Ev, skit i datorn?

26 oktober, 2014

Det började med att Google Chrome slutade fungera (se annat inlägg) och nu hamnade jag här ;-(

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-10-2014
Ran by Cricke (administrator) on CRICKE-HP on 26-10-2014 12:25:22
Running from C:\Users\Cricke\Desktop
Loaded Profile: Cricke (Available profiles: Cricke & William & Pappa & Gäst A)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: Svenska (Sverige)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\nfservice.exe
(Norman Safeground AS) C:\Program Files\Norman\Nse\Bin\nseupdatesvc.exe
(Norman Safeground AS) C:\Program Files\Norman\nvc\bin\nvcsvc.exe
(Norman AS) C:\Program Files\Norman\Npm\Bin\nvoy.exe
(Norman Safeground AS) C:\Program Files\Norman\Ngs\Bin\nnf.exe
(Norman Safeground AS) C:\Program Files\Norman\Npf\Bin\npfsvc32.exe
(Norman Safeground AS) C:\Program Files\Norman\Ngs\Bin\nprosec.exe
(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\nwscmon.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\stacsv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vfsFPService.exe
(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\zanda.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\AEstSrv.exe
(Agere Systems) C:\Windows\System32\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Alcor Micro, Corp.) C:\Program Files\Multimedia Card Reader\readericon10.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\zlh.exe
(ScanSoft, Inc.) C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe
() C:\Program Files\Topro\tppoll.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Nikon Corporation) C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareAgent.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\zlhh.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
() C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7Debug\mdm.exe
() C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
() C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
() C:\Windows\SMINST\BLService.exe
() C:\Program Files\Cyberlink\Shared files\RichVideo.exe
() C:\ProgramData\OnlineUpdate\ouc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\scheduler.exe
() C:\Program Files\Norman\Npc\Bin\nuaa.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
() C:\Program Files\Norman\Npm\Bin\njeeves2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_15_0_0_167_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Norman AS) C:\Program Files\Norman\Npf\Bin\npfuser.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [253952 2008-05-23] (Alps Electric Co., Ltd.)
HKLM\...\Run: [iAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-04-16] (Intel Corporation)
HKLM\...\Run: [uCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2007-12-24] (CyberLink Corp.)
HKLM\...\Run: [readericon10] => C:\Program Files\Multimedia Card Reader\readericon10.exe [131072 2007-11-22] (Alcor Micro, Corp.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-08-02] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [TVAgent] => C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe [468264 2008-07-24] (CyberLink Corp.)
HKLM\...\Run: [smartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [910128 2008-08-08] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2006-12-10] (Hewlett-Packard Co.)
HKLM\...\Run: [hpWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2008-04-15] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Norman ZANDA] => C:\Program Files\Norman\Npm\Bin\ZLH.EXE [88536 2014-08-21] (Norman Safeground AS)
HKLM\...\Run: [OpwareSE2] => C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe [49152 2003-05-08] (ScanSoft, Inc.)
HKLM\...\Run: [sysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [442460 2008-08-11] (IDT, Inc.)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [55824 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [DpAgent] => C:\Program Files\DigitalPersona\Bin\dpagent.exe [842816 2009-12-01] (DigitalPersona, Inc.)
HKLM\...\Run: [TPPOLL] => C:\Program Files\TOPRO\TPPOLL.EXE [36864 2007-07-31] ()
HKLM\...\Run: [HP Health Check Scheduler] => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [Nikon Transfer Monitor] => C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe [479232 2009-09-15] (Nikon Corporation)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM\...\Run: [AllShareAgent] => C:\Program Files\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152544 2012-12-12] (Apple Inc.)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-05-23] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [brMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [745472 2009-02-10] (Brother Industries, Ltd.)
HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [77824 2007-10-30] (Brother Industries, Ltd.)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [HW_OPENEYE_OUC_Tele2 Mobile Partner] => C:\Program Files\Tele2 Mobile Partner\UpdateDog\ouc.exe [218624 2011-09-05] ()
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [skype] => C:\Program Files\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1561968 2013-05-23] (Samsung)
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung)
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {0079f4d6-8d8f-11df-afbc-00218685a04d} - G:\autorun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {0673f14d-2527-11e0-b10b-00218685a04d} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {094194e4-c34d-11e1-b689-001e101f951b} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {13da5f0d-d7e2-11e1-ad55-001e101fbad4} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {1665592b-974a-11de-ada4-0022645bba54} - H:\LaunchU3.exe -a
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {1df0354e-5f7d-11df-8d01-00218685a04d} - H:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {1df03550-5f7d-11df-8d01-00218685a04d} - H:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {2d01c441-cf2f-11e1-b4f4-001e101f2b52} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {2f3b684a-b602-11df-87df-00218685a04d} - G:\start.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {3bdc560b-df28-11dd-a998-00218685a04d} - F:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {3bdc5623-df28-11dd-a998-00218685a04d} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {3bdc5639-df28-11dd-a998-00218685a04d} - G:\LaunchU3.exe -a
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {44ee0389-7c7b-11de-86d7-00218685a04d} - G:\PhotoViewerAP_V2.1.9.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {481b6b0c-bc47-11df-9314-00218685a04d} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {5253cd69-41f2-11de-8d8e-00218685a04d} - H:\LaunchU3.exe -a
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {84e2dca3-1e7b-11de-8fc7-00218685a04d} - F:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {93ada945-d71f-11e0-9f03-001e101fe5e1} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {93ada95d-d71f-11e0-9f03-001e101f8aaa} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {94d9fef1-f636-11dd-a9e3-00218685a04d} - F:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {94d9fef2-f636-11dd-a9e3-00218685a04d} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {a079589f-b2a7-11e0-8484-00215d9d824a} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {a07958b1-b2a7-11e0-8484-00215d9d824a} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {bc1e66e2-141d-11df-b54c-00218685a04d} - G:\LaunchU3.exe -a
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {cc937da3-fc31-11e1-ae8b-001e101fa3eb} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {dc916fae-c948-11e1-b221-001e101f6c46} - G:\AutoRun.exe
HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {ecf1659a-09b1-11e2-bf35-001e101f3843} - H:\AutoRun.exe
Lsa: [Notification Packages] scecli DPPWDFLT
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk
ShortcutTarget: Adobe Gamma Loader.exe.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Personal.lnk
ShortcutTarget: Personal.lnk -> C:\Program Files\Personal\bin\Personal.exe (No File)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2452474
SearchScopes: HKLM - {2C7F3627-FDE2-41EB-8C79-8A40A613F487} URL = http://se.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913934
SearchScopes: HKLM - {685D10E5-B21D-44BB-AE0F-F7BC9A1A2FD0} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1222&query={searchTerms}&invocationType=tb50hpcnnbie7-sv-se
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2452474
SearchScopes: HKCU - DefaultScope {685D10E5-B21D-44BB-AE0F-F7BC9A1A2FD0} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1222&query={searchTerms}&invocationType=tb50hpcnnbie7-sv-se
SearchScopes: HKCU - {2C7F3627-FDE2-41EB-8C79-8A40A613F487} URL = http://se.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913934
SearchScopes: HKCU - {685D10E5-B21D-44BB-AE0F-F7BC9A1A2FD0} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1222&query={searchTerms}&invocationType=tb50hpcnnbie7-sv-se
SearchScopes: HKCU - {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL = http://www.daemon-search.com/search?q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2452474
BHO: Länkhjälp till Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: DigitalPersona Personal Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Toolbar: HKCU - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab
DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} http://62.181.87.189/activex/AxisCamControl.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 83.255.245.11

FireFox:
========
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @bankid.com/BankID säkerhetsprogram,version=6.0.1.5 -> C:\Program Files\BankID\npBispBrowser.dll (Finansiell ID-Teknik BID AB)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-02-03]
FF HKLM\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files\DigitalPersona\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files\DigitalPersona\Bin\FirefoxExt [2010-03-09]
FF HKLM\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension [2012-01-15]
FF HKCU\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files\DigitalPersona\Bin\firefoxext

Chrome:
=======
CHR Profile: C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Docs) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-24]
CHR Extension: (Google Drive) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-24]
CHR Extension: (YouTube) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-24]
CHR Extension: (Sök på Google) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-24]
CHR Extension: (Skype Click to Call) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-10-24]
CHR Extension: (Google Wallet) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-24]
CHR Extension: (Gmail) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-24]
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx []
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-03-02]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [2012-03-02]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\aestsrv.exe [77824 2008-06-27] (Andrea Electronics Corporation) [File not signed]
R2 DpHost; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [322624 2009-12-01] (DigitalPersona, Inc.) [File not signed]
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [File not signed]
R2 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)
R2 gupdate1c9d98d99b56d70; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-05-20] (Google Inc.)
R2 HerculesDJControlMP3; C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE [17408 2007-11-21] () [File not signed]
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-03-13] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-03-13] (Hewlett-Packard Co.) [File not signed]
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [264704 2010-11-16] () [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 nfservice; C:\Program Files\Norman\npm\bin\nfservice.exe [194536 2014-08-27] (Norman Safeground AS)
R3 NJeeves2; C:\Program Files\Norman\Npm\Bin\Njeeves2.exe [179080 2014-06-30] ()
R2 NNFSVC; C:\Program Files\Norman\Ngs\Bin\Nnf.exe [281128 2014-06-30] (Norman Safeground AS)
R2 Norman ZANDA; C:\Program Files\Norman\Npm\Bin\Zanda.exe [456664 2014-06-30] (Norman Safeground AS)
R2 NPFSvc32; C:\Program Files\Norman\npf\bin\npfsvc32.exe [408344 2014-08-05] (Norman Safeground AS)
R2 NPROSECSVC; C:\Program Files\Norman\Ngs\Bin\Nprosec.exe [140032 2014-10-15] (Norman Safeground AS)
R2 nseupdatesvc; C:\Program Files\Norman\nse\bin\nseupdatesvc.exe [247072 2014-09-25] (Norman Safeground AS)
R3 NUAA; C:\Program Files\Norman\npc\bin\nuaa.exe [127152 2014-03-25] ()
R2 nvcsvc; C:\Program Files\Norman\nvc\bin\nvcsvc.exe [376328 2014-10-07] (Norman Safeground AS)
R2 NVOY; C:\Program Files\Norman\Npm\Bin\Nvoy.exe [222864 2013-06-27] (Norman AS)
R2 NWSCMON; C:\Program Files\Norman\Npm\Bin\nwscmon.exe [231008 2014-08-05] (Norman Safeground AS)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 QPCapSvc; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [292216 2008-07-24] ()
R2 QPSched; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116080 2008-07-24] ()
R2 Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [361808 2008-08-07] ()
R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [241734 2008-04-29] () [File not signed]
R2 SamsungAllShareV2.0; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [25504 2012-01-19] (Samsung Electronics Co., Ltd.)
R3 Scheduler; C:\Program Files\Norman\Npm\Bin\scheduler.exe [177008 2014-06-30] (Norman Safeground AS)
S3 SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [27584 2012-03-02] (Samsung Electronics Co., Ltd.)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\STacSV.exe [225362 2008-08-11] (IDT, Inc.) [File not signed]
S2 Tele2 Mobile Partner. RunOuc; C:\Program Files\Tele2 Mobile Partner\UpdateDog\ouc.exe [218624 2011-09-05] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 ALE_NF; C:\Windows\system32\drivers\ale_nf.sys [120792 2014-06-30] (Norman Safeground AS)
S3 Bulk; C:\Windows\System32\Drivers\HDJBulk.sys [127488 2009-10-02] (© Guillemot R&D, 2009. All rights reserved.)
S3 DCamUSBIntel; C:\Windows\System32\Drivers\TP6800.sys [210924 2007-08-31] (Microsoft Corporation)
S3 GTUHSBUS; C:\Windows\System32\DRIVERS\gtuhsbus.sys [66560 2009-05-13] (Option N.V.)
S3 GTUHSNDISIPXP; C:\Windows\System32\DRIVERS\gtuhs51.sys [107520 2009-05-13] (Option N.V.)
S3 GTUHSSER; C:\Windows\System32\DRIVERS\gtuhsser.sys [8064 2009-05-13] (Option N.V.)
R3 gzflt; C:\Program Files\Norman\nvc\bin\gzflt.sys [154464 2014-06-04] (BitDefender LLC)
S3 HDJMidi; C:\Windows\System32\DRIVERS\HDJMidi.sys [124416 2009-10-02] (© Guillemot R&D, 2009. All rights reserved.)
R3 HpqKbFiltr; C:\Windows\System32\DRIVERS\HpqKbFiltr.sys [16768 2007-06-19] (Hewlett-Packard Development Company, L.P.) [File not signed]
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-19] (ITE Tech. Inc. ) [File not signed]
R3 LEqdUsb; C:\Windows\System32\Drivers\LEqdUsb.Sys [40720 2009-06-17] (Logitech, Inc.)
R3 LHidEqd; C:\Windows\System32\Drivers\LHidEqd.Sys [10384 2009-06-17] (Logitech, Inc.)
R2 Ndiskio; C:\Program Files\Norman\Nse\Bin\NDISKIO.SYS [22880 2010-12-09] (Norman ASA)
R1 NGS; c:\program files\norman\ngs\bin\ngs.sys [28120 2014-06-27] (Norman Safeground AS)
R1 NPROSEC; C:\Program Files\Norman\Ngs\Bin\nprosec.sys [108360 2014-08-27] (Norman Safeground AS)
R2 nregsec; C:\Program Files\Norman\Ngs\Bin\nregsec.sys [67256 2014-10-15] (Norman Safeground AS)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [104744 2009-03-25] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-03-06] () [File not signed]
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt.sys [385536 2008-08-11] (IDT, Inc.) [File not signed]
S3 Tdsshbecr; C:\Windows\System32\DRIVERS\shbecr.sys [42368 2009-10-22] (Todos Data System AB)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [360376 2014-06-26] (BitDefender S.R.L.)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [59376 2008-07-24] (Cyberlink Corp.)
U3 ao2m9mqq; C:\Windows\system32\Drivers\ao2m9mqq.sys [0 ] (Microsoft Corporation)
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
R0 imekozip; vbahupac\imekozip.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-26 12:25 - 2014-10-26 12:26 - 00034679 _____ () C:\Users\Cricke\Desktop\FRST.txt
2014-10-26 12:24 - 2014-10-26 12:25 - 00000000 ____D () C:\FRST
2014-10-26 12:23 - 2014-10-26 12:23 - 01104384 _____ (Farbar) C:\Users\Cricke\Desktop\FRST.exe
2014-10-26 12:18 - 2014-10-26 12:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-10-25 19:34 - 2014-10-25 19:34 - 00000000 ____D () C:\Program Files\Verimatrix
2014-10-23 22:31 - 2014-10-24 00:43 - 00000000 ____D () C:\Users\Cricke\Desktop\W 12 år
2014-10-23 20:41 - 2014-10-23 13:29 - 00191952 _____ () C:\Windows\system32\nscrnsav.scr
2014-10-23 10:01 - 2014-06-26 11:49 - 00360376 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\Trufos.sys
2014-10-21 17:00 - 2014-10-21 17:00 - 00000000 ____D () C:\Users\Cricke\Documents\DYMO Label
2014-10-21 17:00 - 2014-10-21 17:00 - 00000000 ____D () C:\Users\Cricke\AppData\Local\DYMO
2014-10-21 16:13 - 2014-10-21 16:16 - 00031369 __RSH () C:\Program Files\DLS8Uninstall.log
2014-10-21 16:12 - 2014-10-21 16:12 - 00000000 ____D () C:\ProgramData\DYMO
2014-10-21 16:12 - 2014-10-21 16:12 - 00000000 ____D () C:\Program Files\DYMO
2014-10-16 14:41 - 2014-10-21 16:15 - 00155617 _____ () C:\Windows\DPINST.LOG
2014-10-16 14:41 - 2014-10-16 14:41 - 00001837 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-10-16 14:41 - 2014-10-16 14:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-10-16 14:39 - 2014-10-16 14:39 - 00000000 ____D () C:\Users\Cricke\AppData\Local\Sony
2014-10-16 14:39 - 2014-10-16 14:39 - 00000000 ____D () C:\ProgramData\Sony
2014-10-16 14:39 - 2014-10-16 14:39 - 00000000 ____D () C:\Program Files\Sony
2014-10-16 14:36 - 2014-10-16 14:38 - 28474512 _____ (Sony Mobile Communications ) C:\Users\Cricke\Downloads\Sony PC Companion_Web.exe
2014-10-15 11:06 - 2014-09-05 00:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2014-10-15 11:01 - 2014-09-16 17:56 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-09-28 10:46 - 2014-09-28 10:46 - 00159864 _____ () C:\Windows\Minidump\Mini092814-01.dmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-26 12:18 - 2009-05-20 21:57 - 00000000 ____D () C:\Program Files\Google
2014-10-26 12:14 - 2013-03-12 21:18 - 00000340 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-10-26 12:13 - 2008-10-20 04:42 - 01708500 _____ () C:\Windows\WindowsUpdate.log
2014-10-26 12:07 - 2009-06-23 20:57 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-26 12:02 - 2008-09-05 06:57 - 00644450 _____ () C:\Windows\system32\perfh01D.dat
2014-10-26 12:02 - 2008-09-05 06:57 - 00139466 _____ () C:\Windows\system32\perfc01D.dat
2014-10-26 12:02 - 2008-09-05 06:51 - 00490454 _____ () C:\Windows\system32\perfh014.dat
2014-10-26 12:02 - 2008-09-05 06:51 - 00098016 _____ () C:\Windows\system32\perfc014.dat
2014-10-26 12:02 - 2006-11-02 11:33 - 03293876 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-26 12:01 - 2009-06-23 20:57 - 00000982 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-26 12:00 - 2012-04-21 16:16 - 00000868 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-26 11:59 - 2009-02-04 19:24 - 00255554 _____ () C:\ProgramData\nvModes.001
2014-10-26 11:59 - 2009-02-04 19:21 - 00255554 _____ () C:\ProgramData\nvModes.dat
2014-10-25 18:15 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-25 18:15 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-23 22:02 - 2012-04-01 21:02 - 00000000 ____D () C:\Users\Cricke\AppData\Roaming\Skype
2014-10-23 21:55 - 2008-09-05 08:36 - 00000261 _____ () C:\ProgramData\hpqp.ini
2014-10-23 21:54 - 2012-09-07 21:26 - 00000000 ____D () C:\ProgramData\OnlineUpdate
2014-10-23 21:53 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-23 21:51 - 2009-07-29 20:52 - 00000000 ____D () C:\Program Files\Norman
2014-10-23 21:50 - 2013-01-04 23:11 - 00904557 _____ () C:\Windows\system32\erbl.bin
2014-10-23 21:50 - 2013-01-04 23:11 - 00000309 _____ () C:\Windows\system32\scurlcache.bin
2014-10-23 21:50 - 2008-10-20 04:42 - 00005332 _____ () C:\Windows\bthservsdp.dat
2014-10-23 21:50 - 2006-11-02 14:01 - 00032570 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-10-23 11:22 - 2013-02-17 23:34 - 00000000 ____D () C:\Windows\vbahupac
2014-10-23 11:12 - 2009-07-29 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norman Security Suite
2014-10-23 11:09 - 2008-01-21 03:23 - 00000000 ____D () C:\Windows\system32\binaszap
2014-10-23 11:07 - 2011-05-25 20:23 - 00196174 _____ () C:\Windows\PFRO.log
2014-10-23 10:49 - 2014-08-02 10:34 - 00000326 _____ () C:\Windows\Tasks\HPCeeScheduleForCricke.job
2014-10-23 10:04 - 2009-01-10 16:23 - 00118496 _____ () C:\Users\Cricke\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-23 09:57 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\Msdtc
2014-10-23 09:56 - 2013-02-17 23:22 - 00000000 ____D () C:\Users\Gäst A
2014-10-23 09:56 - 2010-03-04 11:29 - 00000000 ____D () C:\Users\Pappa
2014-10-23 09:56 - 2009-02-04 19:24 - 00000000 ____D () C:\Users\William
2014-10-23 09:56 - 2009-01-10 16:07 - 00000000 ____D () C:\Users\Cricke
2014-10-23 09:56 - 2006-11-02 11:22 - 69206016 _____ () C:\Windows\system32\config\software_previous
2014-10-23 09:56 - 2006-11-02 11:22 - 68157440 _____ () C:\Windows\system32\config\components_previous
2014-10-23 09:56 - 2006-11-02 11:22 - 41418752 _____ () C:\Windows\system32\config\system_previous
2014-10-23 09:56 - 2006-11-02 11:22 - 00524288 _____ () C:\Windows\system32\config\default_previous
2014-10-23 09:56 - 2006-11-02 11:22 - 00262144 _____ () C:\Windows\system32\config\security_previous
2014-10-23 09:56 - 2006-11-02 11:22 - 00262144 _____ () C:\Windows\system32\config\sam_previous
2014-10-23 09:55 - 2009-02-22 17:14 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-10-23 09:55 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\spool
2014-10-23 09:55 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\registration
2014-10-21 16:54 - 2009-03-22 04:09 - 00000000 ____D () C:\Windows\Minidump
2014-10-21 15:49 - 2013-04-15 18:15 - 00029014 _____ () C:\Windows\setupact.log
2014-10-21 15:49 - 2009-02-03 23:23 - 00000000 ___RD () C:\Users\Cricke\Desktop\Cricke
2014-10-18 10:48 - 2009-02-07 11:51 - 00000052 _____ () C:\Windows\system32\DOErrors.log
2014-10-18 10:24 - 2009-02-03 23:29 - 00000000 ___RD () C:\Users\Cricke\Desktop\Euroswede
2014-10-16 14:39 - 2011-01-02 18:48 - 00000000 ____D () C:\Users\Cricke\AppData\Local\Sony Ericsson
2014-10-16 14:39 - 2011-01-02 18:42 - 00000000 ____D () C:\ProgramData\Sony Ericsson
2014-10-16 14:39 - 2008-09-05 07:02 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-10-16 11:44 - 2010-01-17 11:16 - 00000000 ____D () C:\Users\Cricke\AppData\Roaming\HpUpdate
2014-10-15 11:45 - 2009-02-03 23:07 - 00000000 ___RD () C:\Users\Cricke\Desktop\Bilder
2014-10-15 11:35 - 2013-08-15 22:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-15 11:28 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-10-14 13:22 - 2010-12-27 21:29 - 00000000 ____D () C:\Users\Cricke\AppData\Roaming\vlc
2014-10-08 11:54 - 2008-09-05 08:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-10-03 09:03 - 2006-11-02 11:24 - 100290944 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-10-02 15:53 - 2009-10-05 22:47 - 00231568 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-09-28 10:46 - 2013-12-26 21:04 - 339975538 _____ () C:\Windows\MEMORY.DMP

Some content of TEMP:
====================
C:\Users\Cricke\AppData\Local\Temp\DataCard_Setup.exe
C:\Users\Cricke\AppData\Local\Temp\ResetDevice.exe
C:\Users\Cricke\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Cricke\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Cricke\AppData\Local\Temp\tmp2C8B.exe
C:\Users\Cricke\AppData\Local\Temp\tmp35A.exe
C:\Users\Cricke\AppData\Local\Temp\tmp8046.exe
C:\Users\Cricke\AppData\Local\Temp\tmp813F.exe
C:\Users\Cricke\AppData\Local\Temp\tmpA8CC.exe
C:\Users\Cricke\AppData\Local\Temp\tmpBE9D.exe
C:\Users\Cricke\AppData\Local\Temp\tmpD4DB.exe
C:\Users\Cricke\AppData\Local\Temp\tmpEB19.exe
C:\Users\Cricke\AppData\Local\Temp\tmpFDBE.exe
C:\Users\Cricke\AppData\Local\Temp\uninstall.exe
C:\Users\Cricke\AppData\Local\Temp\utt9101.tmp.exe
C:\Users\Cricke\AppData\Local\Temp\vlc-2.0.5-win32.exe
C:\Users\Cricke\AppData\Local\Temp\vlc-2.1.2-win32.exe
C:\Users\Cricke\AppData\Local\Temp\{41737A74-2B3D-4680-A0DD-1F0C6D24A901}-33.0.1750.154_chrome_installer.exe
C:\Users\William\AppData\Local\Temp\SpotifyUpgrader.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-10-23 22:00

==================== End Of Log ============================

Addition.txt

26 oktober, 2014

1. Den 21 oktober installerade du "DYMO Skrivare" och två dagar senare skapade du det andra ämnet. Var det i samband med installationen av "DYMO Skrivare" som problemet uppstod?

2. Jag ser att Chrome fortfarande kraschar för dig.

Error: (10/26/2014 00:22:31 PM) (Source: Chrome) (EventID: 1) (User: NT INSTANS)
Description: Chrome has encountered a fatal error.
ver=38.0.2125.104;lang=;guid=CADF06E9C0CE4E10843CA67499010830;is_machine=1;oop=1;upload=1;minidump=C:\Program Files\Google\CrashReports\6f46f2a3-42db-42d6-87da-1c6859020b84.dmp

3. Har du fortfarande en fil som heter "adinvoc.dll" i datorn?

Date: 2014-10-14 14:18:09.563
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\vbahupac\adinvoc.dll because the set of per-page image hashes could not be found on the system.

4. Spara AdwCleaner av Xplode på Skrivbordet: https://toolslib.net/downloads/viewdownload/1-adwcleaner/

Stäng alla program, inklusive webbläsare.
Dubbelklicka på AdwCleaner för att starta programmet.

Klicka på Scan-knappen.
Vänta tills sökningen är klar.
Klicka på Report-knappen.
En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.
Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[R0].txt eller C:\AdwCleaner\AdwCleaner[R0].txt

26 oktober, 2014

Hej,

Jag kommer inte ihåg riktigt men ska jag avinstallera DYMO?

Vad det gäller adinvoc.dll så ser jag iaf inte den i den mappen som hänvisas till.

Jag kör AdwCleaner enl. din instruktion och återkommer. Jag hann köra Malwarebyte under tiden som hittade följande, vad gör jag åt det?

26 oktober, 2014

Malwarebytes Anti-Malware
www.malwarebytes.org

Skanningsdatum: 2014-10-26
Skanningstid: 12:48:29
Loggfil: Mal.txt
Administratör: Ja

Version: 2.00.3.1025
Databas med skadliga progarm: v2014.10.26.02
Databas med rootkit: v2014.10.22.01
Licens: Utvärderingsversion
Skydd mot skadliga program: Aktiverat
Skydd mot skadliga webbplatser: Aktiverat
Självförsvar: Inaktiverat

OS: Windows Vista Service Pack 2
CPU: x86
Filsystem: NTFS
Användare: Cricke

Skanningstyp: Hotskanning
Resultat: Slutförd
Skannade objekt: 447522
Förfluten tid: 46 min, 46 sek

Minne: Aktiverat
Autostart: Aktiverat
Filsystem: Aktiverat
Arkivfiler: Aktiverat
Rootkits: Inaktiverat
Heuristik: Aktiverat
PUP: Varna
PUM: Aktiverat

Processer: 0
(Inga illasinnade poster hittades)

Moduler: 0
(Inga illasinnade poster hittades)

Registernycklar: 4
PUP.Optional.Ividi.A, HKU\S-1-5-21-2223298635-2595870890-1169053488-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\iVIDI Plugin, , [df6b15047b01ee485e333821659e7e82],
PUP.Optional.Ividi.A, HKU\S-1-5-21-2223298635-2595870890-1169053488-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\iVIDI Plugin, , [183228f17804d561c8c95ffa867d17e9],
PUP.Optional.Ividi.A, HKU\S-1-5-21-2223298635-2595870890-1169053488-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\iVIDI Plugin, , [45059c7dc8b46dc9f49d421781829769],
PUP.Optional.Ividi.A, HKU\S-1-5-21-2223298635-2595870890-1169053488-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\iVIDI Plugin, , [85c56eab0a7278be3e534c0d54af19e7],

Registervärden: 0
(Inga illasinnade poster hittades)

Registerdata: 0
(Inga illasinnade poster hittades)

Mappar: 0
(Inga illasinnade poster hittades)

Filer: 0
(Inga illasinnade poster hittades)

Fysiska sektorer: 0
(Inga illasinnade poster hittades)

(end)

26 oktober, 2014

Det som MBAM hittade ska tas bort.

Om inte Dymo Skrivare kom från något konstigt ställe tycker jag det kan vara kvar så länge.

26 oktober, 2014

# AdwCleaner v4.001 - Report created 26/10/2014 at 14:34:15
# Updated 20/10/2014 by Xplode
# Database : 2014-10-26.1
# Operating System : Windows Vista Home Premium Service Pack 2 (32 bits)
# Username : Cricke - CRICKE-HP
# Running from : C:\Users\Cricke\Desktop\adwcleaner_4.001.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Users\Cricke\AppData\Local\Temp\Uninstall.exe
Folder Found : C:\Program Files\DAEMON Tools Toolbar
Folder Found : C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Folder Found : C:\Users\Cricke\AppData\LocalLow\Conduit
Folder Found : C:\Users\Gäst A\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Folder Found : C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Folder Found : C:\Users\William\AppData\LocalLow\Conduit

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\dt soft\daemon tools toolbar
Key Found : HKCU\Software\iVIDI Plugin
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{327C2873-E90D-4C37-AA9D-10AC9BABA46C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{327C2873-E90D-4C37-AA9D-10AC9BABA46C}
Key Found : HKCU\Software\Myfree Codec
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{327C2873-E90D-4C37-AA9D-10AC9BABA46C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{97D69524-BB57-4185-9C7F-5F05593B771A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Found : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar
Key Found : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar.1
Key Found : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem
Key Found : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_launcher
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_launcher.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_printmanager
Key Found : HKLM\SOFTWARE\Classes\toolband.pm_printmanager.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback.1
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler
Key Found : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler.1
Key Found : HKLM\SOFTWARE\Classes\toolband.tbtoolband
Key Found : HKLM\SOFTWARE\Classes\toolband.tbtoolband.1
Key Found : HKLM\SOFTWARE\Classes\toolband.useroptions
Key Found : HKLM\SOFTWARE\Classes\toolband.useroptions.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2452474
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Found : HKLM\SOFTWARE\Myfree Codec
Key Found : HKLM\SOFTWARE\PIP
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{327C2873-E90D-4C37-AA9D-10AC9BABA46C}]

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16575

-\\ Google Chrome v38.0.2125.104

*************************

AdwCleaner[R0].txt - [5122 octets] - [26/10/2014 13:51:02]
AdwCleaner[R1].txt - [5042 octets] - [26/10/2014 14:34:15]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [5102 octets] ##########

26 oktober, 2014

En del av det som AdwCleaner har hittat är jag tveksam till om det är annonsprogram, det gäller MyFreeCodec, som följer med Samsung Kies, och ett Skype-tillägg i Chrome. Det mesta är dock annonsprogram. Det finns två alternativ:

1. Du låter AdwCleaner ta bort allt den hittade och om du vill så ominstallerar du Kies och Skype efteråt.

2. Du får rensa bort mappar och registerposter själv, men du får förstås anvisningar av mig om du vill.

Hur vill du göra?

26 oktober, 2014

För en amatör som jag så låter ju "automatiskt" bättre, dessutom sparar jag ju dig lite arbete

Finns det inga andra nackdelar än att de två programmen försvinner så kan jag köra på det, eller?

27 oktober, 2014

1. Inga andra nackdelar så här kommer instruktionen:

Stäng alla program, inklusive webbläsare.
Dubbelklicka på AdwCleaner för att starta programmet.

Klicka på Scan-knappen.
Vänta tills sökningen är klar.

Klicka på Clean-knappen.
Tryck på OK.
Tryck på OK fler gånger om det kommer upp meddelanden.

Datorn kommer att startas om (om den inte gör det automatiskt får du göra det).
En rapport kommer upp, kopiera innehållet och klistra in i ditt svar.
Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[s0].txt

2. Skanna datorn online på http://www.eset.com/onlinescan/ och använd helst Internet Explorer till det.
För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden.

Välj alternativet Enable detection of potentially unwanted applications.

Klicka på Advanced Settings.
Ta bort bocken framför Remove found threats.
Bocka för:
Scan Archives
Scan for potentially unsafe applications
Enable Anti-Stealth Technology

Klicka på Start

När skanningen är klar klicka på List of found threats, följt av Export to a text file. Spara till en fil på skrivbordet, öppna filen, kopiera resultatet och klistra sedan in det i ditt svar.

3. Skanna med FRST igen och klistra in den nya FRST.txt så får vi se om något återstår där.

27 oktober, 2014

Hej igen,

Nu är datorn ännu konstigare och segare, speciellt på Internet. Den vill tex. inte öppna den här sidan ordentligt utan står bara och "tuggar" och det kommer upp ett meddelande om att "sidan inte svarar".

Försökte logga in här via mobilen igår för att kunna skriva men det gick inte heller. När jag fyllt i uppgifterna och klickat på login så blir det bara vitt men det kanske vi kan ta någon annan gång ;-)

Nu sitter jag på jobbet (och här fungerar det iaf att logga in) och ska försöka köra enligt dina instruktioner härifrån. Återkommer så fort jag kan.

27 oktober, 2014

# AdwCleaner v4.002 - Report created 27/10/2014 at 10:29:56

# DB v2014-10-26.6

# Updated 27/10/2014 by Xplode

# Operating System : Windows Vista Home Premium Service Pack 2 (32 bits)

# Username : Cricke - CRICKE-HP

# Running from : C:\Users\Cricke\Desktop\adwcleaner_4.002.exe

# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Gäst A\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

Folder Deleted : C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16575

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [5122 octets] - [26/10/2014 13:51:02]

AdwCleaner[R1].txt - [5182 octets] - [26/10/2014 14:34:15]

AdwCleaner[R2].txt - [5298 octets] - [27/10/2014 00:08:15]

AdwCleaner[R3].txt - [5358 octets] - [27/10/2014 00:13:41]

AdwCleaner[R4].txt - [1289 octets] - [27/10/2014 10:25:55]

AdwCleaner[s0].txt - [5528 octets] - [27/10/2014 00:16:12]

AdwCleaner[s1].txt - [1207 octets] - [27/10/2014 10:29:56]

########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [1267 octets] ##########

27 oktober, 2014

Jag kan inte säkert svara på varför du fick problem med internetanslutningen men eftersom din mobil fick det också så kan det ju vara så att det faktiskt var ett problem med anslutningen till internet, t ex underhållsarbete hos internetleverantören eftersom det var efter midnatt (om jag gissar rätt utgående från datumstämplingen av AdwCleaner-filerna).

Bra att AdwCleaner har kunnat städa undan. Då får vi se vad resultatet av de två andra punkterna blir.

27 oktober, 2014

Det gick att ansluta till andra sidor på internet men det gick lite segt på datorn men inga problem via mobilen.

Eset håller på att söka. Har kommit till 46% på 2,5 timme men det kanske ska ta så lång tid? Återkommer när det är klart.

27 oktober, 2014

Okej, då kan det ju ha varit något problem med IDG:s webbserver.

Om man har mycket filer så tar det tid, men en del rapporterar att det går betydligt fortare på slutet så låt oss hoppas att det gäller din dator också.

28 oktober, 2014

C:\Users\Cricke\AppData\Local\Temp\vdjFD34.tmp.msi a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application

C:\Users\Cricke\Desktop\Cricke\S2\130617\Säkkopia allt\applanet\downloads\com.omgpop.dstpaid\app.apk a variant of Android/Inmobi.A potentially unsafe application

C:\Users\Cricke\Documents\samsung\Kies\Backup\GT-I9100\GT-I9100\GT-I9100_\GT-I9100_20130627092216\Others\applanet\downloads\com.omgpop.dstpaid\app.apk a variant of Android/Inmobi.A potentially unsafe application

C:\Users\Cricke\Downloads\rcsetup151.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application

C:\Users\William\Desktop\William\game\Game_Master_1.2.exe a variant of Win32/Toolbar.Conduit.B potentially unwanted application

C:\Windows\Installer\7fddd4.msi a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application

C:\Windows\System32\Adobe\Shockwave 12\gt.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application

28 oktober, 2014

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-10-2014 01

Ran by Cricke (administrator) on CRICKE-HP on 28-10-2014 07:37:59

Running from C:\Users\Cricke\Desktop

Loaded Profile: Cricke (Available profiles: Cricke & William & Pappa & Gäst A)

Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: Svenska (Sverige)

Internet Explorer Version 9

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\nfservice.exe

(Norman Safeground AS) C:\Program Files\Norman\Nse\Bin\nseupdatesvc.exe

(Norman Safeground AS) C:\Program Files\Norman\nvc\bin\nvcsvc.exe

(Norman AS) C:\Program Files\Norman\Npm\Bin\nvoy.exe

(Norman Safeground AS) C:\Program Files\Norman\Ngs\Bin\nnf.exe

(Norman Safeground AS) C:\Program Files\Norman\Npf\Bin\npfsvc32.exe

(Norman Safeground AS) C:\Program Files\Norman\Ngs\Bin\nprosec.exe

(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\nwscmon.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\stacsv.exe

(Microsoft Corporation) C:\Windows\System32\SLsvc.exe

(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Validity Sensors, Inc.) C:\Windows\System32\vfsFPService.exe

(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\zanda.exe

(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe

(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\AEstSrv.exe

(Agere Systems) C:\Windows\System32\agrsmsvc.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe

(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

(Alcor Micro, Corp.) C:\Program Files\Multimedia Card Reader\readericon10.exe

(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe

( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe

(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe

(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe

(Hewlett-Packard Co.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

(Google Inc.) C:\Program Files\Google\Update\1.3.25.5\GoogleCrashHandler.exe

(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\zlh.exe

(ScanSoft, Inc.) C:\Program Files\ScanSoft\OmniPageSE2.0\opwareSE2.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe

(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe

() C:\Program Files\Topro\tppoll.exe

(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

(Nikon Corporation) C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe

(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareAgent.exe

(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe

(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe

(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe

(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\zlhh.exe

(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(Microsoft Corporation) C:\Windows\ehome\ehtray.exe

(Samsung) C:\Program Files\Samsung\Kies\Kies.exe

(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

() C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

() C:\ProgramData\DatacardService\HWDeviceService.exe

(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe

(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe

(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe

(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe

(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac

(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe

(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7Debug\mdm.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe

() C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe

() C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe

() C:\Windows\SMINST\BLService.exe

() C:\Program Files\Cyberlink\Shared files\RichVideo.exe

() C:\ProgramData\OnlineUpdate\ouc.exe

(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE

(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE

(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

(Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe

(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe

() C:\Program Files\Norman\Npm\Bin\njeeves2.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe

() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe

(Norman Safeground AS) C:\Program Files\Norman\Npm\Bin\scheduler.exe

() C:\Program Files\Norman\Npc\Bin\nuaa.exe

(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe

(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe

(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe

(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe

(Microsoft Corporation) C:\Windows\System32\conime.exe

(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe

(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

(Microsoft Corporation) C:\Windows\System32\wuauclt.exe

(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_15_0_0_167_ActiveX.exe

() C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [253952 2008-05-23] (Alps Electric Co., Ltd.)

HKLM\...\Run: [iAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-04-16] (Intel Corporation)

HKLM\...\Run: [uCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2007-12-24] (CyberLink Corp.)

HKLM\...\Run: [readericon10] => C:\Program Files\Multimedia Card Reader\readericon10.exe [131072 2007-11-22] (Alcor Micro, Corp.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)

HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-08-02] ( Hewlett-Packard Development Company, L.P.)

HKLM\...\Run: [TVAgent] => C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe [468264 2008-07-24] (CyberLink Corp.)

HKLM\...\Run: [smartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [910128 2008-08-08] (Hewlett-Packard)

HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2006-12-10] (Hewlett-Packard Co.)

HKLM\...\Run: [hpWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2008-04-15] (Hewlett-Packard Development Company, L.P.)

HKLM\...\Run: [Norman ZANDA] => C:\Program Files\Norman\Npm\Bin\ZLH.EXE [88536 2014-08-21] (Norman Safeground AS)

HKLM\...\Run: [OpwareSE2] => C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe [49152 2003-05-08] (ScanSoft, Inc.)

HKLM\...\Run: [sysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [442460 2008-08-11] (IDT, Inc.)

HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [55824 2009-06-17] (Logitech, Inc.)

HKLM\...\Run: [DpAgent] => C:\Program Files\DigitalPersona\Bin\dpagent.exe [842816 2009-12-01] (DigitalPersona, Inc.)

HKLM\...\Run: [TPPOLL] => C:\Program Files\TOPRO\TPPOLL.EXE [36864 2007-07-31] ()

HKLM\...\Run: [HP Health Check Scheduler] => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)

HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)

HKLM\...\Run: [Nikon Transfer Monitor] => C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe [479232 2009-09-15] (Nikon Corporation)

HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)

HKLM\...\Run: [AllShareAgent] => C:\Program Files\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152544 2012-12-12] (Apple Inc.)

HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)

HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-05-23] (Samsung Electronics Co., Ltd.)

HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)

HKLM\...\Run: [brMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [745472 2009-02-10] (Brother Industries, Ltd.)

HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [77824 2007-10-30] (Brother Industries, Ltd.)

HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter

HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [HW_OPENEYE_OUC_Tele2 Mobile Partner] => C:\Program Files\Tele2 Mobile Partner\UpdateDog\ouc.exe [218624 2011-09-05] ()

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [skype] => C:\Program Files\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1561968 2013-05-23] (Samsung)

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung)

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [688984 2014-08-07] (Garmin Ltd or its subsidiaries)

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {0079f4d6-8d8f-11df-afbc-00218685a04d} - G:\autorun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {0673f14d-2527-11e0-b10b-00218685a04d} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {094194e4-c34d-11e1-b689-001e101f951b} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {13da5f0d-d7e2-11e1-ad55-001e101fbad4} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {1665592b-974a-11de-ada4-0022645bba54} - H:\LaunchU3.exe -a

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {1df0354e-5f7d-11df-8d01-00218685a04d} - H:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {1df03550-5f7d-11df-8d01-00218685a04d} - H:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {2d01c441-cf2f-11e1-b4f4-001e101f2b52} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {2f3b684a-b602-11df-87df-00218685a04d} - G:\start.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {3bdc560b-df28-11dd-a998-00218685a04d} - F:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {3bdc5623-df28-11dd-a998-00218685a04d} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {3bdc5639-df28-11dd-a998-00218685a04d} - G:\LaunchU3.exe -a

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {44ee0389-7c7b-11de-86d7-00218685a04d} - G:\PhotoViewerAP_V2.1.9.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {481b6b0c-bc47-11df-9314-00218685a04d} - "G:\WD SmartWare.exe" autoplay=true

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {5253cd69-41f2-11de-8d8e-00218685a04d} - H:\LaunchU3.exe -a

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {84e2dca3-1e7b-11de-8fc7-00218685a04d} - F:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {93ada945-d71f-11e0-9f03-001e101fe5e1} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {93ada95d-d71f-11e0-9f03-001e101f8aaa} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {94d9fef1-f636-11dd-a9e3-00218685a04d} - F:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {94d9fef2-f636-11dd-a9e3-00218685a04d} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {a079589f-b2a7-11e0-8484-00215d9d824a} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {a07958b1-b2a7-11e0-8484-00215d9d824a} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {bc1e66e2-141d-11df-b54c-00218685a04d} - G:\LaunchU3.exe -a

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {cc937da3-fc31-11e1-ae8b-001e101fa3eb} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {dc916fae-c948-11e1-b221-001e101f6c46} - G:\AutoRun.exe

HKU\S-1-5-21-2223298635-2595870890-1169053488-1000\...\MountPoints2: {ecf1659a-09b1-11e2-bf35-001e101f3843} - H:\AutoRun.exe

Lsa: [Notification Packages] scecli DPPWDFLT

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk

ShortcutTarget: Adobe Gamma Loader.exe.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk

ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk

ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk

ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Personal.lnk

ShortcutTarget: Personal.lnk -> C:\Program Files\Personal\bin\Personal.exe (No File)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

SearchScopes: HKLM - {2C7F3627-FDE2-41EB-8C79-8A40A613F487} URL = http://se.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913934

SearchScopes: HKLM - {685D10E5-B21D-44BB-AE0F-F7BC9A1A2FD0} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1222&query={searchTerms}&invocationType=tb50hpcnnbie7-sv-se

SearchScopes: HKCU - DefaultScope {685D10E5-B21D-44BB-AE0F-F7BC9A1A2FD0} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1222&query={searchTerms}&invocationType=tb50hpcnnbie7-sv-se

SearchScopes: HKCU - {2C7F3627-FDE2-41EB-8C79-8A40A613F487} URL = http://se.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913934

SearchScopes: HKCU - {685D10E5-B21D-44BB-AE0F-F7BC9A1A2FD0} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1222&query={searchTerms}&invocationType=tb50hpcnnbie7-sv-se

BHO: Länkhjälp till Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

BHO: DigitalPersona Personal Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)

BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File

DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab

DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab

DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} http://62.181.87.189/activex/AxisCamControl.cab

DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Tcpip\Parameters: [DhcpNameServer] 217.27.161.40 217.27.161.3

FireFox:

========

FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)

FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin: @bankid.com/BankID säkerhetsprogram,version=6.0.1.5 -> C:\Program Files\BankID\npBispBrowser.dll (Finansiell ID-Teknik BID AB)

FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File

FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF Plugin: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)

FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.)

FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll (Verimatrix, Inc.)

FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-02-03]

FF HKLM\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files\DigitalPersona\Bin\FirefoxExt

FF Extension: DigitalPersona Extension - C:\Program Files\DigitalPersona\Bin\FirefoxExt [2010-03-09]

FF HKLM\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension

FF Extension: SmartPrintButton - C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension [2012-01-15]

FF HKCU\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files\DigitalPersona\Bin\firefoxext

Chrome:

=======

CHR Profile: C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Docs) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-24]

CHR Extension: (Google Drive) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-24]

CHR Extension: (YouTube) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-24]

CHR Extension: (Sök på Google) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-24]

CHR Extension: (Google Wallet) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-24]

CHR Extension: (Gmail) - C:\Users\Cricke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-24]

CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx []

CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx []

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\aestsrv.exe [77824 2008-06-27] (Andrea Electronics Corporation) [File not signed]

R2 DpHost; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [322624 2009-12-01] (DigitalPersona, Inc.) [File not signed]

R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [File not signed]

R2 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [438616 2014-08-07] (Garmin Ltd or its subsidiaries)

S2 gupdate1c9d98d99b56d70; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-10-26] (Google Inc.)

R2 HerculesDJControlMP3; C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE [17408 2007-11-21] () [File not signed]

R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard) [File not signed]

R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-03-13] (Hewlett-Packard Co.) [File not signed]

R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-03-13] (Hewlett-Packard Co.) [File not signed]

R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [264704 2010-11-16] () [File not signed]

S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]

R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)

R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]

R2 nfservice; C:\Program Files\Norman\npm\bin\nfservice.exe [194536 2014-08-27] (Norman Safeground AS)

R3 NJeeves2; C:\Program Files\Norman\Npm\Bin\Njeeves2.exe [179080 2014-06-30] ()

R2 NNFSVC; C:\Program Files\Norman\Ngs\Bin\Nnf.exe [281128 2014-06-30] (Norman Safeground AS)

R2 Norman ZANDA; C:\Program Files\Norman\Npm\Bin\Zanda.exe [456664 2014-06-30] (Norman Safeground AS)

U2 NPFSvc32; C:\Program Files\Norman\npf\bin\npfsvc32.exe [408344 2014-08-05] (Norman Safeground AS)

R2 NPROSECSVC; C:\Program Files\Norman\Ngs\Bin\Nprosec.exe [140032 2014-10-15] (Norman Safeground AS)

R2 nseupdatesvc; C:\Program Files\Norman\nse\bin\nseupdatesvc.exe [247072 2014-09-25] (Norman Safeground AS)

R3 NUAA; C:\Program Files\Norman\npc\bin\nuaa.exe [127152 2014-03-25] ()

R2 nvcsvc; C:\Program Files\Norman\nvc\bin\nvcsvc.exe [376328 2014-10-07] (Norman Safeground AS)

R2 NVOY; C:\Program Files\Norman\Npm\Bin\Nvoy.exe [222864 2013-06-27] (Norman AS)

R2 NWSCMON; C:\Program Files\Norman\Npm\Bin\nwscmon.exe [231008 2014-08-05] (Norman Safeground AS)

R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]

R2 QPCapSvc; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [292216 2008-07-24] ()

R2 QPSched; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116080 2008-07-24] ()

R2 Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [361808 2008-08-07] ()

R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [241734 2008-04-29] () [File not signed]

R2 SamsungAllShareV2.0; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [25504 2012-01-19] (Samsung Electronics Co., Ltd.)

R3 Scheduler; C:\Program Files\Norman\Npm\Bin\scheduler.exe [177008 2014-06-30] (Norman Safeground AS)

S3 SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [27584 2012-03-02] (Samsung Electronics Co., Ltd.)

S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)

R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_84a4a6b7\STacSV.exe [225362 2008-08-11] (IDT, Inc.) [File not signed]

S2 Tele2 Mobile Partner. RunOuc; C:\Program Files\Tele2 Mobile Partner\UpdateDog\ouc.exe [218624 2011-09-05] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 ALE_NF; C:\Windows\system32\drivers\ale_nf.sys [120792 2014-06-30] (Norman Safeground AS)

S3 DCamUSBIntel; C:\Windows\System32\Drivers\TP6800.sys [210924 2007-08-31] (Microsoft Corporation)

S3 GTUHSBUS; C:\Windows\System32\DRIVERS\gtuhsbus.sys [66560 2009-05-13] (Option N.V.)

S3 GTUHSNDISIPXP; C:\Windows\System32\DRIVERS\gtuhs51.sys [107520 2009-05-13] (Option N.V.)

S3 GTUHSSER; C:\Windows\System32\DRIVERS\gtuhsser.sys [8064 2009-05-13] (Option N.V.)

R3 HpqKbFiltr; C:\Windows\System32\DRIVERS\HpqKbFiltr.sys [16768 2007-06-19] (Hewlett-Packard Development Company, L.P.) [File not signed]

R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-19] (ITE Tech. Inc. ) [File not signed]

R3 LEqdUsb; C:\Windows\System32\Drivers\LEqdUsb.Sys [40720 2009-06-17] (Logitech, Inc.)

R3 LHidEqd; C:\Windows\System32\Drivers\LHidEqd.Sys [10384 2009-06-17] (Logitech, Inc.)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-10-01] (Malwarebytes Corporation)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [114904 2014-10-28] (Malwarebytes Corporation)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-10-01] (Malwarebytes Corporation)

R2 Ndiskio; C:\Program Files\Norman\Nse\Bin\NDISKIO.SYS [22880 2010-12-09] (Norman ASA)

R1 NGS; c:\program files\norman\ngs\bin\ngs.sys [28120 2014-06-27] (Norman Safeground AS)

R1 NPROSEC; C:\Program Files\Norman\Ngs\Bin\nprosec.sys [108360 2014-08-27] (Norman Safeground AS)

R2 nregsec; C:\Program Files\Norman\Ngs\Bin\nregsec.sys [67256 2014-10-15] (Norman Safeground AS)

S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [104744 2009-03-25] (MCCI Corporation)

R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-03-06] () [File not signed]

R3 STHDA; C:\Windows\System32\DRIVERS\stwrt.sys [385536 2008-08-11] (IDT, Inc.) [File not signed]

S3 Tdsshbecr; C:\Windows\System32\DRIVERS\shbecr.sys [42368 2009-10-22] (Todos Data System AB)

R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [360376 2014-06-26] (BitDefender S.R.L.)

R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [59376 2008-07-24] (Cyberlink Corp.)

U3 aqe8x0rc; C:\Windows\system32\Drivers\aqe8x0rc.sys [0 ] (Microsoft Corporation)

R4 gzflt; \??\C:\Program Files\Norman\nvc\bin\gzflt.sys [X]

S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

R0 imekozip; vbahupac\imekozip.sys [X]

S3 IpInIp; system32\DRIVERS\ipinip.sys [X]

S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]

S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-28 07:37 - 2014-10-28 07:37 - 00000000 ____D () C:\Users\Cricke\Desktop\FRST-OlderVersion

2014-10-28 07:26 - 2014-10-28 07:26 - 00000947 _____ () C:\Users\Cricke\Desktop\eset.txt

2014-10-27 10:48 - 2014-10-27 10:48 - 00000000 ____D () C:\Program Files\ESET

2014-10-27 10:43 - 2014-10-27 10:43 - 00001347 _____ () C:\Users\Cricke\Desktop\AdwCleaner[s1].txt

2014-10-27 10:24 - 2014-10-27 10:24 - 01998336 _____ () C:\Users\Cricke\Desktop\adwcleaner_4.002.exe

2014-10-27 00:29 - 2014-10-27 00:29 - 00880272 _____ (Google Inc.) C:\Users\Cricke\Desktop\ChromeSetup.exe

2014-10-26 17:57 - 2014-10-28 07:02 - 00000982 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cff13df942fe10.job

2014-10-26 17:57 - 2014-10-27 18:02 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cff13df6e02ee0.job

2014-10-26 13:50 - 2014-10-27 10:29 - 00000000 ____D () C:\AdwCleaner

2014-10-26 13:40 - 2014-10-26 13:40 - 00001841 _____ () C:\Users\Cricke\Desktop\Mal.txt

2014-10-26 12:46 - 2014-10-26 12:46 - 00000859 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-10-26 12:43 - 2014-10-28 00:24 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-10-26 12:42 - 2014-10-26 12:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-10-26 12:42 - 2014-10-26 12:46 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware

2014-10-26 12:42 - 2014-10-01 11:11 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2014-10-26 12:42 - 2014-10-01 11:11 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2014-10-26 12:26 - 2014-10-26 12:31 - 00057872 _____ () C:\Users\Cricke\Desktop\Addition.txt

2014-10-26 12:25 - 2014-10-28 07:38 - 00034331 _____ () C:\Users\Cricke\Desktop\FRST.txt

2014-10-26 12:24 - 2014-10-28 07:38 - 00000000 ____D () C:\FRST

2014-10-26 12:23 - 2014-10-28 07:37 - 01104896 _____ (Farbar) C:\Users\Cricke\Desktop\FRST.exe

2014-10-25 19:34 - 2014-10-25 19:34 - 00000000 ____D () C:\Program Files\Verimatrix

2014-10-23 22:31 - 2014-10-24 00:43 - 00000000 ____D () C:\Users\Cricke\Desktop\W 12 år

2014-10-23 20:41 - 2014-10-23 13:29 - 00191952 _____ () C:\Windows\system32\nscrnsav.scr

2014-10-23 10:01 - 2014-06-26 11:49 - 00360376 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\Trufos.sys

2014-10-21 17:00 - 2014-10-21 17:00 - 00000000 ____D () C:\Users\Cricke\Documents\DYMO Label

2014-10-21 17:00 - 2014-10-21 17:00 - 00000000 ____D () C:\Users\Cricke\AppData\Local\DYMO

2014-10-21 16:13 - 2014-10-21 16:16 - 00031369 __RSH () C:\Program Files\DLS8Uninstall.log

2014-10-21 16:12 - 2014-10-21 16:12 - 00000000 ____D () C:\ProgramData\DYMO

2014-10-21 16:12 - 2014-10-21 16:12 - 00000000 ____D () C:\Program Files\DYMO

2014-10-16 14:41 - 2014-10-21 16:15 - 00155617 _____ () C:\Windows\DPINST.LOG

2014-10-16 14:41 - 2014-10-16 14:41 - 00001837 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk

2014-10-16 14:41 - 2014-10-16 14:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony

2014-10-16 14:39 - 2014-10-16 14:39 - 00000000 ____D () C:\Users\Cricke\AppData\Local\Sony

2014-10-16 14:39 - 2014-10-16 14:39 - 00000000 ____D () C:\ProgramData\Sony

2014-10-16 14:39 - 2014-10-16 14:39 - 00000000 ____D () C:\Program Files\Sony

2014-10-16 14:36 - 2014-10-16 14:38 - 28474512 _____ (Sony Mobile Communications ) C:\Users\Cricke\Downloads\Sony PC Companion_Web.exe

2014-10-15 11:06 - 2014-09-05 00:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys

2014-10-15 11:01 - 2014-09-16 17:56 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2014-09-28 10:46 - 2014-09-28 10:46 - 00159864 _____ () C:\Windows\Minidump\Mini092814-01.dmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-28 07:36 - 2012-04-21 16:16 - 00000868 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-10-28 06:53 - 2013-03-12 21:18 - 00000340 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job

2014-10-28 06:53 - 2009-06-23 20:57 - 00000982 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-10-28 06:34 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

2014-10-28 06:34 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

2014-10-28 05:33 - 2013-01-04 23:11 - 00905886 _____ () C:\Windows\system32\erbl.bin

2014-10-28 03:16 - 2008-10-20 04:42 - 01787616 _____ () C:\Windows\WindowsUpdate.log

2014-10-28 00:53 - 2009-06-23 20:57 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-10-27 11:49 - 2014-08-02 10:34 - 00000326 _____ () C:\Windows\Tasks\HPCeeScheduleForCricke.job

2014-10-27 10:41 - 2012-04-01 21:02 - 00000000 ____D () C:\Users\Cricke\AppData\Roaming\Skype

2014-10-27 10:38 - 2008-09-05 08:36 - 00000261 _____ () C:\ProgramData\hpqp.ini

2014-10-27 10:34 - 2012-09-07 21:26 - 00000000 ____D () C:\ProgramData\OnlineUpdate

2014-10-27 10:34 - 2009-02-04 19:24 - 00255554 _____ () C:\ProgramData\nvModes.001

2014-10-27 10:34 - 2009-02-04 19:21 - 00255554 _____ () C:\ProgramData\nvModes.dat

2014-10-27 10:33 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-10-27 10:32 - 2011-05-25 20:23 - 00197680 _____ () C:\Windows\PFRO.log

2014-10-27 10:32 - 2009-07-29 20:52 - 00000000 ____D () C:\Program Files\Norman

2014-10-27 10:31 - 2013-01-04 23:11 - 00000074 _____ () C:\Windows\system32\scurlcache.bin

2014-10-27 10:31 - 2008-10-20 04:42 - 00005332 _____ () C:\Windows\bthservsdp.dat

2014-10-27 10:31 - 2006-11-02 14:01 - 00032570 _____ () C:\Windows\Tasks\SCHEDLGU.TXT

2014-10-27 01:08 - 2008-09-05 06:57 - 00644450 _____ () C:\Windows\system32\perfh01D.dat

2014-10-27 01:08 - 2008-09-05 06:57 - 00139466 _____ () C:\Windows\system32\perfc01D.dat

2014-10-27 01:08 - 2008-09-05 06:51 - 00490454 _____ () C:\Windows\system32\perfh014.dat

2014-10-27 01:08 - 2008-09-05 06:51 - 00098016 _____ () C:\Windows\system32\perfc014.dat

2014-10-27 01:08 - 2006-11-02 11:33 - 03293876 _____ () C:\Windows\system32\PerfStringBackup.INI

2014-10-27 00:40 - 2009-05-20 21:57 - 00000000 ____D () C:\Program Files\Google

2014-10-26 13:48 - 2013-02-17 23:34 - 00000000 ____D () C:\Windows\vbahupac

2014-10-26 12:42 - 2009-03-13 17:15 - 00000000 ____D () C:\Users\Cricke\AppData\Roaming\Malwarebytes

2014-10-26 12:42 - 2009-03-13 17:15 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-10-23 11:12 - 2009-07-29 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norman Security Suite

2014-10-23 11:09 - 2008-01-21 03:23 - 00000000 ____D () C:\Windows\system32\binaszap

2014-10-23 10:04 - 2009-01-10 16:23 - 00118496 _____ () C:\Users\Cricke\AppData\Local\GDIPFONTCACHEV1.DAT

2014-10-23 09:57 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\Msdtc

2014-10-23 09:56 - 2013-02-17 23:22 - 00000000 ____D () C:\Users\Gäst A

2014-10-23 09:56 - 2010-03-04 11:29 - 00000000 ____D () C:\Users\Pappa

2014-10-23 09:56 - 2009-02-04 19:24 - 00000000 ____D () C:\Users\William

2014-10-23 09:56 - 2009-01-10 16:07 - 00000000 ____D () C:\Users\Cricke

2014-10-23 09:56 - 2006-11-02 11:22 - 69206016 _____ () C:\Windows\system32\config\software_previous

2014-10-23 09:56 - 2006-11-02 11:22 - 68157440 _____ () C:\Windows\system32\config\components_previous

2014-10-23 09:56 - 2006-11-02 11:22 - 41418752 _____ () C:\Windows\system32\config\system_previous

2014-10-23 09:56 - 2006-11-02 11:22 - 00524288 _____ () C:\Windows\system32\config\default_previous

2014-10-23 09:56 - 2006-11-02 11:22 - 00262144 _____ () C:\Windows\system32\config\security_previous

2014-10-23 09:56 - 2006-11-02 11:22 - 00262144 _____ () C:\Windows\system32\config\sam_previous

2014-10-23 09:55 - 2009-02-22 17:14 - 00000000 ____D () C:\ProgramData\HP Product Assistant

2014-10-23 09:55 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\spool

2014-10-23 09:55 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\registration

2014-10-21 16:54 - 2009-03-22 04:09 - 00000000 ____D () C:\Windows\Minidump

2014-10-21 15:49 - 2013-04-15 18:15 - 00029014 _____ () C:\Windows\setupact.log

2014-10-21 15:49 - 2009-02-03 23:23 - 00000000 ___RD () C:\Users\Cricke\Desktop\Cricke

2014-10-18 10:48 - 2009-02-07 11:51 - 00000052 _____ () C:\Windows\system32\DOErrors.log

2014-10-18 10:24 - 2009-02-03 23:29 - 00000000 ___RD () C:\Users\Cricke\Desktop\Euroswede

2014-10-16 14:39 - 2011-01-02 18:48 - 00000000 ____D () C:\Users\Cricke\AppData\Local\Sony Ericsson

2014-10-16 14:39 - 2011-01-02 18:42 - 00000000 ____D () C:\ProgramData\Sony Ericsson

2014-10-16 14:39 - 2008-09-05 07:02 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information

2014-10-16 11:44 - 2010-01-17 11:16 - 00000000 ____D () C:\Users\Cricke\AppData\Roaming\HpUpdate

2014-10-15 11:45 - 2009-02-03 23:07 - 00000000 ___RD () C:\Users\Cricke\Desktop\Bilder

2014-10-15 11:35 - 2013-08-15 22:45 - 00000000 ____D () C:\Windows\system32\MRT

2014-10-15 11:28 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\Microsoft.NET

2014-10-14 13:22 - 2010-12-27 21:29 - 00000000 ____D () C:\Users\Cricke\AppData\Roaming\vlc

2014-10-08 11:54 - 2008-09-05 08:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP

2014-10-03 09:03 - 2006-11-02 11:24 - 100290944 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe

2014-10-02 15:53 - 2009-10-05 22:47 - 00231568 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2014-10-01 11:11 - 2010-09-09 21:18 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-09-28 10:46 - 2013-12-26 21:04 - 339975538 _____ () C:\Windows\MEMORY.DMP

Some content of TEMP:

====================

C:\Users\Cricke\AppData\Local\Temp\DataCard_Setup.exe

C:\Users\Cricke\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe

C:\Users\Cricke\AppData\Local\Temp\Quarantine.exe

C:\Users\Cricke\AppData\Local\Temp\ResetDevice.exe

C:\Users\Cricke\AppData\Local\Temp\SkypeSetup.exe

C:\Users\Cricke\AppData\Local\Temp\SpotifyUninstall.exe

C:\Users\Cricke\AppData\Local\Temp\sqlite3.dll

C:\Users\Cricke\AppData\Local\Temp\tmp2C8B.exe

C:\Users\Cricke\AppData\Local\Temp\tmp35A.exe

C:\Users\Cricke\AppData\Local\Temp\tmp8046.exe

C:\Users\Cricke\AppData\Local\Temp\tmp813F.exe

C:\Users\Cricke\AppData\Local\Temp\tmpA8CC.exe

C:\Users\Cricke\AppData\Local\Temp\tmpBE9D.exe

C:\Users\Cricke\AppData\Local\Temp\tmpD4DB.exe

C:\Users\Cricke\AppData\Local\Temp\tmpEB19.exe

C:\Users\Cricke\AppData\Local\Temp\tmpFDBE.exe

C:\Users\Cricke\AppData\Local\Temp\utt9101.tmp.exe

C:\Users\Cricke\AppData\Local\Temp\vlc-2.0.5-win32.exe

C:\Users\Cricke\AppData\Local\Temp\vlc-2.1.2-win32.exe

C:\Users\Cricke\AppData\Local\Temp\{41737A74-2B3D-4680-A0DD-1F0C6D24A901}-33.0.1750.154_chrome_installer.exe

C:\Users\William\AppData\Local\Temp\SpotifyUpgrader.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\system32\winlogon.exe => File is digitally signed

C:\Windows\system32\wininit.exe => File is digitally signed

C:\Windows\system32\svchost.exe => File is digitally signed

C:\Windows\system32\services.exe => File is digitally signed

C:\Windows\system32\User32.dll => File is digitally signed

C:\Windows\system32\userinit.exe => File is digitally signed

C:\Windows\system32\rpcss.dll => File is digitally signed

C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-10-27 22:46

==================== End Of Log ============================

28 oktober, 2014

Så där ja, nu är loggarna här och jag avvaktar ytterligare instruktioner.

28 oktober, 2014

C:\Users\Cricke\Documents\samsung\Kies\Backup\GT-I9100\GT-I9100\GT-I9100_\GT-I9100_20130627092216\Others\applanet\downloads\com.omgpop.dstpaid\app.apk a variant of Android/Inmobi.A potentially unsafe application

Du verkar ha någon app i Samsung-mobilen som är tveksam.

C:\Users\William\Desktop\William\game\Game_Master_1.2.exe a variant of Win32/Toolbar.Conduit.B potentially unwanted application

Det spelet installerade en del av det som AdwCleaner rensade bort.

Avinstallera i Kontrollpanelens lista över installerade program:

Java 7 Update 21
Java 6 Update 29

Adobe Reader 9.5.5

Eftersom det är gamla versioner med många kända säkerhetshål som gör det lätt att infektera datorn från en webbsida. De flesta klarar sig bra utan att ha Java installerat men om man måste är det mycket viktigt att alltid ha den senaste versionen.

Starta Anteckningar.
Kopiera alla rader i rutan:

File: C:\Windows\system32\Drivers\aqe8x0rc.sys
File: C:\Windows\vbahupac\imekozip.sys
File: C:\Windows\vbahupac\adinvoc.dll
Folder: C:\Windows\vbahupac
Folder: C:\Windows\system32\binaszap

och klistra in i Anteckningar. Kontrollera att inga filer har delats upp på två rader.
Spara filen på skrivbordet med namnet fixlist.txt.

Starta FRST som finns på skrivbordet.
Klicka på knappen Fix.
Vänta tills programmet är klart.

Programmet skapar en logg Fixlog.txt på skrivbordet.
Klistra in innehållet i den i ditt svar.

29 oktober, 2014

Jag har nyligen bytt mobil och har kört nåt slags säkerhetskopiering till datorn (tror jag). och spelet är väl nåt grabben har installerat.

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-10-2014 01

Ran by Cricke at 2014-10-29 11:35:48 Run:1

Running from C:\Users\Cricke\Desktop

Loaded Profile: Cricke (Available profiles: Cricke & William & Pappa & Gäst A)

Boot Mode: Normal

==============================================

Content of fixlist:

*****************

File: C:\Windows\system32\Drivers\aqe8x0rc.sys

File: C:\Windows\vbahupac\imekozip.sys

File: C:\Windows\vbahupac\adinvoc.dll

Folder: C:\Windows\vbahupac

Folder: C:\Windows\system32\binaszap

*****************

========================= File: C:\Windows\system32\Drivers\aqe8x0rc.sys ========================

MD5:

Creation and modification date: -

Size: 0000000

Attributes: ----A

Company Name: Microsoft Corporation

Internal Name: atapi.sys

Original Name: atapi.sys

Product Name: Microsoft® Windows® Operating System

Description: ATAPI IDE Miniport Driver

File Version: 6.0.6002.18005 (lh_sp2rtm.090410-1830)

Product Version: 6.0.6002.18005

====== End Of File: ======

========================= File: C:\Windows\vbahupac\imekozip.sys ========================

MD5: B1818800127A18B259D6B5B6383DE708

Creation and modification date: 2008-01-21 03:23 - 2008-01-21 03:23

Size: 0047104

Attributes: ----A

Company Name:

Internal Name:

Original Name:

Product Name:

Description:

File Version: 5, 1, 2600, 0

Product Version: 5, 1, 2600, 0

Copyright:

====== End Of File: ======

========================= File: C:\Windows\vbahupac\adinvoc.dll ========================

"C:\Windows\vbahupac\adinvoc.dll" not found.

====== End Of File: ======

========================= Folder: C:\Windows\vbahupac ========================

2008-01-21 03:23 - 2008-01-21 03:23 - 0298307 _____ () C:\Windows\vbahupac\disoberr32.dll

2013-02-17 23:36 - 2008-01-21 03:23 - 0193859 _____ () C:\Windows\vbahupac\icopuans32.dll

2008-01-21 03:23 - 2008-01-21 03:23 - 0047104 _____ () C:\Windows\vbahupac\imekozip.sys

2013-02-17 23:36 - 2013-02-17 23:49 - 0000000 _____ () C:\Windows\vbahupac\movanxml.dll

2013-02-17 23:36 - 2013-02-18 21:23 - 0000245 _____ () C:\Windows\vbahupac\movimjob.dll

2013-02-17 23:36 - 2013-02-17 23:36 - 0000000 _____ () C:\Windows\vbahupac\serihwow.exe

====== End of Folder: ======

========================= Folder: C:\Windows\system32\binaszap ========================

2008-01-21 03:23 - 2008-01-21 03:23 - 5838546 ____H () C:\Windows\system32\binaszap\0A3F201151F277C13F769B007C6728FEC1469DCC.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 19111724 ____H () C:\Windows\system32\binaszap\10629F3ACE7EF67F8F6C7FFDC7C4C11DCFB3EE33.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0126723 ____H () C:\Windows\system32\binaszap\107DC6865BB1B3FA6445D14A2BEEF11423B0B313.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 6069555 ____H () C:\Windows\system32\binaszap\11E65D61934D107B69C9AD164CF68F8ABB045C34.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0066753 ____H () C:\Windows\system32\binaszap\129D8849E2B818A0537C5ED686AA494BD7591B9F.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 10974431 ____H () C:\Windows\system32\binaszap\13AA8C593F0BA5E8FB816AF9A5CC0014FC22627A.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 6604983 ____H () C:\Windows\system32\binaszap\1800FB019B4BFEE8C732A8C55EF0741829F372CE.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 13305171 ____H () C:\Windows\system32\binaszap\18BAE5B23F34F05E3A64100CD901F3A45D0B5889.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 9086675 ____H () C:\Windows\system32\binaszap\1BA5025FBA9DD037C3858B37C4867B8AFFE30FD9.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 5934079 ____H () C:\Windows\system32\binaszap\1C1A40544E9F48FF3950E161FEDE139A6AAA5611.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 5601571 ____H () C:\Windows\system32\binaszap\20AAB5423BBE08717DA492BD764D451B1EF7E1B1.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 5610375 ____H () C:\Windows\system32\binaszap\2146AF241DB7AD1DB6B49648FFDC2E7ACE00B77A.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0168615 ____H () C:\Windows\system32\binaszap\23904C684FF28C1C1F87C4D09CE4CFBBBA668EB1.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0053240 ____H () C:\Windows\system32\binaszap\255B129F8C32473E05EB617AFDC2EC938B438EFB.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 8613628 ____H () C:\Windows\system32\binaszap\25A7E04058AAA9AA2928E6D554C32E4CD6AD805C.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 8563859 ____H () C:\Windows\system32\binaszap\276B06B881C8A6FA63119A83BC72B749DCC79ECA.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 11819052 ____H () C:\Windows\system32\binaszap\2B701BA7C432EA6DE9C201DF1292704EA06965AF.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 1593646 ____H () C:\Windows\system32\binaszap\2C939AB5DD39008D371B8A44E9BC65EF1BAD5637.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 6003342 ____H () C:\Windows\system32\binaszap\2DA1FD14A6C58AAB1A09ABFE714D49D0DC492CAE.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 11258448 ____H () C:\Windows\system32\binaszap\2F376389469732EEFA9702D1F4F2708256D00C57.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0262799 ____H () C:\Windows\system32\binaszap\2FEB5E908B239B5626DCDEEB49B95CA4FEE1AA8F.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0218304 ____H () C:\Windows\system32\binaszap\31CFFABE80F1EDF715C1BA55EA4D364F94156A9D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 1249547 ____H () C:\Windows\system32\binaszap\34C33AA8C63320ADEF983EFA70A30B873E8F917D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 5651368 ____H () C:\Windows\system32\binaszap\35774B65CFCE645786094A554F6FBFB1D3220189.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 6906913 ____H () C:\Windows\system32\binaszap\3AA1EE5F825D626436BABAD287DE6279547AAB99.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2410792 ____H () C:\Windows\system32\binaszap\3D055FCAB7BFA74243A0756A921A57E1202B6DD6.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 11058422 ____H () C:\Windows\system32\binaszap\3DB4647D93990EBD6B4180A31FC4DA7EF22539C8.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 10957408 ____H () C:\Windows\system32\binaszap\417C1A4DDA30DA84139E6BE7973A0CC7CA89BD9E.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 24547607 ____H () C:\Windows\system32\binaszap\41E331A06574653DC9E282C15DC0A7706949EE12.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0301804 ____H () C:\Windows\system32\binaszap\42076CF5E1F2CDC1D26E9FF90E4A8E90260F8926.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0163422 ____H () C:\Windows\system32\binaszap\42A8C5C57FB78CA7F40CA74BB7B382AF751DFF95.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 6158913 ____H () C:\Windows\system32\binaszap\486AA665C787304BF62491255699874E93A7DF46.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2057375 ____H () C:\Windows\system32\binaszap\48B879B464EBBD024A1E60B0D90C39E3714012EC.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 13538713 ____H () C:\Windows\system32\binaszap\4A14D5B6A93A8688B2D3F4B05F2A31784CE48274.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0367292 ____H () C:\Windows\system32\binaszap\4AF6578A9FDF3EA489E969FD109C3025818463F9.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0061702 ____H () C:\Windows\system32\binaszap\4DFA9655D27B3222A515DE821F16CB38D4CDEE6B.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0007665 ____H () C:\Windows\system32\binaszap\4E943E37233DCAF0FCCE47EA7C46C3F119F08E5E.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0001242 ____H () C:\Windows\system32\binaszap\5ECD32A32E25B20BB6831335128E7FFC96A458B4.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 12094301 ____H () C:\Windows\system32\binaszap\6001A3BD36A791F037436564FD8512E577F31D9D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 7283744 ____H () C:\Windows\system32\binaszap\607F3D4A2DEFA51233F7CFBB860BD460F9DDBA7D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 8679977 ____H () C:\Windows\system32\binaszap\6124117F04710BD8EDBAA0B41006A01C7040B309.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 12930684 ____H () C:\Windows\system32\binaszap\63A40F2ACF86CB4BEB6BBA54279514129B6B34ED.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 9172718 ____H () C:\Windows\system32\binaszap\682FDB9B9371C07593B481AB5D4095DF914D1AD8.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 7202569 ____H () C:\Windows\system32\binaszap\700485046A38DD94C1CB08212C998570A469BE73.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0046125 ____H () C:\Windows\system32\binaszap\721BC16A93C5B0B7CE733AFC1EB0DCBABD5D84BB.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 7461581 ____H () C:\Windows\system32\binaszap\74078EE83DC65EC4BFFFE88C5304D1288D7A56C6.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 1464592 ____H () C:\Windows\system32\binaszap\767F3F5630C07EC0C6E5A65535DB6FD0F7C43B62.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 1627294 ____H () C:\Windows\system32\binaszap\7CAE8A831E3CC3EF95345FA635CDE27287846BFA.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0671213 ____H () C:\Windows\system32\binaszap\7E1DFE0CE341595CBF02F792A06C86CAD4A1B0BB.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 6758744 ____H () C:\Windows\system32\binaszap\7E76C100C0680D8C6B9EF864658101F68F21DD1B.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 1094646 ____H () C:\Windows\system32\binaszap\800597342B8B6EE7D66904552B55B619E113102D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0656227 ____H () C:\Windows\system32\binaszap\88DFC0324743A8624C7E7CF7E0D6D97CC233A9C4.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2281320 ____H () C:\Windows\system32\binaszap\8A10E7778265A1820903C89091F24A0394DE302E.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0022815 ____H () C:\Windows\system32\binaszap\8A385A0EDC8B6A03E4AA5B367852CFC3E5897F3D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 3150533 ____H () C:\Windows\system32\binaszap\8F6FC5E45E9DB25ADB26E24B38BC0E93DD1F124F.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 7865223 ____H () C:\Windows\system32\binaszap\91FDF8F1A504DD0AA1E73BE95E3B4E1A09AD2C29.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2283501 ____H () C:\Windows\system32\binaszap\9313EB8EE2032632D68545ECCFE23C10C63A992A.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2473802 ____H () C:\Windows\system32\binaszap\95A3F64C3D860100A5E0DFCD3E5C4924F5DAFE78.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 1458013 ____H () C:\Windows\system32\binaszap\9B56B171D9D5965709FCD47825D8ED03E59C5CE3.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 15010974 ____H () C:\Windows\system32\binaszap\9CD63439B0444DC56D27936B3BE11E3070A5631C.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2607712 ____H () C:\Windows\system32\binaszap\9F6D9C1FD81E3559135D419F676F161DA5B46C1B.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2286194 ____H () C:\Windows\system32\binaszap\A166D916F94AC6CF84EDBAE642923D88B60F1886.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0091513 ____H () C:\Windows\system32\binaszap\A30ADC7572504BCE2B61A6D9CD188D847DD720F1.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 1252744 ____H () C:\Windows\system32\binaszap\A598C85A267A699AF551C323E3F1062F7A0FF4C2.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 12497420 ____H () C:\Windows\system32\binaszap\A7A0FAE14A6F7C239161D9FDC5DC4143CF289F40.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0064049 ____H () C:\Windows\system32\binaszap\A8A58F0258389BFB44E2EF947FDB99299E2EBC6F.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0267344 ____H () C:\Windows\system32\binaszap\ADBA9D1E6A02D7F6ECB660B1D6FDE5F09B86BD7D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 7589142 ____H () C:\Windows\system32\binaszap\AF95C86684ACBD84833EC9A243CDF19B5CE84085.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 12032630 ____H () C:\Windows\system32\binaszap\B0B43FC075F6BF9FA0609F234BE0AF05B8336942.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0795696 ____H () C:\Windows\system32\binaszap\B1A3AFF5BD88165A90FF5FE62BC6275B42A397D8.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 5968900 ____H () C:\Windows\system32\binaszap\B447552A627E261BDDA2161654998A372FE8B041.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 13366584 ____H () C:\Windows\system32\binaszap\B88A2D8FB7F44393AE1244950E6B80605FA0E2C7.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0179414 ____H () C:\Windows\system32\binaszap\BAAA9BC5259EF0BB823BE96D864BF60E7C59C5EB.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0006558 ____H () C:\Windows\system32\binaszap\BB4BA85B8A871DEF4501F9723D625455E126ADA8.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0870549 ____H () C:\Windows\system32\binaszap\BCD1362B4F77C6CABF84CF54BA5022F92F5DF1E6.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0580066 ____H () C:\Windows\system32\binaszap\BEC8EA64EC644F80C54E09DD5CDFE6F094A81D57.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 10766636 ____H () C:\Windows\system32\binaszap\BF3B6065C259A4A767D4D953B3DACAFFFB0719F3.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 9366806 ____H () C:\Windows\system32\binaszap\C00AF77D839C645FAFB2A806F6917691B077537D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 18339884 ____H () C:\Windows\system32\binaszap\C0358CD80F7127E54A77830F35F4318BC989EDC0.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0120562 ____H () C:\Windows\system32\binaszap\C16992B2F964EB068F20977C112CBD250F7A281B.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0000678 ____H () C:\Windows\system32\binaszap\C4483E50EE1CEA8C61FCB7AD196EEB65DDE0778F.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0220423 ____H () C:\Windows\system32\binaszap\C65CDCD809AB87A3BB8A273F649160880CBC95DD.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 9217642 ____H () C:\Windows\system32\binaszap\C90F655DA222B0CB7E57F462B087808BE7285CC1.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 6686673 ____H () C:\Windows\system32\binaszap\CA6D364DB6C9E001B1500175C1D5B0852A1B2313.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0135701 ____H () C:\Windows\system32\binaszap\CF394D293C9D23B5A87896850767C494C5DB2BC0.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0747453 ____H () C:\Windows\system32\binaszap\D05B04538784228DD7E5E6760A2927AD84C1F27F.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 10029151 ____H () C:\Windows\system32\binaszap\D1BB3380B575070D8C69CD277186C034724DD7BD.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0051477 ____H () C:\Windows\system32\binaszap\D39524A4F9FF2E3DA53E370DF6FE667680FAFA43.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0044411 ____H () C:\Windows\system32\binaszap\D5BF117E986F29F472812AB5E36EEB9F96C113FC.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 9801477 ____H () C:\Windows\system32\binaszap\D67CB1CA7D405331BB49710D50CA37F53AC7D080.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 5497743 ____H () C:\Windows\system32\binaszap\E3BE73EB2B3E2BEFE396CACE7E0A82442619431D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 4941296 ____H () C:\Windows\system32\binaszap\E59AB07512F04D8A34F5718ABD8AC87895DC7836.xgf

2013-07-20 07:25 - 2013-07-20 07:25 - 0000464 ____H () C:\Windows\system32\binaszap\E6377584DA277780F9DAAD4215DC2D176A630F17.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 7447376 ____H () C:\Windows\system32\binaszap\E66BBD0E126EEF078260812260108862A3392393.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0644781 ____H () C:\Windows\system32\binaszap\E98AE172FFDBE77D73FB337C3E2A5A37C5474CF8.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0856368 ____H () C:\Windows\system32\binaszap\EA8DA573E669C917D8C10197A77F41A86660BBBD.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 0186236 ____H () C:\Windows\system32\binaszap\EBB0D54BB3B95986F31E48E3392DCFFE50A51640.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 6002192 ____H () C:\Windows\system32\binaszap\ECF6BD5C00836442B01AC9ED4BE0E0BFECF0F143.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 9455053 ____H () C:\Windows\system32\binaszap\F1077D58A7BB7867CA9F65272F8231CFE9771CB7.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 13428964 ____H () C:\Windows\system32\binaszap\F1CC38174F10C77DEEC22E2D6F0859ADDBD2615D.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 1063855 ____H () C:\Windows\system32\binaszap\F3C532C46D70472FC25B4BEE99F33A01B20AC2DE.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 5011962 ____H () C:\Windows\system32\binaszap\F5530B5DC1F7AA4FC21FC5386C6BCD14252DF299.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2445676 ____H () C:\Windows\system32\binaszap\F9D9B0F79AC4F427E68CAF8985BD45591EB031CF.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 2901640 ____H () C:\Windows\system32\binaszap\FA92D5FEEEBA6BDE4D5FF351286915D6FE8FE95A.xgf

2008-01-21 03:23 - 2008-01-21 03:23 - 3806552 ____H () C:\Windows\system32\binaszap\hexundir.ocx

2008-01-21 03:23 - 2008-01-21 03:23 - 5246306 ____H () C:\Windows\system32\binaszap\hexundir.ocxtmp

====== End of Folder: ======

==== End of Fixlog ====

29 oktober, 2014

Undrar vad det där är, inte normalt att ha såna mappar men filerna i dem är ju gamla.

Starta Anteckningar.

Kopiera alla rader i rutan:

File: C:\Windows\vbahupac\movanxml.dll
File: C:\Windows\vbahupac\movimjob.dll
File: C:\Windows\vbahupac\serihwow.exe
File: C:\Windows\system32\binaszap\hexundir.ocx
File: C:\Windows\system32\binaszap\D39524A4F9FF2E3DA53E370DF6FE667680FAFA43.xgf

och klistra in i Anteckningar. Kontrollera att inga filer har delats upp på två rader.

Spara filen på skrivbordet med namnet fixlist.txt.

Starta FRST som finns på skrivbordet.

Klicka på knappen Fix.

Vänta tills programmet är klart.

Programmet skapar en logg Fixlog.txt på skrivbordet.

Klistra in innehållet i den i ditt svar.

29 oktober, 2014

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-10-2014 01
Ran by Cricke at 2014-10-29 16:33:09 Run:2
Running from C:\Users\Cricke\Desktop
Loaded Profile: Cricke (Available profiles: Cricke & William & Pappa & Gäst A)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
File: C:\Windows\vbahupac\movanxml.dll
File: C:\Windows\vbahupac\movimjob.dll
File: C:\Windows\vbahupac\serihwow.exe
File: C:\Windows\system32\binaszap\hexundir.ocx
File: C:\Windows\system32\binaszap\D39524A4F9FF2E3DA53E370DF6FE667680FAFA43.xgf
*****************

========================= File: C:\Windows\vbahupac\movanxml.dll ========================

MD5:
Creation and modification date: 2013-02-17 23:36 - 2013-02-17 23:49
Size: 0000000
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End Of File: ======

========================= File: C:\Windows\vbahupac\movimjob.dll ========================

MD5: 37D575336D0756D64861BA056CEF02C5
Creation and modification date: 2013-02-17 23:36 - 2013-02-18 21:23
Size: 0000245
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End Of File: ======

========================= File: C:\Windows\vbahupac\serihwow.exe ========================

MD5:
Creation and modification date: 2013-02-17 23:36 - 2013-02-17 23:36
Size: 0000000
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End Of File: ======

========================= File: C:\Windows\system32\binaszap\hexundir.ocx ========================

MD5: 05E881981488D0C0FAE3AF7917B4EB23
Creation and modification date: 2008-01-21 03:23 - 2008-01-21 03:23
Size: 3806552
Attributes: ---AH
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End Of File: ======

========================= File: C:\Windows\system32\binaszap\D39524A4F9FF2E3DA53E370DF6FE667680FAFA43.xgf ========================

MD5: D2CADC7968ECC28B0ABE05A02A4AC1CD
Creation and modification date: 2008-01-21 03:23 - 2008-01-21 03:23
Size: 0051477
Attributes: ---AH
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End Of File: ======

==== End of Fixlog ====

29 oktober, 2014

Inte mycket till information om de filerna så heller. På sidan http://www.virustotal.com klickar du på Choose File -knappen och klistrar in ett av följande filnamn i fältet "Filnamn", klicka på Öppna och sedan på Scan it!. Om det kommer upp en fråga om filen ska analyseras om så välj det alternativet. Vänta tills resultatet är klart. Klistra in länken (webbadressen) till resultatet här. Upprepa med nästa filnamn.

C:\Windows\vbahupac\icopuans32.dll

C:\Windows\vbahupac\movimjob.dll

C:\Windows\system32\binaszap\hexundir.ocx

C:\Windows\system32\binaszap\D39524A4F9FF2E3DA53E370DF6FE667680FAFA43.xgf

29 oktober, 2014

https://www.virustotal.com/sv/file/4637edb8471c938a71869279328d5556017cdaa1a8af06dff9dfd54d07a22289/analysis/1414614838/

29 oktober, 2014

https://www.virustotal.com/sv/file/25e7927e6f6ebd2fc6f288d05e62320ac50755dddfb5ca7d560e4921c16e3324/analysis/1414615070/

29 oktober, 2014

https://www.virustotal.com/sv/file/31dc56df6a1b0e26ca11bd80c40cae25b5c43f5c57b4fd11e4f539eebae95f24/analysis/1414615350/

Ev, skit i datorn?

Rekommendera Poster

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Cecilia

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Euro

Länk till kommentar

Dela på andra webbplatser

Arkiverat

Vem är online 0 Medlemmar, 0 anonym, 7 gäster (Visa hela listan)

Populära medlemmar