Hej            

Vi er nødt til at se hvad der kører på systemet ->

Hent DDS og gem programmet på dit Skrivebord:
Her
Dobbeltklik på DDS.scr og tillad programmet at køre.
Når programmet er færdig vil det åbne to logs/tekst-filer.
Gem begge filer på dit Skrivebord og kopier indholdet af txt filerne herind i dit næste indlæg.

Da de er forholdsvis lange, kan du blive nødt til at sende dem i flere indlæg.

Det der DDS link fungere ikke.
Kan jeg bruge dette istedet..
HijackThis

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Alexander at 15:49:50 on 2012-03-19
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.45.1030.18.3959.1916 [GMT 1:00]
.
AV: AVG Internet Security 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
AV: Kaspersky Internet Security *Enabled/Updated* {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
SP: Kaspersky Internet Security *Enabled/Updated* {95CBD341-38DB-14AC-AF6A-08054B41A339}
SP: AVG Internet Security 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: AVG Firewall *Enabled* {621CC794-9486-F902-D092-0484E8EA828B}
FW: Kaspersky Internet Security *Enabled* {1691B380-548E-1A7A-BE85-9A42CE15AEFF}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2012\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWow64\WinFLService.exe
C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
C:\Program Files (x86)\NewSoftware’s\Folder Lock\FLComServCtrl.exe
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\NewSoftware’s\Folder Lock\FLComServ.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Video Web Camera\traybar.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\taskhost.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtblfs.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Alexander\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.dk/
uWindow Title = Windows Internet Explorer leveret af MSN and Bing
mDefault_Page_URL = hxxp://packardbell.msn.com
mStart Page = hxxp://packardbell.msn.com
uURLSearchHooks: YouTube Downloader Toolbar: {f3fee66e-e034-436a-86e4-9690573bee8a} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\5.1\youtubedownloaderToolbarIE.dll
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Hjælp til tilmelding til Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll
BHO: YouTube Downloader Toolbar: {f3fee66e-e034-436a-86e4-9690573bee8a} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\5.1\youtubedownloaderToolbarIE.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
TB: YouTube Downloader Toolbar: {f3fee66e-e034-436a-86e4-9690573bee8a} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\5.1\youtubedownloaderToolbarIE.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
uRun: [Ordbogsprogrammet 3] C:\Users\Alexander\AppData\Local\Apps\Ordbogsprogrammet 2\ordbogsprogrammet2.exe
uRun: [Google Update] “C:\Users\Alexander\AppData\Local\Google\Update\GoogleUpdate.exe” /c
uRun: [WinFLTray] C:\Windows\system32\WinFLTray.exe
uRun: [FLBackup] C:\Program Files (x86)\NewSoftware’s\Folder Lock\FLComServCtrl.exe
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [BackupManagerTray] “C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe” -h -k
mRun: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun: [Adobe Reader Speed Launcher] “C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe”
mRun: [StartCCC] “C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” MSRun
mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun: [Camera Assistant Software] “C:\Program Files (x86)\Video Web Camera\traybar.exe”
mRun: [Adobe ARM] “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
mRun: [QuickTime Task] “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime
mRun: [AVG_TRAY] “C:\Program Files (x86)\AVG\AVG2012\avgtray.exe”
mRun: [vProt] “C:\Program Files (x86)\AVG Secure Search\vprot.exe”
mRun: [BCSSync] “C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe” /DelayServices
mRun: [DivXUpdate] “C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe” /CHECKNOW
mRun: [SunJavaUpdateSched] “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
mRun: [ROC_roc_dec12] “C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe” /PROMPT /CMPID=roc_dec12
mRun: [<NO NAME>]
mRun: [SearchSettings] “C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe”
mRun: [AVP] “C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe”
StartupFolder: C:\Users\ALEXAN~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SKRMKL~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
uPolicies-explorer: NoInstrumentation = 1
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm
IE: E&xport; to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - C:\Users\Alexander\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to MP3 Converter - C:\Users\Alexander\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Se&nd; to OneNote - C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
TCP: DhcpNameServer = 193.162.153.164 194.239.134.83
TCP: Interfaces\{C2FFD56B-21B5-43E4-9A55-392D41CBB7FF} : DhcpNameServer = 193.162.153.164 194.239.134.83
TCP: Interfaces\{C2FFD56B-21B5-43E4-9A55-392D41CBB7FF}\94B47495D4D254C45465 : DhcpNameServer = 10.201.8.50
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.2.0\ViProtocol.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{326E768D-4182-46FD-9C16-1449A49795F4}
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}
{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{95B7759C-8C7F-4BF1-B163-73684A933233}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
{E33CF602-D945-461A-83F0-819F76A199F8}
{F3FEE66E-E034-436a-86E4-9690573BEE8A}
{95B7759C-8C7F-4BF1-B163-73684A933233}
{F3FEE66E-E034-436a-86E4-9690573BEE8A}
TB-X64: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [BackupManagerTray] “C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe” -h -k
mRun-x64: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun-x64: [Adobe Reader Speed Launcher] “C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe”
mRun-x64: [StartCCC] “C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” MSRun
mRun-x64: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun-x64: [Camera Assistant Software] “C:\Program Files (x86)\Video Web Camera\traybar.exe”
mRun-x64: [Adobe ARM] “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
mRun-x64: [QuickTime Task] “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime
mRun-x64: [AVG_TRAY] “C:\Program Files (x86)\AVG\AVG2012\avgtray.exe”
mRun-x64: [vProt] “C:\Program Files (x86)\AVG Secure Search\vprot.exe”
mRun-x64: [BCSSync] “C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe” /DelayServices
mRun-x64: [DivXUpdate] “C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe” /CHECKNOW
mRun-x64: [SunJavaUpdateSched] “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
mRun-x64: [ROC_roc_dec12] “C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe” /PROMPT /CMPID=roc_dec12
mRun-x64: [(Standard)]
mRun-x64: [SearchSettings] “C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe”
mRun-x64: [AVP] “C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe”
SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;C:\Windows\system32\DRIVERS\AVGIDSEH.Sys—> C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [?]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys—> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys—> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R1 Avgfwfd;AVG network filter service;C:\Windows\system32\DRIVERS\avgfwd6a.sys—> C:\Windows\system32\DRIVERS\avgfwd6a.sys [?]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys—> C:\Windows\system32\DRIVERS\avgldx64.sys [?]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys—> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]
R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys—> C:\Windows\system32\DRIVERS\avgtdia.sys [?]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys—> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]
R1 kl2;kl2;C:\Windows\system32\DRIVERS\kl2.sys—> C:\Windows\system32\DRIVERS\kl2.sys [?]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys—> C:\Windows\system32\DRIVERS\klim6.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys—> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-9 169312]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe—> C:\Windows\system32\atiesrxx.exe [?]
R2 Application Updater;Application Updater;C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2012-3-4 748440]
R2 avgfws;AVG Firewall;C:\Program Files (x86)\AVG\AVG2012\avgfws.exe [2011-11-23 2391832]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-8-2 192776]
R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [2011-4-24 202296]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 DsiWMIService;Dritek WMI Service;C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-2-17 321104]
R2 ePowerSvc;Acer ePower Service;C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-4-13 867712]
R2 FLService;FLService;C:\Windows\SysWOW64\WinFLService.exe [2011-11-22 96856]
R2 GREGService;GREGService;C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-1-8 23584]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-2-17 13336]
R2 NEWDRIVER;NEWDRIVER;C:\Windows\SysWOW64\WinVDEdrv6.sys [2011-11-22 197648]
R2 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-6-2 2804568]
R2 NTI IScheduleSvc;NTI IScheduleSvc;C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-6-29 255744]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-2-17 2320920]
R2 Updater Service;Updater Service;C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2011-2-17 243232]
R2 vToolbarUpdater10.2.0;vToolbarUpdater10.2.0;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe [2012-3-12 918880]
R2 WinVDEDrv;WinVDEDrv;C:\Windows\SysWOW64\WinVDEdrv.sys [2011-11-22 225680]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys—> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys—> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys—> C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [?]
R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys—> C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [?]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys—> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\k57nd60a.sys—> C:\Windows\system32\DRIVERS\k57nd60a.sys [?]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\system32\DRIVERS\klmouflt.sys—> C:\Windows\system32\DRIVERS\klmouflt.sys [?]
R3 Sftfs;Sftfs;C:\Windows\system32\DRIVERS\Sftfslh.sys—> C:\Windows\system32\DRIVERS\Sftfslh.sys [?]
R3 Sftplay;Sftplay;C:\Windows\system32\DRIVERS\Sftplaylh.sys—> C:\Windows\system32\DRIVERS\Sftplaylh.sys [?]
R3 Sftredir;Sftredir;C:\Windows\system32\DRIVERS\Sftredirlh.sys—> C:\Windows\system32\DRIVERS\Sftredirlh.sys [?]
R3 Sftvol;Sftvol;C:\Windows\system32\DRIVERS\Sftvollh.sys—> C:\Windows\system32\DRIVERS\Sftvollh.sys [?]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
R3 VSTWinDriver6;VSTWinDriver6;C:\Windows\system32\drivers\VSTwindrvr6.sys—> C:\Windows\system32\drivers\VSTwindrvr6.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 hwusbdev;Huawei DataCard USB PNP Device;C:\Windows\system32\DRIVERS\ewusbdev.sys—> C:\Windows\system32\DRIVERS\ewusbdev.sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-1-21 30963576]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys—> C:\Windows\system32\Drivers\RtsUStor.sys [?]
S3 tapoas;TAP-Win32 Adapter OAS;C:\Windows\system32\DRIVERS\tapoas.sys—> C:\Windows\system32\DRIVERS\tapoas.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys—> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 WatAdminSvc;Tjenesten Windows Aktivering;C:\Windows\system32\Wat\WatAdminSvc.exe—> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2012-03-19 06:56:07   69000   ——a-w-  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8EF80BD-3367-45C5-BF36-EBF3FA011286}\offreg.dll
2012-03-19 06:37:21   ————  d——-w-  C:\ProgramData\Kaspersky Lab
2012-03-19 06:37:21   ————  d——-w-  C:\Program Files (x86)\Kaspersky Lab
2012-03-19 06:34:50   ————  d—h—w-  C:\kleaner.tmp
2012-03-18 21:53:15   ————  d——-w-  C:\Users\Alexander\AppData\Roaming\Malwarebytes
2012-03-18 21:52:59   24664   ——a-w-  C:\Windows\System32\drivers\mbam.sys
2012-03-18 21:52:58   ————  d——-w-  C:\Program Files (x86)\Malwarebytes’ Anti-Malware
2012-03-18 21:36:39   ————  d——-w-  C:\Users\Alexander\AppData\Roaming\f-secure
2012-03-18 21:36:30   ————  d——-w-  C:\ProgramData\F-Secure
2012-03-18 21:26:47   8643640   ——a-w-  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F8EF80BD-3367-45C5-BF36-EBF3FA011286}\mpengine.dll
2012-03-18 21:24:31   ————  d——-w-  C:\Program Files (x86)\ESET
2012-03-17 20:19:29   ————  d——-w-  C:\Program Files (x86)\YouTube Downloader Toolbar
2012-03-17 20:19:29   ————  d——-w-  C:\Program Files (x86)\Common Files\Spigot
2012-03-17 20:19:29   ————  d——-w-  C:\Program Files (x86)\Application Updater
2012-03-15 07:03:05   5559152   ——a-w-  C:\Windows\System32\ntoskrnl.exe
2012-03-15 07:03:05   3968368   ——a-w-  C:\Windows\SysWow64\ntkrnlpa.exe
2012-03-15 07:03:04   3913584   ——a-w-  C:\Windows\SysWow64\ntoskrnl.exe
2012-03-14 10:09:48   3145728   ——a-w-  C:\Windows\System32\win32k.sys
2012-03-14 10:09:47   1544192   ——a-w-  C:\Windows\System32\DWrite.dll
2012-03-14 10:09:47   1077248   ——a-w-  C:\Windows\SysWow64\DWrite.dll
2012-03-14 09:59:02   9216   ——a-w-  C:\Windows\System32\rdrmemptylst.exe
2012-03-14 09:59:02   77312   ——a-w-  C:\Windows\System32\rdpwsx.dll
2012-03-14 09:59:02   149504   ——a-w-  C:\Windows\System32\rdpcorekmts.dll
2012-03-14 09:58:19   1031680   ——a-w-  C:\Windows\System32\rdpcore.dll
2012-03-14 09:58:18   826880   ——a-w-  C:\Windows\SysWow64\rdpcore.dll
2012-03-14 09:58:17   23552   ——a-w-  C:\Windows\System32\drivers\tdtcp.sys
2012-03-14 09:58:17   210944   ——a-w-  C:\Windows\System32\drivers\rdpwd.sys
2012-03-09 23:35:23   0   ——a-w-  C:\Windows\SysWow64\sho93F7.tmp
2012-03-09 18:00:46   ————  d——-w-  C:\Users\Alexander\AppData\Roaming\Registry Mechanic
2012-03-08 22:32:21   ————  d——-w-  C:\Program Files (x86)\Common Files\PC Tools
2012-03-08 22:32:20   ————  d——-w-  C:\Program Files (x86)\PC Tools Registry Mechanic
2012-03-08 20:31:51   ————  d——-w-  C:\Windows\SysWow64\Adobe
2012-03-06 19:39:42   ————  d——-w-  C:\Program Files (x86)\GeoGebra
2012-03-06 19:39:41   ————  d——-w-  C:\Program Files (x86)\Graph
2012-03-06 19:38:06   ————  d——-w-  C:\Users\Alexander\AppData\Roaming\WordMat
2012-03-06 19:38:03   ————  d——-w-  C:\Program Files (x86)\WordMat
.
==================== Find3M ====================
.
2012-02-23 08:18:36   279656   ———w-  C:\Windows\System32\MpSigStub.exe
2012-01-04 10:44:20   509952   ——a-w-  C:\Windows\System32\ntshrui.dll
2012-01-04 08:58:41   442880   ——a-w-  C:\Windows\SysWow64\ntshrui.dll
2012-01-03 17:44:07   472808   ——a-w-  C:\Windows\SysWow64\deployJava1.dll
2011-12-30 06:26:08   515584   ——a-w-  C:\Windows\System32\timedate.cpl
2011-12-30 05:27:56   478720   ——a-w-  C:\Windows\SysWow64\timedate.cpl
2011-12-28 03:59:24   498688   ——a-w-  C:\Windows\System32\drivers\afd.sys
.
============= FINISH: 15:50:56,65 ===============

Sådanna.. hentede det fra en anden pc og lagde over med et USB stik..

Glemte den anden:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 16-08-2011 23:01:38
System Uptime: 19-03-2012 07:42:02 (8 hours ago)
.
Motherboard: Packard Bell |  | EasyNote TK85
Processor: Intel(R) Core(TM) i3 CPU     M 380 @ 2.53GHz | CPU | 2533/1066mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 44,321 GiB free.
D: is CDROM ()
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP70: 07-03-2012 07:45:36 - Windows Update
RP71: 15-03-2012 07:50:07 - Windows Update
RP72: 18-03-2012 22:26:22 - Windows Update
.
==== Installed Programs ======================
.
Acrobat.com
Adobe AIR
Adobe Photoshop Elements 8.0
Adobe Reader 9.5.0 MUI
Adobe Shockwave Player 11.6
Advertising Center
Agatha Christie - Death on the Nile
Any DVD Converter Professional 4.3.0
Apple-programunderstøttelse
Apple Software Update
µTorrent
Audacity 1.3.13 (Unicode)
AVG Security Toolbar
AVS Update Manager 1.0
AVS Video Converter 6
AVS4YOU Software Navigator 1.3
Backup Manager Basic
Bejeweled 2 Deluxe
Build-a-lot 2
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Celtx (2.9.1)
Chuzzle Deluxe
DAEMON Tools Lite
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Diner Dash 2 Restaurant Rescue
DivX Setup
ESET Online Scanner v3
Farm Frenzy
FATE
Final Drive Nitro
Folder Lock
Free Studio version 5.3.3
Free YouTube to MP3 Converter version 3.10.15.1228
GeoGebra
Google Chrome
Graph 4.3
Gyldendals Røde Ordbøger - Engelsk
Gyldendals Røde Ordbøger - Tysk
HP Deskjet 1050 J410 series Hjælp
Identity Card
ImagXpress
Insaniquarium Deluxe
Intel(R) Management Engine Components
Intel(R) Rapid Storage Technology
Java Auto Updater
Java(TM) 6 Update 30
Jewel Quest Solitaire 2
John Deere Drive Green
Junk Mail filter update
Kaspersky Internet Security 2012
Launch Manager
Logger Pro 3
Logger Pro 3.8
Microsoft Choice Guard
Microsoft Office 2010 Language Pack Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (Danish) 2010
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (Danish) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (Danish) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (Danish) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office Klik og kør 2010
Microsoft Office Language Pack 2010 - Danish/dansk
Microsoft Office O MUI (Danish) 2010
Microsoft Office OneNote MUI (Danish) 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (Danish) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (Danish) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (Danish) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (German) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proof (Swedish) 2010
Microsoft Office Proofing (Danish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (Danish) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (Danish) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office SharePoint Designer MUI (Danish) 2010
Microsoft Office Word MUI (Danish) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Office X MUI (Danish) 2010
Microsoft PowerPoint Viewer
Microsoft SharePoint Designer 2010 Service Pack 1 (SP1)
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Mobile Partner
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 9 Essentials
Nero ControlCenter
Nero DiscSpeed
Nero DiscSpeed Help
Nero DriveSpeed
Nero DriveSpeed Help
Nero Express Help
Nero InfoTool
Nero InfoTool Help
Nero Installer
Nero Online Upgrade
Nero StartSmart
Nero StartSmart Help
Nero StartSmart OEM
NeroExpress
neroxml
Norton Online Backup
Overførselsværktøj til Windows Live
Packard Bell Game Console
Packard Bell Games
Packard Bell MyBackup
Packard Bell Power Management
Packard Bell Recovery Management
Packard Bell Registration
Packard Bell ScreenSaver
Packard Bell Social Networks
Packard Bell Updater
Penguins!
Plants vs. Zombies
Polar Bowler
Polar Golfer
Prism Video File Converter
PX Profile Update
QuickTime
Realtek HDMI Audio Driver for ATI
Realtek High Definition Audio Driver
Realtek USB 2.0 Card Reader
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile DAN sprogpakke (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile DAN sprogpakke (KB2518870)
Spotify
Tilmeldingsassistent til Windows Live
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook Social Connector (KB2583935)
VC80CRTRedist - 8.0.50727.6195
Video Web Camera
Virtual Villagers 4 - The Tree of Life
Visual Studio 2008 x64 Redistributables
VLC media player 1.1.11
Welcome Center
WinAVI Video Converter
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Gallery
Windows Live Sync
Windows Live Writer
Windows Media Player Firefox Plugin
Windows Movie Maker 2.6
WordMat v. 1.01
YouTube Downloader 3.5
YouTube Downloader Toolbar v5.1
Zuma’s Revenge
Zuma Deluxe
.
==== End Of File ===========================

Du har 2 aktive Sikkerdspakker kørende, det duer ikke.

Afinstaller enten AVG eller Kaspersky.

Hent så combofix her:
Her

Genstart til fejlsikret tilstand med netværk.

Kør så combofix.exe, og følg anvisningerne.

Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.

Når combofix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil: combofix.txt
Indholdet af denne fil må du gerne lægge herind.

Den kan også findes her - > C: combofix txt

Hejsa!
Nu har jeg
kørt combofix.
Men problemet er det samme.
og når jeg skriver, gør den dette:

når
je
g
sk
ri
ver

gør
den
dette..

MUSEN FUCKER STADIG og der
klikkes af sig selv.

LOGGEN KOMMER NU:

ComboFix 12-03-20.01 - Alexander 20-03-2012 19:07:12.1.4 - x64 NETWORK
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.45.1030.18.3959.2582 [GMT 1:00]
Kører fra: c:\users\Alexander\Downloads\ComboFix.exe
AV: AVG Internet Security 2012 *Disabled/Outdated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
AV: Kaspersky Internet Security *Disabled/Updated* {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
FW: Kaspersky Internet Security *Disabled* {1691B380-548E-1A7A-BE85-9A42CE15AEFF}
SP: AVG Internet Security 2012 *Disabled/Outdated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Kaspersky Internet Security *Disabled/Updated* {95CBD341-38DB-14AC-AF6A-08054B41A339}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Dannede nyt systemgendannelsespunkt
.
.
(((((((((((((((((((((((((((((((((((((((  Andet, der er slettet   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\users\Alexander\AppData\Roaming\.#
.
.
(((((((((((((((((((((((((((((  Filer skabt fra 2012-02-20 til 2012-03-20 )))))))))))))))))))))))))))))))))))
.
.
2012-03-20 18:14 . 2012-03-20 18:14   ————  d——-w-  c:\users\Default\AppData\Local\temp
2012-03-20 18:02 . 2012-03-20 18:02   0   ——a-w-  c:\windows\SysWow64\shoE993.tmp
2012-03-20 16:42 . 2012-03-01 13:21   8643640   ——a-w-  c:\programdata\Microsoft\Windows Defender\Definition Updates\{9F6AB1DE-CB2E-4AC0-98A7-4546645F7C01}\mpengine.dll
2012-03-19 06:37 . 2012-03-20 18:16   ————  d——-w-  c:\programdata\Kaspersky Lab
2012-03-19 06:37 . 2012-03-19 06:37   ————  d——-w-  c:\program files (x86)\Kaspersky Lab
2012-03-19 06:34 . 2012-03-19 06:34   ————  d——-w-  C:\kleaner.tmp
2012-03-18 21:53 . 2012-03-18 21:53   ————  d——-w-  c:\users\Alexander\AppData\Roaming\Malwarebytes
2012-03-18 21:52 . 2010-04-29 14:39   24664   ——a-w-  c:\windows\system32\drivers\mbam.sys
2012-03-18 21:52 . 2012-03-19 06:42   ————  d——-w-  c:\program files (x86)\Malwarebytes’ Anti-Malware
2012-03-18 21:36 . 2012-03-18 21:36   ————  d——-w-  c:\users\Alexander\AppData\Roaming\f-secure
2012-03-18 21:36 . 2012-03-18 21:36   ————  d——-w-  c:\programdata\F-Secure
2012-03-18 21:24 . 2012-03-18 21:24   ————  d——-w-  c:\program files (x86)\ESET
2012-03-17 20:19 . 2012-03-17 20:19   ————  d——-w-  c:\program files (x86)\Application Updater
2012-03-17 20:19 . 2012-03-17 20:19   ————  d——-w-  c:\program files (x86)\YouTube Downloader Toolbar
2012-03-17 20:19 . 2012-03-17 20:19   ————  d——-w-  c:\program files (x86)\Common Files\Spigot
2012-03-15 07:03 . 2011-11-19 15:20   5559152   ——a-w-  c:\windows\system32\ntoskrnl.exe
2012-03-15 07:03 . 2011-11-19 14:50   3968368   ——a-w-  c:\windows\SysWow64\ntkrnlpa.exe
2012-03-15 07:03 . 2011-11-19 14:50   3913584   ——a-w-  c:\windows\SysWow64\ntoskrnl.exe
2012-03-14 10:09 . 2012-02-03 04:34   3145728   ——a-w-  c:\windows\system32\win32k.sys
2012-03-14 10:09 . 2012-02-10 06:36   1544192   ——a-w-  c:\windows\system32\DWrite.dll
2012-03-14 10:09 . 2012-02-10 05:38   1077248   ——a-w-  c:\windows\SysWow64\DWrite.dll
2012-03-14 09:59 . 2012-01-25 06:38   77312   ——a-w-  c:\windows\system32\rdpwsx.dll
2012-03-14 09:59 . 2012-01-25 06:38   149504   ——a-w-  c:\windows\system32\rdpcorekmts.dll
2012-03-14 09:59 . 2012-01-25 06:33   9216   ——a-w-  c:\windows\system32\rdrmemptylst.exe
2012-03-14 09:58 . 2012-02-17 06:38   1031680   ——a-w-  c:\windows\system32\rdpcore.dll
2012-03-14 09:58 . 2012-02-17 05:34   826880   ——a-w-  c:\windows\SysWow64\rdpcore.dll
2012-03-14 09:58 . 2012-02-17 04:58   210944   ——a-w-  c:\windows\system32\drivers\rdpwd.sys
2012-03-14 09:58 . 2012-02-17 04:57   23552   ——a-w-  c:\windows\system32\drivers\tdtcp.sys
2012-03-09 23:35 . 2012-03-09 23:35   0   ——a-w-  c:\windows\SysWow64\sho93F7.tmp
2012-03-09 18:00 . 2012-03-09 18:00   ————  d——-w-  c:\users\Alexander\AppData\Roaming\Registry Mechanic
2012-03-08 22:32 . 2012-03-15 07:16   ————  d——-w-  c:\program files (x86)\Common Files\PC Tools
2012-03-08 22:32 . 2012-03-15 07:16   ————  d——-w-  c:\program files (x86)\PC Tools Registry Mechanic
2012-03-08 20:31 . 2012-03-08 20:32   ————  d——-w-  c:\windows\SysWow64\Adobe
2012-03-06 19:39 . 2012-03-06 19:39   ————  d——-w-  c:\program files (x86)\GeoGebra
2012-03-06 19:39 . 2012-03-06 19:39   ————  d——-w-  c:\program files (x86)\Graph
2012-03-06 19:38 . 2012-03-06 19:38   ————  d——-w-  c:\users\Alexander\AppData\Roaming\WordMat
2012-03-06 19:38 . 2012-03-06 19:39   ————  d——-w-  c:\program files (x86)\WordMat
.
.
.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-23 08:18 . 2011-10-16 19:35   279656   ———w-  c:\windows\system32\MpSigStub.exe
2012-01-04 10:44 . 2012-02-16 20:29   509952   ——a-w-  c:\windows\system32\ntshrui.dll
2012-01-04 08:58 . 2012-02-16 20:29   442880   ——a-w-  c:\windows\SysWow64\ntshrui.dll
2012-01-03 17:44 . 2012-01-03 17:44   472808   ——a-w-  c:\windows\SysWow64\deployJava1.dll
2011-12-30 06:26 . 2012-02-16 20:29   515584   ——a-w-  c:\windows\system32\timedate.cpl
2011-12-30 05:27 . 2012-02-16 20:29   478720   ——a-w-  c:\windows\SysWow64\timedate.cpl
2011-12-28 03:59 . 2012-02-16 20:29   498688   ——a-w-  c:\windows\system32\drivers\afd.sys
.
.
(((((((((((((((((((((((((((((((((((  Start steder i reg.basen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“WinFLTray”=“c:\windows\system32\WinFLTray.exe” [2011-11-22 259160]
“FLBackup”=“c:\program files (x86)\NewSoftware’s\Folder Lock\FLComServCtrl.exe” [2011-11-22 297472]
“Sidebar”=“c:\program files\Windows Sidebar\sidebar.exe” [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
“IAStorIcon”=“c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe” [2010-04-13 284696]
“BackupManagerTray”=“c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe” [2010-06-28 263936]
“Norton Online Backup”=“c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe” [2010-06-01 1155928]
“Adobe Reader Speed Launcher”=“c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe” [2012-01-04 37296]
“StartCCC”=“c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” [2010-08-26 98304]
“LManager”=“c:\program files (x86)\Launch Manager\LManager.exe” [2010-08-10 975952]
“Camera Assistant Software”=“c:\program files (x86)\Video Web Camera\traybar.exe” [2011-01-10 600688]
“Adobe ARM”=“c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe” [2012-01-03 843712]
“QuickTime Task”=“c:\program files (x86)\QuickTime\QTTask.exe” [2011-07-05 421888]
“AVG_TRAY”=“c:\program files (x86)\AVG\AVG2012\avgtray.exe” [2012-01-24 2416480]
“BCSSync”=“c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe” [2010-01-21 91520]
“DivXUpdate”=“c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe” [2011-07-28 1259376]
“SunJavaUpdateSched”=“c:\program files (x86)\Common Files\Java\Java Update\jusched.exe” [2011-06-09 254696]
“SearchSettings”=“c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe” [2012-03-04 934752]
“avp”=“c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe” [2011-04-24 202296]
.
c:\users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Skærmklipper og startprogram til OneNote 2010.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2010-1-21 226176]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
“ConsentPromptBehaviorAdmin”= 5 (0x5)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableUIADesktopToggle”= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
“aux1”=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
“DisableMonitoring”=dword:00000001
.
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-01-21 30963576]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\DRIVERS\tapoas.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Tjenesten Windows Aktivering;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [x]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S1 WinFLAdrv;WinFLAdrv;SysWOW64\WinFLAdrv.sys [x]
S2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [2012-03-04 748440]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2012\avgfws.exe [2011-11-23 2391832]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-08-10 321104]
S2 ePowerSvc;Acer ePower Service;c:\program files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-01-05 867712]
S2 FLService;FLService;c:\windows\SysWow64\WinFLService.exe [2011-11-22 96856]
S2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
S2 NEWDRIVER;NEWDRIVER;c:\windows\SysWow64\WinVDEdrv6.sys [2011-11-22 197648]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-06-28 255744]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-01-29 243232]
S2 WinVDEDrv;WinVDEDrv;c:\windows\SysWow64\WinVDEdrv.sys [2011-11-22 225680]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 VSTWinDriver6;VSTWinDriver6;c:\windows\system32\drivers\VSTwindrvr6.sys [x]
.
.
Indhold af mappen ‘Planlagte Opgaver’
.
2012-03-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4163185369-1884747772-2281768529-1000Core.job
- c:\users\Alexander\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-23 18:40]
.
2012-03-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4163185369-1884747772-2281768529-1000UA.job
- c:\users\Alexander\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-23 18:40]
.
.
————- x86-64—————-
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“RtHDVCpl”=“c:\program files\Realtek\Audio\HDA\RAVCpl64.exe” [2010-06-22 10920552]
“PLFSetI”=“c:\windows\PLFSetI.exe” [2010-06-10 206208]
“Acer ePower Management”=“c:\program files\Packard Bell\Packard Bell Power Management\ePowerTray.exe” [2011-01-05 860040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
“LoadAppInit_DLLs”=0x0
.
———- Yderligere scanning———-
.
uStart Page = hxxp://www.google.dk/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://packardbell.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport; to Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\users\Alexander\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to MP3 Converter - c:\users\Alexander\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Se&nd; to OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 193.162.153.164 194.239.134.83
.
- - - - TOMME GENVEJE FJERNET - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-Ordbogsprogrammet 3 - c:\users\Alexander\AppData\Local\Apps\Ordbogsprogrammet 2\ordbogsprogrammet2.exe
Wow6432Node-HKLM-Run-ROC_roc_dec12 - c:\program files (x86)\AVG Secure Search\ROC_roc_dec12.exe
SafeBoot-WinFLAdrv.sys
Toolbar-Locked - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
——————————- LÅSTE REGISTRERINGS NØGLER——————————-
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=”@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
“Enabled”=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@=”{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx”
“ThreadingModel”=“Apartment”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@=“0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@=“ShockwaveFlash.ShockwaveFlash.10”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@=”{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@=“ShockwaveFlash.ShockwaveFlash”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx”
“ThreadingModel”=“Apartment”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@=“FlashFactory.FlashFactory.1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@=”{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@=“FlashFactory.FlashFactory”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@=“IFlashBroker4”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@=”{00020424-0000-0000-C000-000000000046}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@=”{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
“Solution”=”{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}”
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
“Key”=“ActionsPane3”
“Location”=“c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd”
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
“BlindDial”=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
————————————Andre kørende processer————————————
.
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Gennemført tid: 2012-03-20 19:22:20 - maskinen blev genstartet
ComboFix-quarantined-files.txt 2012-03-20 18:22
.
Pre-Kørsel: 47.554.064.384 byte ledig
Post-Kørsel: 47.598.137.344 byte ledig
.
- - End Of File - - 51FD9135A5CE7A03BA8DB6664C02AD65

PS. Når jeg tænder pcen op er den også begyndt at sige en
pive lyd, efter ca. 30 sik - 1 min stopper den og under Windows logoet begynder
den der indlæse
linje at køre.

Shit det tog lang tid at skive..

Fik endelig kørt en malwarebites scanning, men hjalp ikke.
LOG HER:

Malwarebytes Anti-Malware (Prøveversion) 1.60.1.1000
http://www.malwarebytes.org

Database version: v2012.03.20.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Alexander :: ALEXANDERS-PC [administrator]

Beskyttelse: Slået til

20-03-2012 20:13:35
mbam-log-2012-03-20 (20-13-35).txt

Skanningstype: Fuldstændig skanning
Skanningsmuligheder valgt: Hukommelse | Opstart | Registreringsdatabasen | Filsystem | Heuristics/Ekstra | Heuristics/Shuriken | PUP | PUM
Skanningsmuligheder som er deaktiverede: P2P
Objekter skannet: 344683
Tid gået: 47 minut(ter), 45 sekund(er)

Hukommelses Processorer Inficeret: 0
(Ingen skadelige objekter blev fundet)

Hukommelses Moduler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasenøgler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabaseværdier Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasedata Objekter Inficeret: 0
(Ingen skadelige objekter blev fundet)

Inficerede Mapper: 0
(Ingen skadelige objekter blev fundet)

Inficerede Filer: 0
(Ingen skadelige objekter blev fundet)

(færdig)

Kørte Eset
Online Scaning, den fandt - har ikke hjulpet.

LOG:

C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe   probably a variant of Win32/Adware.Toolbar.Dealio application   cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe   a variant of Win32/Adware.Toolbar.Dealio application   cleaned by deleting - quarantined

Prøv at se om fejlene også eksisterer med PuppyLinux:
Fremstilling af Puppylinux CD - http://bjergs.net/boot_iso.html
Vejledning i brugen - http://bjergs.net/puppy_live.html - Her er også downloadlink.

Åhh shit.. Det er vidst over min forstand.. Tænkte på om jeg ikke istedet kunne prøve at flyttet mine vigtigste filer over på en ekstern hardisk og formatere den om..

Altså da jeg købte computeren og tændte den var der styresystem på den (efter man havde fulgt instalatioen)
Men det noget med at hvis man holder nogen bestemte knapper nede eller sådan noget kan man få den til at på begynde system instalationen igen..

Ved i hvordan man gør det?

Hejsa!

Så fik jeg flyttet de vigtigste filer og gendannet den totalt..

Det er det samme.. Tasturet opføre sig sært, når man bevæger musen over eks. en genvej åbner den, den op igen og igen og igen..

Og den siger der der irriterende høje pive lyd under opstart (1-3 min) inden den begynder at indlæse..

Det tyder meget på en hardwarefejl.
Prøv dog PuppyLinux, det er ikke så svært.