Just nu i M3-nätverket
Gå till innehåll

ThomasTvivlaren

Medlem
  • Antal inlägg

    19
  • Gick med

  • Senaste besök

Om ThomasTvivlaren

  • Medlemstitel
    Användare
  • Födelsedag 1983-05-19

Profil

  • Kön
    Man
  1. Hej! Var tvungen att köra MCPR två gånger men nu funkar McAfee som vanligt igen! Tusen tack för hjälpen!
  2. Hej! En ruta kom upp varje gång man loggade in i datorn där det stod "McPlatformSingleExeFramework: McUICnt.exe - felaktig minnesavbildning. Gjorde systamåterställning - funkade inte. Körde systemfilsgranskaren - funkade inte. Avinstallerade McAfee - funkade inte. Körde systemfilsgranskaren igen - rutan försvann. Men McAfee finns kvar men funkar inte helt 100. Programmet finns inte kvar i listan över installerade program. Skulle vilja ominstallera McAfee - hur gör jag? Tacksam för hjälp!
  3. Jag tar upp den här tråden igen, för igår började problemen igen. Då nollställde jag routern och problemen försvann. Mitt virusprogram säger att min nätverksrouter är åtkomlig via internet och att hackare kan komma åt routern och ändra inställningar. Programmets lösningen på detta är: "Find and disable the remote management service" När jag kollar inställningarna så är remote management inställd på disabled. Någon som kan komma med nåt tips på lösning? Kan det ligga något på vår bärbara dator som ställer till det? Den använde vi nämligen i fredags, och den används inte så mycket. Tänker att det kanske kan hänga ihop.
  4. Inga fler pop up-fönster i varken iPhone eller iPad sedan nollställningen gjordes Hoppas att det håller i sig!
  5. Jag testade att nollställa routern vilket verkade att fungera. Kommer det tillbaka så kan jag testa att shoppa loss i apple store så får vi se om det funkar bättre
  6. Hej! Är det något speciellt i DNS-inställningarna jag ska titta efter? Hur är det med modemet då? Kan det också vara hackat? Tack, får mejla supporten när jag kommer hem ikväll! /Thomas
  7. Hej! Jaha där ser man, det är verkligen något jag inte alls har tänkt på att man kan få. Jo jag läste någonstans att man skulle uppdatera firmwire, så jag laddade ner senaste versionen för kanske 2 veckor sedan och då försvann problemet. Men nu är det tyvärr tillbaka. Det jag inte gjorde vid det tillfället var att nollställa inställningarna... det kanske var dumt gjort? Nu ska vi se, den heter Belkin n750db och är mellan 4-5 år gammal. Dags att köpa ny? /Thomas
  8. Hej! Har iPad, iPhone & Mac uppkopplade mot wi-fi här hemma. På sistone har det börjat poppa upp reklam i dessa enheter när man surfar i safari. Även app store öppnas och man kommer till nedladdningssida för nåt spel. Eftersom det är samma problem på flera enheter så kanske det är routern som är problemet. Har googlat lite på det och det verkar som att det kan vara routern. Någon som i så fall vet hur man åtgärdar detta? Hoppas nån kan hjälpa!
  9. Hej! Jag hade Java i Firefox. Men nu är den inställd på "aktivera aldrig" Och nu är FRST avinstallerat. Okej, då ska jag besöka din sida och förbättra skyddet. Är allt klart nu?
  10. Hej! Datorn verkar funka bra nu Jag har en fråga. Behöver man ha Java? Så här ser loggen ut: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 27-09-2013 02 Ran by Thomas at 2013-09-28 09:03:08 Run:3 Running from C:\Users\Thomas\Desktop Boot Mode: Normal ============================================== Content of fixlist: ***************** BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File BHO-x32: No Name - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No File BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll No File FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} ***************** HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key not found. HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key not found. HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => Key not found. HKCR\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => Key not found. HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key not found. HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key not found. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}" directory move: Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome.manifest" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\install.rdf" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext\ffjcext.dtd" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.js" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.xul" => Scheduled to move on reboot. Could not move "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}" directory. => Scheduled to move on reboot. =========== Result of Scheduled Files to move =========== "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome.manifest" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\install.rdf" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext\ffjcext.dtd" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.js" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.xul" => File could not move. "C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}" => Directory could not move. ==== End of Fixlog ====
  11. Nu kom jag in, så jag passar på att klistra in loggen: Content of fixlist: ***************** C:\Users\Thomas\Appdata\Local\Temp\jar_cache1674719015203533693.tmp C:\Users\Thomas\Appdata\Local\Temp\jar_cache1919830284186439560.tmp C:\Users\Thomas\Appdata\Local\Temp\jar_cache2536968128043729334.tmp C:\Users\Thomas\Appdata\Local\Temp\jar_cache2699104672716590099.tmp C:\Users\Thomas\Appdata\Local\Temp\jar_cache5579285319643117082.tmp C:\Users\Thomas\Appdata\Local\Temp\jar_cache6964626807175020066.tmp C:\Users\Thomas\Appdata\Local\Temp\jar_cache8691077052400296732.tmp C:\Users\Thomas\Appdata\Local\Temp\jar_cache99279068778596557.tmp C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\10\7140678a-15f90d77 C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\26\5bf21d5a-55edd009 C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\38\7c7a0aa6-463df08d C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\56\34935078-33df9e55 C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\56\563ab778-74375162 ***************** C:\Users\Thomas\Appdata\Local\Temp\jar_cache1674719015203533693.tmp => Moved successfully. C:\Users\Thomas\Appdata\Local\Temp\jar_cache1919830284186439560.tmp => Moved successfully. C:\Users\Thomas\Appdata\Local\Temp\jar_cache2536968128043729334.tmp => Moved successfully. C:\Users\Thomas\Appdata\Local\Temp\jar_cache2699104672716590099.tmp => Moved successfully. C:\Users\Thomas\Appdata\Local\Temp\jar_cache5579285319643117082.tmp => Moved successfully. C:\Users\Thomas\Appdata\Local\Temp\jar_cache6964626807175020066.tmp => Moved successfully. C:\Users\Thomas\Appdata\Local\Temp\jar_cache8691077052400296732.tmp => Moved successfully. C:\Users\Thomas\Appdata\Local\Temp\jar_cache99279068778596557.tmp => Moved successfully. C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\10\7140678a-15f90d77 => Moved successfully. C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\26\5bf21d5a-55edd009 => Moved successfully. C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\38\7c7a0aa6-463df08d => Moved successfully. C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\56\34935078-33df9e55 => Moved successfully. C:\Users\Thomas\Appdata\LocalLow\Sun\Java\Deployment\cache\6.0\56\563ab778-74375162 => Moved successfully. ==== End of Fixlog ====
  12. Hej! Jo jag avinstallerade alla Java tidigare. Men nu kommer jag inte in på datorn alls. Jag kommer till inloggningen, när jag klickar på min användare händer inget, bara svart skärm och kan röra muspekaren. Samma sak händer på min sambos användare. Kom in tidigare idag men datorn var grymt seg då. Skumt.
  13. FRST-loggen: Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-09-2013 Ran by Thomas (ATTENTION: The logged in user is not administrator) on STEPHANIE-DATOR on 25-09-2013 20:31:42 Running from C:\Users\Thomas\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: Swedish Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (Panda Security, S.L.) C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA ANTIVIRUS PRO 2012\WebProxy.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE (Microsoft Corporation) C:\WINDOWS\System32\StikyNot.exe (Spotify Ltd) C:\Users\Thomas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Technology Nexus AB) C:\Program Files (x86)\Personal\bin\Personal.exe () C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe (Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe () C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\ApVxdWin.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [QuickSet] - C:\Program Files\Dell\QuickSet\QuickSet.exe [3179288 2010-01-06] (Dell Inc.) HKLM\...\Run: [sysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-06-18] (IDT, Inc.) HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2010-03-17] (Synaptics Incorporated) HKLM\...\Run: [broadcom Wireless Manager UI] - C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5712896 2010-02-03] (Dell Inc.) HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] - "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [559616 2011-10-06] (Dell) Winlogon\Notify\avldr: C:\Windows\system32\avldr64.dll (On-Access Anti-Malware Scanner Sync) HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\WINDOWS\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation) HKCU\...\Run: [spotify Web Helper] - C:\Users\Thomas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-09-01] (Spotify Ltd) HKCU\...\Run: [Facebook Update] - C:\Users\Thomas\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-02-05] (Facebook Inc.) HKCU\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.) HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-09-15] (Apple Inc.) HKLM-x32\...\Run: [startCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-04-28] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [1807680 2010-02-09] () HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744 2009-06-24] (Creative Technology Ltd) HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [498160 2009-10-15] () HKLM-x32\...\Run: [NBKeyScan] - C:\Program Files (x86)\Nero\Nero BackItUp 4\NBKeyScan.exe [2254120 2008-12-05] (Nero AG) HKLM-x32\...\Run: [AppleSyncNotifier] - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.) HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [APVXDWIN] - C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\APVXDWIN.EXE [1000768 2011-04-13] (Panda Security, S.L.) HKLM-x32\...\Run: [sCANINICIO] - C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\Inicio.exe [70464 2011-02-02] (Panda Security, S.L.) HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-09-17] (Apple Inc.) Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.se/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://se.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x03DE932C80A1CD01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sv-SE BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll (Microsoft Corporation.) BHO-x32: No Name - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No File BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll No File Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll (Microsoft Corporation.) DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{D817C264-7F37-4F54-8FCF-A7E28A5677A1}: [NameServer]80.251.201.177 80.251.201.178 FireFox: ======== FF ProfilePath: C:\Users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\d78yo64i.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll () FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll () FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.) FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_37 - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @se.nexus/Personal - C:\Program Files (x86)\Personal\bin\np_prsnl.dll (Technology Nexus AB) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Thomas\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\allaannonser-sv-SE.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\prisjakt-sv-SE.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\tyda-sv-SE.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\wikipedia-sv-SE.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-sv-SE.xml FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird Chrome: ======= CHR HomePage: hxxp://www.google.com/ CHR RestoreOnStartup: "hxxp://www.google.com/" ==================== Services (Whitelisted) ================= R2 AdvancedSystemCareService6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [464256 2012-10-31] (IObit) R2 DCService.exe; C:\ProgramData\DatacardService\DCService.exe [249856 2010-09-29] () S2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [203776 2011-06-01] () R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 Panda Software Controller; C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PsCtrls.exe [173312 2009-08-10] (Panda Security, S.L.) R2 PAVFNSVR; C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PavFnSvr.exe [202016 2012-10-17] (Panda Security, S.L.) R2 PavPrSrv; C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe [62768 2008-02-04] (Panda Security, S.L.) R2 PAVSRV; C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\pavsrvx86.exe [314176 2010-06-04] (Panda Security, S.L.) R2 PLFlash DeviceIoControl Service; C:\Program Files (x86)\Nero\Nero BackItUp 4\IoctlSvc.exe [81920 2008-12-05] (Prolific Technology Inc.) R2 PSIMSVC; C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PsImSvc.exe [108288 2008-06-19] (Panda Security S.L.) R2 PskSvcRetail; C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PskSvc.exe [28992 2010-08-16] (Panda Security, S.L.) R2 TPSrv; C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\TPSrvWow.exe [173344 2012-11-16] (Panda Security, S.L.) R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [48128 2010-02-03] (Dell Inc.) ==================== Drivers (Whitelisted) ==================== R2 AmFSM; C:\Windows\System32\DRIVERS\amm6460.sys [65608 2010-05-21] (Panda Security, S.L.) S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [256000 2011-06-01] (Huawei Technologies Co., Ltd.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R0 pavboot; C:\Windows\System32\Drivers\pavboot64.sys [30792 2010-06-22] (Panda Security, S.L.) S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) R1 ShldFlt; C:\Windows\System32\DRIVERS\ShldFlt.sys [48136 2009-10-27] (Panda Security, S.L.) U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [117248 2011-06-01] (Huawei Technologies Co., Ltd.) R3 PavTPK.sys; \??\C:\Windows\system32\PavTPK.sys [x] R3 Prot6Flt; system32\DRIVERS\Prot6Flt.sys [x] S3 sxuptp; system32\DRIVERS\sxuptp.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-09-25 20:23 - 2013-09-24 20:22 - 01955802 _____ (Farbar) C:\Users\Thomas\Desktop\FRST64.exe 2013-09-24 22:11 - 2013-08-10 07:20 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-09-24 22:11 - 2013-08-10 07:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-09-24 22:11 - 2013-08-10 07:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-09-24 22:11 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-09-24 22:11 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-09-24 22:11 - 2013-08-10 05:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-09-24 22:11 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-09-24 22:10 - 2013-08-10 07:22 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-09-24 22:10 - 2013-08-10 07:22 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-09-24 22:10 - 2013-08-10 07:22 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-09-24 22:10 - 2013-08-10 07:21 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-09-24 22:10 - 2013-08-10 07:21 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-09-24 22:10 - 2013-08-10 07:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-09-24 22:10 - 2013-08-10 07:20 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-09-24 22:10 - 2013-08-10 07:20 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-09-24 22:10 - 2013-08-10 07:20 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-09-24 22:10 - 2013-08-10 07:20 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-09-24 22:10 - 2013-08-10 07:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-09-24 22:10 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-09-24 22:10 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-09-24 22:10 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-09-24 22:10 - 2013-08-10 04:27 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-09-24 22:10 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-09-24 21:48 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys 2013-09-24 21:48 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-09-24 21:48 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-09-24 21:48 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2013-09-24 21:48 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-09-24 21:48 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2013-09-24 21:48 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2013-09-24 21:48 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2013-09-24 21:48 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2013-09-24 21:48 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-09-24 21:48 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-09-24 21:48 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-09-24 21:48 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2013-09-24 21:48 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2013-09-24 21:48 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2013-09-24 21:48 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2013-09-24 21:48 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-09-24 21:48 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-09-24 21:48 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-09-24 21:48 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-09-24 21:48 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-09-24 21:48 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2013-09-24 21:48 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2013-09-24 21:48 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll 2013-09-24 21:48 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2013-09-24 21:48 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll 2013-09-24 21:45 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-09-24 21:21 - 2013-09-25 19:09 - 00006754 _____ C:\Windows\PFRO.log 2013-09-24 20:54 - 2013-09-24 20:54 - 00000000 ____D C:\Users\Stephanie\AppData\Roaming\Malwarebytes 2013-09-24 20:53 - 2013-09-24 20:53 - 00001071 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-09-24 20:53 - 2013-09-24 20:53 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-09-24 20:53 - 2013-09-24 20:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-09-24 20:53 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-09-24 20:33 - 2013-09-24 20:33 - 00001745 _____ C:\Users\Public\Desktop\iTunes.lnk 2013-09-24 20:30 - 2013-09-24 20:33 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2013-09-24 20:30 - 2013-09-24 20:32 - 00000000 ____D C:\Program Files\iTunes 2013-09-24 20:30 - 2013-09-24 20:32 - 00000000 ____D C:\Program Files (x86)\iTunes 2013-09-24 20:30 - 2013-09-24 20:30 - 00000000 ____D C:\Program Files\iPod 2013-09-24 20:22 - 2013-09-24 20:22 - 01955802 _____ (Farbar) C:\Users\Stephanie\Desktop\FRST64.exe 2013-09-20 11:44 - 2013-09-20 11:44 - 00000000 ____D C:\FRST 2013-09-19 22:34 - 2013-09-25 19:10 - 00000805 _____ C:\Windows\setupact.log 2013-09-19 22:34 - 2013-09-19 22:34 - 00000000 _____ C:\Windows\setuperr.log 2013-09-07 23:13 - 2013-09-07 23:13 - 00003584 _____ C:\Users\Thomas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-09-04 18:23 - 2013-09-04 18:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox ==================== One Month Modified Files and Folders ======= 2013-09-25 20:26 - 2013-02-05 18:21 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1037077293-703308308-4184993113-1003UA.job 2013-09-25 20:25 - 2012-10-03 17:40 - 00000000 ____D C:\Users\Thomas\AppData\Local\Apple Computer 2013-09-25 20:24 - 2012-10-03 17:41 - 00000000 ____D C:\Users\Thomas\AppData\Roaming\Apple Computer 2013-09-25 20:16 - 2012-10-03 17:40 - 00000000 ___RD C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-09-25 20:16 - 2012-10-03 17:39 - 00000000 ___RD C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-09-25 20:16 - 2011-02-28 13:06 - 00000996 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-09-25 20:05 - 2011-02-28 13:06 - 00001000 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-09-25 20:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-09-25 19:55 - 2012-06-28 11:43 - 00000868 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-09-25 19:18 - 2010-09-19 09:43 - 01781887 _____ C:\Windows\WindowsUpdate.log 2013-09-25 19:18 - 2009-07-14 06:45 - 00013872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-09-25 19:18 - 2009-07-14 06:45 - 00013872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-09-25 19:10 - 2013-09-19 22:34 - 00000805 _____ C:\Windows\setupact.log 2013-09-25 19:10 - 2010-09-19 11:12 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup 2013-09-25 19:10 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-09-25 19:10 - 2009-07-14 06:45 - 00426176 _____ C:\Windows\system32\FNTCACHE.DAT 2013-09-25 19:09 - 2013-09-24 21:21 - 00006754 _____ C:\Windows\PFRO.log 2013-09-24 22:06 - 2013-08-14 22:26 - 00000000 ____D C:\Windows\system32\MRT 2013-09-24 22:06 - 2010-10-13 07:22 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-09-24 22:06 - 2010-09-19 10:49 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-09-24 21:26 - 2010-09-23 21:38 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks 2013-09-24 21:26 - 2010-09-23 21:38 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks 2013-09-24 20:54 - 2013-09-24 20:54 - 00000000 ____D C:\Users\Stephanie\AppData\Roaming\Malwarebytes 2013-09-24 20:53 - 2013-09-24 20:53 - 00001071 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-09-24 20:53 - 2013-09-24 20:53 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-09-24 20:53 - 2013-09-24 20:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-09-24 20:33 - 2013-09-24 20:33 - 00001745 _____ C:\Users\Public\Desktop\iTunes.lnk 2013-09-24 20:33 - 2013-09-24 20:30 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2013-09-24 20:32 - 2013-09-24 20:30 - 00000000 ____D C:\Program Files\iTunes 2013-09-24 20:32 - 2013-09-24 20:30 - 00000000 ____D C:\Program Files (x86)\iTunes 2013-09-24 20:30 - 2013-09-24 20:30 - 00000000 ____D C:\Program Files\iPod 2013-09-24 20:22 - 2013-09-25 20:23 - 01955802 _____ (Farbar) C:\Users\Thomas\Desktop\FRST64.exe 2013-09-24 20:22 - 2013-09-24 20:22 - 01955802 _____ (Farbar) C:\Users\Stephanie\Desktop\FRST64.exe 2013-09-20 11:44 - 2013-09-20 11:44 - 00000000 ____D C:\FRST 2013-09-19 22:34 - 2013-09-19 22:34 - 00000000 _____ C:\Windows\setuperr.log 2013-09-19 22:18 - 2013-04-07 15:49 - 00000000 ____D C:\Users\Stephanie\AppData\Roaming\uTorrent 2013-09-19 22:13 - 2012-10-03 17:39 - 00000000 ____D C:\Users\Thomas 2013-09-19 22:13 - 2010-09-23 21:29 - 00000000 ____D C:\Users\Stephanie 2013-09-19 19:55 - 2012-06-28 11:43 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-09-19 19:55 - 2011-09-17 14:30 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-09-16 22:56 - 2012-10-07 13:27 - 00000000 ____D C:\Users\Thomas\AppData\Roaming\Spotify 2013-09-15 17:26 - 2013-02-05 18:21 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1037077293-703308308-4184993113-1003Core.job 2013-09-15 11:13 - 2012-10-07 13:28 - 00000000 ____D C:\Users\Thomas\AppData\Local\Spotify 2013-09-11 16:12 - 2012-10-03 17:40 - 00000000 ____D C:\Users\Thomas\Documents\Bluetooth Exchange Folder 2013-09-10 21:40 - 2010-09-26 14:42 - 00000000 ____D C:\Users\Stephanie\AppData\Roaming\Spotify 2013-09-07 23:13 - 2013-09-07 23:13 - 00003584 _____ C:\Users\Thomas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-09-07 23:07 - 2012-08-30 18:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-09-05 18:45 - 2013-05-24 19:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox.bak 2013-09-04 18:24 - 2013-09-04 18:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-09-02 23:28 - 2012-10-12 23:41 - 00000000 ____D C:\Users\Thomas\AppData\Roaming\vlc 2013-09-02 22:56 - 2010-09-19 12:36 - 00626006 _____ C:\Windows\system32\perfh01D.dat 2013-09-02 22:56 - 2010-09-19 12:36 - 00124128 _____ C:\Windows\system32\perfc01D.dat 2013-09-02 22:56 - 2009-07-14 07:13 - 01466674 _____ C:\Windows\system32\PerfStringBackup.INI Some content of TEMP: ==================== C:\Users\Thomas\AppData\Local\Temp\install_flashplayer11x32au_gtbd_chrd_dn_aih.exe C:\Users\Thomas\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== End Of Log ============================
  14. Hej! Sådär, nu har du lite att läsa Men jag fattar inte att så mycket skit har letat sig in i datorn... /Thomas Eset-logg: C:\FRST\Quarantine\v7bwrfb.plz a variant of Win32/Kryptik.BKEJ trojan C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application C:\Users\Stephanie\AppData\Roaming\uTorrent\uTorrent.exe a variant of Win32/Bunndle application C:\Users\Thomas\AppData\Local\Temp\jar_cache1674719015203533693.tmp Java/Exploit.CVE-2012-1723.DS trojan C:\Users\Thomas\AppData\Local\Temp\jar_cache1919830284186439560.tmp multiple threats C:\Users\Thomas\AppData\Local\Temp\jar_cache2536968128043729334.tmp multiple threats C:\Users\Thomas\AppData\Local\Temp\jar_cache2699104672716590099.tmp a variant of Java/Exploit.Agent.OMZ trojan C:\Users\Thomas\AppData\Local\Temp\jar_cache5579285319643117082.tmp multiple threats C:\Users\Thomas\AppData\Local\Temp\jar_cache6964626807175020066.tmp multiple threats C:\Users\Thomas\AppData\Local\Temp\jar_cache8691077052400296732.tmp multiple threats C:\Users\Thomas\AppData\Local\Temp\jar_cache99279068778596557.tmp multiple threats C:\Users\Thomas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\7140678a-15f90d77 a variant of Win32/Kryptik.BKEJ trojan C:\Users\Thomas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\5bf21d5a-55edd009 a variant of Java/Exploit.Agent.PQI trojan C:\Users\Thomas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\7c7a0aa6-463df08d multiple threats C:\Users\Thomas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\34935078-33df9e55 a variant of Java/Exploit.CVE-2012-1723.KC trojan C:\Users\Thomas\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\563ab778-74375162 Java/Exploit.CVE-2012-1723.DZ trojan MBAM-logg: Malwarebytes Anti-Malware (Testversion) 1.75.0.1300 www.malwarebytes.org Databasversion: v2013.09.24.08 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16660 Stephanie :: STEPHANIE-DATOR [administratör] Skydd: Aktiverad 2013-09-24 20:56:34 mbam-log-2013-09-24 (20-56-34).txt Skanningstyp: Snabbskanning Aktiverade skanningsalternativ: Minne | Start | Register | Filsystem | Heuristik/Extra | Heuristik/Shuriken | PUP | PUM Inaktiverade skanningsalternativ: P2P Antal skannade objekt: 228143 Förfluten tid: 10 minut(er), 12 sekund(er) Upptäckta minnesprocesser: 0 (Inga skadliga poster hittades) Upptäckta minnesmoduler: 0 (Inga skadliga poster hittades) Upptäckta registernycklar: 0 (Inga skadliga poster hittades) Upptäckta registervärden: 0 (Inga skadliga poster hittades) Upptäckta registerdataposter: 0 (Inga skadliga poster hittades) Upptäckta mappar: 0 (Inga skadliga poster hittades) Upptäckta filer: 3 C:\Users\Thomas\AppData\Roaming\data.dat (Trojan.Ransom.Gend) -> Sattes i karantän och togs bort. C:\Users\Thomas\AppData\Local\Temp\b34btbztdb0vavaw.exe (Trojan.Ransom.RRE) -> Sattes i karantän och togs bort. C:\Users\Thomas\AppData\Local\Temp\ljuvnebdblxacrxykuh.bfg (Trojan.FakeMS) -> Sattes i karantän och togs bort. (klar) Panda-loggen (ursäkta dom konstiga radbytena): Spionprogram detekterat: Cookie/Adve... Manuell analys 2013-09-20 14:09:01 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\zzv1i47x.txt Spionprogram detekterat: Cookie/Real... Manuell analys 2013-09-20 14:08:55 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\x01z80bc.txt Spionprogram detekterat: Cookie/Webt... Manuell analys 2013-09-20 14:08:51 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\vdednumn.txt Spionprogram detekterat: Cookie/Smar... Manuell analys 2013-09-20 14:08:51 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\vcqhcigl.txt Spionprogram detekterat: Cookie/Yiel... Manuell analys 2013-09-20 14:08:49 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\ub505kli.txt Spionprogram detekterat: Cookie/Adviva Manuell analys 2013-09-20 14:08:41 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\r4fcga7i.txt Spionprogram detekterat: Cookie/Casa... Manuell analys 2013-09-20 14:08:30 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\mi9dvhwr.txt Spionprogram detekterat: Cookie/Apmebf Manuell analys 2013-09-20 14:08:27 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\ld9i5kz0.txt Spionprogram detekterat: Cookie/Rese... Manuell analys 2013-09-20 14:08:27 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\l5ajvt07.txt Spionprogram detekterat: Cookie/Atwola Manuell analys 2013-09-20 14:08:22 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\iv2g5sub.txt Spionprogram detekterat: Cookie/Serv... Manuell analys 2013-09-20 14:08:18 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\gyvxh8jx.txt Spionprogram detekterat: Cookie/Xiti Manuell analys 2013-09-20 14:08:16 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\gfwtgmb5.txt Spionprogram detekterat: Cookie/Overture Manuell analys 2013-09-20 14:08:14 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\f81smcq4.txt Spionprogram detekterat: Cookie/Yadro Manuell analys 2013-09-20 14:08:11 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\e3hidglt.txt Spionprogram detekterat: Cookie/Fast... Manuell analys 2013-09-20 14:08:10 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\dygrblfm.txt Spionprogram detekterat: Cookie/Doub... Manuell analys 2013-09-20 14:08:07 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\c6aj0f1j.txt Spionprogram detekterat: Cookie/Stat... Manuell analys 2013-09-20 14:08:06 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\c24j5ddh.txt Spionprogram detekterat: Cookie/Serv... Manuell analys 2013-09-20 14:07:55 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\8mmfr0mz.txt Spionprogram detekterat: Cookie/Trib... Manuell analys 2013-09-20 14:07:53 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\7od6ue8y.txt Spionprogram detekterat: Cookie/Ques... Manuell analys 2013-09-20 14:07:48 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\5racu3yd.txt Spionprogram detekterat: Cookie/Medi... Manuell analys 2013-09-20 14:07:46 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\555gm9om.txt Spionprogram detekterat: Cookie/Adtech Manuell analys 2013-09-20 14:07:37 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\19ed30sn.txt Spionprogram detekterat: Cookie/Zedo Manuell analys 2013-09-20 14:07:37 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\low\13ru614y.txt Spionprogram detekterat: Cookie/Serv... Manuell analys 2013-09-20 14:07:33 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\dgtdu2ah.txt Spionprogram detekterat: Cookie/Serv... Manuell analys 2013-09-20 14:07:33 Borttaget Plats: c:\users\thomas\appdata\roaming\microsoft\windows\cookies\8crgedny.txt Detekterat virus: Trj/Dtcontx.F Manuell analys 2013-09-20 13:41:22 Borttaget Plats: c:\users\thomas\appdata\locallow\sun\java\deployment\cache\6.0\16\61caa90-2bd4bab2 Misstänkt fil Manuell analys 2013-09-20 13:38:07 Placerad i karantän Filer: c:\users\thomas\appdata\local\temp\01371924985022.exe
×
×
  • Skapa nytt...