capturelibservice.exe

10 Maj, 2012

rubr hittar jag i aktivitetshanteraren/processer och där tar den upp en väldans mängd minne - mer än nån svchost-tjänst. har googlat(tydligen inget farligt program) och den ligger under program/FreeMake och är tydligen en Microsoft-tjänst. hittar däremot inte FreeMake under lägg till/ta bort program. är detta nåt jag "måste" ha? Freemake var inte med vid installationen utan har "kommit" in betydligt senare.

10 Maj, 2012

Filen capturelibservice.exe kommer från Microsoft men inte programmet FreeMake. Har du installerat något video- eller ljudkonverteringsprogram?

http://www.freemake.com/downloads/

10 Maj, 2012

ja jag var lite otydlig - jag använder sen lång tid AVS4You men inte speciellt ofta och det programmet har jag haft längre tid än datumet för FreeMake. för nerladdningar använder jag Free Download Manager men inte FreeMake Downloader med det snarliknande namnet.

10 Maj, 2012

Finns det någon "uninstall" eller liknande fil i FreeMake-mappen?

10 Maj, 2012

nej det finns bara dll-filer och 1 exe-fil.

10 Maj, 2012

Kan du ha någon Free Make Toolbar i webbläsaren?

Kolla efter detta i Kontrollpanelen > Program => avinstallera

http://www.freemake.com/support/

Citat:

Go to Control Panel>Programs>Programs and Features in Win 7 and Vista select Dealply and StartNow toolbar (or Facemoods toolbar), and then click Uninstall.

Sedan verkar FreeMake installera någon ledsam tjänst också.

Inlägg 2 och 3 http://www.freewaref..._239_58282.html

Tydligen besvärligt program som många haft problem med att avinstallera.

10 Maj, 2012

Om det verkar vara svårt att bli av med så går det ju att kolla upp vad som körs av det (toolbars, tjänster) med hjälp av t ex DDS. Men pröva först med Flyfishermans två första tips.

Edit: Tog bort citat som inte längre finns och svaret till det.

12 Maj, 2012

nä har inget sånt i web-läsaren. börjar bli lite avancerat....kan jag inte helt sonika ta bort de befintliga mapparna och avsluta processerna - 2 st - finns också 1 som heter freemakeutilsservice.exe. har provat med att stoppa dessa utan problem men återkom tydligen efter omstart i morse men jag har inte tagit bort mapparna än. förstår inte varför jag måste markera varje gång "visa alla processer" och likaså varför processraderna hoppar upp och ned så att det nästan är svårt att läsa resp markera dem. vid prestanda står att jag har Fys minne totalt 8190 cachelagrat 4588 och ledigt 2221. förstår inte att det är så lite ledigt eftersom jag helt nyligen fått isatt extra minne 4 gb. om jag inte haft de extra 4gb så skulle jag haft "minus" eller är jag ute och cyklar? detta kanske inte hör hit men jag kopplar det lite till att freemake tog upp så mycket.

12 Maj, 2012

Om du bara raderar filerna så kommer det fortfarande att stå i Windows uppstartskonfiguration att de ska startas vilket innebär att när Windows startar så kommer den att leta efter filerna som inte finns vilket gör att starten tar längre tid. Om du vill så kan jag titta i DDS-loggar för att se vad som startas och hur. Då kan jag berätta hur du kan göra för att även ändra i uppstartskonfigurationen. I så fall spara DDS på Skrivbordet.

http://download.bleepingcomputer.com/sUBs/dds.scr

Starta programmet genom att dubbelklicka på det.

Tryck Yes/Ja om frågan om Optional Scan dyker upp.

I ditt svar klistrar du in de två loggarna DSS.txt och Attach.txt.

varför processraderna hoppar upp och ned så att det nästan är svårt att läsa

Sortera på namn i stället genom att klicka på rubriken "Namn".

För att snabba upp datorn så använder Windows RAM-minnet så mycket det går. När det inte används för de program som körs så kan Windows t ex behålla ett just avslutat program i minnet utifall att du skulle starta det snart igen eller ladda ner ett program som du ofta använder i förväg så att det sedan startar väldigt snabbt.

13 Maj, 2012

tar gärna emot den hjälp som erbjuds och har kört och fått dds.text och attach.txt till skrivbordet. dum som jag är här bifogar jag de 2 textdokumenten?? hittar ingen symbol för "bifoga fil". har provat med "log" och sen kopierat de 2 textfilerna och försökt klistra in dessa i rutan som dyker upp vid "log" men jag får inte fram alternativet "klistra in" när jag högerklickar på raden i log. eller är det så att all löpande text i resp fil ska markeras/kopieras och sen klistras in - jag har alltså försökt med filerna.

13 Maj, 2012

För att bifoga filer se tråden inlägg #5 //eforum.idg.se/topic/335561-problem-med-inloggning-pa-internetbanken/page__view__findpost__p__1575011

13 Maj, 2012

Det enklaste och bästa är att ta upp filerna i Anteckningar i datorn, kopiera hela innehållet (Redigera - Markera allt, Redigera - Kopiera) och sedan klistra in det direkt i Eforums svarsruta (högerklicka - Klistra in). Använd ingen LOG-knapp eller annan knapp.

13 Maj, 2012

har för mig du hjälpt mig en gång tidigare och att jag då klarade av det - här kommer:

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31

Run by Hans-Erik at 12:32:46 on 2012-05-13

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.46.1053.18.8190.5328 [GMT 2:00]

.

AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}

SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe

C:\Windows\system32\taskeng.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\Bredbandsbolaget.exe

C:\Program Files (x86)\Free Download Manager\fdm.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files (x86)\BTTray.exe

C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe

C:\Program Files (x86)\AVG\AVG2012\avgtray.exe

C:\Windows\Samsung\PanelMgr\SSMMgr.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Windows\Samsung\PanelMgr\caller64.exe

C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Program Files (x86)\bin\btwdins.exe

C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

C:\Program Files (x86)\BtStackServer.exe

C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe

C:\Program Files (x86)\AVG\AVG2012\avgemca.exe

C:\Program Files (x86)\BluetoothHeadsetProxy.exe

C:\Program Files (x86)\AVG\AVG2012\avgrsa.exe

C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe

C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\WUDFHost.exe

C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe

C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe

C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe

C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe

C:\Program Files (x86)\Adobe\Photoshop 7.0\Photoshop.exe

C:\Windows\splwow64.exe

C:\Program Files\Windows Mail\WinMail.exe

C:\Windows\System32\svchost.exe -k swprv

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.se/

uSearch Bar = Preserve

mSearchAssistant = hxxp://start.facemoods.com/?a=make&s={searchTerms}&f=4

uURLSearchHooks: H - No File

mURLSearchHooks: H - No File

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll

BHO: Free Download Manager: {cc59e0f9-7e43-44fa-9faa-8377850bf205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll

BHO: Bredbandsbolaget Servicecenter Plugin: {db87cde1-ef9c-44eb-a42f-6d0b3c72c516} - C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\IEFixItNowPlugin.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: QuickNet: {ea5ca8b6-9b9c-4994-a7a1-947b6c631be7} - QuickNet BHO

TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File

uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

uRun: [iSUSPM Startup] c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup

uRun: [bredbandsbolaget Servicecenter] "C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\Bredbandsbolaget.exe"

uRun: [Free Download Manager] C:\Program Files (x86)\Free Download Manager\fdm.exe -autorun

uRun: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe

mRun: [HDAudDeck] "C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r

mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

mRun: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start

mRun: [samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [TQ566808] "G:\Setup.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [WinPatrol] "C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe" -expressboot

mRun: [ROC_roc_dec12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

dRun: [bredbandsbolaget Servicecenter] "C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\Bredbandsbolaget.exe"

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BANKID~1.LNK - C:\Program Files (x86)\Personal\bin\Personal.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BTTray.lnk - C:\Program Files (x86)\BTTray.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: Download video with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm

IE: Ladda ner allt med Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlall.htm

IE: Ladda ner markerat med Free Download Mananger - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm

IE: Ladda ner med Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dllink.htm

IE: Skicka bild till &Bluetooth-enhet... - C:\Program Files (x86)\btsendto_ie_ctx.htm

IE: Skicka sida till &Bluetooth-enhet... - C:\Program Files (x86)\btsendto_ie.htm

IE: {53F6FCCD-9E22-4d71-86EA-6E43136192AB}

IE: {925DAB62-F9AC-4221-806A-057BFB1014AA}

IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files (x86)\btsendto_ie.htm

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/sv-se/wlscctrl2.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 192.168.1.254

TCP: Interfaces\{50699D42-3C15-4743-9EBB-83790A8DC9BA} : DhcpNameServer = 195.54.122.199 195.54.122.204

TCP: Interfaces\{C79B9FF2-D717-4EDE-A026-20422E3ECCA7} : DhcpNameServer = 192.168.1.254

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

{18DF081C-E8AD-4283-A596-FA578C2EBDC3}

{3049C3E9-B461-4BC5-8870-4C09146192CA}

{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{9FDDE16B-836F-4806-AB1F-1455CBEFF289}

{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}

{CC59E0F9-7E43-44FA-9FAA-8377850BF205}

{DB87CDE1-EF9C-44EB-A42F-6D0B3C72C516}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7}

TB-X64: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File

mRun-x64: [HDAudDeck] "C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r

mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

mRun-x64: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start

mRun-x64: [samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [TQ566808] "G:\Setup.exe"

mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun-x64: [WinPatrol] "C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe" -expressboot

mRun-x64: [ROC_roc_dec12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

IE-X64: {53F6FCCD-9E22-4d71-86EA-6E43136192AB}

IE-X64: {925DAB62-F9AC-4221-806A-057BFB1014AA}

IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files (x86)\btsendto_ie.htm

Hosts: 127.0.0.1 www.spywareinfo.com

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Hans-Erik\AppData\Roaming\Mozilla\Firefox\Profiles\e2qzvj9j.default\

FF - prefs.js: browser.startup.homepage - www.google.se

FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7B831769d1-f744-4df3-89b3-41e2e043bf17%7D&mid=138415cee0d826824a409f03b216a359-23554e96296f5bae23a1c811714a2b24e60aca57&ds=AVG&v=8.0.0.40&lang=en&pr=fr&d=2011-10-08%2013%3A48%3A43&sap=ku&q=

FF - component: C:\Program Files (x86)\AVG\AVG10\Firefox\components\avgssff.dll

FF - component: C:\Program Files (x86)\AVG\AVG10\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll

FF - component: C:\Program Files (x86)\AVG\AVG10\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll

FF - component: C:\Program Files (x86)\AVG\AVG10\Toolbar\Firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll

FF - component: C:\Program Files (x86)\AVG\AVG10\Toolbar\Firefox\avg@igeared\components\xpavgtbapi.dll

FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll

FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.13\npGoogleOneClick8.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.17\npGoogleOneClick8.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.29\npGoogleOneClick8.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.53\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll

FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Personal\bin\np_prsnl.dll

FF - plugin: C:\Program Files (x86)\Sony\Media Go\npmediago.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll

.

============= SERVICES / DRIVERS ===============

.

R0 AVGIDSEH;AVGIDSEH;C:\Windows\system32\DRIVERS\AVGIDSEH.Sys --> C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [?]

R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]

R0 Lbd;Lbd;C:\Windows\system32\DRIVERS\Lbd.sys --> C:\Windows\system32\DRIVERS\Lbd.sys [?]

R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\system32\Drivers\SmartDefragDriver.sys --> C:\Windows\system32\Drivers\SmartDefragDriver.sys [?]

R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?]

R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]

R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?]

R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2010-2-17 14920]

R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2010-2-17 12360]

R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2010-6-29 128752]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]

R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]

R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-8-2 192776]

R2 FontCache;Windows Font Cache Service;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]

R2 Freemake Improver;Freemake Improver;C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2011-9-27 74752]

R2 FreemakeVideoCapture;FreemakeVideoCapture;C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [2011-12-10 8704]

R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-5-6 2348352]

R2 SSPORT;SSPORT;C:\Windows\System32\drivers\SSPORT.SYS [2011-5-10 11576]

R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys --> C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [?]

R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys --> C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [?]

R3 lvpepf64;Volume Adapter;C:\Windows\system32\DRIVERS\lv302a64.sys --> C:\Windows\system32\DRIVERS\lv302a64.sys [?]

R3 LVUSBS64;Logitech USB Monitor Filter;C:\Windows\system32\drivers\LVUSBS64.sys --> C:\Windows\system32\drivers\LVUSBS64.sys [?]

R3 NPF;WinPcap Packet Driver (NPF);C:\Windows\system32\drivers\NPF.sys --> C:\Windows\system32\drivers\NPF.sys [?]

R3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2011-1-6 155320]

R3 Tdsshbecr;Handelsbanken card reader;C:\Windows\system32\DRIVERS\shbecr.sys --> C:\Windows\system32\DRIVERS\shbecr.sys [?]

R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;"C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe" --> C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [?]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-13 257696]

S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\system32\DRIVERS\ggflt.sys --> C:\Windows\system32\DRIVERS\ggflt.sys [?]

S3 PerfHost;Värd för prestandaräknar-DLL;C:\Windows\SysWOW64\perfhost.exe [2008-1-21 19968]

S3 pwdrvio;pwdrvio;\??\C:\Windows\system32\pwdrvio.sys --> C:\Windows\system32\pwdrvio.sys [?]

S3 pwdspio;pwdspio;\??\C:\Windows\system32\pwdspio.sys --> C:\Windows\system32\pwdspio.sys [?]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-3-18 1020768]

S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-12-3 89920]

S4 IObitUnlocker;IObitUnlocker;C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [2011-7-29 35256]

S4 PuranDefrag;PuranDefrag;"C:\Windows\system32\PuranDefragS.exe" --> C:\Windows\system32\PuranDefragS.exe [?]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

.

=============== File Associations ===============

.

JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*

.

=============== Created Last 30 ================

.

2012-05-13 08:29:25 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{64A011A9-E929-4DD5-AF4B-B1A6C122CBFA}

2012-05-13 08:29:14 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{F3CA0EDE-955D-421F-95E0-577DE07B98EC}

2012-05-12 20:28:50 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{6DF0E081-FB75-4AB4-B10F-92BFF0B1676A}

2012-05-12 20:28:40 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{1EFABB80-B99D-473E-B1D4-24EEBCB5DA2B}

2012-05-12 11:57:00 -------- d-----w- C:\Program Files (x86)\Max Uninstaller

2012-05-12 10:51:58 4699520 ----a-w- C:\Windows\System32\ntoskrnl.exe

2012-05-12 10:51:58 2766848 ----a-w- C:\Windows\System32\win32k.sys

2012-05-12 08:28:17 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{0800F66C-1023-4620-BA91-286FD3432876}

2012-05-12 08:28:07 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{EBE4E1A4-CFC5-412C-9787-18E61B8025F9}

2012-05-12 07:56:18 8769696 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe

2012-05-11 20:27:43 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{C2BE2E6B-5008-480F-B2E3-4205DDD8A6C5}

2012-05-11 20:27:33 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{66ED04A7-8241-499B-96D5-90D0BF29FC80}

2012-05-11 08:27:21 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{59E1BEA6-EC04-407F-A879-5A4B0A08F488}

2012-05-11 08:27:11 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{3B82C0DF-B9CD-4090-BA38-AF01CEB6E7C0}

2012-05-10 20:26:45 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{1DB2062E-1F00-496D-950B-F1DBA015123A}

2012-05-10 20:26:34 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{5A0C0A4B-8165-413E-A35C-1FBF5A33F4AF}

2012-05-10 08:26:23 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{B79415E2-455B-4EFC-B863-6C745E519890}

2012-05-10 08:26:13 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{6DFE39EB-4391-4EEA-A842-B464D32E2628}

2012-05-09 20:25:49 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{00EBA73F-B5FF-431D-B333-3B334F72CA23}

2012-05-09 20:25:39 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{D30EE8AA-E7B3-4EE4-9C32-5521AC897363}

2012-05-09 08:25:27 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{E6CFA517-9775-4406-9575-BC1F68170107}

2012-05-09 08:25:16 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{E4847CEE-B039-4720-8E1B-2CE63049FF0E}

2012-05-08 20:24:53 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{F27BBE1D-16CC-4BD4-895D-0F96ABFE9C20}

2012-05-08 20:24:42 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{088D406B-FBE1-4AD6-BCB8-C649581736AE}

2012-05-08 08:24:29 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{9ABA5746-B269-4842-9957-0239D11EBE0D}

2012-05-08 08:24:19 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{C9075035-CAD4-4190-8AB6-941B211606C6}

2012-05-07 20:23:54 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{B6E86E63-520A-4672-BCFD-631A79E5D219}

2012-05-07 20:23:44 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{52535C6A-3D37-40AF-9F7E-BCD06D0BB65A}

2012-05-07 08:23:32 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{9ECA5C43-0CA2-4A4D-AEB4-C226DD5BF13D}

2012-05-07 08:23:21 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{A983C8F3-A267-4AF0-B07C-2EFAC8061FF1}

2012-05-06 20:22:57 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{63B29EB9-BE33-47C8-BAF1-B3FCECBDAADA}

2012-05-06 20:22:47 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{4DD0367A-EB3C-49F2-BA92-53245C02A796}

2012-05-06 08:22:23 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{517ADE73-2B5C-4568-BB2A-82947CFD1955}

2012-05-06 08:22:01 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{D6F2D105-F3CE-4CC1-896E-8E51A3C9B9C1}

2012-05-05 20:21:38 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{A17D31DF-C88F-441D-B538-84170561893E}

2012-05-05 20:21:17 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{CD22C3CD-6130-4428-ACF0-0BC4518697BF}

2012-05-05 08:21:04 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{BA36E1F9-5443-4D30-B63F-E45188B0DDD3}

2012-05-05 08:20:54 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{7D20C516-7469-4A36-A96C-E415C8B80758}

2012-05-04 20:20:30 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{198C0973-723C-4B79-BE23-0409D2F04CD3}

2012-05-04 20:20:19 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{076FA63B-A543-442B-8983-F1497966886E}

2012-05-04 08:20:06 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{6B1E5F8D-F147-489F-8A07-46EC1AB0FE76}

2012-05-04 08:19:56 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{05A3B03C-F2AE-41B3-AAAE-0804239500BF}

2012-05-03 20:19:32 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{B70E230C-F500-4E08-9DCB-CD47BBA5A467}

2012-05-03 20:19:22 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{D282D7C3-A14F-4F6E-AC37-CA1ABEE23034}

2012-05-03 08:19:09 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{865A28E9-7DDE-44EA-A96B-19C18FA27586}

2012-05-03 08:18:58 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{B58D8951-B46A-4352-B3A7-E630D2431514}

2012-05-02 20:18:33 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{13B394CE-F17E-41C2-8114-2BFD94CE1BD6}

2012-05-02 20:18:22 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{F7C1680F-F5DD-4050-9FB9-38728A0F0FB8}

2012-05-02 08:18:10 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{6562AB47-0215-4EF4-B7DA-44995319C55B}

2012-05-02 08:18:00 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{C72D01AC-0C56-4618-80D3-03D2448C794E}

2012-05-01 20:17:37 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{C20FA90D-5414-4F45-BC2C-DCE696ABFB99}

2012-05-01 20:17:27 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{6A007989-78C8-4121-805C-CE4E43AC5AD5}

2012-05-01 08:17:14 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{896F975A-C335-4874-B7EB-4CACDD0437AE}

2012-05-01 08:17:04 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{2D964EDD-C631-4E8C-99B7-96EB00218D9D}

2012-04-30 20:16:40 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{2B85ADAB-240B-4B48-A80D-9B13F40D5EC4}

2012-04-30 20:16:30 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{82ED73EA-D74F-48CA-A54F-7A930D06B27D}

2012-04-30 08:16:05 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{9B3684E2-BDA3-4163-BEA3-5C6530356B5F}

2012-04-30 08:15:54 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{56870BB1-8916-405D-A169-66BF9EBBDBF6}

2012-04-29 19:56:50 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{FA33D3E7-B3EB-4A51-BA7D-BA4BE396C357}

2012-04-29 19:56:40 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{E9DDF2CF-B8A4-42AA-BBE2-F28CE3693384}

2012-04-29 07:56:28 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{890B820B-6A71-42E0-8AAB-14E0429F5234}

2012-04-29 07:56:18 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{94D3EDB8-C0C1-4594-8CD3-F32375E96203}

2012-04-28 19:55:53 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{2BB9B1A7-AA0F-4461-8164-99C2CAF54F77}

2012-04-28 19:55:42 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{A7CF7CBD-D41F-4D28-A661-9BB98DCBBD00}

2012-04-28 07:55:30 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{814FD50A-758B-442A-A2D7-66F9F05BFC51}

2012-04-28 07:55:20 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{9BF84BF7-FBD4-4B08-B6A4-264275ED4788}

2012-04-27 19:54:57 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{2D185412-B8A2-4E07-9190-D204A8C7C25F}

2012-04-27 19:54:46 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{9BBF42CC-EB27-4BE2-B928-654003607AFB}

2012-04-27 07:54:34 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{FD07AF82-D250-4E6F-8175-8BB049194CB6}

2012-04-27 07:54:24 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{63A510C0-BF72-4F7C-93F3-7937C17A6DF9}

2012-04-26 19:53:59 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{8613FE92-8F75-445D-896D-5BEB4EA65C25}

2012-04-26 19:53:49 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{43CA548D-48FD-4BB6-9AA4-41E8FAEABA8B}

2012-04-26 07:53:38 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{69AD474F-94BB-4BB8-96CB-64934106BE4A}

2012-04-26 07:53:27 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{666D10CF-3CD9-4F4E-BDBD-C14B10F6B6AB}

2012-04-25 19:53:03 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{E37CFA61-EEC7-4EFD-8AC2-BAF0537D163A}

2012-04-25 19:52:53 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{C4DE5BBF-F0EA-4164-BFFB-074D4A9C14D1}

2012-04-25 07:52:42 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{558BAA33-5A90-4FAB-BB31-D08DDAC3763E}

2012-04-25 07:52:31 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{6BE110D5-1D08-4B3F-9FC3-F41A60E1F98C}

2012-04-24 19:52:08 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{D0738A1C-BCA1-496C-9214-C8445858A5D1}

2012-04-24 19:51:57 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{ACC91DD3-B52B-4274-B3A2-55E20FDF8260}

2012-04-24 07:51:45 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{86D7F763-2DAE-476F-81E6-217F77903519}

2012-04-24 07:51:35 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{E975015D-4978-4D4B-A0EF-2CF8D3D5A5E8}

2012-04-23 19:51:11 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{9E2792A4-BD35-41B2-BCF1-B8D56DD0D4F7}

2012-04-23 19:51:01 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{7CF48FC1-1F8C-4C99-906C-8F52FA55963D}

2012-04-23 07:50:49 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{5D765E12-49C0-427B-B7AD-637B0B451AD9}

2012-04-23 07:50:38 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{6E74D420-B67C-4C8B-9BFC-F937358B938E}

2012-04-22 19:50:14 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{D703E09B-F975-4D76-907C-24D9C47A23E4}

2012-04-22 19:50:04 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{34FF3D29-9414-4383-8D25-3FB0EA4B0E14}

2012-04-22 07:49:52 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{C8189A1B-4224-494E-A460-E76CA67407D2}

2012-04-22 07:49:42 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{2D815306-C6F1-471F-8751-89D0F95C4B09}

2012-04-21 19:49:18 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{7F012775-20A2-4382-A6CA-D91B36665E53}

2012-04-21 19:49:08 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{3DEA087E-91B3-475E-ACAE-8F1B47170D1E}

2012-04-21 07:48:56 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{99D2EFAE-A85A-412B-8FA4-BBC572E8A39E}

2012-04-21 07:48:45 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{D9AEC95D-D9DB-47D9-B5B1-F599311A9007}

2012-04-20 19:48:22 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{C0DD5056-C8ED-4055-B320-BA20CDC93FB4}

2012-04-20 19:48:11 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{F92A8FE9-BC77-4426-948F-F8F234C6C30D}

2012-04-20 07:47:59 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{ECCCB304-565C-4C78-8AB4-052B2AC70A59}

2012-04-20 07:47:49 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{AF30F439-26FE-44E7-BC98-BADD04971ECD}

2012-04-19 19:47:25 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{FD50A4FB-3E4B-4928-8042-E4196C5B6C86}

2012-04-19 19:47:15 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{2062F003-21B3-42EC-9770-D210006DCEEB}

2012-04-19 07:47:03 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{75F6A4F9-CA73-499B-925B-FF339034F866}

2012-04-19 07:46:52 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{CD08F3D3-1941-451A-8CA6-D9678417981E}

2012-04-18 19:46:28 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{60645876-D793-474C-9C85-CC6B889FEB38}

2012-04-18 19:46:18 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{55B76D8D-FBD0-4A8B-937C-9A7CD384CF7A}

2012-04-18 07:45:55 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{17BAC3D8-EBC8-4ABF-A30A-ED74D1125B6E}

2012-04-18 07:45:45 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{191BE30A-D20C-406F-A762-CB65E124AF35}

2012-04-17 19:45:19 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{1CBAE266-F7CD-41F0-BD69-0F1626E4A515}

2012-04-17 19:45:09 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{EB969D73-191C-474E-B4D4-F6F3F913F752}

2012-04-17 07:44:56 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{4A3046C0-5622-4189-B4E6-198C5388660A}

2012-04-17 07:44:46 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{248AA213-CE3D-4D84-85AF-E87983EA008A}

2012-04-16 19:44:21 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{CD2753CA-D433-4D6B-9C43-8249CBA249F2}

2012-04-16 19:44:11 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{ECE0AB2C-C858-4DB9-BDBD-9F0776D86FB5}

2012-04-16 07:43:58 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{077DD270-9D0C-4D1B-98EF-730BA8A2446B}

2012-04-16 07:43:48 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{EF90376D-8868-4543-B3F8-5CEFF5ADBF13}

2012-04-15 19:43:23 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{714FACA7-23E4-4EF8-820E-EFF681C85C19}

2012-04-15 19:43:12 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{2E9CE961-B200-4B1D-AA52-9264BCEF2D3C}

2012-04-15 07:42:55 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{E998C284-480A-4692-888E-A02C19A020A4}

2012-04-15 07:42:44 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{CB57AF62-57CC-4642-A47D-7A8D66C76374}

2012-04-14 19:42:20 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{781E678B-3083-4DC4-9804-2222E13D7177}

2012-04-14 19:42:10 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{DD0711FD-CAAC-4876-AEEA-720BA8B7BF6E}

2012-04-14 07:41:57 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{35D5A09B-C03E-4DFC-9A69-16777B733DDB}

2012-04-14 07:41:47 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{81E2AC52-07B5-4B0B-A8AC-D76892BF9450}

2012-04-13 19:41:22 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{1D230197-31E0-4206-BEBA-E7C92B2FF04A}

2012-04-13 19:41:12 -------- d-----w- C:\Users\Hans-Erik\AppData\Local\{E2F5A934-AF5D-405B-A0F8-31E80FFCD839}

.

==================== Find3M ====================

.

2012-05-12 07:56:22 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-05-12 07:56:22 419488 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-04-04 13:56:40 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys

2012-03-30 12:45:03 1422720 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2012-03-29 14:22:51 40448 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys

2012-03-28 07:30:46 22259528 ----a-w- C:\Users\Hans-Erik\vlc-2.0.1-win32.exe

2012-03-20 23:34:30 72576 ----a-w- C:\Windows\System32\drivers\partmgr.sys

2012-03-08 16:50:28 49016 ----a-w- C:\Windows\SysWow64\sirenacm.dll

2012-03-08 16:37:20 302448 ----a-w- C:\Windows\WLXPGSS.SCR

2012-03-02 12:22:02 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-03-01 15:39:45 327680 ----a-w- C:\Windows\System32\d3d10_1core.dll

2012-03-01 15:39:45 196096 ----a-w- C:\Windows\System32\d3d10_1.dll

2012-03-01 14:46:01 219648 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll

2012-03-01 14:46:01 160768 ----a-w- C:\Windows\SysWow64\d3d10_1.dll

2012-02-29 21:00:22 3089728 ----a-w- C:\Windows\System32\nvsvc64.dll

2012-02-29 21:00:09 6074176 ----a-w- C:\Windows\System32\nvcpl.dll

2012-02-29 20:59:47 889664 ----a-w- C:\Windows\System32\nvvsvc.exe

2012-02-29 20:59:47 63296 ----a-w- C:\Windows\System32\nvshext.dll

2012-02-29 20:59:47 2561856 ----a-w- C:\Windows\System32\nvsvcr.dll

2012-02-29 20:59:47 118080 ----a-w- C:\Windows\System32\nvmctray.dll

2012-02-29 15:37:41 5632 ----a-w- C:\Windows\System32\wmi.dll

2012-02-29 15:37:38 219136 ----a-w- C:\Windows\System32\wintrust.dll

2012-02-29 15:35:44 78848 ----a-w- C:\Windows\System32\imagehlp.dll

2012-02-29 15:11:45 5120 ----a-w- C:\Windows\SysWow64\wmi.dll

2012-02-29 15:11:42 172032 ----a-w- C:\Windows\SysWow64\wintrust.dll

2012-02-29 15:09:53 157696 ----a-w- C:\Windows\SysWow64\imagehlp.dll

2012-02-29 14:40:31 2002944 ----a-w- C:\Windows\System32\d3d10warp.dll

2012-02-29 14:09:35 834048 ----a-w- C:\Windows\System32\d2d1.dll

2012-02-29 14:08:47 1172480 ----a-w- C:\Windows\SysWow64\d3d10warp.dll

2012-02-29 14:06:08 1556480 ----a-w- C:\Windows\System32\DWrite.dll

2012-02-29 13:52:46 16384 ----a-w- C:\Windows\System32\drivers\fs_rec.sys

2012-02-29 13:44:50 683008 ----a-w- C:\Windows\SysWow64\d2d1.dll

2012-02-29 13:41:40 1069056 ----a-w- C:\Windows\SysWow64\DWrite.dll

2012-02-28 06:56:48 2311168 ----a-w- C:\Windows\System32\jscript9.dll

2012-02-28 06:49:56 1390080 ----a-w- C:\Windows\System32\wininet.dll

2012-02-28 06:48:57 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl

2012-02-28 06:42:55 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2012-02-28 01:18:55 1799168 ----a-w- C:\Windows\SysWow64\jscript9.dll

2012-02-28 01:11:21 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2012-02-28 01:11:07 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll

2012-02-28 01:03:16 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2009-09-03 12:12:07 75447 ----a-w- C:\Program Files (x86)\Uninstal.exe

2007-02-27 09:04:48 42288 ----a-w- C:\Program Files (x86)\AdminUtils.exe

2007-02-27 09:04:48 14640 ----a-w- C:\Program Files (x86)\BluetoothHeadsetProxy.exe

2007-02-27 09:04:46 102704 ----a-w- C:\Program Files (x86)\BtwHtmlPrint.exe

2007-02-27 09:04:44 982320 ----a-w- C:\Program Files (x86)\BTTray.exe

2007-02-27 09:04:42 2140464 ----a-w- C:\Program Files (x86)\BTStackServer.exe

2007-02-27 09:04:40 227120 ----a-w- C:\Program Files (x86)\btsendto_explorer.exe

2007-02-25 23:57:26 133632 ----a-w- C:\Program Files (x86)\BtBalloon.dll

2007-02-25 21:07:18 321024 ----a-w- C:\Program Files (x86)\btsendto_visio2k.vsl

2003-05-29 10:53:30 91648 ----a-w- C:\Program Files (x86)\gzip.exe

.

============= FINISH: 12:33:07,08 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft® Windows Vista™ Home Premium

Boot Device: \Device\HarddiskVolume1

Install Date: 2009-07-15 14:12:57

System Uptime: 2012-05-13 08:24:03 (4 hours ago)

.

Motherboard: ASUSTeK Computer INC. | | P5QL/EPU

Processor: Intel® Core2 Duo CPU E8400 @ 3.00GHz | LGA775 | 3010/333mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 80 GiB total, 21,45 GiB free.

D: is FIXED (NTFS) - 15 GiB total, 9,955 GiB free.

E: is FIXED (NTFS) - 85 GiB total, 59,173 GiB free.

F: is FIXED (NTFS) - 286 GiB total, 144,036 GiB free.

G: is CDROM ()

H: is Removable

I: is Removable

J: is Removable

K: is Removable

L: is CDROM ()

N: is Removable

.

==== Disabled Device Manager Items =============

.

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

Description: Microsoft 6to4 Adapter

Device ID: ROOT\*6TO4MP\0000

Manufacturer: Microsoft

Name: 6TO4 Adapter

PNP Device ID: ROOT\*6TO4MP\0000

Service: tunnel

.

==== System Restore Points ===================

.

RP1413: 2012-05-10 18:11:20 - Schemalagd kontrollpunkt

RP1414: 2012-05-11 11:38:18 - Schemalagd kontrollpunkt

RP1415: 2012-05-12 - Schemalagd kontrollpunkt

RP1416: 2012-05-12 12:53:53 - Windows Update

RP1417: 2012-05-13 09:20:01 - Schemalagd kontrollpunkt

RP1418: 2012-05-13 10:43:04 - Sony Ericsson PC Suite Drivers

RP1419: 2012-05-13 10:43:48 - Sony PC Companion

.

==== Installed Programs ======================

.

ACDSee 32

Acer Software Suite

ActiveX-kontroll för fjärranslutningar för Windows Live Mesh

Adobe Photoshop 7.0

Adobe Reader X (10.1.3) - Svenska

Adobe Shockwave Player 11.6

AirPlus G DWL-G510

Apple-programstöd

Apple Software Update

ASCOM Platform 6 - SP1

AVG PC Tuneup 2011

AVS Update Manager 1.0

AVS Video Converter 8

AVS4YOU Software Navigator 1.4

BankID säkerhetsprogram 4.18.3

BrickBuster

D3DX10

eReg

ExplorerXP (remove only)

Feedback Tool

Free Download Manager 3.8

Gadwin PrintScreen

Google Updater

GSpot Codec Information Appliance

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

IObit Unlocker

Java Auto Updater

Java 6 Update 31

Junk Mail filter update

K-Lite Codec Pack 2.79 Full

Malwarebytes Anti-Malware version 1.61.0.1400

Max Uninstaller version 2.0

Media Go

Media Go Video Playback Engine 1.64.101.02270

Mesh Runtime

Messenger Companion

Microsoft Office Professional Edition 2003

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft WorldWide Telescope

Microsoft XML Parser

MiniTool Partition Wizard Home Edition 5.2

Mozilla Firefox 9.0.1 (x86 sv-SE)

MSVCRT

MSVCRT_amd64

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

neroxml

Platform

PlayStation®Network Downloader

PlayStation®Store

QuickTime

Realtek 8169 8168 8101E 8102E Ethernet Driver

RealUpgrade 1.1

Samsung SCX-3200 Series

Scan Assistant

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Segoe UI

Servicecenter

Smart Defrag 2

Sony Ericsson Update Engine

Sony PC Companion 2.10.053

Stellarium 0.11.2

swMSM

System Requirements Lab

System Requirements Lab for Intel

TPTEST 5.0.2

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Watson

VC 9.0 Runtime

VIA Plattform för enhetshanterare

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Mail

Windows Live Mesh

Windows Live Messenger

Windows Live Messenger Companion Core

Windows Live Movie Maker

Windows Live OneCare safety scanner

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live Sync

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Live Writer

Windows Live Writer Resources

Windows Media Player Firefox Plugin

WinPcap 4.1.2

Visual C++ 2008 x86 Runtime - (v9.0.30729)

Visual C++ 2008 x86 Runtime - v9.0.30729.01

Visual C++ 8.0 Runtime Setup Package (x64)

Visual Studio 2008 x64 Redistributables

.

==== End Of File ===========================

hoppas bra så!

13 Maj, 2012

Kontrollpanelen - Administrationsverktyg - Tjänster

Leta upp "Freemake Improver" i listan, dubbelklicka och välj Startmetod Inaktiverad. Upprepa med följande:

FreemakeVideoCapture

Lavasoft Ad-Aware Service

Starta om datorn och kolla att capturelibservice.exe är borta.

mRun: [TQ566808] "G:\Setup.exe"

Vad är G: för något?

mSearchAssistant = hxxp://start.facemoods.com/?a=make&s={searchTerms}&f=4

Är det något som du själv har valt i Internet Explorer?

För det verkar inte vara någon bra webbplats enligt http://www.mywot.com/en/scorecard/home.funmoods.com

14 Maj, 2012

hittar i n t e Administrationsverktyg - tjänster vid Kontrollpanelen! Där finns bara System/underhåll, Säkerhet, Närverk/internet, Maskinvara/ljud, Program, Användarkonton, Utseende/anpassning, Klocka/språk och nat. inställningar, Hjälpmedel samt Ytterligare hjälpmedel (typ visa 32-bitar).

"G" tyder för mig på Enhetsbokstav och det har ju min DVD-RW-enhet men det har du säkert sett. Från min kasserade XP-dator försökte min datorhandlare helt nyligen montera in hårddisken (felfri givetvis) i den här Vistan men det gick inte för man sade att moderkortet inte passade med den gamla hårddisken - kanske den ville få "G"?? monteringen gick alltså bra men Vistan kände inte av den gamla hårddisken - detta bara ett "skott i mörkret" - annars vet jag inte vad G avser. "mSearchAssistant = hxxp://start.facemoods.com/?a=make&s={searchTerms}&f=4" känner jag inte heller igen. måste tas bort eftersom den uppenbarligen är skadlig.

14 Maj, 2012

Klicka på "Klassisk vy" i Kontrollpanelen.

Edit: stavfel

14 Maj, 2012

att skifta till Klassisk Vy hade jag ingen aning om - och det lärde jag mig "på köpet"! nu har jag inaktiverat de poster du angav - och - som väntat - blev det förståss bra! tack Cecilia - och Fisherman! vad gäller "G" och Msearchassistant får jag väl luska lite... :thumbsup:

14 Maj, 2012

Vi kan se om det går att fixa med HijackThis. Ladda ner från:

http://www.trendmicro.com/ftp/products/hijackthis/HiJackThis.msi (bästa alternativet)

Installera, starta och välj "Do a system scan and save a logfile", kopiera loggen som kommer upp (inget annat) och klistra in i ditt svar.

17 Maj, 2012

kopia av log här:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 10:18:39, on 2012-05-17

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\Bredbandsbolaget.exe

C:\Program Files (x86)\Free Download Manager\fdm.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files (x86)\AVG\AVG2012\avgtray.exe

C:\Windows\Samsung\PanelMgr\SSMMgr.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\BluetoothHeadsetProxy.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe

C:\Program Files (x86)\Adobe\Photoshop 7.0\Photoshop.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.se/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=make&s={searchTerms}&f=4

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: (no name) - - (no file)

R3 - URLSearchHook: (no name) - {6778613D-616B-4A6C-9856-65DE943CF424} - (no file)

O1 - Hosts: ::1 localhost

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll

O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll

O2 - BHO: Bredbandsbolaget Servicecenter Plugin - {DB87CDE1-EF9C-44EB-A42F-6D0B3C72C516} - C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\IEFixItNowPlugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: QuickNet - {EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7} - (no file)

O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

O4 - HKLM\..\Run: [HDAudDeck] "C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r

O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [samsung PanelMgr] C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [TQ566808] "G:\Setup.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [WinPatrol] "C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe" -expressboot

O4 - HKLM\..\Run: [ROC_roc_dec12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [iSUSPM Startup] c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup

O4 - HKCU\..\Run: [bredbandsbolaget Servicecenter] "C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\Bredbandsbolaget.exe"

O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files (x86)\Free Download Manager\fdm.exe -autorun

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-18\..\Run: [bredbandsbolaget Servicecenter] "C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\Bredbandsbolaget.exe" (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [bredbandsbolaget Servicecenter] "C:\Program Files (x86)\Bredbandsbolaget\Servicecenter\Bredbandsbolaget.exe" (User 'Default user')

O4 - Global Startup: BankID säkerhetsprogram.lnk = C:\Program Files (x86)\Personal\bin\Personal.exe

O4 - Global Startup: BTTray.lnk = ?

O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlfvideo.htm

O8 - Extra context menu item: Ladda ner allt med Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dlall.htm

O8 - Extra context menu item: Ladda ner markerat med Free Download Mananger - file://C:\Program Files (x86)\Free Download Manager\dlselected.htm

O8 - Extra context menu item: Ladda ner med Free Download Manager - file://C:\Program Files (x86)\Free Download Manager\dllink.htm

O8 - Extra context menu item: Skicka bild till &Bluetooth-enhet... - C:\Program Files (x86)\btsendto_ie_ctx.htm

O8 - Extra context menu item: Skicka sida till &Bluetooth-enhet... - C:\Program Files (x86)\btsendto_ie.htm

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)

O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)

O9 - Extra button: Skicka till Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files (x86)\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Skicka till &Bluetooth-enhet... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files (x86)\btsendto_ie.htm

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onecare.live.com/resource/download/scanner/sv-se/wlscctrl2.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files (x86)\bin\btwdins.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: NMIndexingService - Unknown owner - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)

O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 11792 bytes

OBS:när jag körde programmet fick jag svar " for some reason your system denied write access to the Hosts file. säger sedan att för Vista ska jag högerklicka på HighjackThis-ikonen och välja att köra som administratör - men jag får inte fram det alternativet vid högerklickningen så tydligen finns det då nån begränsning i logfilen - men jag har alltid trott att jag är administratör...

17 Maj, 2012

Skanna med HijackThis och bocka för:

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoo...earchTerms}&f=4

R3 - URLSearchHook: (no name) - - (no file)

R3 - URLSearchHook: (no name) - {6778613D-616B-4A6C-9856-65DE943CF424} - (no file)

O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file)

O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file)

Avsluta alla andra program.

Tryck Fix checked.

Starta om datorn.

Jag är tillbaka på söndag.

21 Maj, 2012

efter omstart 17.5 följande - därefter körde jag igen idag med resultat som kommer efter....

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 12:39:57, on 2012-05-17