Free twit Tube
Antal indlæg: 9

Hejsa

Jeg har fået følgende problem, jeg håber i kan hjælpe med.

I google browseren fik jeg ved besøg på hhv. kdlfoto.dk og ekstrabladet.dk en masse links i teksten på en given side. Mest på buzz words som windows men også tilfældige steder. Disse var vist (hvis man holdt musen over, åbnede en reklamenote) til ovenstående Free twit tube.

Det har kun været den ene dag, og ser nu ud til at være væk igen. Men ligger der noget gemt?

# AdwCleaner v3.016 - Report created 27/12/2013 at 12:50:22
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jeppe - JEPPE-PC
# Running from : C:\Users\Jeppe\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v

[ File : C:\Users\Jeppe\AppData\Roaming\Mozilla\Firefox\Profiles\4tpb2phr.default\prefs.js ]


-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Jeppe\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [4838 octets] - [23/12/2013 12:27:26]
AdwCleaner[R1].txt - [1003 octets] - [27/12/2013 12:49:38]
AdwCleaner[S0].txt - [4910 octets] - [23/12/2013 12:31:38]
AdwCleaner[S1].txt - [926 octets] - [27/12/2013 12:50:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [985 octets] ##########

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 07-03-2012 01:52:41
System Uptime: 28-12-2013 08:32:44 (6 hours ago)
.
Motherboard: ASRock |  | G31M-S. 
Processor: Pentium(R) Dual-Core CPU     E5800 @ 3.20GHz | CPUSocket | 3191/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 442 GiB total, 241,587 GiB free.
D: is CDROM (UDF)
E: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP229: 03-12-2013 08:00:09 - Windows Update
RP230: 08-12-2013 10:50:25 - Windows Update
RP231: 10-12-2013 22:01:25 - Windows Update
RP232: 14-12-2013 12:52:47 - Windows Update
RP233: 14-12-2013 12:57:52 - Installed DirectX
RP234: 14-12-2013 13:01:42 - Installed Sid Meier’s Civilization 4 Complete
RP235: 15-12-2013 20:27:41 - Windows Update
RP236: 22-12-2013 10:38:27 - Windows Update
RP237: 22-12-2013 17:35:46 - Installed Evernote v. 5.0.3
RP238: 27-12-2013 08:11:45 - Windows Update
.
==== Installed Programs ======================
.
64 Bit HP CIO Components Installer
6500_E709_eDocs
6500_E709_Help
6500_E709a
Add or Remove Adobe Creative Suite 3 Design Standard
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe BridgeTalk Plugin CS3
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Creative Suite 3 Design Standard
Adobe Default Language CS3
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Illustrator CS3
Adobe InDesign CS3
Adobe InDesign CS3 Icon Handler
Adobe Linguistics CS3
Adobe MotionPicture Color Files
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Reader XI (11.0.05) - Dansk
Adobe Setup
Adobe Shockwave Player 12.0
Adobe SING CS3
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe Version Cue CS3 Server
Adobe WAS CS3
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
AHV content for Acrobat and Flash
Air Video Server 2.4.6-beta3
AirPort
Apple-programunderstøttelse
Apple Mobile Device Support
Apple Software Update
avast! Free Antivirus
Bonjour
bpd_scan
BPDSoftware
BPDSoftware_Ini
BufferChm
CCleaner
Cisco WebEx Meetings
Citrix Authentication Manager
Citrix Receiver
Citrix Receiver (HDX Flash Redirection)
Citrix Receiver Inside
Citrix Receiver(Aero)
Citrix Receiver(DV)
Citrix Receiver(USB)
Compatibility Pack for the 2007 Office system
Content Transfer
CutePDF Writer 2.8
D-Fend Reloaded 1.3.3 (deinstall)
Destinations
DeviceDiscovery
DocMgr
DocProc
Dropbox
Evernote v. 5.0.3
Fax
Football Manager 2012
GameSpy Comrade
Google Chrome
Google Update Helper
GPBaseService2
Hewlett-Packard ACLM.NET v1.1.0.0
HP Customer Participation Program 13.0
HP Document Manager 2.0
HP Imaging Device Functions 13.0
HP Officejet 6500 E709 Series
HP Product Detection
HP Smart Web Printing 4.51
HP Solution Center 13.0
HP Update
HPDiagnosticAlert
HPProductAssistant
HPSSupply
iCloud
iTunes
Java 7 Update 40 (64-bit)
Java 7 Update 45
Java Auto Updater
Junk Mail filter update
Malwarebytes Anti-Malware version 1.75.0.1300
MarketResearch
McAfee Security Scan Plus
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile DAN Language Pack
Microsoft .NET Framework 4 Client Profile DAN sprogpakke
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Office 2010
Microsoft Office File Validation Add-In
Microsoft Office Standard Edition 2003
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB2758694)
Nero 8 Essentials
Network64
NordicBet
NWZ-S750 WALKMAN Guide
OCR Software by I.R.I.S. 13.0
Online Plug-in
Overførselsværktøj til Windows Live
PDF Settings
ProductContext
QuickTime
Realtek High Definition Audio Driver
RGolf 3.2.3
Scan
Secunia PSI (3.0.0.4001)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile DAN sprogpakke (KB2518870)
Self-service Plug-in
Shop for HP Supplies
Sid Meier’s Civilization 4 Complete
SmartWebPrinting
SolutionCenter
Status
Steam
swMSM
TeamViewer 8
Tilmeldingsassistent til Windows Live
Toolbox
TrayApp
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
VCRedistSetup
Veetle TV
VLC media player 2.1.0
WebReg
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live Mail
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Gallery
Windows Live Sync
Windows Live Writer
WinRAR 4.11 (32-bit)
Zip Motion Block Video codec (Remove Only)
.
==== End Of File ===========================

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.45.2
Run by Jeppe at 14:10:59 on 2013-12-28
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.45.1030.18.3318.1636 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Program Files (x86)\Malwarebytes’ Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes’ Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes’ Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\IoctlSvc.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\Secunia\PSI\PSIA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Secunia\PSI\sua.exe
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\AirVideoServer\AirVideoServer.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\AirPort\APAgent.exe
C:\Users\Jeppe\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:Tabs
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Hjælp til tilmelding til Windows Live: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [Steam] “C:\Program Files (x86)\Steam\steam.exe” -silent
uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
uRun: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
uRun: [AirVideoServer] C:\Program Files (x86)\AirVideoServer\AirVideoServer.exe
uRun: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
uRun: [Comrade.exe] C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe
mRun: [APSDaemon] “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
mRun: [ContentTransferWMDetector.exe] C:\Program Files (x86)\Sony\Content Transfer\ContentTransferWMDetector.exe
mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun: [Adobe_ID0EYTHM] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
mRun: [AirPort Base Station Agent] “C:\Program Files (x86)\AirPort\APAgent.exe”
mRun: [ConnectionCenter] “C:\Program Files (x86)\Citrix\ICA Client\concentr.exe” /startup
mRun: [Adobe ARM] “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
mRun: [QuickTime Task] “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime
mRun: [SunJavaUpdateSched] “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
mRun: [AvastUI.exe] “C:\Program Files\AVAST Software\Avast\AvastUI.exe” /nogui
mRun: [iTunesHelper] “C:\Program Files (x86)\iTunes\iTunesHelper.exe”
mRunOnce: [20131224] C:\Program Files\AVAST Software\Avast\setup\emupdate\75d76b5a-866f-4ded-a1d8-2503c3897d13.exe /check
StartupFolder: C:\Users\Jeppe\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Jeppe\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\Jeppe\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SECUNI~1.LNK - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
IE: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
IE: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
IE: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
IE: E&ksporter; til Microsoft Excel - C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TCP: NameServer = 10.0.0.1 212.242.40.3 212.242.40.51
TCP: Interfaces\{B20E6943-FAB5-4815-BD44-7AB55AD3C80F} : DHCPNameServer = 10.0.0.1 212.242.40.3 212.242.40.51
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - “C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe”—configure-user-settings—verbose-logging—system-level—multi-install—chrome
x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live Family Safety Browser Helper Class: {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-17 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-17 205320]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-3-7 1032416]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-3-7 409832]
R1 ctxusbm;Citrix USB Monitor Driver;C:\Windows\System32\drivers\ctxusbm.sys [2011-6-29 91864]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-3-7 38984]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-3-7 84328]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-11-28 50344]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes’ Anti-Malware\mbamscheduler.exe [2013-12-27 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes’ Anti-Malware\mbamservice.exe [2013-12-27 701512]
R2 Secunia PSI Agent;Secunia PSI Agent;C:\Program Files (x86)\Secunia\PSI\psia.exe [2012-9-24 1328736]
R2 Secunia Update Agent;Secunia Update Agent;C:\Program Files (x86)\Secunia\PSI\sua.exe [2012-9-24 656480]
R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-2-4 3574624]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-12-27 25928]
R3 PSI;PSI;C:\Windows\System32\drivers\psi_mf.sys [2011-12-16 17976]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2010-11-5 346144]
R3 teamviewervpn;TeamViewer VPN Adapter;C:\Windows\System32\drivers\teamviewervpn.sys [2012-11-25 35112]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-3-7 61280]
S3 fsssvc;Windows Live-tjenesten Family Safety;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-8-5 704864]
S3 FTT3s;FTT3s;C:\Windows\System32\drivers\FTT3s.sys [2010-5-3 229968]
S3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2009-12-16 56344]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-12-10 111616]
S3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-5-5 158976]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [2013-9-6 288776]
S3 nvamacpi;nvamacpi;C:\Windows\System32\drivers\nvamacpi.sys [2010-4-26 28192]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-31 19456]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-10-31 57856]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Tjenesten Windows Aktivering;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-3-7 1255736]
.
=============== Created Last 30 ================
.
2013-12-27 14:33:40   25928   ——a-w-  C:\Windows\System32\drivers\mbam.sys
2013-12-27 14:33:40   ————  d——-w-  C:\Program Files (x86)\Malwarebytes’ Anti-Malware
2013-12-27 11:55:40   ————  d——-w-  C:\Users\Jeppe\AppData\Local\Programs
2013-12-27 07:15:01   10315576   ——a-w-  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{939595AB-4DE6-438C-A4A9-A6ECA863046A}\mpengine.dll
2013-12-23 11:26:47   ————  d——-w-  C:\AdwCleaner
2013-12-15 09:40:24   ————  d——-w-  C:\Users\Jeppe\AppData\Local\My Games
2013-12-14 14:34:45   ————  d——-w-  C:\Users\Jeppe\AppData\Local\GameSpy
2013-12-14 14:33:37   ————  d——-w-  C:\Users\Jeppe\AppData\Local\ApplicationHistory
2013-12-14 12:01:42   ————  d——-w-  C:\Program Files (x86)\2K Games
2013-12-14 12:00:17   ————  d——-w-  C:\Windows\SysWow64\URTTEMP
2013-12-10 21:04:43   167424   ——a-w-  C:\Program Files\Windows Media Player\wmplayer.exe
2013-12-10 21:04:43   164864   ——a-w-  C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2013-12-10 21:04:43   12625920   ——a-w-  C:\Windows\System32\wmploc.DLL
2013-12-10 21:04:42   12625408   ——a-w-  C:\Windows\SysWow64\wmploc.DLL
2013-12-10 20:04:23   150016   ——a-w-  C:\Windows\System32\wshom.ocx
2013-12-10 20:04:23   121856   ——a-w-  C:\Windows\SysWow64\wshom.ocx
2013-12-10 20:04:22   202752   ——a-w-  C:\Windows\System32\scrrun.dll
2013-12-10 20:04:22   168960   ——a-w-  C:\Windows\System32\wscript.exe
2013-12-10 20:04:22   156160   ——a-w-  C:\Windows\System32\cscript.exe
2013-12-10 20:04:22   141824   ——a-w-  C:\Windows\SysWow64\wscript.exe
2013-12-10 20:04:21   163840   ——a-w-  C:\Windows\SysWow64\scrrun.dll
2013-12-10 20:04:21   126976   ——a-w-  C:\Windows\SysWow64\cscript.exe
2013-12-10 20:04:12   335360   ——a-w-  C:\Windows\System32\msieftp.dll
2013-12-10 20:04:12   301568   ——a-w-  C:\Windows\SysWow64\msieftp.dll
2013-12-10 20:04:04   3155968   ——a-w-  C:\Windows\System32\win32k.sys
2013-12-10 20:03:55   465920   ——a-w-  C:\Windows\System32\WMPhoto.dll
2013-12-10 20:03:55   417792   ——a-w-  C:\Windows\SysWow64\WMPhoto.dll
2013-12-10 20:03:47   81408   ——a-w-  C:\Windows\System32\imagehlp.dll
2013-12-10 20:03:45   159232   ——a-w-  C:\Windows\SysWow64\imagehlp.dll
2013-12-10 20:03:40   2048   ——a-w-  C:\Windows\SysWow64\tzres.dll
2013-12-10 20:03:40   2048   ——a-w-  C:\Windows\System32\tzres.dll
2013-12-10 20:03:28   230400   ——a-w-  C:\Windows\System32\drivers\portcls.sys
2013-12-10 20:03:28   116736   ——a-w-  C:\Windows\System32\drivers\drmk.sys
2013-11-30 12:09:20   ————  d——-w-  C:\Program Files\iPod
2013-11-30 12:09:19   ————  d——-w-  C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-30 12:09:19   ————  d——-w-  C:\Program Files\iTunes
2013-11-30 12:09:19   ————  d——-w-  C:\Program Files (x86)\iTunes
2013-11-28 19:33:08   ————  d——-w-  C:\Users\Jeppe\AppData\Roaming\AVAST Software
.
==================== Find3M ====================
.
2013-12-11 19:31:29   71048   ——a-w-  C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-11 19:31:29   692616   ——a-w-  C:\Windows\SysWow64\FlashPlayerApp.exe
2013-11-28 06:10:44   65776   ——a-w-  C:\Windows\System32\drivers\aswRvrt.sys
2013-11-28 06:10:44   205320   ——a-w-  C:\Windows\System32\drivers\aswVmm.sys
2013-11-28 06:10:44   1032416   ——a-w-  C:\Windows\System32\drivers\aswSnx.sys
2013-11-28 06:10:42   92544   ——a-w-  C:\Windows\System32\drivers\aswRdr2.sys
2013-11-28 06:10:42   84328   ——a-w-  C:\Windows\System32\drivers\aswMonFlt.sys
2013-11-28 06:10:35   43152   ——a-w-  C:\Windows\avastSS.scr
2013-11-26 10:19:07   2724864   ——a-w-  C:\Windows\System32\mshtml.tlb
2013-11-26 10:18:23   4096   ——a-w-  C:\Windows\System32\ieetwcollectorres.dll
2013-11-26 09:48:07   66048   ——a-w-  C:\Windows\System32\iesetup.dll
2013-11-26 09:46:25   48640   ——a-w-  C:\Windows\System32\ieetwproxystub.dll
2013-11-26 09:23:02   2724864   ——a-w-  C:\Windows\SysWow64\mshtml.tlb
2013-11-26 09:18:39   139264   ——a-w-  C:\Windows\System32\ieUnatt.exe
2013-11-26 09:18:09   111616   ——a-w-  C:\Windows\System32\ieetwcollector.exe
2013-11-26 09:16:57   708608   ——a-w-  C:\Windows\System32\jscript9diag.dll
2013-11-26 08:35:02   5769216   ——a-w-  C:\Windows\System32\jscript9.dll
2013-11-26 08:28:16   553472   ——a-w-  C:\Windows\SysWow64\jscript9diag.dll
2013-11-26 08:16:12   4243968   ——a-w-  C:\Windows\SysWow64\jscript9.dll
2013-11-26 08:02:16   1995264   ——a-w-  C:\Windows\System32\inetcpl.cpl
2013-11-26 07:32:06   1928192   ——a-w-  C:\Windows\SysWow64\inetcpl.cpl
2013-11-26 07:07:57   2334208   ——a-w-  C:\Windows\System32\wininet.dll
2013-11-26 06:33:33   1820160   ——a-w-  C:\Windows\SysWow64\wininet.dll
2013-11-26 05:29:10   96168   ——a-w-  C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-11-19 02:33:38   267936   ———w-  C:\Windows\System32\MpSigStub.exe
2013-10-17 18:46:13   108968   ——a-w-  C:\Windows\System32\WindowsAccessBridge-64.dll
2013-10-17 18:46:12   973736   ——a-w-  C:\Windows\System32\deployJava1.dll
2013-10-17 18:46:12   1095080   ——a-w-  C:\Windows\System32\npdeployJava1.dll
2013-10-12 02:30:42   830464   ——a-w-  C:\Windows\System32\nshwfp.dll
2013-10-12 02:29:21   859648   ——a-w-  C:\Windows\System32\IKEEXT.DLL
2013-10-12 02:29:08   324096   ——a-w-  C:\Windows\System32\FWPUCLNT.DLL
2013-10-12 02:03:08   656896   ——a-w-  C:\Windows\SysWow64\nshwfp.dll
2013-10-12 02:01:25   216576   ——a-w-  C:\Windows\SysWow64\FWPUCLNT.DLL
2013-10-05 20:25:35   1474048   ——a-w-  C:\Windows\System32\crypt32.dll
2013-10-05 19:57:25   1168384   ——a-w-  C:\Windows\SysWow64\crypt32.dll
2013-10-04 02:28:31   190464   ——a-w-  C:\Windows\System32\SmartcardCredentialProvider.dll
2013-10-04 02:25:17   197120   ——a-w-  C:\Windows\System32\credui.dll
2013-10-04 02:24:49   1930752   ——a-w-  C:\Windows\System32\authui.dll
2013-10-04 01:58:50   152576   ——a-w-  C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56:25   168960   ——a-w-  C:\Windows\SysWow64\credui.dll
2013-10-04 01:56:00   1796096   ——a-w-  C:\Windows\SysWow64\authui.dll
2013-10-03 02:23:48   404480   ——a-w-  C:\Windows\System32\gdi32.dll
2013-10-03 02:00:44   311808   ——a-w-  C:\Windows\SysWow64\gdi32.dll
.
============= FINISH: 14:11:30,02 ===============

Malwarebytes Anti-Malware (Prøveversion) 1.75.0.1300
http://www.malwarebytes.org

Database version: v2013.12.27.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Jeppe :: JEPPE-PC [administrator]

Beskyttelse: Slået til

27-12-2013 15:35:13
mbam-log-2013-12-27 (15-35-13).txt

Skanningstype: Fuldstændig skanning (C:\|)
Skanningsmuligheder valgt: Hukommelse | Opstart | Registreringsdatabasen | Filsystem | Heuristics/Ekstra | Heuristics/Shuriken | PUP | PUM
Skanningsmuligheder som er deaktiverede: P2P
Objekter skannet: 464227
Tid gået: 1 time(e), 2 minut(ter), 2 sekund(er)

Hukommelses Processorer Inficeret: 0
(Ingen skadelige objekter blev fundet)

Hukommelses Moduler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasenøgler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabaseværdier Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasedata Objekter Inficeret: 0
(Ingen skadelige objekter blev fundet)

Inficerede Mapper: 0
(Ingen skadelige objekter blev fundet)

Inficerede Filer: 1
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Yontoo\OptChrome.exe.vir (PUP.Optional.OptChrome.A) -> Ingen handling valgt.

(færdig)

Administrator
Avatar
Antal indlæg: 36283

Hej                   grin

Hent:  Junk Removal Tool

Til skrivebordet.

Deaktiver dit antivirusprogram for at undgå eventuelle konflikter.
Højreklik museklik JRT.exe og vælge Kør som administrator
Værktøjet vil åbne og begynde at scanne dit system.
Vær tålmodig, da det kan tage et stykke tid at fuldføre.
Ved afslutningen er en log (JRT.txt) gemt på dit skrivebord og vil automatisk åbne.
Kopier indholdet af JRT.txt ind i din næste besked

 

Download:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
(ved tigzy)
og gem den direkte på dit skrivebord.
På websiden vælge 32bit eller 64bit-knappen for at matche bithastighed på din version af Windows.
Afslut alle programmer.
Start RogueKiller.exe ved at dobbeltklikke på ikonet.
Vent Prescan er færdig.
Sørg for at alle bokse er afkrydset under “Report” fanen.
Klik på Scan.
Klik på rapporten, når færdig. Kopier indholdet af rapporten ind i dit næste svar.

BEMÆRK: Forsøg ikke at fjerne noget, at scanningen registrerer.

Antal indlæg: 9

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Jeppe on 29-12-2013 at 9:11:41,42
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29-12-2013 at 9:20:01,00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Antal indlæg: 9

RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Jeppe [Admin rights]
Mode : Scan—Date : 12/29/2013 09:29:09
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 6 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> FOUND
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
—> %SystemRoot%\System32\drivers\etc\hosts


ÿþ1

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKX-001CA0 ATA Device +++++
—- User—-
[MBR] 438d98a8a7a2148521d0ad32a20c001f
[BSP] 52bcde640246d5077c696102164ed912 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 23890 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 48928768 | Size: 453048 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) HP Officejet 6500 E USB Device +++++
Error reading User MBR! ([0x15] Enheden er ikke klar. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Anmodningen understøttes ikke. )

Finished : << RKreport[0]_S_12292013_092908.txt >>

Administrator
Avatar
Antal indlæg: 36283

Det ser godt nok ud, så det ser ud til at du er sluppet af med problemet.

Antal indlæg: 9

Har heller ikke set det tilbage. Så jeg takker mange gange for hjælpen. smile

Administrator
Avatar
Antal indlæg: 36283

Velbekomme                   grin

Så lukker jeg pænt efter os igen.