
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\pause_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\pause_up.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\play_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\play_up.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\question.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\rewind_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\rewind_up.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\searching.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\splash.png
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\splashpro.png
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\stop_dn.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\stop_up.gif
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\theme.txt
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\version.txt
C:\Documents and Settings\ejer\.limewire\themes\windows_theme\warning.gif
C:\Documents and Settings\ejer\.limewire\ttree.cache
C:\Documents and Settings\ejer\.limewire\update.xml
C:\Documents and Settings\ejer\.limewire\version.key
C:\Documents and Settings\ejer\.limewire\version.xml
C:\Documents and Settings\ejer\.limewire\xml\data\audio.sxml
C:\Documents and Settings\ejer\.limewire\xml\data\delete_me
C:\Documents and Settings\ejer\.limewire\xml\data\video.sxml
C:\Documents and Settings\ejer\.limewire\xml\misc\application.gif
C:\Documents and Settings\ejer\.limewire\xml\misc\audio.gif
C:\Documents and Settings\ejer\.limewire\xml\misc\document.gif
C:\Documents and Settings\ejer\.limewire\xml\misc\image.gif
C:\Documents and Settings\ejer\.limewire\xml\misc\video.gif
C:\Documents and Settings\ejer\.limewire\xml\schemas\application.xsd
C:\Documents and Settings\ejer\.limewire\xml\schemas\audio.xsd
C:\Documents and Settings\ejer\.limewire\xml\schemas\document.xsd
C:\Documents and Settings\ejer\.limewire\xml\schemas\image.xsd
C:\Documents and Settings\ejer\.limewire\xml\schemas\video.xsd
C:\Documents and Settings\ejer\Incomplete
C:\Documents and Settings\ejer\Incomplete\CORRUPT-0-Justin Timberlake - Like I Love You.mp3
C:\Documents and Settings\ejer\Incomplete\downloads.bak
C:\Documents and Settings\ejer\Incomplete\downloads.dat
C:\Documents and Settings\ejer\Incomplete\T-121836-fr Eskobar l o c (2).mp3
C:\Documents and Settings\ejer\Incomplete\T-121836-fr eskobar l o c.mp3
C:\Documents and Settings\ejer\Incomplete\T-121836-Hvor Du Fra Jokern (2).mp3
C:\Documents and Settings\ejer\Incomplete\T-121836-HVOR DU FRA JOKERN (3).mp3
C:\Documents and Settings\ejer\Incomplete\T-121836-HVOR DU FRA JOKERN (4).mp3
C:\Documents and Settings\ejer\Incomplete\T-121836-Hvor du fra Jokern (5).mp3
C:\Documents and Settings\ejer\Incomplete\T-121836-hvor du fra jokern.mp3
C:\Documents and Settings\ejer\Incomplete\T-2910634-Niarn - Nu Ved I Hvem I Fucker Med.mp3
C:\Documents and Settings\ejer\Incomplete\T-3349524-Niarn - Dobbelt-A.mp3
C:\Documents and Settings\ejer\Incomplete\T-3566386-06 Track 6.wma
C:\Documents and Settings\ejer\Incomplete\T-5004062-Alica Keys - No one.mp3
C:\Documents and Settings\ejer\Incomplete\T-5006150-Alisha Keys - No One.mp3
C:\Documents and Settings\ejer\Incomplete\T-6371578-Christina Aguilera, Lil' Kim, Mya, Pink & Missy Elliot - Lady Marmalade (Moulin Rouge SdTk).mp3
C:\Documents and Settings\ejer\Incomplete\T-6772376-Niarn - Antihelt.mp3
C:\Documents and Settings\ejer\psw.exe
C:\Documents and Settings\ejer\Shared
C:\Documents and Settings\ejer\Shared\_\13 Dead Men (2003)  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\18 Legal And Latin 5.zip
C:\Documents and Settings\ejer\Shared\_\2 Big 2 Be True 8.zip
C:\Documents and Settings\ejer\Shared\_\28 Weeks Later (2007)  TS  READNFO .zip
C:\Documents and Settings\ejer\Shared\_\3 10 To Yuma (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\30 Days Of Night (2007).zip
C:\Documents and Settings\ejer\Shared\_\30 Rock S02E08  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\30 Rock S02E08.zip
C:\Documents and Settings\ejer\Shared\_\30 Rock S02E09  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\300 (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\8th Street Latinas 4.zip
C:\Documents and Settings\ejer\Shared\_\A Night in the Life of Jimmy Reardon (1988)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\A Scanner Darkly (2006)  DVDRiP  LIMITED .zip
C:\Documents and Settings\ejer\Shared\_\A Womans A Helluva Thing (2001)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Adrift In Manhattan (2007).zip
C:\Documents and Settings\ejer\Shared\_\Afro Samurai S01E01  XViD  DSR .zip
C:\Documents and Settings\ejer\Shared\_\Agent Cody Banks 2 (2004)  DVDSCR  AC3 .zip
C:\Documents and Settings\ejer\Shared\_\Alan Carr Tooth Fairy Live (2007).zip
C:\Documents and Settings\ejer\Shared\_\Alien Hunter (2003)  SE  WITH XTRAS  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\All The Kings Men (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Alvin.and.the.Chipmunks.USA.PS2DVD-MARVEL.zip
C:\Documents and Settings\ejer\Shared\_\Alvin_and_the_Chipmunks-USA-WII-PreCiSiON.zip
C:\Documents and Settings\ejer\Shared\_\American Gangster (2007).zip
C:\Documents and Settings\ejer\Shared\_\American Pie Beta House (2007).zip
C:\Documents and Settings\ejer\Shared\_\Angels Dont Sleep Here (2000)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Apocalypse_Desire_Next_JPN_XBOX360-Caravan.zip
C:\Documents and Settings\ejer\Shared\_\Apple Bottom Snow Bunnies 2.zip
C:\Documents and Settings\ejer\Shared\_\Archives.zip
C:\Documents and Settings\ejer\Shared\_\Are_You_Smarter_Than_A_Fifth_Grader_USA_NDS-SirVG.zip
C:\Documents and Settings\ejer\Shared\_\Ashlynn and Friends 2.zip
C:\Documents and Settings\ejer\Shared\_\Ass Parade 14.zip
C:\Documents and Settings\ejer\Shared\_\Assasination Tango (2003)  LIMITED  WS  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Assassins_Creed_JPN_XBOX360-Caravan.zip
C:\Documents and Settings\ejer\Shared\_\Atk Exotics 2.zip
C:\Documents and Settings\ejer\Shared\_\Babys 1.zip
C:\Documents and Settings\ejer\Shared\_\Bad Religion - Along the Way (1992)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Balls Of Fury (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Balls of Fury (2007).zip
C:\Documents and Settings\ejer\Shared\_\Barefoot Confidential 49.zip
C:\Documents and Settings\ejer\Shared\_\Barely Legal 76.zip
C:\Documents and Settings\ejer\Shared\_\Battlestar Galactica Razor (2007) EXTENDED.zip
C:\Documents and Settings\ejer\Shared\_\Battlestar Galactica Razor Ext Edition (2007).zip
C:\Documents and Settings\ejer\Shared\_\Battlestar Galactica Razor.zip
C:\Documents and Settings\ejer\Shared\_\Because I Said So (2007)  R5 .zip
C:\Documents and Settings\ejer\Shared\_\Beck Vol 01 (2007)  DVDR  NTSC .zip
C:\Documents and Settings\ejer\Shared\_\Beer League (2006).zip
C:\Documents and Settings\ejer\Shared\_\Ben_10_Protector_Of_Earth_PAL_Wii-WiiERD.zip
C:\Documents and Settings\ejer\Shared\_\Bend Over And Say Aahhhh Again.zip
C:\Documents and Settings\ejer\Shared\_\Beowulf (2007).zip
C:\Documents and Settings\ejer\Shared\_\Big Black Butts Wit Thick Dentz 2.zip
C:\Documents and Settings\ejer\Shared\_\Big Butt Babes 5.zip
C:\Documents and Settings\ejer\Shared\_\Big Butt Slutz 3.zip
C:\Documents and Settings\ejer\Shared\_\Big White Thunder Butts.zip
C:\Documents and Settings\ejer\Shared\_\Billy Connolly Live Was It Something I Said (2007).zip
C:\Documents and Settings\ejer\Shared\_\Black Teens 7.zip
C:\Documents and Settings\ejer\Shared\_\Blade Runner (1982) FiNAL CUT.zip
C:\Documents and Settings\ejer\Shared\_\Blood And Chocolate (2007)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Blood And Oil  The Middle East In World War I (2006).zip
C:\Documents and Settings\ejer\Shared\_\Blood Diamond (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Boardheads (2003)  WS  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\Boogie_EUR_NDS-XPA.zip
C:\Documents and Settings\ejer\Shared\_\Borat  Cultural Learnings Of America To Make Benefit Glourious Nation Kazakhstan (2006)  DELETED SCENES  DVDRiP  PROMO .zip
C:\Documents and Settings\ejer\Shared\_\Borat (2006)  R5 LINE  PROPER .zip
C:\Documents and Settings\ejer\Shared\_\Borat (2006)  TC .zip
C:\Documents and Settings\ejer\Shared\_\Borat (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Boston Legal S04E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Boston Legal S04E10.zip
C:\Documents and Settings\ejer\Shared\_\Boz The Beast 2.zip
C:\Documents and Settings\ejer\Shared\_\Bratz  The Movie (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Bratz  The Movie (2007)  PROPER  CAM  DiRFiX .zip
C:\Documents and Settings\ejer\Shared\_\Bratz.The.Movie.PAL.MULTI2.Wii-RoME.zip
C:\Documents and Settings\ejer\Shared\_\Bratz_The_Movie_PAL_Wii-WiiZARD.zip
C:\Documents and Settings\ejer\Shared\_\Breed All About It (2001).zip
C:\Documents and Settings\ejer\Shared\_\Bridge To Terabithia (2007).zip
C:\Documents and Settings\ejer\Shared\_\Bring It On  In It to Win It (2007).zip
C:\Documents and Settings\ejer\Shared\_\Bring Um Young 26.zip
C:\Documents and Settings\ejer\Shared\_\Bug (2007).zip
C:\Documents and Settings\ejer\Shared\_\Burnout_Legends_Platinum_EUR_MULTI6_READNFO_PSP-Googlecus.zip
C:\Documents and Settings\ejer\Shared\_\Butt Licking Anal Whores 8.zip
C:\Documents and Settings\ejer\Shared\_\Cabalas_African_Safari_USA_PROPER_PSP-iND.zip
C:\Documents and Settings\ejer\Shared\_\Cane S01E13  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Cane S01E13.zip
C:\Documents and Settings\ejer\Shared\_\Cars_Mater_National_Multi6_EUR_GBA-SP.zip
C:\Documents and Settings\ejer\Shared\_\Casey Kasem's Rock n' Roll Goldmine - Elvis - The Echo Will Never Die (1987)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Casey Kasem's Rock n' Roll Goldmine - The British Invasion (1987)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Casey Kasem's Rock n' Roll Goldmine - The San Francisco Sound (1987)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Casey Kasem's Rock n' Roll Goldmine - The Soul Years (1987)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Celebrate Christmas With Mickey (2006).zip
C:\Documents and Settings\ejer\Shared\_\Charlie's Angels  Full Throttle (2003)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Charlies Angles Full Throttle (2003)  DVDRiP  SUBPACK .zip
C:\Documents and Settings\ejer\Shared\_\Chill (2007).zip
C:\Documents and Settings\ejer\Shared\_\Christies Revenge (2007).zip
C:\Documents and Settings\ejer\Shared\_\Chronicle_of_Dungeon_Maker_2_JAP_PSP-GANT.zip
C:\Documents and Settings\ejer\Shared\_\Club Jennas Casting Couch 3.zip
C:\Documents and Settings\ejer\Shared\_\Clubland (2007).zip
C:\Documents and Settings\ejer\Shared\_\Cocoto_Magic_Circus_PAL_Wii-OE.zip
C:\Documents and Settings\ejer\Shared\_\Code_Lyoko_PAL_Wii-OE.zip
C:\Documents and Settings\ejer\Shared\_\Copying Beethoven (2006)  DVDSCR  FS  LIMITED .zip
C:\Documents and Settings\ejer\Shared\_\Cotton Panties 4.zip
C:\Documents and Settings\ejer\Shared\_\Cougar Club (2007).zip
C:\Documents and Settings\ejer\Shared\_\Cradle Of Filth Heavy Left-Handed E Candid (2001)  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\CSI Miami S06E12.zip
C:\Documents and Settings\ejer\Shared\_\CSI S07D1.zip
C:\Documents and Settings\ejer\Shared\_\CSI S07D2.zip
C:\Documents and Settings\ejer\Shared\_\CSI S07D3.zip
C:\Documents and Settings\ejer\Shared\_\CSI S07D4.zip
C:\Documents and Settings\ejer\Shared\_\CSI S07D5.zip
C:\Documents and Settings\ejer\Shared\_\CSI S07D6.zip
C:\Documents and Settings\ejer\Shared\_\CSI S07D7.zip
C:\Documents and Settings\ejer\Shared\_\CSI S08E09  720p X264 .zip
C:\Documents and Settings\ejer\Shared\_\CSI S08E09.zip
C:\Documents and Settings\ejer\Shared\_\Csi S08e10  720p X264 .zip
C:\Documents and Settings\ejer\Shared\_\CSI S08E10.zip
C:\Documents and Settings\ejer\Shared\_\Cum Dumpsters 7.zip
C:\Documents and Settings\ejer\Shared\_\Cum Fart Cocktails 6.zip
C:\Documents and Settings\ejer\Shared\_\Daddy Day Camp (2007)  CAM  PROPER .zip
C:\Documents and Settings\ejer\Shared\_\Daddy Day Camp (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Dance With The Wind (2004)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Dark Harvest (2003)  WS  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\Day X (2006).zip
C:\Documents and Settings\ejer\Shared\_\Dead (2006).zip
C:\Documents and Settings\ejer\Shared\_\Death Sentence (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Deck The Halls (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Deeper 8.zip
C:\Documents and Settings\ejer\Shared\_\Dexter S02E12  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Dexter S02E12.zip
C:\Documents and Settings\ejer\Shared\_\Dickie Roberts  Former Child Star (2003)  DVDRiP    AC3 .zip
C:\Documents and Settings\ejer\Shared\_\Die.Simpsons.Das.Spiel.GERMAN.EUR.512MS.UMDRIP.PSP-illuishorny.zip
C:\Documents and Settings\ejer\Shared\_\Die_drei_Fragezeichen_Das_Geheimnis_der_Geisterinsel_GER_NDS-sUppLeX.zip
C:\Documents and Settings\ejer\Shared\_\Dirt S01E10.zip
C:\Documents and Settings\ejer\Shared\_\Dirt S01E11.zip
C:\Documents and Settings\ejer\Shared\_\Dirt S01E12.zip
C:\Documents and Settings\ejer\Shared\_\Dirt S01E13.zip
C:\Documents and Settings\ejer\Shared\_\Dirty Rotten Mother Fuckers DISC1.zip
C:\Documents and Settings\ejer\Shared\_\Dirty Rotten Mother Fuckers DISC2.zip
C:\Documents and Settings\ejer\Shared\_\Dirty Sanchez The Movie (2006)  DVDRiP  LIMITED .zip
C:\Documents and Settings\ejer\Shared\_\Dirty Sexy Money S01E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Dirty Sexy Money S01E10.zip
C:\Documents and Settings\ejer\Shared\_\Disney_Princess_Enchanted_Journey_JAP_WII-SQUARE.zip
C:\Documents and Settings\ejer\Shared\_\Doggin Dat Ass 3.zip
C:\Documents and Settings\ejer\Shared\_\Dont Fuck It Just Suck It.zip
C:\Documents and Settings\ejer\Shared\_\Doraemon_Wii_Himitsu_Douguou_Ketteisen_JAP_WII-TMD.zip
C:\Documents and Settings\ejer\Shared\_\Double Team (1997).zip
C:\Documents and Settings\ejer\Shared\_\Dragon_Ball_Z_Budokai_Tenkaichi_3_USA_Wii-WiiZARD.zip
C:\Documents and Settings\ejer\Shared\_\Dressed Up Cuties.zip
C:\Documents and Settings\ejer\Shared\_\Drunk Sex Orgy Springbreak.zip
C:\Documents and Settings\ejer\Shared\_\DS_Dengeki_Bunko_Iria_no_Sora_UFO_no_Natsu_II_JPN_NDS-6rz.zip
C:\Documents and Settings\ejer\Shared\_\Ed_Edd_n_Eddy_Scam_Of_The_Century_EUR_NDS-XPA.zip
C:\Documents and Settings\ejer\Shared\_\El_Tigre_Make_My_Mule_USA_NDS-iND.zip
C:\Documents and Settings\ejer\Shared\_\Elizabeth  The Golden Age (2007).zip
C:\Documents and Settings\ejer\Shared\_\ER S14E10  720p X264 .zip
C:\Documents and Settings\ejer\Shared\_\ER S14E10.zip
C:\Documents and Settings\ejer\Shared\_\Even Money (2006)  DVDSCR  REPACK .zip
C:\Documents and Settings\ejer\Shared\_\Even Money (2006)  DVDSCR .zip
C:\Documents and Settings\ejer\Shared\_\Evening (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Extreme Holly Threesomes.zip
C:\Documents and Settings\ejer\Shared\_\Face Fucking Inc 3.zip
C:\Documents and Settings\ejer\Shared\_\Feeling Black 10.zip
C:\Documents and Settings\ejer\Shared\_\Finding Rin Tin Tin (2007).zip
C:\Documents and Settings\ejer\Shared\_\Fire (1997)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Fleetwood Mac - Tango In The Night (1988)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Flesh For The Beast (2003)  DVDRiP  WS  LIMITED .zip
C:\Documents and Settings\ejer\Shared\_\Flower Tucci Com.zip
C:\Documents and Settings\ejer\Shared\_\Fracture (2007)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Frank TV S01E03.zip
C:\Documents and Settings\ejer\Shared\_\Frasier S10E01 The Ring Cycle.zip
C:\Documents and Settings\ejer\Shared\_\Frasier S10E02 Enemy At The Gate.zip
C:\Documents and Settings\ejer\Shared\_\Frasier S10E03 Proxy Prexy.zip
C:\Documents and Settings\ejer\Shared\_\Frasier S10E04 Kissing Cousin.zip
C:\Documents and Settings\ejer\Shared\_\Frasier S10E05 Tales From The Crypt.zip
C:\Documents and Settings\ejer\Shared\_\Fresh Meat 24.zip
C:\Documents and Settings\ejer\Shared\_\Friday Night Lights S02E09  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Friday Night Lights S02E09.zip
C:\Documents and Settings\ejer\Shared\_\Full Moon Vol 05 (2007)  DVDR  NTSC .zip
C:\Documents and Settings\ejer\Shared\_\Getaway In Stockholm 4  WITH EXTRAS  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\Ghost Whisperer S03E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Ghost Whisperer S03E10.zip
C:\Documents and Settings\ejer\Shared\_\Giant White Greeze Butts 3.zip
C:\Documents and Settings\ejer\Shared\_\Ginger and Cinnamon (2003)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Give Me Pink 2.zip
C:\Documents and Settings\ejer\Shared\_\Go_Diego_Go_Safari_Rescue_USA_NDS-SirVG.zip
C:\Documents and Settings\ejer\Shared\_\God Has a Rap Sheet (2003)  LIMITED  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Godzilla_Unleashed-USA-WII-PreCiSiON.zip
C:\Documents and Settings\ejer\Shared\_\Godzilla_Unleashed_Double_Smashed_USA_NDS-XPA.zip
C:\Documents and Settings\ejer\Shared\_\Gone (2002)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Gone Baby Gone (2007).zip
C:\Documents and Settings\ejer\Shared\_\Good Luck Chuck (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Gossip Girl S01E11  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Gossip Girl S01E11.zip
C:\Documents and Settings\ejer\Shared\_\Grand_Theft_Auto_Vice_City_Stories_JPN_PS2DVD-Caravan.zip
C:\Documents and Settings\ejer\Shared\_\Greys Anatomy S04E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Greys Anatomy S04E10.zip
C:\Documents and Settings\ejer\Shared\_\Gridiron Gang (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Grindhouse (2007)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Hairspray (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Halloween (2007).zip
C:\Documents and Settings\ejer\Shared\_\Haneru_no_Tobira_Wii_Kirigirissu_JAP_WII-TMD.zip
C:\Documents and Settings\ejer\Shared\_\Happy Feet (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Harry Potter And The Order Of The Phoenix  CAM  SUBBED .zip
C:\Documents and Settings\ejer\Shared\_\Harry Potter And The Order Of The Phoenix (2007)  CAM  PROPER .zip
C:\Documents and Settings\ejer\Shared\_\Harry Potter And The Order Of The Phoenix (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Harry Potter And The Order Of The Phoenix (2007)  CUSTOM  SWESUB .zip
C:\Documents and Settings\ejer\Shared\_\Harry Potter And The Order Of The Phoenix (2007)  MULTISUBS .zip
C:\Documents and Settings\ejer\Shared\_\Harry Potter And The Order Of The Phoenix (2007).zip
C:\Documents and Settings\ejer\Shared\_\Haunted Forest (2007).zip
C:\Documents and Settings\ejer\Shared\_\Head Game 2.zip
C:\Documents and Settings\ejer\Shared\_\Heavenly_Sword_JPN_PS3-Caravan.zip
C:\Documents and Settings\ejer\Shared\_\Hellfire Sex 11.zip
C:\Documents and Settings\ejer\Shared\_\Hey Gang Teach Me To Bang 8.zip
C:\Documents and Settings\ejer\Shared\_\History.Channel.Battle.for.the.Pacific.USA.RF.XBOX360-MARVEL.zip
C:\Documents and Settings\ejer\Shared\_\History_Channel_Battle_for_the_Pacific_USA-WII-PreCiSiON.zip
C:\Documents and Settings\ejer\Shared\_\How_the_Grinch_Stole_Christmas_USA_NDS-SirVG.zip
C:\Documents and Settings\ejer\Shared\_\I Fucked You And Your Sister.zip
C:\Documents and Settings\ejer\Shared\_\I Love Jayna.zip
C:\Documents and Settings\ejer\Shared\_\I Love Penny  DISC1 .zip
C:\Documents and Settings\ejer\Shared\_\I Love Penny DISC2.zip
C:\Documents and Settings\ejer\Shared\_\I Now Pronounce You Chuck And Larry (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\I Now Pronounce You Chuck and Larry (2007).zip
C:\Documents and Settings\ejer\Shared\_\Idlewild (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Ignition_Collection_Volume_1_EUR_GBA-SirVG.zip
C:\Documents and Settings\ejer\Shared\_\Illegal Tender (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Illegal Tender (2007).zip
C:\Documents and Settings\ejer\Shared\_\International.Cricket.Captain.3.EUR.128MS.UMDRIP.PSP-illuishorny.zip
C:\Documents and Settings\ejer\Shared\_\International_Cricket_Captain_III_EUR_PSP-pSyPSP.zip
C:\Documents and Settings\ejer\Shared\_\International_Cricket_Captain_III_PAL_PS2CD-ACCiDENT.zip
C:\Documents and Settings\ejer\Shared\_\Interview (2007).zip
C:\Documents and Settings\ejer\Shared\_\Into The Wild (2007).zip
C:\Documents and Settings\ejer\Shared\_\Inu Yasha Vol 55 (2007)  DVDR  NTSC .zip
C:\Documents and Settings\ejer\Shared\_\Invincible (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Jenga-USA-WII-PreCiSiON.zip
C:\Documents and Settings\ejer\Shared\_\Jenga_World_Tour_USA_NDS-XPA.zip
C:\Documents and Settings\ejer\Shared\_\Jesse Jane Scream.zip
C:\Documents and Settings\ejer\Shared\_\Jordans Anal Hotties.zip
C:\Documents and Settings\ejer\Shared\_\Journeyman S01E12  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Journeyman S01E12.zip
C:\Documents and Settings\ejer\Shared\_\Journeyman S01E13  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Journeyman S01E13.zip
C:\Documents and Settings\ejer\Shared\_\K-Ville S01E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\K-Ville S01E10.zip
C:\Documents and Settings\ejer\Shared\_\Kill Bill Vol. 1 (2003)  DVDSCREENER .zip
C:\Documents and Settings\ejer\Shared\_\Kingdom_Under_Fire_Circle_of_Doom_ASIAN_XBOX360-SQUARE.zip
C:\Documents and Settings\ejer\Shared\_\Lady In The Water (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Lanfeust_of_Troy_EUR_NDS-EXiMiUS.zip
C:\Documents and Settings\ejer\Shared\_\Las Vegas S05E11  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Las Vegas S05E11.zip
C:\Documents and Settings\ejer\Shared\_\Law and Order CI S07E09 Untethered.zip
C:\Documents and Settings\ejer\Shared\_\Law and Order CI S07E10 Senseless.zip
C:\Documents and Settings\ejer\Shared\_\Law and Order Criminal Intent S07E09  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Law and Order Criminal Intent S07E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Le_Code_de_la_Route_Moto_et_BSR_FRA_NDS-FireX.zip
C:\Documents and Settings\ejer\Shared\_\Legend_of_Spyro_The_Eternal_Night_PAL_Wii-WiiZARD.zip
C:\Documents and Settings\ejer\Shared\_\Lets Get Slippy 2.zip
C:\Documents and Settings\ejer\Shared\_\Lets Go To Prison (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Lezstravaganza 4 DiSC 1.zip
C:\Documents and Settings\ejer\Shared\_\Lezstravaganza 4 DiSC 2.zip
C:\Documents and Settings\ejer\Shared\_\Life S01E11  720p X264 .zip
C:\Documents and Settings\ejer\Shared\_\Life S01E11.zip
C:\Documents and Settings\ejer\Shared\_\Lions For Lambs (2007)  REAL TELECINE .zip
C:\Documents and Settings\ejer\Shared\_\Lions For Lambs (2007).zip
C:\Documents and Settings\ejer\Shared\_\Little Miss Sunshine (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Locas 4 Life  (2002)  LIMITED  DVDRiP  Extras .zip
C:\Documents and Settings\ejer\Shared\_\Looney.Tunes.Acme.Arsenal.PAL.PS2DVD-LoCAL.zip
C:\Documents and Settings\ejer\Shared\_\Lost S03E13 The Man From Tallahassee  720p  BluRay  x264 .zip
C:\Documents and Settings\ejer\Shared\_\Lost S03E20 The Man Behind The Curtain  720p  BluRay  x264 .zip
C:\Documents and Settings\ejer\Shared\_\Lost_Odyssey_JAP_XBOX360-KFC.zip
C:\Documents and Settings\ejer\Shared\_\LOTR The Two Towers Extended Edition  DISC4 EXTRAS  (2002)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Love African American Style.zip
C:\Documents and Settings\ejer\Shared\_\Mad Sex Party Budapest Bang The Wet Set.zip
C:\Documents and Settings\ejer\Shared\_\Man Of The Year (2006)  R5 .zip
C:\Documents and Settings\ejer\Shared\_\Marion And Geoff (2000)  READNFO  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Mass_Effect_NTSC_FRENCH_XBOX360-VORTEX.zip
C:\Documents and Settings\ejer\Shared\_\Men in Trees S02E08  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Men in Trees S02E08.zip
C:\Documents and Settings\ejer\Shared\_\Mi_Experto_en_Frances_SPA_NDS-EXiMiUS.zip
C:\Documents and Settings\ejer\Shared\_\Miami Vice (2006)  DVDRiP  WS .zip
C:\Documents and Settings\ejer\Shared\_\Milfs Gone Black 4.zip
C:\Documents and Settings\ejer\Shared\_\Minna_de_Asobou_de_Namco_Carnival_JAP_WII-TMD.zip
C:\Documents and Settings\ejer\Shared\_\Minna_no_Golf_Portable_2_JPN_PSP-Caravan.zip
C:\Documents and Settings\ejer\Shared\_\Momma Knows Best 5.zip
C:\Documents and Settings\ejer\Shared\_\Momotarou_Dentetsu_16_Gold_JAP_XBOX360-KFC.zip
C:\Documents and Settings\ejer\Shared\_\Mon_Coach_Personnel_Jameliore_Mon_Anglais_FRA_NDS-EXiMiUS.zip
C:\Documents and Settings\ejer\Shared\_\Mon_Coach_Personnel_Jameliore_Mon_Espagnol_FRA_NDS-EXiMiUS.zip
C:\Documents and Settings\ejer\Shared\_\Mona Page Busty Babysitter.zip
C:\Documents and Settings\ejer\Shared\_\Monk S06E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Monk S06E10  Mr Monk and the Man Who Shot Santa.zip
C:\Documents and Settings\ejer\Shared\_\Monster Meat 6  DISC2 .zip
C:\Documents and Settings\ejer\Shared\_\Monster Meat 6 DISC1.zip
C:\Documents and Settings\ejer\Shared\_\Moonlight S01E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Moonlight S01E10.zip
C:\Documents and Settings\ejer\Shared\_\Mr Magoriums Wonder Emporium (2007).zip
C:\Documents and Settings\ejer\Shared\_\Mr. Woodcock (2007).zip
C:\Documents and Settings\ejer\Shared\_\Mr_Bean_PAL_PS2CD-ZRY.zip
C:\Documents and Settings\ejer\Shared\_\My Black Home Videos 4.zip
C:\Documents and Settings\ejer\Shared\_\My Daughters Fucking Blackzilla 14.zip
C:\Documents and Settings\ejer\Shared\_\My Name Is Earl S03E12  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\My Name Is Earl S03E12.zip
C:\Documents and Settings\ejer\Shared\_\My Super Ex Girlfriend (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\My_Spanish_Coach_USA_NDS-iND.zip
C:\Documents and Settings\ejer\Shared\_\My_Word_Coach_USA_WII-SYNDiCATE.zip
C:\Documents and Settings\ejer\Shared\_\Naked Weapon (2002)  LIMITED  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Box Set 02 Vol 01  DVDR  NTSC .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Box Set 02 Vol 02  DVDR  NTSC .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Box Set 02 Vol 03  DVDR  NTSC .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep14  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep15  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep16  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep17  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep18  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep19  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep20  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep21  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep22  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep23  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep24  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naruto Uncut Ep25  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Naughty College School Girls 45.zip
C:\Documents and Settings\ejer\Shared\_\Naughty College Schoolgirls 45.zip
C:\Documents and Settings\ejer\Shared\_\NBA.Live.08.EUR.256MS.UMDRIP.PSP-illuishorny.zip
C:\Documents and Settings\ejer\Shared\_\NBA_Live_08_EUR_PSP-BAHAMUT.zip
C:\Documents and Settings\ejer\Shared\_\Ncis S05E11.zip
C:\Documents and Settings\ejer\Shared\_\Nightmares And Dreamscapes.zip
C:\Documents and Settings\ejer\Shared\_\Ninja Nonsense E07  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Ninja Nonsense E08  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Ninja Nonsense E09  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Ninja Nonsense E10  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Ninja Nonsense E11  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Ninja Nonsense E12  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Nip Tuck S05E06.zip
C:\Documents and Settings\ejer\Shared\_\No Reservations (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\No_More_Heroes_JAP_WII-TMD.zip
C:\Documents and Settings\ejer\Shared\_\Noahs Ark (2007).zip
C:\Documents and Settings\ejer\Shared\_\Nolleooseyo_dongmurui_sup_KOR_NDS-AC8.zip
C:\Documents and Settings\ejer\Shared\_\Norbit (2007)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Not Another Low Budget Porn Movie.zip
C:\Documents and Settings\ejer\Shared\_\Notes From the Underbelly S02E04.zip
C:\Documents and Settings\ejer\Shared\_\Numb3rs S04E10  720p X264 .zip
C:\Documents and Settings\ejer\Shared\_\Numb3rs S04E10.zip
C:\Documents and Settings\ejer\Shared\_\October Road S02E05  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\October Road S02E05.zip
C:\Documents and Settings\ejer\Shared\_\Offroad_Extreme_Special_Edition_USA_WII-SYNDiCATE.zip
C:\Documents and Settings\ejer\Shared\_\Oiled And Spoiled 2.zip
C:\Documents and Settings\ejer\Shared\_\Once (2007).zip
C:\Documents and Settings\ejer\Shared\_\Once Upon A Time (1987)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\One Piece Vol 09 (2007)  DVDR  NTSC .zip
C:\Documents and Settings\ejer\Shared\_\Open Season (2006)  R5 .zip
C:\Documents and Settings\ejer\Shared\_\Party Hardcore 16.zip
C:\Documents and Settings\ejer\Shared\_\Penthouse There Goes The Neighborhood.zip
C:\Documents and Settings\ejer\Shared\_\Perfume The Story Of A Murderer (2006).zip
C:\Documents and Settings\ejer\Shared\_\Pieces Of April (2003)  SUBPACK .zip
C:\Documents and Settings\ejer\Shared\_\Pigs (2007).zip
C:\Documents and Settings\ejer\Shared\_\Pirates Of The Caribbean  At World's End (2007).zip
C:\Documents and Settings\ejer\Shared\_\Pirates_of_the_Caribbean_At_Worlds_End_JAP_PS2DVD-SQUARE.zip
C:\Documents and Settings\ejer\Shared\_\Plastic Tree (2003)  DVDRip  STV .zip
C:\Documents and Settings\ejer\Shared\_\Playing With Cindy Crawford.zip
C:\Documents and Settings\ejer\Shared\_\Private Gold 95 Mafia Girlz.zip
C:\Documents and Settings\ejer\Shared\_\Private Practice S01E09  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Private Practice S01E09.zip
C:\Documents and Settings\ejer\Shared\_\Psych S02E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Psych S02E10  Gus Dad May Have Killed an Old Guy.zip
C:\Documents and Settings\ejer\Shared\_\Puppy_Luv_USA_WII-SYNDiCATE.zip
C:\Documents and Settings\ejer\Shared\_\Pursuit.Force.Extreme.Justice.PAL.PSP-RANT.zip
C:\Documents and Settings\ejer\Shared\_\Pussy Lickers Paradise 2.zip
C:\Documents and Settings\ejer\Shared\_\Puzzle.Quest.Challenge.of.the.Warlords.USA.Wii-MARVEL.zip
C:\Documents and Settings\ejer\Shared\_\q7q7q7q7q7q7q7q7xx.zip
C:\Documents and Settings\ejer\Shared\_\Rabbids_Party_Returns_JAP_WII-TMD.zip
C:\Documents and Settings\ejer\Shared\_\Rapid Eye Movement (2006).zip
C:\Documents and Settings\ejer\Shared\_\Ratatouille (2007).zip
C:\Documents and Settings\ejer\Shared\_\Ratchet.Clank.Future.Tools.of.Destruction.NTSC.MULTI3.Asian.PS3-NCC.zip
C:\Documents and Settings\ejer\Shared\_\Reaper S01E03.zip
C:\Documents and Settings\ejer\Shared\_\Red Hawk (2002)  DVDR  PAL  COMPLETE .zip
C:\Documents and Settings\ejer\Shared\_\Red Hawk (2002)  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Red Road (2006).zip
C:\Documents and Settings\ejer\Shared\_\Red Serpent (2002)  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\Reggae Salute (2007).zip
C:\Documents and Settings\ejer\Shared\_\Rendition (2007).zip
C:\Documents and Settings\ejer\Shared\_\Resident Evil Extinction (2007).zip
C:\Documents and Settings\ejer\Shared\_\Resurrecting The Champ (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Roccos Nasty Tails 7.zip
C:\Documents and Settings\ejer\Shared\_\Romanian Angels.zip
C:\Documents and Settings\ejer\Shared\_\Run, Fat Boy, Run (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Runaway Jury  SUBPACK .zip
C:\Documents and Settings\ejer\Shared\_\Rush Hour 3 (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Rush Hour 3 (2007).zip
C:\Documents and Settings\ejer\Shared\_\Santa With Muscles (1996).zip
C:\Documents and Settings\ejer\Shared\_\Saving Grace S01E12  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Saving Grace S01E12.zip
C:\Documents and Settings\ejer\Shared\_\Saving Grace S01E13  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Saving Grace S01E13.zip
C:\Documents and Settings\ejer\Shared\_\Saw (2004)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Saw IV (2007).zip
C:\Documents and Settings\ejer\Shared\_\Scene.It.Lights.Camera.Action.PAL.GERMAN.XBOX360-ARROGANE.zip
C:\Documents and Settings\ejer\Shared\_\Seven Hours To Judgement (1988)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Sexotica Volume 1.zip
C:\Documents and Settings\ejer\Shared\_\Shane Diesels Breakin Em In Young 2.zip
C:\Documents and Settings\ejer\Shared\_\Shanes World 40 Scavenger Hunt 4.zip
C:\Documents and Settings\ejer\Shared\_\Shark Bait (2006).zip
C:\Documents and Settings\ejer\Shared\_\Shattered (2007).zip
C:\Documents and Settings\ejer\Shared\_\Shoot 'Em Up (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Shoukan_Shoujo_Elemental_Girl_Calling_JAP_PS2DVD-GANT.zip
C:\Documents and Settings\ejer\Shared\_\Showtime_Championship_Boxing_USA_NDS-SirVG.zip
C:\Documents and Settings\ejer\Shared\_\Shrek 3 (2007)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Shrek The Third.zip
C:\Documents and Settings\ejer\Shared\_\Sicko (2007).zip
C:\Documents and Settings\ejer\Shared\_\Simple_DS_Series_Vol_23_The_Puzzle_Quest_Agaria_no_Kishi_JPN_NDS-Chikan.zip
C:\Documents and Settings\ejer\Shared\_\Simple_DS_Series_Vol_27_The_Misshitsukara_no_Dasshutsu_JPN_NDS-6rz.zip
C:\Documents and Settings\ejer\Shared\_\Sin The Movie (2000)  WITH EXTRAS  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\Sinead O' Connor - Live  Year Of The Horse Value Of Ignorance (2003)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Singstar.EUR.PS3-NextLevel.zip
C:\Documents and Settings\ejer\Shared\_\Singstar.Italian.Party.PAL.ITALIAN.PS2DVD-RoME.zip
C:\Documents and Settings\ejer\Shared\_\Smallville S07E09 Gemini  720p  x264 .zip
C:\Documents and Settings\ejer\Shared\_\Smallville S07E09.zip
C:\Documents and Settings\ejer\Shared\_\Smoking Aces (2007)  DVDSCR .zip
C:\Documents and Settings\ejer\Shared\_\Soar High Isami Ep7  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Soar High Isami Ep8  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Soar High Isami Ep9  DUAL AUDIO  DVDRiP  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Soar High Isami Vol 03  DVDR  NTSC  COMPLETE .zip
C:\Documents and Settings\ejer\Shared\_\Sole Jam 4.zip
C:\Documents and Settings\ejer\Shared\_\Solitare_Overload_USA_NDS-XPA.zip
C:\Documents and Settings\ejer\Shared\_\Sparkle (2007).zip
C:\Documents and Settings\ejer\Shared\_\Speakeasy.zip
C:\Documents and Settings\ejer\Shared\_\Sperm Swap 3.zip
C:\Documents and Settings\ejer\Shared\_\Spider-Man 3 (2007).zip
C:\Documents and Settings\ejer\Shared\_\Spring Break River Rats 16.zip
C:\Documents and Settings\ejer\Shared\_\Stardust (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Stardust (2007).zip
C:\Documents and Settings\ejer\Shared\_\Stargate Atlantis S04E10.zip
C:\Documents and Settings\ejer\Shared\_\Step Up (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\Step Up (2006)  DVDSCR .zip
C:\Documents and Settings\ejer\Shared\_\Stone Cold Killers (2003)  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\Superbad (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Supernatural S03E08  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Supernatural S03E08.zip
C:\Documents and Settings\ejer\Shared\_\Tales_of_Innocence_JPN_NDS-MaxG.zip
C:\Documents and Settings\ejer\Shared\_\Talk To Me (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Tattoon Master E01  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tattoon Master E02  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Teen Drip.zip
C:\Documents and Settings\ejer\Shared\_\Teen Solos.zip
C:\Documents and Settings\ejer\Shared\_\Telly_Addicts_PAL_PS2DVD-ZRY.zip
C:\Documents and Settings\ejer\Shared\_\Tenacious D The Pick Of Destiny (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\The Actors (2003)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\The Actors (2003)  REPACK  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\The Best Man (1999)  AC3  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\The Black Dahlia (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\The Bourne Ultimatum (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\The Bourne Ultimatum (2007)  PROPER  CAM .zip
C:\Documents and Settings\ejer\Shared\_\The Bourne Ultimatum (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Bubble (2006).zip
C:\Documents and Settings\ejer\Shared\_\The Covenant (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\The Creamery 2.zip
C:\Documents and Settings\ejer\Shared\_\The Darjeeling Limited (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Dark Crystal (1982) 25th Anniversary Edition.zip
C:\Documents and Settings\ejer\Shared\_\The Deaths Of Ian Stone (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Deviants (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Devil Wears Prada (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\The Diary of Ellen Rimbauer (2003)  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\The Flame Of New Orleans (1941).zip
C:\Documents and Settings\ejer\Shared\_\The Flock (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Fountain (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\The Great White Ass.zip
C:\Documents and Settings\ejer\Shared\_\The Heartbreak Kid (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Hunting Party (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\The Invasion (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\The Jane Austen Book Club (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Kingdom (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Last Winter (2006).zip
C:\Documents and Settings\ejer\Shared\_\The Mirror (1975)  DVDRiP  AC3 .zip
C:\Documents and Settings\ejer\Shared\_\The Nanny Diaries (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\The O.C. S01E24 The Proposal.zip
C:\Documents and Settings\ejer\Shared\_\The Quiet (2006)  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\The Savage 2003  LIMITED  DVDRiP .zip
C:\Documents and Settings\ejer\Shared\_\The Simpsons Movie (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\The Simpsons Movie (2007) ENG SE FI.zip
C:\Documents and Settings\ejer\Shared\_\The Simpsons Movie (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Taming Of Tami.zip
C:\Documents and Settings\ejer\Shared\_\The Ten (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Three Musketeers (1993).zip
C:\Documents and Settings\ejer\Shared\_\The Ungodly (2007).zip
C:\Documents and Settings\ejer\Shared\_\The Unit S03E11  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\The Unit S03E11.zip
C:\Documents and Settings\ejer\Shared\_\The Wicker Man (2006)  DVDRiP  WS .zip
C:\Documents and Settings\ejer\Shared\_\The Woods Have Eyes (2007).zip
C:\Documents and Settings\ejer\Shared\_\The.Elder.Scrolls.IV.Shivering.Isles.PAL.GERMAN.XBOX360-SWAG.zip
C:\Documents and Settings\ejer\Shared\_\The.Eye.of.Judgment.NTSC.MULTI3.Asian.PS3-NCC.zip
C:\Documents and Settings\ejer\Shared\_\The_Golden_Compass_PAL_MULTi5_READNFO_Wii-BAHAMUT.zip
C:\Documents and Settings\ejer\Shared\_\The_Golden_Compass_READNFO_EUR_NDS-XPA.zip
C:\Documents and Settings\ejer\Shared\_\The_Golden_Compass_USA_PS2DVD-CiRCUS.zip
C:\Documents and Settings\ejer\Shared\_\The_Suite_Life_of_Zack_and_Cody_Circle_of_Spies_USA_NDS-SirVG.zip
C:\Documents and Settings\ejer\Shared\_\Thr3e (2007)  CAM  LIMITED .zip
C:\Documents and Settings\ejer\Shared\_\Throat Gaggers 13.zip
C:\Documents and Settings\ejer\Shared\_\Tinker With My Stinker 2.zip
C:\Documents and Settings\ejer\Shared\_\Tits Ahoy 6.zip
C:\Documents and Settings\ejer\Shared\_\TKKG_Detektiv_Gesucht_GER_NDS-EXiMiUS.zip
C:\Documents and Settings\ejer\Shared\_\TMNT (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Tom Byrons POV Cock Suckers 5.zip
C:\Documents and Settings\ejer\Shared\_\Tomb.Raider.Anniversary.PAL.WII-SUSHi.zip
C:\Documents and Settings\ejer\Shared\_\Tony_Hawks_Project_8_JPN_XBOX360-Caravan.zip
C:\Documents and Settings\ejer\Shared\_\Top It Off.zip
C:\Documents and Settings\ejer\Shared\_\Trade (2007).zip
C:\Documents and Settings\ejer\Shared\_\Transformers (2007)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Trinity Blood E05  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Trinity Blood E06  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Trinity Blood E07  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Trinity Blood E08  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E01  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E02  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E03  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E04  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E05  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E06  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E07  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E08  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E09  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Tsukuyomi Moon Phase E10  DUAL AUDIO  DVDRiP  AC3  XViD .zip
C:\Documents and Settings\ejer\Shared\_\Twilight Zone The Movie (1983).zip
C:\Documents and Settings\ejer\Shared\_\Ugly Betty S02E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Ugly Betty S02E10.zip
C:\Documents and Settings\ejer\Shared\_\Ultimate_Board_Game_Collection_USA_WII-SYNDiCATE.zip
C:\Documents and Settings\ejer\Shared\_\Ultimate_Mortal_Kombat_EUR_NDS-EXiMiUS.zip
C:\Documents and Settings\ejer\Shared\_\Underdog (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Unknown (2006)  DVDSCR  FS .zip
C:\Documents and Settings\ejer\Shared\_\Van Wilder 2 (2006)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Van Wilder 2 (2006)  TS .zip
C:\Documents and Settings\ejer\Shared\_\Violence Jack (1986)  DVDR  PAL .zip
C:\Documents and Settings\ejer\Shared\_\Virtua_Fighter_5_Live_Arena_ASiAN_XBOX360-PhaseZero.zip
C:\Documents and Settings\ejer\Shared\_\Vox Footwear Black And Blue (2007).zip
C:\Documents and Settings\ejer\Shared\_\War (2007)  CAM  PROPER .zip
C:\Documents and Settings\ejer\Shared\_\War (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\War (2007).zip
C:\Documents and Settings\ejer\Shared\_\Warhammer_40k_Squad_Command_EUR_NDS-XPA.zip
C:\Documents and Settings\ejer\Shared\_\We Are Marshall (2006)  DVDSCR .zip
C:\Documents and Settings\ejer\Shared\_\We Are The Strange (2007).zip
C:\Documents and Settings\ejer\Shared\_\We Got Em All.zip
C:\Documents and Settings\ejer\Shared\_\Westside 3 (2007)  DVDRiP  STV .zip
C:\Documents and Settings\ejer\Shared\_\Wet Lesbians Weekend.zip
C:\Documents and Settings\ejer\Shared\_\When Nietzsche Wept (2007).zip
C:\Documents and Settings\ejer\Shared\_\Who_Wants_To_Be_A_Millionaire_PAL_Wii-WiiZARD.zip
C:\Documents and Settings\ejer\Shared\_\Whoregasm 2.zip
C:\Documents and Settings\ejer\Shared\_\Whos Your Caddy (2007)  CAM .zip
C:\Documents and Settings\ejer\Shared\_\Whos Your Caddy.zip
C:\Documents and Settings\ejer\Shared\_\Why Did I Get Married  (2007).zip
C:\Documents and Settings\ejer\Shared\_\Wicked Pictures Girl Talk.zip
C:\Documents and Settings\ejer\Shared\_\WiiFit_READNFO_JAP_WII-TMD.zip
C:\Documents and Settings\ejer\Shared\_\Wiskas Perversions 5.zip
C:\Documents and Settings\ejer\Shared\_\Without a Trace S06E09  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Without A Trace S06E09.zip
C:\Documents and Settings\ejer\Shared\_\Without a Trace S06E10  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Without a Trace S06E10.zip
C:\Documents and Settings\ejer\Shared\_\Womens Murder Club S01E09  720p x264 .zip
C:\Documents and Settings\ejer\Shared\_\Womens Murder Club S01E09.zip
C:\Documents and Settings\ejer\Shared\_\World.Series.Poker.EUR.PS3-NextLevel.zip
C:\Documents and Settings\ejer\Shared\_\World_Championship_Poker_2_PAL_XBOX360-FiX.zip
C:\Documents and Settings\ejer\Shared\_\World_Championship_Poker_2_PAL_XBOX360-STRANGE.zip
C:\Documents and Settings\ejer\Shared\_\World_Series_Of_Poker_2008_USA_PSP-Start2.zip
C:\Documents and Settings\ejer\Shared\_\WWE_Smackdown_VS_Raw_2008_KOR_PS2DVD-UCC.zip
C:\Documents and Settings\ejer\Shared\_\Yu-Gi-Oh_World_Championship_2008_USA_NDS-XPA.zip
C:\Documents and Settings\ejer\Shared\_\Yu_Gi_Oh_Dual_Monsters_GX_Tag_Force_Evolution_JAP_PS2DVD-GANT.zip
C:\Documents and Settings\ejer\Shared\_\Yu_Gi_Oh_GX_Tag_Force_Evolution_PAL_PS2DVD-STRiKE.zip
C:\Documents and Settings\ejer\Shared\_\Yuusha_no_Kuse_ni_Namaikida_JPN_PSP-Caravan.zip
C:\Documents and Settings\ejer\Shared\05 - Natasja - Gi' Mig Danmark Tilbage.mp3.zip
C:\Documents and Settings\ejer\Shared\50 Cent- I'll Still Kill (feat. Akon).mp3.zip
C:\Documents and Settings\ejer\Shared\Emenim - Just Lose It.mp3.zip
C:\Documents and Settings\ejer\Shared\Eminem - Loose Yourself.mp3.zip
C:\Documents and Settings\ejer\Shared\Eminem - Superman.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\04-nik_og_jay-i_love_ya.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\04 Justin Timberlake - My Love ft T.I.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\50Cent Ft. Justin Timberlake - AYO Technology.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Akon - 05 - Be Easy ft GAGE.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\akon feat biggie and 2 pac - ghetto remix - ghetto (remix).mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\akon ft emenim- smake that.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Akon ft Obie Trice - Look At Me Now .mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Akon Ft Snoop Dogg - I Wanna love you.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\alison krauss - allison kraus - you say it best when you say nothing at all.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Amalie - til solen står op.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Amy Winehouse - Do Me Good.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Amy Winehouse - Just Friends.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Amy Winehouse - Wake Up Alone.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Beyonce - Irreplacable.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Beyonce Ft Jay -z - Deja VU.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Beyonce ft. Jay-Z - Crazy In Love.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Beyonce ft. Slim Thug - Check Up On It.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Blast feat. Akon - Look me in my Eyes.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Blues - Amy Winehouse -  Love Is A Losing Game.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Bratz Babyz (c) THQ  Intro Outro Addon .zip
C:\Documents and Settings\ejer\Shared\gammelt\Bratz Prima J - Rockstar(1).mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Bratz Rock Angelz - So Good.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Hannah Montanna- I've Got Nerve.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\hannah montanna - G.N.O. (Girl's Night Out).mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Justin Timberlake - Cry Me A River.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Justin Timberlake - Damn Girl (ft. Will.I.Am).mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Justin Timberlake - Future Sex Love Sounds - 06 - What Goes Around...Comes Around.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Justin Timberlake - Senorita.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Justin Timberlake - SexyBack.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Justin Timberlake - What Goes Around...Comes Around.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Kelly Clarkson - Because Of You.mp3.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Kelly Clarkson - Walk Away.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\KNA Connected - FIBS (Løgn og Latin).mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Leanne Rimes - You say it best when you say nothing at all.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Marc Johnson & Alex - Jeg ser dig (Remix).mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Maroon 5 - She Will Be Loved.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\maroon5 - this love.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Norah Jones - Come Away With Me.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Norah Jones - Don't Know Why.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Norah Jones - Feels Like Home - 02 -What Am I To You.mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Private - My Secret Lover (Radio Edit).mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Ronan Keating - You Say It Best When You Say Nothing At All (Notting Hill).mp3.zip
C:\Documents and Settings\ejer\Shared\gammelt\Timbaland - Apologize (Feat. onerepublic).mp3.zip
C:\Documents and Settings\ejer\Shared\Jeg Vil Ha Gang I Den Pyrus.mp3.zip
C:\Documents and Settings\ejer\Shared\R Kelly ft Sean Paul & Akon - Slow Wind Remix Official.mp3.zip
C:\Documents and Settings\ejer\Shared\R Kelly ft Usher - Same Girl.mp3.zip
C:\Documents and Settings\ejer\x.dat
C:\Documents and Settings\ejer\z.dat

.
(((((((((((((((((((((((((  Files Created from 2008-01-07 to 2008-02-07  )))))))))))))))))))))))))))))))
.

2008-02-06 21:30 . 2004-08-10 20:00    388,608    --a------    C:\kmd.exe
2008-02-05 10:44 . 2007-12-04 14:04    837,496    --a------    C:\WINDOWS\system32\aswBoot.exe
2008-02-05 10:44 . 2004-01-09 10:13    380,928    --a------    C:\WINDOWS\system32\actskin4.ocx
2008-02-05 10:44 . 2007-12-04 13:54    95,608    --a------    C:\WINDOWS\system32\AvastSS.scr
2008-02-05 10:44 . 2007-12-04 15:55    94,544    --a------    C:\WINDOWS\system32\drivers\aswmon2.sys
2008-02-05 10:44 . 2007-12-04 15:56    93,264    --a------    C:\WINDOWS\system32\drivers\aswmon.sys
2008-02-05 10:44 . 2007-12-04 15:51    42,912    --a------    C:\WINDOWS\system32\drivers\aswTdi.sys
2008-02-05 10:44 . 2007-12-04 15:49    26,624    --a------    C:\WINDOWS\system32\drivers\aavmker4.sys
2008-02-05 10:44 . 2007-12-04 15:53    23,152    --a------    C:\WINDOWS\system32\drivers\aswRdr.sys
2008-02-05 08:40 . 2008-02-05 08:40    <DIR>    d--------    C:\Program Files\CCleaner
2008-02-05 00:03 . 2008-02-05 00:03    <DIR>    d--------    C:\Program Files\SpywareBlaster
2008-02-04 23:13 . 2008-02-04 23:13    <DIR>    d--hs----    C:\FOUND.002
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Program Files\Lavasoft
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-04 22:44 . 2008-02-04 22:44    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-04 20

Prøv lige at åbne C:\combofix.txt igen og kopier teksten ind startende med:

(((((((((((((((((((((((((  Files Created from 2008-01-07 to 2008-02-07  )))))))))))))))))))))))))))))))

Point, tjae jeg er ret ligeglad, så længe jeg ikke kan købe øl for dem, så lad os bare dele, når den tid kommer.*S*

http://www.jo-hansen.dk/beer/bryggerier/fotos.htg/albani-odense-classic-daase-2000.jpg - er det den du mener *GH*

Nej, det er faktisk denne:
http://www.jo-hansen.dk/beer/bryggerier/fotosider/Vestfyen/Vestfyen_Willemoes_Stout_VF009_2004.html
*LOL*

Den er da for gammel ifh til datoen ? *GH* - SKÅL -

(((((((((((((((((((((((((  Files Created from 2008-01-07 to 2008-02-07  )))))))))))))))))))))))))))))))
.

2008-02-06 21:30 . 2004-08-10 20:00    388,608    --a------    C:\kmd.exe
2008-02-05 10:44 . 2007-12-04 14:04    837,496    --a------    C:\WINDOWS\system32\aswBoot.exe
2008-02-05 10:44 . 2004-01-09 10:13    380,928    --a------    C:\WINDOWS\system32\actskin4.ocx
2008-02-05 10:44 . 2007-12-04 13:54    95,608    --a------    C:\WINDOWS\system32\AvastSS.scr
2008-02-05 10:44 . 2007-12-04 15:55    94,544    --a------    C:\WINDOWS\system32\drivers\aswmon2.sys
2008-02-05 10:44 . 2007-12-04 15:56    93,264    --a------    C:\WINDOWS\system32\drivers\aswmon.sys
2008-02-05 10:44 . 2007-12-04 15:51    42,912    --a------    C:\WINDOWS\system32\drivers\aswTdi.sys
2008-02-05 10:44 . 2007-12-04 15:49    26,624    --a------    C:\WINDOWS\system32\drivers\aavmker4.sys
2008-02-05 10:44 . 2007-12-04 15:53    23,152    --a------    C:\WINDOWS\system32\drivers\aswRdr.sys
2008-02-05 08:40 . 2008-02-05 08:40    <DIR>    d--------    C:\Program Files\CCleaner
2008-02-05 00:03 . 2008-02-05 00:03    <DIR>    d--------    C:\Program Files\SpywareBlaster
2008-02-04 23:13 . 2008-02-04 23:13    <DIR>    d--hs----    C:\FOUND.002
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Program Files\Lavasoft
2008-02-04 22:53 . 2008-02-04 22:53    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-04 22:44 . 2008-02-04 22:44    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-04 20:33 . 2008-02-04 20:33    <DIR>    d--------    C:\Program Files\Spybot - Search & Destroy
2008-02-04 20:33 . 2008-02-04 20:33    <DIR>    d--------    C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-02-04 20:29 . 2008-02-04 20:30    <DIR>    d--------    C:\Program Files\Alwil Software
2008-02-04 19:24 . 2008-02-04 19:24    157    --a------    C:\WINDOWS\wininit.ini
2008-02-04 19:14 . 2007-09-24 23:31    69,632    --a------    C:\WINDOWS\system32\javacpl.cpl
2008-02-04 19:11 . 2003-04-17 21:26    79    --a------    C:\WINDOWS\delay2.reg

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-04 21:55    9,344    ----a-w    C:\WINDOWS\system32\drivers\NSDriver.sys
2008-02-04 21:55    8,320    ----a-w    C:\WINDOWS\system32\drivers\AWRTRD.sys
2008-02-04 21:55    12,632    ----a-w    C:\WINDOWS\system32\lsdelete.exe
2007-12-11 07:09    ---------    d-----w    C:\Program Files\Lame MP3 Codec
2007-12-11 07:08    ---------    d-----w    C:\Program Files\XviD
2007-12-11 07:08    ---------    d-----w    C:\Program Files\MarkAny
2007-12-11 07:07    ---------    d-----w    C:\Program Files\Samsung
2007-12-10 12:48    ---------    d-----w    C:\Documents and Settings\ejer\Application Data\Creative
2007-12-10 12:42    ---------    d-----w    C:\Program Files\Creative
2007-12-07 09:49    ---------    d-----w    C:\Program Files\Google
2007-11-07 09:26    721,920    ----a-w    C:\WINDOWS\system32\lsasrv.dll
2007-11-07 09:26    721,920    ----a-w    C:\WINDOWS\system32\dllcache\lsasrv.dll
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 20:00 15360]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-12-18 19:52 68856]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-04-23 15:46 1318128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2006-03-23 12:17 94208]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2006-03-23 12:13 77824]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2006-03-23 12:17 118784]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 00:56 110592 C:\WINDOWS\system32\bthprops.cpl]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:56 64512]
"LaunchApp"="Alaunch" []
"RTHDCPL"="RTHDCPL.EXE" [2006-06-28 14:54 16248320 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [2006-05-16 18:04 2879488 C:\WINDOWS\SkyTel.exe]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [2005-12-21 15:02 53248]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-03 13:07 761946]
"ntiMUI"="C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2006-05-15 11:15 45056]
"ADMTray.exe"="C:\Acer\Empowering Technology\admtray.exe" [2005-10-24 16:45 2462208]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2005-12-27 15:50 69632]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-10 20:00 208952]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-10 20:00 59392]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 20:00 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-10 20:00 455168]
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2006-08-10 19:29 352256]
"Acer ePower Management"="C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe" [2006-05-22 12:54 3080704]
"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2006-07-20 22:15 593920]
"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\Monitor.exe" [2006-01-24 18:00 397312]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 13:20 227328]
"SMSTray"="C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe" [2006-07-21 08:32 126976]
"MAAgent"="C:\Program Files\MarkAny\ContentSafer\MAAgent.exe" [2006-06-02 14:39 57344]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 20:00 15360]
"Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 15:58 1744896]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [2002-02-04 22:17:13 65588]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"= C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL [2004-11-23 16:51 192512]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

R0 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 17:14]
R0 viaagp;VIA AGP Bus Filter;C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-03 23:07]
R1 OsaFsLoc;OsaFsLoc;C:\WINDOWS\system32\drivers\OsaFsLoc.sys [2005-10-15 18:20]
R2 int15.sys;int15.sys;C:\Acer\Empowering Technology\eRecovery\int15.sys [2005-01-13 14:46]
R2 osaio;osaio;C:\WINDOWS\system32\drivers\osaio.sys [2005-06-30 16:58]
R2 osanbm;osanbm;C:\WINDOWS\system32\drivers\osanbm.sys [2005-01-14 15:57]
R3 NdisFilt;OSA NdisFilter Protocol;C:\WINDOWS\system32\Drivers\NdisFilt.sys [2005-09-13 15:34]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{333c5bd6-50a8-11dc-98cb-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{333c5bd7-50a8-11dc-98cb-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c46f5c36-4ce6-11dc-98c4-0016d45927b0}]
\Shell\AutoRun\command - F:\AutoRun.exe

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-07 17:38:15
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
"MAAgent"="C:\\Program Files\\MarkAny\\ContentSafer\\MAAgent.exe"
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\DOCUME~1\ejer\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Completion time: 2008-02-07 17:40:06 - machine was rebooted
ComboFix-quarantined-files.txt  2008-02-07 16:40:00
ComboFix4.txt  2008-02-05 09:20:36
ComboFix3.txt  2008-02-06 17:55:08
ComboFix2.txt  2008-02-06 20:40:06
.
2008-02-04 23:23:01    --- E O F ---

Havde lige overset den sidste kommentar.

Den sidste kommentar var om øllet. ;-)

Der er ikke mere i logfilerne, hvordan kører maskinen?

Og sådan en tror jeg minsandten jeg tager nu ;o)

Den er stadig lidt sej i boot og "unboot". Men som sagt, i starten kunne den slet ikke boote. Kom bare en alert med et eller andet om Isass.exe (win32 virus), også i safe mode. Men næste gang søster for spyware, virus eller lign, bliver det en formatering. 

Læg bare et svar, begge to. Og igen, TUSINDE tak for hjælpen.

/Michael

Velbekomme. :-)

... ja - den var jo lumsk mht alle de *.bat filer og mere mere ...
Der blev jo en del luft da først alt det fra Limewire blev slettet *S*

Ping...
(Det var et [svar]...)