[Løst] Finner ikke modul ved oppstart.( rasusrd8.dll)

helbro · 10. februar 2010

Sønnen min får feilmelding hver gang han slår på pc'n.

Feilmeldingen :

C:\users\navn\AppData\lokal\rasusrd8\rasusrd8.dll

Hva er dette? Er det virus, og hvordan kan vi løse det?

PS! han har windows 7.

norbat · 10. februar 2010

Last ned Hijackthis. Legg det i en egen mappe på skrivebordet.

Start programmet, velg "Do a system scan and save a logfile". Loggfilen kopierer du og poster.

helbro · 10. februar 2010

Får opp en feilmelding om at det visst mangler en fil, slik at jeg ikke får opp rapporten på notebook.

"For some reason your system denied write access to the Host.file"

Endret 10. februar 2010 av helbro

norbat · 10. februar 2010

Høyreklikk på hijackthis og velg å kjøre som administrator.

helbro · 10. februar 2010

Høyreklikk på hijackthis og velg å kjøre som administrator.

Jeg får ikke opp det alternativet på windows 7.

Det sto at deg gikk på Vista, og at jeg måtte gå inn via "kjør" (regedit) hvis jeg hadde windows 7, men nå har vi nettopp fått windows 7, og jeg finner ikke "kjør"!

Jeg hadde XP før, og da fant jeg det bare ved å trykke på "startknappen"

Hvor finner jeg "kjør" på windows 7?

norbat · 10. februar 2010

Det er vanlig å bruke søk/kjør-feltet som du finner nederst på "start-lista" når du trykker på Start-knappen.

KJør en scan med DDS

Endret 10. februar 2010 av norbat

helbro · 10. februar 2010

DDS (Ver_09-12-01.01) - NTFSX64

Run by Daniel at 23:00:04,01 on 10.02.2010

Internet Explorer: 8.0.7600.16385

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.47.1044.18.2812.1523 [GMT 1:00]

============== Running Processes ===============

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\system32\atiesrxx.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

C:\Windows\SysWOW64\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

C:\Windows\system32\atieclxx.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\IDT\WDM\sttray64.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Program Files (x86)\LimeWire\LimeWire.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files (x86)\Hp\QuickPlay\QPService.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

C:\Program Files (x86)\Java\jre6\bin\jusched.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Uniblue\RegistryBooster\registrybooster.exe

C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files\Java\jre6\bin\jucheck.exe

C:\Windows\system32\taskeng.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\SysWow64\Macromed\Flash\FlashUtil10b.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\system32\DllHost.exe

C:\Users\Daniel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\28V2WKO0\dds[1].scr

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.youtube.com/

uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nb_NO&c=94&bd=Presario&pf=cnnb

mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nb_NO&c=94&bd=Presario&pf=cnnb

mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nb_NO&c=94&bd=Presario&pf=cnnb

mLocal Page = c:\windows\syswow64\blank.htm

uURLSearchHooks: ToolbarURLSearchHook Class: {ca3eb689-8f09-4026-aa10-b9534c691ce0} - c:\program files (x86)\hypercam toolbar\tbhelper.dll

uURLSearchHooks: DVDVideoSoft Toolbar: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - c:\program files (x86)\dvdvideosoft\tbDVDV.dll

mURLSearchHooks: DVDVideoSoft Toolbar: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - c:\program files (x86)\dvdvideosoft\tbDVDV.dll

mWinlogon: Userinit=userinit.exe

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files (x86)\microsoft office\office12\GrooveShellExtensions.dll

BHO: Påloggingshjelp for Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files (x86)\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files (x86)\google\google toolbar\GoogleToolbar_32.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files (x86)\google\googletoolbarnotifier\5.5.4723.1820\swg.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre6\bin\jp2ssv.dll

BHO: DVDVideoSoft Toolbar: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - c:\program files (x86)\dvdvideosoft\tbDVDV.dll

BHO: SMTTB2009 Class: {fcbccb87-9224-4b8d-b117-f56d924beb18} - c:\program files (x86)\hypercam toolbar\tbcore3.dll

TB: HyperCam Toolbar: {338b4dfe-2e2c-4338-9e41-e176d497299e} - c:\program files (x86)\hypercam toolbar\tbcore3.dll

TB: DVDVideoSoft Toolbar: {e9911ec6-1bcc-40b0-9993-e0eea7f6953f} - c:\program files (x86)\dvdvideosoft\tbDVDV.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files (x86)\google\google toolbar\GoogleToolbar_32.dll

uRun: [HPADVISOR] c:\program files (x86)\hewlett-packard\hp advisor\HPAdvisor.exe view=DOCKVIEW

uRun: [LightScribe Control Panel] c:\program files (x86)\common files\lightscribe\LightScribeControlPanel.exe -hidden

uRun: [swg] "c:\program files (x86)\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"

uRun: [msnmsgr] "c:\program files (x86)\windows live\messenger\msnmsgr.exe" /background

uRun: [rasusrd8] rundll32.exe "c:\users\daniel\appdata\local\rasusrd8\rasusrd8.dll", DllInit

uRun: [incrediMail] c:\program files (x86)\incredimail\bin\IncMail.exe /c

uRunOnce: [uniblueRegistryBooster] "c:\program files (x86)\uniblue\registrybooster\launcher.exe" delay 20000

mRun: [startCCC] "c:\program files (x86)\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun

mRun: [QPService] "c:\program files (x86)\hp\quickplay\QPService.exe"

mRun: [uCam_Menu] "c:\program files (x86)\cyberlink\youcam\muitransfer\muistartmenu.exe" "c:\program files (x86)\cyberlink\youcam" updatewithcreateonce "software\cyberlink\youcam\2.0"

mRun: [QlbCtrl.exe] c:\program files (x86)\hewlett-packard\hp quick launch buttons\QlbCtrl.exe /Start

mRun: [updatePRCShortCut] "c:\program files (x86)\hewlett-packard\recovery\muitransfer\muistartmenu.exe" "c:\program files (x86)\hewlett-packard\recovery" updatewithcreateonce "software\cyberlink\PowerRecover"

mRun: [Adobe Reader Speed Launcher] "c:\program files (x86)\adobe\reader 9.0\reader\Reader_sl.exe"

mRun: [Easybits Recovery] c:\program files (x86)\easybits for kids\ezRecover.exe

mRun: [HP Software Update] c:\program files (x86)\hp\hp software update\HPWuSchd2.exe

mRun: [<NO NAME>]

mRun: [WirelessAssistant] c:\program files (x86)\hewlett-packard\hp wireless assistant\HPWAMain.exe

mRun: [sunJavaUpdateSched] "c:\program files (x86)\java\jre6\bin\jusched.exe"

mRun: [GrooveMonitor] "c:\program files (x86)\microsoft office\office12\GrooveMonitor.exe"

mRun: [avgnt] "c:\program files (x86)\avira\antivir desktop\avgnt.exe" /min

StartupFolder: c:\users\daniel\appdata\roaming\micros~1\windows\startm~1\programs\startup\limewi~1.lnk - c:\program files (x86)\limewire\LimeWire.exe

uPolicies-system: WallpaperStyle = 2

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: HideFastUserSwitching = 0 (0x0)

dPolicies-system: WallpaperStyle = 2

IE: E&ksporter til Microsoft Excel - c:\progra~2\micros~1\office12\EXCEL.EXE/3000

IE: Google Sidewiki - c:\program files (x86)\google\google toolbar\component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files (x86)\windows live\writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~2\micros~1\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~2\micros~1\office12\REFIEBAR.DLL

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {358DFA15-D48C-4296-8D16-7405F918333B} - hxxps://fronter.com/orlandgs/links/fronter_oes2.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files (x86)\microsoft office\office12\GrooveSystemServices.dll

SEH: EasyBits ShellExecute Hook: {e54729e8-bb3d-4270-9d49-7389ea579090} - c:\windows\syswow64\EZUPBH~1.DLL

SEH: UPB:{B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File

mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files (x86)\common files\lightscribe\LSRunOnce.exe"

{AA58ED58-01DD-4d91-8333-CF10577473F7}

{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{2318C2B1-4965-11d4-9B18-009027A5CD4F}

TB-X64: {338B4DFE-2E2C-4338-9E41-E176D497299E} - No File

TB-X64: {E9911EC6-1BCC-40B0-9993-E0EEA7F6953F} - No File

mRun-x64: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

mRun-x64: [sysTrayApp] c:\program files\idt\wdm\sttray64.exe

mRun-x64: [sunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"

============= SERVICES / DRIVERS ===============

R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 59904]

R2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\driverstore\filerepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [2009-9-1 89600]

R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-7-2 203264]

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files (x86)\avira\antivir desktop\sched.exe [2010-1-26 108289]

R2 AntiVirService;Avira AntiVir Guard;c:\program files (x86)\avira\antivir desktop\avguard.exe [2010-1-26 185089]

R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2010-1-26 74880]

R2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe -k netsvcs [2009-7-14 27136]

R3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\hewlett-packard\hp quick launch buttons\Com4QLBEx.exe [2009-8-26 228408]

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt64win7.sys [2009-9-1 215040]

R3 usbfilter;AMD USB Filter Driver;c:\windows\system32\drivers\usbfilter.sys [2009-9-1 36408]

S2 gupdate;Googles oppdateringstjeneste (gupdate);c:\program files (x86)\google\update\GoogleUpdate.exe [2010-1-29 135664]

S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\drivers\netw5v64.sys [2009-6-10 5434368]

S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL6.SYS [2009-7-13 292864]

S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV6.SYS [2009-7-13 1485312]

S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT6.SYS [2009-7-13 740864]

S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\drivers\yk62x64.sys [2009-6-10 389120]

=============== Created Last 30 ================

2010-02-10 19:56:19 0 d-----w- c:\users\daniel\appdata\roaming\Uniblue

2010-02-10 19:56:12 0 d-----w- c:\program files (x86)\Uniblue

2010-02-10 15:25:42 0 d-----w- c:\program files (x86)\TrendMicro

2010-02-02 18:22:21 0 d-----w- c:\programdata\IncrediMail

2010-02-02 18:22:17 0 d-----w- c:\programdata\IM

2010-02-02 18:22:17 0 d-----w- c:\program files (x86)\IncrediMail

2010-02-02 18:21:26 0 d-----w- C:\searchplugins

2010-02-01 09:41:02 0 d-----w- C:\.fub_file_store_32

2010-01-31 14:04:53 0 d-----w- C:\Games

2010-01-27 15:13:42 0 d-----w- c:\program files (x86)\common files\Symantec Shared

2010-01-27 08:02:30 2870272 ----a-w- c:\windows\explorer.exe

2010-01-27 08:02:30 2614272 ----a-w- c:\windows\syswow64\explorer.exe

2010-01-27 08:02:29 389632 ----a-w- c:\windows\system32\winlogon.exe

2010-01-26 22:07:44 74880 ----a-w- c:\windows\system32\drivers\avgntflt.sys

2010-01-26 22:07:39 0 d-----w- c:\programdata\Avira

2010-01-26 22:07:39 0 d-----w- c:\program files (x86)\Avira

2010-01-26 21:54:10 0 d-----w- c:\users\daniel\appdata\roaming\Windows Live Writer

2010-01-26 17:15:07 0 d-----w- c:\program files (x86)\BitTorrent

2010-01-25 16:13:39 0 d-----w- c:\program files (x86)\WildGames

2010-01-25 16:04:48 0 d-----w- c:\program files (x86)\Conduit

2010-01-25 16:04:22 0 d-----w- c:\program files (x86)\DVDVideoSoft

2010-01-25 16:04:22 0 d-----w- c:\program files (x86)\common files\DVDVideoSoft

2010-01-22 19:32:56 0 d-----w- c:\program files (x86)\HyperCam Toolbar

2010-01-22 10:45:42 56 ---ha-w- c:\windows\syswow64\ezsidmv.dat

2010-01-22 10:45:40 1397248 ----a-w- c:\windows\syswow64\win_utilman.exe

2010-01-22 10:45:37 0 d-----w- c:\users\daniel\appdata\roaming\_MDLogs

2010-01-22 10:36:02 5961728 ----a-w- c:\windows\syswow64\mshtml.dll

2010-01-22 10:36:01 10976768 ----a-w- c:\windows\syswow64\ieframe.dll

2010-01-22 10:36:00 977920 ----a-w- c:\windows\syswow64\wininet.dll

2010-01-22 10:36:00 64512 ----a-w- c:\windows\syswow64\msfeedsbs.dll

2010-01-22 10:36:00 381440 ----a-w- c:\windows\syswow64\iedkcs32.dll

2010-01-22 10:36:00 1224704 ----a-w- c:\windows\syswow64\urlmon.dll

2010-01-22 10:36:00 1192960 ----a-w- c:\windows\system32\wininet.dll

2010-01-20 13:50:38 0 d-----w- c:\users\daniel\Library

2010-01-20 13:49:50 0 d-----w- c:\programdata\Titanium

2010-01-20 13:49:15 0 d-----w- c:\program files (x86)\Club Penguin Money Maker

2010-01-20 13:49:10 0 d-----w- c:\users\daniel\appdata\roaming\Titanium

2010-01-19 17:36:08 327168 ----a-w- c:\windows\IsUn0414.exe

2010-01-19 17:33:35 0 d-----w- c:\users\daniel\appdata\roaming\godzHell

2010-01-18 12:26:54 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf

2010-01-18 06:21:30 0 d-----w- c:\users\daniel\appdata\roaming\LimeWire

2010-01-18 06:21:06 0 d-----w- c:\program files (x86)\LimeWire

2010-01-13 08:19:54 70656 ----a-w- c:\windows\syswow64\fontsub.dll

2010-01-13 08:19:54 148480 ----a-w- c:\windows\system32\t2embed.dll

2010-01-13 08:19:54 108544 ----a-w- c:\windows\syswow64\t2embed.dll

2010-01-13 08:19:54 100864 ----a-w- c:\windows\system32\fontsub.dll

==================== Find3M ====================

2010-01-25 15:01:04 74124 ----a-w- c:\windows\system32\perfc014.dat

2010-01-25 15:01:04 448210 ----a-w- c:\windows\system32\perfh014.dat

2010-01-21 11:50:13 969624 ----a-w- c:\users\daniel\HyCam2.exe

2010-01-19 09:05:57 424960 ----a-w- c:\windows\system32\secproc.dll

2010-01-19 09:05:57 422912 ----a-w- c:\windows\system32\secproc_isv.dll

2010-01-19 09:05:57 121856 ----a-w- c:\windows\system32\secproc_ssp_isv.dll

2010-01-19 09:05:57 121856 ----a-w- c:\windows\system32\secproc_ssp.dll

2010-01-19 09:00:44 305152 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe

2010-01-19 09:00:43 357888 ----a-w- c:\windows\system32\RMActivate_isv.exe

2010-01-19 09:00:37 356352 ----a-w- c:\windows\system32\RMActivate.exe

2010-01-19 09:00:37 306688 ----a-w- c:\windows\system32\RMActivate_ssp.exe

2010-01-18 23:29:31 85504 ----a-w- c:\windows\syswow64\secproc_ssp_isv.dll

2010-01-18 23:29:31 85504 ----a-w- c:\windows\syswow64\secproc_ssp.dll

2010-01-18 23:29:31 365568 ----a-w- c:\windows\syswow64\secproc_isv.dll

2010-01-18 23:29:30 369152 ----a-w- c:\windows\syswow64\secproc.dll

2010-01-18 23:28:33 324608 ----a-w- c:\windows\syswow64\RMActivate_isv.exe

2010-01-18 23:28:33 277504 ----a-w- c:\windows\syswow64\RMActivate_ssp_isv.exe

2010-01-18 23:28:30 320512 ----a-w- c:\windows\syswow64\RMActivate.exe

2010-01-18 23:28:30 280064 ----a-w- c:\windows\syswow64\RMActivate_ssp.exe

2010-01-14 10:12:06 212352 ------w- c:\windows\system32\MpSigStub.exe

2010-01-09 09:37:45 69 ----a-w- c:\users\daniel\jagex_runescape_preferences2.dat

2010-01-09 09:36:17 39 ----a-w- c:\users\daniel\jagex_runescape_preferences.dat

2010-01-08 03:38:32 285696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys

2010-01-08 03:38:28 157696 ----a-w- c:\windows\system32\drivers\mrxsmb.sys

2009-12-31 17:34:57 112128 ----a-w- c:\users\daniel\CamRes2.dll

2009-12-31 15:56:53 173992 ----a-w- c:\users\daniel\UnHyCam2.exe

2009-12-31 15:03:30 44032 ----a-w- c:\users\daniel\MClick2.dll

2009-12-23 13:13:29 419840 ----a-w- c:\windows\system32\wrap_oal.dll

2009-12-23 13:13:29 413696 ----a-w- c:\windows\syswow64\wrap_oal.dll

2009-12-23 13:13:29 133632 ----a-w- c:\windows\system32\OpenAL32.dll

2009-12-23 13:13:29 110592 ----a-w- c:\windows\syswow64\OpenAL32.dll

2009-12-19 09:50:56 14848 ----a-w- c:\windows\system32\tsbyuv.dll

2009-12-19 09:49:47 1572352 ----a-w- c:\windows\system32\quartz.dll

2009-12-19 09:47:56 25088 ----a-w- c:\windows\system32\msyuv.dll

2009-12-19 09:47:53 38912 ----a-w- c:\windows\system32\msvidc32.dll

2009-12-19 09:47:46 16384 ----a-w- c:\windows\system32\msrle32.dll

2009-12-19 09:46:35 54272 ----a-w- c:\windows\system32\iyuv_32.dll

2009-12-19 09:02:52 12288 ----a-w- c:\windows\syswow64\tsbyuv.dll

2009-12-19 09:02:48 1328640 ----a-w- c:\windows\syswow64\quartz.dll

2009-12-19 09:02:46 22016 ----a-w- c:\windows\syswow64\msyuv.dll

2009-12-19 09:02:45 31744 ----a-w- c:\windows\syswow64\msvidc32.dll

2009-12-19 09:02:45 13312 ----a-w- c:\windows\syswow64\msrle32.dll

2009-12-19 09:02:40 84480 ----a-w- c:\windows\syswow64\mciavi32.dll

2009-12-19 09:02:39 50176 ----a-w- c:\windows\syswow64\iyuv_32.dll

2009-12-19 09:02:01 91648 ----a-w- c:\windows\syswow64\avifil32.dll

2009-08-26 18:57:04 36156 ----a-w- c:\windows\inf\perflib414\perfd.dat

2009-08-26 18:57:04 36156 ----a-w- c:\windows\inf\perflib414\perfc.dat

2009-08-26 18:57:04 298300 ----a-w- c:\windows\inf\perflib414\perfi.dat

2009-08-26 18:57:04 298300 ----a-w- c:\windows\inf\perflib414\perfh.dat

2009-07-14 04:54:24 174 --sha-w- c:\program files\desktop.ini

2009-07-14 04:54:24 174 --sha-w- c:\program files (x86)\desktop.ini

2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib000\perfi.dat

2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib000\perfh.dat

2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib000\perfd.dat

2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib000\perfc.dat

2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat

2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe

2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe

============= FINISH: 23:00:53,00 ===============

norbat · 10. februar 2010

Har du kjørt en rask skann med MBAM? (se veiledingen)

Den burde fixe denne registeroppføringen som gir deg feilmeldingen

helbro · 10. februar 2010

Det fikset det dessverre ikke.

Fikk denne meldingen:

Malwarebytes' Anti-Malware 1.44

Databaseversjon: 3722

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

10.02.2010 23:19:44

mbam-log-2010-02-10 (23-19-44).txt

Skanntype: Rask Skann

Objekter skannet: 113750

Tid tilbakelagt: 4 minute(s), 7 second(s)

Minneprosesser infisert: 0

Minnemoduler infisert: 0

Registernøkler infisert: 0

Registerverdier infisert: 0

Registerfiler infisert: 1

Mapper infisert: 0

Filer infisert: 0

Minneprosesser infisert: