Programvare Skrevet 7. oktober 2009 Del Skrevet 7. oktober 2009 (endret) Har en infeksjon som bringer lsm32.sys og masse annen dritt tilbake hver eneste gang jeg rebooter. Har prøvd å fjerne med MBAM men de kommer tilbake med en gang, så er vel noen systemfiler eller oppstartsfiler som er infiserte. Hvordan skal jeg gripe dette an? Her er hvert fall logger. Windows 7 RC forresten. Combofix fungerer ikke i det. Malwarebytes' Anti-Malware 1.41 Databaseversjon: 2920 Windows 6.1.7100 07.10.2009 19:28:25 mbam-log-2009-10-07 (19-28-25).txt Skanntype: Rask Skann Objekter skannet: 82279 Tid tilbakelagt: 6 minute(s), 42 second(s) Minneprosesser infisert: 1 Minnemoduler infisert: 1 Registernøkler infisert: 2 Registerverdier infisert: 11 Registerfiler infisert: 0 Mapper infisert: 0 Filer infisert: 3 Minneprosesser infisert: C:\Windows\System32\lsm32.sys (Backdoor.Bot) -> Unloaded process successfully. Minnemoduler infisert: C:\Windows\System32\BtwSrv.dll (Trojan.Agent) -> Delete on reboot. Registernøkler infisert: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\btwsrv (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\btwsrv (Trojan.Agent) -> Quarantined and deleted successfully. Registerverdier infisert: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\BuildW (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\FirstInstallFlag (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\guid (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\i (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\uid (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\Ulrn (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\Update (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\UpdateNew (Malware.Trace) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\mBt (Backdoor.Bot) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\udfa (Backdoor.Bot) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WBEM\mfa (Backdoor.Bot) -> Quarantined and deleted successfully. Registerfiler infisert: (Ingen mistenkelige filer funnet) Mapper infisert: (Ingen mistenkelige filer funnet) Filer infisert: C:\Windows\System32\BtwSrv.dll (Trojan.Agent) -> Delete on reboot. C:\Windows\System32\lsm32.sys (Backdoor.Bot) -> Delete on reboot. C:\Windows\System32\FInstall.sys (Backdoor.Bot) -> Quarantined and deleted successfully. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:32:15, on 07.10.2009 Platform: Unknown Windows (WinNT 6.01.3004) MSIE: Unable to get Internet Explorer version! Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\PowerMenu\PowerMenu.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Windows\system32\wuauclt.exe C:\Windows\system32\NOTEPAD.EXE C:\Program Files\Opera\opera.exe C:\Program Files\Pidgin\pidgin.exe C:\Program Files\Trend Micro\HijackThis\daf.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [DeskSpace] C:\Program Files\DeskSpace\deskspace.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: PowerMenu.lnk = C:\Program Files\PowerMenu\PowerMenu.exe O13 - Gopher Prefix: O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: fastnetsrv Service (fastnetsrv) - Sigma Designs In - C:\Windows\system32\FastNetSrv.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: SecureSrv - My Privacy Tools, Inc. - C:\Program Files\Hide My IP 2009\SecureSrv.exe O23 - Service: TeamViewer 4 (TeamViewer4) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe -- End of file - 3186 bytes Endret 7. oktober 2009 av Programvare Lenke til kommentar
geir__hk Skrevet 7. oktober 2009 Del Skrevet 7. oktober 2009 Beste er å reformattere og installere på nytt. Deretter ta speilbilde av systempartisjonen. Lenke til kommentar
Programvare Skrevet 7. oktober 2009 Forfatter Del Skrevet 7. oktober 2009 Nå kjører jeg en skann i drweb som jeg fikk hjelp til tidligere. Virker som om den renser gjennom utrolig mange filer, men får vel se resultatet senere. Lenke til kommentar
norbat Skrevet 7. oktober 2009 Del Skrevet 7. oktober 2009 Du kan godt prøve en rask skann med SAS etter at du er ferdig med DrWeb. Lenke til kommentar
Programvare Skrevet 7. oktober 2009 Forfatter Del Skrevet 7. oktober 2009 SAS ender bare i blåskjerm i Windows 7 RC hvert fall. Lenke til kommentar
norbat Skrevet 7. oktober 2009 Del Skrevet 7. oktober 2009 Tipper det er ett eller annet rootkit som surrer på pc'n. Se om RootRepeal funker i win7: Last ned RootRepeal Start programmer Klikk på arkfanen Report Klikk Scan Sett merke i alle valgene og klikk OK Velg stasjonen (vanligvis C:) La programmet skanne ferdig. Klikk deretter på Save Report. Lagre fila som progarmvare.txt. Post loggen. Lenke til kommentar
Programvare Skrevet 7. oktober 2009 Forfatter Del Skrevet 7. oktober 2009 (endret) Det ble bare feilmeldinger da jeg prøvde å skanne. Du har kanskje noen andre programmer som duger? Her er logg fra drweb. Skal jeg gjøre noe i programmet eller er det bare å krysse ut? Står jo at alt er renset osv. autorun.inf;d:;Sannsynligvis Win32.HLLW.Autoruner.corrupted;Ugyldig mål til fil ; deskspace.exe;c:\program files\deskspace;Win32.Virut.50;Renset.; powermenu.exe;c:\program files\powermenu;Win32.Virut.50;; winmail.exe;c:\program files\windows mail;Win32.Virut.50;Renset.; wmpnetwk.exe;c:\program files\windows media player;Win32.Virut.50;; sidebar.exe;c:\program files\windows sidebar;Win32.Virut.50;; ehrecvr.exe;c:\windows\ehome;Win32.Virut.50;; ehsched.exe;c:\windows\ehome;Win32.Virut.50;; trustedinstaller.exe;c:\windows\servicing;Win32.Virut.50;; ctfmon.exe;c:\windows\system32;Win32.Virut.50;; dllhost.exe;c:\windows\system32;Win32.Virut.50;; fastnetsrv.exe;c:\windows\system32;Win32.Virut.50;; fxssvc.exe;c:\windows\system32;Win32.Virut.50;; ie4uinit.exe;c:\windows\system32;Win32.Virut.50;; locator.exe;c:\windows\system32;Win32.Virut.50;; mctadmin.exe;c:\windows\system32;Win32.Virut.50;; msdtc.exe;c:\windows\system32;Win32.Virut.50;; msiexec.exe;c:\windows\system32;Win32.Virut.50;; regsvr32.exe;c:\windows\system32;Win32.Virut.50;; rundll32.exe;c:\windows\system32;Win32.Virut.50;; searchindexer.exe;c:\windows\system32;Win32.Virut.50;; snmptrap.exe;c:\windows\system32;Win32.Virut.50;; sppsvc.exe;c:\windows\system32;Win32.Virut.50;; ui0detect.exe;c:\windows\system32;Win32.Virut.50;; unregmp2.exe;c:\windows\system32;Win32.Virut.50;; userinit.exe;c:\windows\system32;Win32.Virut.50;; vds.exe;c:\windows\system32;Win32.Virut.50;; vssvc.exe;c:\windows\system32;Win32.Virut.50;; winmgmt.exe;c:\windows\system32\wbem;Win32.Virut.50;; wmiapsrv.exe;c:\windows\system32\wbem;Win32.Virut.50;; wbengine.exe;c:\windows\system32;Win32.Virut.50;; AdapterTroubleshooter.exe;C:\Windows\system32;Win32.Virut.50;Renset.; aitagent.exe;C:\Windows\system32;Win32.Virut.50;Renset.; appidcertstorecheck.exe;C:\Windows\system32;Win32.Virut.50;Renset.; appidpolicyconverter.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ARP.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; at.exe;C:\Windows\system32;Win32.Virut.50;Renset.; AtBroker.exe;C:\Windows\system32;Win32.Virut.50;Renset.; attrib.exe;C:\Windows\system32;Win32.Virut.50;Renset.; audiodg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; auditpol.exe;C:\Windows\system32;Win32.Virut.50;Renset.; AxInstUI.exe;C:\Windows\system32;Win32.Virut.50;Renset.; baaupdate.exe;C:\Windows\system32;Win32.Virut.50;Renset.; bcdboot.exe;C:\Windows\system32;Win32.Virut.50;Renset.; bcdedit.exe;C:\Windows\system32;Win32.Virut.50;Renset.; BdeHdCfg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; BdeUISrv.exe;C:\Windows\system32;Win32.Virut.50;Renset.; BdeUnlockWizard.exe;C:\Windows\system32;Win32.Virut.50;Renset.; BitLockerWizard.exe;C:\Windows\system32;Win32.Virut.50;Renset.; BitLockerWizardElev.exe;C:\Windows\system32;Win32.Virut.50;Renset.; bitsadmin.exe;C:\Windows\system32;Win32.Virut.50;Renset.; bootcfg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; bridgeunattend.exe;C:\Windows\system32;Win32.Virut.50;Renset.; bthudtask.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Bubbles.scr;C:\Windows\system32;Win32.Virut.50;Renset.; cacls.exe;C:\Windows\system32;Win32.Virut.50;Renset.; calc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; CertEnrollCtrl.exe;C:\Windows\system32;Win32.Virut.50;Renset.; certreq.exe;C:\Windows\system32;Win32.Virut.50;Renset.; certutil.exe;C:\Windows\system32;Win32.Virut.50;Renset.; change.exe;C:\Windows\system32;Win32.Virut.50;Renset.; charmap.exe;C:\Windows\system32;Win32.Virut.50;Renset.; chglogon.exe;C:\Windows\system32;Win32.Virut.50;Renset.; chgport.exe;C:\Windows\system32;Win32.Virut.50;Renset.; chgusr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; chkdsk.exe;C:\Windows\system32;Win32.Virut.50;Renset.; chkntfs.exe;C:\Windows\system32;Win32.Virut.50;Renset.; choice.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cipher.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cleanmgr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cliconfg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; clip.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cmd.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cmd.execf;C:\Windows\system32;Win32.Virut.50;Renset.; cmdkey.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cmdl32.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cmmon32.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cmstp.exe;C:\Windows\system32;Win32.Virut.50;Renset.; CNMCP66.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cofire.exe;C:\Windows\system32;Win32.Virut.50;Renset.; colorcpl.exe;C:\Windows\system32;Win32.Virut.50;Renset.; comp.exe;C:\Windows\system32;Win32.Virut.50;Renset.; compact.exe;C:\Windows\system32;Win32.Virut.50;Renset.; CompMgmtLauncher.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ComputerDefaults.exe;C:\Windows\system32;Win32.Virut.50;Renset.; conhost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; control.exe;C:\Windows\system32;Win32.Virut.50;Renset.; convert.exe;C:\Windows\system32;Win32.Virut.50;Renset.; credwiz.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cscript.exe;C:\Windows\system32;Win32.Virut.50;Renset.; csrstub.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ctfmon.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cttune.exe;C:\Windows\system32;Win32.Virut.50;Renset.; cttunesvr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dccw.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dcomcnfg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ddodiag.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Defrag.exe;C:\Windows\system32;Win32.Virut.50;Renset.; DeviceDisplayObjectProvider.exe;C:\Windows\system32;Win32.Virut.50;Renset.; DeviceEject.exe;C:\Windows\system32;Win32.Virut.50;Renset.; DevicePairingWizard.exe;C:\Windows\system32;Win32.Virut.50;Renset.; DeviceProperties.exe;C:\Windows\system32;Win32.Virut.50;Renset.; DFDWiz.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dfrgui.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dialer.exe;C:\Windows\system32;Win32.Virut.50;Renset.; diantz.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dinotify.exe;C:\Windows\system32;Win32.Virut.50;Renset.; diskpart.exe;C:\Windows\system32;Win32.Virut.50;Renset.; diskperf.exe;C:\Windows\system32;Win32.Virut.50;Renset.; diskraid.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Dism.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dispdiag.exe;C:\Windows\system32;Win32.Virut.50;Renset.; DisplaySwitch.exe;C:\Windows\system32;Win32.Virut.50;Renset.; djoin.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dllhost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dllhst3g.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dnscacheugc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; doskey.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dpapimig.exe;C:\Windows\system32;Win32.Virut.50;Renset.; DpiScaling.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dplaysvr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dpnsvr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; driverquery.exe;C:\Windows\system32;Win32.Virut.50;Renset.; drvinst.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dvdplay.exe;C:\Windows\system32;Win32.Virut.50;Renset.; dvdupgrd.exe;C:\Windows\system32;Win32.Virut.50;Renset.; DWWIN.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; dxdiag.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Dxpserver.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Eap3Host.exe;C:\Windows\system32;Win32.Virut.50;Renset.; efsui.exe;C:\Windows\system32;Win32.Virut.50;Renset.; EhStorAuthn.exe;C:\Windows\system32;Win32.Virut.50;Renset.; esentutl.exe;C:\Windows\system32;Win32.Virut.50;Renset.; eudcedit.exe;C:\Windows\system32;Win32.Virut.50;Renset.; eventcreate.exe;C:\Windows\system32;Win32.Virut.50;Renset.; eventvwr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; expand.exe;C:\Windows\system32;Win32.Virut.50;Renset.; extrac32.exe;C:\Windows\system32;Win32.Virut.50;Renset.; FastNetSrv.exe;C:\Windows\system32;Win32.Virut.50;Renset.; fc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; find.exe;C:\Windows\system32;Win32.Virut.50;Renset.; findstr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; finger.exe;C:\Windows\system32;Win32.Virut.50;Renset.; fixmapi.exe;C:\Windows\system32;Win32.Virut.50;Renset.; fltMC.exe;C:\Windows\system32;Win32.Virut.50;Renset.; fontview.exe;C:\Windows\system32;Win32.Virut.50;Renset.; forfiles.exe;C:\Windows\system32;Win32.Virut.50;Renset.; fsutil.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ftp.exe;C:\Windows\system32;Win32.Virut.50;Renset.; fvenotify.exe;C:\Windows\system32;Win32.Virut.50;Renset.; fveprompt.exe;C:\Windows\system32;Win32.Virut.50;Renset.; FXSCOVER.exe;C:\Windows\system32;Win32.Virut.50;Renset.; FXSSVC.exe;C:\Windows\system32;Win32.Virut.50;Renset.; FXSUNATD.exe;C:\Windows\system32;Win32.Virut.50;Renset.; getmac.exe;C:\Windows\system32;Win32.Virut.50;Renset.; GettingStarted.exe;C:\Windows\system32;Win32.Virut.50;Renset.; gpresult.exe;C:\Windows\system32;Win32.Virut.50;Renset.; gpscript.exe;C:\Windows\system32;Win32.Virut.50;Renset.; gpupdate.exe;C:\Windows\system32;Win32.Virut.50;Renset.; grpconv.exe;C:\Windows\system32;Win32.Virut.50;Renset.; hdwwiz.exe;C:\Windows\system32;Win32.Virut.50;Renset.; help.exe;C:\Windows\system32;Win32.Virut.50;Renset.; HOSTNAME.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; hwrcomp.exe;C:\Windows\system32;Win32.Virut.50;Renset.; hwrreg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; icacls.exe;C:\Windows\system32;Win32.Virut.50;Renset.; icsunattend.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ie4uinit.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ieUnatt.exe;C:\Windows\system32;Win32.Virut.50;Renset.; iexpress.exe;C:\Windows\system32;Win32.Virut.50;Renset.; iisreset.exe;C:\Windows\system32;Win32.Virut.50;Renset.; InfDefaultInstall.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ipconfig.exe;C:\Windows\system32;Win32.Virut.50;Renset.; irftp.exe;C:\Windows\system32;Win32.Virut.50;Renset.; iscsicli.exe;C:\Windows\system32;Win32.Virut.50;Renset.; iscsicpl.exe;C:\Windows\system32;Win32.Virut.50;Renset.; isoburn.exe;C:\Windows\system32;Win32.Virut.50;Renset.; klist.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ksetup.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ktmutil.exe;C:\Windows\system32;Win32.Virut.50;Renset.; label.exe;C:\Windows\system32;Win32.Virut.50;Renset.; LocationNotifications.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Locator.exe;C:\Windows\system32;Win32.Virut.50;Renset.; lodctr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; logagent.exe;C:\Windows\system32;Win32.Virut.50;Renset.; logman.exe;C:\Windows\system32;Win32.Virut.50;Renset.; logoff.exe;C:\Windows\system32;Win32.Virut.50;Renset.; LogonUI.exe;C:\Windows\system32;Win32.Virut.50;Renset.; lpksetup.exe;C:\Windows\system32;Win32.Virut.50;Renset.; lpremove.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Magnify.exe;C:\Windows\system32;Win32.Virut.50;Renset.; makecab.exe;C:\Windows\system32;Win32.Virut.50;Renset.; manage-bde.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mblctr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mcbuilder.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mctadmin.exe;C:\Windows\system32;Win32.Virut.50;Renset.; MdRes.exe;C:\Windows\system32;Win32.Virut.50;Renset.; MdSched.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mfpmp.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mmc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mobsync.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mountvol.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mpnotify.exe;C:\Windows\system32;Win32.Virut.50;Renset.; MRINFO.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; msconfig.exe;C:\Windows\system32;Win32.Virut.50;Renset.; msdt.exe;C:\Windows\system32;Win32.Virut.50;Renset.; msdtc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; msfeedssync.exe;C:\Windows\system32;Win32.Virut.50;Renset.; msg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mshta.exe;C:\Windows\system32;Win32.Virut.50;Renset.; msiexec.exe;C:\Windows\system32;Win32.Virut.50;Renset.; msinfo32.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mspaint.exe;C:\Windows\system32;Win32.Virut.50;Renset.; msra.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mstsc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; mtstocom.exe;C:\Windows\system32;Win32.Virut.50;Renset.; MuiUnattend.exe;C:\Windows\system32;Win32.Virut.50;Renset.; MultiDigiMon.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Mystify.scr;C:\Windows\system32;Win32.Virut.50;Renset.; NAPSTAT.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; Narrator.exe;C:\Windows\system32;Win32.Virut.50;Renset.; nbtstat.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ndadmin.exe;C:\Windows\system32;Win32.Virut.50;Renset.; net.exe;C:\Windows\system32;Win32.Virut.50;Renset.; net1.exe;C:\Windows\system32;Win32.Virut.50;Renset.; netbtugc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; netcfg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; netiougc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Netplwiz.exe;C:\Windows\system32;Win32.Virut.50;Renset.; NetProj.exe;C:\Windows\system32;Win32.Virut.50;Renset.; netsh.exe;C:\Windows\system32;Win32.Virut.50;Renset.; NETSTAT.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; newdev.exe;C:\Windows\system32;Win32.Virut.50;Renset.; nltest.exe;C:\Windows\system32;Win32.Virut.50;Renset.; notepad.exe;C:\Windows\system32;Win32.Virut.50;Renset.; nslookup.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ntprint.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ntvdm.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ocsetup.exe;C:\Windows\system32;Win32.Virut.50;Renset.; odbcad32.exe;C:\Windows\system32;Win32.Virut.50;Renset.; odbcconf.exe;C:\Windows\system32;Win32.Virut.50;Renset.; opeia.exe;C:\Windows\system32;Win32.Virut.50;Renset.; opeia.exe;C:\Windows\system32;Trojan.DownLoad.50032;Urensbar.Flyttet.; openfiles.exe;C:\Windows\system32;Win32.Virut.50;Renset.; OptionalFeatures.exe;C:\Windows\system32;Win32.Virut.50;Renset.; osk.exe;C:\Windows\system32;Win32.Virut.50;Renset.; p2phost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; PATHPING.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; pcalua.exe;C:\Windows\system32;Win32.Virut.50;Renset.; pcaui.exe;C:\Windows\system32;Win32.Virut.50;Renset.; pcawrk.exe;C:\Windows\system32;Win32.Virut.50;Renset.; pcwrun.exe;C:\Windows\system32;Win32.Virut.50;Renset.; perfmon.exe;C:\Windows\system32;Win32.Virut.50;Renset.; PhotoScreensaver.scr;C:\Windows\system32;Win32.Virut.50;Renset.; PING.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; PkgMgr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; plasrv.exe;C:\Windows\system32;Win32.Virut.50;Renset.; PnPUnattend.exe;C:\Windows\system32;Win32.Virut.50;Renset.; PnPutil.exe;C:\Windows\system32;Win32.Virut.50;Renset.; powercfg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; PresentationSettings.exe;C:\Windows\system32;Win32.Virut.50;Renset.; prevhost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; print.exe;C:\Windows\system32;Win32.Virut.50;Renset.; PrintBrmUi.exe;C:\Windows\system32;Win32.Virut.50;Renset.; printfilterpipelinesvc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; PrintIsolationHost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; printui.exe;C:\Windows\system32;Win32.Virut.50;Renset.; proquota.exe;C:\Windows\system32;Win32.Virut.50;Renset.; psr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; qappsrv.exe;C:\Windows\system32;Win32.Virut.50;Renset.; qprocess.exe;C:\Windows\system32;Win32.Virut.50;Renset.; query.exe;C:\Windows\system32;Win32.Virut.50;Renset.; quser.exe;C:\Windows\system32;Win32.Virut.50;Renset.; qwinsta.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rasautou.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rasdial.exe;C:\Windows\system32;Win32.Virut.50;Renset.; raserver.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rasphone.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rdpclip.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rdpinit.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rdpshell.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rdpsign.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rdrleakdiag.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ReAgentc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; recdisc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; recover.exe;C:\Windows\system32;Win32.Virut.50;Renset.; reg.exe;C:\Windows\system32;Win32.Virut.50;Renset.; regedt32.exe;C:\Windows\system32;Win32.Virut.50;Renset.; regini.exe;C:\Windows\system32;Win32.Virut.50;Renset.; regsvr32.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rekeywiz.exe;C:\Windows\system32;Win32.Virut.50;Renset.; relog.exe;C:\Windows\system32;Win32.Virut.50;Renset.; RelPost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; repair-bde.exe;C:\Windows\system32;Win32.Virut.50;Renset.; replace.exe;C:\Windows\system32;Win32.Virut.50;Renset.; reset.exe;C:\Windows\system32;Win32.Virut.50;Renset.; resmon.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Ribbons.scr;C:\Windows\system32;Win32.Virut.50;Renset.; RMActivate.exe;C:\Windows\system32;Win32.Virut.50;Renset.; RMActivate_isv.exe;C:\Windows\system32;Win32.Virut.50;Renset.; RMActivate_ssp.exe;C:\Windows\system32;Win32.Virut.50;Renset.; RMActivate_ssp_isv.exe;C:\Windows\system32;Win32.Virut.50;Renset.; RmClient.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Robocopy.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ROUTE.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; RpcPing.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rrinstaller.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rstrui.exe;C:\Windows\system32;Win32.Virut.50;Renset.; runas.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rundll32.exe;C:\Windows\system32;Win32.Virut.50;Renset.; RunLegacyCPLElevated.exe;C:\Windows\system32;Win32.Virut.50;Renset.; runonce.exe;C:\Windows\system32;Win32.Virut.50;Renset.; rwinsta.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sbunattend.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; schtasks.exe;C:\Windows\system32;Win32.Virut.50;Renset.; scrnsave.scr;C:\Windows\system32;Win32.Virut.50;Renset.; sdbinst.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sdchange.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sdclt.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sdiagnhost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SearchFilterHost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SearchIndexer.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SearchProtocolHost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SecEdit.exe;C:\Windows\system32;Win32.Virut.50;Renset.; secinit.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sethc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SetIEInstalledDate.exe;C:\Windows\system32;Win32.Virut.50;Renset.; setspn.exe;C:\Windows\system32;Win32.Virut.50;Renset.; setupSNK.exe;C:\Windows\system32;Win32.Virut.50;Renset.; setupugc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; setx.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sfc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; shadow.exe;C:\Windows\system32;Win32.Virut.50;Renset.; shrpubw.exe;C:\Windows\system32;Win32.Virut.50;Renset.; shutdown.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sigverif.exe;C:\Windows\system32;Win32.Virut.50;Renset.; slui.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SndVol.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SnippingTool.exe;C:\Windows\system32;Win32.Virut.50;Renset.; snmptrap.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sort.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SoundRecorder.exe;C:\Windows\system32;Win32.Virut.50;Renset.; spinstall.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sppsvc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; spreview.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ssText3d.scr;C:\Windows\system32;Win32.Virut.50;Renset.; StikyNot.exe;C:\Windows\system32;Win32.Virut.50;Renset.; subst.exe;C:\Windows\system32;Win32.Virut.50;Renset.; sxstrace.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SyncHost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; syskey.exe;C:\Windows\system32;Win32.Virut.50;Renset.; systeminfo.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SystemPropertiesAdvanced.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SystemPropertiesComputerName.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SystemPropertiesDataExecutionPrevention.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SystemPropertiesHardware.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SystemPropertiesPerformance.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SystemPropertiesProtection.exe;C:\Windows\system32;Win32.Virut.50;Renset.; SystemPropertiesRemote.exe;C:\Windows\system32;Win32.Virut.50;Renset.; systray.exe;C:\Windows\system32;Win32.Virut.50;Renset.; tabcal.exe;C:\Windows\system32;Win32.Virut.50;Renset.; takeown.exe;C:\Windows\system32;Win32.Virut.50;Renset.; TapiUnattend.exe;C:\Windows\system32;Win32.Virut.50;Renset.; taskeng.exe;C:\Windows\system32;Win32.Virut.50;Renset.; taskkill.exe;C:\Windows\system32;Win32.Virut.50;Renset.; tasklist.exe;C:\Windows\system32;Win32.Virut.50;Renset.; taskmgr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; tcmsetup.exe;C:\Windows\system32;Win32.Virut.50;Renset.; TCPSVCS.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; telnet.exe;C:\Windows\system32;Win32.Virut.50;Renset.; timeout.exe;C:\Windows\system32;Win32.Virut.50;Renset.; TpmInit.exe;C:\Windows\system32;Win32.Virut.50;Renset.; tracerpt.exe;C:\Windows\system32;Win32.Virut.50;Renset.; TRACERT.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; tscon.exe;C:\Windows\system32;Win32.Virut.50;Renset.; tsdiscon.exe;C:\Windows\system32;Win32.Virut.50;Renset.; tskill.exe;C:\Windows\system32;Win32.Virut.50;Renset.; TSTheme.exe;C:\Windows\system32;Win32.Virut.50;Renset.; TSWbPrxy.exe;C:\Windows\system32;Win32.Virut.50;Renset.; TWUNK_32.EXE;C:\Windows\system32;Win32.Virut.50;Renset.; typeperf.exe;C:\Windows\system32;Win32.Virut.50;Renset.; tzutil.exe;C:\Windows\system32;Win32.Virut.50;Renset.; ucsvc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; UI0Detect.exe;C:\Windows\system32;Win32.Virut.50;Renset.; unlodctr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; unregmp2.exe;C:\Windows\system32;Win32.Virut.50;Renset.; upnpcont.exe;C:\Windows\system32;Win32.Virut.50;Renset.; UserAccountControlSettings.exe;C:\Windows\system32;Win32.Virut.50;Renset.; userinit.exe;C:\Windows\system32;Win32.Virut.50;Renset.; Utilman.exe;C:\Windows\system32;Win32.Virut.50;Renset.; VaultCmd.exe;C:\Windows\system32;Win32.Virut.50;Renset.; VaultSysUi.exe;C:\Windows\system32;Win32.Virut.50;Renset.; vds.exe;C:\Windows\system32;Win32.Virut.50;Renset.; vdsldr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; verclsid.exe;C:\Windows\system32;Win32.Virut.50;Renset.; verifier.exe;C:\Windows\system32;Win32.Virut.50;Renset.; vmicsvc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; vssadmin.exe;C:\Windows\system32;Win32.Virut.50;Renset.; VSSVC.exe;C:\Windows\system32;Win32.Virut.50;Renset.; w32tm.exe;C:\Windows\system32;Win32.Virut.50;Renset.; waitfor.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wbadmin.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wbengine.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wecutil.exe;C:\Windows\system32;Win32.Virut.50;Renset.; WerFault.exe;C:\Windows\system32;Win32.Virut.50;Renset.; WerFaultSecure.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wermgr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wevtutil.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wextract.exe;C:\Windows\system32;Win32.Virut.50;Renset.; WFS.exe;C:\Windows\system32;Win32.Virut.50;Renset.; where.exe;C:\Windows\system32;Win32.Virut.50;Renset.; whoami.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wiaacmgr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wimserv.exe;C:\Windows\system32;Win32.Virut.50;Renset.; WindowsAnytimeUpgradeResults.exe;C:\Windows\system32;Win32.Virut.50;Renset.; winrs.exe;C:\Windows\system32;Win32.Virut.50;Renset.; winrshost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; WinSAT.exe;C:\Windows\system32;Win32.Virut.50;Renset.; winver.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wisptis.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wksprt.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wlanext.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wlrmdr.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wmdtc.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wmdtc.exe;C:\Windows\system32;Trojan.DownLoad.50032;Urensbar.Flyttet.; WPDShextAutoplay.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wpnpinst.exe;C:\Windows\system32;Win32.Virut.50;Renset.; write.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wscript.exe;C:\Windows\system32;Win32.Virut.50;Renset.; WSManHTTPConfig.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wsmprovhost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wsqmcons.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wuapp.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wuauclt.exe;C:\Windows\system32;Win32.Virut.50;Renset.; WUDFHost.exe;C:\Windows\system32;Win32.Virut.50;Renset.; wusa.exe;C:\Windows\system32;Win32.Virut.50;Renset.; xcopy.exe;C:\Windows\system32;Win32.Virut.50;Renset.; xpsrchvw.exe;C:\Windows\system32;Win32.Virut.50;Renset.; xwizard.exe;C:\Windows\system32;Win32.Virut.50;Renset.; comrepl.exe;C:\Windows\system32\com;Win32.Virut.50;Renset.; MigRegDB.exe;C:\Windows\system32\com;Win32.Virut.50;Renset.; dCA2QFHPT.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; dCA3XVXOQ.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; dCA8K77BG.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; dCABZBC67.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; dCAESXVAE.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; dCAL51AV8.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; dCAO07341.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; dCAQL9TWX.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.46872;Slettet.; dCAWPTGZ1.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.46872;Slettet.; d[10].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[11].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[1].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[2].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[3].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[4].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[5].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[6].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[7].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[8].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; d[9].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Click.27719;Slettet.; ms[10].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; ms[11].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4998;Slettet.; ms[1].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; ms[2].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; ms[3].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; ms[4].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; ms[5].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; ms[6].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; ms[7].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; ms[8].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Siggen.4544;Slettet.; so[1].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.47389;Slettet.; so[2].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.47474;Slettet.; so[3].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.47474;Slettet.; so[4].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.47474;Slettet.; so[5].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.47474;Slettet.; so[6].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.47446;Slettet.; so[7].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.47474;Slettet.; so[8].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.47474;Slettet.; wCA2MTUPF.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.50032;Urensbar.Flyttet.; wCA32IXWN.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.50032;Urensbar.Flyttet.; wCA375WON.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCA4AZZYV.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.112;Slettet.; wCA54VJ6S.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.50032;Urensbar.Flyttet.; wCA5I9Y5O.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCA92XL08.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.106;Slettet.; wCA9ED1ND.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCA9J4JYX.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.111;Slettet.; wCA9LUDUY.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.100;Slettet.; wCAA0IFPU.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.100;Slettet.; wCAAIEBI5.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.49039;Urensbar.Flyttet.; wCACQZ3XZ.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.111;Slettet.; wCADCA2NK.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCAEJLP3V.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.116;Slettet.; wCAFM81Z5.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.111;Slettet.; wCAFREPOG.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCAFSGXKA.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.49039;Urensbar.Flyttet.; wCAFU2ZUO.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.106;Slettet.; wCAFWROV5.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.100;Slettet.; wCAG0LJ2Z.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.107;Slettet.; wCAG8VARB.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.50032;Urensbar.Flyttet.; wCAH0V37T.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.116;Slettet.; wCAK21KJO.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.111;Slettet.; wCALCT8CU.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCAM9RGIL.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.111;Slettet.; wCAN0O8LO.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.98;Slettet.; wCAN75KQW.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCANXIE6Y.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.50032;Urensbar.Flyttet.; wCAOK8GJ2.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.49039;Urensbar.Flyttet.; wCAPLFR92.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCAQSCKNP.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.98;Slettet.; wCAS45UY2.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.116;Slettet.; wCATVE8ID.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCAVLFPZA.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.106;Slettet.; wCAWPZ8US.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.50032;Urensbar.Flyttet.; wCAX2D6V7.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.108;Slettet.; wCAXBY2HO.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.DownLoad.50032;Urensbar.Flyttet.; wCAZEKSAL.bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.98;Slettet.; w[10].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.107;Slettet.; w[11].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.107;Slettet.; w[1].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.103;Slettet.; w[2].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.103;Slettet.; w[3].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.103;Slettet.; w[4].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.112;Slettet.; w[5].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.99;Slettet.; w[6].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.99;Slettet.; w[7].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.99;Slettet.; w[8].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.99;Slettet.; w[9].bin;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5;Trojan.Bfkq.107;Slettet.; DismHost.exe;C:\Windows\system32\Dism;Win32.Virut.50;Renset.; BrmfRsmg.exe;C:\Windows\system32\DriverStore\FileRepository\brmfcmf.inf_x86_neutral_af0058523d9777b6;Win32.Virut.50;Renset.; fsquirt.exe;C:\Windows\system32\DriverStore\FileRepository\bth.inf_x86_neutral_65c949576945c2a9;Win32.Virut.50;Renset.; ditrace.exe;C:\Windows\system32\DriverStore\FileRepository\divacx86.inf_x86_neutral_5503bc5ab430bf4b;Win32.Virut.50;Renset.; xlog.exe;C:\Windows\system32\DriverStore\FileRepository\divacx86.inf_x86_neutral_5503bc5ab430bf4b;Win32.Virut.50;Renset.; CNMPV.EXE;C:\Windows\system32\DriverStore\FileRepository\ip2000.inf_x86_neutral_b1021a8e4c6fb4e0;Win32.Virut.50;Renset.; CNMQUEUE.EXE;C:\Windows\system32\DriverStore\FileRepository\ip2000.inf_x86_neutral_b1021a8e4c6fb4e0;Win32.Virut.50;Renset.; CNMSMSD.EXE;C:\Windows\system32\DriverStore\FileRepository\ip2000.inf_x86_neutral_b1021a8e4c6fb4e0;Win32.Virut.50;Renset.; CNMSTMN.EXE;C:\Windows\system32\DriverStore\FileRepository\ip2000.inf_x86_neutral_b1021a8e4c6fb4e0;Win32.Virut.50;Renset.; vmicsvc.exe;C:\Windows\system32\DriverStore\FileRepository\wvmic.inf_x86_neutral_5dc07900e0e6694f;Win32.Virut.50;Renset.; IMJPDADM.EXE;C:\Windows\system32\IME\IMEJP10;Win32.Virut.50;Renset.; IMJPDCT.EXE;C:\Windows\system32\IME\IMEJP10;Win32.Virut.50;Renset.; IMJPDSVR.EXE;C:\Windows\system32\IME\IMEJP10;Win32.Virut.50;Renset.; IMJPMGR.EXE;C:\Windows\system32\IME\IMEJP10;Win32.Virut.50;Renset.; imjppdmg.exe;C:\Windows\system32\IME\IMEJP10;Win32.Virut.50;Renset.; IMJPUEX.EXE;C:\Windows\system32\IME\IMEJP10;Win32.Virut.50;Renset.; imjpuexc.exe;C:\Windows\system32\IME\IMEJP10;Win32.Virut.50;Renset.; IMSCPROP.exe;C:\Windows\system32\IME\IMESC5;Win32.Virut.50;Renset.; IMTCPROP.exe;C:\Windows\system32\IME\IMETC10;Win32.Virut.50;Renset.; IMCCPHR.exe;C:\Windows\system32\IME\shared;Win32.Virut.50;Renset.; IMEPADSV.EXE;C:\Windows\system32\IME\shared;Win32.Virut.50;Renset.; appcmd.exe;C:\Windows\system32\inetsrv;Win32.Virut.50;Renset.; aspnetca.exe;C:\Windows\system32\inetsrv;Win32.Virut.50;Renset.; iisrstas.exe;C:\Windows\system32\inetsrv;Win32.Virut.50;Renset.; iissetup.exe;C:\Windows\system32\inetsrv;Win32.Virut.50;Renset.; InetMgr.exe;C:\Windows\system32\inetsrv;Win32.Virut.50;Renset.; w3wp.exe;C:\Windows\system32\inetsrv;Win32.Virut.50;Renset.; mighost.exe;C:\Windows\system32\migwiz;Win32.Virut.50;Renset.; migwiz.exe;C:\Windows\system32\migwiz;Win32.Virut.50;Renset.; PostMig.exe;C:\Windows\system32\migwiz;Win32.Virut.50;Renset.; audit.exe;C:\Windows\system32\oobe;Win32.Virut.50;Renset.; msoobe.exe;C:\Windows\system32\oobe;Win32.Virut.50;Renset.; oobeldr.exe;C:\Windows\system32\oobe;Win32.Virut.50;Renset.; Setup.exe;C:\Windows\system32\oobe;Win32.Virut.50;Renset.; setupsqm.exe;C:\Windows\system32\oobe;Win32.Virut.50;Renset.; windeploy.exe;C:\Windows\system32\oobe;Win32.Virut.50;Renset.; SpeechUXTutorial.exe;C:\Windows\system32\Speech\SpeechUX;Win32.Virut.50;Renset.; SpeechUXWiz.exe;C:\Windows\system32\Speech\SpeechUX;Win32.Virut.50;Renset.; CNMPV66.EXE;C:\Windows\system32\spool\drivers\w32x86\3;Win32.Virut.50;Renset.; CNMSD66.EXE;C:\Windows\system32\spool\drivers\w32x86\3;Win32.Virut.50;Renset.; CNMSM66.EXE;C:\Windows\system32\spool\drivers\w32x86\3;Win32.Virut.50;Renset.; CNMSQ66.EXE;C:\Windows\system32\spool\drivers\w32x86\3;Win32.Virut.50;Renset.; PrintBrm.exe;C:\Windows\system32\spool\tools;Win32.Virut.50;Renset.; PrintBrmEngine.exe;C:\Windows\system32\spool\tools;Win32.Virut.50;Renset.; sysprep.exe;C:\Windows\system32\sysprep;Win32.Virut.50;Renset.; mofcomp.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; scrcons.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; unsecapp.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; wbemtest.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; WinMgmt.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; WMIADAP.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; WmiApSrv.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; WMIC.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; WmiPrvSE.exe;C:\Windows\system32\wbem;Win32.Virut.50;Renset.; powershell.exe;C:\Windows\system32\WindowsPowerShell\v1.0;Win32.Virut.50;Renset.; powershell_ise.exe;C:\Windows\system32\WindowsPowerShell\v1.0;Win32.Virut.50;Renset.; EDS.exe;C:\Users\Chris\AppData\Local\Temp\RarSFX0;Win32.Virut.50;Renset.; ETPATHS.exe;C:\Users\Chris\AppData\Local\Temp\RarSFX0;Win32.Virut.50;Renset.; WREGS.exe;C:\Users\Chris\AppData\Local\Temp\RarSFX0;Win32.Virut.50;Renset.; FGP.exe;C:\Users\Chris\Documents\PC\Flåklypa grand prix + crack\FGP;Win32.Virut.50;Renset.; Abel.exe;C:\Users\Chris\Documents\PC\Hack tools\Cain;Win32.Virut.50;Renset.; Abel.exe;C:\Users\Chris\Documents\PC\Hack tools\Cain;Tool.Cain;Endret.; Cain.exe;C:\Users\Chris\Documents\PC\Hack tools\Cain;Win32.Virut.50;Renset.; UNINSTAL.EXE;C:\Users\Chris\Documents\PC\Hack tools\Cain;Win32.Virut.50;Renset.; Winrtgen.exe;C:\Users\Chris\Documents\PC\Hack tools\Cain\Winrtgen;Win32.Virut.50;Renset.; MacMakeUp.exe;C:\Users\Chris\Documents\PC\Hack tools\MAC MakeUp;Win32.Virut.50;Renset.; A_MSN_Monitor.exe;C:\Users\Chris\Documents\PC\Hack tools\MsnMonitor;Win32.Virut.50;Renset.; WinPcap.exe;C:\Users\Chris\Documents\PC\Hack tools\MsnMonitor;Win32.Virut.50;Renset.; FoxitReader30_enu_Setup.exe;C:\Users\Chris\Documents\PC\Nytt OS;Win32.Virut.50;Renset.; HWMonitor.exe;C:\Users\Chris\Documents\PC\Nytt OS;Win32.Virut.50;Renset.; deskspace.exe;C:\Users\Chris\Documents\PC\Nytt OS\DeskSpace + Topdesk__RsS\DeskSpace 1.5.4\Crack;Win32.Virut.50;Renset.; setup.exe;C:\Users\Chris\Documents\PC\Nytt OS\eee layout;Win32.Virut.50;Renset.; gengal.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program;Win32.Virut.50;Renset.; msfontextract.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program;Win32.Virut.50;Renset.; nsplugin.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program;Win32.Virut.50;Renset.; odbcconfig.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program;Win32.Virut.50;Renset.; senddoc.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program;Win32.Virut.50;Renset.; setofficelang.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program;Win32.Virut.50;Renset.; stclient_wrapper.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program;Win32.Virut.50;Renset.; testtool.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program;Win32.Virut.50;Renset.; python.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program\python-core-2.3.4\bin;Win32.Virut.50;Renset.; wininst.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\Basis\program\python-core-2.3.4\lib\distutils\command;Win32.Virut.50;Renset.; crashrep.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; python.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; sbase.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; scalc.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; sdraw.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; simpress.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; smath.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; soffice.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; sweb.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; swriter.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; unoinfo.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; unopkg.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\program;Win32.Virut.50;Renset.; regcomp.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\URE\bin;Win32.Virut.50;Renset.; regmerge.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\URE\bin;Win32.Virut.50;Renset.; regview.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\URE\bin;Win32.Virut.50;Renset.; uno.exe;C:\Users\Chris\Documents\PC\Nytt OS\OpenOfficePortable\App\openoffice\URE\bin;Win32.Virut.50;Renset.; hl2.exe;C:\Users\Chris\Documents\PC\PoRTaL;Win32.Virut.50;Renset.; t4m0_112441701304.bk.old;C:\Windows\temp;Win32.Virut.50;Renset.; t4m0_112441701304.bk.old;C:\Windows\temp;Trojan.DownLoad.50032;Urensbar.Flyttet.; t4m0_364305175949.bk.old;C:\Windows\temp;Win32.Virut.50;Renset.; t4m0_364305175949.bk.old;C:\Windows\temp;Trojan.DownLoad.50032;Urensbar.Flyttet.; t4m0_879505183328.bk.old;C:\Windows\temp;Win32.Virut.50;Renset.; t4m0_879505183328.bk.old;C:\Windows\temp;Trojan.DownLoad.50032;Urensbar.Flyttet.; tmp0_10542240283.bk.old;C:\Windows\temp;Win32.Virut.50;Renset.; tmp0_14578162809.bk.old;C:\Windows\temp;Win32.Virut.50;Renset.; VRT1046.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRT174.tmp;C:\Windows\temp;Trojan.DownLoad.50044;Slettet.; VRT189.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRT32B5.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRT533E.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRT676C.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRT6F83.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRT7251.tmp;C:\Windows\temp;BackDoor.Siggen.959;Urensbar.Flyttet.; VRT7CCD.tmp;C:\Windows\temp;Trojan.DownLoad.50044;Slettet.; VRT8153.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRT8CA0.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTB28.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTB373.tmp;C:\Windows\temp;BackDoor.Siggen.959;Urensbar.Flyttet.; VRTB548.tmp;C:\Windows\temp;Trojan.DownLoad.50044;Slettet.; VRTBEA.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTBF0A.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTC1DB.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTD214.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTDC59.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTE520.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTE58D.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTE6E3.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; VRTE867.tmp;C:\Windows\temp;Trojan.Bfkq.114;Slettet.; VRTF2F8.tmp;C:\Windows\temp;Trojan.DownLoad.47549;Slettet.; 2216,715.exe;C:\;Trojan.Siggen.4922;Slettet.; 2561,717.exe;C:\;Trojan.Siggen.4922;Slettet.; 8948,588.exe;C:\;Trojan.Siggen.4922;Slettet.; powermenu.exe;c:\program files\powermenu;Win32.Virut.50;Renset.; wmpnetwk.exe;c:\program files\windows media player;Win32.Virut.50;Renset.; sidebar.exe;c:\program files\windows sidebar;Win32.Virut.50;Renset.; ehrecvr.exe;c:\windows\ehome;Win32.Virut.50;Renset.; ehsched.exe;c:\windows\ehome;Win32.Virut.50;Renset.; trustedinstaller.exe;c:\windows\servicing;Win32.Virut.50;Renset.; Ok, jeg rebootet og hverken explorer.exe eller dwm.exe startet da jeg bootet. Så jeg startet explorer manuelt men det virker ikke som om grafikkdriveren kjører lenger og jeg fikk plutselig en feilmelding om at rundll32.exe mangler. Endret 7. oktober 2009 av Programvare Lenke til kommentar
norbat Skrevet 7. oktober 2009 Del Skrevet 7. oktober 2009 Dessverre er det ingen gode nyheter knyttet til den infeksjonen du tydeligvis har. Virut-familien er så og si 'umulig' å få renset ut og om man er så heldig at man får renset ut, er sannsynligheten stor for at systemfiler forblir korrupte etter rensing pga. at viruskoden har en del bugs. Man må nesten uansett reparer OS'et og derfor er det like godt å reinstaller. Støtter derfor geir_hk sitt forslag, dessverre. Lenke til kommentar
Programvare Skrevet 7. oktober 2009 Forfatter Del Skrevet 7. oktober 2009 Jeg forstår. Har jo drevet med dette før og kjenner til framgangsmåtene og infeksjonene. Jaja, en formatering er da bare koselig i blant =D Lenke til kommentar
norbat Skrevet 7. oktober 2009 Del Skrevet 7. oktober 2009 Jeg hater det hver gang, men et disk-image hjelper godt Lenke til kommentar
Programvare Skrevet 7. oktober 2009 Forfatter Del Skrevet 7. oktober 2009 Takk for hjelpen uansett. Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå