bepees Postad April 29, 2013 Dela Postad April 29, 2013 (redigerade) Halloj alla kunniga! Har märkt av en rejäl ökning av popup-annonser i brödtexterna de senaste dagarna. Sådana där olika ord är understruken och när musen hamnar över dem så kommer det upp en annons. (för övrigt väldigt irriterande). Har inte funderat så mycket över dem tidigare förrän nu då det till och med kommer upp annonser på understrukna ord i mitt orderhanteringsprogram som ligger online där det inte ska finnas några. Misstänker att jag blivit smittad av något bus. Har kollat med Eset Nod 32. Malwarebytes antimalware samt kapersky's onlinescanner men dom har inte hittat något konstigt. Hur blir man av med alla dessa "pop-up" annonser?? gäller både för IE och Chrome som är dom webläsare jag använder. Mvh Bepees Redigerad Maj 10, 2013 av bepees Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
e-son Postad April 29, 2013 Dela Postad April 29, 2013 Om du har något bus i burken, vet jag inte, men du kan ju prova med att rensa cache, cookies, temp-filer och liknande... bägge webbläsarna har "one click-funktioner" för det. Annars skulle jag rekommendera AdBlock för Chrome och MVPS HOSTS File för Internet Explorer, för att bli av med både intellitxt och en hel massa annat skräp. Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
Cecilia Postad April 29, 2013 Dela Postad April 29, 2013 Hej! Följ anvisningarna i tråden Till dig med virus eller andra skadliga program i datorn så gott det går. Utifrån DDS-loggarna kan jag se vad som är en lämplig nästa åtgärd. Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
bepees Postad April 30, 2013 Författare Dela Postad April 30, 2013 Hejsan e-son och cecilia. Tack för era svar. Provade att installera adblock till chrome men det blev ingen skillnad. Kort fråga. För att dessa annonser skall visas så behövs det enl wikitexten att webutvecklaren lägger in ett script på den aktuella sidan. Stämmer det? Isåfall har jag en del att prata om med utvecklaren av min webbutik. Eller är det så att det ligger något bus i min burk som gör att vissa ord understryks och denna eländiga annons ploppar upp? Här kommer min DDS logg. Tittade lite i den men hittade inget speciellt själv. DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.13.2 Run by Stefan at 7:02:46 on 2013-04-30 Microsoft Windows 7 Professional 6.1.7601.1.1252.46.1053.18.16341.11455 [GMT 2:00] . AV: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5} SP: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Program Files\Common Files\SPBA\upeksvr.exe C:\Program Files (x86)\Cobian Backup 11\cbService.exe C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe C:\Program Files\Intel\iCLS Client\HeciServer.exe C:\Windows\system32\IProsetMonitor.exe C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe C:\Windows\system32\nlsInterface.exe C:\Program Files (x86)\Roozz\Updater.exe C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\System32\WUDFHost.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Personal\bin\Personal.exe C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\wuauclt.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe c:\program files (x86)\common files\installshield\updateservice\isuspm.exe C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Adobe\Adobe Illustrator CS5\Support Files\Contents\Windows\Illustrator.exe C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe C:\Program Files\Adobe\Adobe Photoshop CS5 (64 Bit)\Photoshop.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe C:\Windows\splwow64.exe C:\Windows\SysWOW64\cmd.exe C:\RstrLink\Bin\RL.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\totalcmd\TOTALCMD.EXE C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = about:blank mWinlogon: Userinit = userinit.exe, BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: SelectionLinks: {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} - C:\Program Files (x86)\OApps\SelectionLinks.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll uRun: [iSUSPM Startup] "c:\Program Files (x86)\Common Files\InstallShield\UpdateService\isuspm.exe" -startup uRun: [AdobeBridge] <no file> mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60 mRun: [iMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe" mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin mRun: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" mRun: [Cobian Backup 11 interface] "C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe" -service StartupFolder: C:\Users\Stefan\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BANKID~1.LNK - C:\Program Files (x86)\Personal\bin\Personal.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MICROS~1.LNK - C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 mPolicies-System: DisableCAD = dword:1 IE: Bifoga länkmål till befintlig PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll Trusted Zone: clonewarsadventures.com Trusted Zone: dell.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab TCP: NameServer = 192.168.0.1 TCP: Interfaces\{0C17B27C-5198-4189-A644-A0C4AE8CCF06} : DHCPNameServer = 80.251.201.177 80.251.201.178 TCP: Interfaces\{12DE5684-CBDA-4E68-A60E-48F2F171F6AA} : DHCPNameServer = 192.168.0.1 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll SSODL: WebCheck - <orphaned> LSA: Authentication Packages = msv1_0 wvauth x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe x64-Run: [TdmNotify] C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" x64-Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice x64-Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-Notify: spba - C:\Program Files\Common Files\SPBA\homefus2.dll x64-SSODL: WebCheck - <orphaned> . ============= SERVICES / DRIVERS =============== . R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2013-3-12 652344] R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2013-3-12 28216] R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2012-2-6 55856] R2 cbVSCService11;Cobian Backup 11 Volume Shadow Copy Requester;C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [2013-3-4 67584] R2 CobianBackup11;Cobian Backup 11 Gravity;C:\Program Files (x86)\Cobian Backup 11\cbService.exe [2013-3-4 1131008] R2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-5-14 731840] R2 epfwwfpr;epfwwfpr;C:\Windows\System32\drivers\epfwwfpr.sys [2009-5-14 121152] R2 IAStorDataMgrSvc;Intel® Rapid lagringsteknologi;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-2-6 14904] R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-7-27 636952] R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2012-2-6 165032] R2 jhi_service;Intel® Identity Protection Technology Host Interface Service;C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-2-24 212944] R2 KSS;Kaspersky Security Scan Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [2012-4-25 202296] R2 nlscc;Nalpeiron X64 Service;C:\Windows\System32\nlsInterface.EXE [2012-2-23 72192] R2 Roozz Updater;Roozz Updater;C:\Program Files (x86)\Roozz\Updater.exe [2013-2-18 423936] R2 Sentinel64;Sentinel64;C:\Windows\System32\drivers\sentinel64.sys [2012-2-23 145448] R2 SentinelKeysServer;Sentinel Keys Server;C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2009-9-17 369952] R2 SentinelSecurityRuntime;Sentinel Security Runtime;C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [2009-9-17 292128] R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-1-21 3574624] R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-2-6 365376] R2 Wave Authentication Manager Service;Wave Authentication Manager Service;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe [2011-7-1 1600000] R3 mkusb20d;Mimaki USB2.0 Data Port Controller (mkusb20d.sys);C:\Windows\System32\drivers\mkusb20d.sys [2009-9-1 109096] R3 mkusb20s;Mimaki USB2.0 Status Port Controller (mkusb20s.sys);C:\Windows\System32\drivers\mkusb20s.sys [2009-9-1 87976] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-4-29 418376] S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-4-29 701512] S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-1-8 161536] S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168] S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-4-29 25928] S3 mkusb;Mimaki Plotter USB Port Controller (mkusb.sys);C:\Windows\System32\drivers\mkusb.sys [2009-9-1 44456] S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\System32\drivers\netaapl64.sys [2011-8-2 22528] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-12 19456] S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656] S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136] S3 SWDUMon;SWDUMon;C:\Windows\System32\drivers\SWDUMon.sys [2013-3-12 16152] S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 TdsNordecr;Nordea NCR1 SmartCard Reader;C:\Windows\System32\drivers\nordecr.sys [2013-2-11 28672] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-12-12 57856] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-12-12 30208] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784] S3 WatAdminSvc;Aktiveringsteknologier för Windows-tjänst;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-2-23 1255736] S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184] . =============== File Associations =============== . FileExt: .js: JSFile=C:\Windows\System32\Notepad.exe %1 [default=Edit - 'Open' doesn't exist] . =============== Created Last 30 ================ . 2013-04-30 00:56:28 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0CEA65E2-0262-45A4-A318-37BEE3F29F15}\offreg.dll 2013-04-29 19:33:01 -------- d-----w- C:\Users\Stefan\AppData\Local\{2C7A22F7-6F61-47D3-98EA-6A69D5A385DC} 2013-04-29 08:41:13 -------- d-----w- C:\ProgramData\Kaspersky Lab 2013-04-29 08:41:13 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab 2013-04-29 08:39:24 180224 ----a-w- C:\Windows\System32\SET90E1.tmp 2013-04-29 08:39:20 9317456 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0CEA65E2-0262-45A4-A318-37BEE3F29F15}\mpengine.dll 2013-04-29 07:43:27 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-04-29 07:43:27 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-04-29 07:32:36 -------- d-----w- C:\Users\Stefan\AppData\Local\{D02E4600-BCEF-4A01-B878-AAC14EBC5467} 2013-04-28 19:32:23 -------- d-----w- C:\Users\Stefan\AppData\Local\{69EAAF8E-F5ED-4646-A1E9-BD307B4363F0} 2013-04-28 07:32:11 -------- d-----w- C:\Users\Stefan\AppData\Local\{E07FC682-82C4-44BD-AABE-08FDB81FD7AA} 2013-04-27 19:31:58 -------- d-----w- C:\Users\Stefan\AppData\Local\{7DA8D5A2-5001-47E6-921E-77A9E4E0DD70} 2013-04-27 07:31:46 -------- d-----w- C:\Users\Stefan\AppData\Local\{64F3B9F3-C38E-4C71-886D-DD54B9EB81DE} 2013-04-26 19:31:33 -------- d-----w- C:\Users\Stefan\AppData\Local\{EEB361E0-DC46-4730-95EC-C3AD3F42646A} 2013-04-26 07:31:21 -------- d-----w- C:\Users\Stefan\AppData\Local\{D75F4E0A-EC00-4E27-B9E1-202C632DB64B} 2013-04-25 19:31:08 -------- d-----w- C:\Users\Stefan\AppData\Local\{02379334-8561-4001-8D53-95FA61199946} 2013-04-25 07:30:43 -------- d-----w- C:\Users\Stefan\AppData\Local\{FE04A31B-6279-4F1A-B4B5-EB4345971C62} 2013-04-24 19:30:31 -------- d-----w- C:\Users\Stefan\AppData\Local\{36BF5BF1-94CF-4DA4-8DE3-064830D66569} 2013-04-24 14:23:00 -------- d-----w- C:\Program Files (x86)\OApps 2013-04-24 07:30:18 -------- d-----w- C:\Users\Stefan\AppData\Local\{33AC8892-98DB-4C1F-8CBB-B0633F8D8B3F} 2013-04-23 19:30:06 -------- d-----w- C:\Users\Stefan\AppData\Local\{E45B91D6-FF5C-43BB-8B47-73D763557499} 2013-04-23 07:29:53 -------- d-----w- C:\Users\Stefan\AppData\Local\{1D0852BF-C384-470B-BC49-F083142504DB} 2013-04-23 04:45:20 -------- d-----w- C:\Users\Stefan\AppData\Local\SWTOR 2013-04-22 19:29:40 -------- d-----w- C:\Users\Stefan\AppData\Local\{59B06274-4EDE-4560-AD77-8BFFBB35988C} 2013-04-22 07:29:27 -------- d-----w- C:\Users\Stefan\AppData\Local\{7F555898-6CD1-4617-B667-3DE585EC8EC5} 2013-04-21 19:29:15 -------- d-----w- C:\Users\Stefan\AppData\Local\{C076F86C-7AFB-40F4-BBBC-3A13F41ECC3E} 2013-04-21 07:29:03 -------- d-----w- C:\Users\Stefan\AppData\Local\{269D158C-A0F4-45A5-8EBB-99B20C401BFE} 2013-04-20 19:28:50 -------- d-----w- C:\Users\Stefan\AppData\Local\{87D202F9-0230-4770-ADD3-E4CB82F73F63} 2013-04-20 07:28:37 -------- d-----w- C:\Users\Stefan\AppData\Local\{886E40DB-4397-4137-9920-B4DDE4C3BB4A} 2013-04-19 19:28:25 -------- d-----w- C:\Users\Stefan\AppData\Local\{B6C51035-841C-4DEB-93F1-8200FB16A56D} 2013-04-19 13:00:26 -------- d-----w- C:\Users\Stefan\AppData\Local\SWTORPerf 2013-04-19 12:39:11 -------- d-----w- C:\Program Files (x86)\Common Files\BioWare 2013-04-19 07:28:13 -------- d-----w- C:\Users\Stefan\AppData\Local\{0C47D6CD-358F-4B82-AEBC-3DBE0D7D1CF1} 2013-04-18 19:28:00 -------- d-----w- C:\Users\Stefan\AppData\Local\{EA330E2F-E328-4331-9378-4CE12BFBA178} 2013-04-18 07:27:48 -------- d-----w- C:\Users\Stefan\AppData\Local\{9BAE2707-867E-4A35-86DB-15F8AADE8C69} 2013-04-17 19:27:35 -------- d-----w- C:\Users\Stefan\AppData\Local\{7BCF5504-2EF5-4C2C-8FE6-C6A2E10DB110} 2013-04-17 07:27:23 -------- d-----w- C:\Users\Stefan\AppData\Local\{C49E6417-8BE1-41F6-81E0-DC38FD4E0599} 2013-04-16 19:27:10 -------- d-----w- C:\Users\Stefan\AppData\Local\{B8523985-289A-4A77-A8F0-86FEC287B405} 2013-04-16 07:26:58 -------- d-----w- C:\Users\Stefan\AppData\Local\{8ECD86D2-80CE-4B24-BC89-DFFFEE2C3A75} 2013-04-15 17:58:04 -------- d-----w- C:\Users\Stefan\AppData\Local\{EBFA987D-2772-463B-A3FE-43EAF8311DF3} 2013-04-15 05:57:51 -------- d-----w- C:\Users\Stefan\AppData\Local\{1360CE93-9661-4B39-89DA-3DEFB5AC57F4} 2013-04-14 17:57:38 -------- d-----w- C:\Users\Stefan\AppData\Local\{0A0F2EAD-C9EE-4C7A-8C92-A0DB0F613E1B} 2013-04-14 05:57:25 -------- d-----w- C:\Users\Stefan\AppData\Local\{42DFD79E-95C8-488F-BB0F-15B35918142B} 2013-04-13 17:57:12 -------- d-----w- C:\Users\Stefan\AppData\Local\{EE0BE794-70DB-4A73-A399-CCACFAB03461} 2013-04-13 05:56:59 -------- d-----w- C:\Users\Stefan\AppData\Local\{572D0527-AF9A-4B3F-A4AF-71428FCD60B7} 2013-04-12 17:56:46 -------- d-----w- C:\Users\Stefan\AppData\Local\{344BEC81-E08A-488E-9727-69698FEEF790} 2013-04-12 05:56:33 -------- d-----w- C:\Users\Stefan\AppData\Local\{E7093B0E-EB91-4E3C-99CE-F666288EEA72} 2013-04-11 17:56:19 -------- d-----w- C:\Users\Stefan\AppData\Local\{50472914-87A1-4751-BD6B-942702C853BC} 2013-04-11 05:56:06 -------- d-----w- C:\Users\Stefan\AppData\Local\{7CFDA371-14ED-46CD-B2FE-5D4E7B0AF488} 2013-04-11 05:02:38 -------- d-----w- C:\Users\Stefan\AppData\Local\Discovery Freelancer 4.86.0 2013-04-10 17:55:53 -------- d-----w- C:\Users\Stefan\AppData\Local\{D20167B0-52CA-4D42-83AE-1D6B61B85800} 2013-04-10 05:55:40 -------- d-----w- C:\Users\Stefan\AppData\Local\{8B36C420-2942-4CBA-8634-21D7966D91A9} 2013-04-09 23:51:19 3153408 ----a-w- C:\Windows\System32\win32k.sys 2013-04-09 23:51:17 1655656 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2013-04-09 23:51:04 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2013-04-09 17:15:07 -------- d-----w- C:\Users\Stefan\AppData\Local\{6452ED5D-08F5-4DC7-B800-1BEA5481D1B6} 2013-04-09 05:14:54 -------- d-----w- C:\Users\Stefan\AppData\Local\{39AB3747-A427-4024-8E50-49C69C86723B} 2013-04-08 17:14:41 -------- d-----w- C:\Users\Stefan\AppData\Local\{58BF55EB-696A-473A-A0FA-8CAAAE7F1D86} 2013-04-08 05:14:28 -------- d-----w- C:\Users\Stefan\AppData\Local\{93ADA2B7-AD3A-4C28-B33D-A1D043C11A95} 2013-04-05 08:49:41 -------- d-----w- C:\Users\Stefan\AppData\Local\{8AAC7A1E-753A-4E95-AFC4-26DCE77F4201} 2013-04-04 20:49:28 -------- d-----w- C:\Users\Stefan\AppData\Local\{0B59EDE3-6328-4E44-B59D-7C5525CD57AF} 2013-04-04 17:20:00 -------- d-----w- C:\Users\Stefan\PhotoTools Logs 2013-04-04 08:49:16 -------- d-----w- C:\Users\Stefan\AppData\Local\{498B8C19-89E4-4870-A08D-71B2115F6863} 2013-04-03 20:49:03 -------- d-----w- C:\Users\Stefan\AppData\Local\{688EA14C-876D-42AB-B5A0-0245C667B832} 2013-04-03 11:18:15 -------- d-----w- C:\Program Files (x86)\GamersFirst 2013-04-03 10:02:30 -------- d-----w- C:\Users\Stefan\AppData\Local\GamersFirst 2013-04-03 08:48:50 -------- d-----w- C:\Users\Stefan\AppData\Local\{887094E7-3F60-4F96-9898-D5FCCADF704F} 2013-04-02 20:48:37 -------- d-----w- C:\Users\Stefan\AppData\Local\{36BC29F5-BC52-481E-923D-A77F8708963B} 2013-04-02 12:11:24 -------- d-----w- C:\Users\Stefan\AppData\Roaming\Malwarebytes 2013-04-02 12:11:18 -------- d-----w- C:\ProgramData\Malwarebytes 2013-04-02 08:48:12 -------- d-----w- C:\Users\Stefan\AppData\Local\{E4ED874D-0716-4710-9F30-1D8AA3935D10} 2013-04-01 20:47:47 -------- d-----w- C:\Users\Stefan\AppData\Local\{391B2236-2E4A-44BD-B3B7-32002C344FD0} 2013-04-01 08:47:35 -------- d-----w- C:\Users\Stefan\AppData\Local\{A5683499-FA63-40A9-AA1D-583E5CFC2FE9} 2013-03-31 20:47:22 -------- d-----w- C:\Users\Stefan\AppData\Local\{63D32CD7-25BF-4B2F-BA24-7A78FCDAC0F2} 2013-03-31 08:47:09 -------- d-----w- C:\Users\Stefan\AppData\Local\{9BFABFC0-0236-46D5-B90E-3ABCBD39B397} . ==================== Find3M ==================== . 2013-04-12 12:48:26 691592 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-04-12 12:48:25 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-03-14 08:03:18 16152 ----a-w- C:\Windows\System32\drivers\SWDUMon.sys 2013-03-12 14:23:04 113224 ----a-w- C:\Users\Stefan\g2ax_customer_downloadhelper_win32_x86.exe 2013-03-11 23:10:56 282744 ------w- C:\Windows\System32\MpSigStub.exe 2013-02-21 10:30:16 1766912 ----a-w- C:\Windows\SysWow64\wininet.dll 2013-02-21 10:29:39 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll 2013-02-21 10:29:37 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll 2013-02-21 10:29:37 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll 2013-02-21 10:15:07 2240512 ----a-w- C:\Windows\System32\wininet.dll 2013-02-21 10:14:09 3958784 ----a-w- C:\Windows\System32\jscript9.dll 2013-02-21 10:14:05 67072 ----a-w- C:\Windows\System32\iesetup.dll 2013-02-21 10:14:05 136704 ----a-w- C:\Windows\System32\iesysprep.dll 2013-02-19 12:01:03 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2013-02-19 11:42:14 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-02-19 11:10:53 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe 2013-02-19 10:51:18 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-02-18 08:22:18 31080 ----a-w- C:\Windows\System32\nvhdap64.dll 2013-02-18 08:22:18 1472360 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll 2013-02-18 08:22:16 189288 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys 2013-02-12 05:45:24 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll 2013-02-12 05:45:22 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll 2013-02-12 05:45:22 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll 2013-02-12 05:45:22 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll 2013-02-12 04:48:31 474112 ----a-w- C:\Windows\apppatch\AcSpecfc.dll 2013-02-12 04:48:26 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll 2013-02-12 04:12:05 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-02-11 10:26:05 15360 ----a-w- C:\Windows\System32\RlpMon.dll 2013-02-11 10:26:05 10752 ----a-w- C:\Windows\System32\RlpMonUi.dll 2013-02-11 09:48:37 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2013-02-11 09:48:35 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll 2013-02-11 09:48:35 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll 2013-01-30 10:25:29 960416 ----a-w- C:\Windows\System32\deployJava1.dll 2013-01-30 10:25:29 1081760 ----a-w- C:\Windows\System32\npDeployJava1.dll . ============= FINISH: 7:02:56,17 =============== Mvh Bepees attach.txt Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
Cecilia Postad April 30, 2013 Dela Postad April 30, 2013 (redigerade) BHO: SelectionLinks: {7825CFB6-490A-436B-9F26-4A7B5CFC01A9} - C:\Program Files (x86)\OApps\SelectionLinks.dll Det där är nog det tillägg som orsakar annonserna. De flesta olämpliga tillägg kommer in i datorn när man installerar något gratisprogram utan att avbocka tillägget under installationen. 2013-04-24 14:23:00 -------- d-----w- C:\Program Files (x86)\OApps 1. Börja med att avinstallera "SelectionLinks" i Kontrollpanelen. 2. Vi kan se om AdwCleaner kan ta bort det tillägget (resp. resterna som avinstallationen lämnar kvar) eller om din variant är för ny. Spara AdwCleaner av Xplode på Skrivbordet: http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner Stäng alla program, inklusive webbläsare. Dubbelklicka på AdwCleaner för att starta programmet. Klicka på Search-knappen. Vänta tills sökningen är klar. En rapport kommer upp, kopiera innehållet och klistra in i ditt svar. Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[R1].txt 3. Avinstallera "Java 7 Update 13" för det är en gammal version med kända säkerhetshål som gör det lätt att infektera datorn från en webbsida. 4. Vistas och Windows 7s kontroll av användarkonto (UAC) är mycket bra på stoppa skadliga program från att installeras, se t ex: http://www.idg.se/2.1085/1.164287 http://www.idg.se/2.1085/1.166702 Den är även nyttig på andra sätt se http://www.idg.se/2.1085/1.269010/nyttan-med-uac-i-windows Kontrollera att den är på en hög nivå: Kontrollpanelen - System och säkerhet - Åtgärdscenter följt av UAC i vänsterkolumnen Redigerad April 30, 2013 av Cecilia Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
bepees Postad April 30, 2013 Författare Dela Postad April 30, 2013 Här kommer rapporten från adwcleaner: # AdwCleaner v2.300 - Logfile created 04/30/2013 at 13:07:50 # Updated 28/04/2013 by Xplode # Operating system : Windows 7 Professional Service Pack 1 (64 bits) # User : Stefan - ROFA0012 # Boot Mode : Normal # Running from : C:\temp\adwcleaner.exe # Option [search] ***** [services] ***** ***** [Files / Folders] ***** Folder Found : C:\Program Files (x86)\OApps ***** [Registry] ***** Key Found : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} Key Found : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} ***** [internet Browsers] ***** -\\ Internet Explorer v10.0.9200.16537 [OK] Registry is clean. -\\ Google Chrome v26.0.1410.64 File : C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[R1].txt - [873 octets] - [30/04/2013 13:07:50] ########## EOF - C:\AdwCleaner[R1].txt - [932 octets] ########## Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
Cecilia Postad April 30, 2013 Dela Postad April 30, 2013 1. Du måste spara AdwCleaner på hårddisken, lämpligen skrivbordet, och inte köra direkt under nedladdningen. http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner 2. Stäng alla program, inklusive webbläsare. Dubbelklicka på AdwCleaner för att starta programmet. Klicka på Delete-knappen. Tryck på OK. Datorn kommer att startas om. En rapport kommer upp, kopiera innehållet och klistra in i ditt svar. Om rapporten inte kommer upp, så finns den även som C:\AdwCleaner[s1].txt 3. Kör DDS igen och klistra in DDS.txt i ditt svar, så får vi se om något är kvar där. Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
bepees Postad April 30, 2013 Författare Dela Postad April 30, 2013 Här kommer en ny logg: # AdwCleaner v2.300 - Logfile created 04/30/2013 at 14:10:14 # Updated 28/04/2013 by Xplode # Operating system : Windows 7 Professional Service Pack 1 (64 bits) # User : Stefan - ROFA0012 # Boot Mode : Normal # Running from : C:\Temp\adwcleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** Folder Deleted : C:\Program Files (x86)\OApps ***** [Registry] ***** Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2} ***** [internet Browsers] ***** -\\ Internet Explorer v10.0.9200.16537 [OK] Registry is clean. -\\ Google Chrome v26.0.1410.64 File : C:\Users\Stefan\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[R1].txt - [998 octets] - [30/04/2013 13:07:50] AdwCleaner[R2].txt - [1099 octets] - [30/04/2013 14:10:06] AdwCleaner[s1].txt - [322 octets] - [30/04/2013 13:10:50] AdwCleaner[s2].txt - [1039 octets] - [30/04/2013 14:10:14] ########## EOF - C:\AdwCleaner[s2].txt - [1099 octets] ########## Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
Cecilia Postad April 30, 2013 Dela Postad April 30, 2013 Hur går det med den nya DDS-loggen? Ber om ursäkt för att radbrytningar saknas i mitt förra inlägg. Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
bepees Postad Maj 2, 2013 Författare Dela Postad Maj 2, 2013 Halloj! Sorry att det tagit lite tid. Här kommer nya DDS loggen DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16537 Run by Stefan at 8:00:04 on 2013-05-02 Microsoft Windows 7 Professional 6.1.7601.1.1252.46.1053.18.16341.12963 [GMT 2:00] . AV: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5} SP: ESET NOD32 Antivirus 4.0 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Program Files\Common Files\SPBA\upeksvr.exe C:\Program Files (x86)\Cobian Backup 11\cbService.exe C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe C:\Program Files\Intel\iCLS Client\HeciServer.exe C:\Windows\system32\IProsetMonitor.exe C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe C:\Program Files (x86)\Personal\bin\Personal.exe C:\Windows\system32\nlsInterface.exe C:\Program Files (x86)\Roozz\Updater.exe C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\wuauclt.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe C:\Program Files (x86)\Adobe\Adobe Illustrator CS5\Support Files\Contents\Windows\Illustrator.exe C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe C:\Program Files (x86)\AMP Font Viewer\FontViewer.exe C:\Windows\splwow64.exe C:\Program Files (x86)\Windows Live\Mail\wlmail.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Stefan\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = about:blank mWinlogon: Userinit = userinit.exe, BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll uRun: [iSUSPM Startup] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup uRun: [AdobeBridge] <no file> mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" 60 mRun: [iMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe" mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe" mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin mRun: [iSUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" mRun: [Cobian Backup 11 interface] "C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe" -service StartupFolder: C:\Users\Stefan\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BANKID~1.LNK - C:\Program Files (x86)\Personal\bin\Personal.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MICROS~1.LNK - C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 mPolicies-System: PromptOnSecureDesktop = dword:0 mPolicies-System: DisableCAD = dword:1 IE: Bifoga länkmål till befintlig PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll Trusted Zone: clonewarsadventures.com Trusted Zone: dell.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab TCP: NameServer = 192.168.0.1 TCP: Interfaces\{0C17B27C-5198-4189-A644-A0C4AE8CCF06} : DHCPNameServer = 80.251.201.177 80.251.201.178 TCP: Interfaces\{12DE5684-CBDA-4E68-A60E-48F2F171F6AA} : DHCPNameServer = 192.168.0.1 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll SSODL: WebCheck - <orphaned> LSA: Authentication Packages = msv1_0 wvauth x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe x64-Run: [TdmNotify] C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" x64-Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice x64-Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-Notify: spba - C:\Program Files\Common Files\SPBA\homefus2.dll x64-SSODL: WebCheck - <orphaned> . ============= SERVICES / DRIVERS =============== . R0 iaStorA;iaStorA;C:\Windows\System32\drivers\iaStorA.sys [2013-3-12 652344] R0 iaStorF;iaStorF;C:\Windows\System32\drivers\iaStorF.sys [2013-3-12 28216] R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2012-2-6 55856] R2 cbVSCService11;Cobian Backup 11 Volume Shadow Copy Requester;C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [2013-3-4 67584] R2 CobianBackup11;Cobian Backup 11 Gravity;C:\Program Files (x86)\Cobian Backup 11\cbService.exe [2013-3-4 1131008] R2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-5-14 731840] R2 epfwwfpr;epfwwfpr;C:\Windows\System32\drivers\epfwwfpr.sys [2009-5-14 121152] R2 IAStorDataMgrSvc;Intel® Rapid lagringsteknologi;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-2-6 14904] R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-7-27 636952] R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2012-2-6 165032] R2 jhi_service;Intel® Identity Protection Technology Host Interface Service;C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-2-24 212944] R2 KSS;Kaspersky Security Scan Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [2012-4-25 202296] R2 nlscc;Nalpeiron X64 Service;C:\Windows\System32\nlsInterface.EXE [2012-2-23 72192] R2 Roozz Updater;Roozz Updater;C:\Program Files (x86)\Roozz\Updater.exe [2013-2-18 423936] R2 Sentinel64;Sentinel64;C:\Windows\System32\drivers\sentinel64.sys [2012-2-23 145448] R2 SentinelKeysServer;Sentinel Keys Server;C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2009-9-17 369952] R2 SentinelSecurityRuntime;Sentinel Security Runtime;C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [2009-9-17 292128] R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-1-21 3574624] R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-2-6 365376] R2 Wave Authentication Manager Service;Wave Authentication Manager Service;C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe [2011-7-1 1600000] R3 mkusb20d;Mimaki USB2.0 Data Port Controller (mkusb20d.sys);C:\Windows\System32\drivers\mkusb20d.sys [2009-9-1 109096] R3 mkusb20s;Mimaki USB2.0 Status Port Controller (mkusb20s.sys);C:\Windows\System32\drivers\mkusb20s.sys [2009-9-1 87976] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-1-8 161536] S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168] S3 mkusb;Mimaki Plotter USB Port Controller (mkusb.sys);C:\Windows\System32\drivers\mkusb.sys [2009-9-1 44456] S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\System32\drivers\netaapl64.sys [2011-8-2 22528] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-12 19456] S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656] S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136] S3 SWDUMon;SWDUMon;C:\Windows\System32\drivers\SWDUMon.sys [2013-3-12 16152] S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 TdsNordecr;Nordea NCR1 SmartCard Reader;C:\Windows\System32\drivers\nordecr.sys [2013-2-11 28672] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-12-12 57856] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-12-12 30208] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784] S3 WatAdminSvc;Aktiveringsteknologier för Windows-tjänst;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-2-23 1255736] S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184] . =============== File Associations =============== . FileExt: .js: JSFile=C:\Windows\System32\Notepad.exe %1 [default=Edit - 'Open' doesn't exist] . =============== Created Last 30 ================ . 2013-05-02 05:59:19 -------- d-----w- C:\Users\Stefan\AppData\Local\{E69DB15F-0169-41EB-B792-B1831DCDD17D} 2013-05-01 02:19:39 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0CEA65E2-0262-45A4-A318-37BEE3F29F15}\offreg.dll 2013-04-30 07:33:26 -------- d-----w- C:\Users\Stefan\AppData\Local\{5EBD5EA1-890E-4A27-821E-A095D797BDFD} 2013-04-29 19:33:01 -------- d-----w- C:\Users\Stefan\AppData\Local\{2C7A22F7-6F61-47D3-98EA-6A69D5A385DC} 2013-04-29 08:41:13 -------- d-----w- C:\ProgramData\Kaspersky Lab 2013-04-29 08:41:13 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab 2013-04-29 08:39:24 180224 ----a-w- C:\Windows\System32\xrzwslbi.dll 2013-04-29 08:39:20 9317456 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0CEA65E2-0262-45A4-A318-37BEE3F29F15}\mpengine.dll 2013-04-29 07:32:36 -------- d-----w- C:\Users\Stefan\AppData\Local\{D02E4600-BCEF-4A01-B878-AAC14EBC5467} 2013-04-28 19:32:23 -------- d-----w- C:\Users\Stefan\AppData\Local\{69EAAF8E-F5ED-4646-A1E9-BD307B4363F0} 2013-04-28 07:32:11 -------- d-----w- C:\Users\Stefan\AppData\Local\{E07FC682-82C4-44BD-AABE-08FDB81FD7AA} 2013-04-27 19:31:58 -------- d-----w- C:\Users\Stefan\AppData\Local\{7DA8D5A2-5001-47E6-921E-77A9E4E0DD70} 2013-04-27 07:31:46 -------- d-----w- C:\Users\Stefan\AppData\Local\{64F3B9F3-C38E-4C71-886D-DD54B9EB81DE} 2013-04-26 19:31:33 -------- d-----w- C:\Users\Stefan\AppData\Local\{EEB361E0-DC46-4730-95EC-C3AD3F42646A} 2013-04-26 07:31:21 -------- d-----w- C:\Users\Stefan\AppData\Local\{D75F4E0A-EC00-4E27-B9E1-202C632DB64B} 2013-04-25 19:31:08 -------- d-----w- C:\Users\Stefan\AppData\Local\{02379334-8561-4001-8D53-95FA61199946} 2013-04-25 07:30:43 -------- d-----w- C:\Users\Stefan\AppData\Local\{FE04A31B-6279-4F1A-B4B5-EB4345971C62} 2013-04-24 19:30:31 -------- d-----w- C:\Users\Stefan\AppData\Local\{36BF5BF1-94CF-4DA4-8DE3-064830D66569} 2013-04-24 07:30:18 -------- d-----w- C:\Users\Stefan\AppData\Local\{33AC8892-98DB-4C1F-8CBB-B0633F8D8B3F} 2013-04-23 19:30:06 -------- d-----w- C:\Users\Stefan\AppData\Local\{E45B91D6-FF5C-43BB-8B47-73D763557499} 2013-04-23 18:23:31 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2013-04-23 07:29:53 -------- d-----w- C:\Users\Stefan\AppData\Local\{1D0852BF-C384-470B-BC49-F083142504DB} 2013-04-23 04:45:20 -------- d-----w- C:\Users\Stefan\AppData\Local\SWTOR 2013-04-22 19:29:40 -------- d-----w- C:\Users\Stefan\AppData\Local\{59B06274-4EDE-4560-AD77-8BFFBB35988C} 2013-04-22 07:29:27 -------- d-----w- C:\Users\Stefan\AppData\Local\{7F555898-6CD1-4617-B667-3DE585EC8EC5} 2013-04-21 19:29:15 -------- d-----w- C:\Users\Stefan\AppData\Local\{C076F86C-7AFB-40F4-BBBC-3A13F41ECC3E} 2013-04-21 07:29:03 -------- d-----w- C:\Users\Stefan\AppData\Local\{269D158C-A0F4-45A5-8EBB-99B20C401BFE} 2013-04-20 19:28:50 -------- d-----w- C:\Users\Stefan\AppData\Local\{87D202F9-0230-4770-ADD3-E4CB82F73F63} 2013-04-20 07:28:37 -------- d-----w- C:\Users\Stefan\AppData\Local\{886E40DB-4397-4137-9920-B4DDE4C3BB4A} 2013-04-19 19:28:25 -------- d-----w- C:\Users\Stefan\AppData\Local\{B6C51035-841C-4DEB-93F1-8200FB16A56D} 2013-04-19 13:00:26 -------- d-----w- C:\Users\Stefan\AppData\Local\SWTORPerf 2013-04-19 12:39:11 -------- d-----w- C:\Program Files (x86)\Common Files\BioWare 2013-04-19 07:28:13 -------- d-----w- C:\Users\Stefan\AppData\Local\{0C47D6CD-358F-4B82-AEBC-3DBE0D7D1CF1} 2013-04-18 19:28:00 -------- d-----w- C:\Users\Stefan\AppData\Local\{EA330E2F-E328-4331-9378-4CE12BFBA178} 2013-04-18 07:27:48 -------- d-----w- C:\Users\Stefan\AppData\Local\{9BAE2707-867E-4A35-86DB-15F8AADE8C69} 2013-04-17 19:27:35 -------- d-----w- C:\Users\Stefan\AppData\Local\{7BCF5504-2EF5-4C2C-8FE6-C6A2E10DB110} 2013-04-17 07:27:23 -------- d-----w- C:\Users\Stefan\AppData\Local\{C49E6417-8BE1-41F6-81E0-DC38FD4E0599} 2013-04-16 19:27:10 -------- d-----w- C:\Users\Stefan\AppData\Local\{B8523985-289A-4A77-A8F0-86FEC287B405} 2013-04-16 07:26:58 -------- d-----w- C:\Users\Stefan\AppData\Local\{8ECD86D2-80CE-4B24-BC89-DFFFEE2C3A75} 2013-04-15 17:58:04 -------- d-----w- C:\Users\Stefan\AppData\Local\{EBFA987D-2772-463B-A3FE-43EAF8311DF3} 2013-04-15 05:57:51 -------- d-----w- C:\Users\Stefan\AppData\Local\{1360CE93-9661-4B39-89DA-3DEFB5AC57F4} 2013-04-14 17:57:38 -------- d-----w- C:\Users\Stefan\AppData\Local\{0A0F2EAD-C9EE-4C7A-8C92-A0DB0F613E1B} 2013-04-14 05:57:25 -------- d-----w- C:\Users\Stefan\AppData\Local\{42DFD79E-95C8-488F-BB0F-15B35918142B} 2013-04-13 17:57:12 -------- d-----w- C:\Users\Stefan\AppData\Local\{EE0BE794-70DB-4A73-A399-CCACFAB03461} 2013-04-13 05:56:59 -------- d-----w- C:\Users\Stefan\AppData\Local\{572D0527-AF9A-4B3F-A4AF-71428FCD60B7} 2013-04-12 17:56:46 -------- d-----w- C:\Users\Stefan\AppData\Local\{344BEC81-E08A-488E-9727-69698FEEF790} 2013-04-12 05:56:33 -------- d-----w- C:\Users\Stefan\AppData\Local\{E7093B0E-EB91-4E3C-99CE-F666288EEA72} 2013-04-11 17:56:19 -------- d-----w- C:\Users\Stefan\AppData\Local\{50472914-87A1-4751-BD6B-942702C853BC} 2013-04-11 05:56:06 -------- d-----w- C:\Users\Stefan\AppData\Local\{7CFDA371-14ED-46CD-B2FE-5D4E7B0AF488} 2013-04-11 05:02:38 -------- d-----w- C:\Users\Stefan\AppData\Local\Discovery Freelancer 4.86.0 2013-04-10 17:55:53 -------- d-----w- C:\Users\Stefan\AppData\Local\{D20167B0-52CA-4D42-83AE-1D6B61B85800} 2013-04-10 05:55:40 -------- d-----w- C:\Users\Stefan\AppData\Local\{8B36C420-2942-4CBA-8634-21D7966D91A9} 2013-04-09 23:51:19 3153408 ----a-w- C:\Windows\System32\win32k.sys 2013-04-09 23:51:04 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys 2013-04-09 17:15:07 -------- d-----w- C:\Users\Stefan\AppData\Local\{6452ED5D-08F5-4DC7-B800-1BEA5481D1B6} 2013-04-09 05:14:54 -------- d-----w- C:\Users\Stefan\AppData\Local\{39AB3747-A427-4024-8E50-49C69C86723B} 2013-04-08 17:14:41 -------- d-----w- C:\Users\Stefan\AppData\Local\{58BF55EB-696A-473A-A0FA-8CAAAE7F1D86} 2013-04-08 05:14:28 -------- d-----w- C:\Users\Stefan\AppData\Local\{93ADA2B7-AD3A-4C28-B33D-A1D043C11A95} 2013-04-05 08:49:41 -------- d-----w- C:\Users\Stefan\AppData\Local\{8AAC7A1E-753A-4E95-AFC4-26DCE77F4201} 2013-04-04 20:49:28 -------- d-----w- C:\Users\Stefan\AppData\Local\{0B59EDE3-6328-4E44-B59D-7C5525CD57AF} 2013-04-04 17:20:00 -------- d-----w- C:\Users\Stefan\PhotoTools Logs 2013-04-04 08:49:16 -------- d-----w- C:\Users\Stefan\AppData\Local\{498B8C19-89E4-4870-A08D-71B2115F6863} 2013-04-03 20:49:03 -------- d-----w- C:\Users\Stefan\AppData\Local\{688EA14C-876D-42AB-B5A0-0245C667B832} 2013-04-03 11:18:15 -------- d-----w- C:\Program Files (x86)\GamersFirst 2013-04-03 10:02:30 -------- d-----w- C:\Users\Stefan\AppData\Local\GamersFirst 2013-04-03 08:48:50 -------- d-----w- C:\Users\Stefan\AppData\Local\{887094E7-3F60-4F96-9898-D5FCCADF704F} 2013-04-02 20:48:37 -------- d-----w- C:\Users\Stefan\AppData\Local\{36BC29F5-BC52-481E-923D-A77F8708963B} 2013-04-02 12:11:24 -------- d-----w- C:\Users\Stefan\AppData\Roaming\Malwarebytes 2013-04-02 12:11:18 -------- d-----w- C:\ProgramData\Malwarebytes 2013-04-02 08:48:12 -------- d-----w- C:\Users\Stefan\AppData\Local\{E4ED874D-0716-4710-9F30-1D8AA3935D10} . ==================== Find3M ==================== . 2013-04-12 12:48:26 691592 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-04-12 12:48:25 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-03-14 08:03:18 16152 ----a-w- C:\Windows\System32\drivers\SWDUMon.sys 2013-03-12 14:23:04 113224 ----a-w- C:\Users\Stefan\g2ax_customer_downloadhelper_win32_x86.exe 2013-03-11 23:10:56 282744 ------w- C:\Windows\System32\MpSigStub.exe 2013-02-21 10:30:16 1766912 ----a-w- C:\Windows\SysWow64\wininet.dll 2013-02-21 10:29:39 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll 2013-02-21 10:29:37 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll 2013-02-21 10:29:37 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll 2013-02-21 10:15:07 2240512 ----a-w- C:\Windows\System32\wininet.dll 2013-02-21 10:14:09 3958784 ----a-w- C:\Windows\System32\jscript9.dll 2013-02-21 10:14:05 67072 ----a-w- C:\Windows\System32\iesetup.dll 2013-02-21 10:14:05 136704 ----a-w- C:\Windows\System32\iesysprep.dll 2013-02-19 12:01:03 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2013-02-19 11:42:14 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-02-19 11:10:53 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe 2013-02-19 10:51:18 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-02-18 08:22:18 31080 ----a-w- C:\Windows\System32\nvhdap64.dll 2013-02-18 08:22:18 1472360 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll 2013-02-18 08:22:16 189288 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys 2013-02-12 05:45:24 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll 2013-02-12 05:45:22 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll 2013-02-12 05:45:22 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll 2013-02-12 05:45:22 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll 2013-02-12 04:48:31 474112 ----a-w- C:\Windows\apppatch\AcSpecfc.dll 2013-02-12 04:48:26 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll 2013-02-12 04:12:05 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-02-11 10:26:05 15360 ----a-w- C:\Windows\System32\RlpMon.dll 2013-02-11 10:26:05 10752 ----a-w- C:\Windows\System32\RlpMonUi.dll 2013-02-11 09:48:35 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll 2013-02-11 09:48:35 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll . ============= FINISH: 8:00:17,96 =============== attach.txt Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
Cecilia Postad Maj 2, 2013 Dela Postad Maj 2, 2013 Ingen anledning att be om ursäkt Hur har du tänkt att göra med antivirusprogram? Att ha en flera år gammal version ger dåligt skydd eftersom varje ny version innehåller nya funktioner för att upptäcka och bekämpa de senaste typerna av skadlig kod. Jag föreslår att du ser till att installera version 6 av Nod32 i stället för version 4 som du har nu. Trusted Zone: clonewarsadventures.com Trusted Zone: dell.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com Att lägga in webbplatser i den tillförlitliga zonen, när den tillförlitliga zonen har standardsäkerhet, innebär att man tillåter de webbplatserna att göra mycket i datorn. Det är riskabelt om webbplatsen får in en skadlig annons eller blir hackad. Skanna datorn online på http://www.eset.com/onlinescan/ För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden. Avbocka alternativet Remove found threats Bocka för Scan Archives Klicka på Advanced Settings Bocka för: Scan for potentially unwanted applications Scan for potentially unsafe applications Enable Anti-Stealth Technology Klicka på Scan När skanningen är klar kopiera resultatet och klistra sedan in det i ditt svar. Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
bepees Postad Maj 6, 2013 Författare Dela Postad Maj 6, 2013 Sådär nu har jag äntligen utfört denna scan. Inga hot och inga unwanteds. Allt rent och fint. Hmm det där med versionerna i nod32 måste jag kolla på. Vi har buisness edition på nod32 till våra datorer här på jobbet och licensen vi har gäller ett tag till. Vet inte om licensen gäller för versionsuppgraderingar eller om det bara är uppdateringar på befintlig version. En får tacka så hemskt mycket för hjälpen Cecilia. Du är verkligen duktig och bra på att hjälpa andra! Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
Cecilia Postad Maj 6, 2013 Dela Postad Maj 6, 2013 (redigerade) Tack själv för fina ord Bra! Jag vet inte hur det är för företag men för privatpersoner ingår uppgraderingar till nya versioner för alla antivirusprogram, så vitt jag vet. Nu återstår lite avinstallationer: 1. Stäng alla program, inklusive webbläsare. Dubbelklicka på AdwCleaner för att starta programmet. Klicka på Uninstall-knappen. 2. Ladda ner avinstallationsprogrammet OTC till Skrivbordet. http://oldtimer.geekstogo.com/OTC.exe Dubbelklicka på filen för att starta programmet. Tryck på knappen CleanUp! och DDS kommer att avinstalleras efter en omstart av datorn. Om något sådant program är kvar efter det så fråga hur du ska ta bort det. Ta bort eventuella loggar. 3. Förbättra skyddet i datorn, se mina Råd för en säkrare dator: http://ceciliasec.wordpress.com/rad/ Det är mycket viktigt att hålla alla småprogram i datorn uppdaterade, gamla versioner av t ex Flash, Java och Adobe Reader innehåller kända säkerhetshål, vilka kan användas av en webbsida för att infektera datorn. Jag tycker att Secunias program (länk på min webbsida) är en bra hjälp för att kontrollera hur det står till med säkerhetshål i datorn och ange vad som behöver åtgärdas. Redigerad Maj 6, 2013 av Cecilia Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
bepees Postad Maj 10, 2013 Författare Dela Postad Maj 10, 2013 Har kollat upp uppgraderingsfrågan på vår företagslicens. Antivirus buisness edition Har inte kommit längre än så. Jag får tacka så himla mycket för hjälpen. Citera Länk till kommentar Dela på andra webbplatser Fler delningsalternativ...
Recommended Posts
Delta i dialogen
Du kan skriva svaret nu och registrera dig senare, Om du har ett konto, logga in nu för att svara på inlägget.