I came here because my computer keeps crashing when I'm watching videofiles. From the whochrashed log, we found out that nvatabus.sys is the bad guy, and I got directed here. I've gone through the malware removal guide with one exception. When I tried to use rootrepeal, my computer froze every time i included "hidden services" in the scan. No problem without it, so unless you really want it, I'll let that ome rest in peace. My problem is still here (but is a bit less frequent, I think), and I'm told to post my logs here. Here we go:
MBAM log:
Malwarebytes' Anti-Malware 1.41
Database version: 3156
Windows 5.1.2600 Service Pack 3
2009-11-13 17:25:25
mbam-log-2009-11-13 (17-25-25).txt
Scan type: Quick Scan
Objects scanned: 105707
Time elapsed: 10 minute(s), 42 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\system32\[email protected]@@k.dll (Trojan.Agent) -> Quarantined and deleted successfully.
Rootrepeal:
ROOTREPEAL © AD, 2007-2009
==================================================
Scan Start Time: 2009/11/13 19:01
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP3
==================================================
Drivers
-------------------
Name: a4ywx0hx.SYS
Image Path: C:\WINDOWS\System32\Drivers\a4ywx0hx.SYS
Address: 0xB967D000 Size: 425984 File Visible: No Signed: -
Status: -
Name: giveio.sys
Image Path: giveio.sys
Address: 0xBA670000 Size: 1664 File Visible: No Signed: -
Status: -
Name: PCI_NTPNP0104
Image Path: \Driver\PCI_NTPNP0104
Address: 0x00000000 Size: 0 File Visible: No Signed: -
Status: -
Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xA6610000 Size: 49152 File Visible: No Signed: -
Status: -
Name: speedfan.sys
Image Path: speedfan.sys
Address: 0xBA5AE000 Size: 5248 File Visible: No Signed: -
Status: -
SSDT
-------------------
#: 011 Function Name: NtAdjustPrivilegesToken
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df636e
#: 025 Function Name: NtClose
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df6a86
#: 031 Function Name: NtConnectPort
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df760c
#: 035 Function Name: NtCreateEvent
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7b40
#: 037 Function Name: NtCreateFile
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df6d78
#: 041 Function Name: NtCreateKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5460
#: 043 Function Name: NtCreateMutant
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7a18
#: 044 Function Name: NtCreateNamedPipeFile
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df4d0a
#: 046 Function Name: NtCreatePort
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df78d4
#: 050 Function Name: NtCreateSection
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df6102
#: 051 Function Name: NtCreateSemaphore
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7c72
#: 052 Function Name: NtCreateSymbolicLinkObject
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df940e
#: 053 Function Name: NtCreateThread
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df6886
#: 056 Function Name: NtCreateWaitablePort
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7976
#: 063 Function Name: NtDeleteKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5a20
#: 065 Function Name: NtDeleteValueKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5cf8
#: 066 Function Name: NtDeviceIoControlFile
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df721c
#: 068 Function Name: NtDuplicateObject
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df9980
#: 071 Function Name: NtEnumerateKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5e3a
#: 073 Function Name: NtEnumerateValueKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5ee4
#: 084 Function Name: NtFsControlFile
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7016
#: 097 Function Name: NtLoadDriver
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df8ea6
#: 098 Function Name: NtLoadKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df543c
#: 099 Function Name: NtLoadKey2
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df544e
#: 111 Function Name: NtNotifyChangeKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df6030
#: 114 Function Name: NtOpenEvent
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7be2
#: 116 Function Name: NtOpenFile
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df6b08
#: 119 Function Name: NtOpenKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5604
#: 120 Function Name: NtOpenMutant
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7ab0
#: 122 Function Name: NtOpenProcess
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df656e
#: 125 Function Name: NtOpenSection
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df9438
#: 126 Function Name: NtOpenSemaphore
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7d14
#: 128 Function Name: NtOpenThread
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df6492
#: 160 Function Name: NtQueryKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5f8e
#: 161 Function Name: NtQueryMultipleValueKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5bb6
#: 177 Function Name: NtQueryValueKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df58bc
#: 180 Function Name: NtQueueApcThread
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df9128
#: 192 Function Name: NtRenameKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5b34
#: 193 Function Name: NtReplaceKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df50c2
#: 194 Function Name: NtReplyPort
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df809e
#: 195 Function Name: NtReplyWaitReceivePort
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7f64
#: 200 Function Name: NtRequestWaitReplyPort
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df8c30
#: 204 Function Name: NtRestoreKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5224
#: 206 Function Name: NtResumeThread
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df9860
#: 207 Function Name: NtSaveKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df4ec4
#: 210 Function Name: NtSecureConnectPort
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df7312
#: 213 Function Name: NtSetContextThread
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df6984
#: 230 Function Name: NtSetInformationToken
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df85f2
#: 237 Function Name: NtSetSecurityObject
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df8fa0
#: 240 Function Name: NtSetSystemInformation
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df94c2
#: 247 Function Name: NtSetValueKey
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df5744
#: 253 Function Name: NtSuspendProcess
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df95a6
#: 254 Function Name: NtSuspendThread
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df96d2
#: 255 Function Name: NtSystemDebugControl
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df8dd2
#: 257 Function Name: NtTerminateProcess
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df66ea
#: 258 Function Name: NtTerminateThread
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df663c
#: 277 Function Name: NtWriteVirtualMemory
Status: Hooked by "C:\WINDOWS\system32\DRIVERS\klif.sys" at address 0xa8df67c8
==EOF==
And last, but not least. OTL:
OTL logfile created on: 2009-11-13 19:03:42 - Run 1
OTL by OldTimer - Version 3.1.5.0 Folder = C:\Documents and Settings\Ett\Skrivbord
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 65,76% Memory free
3,84 Gb Paging File | 3,26 Gb Available in Paging File | 84,74% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program
Drive C: | 189,91 Gb Total Space | 19,97 Gb Free Space | 10,51% Space Free | Partition Type: NTFS
Drive D: | 7,46 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 1,09 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 465,76 Gb Total Space | 24,91 Gb Free Space | 5,35% Space Free | Partition Type: NTFS
Drive M: | 465,76 Gb Total Space | 29,52 Gb Free Space | 6,34% Space Free | Partition Type: NTFS
Computer Name: NIKKE2
Current User Name: Ett
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan
========== Processes (SafeList) ==========
PRC - [2009-11-13 19:02:43 | 00,529,408 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ett\Skrivbord\OTL.exe
PRC - [2009-11-13 17:28:06 | 00,472,064 | ---- | M] ( ) -- C:\Documents and Settings\Ett\Skrivbord\RootRepeal.exe
PRC - [2009-11-06 17:23:25 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program\Mozilla Firefox\firefox.exe
PRC - [2009-11-06 17:23:25 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program\Mozilla Firefox\firefox.exe
PRC - [2009-08-22 23:12:45 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2009-07-21 16:42:04 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2009-07-21 16:42:04 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2009-03-10 21:18:16 | 00,968,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe
PRC - [2008-12-18 13:32:52 | 00,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2008-12-18 12:19:44 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\Program\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2008-08-22 13:19:14 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program\Delade filer\LightScribe\LSSrvc.exe
PRC - [2008-06-10 08:45:42 | 00,877,864 | ---- | M] (Nero AG) -- C:\Program\Nero\Nero8\Nero BackItUp\NBService.exe
PRC - [2008-05-02 01:44:08 | 00,805,392 | ---- | M] (Logitech, Inc.) -- C:\Program\Logitech\SetPoint\SetPoint.exe
PRC - [2008-05-02 01:40:56 | 00,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program\Delade filer\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2008-04-14 17:05:06 | 01,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-12-13 17:57:24 | 02,095,640 | ---- | M] (Logitech Inc.) -- C:\Program\Logitech\GamePanel Software\G-series Software\LGDCore.exe
PRC - [2007-12-13 17:43:22 | 02,051,096 | ---- | M] (Logitech Inc.) -- C:\Program\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
PRC - [2007-12-13 17:43:12 | 00,461,336 | ---- | M] (Logitech Inc.) -- C:\Program\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe
PRC - [2007-12-13 17:42:52 | 00,558,104 | ---- | M] (Logitech Inc.) -- C:\Program\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
PRC - [2006-12-19 09:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\WINDOWS\system32\IoctlSvc.exe
PRC - [2006-11-15 10:49:42 | 00,204,288 | ---- | M] (Microsoft Corporation) -- C:\Program\Windows Media Player\wmpnscfg.exe
PRC - [2006-11-15 10:49:34 | 00,912,384 | ---- | M] (Microsoft Corporation) -- C:\Program\Windows Media Player\wmpnetwk.exe
PRC - [2003-12-11 09:50:00 | 00,020,992 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\LOGI_MWX.EXE
PRC - [2002-10-15 17:00:20 | 01,818,624 | ---- | M] (C-Media Electronic Inc. (www.cmedia.com.tw)) -- C:\WINDOWS\mixer.exe
========== Modules (SafeList) ==========
MOD - [2009-11-13 19:02:43 | 00,529,408 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ett\Skrivbord\OTL.exe
MOD - [2008-07-25 10:17:20 | 00,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
MOD - [2008-05-02 01:42:50 | 00,045,584 | ---- | M] (Logitech, Inc.) -- C:\Program\Logitech\SetPoint\lgscroll.dll
MOD - [2008-05-02 01:38:54 | 00,064,016 | ---- | M] (Logitech, Inc.) -- C:\Program\Logitech\SetPoint\GameHook.dll
MOD - [2008-04-14 17:04:38 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 17:02:45 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - [2009-10-09 21:31:25 | 00,655,624 | ---- | M] (Acresso Software Inc.) -- C:\Program\Delade filer\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009-09-16 17:49:30 | 00,267,760 | ---- | M] (Turbine, Inc.) -- C:\spel\Turbine Download Manager\TurbineMessageService.exe -- (LiveTurbineMessageService)
SRV - [2009-09-16 17:49:03 | 00,218,608 | ---- | M] (Turbine, Inc.) -- C:\spel\Turbine Download Manager\TurbineNetworkService.exe -- (LiveTurbineNetworkService)
SRV - [2009-08-22 23:12:45 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA)
SRV - [2009-07-21 16:42:04 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)
SRV - [2009-07-21 10:40:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)
SRV - [2009-07-03 14:56:14 | 00,303,376 | ---- | M] (Kaspersky Lab) -- C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)
SRV - [2009-03-09 22:39:00 | 02,793,784 | ---- | M] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2009-01-07 14:23:23 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program\Google\Update\GoogleUpdate.exe -- (gupdate1c970cb2ba2cc72)
SRV - [2008-08-22 13:19:14 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program\Delade filer\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2008-07-29 20:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0)
SRV - [2008-07-29 18:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc)
SRV - [2008-07-29 18:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2008-07-25 10:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008-07-25 10:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state)
SRV - [2008-06-10 08:45:42 | 00,877,864 | ---- | M] (Nero AG) -- C:\Program\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3)
SRV - [2008-05-02 01:42:06 | 00,121,360 | ---- | M] (Logitech, Inc.) -- C:\Program\Delade filer\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2008-04-14 17:04:47 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHEALTH\HELPCTR\Binaries\pchsvc.dll -- (helpsvc)
SRV - [2007-10-25 15:27:54 | 00,266,240 | ---- | M] (Microsoft Corporation) -- C:\Program\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc)
SRV - [2007-10-15 17:16:08 | 00,243,056 | ---- | M] () -- C:\Program\CyberLink\Shared files\RichVideo.exe -- (RichVideo)
SRV - [2007-05-11 02:09:48 | 01,050,120 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\system32\oodag.exe -- (O&O Defrag)
SRV - [2006-12-19 09:30:26 | 00,081,920 | ---- | M] (Prolific Technology Inc.) -- C:\WINDOWS\system32\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)
SRV - [2006-11-15 10:49:34 | 00,912,384 | ---- | M] (Microsoft Corporation) -- C:\Program\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc)
SRV - [2005-11-14 01:06:04 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program\Delade filer\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2005-04-06 15:03:28 | 00,110,592 | ---- | M] () -- C:\Program\IVT Corporation\BlueSoleil\BTNtService.exe -- (BlueSoleil Hid Service)
SRV - [2003-07-28 19:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:\Program\Delade filer\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2002-04-12 00:00:00 | 00,057,344 | ---- | M] (brother Industries Ltd) -- C:\WINDOWS\system32\BRSVC01A.EXE -- (Brother XP spl Service)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft....k/?LinkId=54843
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.co...-8&oe=UTF-8&q="
FF - prefs.js..browser.startup.homepage: "http://www.google.se...orum/index.php"
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.6.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: [email protected]:9.0.0.463
FF - prefs.js..extensions.enabledItems: [email protected]:3.0.3
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:0.0.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009-09-11 16:57:59 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program\Mozilla Firefox\components [2009-11-06 17:23:32 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program\Mozilla Firefox\plugins [2009-11-06 17:23:32 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2009-08-11 18:05:28 | 00,000,000 | ---D | M]
[2008-08-26 21:25:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Extensions
[2008-08-26 21:25:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-11-13 18:20:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Firefox\Profiles\i1ja4dpf.default\extensions
[2008-02-05 23:55:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Firefox\Profiles\i1ja4dpf.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}(2)
[2008-02-06 00:01:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Firefox\Profiles\i1ja4dpf.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}-trash
[2009-10-07 01:02:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Firefox\Profiles\i1ja4dpf.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2009-08-08 23:52:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Firefox\Profiles\i1ja4dpf.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2)
[2008-06-18 22:11:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Firefox\Profiles\i1ja4dpf.default\extensions\[email protected]
[2009-08-08 23:51:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Firefox\Profiles\i1ja4dpf.default\extensions\[email protected](2).com
[2009-08-08 23:52:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mozilla\Firefox\Profiles\i1ja4dpf.default\extensions\[email protected](2).org
[2009-11-13 18:20:08 | 00,000,000 | ---D | M] -- C:\Program\Mozilla Firefox\extensions
[2009-11-06 17:23:32 | 00,000,000 | ---D | M] -- C:\Program\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007-12-29 15:18:25 | 00,000,000 | ---D | M] -- C:\Program\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
[2009-08-09 00:02:56 | 00,000,000 | ---D | M] -- C:\Program\Mozilla Firefox\extensions\[email protected]
[2009-11-06 17:23:25 | 00,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program\Mozilla Firefox\components\browserdirprovider.dll
[2009-11-06 17:23:25 | 00,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program\Mozilla Firefox\components\brwsrcmp.dll
[2009-05-01 22:02:48 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program\Mozilla Firefox\plugins\libdivx.dll
[2007-08-07 13:35:32 | 00,049,152 | ---- | M] (Adobe Systems, Inc.) -- C:\Program\Mozilla Firefox\plugins\np32dsw.dll
[2009-05-12 19:46:20 | 01,650,992 | ---- | M] (DivX,Inc.) -- C:\Program\Mozilla Firefox\plugins\npdivx32.dll
[2009-05-18 23:41:32 | 00,098,304 | ---- | M] (DivX, Inc) -- C:\Program\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
[2009-11-06 17:23:28 | 00,064,984 | ---- | M] (mozilla.org) -- C:\Program\Mozilla Firefox\plugins\npnul32.dll
[2007-03-22 19:23:30 | 00,017,248 | ---- | M] (Microsoft Corporation) -- C:\Program\Mozilla Firefox\plugins\NPOFFICE.DLL
[2009-04-27 19:27:08 | 00,239,432 | ---- | M] (Pando Networks) -- C:\Program\Mozilla Firefox\plugins\npPandoWebInst.dll
[2009-02-27 11:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program\Mozilla Firefox\plugins\nppdf32.dll
[2009-03-31 00:17:54 | 00,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\Program\Mozilla Firefox\plugins\npqtplugin.dll
[2009-03-31 00:17:54 | 00,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\Program\Mozilla Firefox\plugins\npqtplugin2.dll
[2009-03-31 00:17:54 | 00,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\Program\Mozilla Firefox\plugins\npqtplugin3.dll
[2009-03-31 00:17:54 | 00,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\Program\Mozilla Firefox\plugins\npqtplugin4.dll
[2009-03-31 00:17:54 | 00,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\Program\Mozilla Firefox\plugins\npqtplugin5.dll
[2009-03-31 00:17:54 | 00,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\Program\Mozilla Firefox\plugins\npqtplugin6.dll
[2009-05-01 22:02:48 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:\Program\Mozilla Firefox\plugins\ssldivx.dll
[2009-08-17 09:07:45 | 00,001,470 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\allaannonser-sv-SE.xml
[2006-09-14 20:11:00 | 00,001,538 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2006-07-06 06:44:17 | 00,002,206 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\answers.xml
[2009-08-17 09:07:45 | 00,001,534 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\creativecommons.xml
[2006-09-14 20:11:00 | 00,001,077 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2009-08-17 09:07:45 | 00,002,371 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\google.xml
[2009-08-17 09:07:46 | 00,002,670 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\prisjakt-sv-SE.xml
[2009-08-17 09:07:46 | 00,000,948 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\tyda-sv-SE.xml
[2009-08-17 09:07:46 | 00,001,174 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\wikipedia-sv-SE.xml
[2009-08-17 09:07:46 | 00,000,647 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\yahoo-sv-SE.xml
O1 HOSTS File: (33 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program\Delade filer\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live inloggningshjälpen) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program\Delade filer\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Burn4Free Toolbar Helper) - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Program\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll ()
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O3 - HKLM\..\Toolbar: (Burn4Free Toolbar) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Burn4Free Toolbar) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVP] C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [C-Media Mixer] C:\WINDOWS\mixer.exe (C-Media Electronic Inc. (www.cmedia.com.tw))
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [Launch LCDMon] C:\Program\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [Launch LGDCore] C:\Program\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
O4 - HKLM..\Run: [Logitech Utility] C:\WINDOWS\LOGI_MWX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [PPort11reminder] C:\Program\ScanSoft\PaperPort\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program\DAEMON Tools Pro\DTProAgent.exe (DT Soft Ltd.)
O4 - HKCU..\Run: [EPSON Stylus Photo RX500] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2K1.EXE (SEIKO EPSON CORPORATION)
O4 - HKCU..\Run: [MsnMsgr] C:\Program\Windows Live\Messenger\MsnMsgr.Exe (Microsoft Corporation)
O4 - HKCU..\Run: [Pidgin] C:\Program\Pidgin\pidgin.exe (The Pidgin developer community)
O4 - HKCU..\Run: [Skype] C:\Program\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\Run: [uTorrent] C:\Program\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\Hamachi.lnk = C:\Program\Hamachi\hamachi.exe (LogMeIn Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start-meny\Program\Autostart\Logitech SetPoint.lnk = C:\Program\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O8 - Extra context menu item: Add to AMV Converter... - C:\Program\MP3 Player Utilities 4.18\AMVConverter\grab.html ()
O8 - Extra context menu item: Add to Anti-Banner - C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O9 - Extra 'Tools' menuitem : Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_03\bin\npjpi160_03.dll (Sun Microsystems, Inc.)
O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: 8 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.mi...b?1195125144280 (WUWebControl Class)
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} http://www.acclaim.c.../acclaim_v4.cab (GameLauncher Control)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1195149540796 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.4.2)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program\Delade filer\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program\Delade filer\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program\Delade filer\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program\Delade filer\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program\Delade filer\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\Program\KASPER~1\KASPER~2\mzvkbd3.dll) - C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\mzvkbd3.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\Program\KASPER~1\KASPER~2\kloehk.dll) - C:\Program\Kaspersky Lab\Kaspersky Internet Security 2010\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program\delade filer\logishrd\bluetooth\LBTWlgn.dll - c:\Program\Delade filer\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Min aktuella startsida) - About:Home
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-18 17:40:03 | 00,000,030 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2002-03-07 18:55:00 | 00,028,672 | R--- | M] (Dipl.-Ing. Stefan Krueger <[email protected]>) - D:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2003-07-01 15:35:28 | 00,000,049 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2003-07-07 17:44:28 | 00,000,990 | R--- | M] () - D:\autorun.ini -- [ CDFS ]
O33 - MountPoints2\{78081134-4cfa-11dd-8c79-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{78081134-4cfa-11dd-8c79-806d6172696f}\Shell\AutoRun\command - "" = E:\Autorun.exe -- File not found
O33 - MountPoints2\{cccaba9c-93a3-11dc-84eb-0019663c62e9}\Shell - "" = AutoRun
O33 - MountPoints2\{cccaba9c-93a3-11dc-84eb-0019663c62e9}\Shell\AutoRun\command - "" = D:\autorun.exe -- [2002-03-07 18:55:00 | 00,028,672 | R--- | M] (Dipl.-Ing. Stefan Krueger <[email protected]>)
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (OODBS) - C:\WINDOWS\System32\OODBS.exe (O&O Software GmbH)
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found
NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2007-11-15 12:54:42 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: helpsvc - C:\WINDOWS\PCHEALTH\HELPCTR\Binaries\pchsvc.dll (Microsoft Corporation)
========== Files/Folders - Created Within 14 Days ==========
[2009-11-13 19:02:43 | 00,529,408 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Ett\Skrivbord\OTL.exe
[2009-11-13 17:28:06 | 00,472,064 | ---- | C] ( ) -- C:\Documents and Settings\Ett\Skrivbord\RootRepeal.exe
[2009-11-12 23:10:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Application Data\Malwarebytes
[2009-11-12 23:10:00 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009-11-12 23:09:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009-11-12 23:09:32 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009-11-12 23:09:30 | 00,000,000 | ---D | C] -- C:\Program\Malwarebytes' Anti-Malware
[2009-11-12 23:08:43 | 04,045,536 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Ett\Skrivbord\mbam-setup.exe
[2009-11-12 23:08:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009-11-12 23:07:44 | 00,000,000 | ---D | C] -- C:\Program\ERUNT
[2009-11-12 23:07:15 | 00,791,393 | ---- | C] (Lars Hederer ) -- C:\Documents and Settings\Ett\Skrivbord\erunt_setup.exe
[2009-11-12 23:06:39 | 00,021,504 | ---- | C] (Doug Knox) -- C:\Documents and Settings\Ett\Skrivbord\SysRestorePoint.exe
[2009-11-12 22:49:15 | 00,339,456 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Ett\Skrivbord\TFC.exe
[2009-11-12 00:40:05 | 00,000,000 | ---D | C] -- C:\Program\WhoCrashed
[2009-11-12 00:38:54 | 00,773,528 | ---- | C] (Resplendence Software Projects Sp. ) -- C:\Documents and Settings\Ett\Skrivbord\whocrashedSetup.exe
[2009-11-08 02:45:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Mina dokument\The Movies
[2009-11-08 02:45:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Application Data\Lionhead Studios
[2009-11-08 00:55:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lionhead Studios
[2009-11-06 03:13:59 | 00,000,000 | ---D | C] -- C:\Program\Mercury
[2009-11-06 02:26:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\.jmf
[2009-11-06 02:26:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Mercury
[2009-11-06 02:24:24 | 12,821,632 | ---- | C] (Igor Pavlov) -- C:\Documents and Settings\Ett\Skrivbord\Mercury_1_9_5.exe
[2009-11-06 02:21:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Skrivbord\Mercury
[2009-11-06 01:48:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Application Data\gtk-2.0
[2009-11-06 01:45:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Application Data\.purple
[2009-11-06 01:43:08 | 00,000,000 | ---D | C] -- C:\Program\Aspell
[2009-11-06 01:41:49 | 00,000,000 | ---D | C] -- C:\Program\Pidgin
[2009-11-06 01:41:24 | 00,000,000 | ---D | C] -- C:\Program\Delade filer\GTK
[2009-11-06 01:20:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Tracing
[2009-11-06 01:16:21 | 00,000,000 | ---D | C] -- C:\Program\Microsoft
[2009-11-06 01:15:55 | 00,000,000 | ---D | C] -- C:\Program\Windows Live SkyDrive
[2009-11-06 01:13:14 | 00,000,000 | ---D | C] -- C:\Program\Delade filer\Windows Live
[2009-11-03 22:23:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Mina dokument\Prototype
[2009-11-01 03:37:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Ett\Lokala inställningar\Application Data\Temp
[2008-07-28 22:16:59 | 00,103,424 | ---- | C] ( ) -- C:\WINDOWS\System32\nUI_nat.dll
[5 C:\Documents and Settings\Ett\Skrivbord\*.tmp files -> C:\Documents and Settings\Ett\Skrivbord\*.tmp -> ]
========== Files - Modified Within 14 Days ==========
[2009-11-13 19:02:43 | 00,529,408 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ett\Skrivbord\OTL.exe
[2009-11-13 18:58:10 | 00,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-11-13 18:58:09 | 00,000,264 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job
[2009-11-13 18:54:56 | 00,000,922 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2009-11-13 18:54:49 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-11-13 18:54:40 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-11-13 18:54:16 | 00,498,030 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor
[2009-11-13 18:42:00 | 00,000,926 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2009-11-13 17:45:40 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\settings.dat
[2009-11-13 17:39:12 | 00,000,000 | ---- | M] () -- C:\WINDOWS\settings.dat
[2009-11-13 17:29:33 | 17,827,8740 | ---- | M] () -- C:\Documents and Settings\Ett\)
[2009-11-13 17:28:06 | 00,472,064 | ---- | M] ( ) -- C:\Documents and Settings\Ett\Skrivbord\RootRepeal.exe
[2009-11-13 04:56:19 | 00,175,616 | ---- | M] () -- C:\Documents and Settings\Ett\Lokala inställningar\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-13 04:56:19 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-11-13 02:02:41 | 65,810,281 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\vengeance_of_the_sith.zip
[2009-11-12 23:10:07 | 00,000,666 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\Malwarebytes' Anti-Malware.lnk
[2009-11-12 23:08:58 | 04,045,536 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Ett\Skrivbord\mbam-setup.exe
[2009-11-12 23:07:15 | 00,791,393 | ---- | M] (Lars Hederer ) -- C:\Documents and Settings\Ett\Skrivbord\erunt_setup.exe
[2009-11-12 23:06:40 | 00,021,504 | ---- | M] (Doug Knox) -- C:\Documents and Settings\Ett\Skrivbord\SysRestorePoint.exe
[2009-11-12 22:56:44 | 12,058,624 | ---- | M] () -- C:\Documents and Settings\Ett\ntuser.dat
[2009-11-12 22:56:44 | 00,000,304 | -HS- | M] () -- C:\Documents and Settings\Ett\ntuser.ini
[2009-11-12 22:49:15 | 00,339,456 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Ett\Skrivbord\TFC.exe
[2009-11-12 21:57:04 | 00,000,264 | ---- | M] () -- C:\WINDOWS\tasks\OGADaily.job
[2009-11-12 04:00:00 | 00,000,292 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware 2007.job
[2009-11-12 01:21:56 | 03,176,956 | -H-- | M] () -- C:\Documents and Settings\Ett\Lokala inställningar\Application Data\IconCache.db
[2009-11-12 01:21:41 | 00,026,112 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\Manabekeisuke.doc
[2009-11-12 00:39:13 | 00,773,528 | ---- | M] (Resplendence Software Projects Sp. ) -- C:\Documents and Settings\Ett\Skrivbord\whocrashedSetup.exe
[2009-11-10 11:55:30 | 00,016,196 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\index.php
[2009-11-08 18:53:45 | 00,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
[2009-11-08 17:16:05 | 00,020,480 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\Fenyon.doc
[2009-11-08 02:44:33 | 00,001,474 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\StarMaker.lnk
[2009-11-08 02:44:32 | 00,001,467 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\The Movies Stunts & Effects.lnk
[2009-11-07 19:53:01 | 00,024,576 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\Alvattribut.xls
[2009-11-07 03:59:22 | 00,001,118 | ---- | M] () -- C:\WINDOWS\ATICIM.INI
[2009-11-07 01:49:34 | 00,000,605 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\Silent Storm.lnk
[2009-11-06 16:59:20 | 02,192,616 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-11-06 03:06:19 | 00,000,218 | ---- | M] () -- C:\Documents and Settings\Ett\.recently-used.xbel
[2009-11-06 02:25:50 | 12,821,632 | ---- | M] (Igor Pavlov) -- C:\Documents and Settings\Ett\Skrivbord\Mercury_1_9_5.exe
[2009-11-06 02:19:45 | 02,378,886 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\installer_mercury_messenger_Svenska_Swedish.exe
[2009-11-06 02:11:09 | 00,178,850 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\pidgin.JPG
[2009-11-06 01:40:19 | 14,436,216 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\pidgin-2.6.3.exe
[2009-11-06 01:19:44 | 00,055,488 | ---- | M] () -- C:\Documents and Settings\Ett\Lokala inställningar\Application Data\GDIPFONTCACHEV1.DAT
[2009-11-06 01:18:47 | 00,000,923 | ---- | M] () -- C:\Documents and Settings\Ett\Mina dokument\Mina delade mappar.lnk
[2009-11-05 19:36:12 | 00,003,520 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\duell.rtf
[2009-11-04 23:49:59 | 00,040,960 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\By_generator.exe
[2009-11-03 22:20:24 | 00,001,472 | ---- | M] () -- C:\Documents and Settings\All Users\Skrivbord\Prototype™.lnk
[2009-11-03 19:07:52 | 00,465,898 | ---- | M] () -- C:\WINDOWS\System32\perfh01D.dat
[2009-11-03 19:07:52 | 00,092,658 | ---- | M] () -- C:\WINDOWS\System32\perfc01D.dat
[2009-11-03 19:07:51 | 00,444,028 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009-11-03 19:07:51 | 00,071,904 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009-11-03 19:07:43 | 01,090,756 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009-11-03 18:48:26 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009-10-31 13:09:36 | 00,032,256 | ---- | M] () -- C:\Documents and Settings\Ett\Skrivbord\Harkon.doc
[5 C:\Documents and Settings\Ett\Skrivbord\*.tmp files -> C:\Documents and Settings\Ett\Skrivbord\*.tmp -> ]
========== Files Created - No Company Name ==========
[2009-11-13 17:45:40 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\settings.dat
[2009-11-13 17:39:12 | 00,000,000 | ---- | C] () -- C:\WINDOWS\settings.dat
[2009-11-13 17:22:01 | 17,827,8740 | ---- | C] () -- C:\Documents and Settings\Ett\)
[2009-11-13 01:46:12 | 65,810,281 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\vengeance_of_the_sith.zip
[2009-11-12 23:10:07 | 00,000,666 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\Malwarebytes' Anti-Malware.lnk
[2009-11-11 04:42:50 | 00,026,112 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\Manabekeisuke.doc
[2009-11-10 11:50:44 | 00,016,196 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\index.php
[2009-11-08 18:53:45 | 00,004,096 | ---- | C] () -- C:\WINDOWS\System32\crash
[2009-11-08 17:16:05 | 00,020,480 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\Fenyon.doc
[2009-11-08 02:44:32 | 00,001,467 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\The Movies Stunts & Effects.lnk
[2009-11-08 01:00:13 | 00,001,474 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\StarMaker.lnk
[2009-11-07 19:52:37 | 00,024,576 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\Alvattribut.xls
[2009-11-07 03:57:59 | 00,001,118 | ---- | C] () -- C:\WINDOWS\ATICIM.INI
[2009-11-07 01:49:34 | 00,000,605 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\Silent Storm.lnk
[2009-11-06 03:06:19 | 00,000,218 | ---- | C] () -- C:\Documents and Settings\Ett\.recently-used.xbel
[2009-11-06 02:19:34 | 02,378,886 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\installer_mercury_messenger_Svenska_Swedish.exe
[2009-11-06 02:11:09 | 00,178,850 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\pidgin.JPG
[2009-11-06 01:39:18 | 14,436,216 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\pidgin-2.6.3.exe
[2009-11-05 19:36:06 | 00,003,520 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\duell.rtf
[2009-11-04 23:49:58 | 00,040,960 | ---- | C] () -- C:\Documents and Settings\Ett\Skrivbord\By_generator.exe
[2009-11-03 22:20:24 | 00,001,472 | ---- | C] () -- C:\Documents and Settings\All Users\Skrivbord\Prototype™.lnk
[2009-10-18 21:50:25 | 00,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-10-10 21:52:26 | 00,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2009-10-10 15:48:33 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-08-22 22:40:17 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\leverage.drm.log
[2009-08-21 19:50:54 | 00,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009-08-21 19:50:52 | 00,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009-08-09 13:25:53 | 00,000,101 | ---- | C] () -- C:\WINDOWS\CMMIXER.INI
[2009-08-09 13:21:49 | 00,000,025 | ---- | C] () -- C:\WINDOWS\mixerdef.ini
[2009-08-09 00:02:03 | 00,000,760 | ---- | C] () -- C:\Documents and Settings\Ett\Application Data\setup_ldm.iss
[2009-06-18 17:55:56 | 00,000,442 | ---- | C] () -- C:\Documents and Settings\Ett\Application Data\SamsungLiveUpdateConfig.ini
[2009-04-01 15:53:34 | 00,520,192 | ---- | C] () -- C:\WINDOWS\System32\RegisterDialog.dll
[2009-03-31 22:09:25 | 00,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009-01-22 20:46:03 | 00,088,576 | -H-- | C] () -- C:\Documents and Settings\Ett\Application Data\rbap550.dll
[2009-01-22 20:46:03 | 00,029,184 | -H-- | C] () -- C:\Documents and Settings\Ett\Application Data\RBInternetEncodings550.dll
[2009-01-19 16:05:47 | 00,000,139 | ---- | C] () -- C:\Documents and Settings\Ett\Application Data\NWNToolPrefs.txt
[2009-01-10 20:35:53 | 00,000,271 | ---- | C] () -- C:\WINDOWS\vtmb.ini
[2008-12-31 17:04:42 | 00,691,560 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2008-11-05 18:25:52 | 00,000,169 | ---- | C] () -- C:\WINDOWS\game.ini
[2008-10-08 00:15:31 | 00,126,464 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2008-10-07 08:13:30 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008-10-07 08:13:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008-10-07 08:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008-09-18 18:44:39 | 00,061,440 | R--- | C] () -- C:\WINDOWS\System32\dsnpp106.dll
[2008-09-18 18:44:38 | 00,049,152 | R--- | C] () -- C:\WINDOWS\System32\vsnpp106.dll
[2008-09-18 18:44:38 | 00,015,494 | R--- | C] () -- C:\WINDOWS\snpp106.ini
[2008-09-18 18:44:37 | 00,236,544 | R--- | C] () -- C:\WINDOWS\System32\drivers\snpp106.sys
[2008-09-18 18:41:13 | 00,000,562 | ---- | C] () -- C:\WINDOWS\videoimp.ini
[2008-09-18 18:41:00 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2008-09-18 18:39:13 | 00,000,021 | ---- | C] () -- C:\WINDOWS\VI_setup.ini
[2008-09-04 21:19:33 | 00,000,107 | ---- | C] () -- C:\WINDOWS\WET.INI
[2008-07-14 22:27:42 | 00,014,284 | ---- | C] () -- C:\Program\settings.dat
[2008-07-14 21:25:04 | 00,106,496 | ---- | C] () -- C:\WINDOWS\System32\BrMuSNMP.dll
[2008-07-14 21:22:21 | 00,031,567 | ---- | C] () -- C:\WINDOWS\maxlink.ini
[2008-07-08 21:58:56 | 00,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2008-07-08 21:58:56 | 00,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2008-07-08 21:58:56 | 00,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2008-06-14 16:03:11 | 00,120,320 | ---- | C] () -- C:\WINDOWS\System32\drivers\SSHDRV65.sys
[2008-05-26 23:10:02 | 00,014,772 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008-05-26 23:10:00 | 00,022,298 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008-05-26 23:09:58 | 00,014,614 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008-05-13 23:52:06 | 00,005,632 | ---- | C] () -- C:\WINDOWS\System32\CNMVS2J.DLL
[2008-03-23 11:51:00 | 00,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2008-03-07 06:09:01 | 00,000,152 | RHS- | C] () -- C:\WINDOWS\System32\C026D5A52D.dll
[2008-03-07 02:33:09 | 00,001,838 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Svclog.log
[2008-02-25 17:38:35 | 00,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat
[2008-02-24 21:23:10 | 00,005,120 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\Thumbs.db
[2008-02-21 03:44:22 | 00,000,935 | ---- | C] () -- C:\WINDOWS\AZPR3.INI
[2008-02-11 18:57:18 | 00,001,024 | ---- | C] () -- C:\WINDOWS\VueIcons.ini
[2008-01-18 19:33:45 | 00,000,145 | ---- | C] () -- C:\WINDOWS\bildvp32.ini
[2008-01-17 22:11:03 | 00,000,000 | ---- | C] () -- C:\WINDOWS\opt_5030.ini
[2008-01-17 22:11:03 | 00,000,000 | ---- | C] () -- C:\WINDOWS\BROHL503.INI
[2008-01-17 22:11:03 | 00,000,000 | ---- | C] () -- C:\WINDOWS\brmx2001.ini
[2008-01-17 22:11:02 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\BRGSRC32.DLL
[2008-01-17 22:11:02 | 00,004,608 | ---- | C] () -- C:\WINDOWS\System32\BRGSRC16.DLL
[2008-01-17 22:11:02 | 00,000,863 | ---- | C] () -- C:\WINDOWS\brwmark.ini
[2008-01-17 22:11:02 | 00,000,065 | ---- | C] () -- C:\WINDOWS\brpp2ka.ini
[2008-01-17 22:11:02 | 00,000,023 | ---- | C] () -- C:\WINDOWS\BRDIAG.INI
[2008-01-17 22:11:02 | 00,000,012 | ---- | C] () -- C:\WINDOWS\Brownie.ini
[2008-01-17 22:11:02 | 00,000,011 | ---- | C] () -- C:\WINDOWS\BRVIDEO.INI
[2008-01-17 22:10:58 | 00,000,030 | ---- | C] () -- C:\WINDOWS\System32\BRSS01A.ini
[2007-12-21 12:54:30 | 00,139,152 | ---- | C] () -- C:\Documents and Settings\Ett\Application Data\PnkBstrK.sys
[2007-12-08 01:06:44 | 00,000,093 | ---- | C] () -- C:\WINDOWS\oodcnt.INI
[2007-12-03 22:58:46 | 03,176,956 | -H-- | C] () -- C:\Documents and Settings\Ett\Lokala inställningar\Application Data\IconCache.db
[2007-12-02 02:18:49 | 00,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini
[2007-11-29 10:03:10 | 00,045,056 | R--- | C] () -- C:\WINDOWS\System32\cmdrvrmu.dll
[2007-11-29 10:03:00 | 00,005,648 | R--- | C] () -- C:\WINDOWS\Cmudau.ini
[2007-11-26 21:56:28 | 00,151,415 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2007-11-26 00:56:46 | 00,137,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2007-11-22 00:10:38 | 01,228,854 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\OrbError.bmp
[2007-11-18 15:38:12 | 00,000,000 | ---- | C] () -- C:\WINDOWS\LCDMedia.INI
[2007-11-15 19:52:25 | 00,000,132 | ---- | C] () -- C:\Documents and Settings\Ett\Lokala inställningar\Application Data\fusioncache.dat
[2007-11-15 19:19:54 | 00,175,616 | ---- | C] () -- C:\Documents and Settings\Ett\Lokala inställningar\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007-11-15 19:16:54 | 00,000,383 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007-11-15 18:55:32 | 00,009,728 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2007-11-15 18:52:38 | 00,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007-11-15 17:54:24 | 00,053,248 | R--- | C] () -- C:\WINDOWS\System32\c6501rm.dll
[2007-11-15 17:52:59 | 00,004,600 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2007-11-15 17:52:58 | 00,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2007-11-15 17:45:21 | 00,055,488 | ---- | C] () -- C:\Documents and Settings\Ett\Lokala inställningar\Application Data\GDIPFONTCACHEV1.DAT
[2007-11-15 12:58:01 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\desktop.ini
[2007-11-15 12:09:44 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Ett\Application Data\desktop.ini
[2006-06-29 13:58:52 | 00,030,808 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont
[2006-06-29 13:53:56 | 00,026,489 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006-04-18 14:39:28 | 00,029,779 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006-04-18 14:39:28 | 00,026,040 | ---- | C] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2006-03-06 09:41:02 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\AMV_DecDLL.dll
[2005-07-29 15:21:32 | 00,011,988 | ---- | C] () -- C:\WINDOWS\System32\drivers\vbtenum.sys
[2004-12-16 15:32:54 | 00,013,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\BTNetFilter.sys
[2004-09-16 12:26:40 | 00,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS
[2004-04-06 03:10:00 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\besched.dll
[2003-09-25 00:00:00 | 00,208,896 | ---- | C] () -- C:\WINDOWS\System32\lockout.dll
[2003-09-25 00:00:00 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\lockres.dll
[2003-04-08 10:35:24 | 00,005,414 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001-09-07 13:00:00 | 00,000,750 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-09-07 13:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[1997-06-18 00:00:00 | 00,022,016 | ---- | C] () -- C:\WINDOWS\System32\DOCOBJ.DLL
[1997-06-18 00:00:00 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\HLINKPRX.DLL
[1996-04-03 20:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
========== LOP Check ==========
[2009-08-22 22:40:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AA3DeployClient
[2009-10-21 14:56:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ATI
[2008-07-08 15:49:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2007-11-15 18:56:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[2008-04-29 14:13:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DeskSoft
[2009-01-16 19:04:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2008-11-02 18:24:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Fallout3
[2009-10-10 15:51:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LightScribe
[2009-11-08 00:55:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lionhead Studios
[2008-03-30 20:17:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst
[2009-04-27 19:28:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2009-08-08 23:54:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\RegCure
[2009-06-19 17:19:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2009-09-16 17:44:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Turbine
[2009-11-13 18:58:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\.purple
[2008-11-05 19:35:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Activision
[2007-11-17 23:38:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\ATI
[2008-08-27 01:07:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\atitray
[2009-10-24 19:27:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Bioshock
[2009-08-23 19:54:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Codemasters
[2008-09-02 23:14:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Command & Conquer 3 Tiberium Wars
[2007-11-15 18:56:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\DAEMON Tools Pro
[2008-05-05 11:27:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\DeskSoft
[2007-12-23 19:05:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\genline
[2009-05-07 14:10:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\GetRightToGo
[2009-11-06 02:15:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\gtk-2.0
[2009-08-08 23:54:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\HLSW
[2009-10-10 02:36:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\IObit
[2008-05-26 22:05:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Leadertech
[2009-11-08 02:45:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Lionhead Studios
[2008-04-21 14:07:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\LucasArts
[2007-11-16 03:01:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Mount&Blade
[2008-10-29 21:05:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\My Battle for Middle-earth™ II Files
[2008-10-29 20:41:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\My The Lord of the Rings, The Rise of the Witch-king Files
[2008-11-14 19:08:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Petroglyph
[2008-03-30 20:17:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\PlayFirst
[2009-02-17 23:23:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\ScanSoft
[2007-12-07 04:05:38 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Ett\Application Data\SecuROM
[2008-09-18 21:45:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\SPORE
[2008-09-02 22:31:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\SPORE Creature Creator
[2009-03-05 21:00:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\The Creative Assembly
[2009-10-10 01:53:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\vghd
[2008-12-01 17:57:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Windows Desktop Search
[2008-12-11 21:01:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Ett\Application Data\Windows Search
[2009-11-12 04:00:00 | 00,000,292 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware 2007.job
[2001-09-07 13:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009-11-12 21:57:04 | 00,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\OGADaily.job
[2009-11-13 18:58:09 | 00,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\OGALogon.job
[2009-11-13 18:54:49 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.exe >
< %SYSTEMDRIVE%\eventlog.dll /s /md5 >
[2004-08-04 09:33:35 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=264DBC116901E89565B830B0CC20F922 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008-04-14 17:04:38 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=0A6DF967AE8E836D053DB46398F603E5 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008-04-14 17:04:38 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=0A6DF967AE8E836D053DB46398F603E5 -- C:\WINDOWS\system32\eventlog.dll
< %SYSTEMDRIVE%\scecli.dll /s /md5 >
[2004-08-04 09:33:54 | 00,183,808 | ---- | M] (Microsoft Corporation) MD5 -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008-04-14 17:04:47 | 00,184,832 | ---- | M] (Microsoft Corporation) MD5=3B50B494647E60CE6AC516E3F5C82B25 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008-04-14 17:04:47 | 00,184,832 | ---- | M] (Microsoft Corporation) MD5=3B50B494647E60CE6AC516E3F5C82B25 -- C:\WINDOWS\system32\scecli.dll
< %SYSTEMDRIVE%\netlogon.dll /s /md5 >
[2004-08-04 09:33:48 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=A6FD3341EC1A98A31B044C6E0DAF8F26 -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[2008-04-14 17:04:44 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=4F4A16EAEB932AE413E48923E6A400E0 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008-04-14 17:04:44 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=4F4A16EAEB932AE413E48923E6A400E0 -- C:\WINDOWS\system32\netlogon.dll
< %SYSTEMDRIVE%\cngaudit.dll /s /md5 >
< %SYSTEMDRIVE%\sceclt.dll /s /md5 >
< %SYSTEMDRIVE%\ntelogon.dll /s /md5 >
< %SYSTEMDRIVE%\logevent.dll /s /md5 >
< %SYSTEMDRIVE%\iaStor.sys /s /md5 >
< %SYSTEMDRIVE%\nvstor.sys /s /md5 >
< %SYSTEMDRIVE%\atapi.sys /s /md5 >
[2004-08-04 06:59:42 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2008-04-13 19:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-13 19:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
< %SYSTEMDRIVE%\IdeChnDr.sys /s /md5 >
< %SYSTEMDRIVE%\viasraid.sys /s /md5 >
< %SYSTEMDRIVE%\AGP440.sys /s /md5 >
[2004-08-04 07:07:41 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\$NtServicePackUninstall$\agp440.sys
[2008-04-13 19:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008-04-13 19:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< %SYSTEMDRIVE%\vaxscsi.sys /s /md5 >
< End of report >
OTL extras:
OTL Extras logfile created on: 2009-11-13 19:03:42 - Run 1
OTL by OldTimer - Version 3.1.5.0 Folder = C:\Documents and Settings\Ett\Skrivbord
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041D | Country: Sverige | Language: SVE | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,31 Gb Available Physical Memory | 65,76% Memory free
3,84 Gb Paging File | 3,26 Gb Available in Paging File | 84,74% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program
Drive C: | 189,91 Gb Total Space | 19,97 Gb Free Space | 10,51% Space Free | Partition Type: NTFS
Drive D: | 7,46 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 1,09 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 465,76 Gb Total Space | 24,91 Gb Free Space | 5,35% Space Free | Partition Type: NTFS
Drive M: | 465,76 Gb Total Space | 29,52 Gb Free Space | 6,34% Space Free | Partition Type: NTFS
Computer Name: NIKKE2
Current User Name: Ett
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "C:\Program\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program\Internet Explorer\iexplore.exe" (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
"" =
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"24691:TCP" = 24691:TCP:*:Enabled:utor1
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Windows Media Player Network Sharing Service
"24691:UDP" = 24691:UDP:192.168.0.34/255.255.255.255:Enabled:Utorr
"57912:TCP" = 57912:TCP:*:Enabled:Pando Media Booster
"57912:UDP" = 57912:UDP:*:Enabled:Pando Media Booster
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\spel\Exteel\System\Exteel.exe" = C:\spel\Exteel\System\Exteel.exe:*:Enabled:Exteel -- File not found
"C:\Program\Windows Live\Messenger\msnmsgr.exe" = C:\Program\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"C:\spel\Battlefield 2\BF2.exe" = C:\spel\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2 -- ()
"C:\Program\DC++\DCPlusPlus.exe" = C:\Program\DC++\DCPlusPlus.exe:*:Enabled:DC++ -- ()
"C:\Program\mIRC\mirc.exe" = C:\Program\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.)
"C:\Program\Hamachi\hamachi.exe" = C:\Program\Hamachi\hamachi.exe:*:Enabled:Hamachi Client -- (LogMeIn Inc.)
"C:\Program\Steam\steamapps\[email protected]\half-life\hl.exe" = C:\Program\Steam\steamapps\[email protected]\half-life\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\spel\40k\Dawn of War - Dark Crusade\DarkCrusade.exe" = C:\spel\40k\Dawn of War - Dark Crusade\DarkCrusade.exe:*:Enabled:DarkCrusade -- (THQ Canada Inc.)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Program\CyberLink\PowerDVD\PowerDVD.exe" = C:\Program\CyberLink\PowerDVD\PowerDVD.exe:*:Enabled:CyberLink PowerDVD -- (CyberLink Corp.)
"C:\spel\SWKotOR2\swupdate.exe" = C:\spel\SWKotOR2\swupdate.exe:*:Enabled:Star Wars: Knights of the Old Republic II: The Sith Lords Update Program -- (Obsidian Entertainment, Inc.)
"C:\spel\Warcraft III\Warcraft III.exe" = C:\spel\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III -- (Blizzard Entertainment)
"C:\spel\Warcraft III\Frozen Throne.exe" = C:\spel\Warcraft III\Frozen Throne.exe:*:Enabled:Warcraft III - The Frozen Throne -- (Blizzard Entertainment)
"C:\spel\Warcraft III\World Editor.exe" = C:\spel\Warcraft III\World Editor.exe:*:Enabled:Warcraft III World Editor -- (Blizzard Entertainment)
"C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8-server -- (Microsoft Corporation)
"C:\Program\Steam\steamapps\[email protected]\half-life 2 deathmatch\hl2.exe" = C:\Program\Steam\steamapps\[email protected]\half-life 2 deathmatch\hl2.exe:*:Enabled:hl2 -- ()
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Program\uTorrent\uTorrent.exe" = C:\Program\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- File not found
"C:\Program\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe" = C:\Program\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe:*:Enabled:jamp.exe -- (Activision Inc)
"C:\spel\Rune\System\RUNE.EXE" = C:\spel\Rune\System\RUNE.EXE:*:Enabled:RUNE -- ()
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\spel\NWN\nwmain.exe" = C:\spel\NWN\nwmain.exe:*:Enabled:Neverwinter Nights -- (BioWare)
"C:\Program\Mozilla Firefox\firefox.exe" = C:\Program\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program\Electronic Arts\EADM\Core.exe" = C:\Program\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager -- (Electronic Arts)
"C:\Program\IVT Corporation\BlueSoleil\BlueSoleil.exe" = C:\Program\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil -- (IVT Corporation)
"C:\spel\Aliens vs. Predator 2\avp2.exe" = C:\spel\Aliens vs. Predator 2\avp2.exe:*:Enabled:Aliens vs. Predator 2 -- ()
"C:\spel\Aliens vs. Predator 2\AVP2Serv.exe" = C:\spel\Aliens vs. Predator 2\AVP2Serv.exe:*:Enabled:AVP2 Stand-Alone Server -- (Monolith Productions Inc.)
"C:\spel\Aliens vs. Predator 2\lithtech.exe" = C:\spel\Aliens vs. Predator 2\lithtech.exe:*:Enabled:Client -- ()
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\English\setup.exe" = C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\English\setup.exe:*:Enabled:Kaspersky Internet Security 2009 Setup -- (Kaspersky Lab)
"C:\spel\Deer Hunter 2005\DH2005.exe" = C:\spel\Deer Hunter 2005\DH2005.exe:*:Enabled:DH2005 -- ()
"C:\spel\Dungeon Siege 2\DungeonSiege2.exe" = C:\spel\Dungeon Siege 2\DungeonSiege2.exe:*:Enabled:Dungeon Siege 2 Game Executable -- (Gas Powered Games)
"C:\Program\Curse\CurseClient.exe" = C:\Program\Curse\CurseClient.exe:*:Enabled:Curse Client -- ()
"C:\Program\Pando Networks\Media Booster\PMB.exe" = C:\Program\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\spel\Turbine Download Manager\TurbineMessageService.exe" = C:\spel\Turbine Download Manager\TurbineMessageService.exe:*:Enabled:TurbineMessageService -- (Turbine, Inc.)
"C:\spel\Turbine Download Manager\TurbineNetworkService.exe" = C:\spel\Turbine Download Manager\TurbineNetworkService.exe:*:Enabled:TurbineNetworkService -- (Turbine, Inc.)
"C:\Program\Steam\steamapps\common\left 4 dead\left4dead.exe" = C:\Program\Steam\steamapps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead -- ()
"C:\Program\Skype\Plugin Manager\skypePM.exe" = C:\Program\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- (Skype Technologies)
"C:\spel\Prototype\prototypef.exe" = C:\spel\Prototype\prototypef.exe:*:Enabled:Prototype™ -- (Activision)
"C:\Program\Windows Live\Messenger\msnmsgr.exe" = C:\Program\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program\Skype\Phone\Skype.exe" = C:\Program\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2™
"{0523EAF4-402C-4435-A0DA-13C40193D811}" = Logitech GamePanel Software 2.02
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{0556F885-2415-4666-B53E-33727E46AEA1}" = The Movies™
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{0893078B-8A9A-84D6-D393-119B9B0B033A}" = CCC Help French
"{08F8FD7C-44A5-4423-B87C-EBD3D94C9F87}" = Vampire - The Masquerade Bloodlines
"{09DA4F91-2A09-4232-AB8C-6BC740096DE3}" = Sonic Update Manager
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0E2A60F7-2907-5718-FF16-7D8FAF70051E}" = CCC Help Chinese Standard
"{0E93710D-31E5-477C-8A4B-5032B484BE74}" = Windows Live inloggningsassistenten
"{11F5D779-7BD9-465A-BBC4-10701386BCB9}" = FW LiveUpdate
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{14298AFE-9001-9CFB-595E-38BB3DCB25D3}" = ccc-utility
"{14FAE013-AE19-4FC9-B5BF-E56ADC01ECE6}" = CCC Help Turkish
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{17BB2784-6EE4-D7FF-FE63-58A3AD2B3708}" = CCC Help Russian
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{19F59AB5-B1F6-4276-A40B-09472318BCFF}" = Star Wars Galaxies: Complete Online Adventures
"{1A655D51-1423-48A3-B748-8F5A0BE294C8}" = Microsoft Visual J# .NET Redistributable Package 1.1
"{1ABCD64F-6B57-D191-707A-A64C6E177DDF}" = Catalyst Control Center Graphics Full New
"{1BA6EE26-3358-B634-FD05-D07C964EE944}" = Skins
"{1EECBA68-8BE4-4076-94DF-E9ED206B1D21}" = Star Wars Jedi Knight Jedi Academy
"{20071984-5EB1-4881-8EDB-082532ACEC6D}" = Heroes of Might and Magic V
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{233588CF-96D5-46AF-EF74-7EC382662791}" = Catalyst Control Center Graphics Full Existing
"{2930D73B-49E6-02DC-BA42-8EC2B1C6752E}" = CCC Help English
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java™ 6 Update 3
"{3260ECBC-9DDF-E7A3-0863-449473BC7BD5}" = CCC Help Chinese Traditional
"{332CC6BF-E6C7-48EE-BA3D-435E576AD67F}" = PaperPort Image Printer
"{344856C1-4621-49DB-B5E4-728FDB08F82D}" = PowerLister
"{34B9B494-EF4A-4592-87A8-BE40D0442E86}" = Dawn of War - Soulstorm
"{350C97BC-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{362D5167-9716-44BE-89FD-BF9EB6EF814B}" = DawnOfWar
"{39C6C229-CFFD-639E-229A-E463FCD87478}" = CCC Help German
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{3EF79591-BF16-4CF8-8FF0-D8AD968228B1}" = Aliens vs. Predator 2
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{411F3ABA-2AB5-4799-AA19-6ADF0A8F7424}" = Adobe Setup
"{43509E18-076E-40FE-AF38-CA5ED400A5A9}" = Pixel Bender Toolkit
"{44E240EC-2224-4078-A88B-2CEE0D3016EF}" = Adobe After Effects CS4 Presets
"{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
"{49EC6CF7-B704-C2FE-49B9-E3CEBA76C671}" = Catalyst Control Center Core Implementation
"{4F11FC80-CE8C-1BD4-5C39-EBE5744E5135}" = CCC Help Portuguese
"{4F55E486-4EDE-A879-B6CC-0B07DD475540}" = Catalyst Control Center Graphics Light
"{4FAB2BA7-E16C-95D2-F326-60A68409373F}" = Catalyst Control Center HydraVision Full
"{50D4CB89-AF34-4978-96DC-C3034062E901}" = Battlefield 2: Special Forces
"{529AA9A8-5020-6CFB-A809-BC5943C87077}" = CCC Help Thai
"{53480330-E1D1-41CA-B8F8-7F78644F7F50}" = O&O Defrag Professional Edition
"{53604297-26FD-516D-6FF7-1063BA64A0A4}" = Catalyst Control Center Graphics Light
"{55BD3B0B-F054-9341-514F-295A5F7EA450}" = CCC Help Spanish
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57D5CF00-60C0-43AB-80CD-84D0EB1BBE39}" = BlueSoleil
"{5809E7CF-4DCF-11D4-9875-00105ACE7734}" = Logitech MouseWare 9.80
"{5A4FA9C8-ED56-08C3-153B-FC5C19256290}" = CCC Help Dutch
"{5A70922D-9365-43CC-ADA9-CB84E4A54E4E}" = Windows Live Essentials
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{629F65FB-7F3C-4D66-A1C0-20722744B7B6}" = Star Wars® Knights of the Old Republic® II: The Sith Lords™
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}" = Battlefield 1942
"{6C1804BC-094F-431A-BEA5-37A837958029}" = Rome - Total War - Alexander
"{6C390D51-E5F0-4FCD-24C4-731ACAF34571}" = CCC Help Japanese
"{7148F0A8-6813-11D6-A77B-00B0D0142000}" = Java 2 Runtime Environment, SE v1.4.2
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{746E4937-CC0E-C8A2-CEF3-41774D227847}" = Catalyst Control Center Graphics Full Existing
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{788064B6-AF54-4E8A-BB76-971D762FEB16}" = Backpacker 3 Mediterraneo
"{7AA8FA9A-1656-7DBD-633B-FE7A62BBED0C}" = CCC Help Czech
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7C503E58-B2BC-11D5-978A-0050BA84F5F7}" = Neverwinter Nights
"{7F34A21F-2DEB-4598-BB19-611D6BD24271}" = Managed DirectX (0900)
"{7FBF377B-21EB-381B-BDC4-8935957E7FCF}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - SVE
"{80A1F948-2D8E-7C25-87AA-6D8294334A5D}" = Catalyst Control Center Core Implementation
"{80EE18E6-F16C-11D4-8BE8-006097C9A3ED}" = ISScript
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A50284B-6426-2FDF-48BD-0895482344E8}" = CCC Help English
"{8AAB4176-A747-493A-A42C-B63CFADFD8E3}" = NVIDIA PhysX
"{8AC01A0D-42B6-4A55-AD7A-A545A7AE5364}" = Enclave
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}" = MP3 Player Utilities 4.18
"{8C22131B-8634-CECF-F0D1-A2ECC160B450}" = CCC Help Norwegian
"{8FC8A1FB-F49B-4C2A-9A90-F229250A1AF6}" = Judge Dredd - Dredd vs Death
"{9011041D-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90FBE4D0-2ACA-A8A8-2CC4-CFFBAE528504}" = CCC Help Finnish
"{91C4CBA0-2AD5-5AA8-EC98-0BCD4914C5F4}" = Catalyst Control Center Graphics Previews Common
"{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}" = Microsoft Games for Windows - LIVE Redistributable
"{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype™
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9701A4CC-C144-4482-9776-B64BF4A5343F}" = Resident Evil 3
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{992A2DB1-4ABC-4738-BD71-045C5FFE00D1}" = Microsoft .NET Framework 1.1 Swedish Language Pack
"{9B700657-676B-4A98-8B25-40A1BAC81053}" = Nero 8 Essentials
"{9D74375E-3012-E7D2-9229-B220C91F326A}" = Catalyst Control Center Core Implementation
"{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"{9EE8BDCA-7505-4895-D91E-8108DD16292E}" = CCC Help English
"{A0ACD7D7-E79D-4593-BBF8-65D17889FA25}" = ArcSoft VideoImpression 1.6
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War™
"{A8AF8BD3-61B5-7945-4D1B-217421F604FC}" = CCC Help Hungarian
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AA46E1C5-A709-6D9B-D99D-92E4C6E042A9}" = CCC Help Korean
"{AA62A33C-9E5E-3913-7D88-7E58A8CB1493}" = CCC Help Greek
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1053-7B44-A91000000001}" = Adobe Reader 9.1 - Svenska
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B1E260B6-9456-88F7-9994-7A4CCF39FB0C}" = ccc-utility
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{B653F643-A1B4-9936-2DB6-FEA9A3110D8D}" = ccc-core-preinstall
"{B6C89654-A6A2-477C-873B-724EC1C56407}" = ScanSoft PaperPort 11
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B71C4637-0247-78CE-6A3D-D61645CB8921}" = ccc-utility
"{B8737BE8-0E2B-C420-DB2D-F468748414F0}" = ccc-core-preinstall
"{B93F0E87-FBDB-097E-5DCA-FF99110F26E0}" = Catalyst Control Center Graphics Previews Common
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BBF51613-ACF3-4B1C-86E8-AD15BB431037}" = Tribes Vengeance
"{BC2E7C0B-1AC6-5F6C-F31D-E1E72D8E0B5C}" = CCC Help Danish
"{BE130CAB-F7AA-4660-96A2-6BCCE9743946}" = Sonic Backup MyPC Special Edition for HP
"{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}" = Adobe Media Encoder CS4 Additional Exporter
"{BF8C7DA7-2DE6-ED67-6C82-6BE82F8BA8D3}" = Catalyst Control Center Graphics Full New
"{C04ED833-89A3-BC13-BAE3-96FDD56933F9}" = Catalyst Control Center Graphics Full New
"{C06A7DAC-1708-417C-B694-28C84DFE2DF9}" = The Movies™ Stunts & Effects
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C409F338-BB20-6C4A-F40D-20CA07AF714C}" = CCC Help Polish
"{C4E2A4A7-B623-40CB-8EEA-72F577E49D56}" = Vampire - The Masquerade Bloodlines
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C810930D-3FA2-3E54-1FAC-3907C5AEA7BC}" = Catalyst Control Center Graphics Full Existing
"{CAFC9755-5469-DC18-CDD2-6F5C743AC478}" = Catalyst Control Center Graphics Light
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CDC31D08-9789-2554-2670-C33BC49F0DD3}" = ccc-core-static
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE7CB214-DB11-4B5D-A6AF-3B4ED47C68B7}" = Microsoft Game Studios Common Redistributables Pack 1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D219BE4E-4B67-4354-AB10-3EF90A0CC883}" = Silent Storm
"{D4B7B2DC-E688-A9D6-6EC0-56AE540E074C}" = Catalyst Control Center Localization All
"{D9CD701B-3F04-FC69-D974-F3A7F5E9BA30}" = CCC Help Swedish
"{D9D93D74-107D-4BD3-87D0-AABCF7C98BD5}" = Catalyst Control Center - Branding
"{DA2B455A-B0BE-4C5A-B73A-0615F37C81D5}" = Beowulf TM
"{DA9DAC64-C947-47BA-B411-8A1959B177CF}" = LightScribe System Software 1.14.25.1
"{DB427EF6-F13E-4AA6-9D40-5D962394774F}" = OGA Notifier 1.7.0105.35.0
"{DD8408E9-9421-484F-979D-DB6361E3E828}" = Dawn Of War - Winter Assault
"{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}" = Adobe Media Encoder CS4
"{E213321B-1E88-B38D-DAB2-D8CB9355984A}" = Skins
"{EC928237-A3BD-4640-ABD0-E49E758F2315}" = Windows Live Messenger
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{ED14F9FF-12A5-3BB6-A0D9-67B45FB16BF9}" = Microsoft .NET Framework 3.5 Language Pack - sve
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F20C1251-1D0A-4944-B2AE-678581B33B19}" = Neverwinter Nights 2
"{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"{F4148D8F-ED3A-3097-509C-04D5560220F9}" = ccc-core-static
"{F54885B7-7789-087D-62EB-373D4DF83B56}" = Skins
"{F7E68997-E626-952B-A7BF-F72066CD5D77}" = Catalyst Control Center Graphics Previews Common
"{F8474DF7-9902-7305-BAB3-34DEDFF2ADC5}" = ccc-core-static
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{F997D0C2-CB08-3EE1-AF54-F2BA00CCB819}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - SVE
"{FA36C82B-464D-51F2-A6A1-0BC9140BE067}" = CCC Help Italian
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FD69C8CB-6964-432C-98AB-A5A09ED50EEA}" = Barbarian Invasion
"{FE2881D8-236B-6B25-2C5A-74CFB00F2756}" = ccc-core-preinstall
"15b35190-c6f9-11d9-9669-0800200c9a66_is1" = Dungeons and Dragons Online™ - Eberron Unlimited™ - Live
"396FD00A58F61D595A7B26211A4715A3E27622E0" = Windows-drivrutinspaket - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"62289540-dc30-11dc-95ff-0800200c9a66_is1" = Turbine Download Manager - Live
"69083DC58646DE46A09847A522A1CC487F918039" = Windows-drivrutinspaket - eMPIA Technology Inc, (emAudio) MEDIA (08/31/2007 5.7.0831.0)
"9722CA1E8F72F362E93CBEC75A707FDABFC8D880" = Windows-drivrutinspaket - Advanced Micro Devices, Inc. (USB28xxBGA) Media (08/31/2007 5.7.0831.0)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"Adobe Shockwave Player" = Adobe Shockwave Player
"Adobe_3dcb365ab9e01871fb8c6f27b0ea079" = Adobe After Effects CS4
"Advanced SystemCare 3_is1" = Advanced SystemCare 3
"All ATI Software" = ATI - Hjälp för avinstallation av program
"Aspell English Dictionary_is1" = Aspell English Dictionary-0.50-2
"Aspell Swedish Dictionary_is1" = Aspell Swedish Dictionary-0.50-2
"ATI Display Driver" = ATI Display Driver
"Carmageddon 2 Carpocalypse Now" = Carmageddon 2 Carpocalypse Now
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Comical_is1" = Comical 0.8
"Cool MP3 Splitter_is1" = Cool MP3 Splitter 2.2
"CurseClient" = Curse Client
"Cycore FX 1.0.1 for After Effects" = Cycore FX 1.0.1 for After Effects
"D86F919878AFFF3A6246624285DF4BEB4CD7A96B" = Windows-drivrutinspaket - Advanced Micro Devices (AmdK8) Processor (04/28/2006 1.3.1.0)
"DC++" = DC++ 0.707
"DCFX" = DCFX
"DCXtended .9" = DCXtended .9
"Deer Hunter 2005_is1" = Deer Hunter - The 2005 Season
"DesertCombat" = DesertCombat 0.7
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Dungeon Keeper 2" = Dungeon Keeper 2
"DungeonSiege2" = Dungeon Siege 2
"EADM" = EA Download Manager
"EOS Utility" = Canon Utilities EOS Utility
"ERUNT_is1" = ERUNT 1.1j
"ESF" = Earth's Special Forces
"ESForces" = ESForces
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v4.60
"Freelancer 1.0" = Freelancer
"Generic 6501 Sound" = C-Media 6501 Sound
"Generic USB Sound" = Trust HS-6400 5.1 Surround USB Headset
"GTK 2.0" = GTK+ Runtime 2.14.7 rev a (enbart för avinstallation)
"Hamachi" = Hamachi 1.0.1.5
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1}" = The Movies™ Stunts & Effects
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{362D5167-9716-44BE-89FD-BF9EB6EF814B}" = DawnOfWar
"InstallShield_{9322A850-9091-4D0E-B252-3E82EDA3D94A}" = Prototype™
"InstallShield_{BBF51613-ACF3-4B1C-86E8-AD15BB431037}" = Tribes Vengeance
"InstallShield_{C4E2A4A7-B623-40CB-8EEA-72F577E49D56}" = Vampire - The Masquerade Bloodlines
"InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"InstallWIX_{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack - sve" = Språkpaket för Microsoft .NET Framework 3.5 - Swedish
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"mIRC" = mIRC
"Mount&Blade" = Mount&Blade
"Mozilla Firefox (3.5.5)" = Mozilla Firefox (3.5.5)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"Painkiller" = Painkiller
"PCI Audio Driver" = PCI Audio Driver
"PowerISO" = PowerISO
"PunkBusterSvc" = PunkBuster Services
"QuickTime" = QuickTime
"Rag Doll Kung Fu" = Rag Doll Kung Fu
"RegCure" = RegCure 1.6.0.0
"Rune Co-Op" = Rune Co-Op
"Shockwave" = Shockwave
"SNPP106" = PC CAMERA DATA SOURCE(6029)1.0(32-32)
"SpeedFan" = SpeedFan (remove only)
"Station Launcher" = Station Launcher
"Steam App 130" = Half-Life: Blue Shift
"Steam App 17520" = Synergy
"Steam App 17730" = Smashball
"Steam App 215" = Source SDK Base
"Steam App 218" = Source SDK Base - Orange Box
"Steam App 220" = Half-Life 2
"Steam App 320" = Half-Life 2: Deathmatch
"Steam App 500" = Left 4 Dead
"The Rosetta Stone" = The Rosetta Stone
"Trapcode Shine" = Trapcode Shine
"Uplink" = Uplink
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"VentriloMIX" = VentriloMIX
"WhoCrashed_is1" = WhoCrashed 2.00
"WIC" = Windows Imaging Component
"WinAce Archiver" = WinAce Archiver
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"VLC media player" = VLC media player 1.0.2
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"X-Coopmod Beta 2.5" = X-Coopmod Beta 2.5
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Warcraft III" = Warcraft III: All Products
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 2009-11-12 18:09:47 | Computer Name = NIKKE2 | Source = crypt32 | ID = 131080
Description = Det gick inte att automatiskt uppdatera tredjepartsrotlistsekvensnumret
från: <http://www.download....throotseq.txt>.
Fel: Det går inte att utföra den begärda åtgärden på den angivna servern.
Error - 2009-11-12 18:09:47 | Computer Name = NIKKE2 | Source = crypt32 | ID = 131080
Description = Det gick inte att automatiskt uppdatera tredjepartsrotlistsekvensnumret
från: <http://www.download....throotseq.txt>.
Fel: Det går inte att utföra den begärda åtgärden på den angivna servern.
Error - 2009-11-12 18:09:47 | Computer Name = NIKKE2 | Source = crypt32 | ID = 131080
Description = Det gick inte att automatiskt uppdatera tredjepartsrotlistsekvensnumret
från: <http://www.download....throotseq.txt>.
Fel: Det går inte att utföra den begärda åtgärden på den angivna servern.
Error - 2009-11-12 18:09:47 | Computer Name = NIKKE2 | Source = crypt32 | ID = 131080
Description = Det gick inte att automatiskt uppdatera tredjepartsrotlistsekvensnumret
från: <http://www.download....throotseq.txt>.
Fel: Det går inte att utföra den begärda åtgärden på den angivna servern.
Error - 2009-11-12 18:09:47 | Computer Name = NIKKE2 | Source = crypt32 | ID = 131080
Description = Det gick inte att automatiskt uppdatera tredjepartsrotlistsekvensnumret
från: <http://www.download....throotseq.txt>.
Fel: Det går inte att utföra den begärda åtgärden på den angivna servern.
Error - 2009-11-12 20:18:08 | Computer Name = NIKKE2 | Source = Application Error | ID = 1000
Description = Felaktigt program jediacademy.exe, version 0.0.0.0, felaktig modul
jediacademy.exe, version 0.0.0.0, felaktig adress 0x00001aae.
Error - 2009-11-12 23:07:16 | Computer Name = NIKKE2 | Source = Application Error | ID = 1000
Description = Felaktigt program jediacademy.exe, version 0.0.0.0, felaktig modul
jediacademy.exe, version 0.0.0.0, felaktig adress 0x00001aae.
Error - 2009-11-13 13:56:47 | Computer Name = NIKKE2 | Source = Application Error | ID = 1000
Description = Felaktigt program jediacademy.exe, version 0.0.0.0, felaktig modul
jediacademy.exe, version 0.0.0.0, felaktig adress 0x00001aae.
Error - 2009-11-13 14:01:48 | Computer Name = NIKKE2 | Source = Windows Search Service | ID = 3013
Description = Det går inte att uppdatera posten <C:\DOCUMENTS AND SETTINGS\ETT\TRACING\WINDOWSLIVEMESSENGER-UCCAPI-0.UCCAPILOG>
i hash-mappningen. Kontext: program , katalog SystemIndex Information: En enhet som
är ansluten till datorn fungerar inte. (0x8007001f)
Error - 2009-11-13 14:01:48 | Computer Name = NIKKE2 | Source = Windows Search Service | ID = 3013
Description = Det går inte att uppdatera posten <C:\DOCUMENTS AND SETTINGS\ETT\TRACING\WINDOWSLIVEMESSENGER-UCCAPI-0.UCCAPILOG>
i hash-mappningen. Kontext: program , katalog SystemIndex Information: En enhet som
är ansluten till datorn fungerar inte. (0x8007001f)
[ System Events ]
Error - 2009-11-13 13:37:02 | Computer Name = NIKKE2 | Source = Disk | ID = 262151
Description = Det finns ett felaktigt block på enhet \Device\Harddisk1\D.
Error - 2009-11-13 13:37:05 | Computer Name = NIKKE2 | Source = Disk | ID = 262151
Description = Det finns ett felaktigt block på enhet \Device\Harddisk1\D.
Error - 2009-11-13 13:37:05 | Computer Name = NIKKE2 | Source = Ntfs | ID = 262199
Description = Filsystemstrukturen på disken är skadad och oanvändbar. Kör verktyget
CHKDSK på volymen J:.
Error - 2009-11-13 13:37:07 | Computer Name = NIKKE2 | Source = Disk | ID = 262151
Description = Det finns ett felaktigt block på enhet \Device\Harddisk1\D.
Error - 2009-11-13 13:37:09 | Computer Name = NIKKE2 | Source = Disk | ID = 262151
Description = Det finns ett felaktigt block på enhet \Device\Harddisk1\D.
Error - 2009-11-13 13:51:42 | Computer Name = NIKKE2 | Source = Service Control Manager | ID = 7034
Description = Tjänsten Nero BackItUp Scheduler 3 avslutades oväntat. Detta har skett
1 gånger.
Error - 2009-11-13 13:51:45 | Computer Name = NIKKE2 | Source = Service Control Manager | ID = 7034
Description = Tjänsten PnkBstrA avslutades oväntat. Detta har skett 1 gånger.
Error - 2009-11-13 13:51:53 | Computer Name = NIKKE2 | Source = Service Control Manager | ID = 7034
Description = Tjänsten PLFlash DeviceIoControl Service avslutades oväntat. Detta
har skett 1 gånger.
Error - 2009-11-13 13:51:57 | Computer Name = NIKKE2 | Source = Service Control Manager | ID = 7034
Description = Tjänsten Application Layer Gateway Service avslutades oväntat. Detta
har skett 1 gånger.
Error - 2009-11-13 13:57:59 | Computer Name = NIKKE2 | Source = Service Control Manager | ID = 7022
Description = Tjänsten Kaspersky Internet Security stannade under start.
< End of report >
Sign In
Create Account
