Kan du tyde denne Hijack log?

Jeg ser på den ...

... Nu er det ikke alle (u)ønskede elementer som viser sig med en HiJackThis Log; hvis du har 'mod' på det så gennemfør proceduren herfra -> http://www.eksperten.dk/artikler/1123

Bemærk at HiJackThis.exe programmet skal gemmes i en dertil oprettet mappe og IKKE køres direkte fra nettet...

Tak, jeg forsøger at gå i gang med proceduren, du nævner, men det kommer nok til at tage nogle timer, for når jeg skriver at den er langsom, så mener jeg LANGSOOOOOOMMMM. jeg var ikke opmærksom på, at jeg ikke skulle køre HiJackThis direkte fra nettet. Troede det var hurtigst og bedst, når det hele nu kører så sløvt ikke først at installere. Men det må jeg så gøre om.

Endelig, så glemte jeg at skrive, at jeg først havde forsøgt mig med Spybot Search and Destroy i nat. Den fandt 18 ting, den ville fjerne, men det lykkedes kun med de 4. De sidste 14 ville kræve en genstart, og da jeg gjorde det, fik jeg besked om at det alligevel ikke kunne lade sig gøre - vistnok noget med at det krævede en netadgang, som der ikke var tilladelse til, eller noget i den stil.

En lille update: Det gik forholdsvis hurtigt med at downloade de 4 programmer og jeg har nu installeret og kørt Ccleaner. Den fandt 217 problemer, som jeg har ladet den reparerer. Hvis resten gå lige så let, er jeg snart gennem proceduren - men det er jo nok for optimistisk at være... jeg går videre...

Så har jeg gennemført scanningen med SuperAntiSpyware og der blev fundet 265 trusler, som jeg bad den om at slette. Det gik i susende fart, men da den var næsten færdig kom der en fejlmeddelelse, at programmet havde fundet en fejl og blev afsluttet, så nu er jeg ikke sikker på, at det blev fjernet korrekt. Derfor må jeg nu lave en ny scanning - det kommer til at tage lidt tid igen. Sidst tog scanningen ca. 1 time.

Så er jeg igennem endnu en fuld skanning med SuperAntiSpyware. Der blev fundet 0 trusler, så den havde åbenbart nået at fjerne alt i første omgang. Nu går jeg videre med Hijack...

Pyha, det er ikke just noget, der går hurtigt, det her. Det har lige taget godt 20 min. at genåbne SuperAntiSpyware, for at få fat i en kopi af loggen. Her kommer så indholdet af de tre log-filer, som jeg håber nogen kan få noget fornuftigt ud af?

Indhold af SuperAntiSpyware-log:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 03/30/2008 at 05:23 PM

Application Version : 4.0.1154

Core Rules Database Version : 3427
Trace Rules Database Version: 1419

Scan type      : Complete Scan
Total Scan Time : 00:49:46

Memory items scanned      : 235
Memory threats detected  : 0
Registry items scanned    : 5325
Registry threats detected : 0
File items scanned        : 36417
File threats detected    : 265

Adware.Tracking Cookie
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@dealtime[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@banner2.ofir[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.tucows[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@landings.trafficz[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tripod[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@image.masterstats[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@optimost[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.beliefnet[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad.ofir[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@cz6.clickzs[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@stat.onestat[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@qksrv[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fl01.ct2.comclick[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@globalstat[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.simtel[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.vg.basefarm[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@c3.gostats[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ilead.itrack[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tracking.notabenestats[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adbrite[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@counter.hitslink[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@gostats[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@addynamix[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.webstat[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@worldsexguide[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad-flow[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.intelli-tracker[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.tiscali[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads2.jubii[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad1.emediate[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@stats.klsoft[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@stat.dealtime[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.mcafee[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.qksrv[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@stats1.reliablestats[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.techtv[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad.text.tbn[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fortunecity[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@smileycentral[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@macromedia[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@i.screensavers[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@xiti[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@track.adform[7].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@windowsmedia[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@pics4clicks.suze[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adrenalinesk[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@clickbank[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@free.wegcash[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@list[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.x10[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad.tbn[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@dynamicsitestats[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@toplist[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad.agava.tbn[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@e2.emediate[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adfair[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@bizrate[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@hit.stat[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@indexstats[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@goclick[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@stat.postdanmark[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.us.e-planning[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@dk.winantivirus[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[8].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@CARM07Z5.txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@kanoodle[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@server.cpmstar[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@focalex[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.as4x.tmcs[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@upspiral[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adopt.hbmediapro[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adserver.banneradministration[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@indextools[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.freeonlinegames[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@winantivirus[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.sextime[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@accelerator-media[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@m1.webstats4u[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@web4.realtracker[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.pornomaskinen[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adopt.euroclick[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@rotator.adjuggler[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.arto[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@cz7.clickzs[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@trafficdashboard[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@funwebproducts[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.upspiral[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adinterax[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@netmediagroup[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@drivecleaner[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@cs.sexcounter[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@azjmp[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.macromedia[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@stat.katalysatormedia[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.amaena[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@CAK5YF4D.txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@pulz.banneradministration[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.sex-sex-sex[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.screensavers[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tdstats[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.tripod.lycos[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tacoda[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@amaena[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@revsci[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@CAY9K78N.txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@members.tripod[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.winantivirus[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@doubleclick[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@advertising[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@atdmt[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fastclick[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@trafficmp[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.specificpop[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@servedby.advertising[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@doubleclick[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@mediaplex[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@servedby.advertising[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@advertising[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@advertising[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@servedby.advertising[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@revenue[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@mediatrack.revenue[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@mediaplex[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@server.iad.liveperson[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@overture[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@targetnet[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@server.iad.liveperson[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fastclick[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@spylog[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@2o7[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ehg.hitbox[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@z1.adserver[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@zedo[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@questionmarket[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@bs.serving-sys[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@edge.ru4[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@yadro[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tribalfusion[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@linksynergy[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tradedoubler[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@www.nextag[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@atdmt[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@valueclick[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@trafficmp[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@hitbox[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@hg1.hitbox[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@advertising[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@servedby.advertising[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@mediaplex[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@doubleclick[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@atdmt[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@mediaplex[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@linksynergy[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@2o7[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@questionmarket[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[6].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@hg1.hitbox[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@phg.hitbox[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@hitbox[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@maxserving[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fastclick[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ehg-nokiafin.hitbox[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@bluestreak[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ehg-cbs.hitbox[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ehg-nokiafin.hitbox[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@bs.serving-sys[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@advertising[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@serving-sys[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@overture[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@servedby.advertising[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@mediaplex[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tradedoubler[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@realmedia[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tribalfusion[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@bluestreak[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@overture[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[7].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[8].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[6].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@server.iad.liveperson[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[7].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@maxserving[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ath.belnk[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@belnk[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@starware[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@dist.belnk[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@z1.adserver[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@247realmedia[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@questionmarket[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tribalfusion[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tribalfusion[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@atwola[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.pointroll[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@edge.ru4[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@statcounter[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@bluestreak[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@2o7[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@trafficmp[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad.yieldmanager[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@h.starware[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tradedoubler[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fastclick[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@casalemedia[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@statcounter[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@belnk[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fastclick[6].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@c5.zedo[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@zedo[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@perf.overture[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@dist.belnk[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tradedoubler[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tribalfusion[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@media.fastclick[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad.yieldmanager[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@exitexchange[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@casalemedia[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@microsoftwlmessengermkt.112.2o7[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as-us.falkag[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tribalfusion[6].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adrevolver[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@casalemedia[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@serving-sys[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@bs.serving-sys[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@statcounter[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@questionmarket[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.accelerator-media[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@hotelscom.122.2o7[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[9].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ads.pointroll[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@atwola[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@2o7[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad.yieldmanager[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@server.iad.liveperson[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@msnportal.112.2o7[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fastclick[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tradedoubler[6].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@roiservice[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@statcounter[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@casalemedia[4].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@questionmarket[5].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adrevolver[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@perf.overture[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tribalfusion[7].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@zedo[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@revenue[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@try.starware[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@h.starware[3].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@ad.yieldmanager[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@tradedoubler[7].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@media.fastclick[1].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@c5.zedo[2].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@fastclick[8].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@as1.falkag[10].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@adtech[9].txt
    C:\Documents and Settings\Fam. Mollerup-Degn\Cookies\fam. mollerup-degn@2o7[6].txt



Indhold af Combofix-loggen:
ComboFix 08-03-30.1 - Fam. Mollerup-Degn 2008-03-30 19:41:02.2 - FAT32x86
Running from: C:\Documents and Settings\Fam. Mollerup-Degn\Dokumenter\Downloads\Virusrensning\ComboFix.exe
* Resident AV is active


WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

(((((((((((((((((((((((((((((((((((((((  Other Deletions  )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
C:\Programmer\screensavers.com
C:\Programmer\screensavers.com\Installer\bin\siuninst.exe
C:\WINDOWS\start.exe
C:\WINDOWS\system32\eglivecam.dll
C:\WINDOWS\Web\default.htt

.
(((((((((((((((((((((((((  Files Created from 2008-02-28 to 2008-03-30  )))))))))))))))))))))))))))))))
.

2008-03-30 13:23 . 2008-03-30 13:23    <DIR>    d--------    C:\WINDOWS\All Users\Programdata\SUPERAntiSpyware.com
2008-03-30 13:18 . 2008-03-30 13:18    <DIR>    d--------    C:\Programmer\SUPERAntiSpyware
2008-03-30 13:18 . 2008-03-30 13:18    <DIR>    d--------    C:\Documents and Settings\Fam. Mollerup-Degn\Application Data\SUPERAntiSpyware.com
2008-03-30 13:07 . 2008-03-30 13:07    <DIR>    d--------    C:\Programmer\CCleaner
2008-03-30 10:44 . 2008-03-30 10:44    <DIR>    d--hs----    C:\WINDOWS\ftpcache
2008-03-30 03:10 . 2006-10-14 10:13    981,760    ---------    C:\WINDOWS\SYSTEM32\dllcache\mfc42u.dll
2008-03-30 03:09 . 2006-12-26 15:09    536,576    ---------    C:\WINDOWS\SYSTEM32\dllcache\msado15.dll
2008-03-30 03:09 . 2006-12-26 15:09    200,704    ---------    C:\WINDOWS\SYSTEM32\dllcache\msadox.dll
2008-03-30 03:09 . 2006-12-26 15:09    180,224    ---------    C:\WINDOWS\SYSTEM32\dllcache\msadomd.dll
2008-03-30 03:09 . 2006-12-26 15:09    102,400    ---------    C:\WINDOWS\SYSTEM32\dllcache\msjro.dll
2008-03-30 03:08 . 2006-12-19 23:50    134,656    ---------    C:\WINDOWS\SYSTEM32\dllcache\shsvcs.dll
2008-03-30 03:07 . 2006-12-19 20:17    333,824    ---------    C:\WINDOWS\SYSTEM32\dllcache\wiaservc.dll
2008-03-30 01:48 . 2003-08-14 20:35    <DIR>    d--------    C:\Documents and Settings\Administrator.MOLLERUP-DEGN\Skabeloner
2008-03-30 01:48 . 2003-08-14 20:35    <DIR>    d--------    C:\Documents and Settings\Administrator.MOLLERUP-DEGN\Lokale indstillinger
2008-03-29 22:49 . 2008-03-29 22:49    0    --a------    C:\Documents and Settings\Fam. Mollerup-Degn\032900.dat
2008-03-16 02:38 . 2003-08-14 20:35    <DIR>    d--------    C:\Documents and Settings\Administrator\Skabeloner
2008-03-16 02:38 . 2003-08-14 20:35    <DIR>    d--------    C:\Documents and Settings\Administrator\Lokale indstillinger
2008-03-16 01:37 . 2007-02-28 18:03    2,182,912    ---------    C:\WINDOWS\SYSTEM32\dllcache\ntoskrnl.exe
2008-03-16 01:37 . 2007-02-28 18:03    2,138,624    ---------    C:\WINDOWS\SYSTEM32\dllcache\ntkrnlmp.exe
2008-03-16 01:37 . 2007-02-28 18:03    2,060,160    ---------    C:\WINDOWS\SYSTEM32\dllcache\ntkrnlpa.exe
2008-03-16 01:37 . 2007-02-28 18:03    2,018,304    ---------    C:\WINDOWS\SYSTEM32\dllcache\ntkrpamp.exe
2008-03-16 01:37 . 2007-12-18 10:51    179,584    ---------    C:\WINDOWS\SYSTEM32\dllcache\mrxdav.sys
2008-03-16 01:36 . 2007-03-08 17:35    1,843,584    ---------    C:\WINDOWS\SYSTEM32\dllcache\win32k.sys
2008-03-16 01:36 . 2007-06-13 15:22    1,034,240    ---------    C:\WINDOWS\SYSTEM32\dllcache\explorer.exe
2008-03-16 01:36 . 2007-03-08 17:38    577,536    ---------    C:\WINDOWS\SYSTEM32\dllcache\user32.dll
2008-03-16 01:36 . 2007-06-19 15:32    282,112    ---------    C:\WINDOWS\SYSTEM32\dllcache\gdi32.dll
2008-03-16 01:36 . 2007-02-05 22:19    185,344    ---------    C:\WINDOWS\SYSTEM32\dllcache\upnphost.dll
2008-03-16 01:36 . 2007-03-08 17:38    40,960    ---------    C:\WINDOWS\SYSTEM32\dllcache\mf3216.dll
2008-03-16 01:34 . 2007-12-04 19:41    550,912    ---------    C:\WINDOWS\SYSTEM32\dllcache\oleaut32.dll
2008-03-16 01:25 . 2007-07-30 19:18    34,136    --a------    C:\WINDOWS\SYSTEM32\wucltui.dll.mui
2008-03-16 01:25 . 2007-07-30 19:19    25,944    --a------    C:\WINDOWS\SYSTEM32\wuaucpl.cpl.mui
2008-03-16 01:25 . 2007-07-30 19:19    25,944    --a------    C:\WINDOWS\SYSTEM32\wuapi.dll.mui
2008-03-16 01:25 . 2007-07-30 19:18    20,824    --a------    C:\WINDOWS\SYSTEM32\wuaueng.dll.mui
2008-03-15 23:35 . 2008-03-15 23:35    <DIR>    d--------    C:\WINDOWS\SYSTEM32\config\systemprofile\Application Data\SiteAdvisor

.
((((((((((((((((((((((((((((((((((((((((  Find3M Report  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-12-07 13:37    3,080,192    ----a-w    C:\WINDOWS\SYSTEM32\dllcache\mshtml.dll
2007-12-06 12:07    18,432    ------w    C:\WINDOWS\SYSTEM32\dllcache\iedw.exe
2007-12-04 17:41    550,912    ----a-w    C:\WINDOWS\SYSTEM32\oleaut32.dll
2005-04-25 13:00    86,432    ----a-w    C:\Documents and Settings\Fam. Mollerup-Degn\Application Data\GDIPFONTCACHEV1.DAT
2003-08-14 21:14    6,840    ----a-w    C:\Documents and Settings\Fam. Mollerup-Degn\081403.dat
2003-08-14 21:13    922,112    ----a-w    C:\Documents and Settings\Fam. Mollerup-Degn\vsapi32.dll
2003-08-14 21:13    77,824    ----a-w    C:\Documents and Settings\Fam. Mollerup-Degn\sysclean.exe
2003-08-14 21:13    438,436    ----a-w    C:\Documents and Settings\Fam. Mollerup-Degn\tsc.bin
2003-08-14 21:13    176,128    ----a-w    C:\Documents and Settings\Fam. Mollerup-Degn\vscantm.bin
2002-11-01 18:10    266    --sh--w    C:\Programmer\desktop.ini
2002-11-01 18:10    10,984    ---h--w    C:\Programmer\folder.htt
.

(((((((((((((((((((((((((((((((((((((  Reg Loading Points  ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SlowFile Icon Overlay]
@={7D688A77-C613-11D0-999B-00C04FD655E1}

[HKEY_CLASSES_ROOT\CLSID\{7D688A77-C613-11D0-999B-00C04FD655E1}]
2007-10-25 17:56    8466432    --a------    C:\WINDOWS\SYSTEM32\SHELL32.DLL

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-27 02:53 15360]
"Skype"="C:\Programmer\Skype\Phone\Skype.exe" [2006-10-13 17:20 20058152]
"MsnMsgr"="C:\Programmer\MSN Messenger\MsnMsgr.exe" [2006-07-29 19:34 5354792]
"swg"="C:\Programmer\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2008-03-16 00:09 171448]
"SUPERAntiSpyware"="C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2008-02-29 16:03 1481968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SystemTray"="SysTray.Exe" [2001-10-09 12:00 3072 C:\WINDOWS\SYSTEM32\systray.exe]
"Matrox Powerdesk"="C:\WINDOWS\system32\PDesk\PDesk.exe" [2006-03-02 10:32 684032]
"zBrowser Launcher"="C:\PROGRA~1\LOGITECH\iTouch\iTouch.exe" [2003-12-01 11:38 892928]
"Logitech Utility"="Logi_MwX.Exe" [2003-06-30 09:50 19968 C:\WINDOWS\LOGI_MWX.EXE]
"QuickTime Task"="C:\Programmer\QuickTime\qttask.exe" [2004-03-21 19:22 77824]
"WebCam Go Sti Service Application"="wbcgosvc" []
"Matrox PowerDesk SE"="C:\Programmer\Matrox Graphics Inc\PowerDesk SE\Matrox.PowerDesk SE.exe" [2005-09-22 10:20 163840]
"TkBellExe"="C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe" [2006-05-01 00:43 180269]
"mcagent_exe"="C:\Programmer\McAfee.com\Agent\mcagent.exe" [2007-08-03 22:33 582992]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-27 02:53 15360]

C:\Documents and Settings\Fam. Mollerup-Degn\menuen Start\Programmer\Start\
HotSync Manager.lnk - C:\Programmer\Palm\HOTSYNC.EXE [2002-09-12 13:00:00 299008]

C:\Documents and Settings\All Users\Menuen Start\Programmer\Start\
Microsoft Office.lnk - C:\Programmer\Microsoft Office\Office10\OSA.EXE [2001-02-13 10:01:04 83360]
Acrobat Assistant.lnk - C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe [2003-10-24 05:37:56 217194]
Windows-pc-s›gning.lnk - C:\Programmer\MSN Toolbar Suite\DS\02.05.0001.1119\da-dk\bin\WindowsSearch.exe [2005-09-20 18:10:04 238080]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Programmer\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 12:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Programmer\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 12:41 294912 C:\Programmer\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"Matrox Powerdesk"=C:\WINDOWS\SYSTEM\PDesk\PDesk.exe /Autolaunch
"C-Media Mixer"=Mixer.exe /startup
"MCAgentExe"=C:\PROGRA~1\MCAFEE.COM\AGENT\mcagent.exe
"MCUpdateExe"=C:\PROGRA~1\MCAFEE.COM\AGENT\MCUPDATE.EXE
"Norman ACP"="C:\Programmer\Norman Access Control Privacy\nrmenctb.exe"
"Norman ZANDA"=C:\NORMAN\NVC\BIN\ZLH.EXE /LOAD /SPLASH
"VirusScan Online"="C:\PROGRA~1\MCAFEE.COM\VSO\mcvsshld.exe"
"Soltek"=C:\WINDOWS\SYSTEM32\Autorun.exe
"LoadPowerProfile"=Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
"StillImageMonitor"=C:\WINDOWS\SYSTEM32\stimon.exe
"VSOCheckTask"="C:\PROGRA~1\MCAFEE.COM\VSO\MCMNHDLR.EXE" /checktask

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\EXPLORER.EXE"=
"C:\\Programmer\\Messenger\\MSMSGS.EXE"=
"C:\\Programmer\\Microsoft Games\\Zoo Tycoon 2\\zt.exe"=
"C:\\Programmer\\MSN Messenger\\msnmsgr.exe"=
"C:\\Programmer\\MSN Messenger\\msncall.exe"=
"C:\\Programmer\\Fælles filer\\McAfee\\mna\\McNASvc.exe"=
"C:\\Programmer\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009



[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
"C:\PROGRA~1\OUTLOO~1\setup50.exe" /APP:OE /CALLER:IE50 /user /install

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA851-CC51-11CF-AAFA-00AA00B6015C}]
rundll32.exeadvpack.dll

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9EF0045A-CDD9-438e-95E6-02B9AFEC8E11}]
C:\WINDOWS\SYSTEM32\updcrl.exe -e -u C:\WINDOWS\SYSTEM\verisignpub1.crl
.
Contents of the 'Scheduled Tasks' folder
"2007-10-06 17:00:18 C:\WINDOWS\Tasks\Start programmet Hastighedsoptimering.job"
"2007-08-17 23:18:04 C:\WINDOWS\Tasks\Vedligeholdelse - Defragmentering.job"
- C:\WINDOWS\DEFRAG.EXE
"2006-11-09 23:00:40 C:\WINDOWS\Tasks\Vedligeholdelse - ScanDisk.job"
- C:\WINDOWS\SCANDSKW.EXE
"2005-11-30 22:30:02 C:\WINDOWS\Tasks\Vedligeholdelse - Diskoprydning.job"
- C:\WINDOWS\CLEANMGR.EXE
"2006-08-08 07:28:30 C:\WINDOWS\Tasks\McQcTask.job"
- c:\programmer\mcafee\mqc\QcConsol.exe.4158 0
"2006-12-14 23:03:40 C:\WINDOWS\Tasks\McDefragTask.job"
- C:\WINDOWS\system32\defrag.exe
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-30 19:54:36
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-03-30 19:59:27
ComboFix-quarantined-files.txt  2008-03-30 17:59:06
Pre-Run: 607,682,560 byte ledig
Post-Run: 589,365,248 byte ledig
.
2008-03-30 10:10:35    --- E O F --- 



Indhold af HiJackThis-loggen:

Logfile of HijackThis v1.99.1
Scan saved at 19:10:40, on 30-03-2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programmer\Fælles filer\EPSON\EBAPI\eEBSVC.exe
C:\Programmer\Fælles filer\EPSON\EBAPI\SAgent2.exe
C:\Programmer\Fælles filer\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\programmer\fælles filer\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\PROGRA~1\McAfee.com\Agent\mcagent.exe
C:\WINDOWS\system32\mgabg.exe
C:\Programmer\McAfee\MPF\MPFSrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\PDesk\PDesk.exe
C:\PROGRA~1\LOGITECH\iTouch\iTouch.exe
C:\Programmer\QuickTime\qttask.exe
C:\Programmer\Matrox Graphics Inc\PowerDesk SE\Matrox.PowerDesk SE.exe
C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmer\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmer\Skype\Phone\Skype.exe
C:\Programmer\MSN Messenger\MsnMsgr.Exe
C:\Programmer\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Programmer\McAfee\MSC\mcuimgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Programmer\MSN Toolbar Suite\DS\02.05.0001.1119\da-dk\bin\WindowsSearch.exe
C:\Programmer\MSN Toolbar Suite\DS\02.05.0001.1119\da-dk\bin\WindowsSearchIndexer.exe
C:\Programmer\Palm\HOTSYNC.EXE
C:\Documents and Settings\Fam. Mollerup-Degn\Dokumenter\Downloads\Virusrensning\alternativ.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dr.dk/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Hyperlinks
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Programmer\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Programmer\SiteAdvisor\4608\SiteAdv.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmer\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\programmer\mcafee\virusscan\scriptcl.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmer\Fælles filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmer\google\googletoolbar3.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: MSN Search Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmer\MSN Toolbar Suite\TB\02.05.0000.1105\da-dk\msntb.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmer\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programmer\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_0.dll
O3 - Toolbar: MSN Search Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmer\MSN Toolbar Suite\TB\02.05.0000.1105\da-dk\msntb.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Programmer\SiteAdvisor\4144\SiteAdv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmer\google\googletoolbar3.dll
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [Matrox Powerdesk] C:\WINDOWS\system32\PDesk\PDesk.exe /Autolaunch
O4 - HKLM\..\Run: [zBrowser Launcher] C:\PROGRA~1\LOGITECH\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmer\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WebCam Go Sti Service Application] wbcgosvc
O4 - HKLM\..\Run: [Matrox PowerDesk SE] "C:\Programmer\Matrox Graphics Inc\PowerDesk SE\Matrox.PowerDesk SE.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmer\Fælles filer\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [mcagent_exe] C:\Programmer\McAfee.com\Agent\mcagent.exe /runkey
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Programmer\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmer\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Programmer\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmer\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: HotSync Manager.lnk = C:\Programmer\Palm\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Programmer\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Acrobat Assistant.lnk = C:\Programmer\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Windows-pc-søgning.lnk = C:\Programmer\MSN Toolbar Suite\DS\02.05.0001.1119\da-dk\bin\WindowsSearch.exe
O8 - Extra context menu item: &MSN Search - res://C:\Programmer\MSN Toolbar Suite\TB\02.05.0000.1105\da-dk\msntb.dll/search.htm
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Åbn på ny baggrundsfane - res://C:\Programmer\MSN Toolbar Suite\TAB\02.05.0000.1105\da-dk\msntabres.dll/229?fef3413e73154f1c8724e86b33b1e543
O8 - Extra context menu item: Åbn på ny forgrundsfane - res://C:\Programmer\MSN Toolbar Suite\TAB\02.05.0000.1105\da-dk\msntabres.dll/230?fef3413e73154f1c8724e86b33b1e543
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmer\Messenger\msmsgs.exe
O16 - DPF: {1D2DCA0D-B30F-40AD-9690-087105F214EC} (IEDial Class) - http://download.nocreditcard.com/download/Object/ieaccess2.cab
O16 - DPF: {36C417C6-13C6-448B-9784-DD73A93B0582} (McAfee.com Download+Installer Class) - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,56/mcinsctl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,72/mcinsctl.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Programmer\SiteAdvisor\4144\SiteAdv.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Programmer\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FÆLLES~1\McAfee\EmProxy\emproxy.exe
O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Programmer\Fælles filer\EPSON\EBAPI\eEBSVC.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Programmer\Fælles filer\EPSON\EBAPI\SAgent2.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Programmer\Fælles filer\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\programmer\fælles filer\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: MGABGEXE - Matrox Graphics Inc. - C:\WINDOWS\system32\mgabg.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Programmer\McAfee\MPF\MPFSrv.exe

Giver noget af dette mening?

Nå, der kom aldrig svar, så jeg lukker. Men det lykkedes mig at få kopieret de dokumenter ud, jeg gerne ville bevare, hvorefter jeg simpelthen formaterede harddisken og reinstallerede xp helt fra bunden af. Så nu har jeg en computer så god som da den var ny for 3-4 år siden... Dejlig lille ekstracomputer...

(Sorry - den er smuttet i E-mail junglen)