Velkommen til Spywarefri.

Vi kan tjekke om du har noget, der ikke skal være på maskinen.

Hent Malwarebytes Anti-Malware herfra:
http://www.besttechie.net/tools/mbam-setup.exe

Installer programmet - når det er gjort skal du lade programmet opdatere sig. Herefter åbner et vindue, hvor du skal flytte prikken til “Kør et fuldstændigt systemscan” - klik på Skan Knappen - lad programmet arbejde. Når det er færdig (det tager lidt tid afhængig af hvor meget du har på computeren).

Derefter - Tryk på “Vis resultater” knappen efter scanningen - og herefter tryk på “Fjern det valgte” - nu åbnes log’en og du skal gemme den et sted, hvor du kan finde den igen.

Hent Combofix, og gem den i en mappe:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Åbn mappen med Combofix, højreklik et tomt sted i mappen, vælg Ny->tekstdokument, åbn tekstdokumentet, kopier følgende ind:

Killall::
Snapshot::

klik på Filer->Gem som, navngiv den CFScript, luk tekstdokumentet.

Tag så fat i den nye fil med musen, og før den hen over Combofix-filen, hvorefter du “giver slip” med musen.
http://www.fromsej.saknet.dk/billeder/swfcombo.gif
Så skulle Combofix gerne give sig til at arbejde. Muligvis vil den kræve en genstart, hvilket du skal tillade. Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Kopier den fremkomne log herind, sammen med loggen fra Malwarebytes.
Får du noget der ligner denne fejl.
Der blev forsøgt en ugyldig handling på en registreringsdatabasenøgle, som er blevet mærket til sletning
Så genstart, en gang mere, det burde løse det.

hey, tak for rådet, men desværre…

Hukommelses Processorer Inficeret: 0
Hukommelses Moduler Inficeret: 0
Registreringsdatabasenøgler Inficeret: 0
Registreringsdatabaseværdier Inficeret: 0
Registreringsdatabasedata Objekter Inficeret: 0
Inficerede Mapper: 0
Inficerede Filer: 0

Hukommelses Processorer Inficeret:
(Ingen skadelige objekter blev fundet)

Hukommelses Moduler Inficeret:
(Ingen skadelige objekter blev fundet)

Registreringsdatabasenøgler Inficeret:
(Ingen skadelige objekter blev fundet)

Registreringsdatabaseværdier Inficeret:
(Ingen skadelige objekter blev fundet)

Registreringsdatabasedata Objekter Inficeret:
(Ingen skadelige objekter blev fundet)

Inficerede Mapper:
(Ingen skadelige objekter blev fundet)

Inficerede Filer:
(Ingen skadelige objekter blev fundet)
.....................

andre ideer ?

Hey igen spywarefri.. nu har jeg kørt combifix og den har lavet lidt, men det hakker stadig ! ;(

Ja ok, men det var planen at du skulle sende combologgen herind, så vi kan se den.

ComboFix 11-12-25.03 - Lasse 26-12-2011 15:02:09.2.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.45.1030.18.5886.4377 [GMT 1:00]
Kører fra: c:\users\Lasse\Desktop\ComboFix.exe
Kommandoer benyttet :: c:\users\Lasse\Desktop\Ny mappe\CFScript.txt
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((  Andet, der er slettet   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
c:\users\Lasse\AppData\Local\Microsoft\Windows\Temporary Internet Files\{4336B786-037C-4C3E-8864-FAF4DE987965}.xps
c:\users\Lasse\AppData\Local\Microsoft\Windows\Temporary Internet Files\{74A5A645-8A51-4983-B516-3680071FA35E}.xps
.
Inficeret kopi af c:\windows\SysWow64\user32.dll blev fundet og desinficeret
Genskabt kopi fra - c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
.
.
(((((((((((((((((((((((((((((  Filer skabt fra 2011-11-26 til 2011-12-26 )))))))))))))))))))))))))))))))))))
.
.
2011-12-26 14:10 . 2011-12-26 14:10   ————  d——-w-  c:\users\Default\AppData\Local\temp
2011-12-24 12:39 . 2011-12-24 14:49   ————  d——-w-  c:\users\Lasse\AppData\Local\CrashDumps
2011-12-24 11:09 . 2011-12-24 11:09   ————  d——-w-  C:\Riot Games
2011-12-23 20:28 . 2011-12-23 20:28   ————  d——-w-  c:\program files (x86)\Common Files\Symantec Shared
2011-12-23 20:07 . 2011-12-23 20:07   174200   ——a-w-  c:\windows\system32\drivers\SYMEVENT64x86.SYS
2011-12-23 20:07 . 2011-12-23 20:07   ————  d——-w-  c:\program files\Symantec
2011-12-23 20:07 . 2011-12-23 20:07   ————  d——-w-  c:\program files\Common Files\Symantec Shared
2011-12-23 20:06 . 2011-12-23 20:21   ————  d——-w-  c:\windows\system32\drivers\NISx64
2011-12-23 20:06 . 2011-12-23 20:06   ————  d——-w-  c:\program files (x86)\Norton Internet Security
2011-12-23 20:06 . 2011-12-23 20:08   ————  d——-w-  c:\programdata\Norton
2011-12-23 20:03 . 2011-10-26 05:21   43520   ——a-w-  c:\windows\system32\csrsrv.dll
2011-12-23 20:03 . 2011-11-05 05:41   1188864   ——a-w-  c:\windows\system32\wininet.dll
2011-12-23 20:03 . 2011-11-05 04:35   981504   ——a-w-  c:\windows\SysWow64\wininet.dll
2011-12-23 20:01 . 2011-11-24 04:52   3145216   ——a-w-  c:\windows\system32\win32k.sys
2011-12-23 20:01 . 2011-10-15 06:31   723456   ——a-w-  c:\windows\system32\EncDec.dll
2011-12-23 20:01 . 2011-10-15 05:38   534528   ——a-w-  c:\windows\SysWow64\EncDec.dll
2011-12-23 20:00 . 2011-11-05 05:32   2048   ——a-w-  c:\windows\system32\tzres.dll
2011-12-23 20:00 . 2011-11-05 04:26   2048   ——a-w-  c:\windows\SysWow64\tzres.dll
2011-12-09 15:09 . 2011-12-09 15:11   ————  d——-w-  c:\program files (x86)\Warcraft III
2011-12-09 15:09 . 2011-12-09 15:09   ————  d——-w-  c:\program files (x86)\Common Files\Blizzard Entertainment
2011-12-09 14:52 . 2011-12-09 15:08   ————  d——-w-  c:\users\Lasse\Warcraft III 1.21b ROC Installer enGB
2011-12-09 14:33 . 2011-12-09 14:33   ————  d——-w-  c:\users\Lasse\AppData\Roaming\CyberLink
2011-12-07 17:10 . 2011-12-07 17:10   ————  d——-w-  c:\users\Default\AppData\Local\Microsoft Help
2011-12-03 14:33 . 2011-12-03 14:33   ————  d——-w-  c:\users\Lasse\AppData\Local\ElevatedDiagnostics
2011-11-27 18:25 . 2011-12-10 02:31   414368   ——a-w-  c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-11-27 18:25 . 2011-11-27 18:25   ————  d——-w-  c:\windows\system32\Macromed
.
.
.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-10 04:54 . 2011-10-31 14:17   472808   ——a-w-  c:\windows\SysWow64\deployJava1.dll
2011-11-06 14:16 . 2009-07-14 02:36   175616   ——a-w-  c:\windows\system32\msclmd.dll
2011-11-06 14:16 . 2009-07-14 02:36   152576   ——a-w-  c:\windows\SysWow64\msclmd.dll
2011-10-30 21:33 . 2011-10-30 21:33   2560   ——a-w-  c:\windows\SysWow64\drivers\da-DK\qwavedrv.sys.mui
2011-10-30 21:31 . 2011-10-30 21:31   2560   ——a-w-  c:\windows\SysWow64\drivers\da-DK\scfilter.sys.mui
2011-10-30 21:31 . 2011-10-30 21:31   5632   ——a-w-  c:\windows\SysWow64\drivers\da-DK\ndiscap.sys.mui
2011-10-30 21:31 . 2011-10-30 21:31   48640   ——a-w-  c:\windows\SysWow64\drivers\da-DK\tcpip.sys.mui
2011-10-30 21:31 . 2011-10-30 21:31   27136   ——a-w-  c:\windows\SysWow64\drivers\da-DK\bfe.dll.mui
2011-10-30 21:31 . 2011-10-30 21:31   15872   ——a-w-  c:\windows\SysWow64\drivers\da-DK\pacer.sys.mui
2011-10-30 13:19 . 2011-10-30 13:19   3   ——a-w-  c:\windows\system32\PLD_Framework.cmd
2011-10-18 01:27 . 2011-10-30 13:42   8570192   ——a-w-  c:\programdata\Microsoft\Windows Defender\Definition Updates\{DC2B4848-B9F0-41AA-9657-8153146B5B00}\mpengine.dll
2011-09-29 16:29 . 2011-11-09 12:15   1923952   ——a-w-  c:\windows\system32\drivers\tcpip.sys
.
.
(((((((((((((((((((((((((((((((((((  Start steder i reg.basen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@=”{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}”
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-04-17 05:55   120176   ——a-w-  c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“swg”=“c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe” [2010-04-26 39408]
“Steam”=“c:\program files (x86)\Steam\Steam.exe” [2011-11-11 1242448]
“Sidebar”=“c:\program files\Windows Sidebar\sidebar.exe” [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
“LManager”=“c:\program files (x86)\Launch Manager\LManager.exe” [2010-03-03 1300560]
“SuiteTray”=“c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe” [2010-04-17 337264]
“EgisUpdate”=“c:\program files (x86)\EgisTec IPS\EgisUpdate.exe” [2010-03-11 201584]
“EgisTecPMMUpdate”=“c:\program files (x86)\EgisTec IPS\PmmUpdate.exe” [2010-03-11 407920]
“NortonOnlineBackupReminder”=“c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe” [2009-07-24 588648]
“Adobe Reader Speed Launcher”=“c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe” [2009-02-28 35696]
“BackupManagerTray”=“c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe” [2010-03-08 260608]
“StartCCC”=“c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” [2010-04-12 98304]
“MDS_Menu”=“c:\program files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe” [2009-05-19 222504]
“ArcadeMovieService”=“c:\program files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe” [2010-03-17 124136]
“SunJavaUpdateSched”=“c:\program files (x86)\Common Files\Java\Java Update\jusched.exe” [2011-06-09 254696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
“ConsentPromptBehaviorAdmin”= 5 (0x5)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableUIADesktopToggle”= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=”“
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Tjenesten Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-30 135664]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]
R3 gupdatem;Google Update Tjeneste (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-30 135664]
R3 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-04-17 305520]
R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Tjenesten Windows Aktivering;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1302000.00A\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1302000.00A\SYMEFA64.SYS [x]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20111221.003\BHDrvx64.sys [2011-12-21 1156216]
S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1302000.00A\ccSetx64.sys [x]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20111223.001\IDSvia64.sys [2011-12-22 488568]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1302000.00A\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1302000.00A\SYMNETS.SYS [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-03-03 325200]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2010-03-10 820768]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\19.2.0.10\ccSvcHst.exe [2011-08-10 138760]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-03-08 250368]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
S2 ODDPwrSvc;Acer ODD Power Service;c:\program files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [2010-04-22 171040]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-12-23 138360]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
.
.
Indhold af mappen ‘Planlagte Opgaver’
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-30 13:39]
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-30 13:39]
.
2011-12-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2884891005-2835700272-3890229236-1000Core.job
- c:\users\Lasse\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-10 13:50]
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2884891005-2835700272-3890229236-1000UA.job
- c:\users\Lasse\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-10 13:50]
.
.
————- x86-64—————-
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@=”{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}”
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-04-17 05:58   137584   ——a-w-  c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“RtHDVCpl”=“c:\program files\Realtek\Audio\HDA\RAVCpl64.exe” [2010-02-25 10081312]
“RtHDVBg”=“c:\program files\Realtek\Audio\HDA\RAVBg64.exe” [2010-02-25 877600]
“AmIcoSinglun64”=“c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe” [2010-02-05 324608]
“ODDPwr”=“c:\program files\Acer\Optical Drive Power Management\ODDPwr.exe” [2010-04-22 223264]
“mwlDaemon”=“c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe” [2010-04-17 349552]
“Acer ePower Management”=“c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe” [2010-03-10 496160]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
“LoadAppInit_DLLs”=0x0
.
———- Yderligere scanning———-
.
uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5553g&r=27361011h506l0403z105t55n1l209
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5553g&r=27361011h506l0403z105t55n1l209
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&ksporter; til Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Google Sidewiki ... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: S&end; til OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 212.10.239.244 212.10.10.5 212.10.10.4
.
- - - - TOMME GENVEJE FJERNET - - - -
.
Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
“ImagePath”=”\“c:\program files (x86)\Norton Internet Security\Engine\19.2.0.10\ccSvcHst.exe\” /s \“NIS\” /m \“c:\program files (x86)\Norton Internet Security\Engine\19.2.0.10\diMaster.dll\” /prefetch:1”
.
——————————- LÅSTE REGISTRERINGS NØGLER——————————-
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=”@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
“Enabled”=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@=”{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx”
“ThreadingModel”=“Apartment”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@=“0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@=“ShockwaveFlash.ShockwaveFlash.10”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@=”{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@=“ShockwaveFlash.ShockwaveFlash”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx”
“ThreadingModel”=“Apartment”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@=“FlashFactory.FlashFactory.1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@=”{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@=“FlashFactory.FlashFactory”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@=“IFlashBroker4”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@=”{00020424-0000-0000-C000-000000000046}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@=”{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
“Solution”=”{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
“Key”=“ActionsPane3”
“Location”=“c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd”
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
————————————Andre kørende processer————————————
.
c:\program files (x86)\Cyberlink\Shared files\RichVideo.exe
.
**************************************************************************
.
Gennemført tid: 2011-12-26 15:17:28 - maskinen blev genstartet
ComboFix-quarantined-files.txt 2011-12-26 14:17
.
Pre-Kørsel: 567.177.822.208 byte ledig
Post-Kørsel: 567.041.429.504 byte ledig
.
- - End Of File - - 83CD53B12B73DD2545F44AF0F21DCCF9

Download OTL af Oldtimer, gem den på dit skrivebord:
http://oldtimer.geekstogo.com/OTL.exe

Start OTL
Kopier nedenstånde med fed skrift ind i Custom Scan feltet

:OTL
:files
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[emptyflash]
[resethosts]
[CLEARALLRESTOREPOINTS]

Klik på  Run Fix - Knappen
Hvis OTL spørger om at genstarte, så sig ja.
Klik på OK.
En log vil åbne, kopier den herind i dit næste svar.

Ellers kan den findes her:
C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, where mmddyyyy_hhmmss

All processes killed
========== OTL ==========
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP-konfiguration
DNS Resolver Cache blev t›mt.
C:\Users\Lasse\Desktop\cmd.bat deleted successfully.
C:\Users\Lasse\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Lasse
->Temp folder emptied: 32335 bytes
->Temporary Internet Files folder emptied: 29707873 bytes
->Java cache emptied: 1155233 bytes
->Google Chrome cache emptied: 350809647 bytes
->Flash cache emptied: 8222497 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 66515 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50383 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 372,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Lasse
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.31.0 log created on 12272011_154027

Files\Folders moved on Reboot…
C:\Users\Lasse\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot…

det hakker stadig =/

Ok.

Luk alle åbne vinduer. Klik på OTL ikonet (for Vista/win7, skal du højreklikke på ikonet og Kør som Administrator) for at starte programmet.
Når vinduet vises, under Output i toppen skift til Minimal Output.
Marker felterne ud for LOP check og Purity Check.

Klik så på Quick Scan.

Det vil give to (2) logfiler på skrivebordet, en kaldet OTL.txt, den anden vil blive navngivet Extras.txt.Husk, hvor du har gemt disse 2 filer.

Da de er forholdsvis lange, kan du blive nødt til at sende dem i flere indlæg.

OTL logfile created on: 28-12-2011 21:37:59 - Run 1
OTL by OldTimer - Version 3.2.31.0   Folder = C:\Users\Lasse\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

5,75 Gb Total Physical Memory | 4,41 Gb Available Physical Memory | 76,77% Memory free
11,49 Gb Paging File | 10,03 Gb Available in Paging File | 87,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 583,07 Gb Total Space | 522,99 Gb Free Space | 89,70% Space Free | Partition Type: NTFS

Computer Name: LASSE-PC | User Name: Lasse | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Lasse\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (Egis Technology Inc.)
PRC - C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe (CyberLink Corp.)
PRC - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
PRC - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
PRC - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\Launch Manager\LMworker.exe (Dritek System Inc.)
PRC - C:\Programmer\Acer\Acer Updater\UpdaterService.exe (Acer Group)
PRC - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)


========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll ()
MOD - C:\Program Files (x86)\Launch Manager\CdDirIo.dll ()


========== Win32 Services (SafeList) ==========

SRV:64bit: - (AMD External Events Utility)—C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV - (Steam Client Service)—C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (NIS)—C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\ccSvcHst.exe (Symantec Corporation)
SRV - (ODDPwrSvc)—C:\Programmer\Acer\Optical Drive Power Management\ODDPWRSvc.exe (Acer Incorporated)
SRV - (MWLService)—C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
SRV - (clr_optimization_v4.0.30319_32)—C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (ePowerSvc)—C:\Programmer\Acer\Acer PowerSmart Manager\ePowerSvc.exe (Acer Incorporated)
SRV - (NTI IScheduleSvc)—C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (NewTech Infosystems, Inc.)
SRV - (DsiWMIService)—C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
SRV - (Updater Service)—C:\Programmer\Acer\Acer Updater\UpdaterService.exe (Acer Group)
SRV - (GREGService)—C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (Acer Incorporated)
SRV - (clr_optimization_v2.0.50727_32)—C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (SymEvent)—C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS (Symantec Corporation)
DRV:64bit: - (SymEFA)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symefa64.sys (Symantec Corporation)
DRV:64bit: - (ccSet_NIS)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\ccsetx64.sys (Symantec Corporation)
DRV:64bit: - (SRTSP)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtsp64.sys (Symantec Corporation)
DRV:64bit: - (SRTSPX) Symantec Real Time Storage Protection (PEL)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtspx64.sys (Symantec Corporation)
DRV:64bit: - (SymNetS)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symnets.sys (Symantec Corporation)
DRV:64bit: - (SymIRON)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\ironx64.sys (Symantec Corporation)
DRV:64bit: - (SymDS)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symds64.sys (Symantec Corporation)
DRV:64bit: - (amdsata)—C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata)—C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD)—C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbFlt)—C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (amdkmdag)—C:\Windows\SysNative\drivers\atipmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdap)—C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (athr)—C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
DRV:64bit: - (BCM43XX)—C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (SynTP)—C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (AtiHdmiService)—C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (L1C)—C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
DRV:64bit: - (usbfilter)—C:\Windows\SysNative\drivers\usbfilter.sys (Advanced Micro Devices)
DRV:64bit: - (AtiPcie) AMD PCI Express (3GIO)—C:\Windows\SysNative\drivers\AtiPcie.sys (Advanced Micro Devices Inc.)
DRV:64bit: - (amdsbs)—C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2)—C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor)—C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv)—C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv)—C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a)—C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir)—C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (mwlPSDVDisk)—C:\Windows\SysNative\drivers\mwlPSDVDisk.sys (Egis Technology Inc.)
DRV:64bit: - (mwlPSDFilter)—C:\Windows\SysNative\drivers\mwlPSDFilter.sys (Egis Technology Inc.)
DRV:64bit: - (mwlPSDNServ)—C:\Windows\SysNative\drivers\mwlPSDNserv.sys (Egis Technology Inc.)
DRV:64bit: - (AmUStor)—C:\Windows\SysNative\drivers\AmUStor.sys (Alcor Micro, Corp.)
DRV:64bit: - (NTIDrvr)—C:\Windows\SysNative\drivers\NTIDrvr.sys (NewTech Infosystems, Inc.)
DRV:64bit: - (UBHelper)—C:\Windows\SysNative\drivers\UBHelper.sys (NewTech Infosystems Corporation)
DRV - (NAVEX15)—C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20111227.002\ex64.sys (Symantec Corporation)
DRV - (NAVENG)—C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20111227.002\eng64.sys (Symantec Corporation)
DRV - (eeCtrl)—C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv)—C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (IDSVia64)—C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20111226.001\IDSviA64.sys (Symantec Corporation)
DRV - (BHDrvx64)—C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20111221.003\BHDrvx64.sys (Symantec Corporation)
DRV - (WIMMount)—C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5553g&r=27361011h506l0403z105t55n1l209
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5553g&r=27361011h506l0403z105t55n1l209

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&m=aspire_5553g&r=27361011h506l0403z105t55n1l209
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Lasse\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Lasse\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn\ [2011-12-23 21:21:56 | 000,000,000 |—-D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn\ [2011-12-28 21:32:20 | 000,000,000 |—-D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie;={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl;={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Lasse\AppData\Local\Google\Chrome\Application\16.0.912.63\gcswf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Lasse\AppData\Local\Google\Chrome\Application\16.0.912.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Lasse\AppData\Local\Google\Chrome\Application\16.0.912.63\pdf.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\Lasse\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1857_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\Lasse\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.2_0\
CHR - Extension: Google-s\u00F8gning = C:\Users\Lasse\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.14_0\
CHR - Extension: Norton Identity Protection = C:\Users\Lasse\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.2.1.6_0\
CHR - Extension: Gmail = C:\Users\Lasse\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\

O1 HOSTS File: ([2011-12-27 15:41:36 | 000,000,098 |——| M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1     localhost
O1 - Hosts: ::1     localhost
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmer\Google\GoogleToolbarNotifier\5.7.7018.1622\swg64.dll (Google Inc.)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programmer\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\coIEPlg.dll (Symantec Corporation)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\IPS\IPSBHO.DLL (Symantec Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll (Google Inc.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\coIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.2.0.10\coIEPlg.dll (Symantec Corporation)
O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Programmer\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
O4:64bit: - HKLM..\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (Egis Technology Inc.)
O4:64bit: - HKLM..\Run: [ODDPwr] C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [ArcadeMovieService] C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [EgisUpdate] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [MDS_Menu] C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SuiteTray] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: E&ksporter; til Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Google Sidewiki ... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8:64bit: - Extra context menu item: S&end; til OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: E&ksporter; til Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Google Sidewiki ... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: S&end; til OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O9:64bit: - Extra Button: Send til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programmer\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra ‘Tools’ menuitem : S&end; til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programmer\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: &Sammenk;ædede OneNote-noter - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programmer\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra ‘Tools’ menuitem : &Sammenk;ædede OneNote-noter - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programmer\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx (WRC Class)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.10.239.244 212.10.10.5 212.10.10.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AC6351A6-50A9-49E6-B2CF-4022B1F43B0F}: DhcpNameServer = 212.10.239.244 212.10.10.5 212.10.10.4
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programmer\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open]—“%1” %*
O35:64bit: - HKLM\..exefile [open]—“%1” %*
O35 - HKLM\..comfile [open]—“%1” %*
O35 - HKLM\..exefile [open]—“%1” %*
O37:64bit: - HKLM\...com [@ = ComFile]—“%1” %*
O37:64bit: - HKLM\...exe [@ = exefile]—“%1” %*
O37 - HKLM\...com [@ = ComFile]—“%1” %*
O37 - HKLM\...exe [@ = exefile]—“%1” %*

========== Files/Folders - Created Within 30 Days ==========

[2011-12-27 15:40:27 | 000,000,000 |—-D | C]—C:\_OTL
[2011-12-27 15:35:11 | 000,584,192 |——| C] (OldTimer Tools)—C:\Users\Lasse\Desktop\OTL.exe
[2011-12-26 15:21:49 | 000,000,000 | -HSD | C]—C:\$RECYCLE.BIN
[2011-12-26 14:53:10 | 000,000,000 |—-D | C]—C:\Users\Lasse\Desktop\Ny mappe
[2011-12-26 14:50:52 | 000,060,416 |——| C] (NirSoft)—C:\Windows\NIRCMD.exe
[2011-12-26 14:50:51 | 000,518,144 |——| C] (SteelWerX)—C:\Windows\SWREG.exe
[2011-12-26 14:50:51 | 000,406,528 |——| C] (SteelWerX)—C:\Windows\SWSC.exe
[2011-12-26 14:50:42 | 000,000,000 |—-D | C]—C:\Windows\ERDNT
[2011-12-26 14:49:08 | 000,000,000 |—-D | C]—C:\Qoobox
[2011-12-26 14:46:02 | 004,352,130 | R—- | C] (Swearware)—C:\Users\Lasse\Desktop\ComboFix.exe
[2011-12-24 13:39:48 | 000,000,000 |—-D | C]—C:\Users\Lasse\AppData\Local\CrashDumps
[2011-12-24 12:09:20 | 000,000,000 |—-D | C]—C:\Riot Games
[2011-12-24 12:09:20 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
[2011-12-24 11:27:51 | 000,000,000 |—-D | C]—C:\Users\Lasse\Desktop\LeagueOfLegends
[2011-12-23 21:28:33 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Symantec Shared
[2011-12-23 21:18:26 | 001,084,024 |——| C] (Symantec Corporation)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symefa64.sys
[2011-12-23 21:18:26 | 000,729,720 |——| C] (Symantec Corporation)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtsp64.sys
[2011-12-23 21:18:26 | 000,451,192 | R—- | C] (Symantec Corporation)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symds64.sys
[2011-12-23 21:18:26 | 000,401,016 |——| C] (Symantec Corporation)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symnets.sys
[2011-12-23 21:18:26 | 000,189,560 |——| C] (Symantec Corporation)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\ironx64.sys
[2011-12-23 21:18:26 | 000,167,048 |——| C] (Symantec Corporation)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\ccsetx64.sys
[2011-12-23 21:18:26 | 000,037,496 |——| C] (Symantec Corporation)—C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtspx64.sys
[2011-12-23 21:18:02 | 000,000,000 |—-D | C]—C:\Windows\SysNative\drivers\NISx64\1302000.00A
[2011-12-23 21:07:48 | 000,174,200 |——| C] (Symantec Corporation)—C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2011-12-23 21:07:47 | 000,000,000 |—-D | C]—C:\Program Files\Common Files\Symantec Shared
[2011-12-23 21:07:47 | 000,000,000 |—-D | C]—C:\Program Files\Symantec
[2011-12-23 21:06:51 | 000,000,000 |—-D | C]—C:\Windows\SysNative\drivers\NISx64
[2011-12-23 21:06:48 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Norton Internet Security
[2011-12-23 21:06:46 | 000,000,000 | R—D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
[2011-12-23 21:06:46 | 000,000,000 |—-D | C]—C:\ProgramData\Norton
[2011-12-23 21:02:39 | 000,000,000 |—-D | C]—C:\ProgramData\NortonInstaller
[2011-12-23 21:02:39 | 000,000,000 |—-D | C]—C:\Program Files (x86)\NortonInstaller
[2011-12-23 21:02:28 | 109,191,392 |——| C] (Symantec Corporation)—C:\Users\Lasse\Desktop\NIS-TW-30-19-1-0-28-DK.exe
[2011-12-09 16:09:51 | 000,000,000 |—-D | C]—C:\Users\Lasse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2011-12-09 16:09:03 | 000,000,000 |—-D | C]—C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III
[2011-12-09 16:09:03 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Warcraft III
[2011-12-09 16:09:01 | 000,000,000 |—-D | C]—C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2011-12-09 15:58:52 | 000,000,000 |—-D | C]—C:\Windows\Minidump
[2011-12-09 15:52:40 | 000,000,000 |—-D | C]—C:\Users\Lasse\Warcraft III 1.21b ROC Installer enGB
[2011-12-09 15:52:21 | 002,693,532 |——| C] (Blizzard Entertainment)—C:\Users\Lasse\Desktop\Downloader_Warcraft3_Reign_of_Chaos_enGB.exe
[2011-12-09 15:33:41 | 000,000,000 |—-D | C]—C:\Users\Lasse\AppData\Roaming\CyberLink
[2011-12-09 15:33:25 | 000,000,000 |—-D | C]—C:\Users\Lasse\Documents\CyberLink
[2011-12-03 15:33:21 | 000,000,000 |—-D | C]—C:\Users\Lasse\AppData\Local\ElevatedDiagnostics
[2 C:\Users\Lasse\Desktop\*.tmp files -> C:\Users\Lasse\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011-12-28 21:39:16 | 000,009,920 | -H—| M] ()—C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-12-28 21:39:16 | 000,009,920 | -H—| M] ()—C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-12-28 21:32:08 | 000,000,928 |——| M] ()—C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011-12-28 21:31:58 | 000,067,584 |—S- | M] ()—C:\Windows\bootstat.dat
[2011-12-28 21:31:49 | 334,155,775 | -HS- | M] ()—C:\hiberfil.sys
[2011-12-27 20:55:19 | 000,000,932 |——| M] ()—C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011-12-27 19:15:00 | 000,000,942 |——| M] ()—C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2884891005-2835700272-3890229236-1000UA.job
[2011-12-27 19:15:00 | 000,000,890 |——| M] ()—C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2884891005-2835700272-3890229236-1000Core.job
[2011-12-27 15:41:36 | 000,000,098 |——| M] ()—C:\Windows\SysNative\drivers\etc\Hosts
[2011-12-27 15:35:14 | 000,584,192 |——| M] (OldTimer Tools)—C:\Users\Lasse\Desktop\OTL.exe
[2011-12-26 14:46:11 | 004,352,130 | R—- | M] (Swearware)—C:\Users\Lasse\Desktop\ComboFix.exe
[2011-12-24 12:20:53 | 000,001,726 |——| M] ()—C:\Users\Public\Desktop\Play League of Legends.lnk
[2011-12-24 11:16:21 | 002,370,560 |——| M] ()—C:\Users\Lasse\Desktop\LeagueofLegends.exe
[2011-12-24 11:12:25 | 000,000,841 |——| M] ()—C:\Users\Lasse\Desktop\LeagueOfLegends - Genvej.lnk
[2011-12-24 10:29:56 | 000,002,405 |——| M] ()—C:\Users\Lasse\Desktop\Google Chrome.lnk
[2011-12-23 23:10:06 | 000,375,720 |——| M] ()—C:\Windows\SysNative\FNTCACHE.DAT
[2011-12-23 23:01:44 | 001,781,873 |——| M] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\Cat.DB
[2011-12-23 21:21:35 | 000,002,505 |——| M] ()—C:\Users\Public\Desktop\Norton Internet Security.lnk
[2011-12-23 21:18:49 | 000,004,782 |——| M] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\VT20111023.023
[2011-12-23 21:07:47 | 000,174,200 |——| M] (Symantec Corporation)—C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2011-12-23 21:07:47 | 000,007,530 |——| M] ()—C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2011-12-23 21:07:47 | 000,000,855 |——| M] ()—C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2011-12-23 21:02:28 | 109,191,392 |——| M] (Symantec Corporation)—C:\Users\Lasse\Desktop\NIS-TW-30-19-1-0-28-DK.exe
[2011-12-09 16:09:34 | 000,001,057 |——| M] ()—C:\Users\Public\Desktop\Warcraft III.lnk
[2011-12-09 15:58:44 | 390,048,542 |——| M] ()—C:\Windows\MEMORY.DMP
[2011-12-09 15:52:23 | 002,693,532 |——| M] (Blizzard Entertainment)—C:\Users\Lasse\Desktop\Downloader_Warcraft3_Reign_of_Chaos_enGB.exe
[2 C:\Users\Lasse\Desktop\*.tmp files -> C:\Users\Lasse\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011-12-26 14:50:52 | 000,256,000 |——| C] ()—C:\Windows\PEV.exe
[2011-12-26 14:50:52 | 000,208,896 |——| C] ()—C:\Windows\MBR.exe
[2011-12-26 14:50:51 | 000,098,816 |——| C] ()—C:\Windows\sed.exe
[2011-12-26 14:50:51 | 000,080,412 |——| C] ()—C:\Windows\grep.exe
[2011-12-26 14:50:51 | 000,068,096 |——| C] ()—C:\Windows\zip.exe
[2011-12-24 12:20:52 | 000,001,726 |——| C] ()—C:\Users\Public\Desktop\Play League of Legends.lnk
[2011-12-24 11:16:16 | 002,370,560 |——| C] ()—C:\Users\Lasse\Desktop\LeagueofLegends.exe
[2011-12-24 11:12:25 | 000,000,841 |——| C] ()—C:\Users\Lasse\Desktop\LeagueOfLegends - Genvej.lnk
[2011-12-23 21:20:39 | 001,781,873 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\Cat.DB
[2011-12-23 21:19:39 | 000,004,782 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\VT20111023.023
[2011-12-23 21:18:26 | 000,007,510 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\ccsetx64.cat
[2011-12-23 21:18:26 | 000,007,504 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtspx64.cat
[2011-12-23 21:18:26 | 000,007,502 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symefa64.cat
[2011-12-23 21:18:26 | 000,007,500 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtsp64.cat
[2011-12-23 21:18:26 | 000,007,496 | R—- | C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symds64.cat
[2011-12-23 21:18:26 | 000,007,492 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\iron.cat
[2011-12-23 21:18:26 | 000,007,458 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symnet64.cat
[2011-12-23 21:18:26 | 000,003,433 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symefa.inf
[2011-12-23 21:18:26 | 000,002,852 | R—- | C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symds.inf
[2011-12-23 21:18:26 | 000,001,440 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\symnet.inf
[2011-12-23 21:18:26 | 000,001,438 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtsp64.inf
[2011-12-23 21:18:26 | 000,001,420 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\srtspx64.inf
[2011-12-23 21:18:26 | 000,000,854 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\ccsetx64.inf
[2011-12-23 21:18:26 | 000,000,772 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\iron.inf
[2011-12-23 21:18:02 | 000,000,172 |——| C] ()—C:\Windows\SysNative\drivers\NISx64\1302000.00A\isolate.ini
[2011-12-23 21:07:48 | 000,007,530 |——| C] ()—C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2011-12-23 21:07:48 | 000,000,855 |——| C] ()—C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2011-12-23 21:07:36 | 000,002,505 |——| C] ()—C:\Users\Public\Desktop\Norton Internet Security.lnk
[2011-12-09 16:09:03 | 000,001,057 |——| C] ()—C:\Users\Public\Desktop\Warcraft III.lnk
[2011-12-09 15:58:44 | 390,048,542 |——| C] ()—C:\Windows\MEMORY.DMP
[2011-10-30 14:20:59 | 000,000,000 |——| C] ()—C:\Windows\ativpsrm.bin
[2010-04-26 10:36:06 | 000,002,093 |——| C] ()—C:\Windows\SysWow64\atipblag.dat
[2009-07-14 06:38:36 | 000,067,584 |—S- | C] ()—C:\Windows\bootstat.dat
[2009-07-14 03:35:51 | 000,000,741 |——| C] ()—C:\Windows\SysWow64\NOISE.DAT
[2009-07-14 03:34:42 | 000,215,943 |——| C] ()—C:\Windows\SysWow64\dssec.dat
[2009-07-14 01:10:29 | 000,043,131 |——| C] ()—C:\Windows\mib.bin
[2009-07-14 00:42:10 | 000,064,000 |——| C] ()—C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 22:03:59 | 000,364,544 |——| C] ()—C:\Windows\SysWow64\msjetoledb40.dll
[2009-06-10 22:26:10 | 000,673,088 |——| C] ()—C:\Windows\SysWow64\mlang.dat

========== LOP Check ==========

[2011-10-30 21:42:08 | 000,000,000 |—-D | M]—C:\Users\Lasse\AppData\Roaming\LolClient
[2009-07-14 06:08:49 | 000,024,522 |——| M] ()—C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

OTL Extras logfile created on: 28-12-2011 21:37:59 - Run 1
OTL by OldTimer - Version 3.2.31.0   Folder = C:\Users\Lasse\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

5,75 Gb Total Physical Memory | 4,41 Gb Available Physical Memory | 76,77% Memory free
11,49 Gb Paging File | 10,03 Gb Available in Paging File | 87,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 583,07 Gb Total Space | 522,99 Gb Free Space | 89,70% Space Free | Partition Type: NTFS

Computer Name: LASSE-PC | User Name: Lasse | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut]—C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile]—C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open]—“%1” %*
cmdfile [open]—“%1” %*
comfile [open]—“%1” %*
exefile [open]—“%1” %*
helpfile [open]—Reg Error: Key error.
htmlfile [print]—rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML “%1” (Microsoft Corporation)
inffile [install]—%SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
InternetShortcut [open]—“C:\Windows\System32\rundll32.exe” “C:\Windows\System32\ieframe.dll”,OpenURL %l (Microsoft Corporation)
InternetShortcut [print]—“C:\Windows\System32\rundll32.exe” “C:\Windows\System32\mshtml.dll”,PrintHTML “%1” (Microsoft Corporation)
piffile [open]—“%1” %*
regfile [merge]—Reg Error: Key error.
scrfile [config]—“%1”
scrfile [install]—rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open]—“%1” /S
txtfile [edit]—Reg Error: Key error.
Unknown [openas]—%SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd]—cmd.exe /s /k pushd “%V” (Microsoft Corporation)
Directory [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore]—Reg Error: Value error.
Drive [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open]—“%1” %*
cmdfile [open]—“%1” %*
comfile [open]—“%1” %*
cplfile [cplopen]—%SystemRoot%\System32\control.exe “%1”,%* (Microsoft Corporation)
exefile [open]—“%1” %*
helpfile [open]—Reg Error: Key error.
piffile [open]—“%1” %*
regfile [merge]—Reg Error: Key error.
scrfile [config]—“%1”
scrfile [install]—rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open]—“%1” /S
txtfile [edit]—Reg Error: Key error.
Unknown [openas]—%SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd]—cmd.exe /s /k pushd “%V” (Microsoft Corporation)
Directory [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open]—%SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore]—Reg Error: Value error.
Drive [find]—%SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
“cval” = 1
“FirewallDisableNotify” = 0
“AntiVirusDisableNotify” = 0
“UpdatesDisableNotify” = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
“VistaSp1” = 28 4D B2 76 41 04 CA 01 [binary data]
“AntiVirusOverride” = 0
“AntiSpywareOverride” = 0
“FirewallOverride” = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
“FirewallDisableNotify” = 0
“AntiVirusDisableNotify” = 0
“UpdatesDisableNotify” = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
“DisableSR” = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
“DisableNotifications” = 0
“EnableFirewall” = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
“DisableNotifications” = 0
“EnableFirewall” = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
“DisableNotifications” = 0
“EnableFirewall” = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}” = Shredder
“{85D8D37F-D511-449C-EB8A-B84EC86B6550}” = ATI Catalyst Install Manager
“{90120000-002A-0406-1000-0000000FF1CE}” = Microsoft Office Shared 64-bit MUI (Danish) 2007
“{90140000-002A-0000-1000-0000000FF1CE}” = Microsoft Office Office 64-bit Components 2010
“{90140000-002A-0406-1000-0000000FF1CE}” = Microsoft Office Shared 64-bit MUI (Danish) 2010
“{95120000-00B9-0409-1000-0000000FF1CE}” = Microsoft Application Error Reporting
“{E1C6A756-712F-3E5B-CB0A-B75369181B56}” = ccc-utility64
“{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}” = Microsoft .NET Framework 4 Client Profile
“{F83E9BF0-B8D8-3D68-9E07-7505290C2202}” = Microsoft .NET Framework 4 Client Profile DAN Language Pack
“Adobe Flash Player ActiveX” = Adobe Flash Player 11 ActiveX 64-bit
“Microsoft .NET Framework 4 Client Profile” = Microsoft .NET Framework 4 Client Profile
“Microsoft .NET Framework 4 Client Profile DAN Language Pack” = Microsoft .NET Framework 4 Client Profile DAN sprogpakke
“SynTPDeinstKey” = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“{00B0D6DC-9420-B75F-EC08-D46EE769F99A}” = CCC Help Portuguese
“{01328CD2-C56C-712B-33FE-9C9906430388}” = CCC Help Japanese
“{048298C9-A4D3-490B-9FF9-AB023A9238F3}” = Steam
“{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}” = MyWinLocker
“{10AA3C33-F2CD-45AB-9A7B-6D6168905B4A}” = CCC Help Turkish
“{12EFA1A4-AC3B-443C-8143-237EDE760403}” = NTI Backup Now Standard
“{15D967B5-A4BE-42AE-9E84-64CD062B25AA}” = eSobi v2
“{162150B2-17EB-D103-BA92-2F7E03C0AA78}” = CCC Help Italian
“{16511189-473D-0A47-83AA-D3F760119F95}” = CCC Help Finnish
“{18455581-E099-4BA8-BC6B-F34B2F06600C}” = Google Toolbar for Internet Explorer
“{18486070-A777-DC8B-ED32-9BE79FFF2E10}” = CCC Help Greek
“{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
“{205C6BDD-7B73-42DE-8505-9A093F35A238}” = Overførselsværktøj til Windows Live
“{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}” = MSVCRT
“{2318C2B1-4965-11d4-9B18-009027A5CD4F}” = Google Toolbar for Internet Explorer
“{2413930C-8309-47A6-BC61-5EF27A4222BC}” = NTI Media Maker 8
“{2637C347-9DAD-11D6-9EA2-00055D0CA761}” = Acer Arcade Deluxe
“{26A24AE4-039D-4CA4-87B4-2F83216029FF}” = Java(TM) 6 Update 30
“{287ECFA4-719A-2143-A09B-D6A12DE54E40}” = Acrobat.com
“{2CDC68A4-3CE7-4F7B-A5BE-ECB05ABB8719}” = Windows Live Movie Maker
“{2F3082BF-4A3B-45CA-805F-52DBBFD3C645}” = Windows Live Essentials
“{3108C217-BE83-42E4-AE9E-A56A2A92E549}” = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
“{34F20561-F753-B850-5296-AC05872E9C1D}” = CCC Help Swedish
“{38B0505B-0B4F-E42E-41BE-83382E034515}” = CCC Help Thai
“{3B4E636E-9D65-4D67-BA61-189800823F52}” = Windows Live Communications Platform
“{3DB0448D-AD82-4923-B305-D001E521A964}” = Acer PowerSmart Manager
“{4114CFD4-137A-6FFF-A64B-5B12A954FEFA}” = Catalyst Control Center Localization All
“{45A2D49C-8124-4015-A8B3-073A827EC5C1}” = Windows Live Sync
“{46E33CD6-38CE-62DA-76B4-920F998F76A6}” = CCC Help French
“{48AB28E3-59D0-9ADC-315B-C6FFAD25E506}” = CCC Help English
“{492824A2-AC62-4EAE-63E8-7CBBBC509080}” = CCC Help Korean
“{4968622A-4D3F-489E-9ACE-5FEC4CC0BDE3}” = MediaShow Espresso
“{4A03706F-666A-4037-7777-5F2748764D10}” = Java Auto Updater
“{51F026FA-5146-4232-A8BA-1364740BD053}” = Acer Crystal Eye webcam
“{5B175419-184D-AB06-0953-295F230D94AA}” = CCC Help German
“{5E4F1D6D-A25F-C074-74DA-23955C777C67}” = CCC Help Norwegian
“{5E8EBAFB-D03B-056F-A545-D0252A2EA3E3}” = Catalyst Control Center InstallProxy
“{612C34C7-5E90-47D8-9B5C-0F717DD82726}” = swMSM
“{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}” = Microsoft Visual C++ 2005 Redistributable
“{71C5CC7E-324F-3411-739A-8AC673286270}” = CCC Help Russian
“{72B776E5-4530-4C4B-9453-751DF87D9D93}” = Backup Manager Basic
“{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}” = MyWinLocker Suite
“{7F811A54-5A09-4579-90E1-C93498E230D9}” = Acer eRecovery Management
“{82C2E711-4A7A-57D7-5B28-C012E33E35A6}” = CCC Help Spanish
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}” = Chicken Invaders 2
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110300453}” = Spin & Win
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}” = Granny In Paradise
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}” = Cake Mania
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}” = Galapago
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}” = Amazonia
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}” = Heroes of Hellas
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}” = Dream Day First Home
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}” = Dairy Dash
“{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}” = Farm Frenzy 2
“{842D2DAB-09D2-FEF8-B767-4928FADAF417}” = CCC Help Chinese Traditional
“{88E2EE2D-5616-1FB2-4936-DF2126A1B11F}” = CCC Help Polish
“{899526C7-D5C4-6A45-0B38-153BB3FA3C2C}” = CCC Help Czech
“{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}” = Microsoft Silverlight
“{90120000-0015-0406-0000-0000000FF1CE}” = Microsoft Office Access MUI (Danish) 2007
“{90120000-0015-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-0016-0406-0000-0000000FF1CE}” = Microsoft Office Excel MUI (Danish) 2007
“{90120000-0016-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-0017-0406-0000-0000000FF1CE}” = Microsoft Office SharePoint Designer MUI (Danish) 2007
“{90120000-0017-0406-0000-0000000FF1CE}_OMUI.da-dk_{4C6BA43D-D896-4599-9D57-25771CCC8091}” = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
“{90120000-0018-0406-0000-0000000FF1CE}” = Microsoft Office PowerPoint MUI (Danish) 2007
“{90120000-0018-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-0019-0406-0000-0000000FF1CE}” = Microsoft Office Publisher MUI (Danish) 2007
“{90120000-0019-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-001A-0406-0000-0000000FF1CE}” = Microsoft Office Outlook MUI (Danish) 2007
“{90120000-001A-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-001B-0406-0000-0000000FF1CE}” = Microsoft Office Word MUI (Danish) 2007
“{90120000-001B-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-001F-0406-0000-0000000FF1CE}” = Microsoft Office Proof (Danish) 2007
“{90120000-001F-0406-0000-0000000FF1CE}_OMUI.da-dk_{25E093C2-374E-44A9-9BCE-3881BD442F3F}” = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
“{90120000-001F-0407-0000-0000000FF1CE}” = Microsoft Office Proof (German) 2007
“{90120000-001F-0407-0000-0000000FF1CE}_OMUI.da-dk_{A0516415-ED61-419A-981D-93596DA74165}” = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
“{90120000-001F-0409-0000-0000000FF1CE}” = Microsoft Office Proof (English) 2007
“{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}” = 2007 Microsoft Office Suite Service Pack 2 (SP2)
“{90120000-0020-0406-0000-0000000FF1CE}” = Kompatibilitetspakke til Office 2007-systemet
“{90120000-002A-0406-1000-0000000FF1CE}_OMUI.da-dk_{50865937-2EBB-4BBF-8861-BF5972C95D4B}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-002C-0406-0000-0000000FF1CE}” = Microsoft Office Proofing (Danish) 2007
“{90120000-0044-0406-0000-0000000FF1CE}” = Microsoft Office InfoPath MUI (Danish) 2007
“{90120000-0044-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-006E-0406-0000-0000000FF1CE}” = Microsoft Office Shared MUI (Danish) 2007
“{90120000-006E-0406-0000-0000000FF1CE}_OMUI.da-dk_{50865937-2EBB-4BBF-8861-BF5972C95D4B}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-00A1-0406-0000-0000000FF1CE}” = Microsoft Office OneNote MUI (Danish) 2007
“{90120000-00A1-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-00BA-0406-0000-0000000FF1CE}” = Microsoft Office Groove MUI (Danish) 2007
“{90120000-00BA-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-0100-0406-0000-0000000FF1CE}” = Microsoft Office O MUI (Danish) 2007
“{90120000-0100-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90120000-0101-0406-0000-0000000FF1CE}” = Microsoft Office X MUI (Danish) 2007
“{90120000-0101-0406-0000-0000000FF1CE}_OMUI.da-dk_{652017DD-E99F-4420-9CC8-AC25CE8375A5}” = Microsoft Office 2007 Service Pack 2 (SP2)
“{90140000-0015-0406-0000-0000000FF1CE}” = Microsoft Office Access MUI (Danish) 2010
“{90140000-0015-0406-0000-0000000FF1CE}_Office14.SingleImage_{CCB7569F-D761-4341-BCF2-0219BA60EA4D}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-0016-0406-0000-0000000FF1CE}” = Microsoft Office Excel MUI (Danish) 2010
“{90140000-0016-0406-0000-0000000FF1CE}_Office14.SingleImage_{CCB7569F-D761-4341-BCF2-0219BA60EA4D}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-0018-0406-0000-0000000FF1CE}” = Microsoft Office PowerPoint MUI (Danish) 2010
“{90140000-0018-0406-0000-0000000FF1CE}_Office14.SingleImage_{CCB7569F-D761-4341-BCF2-0219BA60EA4D}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-0019-0406-0000-0000000FF1CE}” = Microsoft Office Publisher MUI (Danish) 2010
“{90140000-0019-0406-0000-0000000FF1CE}_Office14.SingleImage_{CCB7569F-D761-4341-BCF2-0219BA60EA4D}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-001A-0406-0000-0000000FF1CE}” = Microsoft Office Outlook MUI (Danish) 2010
“{90140000-001A-0406-0000-0000000FF1CE}_Office14.SingleImage_{CCB7569F-D761-4341-BCF2-0219BA60EA4D}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-001B-0406-0000-0000000FF1CE}” = Microsoft Office Word MUI (Danish) 2010
“{90140000-001B-0406-0000-0000000FF1CE}_Office14.SingleImage_{CCB7569F-D761-4341-BCF2-0219BA60EA4D}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-001F-0406-0000-0000000FF1CE}” = Microsoft Office Proof (Danish) 2010
“{90140000-001F-0406-0000-0000000FF1CE}_Office14.SingleImage_{59BCA417-5095-450B-931A-AE6194728386}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-001F-0407-0000-0000000FF1CE}” = Microsoft Office Proof (German) 2010
“{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-001F-0409-0000-0000000FF1CE}” = Microsoft Office Proof (English) 2010
“{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-001F-041D-0000-0000000FF1CE}” = Microsoft Office Proof (Swedish) 2010
“{90140000-001F-041D-0000-0000000FF1CE}_Office14.SingleImage_{D00E944F-5ECB-42FF-B58E-8FDCF2219DE8}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-002A-0406-1000-0000000FF1CE}_Office14.SingleImage_{2AE96E9C-E4F4-4D18-8A54-C4FABBEA0CDD}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-002C-0406-0000-0000000FF1CE}” = Microsoft Office Proofing (Danish) 2010
“{90140000-002C-0406-0000-0000000FF1CE}_Office14.SingleImage_{EC231F64-29AF-4FBD-85B8-EAFFFAE8B7A5}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-003D-0000-0000-0000000FF1CE}” = Microsoft Office Single Image 2010
“{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-006E-0406-0000-0000000FF1CE}” = Microsoft Office Shared MUI (Danish) 2010
“{90140000-006E-0406-0000-0000000FF1CE}_Office14.SingleImage_{63CDEDB9-50F5-4C35-9219-72C4F31A61FE}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{90140000-00A1-0406-0000-0000000FF1CE}” = Microsoft Office OneNote MUI (Danish) 2010
“{90140000-00A1-0406-0000-0000000FF1CE}_Office14.SingleImage_{CCB7569F-D761-4341-BCF2-0219BA60EA4D}” = Microsoft Office 2010 Service Pack 1 (SP1)
“{918A9082-6287-4D25-9002-5E5D5E4971CB}” = League of Legends
“{94B8F069-F223-4F48-BC88-7104CBA77F30}” = Windows Live Messenger
“{95120000-00AF-0406-0000-0000000FF1CE}” = Microsoft Office PowerPoint Viewer 2007 (Danish)
“{980A182F-E0A2-4A40-94C1-AE0C1235902E}” = Pando Media Booster
“{987B04C4-B5AC-4AD6-A7E9-8D681085B850}” = AMD USB Filter Driver
“{9A25302D-30C0-39D9-BD6F-21E6EC160475}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
“{9BE518E6-ECC6-35A9-88E4-87755C07200F}” = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
“{A2BCA9F1-566C-4805-97D1-7FDC93386723}” = Adobe AIR
“{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}” = Google Update Helper
“{ABEE079E-648E-488B-8301-0C3DB48C1BCE}_is1” = Acer GameZone Console
“{AC76BA86-7AD7-FFFF-7B44-A91000000001}” = Adobe Reader 9.1 MUI
“{AE09C972-EEB2-4DA5-8090-0FCF54576854}” = Optical Drive Power Management
“{B238D61F-3EEF-4716-BFEA-9903DEF045D9}” = Microsoft Works
“{B6523B86-1148-A4D8-DB4A-898CEBFF4515}” = CCC Help Chinese Standard
“{B906C11A-D193-4143-9FA7-E2EE8A5A8F21}” = Acer Arcade Movie
“{BC10AEAD-7C44-6FF0-E9E3-FF52706A4229}” = Catalyst Control Center Graphics Full New
“{BFD09E5B-6D40-4CAD-A349-103BFEF1C574}” = Windows Live Mail
“{C2695E83-CF1D-43D1-84FE-B3BEC561012A}” = Shredder
“{C2FFBF33-B5FF-97ED-0A8B-396F6CD48CE7}” = Catalyst Control Center Core Implementation
“{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}” = Norton Online Backup
“{D249CCCD-570A-DB5B-EFA1-55C3D346C996}” = CCC Help Hungarian
“{D7EC54D8-3D95-4F9D-A191-59C9BB7F5AC9}” = Windows Live Photo Gallery
“{DF4FA02C-9E2E-4A1E-7062-49BB95CC3F9B}” = CCC Help Dutch
“{E2DFE069-083E-4631-9B6C-43C48E991DE5}” = Junk Mail filter update
“{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}” = Microsoft Office Suite Activation Assistant
“{E5EABF66-F9C4-430C-B97D-3CF28A58D50B}” = Alcor Micro USB Card Reader
“{E80F9ABB-618D-4B9E-9EA0-5BF6A7C2FE9D}” = Tilmeldingsassistent til Windows Live
“{EBFA4E4B-B6FC-CDDE-1472-E80BB268A75E}” = CCC Help Danish
“{EE171732-BEB4-4576-887D-CB62727F01CA}” = Acer Updater
“{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}” = Microsoft SQL Server 2005 Compact Edition [ENU]
“{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}” = Microsoft Choice Guard
“{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}” = Realtek High Definition Audio Driver
“{F4BAB315-DE81-C246-F84F-147D104AFA32}” = ccc-core-static
“{F5122158-BD9C-47AE-59C1-65401F010645}” = Catalyst Control Center Graphics Full Existing
“{F7893A29-FD9C-FEC9-06A2-07C59E62BA0C}” = Catalyst Control Center Graphics Light
“{F9537669-8644-7532-C8EE-A41B34953D20}” = Catalyst Control Center Graphics Previews Common
“{FC0C6E54-BCD4-42C5-BEAA-4FFFEC499EE0}” = Windows Live Writer
“{FC635D8E-FFBA-4B2C-BE68-A37D56BDFB74}” = Catalyst Control Center - Branding
“{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}” = Visual Studio 2008 x64 Redistributables
“{AA59DDE4-B672-4621-A016-4C248204957A}” = Skype™ 5.5
“Acer Registration” = Acer Registration
“Acer Screensaver” = Acer ScreenSaver
“Acer Welcome Center” = Welcome Center
“Adobe AIR” = Adobe AIR
“Adobe Shockwave Player” = Adobe Shockwave Player 11.6
“HaaliMkx” = Haali Media Splitter
“Identity Card” = Identity Card
“InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}” = NTI Backup Now 5
“InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}” = eSobi v2
“InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}” = NTI Media Maker 8
“InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}” = Acer Arcade Deluxe
“InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}” = Acer Backup Manager
“InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}” = MyWinLocker Suite
“InstallShield_{E5EABF66-F9C4-430C-B97D-3CF28A58D50B}” = Alcor Micro USB Card Reader
“LManager” = Launch Manager
“NIS” = Norton Internet Security
“Office14.SingleImage” = Microsoft Office Home and Student 2010
“OMUI.da-dk” = Microsoft Office Language Pack 2007 - Danish/dansk
“Steam App 10” = Counter-Strike
“Warcraft III” = Warcraft III
“WinLiveSuite_Wave3” = Windows Live Essentials
“WinRAR archiver” = WinRAR 4.01 (32-bit)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
“Google Chrome” = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 17-12-2011 12:38:05 | Computer Name = Lasse-Pc | Source = SideBySide | ID = 16842815
Description = Aktiveringskontekstgenereringen mislykkedes for “c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll”. Der er en fejl i manifestet
eller politikfilen “c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll” i linje 3.  Værdien “MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR”
for attributten “version” i elementet “assemblyIdentity” er ugyldig.

Error - 17-12-2011 12:38:31 | Computer Name = Lasse-Pc | Source = SideBySide | ID = 16842787
Description = Aktiveringskontekstgenereringen mislykkedes for “c:\program files
(x86)\windows live\photo gallery\MovieMaker.Exe”. Der er en fejl i manifestet eller
politikfilen “c:\program files (x86)\windows live\photo gallery\WLMFDS.DLL” i linje
8.  Den komponentidentitet, der blev fundet i manifestet, stemmer ikke overens med
den anmodede komponents identitet.  Reference er WLMFDS,processorArchitecture=“AMD64”,type=“win32”,version=“1.0.0.1”.
Definition
er WLMFDS,processorArchitecture=“x86”,type=“win32”,version=“1.0.0.1”.  Anvend sxstrace.exe
til detaljeret diagnose.

Error - 18-12-2011 19:05:20 | Computer Name = Lasse-Pc | Source = Application Error | ID = 1000
Description = Navn på program med fejl: League of Legends.exe, version: 1.0.0.131,
tidsstempel: 0x4ee67891 Navn på modul med fejl: League of Legends.exe, version:
1.0.0.131, tidsstempel: 0x4ee67891 Undtagelseskode: 0xc0000005 Forskydning med fejl
0x00492fc7 Proces-id 0xe54 Programmets starttidspunkt 0x01ccbdd567bc9015 Programsti:
C:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.0.100\deploy\League
of Legends.exe Modulsti: C:\Riot Games\League of Legends\RADS\solutions\lol_game_client_sln\releases\0.0.0.100\deploy\League
of Legends.exe Rapport-id: c1a54335-29cc-11e1-8aae-c80aa97d21d5

Error - 19-12-2011 08:14:40 | Computer Name = Lasse-Pc | Source = Application Error | ID = 1000
Description = Navn på program med fejl: atieclxx.exe, version: 6.14.11.1051, tidsstempel:
0x4bc36310 Navn på modul med fejl: atiadlxx.dll, version: 6.14.10.1054, tidsstempel:
0x4bc35619 Undtagelseskode: 0xc0000005 Forskydning med fejl 0x000000000001e8d8 Proces-id
0x50c Programmets starttidspunkt 0x01ccbd89b9762b6b Programsti: C:\Windows\system32\atieclxx.exe
Modulsti:
C:\Windows\system32\atiadlxx.dll Rapport-id: 0639971e-2a3b-11e1-8aae-c80aa97d21d5

Error - 19-12-2011 12:48:53 | Computer Name = Lasse-Pc | Source = SideBySide | ID = 16842815
Description = Aktiveringskontekstgenereringen mislykkedes for “c:\Program Files
(x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll”. Der er en fejl i manifestet
eller politikfilen “c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe
AIR.dll” i linje 3.  Værdien “MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR”
for attributten “version” i elementet “assemblyIdentity” er ugyldig.

Error - 19-12-2011 12:49:24 | Computer Name = Lasse-Pc | Source = SideBySide | ID = 16842787
Description = Aktiveringskontekstgenereringen mislykkedes for “c:\program files
(x86)\windows live\photo gallery\MovieMaker.Exe”. Der er en fejl i manifestet eller
politikfilen “c:\program files (x86)\windows live\photo gallery\WLMFDS.DLL” i linje
8.  Den komponentidentitet, der blev fundet i manifestet, stemmer ikke overens med
den anmodede komponents identitet.  Reference er WLMFDS,processorArchitecture=“AMD64”,type=“win32”,version=“1.0.0.1”.
Definition
er WLMFDS,processorArchitecture=“x86”,type=“win32”,version=“1.0.0.1”.  Anvend sxstrace.exe
til detaljeret diagnose.

Error - 19-12-2011 16:16:55 | Computer Name = Lasse-Pc | Source = Application Hang | ID = 1002
Description = Programmet rads_user_kernel.exe version 0.0.0.0 afbrød kommunikationen
med Windows og blev afsluttet. Hvis du vil se, om der findes flere oplysninger
om problemet, kan du læse om problemets historik via Løsningscenter.  Proces-id: 1618

Starttidspunkt:
01ccbe8b14ffdcd2   Afslutningstidspunkt: 3   Programsti: C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe

Rapport-id:
62e89edc-2a7e-11e1-8aae-c80aa97d21d5

Error - 19-12-2011 20:15:09 | Computer Name = Lasse-Pc | Source = Application Error | ID = 1000
Description = Navn på program med fejl: LoLLauncher.exe, version: 0.0.0.0, tidsstempel:
0x4e67a432 Navn på modul med fejl: ntdll.dll, version: 6.1.7601.17514, tidsstempel:
0x4ce7ba58 Undtagelseskode: 0xc0000005 Forskydning med fejl 0x00038da9 Proces-id 0x1734
Programmets
starttidspunkt 0x01ccbe8b29d9e0b0 Programsti: C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.35\deploy\LoLLauncher.exe
Modulsti:
C:\Windows\SysWOW64\ntdll.dll Rapport-id: acddd406-2a9f-11e1-8aae-c80aa97d21d5

Error - 21-12-2011 02:49:18 | Computer Name = Lasse-Pc | Source = Application Hang | ID = 1002
Description = Programmet iexplore.exe version 8.0.7601.17514 afbrød kommunikationen
med Windows og blev afsluttet. Hvis du vil se, om der findes flere oplysninger
om problemet, kan du læse om problemets historik via Løsningscenter.  Proces-id: b7c

Starttidspunkt:
01ccbfac4d4d9c7f   Afslutningstidspunkt: 0   Programsti: C:\Program Files (x86)\Internet
Explorer\iexplore.exe   Rapport-id: d7c3843a-2b9f-11e1-9b72-c80aa97d21d5

Error - 21-12-2011 02:55:20 | Computer Name = Lasse-Pc | Source = Application Hang | ID = 1002
Description = Programmet iexplore.exe version 8.0.7601.17514 afbrød kommunikationen
med Windows og blev afsluttet. Hvis du vil se, om der findes flere oplysninger
om problemet, kan du læse om problemets historik via Løsningscenter.  Proces-id: 840

Starttidspunkt:
01ccbfaca9a4da21   Afslutningstidspunkt: 0   Programsti: C:\Program Files (x86)\Internet
Explorer\iexplore.exe   Rapport-id: bbd59a31-2ba0-11e1-9b72-c80aa97d21d5

[ System Events ]
Error - 21-12-2011 11:25:15 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126

Error - 21-12-2011 14:31:17 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126

Error - 21-12-2011 14:32:22 | Computer Name = Lasse-Pc | Source = DCOM | ID = 10010
Description =

Error - 22-12-2011 07:12:22 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126

Error - 23-12-2011 09:26:01 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126

Error - 23-12-2011 14:16:33 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126

Error - 23-12-2011 15:53:48 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126

Error - 23-12-2011 16:21:28 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126

Error - 23-12-2011 18:10:22 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126

Error - 23-12-2011 20:16:39 | Computer Name = Lasse-Pc | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Det trådløse udvidelsesmodul kunne ikke startes.  Modulsti: C:\Windows\system32\athExt.dll
Fejlkode:
126


< End of report >

Start OTL
Kopier nedenstånde med fed skrift ind i Custom Scan feltet

:OTL
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: Google Sidewiki ... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8:64bit: - Extra context menu item: S&end; til OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: E&ksporter; til Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Google Sidewiki ... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: S&end; til OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found
[2 C:\Users\Lasse\Desktop\*.tmp files -> C:\Users\Lasse\Desktop\*.tmp -> ]
C:\Windows\MEMORY.DMP
:files
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[emptyflash]

Klik på  Run Fix - Knappen
Hvis OTL spørger om at genstarte, så sig ja.
Klik på OK.
En log vil åbne, kopier den herind i dit næste svar.

Ellers kan den findes her:
C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, where mmddyyyy_hhmmss

All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Google Sidewiki ...\ deleted successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\S&end; til OneNote\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&ksporter; til Microsoft Excel\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Google Sidewiki ...\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\S&end; til OneNote\ not found.
C:\Users\Lasse\Desktop\~WRL3303.tmp deleted successfully.
C:\Users\Lasse\Desktop\~WRL3748.tmp deleted successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP-konfiguration
DNS Resolver Cache blev t›mt.
C:\Users\Lasse\Desktop\cmd.bat deleted successfully.
C:\Users\Lasse\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Lasse
->Temp folder emptied: 6336212 bytes
->Temporary Internet Files folder emptied: 52403276 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 223903863 bytes
->Flash cache emptied: 7477 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 68339 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 270,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Lasse
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.31.0 log created on 12292011_224423

Files\Folders moved on Reboot…
C:\Users\Lasse\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot…

hakker stadig ;( øvsen….

Ok. Bruger du trådløs eller kabel, og hvor hurtig er din nethastighed ?