HJÆÆÆLP!! hotmail sender virus

Prøv først og fremmest at skifte dit password ud.

Hent og installer Malwarebytes' Anti-Malware
http://www.malwarebytes.org/mbam.php

Den fjerne din virus.

!!! Huske at opdatere ved installation når du bliver spurgt !!!

jeg har ændret min adgangskode og sider nu og prøver at downloade malware..jeg har fint fået den ind på knægtens computer men min vil ikke tage imod den (eller det virker sådan)...den downloader men når så ikke længere..på knægtens kunne man finde den bagefter plus den kom frem af sig selv og tilbød at scanne...hvad kan grunden være til dette?

Prøv at følge denne guide:
http://www.eksperten.dk/guide/1232

Omdøb mbam og combofix til noget andet.

jeg har fået den ind-det hjalp at jeg afinstalerede mit virus program..kan jeg ikke kører med begge?

nu har den været kørt færdig på knægtens com - så sletter jeg bare det den har fundet ik? lige nu har vi intet virusprogram på...nogen der kan anbefale et godt gratis et? vi kørte med avast før..

Brug Avast igen..Det er de program der efter min erfaring kræver mindst system resurser.

okay tak  og skal jeg stadig beholde malware og scanne med det engang imellem på begge computere?

Fi kdu det ind på din pc?

Og det skulle selvføgelig være:
Fik du det ind på din pc?

ja...fik det ind efter jeg afinstalerede mit virusprogram så det skal jeg have ind igen...men skal jeg lade malware ligge og scanne med det indimellem?

Jeg vil stadig gerne se logs fra den pc der var problemer med.

hmm jaaa....hvorn gør jeg det? er det fra det der malware?

Hvorfor følger du ikke bare guiden på "problem pc'en" og lægger diverse logs herind.
Guiden ligger her:
http://www.eksperten.dk/guide/1232

åh jeg synes den virker så besværlig men prøver lige..

den har scannet med malware i over en time...er det normalt? jeg kan jo ikke rigtigt komme videre med de andre ting før den er færdig vel? jeg spekulere også lidt på hvornår jeg skal instalere virusprogrammet igen?

den har scannet med malware i over en time...er det normalt? jeg kan jo ikke rigtigt komme videre med de andre ting før den er færdig vel? jeg spekulere også lidt på hvornår jeg skal instalere virusprogrammet igen?

Ja det er ikke unormalt - tid og størrelse på harddisk og indhold hænger sammen…

Ved rensning af PC så er tålmodighed en god ting.

Følg du roligt anvisning lagt af f-arn, han ved godt hvad han laver… *SS*

ejj..hjæææælp....Combofix kan jeg slet ikke få til at virke..den blir ved med at sige jeg har norton og avg liggende i baggrunden men det har jeg ikke når jeg kigger i kontrolpanel..
hvad gør jeg når den er færdig med hijack? sætter lige det ind jeg har..

Malwarebytes' Anti-Malware 1.41
Database version: 2936
Windows 6.0.6002 Service Pack 2

10-10-2009 17:25:19
mbam-log-2009-10-10 (17-25-19).txt

Skan type: Fuldstændig skanning (C:\|D:\|)
Objekter skannet: 235324
Tid tilbagelagt: 1 hour(s), 26 minute(s), 13 second(s)

Inficerede Hukommelses Processer: 0
Inficerede Hukommelses Moduler: 1
Inficerede Registeringsdatabase Nøgler: 9
Inficerede Registeringsdatabase Værdier: 1
Inficerede Registeringsdatabase Filer: 0
Inficerede Mapper: 0
Inficerede Filer: 3

Inficerede Hukommelses Processer:
(Ingen mistænkelige filer fundet)

Inficerede Hukommelses Moduler:
C:\Program Files\Windows Live\Messenger\msimg32.dll (Adware.MyWebSearch) -> Delete on reboot.

Inficerede Registeringsdatabase Nøgler:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00a6faf6-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\ErrorSmart (Rogue.ErrorSmart) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ErrorSmart (Rogue.ErrorSmart) -> Quarantined and deleted successfully.

Inficerede Registeringsdatabase Værdier:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{00a6faf6-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Inficerede Registeringsdatabase Filer:
(Ingen mistænkelige filer fundet)

Inficerede Mapper:
(Ingen mistænkelige filer fundet)

Inficerede Filer:
C:\Program Files\Windows Live\Messenger\msimg32.dll (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Windows\Tasks\ErrorSmart Scheduled Scan.job (Rogue.ErrorSmart) -> Quarantined and deleted successfully.


hijack:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:43:50, on 10-10-2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\LG Software\LG Magnifier\MagnifyingGlass.exe
C:\Program Files\LG Software\LG Magnifier\Maglev.exe
C:\Program Files\LG Software\On Screen Display\HotKey.exe
C:\Program Files\LG Software\BatteryMiser\BatteryMiser5.exe
C:\Program Files\lg_swupdate\GiljabiStart.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\MSN Toolbar\Platform\4.0.0205.2\mswinext.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dk.msn.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\system32\Userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Hjælp til tilmelding til Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: MSN Toolbar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\4.0.0205.2\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: MSN Toolbar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\4.0.0205.2\npwinext.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [LG Magnifier] %ProgramFiles%\LG Software\LG Magnifier\MagnifyingGlass.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [KeybdUtility] C:\Program Files\LG Software\On Screen Display\HotKey.exe
O4 - HKLM\..\Run: [BatteryMiser 5] C:\Program Files\LG Software\BatteryMiser\BatteryMiser5.exe
O4 - HKLM\..\Run: [LG Intelligent Update] "C:\Program Files\lg_swupdate\giljabistart.exe" Gilautouc
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [MSN Toolbar] "C:\Program Files\MSN Toolbar\Platform\4.0.0205.2\mswinext.exe"
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [filehippo.com] "C:\Program Files\filehippo.com\UpdateChecker.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~2.EXE -Update -1100465 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SIMBAR={E9A2D6ED-EDD6-11DC-8820-000DF045E9AF}; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; .NET CLR 3.0.30729; msn OptimizedIE8;DADK)" -"http://www.habbo.dk/shockwave_client"
O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Blog det - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog det i Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: HP Klipsamling - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart markering - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe (file missing)
O13 - Gopher Prefix:
O15 - Trusted Zone: http://www.danskebank.dk
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} - http://cdn.scan.onecare.live.com/resource/download/scanner/da-dk/wlscctrl2.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/VistaMSNPUpldda-dk.cab
O16 - DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} - http://dkbn.dk/imageuploader/ImageUploader5.cab
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - https://asp.photoprintit.de/microsite/1393/defaults/activex/ips/IPSUploader4.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5658/mcfscan.cab
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bonjour-tjeneste (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 11874 bytes

ejjjjjj...hjææææælp...nu kan jeg heller ikke komme på nettet...der står noget i brugervejledningen om nogen linier man skulle kigge efter i hijackthis..men hvorn fjerner jeg dem?

nå er kommet på nettet med den igen..

Lad os lige glemme den guide et øjeblik. prøv om du kan dette:

Hent og gem Combofix på dit skrivebord som alg.exe:

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Start alg.exe og følg anvisningerne.

Højreklik på skrivebordet og vælg ny->tekstdokument og kopier  indholdet mellem  linierne ind og gem filen som CFScript.txt

Du skal sikre dig at den ikke kommer til at hedde CFScript.txt.txt

--------------

Killall::
Snapshot::

-------------

Tag så fat i den nye fil med musen, og før den hen over Combofix-filen, hvorefter du "giver slip" med musen.
http://www.fromsej.saknet.dk/billeder/cfscript.gif


Så skulle Combofix gerne give sig til at arbejde. Muligvis vil den kræve en genstart, hvilket du skal tillade. Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når Combofix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil: combofix.txt som ligger her C:\ Combofix.txt

Indholdet af denne fil må du gerne lægge herind.

jeg forstår det altså ikke..jeg er nok snotdum til det her..jeg kørte compox og rørte intet og alligevel frøs hele min com så jeg måtte genstarte og nu kan jeg ikke finde den logfil selvom den fortalte mig hvad den hed og jeg skrev det ned for at kunne huske det..ihhhhhhh

desuden blir den ved med at sige at det kan påvirke avg og norton kører i baggrunden og at det så er på eget ansvar..hvad betyder det?

Prøv om du kan finde den her:
C:\Combofix.txt

nej..intet at hente..det var også det samme jeg havde skrevet ned igår..jeg har også prøvet at scanne forfra men den fryser selvom jeg ikke rører den mens den scanner så jeg ved ikke liiige hvad jeg gør nu??

Så prøv det her:
Hent DDS :
http://download.bleepingcomputer.com/sUBs/dds.scr

eller her: http://www.forospyware.com/sUBs/dds
Den laver to logs,(DDS.txt og Attach.txt) gem dem på skrivebordet og kopier indholdet af DDS.txt herind.

ok...men hvorn får jeg kopiret loggen? jeg har fået den frem men kan ikke kopiere i den..

er det denne du mener?


As per the instructions you would have received, kindly ensure any onboard
script blocking tools have been disabled for they shall interfere with DDS.

DDS is a non-invasive diagnostic tool.

  - DDS makes no registry writes/changes

  - DDS does not create any permanent files/folders.

This scan should not take longer than three minutes to complete.

When the scan is complete, a logfile/report shall pop open.

Post the contents of the logfile to the forum where it was requested

We only require it to run just once. Dispose after use.

der var lige en til..du får dem begge for en sikkerheds skyld..


DDS (Ver_09-09-29.01) - NTFSx86 
Run by malene at 10:21:54,53 on 11-10-2009
Internet Explorer: 8.0.6001.18813 BrowserJavaVersion: 1.6.0_07
Microsoft® Windows Vista™ Home Premium  6.0.6002.2.1252.45.1030.18.2045.870 [GMT 2:00]

SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: Norton AntiVirus *enabled* (Outdated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A}
FW: Norton AntiVirus *disabled*  {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\LG Software\LG Magnifier\MagnifyingGlass.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\AVG\AVG9\avgfws9.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\LG Software\On Screen Display\HotKey.exe
C:\Program Files\LG Software\BatteryMiser\BatteryMiser5.exe
C:\Program Files\lg_swupdate\GiljabiStart.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\MSN Toolbar\Platform\4.0.0205.2\mswinext.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\LG Software\LG Magnifier\Maglev.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Users\malene\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BVQN002L\dds[1].pif
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

mStart Page = hxxp://home.sweetim.com
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
uURLSearchHooks: H - No File
uURLSearchHooks: H - No File
BHO: HP Print Clips: {053f9267-dc04-4294-a72c-58f732d338c0} - c:\program files\hp\smart web printing\hpswp_framework.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: Hjælp til tilmelding til Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.3.4501.1418\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
BHO: MSN Toolbar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn toolbar\platform\4.0.0205.2\npwinext.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: MSN Toolbar: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\program files\msn toolbar\platform\4.0.0205.2\npwinext.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
TB: {BC4FFE41-DE9F-46FA-B455-AAD49B9F9938} - No File
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
uRun: [StartCCC] c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe
uRun: [MsnMsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [filehippo.com] "c:\program files\filehippo.com\UpdateChecker.exe" /background
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRunOnce: [Shockwave Updater] c:\windows\system32\adobe\shockw~1\SWHELP~2.EXE -Update -1100465 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SIMBAR={E9A2D6ED-EDD6-11DC-8820-000DF045E9AF}; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; .NET CLR 3.0.30729; msn OptimizedIE8;DADK)" -"http://www.habbo.dk/shockwave_client"
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [IAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe"
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [LG Magnifier] %ProgramFiles%\LG Software\LG Magnifier\MagnifyingGlass.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [KeybdUtility] c:\program files\lg software\on screen display\HotKey.exe
mRun: [BatteryMiser 5] c:\program files\lg software\batterymiser\BatteryMiser5.exe
mRun: [LG Intelligent Update] "c:\program files\lg_swupdate\giljabistart.exe" Gilautouc
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe"  -osboot
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\bin\AppleSyncNotifier.exe
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Skytel] Skytel.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [MSN Toolbar] "c:\program files\msn toolbar\platform\4.0.0205.2\mswinext.exe"
mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
dRun: [swg] c:\program files\google\googletoolbarnotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
dRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: &Search
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office12\EXCEL.EXE/3000
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\programs\partygaming\partypoker\RunApp.exe
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\mi1933~1\office12\ONBttnIE.dll
IE: {58ECB495-38F0-49cb-A538-10282ABF65E7} - {E763472E-A716-4CD9-89BD-DBDA6122F741} - c:\program files\hp\smart web printing\hpswp_extensions.dll
IE: {700259D7-1666-479a-93B1-3250410481E8} - {A93C41D8-01F8-4F8B-B14C-DE20B117E636} - c:\program files\hp\smart web printing\hpswp_extensions.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office12\REFIEBAR.DLL
Trusted Zone: danid.dk
Trusted Zone: danskebank.dk\www
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\yinsthelper.dll
DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/da-dk/wlscctrl2.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx1.hotmail.com/mail/w3/resources/VistaMSNPUpldda-dk.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} - hxxp://dkbn.dk/imageuploader/ImageUploader5.cab
DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} - hxxps://asp.photoprintit.de/microsite/1393/defaults/activex/ips/IPSUploader4.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} - hxxp://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5658/mcfscan.cab
AppInit_DLLs: c:\windows\system32\avgrsstx.dll
SEH: BatteryMiser PSAP Class: {26f5978f-6493-4ee3-b114-c0c3accf9d4d} - c:\windows\system32\bmpsap.dll

============= SERVICES / DRIVERS ===============

R0 AVGIDSErHrvtx;AVG9IDSErHr;c:\windows\system32\drivers\AVGIDSvx.sys [2009-10-10 25608]
R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2009-10-10 161672]
R1 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwd6x.sys [2009-10-10 23832]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-10-10 333192]
R1 AvgTdiX;AVG Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-10-10 356616]
R2 avg9emc;AVG E-mail Scanner;c:\program files\avg\avg9\avgemc.exe [2009-10-10 906520]
R2 avg9wd;AVG WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2009-10-10 285392]
R2 avgfws9;AVG Firewall;c:\program files\avg\avg9\avgfws9.exe [2009-10-10 2307800]
R2 AVGIDSAgent;AVG9IDSAgent;c:\program files\avg\avg9\identity protection\agent\bin\AVGIDSAgent.exe [2009-10-10 5830152]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor;c:\program files\intel\intel matrix storage manager\IAANTmon.exe [2007-3-27 355096]
R2 SeaPort;SeaPort;c:\program files\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-8-7 242048]
R2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\common files\microsoft shared\windows live\WLIDSVC.EXE [2009-3-30 1533808]
R3 AVGIDSDrivervtx;AVG9IDSDriver;c:\program files\avg\avg9\identity protection\agent\driver\platform_vista\AVGIDSDriver.sys [2009-10-10 122376]
R3 AVGIDSFiltervtx;AVG9IDSFilter;c:\program files\avg\avg9\identity protection\agent\driver\platform_vista\AVGIDSFilter.sys [2009-10-10 30216]
R3 AVGIDSShimvtx;AVG9IDSShim;c:\program files\avg\avg9\identity protection\agent\driver\platform_vista\AVGIDSShim.sys [2009-10-10 27800]
S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2009-10-8 54632]
S3 fsssvc;Windows Live-tjenesten Family Safety;c:\program files\windows live\family safety\fsssvc.exe [2009-8-5 704864]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2008-5-8 13352]

=============== Created Last 30 ================

2009-10-10 20:18    <DIR>    --ds----    C:\ComboFix
2009-10-10 20:18    318,976    a-------    c:\windows\system32\CF2327.exe
2009-10-10 20:10    318,976    a-------    c:\windows\system32\CF4459.exe
2009-10-10 19:52    318,976    a-------    c:\windows\system32\CF9938.exe
2009-10-10 19:47    <DIR>    --dsh---    C:\$RECYCLE.BIN
2009-10-10 19:21    229,888    a-------    c:\windows\PEV.exe
2009-10-10 19:21    161,792    a-------    c:\windows\SWREG.exe
2009-10-10 19:21    98,816    a-------    c:\windows\sed.exe
2009-10-10 19:20    318,976    a-------    c:\windows\system32\CF29154.exe
2009-10-10 17:57    <DIR>    --d-----    C:\$AVG
2009-10-10 17:57    25,608    a-------    c:\windows\system32\drivers\AVGIDSvx.sys
2009-10-10 17:57    12,464    a-------    c:\windows\system32\avgrsstx.dll
2009-10-10 17:57    161,672    a-------    c:\windows\system32\drivers\avgrkx86.sys
2009-10-10 17:57    356,616    a-------    c:\windows\system32\drivers\avgtdix.sys
2009-10-10 17:57    333,192    a-------    c:\windows\system32\drivers\avgldx86.sys
2009-10-10 17:57    <DIR>    --d-----    c:\windows\system32\drivers\Avg
2009-10-10 17:57    <DIR>    --d-----    c:\programdata\AVG Security Toolbar
2009-10-10 17:57    <DIR>    --d-----    c:\progra~2\AVG Security Toolbar
2009-10-10 17:55    23,832    a-------    c:\windows\system32\drivers\avgfwd6x.sys
2009-10-10 17:55    <DIR>    --d-----    c:\programdata\avg9
2009-10-10 17:55    <DIR>    --d-----    c:\progra~2\avg9
2009-10-10 17:07    <DIR>    --d-----    c:\program files\Trend Micro
2009-10-10 15:56    38,224    a-------    c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-10 15:56    19,160    a-------    c:\windows\system32\drivers\mbam.sys
2009-10-10 15:56    <DIR>    --d-----    c:\program files\Malwarebytes' Anti-Malware
2009-10-10 14:42    <DIR>    --d-----    c:\program files\AVG
2009-10-08 12:20    54,632    a-------    c:\windows\system32\drivers\fssfltr.sys
2009-10-06 08:51    2,421,760    a-------    c:\windows\system32\wucltux.dll
2009-10-06 08:50    87,552    a-------    c:\windows\system32\wudriver.dll
2009-10-06 08:50    171,608    a-------    c:\windows\system32\wuwebv.dll
2009-10-06 08:50    33,792    a-------    c:\windows\system32\wuapp.exe
2009-10-03 09:33    195,440    --------    c:\windows\system32\MpSigStub.exe
2009-10-02 15:22    <DIR>    --d-----    c:\program files\iPod
2009-10-02 15:22    <DIR>    --d-----    c:\program files\iTunes
2009-09-29 10:44    <DIR>    --d-----    c:\program files\MSN Toolbar
2009-09-29 10:43    <DIR>    --d-----    c:\program files\MSN Toolbar Installer
2009-09-17 12:16    <DIR>    --d-----    c:\programdata\Office Genuine Advantage
2009-09-11 14:24    <DIR>    --d-----    c:\program files\iPhone Configuration Utility
2009-09-11 14:23    107,368    a-------    c:\windows\system32\GEARAspi.dll
2009-09-11 14:23    26,600    a-------    c:\windows\system32\drivers\GEARAspiWDM.sys
2009-09-11 14:22    <DIR>    --d-----    c:\programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-09-11 14:22    <DIR>    --d-----    c:\progra~2\{755AC846-7372-4AC8-8550-C52491DAA8BD}

==================== Find3M  ====================

2009-10-10 17:56    143,360    a-------    c:\windows\inf\infstrng.dat
2009-10-10 17:56    86,016    a-------    c:\windows\inf\infpub.dat
2009-10-10 17:56    143,360    a-------    c:\windows\inf\infstor.dat
2009-10-01 19:55    463,344    a-------    c:\windows\system32\perfh006.dat
2009-10-01 19:55    77,202    a-------    c:\windows\system32\perfc006.dat
2009-08-29 04:30    173,056    a-------    c:\windows\apppatch\AcXtrnal.dll
2009-08-29 04:30    458,752    a-------    c:\windows\apppatch\AcSpecfc.dll
2009-08-29 04:30    2,159,616    a-------    c:\windows\apppatch\AcGenral.dll
2009-08-29 04:30    542,720    a-------    c:\windows\apppatch\AcLayers.dll
2009-08-29 02:27    4,240,384    a-------    c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-29 02:14    28,672    a-------    c:\windows\system32\Apphlpdm.dll
2009-08-26 19:05    0    a-------    c:\users\malene\temp.dat
2009-08-19 15:17    665,600    a-------    c:\windows\inf\drvindex.dat
2009-08-14 18:27    904,776    a-------    c:\windows\system32\drivers\tcpip.sys
2009-08-14 17:53    17,920    a-------    c:\windows\system32\netevent.dll
2009-08-14 15:49    9,728    a-------    c:\windows\system32\TCPSVCS.EXE
2009-08-14 15:49    17,920    a-------    c:\windows\system32\ROUTE.EXE
2009-08-14 15:49    11,264    a-------    c:\windows\system32\MRINFO.EXE
2009-08-14 15:49    27,136    a-------    c:\windows\system32\NETSTAT.EXE
2009-08-14 15:49    19,968    a-------    c:\windows\system32\ARP.EXE
2009-08-14 15:49    8,704    a-------    c:\windows\system32\HOSTNAME.EXE
2009-08-14 15:49    10,240    a-------    c:\windows\system32\finger.exe
2009-08-14 15:48    30,720    a-------    c:\windows\system32\drivers\tcpipreg.sys
2009-08-14 15:48    105,984    a-------    c:\windows\system32\netiohlp.dll
2009-08-03 15:07    403,816    a-------    c:\windows\system32\OGACheckControl.dll
2009-08-03 15:07    322,928    a-------    c:\windows\system32\OGAAddin.dll
2009-08-03 15:07    230,768    a-------    c:\windows\system32\OGAEXEC.exe
2009-07-26 16:44    48,448    a-------    c:\windows\system32\sirenacm.dll
2009-07-25 05:23    411,368    a-------    c:\windows\system32\deploytk.dll
2009-07-21 23:52    915,456    a-------    c:\windows\system32\wininet.dll
2009-07-21 23:47    109,056    a-------    c:\windows\system32\iesysprep.dll
2009-07-21 23:47    71,680    a-------    c:\windows\system32\iesetup.dll
2009-07-21 22:13    133,632    a-------    c:\windows\system32\ieUnatt.exe
2009-07-17 15:54    71,680    a-------    c:\windows\system32\atl.dll
2009-07-15 14:40    8,147,456    a-------    c:\windows\system32\wmploc.DLL
2009-07-15 14:39    313,344    a-------    c:\windows\system32\wmpdxm.dll
2009-07-15 14:39    4,096    a-------    c:\windows\system32\dxmasf.dll
2009-07-15 14:39    7,680    a-------    c:\windows\system32\spwmp.dll
2008-05-13 15:34    56    a---h---    c:\programdata\ezsidmv.dat
2008-05-13 15:34    56    a---h---    c:\progra~2\ezsidmv.dat
2008-04-21 10:40    174    a--sh---    c:\program files\desktop.ini
2007-03-26 14:52    300,302    a-------    c:\windows\inf\perflib\0406\perfi.dat
2007-03-26 14:52    300,302    a-------    c:\windows\inf\perflib\0406\perfh.dat
2007-03-26 14:52    36,364    a-------    c:\windows\inf\perflib\0406\perfd.dat
2007-03-26 14:52    36,364    a-------    c:\windows\inf\perflib\0406\perfc.dat
2006-11-02 11:20    287,440    a-------    c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 11:20    287,440    a-------    c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 11:20    30,674    a-------    c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 11:20    30,674    a-------    c:\windows\inf\perflib\0000\perfc.dat
2009-07-02 23:35    16,384    a--sh---    c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
2009-07-02 23:35    32,768    a--sh---    c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
2009-07-02 23:35    16,384    a--sh---    c:\windows\serviceprofiles\localservice\appdata\roaming\microsoft\windows\cookies\index.dat
2009-06-12 04:52    16,384    a--sh---    c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
2009-06-12 04:52    32,768    a--sh---    c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
2009-06-12 04:52    16,384    a--sh---    c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\cookies\index.dat
2009-06-12 04:52    245,760    a--sh---    c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat

============= FINISH: 10:24:14,49 ===============

Er Norton udløbet? Du bør ikke køre med både AVG og Norton. Fjern en af dem!

hvad gør jeg nu?

HAR du gennemført #1 ???

Jeg kan ikke lide at combofix ikke vil køre, derfor:
Hent denne scanner.
CureIt ->
http://www.freedrweb.com/cureit/

Klik på CureIt Download - knappen.
Dobbeltklik på drweb-cureit.exe, klik på Start - i den boks der popper op, den vil køre en expressscan, det siger du OK til.

Første gang Dr.Web finder noget, klik "Yes to All", så fjerner den hvad den finder.

Når den skriver Done nederst til venstre, skal du klikke på Options->Change settings.

Tryk på fanebladet Scan, fjern fluebenet ved Heuristic analysis.

Skift til fanebladet Actions, her skal alle punkter under Malware sættes til Rename.

Tryk på - Anvend. Luk Actions - fanebladet ved at trykke på det firkantede kryds i øverste højre hjørne.


Tryk på Scan - fanen. Flyt så prikken i Express Scan ned til Complete Scan,tyk så på den grønne pil til pil til højre så starter scanningen.
Første gang Dr.Web finder noget, klik "Yes to All", så fjerner den hvad den finder.
Når scanningen er færdig, gå op i file - Tryk på- Save Report list. Gem filen på skrivebordet.

Så ligger der en en fil der her hedder "drweb.csv" på skrivebordet.

Luk Programmet.
Dobbeltklik på drweb.csv og kopier indholdet herind.
(Hvis den spørger hvilket program der skal bruges, så vælg notesblok)

NB. Under scanningen popper der en boks op med - Buy -den boks lukker du bare ned

øhh...det står altså med nogen tegn der på ingen måde er europæiske...er der ikke en anden side for kan jo ikke læse det..

Sæt den til engelsk som vist her > http://peecee.dk/upload/view/196631

nu har jeg fået den på engelsk men selvom jeg henter filen dukker der intet op?

har fundet ud af det..den scanner nu :)

er det et virusprogram? nu det ikke sådan at min computer går ned vel..har nemlig prøvet for nogen år siden at komme til at ligge 2 virusprogrammer ind og der gik computeren helt kold og fik at vide at det må man aldrig da de "slås" mod hinanden..ved ikke om det rigtigt :O/

Det er en scanner - og under en rensning har man indimellem ret mange forskellige af den slags liggende på blikæsken.

Men vær rolig, de bliver fjernet til sidst… *S*

okay...lige et hurtigt spørgsmål..jeg sidder og gennemfører samme procedurer på knægtens com da den også har været udsat men hver gang jeg sætter den til "complete" scan går den ud og gensterter og laver kotrol disk....hvad er det for noget? den scanner stadig fint på min..

Jeg skal ikke blande mig i denne tråd - det er f-arn der køre den, og det gør han helt fortrinligt.

MEN det er altid en god idé og ta' en maskine af gangen, det er slet ikke sikkert de skal ha' samme kur - og under alle omstændigheder så er det langt mindre forvirrende for både supporter og bruger på den måde…

nej nej jeg har slet ikke lagt noget ind for den anden maskine...alt der er kørt i denne tråd er udelukkende fra min computer :) forstår godt hvad du mener..men min scanner stadig og har indtil ikke fanget noget..det må da være positivt :O))))))

min computer var gået død for strøm mens jeg ikke var hjemme så det tager lidt tid med den scanning..når nu jeg har lagt den log herind hvordan fjerner jeg så de viruser den har fundet? den har nemlig fundet 9 indtil videre..

så lykkedes det..

i ' m so excited pointer 192kb.mp3;C:\Users\malene\AppData\Local\Microsoft\Messenger\malene_louise@hotmail.com\Sharing Folders\bine-aaberg@hotmail.com\musik;Trojan.WMALoader;Cured.;
i ' m so excited pointer 192kb.mp3;C:\Users\malene\AppData\Local\Microsoft\Messenger\malene_louise@hotmail.com\Sharing Folders\kean_ottesen@hotmail.com\musik;Trojan.WMALoader;Cured.;
shall we be greathful carpark sexy girl has shaking orgasm during sex.mp3;C:\Users\malene\AppData\Local\Microsoft\Messenger\malene_louise@hotmail.com\Sharing Folders\kean_ottesen@hotmail.com\musik;Trojan.WMALoader;Cured.;
i ' m so excited pointer 192kb.mp3;C:\Users\malene\AppData\Local\Microsoft\Messenger\malene_louise@hotmail.com\Sharing Folders\nette-muse@hotmail.com\Musik;Trojan.WMALoader;Cured.;
i ' m so excited pointer 192kb.mp3;C:\Users\malene\AppData\Local\Microsoft\Messenger\malene_louise@hotmail.com\Sharing Folders\tfolsen666@hotmail.com\musik;Trojan.WMALoader;Cured.;
T-3545425-alvin og egern drengene.mp3;C:\Users\malene\Documents\LimeWire\Incomplete;Trojan.WMALoader;Cured.;
Kenneth_Bager_I_Can_T_Wait_.wma;C:\Users\malene\Documents\LimeWire\Saved;Trojan.WMALoader;Cured.;
pretty please estelle .mp3;C:\Users\malene\Documents\LimeWire\Saved;Trojan.WMALoader;Cured.;
shall we be greathful carpark sexy girl has shaking orgasm during sex.mp3;C:\Users\malene\Documents\LimeWire\Saved;Trojan.WMALoader;Cured.;

hvad gør jeg så nu? er alt det den havde fundet væk?

prøv lige combofix uden CFScript.txt

det der combofix virker bare slet ikke i min verden..den blir ved med at sige mit avg og norton kører i baggrunden og det ikke er godt plas at hele skrivebordet forsvinder når den er ca midt i scanningen så jeg når ikke videre med det..

Du kan fjerne norton med den her;
http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2005033108162039
Åbn AVG Control Center, dobbeltklik på - AVG Resident Shield - Fjern flueben ved - Turn on AVG Resident Shield, og gem ændringerne.

hmm...ja men nu har jeg i mellemtiden skiftet til avast igen da jeg synes avg også sløvede...men på den side hvor du linker til skal man vide hvilket norton produkt man har og det ved jeg jo ikke for det ligger ikke i "fjern programmer"..det åbenbart noget der har fulgt med computeren og så har jeg aldrig fået afinstaleret det korrekt...kan man se andre steder hvad det er der ligger og ulmer? og skal jeg også slå noget fra i avast for at kunne kører combofix? sikke dog besværlig jeg er :O/

Det kan være svært at fjerne Norton her er en vejledning.

Mht fjernelse af Symantec/Norton:

Afinstaller
* Norton ...
via
[Start][Indstilninger][Kontrolpanel][Tilføj/fjern programmer]

Genstart for at fuldføre afinstalationen...

For dig med Vista/XP/2000
ftp://ftp.symantec.com/public/english_us_canada/removal_tools/Norton_Removal_Tool.exe
(Hent programmet og gem det et sted du kan finde bagefter...)

ftp://ftp.symantec.com/public/english_us_canada/linked_files/tsgen/SYMMSICLEANUP.reg
(Hent programmet og gem det et sted du kan finde bagefter...)

ftp://ftp.symantec.com/public/english_us_canada/linked_files/tsgen/MSIFIX.bat
(Hent programmet og gem det et sted du kan finde bagefter...)

1) Kør Norton_Removal_Tool.exe
2) SYMMSICLEANUP.reg
3) MSIFIX.bat


Registreringsdatabase ->
http://www.ccleaner.com/ + http://www.spywarefri.dk/manualer/ccleaner-manual.htm (Specielt punktet [Register/Problemer]... kør evt. et par gange)
Under installationen får du tilbudt [Yahoo Toolbar]. Du kan (=SKAL) NEJ til den.

Genstart normalt...

Manuelt slet følgende mapper (hvis de stadig er der?)
C:\Programmer\Symantec\
C:\Programmer\Norton AntiVirus\
C:\Programmer\Fælles filer\Symantec Shared\
C:\Documents and Settings\All Users\Application Data\Symantec\
C:\Documents and Settings\[Bruger]\Application Data\Symantec\

Genstart normalt...

... ellers vil 'rester' drille resten af tiden...

så tror jeg sku det lykkedes ¨med det combofix...MEN...ja der altid et "men" når det mig ;)...nu ligger der "rester" fra avg og ulmer....vil meget gerne vide hvorn jeg får det væk ligesom du viste jeg ku fjerne rester fra norton??...det viser sig også som norton gjorde..altså det ligger ikke når jeg går i kontrolpanel og siger fjern programmer..men her er loggen i hvertfald fra combofix..

ComboFix 09-10-13.03 - malene 14-10-2009 16:01.4.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium  6.0.6002.2.1252.45.1030.18.2045.1211 [GMT 2:00]
Kører fra: c:\users\malene\Desktop\ComboFix.exe
SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((  Filer skabt fra 2009-09-14 til 2009-10-14  )))))))))))))))))))))))))))))))))))
.

2009-10-14 14:15 . 2009-10-14 14:15    --------    d-----w-    c:\users\Default\AppData\Local\temp
2009-10-14 13:40 . 2009-10-14 13:40    --------    d-----w-    c:\program files\CCleaner
2009-10-14 10:55 . 2009-09-15 10:54    52368    ----a-w-    c:\windows\system32\drivers\aswTdi.sys
2009-10-14 10:55 . 2009-09-15 10:54    23152    ----a-w-    c:\windows\system32\drivers\aswRdr.sys
2009-10-14 10:55 . 2009-09-15 10:53    97480    ----a-w-    c:\windows\system32\AvastSS.scr
2009-10-14 10:55 . 2009-09-15 10:55    114768    ----a-w-    c:\windows\system32\drivers\aswSP.sys
2009-10-14 10:55 . 2009-09-15 10:55    20560    ----a-w-    c:\windows\system32\drivers\aswFsBlk.sys
2009-10-14 10:55 . 2009-09-15 10:59    1279968    ----a-w-    c:\windows\system32\aswBoot.exe
2009-10-14 10:55 . 2009-09-15 10:55    53328    ----a-w-    c:\windows\system32\drivers\aswMonFlt.sys
2009-10-14 10:10 . 2009-08-04 12:34    3600456    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2009-10-14 10:10 . 2009-08-04 12:34    3548216    ----a-w-    c:\windows\system32\ntoskrnl.exe
2009-10-14 04:38 . 2009-09-10 16:48    218624    ----a-w-    c:\windows\system32\msv1_0.dll
2009-10-12 10:28 . 2009-10-12 10:28    --------    d-----w-    c:\users\malene\DoctorWeb
2009-10-11 08:37 . 2009-10-11 08:37    --------    d-----w-    c:\program files\MSECache
2009-10-10 15:57 . 2009-10-10 17:02    --------    d-----w-    C:\$AVG
2009-10-10 15:55 . 2009-10-14 10:48    --------    d-----w-    c:\programdata\avg9
2009-10-10 15:07 . 2009-10-10 15:07    --------    d-----w-    c:\program files\Trend Micro
2009-10-10 13:56 . 2009-09-10 12:54    38224    ----a-w-    c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-10 13:56 . 2009-10-10 13:56    --------    d-----w-    c:\program files\Malwarebytes' Anti-Malware
2009-10-10 13:56 . 2009-09-10 12:53    19160    ----a-w-    c:\windows\system32\drivers\mbam.sys
2009-10-10 12:42 . 2009-10-10 15:55    --------    d-----w-    c:\program files\AVG
2009-10-08 10:20 . 2009-08-05 20:48    54632    ----a-w-    c:\windows\system32\drivers\fssfltr.sys
2009-10-06 06:51 . 2009-08-07 02:24    44768    ----a-w-    c:\windows\system32\wups2.dll
2009-10-06 06:51 . 2009-08-07 02:24    53472    ----a-w-    c:\windows\system32\wuauclt.exe
2009-10-06 06:51 . 2009-08-07 01:45    2421760    ----a-w-    c:\windows\system32\wucltux.dll
2009-10-06 06:51 . 2009-08-07 02:23    1929952    ----a-w-    c:\windows\system32\wuaueng.dll
2009-10-06 06:50 . 2009-08-07 02:24    35552    ----a-w-    c:\windows\system32\wups.dll
2009-10-06 06:50 . 2009-08-07 02:23    575704    ----a-w-    c:\windows\system32\wuapi.dll
2009-10-06 06:50 . 2009-08-07 01:44    87552    ----a-w-    c:\windows\system32\wudriver.dll
2009-10-06 06:50 . 2009-08-06 17:23    171608    ----a-w-    c:\windows\system32\wuwebv.dll
2009-10-06 06:50 . 2009-08-06 16:44    33792    ----a-w-    c:\windows\system32\wuapp.exe
2009-10-03 07:33 . 2009-10-01 08:29    195440    ------w-    c:\windows\system32\MpSigStub.exe
2009-10-02 13:22 . 2009-10-02 13:22    --------    d-----w-    c:\program files\iPod
2009-10-02 13:22 . 2009-10-02 13:24    --------    d-----w-    c:\program files\iTunes
2009-09-29 08:44 . 2009-09-29 08:44    --------    d-----w-    c:\program files\MSN Toolbar
2009-09-29 08:43 . 2009-09-29 08:44    --------    d-----w-    c:\program files\MSN Toolbar Installer
2009-09-17 10:16 . 2009-09-17 10:16    --------    d-----w-    c:\programdata\Office Genuine Advantage

.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-14 10:33 . 2006-11-02 11:18    --------    d-----w-    c:\program files\Windows Mail
2009-10-14 10:20 . 2008-10-06 06:31    --------    d-----w-    c:\programdata\Microsoft Help
2009-10-10 12:48 . 2008-06-15 17:23    --------    d-----w-    c:\users\malene\AppData\Roaming\SUPERAntiSpyware.com
2009-10-10 12:48 . 2008-06-15 17:23    --------    d-----w-    c:\program files\SUPERAntiSpyware
2009-10-08 10:20 . 2008-01-09 13:08    --------    d-----w-    c:\program files\Windows Live
2009-10-06 13:30 . 2008-01-12 18:59    --------    d-----w-    c:\users\malene\AppData\Roaming\LimeWire
2009-10-02 13:22 . 2008-05-11 22:45    --------    d-----w-    c:\program files\Common Files\Apple
2009-10-01 17:55 . 2007-03-26 12:54    77202    ----a-w-    c:\windows\system32\perfc006.dat
2009-10-01 17:55 . 2007-03-26 12:54    463344    ----a-w-    c:\windows\system32\perfh006.dat
2009-09-17 10:01 . 2009-06-02 11:03    --------    d-----w-    c:\program files\Microsoft
2009-09-15 08:58 . 2008-05-11 22:51    --------    d-----w-    c:\users\malene\AppData\Roaming\Apple Computer
2009-09-14 09:29 . 2009-10-14 04:36    144896    ----a-w-    c:\windows\system32\drivers\srv2.sys
2009-09-13 10:47 . 2009-06-19 03:34    --------    d-----w-    c:\program files\Microsoft Silverlight
2009-09-11 12:24 . 2009-09-11 12:24    --------    d-----w-    c:\program files\iPhone Configuration Utility
2009-09-11 12:23 . 2009-09-11 12:22    --------    d-----w-    c:\programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-09-11 12:19 . 2009-09-11 12:19    --------    d-----w-    c:\program files\QuickTime
2009-09-04 11:41 . 2009-10-14 04:36    60928    ----a-w-    c:\windows\system32\msasn1.dll
2009-08-31 13:34 . 2006-11-02 12:37    --------    d-----w-    c:\program files\MSBuild
2009-08-31 12:05 . 2009-08-31 12:05    --------    d-----w-    c:\program files\Microsoft Visual Studio 8
2009-08-29 00:27 . 2009-09-03 03:09    4240384    ----a-w-    c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-29 00:14 . 2009-09-03 03:09    28672    ----a-w-    c:\windows\system32\Apphlpdm.dll
2009-08-27 05:22 . 2009-10-14 04:36    916480    ----a-w-    c:\windows\system32\wininet.dll
2009-08-27 05:17 . 2009-10-14 04:36    109056    ----a-w-    c:\windows\system32\iesysprep.dll
2009-08-27 05:17 . 2009-10-14 04:36    71680    ----a-w-    c:\windows\system32\iesetup.dll
2009-08-27 03:42 . 2009-10-14 04:36    133632    ----a-w-    c:\windows\system32\ieUnatt.exe
2009-08-26 17:05 . 2009-06-19 03:41    0    ----a-w-    c:\users\malene\temp.dat
2009-08-21 08:51 . 2008-01-07 11:31    63456    ----a-w-    c:\users\malene\AppData\Local\GDIPFONTCACHEV1.DAT
2009-08-21 06:32 . 2008-01-10 13:48    --------    d-----w-    c:\program files\Java
2009-08-21 06:23 . 2009-08-21 06:23    --------    d-----w-    c:\users\malene\AppData\Roaming\OpenOffice.org
2009-08-21 06:20 . 2009-08-21 06:20    --------    d-----w-    c:\program files\OpenOffice.org 3
2009-08-21 06:19 . 2008-07-25 19:46    --------    d-----w-    c:\program files\Sun
2009-08-19 13:18 . 2006-11-02 12:37    --------    d-----w-    c:\program files\Windows Sidebar
2009-08-19 13:18 . 2006-11-02 12:37    --------    d-----w-    c:\program files\Windows Calendar
2009-08-19 13:18 . 2006-11-02 12:37    --------    d-----w-    c:\program files\Windows Photo Gallery
2009-08-19 13:18 . 2006-11-02 12:37    --------    d-----w-    c:\program files\Windows Journal
2009-08-19 13:18 . 2006-11-02 12:37    --------    d-----w-    c:\program files\Windows Collaboration
2009-08-19 13:18 . 2006-11-02 12:37    --------    d-----w-    c:\program files\Windows Defender
2009-08-17 21:33 . 2009-08-17 21:33    1193832    ----a-w-    c:\windows\system32\FM20.DLL
2009-08-14 16:27 . 2009-09-10 05:28    904776    ----a-w-    c:\windows\system32\drivers\tcpip.sys
2009-08-14 15:53 . 2009-09-10 05:28    17920    ----a-w-    c:\windows\system32\netevent.dll
2009-08-14 13:49 . 2009-09-10 05:28    9728    ----a-w-    c:\windows\system32\TCPSVCS.EXE
2009-08-14 13:49 . 2009-09-10 05:28    17920    ----a-w-    c:\windows\system32\ROUTE.EXE
2009-08-14 13:49 . 2009-09-10 05:28    11264    ----a-w-    c:\windows\system32\MRINFO.EXE
2009-08-14 13:49 . 2009-09-10 05:28    27136    ----a-w-    c:\windows\system32\NETSTAT.EXE
2009-08-14 13:49 . 2009-09-10 05:28    8704    ----a-w-    c:\windows\system32\HOSTNAME.EXE
2009-08-14 13:49 . 2009-09-10 05:28    19968    ----a-w-    c:\windows\system32\ARP.EXE
2009-08-14 13:49 . 2009-09-10 05:28    10240    ----a-w-    c:\windows\system32\finger.exe
2009-08-14 13:48 . 2009-09-10 05:28    30720    ----a-w-    c:\windows\system32\drivers\tcpipreg.sys
2009-08-14 13:48 . 2009-09-10 05:28    105984    ----a-w-    c:\windows\system32\netiohlp.dll
2009-08-03 13:07 . 2009-08-03 13:07    403816    ----a-w-    c:\windows\system32\OGACheckControl.dll
2009-08-03 13:07 . 2009-08-03 13:07    322928    ----a-w-    c:\windows\system32\OGAAddin.dll
2009-08-03 13:07 . 2009-08-03 13:07    230768    ----a-w-    c:\windows\system32\OGAEXEC.exe
2009-07-26 14:44 . 2009-07-26 14:44    48448    ----a-w-    c:\windows\system32\sirenacm.dll
2009-07-25 03:23 . 2008-11-24 15:47    411368    ----a-w-    c:\windows\system32\deploytk.dll
2009-07-17 13:54 . 2009-08-13 09:49    71680    ----a-w-    c:\windows\system32\atl.dll
.

(((((((((((((((((((((((((((((  SnapShot@2009-10-10_17.42.15  )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-10-14 04:36 . 2009-09-14 09:48    98816              c:\windows\winsxs\x86_microsoft-windows-smbserver-common_31bf3856ad364e35_6.0.6001.22522_none_044c3353295315ad\srvnet.sys
+ 2009-10-14 04:36 . 2009-09-04 14:19    60928              c:\windows\winsxs\x86_microsoft-windows-msasn1_31bf3856ad364e35_6.0.6002.22218_none_c9c75e79bba6335e\msasn1.dll
+ 2009-10-14 04:36 . 2009-09-04 11:41    60928              c:\windows\winsxs\x86_microsoft-windows-msasn1_31bf3856ad364e35_6.0.6002.18106_none_c9469106a28244f5\msasn1.dll
+ 2009-10-14 04:36 . 2009-09-04 14:23    61440              c:\windows\winsxs\x86_microsoft-windows-msasn1_31bf3856ad364e35_6.0.6001.22515_none_c7ddebb3be829235\msasn1.dll
+ 2009-10-14 04:36 . 2009-09-04 12:24    61440              c:\windows\winsxs\x86_microsoft-windows-msasn1_31bf3856ad364e35_6.0.6001.18326_none_c74a7d60a56c2a8c\msasn1.dll
+ 2009-10-14 04:36 . 2009-09-04 12:32    60928              c:\windows\winsxs\x86_microsoft-windows-msasn1_31bf3856ad364e35_6.0.6000.21122_none_c5e9b27fc167074b\msasn1.dll
+ 2009-10-14 04:36 . 2009-09-04 12:38    60928              c:\windows\winsxs\x86_microsoft-windows-msasn1_31bf3856ad364e35_6.0.6000.16922_none_c5603d92a849343f\msasn1.dll
+ 2009-10-14 04:38 . 2009-09-10 17:09    72704              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\secur32.dll
+ 2009-10-14 04:38 . 2009-09-09 13:17    72704              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\secur32.dll
+ 2009-10-14 04:38 . 2009-09-10 17:31    72704              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\secur32.dll
+ 2009-10-14 04:36 . 2009-08-27 13:21    71680              c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22918_none_a940a7ff8d650ab7\iesetup.dll
+ 2009-10-14 04:36 . 2009-08-27 13:21    55808              c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22918_none_a940a7ff8d650ab7\iernonce.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    71680              c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18828_none_a8ac3b48744f86de\iesetup.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    55808              c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18828_none_a8ac3b48744f86de\iernonce.dll
+ 2009-10-14 04:36 . 2009-08-27 11:43    13312              c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.22918_none_dfbde1e509adc50e\msfeedssync.exe
+ 2009-10-14 04:36 . 2009-08-27 13:22    55296              c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.22918_none_dfbde1e509adc50e\msfeedsbs.dll
+ 2009-10-14 04:36 . 2009-08-27 03:41    13312              c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.18828_none_df29752df0984135\msfeedssync.exe
+ 2009-10-14 04:36 . 2009-08-27 05:18    55296              c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.18828_none_df29752df0984135\msfeedsbs.dll
+ 2009-10-14 04:36 . 2009-08-27 13:29    64512              c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22918_none_e558e658d0bed32f\WininetPlugin.dll
+ 2009-10-14 04:36 . 2009-08-27 13:21    25600              c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22918_none_e558e658d0bed32f\jsproxy.dll
+ 2009-10-14 04:36 . 2009-08-27 05:22    64512              c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18828_none_e4c479a1b7a94f56\WininetPlugin.dll
+ 2009-10-14 04:36 . 2009-08-27 05:18    25600              c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18828_none_e4c479a1b7a94f56\jsproxy.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    18944              c:\windows\winsxs\x86_microsoft-windows-ehome-ehtrace_31bf3856ad364e35_6.0.6000.21119_none_375e37c82fd728c1\ehtrace.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    18944              c:\windows\winsxs\x86_microsoft-windows-ehome-ehtrace_31bf3856ad364e35_6.0.6000.16919_none_36d4c2db16b955b5\ehtrace.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    21504              c:\windows\winsxs\x86_microsoft-windows-ehome-ehdebug_31bf3856ad364e35_6.0.6000.21119_none_2e7f25c89e39432b\ehdebug.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    21504              c:\windows\winsxs\x86_microsoft-windows-ehome-ehdebug_31bf3856ad364e35_6.0.6000.16919_none_2df5b0db851b701f\ehdebug.dll
+ 2009-10-14 04:37 . 2009-08-31 15:15    77824              c:\windows\winsxs\msil_ehiextens_31bf3856ad364e35_6.0.6000.21119_none_fc6d2af022d468ed\ehiExtens.dll
+ 2009-10-14 04:37 . 2009-08-31 16:15    77824              c:\windows\winsxs\msil_ehiextens_31bf3856ad364e35_6.0.6000.16919_none_fbe3b60309b695e1\ehiExtens.dll
+ 2007-03-27 06:38 . 2009-10-14 13:54    80988              c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 13:05 . 2009-10-14 13:54    84952              c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2008-01-07 11:32 . 2009-10-14 13:54    14370              c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3887709151-4202550186-588137250-1000_UserData.bin
- 2009-07-29 14:37 . 2009-07-21 20:13    13312              c:\windows\System32\msfeedssync.exe
+ 2009-10-14 04:36 . 2009-08-27 03:41    13312              c:\windows\System32\msfeedssync.exe
+ 2009-10-14 04:36 . 2009-08-27 05:18    55296              c:\windows\System32\msfeedsbs.dll
- 2009-07-29 14:37 . 2009-07-21 21:48    55296              c:\windows\System32\msfeedsbs.dll
- 2009-07-29 14:37 . 2009-07-21 21:52    64512              c:\windows\System32\migration\WininetPlugin.dll
+ 2009-10-14 04:36 . 2009-08-27 05:22    64512              c:\windows\System32\migration\WininetPlugin.dll
+ 2009-10-14 04:36 . 2009-08-27 05:18    25600              c:\windows\System32\jsproxy.dll
- 2009-07-29 14:37 . 2009-07-21 21:47    25600              c:\windows\System32\jsproxy.dll
- 2009-07-29 14:37 . 2009-07-21 21:47    55808              c:\windows\System32\iernonce.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    55808              c:\windows\System32\iernonce.dll
+ 2008-01-07 11:24 . 2009-10-14 13:53    16384              c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2008-01-07 11:24 . 2009-10-10 16:01    16384              c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2008-01-07 11:24 . 2009-10-10 16:01    32768              c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2008-01-07 11:24 . 2009-10-14 13:53    32768              c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2008-01-07 11:24 . 2009-10-14 13:53    16384              c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2008-01-07 11:24 . 2009-10-10 16:01    16384              c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-10-14 09:24 . 2009-10-14 13:43    17192              c:\windows\SoftwareDistribution\EventCache\{14C2EF41-218C-49F6-A22F-A869E8DFE4FE}.bin
- 2008-01-11 05:59 . 2009-06-12 02:52    16384              c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2008-01-11 05:59 . 2009-10-14 11:08    16384              c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2008-01-11 05:59 . 2009-06-12 02:52    32768              c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2008-01-11 05:59 . 2009-10-14 11:08    32768              c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2008-01-11 05:59 . 2009-06-12 02:52    16384              c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2008-01-11 05:59 . 2009-10-14 11:08    16384              c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-06-18 18:11 . 2009-10-14 10:20    35088              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\oisicon.exe
- 2009-06-18 18:11 . 2009-07-17 08:52    35088              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\oisicon.exe
+ 2009-06-18 18:11 . 2009-10-14 10:20    18704              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\mspicons.exe
- 2009-06-18 18:11 . 2009-07-17 08:52    18704              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\mspicons.exe
- 2009-06-18 18:11 . 2009-07-17 08:52    20240              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-06-18 18:11 . 2009-10-14 10:20    20240              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-10-14 11:13 . 2009-10-14 11:13    38240              c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2006-10-26 20:58 . 2006-10-26 20:58    33080              c:\windows\Installer\$PatchCache$\Managed\00002119F20000000000000000F01FEC\12.0.4518\VPREVIEW.EXE
+ 2006-10-26 19:13 . 2006-10-26 19:13    72472              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\XL12CNVP.DLL
+ 2007-03-21 16:58 . 2007-03-21 16:58    24416              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\WRD12EXE.EXE
+ 2007-03-21 17:00 . 2007-03-21 17:00    72096              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\PXBCOM.EXE
+ 2006-11-02 10:25 . 2009-10-14 10:46    86016              c:\windows\inf\infpub.dat
- 2006-11-02 10:25 . 2009-10-10 15:56    86016              c:\windows\inf\infpub.dat
- 2009-06-13 08:06 . 2009-04-30 12:42    18944              c:\windows\ehome\ehtrace.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    18944              c:\windows\ehome\ehtrace.dll
+ 2009-10-14 04:38 . 2009-09-10 14:44    9728              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
+ 2009-10-14 04:38 . 2009-09-09 11:09    9728              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
+ 2009-10-14 04:38 . 2009-09-10 14:47    7680              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
+ 2009-10-14 04:37 . 2009-08-31 13:53    6656              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-mcrmgr_31bf3856ad364e35_6.0.6001.22511_none_34a9bd2af31efbd9\McrMgr.dll
+ 2008-04-21 07:07 . 2008-01-19 07:34    6656              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-mcrmgr_31bf3856ad364e35_6.0.6001.18322_none_34164ed7da089430\McrMgr.dll
+ 2009-10-14 04:37 . 2009-08-31 14:18    6656              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-mcrmgr_31bf3856ad364e35_6.0.6000.21119_none_32cb5710f5f16bbb\McrMgr.dll
+ 2009-10-14 04:37 . 2009-08-31 15:17    6656              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-mcrmgr_31bf3856ad364e35_6.0.6000.16919_none_3241e223dcd398af\McrMgr.dll
- 2008-01-10 18:55 . 2009-10-03 08:58    2546              c:\windows\System32\WDI\ERCQueuedResolutions.dat
+ 2008-01-10 18:55 . 2009-10-11 15:20    2546              c:\windows\System32\WDI\ERCQueuedResolutions.dat
+ 2009-10-14 13:52 . 2009-10-14 13:52    2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-10-10 16:04 . 2009-10-10 16:04    2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-10-14 13:52 . 2009-10-14 13:52    2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-10-10 16:04 . 2009-10-10 16:04    2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-10-14 10:20 . 2009-09-04 06:59    388920              c:\windows\winsxs\x86_netfx-sos_dll_b03f5f7f11d50a3a_6.0.6002.22219_none_fcfe427e14d1391e\SOS.dll
+ 2009-10-14 10:20 . 2009-09-04 06:59    388936              c:\windows\winsxs\x86_netfx-sos_dll_b03f5f7f11d50a3a_6.0.6002.18107_none_13cb1683fb2a8c7f\SOS.dll
+ 2009-10-14 10:20 . 2009-09-04 06:58    989528              c:\windows\winsxs\x86_netfx-mscordacwks_b03f5f7f11d50a3a_6.0.6002.22219_none_142ffabd20dc5d09\mscordacwks.dll
+ 2009-10-14 10:20 . 2009-09-04 06:58    989000              c:\windows\winsxs\x86_netfx-mscordacwks_b03f5f7f11d50a3a_6.0.6002.18107_none_2afccec30735b06a\mscordacwks.dll
+ 2009-10-14 04:36 . 2009-05-08 13:06    604672              c:\windows\winsxs\x86_microsoft-windows-wmspdmod_31bf3856ad364e35_6.0.6002.22131_none_fc80747986388ef6\WMSPDMOD.DLL
+ 2009-10-14 04:36 . 2009-05-08 12:53    604672              c:\windows\winsxs\x86_microsoft-windows-wmspdmod_31bf3856ad364e35_6.0.6002.18034_none_fbf9d88c6d183b31\WMSPDMOD.DLL
+ 2009-10-14 04:36 . 2009-04-02 12:22    604672              c:\windows\winsxs\x86_microsoft-windows-wmspdmod_31bf3856ad364e35_6.0.6001.22403_none_fabc72e988f818ad\WMSPDMOD.DLL
+ 2009-10-14 04:36 . 2009-04-02 12:37    604672              c:\windows\winsxs\x86_microsoft-windows-wmspdmod_31bf3856ad364e35_6.0.6001.18234_none_fa1364be6ff1e8e6\WMSPDMOD.DLL
+ 2009-10-14 04:36 . 2009-04-02 11:59    604672              c:\windows\winsxs\x86_microsoft-windows-wmspdmod_31bf3856ad364e35_6.0.6000.21033_none_f8b59abb8bea11aa\WMSPDMOD.DLL
+ 2009-10-14 04:36 . 2009-04-02 11:50    604672              c:\windows\winsxs\x86_microsoft-windows-wmspdmod_31bf3856ad364e35_6.0.6000.16838_none_f831274072c7bd51\WMSPDMOD.DLL
+ 2009-10-14 04:37 . 2009-08-31 13:55    293376              c:\windows\winsxs\x86_microsoft-windows-v..e-filters-tvdigital_31bf3856ad364e35_6.0.6001.22511_none_dc7d0ceb70346e2b\psisdecd.dll
+ 2009-10-14 04:37 . 2009-08-31 13:55    293376              c:\windows\winsxs\x86_microsoft-windows-v..e-filters-tvdigital_31bf3856ad364e35_6.0.6001.18322_none_dbe99e98571e0682\psisdecd.dll
+ 2009-10-14 04:37 . 2009-08-31 14:21    292352              c:\windows\winsxs\x86_microsoft-windows-v..e-filters-tvdigital_31bf3856ad364e35_6.0.6000.21119_none_da9ea6d17306de0d\psisdecd.dll
+ 2009-10-14 04:37 . 2009-08-31 15:21    292352              c:\windows\winsxs\x86_microsoft-windows-v..e-filters-tvdigital_31bf3856ad364e35_6.0.6000.16919_none_da1531e459e90b01\psisdecd.dll
+ 2009-10-14 04:37 . 2009-08-31 13:55    428544              c:\windows\winsxs\x86_microsoft-windows-tvencdec_31bf3856ad364e35_6.0.6001.22511_none_e0f7eb31a78b6a80\EncDec.dll
+ 2009-10-14 04:37 . 2009-08-31 13:55    428544              c:\windows\winsxs\x86_microsoft-windows-tvencdec_31bf3856ad364e35_6.0.6001.18322_none_e0647cde8e7502d7\EncDec.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    428032              c:\windows\winsxs\x86_microsoft-windows-tvencdec_31bf3856ad364e35_6.0.6000.21119_none_df198517aa5dda62\EncDec.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    428032              c:\windows\winsxs\x86_microsoft-windows-tvencdec_31bf3856ad364e35_6.0.6000.16919_none_de90102a91400756\EncDec.dll
+ 2009-10-14 04:36 . 2009-09-14 09:34    144896              c:\windows\winsxs\x86_microsoft-windows-smbserver-v2_31bf3856ad364e35_6.0.6002.22225_none_dc4c11540ccb53e5\srv2.sys
+ 2009-10-14 04:36 . 2009-09-14 09:29    144896              c:\windows\winsxs\x86_microsoft-windows-smbserver-v2_31bf3856ad364e35_6.0.6002.18112_none_dbca4396f3a84c25\srv2.sys
+ 2009-10-14 04:36 . 2009-09-14 09:48    144896              c:\windows\winsxs\x86_microsoft-windows-smbserver-v2_31bf3856ad364e35_6.0.6001.22522_none_da629e8e0fa7b2bc\srv2.sys
+ 2009-10-14 04:36 . 2009-09-14 09:44    144896              c:\windows\winsxs\x86_microsoft-windows-smbserver-v2_31bf3856ad364e35_6.0.6001.18331_none_d9cd2fa6f6931865\srv2.sys
+ 2009-10-14 04:36 . 2009-09-14 09:42    131072              c:\windows\winsxs\x86_microsoft-windows-smbserver-v2_31bf3856ad364e35_6.0.6000.21127_none_d8813796127cd699\srv2.sys
+ 2009-10-14 04:36 . 2009-09-14 09:50    130048              c:\windows\winsxs\x86_microsoft-windows-smbserver-v2_31bf3856ad364e35_6.0.6000.16927_none_d7f7c2a8f95f038d\srv2.sys
+ 2009-10-14 04:38 . 2009-09-10 17:08    218624              c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6002.22223_none_7f10642478dc3089\msv1_0.dll
+ 2009-10-14 04:38 . 2009-09-10 16:48    218624              c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6002.18111_none_7e8f96b15fb84220\msv1_0.dll
+ 2009-10-14 04:38 . 2009-09-09 13:16    214016              c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6001.22518_none_7d39c39a7ba93e27\msv1_0.dll
+ 2009-10-14 04:38 . 2009-09-10 17:30    213504              c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6001.18330_none_7c9282c162a30e60\msv1_0.dll
+ 2009-10-14 04:38 . 2009-09-10 17:29    216576              c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6000.21125_none_7b458a667e8db33d\msv1_0.dll
+ 2009-10-14 04:38 . 2009-09-10 17:38    216576              c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6000.16926_none_7abd15c3656ef988\msv1_0.dll
+ 2009-10-14 04:38 . 2009-09-10 17:10    175104              c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6002.22223_none_3d2ac2689306813a\wdigest.dll
+ 2009-10-14 04:38 . 2009-09-09 13:17    175104              c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6001.22518_none_3b5421de95d38ed8\wdigest.dll
+ 2009-10-14 04:38 . 2009-09-10 17:31    175104              c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6000.21125_none_395fe8aa98b803ee\wdigest.dll
+ 2009-08-21 14:11 . 2009-06-15 21:17    439880              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\ksecdd.sys
+ 2009-08-21 14:11 . 2009-06-15 18:40    439880              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\ksecdd.sys
+ 2009-08-21 14:11 . 2009-06-15 23:20    408136              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\ksecdd.sys
+ 2009-10-14 04:36 . 2009-08-27 13:21    164352              c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22918_none_48125f7add0aca92\ieui.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    164352              c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18828_none_477df2c3c3f546b9\ieui.dll
+ 2009-10-14 04:36 . 2009-08-27 13:21    109056              c:\windows\winsxs\x86_microsoft-windows-ie-sysprep_31bf3856ad364e35_8.0.6001.22918_none_ff020cabe8e8477c\iesysprep.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    109056              c:\windows\winsxs\x86_microsoft-windows-ie-sysprep_31bf3856ad364e35_8.0.6001.18828_none_fe6d9ff4cfd2c3a3\iesysprep.dll
+ 2009-10-14 04:36 . 2009-08-27 11:44    173056              c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22918_none_a940a7ff8d650ab7\ie4uinit.exe
+ 2009-10-14 04:36 . 2009-08-27 03:42    173056              c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18828_none_a8ac3b48744f86de\ie4uinit.exe
+ 2009-10-14 04:36 . 2009-08-27 13:29    129536              c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22918_none_2b139d34bb6ff18c\sqmapi.dll
+ 2009-10-14 04:36 . 2009-08-27 05:22    129536              c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18828_none_2a7f307da25a6db3\sqmapi.dll
+ 2009-10-14 04:36 . 2009-08-27 13:26    206848              c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.6001.22918_none_1a965b07430ed6fa\occache.dll
+ 2009-10-14 04:36 . 2009-08-27 05:20    206848              c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.6001.18828_none_1a01ee5029f95321\occache.dll
+ 2009-10-14 04:36 . 2009-08-27 13:31    638216              c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22918_none_12d1f2e448ea4212\iexplore.exe
+ 2009-10-14 04:36 . 2009-08-27 11:44    133632              c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22918_none_12d1f2e448ea4212\ieUnatt.exe
+ 2009-10-14 04:36 . 2009-08-27 05:23    638232              c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18828_none_123d862d2fd4be39\iexplore.exe
+ 2009-10-14 04:36 . 2009-08-27 03:42    133632              c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18828_none_123d862d2fd4be39\ieUnatt.exe
+ 2009-10-14 04:36 . 2009-08-27 13:21    197632              c:\windows\winsxs\x86_microsoft-windows-ie-ieshims_31bf3856ad364e35_8.0.6001.22918_none_2afd22d0c924c41c\IEShims.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    197632              c:\windows\winsxs\x86_microsoft-windows-ie-ieshims_31bf3856ad364e35_8.0.6001.18828_none_2a68b619b00f4043\IEShims.dll
+ 2009-10-14 04:36 . 2009-08-27 13:21    246272              c:\windows\winsxs\x86_microsoft-windows-ie-ieproxy_31bf3856ad364e35_8.0.6001.22918_none_739ed73a797c5dae\ieproxy.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    246272              c:\windows\winsxs\x86_microsoft-windows-ie-ieproxy_31bf3856ad364e35_8.0.6001.18828_none_730a6a836066d9d5\ieproxy.dll
+ 2009-10-14 04:36 . 2009-08-27 13:22    594432              c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_8.0.6001.22918_none_43567d27696225e7\msfeeds.dll
+ 2009-10-14 04:36 . 2009-08-27 05:18    594432              c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_8.0.6001.18828_none_42c21070504ca20e\msfeeds.dll
+ 2009-10-14 04:36 . 2009-08-27 13:21    184320              c:\windows\winsxs\x86_microsoft-windows-ie-behaviors_31bf3856ad364e35_8.0.6001.22918_none_2033778a20f99b91\iepeers.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    184320              c:\windows\winsxs\x86_microsoft-windows-ie-behaviors_31bf3856ad364e35_8.0.6001.18828_none_1f9f0ad307e417b8\iepeers.dll
+ 2009-10-14 04:36 . 2009-08-27 13:21    387584              c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_8.0.6001.22918_none_57c05f548668f3f6\iedkcs32.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    387584              c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_8.0.6001.18828_none_572bf29d6d53701d\iedkcs32.dll
+ 2009-10-14 04:36 . 2009-08-27 13:29    916480              c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22918_none_e558e658d0bed32f\wininet.dll
+ 2009-10-14 04:36 . 2009-08-27 05:22    916480              c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18828_none_e4c479a1b7a94f56\wininet.dll
+ 2009-10-14 04:37 . 2009-08-31 12:00    253952              c:\windows\winsxs\x86_microsoft-windows-ehome-ehvid_31bf3856ad364e35_6.0.6001.22511_none_4be8930c6de07dc1\ehvid.exe
+ 2009-10-14 04:37 . 2009-08-31 11:51    253952              c:\windows\winsxs\x86_microsoft-windows-ehome-ehvid_31bf3856ad364e35_6.0.6001.18322_none_4b5524b954ca1618\ehvid.exe
+ 2009-10-14 04:37 . 2009-08-31 12:08    253952              c:\windows\winsxs\x86_microsoft-windows-ehome-ehvid_31bf3856ad364e35_6.0.6000.21119_none_4a0a2cf270b2eda3\ehvid.exe
+ 2009-10-14 04:37 . 2009-08-31 13:05    253952              c:\windows\winsxs\x86_microsoft-windows-ehome-ehvid_31bf3856ad364e35_6.0.6000.16919_none_4980b80557951a97\ehvid.exe
+ 2009-10-14 04:37 . 2009-08-31 13:52    522240              c:\windows\winsxs\x86_microsoft-windows-ehome-ehui_31bf3856ad364e35_6.0.6001.22511_none_cf43f10ce28c8be4\ehui.dll
+ 2009-10-14 04:37 . 2009-08-31 13:52    522240              c:\windows\winsxs\x86_microsoft-windows-ehome-ehui_31bf3856ad364e35_6.0.6001.18322_none_ceb082b9c976243b\ehui.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    521216              c:\windows\winsxs\x86_microsoft-windows-ehome-ehui_31bf3856ad364e35_6.0.6000.21119_none_cd658af2e55efbc6\ehui.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    517120              c:\windows\winsxs\x86_microsoft-windows-ehome-ehui_31bf3856ad364e35_6.0.6000.16919_none_ccdc1605cc4128ba\ehui.dll
+ 2009-10-14 04:37 . 2009-08-31 13:52    105472              c:\windows\winsxs\x86_microsoft-windows-ehome-ehpresenter_31bf3856ad364e35_6.0.6001.22511_none_27486c597b1eee18\ehPresenter.dll
+ 2009-10-14 04:37 . 2009-08-31 13:52    105472              c:\windows\winsxs\x86_microsoft-windows-ehome-ehpresenter_31bf3856ad364e35_6.0.6001.18322_none_26b4fe066208866f\ehPresenter.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    105472              c:\windows\winsxs\x86_microsoft-windows-ehome-ehpresenter_31bf3856ad364e35_6.0.6000.21119_none_256a063f7df15dfa\ehPresenter.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    105472              c:\windows\winsxs\x86_microsoft-windows-ehome-ehpresenter_31bf3856ad364e35_6.0.6000.16919_none_24e0915264d38aee\ehPresenter.dll
+ 2009-10-14 04:37 . 2009-08-31 13:24    278528              c:\windows\winsxs\x86_microsoft-windows-ehome-ehplayer_31bf3856ad364e35_6.0.6002.22215_none_3023a9eccf504813\ehPlayer.dll
+ 2009-10-14 04:37 . 2009-08-31 13:12    278528              c:\windows\winsxs\x86_microsoft-windows-ehome-ehplayer_31bf3856ad364e35_6.0.6002.18103_none_2fa2dc79b62c59aa\ehPlayer.dll
+ 2009-10-14 04:37 . 2009-08-31 13:52    278528              c:\windows\winsxs\x86_microsoft-windows-ehome-ehplayer_31bf3856ad364e35_6.0.6001.22511_none_2e3936dcd22d8d93\ehPlayer.dll
+ 2009-10-14 04:37 . 2009-08-31 13:52    278528              c:\windows\winsxs\x86_microsoft-windows-ehome-ehplayer_31bf3856ad364e35_6.0.6001.18322_none_2da5c889b91725ea\ehPlayer.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    278528              c:\windows\winsxs\x86_microsoft-windows-ehome-ehplayer_31bf3856ad364e35_6.0.6000.21119_none_2c5ad0c2d4fffd75\ehPlayer.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    278528              c:\windows\winsxs\x86_microsoft-windows-ehome-ehplayer_31bf3856ad364e35_6.0.6000.16919_none_2bd15bd5bbe22a69\ehPlayer.dll
+ 2009-10-14 04:37 . 2009-08-31 13:52    373248              c:\windows\winsxs\x86_microsoft-windows-ehome-ehglid_31bf3856ad364e35_6.0.6001.22511_none_2fbbaf3a8346d824\ehglid.dll
+ 2009-10-14 04:37 . 2009-08-31 13:52    373248              c:\windows\winsxs\x86_microsoft-windows-ehome-ehglid_31bf3856ad364e35_6.0.6001.18322_none_2f2840e76a30707b\ehglid.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    372736              c:\windows\winsxs\x86_microsoft-windows-ehome-ehglid_31bf3856ad364e35_6.0.6000.21119_none_2ddd492086194806\ehglid.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    372224              c:\windows\winsxs\x86_microsoft-windows-ehome-ehglid_31bf3856ad364e35_6.0.6000.16919_none_2d53d4336cfb74fa\ehglid.dll
+ 2009-10-14 04:37 . 2009-08-31 13:22    173056              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-mcrmgr_31bf3856ad364e35_6.0.6001.22511_none_34a9bd2af31efbd9\McrMgr.exe
+ 2009-10-14 04:37 . 2009-08-31 13:22    173056              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-mcrmgr_31bf3856ad364e35_6.0.6001.18322_none_34164ed7da089430\McrMgr.exe
+ 2009-10-14 04:37 . 2009-08-31 13:43    173056              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-mcrmgr_31bf3856ad364e35_6.0.6000.21119_none_32cb5710f5f16bbb\McrMgr.exe
+ 2009-10-14 04:37 . 2009-08-31 14:40    173056              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-mcrmgr_31bf3856ad364e35_6.0.6000.16919_none_3241e223dcd398af\McrMgr.exe
+ 2009-10-14 04:37 . 2009-08-31 13:52    254464              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-ehreplay_31bf3856ad364e35_6.0.6001.22511_none_15374cd4b8d7977b\ehReplay.dll
+ 2009-10-14 04:37 . 2009-08-31 13:52    254464              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-ehreplay_31bf3856ad364e35_6.0.6001.18322_none_14a3de819fc12fd2\ehReplay.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    254464              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-ehreplay_31bf3856ad364e35_6.0.6000.21119_none_1358e6babbaa075d\ehReplay.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    252416              c:\windows\winsxs\x86_microsoft-windows-ehome-devices-ehreplay_31bf3856ad364e35_6.0.6000.16919_none_12cf71cda28c3451\ehReplay.dll
+ 2009-10-14 04:37 . 2009-08-31 13:55    180224              c:\windows\winsxs\x86_microsoft-windows-ehome-cbva_31bf3856ad364e35_6.0.6001.22511_none_cea378c2e2ec277f\cbva.dll
+ 2009-10-14 04:37 . 2009-08-31 13:55    180224              c:\windows\winsxs\x86_microsoft-windows-ehome-cbva_31bf3856ad364e35_6.0.6001.18322_none_ce100a6fc9d5bfd6\cbva.dll
+ 2009-10-14 04:37 . 2009-08-31 14:16    180224              c:\windows\winsxs\x86_microsoft-windows-ehome-cbva_31bf3856ad364e35_6.0.6000.21119_none_ccc512a8e5be9761\cbva.dll
+ 2009-10-14 04:37 . 2009-08-31 15:15    180224              c:\windows\winsxs\x86_microsoft-windows-ehome-cbva_31bf3856ad364e35_6.0.6000.16919_none_cc3b9dbbcca0c455\cbva.dll
+ 2009-08-19 07:19 . 2009-03-31 18:05    299008              c:\windows\winsxs\msil_mscorlib.resources_b77a5c561934e089_6.0.6002.22219_da-dk_4e15ca41b4fb7640\mscorlib.resources.dll
+ 2009-08-19 07:19 . 2009-03-31 18:05    299008              c:\windows\winsxs\msil_mscorlib.resources_b77a5c561934e089_6.0.6002.18107_da-dk_64e29e479b54c9a1\mscorlib.resources.dll
+ 2009-10-14 04:37 . 2009-08-31 14:18    212992              c:\windows\winsxs\msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6002.22215_none_27e7e71ae2946063\Microsoft.MediaCenter.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    212992              c:\windows\winsxs\msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6002.18103_none_276719a7c97071fa\Microsoft.MediaCenter.dll
+ 2009-10-14 04:37 . 2009-08-31 14:58    212992              c:\windows\winsxs\msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6001.22511_none_25fd740ae571a5e3\Microsoft.MediaCenter.dll
+ 2009-10-14 04:37 . 2009-08-31 15:00    212992              c:\windows\winsxs\msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6001.18322_none_256a05b7cc5b3e3a\Microsoft.MediaCenter.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    225280              c:\windows\winsxs\msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6000.21119_none_241f0df0e84415c5\Microsoft.MediaCenter.dll
+ 2009-10-14 04:37 . 2009-08-31 16:15    225280              c:\windows\winsxs\msil_microsoft.mediacenter_31bf3856ad364e35_6.0.6000.16919_none_23959903cf2642b9\Microsoft.MediaCenter.dll
+ 2009-10-14 04:37 . 2009-08-31 14:18    188416              c:\windows\winsxs\msil_mcstore_31bf3856ad364e35_6.0.6002.22215_none_c802e821541b5ff1\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    188416              c:\windows\winsxs\msil_mcstore_31bf3856ad364e35_6.0.6002.18103_none_c7821aae3af77188\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 14:58    188416              c:\windows\winsxs\msil_mcstore_31bf3856ad364e35_6.0.6001.22511_none_c618751156f8a571\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 15:00    188416              c:\windows\winsxs\msil_mcstore_31bf3856ad364e35_6.0.6001.18322_none_c58506be3de23dc8\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 15:15    212992              c:\windows\winsxs\msil_mcstore_31bf3856ad364e35_6.0.6000.21119_none_c43a0ef759cb1553\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 16:15    212992              c:\windows\winsxs\msil_mcstore_31bf3856ad364e35_6.0.6000.16919_none_c3b09a0a40ad4247\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 14:18    532480              c:\windows\winsxs\msil_ehrecobj_31bf3856ad364e35_6.0.6002.22215_none_8d4b9de95e7ac990\ehRecObj.dll
+ 2009-10-14 04:37 . 2009-08-31 14:05    532480              c:\windows\winsxs\msil_ehrecobj_31bf3856ad364e35_6.0.6002.18103_none_8ccad0764556db27\ehRecObj.dll
+ 2009-10-14 04:37 . 2009-08-31 14:57    532480              c:\windows\winsxs\msil_ehrecobj_31bf3856ad364e35_6.0.6001.22511_none_8b612ad961580f10\ehRecObj.dll
+ 2009-10-14 04:37 . 2009-08-31 15:00    532480              c:\windows\winsxs\msil_ehrecobj_31bf3856ad364e35_6.0.6001.18322_none_8acdbc864841a767\ehRecObj.dll
+ 2009-10-14 04:37 . 2009-08-31 15:15    532480              c:\windows\winsxs\msil_ehrecobj_31bf3856ad364e35_6.0.6000.21119_none_8982c4bf642a7ef2\ehRecObj.dll
+ 2009-10-14 04:37 . 2009-08-31 16:15    532480              c:\windows\winsxs\msil_ehrecobj_31bf3856ad364e35_6.0.6000.16919_none_88f94fd24b0cabe6\ehRecObj.dll
+ 2009-10-14 04:37 . 2009-08-31 15:15    135168              c:\windows\winsxs\msil_ehexthost_31bf3856ad364e35_6.0.6000.21119_none_bd8a240bdacf0af8\ehexthost.exe
+ 2009-10-14 04:37 . 2009-08-31 16:15    135168              c:\windows\winsxs\msil_ehexthost_31bf3856ad364e35_6.0.6000.16919_none_bd00af1ec1b137ec\ehexthost.exe
+ 2009-10-14 04:37 . 2009-08-31 14:18    839680              c:\windows\winsxs\msil_ehepg_31bf3856ad364e35_6.0.6002.22215_none_de0d807fe52ff24b\ehepg.dll
+ 2009-10-14 04:37 . 2009-08-31 14:05    839680              c:\windows\winsxs\msil_ehepg_31bf3856ad364e35_6.0.6002.18103_none_dd8cb30ccc0c03e2\ehepg.dll
+ 2009-10-14 04:37 . 2009-08-31 14:57    839680              c:\windows\winsxs\msil_ehepg_31bf3856ad364e35_6.0.6001.22511_none_dc230d6fe80d37cb\ehepg.dll
+ 2009-10-14 04:37 . 2009-08-31 15:00    839680              c:\windows\winsxs\msil_ehepg_31bf3856ad364e35_6.0.6001.18322_none_db8f9f1ccef6d022\ehepg.dll
+ 2009-10-14 04:37 . 2009-08-31 15:15    876544              c:\windows\winsxs\msil_ehepg_31bf3856ad364e35_6.0.6000.21119_none_da44a755eadfa7ad\ehepg.dll
+ 2009-10-14 04:37 . 2009-08-31 16:15    876544              c:\windows\winsxs\msil_ehepg_31bf3856ad364e35_6.0.6000.16919_none_d9bb3268d1c1d4a1\ehepg.dll
- 2008-04-21 07:10 . 2008-01-19 07:37    604672              c:\windows\System32\WMSPDMOD.DLL
+ 2009-10-14 04:36 . 2009-05-08 12:53    604672              c:\windows\System32\WMSPDMOD.DLL
+ 2008-04-22 09:54 . 2009-10-13 06:21    288358              c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S4.bin
+ 2009-10-14 04:36 . 2009-08-27 05:20    206848              c:\windows\System32\occache.dll
- 2009-07-29 14:37 . 2009-07-21 21:50    206848              c:\windows\System32\occache.dll
+ 2009-10-14 04:36 . 2009-08-27 05:18    594432              c:\windows\System32\msfeeds.dll
- 2009-07-29 14:37 . 2009-07-21 21:48    594432              c:\windows\System32\msfeeds.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    164352              c:\windows\System32\ieui.dll
- 2009-07-29 14:37 . 2009-07-21 21:47    164352              c:\windows\System32\ieui.dll
- 2009-07-29 14:37 . 2009-07-21 21:47    184320              c:\windows\System32\iepeers.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    184320              c:\windows\System32\iepeers.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    387584              c:\windows\System32\iedkcs32.dll
- 2009-07-29 14:37 . 2009-07-21 20:13    173056              c:\windows\System32\ie4uinit.exe
+ 2009-10-14 04:36 . 2009-08-27 03:42    173056              c:\windows\System32\ie4uinit.exe
- 2009-06-02 11:48 . 2009-10-10 16:01    245760              c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-06-02 11:48 . 2009-10-14 11:24    245760              c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-06-02 14:48 . 2009-06-12 02:52    245760              c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-06-02 14:48 . 2009-10-14 11:08    245760              c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-10-14 10:20 . 2009-09-04 06:59    388936              c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
- 2009-08-19 07:21 . 2009-03-30 04:42    388936              c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2009-10-14 10:20 . 2009-09-04 06:58    989000              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
- 2009-08-19 07:22 . 2009-03-30 04:42    989000              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2009-10-11 08:38 . 2009-10-11 08:38    355328              c:\windows\Installer\2ffbd1a.msi
+ 2009-06-18 18:11 . 2009-10-14 10:20    888080              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe
- 2009-06-18 18:11 . 2009-07-17 08:52    888080              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe
- 2009-06-18 18:11 . 2009-07-17 08:52    922384              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-06-18 18:11 . 2009-10-14 10:20    922384              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-06-18 18:11 . 2009-10-14 10:20    217864              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe
- 2009-06-18 18:11 . 2009-07-17 08:52    217864              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\misc.exe
- 2009-06-18 18:11 . 2009-07-17 08:52    184080              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\joticon.exe
+ 2009-06-18 18:11 . 2009-10-14 10:20    184080              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\joticon.exe
+ 2006-10-26 18:49 . 2006-10-26 18:49    509200              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\WRD12CVR.DLL
+ 2007-05-10 07:04 . 2007-05-10 07:04    846248              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\OICE.EXE
+ 2006-10-26 18:12 . 2006-10-26 18:12    396592              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\MOC.EXE
- 2006-11-02 10:25 . 2009-10-10 15:56    143360              c:\windows\inf\infstrng.dat
+ 2006-11-02 10:25 . 2009-10-14 10:46    143360              c:\windows\inf\infstrng.dat
- 2006-11-02 10:25 . 2009-10-10 15:56    143360              c:\windows\inf\infstor.dat
+ 2006-11-02 10:25 . 2009-10-14 10:46    143360              c:\windows\inf\infstor.dat
+ 2009-10-14 04:37 . 2009-08-31 14:06    212992              c:\windows\ehome\Microsoft.MediaCenter.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    212992              c:\windows\ehome\Microsoft.MediaCenter.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    188416              c:\windows\ehome\mcstore.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    188416              c:\windows\ehome\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 14:05    532480              c:\windows\ehome\ehRecObj.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    532480              c:\windows\ehome\ehRecObj.dll
- 2009-06-13 08:07 . 2009-04-30 11:47    278528              c:\windows\ehome\ehPlayer.dll
+ 2009-10-14 04:37 . 2009-08-31 13:12    278528              c:\windows\ehome\ehPlayer.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    839680              c:\windows\ehome\ehepg.dll
+ 2009-10-14 04:37 . 2009-08-31 14:05    839680              c:\windows\ehome\ehepg.dll
- 2009-06-13 08:06 . 2009-04-30 12:37    180224              c:\windows\ehome\cbva.dll
+ 2009-10-14 04:37 . 2009-08-31 13:55    180224              c:\windows\ehome\cbva.dll
+ 2009-10-14 10:48 . 2009-10-14 10:48    208384              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\aebb80cfa7deb9dfd7fac42afaf8b172\System.Drawing.Design.ni.dll
+ 2009-10-14 10:46 . 2009-10-14 10:46    539648              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6a409c40a6067264d0592415fcfc266d\PresentationFramework.Luna.ni.dll
+ 2009-10-14 10:46 . 2009-10-14 10:46    224768              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\54e0042aba64d42f476234184b1b8f77\PresentationFramework.Classic.ni.dll
+ 2009-10-14 10:46 . 2009-10-14 10:46    258048              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\3ae3d45b608b6e0fcb51d3a903563621\PresentationFramework.Royale.ni.dll
+ 2009-10-14 10:46 . 2009-10-14 10:46    368128              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\0fa8eb806fadfff925850522a53c3c18\PresentationFramework.Aero.ni.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    212992              c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter\6.0.6000.0__31bf3856ad364e35\Microsoft.MediaCenter.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    212992              c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter\6.0.6000.0__31bf3856ad364e35\Microsoft.MediaCenter.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    188416              c:\windows\assembly\GAC_MSIL\mcstore\6.0.6000.0__31bf3856ad364e35\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    188416              c:\windows\assembly\GAC_MSIL\mcstore\6.0.6000.0__31bf3856ad364e35\mcstore.dll
+ 2009-10-14 04:37 . 2009-08-31 14:05    532480              c:\windows\assembly\GAC_MSIL\ehRecObj\6.0.6000.0__31bf3856ad364e35\ehRecObj.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    532480              c:\windows\assembly\GAC_MSIL\ehRecObj\6.0.6000.0__31bf3856ad364e35\ehRecObj.dll
+ 2009-10-14 04:37 . 2009-08-31 14:05    839680              c:\windows\assembly\GAC_MSIL\ehepg\6.0.6000.0__31bf3856ad364e35\ehepg.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    839680              c:\windows\assembly\GAC_MSIL\ehepg\6.0.6000.0__31bf3856ad364e35\ehepg.dll
+ 2009-10-14 10:20 . 2009-09-04 06:59    5818704              c:\windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.22219_none_1b6bd7d648db5136\mscorwks.dll
+ 2009-10-14 10:20 . 2009-09-04 06:59    5812544              c:\windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.18107_none_3238abdc2f34a497\mscorwks.dll
+ 2009-10-14 10:20 . 2009-09-04 06:58    4550656              c:\windows\winsxs\x86_mscorlib_b77a5c561934e089_6.0.6002.22219_none_b0c508e8db53ecb1\mscorlib.dll
+ 2009-10-14 10:20 . 2009-09-04 06:58    4550656              c:\windows\winsxs\x86_mscorlib_b77a5c561934e089_6.0.6002.18107_none_c791dceec1ad4012\mscorlib.dll
+ 2009-10-14 10:10 . 2009-08-05 14:10    3548216              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntoskrnl.exe
+ 2009-10-14 10:10 . 2009-08-05 14:10    3599928              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntkrnlpa.exe
+ 2009-10-14 10:10 . 2009-08-04 12:34    3548216              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntoskrnl.exe
+ 2009-10-14 10:10 . 2009-08-04 12:34    3600456              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntkrnlpa.exe
+ 2009-10-14 10:10 . 2009-08-05 17:15    3547736              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntoskrnl.exe
+ 2009-10-14 10:10 . 2009-08-05 17:15    3599960              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntkrnlpa.exe
+ 2009-10-14 10:10 . 2009-08-05 14:22    3546184              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntoskrnl.exe
+ 2009-10-14 10:10 . 2009-08-05 14:22    3597896              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntkrnlpa.exe
+ 2009-10-14 10:10 . 2009-08-05 14:10    3469896              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntoskrnl.exe
+ 2009-10-14 10:10 . 2009-08-05 14:10    3503688              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntkrnlpa.exe
+ 2009-10-14 10:10 . 2009-08-05 14:28    3467864              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntoskrnl.exe
+ 2009-10-14 10:10 . 2009-08-05 14:28    3502152              c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntkrnlpa.exe
+ 2009-10-14 04:38 . 2009-09-01 07:40    2409784              c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6002.22224_none_f4e691bf81cad9ef\OESpamFilter.dat
+ 2009-10-14 04:38 . 2009-09-01 07:40    2409784              c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6002.18111_none_f464c40268a7d22f\OESpamFilter.dat
+ 2009-10-14 04:38 . 2009-09-01 07:39    2409784              c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.22521_none_f2fd1ef984a738c6\OESpamFilter.dat
+ 2009-10-14 04:38 . 2009-09-01 07:40    2409784              c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.18330_none_f267b0126b929e6f\OESpamFilter.dat
+ 2009-10-14 04:38 . 2009-09-01 07:40    2409784              c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.21126_none_f11bb801877c5ca3\OESpamFilter.dat
+ 2009-10-14 04:38 . 2009-09-01 07:40    2409784              c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.16926_none_f09243146e5e8997\OESpamFilter.dat
+ 2009-10-14 04:37 . 2009-08-31 14:18    1244672              c:\windows\winsxs\x86_microsoft-windows-m..mediadeliveryengine_31bf3856ad364e35_6.0.6000.21119_none_3dcbd7e47b7b6350\mcmde.dll
+ 2009-10-14 04:37 . 2009-08-31 15:17    1244672              c:\windows\winsxs\x86_microsoft-windows-m..mediadeliveryengine_31bf3856ad364e35_6.0.6000.16919_none_3d4262f7625d9044\mcmde.dll
+ 2009-10-14 04:38 . 2009-09-10 17:07    1259520              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsasrv.dll
+ 2009-10-14 04:38 . 2009-09-09 13:17    1258496              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsasrv.dll
+ 2009-10-14 04:38 . 2009-09-10 17:28    1235456              c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsasrv.dll
+ 2009-10-14 04:36 . 2009-08-27 13:21    1986048              c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22918_none_2b139d34bb6ff18c\iertutil.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    1985536              c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18828_none_2a7f307da25a6db3\iertutil.dll
+ 2009-10-14 04:36 . 2009-08-27 13:22    5942272              c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22918_none_f6b3057751153c65\mshtml.dll
+ 2009-10-14 04:36 . 2009-08-27 05:18    5940224              c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18828_none_f61e98c037ffb88c\mshtml.dll
+ 2009-10-14 04:36 . 2009-08-27 13:29    1209344              c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22918_none_98530ab705b5ac9c\urlmon.dll
+ 2009-10-14 04:36 . 2009-08-27 05:22    1208832              c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18828_none_97be9dffeca028c3\urlmon.dll
+ 2009-10-14 04:37 . 2009-08-31 14:17    1498112              c:\windows\winsxs\x86_microsoft-windows-ehome-ehuihlp_31bf3856ad364e35_6.0.6000.21119_none_3aac7d294734b068\ehuihlp.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    1497088              c:\windows\winsxs\x86_microsoft-windows-ehome-ehuihlp_31bf3856ad364e35_6.0.6000.16919_none_3a23083c2e16dd5c\ehuihlp.dll
+ 2009-10-14 04:37 . 2009-08-31 13:53    1384960              c:\windows\winsxs\x86_microsoft-windows-e..-devices-mcx2filter_31bf3856ad364e35_6.0.6001.22511_none_368ebf8e3290dc07\Mcx2Filter.dll
+ 2009-10-14 04:37 . 2009-08-31 13:53    1384960              c:\windows\winsxs\x86_microsoft-windows-e..-devices-mcx2filter_31bf3856ad364e35_6.0.6001.18322_none_35fb513b197a745e\Mcx2Filter.dll
+ 2009-10-14 04:37 . 2009-08-31 14:18    1384960              c:\windows\winsxs\x86_microsoft-windows-e..-devices-mcx2filter_31bf3856ad364e35_6.0.6000.21119_none_34b0597435634be9\Mcx2Filter.dll
+ 2009-10-14 04:37 . 2009-08-31 15:17    1384960              c:\windows\winsxs\x86_microsoft-windows-e..-devices-mcx2filter_31bf3856ad364e35_6.0.6000.16919_none_3426e4871c4578dd\Mcx2Filter.dll
+ 2009-10-14 04:37 . 2009-08-31 14:18    1970176              c:\windows\winsxs\msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6002.22215_none_358c8e276d7bf44d\Microsoft.MediaCenter.UI.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    1970176              c:\windows\winsxs\msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6002.18103_none_350bc0b4545805e4\Microsoft.MediaCenter.UI.dll
+ 2009-10-14 04:37 . 2009-08-31 14:58    1970176              c:\windows\winsxs\msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6001.22511_none_33a21b17705939cd\Microsoft.MediaCenter.UI.dll
+ 2009-10-14 04:37 . 2009-08-31 15:00    1970176              c:\windows\winsxs\msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6001.18322_none_330eacc45742d224\Microsoft.MediaCenter.UI.dll
+ 2009-10-14 04:38 . 2009-08-31 15:16    2363392              c:\windows\winsxs\msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6000.21119_none_31c3b4fd732ba9af\Microsoft.MediaCenter.UI.dll
+ 2009-10-14 04:37 . 2009-08-31 16:15    2355200              c:\windows\winsxs\msil_microsoft.mediacenter.ui_31bf3856ad364e35_6.0.6000.16919_none_313a40105a0dd6a3\Microsoft.MediaCenter.UI.dll
+ 2009-10-14 04:37 . 2009-08-31 14:18    1249280              c:\windows\winsxs\msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6002.22215_none_52fe3f77ac27f733\Microsoft.MediaCenter.Shell.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    1249280              c:\windows\winsxs\msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6002.18103_none_527d7204930408ca\Microsoft.MediaCenter.Shell.dll
+ 2009-10-14 04:37 . 2009-08-31 14:58    1249280              c:\windows\winsxs\msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6001.22511_none_5113cc67af053cb3\Microsoft.MediaCenter.Shell.dll
+ 2009-10-14 04:37 . 2009-08-31 15:00    1253376              c:\windows\winsxs\msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6001.18322_none_50805e1495eed50a\Microsoft.MediaCenter.Shell.dll
+ 2009-10-14 04:37 . 2009-08-31 15:16    1282048              c:\windows\winsxs\msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6000.21119_none_4f35664db1d7ac95\Microsoft.MediaCenter.Shell.dll
+ 2009-10-14 04:37 . 2009-08-31 16:15    1208320              c:\windows\winsxs\msil_microsoft.mediacenter.shell_31bf3856ad364e35_6.0.6000.16919_none_4eabf16098b9d989\Microsoft.MediaCenter.Shell.dll
+ 2009-10-14 04:37 . 2009-08-31 14:18    4059136              c:\windows\winsxs\msil_ehshell_31bf3856ad364e35_6.0.6002.22215_none_8e009bc057e3809d\ehshell.dll
+ 2009-10-14 04:37 . 2009-08-31 14:05    4059136              c:\windows\winsxs\msil_ehshell_31bf3856ad364e35_6.0.6002.18103_none_8d7fce4d3ebf9234\ehshell.dll
+ 2009-10-14 04:38 . 2009-08-31 14:58    4059136              c:\windows\winsxs\msil_ehshell_31bf3856ad364e35_6.0.6001.22511_none_8c1628b05ac0c61d\ehshell.dll
+ 2009-10-14 04:37 . 2009-08-31 15:00    4059136              c:\windows\winsxs\msil_ehshell_31bf3856ad364e35_6.0.6001.18322_none_8b82ba5d41aa5e74\ehshell.dll
+ 2009-10-14 04:38 . 2009-08-31 15:16    4395008              c:\windows\winsxs\msil_ehshell_31bf3856ad364e35_6.0.6000.21119_none_8a37c2965d9335ff\ehshell.dll
+ 2009-10-14 04:37 . 2009-08-31 16:15    4382720              c:\windows\winsxs\msil_ehshell_31bf3856ad364e35_6.0.6000.16919_none_89ae4da9447562f3\ehshell.dll
+ 2009-10-14 04:36 . 2009-08-27 05:22    1208832              c:\windows\System32\urlmon.dll
- 2009-07-29 14:37 . 2009-07-21 21:52    1208832              c:\windows\System32\urlmon.dll
- 2006-11-02 10:22 . 2009-10-10 16:03    6553600              c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2006-11-02 10:22 . 2009-10-14 13:44    6553600              c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2009-10-14 04:36 . 2009-08-27 05:18    5940224              c:\windows\System32\mshtml.dll
- 2009-07-29 14:37 . 2009-07-21 21:47    1985536              c:\windows\System32\iertutil.dll
+ 2009-10-14 04:36 . 2009-08-27 05:17    1985536              c:\windows\System32\iertutil.dll
+ 2009-10-14 10:20 . 2009-09-04 06:59    5812544              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
- 2009-08-19 07:22 . 2009-03-30 04:42    5812544              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2009-10-14 10:20 . 2009-09-04 06:58    4550656              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
- 2009-08-19 07:22 . 2009-03-30 04:42    4550656              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2008-06-19 16:28 . 2008-06-19 16:28    1573376              c:\windows\Installer\730f4c6.msp
+ 2009-08-05 05:49 . 2009-08-05 05:49    3457024              c:\windows\Installer\2de8fb.msp
+ 2009-07-27 02:31 . 2009-07-27 02:31    3738624              c:\windows\Installer\2de8d9.msp
+ 2009-08-18 11:08 . 2009-08-18 11:08    1373696              c:\windows\Installer\2de8d1.msp
+ 2009-06-18 18:11 . 2009-10-14 10:20    1172240              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\xlicons.exe
- 2009-06-18 18:11 . 2009-07-17 08:52    1172240              c:\windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\xlicons.exe
+ 2008-11-21 01:12 . 2008-11-21 01:12    3750256              c:\windows\Installer\$PatchCache$\Managed\00002119F20000000000000000F01FEC\12.0.6425\VVIEWER.DLL
+ 2008-10-25 07:35 . 2008-10-25 07:35    1847160              c:\windows\Installer\$PatchCache$\Managed\00002119F20000000000000000F01FEC\12.0.6425\VVIEWDWG.DLL
+ 2008-11-20 21:06 . 2008-11-20 21:06    1194848              c:\windows\Installer\$PatchCache$\Managed\00002119F20000000000000000F01FEC\12.0.6425\FM20.DLL
+ 2007-03-21 16:58 . 2007-03-21 16:58    4145520              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\WRD12CNV.DLL
+ 2007-05-10 08:11 . 2007-05-10 08:11    1767256              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\PPCNV.DLL
+ 2006-10-27 13:18 . 2006-10-27 13:18    1658152              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\OGL.DLL
+ 2007-03-21 16:56 . 2007-03-21 16:56    8425856              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6021\OARTCONV.DLL
- 2009-06-13 08:07 . 2009-04-30 11:54    1970176              c:\windows\ehome\Microsoft.MediaCenter.UI.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    1970176              c:\windows\ehome\Microsoft.MediaCenter.UI.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    1249280              c:\windows\ehome\Microsoft.MediaCenter.Shell.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    1249280              c:\windows\ehome\Microsoft.MediaCenter.Shell.dll
- 2009-06-13 08:07 . 2009-04-30 11:54    4059136              c:\windows\ehome\ehshell.dll
+ 2009-10-14 04:37 . 2009-08-31 14:05    4059136              c:\windows\ehome\ehshell.dll
+ 2009-10-14 10:44 . 2009-10-14 10:44    3556864              c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\a908d06e74df598a0e44498f96b2ddb5\WindowsBase.ni.dll
+ 2009-10-14 10:44 . 2009-10-14 10:44    8285184              c:\windows\assembly\NativeImages_v2.0.50727_32\System\d2dbc65afd8a573c759bd756ce363db7\System.ni.dll
+ 2009-10-14 10:48 . 2009-10-14 10:48    1589248              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\b2c48bc1396a1f8feaf19117a514be38\System.Drawing.ni.dll
+ 2009-10-14 10:47 . 2009-10-14 10:47    6637568              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\b016b5b0449200643953afe0f38674e9\System.Data.ni.dll
+ 2009-10-14 10:47 . 2009-10-14 10:47    2519552              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\4ab6c18068519f96a7e9b1d589fa387f\System.Data.Linq.ni.dll
+ 2009-10-14 10:46 . 2009-10-14 10:46    2295296              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\3cd203f814d0a014e6442b18778de878\System.Core.ni.dll
+ 2009-10-14 04:37 . 2009-08-31 14:06    1970176              c:\windo

arrg...efter det combofix kan jeg ikke komme på nettet med min com....kan det hænge sammen? knægtens går fint på..

nå er kommet på nettet igen

Du kan fjerne AVG ved at hente og køre avgremover.exe herfra:
http://www.avg.com/eu-en/download-tools

Slet den combofix du har og hent en ny.

----------

Hent og gem Combofix på dit skrivebord:

http://download.bleepingcomputer.com/sUBs/ComboFix.exe



Højreklik på skrivebordet og vælg ny->tekstdokument og kopier  indholdet mellem  linierne ind og gem filen som CFScript.txt

Du skal sikre dig at den ikke kommer til at hedde CFScript.txt.txt

--------------

Killall::
Snapshot::

-------------

Tag så fat i den nye fil med musen, og før den hen over Combofix-filen, hvorefter du "giver slip" med musen.
http://www.fromsej.saknet.dk/billeder/cfscript.gif


Så skulle Combofix gerne give sig til at arbejde. Muligvis vil den kræve en genstart, hvilket du skal tillade. Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når Combofix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil: combofix.txt som ligger her C:\ Combofix.txt

Indholdet af denne fil må du gerne lægge herind.

----------

Du skal passe på at du får hele loggen lagt herind. Det gjorde du nemlig ikke sidste gang :)

hvilken en af de der avg remover skal jeg vælge?

..og ligger combofix sig ikke i "fjern programmer"? altå skal den bare fjernes fra skrivebordet? synes nemlig ikke jeg kan finde den i kontrolpanelet..

Brug 32 bit versionen af avgremover.exe.

Combofix sletter du bare fra dit skrivebord.

den vil ikke fjerne avg helt-combofix blir ved med at sige den ikke er fjernet helt ..noget antispyware fra avg...:(

den kommer frem med dette i en fil..

2009-10-17 07:07:03,535 DEBUG Avg9Uninstall\Directories key failed to open (error: e0010013)
2009-10-17 07:07:03,604 DEBUG Avg8Uninstall\Directories key failed to open (error: e0010013)
2009-10-17 07:07:03,604 DEBUG Reading HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion:ProgramFilesDir (x86) value failed (error: e001003d)
2009-10-17 07:07:03,605 WARN AvgDir param empty.
2009-10-17 07:07:03,605 WARN AvgDataDir param empty.
2009-10-17 07:07:19,219 INFO AvgRemover runs in attempt number 1
2009-10-17 07:07:19,220 INFO *****    Services    *****
2009-10-17 07:07:19,220 INFO Processing service avg8emc
2009-10-17 07:07:19,222 INFO Service avg8emc is not installed
2009-10-17 07:07:19,222 DEBUG Service avg8emc RegCleanup
2009-10-17 07:07:19,223 DEBUG Registry keys for service avg8emc are not present
2009-10-17 07:07:19,223 INFO Processing service avgfws8
2009-10-17 07:07:19,224 INFO Service avgfws8 is not installed
2009-10-17 07:07:19,224 DEBUG Service avgfws8 RegCleanup
2009-10-17 07:07:19,225 DEBUG Registry keys for service avgfws8 are not present
2009-10-17 07:07:19,225 INFO Processing service avg8wd
2009-10-17 07:07:19,226 INFO Service avg8wd is not installed
2009-10-17 07:07:19,226 DEBUG Service avg8wd RegCleanup
2009-10-17 07:07:19,226 DEBUG Registry keys for service avg8wd are not present
2009-10-17 07:07:19,226 INFO Processing service AvgWFPx
2009-10-17 07:07:19,228 INFO Service AvgWFPx is not installed
2009-10-17 07:07:19,228 DEBUG Service AvgWFPx RegCleanup
2009-10-17 07:07:19,228 DEBUG Registry keys for service AvgWFPx are not present
2009-10-17 07:07:19,228 INFO Processing service AvgWFPa
2009-10-17 07:07:19,229 INFO Service AvgWFPa is not installed
2009-10-17 07:07:19,232 DEBUG Service AvgWFPa RegCleanup
2009-10-17 07:07:19,232 DEBUG Registry keys for service AvgWFPa are not present
2009-10-17 07:07:19,232 INFO Processing service AvgMfx86
2009-10-17 07:07:19,233 INFO Service AvgMfx86 is not installed
2009-10-17 07:07:19,234 DEBUG Service AvgMfx86 RegCleanup
2009-10-17 07:07:19,234 DEBUG Registry keys for service AvgMfx86 are not present
2009-10-17 07:07:19,234 INFO Processing service AvgMfx64
2009-10-17 07:07:19,235 INFO Service AvgMfx64 is not installed
2009-10-17 07:07:19,236 DEBUG Service AvgMfx64 RegCleanup
2009-10-17 07:07:19,236 DEBUG Registry keys for service AvgMfx64 are not present
2009-10-17 07:07:19,236 INFO Processing service AvgLdx86
2009-10-17 07:07:19,238 INFO Service AvgLdx86 is not installed
2009-10-17 07:07:19,238 DEBUG Service AvgLdx86 RegCleanup
2009-10-17 07:07:19,238 DEBUG Registry keys for service AvgLdx86 are not present
2009-10-17 07:07:19,238 INFO Processing service AvgLdx64
2009-10-17 07:07:19,240 INFO Service AvgLdx64 is not installed
2009-10-17 07:07:19,241 DEBUG Service AvgLdx64 RegCleanup
2009-10-17 07:07:19,241 DEBUG Registry keys for service AvgLdx64 are not present
2009-10-17 07:07:19,241 INFO Processing service AvgTdiX
2009-10-17 07:07:19,242 INFO Service AvgTdiX is not installed
2009-10-17 07:07:19,242 DEBUG Service AvgTdiX RegCleanup
2009-10-17 07:07:19,243 DEBUG Registry keys for service AvgTdiX are not present
2009-10-17 07:07:19,243 INFO Processing service AvgTdiA
2009-10-17 07:07:19,246 INFO Service AvgTdiA is not installed
2009-10-17 07:07:19,249 DEBUG Service AvgTdiA RegCleanup
2009-10-17 07:07:19,249 DEBUG Registry keys for service AvgTdiA are not present
2009-10-17 07:07:19,249 INFO Processing service AvgRkx86
2009-10-17 07:07:19,256 INFO Service AvgRkx86 is not installed
2009-10-17 07:07:19,258 DEBUG Service AvgRkx86 RegCleanup
2009-10-17 07:07:19,259 DEBUG Registry keys for service AvgRkx86 are not present
2009-10-17 07:07:19,259 INFO Processing service AvgRkx64
2009-10-17 07:07:19,263 INFO Service AvgRkx64 is not installed
2009-10-17 07:07:19,264 DEBUG Service AvgRkx64 RegCleanup
2009-10-17 07:07:19,265 DEBUG Registry keys for service AvgRkx64 are not present
2009-10-17 07:07:19,265 INFO Processing service avg9emc
2009-10-17 07:07:19,268 INFO Service avg9emc is not installed
2009-10-17 07:07:19,271 DEBUG Service avg9emc RegCleanup
2009-10-17 07:07:19,272 DEBUG Registry keys for service avg9emc are not present
2009-10-17 07:07:19,272 INFO Processing service avgfws9
2009-10-17 07:07:19,275 INFO Service avgfws9 is not installed
2009-10-17 07:07:19,277 DEBUG Service avgfws9 RegCleanup
2009-10-17 07:07:19,277 DEBUG Registry keys for service avgfws9 are not present
2009-10-17 07:07:19,277 INFO Processing service avg9wd
2009-10-17 07:07:19,281 INFO Service avg9wd is not installed
2009-10-17 07:07:19,282 DEBUG Service avg9wd RegCleanup
2009-10-17 07:07:19,283 DEBUG Registry keys for service avg9wd are not present
2009-10-17 07:07:19,283 INFO Processing service AVGIDSAgent
2009-10-17 07:07:19,289 INFO Service AVGIDSAgent is not installed
2009-10-17 07:07:19,290 DEBUG Service AVGIDSAgent RegCleanup
2009-10-17 07:07:19,291 DEBUG Registry keys for service AVGIDSAgent are not present
2009-10-17 07:07:19,291 INFO Processing service AVGIDSShimxpx
2009-10-17 07:07:19,296 INFO Service AVGIDSShimxpx is not installed
2009-10-17 07:07:19,298 DEBUG Service AVGIDSShimxpx RegCleanup
2009-10-17 07:07:19,298 DEBUG Registry keys for service AVGIDSShimxpx are not present
2009-10-17 07:07:19,298 INFO Processing service AVGIDSFilterxpx
2009-10-17 07:07:19,303 INFO Service AVGIDSFilterxpx is not installed
2009-10-17 07:07:19,306 DEBUG Service AVGIDSFilterxpx RegCleanup
2009-10-17 07:07:19,306 DEBUG Registry keys for service AVGIDSFilterxpx are not present
2009-10-17 07:07:19,306 INFO Processing service AVGIDSDriverxpx
2009-10-17 07:07:19,309 INFO Service AVGIDSDriverxpx is not installed
2009-10-17 07:07:19,321 DEBUG Service AVGIDSDriverxpx RegCleanup
2009-10-17 07:07:19,321 DEBUG Registry keys for service AVGIDSDriverxpx are not present
2009-10-17 07:07:19,321 INFO Processing service AVGIDSShimvtx
2009-10-17 07:07:19,326 INFO Service AVGIDSShimvtx is not installed
2009-10-17 07:07:19,330 DEBUG Service AVGIDSShimvtx RegCleanup
2009-10-17 07:07:19,330 DEBUG Registry keys for service AVGIDSShimvtx are not present
2009-10-17 07:07:19,330 INFO Processing service AVGIDSFiltervtx
2009-10-17 07:07:19,341 INFO Service AVGIDSFiltervtx is not installed
2009-10-17 07:07:19,343 DEBUG Service AVGIDSFiltervtx RegCleanup
2009-10-17 07:07:19,343 DEBUG Registry keys for service AVGIDSFiltervtx are not present
2009-10-17 07:07:19,343 INFO Processing service AVGIDSDrivervtx
2009-10-17 07:07:19,347 INFO Service AVGIDSDrivervtx is not installed
2009-10-17 07:07:19,349 DEBUG Service AVGIDSDrivervtx RegCleanup
2009-10-17 07:07:19,350 DEBUG Registry keys for service AVGIDSDrivervtx are not present
2009-10-17 07:07:19,350 INFO Processing service AVGIDSFiltervta
2009-10-17 07:07:19,352 INFO Service AVGIDSFiltervta is not installed
2009-10-17 07:07:19,356 DEBUG Service AVGIDSFiltervta RegCleanup
2009-10-17 07:07:19,391 DEBUG Registry keys for service AVGIDSFiltervta are not present
2009-10-17 07:07:19,391 INFO Processing service AVGIDSDrivervta
2009-10-17 07:07:19,395 INFO Service AVGIDSDrivervta is not installed
2009-10-17 07:07:19,397 DEBUG Service AVGIDSDrivervta RegCleanup
2009-10-17 07:07:19,397 DEBUG Registry keys for service AVGIDSDrivervta are not present
2009-10-17 07:07:19,397 INFO Processing service AVGIDSShimw7x
2009-10-17 07:07:19,402 INFO Service AVGIDSShimw7x is not installed
2009-10-17 07:07:19,403 DEBUG Service AVGIDSShimw7x RegCleanup
2009-10-17 07:07:19,404 DEBUG Registry keys for service AVGIDSShimw7x are not present
2009-10-17 07:07:19,404 INFO Processing service AVGIDSFilterw7x
2009-10-17 07:07:19,408 INFO Service AVGIDSFilterw7x is not installed
2009-10-17 07:07:19,409 DEBUG Service AVGIDSFilterw7x RegCleanup
2009-10-17 07:07:19,410 DEBUG Registry keys for service AVGIDSFilterw7x are not present
2009-10-17 07:07:19,410 INFO Processing service AVGIDSDriverw7x
2009-10-17 07:07:19,414 INFO Service AVGIDSDriverw7x is not installed
2009-10-17 07:07:19,416 DEBUG Service AVGIDSDriverw7x RegCleanup
2009-10-17 07:07:19,416 DEBUG Registry keys for service AVGIDSDriverw7x are not present
2009-10-17 07:07:19,416 INFO Processing service AVGIDSFilterw7a
2009-10-17 07:07:19,420 INFO Service AVGIDSFilterw7a is not installed
2009-10-17 07:07:19,423 DEBUG Service AVGIDSFilterw7a RegCleanup
2009-10-17 07:07:19,423 DEBUG Registry keys for service AVGIDSFilterw7a are not present
2009-10-17 07:07:19,424 INFO Processing service AVGIDSDriverw7a
2009-10-17 07:07:19,427 INFO Service AVGIDSDriverw7a is not installed
2009-10-17 07:07:19,429 DEBUG Service AVGIDSDriverw7a RegCleanup
2009-10-17 07:07:19,430 DEBUG Registry keys for service AVGIDSDriverw7a are not present
2009-10-17 07:07:19,430 INFO Processing service AVGIDSErHrxpx
2009-10-17 07:07:19,434 INFO Service AVGIDSErHrxpx is not installed
2009-10-17 07:07:19,435 DEBUG Service AVGIDSErHrxpx RegCleanup
2009-10-17 07:07:19,436 DEBUG Registry keys for service AVGIDSErHrxpx are not present
2009-10-17 07:07:19,436 INFO Processing service AVGIDSErHrvtx
2009-10-17 07:07:19,439 INFO Service AVGIDSErHrvtx is not installed
2009-10-17 07:07:19,442 DEBUG Service AVGIDSErHrvtx RegCleanup
2009-10-17 07:07:19,442 DEBUG Registry keys for service AVGIDSErHrvtx are not present
2009-10-17 07:07:19,443 INFO Processing service AVGIDSErHrvta
2009-10-17 07:07:19,450 INFO Service AVGIDSErHrvta is not installed
2009-10-17 07:07:19,452 DEBUG Service AVGIDSErHrvta RegCleanup
2009-10-17 07:07:19,452 DEBUG Registry keys for service AVGIDSErHrvta are not present
2009-10-17 07:07:19,452 INFO Processing service AVGIDSErHrw7x
2009-10-17 07:07:19,456 INFO Service AVGIDSErHrw7x is not installed
2009-10-17 07:07:19,460 DEBUG Service AVGIDSErHrw7x RegCleanup
2009-10-17 07:07:19,460 DEBUG Registry keys for service AVGIDSErHrw7x are not present
2009-10-17 07:07:19,460 INFO Processing service AVGIDSErHrw7a
2009-10-17 07:07:19,469 INFO Service AVGIDSErHrw7a is not installed
2009-10-17 07:07:19,475 DEBUG Service AVGIDSErHrw7a RegCleanup
2009-10-17 07:07:19,476 DEBUG Registry keys for service AVGIDSErHrw7a are not present
2009-10-17 07:07:19,476 INFO *****    Registry keys and values    *****
2009-10-17 07:07:19,478 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2009-10-17 07:07:19,482 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} Remove
2009-10-17 07:07:19,483 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{3f963a5b-e555-4543-90e2-c3908898db71} is not present
2009-10-17 07:07:19,487 INFO Processing registry SOFTWARE\Mozilla\Firefox\Extensions
2009-10-17 07:07:19,491 DEBUG Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} Remove
2009-10-17 07:07:19,491 INFO Value SOFTWARE\Mozilla\Firefox\Extensions:{1d5287d1-8a92-0001-1f31-1cec198018d8} is not present
2009-10-17 07:07:19,495 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt
2009-10-17 07:07:19,499 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt ForceRemove
2009-10-17 07:07:19,500 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg8Alrt not found
2009-10-17 07:07:19,500 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt
2009-10-17 07:07:19,503 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt ForceRemove
2009-10-17 07:07:19,503 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\Avg9Alrt not found
2009-10-17 07:07:19,504 INFO Processing registry SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms
2009-10-17 07:07:19,507 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms ForceRemove
2009-10-17 07:07:19,508 DEBUG Key SYSTEM\CurrentControlSet\Services\Eventlog\Application\AvgEms not found
2009-10-17 07:07:19,508 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2009-10-17 07:07:19,512 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2009-10-17 07:07:19,512 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2009-10-17 07:07:19,513 INFO Processing registry SYSTEM\CurrentControlSet\Services\Avg
2009-10-17 07:07:19,517 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg ForceRemove
2009-10-17 07:07:19,517 DEBUG Key SYSTEM\CurrentControlSet\Services\Avg not found
2009-10-17 07:07:19,517 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054}
2009-10-17 07:07:19,520 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} ForceRemove
2009-10-17 07:07:19,520 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2AF1721-312E-4B07-8B17-CEB780DCD054} not found
2009-10-17 07:07:19,520 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2009-10-17 07:07:19,525 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2009-10-17 07:07:19,526 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2009-10-17 07:07:19,526 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar
2009-10-17 07:07:19,530 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2009-10-17 07:07:19,530 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2009-10-17 07:07:19,538 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2009-10-17 07:07:19,542 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2009-10-17 07:07:19,542 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2009-10-17 07:07:19,542 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2009-10-17 07:07:19,550 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension Remove
2009-10-17 07:07:19,551 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:Outlook Setup Extension is not present
2009-10-17 07:07:19,556 INFO Processing registry SOFTWARE\Microsoft\Exchange\Client\Extensions
2009-10-17 07:07:19,559 DEBUG Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension Remove
2009-10-17 07:07:19,560 INFO Value SOFTWARE\Microsoft\Exchange\Client\Extensions:AVG Exchange Extension is not present
2009-10-17 07:07:19,565 INFO Processing registry SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
2009-10-17 07:07:19,571 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify
2009-10-17 07:07:19,571 DEBUG Reading SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs failed (error: e001003d)
2009-10-17 07:07:19,571 DEBUG Value SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows:AppInit_DLLs Modify failed
2009-10-17 07:07:19,572 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-10-17 07:07:19,580 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2009-10-17 07:07:19,581 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2009-10-17 07:07:19,584 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-10-17 07:07:19,589 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} Remove
2009-10-17 07:07:19,590 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-460A-42C5-AE0C-81C61FFAEBC3} is not present
2009-10-17 07:07:19,597 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-10-17 07:07:19,601 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2009-10-17 07:07:19,601 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2009-10-17 07:07:19,605 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
2009-10-17 07:07:19,609 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} Remove
2009-10-17 07:07:19,610 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved:{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} is not present
2009-10-17 07:07:19,614 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2009-10-17 07:07:19,617 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY Remove
2009-10-17 07:07:19,617 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG8_TRAY is not present
2009-10-17 07:07:19,623 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Run
2009-10-17 07:07:19,629 DEBUG Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY Remove
2009-10-17 07:07:19,630 INFO Value SOFTWARE\Microsoft\Windows\CurrentVersion\Run:AVG9_TRAY is not present
2009-10-17 07:07:19,633 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall
2009-10-17 07:07:19,638 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall ForceRemove
2009-10-17 07:07:19,638 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG8Uninstall not found
2009-10-17 07:07:19,639 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall
2009-10-17 07:07:19,641 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall ForceRemove
2009-10-17 07:07:19,641 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG7Uninstall not found
2009-10-17 07:07:19,642 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall
2009-10-17 07:07:19,645 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall ForceRemove
2009-10-17 07:07:19,646 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall not found
2009-10-17 07:07:19,646 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2009-10-17 07:07:19,659 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2009-10-17 07:07:19,659 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2009-10-17 07:07:19,660 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2009-10-17 07:07:19,669 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2009-10-17 07:07:19,670 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2009-10-17 07:07:19,670 INFO Processing registry SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3
2009-10-17 07:07:19,676 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 ForceRemove
2009-10-17 07:07:19,678 DEBUG Key SOFTWARE\Classes\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3 not found
2009-10-17 07:07:19,678 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2009-10-17 07:07:19,682 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2009-10-17 07:07:19,682 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2009-10-17 07:07:19,684 INFO Processing registry SOFTWARE\Classes\AvgDiagFile
2009-10-17 07:07:19,688 DEBUG Key SOFTWARE\Classes\AvgDiagFile ForceRemove
2009-10-17 07:07:19,688 DEBUG Key SOFTWARE\Classes\AvgDiagFile not found
2009-10-17 07:07:19,688 INFO Processing registry SOFTWARE\Classes\.avgdi
2009-10-17 07:07:19,690 DEBUG Key SOFTWARE\Classes\.avgdi ForceRemove
2009-10-17 07:07:19,691 DEBUG Key SOFTWARE\Classes\.avgdi not found
2009-10-17 07:07:19,691 INFO Processing registry SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-10-17 07:07:19,698 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-10-17 07:07:19,698 DEBUG Key SOFTWARE\Classes\piffile\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-10-17 07:07:19,698 INFO Processing registry SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-10-17 07:07:19,703 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-10-17 07:07:19,704 DEBUG Key SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-10-17 07:07:19,704 INFO Processing registry SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension
2009-10-17 07:07:19,709 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension ForceRemove
2009-10-17 07:07:19,710 DEBUG Key SOFTWARE\Classes\*\shellex\ContextMenuHandlers\AVG8 Shell Extension not found
2009-10-17 07:07:19,710 INFO Processing registry SOFTWARE\AVG\Clients
2009-10-17 07:07:19,712 DEBUG Key SOFTWARE\AVG\Clients ForceRemove
2009-10-17 07:07:19,713 DEBUG Key SOFTWARE\AVG\Clients not found
2009-10-17 07:07:19,713 INFO Processing registry SOFTWARE\AVG\AVG8
2009-10-17 07:07:19,716 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2009-10-17 07:07:19,734 DEBUG Key SOFTWARE\AVG\AVG8 not found
2009-10-17 07:07:19,735 INFO Processing registry SOFTWARE\AVG\AVG9
2009-10-17 07:07:19,739 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2009-10-17 07:07:19,740 DEBUG Key SOFTWARE\AVG\AVG9 not found
2009-10-17 07:07:19,740 INFO Processing registry SOFTWARE\AVG\AVG IDS
2009-10-17 07:07:19,758 DEBUG Key SOFTWARE\AVG\AVG IDS ForceRemove
2009-10-17 07:07:19,758 DEBUG Key SOFTWARE\AVG\AVG IDS not found
2009-10-17 07:07:19,758 INFO Processing registry SOFTWARE\AVG
2009-10-17 07:07:19,770 DEBUG Value SOFTWARE\AVG:DumpType Remove
2009-10-17 07:07:19,770 DEBUG Value SOFTWARE\AVG:DumpType not present - Key not found
2009-10-17 07:07:19,771 INFO Processing registry SOFTWARE\AVG
2009-10-17 07:07:19,773 DEBUG Key SOFTWARE\AVG Remove
2009-10-17 07:07:19,773 DEBUG Key SOFTWARE\AVG not found
2009-10-17 07:07:19,773 INFO Processing registry SOFTWARE\AVG Security Toolbar
2009-10-17 07:07:19,775 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2009-10-17 07:07:19,776 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2009-10-17 07:07:19,776 INFO Processing registry SOFTWARE\AVG\AVG8
2009-10-17 07:07:19,778 DEBUG Key SOFTWARE\AVG\AVG8 ForceRemove
2009-10-17 07:07:19,778 DEBUG Key SOFTWARE\AVG\AVG8 not found
2009-10-17 07:07:19,779 INFO Processing registry SOFTWARE\AVG\AVG9
2009-10-17 07:07:19,781 DEBUG Key SOFTWARE\AVG\AVG9 ForceRemove
2009-10-17 07:07:19,782 DEBUG Key SOFTWARE\AVG\AVG9 not found
2009-10-17 07:07:19,782 INFO Processing registry SOFTWARE\AVG
2009-10-17 07:07:19,784 DEBUG Key SOFTWARE\AVG Remove
2009-10-17 07:07:19,785 DEBUG Key SOFTWARE\AVG not found
2009-10-17 07:07:19,786 INFO Processing registry SOFTWARE\AVG Security Toolbar
2009-10-17 07:07:19,802 DEBUG Key SOFTWARE\AVG Security Toolbar ForceRemove
2009-10-17 07:07:19,802 DEBUG Key SOFTWARE\AVG Security Toolbar not found
2009-10-17 07:07:19,802 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks
2009-10-17 07:07:19,808 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} Remove
2009-10-17 07:07:19,808 INFO Value SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks:{A3BC75A2-1F87-4686-AA43-5347D756017C} is not present
2009-10-17 07:07:19,817 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2009-10-17 07:07:19,820 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2009-10-17 07:07:19,820 DEBUG Key SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2009-10-17 07:07:19,821 INFO Processing registry SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser
2009-10-17 07:07:19,826 DEBUG Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Remove
2009-10-17 07:07:19,826 INFO Value SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser:{CCC7A320-B3CA-4199-B1A6-9F516DD69829} is not present
2009-10-17 07:07:19,829 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2009-10-17 07:07:19,833 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2009-10-17 07:07:19,833 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2009-10-17 07:07:19,833 INFO Processing registry SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2009-10-17 07:07:19,837 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2009-10-17 07:07:19,838 DEBUG Key SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2009-10-17 07:07:19,838 INFO Processing registry aAvgAPI.AvgBro
2009-10-17 07:07:19,840 DEBUG Key aAvgAPI.AvgBro ForceRemove
2009-10-17 07:07:19,840 DEBUG Key aAvgAPI.AvgBro not found
2009-10-17 07:07:19,840 INFO Processing registry AVG.Office
2009-10-17 07:07:19,843 DEBUG Key AVG.Office ForceRemove
2009-10-17 07:07:19,843 DEBUG Key AVG.Office not found
2009-10-17 07:07:19,843 INFO Processing registry AVG.Office.8
2009-10-17 07:07:19,845 DEBUG Key AVG.Office.8 ForceRemove
2009-10-17 07:07:19,845 DEBUG Key AVG.Office.8 not found
2009-10-17 07:07:19,846 INFO Processing registry avgtoolbar.AVGTOOLBAR
2009-10-17 07:07:19,848 DEBUG Key avgtoolbar.AVGTOOLBAR ForceRemove
2009-10-17 07:07:19,848 DEBUG Key avgtoolbar.AVGTOOLBAR not found
2009-10-17 07:07:19,848 INFO Processing registry avgtoolbar.AVGTOOLBARMenu Button
2009-10-17 07:07:19,851 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button ForceRemove
2009-10-17 07:07:19,851 DEBUG Key avgtoolbar.AVGTOOLBARMenu Button not found
2009-10-17 07:07:19,852 INFO Processing registry avgtoolbar.AVGTOOLBARToggle Button
2009-10-17 07:07:19,856 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button ForceRemove
2009-10-17 07:07:19,856 DEBUG Key avgtoolbar.AVGTOOLBARToggle Button not found
2009-10-17 07:07:19,856 INFO Processing registry LinkScannerIE.NavFilter
2009-10-17 07:07:19,858 DEBUG Key LinkScannerIE.NavFilter ForceRemove
2009-10-17 07:07:19,858 DEBUG Key LinkScannerIE.NavFilter not found
2009-10-17 07:07:19,859 INFO Processing registry LinkScannerIE.NavFilter.1
2009-10-17 07:07:19,861 DEBUG Key LinkScannerIE.NavFilter.1 ForceRemove
2009-10-17 07:07:19,861 DEBUG Key LinkScannerIE.NavFilter.1 not found
2009-10-17 07:07:19,861 INFO Processing registry CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA}
2009-10-17 07:07:19,871 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} ForceRemove
2009-10-17 07:07:19,871 DEBUG Key CLSID\{04373D9C-5ED8-44f2-BA00-7895D6A5A2DA} not found
2009-10-17 07:07:19,871 INFO Processing registry CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A}
2009-10-17 07:07:19,876 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} ForceRemove
2009-10-17 07:07:19,877 DEBUG Key CLSID\{18B30EBF-6B58-425E-AC54-831C05D91B5A} not found
2009-10-17 07:07:19,877 INFO Processing registry CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
2009-10-17 07:07:19,880 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ForceRemove
2009-10-17 07:07:19,882 DEBUG Key CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} not found
2009-10-17 07:07:19,882 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2009-10-17 07:07:19,884 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2009-10-17 07:07:19,885 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2009-10-17 07:07:19,885 INFO Processing registry CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}
2009-10-17 07:07:19,889 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} ForceRemove
2009-10-17 07:07:19,891 DEBUG Key CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3} not found
2009-10-17 07:07:19,891 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}
2009-10-17 07:07:19,894 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} ForceRemove
2009-10-17 07:07:19,896 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698E} not found
2009-10-17 07:07:19,897 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}
2009-10-17 07:07:19,901 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} ForceRemove
2009-10-17 07:07:19,903 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E2698F} not found
2009-10-17 07:07:19,903 INFO Processing registry CLSID\{A057A204-BACC-4D26-9990-79A187E26990}
2009-10-17 07:07:19,905 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} ForceRemove
2009-10-17 07:07:19,906 DEBUG Key CLSID\{A057A204-BACC-4D26-9990-79A187E26990} not found
2009-10-17 07:07:19,907 INFO Processing registry CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}
2009-10-17 07:07:19,909 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} ForceRemove
2009-10-17 07:07:19,909 DEBUG Key CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} not found
2009-10-17 07:07:19,910 INFO Processing registry CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7}
2009-10-17 07:07:19,918 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} ForceRemove
2009-10-17 07:07:19,918 DEBUG Key CLSID\{9781B2D1-AF27-474F-A3A5-C0763FBDF3B7} not found
2009-10-17 07:07:19,919 INFO Processing registry CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C}
2009-10-17 07:07:19,922 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} ForceRemove
2009-10-17 07:07:19,923 DEBUG Key CLSID\{A3BC75A2-1F87-4686-AA43-5347D756017C} not found
2009-10-17 07:07:19,923 INFO Processing registry CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2009-10-17 07:07:19,927 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2009-10-17 07:07:19,928 DEBUG Key CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2009-10-17 07:07:19,928 INFO Processing registry Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D}
2009-10-17 07:07:19,930 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} ForceRemove
2009-10-17 07:07:19,931 DEBUG Key Interface\{52261B0E-CA1A-4FA9-9805-4D01202DF09D} not found
2009-10-17 07:07:19,931 INFO Processing registry Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C}
2009-10-17 07:07:19,935 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} ForceRemove
2009-10-17 07:07:19,936 DEBUG Key Interface\{8EA1F9F2-997A-4832-8E09-815E3D0C0A0C} not found
2009-10-17 07:07:19,936 INFO Processing registry Interface\{7F24AABF-C822-4C18-9432-21433208F4DC}
2009-10-17 07:07:19,938 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} ForceRemove
2009-10-17 07:07:19,939 DEBUG Key Interface\{7F24AABF-C822-4C18-9432-21433208F4DC} not found
2009-10-17 07:07:19,939 INFO Processing registry TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30}
2009-10-17 07:07:19,943 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} ForceRemove
2009-10-17 07:07:19,943 DEBUG Key TypeLib\{3E536428-8E1A-4A2C-8463-4A8F74763C30} not found
2009-10-17 07:07:19,943 INFO Processing registry TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7}
2009-10-17 07:07:19,946 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} ForceRemove
2009-10-17 07:07:19,948 DEBUG Key TypeLib\{5DAB1D4C-D020-41CD-936F-D63FF662E9F7} not found
2009-10-17 07:07:19,948 INFO Processing registry TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9}
2009-10-17 07:07:19,950 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} ForceRemove
2009-10-17 07:07:19,951 DEBUG Key TypeLib\{A0C8F0F1-DE25-4ADB-8F0B-508F6CA43DE9} not found
2009-10-17 07:07:19,951 INFO Processing registry TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
2009-10-17 07:07:19,956 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} ForceRemove
2009-10-17 07:07:19,957 DEBUG Key TypeLib\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found
2009-10-17 07:07:19,957 INFO *****    Files and folders    *****
2009-10-17 07:07:19,960 DEBUG Missing ParentDir path for fileItem number 0
2009-10-17 07:07:19,960 DEBUG Missing ParentDir path for fileItem number 1
2009-10-17 07:07:19,960 DEBUG Missing ParentDir path for fileItem number 2
2009-10-17 07:07:19,960 DEBUG Missing ParentDir path for fileItem number 3
2009-10-17 07:07:19,960 DEBUG Missing ParentDir path for fileItem number 4
2009-10-17 07:07:19,961 DEBUG Missing ParentDir path for fileItem number 5
2009-10-17 07:07:19,961 DEBUG Missing ParentDir path for fileItem number 6
2009-10-17 07:07:19,961 DEBUG Missing ParentDir path for fileItem number 7
2009-10-17 07:07:19,961 DEBUG Missing ParentDir path for fileItem number 8
2009-10-17 07:07:19,961 DEBUG Missing ParentDir path for fileItem number 9
2009-10-17 07:07:19,961 DEBUG Missing ParentDir path for fileItem number 10
2009-10-17 07:07:19,962 DEBUG Missing ParentDir path for fileItem number 11
2009-10-17 07:07:19,962 DEBUG Missing ParentDir path for fileItem number 12
2009-10-17 07:07:19,962 DEBUG Missing ParentDir path for fileItem number 13
2009-10-17 07:07:19,962 DEBUG Missing ParentDir path for fileItem number 14
2009-10-17 07:07:19,962 DEBUG Missing ParentDir path for fileItem number 15
2009-10-17 07:07:19,962 DEBUG Missing ParentDir path for fileItem number 16
2009-10-17 07:07:19,963 DEBUG Processing item C:\Users\malene\AppData\Roaming\AVGTOOLBAR
2009-10-17 07:07:19,963 INFO Directory C:\Users\malene\AppData\Roaming\AVGTOOLBAR not found
2009-10-17 07:07:19,967 DEBUG Processing item C:\Windows\System32\Drivers
2009-10-17 07:07:19,971 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.0
2009-10-17 07:07:19,971 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.0 not found
2009-10-17 07:07:19,973 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.0
2009-10-17 07:07:19,974 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.0 not found
2009-10-17 07:07:19,978 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.5
2009-10-17 07:07:19,978 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg 8.5 not found
2009-10-17 07:07:19,981 DEBUG Processing item C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.5
2009-10-17 07:07:19,981 INFO Directory C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avg free 8.5 not found
2009-10-17 07:07:19,985 DEBUG Processing item C:\Users\Public\Desktop\avg 8.0.lnk
2009-10-17 07:07:19,986 INFO File C:\Users\Public\Desktop\avg 8.0.lnk not found
2009-10-17 07:07:19,988 DEBUG Processing item C:\Users\Public\Desktop\avg free 8.0.lnk
2009-10-17 07:07:19,989 INFO File C:\Users\Public\Desktop\avg free 8.0.lnk not found
2009-10-17 07:07:19,991 DEBUG Processing item C:\Users\Public\Desktop\avg 8.5.lnk
2009-10-17 07:07:19,992 INFO File C:\Users\Public\Desktop\avg 8.5.lnk not found
2009-10-17 07:07:19,995 DEBUG Processing item C:\Users\Public\Desktop\avg free 8.5.lnk
2009-10-17 07:07:19,995 INFO File C:\Users\Public\Desktop\avg free 8.5.lnk not found
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 27
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 28
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 29
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 30
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 31
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 32
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 33
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 34
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 35
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 36
2009-10-17 07:07:19,999 DEBUG Missing ParentDir path for fileItem number 37
2009-10-17 07:07:20,000 DEBUG Missing ParentDir path for fileItem number 38
2009-10-17 07:07:20,000 DEBUG Missing ParentDir path for fileItem number 39
2009-10-17 07:07:20,000 DEBUG Missing ParentDir path for fileItem number 40
2009-10-17 07:07:20,001 DEBUG Missing ParentDir path for fileItem number 41
2009-10-17 07:07:20,001 DEBUG Missing ParentDir path for fileItem number 42
2009-10-17 07:07:20,001 DEBUG Missing ParentDir path for fileItem number 43
2009-10-17 07:07:20,001 DEBUG Missing ParentDir path for fileItem number 44
2009-10-17 07:07:20,001 DEBUG Missing ParentDir path for fileItem number 45
2009-10-17 07:07:20,001 DEBUG Missing ParentDir path for fileItem number 46
2009-10-17 07:07:20,001 DEBUG Missing ParentDir path for fileItem number 47
2009-10-17 07:07:20,002 DEBUG Missing ParentDir path for fileItem number 48
2009-10-17 07:07:20,005 DEBUG Missing ParentDir path for fileItem number 49
2009-10-17 07:07:20,006 DEBUG Missing ParentDir path for fileItem number 50
2009-10-17 07:07:20,006 DEBUG Missing ParentDir path for fileItem number 51
2009-10-17 07:07:20,006 DEBUG Missing ParentDir path for fileItem number 52
2009-10-17 07:07:20,006 DEBUG Missing ParentDir path for fileItem number 53
2009-10-17 07:07:20,006 DEBUG Missing ParentDir path for fileItem number 54
2009-10-17 07:07:20,006 DEBUG Missing ParentDir path for fileItem number 55
2009-10-17 07:07:20,006 DEBUG Missing ParentDir path for fileItem number 56
2009-10-17 07:07:20,042 DEBUG Missing ParentDir path for fileItem number 57
2009-10-17 07:07:20,042 DEBUG Missing ParentDir path for fileItem number 58
2009-10-17 07:07:20,042 DEBUG Missing ParentDir path for fileItem number 59
2009-10-17 07:07:20,042 DEBUG Missing ParentDir path for fileItem number 60
2009-10-17 07:07:20,042 DEBUG Missing ParentDir path for fileItem number 61
2009-10-17 07:07:20,042 DEBUG Missing ParentDir path for fileItem number 62
2009-10-17 07:07:20,042 DEBUG Missing ParentDir path for fileItem number 63
2009-10-17 07:07:20,043 DEBUG Missing ParentDir path for fileItem number 64
2009-10-17 07:07:20,043 DEBUG Missing ParentDir path for fileItem number 65
2009-10-17 07:07:20,043 DEBUG Missing ParentDir path for fileItem number 66
2009-10-17 07:07:20,043 DEBUG Missing ParentDir path for fileItem number 67
2009-10-17 07:07:20,043 DEBUG Missing ParentDir path for fileItem number 68
2009-10-17 07:07:20,043 DEBUG Missing ParentDir path for fileItem number 69
2009-10-17 07:07:20,043 DEBUG Missing ParentDir path for fileItem number 70
2009-10-17 07:07:20,043 DEBUG Processing item C:\ProgramData\AVG Security Toolbar\Languages
2009-10-17 07:07:20,044 INFO Directory C:\ProgramData\AVG Security Toolbar\Languages not found
2009-10-17 07:07:20,047 DEBUG Processing item C:\ProgramData\AVG Security Toolbar
2009-10-17 07:07:20,047 INFO Directory C:\ProgramData\AVG Security Toolbar not found
2009-10-17 07:07:20,050 DEBUG Processing item C:\Windows\System32\Drivers
2009-10-17 07:07:20,051 DEBUG Processing item C:\Users\Public\Desktop\avg 9.0.lnk
2009-10-17 07:07:20,051 INFO File C:\Users\Public\Desktop\avg 9.0.lnk not found
2009-10-17 07:07:20,053 DEBUG Processing item C:\Users\Public\Desktop\avg free 9.0.lnk
2009-10-17 07:07:20,053 INFO File C:\Users\Public\Desktop\avg free 9.0.lnk not found
2009-10-17 07:07:20,056 DEBUG Missing ParentDir path for fileItem number 76
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 77
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 78
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 79
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 80
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 81
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 82
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 83
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 84
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 85
2009-10-17 07:07:20,057 DEBUG Missing ParentDir path for fileItem number 86
2009-10-17 07:07:20,058 DEBUG Missing ParentDir path for fileItem number 87
2009-10-17 07:07:20,058 DEBUG Missing ParentDir path for fileItem number 88
2009-10-17 07:07:20,058 DEBUG Missing ParentDir path for fileItem number 89
2009-10-17 07:07:20,058 DEBUG Missing ParentDir path for fileItem number 90
2009-10-17 07:07:20,058 DEBUG Missing ParentDir path for fileItem number 91
2009-10-17 07:07:20,058 DEBUG Missing ParentDir path for fileItem number 92
2009-10-17 07:07:20,058 DEBUG Missing ParentDir path for fileItem number 93
2009-10-17 07:07:20,058 DEBUG Missing ParentDir path for fileItem number 94
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 95
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 96
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 97
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 98
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 99
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 100
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 101
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 102
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 103
2009-10-17 07:07:20,059 DEBUG Missing ParentDir path for fileItem number 104
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 105
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 106
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 107
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 108
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 109
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 110
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 111
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 112
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 113
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 114
2009-10-17 07:07:20,060 DEBUG Missing ParentDir path for fileItem number 115
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 116
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 117
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 118
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 119
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 120
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 121
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 122
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 123
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 124
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 125
2009-10-17 07:07:20,061 DEBUG Missing ParentDir path for fileItem number 126
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 127
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 128
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 129
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 130
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 131
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 132
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 133
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 134
2009-10-17 07:07:20,062 DEBUG Missing ParentDir path for fileItem number 135
2009-10-17 07:07:20,063 DEBUG Missing ParentDir path for fileItem number 136
2009-10-17 07:07:20,063 DEBUG Missing ParentDir path for fileItem number 137
2009-10-17 07:07:20,063 DEBUG Missing ParentDir path for fileItem number 138
2009-10-17 07:07:20,063 DEBUG Missing ParentDir path for fileItem number 139
2009-10-17 07:07:20,063 DEBUG Missing ParentDir path for fileItem number 140
2009-10-17 07:07:20,063 DEBUG Missing ParentDir path for fileItem number 141
2009-10-17 07:07:20,063 DEBUG Missing ParentDir path for fileItem number 142
2009-10-17 07:07:20,063 DEBUG Missing ParentDir path for fileItem number 143
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 144
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 145
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 146
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 147
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 148
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 149
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 150
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 151
2009-10-17 07:07:20,064 DEBUG Missing ParentDir path for fileItem number 152
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 153
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 154
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 155
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 156
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 157
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 158
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 159
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 160
2009-10-17 07:07:20,065 DEBUG Missing ParentDir path for fileItem number 161
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 162
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 163
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 164
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 165
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 166
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 167
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 168
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 169
2009-10-17 07:07:20,066 DEBUG Missing ParentDir path for fileItem number 170
2009-10-17 07:07:20,067 DEBUG Missing ParentDir path for fileItem number 171
2009-10-17 07:07:20,067 DEBUG Missing ParentDir path for fileItem number 172
2009-10-17 07:07:20,067 DEBUG Missing ParentDir path for fileItem number 173
2009-10-17 07:07:20,067 DEBUG Missing ParentDir path for fileItem number 174
2009-10-17 07:07:20,067 DEBUG Missing ParentDir path for fileItem number 175
2009-10-17 07:07:20,067 DEBUG Missing ParentDir path for fileItem number 176
2009-10-17 07:07:20,067 DEBUG Missing ParentDir path for fileItem number 177
2009-10-17 07:07:20,067 DEBUG Missing ParentDir path for fileItem number 178
2009-10-17 07:07:20,068 DEBUG Missing ParentDir path for fileItem number 179
2009-10-17 07:07:20,068 DEBUG Missing ParentDir path for fileItem number 180
2009-10-17 07:07:20,068 DEBUG Missing ParentDir path for fileItem number 181
2009-10-17 07:07:20,068 DEBUG Missing ParentDir path for fileItem number 182
2009-10-17 07:07:20,068 DEBUG Missing ParentDir path for fileItem number 183
2009-10-17 07:07:20,068 DEBUG Missing ParentDir path for fileItem number 184
2009-10-17 07:07:20,068 DEBUG Missing ParentDir path for fileItem number 185
2009-10-17 07:07:20,068 DEBUG Processing item C:\Windows\System32\Drivers
2009-10-17 07:07:20,069 DEBUG Processing item C:\Windows\System32\Drivers
2009-10-17 07:07:20,070 DEBUG Processing item C:\Windows\System32\Drivers
2009-10-17 07:07:20,070 DEBUG Processing item C:\Windows\System32\Drivers
2009-10-17 07:07:20,072 DEBUG Processing item C:\Windows\System32\Drivers
2009-10-17 07:07:20,073 DEBUG Processing item C:\Windows\System32\Drivers\avg
2009-10-17 07:07:20,073 INFO Directory C:\Windows\System32\Drivers\avg not found
2009-10-17 07:07:20,077 DEBUG Processing item C:\Windows\System32
2009-10-17 07:07:20,077 DEBUG Processing item C:\Program Files\AVG
2009-10-17 07:07:20,079 DEBUG Directory C:\Program Files\AVG not deleted (error c0070091)
2009-10-17 07:07:20,079 DEBUG Missing ParentDir path for fileItem number 194
2009-10-17 07:07:20,079 INFO *****    Avg Fw NDIS driver    *****
2009-10-17 07:07:22,972 INFO FW NDIS driver not present

Vi prøver lige dette:

Klik start>søg og find services.msc
Find Windows Management Instrumentation. Højreklik på denne, og vælg stop
Start stifinder men husk at få den til at vise skjulte filer og mapper
Find mappen wbem den ligger i c:\Windows/system32. der finder du mappen repository
Slet den.
Klik start>søg og find services.msc
Højreklik på Windows Management Instrumentation og vælg start.
Genstart
Så er sikkerhedcenteret nulstillet

Tjek sp # http://www.eksperten.dk/spm/870543 det fixede mit problem.

ihhh jeg blir altså snart småtosset af det her..nu vil den ikke kører comfix fordi der popper noget op hvor der står "programmet kan ikke fungere korrekt - kommandoliniefortolkeren er holdt op med at fungere" og så har jeg ikke andre muligheder end at lukke den boks hvorefter combofix så stopper... :O/////

Har du gjort præcis som jeg skrev her:
http://www.eksperten.dk/spm/889077#reply_7470317

jeg kørte den slavisk igennem så ja...:)

har lige tjekket og Windows Management Instrumentation står som startet i status..

Jeg kan se andre har samme problem så "stand by"

okidoki

"Jeg kan se andre har samme problem så "stand by"

Ja jeg havde, men har ikke mere" iflg. http://www.eksperten.dk/spm/870543 holder på du har fået "snavs" ind via download gennem et bit torrent program.

Jeg lærte en lektie. og er glad for karise_larry hjælp, han ved hvad han snakker om.

øhhh er ikke helt med?

@fetmule
Så vidt jeg kan se havde du ikke problener med antivirus der ikke kunne afinstalleres eller combofix der ikke ville køre.

jeg er forvirret--det er ikke til mig noget af det i skriver vel?

@malene_louise
Det jeg skrev før var ikke til dig, men jeg vil gerne ha' du gør dette:

Hent og pak RootRepeal ud.

http://rootrepeal.googlepages.com/RootRepeal.zip

Start og vælg "report", klik skan og sæt flueben i dem alle og lad den søge
Når den er færdig viser den en liste de ting den har fundet.
Tryk på "save report" og send den herind.

jeg vil virkelig gerne du ha' gør som jeg skrev:

sorry...kom ikke på igår pga jeg var ude..jeg gør det du skriver nu :)

så har jeg prøvet at gøre om du skrev to ganeg..efter et stykke tid popper der en meddelelse op hvor der står "could not read ouer index block"...og som sagt har jeg prøvet at kører den 2 gange.. når jeg siger ok til det stopper det hele og skriver "programmet svarer ikke"..

Jeg har en mistanke om at der likker mere bag:
Hent denne:

http://sites.google.com/site/sysprotantirootkit/Home/SysProt.zip?attredirects=0

Pak det ud og start det. Såt flueben ned alle mulihederne og lad den søge. Når søgningen er ferdig så Send rapporten kerind