Just nu i M3-nätverket
Gå till innehåll

Facebook fungerar enbart inte på den här datorn


Mygrapefruit

Rekommendera Poster

Mygrapefruit

Hej hej. Flyttade in i ny lya ca en månad sen och sedan dess har Facebook har hängt sig mer och mer, som att den blev mer "sjuk". Nu kanske jag kommer in 2 ggr om dagen (jag har hemkontor så ni kan förstå hur sällan 2 ggr är under en dag...).

 

Jag har testat att stänga av brandväggen, rensat cache, testat firefox och IE (jag använder Chrome).. inget funkar. :( Det går att logga in fin-fint i andra datorer men inte den här. Vad står på?

 

Tack på förhand

Sanna

 

 

[log]Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 16:02:24, on 2012-06-12

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

 

Running processes:

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Users\Sanna\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\Downloads\HijackThis (1).exe

C:\Windows\SysWOW64\DllHost.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus'>http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus'>http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus'>http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll

O3 - Toolbar: Community Smart Bar - {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll (file missing)

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [Google Update] "C:\Users\Sanna\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent

O4 - HKCU\..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe

O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Sanna\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [chromium] C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window

O4 - Global Startup: BankID Security Application.lnk = C:\Program Files (x86)\Personal\bin\Personal.exe

O4 - Global Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe

O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files (x86)\FlashGet\jc_all.htm

O8 - Extra context menu item: &Download with FlashGet - C:\Program Files (x86)\FlashGet\jc_link.htm

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: Länkade &anteckningar - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: Länkade &anteckningar - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe

O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe

O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)

O9 - Extra 'Tools' menuitem: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: http://software.kuaiche.com

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-tjänst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: dlcc_device - - C:\Windows\system32\dlcccoms.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

O23 - Service: Tjänsten Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Tjänsten Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe

O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 15779 bytes

[/log]

 

edit: här kommer en DDS log också!

[log].

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31

Run by Sanna at 16:19:34 on 2012-06-12

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.46.1033.18.3959.1768 [GMT 2:00]

.

AV: Microsoft Security Essentials *Enabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}

SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Microsoft Security Essentials *Enabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Program Files\Microsoft Security Client\MsMpEng.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files\Tablet\Pen\Pen_TouchService.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\SYSTEM32\WISPTIS.EXE

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Windows\system32\dlcccoms.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Tablet\Pen\Pen_Tablet.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\SYSTEM32\WISPTIS.EXE

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Program Files\Tablet\Pen\Pen_TouchUser.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\Tablet\Pen\Pen_TabletUser.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Users\Sanna\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Program Files\Tablet\Pen\Pen_Tablet.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files\Rainmeter\Rainmeter.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\system32\taskhost.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\taskeng.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uSearch Page = hxxp://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus

uStart Page = hxxp://www.google.com/

uSearch Bar = hxxp://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus

mStart Page = hxxp://www.google.com

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.plusnetwork.com/?sp=lintbie&q={searchTerms}&dp=MessengerPlus

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: FGCatchUrl: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - C:\Program Files (x86)\FlashGet\jccatch.dll

BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Babylon IE plugin: {9cfaccb6-2f3f-4177-94ea-0d2b72d384c1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll

BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: FlashGet GetFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - C:\Program Files (x86)\FlashGet\getflash.dll

TB: Community Smart Bar: {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll

TB: {B760D5A4-8D24-4CB6-942E-D6BB540AD88C} - No File

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [Google Update] "C:\Users\Sanna\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent

uRun: [AdobeBridge]

uRun: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe

uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart

uRun: [spotify Web Helper] "C:\Users\Sanna\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

uRun: [chromium] C:\Users\Sanna\AppData\Local\Google\Chrome\Application\chrome.exe --no-startup-window

mRun: [<NO NAME>]

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe

mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BANKID~1.LNK - C:\Program Files (x86)\Personal\bin\Personal.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\RAINME~1.LNK - C:\Program Files\Rainmeter\Rainmeter.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: &Download All with FlashGet - C:\Program Files (x86)\FlashGet\jc_all.htm

IE: &Download with FlashGet - C:\Program Files (x86)\FlashGet\jc_link.htm

IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105

IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe

IE: {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Trusted Zone: kuaiche.com\software

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab

TCP: DhcpNameServer = 83.255.245.11 193.150.193.150

TCP: Interfaces\{0696EE08-5C0A-4099-94F3-F19E19CE1F64} : DhcpNameServer = 83.255.245.11 193.150.193.150

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: FGCatchUrl: {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll

BHO-X64: flashget urlcatch - No File

BHO-X64: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO-X64: Increase performance and video formats for your HTML5 <video> - No File

BHO-X64: DivX HiQ: {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO-X64: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - No File

BHO-X64: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

BHO-X64: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

BHO-X64: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO-X64: Babylon IE plugin: {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll

BHO-X64: Babylon IE plugin - No File

BHO-X64: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO-X64: SkypeIEPluginBHO - No File

BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL

BHO-X64: URLRedirectionBHO - No File

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO-X64: FlashGet GetFlash Class: {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll

TB-X64: Community Smart Bar: {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll

TB-X64: {B760D5A4-8D24-4CB6-942E-D6BB540AD88C} - No File

mRun-x64: [(Default)]

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe

mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

mRun-x64: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun-x64: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"

mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

IE-X64: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe

IE-X64: {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm

SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Sanna\AppData\Roaming\Mozilla\Firefox\Profiles\8ogqw7kk.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Messenger Plus Smartbar Search

FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/home

FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?babsrc=toolbar2&q=

FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla\Firefox\Profiles\8ogqw7kk.default\extensions\{b760d5a4-8d24-4cb6-942e-d6bb540ad88c}\components\RadioWMPCore.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla\Firefox\Profiles\8ogqw7kk.default\extensions\{b760d5a4-8d24-4cb6-942e-d6bb540ad88c}\components\RadioWMPCoreGecko19.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla\Firefox\Profiles\8ogqw7kk.default\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}\components\FlashgetXpi.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla\Firefox\Profiles\8ogqw7kk.default\extensions\engine@conduit.com\components\RadioWMPCore.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla\Firefox\Profiles\8ogqw7kk.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll

FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL

FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\npjpi160_31.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npnul32.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nprjplug.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

FF - plugin: C:\Program Files (x86)\Personal\bin\np_prsnl.dll

FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll

FF - plugin: C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll

FF - plugin: C:\Program Files (x86)\VOIPlay\npvoiplay.dll

FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll

FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

FF - plugin: C:\Users\Sanna\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: C:\Users\Sanna\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 8\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: British English Dictionary: en-GB@dictionaries.addons.mozilla.org - %profile%\extensions\en-GB@dictionaries.addons.mozilla.org

FF - Ext: Screengrab: {02450954-cdd9-410f-b1da-db804e18c671} - %profile%\extensions\{02450954-cdd9-410f-b1da-db804e18c671}

FF - Ext: flashget3 Extension: {DB9127A2-3381-41ec-82B3-1B6ED4C6F29A} - %profile%\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}

FF - Ext: ChatZilla: {59c81df5-4b7a-477b-912d-4e0fdf64e5f2} - %profile%\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}

FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com

FF - Ext: Messenger Plus Community Toolbar: {b760d5a4-8d24-4cb6-942e-d6bb540ad88c} - %profile%\extensions\{b760d5a4-8d24-4cb6-942e-d6bb540ad88c}

FF - Ext: Browser Companion Helper: bbrs_002@blabbers.com - %profile%\extensions\bbrs_002@blabbers.com

FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video

FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa

.

============= SERVICES / DRIVERS ===============

.

R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-1-20 652872]

R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-3-17 1262400]

R2 OMSI download service;Sony Ericsson OMSI download service;C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2010-12-1 90112]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-5-15 382272]

R2 TabletServicePen;TabletServicePen;C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2010-8-20 5790064]

R2 TouchServicePen;Wacom Consumer Touch Service;C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2010-8-20 487280]

R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-8-19 2320920]

R3 HECIx64;Intel® Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

R3 wacmoumonitor;Wacom Mode Helper;C:\Windows\system32\DRIVERS\wacmoumonitor.sys --> C:\Windows\system32\DRIVERS\wacmoumonitor.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Tjänsten Google Update (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-2-9 136176]

S2 KMService;KMService;C:\Windows\System32\srvany.exe [2011-1-27 8192]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-3 257696]

S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-8-22 1436424]

S3 gupdatem;Tjänsten Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-2-9 136176]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-1-21 51445112]

S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]

S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-3-26 291696]

S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]

S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

S3 OXSDIDRV_x64;Oxford Semi eSATA Filter (x64);C:\Windows\system32\DRIVERS\OXSDIDRV_x64.sys --> C:\Windows\system32\DRIVERS\OXSDIDRV_x64.sys [?]

S3 OXUDIDRV;OXUDIDRV;\??\C:\Windows\system32\Drivers\OXUDIDRV_X64.sys --> C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [?]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]

S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

.

=============== Created Last 30 ================

.

2012-06-11 19:28:18 8955792 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E210E5A3-984E-45C9-A7EF-ECC54B6D7F01}\mpengine.dll

2012-06-10 19:13:41 8955792 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2012-05-15 00:21:50 423744 ----a-w- C:\Windows\SysWow64\nvStreaming.exe

2012-05-14 13:33:25 -------- d-----w- C:\Users\Sanna\AppData\Roaming\uTorrent

.

==================== Find3M ====================

.

2012-05-15 09:29:47 889664 ----a-w- C:\Windows\System32\nvvsvc.exe

2012-05-15 09:29:46 63296 ----a-w- C:\Windows\System32\nvshext.dll

2012-05-15 09:29:46 118080 ----a-w- C:\Windows\System32\nvmctray.dll

2012-05-15 09:29:25 3149632 ----a-w- C:\Windows\System32\nvsvc64.dll

2012-05-15 09:28:42 6151488 ----a-w- C:\Windows\System32\nvcpl.dll

2012-05-05 13:57:26 70304 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-05-05 13:57:26 419488 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-05-05 13:57:12 8744608 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe

2012-04-18 17:08:08 31040 ----a-w- C:\Windows\System32\nvhdap64.dll

2012-04-18 17:08:03 188736 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys

2012-04-18 17:08:02 1451840 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll

2012-03-31 06:05:57 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe

2012-03-31 04:39:37 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2012-03-31 04:39:37 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2012-03-31 03:10:03 3146240 ----a-w- C:\Windows\System32\win32k.sys

2012-03-30 11:35:47 1918320 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2012-03-20 18:44:12 98688 ----a-w- C:\Windows\System32\drivers\NisDrvWFP.sys

2012-03-20 18:44:12 203888 ----a-w- C:\Windows\System32\drivers\MpFilter.sys

2012-03-17 07:58:57 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys

.

============= FINISH: 16:20:42,43 ===============

[/log]

Länk till kommentar
Dela på andra webbplatser

  • Svars 85
  • Skapad
  • Senaste svar

Där finns ett antal toolbars etc i IE och Firefox (Chrome listas inte) som jag inte tycker att du borde ha. Pröva hur Facebook fungerar om du startar IE och Firefox utan tillägg:

Start-menyn - Alla program - Tillbehör - Systemverktyg - Internet Explorer (inga tillägg)

Firefox - Hjälp-menyn - Starta om utan tillägg

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

Där finns ett antal toolbars etc i IE och Firefox (Chrome listas inte) som jag inte tycker att du borde ha. Pröva hur Facebook fungerar om du startar IE och Firefox utan tillägg:

Start-menyn - Alla program - Tillbehör - Systemverktyg - Internet Explorer (inga tillägg)

Firefox - Hjälp-menyn - Starta om utan tillägg

 

Tjo, jag testade att starta IE och firefox utan tillägg. Det funkar fortfarande inte. :/

Länk till kommentar
Dela på andra webbplatser

Ja, då är det ju inte dem i alla fall och något annat skadligt kunde jag inte se i loggarna.

 

Avinstallera:

Babylon

Community Smart Bar

Kolla både i Kontrollpanelen - Program och funktioner och i Firefox - Verktyg - Tillägg (flera flikar).

Ändra också start- och sökmotorer så att de inte pekar på Babylon eller andra suspekta sidor.

När du har gjort det så starta om datorn och kör DDS igen. Klistra in loggen och jag tittar på den i morgon.

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

Ja, då är det ju inte dem i alla fall och något annat skadligt kunde jag inte se i loggarna.

 

Avinstallera:

Babylon

Community Smart Bar

Kolla både i Kontrollpanelen - Program och funktioner och i Firefox - Verktyg - Tillägg (flera flikar).

Ändra också start- och sökmotorer så att de inte pekar på Babylon eller andra suspekta sidor.

När du har gjort det så starta om datorn och kör DDS igen. Klistra in loggen och jag tittar på den i morgon.

 

Gjorde nyss en DDS log och den vart 103 mb stor... :S

 

Dessa två visades upp flera (typ tusen) gånger:

 

 

 

"FF - plugin: C:\Program Files (x86)\Java\jre6\bin\npt.dll"

 

"FF - plugin: C:\Program Files (x86)\Microsoft Silverlight

 

\4.1.10329.0\npctrlui.dll"

 

 

Texten innan duplicata filerna:

[log].

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion:

 

10.4.1

Run by Sanna at 19:09:23 on 2012-06-15

Microsoft Windows 7 Ultimate

 

6.1.7601.1.1252.46.1033.18.3959.1862 [GMT 2:00]

.

AV: Microsoft Security Essentials *Enabled/Updated*

 

{9765EA51-0D3C-7DFB-6091-10E4E1F341F6}

SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-

 

4fae-9E44-DA132C1ACF46}

SP: Microsoft Security Essentials *Enabled/Updated*

 

{2C040BB5-2B06-7275-5A21-2B969A740B4B}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision

 

\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Program Files\Microsoft Security Client\MsMpEng.exe

C:\Windows\System32\svchost.exe -k

 

LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k

 

LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files\Tablet\Pen\Pen_TouchService.exe

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\SYSTEM32\WISPTIS.EXE

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM

 

\1.0\armsvc.exe

C:\Program Files (x86)\Common Files\Apple\Mobile Device

 

Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Windows\system32\dlcccoms.exe

C:\Program Files (x86)\Intel\Intel® Management Engine

 

Components\LMS\LMS.exe

C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC

 

Suite\SupServ.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Tablet\Pen\Pen_Tablet.exe

C:\Windows\system32\svchost.exe -k

 

NetworkServiceNetworkRestricted

C:\Windows\SYSTEM32\WISPTIS.EXE

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Program Files\Tablet\Pen\Pen_TouchUser.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Tablet\Pen\Pen_TabletUser.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Users\Sanna\AppData\Roaming\Spotify\Data

 

\SpotifyWebHelper.exe

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files (x86)\Yuna Software\Messenger Plus!

 

\PlusService.exe

C:\Program Files\Rainmeter\Rainmeter.exe

C:\Program Files\Tablet\Pen\Pen_Tablet.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Epson Software\Event Manager

 

\EEventManager.exe

C:\Program Files (x86)\Common Files\Java\Java Update

 

\jusched.exe

C:\Windows\system32\svchost.exe -k

 

LocalServiceAndNoImpersonation

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Google\Drive\googledrivesync.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\Malwarebytes' Anti-Malware

 

\mbamservice.exe

C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update

 

Core\daemonu.exe

C:\Program Files (x86)\Intel\Intel® Management Engine

 

Components\UNS\UNS.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Users\Sanna\AppData\Local\Google\Chrome\Application

 

\chrome.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uSearch Page = hxxp://www.plusnetwork.com/?sp=lintbie&q=

 

{searchTerms}&dp=MessengerPlus

uStart Page = hxxp://www.google.com/

uSearch Bar = hxxp://www.plusnetwork.com/?sp=lintbie&q=

 

{searchTerms}&dp=MessengerPlus

mStart Page = hxxp://www.google.com

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.plusnetwork.com/?

 

sp=lintbie&q={searchTerms}&dp=MessengerPlus

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-

 

fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe

 

\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: FGCatchUrl: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} -

 

C:\Program Files (x86)\FlashGet\jccatch.dll

BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-

 

46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX

 

Plus Web Player\npdivx32.dll

BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - C:

 

\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-

 

0bbc1d38a37e} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-

 

b6eb-d4daf1d92d43} - C:\Program Files (x86)\Oracle\JavaFX

 

2.1 Runtime\bin\ssv.dll

BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-

 

8ecc-5164760863c6} - C:\Program Files (x86)\Common Files

 

\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Babylon IE plugin: {9cfaccb6-2f3f-4177-94ea-

 

0d2b72d384c1} - C:\Program Files (x86)\Babylon\Babylon-Pro

 

\Utils\BabylonIEPI.dll

BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497}

 

- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer

 

\skypeieplugin.dll

BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-

 

ba22-42b3008e02ff} - C:

 

\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-

 

bc74-9c25c1c588a9} - C:\Program Files (x86)\Oracle\JavaFX

 

2.1 Runtime\bin\jp2ssv.dll

BHO: FlashGet GetFlash Class: {f156768e-81ef-470c-9057-

 

481ba8380dba} - C:\Program Files (x86)\FlashGet

 

\getflash.dll

TB: Community Smart Bar: {ae07101b-46d4-4a98-af68-

 

0333ea26e113} - mscoree.dll

TB: {B760D5A4-8D24-4CB6-942E-D6BB540AD88C} - No File

uRun: [sidebar] C:\Program Files\Windows Sidebar

 

\sidebar.exe /autoRun

uRun: [Google Update] "C:\Users\Sanna\AppData\Local\Google

 

\Update\GoogleUpdate.exe" /c

uRun: [EA Core] "C:\Program Files (x86)\Electronic Arts

 

\EADM\Core.exe" -silent

uRun: [AdobeBridge]

uRun: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe

uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google

 

\Drive\googledrivesync.exe" /autostart

uRun: [spotify Web Helper] "C:\Users\Sanna\AppData\Roaming

 

\Spotify\Data\SpotifyWebHelper.exe"

uRun: [chromium] C:\Users\Sanna\AppData\Local\Google

 

\Chrome\Application\chrome.exe --no-startup-window

mRun: [<NO NAME>]

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files

 

\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [PlusService] C:\Program Files (x86)\Yuna Software

 

\Messenger Plus!\PlusService.exe

mRun: [AdobeCS5ServiceManager] "C:\Program Files

 

(x86)\Common Files\Adobe\CS5ServiceManager

 

\CS5ServiceManager.exe" -launchedbylogin

mRun: [switchBoard] C:\Program Files (x86)\Common Files

 

\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [APSDaemon] "C:\Program Files (x86)\Common Files

 

\Apple\Apple Application Support\APSDaemon.exe"

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes

 

\iTunesHelper.exe"

mRun: [EEventManager] "C:\Program Files (x86)\Epson

 

Software\Event Manager\EEventManager.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime

 

\QTTask.exe" -atboottime

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files

 

(x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common

 

Files\Java\Java Update\jusched.exe"

StartupFolder: C:\PROGRA~3\MICROS~1\Windows

 

\STARTM~1\Programs\Startup\BANKID~1.LNK - C:\Program Files

 

(x86)\Personal\bin\Personal.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows

 

\STARTM~1\Programs\Startup\RAINME~1.LNK - C:\Program Files

 

\Rainmeter\Rainmeter.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: &Download All with FlashGet - C:\Program Files

 

(x86)\FlashGet\jc_all.htm

IE: &Download with FlashGet - C:\Program Files

 

(x86)\FlashGet\jc_link.htm

IE: E&xport to Microsoft Excel - C:

 

\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - C:

 

\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105

IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program

 

Files (x86)\FlashGet\FlashGet.exe

IE: {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://C:

 

\Program Files (x86)\Babylon\Babylon-Pro\Utils

 

\BabylonIEPI.dll/ActionTU.htm

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-

 

E1D6-4330-914C-F5F514E3486C} - C:\Program Files

 

(x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-

 

B694-4AE6-AB38-5D6374584B52} - C:\Program Files

 

(x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-

 

E7FF-479B-8935-AEC46303B9E5} - C:\Program Files

 

(x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Trusted Zone: kuaiche.com\software

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -

 

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-

 

windows-i586.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} -

 

hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient

 

.cab56907.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} -

 

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-

 

windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -

 

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-

 

windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} -

 

hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/

 

swflash.cab

DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} -

 

hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.c

 

ab

TCP: DhcpNameServer = 83.255.245.11 193.150.193.150

TCP: Interfaces\{0696EE08-5C0A-4099-94F3-F19E19CE1F64} :

 

DhcpNameServer = 83.255.245.11 193.150.193.150

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-

 

07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars

 

\Internet Explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}

 

- C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-

 

b3ba-52453494e6cd} - C:

 

\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-

 

FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe

 

\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: FGCatchUrl: {2F364306-AA45-47B5-9F9D-39A8B94E7EF7}

 

- C:\Program Files (x86)\FlashGet\jccatch.dll

BHO-X64: flashget urlcatch - No File

BHO-X64: DivX Plus Web Player HTML5 <video>: {326E768D-

 

4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX

 

\DivX Plus Web Player\npdivx32.dll

BHO-X64: Increase performance and video formats for

 

your HTML5 <video> - No File

BHO-X64: DivX HiQ: {593DDEC6-7468-4cdd-90E1-42DADAA222E9} -

 

C:\Program Files (x86)\DivX\DivX Plus Web Player

 

\npdivx32.dll

BHO-X64: Use the DivX Plus Web Player to watch web

 

videos with less interruptions and smoother playback on

 

supported sites - No File

BHO-X64: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-

 

B7F9-0BBC1D38A37E} - C:

 

\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

BHO-X64: Java Plug-In SSV Helper: {761497BB-D6F0-462C-

 

B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX

 

2.1 Runtime\bin\ssv.dll

BHO-X64: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-

 

8ECC-5164760863C6} - C:\Program Files (x86)\Common Files

 

\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO-X64: Babylon IE plugin: {9CFACCB6-2F3F-4177-94EA-

 

0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro

 

\Utils\BabylonIEPI.dll

BHO-X64: Babylon IE plugin - No File

BHO-X64: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-

 

F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars

 

\Internet Explorer\skypeieplugin.dll

BHO-X64: SkypeIEPluginBHO - No File

BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-

 

4959-BA22-42B3008E02FF} - C:

 

\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL

BHO-X64: URLRedirectionBHO - No File

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-

 

435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle

 

\JavaFX 2.1 Runtime\bin\jp2ssv.dll

BHO-X64: FlashGet GetFlash Class: {F156768E-81EF-470C-9057

 

-481BA8380DBA} - C:\Program Files (x86)\FlashGet

 

\getflash.dll

TB-X64: Community Smart Bar: {ae07101b-46d4-4a98-af68-

 

0333ea26e113} - mscoree.dll

TB-X64: {B760D5A4-8D24-4CB6-942E-D6BB540AD88C} - No File

mRun-x64: [(Default)]

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files

 

\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [PlusService] C:\Program Files (x86)\Yuna

 

Software\Messenger Plus!\PlusService.exe

mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files

 

(x86)\Common Files\Adobe\CS5ServiceManager

 

\CS5ServiceManager.exe" -launchedbylogin

mRun-x64: [switchBoard] C:\Program Files (x86)\Common

 

Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files

 

\Apple\Apple Application Support\APSDaemon.exe"

mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes

 

\iTunesHelper.exe"

mRun-x64: [EEventManager] "C:\Program Files (x86)\Epson

 

Software\Event Manager\EEventManager.exe"

mRun-x64: [QuickTime Task] "C:\Program Files

 

(x86)\QuickTime\QTTask.exe" -atboottime

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files

 

(x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun-x64: [sunJavaUpdateSched] "C:\Program Files

 

(x86)\Common Files\Java\Java Update\jusched.exe"

IE-X64: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program

 

Files (x86)\FlashGet\FlashGet.exe

IE-X64: {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://C:

 

\Program Files (x86)\Babylon\Babylon-Pro\Utils

 

\BabylonIEPI.dll/ActionTU.htm

SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-

 

4420-B3BA-52453494E6CD} - C:

 

\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Sanna\AppData\Roaming\Mozilla

 

\Firefox\Profiles\8ogqw7kk.default\

FF - component: C:\Program Files (x86)\Mozilla Firefox

 

\extensions\{AB2CE124-6272-4b12-94A9-

 

7303C7397BD1}\components\SkypeFfComponent.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla

 

\Firefox\Profiles\8ogqw7kk.default\extensions\{b760d5a4-

 

8d24-4cb6-942e-d6bb540ad88c}\components\RadioWMPCore.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla

 

\Firefox\Profiles\8ogqw7kk.default\extensions\{b760d5a4-

 

8d24-4cb6-942e-d6bb540ad88c}\components

 

\RadioWMPCoreGecko19.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla

 

\Firefox\Profiles\8ogqw7kk.default\extensions\{DB9127A2-

 

3381-41ec-82B3-1B6ED4C6F29A}\components\FlashgetXpi.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla

 

\Firefox\Profiles\8ogqw7kk.default\extensions

 

\engine@conduit.com\components\RadioWMPCore.dll

FF - component: C:\Users\Sanna\AppData\Roaming\Mozilla

 

\Firefox\Profiles\8ogqw7kk.default\extensions

 

\engine@conduit.com\components\RadioWMPCoreGecko19.dll

FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL

FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Reader

 

10.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper

 

\npovshelper.dll

FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web

 

Player\npdivx32.dll

FF - plugin: C:\Program Files (x86)\Google\Google Earth

 

\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update

 

\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin

 

\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin

 

\npjpi160_31.dll[/log]

 

Texten mellan de två duplicates:

 

"FF - plugin: C:\Program Files (x86)\Java\jre6\bin

 

\plugin2\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin

 

\plugin2\npjp2.dll"

 

 

 

Och texten under:

 

[log]FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\nppl3260.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\npqtplugin.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\npqtplugin2.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\npqtplugin3.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\npqtplugin4.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\npqtplugin5.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\npqtplugin6.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\npqtplugin7.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\nprjplug.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox 4.0

 

Beta 8\plugins\nprpjplug.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D

 

Vision\npnv3dv.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D

 

Vision\npnv3dvstreaming.dll

FF - plugin: C:\Program Files (x86)\Pando Networks\Media

 

Booster\npPandoWebPlugin.dll

FF - plugin: C:\Program Files (x86)\Personal\bin

 

\np_prsnl.dll

FF - plugin: C:\Program Files (x86)\TabletPlugins

 

\npwacom.dll

FF - plugin: C:\Program Files (x86)\Viewpoint\Viewpoint

 

Experience Technology\npViewpoint.dll

FF - plugin: C:\Program Files (x86)\VOIPlay\npvoiplay.dll

FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll

FF - plugin: C:\ProgramData\Real\RealPlayer

 

\BrowserRecordPlugin\MozillaPlugins

 

\nprpchromebrowserrecordext.dll

FF - plugin: C:\ProgramData\Real\RealPlayer

 

\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

FF - plugin: C:\Users\Sanna\AppData\Local\Google\Update

 

\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: C:\Users\Sanna\AppData\LocalLow\Unity

 

\WebPlayer\loader\npUnity3D32.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash

 

\NPSWF32_11_2_202_235.dll

.

============= SERVICES / DRIVERS ===============

.

R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows

 

\system32\DRIVERS\MpFilter.sys --> C:\Windows

 

\system32\DRIVERS\MpFilter.sys [?]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program

 

Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3

 

63928]

R2 MBAMService;MBAMService;C:\Program Files

 

(x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-1-20

 

652872]

R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program

 

Files (x86)\NVIDIA Corporation\NVIDIA Update Core

 

\daemonu.exe [2012-3-17 1262400]

R2 OMSI download service;Sony Ericsson OMSI download

 

service;C:\Program Files (x86)\Sony Ericsson\Sony Ericsson

 

PC Suite\SupServ.exe [2010-12-1 90112]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:

 

\Program Files (x86)\NVIDIA Corporation\3D Vision

 

\nvSCPAPISvr.exe [2012-5-15 382272]

R2 TabletServicePen;TabletServicePen;C:\Program Files

 

\Tablet\Pen\Pen_Tablet.exe [2010-8-20 5790064]

R2 TouchServicePen;Wacom Consumer Touch Service;C:\Program

 

Files\Tablet\Pen\Pen_TouchService.exe [2010-8-20 487280]

R2 UNS;Intel® Management & Security Application User

 

Notification Service;C:\Program Files (x86)\Intel\Intel®

 

Management Engine Components\UNS\UNS.exe [2010-8-19

 

2320920]

R3 HECIx64;Intel® Management Engine Interface;C:\Windows

 

\system32\DRIVERS\HECIx64.sys --> C:\Windows

 

\system32\DRIVERS\HECIx64.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows

 

\system32\drivers\mbam.sys --> C:\Windows\system32\drivers

 

\mbam.sys [?]

R3 NVHDA;Service for NVIDIA High Definition Audio

 

Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:

 

\Windows\system32\drivers\nvhda64v.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows

 

\system32\DRIVERS\Rt64win7.sys --> C:\Windows

 

\system32\DRIVERS\Rt64win7.sys [?]

R3 wacmoumonitor;Wacom Mode Helper;C:\Windows

 

\system32\DRIVERS\wacmoumonitor.sys --> C:\Windows

 

\system32\DRIVERS\wacmoumonitor.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework

 

NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework

 

\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework

 

NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET

 

\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Tjänsten Google Update (gupdate);C:\Program

 

Files (x86)\Google\Update\GoogleUpdate.exe [2012-2-9

 

136176]

S2 KMService;KMService;C:\Windows\System32\srvany.exe

 

[2011-1-27 8192]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update

 

Service;C:\Windows\SysWOW64\Macromed\Flash

 

\FlashPlayerUpdateService.exe [2012-4-3 257696]

S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service

 

64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet

 

Publisher\FNPLicensingService64.exe [2010-8-22 1436424]

S3 gupdatem;Tjänsten Google Update (gupdatem);C:\Program

 

Files (x86)\Google\Update\GoogleUpdate.exe [2012-2-9

 

136176]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft

 

SharePoint Workspace Audit Service;C:\Program Files

 

\Microsoft Office\Office14\GROOVE.EXE [2010-1-21 51445112]

S3 MozillaMaintenance;Mozilla Maintenance Service;C:

 

\Program Files (x86)\Mozilla Maintenance Service

 

\maintenanceservice.exe [2012-6-12 113120]

S3 NisDrv;Microsoft Network Inspection System;C:\Windows

 

\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows

 

\system32\DRIVERS\NisDrvWFP.sys [?]

S3 NisSrv;Microsoft Network Inspection;C:\Program Files

 

\Microsoft Security Client\NisSrv.exe [2012-3-26 291696]

S3 ose64;Office 64 Source Engine;C:\Program Files\Common

 

Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9

 

174440]

S3 osppsvc;Office Software Protection Platform;C:\Program

 

Files\Common Files\Microsoft Shared

 

\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9

 

4925184]

S3 OXSDIDRV_x64;Oxford Semi eSATA Filter (x64);C:\Windows

 

\system32\DRIVERS\OXSDIDRV_x64.sys --> C:\Windows

 

\system32\DRIVERS\OXSDIDRV_x64.sys [?]

S3 OXUDIDRV;OXUDIDRV;\??\C:\Windows\system32\Drivers

 

\OXUDIDRV_X64.sys --> C:\Windows\system32\Drivers

 

\OXUDIDRV_X64.sys [?]

S3 RdpVideoMiniport;Remote Desktop Video Miniport

 

Driver;C:\Windows\system32\drivers\rdpvideominiport.sys -->

 

C:\Windows\system32\drivers\rdpvideominiport.sys [?]

S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common

 

Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers

 

\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys

 

[?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:

 

\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows

 

\system32\Wat\WatAdminSvc.exe [?]

.

=============== Created Last 30 ================

.

2012-06-14 16:59:09 8955792 ----a-w- C:

 

\ProgramData\Microsoft\Microsoft Antimalware\Definition

 

Updates\{B7012345-BDF4-4520-8CAB-32DFC140F35B}\mpengine.dll

2012-06-13 20:56:20 9216 ----a-w- C:\Windows

 

\System32\rdrmemptylst.exe

2012-06-13 20:56:20 77312 ----a-w- C:\Windows

 

\System32\rdpwsx.dll

2012-06-13 20:56:20 149504 ----a-w- C:\Windows

 

\System32\rdpcorekmts.dll

2012-06-13 20:56:12 209920 ----a-w- C:\Windows

 

\System32\profsvc.dll

2012-06-13 20:56:10 5559664 ----a-w- C:\Windows

 

\System32\ntoskrnl.exe

2012-06-13 20:56:09 3913072 ----a-w- C:\Windows

 

\SysWow64\ntoskrnl.exe

2012-06-13 20:56:08 3968368 ----a-w- C:\Windows

 

\SysWow64\ntkrnlpa.exe

2012-06-13 20:56:06 3146752 ----a-w- C:\Windows

 

\System32\win32k.sys

2012-06-13 20:56:05 210944 ----a-w- C:\Windows

 

\System32\drivers\rdpwd.sys

2012-06-13 20:56:05 1112064 ----a-w- C:\Windows

 

\System32\rdpcorets.dll

2012-06-13 20:56:04 3216384 ----a-w- C:\Windows

 

\System32\msi.dll

2012-06-13 20:56:03 2342400 ----a-w- C:\Windows

 

\SysWow64\msi.dll

2012-06-13 20:55:58 1462272 ----a-w- C:\Windows

 

\System32\crypt32.dll

2012-06-13 20:55:57 184320 ----a-w- C:\Windows

 

\System32\cryptsvc.dll

2012-06-13 20:55:57 140288 ----a-w- C:\Windows

 

\SysWow64\cryptsvc.dll

2012-06-13 20:55:57 140288 ----a-w- C:\Windows

 

\System32\cryptnet.dll

2012-06-13 20:55:57 1158656 ----a-w- C:\Windows

 

\SysWow64\crypt32.dll

2012-06-13 20:55:57 103936 ----a-w- C:\Windows

 

\SysWow64\cryptnet.dll

2012-06-13 07:36:52 927800 ------w- C:

 

\ProgramData\Microsoft\Microsoft Antimalware\Definition

 

Updates\{124E5BBF-6FC6-44BD-97BD-

 

C01AEF087CAF}\gapaengine.dll

2012-06-13 07:36:26 8955792 ------w- C:

 

\ProgramData\Microsoft\Microsoft Antimalware\Definition

 

Updates\Backup\mpengine.dll

2012-06-12 17:38:16 -------- d-----w- C:

 

\Program Files (x86)\Oracle

2012-06-12 17:37:33 772504 ----a-w- C:\Windows

 

\SysWow64\npDeployJava1.dll

2012-05-23 11:53:41 8105280 ----a-w- C:\Windows

 

\SysWow64\nvwgf2um.dll

.

==================== Find3M ====================

.

2012-05-18 02:06:48 2311680 ----a-w- C:\Windows

 

\System32\jscript9.dll

2012-05-18 01:59:14 1392128 ----a-w- C:\Windows

 

\System32\wininet.dll

2012-05-18 01:58:39 1494528 ----a-w- C:\Windows

 

\System32\inetcpl.cpl

2012-05-18 01:55:22 173056 ----a-w- C:\Windows

 

\System32\ieUnatt.exe

2012-05-18 01:51:30 2382848 ----a-w- C:\Windows

 

\System32\mshtml.tlb

2012-05-17 22:45:37 1800192 ----a-w- C:\Windows

 

\SysWow64\jscript9.dll

2012-05-17 22:35:47 1129472 ----a-w- C:\Windows

 

\SysWow64\wininet.dll

2012-05-17 22:35:39 1427968 ----a-w- C:\Windows

 

\SysWow64\inetcpl.cpl

2012-05-17 22:29:45 142848 ----a-w- C:\Windows

 

\SysWow64\ieUnatt.exe

2012-05-17 22:24:45 2382848 ----a-w- C:\Windows

 

\SysWow64\mshtml.tlb

2012-05-15 09:29:47 889664 ----a-w- C:\Windows

 

\System32\nvvsvc.exe

2012-05-15 09:29:46 63296 ----a-w- C:\Windows

 

\System32\nvshext.dll

2012-05-15 09:29:46 118080 ----a-w- C:\Windows

 

\System32\nvmctray.dll

2012-05-15 09:29:25 3149632 ----a-w- C:\Windows

 

\System32\nvsvc64.dll

2012-05-15 09:28:42 6151488 ----a-w- C:\Windows

 

\System32\nvcpl.dll

2012-05-15 00:21:50 423744 ----a-w- C:\Windows

 

\SysWow64\nvStreaming.exe

2012-05-05 13:57:26 70304 ----a-w- C:\Windows

 

\SysWow64\FlashPlayerCPLApp.cpl

2012-05-05 13:57:26 419488 ----a-w- C:\Windows

 

\SysWow64\FlashPlayerApp.exe

2012-05-05 13:57:12 8744608 ----a-w- C:\Windows

 

\SysWow64\FlashPlayerInstaller.exe

2012-04-18 17:08:08 31040 ----a-w- C:\Windows

 

\System32\nvhdap64.dll

2012-04-18 17:08:03 188736 ----a-w- C:\Windows

 

\System32\drivers\nvhda64v.sys

2012-04-18 17:08:02 1451840 ----a-w- C:\Windows

 

\System32\nvhdagenco6420103.dll

2012-04-04 16:47:02 687504 ----a-w- C:\Windows

 

\SysWow64\deployJava1.dll

2012-03-30 11:35:47 1918320 ----a-w- C:\Windows

 

\System32\drivers\tcpip.sys

2012-03-20 18:44:12 98688 ----a-w- C:\Windows

 

\System32\drivers\NisDrvWFP.sys

2012-03-20 18:44:12 203888 ----a-w- C:\Windows

 

\System32\drivers\MpFilter.sys[/log]

Länk till kommentar
Dela på andra webbplatser

Oj då, undrar vad som hänt då. Kolla att det ser normalt ut i Firefox - Verktyg - Tillägg - Insticksmoduler.

 

Finns kvar rester efter de där två tilläggen bland dem som är installerade i Internet Explorer.

Skanna med HijackThis och bocka för:

 

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)

O3 - Toolbar: Community Smart Bar - {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll (file missing)

 

Avsluta alla andra program.

Tryck Fix checked.

 

Starta om datorn.

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

Oj då, undrar vad som hänt då. Kolla att det ser normalt ut i Firefox - Verktyg - Tillägg - Insticksmoduler.

 

Finns kvar rester efter de där två tilläggen bland dem som är installerade i Internet Explorer.

Skanna med HijackThis och bocka för:

 

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)

O3 - Toolbar: Community Smart Bar - {ae07101b-46d4-4a98-af68-0333ea26e113} - mscoree.dll (file missing)

 

Avsluta alla andra program.

Tryck Fix checked.

 

Starta om datorn.

 

Startat om. Så här ser det ut i Firefox: http://i.imgur.com/SXzXE.jpg

 

 

PS verkar vara flera sidor som är blockade, kommer inte in på regeringen.se eller ud.se. Har inte surfat så mycket så det är säkert fler sidor än dessa tre som inte funkar.

 

PS 2 Vill bara klargöra att när jag flyttade in i lyan fixade jag nytt modem/abonnemang från Comhem, en Netgear CG3100 är det om det hjälper. :)

Länk till kommentar
Dela på andra webbplatser

Listan med Firefox-insticksmodulerna ser ju normal ut. Det var ju bra det.

 

Starta Kommandotolken (Command Prompt):

Start-menyn - Alla program - Tillbehör

Skriv in kommandot:

 

ipconfig /all

 

Kopiera resultatet och klistra in i ditt svar.

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

Listan med Firefox-insticksmodulerna ser ju normal ut. Det var ju bra det.

 

Starta Kommandotolken (Command Prompt):

Start-menyn - Alla program - Tillbehör

Skriv in kommandot:

 

ipconfig /all

 

Kopiera resultatet och klistra in i ditt svar.

[log]Microsoft Windows [Version 6.1.7601]

Copyright © 2009 Microsoft Corporation. All rights reserved.

 

C:\Windows\system32>ipconfig /all

 

Windows IP Configuration

 

Host Name . . . . . . . . . . . . : Bob

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

 

Ethernet adapter Local Area Connection:

 

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller

Physical Address. . . . . . . . . : 40-61-86-C1-95-D7

DHCP Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IPv4 Address. . . . . . . . . . . : 192.168.0.10(Preferred)

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Lease Obtained. . . . . . . . . . : den 16 juni 2012 09:53:31

Lease Expires . . . . . . . . . . : den 16 juni 2012 10:54:32

Default Gateway . . . . . . . . . : 192.168.0.1

DHCP Server . . . . . . . . . . . : 192.168.0.1

DNS Servers . . . . . . . . . . . : 83.255.245.11

193.150.193.150

NetBIOS over Tcpip. . . . . . . . : Enabled

 

Tunnel adapter isatap.{0696EE08-5C0A-4099-94F3-F19E19CE1F64}:

 

Media State . . . . . . . . . . . : Media disconnected

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Microsoft ISATAP Adapter

Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

DHCP Enabled. . . . . . . . . . . : No

Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter Local Area Connection* 11:

 

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter

Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

DHCP Enabled. . . . . . . . . . . : No

Autoconfiguration Enabled . . . . : Yes

IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:7e:27e6:3f57:fff5(Prefer

red)

Link-local IPv6 Address . . . . . : fe80::7e:27e6:3f57:fff5%10(Preferred)

Default Gateway . . . . . . . . . : ::

NetBIOS over Tcpip. . . . . . . . : Disabled

 

C:\Windows\system32>[/log]

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

Du skulle kunna se om det går bättre om du byter ut dina DNS-servrar mot andra, t ex OpenDNS: https://store.opendns.com/setup/operatingsystem/windows-7

Skriv ner vad du har för inställning nu så att du kan byta tillbaks om du vill/behöver.

 

"Optain DNS server automatically" var standard, ändrade till sidans adressföreslag, fungerade inte. :l Bytte tillbaka.

 

Btw så var Ip 6 avbockad ovanför Ip 4, ska den vara det?

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

I Windows 7 bör IP V6 vara aktiverad, så pröva med att ändra.

 

HAHA DET FUNKADE. VAR DET SÅ ENKELT!?

 

Fast det vore typiskt om Facebook valde att fungera PRECIS nu, så jag återkommer om någon timme ifall det slutar fungera igen. :S

 

Eventuellt många tack!!

 

Om det var Ip6 som var felet, tror du du kan förklara för mig i enkla termer varför facebook inte funkar med Ip6 avbockat? Har ingen aning om vad den gör.

Länk till kommentar
Dela på andra webbplatser

Ledsen, men jag har ingen aning om hur IP v6 kan påverka Facebook. IP är ett nätverksprotokoll och version 4 och 6 är de två vanliga standarderna för det. V4 är det vanliga på internet idag, medan i framtiden kommer det att bli allt mer v6. Däremot så använder Windows 7 helst v6 för funktioner i lokala nätverk, t ex när man har flera datorer hemma som är hopkopplade i en hemgrupp.

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

Ledsen, men jag har ingen aning om hur IP v6 kan påverka Facebook. IP är ett nätverksprotokoll och version 4 och 6 är de två vanliga standarderna för det. V4 är det vanliga på internet idag, medan i framtiden kommer det att bli allt mer v6. Däremot så använder Windows 7 helst v6 för funktioner i lokala nätverk, t ex när man har flera datorer hemma som är hopkopplade i en hemgrupp.

 

I see!

 

Facebook har funkat dem närmaste timmarna iallafall, så tusen tack!

Länk till kommentar
Dela på andra webbplatser

HAHA DET FUNKADE. VAR DET SÅ ENKELT!?

 

Fast det vore typiskt om Facebook valde att fungera PRECIS nu, så jag återkommer om någon timme ifall det slutar fungera igen. :S

 

Eventuellt många tack!!

 

Om det var Ip6 som var felet, tror du du kan förklara för mig i enkla termer varför facebook inte funkar med Ip6 avbockat? Har ingen aning om vad den gör.

Testa bocka ur ip v6 igen så ser du ju om det åter blir fel eller ej, kan ju vara värdefull info för andra.

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

Testa bocka i ip v6 igen så ser du ju om det åter blir fel eller ej, kan ju vara värdefull info för andra.

 

Nvm, vaknade imorse med att Facebook inte funkade. Ip v6 forfarande förbockat. Tillbaka till ruta ett. :D

Så vad kan vara fel?

Länk till kommentar
Dela på andra webbplatser

Läge att lära känna grannarna för att höra om de har liknande problem med sina Comhem-abonnemang kanske.

Länk till kommentar
Dela på andra webbplatser

Kamerafientlig

Jag har samma problem, har haft problemet i kanske två veckor. Har också Comhem, det verkar inte vara fel på DNS eller webläsaren då jag har testat att gå genom facebooks IP-nummer och testat flera olika webläsare. Börjar bli riktigt irriterande. Ibland fungerar facebook precis som vanligt, ibland får jag inte upp sidan alls, ibland får jag upp sidan men kan inte logga in, ibland kan jag logga in men snart så börjar det strula. Tacksam för hjälp jag med.

Länk till kommentar
Dela på andra webbplatser

Kamerafientlig

Jag har mejlat comhems support, fick det här svaret "

*Du kan prova att gå in via 66.220.156.80, dessa siffor skriver du i adressfältet på din webbläsare. Sudda bort "www"och"

http://" innan du gör detta. Fungerar det är det fel på DNSen, alltså den du ändrade.

*Har du provat med en annan webbläsare? Det finns många att välja på. Några exempel är Google Chrome, Firefox, Internet Explorer, Opera, Safari."

 

Har som sagt testat deras lösningar, vilket dock inte fungerade. Har inte fått svar på min följdfråga ännu.

 

 

Har någon av er varit i kontakt med Comhem och era grannar?

Länk till kommentar
Dela på andra webbplatser

Mygrapefruit

Jag har mejlat comhems support, fick det här svaret "

*Du kan prova att gå in via 66.220.156.80, dessa siffor skriver du i adressfältet på din webbläsare. Sudda bort "www"och"

http://" innan du gör detta. Fungerar det är det fel på DNSen, alltså den du ändrade.

*Har du provat med en annan webbläsare? Det finns många att välja på. Några exempel är Google Chrome, Firefox, Internet Explorer, Opera, Safari."

 

Har som sagt testat deras lösningar, vilket dock inte fungerade. Har inte fått svar på min följdfråga ännu.

 

Det där fungerade inte för mig heller, testade nyss.

 

Vad menar du med följdfråga? Sitter du fortfarande i support med dem eller ska de ringa upp? :o

Länk till kommentar
Dela på andra webbplatser

Kamerafientlig

Det där fungerade inte för mig heller, testade nyss.

 

Vad menar du med följdfråga? Sitter du fortfarande i support med dem eller ska de ringa upp? :o

 

Jag ställde en följdfråga i deras support, har mejlsupport med dem. Den frågan har dock inte blivit besvarad. Jag testade nu att gå in på regeringen.se och ud.se som du hade haft problem med och de sidorna fungerar inte för mig heller. Mycket skumt.

 

 

 

Länk till kommentar
Dela på andra webbplatser

  • 2 veckor senare...
Kamerafientlig

Hej!

 

Nu har jag testat facebook med en bärbar dator från jobbet med mitt bredband hemma och då fungerade det hur bra som helst. Det borde väl tyda på att det är något som är fel på min dator? Någon som kan ha någon idé om vad som kan ligga och störa facebook i min dator?

Länk till kommentar
Dela på andra webbplatser

Arkiverat

Det här ämnet är nu arkiverat och är stängt för ytterligare svar.

×
×
  • Skapa nytt...