Lösche alle Funde bis auch Combofix.

Kannst du den Avenger für nehmen wenn Panda das nicht macht..

so müste nun aber ok sein oder

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File "c:\windows\system32\11.tmp" deleted successfully.
File "c:\windows\system32\A.tmp" deleted successfully.
File "c:\windows\system32\47.tmp" deleted successfully.
File "c:\windows\system32\46.tmp" deleted successfully.
File "c:\windows\system32\deploytk.dll" deleted successfully.

Error: file "c:\windows\system32\dskquoui32.dll" not found!
Deletion of file "c:\windows\system32\dskquoui32.dll" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\ARKE.tmp" not found!
Deletion of file "C:\ARKE.tmp" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: folder "c:\programme\LimeWire" not found!
Deletion of folder "c:\programme\LimeWire" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Completed script processing.

*******************

Finished! Terminate.



//////////////////////////////////////////
Avenger Pre-Processor log
//////////////////////////////////////////

Platform: Windows XP (build 2600, Service Pack 3)
Sat Jan 17 17:03:42 2009

17:03:42: Error: Invalid script. A valid script must begin with a command directive.
Aborting execution!


//////////////////////////////////////////


Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File "C:\Dokumente und Einstellungen\hubert\Cookies\hubert@doubleclick[1].txt" deleted successfully.
File "C:\Dokumente und Einstellungen\hubert\Cookies\hubert@atdmt[2].txt" deleted successfully.
File "C:\Dokumente und Einstellungen\hubert\Cookies\hubert@tradedoubler[2].txt" deleted successfully.
File "C:\Dokumente und Einstellungen\hubert\Cookies\hubert@mediaplex[2].txt" deleted successfully.
File "C:\Dokumente und Einstellungen\hubert\Cookies\hubert@adverserve[1].txt" deleted successfully.
File "C:\Dokumente und Einstellungen\hubert\Cookies\hubert@adtech[1].txt" deleted successfully.

Error: file "C:\WINDOWS\system32\GroupPolicyManifest\29.serial. zip[setup.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\29.serial. zip[setup.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\24.crack.z ip[setup.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\24.crack.z ip[setup.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\24.crack.z ip[crack.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\24.crack.z ip[crack.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\28.keygen. zip[keygen.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\28.keygen. zip[keygen.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\28.keygen. zip[setup.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\28.keygen. zip[setup.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\26.setup.z ip[setup.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\26.setup.z ip[setup.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\27.unpack. zip[self_extracting_archive.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\27.unpack. zip[self_extracting_archive.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\26.setup.z ip[crack+keygen.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\26.setup.z ip[crack+keygen.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\25.video.z ip[hardcore_porn.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\25.video.z ip[hardcore_porn.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Error: file "C:\WINDOWS\system32\GroupPolicyManifest\29.serial. zip[serial.exe]" not found!
Deletion of file "C:\WINDOWS\system32\GroupPolicyManifest\29.serial. zip[serial.exe]" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Completed script processing.

*******************

Finished! Terminate.

Scanne den Rechner abschließend mit SUPERAntiSpyware und Anti-Malware und poste die logs.

Malwarebytes' Anti-Malware 1.33
Datenbank Version: 1662
Windows 5.1.2600 Service Pack 3

17.01.2009 19:24:34
mbam-log-2009-01-17 (19-24-34).txt

Scan-Methode: Vollständiger Scan (C:\|)
Durchsuchte Objekte: 142685
Laufzeit: 49 minute(s), 15 second(s)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 01/17/2009 at 06:18 PM

Application Version : 4.24.1004

Core Rules Database Version : 3714
Trace Rules Database Version: 1689

Scan type : Quick Scan
Total Scan Time : 00:12:24

Memory items scanned : 440
Memory threats detected : 0
Registry items scanned : 419
Registry threats detected : 0
File items scanned : 16745
File threats detected : 12

Adware.Tracking Cookie
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@adserver.sevenload[1].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@mediaplex[2].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@doubleclick[1].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@tele2.112.2o7[1].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@adserver.71i[1].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@ads.heias[1].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@tradedoubler[2].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@delivery.ads.coupling-media[2].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@adfarm1.adition[1].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@atdmt[2].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@ad.zanox[2].txt
C:\Dokumente und Einstellungen\hubert\Cookies\hubert@adtech[1].txt

Sehr gut. Wenn's keine Probleme mehr gibt bist du entlassen..